last executing test programs:

25m56.157311906s ago: executing program 2 (id=46):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x800000, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000440)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r5, {0x0, 0xb}, {0xffff, 0xffff}, {0xb}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0xa, 0x7f61, 0x1, 0xc5, 0xe23, 0x1, 0x1, 0x7fff, 0x1}}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20008001}, 0x8080)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000740)={&(0x7f00000001c0)=@newqdisc={0x78, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r9, {}, {0x2, 0xb}, {0x9, 0x4}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0x7, 0xd569, 0x0, 0x4, 0xb}, 0x80000001, 0x1, 0x3, 0x3, 0x8e, 0x5, 0x1, 0x11, 0x0, 0x4, {0x7, 0xf, 0x361f, 0x5, 0x6, 0xd}}}}]}, 0x78}, 0x1, 0x0, 0x0, 0x2000c0e9}, 0x4008000)
ioctl$SIOCSIFHWADDR(r6, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

25m53.471289751s ago: executing program 2 (id=52):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xc, &(0x7f0000000140)={0x8, 0x2000000200000081}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000003900)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmctl$IPC_RMID(0x0, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0xffd8)

25m48.941884977s ago: executing program 2 (id=58):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
ioctl$PPPIOCGIDLE(0xffffffffffffffff, 0x8010743f, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x54, 0x0, 0x1, 0x401, 0x11, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}]}]}, 0x54}}, 0x20044000)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x48)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)

25m47.765481593s ago: executing program 2 (id=62):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000100)='./file0\x00', 0x80000, 0x113)
accept$alg(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$qrtrtun(r0, &(0x7f0000000300)="ca0e808bb35bdabb", 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x30, 0x8, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x7], 0x0, 0x0, 0x1}}, 0x40)
mbind(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x2, &(0x7f0000000080)=0x3, 0x8, 0x0)

25m45.653101691s ago: executing program 2 (id=65):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0x23, 0x5, 0x0)
listen(r3, 0x0)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$tipc2(&(0x7f00000005c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_BEARER_DISABLE(r4, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000100)={0x30, r5, 0x1, 0x70bd27, 0x25dfdbfe, {}, [@TIPC_NLA_BEARER={0x1c, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0x17, 0x1, @l2={'ib', 0x3a, 'veth0_to_bridge\x00'}}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x8884}, 0x0)
sendmsg$TIPC_NL_MEDIA_GET(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={0x0}, 0x1, 0x0, 0x0, 0x8000}, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)

25m44.583173861s ago: executing program 2 (id=67):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
ioctl$PPPIOCGIDLE(0xffffffffffffffff, 0x8010743f, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x54, 0x0, 0x1, 0x401, 0x11, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}]}]}, 0x54}}, 0x20044000)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x48)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$pokeuser(0x6, r2, 0x388, 0x41d9fda7)

25m26.661135749s ago: executing program 32 (id=67):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
ioctl$PPPIOCGIDLE(0xffffffffffffffff, 0x8010743f, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
getpid()
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)={0x54, 0x0, 0x1, 0x401, 0x11, 0x0, {0x2}, [@CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @empty}, {0x8, 0x2, @loopback}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_SEQ_ADJ_REPLY={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8}, @CTA_SEQADJ_OFFSET_BEFORE={0x8}]}]}, 0x54}}, 0x20044000)
bpf$MAP_GET_NEXT_KEY(0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf)
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB], 0x48)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r2)
ptrace$pokeuser(0x6, r2, 0x388, 0x41d9fda7)

1m53.064930905s ago: executing program 1 (id=5884):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0xfffffffe}, 0x48)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=@base={0x2, 0x4, 0x4, 0x143, 0x1014}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000780)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x11, 0x9, &(0x7f0000000080)=@framed={{0x18, 0x8, 0x0, 0x0, 0x1ac81b, 0x0, 0x0, 0x0, 0x1000000}, [@func={0x85, 0x0, 0x1, 0x0, 0x6}, @generic={0x66, 0x8, 0x0, 0x0, 0x1010000}, @initr0, @exit, @alu={0x6, 0x0, 0x3, 0xa, 0x0, 0x0, 0xf00}]}, &(0x7f0000000000)='GPL\x00', 0x2}, 0x94)

1m52.845149639s ago: executing program 1 (id=5885):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r0, &(0x7f00000003c0)=@file={0x1, './file0\x00'}, 0x6e)
listen(r0, 0x0)
shutdown(r0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, 0x0, 0x0)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1m52.575223666s ago: executing program 1 (id=5886):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000850000005000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007"], &(0x7f0000001b80)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
syz_emit_ethernet(0x6e, &(0x7f0000000080)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @pkt_toobig={0x2, 0x0, 0x0, 0x5dc, {0x0, 0x6, "8cb02b", 0x0, 0x2f, 0x0, @loopback={0x4000000}, @local, [@srh={0x2b, 0x0, 0x4, 0x0, 0x0, 0x10}]}}}}}}}, 0x0)

1m52.376613379s ago: executing program 1 (id=5887):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0xc02, &(0x7f0000009b80)=ANY=[@ANYBLOB='iocharset=macromanian,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6572726f72733d636f6e74696e75652c757466382c646973636172642c6b6565705f6c6173745f646f74732c666d61736b3d30303030303030303030303030303030303030303331372c6e616d65636173653d312c616c6c6f775f7574696d653d30303030303030303030303030303030303030303030342c696f636861727365743d69736f383835392d322c0036b31d821d64f6269a45f32df22d1ca8bb2f562a2c947b9b1642d15000b2bfe919b892a8b2deb4ead6027b0215761d101255ca823e3e5b3ad9d42af3944b48687df1b9"], 0x1, 0x1522, &(0x7f0000000280)="$eJzs3AuYjtXaOPD7Xms9Y0zS2ySHYa11P7zJYZkkySFJDkmSJElOCUmTbEmoGHJKGpKQHIbkMCTJYWLSOJ/Ph4QkaZIkJKdk/S8xf7td+9t7f3v3+a5v7t91PZd1v89zr+d+n/t9PYcxvus6tFaT2tUbERH8W/DiH8kAEAsAAwHgGgAIAKB8fPn4C+tzS0z+93bC/rMeSrvSFbArifufs3H/czbuf87G/c/ZuP85G/c/Z+P+52zcf8Zysk3TC13LS85d+Pl/Tsbn//9DssqM/WpNmeu7AcT8sync/5yN+/9/VvDPbMT9z9m4/zlV7JUugP0vwN//nCDX313D/c/ZuP+M5WRX+vnzlV4gkrOPwZX+/DHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYyxlO+8sUAGSPr3RdjDHGGGOMMcYY+8/xua50BYwxxhhjjDHGGPvzIQiQoCCAGMgFsZAb4kAAwNWQF66BCFwL8XAd5IPrIT8UgIJQCBKgMBQBDQZigCCEolAMonADFIcboQSUhFJQGhyUgUS4CcrCzVAOboHycCtUgNugIlSCylAFboeqcAdUgzuhOtwFNaAm1ILacDfUgXugLtwL9eA+qA/3QwN4ABrCg9AIHoLG8DA0gUegKTwKzaA5tICW0Oq/lf8CvAgvQU/oBcnQG/rAy9AX+kF/GAAD4RUYBK/CYHgNUmAIDIXXYRi8AcPhTRgBI2EUvAWj4W0YA2NhHIyHVJgAE+EdmATvwmSYAlNhGqTBdJgB78FMeB9mwQcwGz6EOTAX5sF8SIePYAEshAz4GBbBJ5AJi2EJLIVlsBxWwEpYBathDayFdbAeNsBG2ASbYQtshW2wHXbAp7ATPoNdsBv2wOewF774F/NP/U1+NwQEFChQocIYjMFYjMU4jMM8mAfzYl6MYATjMR7zYT7Mj/mxIBbEBEzAIlgEDRokJCyKRTGKUSyOxbEElsBSWAodOkzERCyLN2M5LIflsTxWwApYESthJayCVbAqVsVqWA2rY3WsgTWwFtbCu/Fu7I11sS7Ww3pYH+tnP57CRtgIG2NjbIJNsCk2xWbYDFtgC2yFrbA1tsY22AbbYTtsj+2xA3bAJEzCjtgRO2En7IydsQt2wa7YFbthd+ye9UIuwJfwJeyFNURv7IN9sC+m5OqPA3AAvoKD8FV8FV/DFByCQ/F1fB3fwOF4EkfgSByFo7CqeBvH4FgkMR5TMRUn4kSchJNwMk7BKTgN03A6zojN/np9gLPxQ/wQ5+JcnI/pmI4LcCFmYAYuwlOYiYtxCS7FZbgcl+FKXIUrcQ2uxTW4HtfjRtyIm3EzbsWtuB2346eoAPAz3I27MQX34l7ch/twP+7HA3gAszALD+JBPISH8DAexiN4BI/iMTyOx/AEnsCTeApP42k8i2fxHD6X8E3jT0uuTgFxgRJKxIgYEStiRZyIE3lEHpFX5BURERHxIl7kE/lEfpFfFBQFRYJIEEVEEWGEESTCGAAQUREVxUVxUUKUEKVEKeGEE4kiUZQVZUU5UU6UF7eKCuI2UVFUEm1dFVFFVBXtXDVxp6guqosaoqaoJWqL2qKOqCPqirqinqgn6ov6ooF4QDQUvbE/PiQudKaJGIJNxVBsJpoLeekQtxbDsY1oK9qJJ8RIHIEdRGuXJJ4WHcUY7CT+Isbis6KLGI9dxfOim+gueogXxIuijespeonJ2Fv0EdOwr+gn+osBYibWFB/g7Ny1xGsiRQwRQ8XrYj6+IYaLN8UIMVKMEm+J0eJtMUaMFePEeJEqJoiJ4h0xSbwrJospYqqYJtLEdDFDvCdmivfFLPGBmC0+FHPEXDFPzBfp4iOxQCwUGeJjsUh8IjLFYrFELBXLxHKxQqwUq8RqsUasFevEerFBbBSbxGaxRWwV28R2sUN8KnaKz8QusVvsEZ+LveILsU98KfaLr8QB8bXIEt+Ig+JbcUh8Jw6L78UR8YM4Ko6J4+JHcUL8JE6KU+K0OCPOip/FOfGLOC+8AIlSSCmVDGSMzCVjZW4ZJ6+SeWRw6eheK+PldTKfvF7mlwVkQVlIJsjCsojU0kgrSYayqCwmo/IGWVzeKEvIkrKULC2dLCMT5U2yrLxZlpO3yPLyVllB3iYrykqysqwib5dV5R0SIhf3UUPWlLVkbXm3TIZ7ZF15r6wn75P15f2ygXxANpQPykbyIdlYPiybyEdkU/mobCabyxaypWwlH5Ot5eOyjWwr28knZHv5pOwgn5JJ8mnZUfpLH5FnZRf5nOwqn5fdZHfZQ/4iz0sve8peEnqD7CNfln1lP9lfDpAD5StykHxVDpavyRQ5RA6Vr8th8g05XL4pR8iRcpR8S46Wb8sxcqwcJ8fLVDlBTpTvyEnyXTlZTpFT5TSZJqfL/pdmmiXlP8x/5w/yB/+6941yk9wst8itcpvcLnfIT+VOuVPukrvkHrlH7pV75T65T+6X++UBeUBmySx5UB6Uh+QheVgelkfkEXlUHpNn5I/yhPxJnpSn5Cl5Rp6VZ+W5S8cAFCqhpFIqUDEql4pVuVWcukrlUVervOoaFVHXqnh1ncqnrlf5VQFVUBVSCaqwKqK0MsoqUqEqqoqpqLoBL31gVClVWjlVRiWqm/6VfFVc3ahKqJK/yc+uL/nv1NdKtVKtVWvVRrVR7VQ71V61Vx1UB5WkklRH1VF1Up1UZ9VZdVFdVFfVVXVT3VQP1UO9qF5UPVVPlaySVR/1suqr+qn+aoAaqF5Rg9QgNVgNVikqRQ1VQ9UwNUwNV8PVCDVCjVKj1Gg1Wo1RY9Q4NU6lqlQ1UU1Uk9QkNVlNVlPVVJWm0tQMNUPNVDPVLDVLzVaz1Rw1R81T81S6SlcL1AKVoTLUIrVIZarFarFaqpaq5Wq5WqlWqtVqtVqr1qr1ar3KVJvUJrVFbVHb1Da1Q+1QO9VOtUvtUnvUHrVX7VX71D61X+1XB9QBlaWy1EF1UB1Sh9RhdVgdUUfUUXVUHVfH1Ql1Qp1UJ9VpdVqdVWfVOXVOnVfna8UABCIQgQounGljgtggNogL4oI8QZ4gb5A3iASRID6ID/IF1wf5gwJBwaBQkBAUDooEOjCBDcSlpkeDG4LiwY1BiaBkUCooHbigTJAY3BSUDW4OygW3BOWDW4MKwW1BxaBSUDmoEtweVA3uCKoFdwbVg7uCGkHNoFZQO7g7qBPcE9QN7g3qBfcF9YP7gwbBA0HD4MGgUfBQ0Dh4OGgSPBI0DR4NmgXNgxZBy6DVf3R+708WeNz11L10su6t++iXdV/dT/fXA/RA/YoepF/Vg/VrOkUP0UP163qYfkMP12/qEXqkHqXf0qP123qMHqvH6fE6VU/QE/U7epJ+V0/WU/RUPU2n6el6hn5Pz9Tv61n6Az1bf6jn6Ll6np6v0/VHeoFeqDP0x3qR/kRn6sV6iV6ql+nleoVeqVfp1XqNXqvX6fV6g96oN+nNeoveqrfp7XqH/lTv1J/pXXq33qM/13v1F3qf/lLv11/pA/prnaW/0Qf1t/qQ/k4f1t/rI/oHfVQf08f1j/qE/kmf1Kf0aX1Gn9U/63P6F31e+wsX9xdO70YZZWJMjIk1sSbOxJk8Jo/Ja/KaiImYeBNv8pl8Jr/JbwqagibBJJgipoi5gAyZoqaoiZqoKW6KmxKmhCllShlnnEk0iaasKWvKmXKmvClvKpgKpqKpaCqbyuZ2c7u5w9xh7jR3mrvMXaamqWlqm9qmjqlj6pq6pp6pZ+qb+qaBaWAamoamkWlkGpvGpolpYpqapqaZaWZamBamlWllWpvWpo1pY9qZdqa9aW86mA4mySSZjqaj6WQ6mc6ms+liupiupqvpZrqZHib7h6E9TbJJNn1MH9PX9DX9TX8z0Aw0g8wgM9gMNikmxQw1Q80wM8wMN8PNCDPSjLqQat42Y8xYM86MN6km1Uw0E80kM8lMNpPNVDPVpJk0M8PMMDPNTDPLzDKzzWwzx8wx88w8k27SzQKzwGSYDLPILDKZJtMsMUvMMrPMrDArzCqzyqwxa8w6WGc2mA1mk9lktpgtZpvZZnaYHWan2Wl2mV1mj9lj9pq9Zp/ZZ/ab/eaAOWCyTJY5aA6aQ+aQOWwOmyPmiDlqjprj5rg5YU6Yk+akOW1Om7OmwKXzpTexNreNs1fZPPZqm9deY/82LmgL2QRb2Bax2ua3BX4TG2ttCVvSlrKlrbNlbKK96XdxRVvJVrZV7O22qr3DVvtdXMfeY+vae209e5+tbe/+TVzf3m8b2EdsQ0QA29w2ti1tE/uIbWoftc1sc9vCtrTt7ZO2g33KJtmnbUf7zO/iBXahXWVX2zV2rd1ld9vT9ow9ZL+zZ+3PtqftZQfaV+wg+6odbF+zKXbI7+JR9i072r5tx9ixdpwd/7t4qp1m0+x0O8O+Z2fa938Xp9uP7GybYefYuXaenf9rfKGmDPuxXWQ/sZk2gCV2qV1ml9sVduX/r3WpXW832I12p/3MbrFb7Ta73e7IvhC2u+0e+7nda7+wB+23dr/9yh6wh22W/ebX+ML7O2y/t0fsD/aoPWaP2x/tCfuTys6+8N5/tL/Y89ZbICQgSYoCiqFcFEu5KY6uojx0NeWlayhC11I8XUf56HrKTwWoIBWiBCpMRUiTIUtEIRWlYhSlGyi7vFJUmhyVoUS6icrSzVSObqHydCtVoNuoIlWiylSFbqeqdAdVozupOt1FNagm1aLadDfVoXuoLt1L9eA+qk/3UwN6gBrSg9SIHqLG9DA1oUeoKT1Kzag5taCW1Ioeo9b0OLWhttSOnqD29CR1oKcoiZ6mjvQMdaK/UGd6lrrQc9SVnqdu1J160Av0Ir1EPakXJVNv6kMvU1/qR/1pAA2kV2gQvUqD6TVKoSE0lF6nYfQGDac3aQSNpFH0Fo2mt2kMjaVxNJ5SaQJNpHdoEr1Lk2kKTaVplEbTaQa9RzPpfZpFH9Bs+pDm0FyaR/MpnT6iBbSQMuhjWkSfUCYtpiW0lJbRclpBK2kVraY1tJbW0XraQBtpE22mLbSVttF22kGf0k76jHbRbtpDn9Ne+oL20Ze0n76iA/Q1ZdE3dJC+pUP0HR2m730v+oGO0jE6Tj/SCfqJTtIpOk1n6Cz9TOfoFzpPniDEUIQyVGEQxoS5wtgwdxgXXhXmCa8O84bXhJHw2jA+vC7MF14f5g8LhAXDQmFCWDgsEurQhDakMAyLhsXCaHhDWDy8MSwRlgxLhaVDF5YJE8ObwrLhzWG58JawfHhrWCG8LawYVgofua9KeHtYNbwjrBbeGVYP7wprhDXDWmHt8O6wTnhPWDe8N6wX3heWC+8PG4QPhA3DB8NG4UNh4/DhsEn4SNg0fDRsFjYPW4Qtw1bhY2Hr8PGwTdg2bBc+EbYPnww7hE+FSeHTYcfwmV/X37/w769PDnuHfcKXw5dD7++V86Lzo+nRj6ILogujGdGPo4uin0Qzo4ujS6JLo8uiy6Mroiujq6Kro2uia6ProuujG6Ibo97XzgUOnXDSKRe4GJfLxbrcLs5d5fK4q11ed42LuGtdvLvO5XPXu/yugCvoCrkEV9gVcdoZZx250BV1xVzU3eCKuxtdCVfSlXKlnXNlXKJr6Vq5Vq61e9y1cW1dO/eEe8I96Z50T7mn3NOuo3vGdXJ/cZ3ds66Le84955533Vx318O94F50E/Je/E4muz6uj8OjfV1/198NdAPdIDfIDXaDXYpLcUPdUDfMDXPD3XA3wo1wo9woN9qNdmPcGDfOjXOpLtVNdBPdJDfJTXaT3VQ31aW5NDfDzXAz3UxX9f2Le5nj5rh5bp5Ld+lugbtwzZjhFrlFLtNluiVuiVvmlrkVboVb5Va5NW6NW+fWuQ1ug9vkNrktbovb5ra5HW6H2+l2ul3+mouTur1un9vn9rv97oD72mW5b9xB96075L5zh9337oj7wR11x9xx96M74X5yJ90pd9qdcWfdz+6c+8Wdd96lRiZEJkbeiUyKvBuZHJkSmRqZFkmLTI/MiLwXmRl5PzIr8kFkduTDyJzI3Mi8yPxIeuSjyILIwkhG5OPIosgnkczI4siSyNLIssjyiPeFt4S+qC/mo/4GX9zf6Ev4kr6UL+2dL+MT/U2+rL/Zl/O3+PL+Vl/B3+Yr+kq+sn/UN/PNfQvf0rfyj/nW/nHfxrf17fwTvr1/0nfwT/kk/7Tv6J/xnfxffGf/rC+W3HhTV/+87+a7+x7+Bf+if8n39L18su/t+/iXfV/fz/f3A/xA/4of5F/1g/1rPsUP8UP9636Yf8MP92/6EX6kHxXzlh+dfYsM432qn+An+nf8JP8u3Omn+Kl+mk/z0/0M/56f6d/3s/wHfrb/0M/xc/08P9+n+4/8Ar/QZ/iP/SL/ic/0i7MfKvsVfqVf5Vf7NX6tX+fX+w1+o9/kN/stfqvf5rf7Hf5Tv9N/5nf53X6P/9zv9V/4ff5Lv99/5Q/4r32W/8Yf9N/6Q/47f9h/74/4H/xRf8wf9z/6E/4nf9Kf8qf9GX/W/+zP+V/8ef6dNcYYY4yxf8qEy0Px2zUXH+f3/oMc8Vcb9wGAq7cWyvrr9ReuKNflvzjuJxLaRwDg6V5dH8peatRITk6+tG2mhKDYXIDsnwRdEAOX48XQDp6EJGgLZf+w/n6i+1n6B/NHbwWI+6ucWLgcX57/SwBM/oP5H3ti1IIK4en4/2L+uQAlil3OyQ2X48XQ7tfnK22h3N+pv0Drf1B/7q9SAdr8VU4euBxfrj8RHodnIOk3WzLGGGOMMcYYYxf1E5U7Z99/Zv+Lzz+6P09Ql3NyweX4H92fM8YYY4wxxhhj7Mp7tnuPpx5LSmrb+V8fVPtvZf3Tg6bwZ83Mgz8ceA+Q/YoCgH9zQoALA/ln1pz961rZr2z+HzlQKZf2+rerlp3xAfzvaOV/YnAF/1JijDHGGGOM/SkuX/T/9nV1pQpijDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcZyoP+J/07sSr9HxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhj7Er7fwEAAP//waf4Wg==")
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f0000000480)='./file0\x00', &(0x7f0000000380)='devtmpfs\x00', 0x4000, 0x0)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000180)='tmpfs\x00', 0x3200890, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x262)

