last executing test programs:

18m29.912575089s ago: executing program 32 (id=58):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x40841, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
socket(0xa, 0x3, 0x3a)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$sndseq(r0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pselect6(0x40, &(0x7f00000000c0), 0x0, &(0x7f0000002840)={0xff}, 0x0, 0x0)

15m19.756859537s ago: executing program 1 (id=916):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000000380)=""/138, 0x0})
r2 = epoll_create1(0x0)
read$eventfd(r1, &(0x7f0000000080), 0x8)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r1, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x0, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x0, 0x0, &(0x7f00000000c0)=""/87, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000001480)={0x0, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x20000)

15m19.533800483s ago: executing program 1 (id=919):
r0 = open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f0000000080)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000040)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
openat$dir(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x0, 0x0)
mknodat$null(r0, &(0x7f0000000040)='./file1/file0\x00', 0x0, 0x103)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
mknodat(r2, &(0x7f0000000180)='./bus\x00', 0x8000, 0x7)

15m19.099847721s ago: executing program 1 (id=920):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000140)='./control\x00', 0x22)
close(r0)
r1 = inotify_init1(0x0)
fcntl$setstatus(r1, 0x4, 0x2800)
r2 = gettid()
fcntl$setown(r0, 0x8, r2)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rt_sigtimedwait(&(0x7f0000000600)={[0xffffffffffff7ffa]}, 0x0, 0x0, 0x8)
inotify_add_watch(r1, &(0x7f0000000080)='./control\x00', 0x42)
rmdir(&(0x7f0000001c00)='./control\x00')

15m18.411332301s ago: executing program 1 (id=923):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000440)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x18d811, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
unshare(0x2a060400)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000100)='mountinfo\x00')
r2 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r2, r1, 0x0, 0x80000000)

15m18.199334254s ago: executing program 1 (id=924):
mkdir(&(0x7f0000000180)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000002040)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x100, 0x1)
mknodat(r0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0)
mknodat(r1, &(0x7f0000000040)='./file1\x00', 0x0, 0xffffffff)
chdir(&(0x7f0000000140)='./bus\x00')
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x40, 0x1)
linkat(r1, &(0x7f0000000100)='./file1\x00', r1, &(0x7f0000000240)='./file0\x00', 0x0)
setxattr$trusted_overlay_opaque(&(0x7f0000000080)='./file0\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)

15m16.880612384s ago: executing program 1 (id=927):
socket$inet6_udp(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_io_uring_setup(0xcd6, &(0x7f0000000000)={0x0, 0x4c0d, 0x200, 0x2, 0x236}, &(0x7f0000000100), &(0x7f0000000140))
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000180)={&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ff8000/0x3000)=nil, 0x2000})

15m15.072204964s ago: executing program 33 (id=927):
socket$inet6_udp(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
r1 = userfaultfd(0x1)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000ffa000/0x3000)=nil, 0x3000}, 0x1})
syz_io_uring_setup(0xcd6, &(0x7f0000000000)={0x0, 0x4c0d, 0x200, 0x2, 0x236}, &(0x7f0000000100), &(0x7f0000000140))
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000180)={&(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ff8000/0x3000)=nil, 0x2000})

14m36.230714334s ago: executing program 6 (id=1075):
sendmsg$IEEE802154_LLSEC_DEL_KEY(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPVS_CMD_SET_INFO(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL802154_CMD_SET_BACKOFF_EXPONENT(r0, &(0x7f0000000800)={0x0, 0x0, &(0x7f00000007c0)={&(0x7f0000000780)={0x14}, 0x14}}, 0x0)
syz_genetlink_get_family_id$nl802154(&(0x7f0000000d80), r0)
sendmsg$IEEE802154_LLSEC_ADD_KEY(r0, &(0x7f0000000d80)={&(0x7f0000000240)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f0000000480)={&(0x7f00000003c0)={0x30, 0x0, 0x2, 0x70bd26, 0x25dfdbff, {}, [@IEEE802154_ATTR_LLSEC_KEY_BYTES={0x14, 0x30, "2928dff22fcf046cc0fde15aedbb816a"}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5, 0x2e, 0x9}]}, 0x30}}, 0x8004)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000fca000)={0x100000001, {{0xa, 0x0, 0x0, @mcast1}}}, 0x88)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f0000000080)=ANY=[@ANYBLOB="01000000000000000a00000000000000ff0100000000000000000000000000010000000000000000000000000000000000e7ffffff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000006ce11bc3008b071000900000000000000000000000000009444000000000000000000000005"], 0x310)
setsockopt$inet6_MCAST_MSFILTER(r1, 0x29, 0x30, &(0x7f00000004c0)={0x1, {{0xa, 0x0, 0x0, @mcast1}}}, 0x90)

14m36.094562894s ago: executing program 6 (id=1077):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(0xffffffffffffffff, 0x84, 0x10, &(0x7f0000000080)=@assoc_value, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
sendmmsg(r3, &(0x7f00000038c0)=[{{0x0, 0x0, 0x0}}], 0x3ffffffffffff06, 0x0)

14m34.174769032s ago: executing program 6 (id=1081):
socket(0x11, 0x800000003, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000580)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000001000000000000000000000071121a000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x13, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

14m32.923699332s ago: executing program 6 (id=1083):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000300), 0x2008000, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, &(0x7f0000000180))

14m30.995913277s ago: executing program 6 (id=1088):
syz_open_dev$loop(&(0x7f0000000640), 0x0, 0x22400)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'lo\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000080)=@newqdisc={0x60, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r4, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0xffff}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x34, 0x2, [@TCA_TBF_PARMS={0x28, 0x1, {{0x4, 0x2, 0x0, 0x0, 0x7, 0x8}, {0x12, 0x3, 0x0, 0x1, 0x8001, 0x400}, 0xa5, 0x4, 0x10000000}}, @TCA_TBF_BURST={0x8, 0x6, 0x8057}]}}]}, 0x60}}, 0x44080)
r5 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000000)={'lo\x00', <r7=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000003c0)=@newqdisc={0x38, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r7, {}, {0xfff2, 0xa}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x4}}]}, 0x38}}, 0x4000)
sendto$inet(r1, &(0x7f0000000300)="ab", 0x34000, 0x41, &(0x7f0000000380)={0x2, 0x4e22, @local}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)=@getqdisc={0x24, 0x26, 0x705, 0x70bd2b, 0x5, {0x0, 0x0, 0x0, 0x0, {0x1, 0xffe0}, {0x10, 0x8}, {0xfff2, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

14m28.788882442s ago: executing program 6 (id=1095):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_CLAIM_PORT(r3, 0x80045518, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)

14m28.33770623s ago: executing program 34 (id=1095):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301)
ioctl$USBDEVFS_CLAIM_PORT(r3, 0x80045518, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xf, 0x0, 0x0)

12m21.308737111s ago: executing program 0 (id=1457):
r0 = socket$xdp(0x2c, 0x3, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000140)={'batadv_slave_1\x00', <r2=>0x0})
r3 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r3, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r3, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r3, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000180)=0x8, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r3, 0x11b, 0x5, &(0x7f0000000340)=0x8000, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r4, 0x8933, &(0x7f0000000200)={'batadv_slave_1\x00', <r5=>0x0})
setsockopt$XDP_TX_RING(r0, 0x11b, 0x3, &(0x7f0000001780)=0x100000, 0x4)
bind$xdp(r3, &(0x7f0000000100)={0x2c, 0x0, r5}, 0x10)
bind$xdp(r0, &(0x7f0000000240)={0x2c, 0x1, r2, 0x0, r3}, 0x10)

12m17.272947813s ago: executing program 0 (id=1465):
openat$vimc1(0xffffffffffffff9c, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000140)=0x1, 0x4)

12m15.911752486s ago: executing program 0 (id=1472):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$loop(0x0, 0x80, 0x100)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206030000000000000000000000000005000100070000000900020073797a300000000014000780080008400000000008001240200000000500050002000000050004000000000010000300686173683a69702c6d6163"], 0x5c}, 0x1, 0x0, 0x0, 0x50}, 0x24048080)