1m51.947346037s ago: executing program 1 (id=5890):
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000700)='./file2\x00', 0x0, &(0x7f0000000740)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$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")
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000280)={[{@noload}, {@resgid}]}, 0x3, 0x45f, &(0x7f0000000940)="$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")
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x800053, 0x0, 0x0, 0x0, &(0x7f0000000100))
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000080)={[{@workdir={'workdir', 0x3d, './file1'}, 0x5c}]})
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000a00)='.\x00', 0x1a4a438, &(0x7f0000000f80)=ANY=[], 0xb, 0x0, &(0x7f0000000000))
link(&(0x7f0000000a40)='./file1\x00', 0x0)

1m51.413104232s ago: executing program 1 (id=5898):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x1)
open_by_handle_at(r0, &(0x7f0000000040)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x0, 0x5, 0x0, 0xfffffff7}, {0xffffff81, 0x7fffffff, 0x7, 0x8e}}}, 0x98300)

1m50.874578578s ago: executing program 33 (id=5898):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x1)
open_by_handle_at(r0, &(0x7f0000000040)=@GFS2_LARGE_FH_SIZE={0x20, 0x8, {{0x0, 0x5, 0x0, 0xfffffff7}, {0xffffff81, 0x7fffffff, 0x7, 0x8e}}}, 0x98300)

11.253863243s ago: executing program 4 (id=6165):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='sessionid\x00')
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000dc0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000d80)={&(0x7f0000000c80)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x4800}, 0x4010)
socket$inet6_udplite(0xa, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_open_dev$usbfs(0x0, 0x8, 0x80)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000440)='ubifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000005c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="890c040000000000340012800b00010067726574617000"], 0x54}, 0x1, 0x0, 0x0, 0x44801}, 0x0)
utimensat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r5, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})
mount(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000002280)='vxfs\x00', 0x1000080, 0x0)

10.066210179s ago: executing program 4 (id=6167):
syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042)
epoll_create1(0x80000)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(r0, &(0x7f0000000040)='smaps\x00')
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x1000)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
execve(&(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000800)={[&(0x7f0000000940)='\x7f\xb7\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xa9\x1702\x7f\x9e\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab?P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb8\x10\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\x03\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7vC\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01']})

9.521880194s ago: executing program 5 (id=6169):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x18)
mlockall(0x6)

9.314655718s ago: executing program 5 (id=6171):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2902, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
ioctl$KVM_CLEAR_DIRTY_LOG(0xffffffffffffffff, 0xc018aec0, &(0x7f0000000140)={0x10201, 0x240, 0x380, &(0x7f0000000180)=[0x6bd1a312, 0xec66, 0xff, 0x8, 0x98bd, 0x800000000000009, 0x0, 0x4, 0x10000, 0x7, 0x9004, 0x9, 0x8, 0x9, 0x5, 0x49, 0x3ff, 0x5, 0x2, 0x6, 0x8, 0x7, 0xc1, 0x1, 0x7ff, 0x6, 0x40006, 0x9, 0x96, 0xffffffff, 0xfbffffff00000000, 0x0, 0x5, 0x7, 0x4, 0x8000, 0x9, 0x888f, 0x1, 0xb, 0x46, 0x6, 0x3, 0xa3de, 0x20000000006, 0x8, 0x7, 0x400, 0x2, 0xfffffffffffffff7, 0xfffffffffffffffa, 0x2, 0xe, 0x6, 0x4, 0xe6, 0x200000000000101, 0x5, 0x5, 0x66, 0x6, 0x7, 0x40000005, 0xfffffffeffffffff, 0x5, 0xd, 0x10001, 0xbbd9, 0x7ffffffe, 0xfffffffffffffc00, 0xe, 0x7, 0x7fffffff, 0xcdc, 0x4000000007, 0x2, 0x3, 0x2, 0x2, 0xfff, 0x8, 0x4, 0x11, 0xab6, 0x0, 0x8, 0x0, 0xffffffffffffff81, 0x9, 0xff, 0x6, 0x28000000, 0x0, 0x8061d, 0x3, 0x7, 0xf6, 0x4, 0x6, 0x200, 0x7, 0xe53e, 0x4, 0x8, 0x2293332f, 0x6, 0x5, 0x1e, 0xd, 0x2, 0x4, 0xfffffffffffffffb, 0xffffffffffffffff, 0x7, 0xdfd4, 0xfffd, 0x10, 0x5, 0x8, 0x1, 0x53e0f0fe, 0xeb5, 0x0, 0xfffffffffffffffe, 0xa692, 0xcc, 0x8, 0x1000003]})
ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f00000002c0)=ANY=[])
ioctl$KVM_RUN(r2, 0xae80, 0x0)

8.909715134s ago: executing program 5 (id=6172):
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000120001000000", @ANYRES32=0x0, @ANYBLOB="0000000064995c98"], 0x34}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xfdf8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000003c0)=[@mss={0x2, 0x8}, @window={0x3, 0xe, 0x7ff}, @timestamp, @window={0x3, 0x101, 0x9}, @mss={0x2, 0x7}, @sack_perm, @sack_perm, @window={0x3, 0xfff, 0x4}, @sack_perm], 0x9)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e000100776972656775617264000000040002800800", @ANYRES32, @ANYBLOB="a1c50602dd3d7c6622503d2b887e60756f81a58d3acba4be25bfcb4ef0bbb90bf6063a00a46bb79595231248ed048a4c1f461c4830e619d29f6f493ee7fc636229edf147d2e6e0649d95"], 0x40}}, 0x5)

7.752378959s ago: executing program 5 (id=6173):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0xe4b, 0x11e41e7a, 0x20000000, 0x3, 0xf}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x0, 0x2}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000380)=0x34)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$rxrpc(0x21, 0x2, 0xa)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback=0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
r5 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r5, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
r6 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPCONNADD(r6, 0x400448c8, &(0x7f0000000340)={r5, r5, 0x8, 0x0, 0x0, 0x9, 0x1, 0xc45, 0x1012, 0xc7, 0x2, 0x7, 'syz0\x00'})
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000180)={@private2, 0x800, 0x0, 0x2, 0x1}, 0x20)
r7 = socket$nl_route(0x10, 0x3, 0x0)
get_mempolicy(0x0, 0x0, 0x73e, &(0x7f0000419000/0x8000)=nil, 0x3)
r8 = socket$inet6_sctp(0xa, 0x1, 0x84)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000000)={'veth1_vlan\x00', <r9=>0x0})
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
sendmsg$NFT_BATCH(r10, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)={{0x14}, [@NFT_MSG_NEWRULE={0x78, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x4c, 0x4, 0x0, 0x1, [{0x48, 0x1, 0x0, 0x1, @inner={{0xa}, @val={0x38, 0x2, 0x0, 0x1, [@NFTA_INNER_TYPE={0x8, 0x2, 0x1, 0x0, 0x84}, @NFTA_INNER_FLAGS={0x8, 0x3, 0x1, 0x0, 0x7}, @NFTA_INNER_HDRSIZE={0x8, 0x4, 0x1, 0x0, 0xf}, @NFTA_INNER_NUM={0x8}, @NFTA_INNER_EXPR={0x14, 0x5, 0x0, 0x1, @meta={{0x9}, @val={0x4}}}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x3}}}, 0xa0}}, 0x0)
sendmsg$nl_route_sched(r7, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getchain={0x24, 0x11, 0x839, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r9, {0x1, 0x6}, {0xd}, {0x11, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x84}, 0x0)

6.416980695s ago: executing program 0 (id=6176):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080000000000000", @ANYRES32, @ANYBLOB, @ANYRES32], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000c00)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r1, 0x107, 0x5, &(0x7f00000000c0)=@req3={0x8000, 0x6, 0x8002, 0x20000006}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x6, 0x5, &(0x7f00000003c0)=ANY=[@ANYBLOB="18020000fbffffff00000000030000008500000036000000850000000e000000950047e60fa441b17cadb5000000080000"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x800000}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x2)

6.397773936s ago: executing program 4 (id=6177):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0xfffffffc, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x26e1, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000a80)={{}, &(0x7f0000000a00), 0x0}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$NFQNL_MSG_CONFIG(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={0x0, 0x1c}}, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x8)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc), 0x0, 0x0, 0x0, 0x0, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x1, 0x800001, 0x0, 0x0, 0x0)
mlock2(&(0x7f0000ff5000/0x9000)=nil, 0x9000, 0x0)
mremap(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x5000000, 0x3, &(0x7f0000ffd000/0x1000)=nil)
mlock2(&(0x7f0000ff5000/0x2000)=nil, 0x2000, 0x1)
mincore(&(0x7f0000ff5000/0x4000)=nil, 0x4000, 0x0)
setsockopt$bt_BT_SNDMTU(0xffffffffffffffff, 0x112, 0xc, &(0x7f0000000080)=0x8, 0x2)

6.310522212s ago: executing program 3 (id=6178):
r0 = socket(0x1000000000000010, 0x80802, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r1=>0x0})
r2 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="440000001100a7cc4a372eaf541d002007000000", @ANYRES32=r1, @ANYBLOB="00000000100000001c001a80080002"], 0x44}}, 0x0)

6.073243788s ago: executing program 3 (id=6179):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000002140)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x30, r0, 0x5, 0x70bd27, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_MESH_SETUP={0x8, 0x70, [@NL80211_MESH_SETUP_IE={0x4}]}]}, 0x30}}, 0x0)

5.959752515s ago: executing program 3 (id=6180):
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0xa0002)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r0, 0x40045532, &(0x7f0000000100))
r1 = openat$audio(0xffffffffffffff9c, &(0x7f00000000c0), 0x88602, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
ioctl$SNDCTL_DSP_GETODELAY(r1, 0x80045017, 0x0)
r2 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r2, 0x80104132, &(0x7f0000000000))

4.958454179s ago: executing program 0 (id=6181):
socket$kcm(0x21, 0x2, 0xa)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
openat$binfmt_format(0xffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)

3.829162143s ago: executing program 0 (id=6182):
syz_mount_image$btrfs(&(0x7f00000055c0), &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000440), 0x1, 0x559d, &(0x7f0000005680)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x8)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
r1 = creat(&(0x7f0000000280)='./bus\x00', 0x29)
write$FUSE_NOTIFY_RETRIEVE(r1, &(0x7f0000000000)={0x30}, 0x30)
r2 = open(0x0, 0x143142, 0x80)
ftruncate(r2, 0x6)

3.653700144s ago: executing program 3 (id=6183):
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000120001000000", @ANYRES32=0x0, @ANYBLOB="0000000064995c98"], 0x34}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xfdf8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000003c0)=[@mss={0x2, 0x8}, @window={0x3, 0xe, 0x7ff}, @timestamp, @window={0x3, 0x101, 0x9}, @mss={0x2, 0x7}, @sack_perm, @sack_perm, @window={0x3, 0xfff, 0x4}, @sack_perm], 0x9)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0xc7)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e000100776972656775617264000000040002800800", @ANYRES32, @ANYBLOB="a1c50602dd3d7c6622503d2b887e60756f81a58d3acba4be25bfcb4ef0bbb90bf6063a00a46bb79595231248ed048a4c1f461c4830e619d29f6f493ee7fc636229edf147d2e6e0649d95"], 0x40}}, 0x5)

2.47500518s ago: executing program 3 (id=6184):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000004850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f00000001c0)='sessionid\x00')
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_GET(0xffffffffffffffff, &(0x7f0000000dc0)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000d80)={&(0x7f0000000c80)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x4800}, 0x4010)
socket$inet6_udplite(0xa, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_open_dev$usbfs(0x0, 0x8, 0x80)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = fsopen(&(0x7f0000000440)='ubifs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r3, 0x6, 0x0, 0x0, 0x0)
r4 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000005c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="890c040000000000340012800b00010067726574617000"], 0x54}, 0x1, 0x0, 0x0, 0x44801}, 0x0)
utimensat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r5, 0x560a, &(0x7f00000006c0)={0x4, 0x0, 0x0, 0x0, 0x132, 0x3})
mount(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000002280)='vxfs\x00', 0x1000080, 0x0)