12m13.81135091s ago: executing program 0 (id=1475):
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x20)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000080)='./file0\x00')
pwrite64(r1, &(0x7f0000000280)='+', 0x1, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x0, 0x0)
copy_file_range(r2, 0x0, r0, 0x0, 0x54c2, 0x0)

12m12.899260258s ago: executing program 0 (id=1478):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x2, 0x0)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(0xffffffffffffffff, 0xc0984124, &(0x7f0000000340)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x83824d7bea71e75e})
r2 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
getsockopt$inet_IP_IPSEC_POLICY(r0, 0x0, 0x10, &(0x7f0000000240)={{{@in=@loopback, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r4=>0x0}}, {{@in6=@empty}, 0x0, @in=@empty}}, &(0x7f00000001c0)=0xe8)
quotactl$Q_QUOTAON(0xffffffff80000202, &(0x7f0000000100)=@nullb, r4, &(0x7f0000000400)='./file0\x00')
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x70}, 0x1, 0x0, 0x0, 0x40000}, 0x20040000)
ioctl$sock_inet_SIOCSIFADDR(r0, 0x8916, &(0x7f0000000180)={'batadv_slave_1\x00', {0x2, 0x4e21, @broadcast}})

12m11.628060388s ago: executing program 0 (id=1482):
madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}})

12m11.302861332s ago: executing program 35 (id=1482):
madvise(&(0x7f0000495000/0x400000)=nil, 0x400000, 0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdir(&(0x7f0000000340)='./file0\x00', 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_BMAP(r3, &(0x7f0000000100)={0x18}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}})

12m9.232976206s ago: executing program 5 (id=1491):
connect$can_bcm(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0x2)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
setsockopt$IP_VS_SO_SET_STOPDAEMON(0xffffffffffffffff, 0x0, 0x48c, &(0x7f0000000100)={0x2, 'bridge_slave_1\x00', 0x2}, 0x18)
r1 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
writev(r1, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1)
r2 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
openat$sysctl(0xffffffffffffff9c, 0x0, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)

12m7.885313872s ago: executing program 5 (id=1495):
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
r3 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000140)=@keyring)

12m6.699234115s ago: executing program 5 (id=1496):
ioperm(0x0, 0x5, 0x4000000000000020)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
r1 = syz_open_procfs(0x0, &(0x7f0000000780)='syscall\x00')
r2 = fanotify_init(0x8, 0x0)
fanotify_mark(r2, 0x1, 0x40000011, r1, 0x0)
pread64(r1, &(0x7f0000000180)=""/116, 0x74, 0x3)

12m5.2859736s ago: executing program 5 (id=1501):
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}, {@metacopy_on}]})
chdir(&(0x7f0000000140)='./bus\x00')
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000280)='./file0\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x1000, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000040)='./file0/file0\x00', 0x0, 0x91905a, 0x0)
mount$bind(&(0x7f00000001c0)='./file0/../file0\x00', &(0x7f0000000dc0)='./file0/file0\x00', 0x0, 0x1145d10, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000004480)={0x2020}, 0x2020)

12m4.811514231s ago: executing program 5 (id=1504):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
r0 = openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$RTC_PIE_ON(r0, 0x7005)
r1 = epoll_create(0x10000e9)
ftruncate(0xffffffffffffffff, 0xffff)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x281c2, 0x0)
open(&(0x7f0000000040)='./file1\x00', 0x80, 0x24)
pread64(0xffffffffffffffff, &(0x7f0000001440)=""/126, 0x7e, 0x0)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
r2 = ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, &(0x7f0000000100)={0xffffffffffffffff, 0x0, 0x0, 0x1000})
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, &(0x7f0000000080)={0x2025})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x1, 0x3}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x4, 0x400000000, 0x4, 0x7fffffff}, 0x0, 0x0)

11m57.598903598s ago: executing program 5 (id=1520):
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42000)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xe, &(0x7f0000001300)=ANY=[@ANYBLOB="b7020000f53f6314bfa300000000000024020000fffeff7f7a0300fef0ffffff79a4f0ff00000000b7060000ffffffff2e640500000000007502faff07cd02020404000000247d60b7030000030a00006a0a00fe0000000c8500000026000000b70000000000002995000000000000001da5ad3548ebb63d18db6a1c7e821c9b767ac8308fbcd5c5e4a5ad1065b572c2c9ff215ac60c2ceaea4c0ec908abb6e7325ec1956bd8660bf3664148a2c96752fe2bb328dff1a15750ab9a780001000000000000d4bf20c2bd152d814f01f2cd519e078d4ffab418e4682b2aec5e4a35629e8ef040c50287c37a7f4182f32333b08c6e497687e10a4daea5cac0ceafdbb126eb02a1f5104d16ddb64963d84d91814cd5817e0b8f6f5e6ee7a39e180b5a18ed786b782ab1321ea5e82ae5ba2c42a5e23ea6253d5df768d0cb9f35e4f41a6211e52bb3598e9b5d4f22d8c19f958e8b34de35949a7a48ce18799ee53da177a81ea65e652c1d71b7ee86a75b0100000042127a8f84538a9a311c757f7169f006f3f5c95177fbd0b14b36259e2905ef911785c88a16aae46084d676d8ef8aa6ecc2d32e3f4ee367c5a769c0a606636c9f4a4413c098f4fcc96623b7c373b0ef04d55b846b094bf97e2ef5987b6e09a6a7cab79bffda141f65e7d9ebe3be70c436432b70a80cce69df30d3d67d84ccf3f9db9b690111de2ddc4b153c989ef100bbf76063d3f6ffffb73d70e9c3d7b90aecf48e7565efff2dbbb512218c98442406333c890923a797e00b75481739952fe87fde27ce81893f54ec0ea8e792414f639bc9ce1fea3f6ac0d7025759d4b45576c205c70631e8ad585951950e521f4e210b6494e3c52d927195737945cc03d5668483151710de246420a1b6c55b73876a6ed7fd0d9338923789a1edcd8043fe83919088383268324a25df14010c8ed6b8d43400eaa00ff9bc46e1cfecbdc0e451ac53b409d04544d3a7edd4d447d2fb431e226ae182b8dcc86fe09b404e0b7c723d3b19c3dc382fa91fb0fb8f9f3f13296bb1758b24aad0922091d49e2bc408a5a37deee7a60b903d2d9fe9d451cafcc8dc389671c2d08b6e264150a6b9445b00cee4585af04fa69e0380be0d66649dcf3bf8a906b029faca75ce34c41aec7aa86e596119109ea8b3f7c65c902499227c087301643baab1c95bb22cedd913b22dcaa197ccc34586dc50bd9f4628e3e77a0de32e356521df06f995cb57f97052fc4158250ccecfb67ea8faf509593fadc7eafb613327b052397af1ede94d87590ce90a0a7579766f7ec4fcd3cb0b1a8c531724d5ef6b334803cedaa9cedf16dc3af6e0b67f62a83a256474c97c925d9d447175b535c87dbdeb0dcca5303eed6689ea91e1665c691df736368dde47e6672e93a314c5f60e7b68c2242bd0f0d8c66449d8687dcf2d0f76668b2b9bf8b32b99b7daf34b2d825d192ade90a1162acfe9749d516d014cef5f99126324ea02baea5808c430985749901b09e4902a6f5addc0103756b894418e4591c624a9b206abbfb888d413d923b0d7c9d997d6d8e64787c4d397f57a15b6d5b4212b6cb55b9c207bbe08f483b1bea05f41b9a1d3af087047c568ae6ebfc0bb5ec10b6290dc757a4903a88fb2c035b2349b6d2f0c051b8b7718384eebd5fc19928cea713ff09e179c308fbe9bd64374d96ef2447a2a4af5ca0c39e7ca2e801e57560a55e9cfa095cf3f74398219ad1030a79517a88de7596429a20793e12616aa32b3e720c6521fbe93963e9536d16f3db211fca7dd99c0a0125ff8c18119a6926083f4a2c008a9f2a29e30823bf0ec3639cadaf9be9608358e1e5ab17eea477b1754f78f45468c9568471667f82f5e250b979b9f2bd0d1b6bc03d11811ac6eec9a3ecd9e3c3299ee5eb3c6cac8fbd06514b7ee743ece79c04566d02a08fd5fcabbab3d129c0cced3ce11dafa387a8077927a1ad367c114d0b423e64c6157fac5e4e2168f33541daeff9983d0e488a78bef538f870b84798272b2101e0abf1cd64500b79e01e11d727389653bd80a39d5bbe2e23d2f5ff10047423429981bd9b4ce680e174c266391e3e7689452654e5cd5ada6e025327a1942b5a068f15fa58eaa267d4e0881783dddbdd777f8be0824ffdf6d06c621880dbbe9534f15e8c2e364d3ec67deb6ab9f2a0f03212972dbd38500000008173553a67be48633103809eee0be51d67d7ce230b389607b4c3b18da1c48f3180f2e0d79e54565fdd9a099b5b5ba2761905b88b7cbfc39c35dd153609da3da263438f12769602c2195245ff83e249119d4f6cabfbdef84ada19ef4a67ed66d7043036515d0be5a231f99e71aba5d5ae04676eff3e85f0844c41bbcfde7a931d1ec55c01f703bfd1b97756bfe55a91f6b379f34a018906339771157c66dbd7471d1beec7f029ef552cf5e92a1a0db21b59355763967ce26a577bc514b6d22a09c385c5ba6caf524e1688fc0f20002b35ae7bc8eb5ba51aebdf7d972c3267cedbe77ed70d9c539bc455a6f88b39196c8a224b0acf4d796fea59a07baa34cc270fb096ef330fbebdf872d7d0bc4f9a963355c554abc5cdb91464faabcd09cd9a53f5d1b2ea7e96f428f7cd6735c19c61dc9942d30bf29ef85ed01c2fcd6060aa40eeff971477b4fde48507b7bad95a496540adff7e4a72fd1f94d7c703ab1525c946c54e0da3d7ebfcc8c367d1bfd1aea2e84c3b310aaea5a1627df898c00a9aaf2d88a36afa4c5b1816384310600001c33125ad7f7970beeb256aec06e39fc6c66544e1d1dc5fea4b68a82dc568ca30aea9a1d097f06f11dc362f4bae5ef57c67686a15855cd351bf26f40fb1348cfce79897682228e6d9643530c81bab27bf7b1c4a76a5be180bb830cf06827c3f38a9c9c580c732c30aaceda78b0297de35a922b1375b129655beb31899e26052cc216f832fdb0a0015f93c9cff77f59cda1ec5f3e358848756cebb074266a47e39ae26e80e8c65aaf73c24925458520a9ca98760d1005c9f81846459ae6d5baa4f02807939ddc29c3520f7c58ed9bc5a569c7a1bc33cf4f330a18276ffb4550b9166c3939e8041094bec034aa0ec6638b74fe34f0f1ec6903a1135808d5d8d26c9203c3f87e66c407b7c5c0888d4558dd657cc0213efad68e76fdd7b23e68064fd4b271ed79c50abacdd2871b0c1f8c971df59a5a1901ddf804bed43e391f882d2a45c51cdbba86b2a1b7c0c4923642a731ea4dcbad2b6ebbebe787a8e28e781d75beee924b3b1e390750f316648133922c021f98fd2d5d71a7a3679397ef6cf432837b7e264831ec01c4c3146ba0caac3b13d55945ec00e978a1c1712cd51187936200606c9cd6877b2f72125295c54721f8e15df2ae282a8becb99a726fd92acc92141e1f574b4b0b3c992a61af3372d0d9217776b1a42cd2cee816a70bf1ddd69b590d53e28ba356e74b38e23e50d898e95cdc7cc809e462c884b53f672aab1411ecfd4c91e7a9782fc6763f0efd4bcbaf1fc3a00000000000000000000000000000000000000000000000000000000048e510340087caf22439d5304bd704a6a78a512269a9b1cbd13bea78c807bbc73853ae187cbb768673e9d1bf74a3b0a6c234accd8506adf314f4c5e08174540b69d3c0da660052b43b86baf49e7ac6f09c21598b1e01dc1e1b5a53626b090496dbf7af441e397016c3c094d5c91ffe0a7ceacfd225ed9a6c905f79ad7052747dd6cceef4c310e0e935311118bc6bf0e5ca6c7cca7d5c03be570308da8a40578b4db14961fbccf6e2f2d56e9509c434126515b56d032e20c12e830d1bc64826fc9b318da5911e466878dbb81edeff69363fb75af5cd80536f14d2eaa7764db23acdbd394bbbbccf5e882602897a85bf8523d891080593d831d758deb4f2c7e49c6d6b35d8fd92601c8500febb0c5fe0be294bf6bbbecad444695277a9e3992a354492513b43091d161c7c7cdbbe44e8e83b4cf333238a52f214b278c6485236ea880db2f113f6381187679a4620d6149808b0af024b3b3e6ba99b4b15ca"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x143, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