2.31846177s ago: executing program 5 (id=6185):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f0000000000)=0x84, 0xfde1)
sendto$inet6(r0, 0x0, 0x0, 0x200cc0c5, &(0x7f0000000080)={0xa, 0x4c20, 0x0, @empty, 0x8}, 0x1c)
recvmmsg(r0, 0x0, 0x0, 0x40002003, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10000000}, 0x94)
r1 = openat$full(0xffffffffffffff9c, &(0x7f00000000c0), 0x502, 0x0)
read$rfkill(r1, &(0x7f0000000080), 0xffffff1c)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

1.204590972s ago: executing program 3 (id=6186):
syz_open_dev$mouse(&(0x7f0000000000), 0x0, 0x8042)
epoll_create1(0x80000)
socket$nl_netfilter(0x10, 0x3, 0xc)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
ioctl$SNDRV_SEQ_IOCTL_SYSTEM_INFO(0xffffffffffffffff, 0xc0305302, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_procfs(r0, &(0x7f0000000040)='smaps\x00')
execveat(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x1000)
close(0xffffffffffffffff)
execve(&(0x7f0000000180)='./file0\x00', 0x0, &(0x7f0000000800)={[&(0x7f0000000940)='\x7f\xb7\xc3\x7f\xa5a\xd6A*c\x9b\xd8R\xf02b\xefA|uiWb\x8f\xee\x1c\xc5\xdb^\x11\x16h\x83\x94y<yN\xfbXh[\xe9\xa9\x1702\x7f\x9e\xf0\x99\xad\xdc;p\x98R\a\xb1\x9d^\x0f\x121\xb3\xab?P\xd6\xcb\x06\xfe2~W\xd9\xad\x80\xd9!\x89%\xb8\x10\xa3l;\x1eK\x90\x15\xc6\x11A\xfc\x7f\xc6\xed\xe7\xa3\x9f\xb4\xce\"\xef\xa8\x86F\x15\x03\rj\f\xafa\xb0}\xde\'E\x84\xb2bO\xd2\xd4\x85F\xde1e\xe0\xf2\xa0/\xd3<\xda\xfe\x04,\xfa\x97\xb6\xf4\xcf\x0el\xf2\xbd\x18\x88\xd7\x02\xce\x99\x1f\xadj\x89\xd9\xb7\xae9\xb0\xb0{n.\xd7vC\x0eh|KZG\x108l\n\xcd\xe9\x04\xafM\xbf\x83#>\x89\xf1Y{\x87\xd5\xf3\xccMr\xc5\xbdT\x9e\xc4\x84\x06\xcd\x8b\xcd\t\x01']})

1.125272087s ago: executing program 4 (id=6187):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x80000)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f00000002c0)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000000)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r3, 0xc0306201, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x4, 0x0, &(0x7f0000000440)="42f7a85b"})
r4 = openat$cgroup_ro(r2, &(0x7f0000000080)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r4, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x48, 0x18, &(0x7f00000004c0)={@fd={0x66642a85, 0x0, r0}, @fd={0x66642a85, 0x0, r3}, @fd={0x66642a85, 0x0, r0}}, &(0x7f0000000200)={0x0, 0x18, 0x30}}}], 0x0, 0x0, 0x0})
ioctl$BINDER_THREAD_EXIT(r3, 0x40046208, 0x0)

869.594054ms ago: executing program 0 (id=6188):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r0, 0x3)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='syz_tun\x00', 0x10)
syz_emit_ethernet(0x36, &(0x7f0000000340)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x65, 0x0, 0xf, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0xffff}}}}}}, 0x0)
syz_emit_ethernet(0x36, &(0x7f0000000140)={@local, @multicast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x3, 0x28, 0xda18, 0x0, 0x0, 0x6, 0x0, @rand_addr=0x64010101, @local}, {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x4, 0x0, 0x0, 0x1000}}}}}}, 0x0)

683.195346ms ago: executing program 5 (id=6189):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000480)='syzkaller\x00', 0x3, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
setpriority(0x0, 0x0, 0x10000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
lchown(&(0x7f0000000000)='./file0\x00', 0x0, 0x0)

676.722686ms ago: executing program 4 (id=6190):
socket$kcm(0x21, 0x2, 0xa)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
openat$binfmt_format(0xffffff9c, 0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0xfffffffd}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)

589.422382ms ago: executing program 0 (id=6191):
connect$inet6(0xffffffffffffffff, &(0x7f0000000000)={0xa, 0x0, 0x10000, @empty}, 0x1c)
bind$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20, 0x6, @ipv4={'\x00', '\xff\xff', @multicast1}, 0x9fa0}, 0x1c)

70.352165ms ago: executing program 0 (id=6192):
socket$netlink(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000240)=ANY=[@ANYBLOB="34000000120001000000", @ANYRES32=0x0, @ANYBLOB="0000000064995c98"], 0x34}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0xfdf8)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast2}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f00000003c0)=[@mss={0x2, 0x8}, @window={0x3, 0xe, 0x7ff}, @timestamp, @window={0x3, 0x101, 0x9}, @mss={0x2, 0x7}, @sack_perm, @sack_perm, @window={0x3, 0xfff, 0x4}, @sack_perm], 0x9)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0x0, 0x0, 0x11)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000500)=ANY=[@ANYBLOB="4000000010001fff000000000000000000060000", @ANYRES32=0x0, @ANYBLOB="81ffffff00000000180012800e000100776972656775617264000000040002800800", @ANYRES32, @ANYBLOB="a1c50602dd3d7c6622503d2b887e60756f81a58d3acba4be25bfcb4ef0bbb90bf6063a00a46bb79595231248ed048a4c1f461c4830e619d29f6f493ee7fc636229edf147d2e6e0649d95"], 0x40}}, 0x5)

0s ago: executing program 4 (id=6193):
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, &(0x7f0000000140)=[{&(0x7f0000000cc0)="13", 0x1}, {&(0x7f00000007c0)="b5", 0x1}], 0x2, 0x0)
ioctl$sock_inet_sctp_SIOCINQ(r0, 0x541b, &(0x7f0000000000))
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e22, 0xab, @loopback, 0x10001}, 0x1c)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f0000000300)={0x64, 0x0, &(0x7f0000000540)=[@acquire, @clear_death={0x400c630f, 0x1}, @transaction={0x40406300, {0x1, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000480)={@flat=@binder={0x73622a85, 0x1001, 0x1}, @ptr={0x70742a85, 0x0, &(0x7f0000000380)=""/245, 0xf5, 0x2, 0x1b}, @fda={0x66646185, 0x3, 0x1, 0x25}}, &(0x7f0000000500)={0x0, 0x18, 0x40}}}, @increfs={0x40046304, 0x2}], 0x0, 0x0, 0x0})
socket$nl_route(0x10, 0x3, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r4, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r5=>0x0]}, &(0x7f0000000240)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r3, 0x84, 0xa, &(0x7f0000000080)={0x8efd, 0x0, 0x4, 0x800, 0xc0, 0x1, 0x67, 0x401, r5}, 0x20)
r6 = memfd_create(&(0x7f0000000280)='\x00\x00\x00\x00\x00\x00z\x9b\xb6\xe8t;\xfc\x02\x00\x00\x009\xa0\x8b\x14d\xa2\xa1\xa8!\xe8\xd1\xa0\x8a\xce0\x1c\xb7\xf1\xccm\xce\xd4\xdb\x89\xe5\x8f\xe2\xb6\xd6\x9cF\xbd\xff\x14\x05\x00\x00\x00\x00\x00\x00\x00\xf3\xdc\x91\'\x06\\8\r\xfc\xeeG\xbe\x90C\x1c)5\x98\xa3\xfa\a\xf9\x98\xbb}\xeb\x86P=\xe51\x9d,\xb7\xe6_M\xbe\x19\xea#\xff[\xd1\xc3\x9a\xa3\x1b\xf9\xe9\x1d \xce1\xc9\x9f\xb0\x14\xc2\xeb\xf9\xceE\xad\xa4\x92\f\xef\x87g\xb6\xabW\xac\rP\xf42\xb7\xc8\xaajn\xd7\n\r\x802\xd7\x1b$\x95tO*\xf4\xae\xb8\xb8m\xbf\r\xd5\xbf*\xfd\xc7\x85\x1b\x8b\xe5\x97j`c\xe0\x88?\xda\x8a#t>r\xae\xe8\xc9)', 0x0)
execveat(r6, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
r7 = socket$kcm(0xa, 0x2, 0x0)
ioctl$FS_IOC_RESVSP(r3, 0x402c5828, &(0x7f0000000340)={0x0, 0x2, 0x0, 0x4})
sendmsg$kcm(r7, &(0x7f00000000c0)={&(0x7f0000000a00)=@generic={0xa, "8ab77fa26849ff26650042e2dacd00005efe0000000162e2adacd2737d00ad6f9fa9f3d7145e15dd9d6d2e19c211220940ad5def53b911ba5b9da13641f9826d7012a749f54b901ee80ea6132ca6e88c776553e1833052ca376304313c4b37780136a4b838570400"}, 0x80, 0x0}, 0x0)
connect$inet6(r1, &(0x7f0000000100)={0xa, 0x4e22, 0x7, @loopback, 0x23}, 0x1c)
r8 = dup(r1)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000080)='veth0_to_hsr\x00', 0x10)

kernel console output (not intermixed with test programs):