11m56.468485263s ago: executing program 36 (id=1520):
fcntl$setstatus(0xffffffffffffffff, 0x4, 0x42000)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000440)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xe, 0xe, &(0x7f0000001300)=ANY=[@ANYBLOB="b7020000f53f6314bfa300000000000024020000fffeff7f7a0300fef0ffffff79a4f0ff00000000b7060000ffffffff2e640500000000007502faff07cd02020404000000247d60b7030000030a00006a0a00fe0000000c8500000026000000b70000000000002995000000000000001da5ad3548ebb63d18db6a1c7e821c9b767ac8308fbcd5c5e4a5ad1065b572c2c9ff215ac60c2ceaea4c0ec908abb6e7325ec1956bd8660bf3664148a2c96752fe2bb328dff1a15750ab9a780001000000000000d4bf20c2bd152d814f01f2cd519e078d4ffab418e4682b2aec5e4a35629e8ef040c50287c37a7f4182f32333b08c6e497687e10a4daea5cac0ceafdbb126eb02a1f5104d16ddb64963d84d91814cd5817e0b8f6f5e6ee7a39e180b5a18ed786b782ab1321ea5e82ae5ba2c42a5e23ea6253d5df768d0cb9f35e4f41a6211e52bb3598e9b5d4f22d8c19f958e8b34de35949a7a48ce18799ee53da177a81ea65e652c1d71b7ee86a75b0100000042127a8f84538a9a311c757f7169f006f3f5c95177fbd0b14b36259e2905ef911785c88a16aae46084d676d8ef8aa6ecc2d32e3f4ee367c5a769c0a606636c9f4a4413c098f4fcc96623b7c373b0ef04d55b846b094bf97e2ef5987b6e09a6a7cab79bffda141f65e7d9ebe3be70c436432b70a80cce69df30d3d67d84ccf3f9db9b690111de2ddc4b153c989ef100bbf76063d3f6ffffb73d70e9c3d7b90aecf48e7565efff2dbbb512218c98442406333c890923a797e00b75481739952fe87fde27ce81893f54ec0ea8e792414f639bc9ce1fea3f6ac0d7025759d4b45576c205c70631e8ad585951950e521f4e210b6494e3c52d927195737945cc03d5668483151710de246420a1b6c55b73876a6ed7fd0d9338923789a1edcd8043fe83919088383268324a25df14010c8ed6b8d43400eaa00ff9bc46e1cfecbdc0e451ac53b409d04544d3a7edd4d447d2fb431e226ae182b8dcc86fe09b404e0b7c723d3b19c3dc382fa91fb0fb8f9f3f13296bb1758b24aad0922091d49e2bc408a5a37deee7a60b903d2d9fe9d451cafcc8dc389671c2d08b6e264150a6b9445b00cee4585af04fa69e0380be0d66649dcf3bf8a906b029faca75ce34c41aec7aa86e596119109ea8b3f7c65c902499227c087301643baab1c95bb22cedd913b22dcaa197ccc34586dc50bd9f4628e3e77a0de32e356521df06f995cb57f97052fc4158250ccecfb67ea8faf509593fadc7eafb613327b052397af1ede94d87590ce90a0a7579766f7ec4fcd3cb0b1a8c531724d5ef6b334803cedaa9cedf16dc3af6e0b67f62a83a256474c97c925d9d447175b535c87dbdeb0dcca5303eed6689ea91e1665c691df736368dde47e6672e93a314c5f60e7b68c2242bd0f0d8c66449d8687dcf2d0f76668b2b9bf8b32b99b7daf34b2d825d192ade90a1162acfe9749d516d014cef5f99126324ea02baea5808c430985749901b09e4902a6f5addc0103756b894418e4591c624a9b206abbfb888d413d923b0d7c9d997d6d8e64787c4d397f57a15b6d5b4212b6cb55b9c207bbe08f483b1bea05f41b9a1d3af087047c568ae6ebfc0bb5ec10b6290dc757a4903a88fb2c035b2349b6d2f0c051b8b7718384eebd5fc19928cea713ff09e179c308fbe9bd64374d96ef2447a2a4af5ca0c39e7ca2e801e57560a55e9cfa095cf3f74398219ad1030a79517a88de7596429a20793e12616aa32b3e720c6521fbe93963e9536d16f3db211fca7dd99c0a0125ff8c18119a6926083f4a2c008a9f2a29e30823bf0ec3639cadaf9be9608358e1e5ab17eea477b1754f78f45468c9568471667f82f5e250b979b9f2bd0d1b6bc03d11811ac6eec9a3ecd9e3c3299ee5eb3c6cac8fbd06514b7ee743ece79c04566d02a08fd5fcabbab3d129c0cced3ce11dafa387a8077927a1ad367c114d0b423e64c6157fac5e4e2168f33541daeff9983d0e488a78bef538f870b84798272b2101e0abf1cd64500b79e01e11d727389653bd80a39d5bbe2e23d2f5ff10047423429981bd9b4ce680e174c266391e3e7689452654e5cd5ada6e025327a1942b5a068f15fa58eaa267d4e0881783dddbdd777f8be0824ffdf6d06c621880dbbe9534f15e8c2e364d3ec67deb6ab9f2a0f03212972dbd38500000008173553a67be48633103809eee0be51d67d7ce230b389607b4c3b18da1c48f3180f2e0d79e54565fdd9a099b5b5ba2761905b88b7cbfc39c35dd153609da3da263438f12769602c2195245ff83e249119d4f6cabfbdef84ada19ef4a67ed66d7043036515d0be5a231f99e71aba5d5ae04676eff3e85f0844c41bbcfde7a931d1ec55c01f703bfd1b97756bfe55a91f6b379f34a018906339771157c66dbd7471d1beec7f029ef552cf5e92a1a0db21b59355763967ce26a577bc514b6d22a09c385c5ba6caf524e1688fc0f20002b35ae7bc8eb5ba51aebdf7d972c3267cedbe77ed70d9c539bc455a6f88b39196c8a224b0acf4d796fea59a07baa34cc270fb096ef330fbebdf872d7d0bc4f9a963355c554abc5cdb91464faabcd09cd9a53f5d1b2ea7e96f428f7cd6735c19c61dc9942d30bf29ef85ed01c2fcd6060aa40eeff971477b4fde48507b7bad95a496540adff7e4a72fd1f94d7c703ab1525c946c54e0da3d7ebfcc8c367d1bfd1aea2e84c3b310aaea5a1627df898c00a9aaf2d88a36afa4c5b1816384310600001c33125ad7f7970beeb256aec06e39fc6c66544e1d1dc5fea4b68a82dc568ca30aea9a1d097f06f11dc362f4bae5ef57c67686a15855cd351bf26f40fb1348cfce79897682228e6d9643530c81bab27bf7b1c4a76a5be180bb830cf06827c3f38a9c9c580c732c30aaceda78b0297de35a922b1375b129655beb31899e26052cc216f832fdb0a0015f93c9cff77f59cda1ec5f3e358848756cebb074266a47e39ae26e80e8c65aaf73c24925458520a9ca98760d1005c9f81846459ae6d5baa4f02807939ddc29c3520f7c58ed9bc5a569c7a1bc33cf4f330a18276ffb4550b9166c3939e8041094bec034aa0ec6638b74fe34f0f1ec6903a1135808d5d8d26c9203c3f87e66c407b7c5c0888d4558dd657cc0213efad68e76fdd7b23e68064fd4b271ed79c50abacdd2871b0c1f8c971df59a5a1901ddf804bed43e391f882d2a45c51cdbba86b2a1b7c0c4923642a731ea4dcbad2b6ebbebe787a8e28e781d75beee924b3b1e390750f316648133922c021f98fd2d5d71a7a3679397ef6cf432837b7e264831ec01c4c3146ba0caac3b13d55945ec00e978a1c1712cd51187936200606c9cd6877b2f72125295c54721f8e15df2ae282a8becb99a726fd92acc92141e1f574b4b0b3c992a61af3372d0d9217776b1a42cd2cee816a70bf1ddd69b590d53e28ba356e74b38e23e50d898e95cdc7cc809e462c884b53f672aab1411ecfd4c91e7a9782fc6763f0efd4bcbaf1fc3a00000000000000000000000000000000000000000000000000000000048e510340087caf22439d5304bd704a6a78a512269a9b1cbd13bea78c807bbc73853ae187cbb768673e9d1bf74a3b0a6c234accd8506adf314f4c5e08174540b69d3c0da660052b43b86baf49e7ac6f09c21598b1e01dc1e1b5a53626b090496dbf7af441e397016c3c094d5c91ffe0a7ceacfd225ed9a6c905f79ad7052747dd6cceef4c310e0e935311118bc6bf0e5ca6c7cca7d5c03be570308da8a40578b4db14961fbccf6e2f2d56e9509c434126515b56d032e20c12e830d1bc64826fc9b318da5911e466878dbb81edeff69363fb75af5cd80536f14d2eaa7764db23acdbd394bbbbccf5e882602897a85bf8523d891080593d831d758deb4f2c7e49c6d6b35d8fd92601c8500febb0c5fe0be294bf6bbbecad444695277a9e3992a354492513b43091d161c7c7cdbbe44e8e83b4cf333238a52f214b278c6485236ea880db2f113f6381187679a4620d6149808b0af024b3b3e6ba99b4b15ca"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x143, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

4m43.985026116s ago: executing program 9 (id=2501):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r3, &(0x7f00000002c0)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r3, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
r4 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_DEBUGREGS(r5, 0x4080aea2, 0x0)
sendmsg$xdp(r3, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
ioctl$sock_SIOCETHTOOL(r6, 0x8946, &(0x7f0000000080)={'ipvlan1\x00', &(0x7f0000000240)=@ethtool_drvinfo={0x44, "0e076a1062c15853fcc1cd1f09edb6b9f19da6c46402f134189d52b93e691cd1", "7b54d88d1299c64ec4fae2d550e66db260f7d9d1a83d014b64ef453501e4bb8d", "b5ad85557f8df8ee104b9837f37915fc39fb79ed0139ffd9c0ca011ace0e30d2", "10723bef814b3eed1223c8046063086d2868b141d4cdf0bee747e46c2df9b3dc", "894f9d01e46c719cd92916eef3f5574092eaa8088b91aa19649324e3d1b64e42", "611760ec90c41f600718707e", 0x7, 0x4, 0x8, 0x1766e8d6, 0x15}})

4m40.644678924s ago: executing program 9 (id=2507):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000400)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x0, 0x2)
ioctl$VIDIOC_SUBDEV_ENUM_DV_TIMINGS(r3, 0xc0945662, &(0x7f0000000380)={0x0, 0x0, '\x00', {0x0, @reserved}})
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42031, 0xffffffffffffffff, 0x0)
r5 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r5, 0x0, 0x27, &(0x7f0000000040)={@multicast2, @local, @loopback}, 0xc)
getsockopt$inet_buf(r5, 0x0, 0x29, &(0x7f0000000040)=""/185, &(0x7f0000000100)=0xb9)

4m38.206789719s ago: executing program 9 (id=2511):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r7, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r9=>0x0, 0x10, &(0x7f0000000040)=[@in={0x2, 0x4e24, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_SOCKOPT_PEELOFF(r0, 0x84, 0x66, &(0x7f00000001c0)={r9, 0x9}, &(0x7f00000002c0)=0x8)