393.069956][T22066] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1393.083074][   T28] audit: type=1326 audit(5002616.849:13925): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22136 comm="syz.4.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1393.105033][T22066] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1393.159381][T22137] netlink: 'syz.1.4889': attribute type 12 has an invalid length.
[ 1393.167988][   T28] audit: type=1326 audit(5002616.849:13926): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22136 comm="syz.4.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1393.211891][   T28] audit: type=1326 audit(5002616.849:13927): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22136 comm="syz.4.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1393.241440][T22066] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1393.241499][   T28] audit: type=1326 audit(5002616.849:13928): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22136 comm="syz.4.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1393.271724][T22066] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1393.282691][   T28] audit: type=1326 audit(5002616.849:13929): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22136 comm="syz.4.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1393.327702][T22066] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1393.330276][   T28] audit: type=1326 audit(5002616.849:13930): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22136 comm="syz.4.4890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1393.454580][T21177] Bluetooth: hci0: command tx timeout
[ 1393.523613][T22066] hsr_slave_0: entered promiscuous mode
[ 1393.588373][T22066] hsr_slave_1: entered promiscuous mode
[ 1393.595208][T22066] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1393.603602][T22066] Cannot create hsr debugfs directory
[ 1395.263995][ T7807] bridge_slave_1: left allmulticast mode
[ 1395.269808][ T7807] bridge_slave_1: left promiscuous mode
[ 1395.286049][ T7807] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1395.336674][ T7807] bridge_slave_0: left allmulticast mode
[ 1395.347099][ T7807] bridge_slave_0: left promiscuous mode
[ 1395.356662][ T7807] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1395.440065][T21177] Bluetooth: hci0: command tx timeout
[ 1395.785754][ T7807] bond1 (unregistering): Released all slaves
[ 1395.966499][   T28] audit: type=1326 audit(5002619.957:13931): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22180 comm="syz.1.4902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1395.995231][   T28] audit: type=1326 audit(5002619.957:13932): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22180 comm="syz.1.4902" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1397.208234][ T7807] team0 (unregistering): Port device team_slave_1 removed
[ 1397.304200][ T7807] team0 (unregistering): Port device team_slave_0 removed
[ 1397.318865][   T48] smc: removing ib device !yz!
[ 1397.426859][T21177] Bluetooth: hci0: command tx timeout
[ 1397.478987][ T7807] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1397.626381][ T7807] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1399.212552][ T7807] bond0 (unregistering): Released all slaves
[ 1399.405406][T22211] netlink: 8 bytes leftover after parsing attributes in process `syz.0.4911'.
[ 1399.415288][T22211] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4911'.
[ 1399.425465][T22211] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1399.724536][T22219] netlink: 'syz.4.4913': attribute type 39 has an invalid length.
[ 1399.817632][T22221] bridge0: entered promiscuous mode
[ 1399.832266][T22221] bridge0: port 3(macsec2) entered blocking state
[ 1399.840822][T22221] bridge0: port 3(macsec2) entered disabled state
[ 1399.847852][T22221] macsec2: entered allmulticast mode
[ 1399.855069][T22221] bridge0: entered allmulticast mode
[ 1399.870366][T22221] macsec2: left allmulticast mode
[ 1399.888742][T22221] bridge0: left allmulticast mode
[ 1399.896733][T22221] bridge0: left promiscuous mode
[ 1400.619127][T22066] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1400.644116][T22236] netlink: 4 bytes leftover after parsing attributes in process `syz.0.4919'.
[ 1400.647947][T22066] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1400.685733][T22066] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1400.708718][T22066] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1400.765766][   T28] kauditd_printk_skb: 8 callbacks suppressed
[ 1400.765781][   T28] audit: type=1326 audit(5002624.998:13941): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1400.835045][   T28] audit: type=1326 audit(5002624.998:13942): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1400.878035][   T28] audit: type=1326 audit(5002624.998:13943): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1400.958920][T22252] netlink: 'syz.0.4921': attribute type 12 has an invalid length.
[ 1401.008208][   T28] audit: type=1326 audit(5002624.998:13944): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1401.042559][T22066] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1401.134149][T22066] 8021q: adding VLAN 0 to HW filter on device team0
[ 1401.141198][   T28] audit: type=1326 audit(5002624.998:13945): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1401.177432][ T7807] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1401.184650][ T7807] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1401.193289][   T28] audit: type=1326 audit(5002624.998:13946): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1401.226378][ T6001] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1401.233648][ T6001] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1401.249755][   T28] audit: type=1326 audit(5002624.998:13947): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1401.310291][   T28] audit: type=1326 audit(5002625.030:13948): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1401.334307][   T28] audit: type=1326 audit(5002625.040:13949): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1401.419589][   T28] audit: type=1326 audit(5002625.040:13950): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22240 comm="syz.4.4920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1401.823326][T22275] xt_CT: No such helper "pptp"
[ 1402.019133][T22066] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1402.154751][T22066] veth0_vlan: entered promiscuous mode
[ 1402.183738][T22066] veth1_vlan: entered promiscuous mode
[ 1402.881503][T22066] veth0_macvtap: entered promiscuous mode
[ 1403.449806][T22066] veth1_macvtap: entered promiscuous mode
[ 1403.553174][T22066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1403.584623][T22066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.601061][T22066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1403.617944][T22066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.633743][T22066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1403.649912][T22066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.664070][T22066] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1403.688629][T22066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1403.717350][T22066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.733019][T22066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1403.745575][T22066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.761642][T22066] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1403.776724][T22066] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1403.798782][T22066] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1403.904173][T22318] wireguard0: entered promiscuous mode
[ 1403.912964][T22318] wireguard0: entered allmulticast mode
[ 1404.012652][T22066] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1404.038795][T22066] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1404.053896][T22066] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1404.077364][T22066] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1404.171146][T22326] netlink: 32 bytes leftover after parsing attributes in process `syz.0.4935'.
[ 1404.381128][ T5922] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1404.428522][ T5922] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1404.565571][ T5922] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1404.592592][ T5922] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1405.798906][T22348] loop1: detected capacity change from 0 to 2048
[ 1405.907261][T22348] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1405.997463][T22357] bridge0: entered promiscuous mode
[ 1406.035257][T22357] bridge0: port 3(macsec2) entered blocking state
[ 1406.062393][T22357] bridge0: port 3(macsec2) entered disabled state
[ 1406.066692][T22363] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.4939: bg 0: block 345: padding at end of block bitmap is not set
[ 1406.083554][T22357] macsec2: entered allmulticast mode
[ 1406.099091][T22357] bridge0: entered allmulticast mode
[ 1406.116363][T22357] macsec2: left allmulticast mode
[ 1406.124413][T22357] bridge0: left allmulticast mode
[ 1406.141902][T22363] EXT4-fs (loop1): Remounting filesystem read-only
[ 1406.167311][T22357] bridge0: left promiscuous mode
[ 1406.202442][ T7331] EXT4-fs warning (device loop1): ext4_convert_unwritten_extents:4868: inode #15: block 1: len 15: ext4_ext_map_blocks returned -5
[ 1406.536216][T22375] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1406.545631][T22375] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1406.573841][T22375] bridge0: entered allmulticast mode
[ 1406.634827][T22377] bridge_slave_1: left allmulticast mode
[ 1406.641350][T22377] bridge_slave_1: left promiscuous mode
[ 1406.658552][T22377] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1406.682972][T22377] bridge_slave_0: left allmulticast mode
[ 1406.692731][T22377] bridge_slave_0: left promiscuous mode
[ 1406.700717][T22377] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1406.797674][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1406.975416][T22386] netlink: 'syz.4.4946': attribute type 12 has an invalid length.
[ 1407.037199][   T28] kauditd_printk_skb: 112 callbacks suppressed
[ 1407.037216][   T28] audit: type=1326 audit(5002631.593:14063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1407.119752][   T28] audit: type=1326 audit(5002631.635:14064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1407.165468][   T28] audit: type=1326 audit(5002631.635:14065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1407.426580][   T28] audit: type=1326 audit(5002631.635:14066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1407.456947][   T28] audit: type=1326 audit(5002631.635:14067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1408.166562][T22404] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4949'.
[ 1408.175607][T22404] netlink: 4 bytes leftover after parsing attributes in process `syz.4.4949'.
[ 1408.443146][T22404] wireguard0: entered promiscuous mode
[ 1408.448800][T22404] wireguard0: entered allmulticast mode
[ 1408.749104][   T28] audit: type=1326 audit(5002631.635:14068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1408.899497][   T28] audit: type=1326 audit(5002631.635:14069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1408.966957][   T28] audit: type=1326 audit(5002631.635:14070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1409.003410][   T28] audit: type=1326 audit(5002631.635:14071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1409.027624][   T28] audit: type=1326 audit(5002631.635:14072): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22387 comm="syz.1.4945" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1409.442050][T22421] netlink: 'syz.0.4957': attribute type 12 has an invalid length.
[ 1409.457846][T22423] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4958'.
[ 1409.477219][T22423] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4958'.
[ 1409.504679][T22423] syz_tun: entered promiscuous mode
[ 1409.523729][T22423] syz_tun: left promiscuous mode
[ 1410.791971][T22454] netlink: 'syz.0.4968': attribute type 12 has an invalid length.
[ 1411.063783][T22460] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4971'.
[ 1411.087415][T22460] netlink: 28 bytes leftover after parsing attributes in process `syz.0.4971'.
[ 1411.120787][T22460] syz_tun: entered promiscuous mode
[ 1411.130152][T22460] syz_tun: left promiscuous mode
[ 1411.868112][T22480] netlink: 'syz.1.4979': attribute type 12 has an invalid length.
[ 1412.037577][   T28] kauditd_printk_skb: 118 callbacks suppressed
[ 1412.037591][   T28] audit: type=1326 audit(5002636.844:14191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22483 comm="syz.4.4980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1412.074074][   T28] audit: type=1326 audit(5002636.875:14192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22483 comm="syz.4.4980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1412.191093][   T28] audit: type=1326 audit(5002636.928:14193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22483 comm="syz.4.4980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1412.215588][   T28] audit: type=1326 audit(5002636.928:14194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22483 comm="syz.4.4980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1412.600824][T22491] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4982'.
[ 1412.693893][T22491] netlink: 28 bytes leftover after parsing attributes in process `syz.1.4982'.
[ 1412.718512][T22491] syz_tun: entered promiscuous mode
[ 1412.734090][T22491] syz_tun: left promiscuous mode
[ 1413.049158][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1413.055778][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1413.096343][   T28] audit: type=1326 audit(5002637.946:14195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22504 comm="syz.3.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1413.128410][   T28] audit: type=1326 audit(5002637.978:14196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22504 comm="syz.3.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1413.155507][   T28] audit: type=1326 audit(5002637.978:14197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22504 comm="syz.3.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1413.275951][T22509] netlink: 'syz.3.4990': attribute type 12 has an invalid length.
[ 1413.346757][   T28] audit: type=1326 audit(5002637.978:14198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22504 comm="syz.3.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1413.399774][   T28] audit: type=1326 audit(5002637.978:14199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22504 comm="syz.3.4988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1413.475261][T22512] bridge0: entered promiscuous mode
[ 1413.482406][T22512] bridge0: port 3(macsec1) entered blocking state
[ 1413.489283][T22512] bridge0: port 3(macsec1) entered disabled state
[ 1413.496069][T22512] macsec1: entered allmulticast mode
[ 1413.516016][T22512] bridge0: entered allmulticast mode
[ 1413.538028][T22512] macsec1: left allmulticast mode
[ 1413.543482][T22512] bridge0: left allmulticast mode
[ 1413.557798][T22512] bridge0: left promiscuous mode
[ 1414.658479][T22531] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1414.747165][T22531] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1414.784561][T22535] netlink: 'syz.0.4999': attribute type 12 has an invalid length.
[ 1414.822577][T22531] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1414.923540][T22531] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1415.130933][T22531] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1415.189984][T22531] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1415.230123][T22531] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1415.245546][T22546] bridge0: entered promiscuous mode
[ 1415.256806][T22546] bridge0: port 3(macsec1) entered blocking state
[ 1415.264134][T22546] bridge0: port 3(macsec1) entered disabled state
[ 1415.275762][T22546] macsec1: entered allmulticast mode
[ 1415.281736][T22546] bridge0: entered allmulticast mode
[ 1415.295652][T22546] macsec1: left allmulticast mode
[ 1415.301624][T22546] bridge0: left allmulticast mode
[ 1415.315755][T22546] bridge0: left promiscuous mode
[ 1415.400805][T22531] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1417.214505][T22566] atomic_op ffff88805cdaa998 conn xmit_atomic 0000000000000000
[ 1418.017237][T22587] loop1: detected capacity change from 0 to 1024
[ 1418.029412][T22587] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1418.246852][T22587] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1418.296090][T22587] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1418.305030][T22587] System zones: 0-1, 3-36
[ 1418.336592][T22587] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1418.504904][T22587] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2797: inode #2: comm syz.1.5018: corrupted in-inode xattr: bad e_name length
[ 1418.552817][T22590] EXT4-fs error (device loop1): ext4_xattr_ibody_get:653: inode #2: comm syz.1.5018: corrupted in-inode xattr: bad e_name length
[ 1418.710807][   T28] audit: type=1326 audit(5002643.837:14200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1418.794368][   T28] audit: type=1326 audit(5002643.837:14201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1418.851711][   T28] audit: type=1326 audit(5002643.890:14202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1418.858077][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1418.913921][   T28] audit: type=1326 audit(5002643.890:14203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1418.983829][   T28] audit: type=1326 audit(5002643.890:14204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1419.056904][   T28] audit: type=1326 audit(5002643.911:14205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1419.374797][   T28] audit: type=1326 audit(5002643.911:14206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1419.555120][   T28] audit: type=1326 audit(5002643.911:14207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1419.758684][   T28] audit: type=1326 audit(5002643.911:14208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22592 comm="syz.0.5020" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1420.573260][T22612] netlink: 'syz.3.5028': attribute type 12 has an invalid length.
[ 1420.686984][T22615] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5029'.
[ 1420.726808][T22616] UBIFS error (pid: 22616): cannot open "c:::", error -22
[ 1422.016927][   T28] audit: type=1326 audit(5002647.324:14209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22634 comm="syz.4.5036" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1422.139037][T22640] random: crng reseeded on system resumption
[ 1423.578756][   T28] kauditd_printk_skb: 30 callbacks suppressed
[ 1423.578774][   T28] audit: type=1326 audit(5002648.962:14240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22655 comm="syz.3.5043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1423.619056][   T28] audit: type=1326 audit(5002648.962:14241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22655 comm="syz.3.5043" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1423.641872][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1424.713393][T22667] UBIFS error (pid: 22667): cannot open "c:::", error -22
[ 1424.822870][T22680] netlink: 176 bytes leftover after parsing attributes in process `syz.0.5052'.
[ 1425.010935][T22686] netlink: 96 bytes leftover after parsing attributes in process `syz.0.5055'.
[ 1425.184034][   T28] audit: type=1326 audit(5002650.652:14242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22690 comm="syz.4.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1425.237786][   T28] audit: type=1326 audit(5002650.673:14243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22690 comm="syz.4.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=121 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1425.260178][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1425.283078][   T28] audit: type=1326 audit(5002650.673:14244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22690 comm="syz.4.5058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1425.327447][   T28] audit: type=1326 audit(5002650.799:14245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22694 comm="syz.0.5057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1425.378132][   T28] audit: type=1326 audit(5002650.799:14246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22694 comm="syz.0.5057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1425.401527][   T28] audit: type=1326 audit(5002650.799:14247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22694 comm="syz.0.5057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1425.435630][   T28] audit: type=1326 audit(5002650.799:14248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22694 comm="syz.0.5057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1425.462526][   T28] audit: type=1326 audit(5002650.799:14249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22694 comm="syz.0.5057" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1425.484898][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1425.515383][T22702] xt_NFQUEUE: number of total queues is 0
[ 1425.618250][T22707] netlink: 176 bytes leftover after parsing attributes in process `syz.0.5063'.
[ 1425.680842][T22708] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5062'.
[ 1425.945675][T22715] syz.0.5066[22715] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1425.945821][T22715] syz.0.5066[22715] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1426.087056][T22721] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5069'.
[ 1426.112795][T22721] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5069'.