4m36.569845911s ago: executing program 9 (id=2516):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_procs(0xffffffffffffffff, &(0x7f0000000180)='cgroup.threads\x00', 0x2, 0x0)
getgroups(0x7, &(0x7f0000000740)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0])
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(0xffffffffffffffff, 0x84, 0x72, &(0x7f0000000040)={0x0, 0x1ff}, &(0x7f0000000240)=0xc)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(0xffffffffffffffff, 0x84, 0x18, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(0xffffffffffffffff, 0xc018937e, &(0x7f00000000c0)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x2}}, './file0\x00'})
r3 = socket(0x10, 0x2, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r3, 0x10e, 0xc, &(0x7f0000000100)={0x7, 0x2708}, 0x10)
write(r3, &(0x7f0000000280)="1c0000001a009b8a14e5f4070009042400000000ff02000000000000", 0x1e5)

4m33.116120289s ago: executing program 9 (id=2521):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$SO_TIMESTAMP(r0, 0x1, 0x3f, 0x0, 0x0)
ioctl$KDGKBSENT(0xffffffffffffffff, 0x4b48, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1, 0x9, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=@base={0x12, 0x16, 0x8, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000340)={r1, &(0x7f00000001c0), &(0x7f0000000280)=@udp=r2}, 0x20)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
r4 = socket$packet(0x11, 0xa, 0x300)
setsockopt$SO_ATTACH_FILTER(r4, 0x1, 0x1a, &(0x7f0000fbe000)={0x1, &(0x7f0000000100)=[{0x80000006}]}, 0x10)
setsockopt$inet6_udp_encap(r3, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
bind$inet6(r3, &(0x7f0000000000)={0xa, 0xe22, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x9a, &(0x7f0000000180)={@link_local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x64, 0x11, 0x0, @private1, @mcast2, {[], {0x0, 0xe22, 0x64, 0x0, @wg=@response={0x2, 0x2, 0x1, "bb577147f8c63bab95cc025f2c123662d48c6e01d8630bf2addfd0edf624317d", "8ab859c3d9fe9a2f9edb8e36339e135d", {"1f142a168a75d33e838bef40d2fcff6c", "b8d91538c6c53fafd6fea68a0e45b49f"}}}}}}}}, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(0xffffffffffffffff, 0x0)
accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)

4m31.872326151s ago: executing program 9 (id=2527):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0d03000000000000000013000000140009800800020000000000d65d7d020000000081a169f3937feef46006ce6590a6d47cf39d19c88fe864cec53980c7b11f0a2e0d270d205a63db4d508cb5f32fc515c5b266481848cb2f7afd6c64bb089d9b84f57511ae6726f28b2eee8a9e32675705fbc79ca4b27fd12a4c6cea0e843483e6b0730f50f66be4fd00634a8a1ce42cb5cb56478a6380213d99a5ff256899282640a20c9b0913b0d2da9d66c02115df54fc36b724c53e5e0a0e8c34dc696393afa851e81de852"], 0x28}}, 0x0)
r2 = io_uring_setup(0x40af, &(0x7f0000000080)={0x0, 0x7283, 0x8, 0x0, 0xffffffff})
r3 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x20c02)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f42607", 0x29}], 0x1)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000340), r0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01000000000000020000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r8, 0x1, 0x70bd28, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0xf9}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20000044}, 0x4)
setns(r6, 0x24020000)
syz_clone(0xd5ba2180, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x1b, 0x20000009, r4)

4m14.830486274s ago: executing program 37 (id=2527):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_NL_MON_PEER_GET(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000240)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0d03000000000000000013000000140009800800020000000000d65d7d020000000081a169f3937feef46006ce6590a6d47cf39d19c88fe864cec53980c7b11f0a2e0d270d205a63db4d508cb5f32fc515c5b266481848cb2f7afd6c64bb089d9b84f57511ae6726f28b2eee8a9e32675705fbc79ca4b27fd12a4c6cea0e843483e6b0730f50f66be4fd00634a8a1ce42cb5cb56478a6380213d99a5ff256899282640a20c9b0913b0d2da9d66c02115df54fc36b724c53e5e0a0e8c34dc696393afa851e81de852"], 0x28}}, 0x0)
r2 = io_uring_setup(0x40af, &(0x7f0000000080)={0x0, 0x7283, 0x8, 0x0, 0xffffffff})
r3 = syz_open_dev$sg(&(0x7f00000004c0), 0x0, 0x20c02)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000040)="aefdda9d240303005a90f57f07703aeff0f64eb9ee07962c220a2e11b44e65d76641cb010852f42607", 0x29}], 0x1)
syz_genetlink_get_family_id$l2tp(&(0x7f0000000340), r0)
r4 = io_uring_register$IORING_REGISTER_PERSONALITY(r2, 0x9, 0x0, 0x0)
connect$pppl2tp(0xffffffffffffffff, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, 0xffffffffffffffff, {0x2, 0x0, @dev}, 0x2}}, 0x2e)
r5 = getpid()
r6 = syz_pidfd_open(r5, 0x0)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r7, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000080)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="01000000000000020000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
sendmsg$TIPC_CMD_SET_NODE_ADDR(r0, &(0x7f00000001c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000180)={&(0x7f0000000140)={0x24, r8, 0x1, 0x70bd28, 0x25dfdbfe, {{}, {}, {0x8, 0x11, 0xf9}}, ["", ""]}, 0x24}, 0x1, 0x0, 0x0, 0x20000044}, 0x4)
setns(r6, 0x24020000)
syz_clone(0xd5ba2180, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r2, 0x1b, 0x20000009, r4)

13.719824198s ago: executing program 8 (id=3111):
bind$alg(0xffffffffffffffff, &(0x7f0000000100)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(serpent))\x00'}, 0x58)
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
sendmsg$alg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001600)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18, 0x24008090}, 0x8044)
socket(0x10, 0x803, 0x0)
syz_open_dev$ndb(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000032680)=""/102392, 0x18ff8)
socket$netlink(0x10, 0x3, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
io_uring_setup(0x1155, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = socket(0x1e, 0x805, 0x0)
connect$tipc(r1, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{}, 0x802}}, 0x10)
connect$tipc(r1, &(0x7f0000000000)=@id={0x1e, 0x3, 0x1}, 0x10)
close(r1)
recvmmsg(0xffffffffffffffff, &(0x7f0000000040)=[{{0x0, 0x0, 0x0}}], 0x1, 0x41, 0x0)

12.820758023s ago: executing program 8 (id=3114):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000001fc0)={0x0, 0x0, 0x0}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_PAGE_FLIP(r1, 0xc01864b0, &(0x7f00000015c0)={0x0, 0x0, 0x0, 0xc})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r2, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="6c00000002060104db406e3e0004000200000000100003006269746d61703a706f72740005000400000000000900020073797a32000000000500050000000000050001000600000024000780080006400000137906000440fffff000060005400000000008000640"], 0x6c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)={0x1c, 0x3, 0x6, 0x801, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
chdir(&(0x7f0000002340)='./bus\x00')

12.093412106s ago: executing program 4 (id=3115):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x0, 0x0)
openat$audio(0xffffff9c, &(0x7f0000000100), 0x80000, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000100)=ANY=[@ANYBLOB="180000000900000000000000213f0000c50000000e800000850000000e00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mmap_lock_acquire_returned\x00', r3}, 0x10)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180))
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
memfd_secret(0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_io_uring_setup(0x19f2, &(0x7f0000000080)={0x0, 0x0, 0x10100, 0x0, 0x1de}, &(0x7f0000000140)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000040)={'syztnl0\x00', &(0x7f0000000180)={'syztnl0\x00', 0x0, 0x2f, 0x83, 0x20, 0x0, 0x2b, @private1={0xfc, 0x1, '\x00', 0x1}, @private1, 0x10, 0x8}})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r7=>0xffffffffffffffff})
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='pids.events\x00', 0x275a, 0x0)
write$UHID_CREATE2(r8, &(0x7f0000000180)=ANY=[@ANYRES64=r7], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r8, 0x0)
syz_io_uring_submit(r5, r6, &(0x7f0000000000)=@IORING_OP_EPOLL_CTL=@mod={0x1d, 0x5c, 0x0, r8, 0x0, r0, 0x3, 0x0, 0x1})
io_uring_enter(r4, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