[ 1426.140619][T22721] syz_tun: entered promiscuous mode
[ 1426.175713][T22721] syz_tun: left promiscuous mode
[ 1426.266711][T22723] $Hÿ: renamed from bond0 (while UP)
[ 1426.331642][T22723] $Hÿ: entered promiscuous mode
[ 1426.345700][T22723] bond_slave_0: entered promiscuous mode
[ 1426.351773][T22723] bond_slave_1: entered promiscuous mode
[ 1426.396127][T22727] netlink: 176 bytes leftover after parsing attributes in process `syz.4.5072'.
[ 1426.522255][T22729] atomic_op ffff88807e1e4998 conn xmit_atomic 0000000000000000
[ 1427.060275][T22745] netlink: 'syz.4.5080': attribute type 39 has an invalid length.
[ 1427.108074][T22747] netlink: 176 bytes leftover after parsing attributes in process `syz.1.5081'.
[ 1427.340523][T22753] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5084'.
[ 1427.715197][T22768] vhci_hcd vhci_hcd.0: pdev(0) rhport(0) sockfd(5)
[ 1427.721804][T22768] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1427.740975][T22768] vhci_hcd vhci_hcd.0: Device attached
[ 1427.998018][T10432] vhci_hcd: vhci_device speed not set
[ 1428.096047][T10432] usb 33-1: new full-speed USB device number 2 using vhci_hcd
[ 1428.419018][T22769] vhci_hcd: connection reset by peer
[ 1428.445240][   T12] vhci_hcd: stop threads
[ 1428.448487][T22781] syz.4.5093[22781] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1428.449670][T22781] syz.4.5093[22781] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1428.458229][   T12] vhci_hcd: release socket
[ 1428.496131][T22782] netlink: 176 bytes leftover after parsing attributes in process `syz.1.5094'.
[ 1428.497370][   T12] vhci_hcd: disconnect device
[ 1429.169150][T22793] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5097'.
[ 1429.178364][T22793] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5097'.
[ 1429.749411][T22793] wireguard0: entered promiscuous mode
[ 1429.755171][T22793] wireguard0: entered allmulticast mode
[ 1430.135768][   T28] kauditd_printk_skb: 74 callbacks suppressed
[ 1430.135787][   T28] audit: type=1326 audit(5002655.829:14324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.207629][   T28] audit: type=1326 audit(5002655.829:14325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.278701][   T28] audit: type=1326 audit(5002655.829:14326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.323263][   T28] audit: type=1326 audit(5002655.829:14327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.374349][   T28] audit: type=1326 audit(5002655.829:14328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.401873][   T28] audit: type=1326 audit(5002655.829:14329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.456663][   T28] audit: type=1326 audit(5002655.829:14330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.461060][T22810] __nla_validate_parse: 1 callbacks suppressed
[ 1430.461083][T22810] netlink: 176 bytes leftover after parsing attributes in process `syz.1.5103'.
[ 1430.516083][   T28] audit: type=1326 audit(5002655.839:14331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.592385][   T28] audit: type=1326 audit(5002655.839:14332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1430.648056][   T28] audit: type=1326 audit(5002655.839:14333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22801 comm="syz.1.5100" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1431.270292][T22835] random: crng reseeded on system resumption
[ 1431.311014][T22834] netlink: 176 bytes leftover after parsing attributes in process `syz.4.5114'.
[ 1431.554903][T22842] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5116'.
[ 1432.257855][T22863] netlink: 176 bytes leftover after parsing attributes in process `syz.3.5124'.
[ 1432.520865][T22869] random: crng reseeded on system resumption
[ 1432.621048][T22871] netlink: 300 bytes leftover after parsing attributes in process `syz.3.5128'.
[ 1432.994014][T10432] vhci_hcd: vhci_device speed not set
[ 1433.212519][T22881] netlink: 176 bytes leftover after parsing attributes in process `syz.3.5133'.
[ 1434.104609][T22909] netlink: 176 bytes leftover after parsing attributes in process `syz.4.5145'.
[ 1434.258165][T22915] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5147'.
[ 1434.269153][T22915] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5147'.
[ 1434.322705][T22915] syz_tun: entered promiscuous mode
[ 1434.341479][T22915] syz_tun: left promiscuous mode
[ 1435.183278][   T28] kauditd_printk_skb: 85 callbacks suppressed
[ 1435.183294][   T28] audit: type=1326 audit(5002661.142:14419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.267818][   T28] audit: type=1326 audit(5002661.184:14420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.397875][   T28] audit: type=1326 audit(5002661.184:14421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.420634][   T28] audit: type=1326 audit(5002661.184:14422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.454097][T22923] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1435.470975][   T28] audit: type=1326 audit(5002661.184:14423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.494370][   T28] audit: type=1326 audit(5002661.194:14424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.517635][   T28] audit: type=1326 audit(5002661.194:14425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.540489][   T28] audit: type=1326 audit(5002661.194:14426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.563516][   T28] audit: type=1326 audit(5002661.194:14427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.595108][   T28] audit: type=1326 audit(5002661.194:14428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22920 comm="syz.3.5150" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1435.629760][T22923] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1435.703952][T22929] netlink: 176 bytes leftover after parsing attributes in process `syz.3.5155'.
[ 1436.137275][T22923] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1436.306567][T22941] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5159'.
[ 1436.322088][T22941] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5159'.
[ 1436.342562][T22941] syz_tun: entered promiscuous mode
[ 1436.350049][T22941] syz_tun: left promiscuous mode
[ 1436.383827][T22923] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1437.522669][T22949] random: crng reseeded on system resumption
[ 1438.056896][T22954] netlink: 176 bytes leftover after parsing attributes in process `syz.1.5164'.
[ 1438.899512][ T5789] Bluetooth: hci5: sending frame failed (-49)
[ 1438.910223][   T50] Bluetooth: hci5: Opcode 0x1003 failed: -49
[ 1439.018916][T22978] netlink: 176 bytes leftover after parsing attributes in process `syz.1.5174'.
[ 1439.177707][T22982] tipc: Started in network mode
[ 1439.182736][T22982] tipc: Node identity ac14140f, cluster identity 4711
[ 1439.190557][T22982] tipc: New replicast peer: 255.255.255.83
[ 1439.197411][T22982] tipc: Enabled bearer <udp:£>, priority 10
[ 1440.270361][ T5919] tipc: Node number set to 2886997007
[ 1440.392045][   T28] kauditd_printk_skb: 71 callbacks suppressed
[ 1440.392061][   T28] audit: type=1326 audit(5002666.612:14500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.426785][   T28] audit: type=1326 audit(5002666.633:14501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.455453][   T28] audit: type=1326 audit(5002666.633:14502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.490347][   T28] audit: type=1326 audit(5002666.633:14503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.519339][   T28] audit: type=1326 audit(5002666.633:14504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.542735][   T28] audit: type=1326 audit(5002666.633:14505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.572938][   T28] audit: type=1326 audit(5002666.633:14506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.598888][   T28] audit: type=1326 audit(5002666.633:14507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.623164][   T28] audit: type=1326 audit(5002666.633:14508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.662271][   T28] audit: type=1326 audit(5002666.633:14509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22991 comm="syz.1.5180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f33e9b8eec9 code=0x7ffc0000
[ 1440.689427][T21177] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1440.820215][T22998] netlink: 176 bytes leftover after parsing attributes in process `syz.3.5183'.
[ 1442.374075][T23026] netlink: 176 bytes leftover after parsing attributes in process `syz.0.5192'.
[ 1442.673605][T21177] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1443.093020][T23038] netlink: 'syz.1.5197': attribute type 39 has an invalid length.
[ 1443.517549][T23046] netlink: 176 bytes leftover after parsing attributes in process `syz.0.5201'.
[ 1443.712210][T23056] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5206'.
[ 1443.876138][T12149] IPVS: starting estimator thread 0...
[ 1443.984569][T23062] IPVS: using max 16 ests per chain, 38400 per kthread
[ 1444.345475][T21177] Bluetooth: hci5: command 0x1003 tx timeout
[ 1444.346221][   T50] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1444.564745][T23073] netlink: 176 bytes leftover after parsing attributes in process `syz.1.5211'.
[ 1444.832731][   T12] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1445.187376][ T5789] Bluetooth: hci6: Malformed Event: 0x02
[ 1445.187506][ T1302] Bluetooth: hci6: Frame reassembly failed (-84)
[ 1445.279727][T23091] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5219'.
[ 1445.289094][T23091] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5219'.
[ 1445.302633][T23091] syz_tun: entered promiscuous mode
[ 1445.309758][T23091] syz_tun: left promiscuous mode
[ 1445.465084][T23095] netlink: 176 bytes leftover after parsing attributes in process `syz.4.5221'.
[ 1445.527457][   T28] kauditd_printk_skb: 117 callbacks suppressed
[ 1445.527474][   T28] audit: type=1326 audit(5002672.009:14627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.558973][   T28] audit: type=1326 audit(5002672.009:14628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.582338][   T28] audit: type=1326 audit(5002672.009:14629): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.604905][   T28] audit: type=1326 audit(5002672.009:14630): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.627348][   T28] audit: type=1326 audit(5002672.009:14631): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.652302][   T28] audit: type=1326 audit(5002672.009:14632): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.675340][   T28] audit: type=1326 audit(5002672.009:14633): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.697832][   T28] audit: type=1326 audit(5002672.009:14634): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.720217][   T28] audit: type=1326 audit(5002672.009:14635): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1445.743584][   T28] audit: type=1326 audit(5002672.009:14636): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23096 comm="syz.4.5222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd1def8eec9 code=0x7ffc0000
[ 1446.783385][   T50] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1446.792902][   T50] Bluetooth: hci5: command 0x1003 tx timeout
[ 1446.794318][T21177] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1447.141891][T22976] Bluetooth: hci6: Opcode 0x1003 failed: -110
[ 1447.145493][T21177] Bluetooth: hci6: command 0x1003 tx timeout
[ 1447.539200][T23119] netlink: 176 bytes leftover after parsing attributes in process `syz.4.5230'.
[ 1448.328514][T23130] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5233'.
[ 1448.356444][T23130] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5233'.
[ 1448.550088][T20987] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1448.558572][T23130] wireguard1: entered promiscuous mode
[ 1448.577632][T23130] wireguard1: entered allmulticast mode
[ 1448.591050][T23135] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1449.079431][T23140] loop1: detected capacity change from 0 to 1024
[ 1449.086647][T23140] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1449.127009][T23140] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1449.141531][T23140] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1449.150348][T23140] System zones: 0-1, 3-36
[ 1449.173734][T23140] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1449.227404][T23140] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2797: inode #2: comm syz.1.5237: corrupted in-inode xattr: bad e_name length
[ 1449.261512][T23141] EXT4-fs error (device loop1): ext4_xattr_ibody_get:653: inode #2: comm syz.1.5237: corrupted in-inode xattr: bad e_name length
[ 1449.386183][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1450.526557][T22976] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1450.530011][   T50] Bluetooth: hci1: command 0x1003 tx timeout
[ 1450.782468][   T28] kauditd_printk_skb: 177 callbacks suppressed
[ 1450.782485][   T28] audit: type=1326 audit(5002677.522:14814): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1450.836595][   T28] audit: type=1326 audit(5002677.522:14815): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1450.864762][   T28] audit: type=1326 audit(5002677.532:14816): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1450.915051][   T28] audit: type=1326 audit(5002677.532:14817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1450.962757][   T28] audit: type=1326 audit(5002677.532:14818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1451.002898][   T28] audit: type=1326 audit(5002677.532:14819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1451.044385][   T28] audit: type=1326 audit(5002677.532:14820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1451.076041][   T28] audit: type=1326 audit(5002677.532:14821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1451.108143][   T28] audit: type=1326 audit(5002677.532:14822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1451.131032][   T28] audit: type=1326 audit(5002677.532:14823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23162 comm="syz.0.5244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1451.243724][T23177] syz.3.5249[23177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1451.243858][T23177] syz.3.5249[23177] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1451.309603][T23179] netlink: 176 bytes leftover after parsing attributes in process `syz.0.5251'.
[ 1451.583727][T22976] Bluetooth: hci5: command 0x1003 tx timeout
[ 1451.583768][T21177] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1452.528877][T23203] netlink: 176 bytes leftover after parsing attributes in process `syz.0.5260'.
[ 1452.626846][T23205] loop1: detected capacity change from 0 to 764
[ 1454.370702][T23239] UBIFS error (pid: 23239): cannot open "c:::", error -22
[ 1454.709007][T22976] Bluetooth: hci1: command 0x1003 tx timeout
[ 1454.736451][T21177] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1456.481464][T23264] pimreg: entered allmulticast mode
[ 1456.525190][T23264] pimreg: left allmulticast mode
[ 1456.609027][T23270] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5283'.
[ 1458.462091][T23295] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5292'.
[ 1458.726183][T23300] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1458.926051][T23305] syz.1.5296[23305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1458.926194][T23305] syz.1.5296[23305] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[ 1459.123274][T23309] pimreg: entered allmulticast mode
[ 1459.159780][T23313] pimreg: left allmulticast mode
[ 1459.421126][T23320] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5302'.
[ 1459.614556][T23322] hub 9-0:1.0: USB hub found
[ 1459.620790][T23322] hub 9-0:1.0: 1 port detected
[ 1460.473166][   T28] kauditd_printk_skb: 47 callbacks suppressed
[ 1460.473183][   T28] audit: type=1326 audit(5002687.696:14871): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.506615][   T28] audit: type=1326 audit(5002687.696:14872): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.552848][   T28] audit: type=1326 audit(5002687.727:14873): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.582480][   T28] audit: type=1326 audit(5002687.727:14874): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.610817][   T28] audit: type=1326 audit(5002687.727:14875): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.641516][   T28] audit: type=1326 audit(5002687.727:14876): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.676150][   T28] audit: type=1326 audit(5002687.727:14877): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.704999][   T28] audit: type=1326 audit(5002687.727:14878): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.775327][   T28] audit: type=1326 audit(5002687.727:14879): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1460.816386][   T28] audit: type=1326 audit(5002687.727:14880): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23327 comm="syz.3.5305" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1461.544827][ T5789] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1461.557189][ T5789] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1461.567550][ T5789] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1461.585801][ T5789] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1461.598094][ T5789] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1461.605942][ T5789] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1462.168861][T23343] chnl_net:caif_netlink_parms(): no params data found
[ 1462.309637][T20987] tipc: Disabling bearer <udp:syz2>
[ 1462.321700][T20987] tipc: Left network mode
[ 1462.336147][T22976] Bluetooth: hci1: command 0x1003 tx timeout
[ 1462.344213][T21177] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1462.959383][T20987] bond0: (slave ip6gretap1): Releasing active interface
[ 1463.002839][T23343] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1463.021332][T23343] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1463.035407][T23343] bridge_slave_0: entered allmulticast mode
[ 1463.059857][T23343] bridge_slave_0: entered promiscuous mode
[ 1463.083543][T23343] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1463.109943][T23343] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1463.128750][T23343] bridge_slave_1: entered allmulticast mode
[ 1463.152325][T23343] bridge_slave_1: entered promiscuous mode
[ 1463.961594][T21177] Bluetooth: hci5: command tx timeout
[ 1464.341241][T23343] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1464.414707][T23343] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1464.570250][T23343] team0: Port device team_slave_0 added
[ 1464.580226][T23343] team0: Port device team_slave_1 added
[ 1464.728292][T23343] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1464.735927][T23343] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1464.763486][T23343] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1464.784617][T23343] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1464.792034][T23343] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1464.824915][T23343] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1465.040619][T23343] hsr_slave_0: entered promiscuous mode
[ 1465.062544][T23343] hsr_slave_1: entered promiscuous mode
[ 1465.097450][T23343] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1465.128627][T23343] Cannot create hsr debugfs directory
[ 1465.787523][T20987] hsr_slave_0: left promiscuous mode
[ 1465.811390][T20987] hsr_slave_1: left promiscuous mode
[ 1465.830663][T20987] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1465.857383][T20987] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1465.890919][T20987] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1465.913701][T22976] Bluetooth: hci5: command tx timeout
[ 1465.923651][T20987] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1465.957212][T20987] bridge_slave_1: left allmulticast mode
[ 1465.974805][T20987] bridge_slave_1: left promiscuous mode
[ 1465.998667][T20987] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1466.047437][T20987] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1466.154249][T20987] veth1_macvtap: left promiscuous mode
[ 1466.169844][T20987] veth0_macvtap: left promiscuous mode
[ 1466.192567][T20987] veth1_vlan: left promiscuous mode
[ 1466.219793][T20987] veth0_vlan: left promiscuous mode
[ 1466.764707][T20987] bond0 (unregistering): Released all slaves
[ 1467.978979][T22976] Bluetooth: hci5: command tx timeout
[ 1468.703083][T20987] team0 (unregistering): Port device team_slave_1 removed
[ 1468.774429][T20987] team0 (unregistering): Port device team_slave_0 removed
[ 1468.839276][T20987] .` (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1468.908663][T20987] .` (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1469.615109][T20987] .` (unregistering): Released all slaves
[ 1469.809908][T23420] netlink: 'syz.3.5321': attribute type 10 has an invalid length.
[ 1469.832251][T23420] team0: Port device dummy0 added
[ 1469.947634][T23421] netlink: 'syz.3.5321': attribute type 10 has an invalid length.
[ 1469.956602][T22976] Bluetooth: hci5: command tx timeout
[ 1470.008617][T23421] team0: Port device dummy0 removed
[ 1470.019622][T23421] dummy0: entered promiscuous mode
[ 1470.027224][T23421] $Hÿ: (slave dummy0): Enslaving as an active interface with an up link
[ 1470.740576][T20987] IPVS: stop unused estimator thread 0...
[ 1471.104330][T23445] random: crng reseeded on system resumption
[ 1471.533847][T23343] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1471.560723][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1471.567245][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1471.579177][T23343] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1471.651503][T23343] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1471.700958][T23343] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1472.141361][T23464] netlink: 'syz.1.5329': attribute type 39 has an invalid length.