11.140443554s ago: executing program 7 (id=3118):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
personality(0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r3}, 0x10)
bpf$MAP_CREATE(0x300000000000000, &(0x7f0000000100)=@base={0x18, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='mm_page_alloc\x00'}, 0x10)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f0000000000)=""/4096)
ioprio_set$pid(0x3, 0x0, 0x0)
ioprio_get$pid(0x2, 0x0)

10.264736685s ago: executing program 3 (id=3119):
bpf$MAP_CREATE(0x0, &(0x7f0000000580)=ANY=[], 0x50)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
creat(&(0x7f0000000080)='./file0\x00', 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
syz_emit_ethernet(0x10a, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x1000, 0x0)
r1 = epoll_create(0x2)
r2 = userfaultfd(0x80801)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r2, 0x0)
epoll_wait(r1, &(0x7f0000000080)=[{}], 0x1, 0xc)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080)='iso9660\x00', 0x0, 0x0)

10.26418178s ago: executing program 4 (id=3120):
r0 = open(&(0x7f0000000280)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x8000003d)
close(r0)
getsockname(r0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
sendmsg$tipc(0xffffffffffffffff, 0x0, 0x0)
setsockopt$TIPC_GROUP_LEAVE(0xffffffffffffffff, 0x10f, 0x88)
syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
arch_prctl$ARCH_GET_XCOMP_SUPP(0x1021, &(0x7f0000000380))
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000001600)={&(0x7f0000000000)={0x2, 0x0, @remote}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@rdma_args={0x48, 0x114, 0x1, {{}, {0x0, 0x2c}, &(0x7f00000006c0)=[{&(0x7f0000000100)=""/44, 0x2c}], 0x1}}, @rdma_args={0x48, 0x114, 0x1, {{}, {0x0}, &(0x7f00000004c0)=[{&(0x7f0000000080)=""/28, 0x1c}], 0x1}}], 0x90}, 0x0)

9.27997097s ago: executing program 2 (id=3121):
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x40087101, 0x20001100)
socket(0x10, 0x3, 0x0)
r0 = syz_open_dev$sndctrl(0x0, 0x2, 0x80800)
ioctl$SNDRV_CTL_IOCTL_SUBSCRIBE_EVENTS(r0, 0xc0045516, &(0x7f0000000000)=0x639)
readv(r0, &(0x7f0000000180)=[{&(0x7f0000000400)=""/147, 0x93}], 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
ioctl$BTRFS_IOC_WAIT_SYNC(0xffffffffffffffff, 0x40089416, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = socket$kcm(0x2, 0x200000000000001, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000000180)=""/116, 0x74, 0x3)
sendmsg$inet(r2, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x300048c1)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r2, 0x1, 0x3e, &(0x7f0000000100)=r3, 0x4)
sendmsg$inet(r2, &(0x7f0000000040)={0x0, 0xeafbff3, &(0x7f0000000000)=[{&(0x7f0000000300)="b8", 0xfffffdef}], 0x1, 0x0, 0x0, 0x10000000}, 0x52cc)

9.271196637s ago: executing program 7 (id=3122):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=@framed, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, @void, @value}, 0x94)
r0 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$SIOCX25GSUBSCRIP(r0, 0x89e0, &(0x7f00000000c0)={'veth0\x00'})
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$l2tp6(0xa, 0x2, 0x73)
bind$l2tp6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x20)
connect$l2tp6(r4, &(0x7f0000000f40)={0xa, 0x0, 0x0, @empty}, 0x20)
sendmmsg$inet6(r4, &(0x7f0000000ac0)=[{{&(0x7f0000000180)={0xa, 0x0, 0x0, @empty}, 0x1c, 0x0}}], 0x17fd147c801ae9ab, 0x0)

8.748049211s ago: executing program 3 (id=3123):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='rxrpc_resend\x00', r3, 0x0, 0xfffffffffffffffe}, 0x41)
pipe2$watch_queue(0x0, 0x80)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
syz_emit_vhci(&(0x7f0000000680)=@HCI_EVENT_PKT={0x4, @hci_ev_remote_features={{0xb, 0xb}, {0x49, 0xc9, "7f968122973e5c93"}}}, 0xe)
sendmmsg$inet(r4, &(0x7f0000002b80)=[{{&(0x7f0000000000)={0x2, 0x4e23, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000100)=[@ip_retopts={{0x18, 0x0, 0x7, {[@timestamp_prespec={0x44, 0x4, 0x2e, 0x3, 0x7}, @ra={0x94, 0x4, 0x1100}]}}}], 0x18}}], 0x1, 0x4000000)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000640)={'syztnl1\x00', &(0x7f0000000300)={'ip6_vti0\x00', 0x0, 0x4, 0x9, 0xbc, 0x9, 0xc, @private1={0xfc, 0x1, '\x00', 0x3}, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x700, 0x8000, 0x7, 0x5}})
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000006c0), 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000c00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03080000000000000000070000000900010073797a30000000003c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a30000000000800054000000021440000000c0a09030000000000000000070000000900020073797a31000000000900010073797a300000000018000380140000800800034000000002050006405200000014000000110001"], 0xc8}}, 0x0)

8.727442557s ago: executing program 8 (id=3124):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000080)=0x1000000002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$proc_mixer(0xffffff9c, 0x0, 0x80a2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x44, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x1c, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @nat={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_NAT_TYPE={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xb8}}, 0x4)
r3 = getpgrp(0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, &(0x7f0000000080)=0x2, 0x4)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'veth0_macvtap\x00', <r4=>0x0})
sendto$packet(0xffffffffffffffff, &(0x7f0000001980)="e0", 0x1, 0x20008801, &(0x7f0000000200)={0x11, 0x8100, r4, 0x1, 0x0, 0x6, @remote}, 0x14)
r5 = syz_pidfd_open(r3, 0x0)
pidfd_send_signal(r5, 0x10000032, &(0x7f0000000140)={0x5, 0x6, 0x31d}, 0x4)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

8.660859662s ago: executing program 2 (id=3125):
openat$audio(0xffffffffffffff9c, &(0x7f0000000180), 0x109842, 0x0)
mount$tmpfs(0x0, 0x0, 0x0, 0x800040, &(0x7f0000000340)=ANY=[@ANYBLOB='gid'])
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x0, 0x1)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f00000000c0)=0xf)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socket$kcm(0x10, 0x100000000002, 0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$TCFLSH(0xffffffffffffffff, 0x400455c8, 0x20000000009)
mount(&(0x7f0000000100)=@nullb, &(0x7f0000000000)='./file0\x00', &(0x7f00000000c0)='omfs\x00', 0x0, &(0x7f0000000340))

8.351913139s ago: executing program 4 (id=3126):
ioctl$sock_ipv4_tunnel_SIOCDELTUNNEL(0xffffffffffffffff, 0x89f2, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000001c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000600), 0x0, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r4, 0x29, 0x37, 0x0, 0x0)
getsockopt$inet6_opts(r4, 0x29, 0x37, 0x0, &(0x7f0000001000))
setsockopt$bt_BT_SECURITY(r3, 0x112, 0x4, &(0x7f0000000180)={0x81, 0x9}, 0x2)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, 0x0, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[@ANYBLOB="ec000000210001000000000000000000e0000001000000000018000000000000ff0200"/64, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000009c00110000000000000000000000000000000001ffffffff000000000000000000000000640101010000000000000000000000000a010100000000000000000000000000000000000635000000000a0000000000000000000000000000000001ffffffff000000000000000000000000fe8000000000000000000000000000aafe8800000000000000000000000000012b"], 0xec}}, 0x0)

7.312818016s ago: executing program 2 (id=3127):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
preadv(0xffffffffffffffff, &(0x7f00000031c0)=[{&(0x7f0000005e40)=""/4102, 0x1006}], 0x1, 0x0, 0x0)
add_key(0x0, &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r3, &(0x7f0000000e00)=[{{&(0x7f0000000080)={0x2, 0x4e33, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000000040)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {0x0, @local, @multicast1}}}], 0x20}}, {{&(0x7f00000000c0)={0x2, 0x4e21, @empty}, 0x10, 0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000007000000830804"], 0x18}}], 0x2, 0x0)
bind$l2tp(0xffffffffffffffff, &(0x7f00000000c0)={0x2, 0x0, @multicast2}, 0x10)
r4 = syz_io_uring_setup(0x1f87, &(0x7f0000000080)={0x0, 0x0, 0x13f81}, &(0x7f0000000100)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_io_uring_submit(r5, r6, &(0x7f00000001c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index, 0x0, 0x0})
io_uring_enter(r4, 0x54, 0x0, 0x1, 0x0, 0x0)
r7 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r7, 0x4b3a, 0x1)

6.994053292s ago: executing program 7 (id=3128):
socket$nl_route(0x10, 0x3, 0x0)
r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=ANY=[@ANYBLOB="1200000040000000080000000100000000000000", @ANYRES32=0x1, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000002c0)={r0, &(0x7f0000000140), &(0x7f0000000240)=@udp6=r1}, 0x20)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x3})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000080)={'syzkaller0\x00', <r5=>0x0})
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={@private2, 0x2, r5})
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000000)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
chdir(&(0x7f0000000080)='./file1\x00')
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='cpuset.effective_mems\x00', 0x275a, 0x0)
quotactl_fd$Q_SETQUOTA(r6, 0xffffffff80000800, 0xee00, &(0x7f00000001c0)={0x0, 0x8000000000000002, 0x80000ff03, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0x3})
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000003900)={0x0, 0x0, &(0x7f00000038c0)={&(0x7f0000000180)={0x20, 0x0, 0x0, 0x0, 0x0, {{}, {@void, @void, @val={0xc}}}}, 0x20}}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, 0x0, 0x8)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f00000001c0)={r0, &(0x7f0000000080), &(0x7f0000000180)=@udp=r2}, 0x20)

5.944363267s ago: executing program 8 (id=3129):
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002300)=[{{0x0, 0x0, &(0x7f0000001340)=[{&(0x7f0000000100)="e5280d82ca755a82bad36eeec89ae74682c35906451dd41a2d648fea9a5782e9a583a518", 0x24}], 0x1}}], 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, 0x0)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
rseq(&(0x7f00000004c0), 0x20, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000340)={0x3}, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000080)={0x3}, 0x1)
setsockopt$inet_sctp6_SCTP_AUTH_CHUNK(r0, 0x84, 0x15, &(0x7f0000000040)={0xb}, 0x1)
keyctl$update(0x2, 0x0, &(0x7f0000000040)="b8", 0xfef4)

5.859355152s ago: executing program 3 (id=3130):
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
setsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x8008000000010, &(0x7f0000000100)="17000000020001000003be8c5ee1568812003c000a03000aff3f000098fc5ad90a00bb6a880000d6c8db0000dba67e06020000e28900000200df018002000000fc0607bdff59100ac45761547a6c1f004a5a2d8f89814bc6c252674f00c88ebb01005033bf79ac2dfc060115003901000000000000ea000000002765", 0x7c)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$netlink(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)={0x1c, 0x19, 0x15, 0x0, 0x0, "", [@typed={0xa, 0x0, 0x0, 0x0, @str='\x00\x02\x00\x00\x00\x00'}]}, 0x1c}], 0x1}, 0x0)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000380))
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x20048800)
pipe(0x0)
write$binfmt_elf64(0xffffffffffffffff, &(0x7f0000000300)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, [{}]}, 0x78)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)

5.678235197s ago: executing program 4 (id=3131):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x100008b}, 0x0)
r0 = syz_open_dev$MSR(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000180)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f0000000340)=0x2)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r2 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000280), 0x22802, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$devlink(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_UNSPLIT(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000002c0)={0x3c, r5, 0x731, 0x4, 0x25dfdbfe, {0x38}, [{{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x73}}}]}, 0x3c}, 0x1, 0x2}, 0x0)
sendmsg$DEVLINK_CMD_SB_GET(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000380)={0x120, r5, 0x200, 0x70bd27, 0x25dfdbff, {}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x4}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0xfff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x9}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0xb, 0x7ff}}, {@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8}}, {@pci={{0x8}, {0x11}}, {0x8, 0xb, 0x7}}]}, 0x120}, 0x1, 0x0, 0x0, 0x40040045}, 0x800)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000040)=0xd)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r6, 0xffffffffffffffff, 0x0)

5.540785878s ago: executing program 2 (id=3132):
r0 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
socket$xdp(0x2c, 0x3, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$loop(&(0x7f0000000300), 0x2, 0x40000)
ioctl$sock_bt_hci(0xffffffffffffffff, 0x800448d3, 0x0)
shutdown(0xffffffffffffffff, 0x1)
pipe2$watch_queue(&(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r5, 0x0)
read$watch_queue(r4, &(0x7f0000000100)=""/222, 0x10)
ioctl$IOC_WATCH_QUEUE_SET_SIZE(r4, 0x5760, 0x11)
keyctl$KEYCTL_WATCH_KEY(0x20, r0, r5, 0xffffffffffffffff)

4.440059421s ago: executing program 3 (id=3133):
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x74, 0x101301)
bpf$TOKEN_CREATE(0x24, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000d00)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r2 = getpid()
ioctl$FS_IOC_GETFLAGS(r1, 0x80086601, &(0x7f0000000080))
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000040)=@usbdevfs_connect)

3.838226679s ago: executing program 2 (id=3134):
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a000000040000000000000001000000", @ANYRES32=0x1], 0x50)
r0 = socket$netlink(0x10, 0x3, 0x8000000004)
statx(0xffffffffffffffff, &(0x7f00000000c0)='./file0\x00', 0x6000, 0x20, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, <r1=>0x0})
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, 0x0)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TCSETSW(r2, 0x5406, &(0x7f00000002c0)={0x0, 0x3920, 0x3f, 0x0, 0x0, "efdfffff77f22d8412d256e3c7183ab6165578"})
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="2c00000011000500000000000000000007000000", @ANYRES32=r5, @ANYBLOB="00000000000000000c001a800800048004000380"], 0x2c}}, 0x0)
setreuid(0x0, r1)
ioctl$EVIOCSKEYCODE_V2(0xffffffffffffffff, 0x80104592, &(0x7f0000000040)={0x0, 0x0, 0x0, 0xfffffffe, "00fd96e69b6a1b3a1d1b14700c1e0ac74f000000001200000000000900"})
ioctl$BINDER_ENABLE_ONEWAY_SPAM_DETECTION(0xffffffffffffffff, 0x40046210, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.throttle.io_serviced_recursive\x00', 0x26e1, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
close(r6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0))
ioctl$SIOCSIFHWADDR(r6, 0x8b26, &(0x7f0000000080)={'wlan1\x00', @random="000000008000"})
writev(r0, &(0x7f0000000000)=[{&(0x7f0000000400)="580000001300192340834b80040d8c560a067fbc45ff81050000000f070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000010000100030808004149004001040800", 0x58}], 0x1)

3.748837836s ago: executing program 7 (id=3135):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000280)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000080), &(0x7f0000000180)='%-010d \x00'}, 0x20)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000680)={r2, &(0x7f0000000480)='9', &(0x7f0000000640)=@tcp, 0x2}, 0x20)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @private1, 0x200000}, 0x1c)
sendto$inet6(r0, &(0x7f00000001c0)='O', 0x1, 0x80, &(0x7f0000000280)={0xa, 0x0, 0x0, @private2}, 0x1c)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_CONTEXT(r0, 0x84, 0x11, &(0x7f0000000080)={0x0, 0x4}, &(0x7f0000000200)=0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', 0xffffffffffffffff, 0x0, 0x1}, 0x18)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r5 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/partitions\x00', 0x0, 0x0)
r6 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0)
sendfile(r6, r5, &(0x7f0000002080)=0x64, 0x23b)

3.633302873s ago: executing program 4 (id=3136):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
listen(r3, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007d00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
setsockopt$EBT_SO_SET_ENTRIES(0xffffffffffffffff, 0x0, 0x80, &(0x7f0000000140)=@broute={'broute\x00', 0x20, 0x2, 0x330, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000580], 0x0, 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="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"/816]}, 0x3a8)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=@base={0x12, 0x4, 0x8, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f00000001c0)={@map=r5, r4, 0x7, 0x0, 0x0, @void, @value}, 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r3}, 0x20)
r6 = openat$vicodec0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
pwritev(r6, &(0x7f0000000240), 0x0, 0x3, 0xd4bd)
ioctl$VIDIOC_S_STD(r6, 0x40085618, &(0x7f0000000040)=0x10000)
sendmmsg$inet6(r3, &(0x7f0000000b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000ac0)="b0", 0x7ffff000}], 0x11}}], 0x2, 0x0)