[ 1472.231459][T23343] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1472.304666][T23343] 8021q: adding VLAN 0 to HW filter on device team0
[ 1472.392892][T23229] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1472.400298][T23229] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1472.486864][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1472.494166][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1473.350741][T23343] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1473.730222][T23496] random: crng reseeded on system resumption
[ 1474.178203][T23507] netlink: 44 bytes leftover after parsing attributes in process `syz.1.5338'.
[ 1474.203338][T23507] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5338'.
[ 1474.236846][T23343] veth0_vlan: entered promiscuous mode
[ 1474.272330][T23343] veth1_vlan: entered promiscuous mode
[ 1474.407369][T23343] veth0_macvtap: entered promiscuous mode
[ 1474.433526][T23343] veth1_macvtap: entered promiscuous mode
[ 1474.522519][T23343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1474.542956][T23343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1474.566299][T23343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1474.590182][T23343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1474.611668][T23343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1474.633717][T23343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1474.663092][T23343] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1474.708867][T23343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1474.750302][T23343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1474.783736][T23343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1474.795352][T23343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1474.805778][T23343] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1474.816990][T23343] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1474.829645][T23343] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1474.866019][T23343] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1474.895160][T23343] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1474.927832][T23343] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1474.971781][T23343] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1475.724552][T20987] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1475.782122][T20987] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1475.916852][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1475.942110][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1476.183679][T23541] netlink: 44 bytes leftover after parsing attributes in process `syz.3.5348'.
[ 1476.223610][T23541] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5348'.
[ 1476.372119][   T28] kauditd_printk_skb: 71 callbacks suppressed
[ 1476.372136][   T28] audit: type=1326 audit(5002704.390:14952): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1476.455453][   T28] audit: type=1326 audit(5002704.431:14953): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1476.543209][   T28] audit: type=1326 audit(5002704.431:14954): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1476.613619][   T28] audit: type=1326 audit(5002704.431:14955): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1476.688280][   T28] audit: type=1326 audit(5002704.431:14956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1476.740050][   T28] audit: type=1326 audit(5002704.431:14957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1476.820149][   T28] audit: type=1326 audit(5002704.431:14958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1476.854642][T23555] random: crng reseeded on system resumption
[ 1476.937519][   T28] audit: type=1326 audit(5002704.431:14959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1477.004890][   T28] audit: type=1326 audit(5002704.431:14960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1477.084821][   T28] audit: type=1326 audit(5002704.431:14961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.0.5349" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1479.146398][T23590] netlink: 44 bytes leftover after parsing attributes in process `syz.4.5358'.
[ 1479.169622][T23590] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5358'.
[ 1479.383079][T23594] overlayfs: maximum fs stacking depth exceeded
[ 1480.814688][T23612] random: crng reseeded on system resumption
[ 1481.184077][T23626] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5368'.
[ 1481.215311][T23626] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5368'.
[ 1481.224846][T23626] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5368'.
[ 1482.310521][   T28] kauditd_printk_skb: 26 callbacks suppressed
[ 1482.310537][   T28] audit: type=1326 audit(5002710.626:14988): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.395683][   T28] audit: type=1326 audit(5002710.626:14989): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.455685][   T28] audit: type=1326 audit(5002710.657:14990): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.538191][   T28] audit: type=1326 audit(5002710.657:14991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.634395][   T28] audit: type=1326 audit(5002710.657:14992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.690481][   T28] audit: type=1326 audit(5002710.657:14993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.769749][   T28] audit: type=1326 audit(5002710.657:14994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.842857][   T28] audit: type=1326 audit(5002710.657:14995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.884838][   T28] audit: type=1326 audit(5002710.657:14996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.954665][   T28] audit: type=1326 audit(5002710.657:14997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23654 comm="syz.4.5376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1482.980870][T23651] loop1: detected capacity change from 0 to 32768
[ 1483.220057][T23660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5378'.
[ 1483.243684][T23660] netlink: 12 bytes leftover after parsing attributes in process `syz.0.5378'.
[ 1483.268431][T23662] random: crng reseeded on system resumption
[ 1483.301146][T23660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5378'.
[ 1483.496732][T23666] loop1: detected capacity change from 0 to 256
[ 1483.576024][T23666] FAT-fs (loop1): Directory bread(block 64) failed
[ 1483.595823][T23666] FAT-fs (loop1): Directory bread(block 65) failed
[ 1483.602537][T23666] FAT-fs (loop1): Directory bread(block 66) failed
[ 1483.628708][T23666] FAT-fs (loop1): Directory bread(block 67) failed
[ 1483.655123][T23666] FAT-fs (loop1): Directory bread(block 68) failed
[ 1483.661744][T23666] FAT-fs (loop1): Directory bread(block 69) failed
[ 1483.695378][T23666] FAT-fs (loop1): Directory bread(block 70) failed
[ 1483.718618][T23666] FAT-fs (loop1): Directory bread(block 71) failed
[ 1483.737876][T23666] FAT-fs (loop1): Directory bread(block 72) failed
[ 1483.763942][T23666] FAT-fs (loop1): Directory bread(block 73) failed
[ 1484.121228][T23676] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5383'.
[ 1484.130645][T23676] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5383'.
[ 1484.282119][T23676] wireguard0: entered promiscuous mode
[ 1484.288351][T23676] wireguard0: entered allmulticast mode
[ 1485.019252][T23685] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5389'.
[ 1485.028515][T23685] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5389'.
[ 1485.040991][T23685] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5389'.
[ 1485.217094][T23693] random: crng reseeded on system resumption
[ 1485.743863][T23689] loop1: detected capacity change from 0 to 32768
[ 1486.167585][T23713] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5396'.
[ 1486.176601][T23713] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5396'.
[ 1486.311469][T23713] wireguard0: entered promiscuous mode
[ 1486.317209][T23713] wireguard0: entered allmulticast mode
[ 1486.954015][T23718] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5398'.
[ 1486.976763][T23718] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5398'.
[ 1487.437735][T23730] random: crng reseeded on system resumption
[ 1488.770439][T23731] loop1: detected capacity change from 0 to 40427
[ 1488.855538][T23731] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1488.935090][T23750] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5412'.
[ 1488.968279][T23731] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1489.155552][T21867] syz-executor: attempt to access beyond end of device
[ 1489.155552][T21867] loop1: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[ 1489.199342][T21867] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1489.256477][T21867] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1489.288604][T23763] random: crng reseeded on system resumption
[ 1489.920634][T23771] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5423'.
[ 1490.260062][T23775] loop1: detected capacity change from 0 to 1024
[ 1490.311695][T23775] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1490.362666][T23775] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1490.413708][T23775] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1490.453703][T23775] System zones: 0-1, 3-36
[ 1490.487065][T23775] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1490.609772][T23775] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2797: inode #2: comm syz.1.5417: corrupted in-inode xattr: bad e_name length
[ 1490.666220][T23778] EXT4-fs error (device loop1): ext4_xattr_ibody_get:653: inode #2: comm syz.1.5417: corrupted in-inode xattr: bad e_name length
[ 1490.742194][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1491.724843][T23797] random: crng reseeded on system resumption
[ 1492.124623][T23801] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5432'.
[ 1492.588162][T21177] Bluetooth: hci1: sending frame failed (-49)
[ 1492.597691][T22976] Bluetooth: hci1: Opcode 0x1003 failed: -49
[ 1493.063103][T23821] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5439'.
[ 1493.072270][T23821] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5439'.
[ 1493.248257][T23821] wireguard1: entered promiscuous mode
[ 1493.254004][T23821] wireguard1: entered allmulticast mode
[ 1493.901300][T23825] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5441'.
[ 1494.423038][T23831] random: crng reseeded on system resumption
[ 1495.133637][T23229] Bluetooth: hci1: Frame reassembly failed (-84)
[ 1495.337132][T23835] loop1: detected capacity change from 0 to 32768
[ 1495.390362][T23835] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.5445 (23835)
[ 1495.490277][T23835] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1495.502674][T23835] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 1495.516126][T23835] BTRFS info (device loop1): enabling auto defrag
[ 1495.523850][T23835] BTRFS info (device loop1): use no compression
[ 1495.533878][T23835] BTRFS info (device loop1): max_inline at 4096
[ 1495.541651][T23835] BTRFS info (device loop1): using free space tree
[ 1495.708566][T23835] BTRFS info (device loop1): enabling ssd optimizations
[ 1495.744219][T23835] BTRFS info (device loop1): auto enabling async discard
[ 1495.967434][   T28] kauditd_printk_skb: 9 callbacks suppressed
[ 1495.967449][   T28] audit: type=1800 audit(5002724.957:15007): pid=23835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5445" name="file1" dev="loop1" ino=260 res=0 errno=0
[ 1496.113637][T23862] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5450'.
[ 1496.821078][T21867] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1497.077955][T21177] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1497.907592][T23878] random: crng reseeded on system resumption
[ 1497.915565][ T5789] Bluetooth: hci3: command 0x0406 tx timeout
[ 1498.196392][ T1302] hsr_slave_0: left promiscuous mode
[ 1498.213195][ T1302] hsr_slave_1: left promiscuous mode
[ 1498.280814][ T1302] veth1_macvtap: left promiscuous mode
[ 1498.297681][ T1302] veth0_macvtap: left promiscuous mode
[ 1498.316054][ T1302] veth1_vlan: left promiscuous mode
[ 1498.330878][ T1302] veth0_vlan: left promiscuous mode
[ 1498.769947][T23888] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5459'.
[ 1499.547680][T23889] loop1: detected capacity change from 0 to 32768
[ 1499.562710][T23889] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz.1.5461 (23889)
[ 1499.629243][T23889] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1499.645155][T23889] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[ 1499.685092][T23889] BTRFS info (device loop1): using free space tree
[ 1499.860468][T23889] BTRFS info (device loop1): enabling ssd optimizations
[ 1499.873584][T23889] BTRFS info (device loop1): auto enabling async discard
[ 1500.284214][T21867] BTRFS info (device loop1): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[ 1500.902084][ T5789] Bluetooth: hci1: command 0x1003 tx timeout
[ 1500.909729][T22976] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1501.069606][T23924] overlayfs: failed to resolve './file1': -2
[ 1504.801543][T23969] loop1: detected capacity change from 0 to 4096
[ 1504.870280][ T1302] bond0 (unregistering): Released all slaves
[ 1505.024856][T23956] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5479'.
[ 1505.035708][T23956] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5479'.
[ 1505.045563][T23956] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1505.167968][ T5789] Bluetooth: hci1: command 0x1003 tx timeout
[ 1505.198384][T22976] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1505.246877][   T28] audit: type=1804 audit(5002734.689:15008): pid=23969 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.5485" name=2F6E6577726F6F742F3137372F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F66696C6531 dev="loop1" ino=33 res=1 errno=0
[ 1505.874139][ T1302] IPVS: stop unused estimator thread 0...
[ 1506.711628][T23998] loop1: detected capacity change from 0 to 32768
[ 1506.782265][T23998] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1506.920260][T23998] XFS (loop1): Ending clean mount
[ 1507.448256][T21867] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1507.684157][T21177] Bluetooth: hci0: command 0x0406 tx timeout
[ 1508.122655][T22976] Bluetooth: hci1: Opcode 0x1003 failed: -110
[ 1508.369608][T24031] loop1: detected capacity change from 0 to 4096
[ 1508.917774][T24035] loop1: detected capacity change from 0 to 256
[ 1509.610334][T24045] loop1: detected capacity change from 0 to 1024
[ 1509.628626][T24045] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1509.672122][T24045] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1509.719818][T24045] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[ 1509.753239][T24045] System zones: 0-1, 3-36
[ 1509.772967][T24045] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1509.949355][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1510.485156][T24059] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5517'.
[ 1510.495348][T24059] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5517'.
[ 1510.545534][T24059] wireguard1: entered promiscuous mode
[ 1510.551685][T24059] wireguard1: entered allmulticast mode
[ 1512.457443][T24086] UBIFS error (pid: 24086): cannot open "c:::", error -22
[ 1512.705698][T24088] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5531'.
[ 1512.722083][T24088] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5531'.
[ 1513.102739][T24088] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1513.822550][T24075] loop1: detected capacity change from 0 to 32768
[ 1513.930199][T24075] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1514.245552][T24075] XFS (loop1): Ending clean mount
[ 1514.316576][T24075] XFS (loop1): Quotacheck needed: Please wait.
[ 1514.542860][T24075] XFS (loop1): Quotacheck: Done.
[ 1514.679556][T21867] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1515.081524][T24132] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5543'.
[ 1515.119329][T24132] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5543'.
[ 1515.164667][T24132] wireguard1: entered promiscuous mode
[ 1515.170347][T24132] wireguard1: entered allmulticast mode
[ 1516.297841][T24145] overlayfs: failed to resolve './file0': -2
[ 1516.658726][T24161] loop1: detected capacity change from 0 to 256
[ 1516.713093][T24161] FAT-fs (loop1): Directory bread(block 64) failed
[ 1516.720539][T24161] FAT-fs (loop1): Directory bread(block 65) failed
[ 1516.737536][T24161] FAT-fs (loop1): Directory bread(block 66) failed
[ 1516.746958][T24161] FAT-fs (loop1): Directory bread(block 67) failed
[ 1516.759486][T24161] FAT-fs (loop1): Directory bread(block 68) failed
[ 1516.769303][T24161] FAT-fs (loop1): Directory bread(block 69) failed
[ 1516.791337][T24161] FAT-fs (loop1): Directory bread(block 70) failed
[ 1516.808123][T24161] FAT-fs (loop1): Directory bread(block 71) failed
[ 1516.833009][T24161] FAT-fs (loop1): Directory bread(block 72) failed
[ 1516.846677][T24161] FAT-fs (loop1): Directory bread(block 73) failed
[ 1517.522498][T24173] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5563'.
[ 1517.549650][T24173] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5563'.
[ 1517.646150][T24173] wireguard2: entered promiscuous mode
[ 1517.679755][T24173] wireguard2: entered allmulticast mode
[ 1517.897521][T24184] loop1: detected capacity change from 0 to 64
[ 1517.984444][T24186] UBIFS error (pid: 24186): cannot open "c:::", error -22
[ 1518.915527][T24193] loop1: detected capacity change from 0 to 1024
[ 1518.941047][T24193] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1518.960882][T24193] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1519.001292][T24193] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 1519.019494][T24193] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1519.026645][T24193] EXT4-fs error (device loop1): ext4_free_blocks:6676: comm syz.1.5572: Freeing blocks not in datazone - block = 0, count = 4096
[ 1519.049832][T24193] EXT4-fs (loop1): Remounting filesystem read-only
[ 1519.056721][T24193] EXT4-fs (loop1): 1 orphan inode deleted
[ 1519.063870][T24193] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1519.285160][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1519.776444][T24213] random: crng reseeded on system resumption
[ 1520.196447][T24209] loop1: detected capacity change from 0 to 32768
[ 1520.219187][T24209] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop1 scanned by syz.1.5578 (24209)
[ 1520.262235][T24209] BTRFS info (device loop1): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[ 1520.288041][T24209] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[ 1520.310937][T24209] BTRFS info (device loop1): using free space tree
[ 1520.428560][T24209] BTRFS info (device loop1): enabling ssd optimizations
[ 1520.470175][T24209] BTRFS info (device loop1): auto enabling async discard
[ 1520.779443][   T28] audit: type=1800 audit(5002751.014:15009): pid=24209 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5578" name="file1" dev="loop1" ino=260 res=0 errno=0
[ 1521.005172][T21867] BTRFS info (device loop1): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6
[ 1521.708777][T24257] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5589'.
[ 1521.752746][T24257] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5589'.
[ 1521.766824][T24259] random: crng reseeded on system resumption
[ 1521.885811][T24257] wireguard2: entered promiscuous mode
[ 1521.926237][T24257] wireguard2: entered allmulticast mode
[ 1522.645599][T24274] loop1: detected capacity change from 0 to 1024
[ 1522.842894][T24274] hfsplus: bad catalog entry type
[ 1522.921173][   T12] hfsplus: b-tree write err: -5, ino 4
[ 1523.216660][T24287] random: crng reseeded on system resumption
[ 1523.993315][T24300] loop1: detected capacity change from 0 to 128
[ 1524.029804][T24300] omfs: sysblock number (f784317bf884317b) is out of range
[ 1524.497424][T24309] random: crng reseeded on system resumption
[ 1524.532322][T24312] pimreg: entered allmulticast mode
[ 1524.567540][T24312] pimreg: left allmulticast mode
[ 1524.761976][T24315] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5613'.
[ 1524.771328][T24315] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5613'.
[ 1524.882955][T24315] wireguard3: entered promiscuous mode
[ 1524.888754][T24315] wireguard3: entered allmulticast mode
[ 1525.985440][T24338] pimreg: entered allmulticast mode
[ 1526.020967][T24338] pimreg: left allmulticast mode
[ 1526.080291][T24328] loop1: detected capacity change from 0 to 32768
[ 1526.110789][T24328] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz.1.5622 (24328)
[ 1526.158290][T24328] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1526.188949][T24328] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1526.234317][T24328] BTRFS info (device loop1): using free space tree
[ 1526.341129][T24357] random: crng reseeded on system resumption
[ 1526.397410][T24328] BTRFS info (device loop1): enabling ssd optimizations
[ 1526.410656][T24328] BTRFS info (device loop1): auto enabling async discard
[ 1526.666502][T24328] BTRFS info (device loop1): balance: start -susage=8,drange=7..107,limit=1..0
[ 1526.697224][T24328] BTRFS info (device loop1): balance: ended with status: 0
[ 1526.809059][T21867] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1528.461470][T24389] random: crng reseeded on system resumption
[ 1529.403141][T24391] loop1: detected capacity change from 0 to 40427
[ 1529.452791][T24391] F2FS-fs (loop1): heap/no_heap options were deprecated
[ 1529.470732][T24391] F2FS-fs (loop1): build fault injection attr: rate: 19, type: 0x7ffff
[ 1529.738541][T24400] overlayfs: failed to resolve './file1': -2
[ 1530.087831][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1530.094288][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1530.467214][T24415] UBIFS error (pid: 24415): cannot open "c:::", error -22
[ 1531.138802][T24417] random: crng reseeded on system resumption
[ 1531.678319][T24423] overlayfs: failed to resolve './file1': -2
[ 1532.842974][T24448] UBIFS error (pid: 24448): cannot open "c:::", error -22
[ 1534.116757][T24455] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5659'.
[ 1534.132945][T24455] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5659'.
[ 1534.270867][T24455] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1534.886698][T24458] overlayfs: failed to resolve './file1': -2
[ 1535.064814][T24464] loop1: detected capacity change from 0 to 2048
[ 1535.151467][T24464] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1535.227327][T24464] EXT4-fs error (device loop1): ext4_ext_precache:645: inode #2: comm syz.1.5671: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1535.431803][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1536.229212][T24482] UBIFS error (pid: 24482): cannot open "c:::", error -22
[ 1537.320008][T24496] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5679'.
[ 1537.340651][T24496] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5679'.
[ 1537.390432][T24496] wireguard0: entered promiscuous mode
[ 1537.402467][T24496] wireguard0: entered allmulticast mode
[ 1538.336594][T24498] loop1: detected capacity change from 0 to 32768
[ 1538.398629][T24498] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1538.594095][T24498] XFS (loop1): Ending clean mount
[ 1538.708829][T24498] XFS (loop1): Quotacheck needed: Please wait.
[ 1539.485638][T24498] XFS (loop1): Quotacheck: Done.
[ 1539.719040][T21867] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1540.202373][T24537] loop1: detected capacity change from 0 to 8
[ 1540.242994][T24537] MTD: Attempt to mount non-MTD device "/dev/loop1"
[ 1540.284135][T23424] udevd[23424]: incorrect cramfs checksum on /dev/loop1
[ 1540.335794][T23424] udevd[23424]: incorrect cramfs checksum on /dev/loop1
[ 1540.884733][T24549] loop1: detected capacity change from 0 to 256
[ 1540.964321][T24549] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x205ab87c, utbl_chksum : 0xe619d30d)
[ 1541.222219][T24552] UBIFS error (pid: 24552): cannot open "c:::", error -22
[ 1542.147152][T24558] fuse: Bad value for 'fd'
[ 1542.973503][T24562] loop1: detected capacity change from 0 to 32768
[ 1542.992790][T24562] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.5706 (24562)
[ 1543.119521][T24562] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1543.156330][T24562] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 1543.184575][T24562] BTRFS info (device loop1): using free space tree
[ 1543.588539][T24596] UBIFS error (pid: 24596): cannot open "c:::", error -22
[ 1543.777346][T24562] BTRFS info (device loop1): enabling ssd optimizations
[ 1543.922983][T24562] BTRFS info (device loop1): auto enabling async discard
[ 1544.579357][T10266] BTRFS info (device loop1): qgroup scan completed (inconsistency flag cleared)
[ 1544.942412][T21867] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1545.942668][T24628] UBIFS error (pid: 24628): cannot open "c:::", error -22
[ 1548.561113][T24650] UBIFS error (pid: 24650): cannot open "c:::", error -22
[ 1550.030203][T24666] overlayfs: failed to resolve './file0': -2
[ 1550.962131][T24691] loop1: detected capacity change from 0 to 128
[ 1553.737429][T24728] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5767'.
[ 1553.746472][T24728] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5767'.
[ 1553.769225][T24728] wireguard1: entered promiscuous mode
[ 1553.774796][T24728] wireguard1: entered allmulticast mode
[ 1557.041713][T24781] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5787'.
[ 1557.069392][T24781] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5787'.
[ 1557.457596][T24789] pimreg: entered allmulticast mode
[ 1557.520005][T24794] pimreg: left allmulticast mode
[ 1558.468592][T24797] loop1: detected capacity change from 0 to 40427
[ 1558.521102][T24797] F2FS-fs (loop1): build fault injection attr: rate: 25, type: 0x7ffff
[ 1558.539450][T24797] F2FS-fs (loop1): build fault injection attr: rate: 0, type: 0x7698c
[ 1558.568709][T24797] F2FS-fs (loop1): invalid crc value
[ 1558.589422][T24797] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_ra_meta_pages+0x1d6/0x920
[ 1558.608195][T24797] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 1558.697907][T24797] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_page of f2fs_ra_meta_pages+0x644/0x920
[ 1558.802367][T24797] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[ 1558.808847][T24810] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5798'.
[ 1558.854877][T24810] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5798'.
[ 1558.887701][T24797] F2FS-fs (loop1): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0
[ 1558.956410][   T28] audit: type=1800 audit(5002791.087:15010): pid=24797 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5794" name="file1" dev="loop1" ino=11 res=0 errno=0
[ 1558.975699][T24797] F2FS-fs (loop1): inject page get in f2fs_pagecache_get_page of generic_perform_write+0x2fb/0x5b0
[ 1559.039541][T24797] syz.1.5794: attempt to access beyond end of device
[ 1559.039541][T24797] loop1: rw=2049, sector=45096, nr_sectors = 48 limit=40427
[ 1559.094133][T24812] F2FS-fs (loop1): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0
[ 1559.192365][T21867] syz-executor: attempt to access beyond end of device
[ 1559.192365][T21867] loop1: rw=2049, sector=45144, nr_sectors = 16 limit=40427
[ 1559.225309][T21867] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1559.234935][T21867] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[ 1559.724178][T24829] netlink: 28 bytes leftover after parsing attributes in process `syz.0.5807'.
[ 1559.743089][T24829] netlink: 36 bytes leftover after parsing attributes in process `syz.0.5807'.
[ 1560.565754][T24852] loop1: detected capacity change from 0 to 1024
[ 1560.587535][T24852] EXT4-fs: Ignoring removed orlov option
[ 1560.662611][T24852] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1560.974219][T21867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1562.622173][T24884] loop1: detected capacity change from 0 to 32768
[ 1562.642640][T24884] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.5830 (24884)
[ 1562.699348][T24884] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1562.730826][T24884] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[ 1562.743666][T24884] BTRFS info (device loop1): metadata ratio 2
[ 1562.759787][T24884] BTRFS info (device loop1): allowing degraded mounts
[ 1562.766926][T24884] BTRFS info (device loop1): force zlib compression, level 3
[ 1562.787348][T24884] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1562.823884][T24884] BTRFS info (device loop1): use zstd compression, level 3
[ 1562.861582][T24884] BTRFS info (device loop1): force clearing of disk cache
[ 1562.881440][T24884] BTRFS info (device loop1): turning on flush-on-commit
[ 1562.904072][T24884] BTRFS warning (device loop1): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[ 1562.936050][T24884] BTRFS info (device loop1): trying to use backup root at mount time
[ 1562.955856][T24884] BTRFS info (device loop1): using free space tree
[ 1563.142124][T24884] BTRFS info (device loop1): enabling ssd optimizations
[ 1563.189617][T24884] BTRFS info (device loop1): rebuilding free space tree
[ 1563.321879][T24919] pimreg: entered allmulticast mode
[ 1563.341524][T24919] pimreg: left allmulticast mode
[ 1563.678707][T21867] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1564.398290][T24936] UBIFS error (pid: 24936): cannot open "c:::", error -22
[ 1565.829139][T24952] loop1: detected capacity change from 0 to 4096
[ 1567.171592][T24967] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5856'.
[ 1567.180857][T24967] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5856'.
[ 1567.279170][T24967] wireguard2: entered promiscuous mode
[ 1567.284976][T24967] wireguard2: entered allmulticast mode
[ 1567.940448][T24981] loop1: detected capacity change from 0 to 2048
[ 1568.044140][T24981] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1568.186275][   T28] audit: type=1800 audit(5002800.777:15011): pid=24981 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5864" name="file1" dev="loop1" ino=1367 res=0 errno=0
[ 1568.317414][T24981] overlayfs: upper fs needs to support d_type.
[ 1568.367842][T24981] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1568.398487][T24981] overlayfs: failed to set xattr on upper
[ 1568.404321][T24981] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1568.427809][T24981] overlayfs: ...falling back to index=off.
[ 1568.453264][T24981] overlayfs: ...falling back to uuid=null.
[ 1570.146351][T25009] loop1: detected capacity change from 0 to 8192
[ 1570.210594][T25009] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1571.482517][T25034] loop1: detected capacity change from 0 to 256
[ 1571.533466][T25034] exfat: Deprecated parameter 'utf8'
[ 1571.550804][T25034] exfat: Deprecated parameter 'namecase'
[ 1571.631930][T25034] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xc465a08c, utbl_chksum : 0xe619d30d)
[ 1572.358488][ T1298] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1572.544571][ T1298] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1572.806737][ T1298] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1572.979016][ T1298] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1573.528517][ T1298] tipc: Disabling bearer <udp:£>
[ 1573.541765][ T1298] tipc: Left network mode
[ 1573.864216][ T5789] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1573.880649][ T5789] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1573.894336][ T5789] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1573.904213][ T5789] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1573.915926][ T5789] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1573.939881][ T5789] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1575.535321][T25061] chnl_net:caif_netlink_parms(): no params data found
[ 1575.942380][ T5789] Bluetooth: hci1: command tx timeout
[ 1576.122407][ T1298] hsr_slave_0: left promiscuous mode
[ 1576.132557][ T1298] hsr_slave_1: left promiscuous mode
[ 1576.154017][ T1298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1576.228202][T25113] UBIFS error (pid: 25113): cannot open "c:::", error -22
[ 1576.446235][ T1298] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1576.779062][ T1298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1576.811704][ T1298] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1576.853258][ T1298] bridge_slave_1: left allmulticast mode
[ 1576.891931][ T1298] bridge_slave_1: left promiscuous mode
[ 1576.913797][ T1298] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1576.976049][ T1298] bridge_slave_0: left allmulticast mode
[ 1577.003258][ T1298] bridge_slave_0: left promiscuous mode
[ 1577.031823][ T1298] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1577.152363][ T1298] veth1_macvtap: left promiscuous mode
[ 1577.158080][ T1298] veth0_macvtap: left promiscuous mode
[ 1577.181854][ T1298] veth1_vlan: left promiscuous mode
[ 1577.194706][ T1298] veth0_vlan: left promiscuous mode
[ 1577.925860][ T5789] Bluetooth: hci1: command tx timeout
[ 1577.978268][T25127] overlayfs: failed to resolve './file0': -2
[ 1579.256289][ T1298] team0 (unregistering): Port device team_slave_1 removed
[ 1579.360064][ T1298] team0 (unregistering): Port device team_slave_0 removed
[ 1579.654339][ T1298] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1579.733913][ T1298] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1579.904967][ T5789] Bluetooth: hci1: command tx timeout
[ 1580.550187][ T1298] bond0 (unregistering): Released all slaves
[ 1580.717787][T25139] kthread_run failed with err -4
[ 1580.744013][T25143] netlink: 8 bytes leftover after parsing attributes in process `syz.0.5921'.
[ 1580.753255][T25143] netlink: 4 bytes leftover after parsing attributes in process `syz.0.5921'.
[ 1580.763173][T25143] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1580.865840][ T5789] Bluetooth: hci5: command 0x0406 tx timeout
[ 1581.044930][T25061] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1581.052599][T25061] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1581.060374][T25061] bridge_slave_0: entered allmulticast mode
[ 1581.068344][T25061] bridge_slave_0: entered promiscuous mode
[ 1581.087667][T25160] netlink: 112 bytes leftover after parsing attributes in process `syz.3.5927'.
[ 1581.105344][T25061] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1581.114024][T25061] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1581.142170][T25061] bridge_slave_1: entered allmulticast mode
[ 1581.174896][T25061] bridge_slave_1: entered promiscuous mode
[ 1581.230815][T25161] overlayfs: failed to resolve './file0': -2
[ 1581.274048][T25061] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1581.398351][T25061] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1581.604665][T25061] team0: Port device team_slave_0 added
[ 1581.661475][T25061] team0: Port device team_slave_1 added
[ 1582.076039][T22976] Bluetooth: hci1: command tx timeout
[ 1582.149278][T25186] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5933'.
[ 1582.158892][T25186] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5933'.
[ 1582.188237][T25186] wireguard4: entered promiscuous mode
[ 1582.194167][T25186] wireguard4: entered allmulticast mode
[ 1582.201694][T25061] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1582.208957][T25061] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1582.235166][T25061] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1582.249523][T25061] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1582.256710][T25061] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1582.284447][T25061] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1582.474916][T25061] hsr_slave_0: entered promiscuous mode
[ 1582.500262][T25061] hsr_slave_1: entered promiscuous mode
[ 1583.289352][T25061] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1583.328463][T25061] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1583.359365][T25061] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1583.388047][T25061] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1583.659799][T25061] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1583.721787][T25061] 8021q: adding VLAN 0 to HW filter on device team0
[ 1583.763209][T23229] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1583.770505][T23229] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1583.812450][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1583.819707][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1584.660430][T25061] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1585.769703][T25061] veth0_vlan: entered promiscuous mode
[ 1585.823334][T25061] veth1_vlan: entered promiscuous mode
[ 1585.914817][T25061] veth0_macvtap: entered promiscuous mode
[ 1585.949157][T25061] veth1_macvtap: entered promiscuous mode
[ 1586.012975][T25061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1586.039370][T25061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1586.058340][T25061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1586.078923][T25061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1586.125208][T25061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1586.143955][T25061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1586.165403][T25061] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1586.203778][T25061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1586.249513][T25061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1586.277469][T25061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1586.315170][T25061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1586.344038][T25061] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1586.382103][T25061] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1586.412863][T25061] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1586.470136][T25061] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1586.497320][T25061] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1586.515512][T25061] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1586.542141][T25061] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1586.739859][T23229] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1586.772983][T23229] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1586.840493][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1586.875370][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1588.607877][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1588.624516][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1589.060030][T25333] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5965'.
[ 1590.610881][T25339] netlink: 112 bytes leftover after parsing attributes in process `syz.5.5966'.
[ 1592.256125][T25356] random: crng reseeded on system resumption
[ 1593.740097][T25372] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[ 1593.951759][T25378] netlink: 112 bytes leftover after parsing attributes in process `syz.3.5975'.
[ 1595.468421][T25408] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(14)
[ 1595.475134][T25408] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1595.521286][T25408] vhci_hcd vhci_hcd.0: Device attached
[ 1595.539928][T25409] vhci_hcd vhci_hcd.0: pdev(3) rhport(1) sockfd(17)
[ 1595.546622][T25409] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1595.564904][T25408] vhci_hcd vhci_hcd.0: pdev(3) rhport(2) sockfd(16)
[ 1595.571687][T25408] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1595.618368][T25409] vhci_hcd vhci_hcd.0: Device attached
[ 1595.826573][T25408] vhci_hcd vhci_hcd.0: Device attached
[ 1595.854595][ T5919] usb 39-1: new low-speed USB device number 2 using vhci_hcd
[ 1596.586800][T25427] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1596.914778][T25408] vhci_hcd vhci_hcd.0: pdev(3) rhport(4) sockfd(22)
[ 1596.921470][T25408] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1596.950362][T25408] vhci_hcd vhci_hcd.0: Device attached
[ 1596.956558][T25409] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(25)
[ 1596.963224][T25409] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[ 1596.984577][T25409] vhci_hcd vhci_hcd.0: Device attached
[ 1597.061335][T25408] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1597.146453][T25408] vhci_hcd vhci_hcd.0: pdev(3) rhport(6) sockfd(28)
[ 1597.153156][T25408] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 1597.177485][T25408] vhci_hcd vhci_hcd.0: Device attached
[ 1597.378090][T25448] lo speed is unknown, defaulting to 1000
[ 1597.378301][T25448] lo speed is unknown, defaulting to 1000
[ 1597.382179][T25448] lo speed is unknown, defaulting to 1000
[ 1597.428314][T25448] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[ 1597.799489][T25409] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1597.902180][T25448] lo speed is unknown, defaulting to 1000
[ 1597.913834][T25448] lo speed is unknown, defaulting to 1000
[ 1597.931053][T25448] lo speed is unknown, defaulting to 1000
[ 1597.944451][T25448] lo speed is unknown, defaulting to 1000
[ 1598.065944][T25412] vhci_hcd: connection closed
[ 1598.066256][T25429] vhci_hcd: connection closed
[ 1598.096247][   T48] vhci_hcd: stop threads
[ 1598.113698][T25442] vhci_hcd: connection closed
[ 1598.205573][T25411] vhci_hcd: connection reset by peer
[ 1598.218627][   T48] vhci_hcd: release socket
[ 1598.226615][   T48] vhci_hcd: disconnect device
[ 1598.234550][T25417] vhci_hcd: connection closed
[ 1598.249551][T25432] vhci_hcd: connection closed
[ 1598.311072][   T48] vhci_hcd: stop threads
[ 1598.328865][   T48] vhci_hcd: release socket
[ 1598.333387][   T48] vhci_hcd: disconnect device
[ 1598.412072][   T48] vhci_hcd: stop threads
[ 1598.422325][   T48] vhci_hcd: release socket
[ 1598.433848][   T48] vhci_hcd: disconnect device
[ 1598.463438][   T48] vhci_hcd: stop threads
[ 1598.508214][   T48] vhci_hcd: release socket
[ 1598.516082][T25456] lo speed is unknown, defaulting to 1000
[ 1598.538282][   T48] vhci_hcd: disconnect device
[ 1598.568522][   T48] vhci_hcd: stop threads
[ 1598.580163][   T48] vhci_hcd: release socket
[ 1598.590465][   T48] vhci_hcd: disconnect device
[ 1598.599790][   T48] vhci_hcd: stop threads
[ 1598.649670][   T48] vhci_hcd: release socket
[ 1598.662852][   T48] vhci_hcd: disconnect device
[ 1600.901417][T25484] overlayfs: failed to resolve './file0': -2
[ 1601.498705][ T5919] vhci_hcd: vhci_device speed not set
[ 1601.935195][T25501] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5998'.
[ 1601.944940][T25501] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5998'.
[ 1602.175510][T25501] wireguard2: entered promiscuous mode
[ 1602.182341][T25501] wireguard2: entered allmulticast mode
[ 1604.319789][T13442] usb usb40-port1: attempt power cycle
[ 1605.263812][T13442] usb usb40-port1: unable to enumerate USB device
[ 1608.009773][T12149] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 1608.595885][   T28] audit: type=1326 audit(5002843.063:15012): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1608.723663][T12149] usb 5-1: Using ep0 maxpacket: 8
[ 1608.738827][   T28] audit: type=1326 audit(5002843.074:15013): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1608.761649][   T28] audit: type=1326 audit(5002843.095:15014): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1608.774983][T12149] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[ 1608.784023][   T28] audit: type=1326 audit(5002843.126:15015): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1608.815772][   T28] audit: type=1326 audit(5002843.126:15016): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1608.839000][   T28] audit: type=1326 audit(5002843.137:15017): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1608.872525][T12149] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1608.913528][   T28] audit: type=1326 audit(5002843.158:15018): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1608.938960][T12149] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1608.988606][T12149] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1609.013575][T25540] lo speed is unknown, defaulting to 1000
[ 1609.032102][T12149] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1609.052787][   T28] audit: type=1326 audit(5002843.158:15019): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1609.109838][T12149] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1609.147726][T12149] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1609.149773][   T28] audit: type=1326 audit(5002843.168:15020): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1609.275632][   T28] audit: type=1326 audit(5002843.189:15021): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25541 comm="syz.5.6008" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd91558eec9 code=0x7ffc0000
[ 1609.577066][T12149] usb 5-1: usb_control_msg returned -32
[ 1609.603689][T12149] usbtmc 5-1:16.0: can't read capabilities
[ 1609.667443][T25553] fuse: root generation should be zero
[ 1611.545703][T13442] usb 5-1: USB disconnect, device number 2
[ 1612.856750][T25601] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6020'.
[ 1612.865843][T25601] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6020'.
[ 1613.042567][T25601] wireguard0: entered promiscuous mode
[ 1613.048868][T25601] wireguard0: entered allmulticast mode
[ 1613.759316][T25606] UBIFS error (pid: 25606): cannot open "c:::", error -22
[ 1615.949280][T13436] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[ 1616.171529][T13436] usb 5-1: config index 0 descriptor too short (expected 39, got 27)
[ 1616.185402][T13436] usb 5-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1616.280971][T13436] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1616.385656][T13436] usb 5-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1616.464718][T13436] usb 5-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[ 1616.571285][T13436] usb 5-1: Product: syz
[ 1616.630201][T13436] usb 5-1: Manufacturer: syz
[ 1616.693327][T13436] usb 5-1: SerialNumber: syz
[ 1616.896874][T13436] usb 5-1: config 0 descriptor??
[ 1617.271678][T13436] hub 5-1:0.0: bad descriptor, ignoring hub
[ 1617.336268][T13436] hub: probe of 5-1:0.0 failed with error -5
[ 1617.644852][T13436] usb 5-1: selecting invalid altsetting 0
[ 1620.723673][T13436] usb 5-1: USB disconnect, device number 3
[ 1622.476836][T25680] vhci_hcd: Failed attach request for unsupported USB speed: super-speed-plus
[ 1623.389801][T25681] syz.5.6032 (25681): /proc/25658/oom_adj is deprecated, please use /proc/25658/oom_score_adj instead.
[ 1625.272815][T25710] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6039'.
[ 1626.748923][T22976] Bluetooth: Frame is too long (len 67, expected len 4)
[ 1626.850145][T25744] binder: 25743:25744 ioctl c0306201 200000000300 returned -22
[ 1632.674832][T25832] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6066'.
[ 1637.393435][   T28] kauditd_printk_skb: 7 callbacks suppressed
[ 1637.393452][   T28] audit: type=1326 audit(5002873.445:15029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1637.572179][   T28] audit: type=1326 audit(5002873.476:15030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1637.866283][   T28] audit: type=1326 audit(5002873.476:15031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1638.112863][   T28] audit: type=1326 audit(5002873.476:15032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1638.373694][   T28] audit: type=1326 audit(5002873.476:15033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1638.549878][   T28] audit: type=1326 audit(5002873.476:15034): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1638.573763][   T28] audit: type=1326 audit(5002873.476:15035): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1638.597759][   T28] audit: type=1326 audit(5002873.476:15036): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1638.621590][   T28] audit: type=1326 audit(5002873.476:15037): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1638.667169][   T28] audit: type=1326 audit(5002873.476:15038): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25861 comm="syz.0.6071" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4ad518eec9 code=0x7ffc0000
[ 1640.079657][T25885] netlink: 'syz.4.6077': attribute type 10 has an invalid length.
[ 1640.161058][T25885] bond0: (slave wlan1): Enslaving as an active interface with an up link
[ 1640.229567][T25895] warning: `syz.0.6078' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[ 1640.336244][T25899] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6080'.
[ 1642.029428][T25905] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6081'.
[ 1642.038683][T25905] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6081'.
[ 1642.050170][T25905] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[ 1642.367604][   T28] kauditd_printk_skb: 3 callbacks suppressed
[ 1642.367628][   T28] audit: type=1326 audit(5002878.662:15042): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.440662][T25916] Bluetooth: MGMT ver 1.22
[ 1642.488901][   T28] audit: type=1326 audit(5002878.662:15043): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.521070][   T28] audit: type=1326 audit(5002878.662:15044): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.543514][   T28] audit: type=1326 audit(5002878.662:15045): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.612377][   T28] audit: type=1326 audit(5002878.662:15046): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.696291][   T28] audit: type=1326 audit(5002878.704:15047): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.737438][   T28] audit: type=1326 audit(5002878.704:15048): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.762517][   T28] audit: type=1326 audit(5002878.704:15049): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.785309][   T28] audit: type=1326 audit(5002878.704:15050): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.813571][T25922] lo speed is unknown, defaulting to 1000
[ 1642.815322][   T28] audit: type=1326 audit(5002878.715:15051): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25911 comm="syz.4.6084" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fb9f0b8eec9 code=0x7ffc0000
[ 1642.841694][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1644.035243][T25948] 9pnet_virtio: no channels available for device syz
[ 1645.110554][T25953] netlink: 'syz.4.6096': attribute type 1 has an invalid length.
[ 1645.608989][T25957] lo speed is unknown, defaulting to 1000
[ 1646.428878][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1647.122203][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1647.305308][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1650.193213][T26008] lo speed is unknown, defaulting to 1000
[ 1653.193293][T26032] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6116'.
[ 1653.350301][T26032] bridge_slave_1: left allmulticast mode
[ 1653.356171][T26032] bridge_slave_1: left promiscuous mode
[ 1653.364918][T26032] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1653.611205][T26032] bridge_slave_0: left allmulticast mode
[ 1653.617458][T26032] bridge_slave_0: left promiscuous mode
[ 1653.625341][T26032] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1656.922516][T26049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6123'.
[ 1657.042129][T26050] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6123'.
[ 1658.538409][T22976] Bluetooth: Frame is too long (len 67, expected len 4)
[ 1660.830869][   T28] kauditd_printk_skb: 4 callbacks suppressed
[ 1660.831805][   T28] audit: type=1400 audit(5002898.042:15056): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3AF4F9904E7FDB3635A70D23C73EEAF23A3F503280080CA26230668AD9DCF8B061228F8599D34E45087D21AA56759E1651B3DD467BDEF390C76D pid=26079 comm="syz.3.6130"
[ 1660.929859][T26081] tipc: Started in network mode
[ 1660.945001][T26081] tipc: Node identity 6, cluster identity 4711
[ 1660.963190][T26081] tipc: Node number set to 6
[ 1662.663135][T26099] overlayfs: missing 'lowerdir'
[ 1663.534358][T22976] Bluetooth: hci4: ACL packet for unknown connection handle 200
[ 1663.744470][T26109] UBIFS error (pid: 26109): cannot open "c:::", error -22
[ 1664.500328][T26118] pimreg: entered allmulticast mode
[ 1664.536809][T26118] pimreg: left allmulticast mode
[ 1668.128411][T26144] netlink: 20 bytes leftover after parsing attributes in process `syz.0.6147'.
[ 1669.139428][    C0] Unknown status report in ack skb
[ 1669.301255][T26155] vlan2: entered promiscuous mode
[ 1669.309887][T26155] vlan2: entered allmulticast mode
[ 1669.331269][T26155] hsr_slave_1: entered allmulticast mode
[ 1669.529178][T26159] UBIFS error (pid: 26159): cannot open "c:::", error -22
[ 1669.800325][T26162] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6154'.
[ 1670.138775][T26166] lo speed is unknown, defaulting to 1000
[ 1670.793472][T26182] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6161'.
[ 1671.776018][   T28] audit: type=1326 audit(5002909.527:15057): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1671.858405][   T28] audit: type=1326 audit(5002909.527:15058): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1671.959363][   T28] audit: type=1326 audit(5002909.569:15059): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1671.998032][   T28] audit: type=1326 audit(5002909.579:15060): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1672.033933][   T28] audit: type=1326 audit(5002909.590:15061): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1672.071929][   T28] audit: type=1326 audit(5002909.590:15062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1672.148673][   T28] audit: type=1326 audit(5002909.590:15063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1672.184449][   T28] audit: type=1326 audit(5002909.590:15064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1672.222555][   T28] audit: type=1326 audit(5002909.600:15065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=17 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1672.256927][   T28] audit: type=1326 audit(5002909.600:15066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26186 comm="syz.3.6163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f83eb38eec9 code=0x7ffc0000
[ 1672.895125][T26199] UBIFS error (pid: 26199): cannot open "c:::", error -22
[ 1675.062361][T26222] netlink: 20 bytes leftover after parsing attributes in process `syz.5.6172'.
[ 1676.557505][T26232] UBIFS error (pid: 26232): cannot open "c:::", error -22
[ 1678.040300][T26244] input: Bluetooth HID Boot Protocol Device as /devices/virtual/bluetooth/hci1/hci1:200/input5
[ 1678.161629][T26249] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6173'.
[ 1681.146737][T26260] netlink: 20 bytes leftover after parsing attributes in process `syz.3.6183'.
[ 1681.786484][T26269] UBIFS error (pid: 26269): cannot open "c:::", error -22
[ 1683.927634][T10266] ------------[ cut here ]------------
[ 1683.941570][T10266] WARNING: CPU: 0 PID: 10266 at net/mac80211/chan.c:92 ieee80211_vif_use_reserved_switch+0x10e8/0x28f0
[ 1683.952801][T10266] Modules linked in:
[ 1683.956775][T10266] CPU: 0 PID: 10266 Comm: kworker/u4:14 Not tainted syzkaller #0
[ 1683.964729][T10266] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1683.974936][T10266] Workqueue: phy29 ieee80211_csa_finalize_work
[ 1683.981262][T10266] RIP: 0010:ieee80211_vif_use_reserved_switch+0x10e8/0x28f0
[ 1683.988767][T10266] Code: 48 89 df e8 fa b2 e9 f7 e9 dc fc ff ff e8 60 5b 92 f7 eb 24 e8 59 5b 92 f7 c7 04 24 f4 ff ff ff e9 e4 f5 ff ff e8 48 5b 92 f7 <0f> 0b 0f 0b e9 cf f5 ff ff e8 3a 5b 92 f7 48 8b 7c 24 08 4c 8b 7c
[ 1684.008447][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1684.015075][T10266] RSP: 0018:ffffc9000b4af9c0 EFLAGS: 00010293
[ 1684.017833][    C1] ------------[ cut here ]------------
[ 1684.022188][T10266] RAX: ffffffff89f32b8e RBX: 0000000000000001 RCX: ffff888030ea9e00
[ 1684.026759][    C1] WARNING: CPU: 1 PID: 0 at net/mac80211/tx.c:5031 __ieee80211_beacon_get+0x1233/0x1600
[ 1684.026803][    C1] Modules linked in:
[ 1684.026819][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[ 1684.026841][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1684.026854][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[ 1684.026879][    C1] Code: 24 4c 89 e7 e8 8e 25 d4 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 89 00 97 f7 0f 0b e9 f6 f7 ff ff e8 7d 00 97 f7 <0f> 0b e9 48 fb ff ff e8 71 00 97 f7 48 c7 c7 20 fd 23 8e 4c 89 e6
[ 1684.026896][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[ 1684.026914][    C1] RAX: ffffffff89ee8a53 RBX: ffffffff89ee7856 RCX: ffff88801be53c00
[ 1684.026930][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 1684.026943][    C1] RBP: 0000000000000000 R08: ffff88801be53c00 R09: 0000000000000003
[ 1684.026957][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff8880566ca3c0
[ 1684.026972][    C1] R13: dffffc0000000000 R14: ffff8880566ca8b0 R15: ffff88805dfb5824
[ 1684.026989][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1684.027006][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1684.027021][    C1] CR2: 00007f4ad606cd58 CR3: 0000000024731000 CR4: 00000000003506e0
[ 1684.035328][T10266] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1684.044817][    C1] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083
[ 1684.044837][    C1] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[ 1684.044852][    C1] Call Trace:
[ 1684.044862][    C1]  <IRQ>
[ 1684.044885][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 1684.044923][    C1]  ieee80211_beacon_get_tim+0xb8/0x560
[ 1684.044952][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 1684.044988][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 1684.048969][T10266] RBP: dffffc0000000000 R08: ffff8880566c95af R09: 1ffff1100acd92b5
[ 1684.056039][    C1]  __iterate_interfaces+0x243/0x500
[ 1684.056082][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 1684.056112][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 1684.056143][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 1684.056169][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 1684.056204][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[ 1684.056233][    C1]  __hrtimer_run_queues+0x51e/0xc40
[ 1684.066734][T10266] R10: dffffc0000000000 R11: ffffed100acd92b6 R12: 0000000000000001
[ 1684.072887][    C1]  ? hw_scan_work+0xf40/0xf40
[ 1684.072928][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 1684.072952][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 1684.073004][    C1]  hrtimer_run_softirq+0x187/0x2b0
[ 1684.093487][T10266] R13: ffff8880566ca5d9 R14: ffff88806d41ac70 R15: ffff88806d41ace8
[ 1684.099475][    C1]  handle_softirqs+0x280/0x820
[ 1684.099519][    C1]  ? __irq_exit_rcu+0xc7/0x190
[ 1684.099549][    C1]  ? do_softirq+0x180/0x180
[ 1684.099573][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1684.099601][    C1]  __irq_exit_rcu+0xc7/0x190
[ 1684.099621][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1684.099650][    C1]  irq_exit_rcu+0x9/0x20
[ 1684.107876][T10266] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1684.115747][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1684.115795][    C1]  </IRQ>
[ 1684.115804][    C1]  <TASK>
[ 1684.115814][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1684.115840][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 1684.115872][    C1] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 93 d8 39 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
[ 1684.115890][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[ 1684.115910][    C1] RAX: 35fb8f3599f80a00 RBX: ffffffff8161858b RCX: 35fb8f3599f80a00
[ 1684.115927][    C1] RDX: 0000000000000001 RSI: ffffffff8aaabce0 RDI: ffffffff8afc63c0
[ 1684.115941][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[ 1684.115955][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: ffffffff8e4a8368
[ 1684.115971][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110037ca780
[ 1684.115989][    C1]  ? do_idle+0x1eb/0x510
[ 1684.116025][    C1]  default_idle+0x13/0x20
[ 1684.116045][    C1]  default_idle_call+0x6c/0xa0
[ 1684.116066][    C1]  do_idle+0x1eb/0x510
[ 1684.116096][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1684.116135][    C1]  ? do_idle+0xc/0x510
[ 1684.116162][    C1]  cpu_startup_entry+0x43/0x60
[ 1684.116187][    C1]  start_secondary+0xee/0xf0
[ 1684.116210][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1684.116264][    C1]  </TASK>
[ 1684.116275][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1684.116287][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[ 1684.116305][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 1684.116317][    C1] Call Trace:
[ 1684.116324][    C1]  <IRQ>
[ 1684.116331][    C1]  dump_stack_lvl+0x16c/0x230
[ 1684.116361][    C1]  ? show_regs_print_info+0x20/0x20
[ 1684.116388][    C1]  ? load_image+0x3b0/0x3b0
[ 1684.116424][    C1]  panic+0x2c0/0x710
[ 1684.116449][    C1]  ? bpf_jit_dump+0xd0/0xd0
[ 1684.116477][    C1]  ? secondary_startup_64_no_verify+0x179/0x17b
[ 1684.116511][    C1]  __warn+0x2e0/0x470
[ 1684.116527][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1684.116551][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1684.116573][    C1]  report_bug+0x2be/0x4f0
[ 1684.116599][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1684.116620][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1684.116641][    C1]  ? __ieee80211_beacon_get+0x1235/0x1600
[ 1684.116661][    C1]  handle_bug+0xcf/0x120
[ 1684.116688][    C1]  exc_invalid_op+0x1a/0x50
[ 1684.116715][    C1]  asm_exc_invalid_op+0x1a/0x20
[ 1684.116736][    C1] RIP: 0010:__ieee80211_beacon_get+0x1233/0x1600
[ 1684.116761][    C1] Code: 24 4c 89 e7 e8 8e 25 d4 f7 45 31 f6 4c 8b bc 24 a0 00 00 00 e9 7a fe ff ff e8 89 00 97 f7 0f 0b e9 f6 f7 ff ff e8 7d 00 97 f7 <0f> 0b e9 48 fb ff ff e8 71 00 97 f7 48 c7 c7 20 fd 23 8e 4c 89 e6
[ 1684.116781][    C1] RSP: 0018:ffffc900001f0a18 EFLAGS: 00010246
[ 1684.116803][    C1] RAX: ffffffff89ee8a53 RBX: ffffffff89ee7856 RCX: ffff88801be53c00
[ 1684.116818][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[ 1684.116833][    C1] RBP: 0000000000000000 R08: ffff88801be53c00 R09: 0000000000000003
[ 1684.116848][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff8880566ca3c0
[ 1684.116861][    C1] R13: dffffc0000000000 R14: ffff8880566ca8b0 R15: ffff88805dfb5824
[ 1684.116882][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 1684.116907][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1684.116937][    C1]  ? __ieee80211_beacon_get+0x1233/0x1600
[ 1684.116962][    C1]  ? __ieee80211_beacon_get+0x36/0x1600
[ 1684.116992][    C1]  ieee80211_beacon_get_tim+0xb8/0x560
[ 1684.117021][    C1]  ? ieee80211_beacon_get_template_ema_list+0x90/0x90
[ 1684.117059][    C1]  mac80211_hwsim_beacon_tx+0x3c7/0x780
[ 1684.117096][    C1]  __iterate_interfaces+0x243/0x500
[ 1684.117124][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 1684.117154][    C1]  ? ieee80211_iterate_active_interfaces_atomic+0x2a/0x180
[ 1684.117185][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[ 1684.117213][    C1]  ieee80211_iterate_active_interfaces_atomic+0xdb/0x180
[ 1684.117257][    C1]  mac80211_hwsim_beacon+0xbb/0x1b0
[ 1684.117286][    C1]  __hrtimer_run_queues+0x51e/0xc40
[ 1684.117320][    C1]  ? hw_scan_work+0xf40/0xf40
[ 1684.117355][    C1]  ? hrtimer_interrupt+0x9c0/0x9c0
[ 1684.117378][    C1]  ? ktime_get_update_offsets_now+0x3d2/0x3f0
[ 1684.117417][    C1]  hrtimer_run_softirq+0x187/0x2b0
[ 1684.117446][    C1]  handle_softirqs+0x280/0x820
[ 1684.117474][    C1]  ? __irq_exit_rcu+0xc7/0x190
[ 1684.117502][    C1]  ? do_softirq+0x180/0x180
[ 1684.117530][    C1]  ? irqtime_account_irq+0xb6/0x1c0
[ 1684.117563][    C1]  __irq_exit_rcu+0xc7/0x190
[ 1684.117584][    C1]  ? irq_exit_rcu+0x20/0x20
[ 1684.117617][    C1]  irq_exit_rcu+0x9/0x20
[ 1684.117635][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[ 1684.117670][    C1]  </IRQ>
[ 1684.117676][    C1]  <TASK>
[ 1684.117685][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1684.117708][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 1684.117741][    C1] Code: cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d 93 d8 39 00 f3 0f 1e fa fb f4 <c3> cc cc cc cc cc cc cc cc cc cc cc cc 66 0f 1f 00 55 41 57 41 56
[ 1684.117759][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[ 1684.117777][    C1] RAX: 35fb8f3599f80a00 RBX: ffffffff8161858b RCX: 35fb8f3599f80a00
[ 1684.117792][    C1] RDX: 0000000000000001 RSI: ffffffff8aaabce0 RDI: ffffffff8afc63c0
[ 1684.117808][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[ 1684.117824][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: ffffffff8e4a8368
[ 1684.117841][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110037ca780
[ 1684.117860][    C1]  ? do_idle+0x1eb/0x510
[ 1684.117896][    C1]  default_idle+0x13/0x20
[ 1684.117916][    C1]  default_idle_call+0x6c/0xa0
[ 1684.117937][    C1]  do_idle+0x1eb/0x510
[ 1684.117970][    C1]  ? idle_inject_timer_fn+0x60/0x60
[ 1684.118010][    C1]  ? do_idle+0xc/0x510
[ 1684.118038][    C1]  cpu_startup_entry+0x43/0x60
[ 1684.118063][    C1]  start_secondary+0xee/0xf0
[ 1684.118086][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[ 1684.118134][    C1]  </TASK>
[ 1684.124877][    C1] Kernel Offset: disabled