2.929689064s ago: executing program 7 (id=3137):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/schedstat\x00', 0x0, 0x0)
socket$packet(0x11, 0x2, 0x300)
userfaultfd(0x80001)
openat$nvram(0xffffffffffffff9c, &(0x7f0000000040), 0x40000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0xfffffffd)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6(0xa, 0x802, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000021c0)='maps\x00')
read$char_usb(r3, &(0x7f0000000040)=""/4122, 0x101a)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_G_FMT(r4, 0xc0285629, &(0x7f0000000080)={0x3, @win={{0x2, 0xfffffffc}, 0x5, 0xfffffffc, &(0x7f0000000040)={{0x0, 0x2, 0x80, 0xfffffffe}}, 0x0, 0x0, 0x1}})

2.859654841s ago: executing program 3 (id=3138):
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
io_uring_setup(0x3450, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xb, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x38ead82ad8168db1)
syz_emit_ethernet(0x2a, 0x0, 0x0)
r2 = fanotify_init(0x200, 0x0)
r3 = epoll_create(0x2)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, 0x0)
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x20024094, &(0x7f0000000180)={0x2, 0x4e20, @multicast2}, 0x10)
socket$inet_udp(0x2, 0x2, 0x0)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
read(r4, 0x0, 0x0)

1.737676531s ago: executing program 3 (id=3139):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000100), 0x200, 0x0)
ioctl$SNDCTL_DSP_SETFMT(r0, 0xc0045005, &(0x7f0000000640)=0x10)
mmap$dsp(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x100000b, 0x8012, r0, 0x0)
read$dsp(r0, 0x0, 0x0)
syz_open_dev$MSR(&(0x7f0000000000), 0xf03, 0x0)
listen(0xffffffffffffffff, 0x4)
socket$inet6(0xa, 0x2, 0x0)
r1 = openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = fanotify_init(0x200, 0x0)
fanotify_mark(r2, 0x1, 0x4800003e, r1, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x17, 0x3, &(0x7f0000000700)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sysctl, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000000)={r3, r4, 0x12}, 0x10)
r5 = socket$key(0xf, 0x3, 0x2)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
recvmmsg(r5, &(0x7f00000006c0)=[{{0x0, 0x0, 0x0}, 0x4}], 0x1, 0x0, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r6, 0x29, 0x23, &(0x7f00000002c0)={{{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, @in6=@rand_addr=' \x01\x00', 0x4e20, 0x0, 0x4e23, 0xaf, 0x2, 0x20, 0x20, 0x73}, {0x6, 0x80, 0xff, 0x4, 0x9, 0x0, 0x4, 0xd}, {0x70, 0x9, 0xb, 0x4}, 0x2, 0x0, 0x0, 0x0, 0x2, 0x1}, {{@in6=@private2, 0x4d6, 0x6c}, 0x2, @in=@dev={0xac, 0x14, 0x14, 0x2d}, 0x0, 0x1, 0x0, 0x6, 0x2, 0x6, 0x6}}, 0xe8)
sendmsg$key(r5, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x2, 0x12, 0x0, 0x0, 0x2}, 0x10}}, 0x0)
prctl$PR_SET_MM(0x23, 0x773d85686db437c9, &(0x7f0000ffc000/0x3000)=nil)

1.524772165s ago: executing program 7 (id=3140):
ioctl$SNDRV_SEQ_IOCTL_UNSUBSCRIBE_PORT(0xffffffffffffffff, 0x40505331, &(0x7f00000000c0)={{0x3, 0x41}, {0x3, 0xa}, 0xffffffff, 0x0, 0x40})
socket$nl_rdma(0x10, 0x3, 0x14)
syz_open_dev$swradio(&(0x7f00000012c0), 0x1, 0x2)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
getgroups(0x0, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101080000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff08000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000e00)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a58000000060a0b040000000000000000020000002c0004802800018008000100666962001c0002800800014000000011080002400000000108000340000000110900010073797a30000000000900020073797a32"], 0x80}}, 0x0)

1.524474534s ago: executing program 8 (id=3141):
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r3 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r3, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')
unlinkat(r3, &(0x7f0000000000)='./file1\x00', 0x0)
creat(&(0x7f0000000100)='./bus\x00', 0x0)

895.077784ms ago: executing program 4 (id=3142):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$KVM_RUN(0xffffffffffffffff, 0xae80, 0x0)
getsockopt$bt_hci(0xffffffffffffffff, 0x84, 0x81, &(0x7f0000000080)=""/4076, 0x0)
connect$pppl2tp(0xffffffffffffffff, 0x0, 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(&(0x7f0000000280)='./file0\x00')
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, &(0x7f0000000080)})
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r1 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r2 = open(&(0x7f0000000000)='./file0\x00', 0x143042, 0xfe)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
ftruncate(r2, 0x2008002)
sendfile(r1, r2, 0x0, 0x80000001)

64.262419ms ago: executing program 2 (id=3143):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x4000000000000, 0x40, &(0x7f0000000c00)=@raw={'raw\x00', 0x4001, 0x3, 0x248, 0x0, 0x720d, 0x148, 0x0, 0x148, 0x1b0, 0x240, 0x240, 0x1b0, 0x240, 0x7fffffe, 0x0, {[{{@ip={@initdev={0xac, 0x1e, 0x4, 0x0}, @initdev={0xac, 0x1e, 0x0, 0x0}, 0xffffffff, 0x0, 'veth1_macvtap\x00', 'pim6reg1\x00', {}, {0xff}, 0x1d, 0x3, 0x49}, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x0, 0x0, 0x5, 0x1, 0x3], 0x2}, {0xffffffffffffffff, [0x1, 0xb2cc575b459b5b33, 0x7, 0x2, 0x2]}}}}, {{@uncond, 0x0, 0x98, 0xe0, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x2}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@rand_addr=0x64010900, 'pim6reg0\x00', {0x80000001}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a8)
r4 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r4, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r4, 0x117, 0x5, 0x0, 0x100000000008)
setsockopt$ALG_SET_KEY(r4, 0x117, 0x1, &(0x7f0000000140), 0x0)
r5 = accept4(r4, 0x0, 0x0, 0x0)
syz_genetlink_get_family_id$fou(&(0x7f0000000040), r5)
syz_usb_connect$hid(0x1, 0x3f, &(0x7f00000001c0)=ANY=[@ANYBLOB="12015002000000086a05ba004000010203010902"], &(0x7f0000001580)={0x0, 0x0, 0xf, &(0x7f0000000000)=ANY=[@ANYBLOB="050f0f00"], 0x1, [{0x0, 0x0}]})

0s ago: executing program 8 (id=3144):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
socket$inet6(0xa, 0x3, 0x8000000003c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = shmget$private(0x0, 0x2000, 0x800, &(0x7f0000ffd000/0x2000)=nil)
shmat(r3, &(0x7f0000000000/0x4000)=nil, 0xffffffffffffcfff)
shmat(r3, &(0x7f00003e8000/0x1000)=nil, 0x4000)
r4 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r4, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
close(r4)

kernel console output (not intermixed with test programs):

ng dummy_hcd
[  304.567882][  T975] usb 1-1: config 17 has an invalid descriptor of length 255, skipping remainder of the config
[  304.613055][  T975] usb 1-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  304.680798][  T975] usb 1-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  304.693413][ T5836] Bluetooth: hci3: command tx timeout
[  304.773599][  T975] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  304.971500][ T9302] overlayfs: failed to clone lowerpath
[  305.027894][  T975] usb 1-1: string descriptor 0 read error: -71
[  305.042826][  T975] aiptek 1-1:17.0: interface has no int in endpoints, but must have minimum 1
[  305.520655][ T9169] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  305.559680][  T975] usb 1-1: USB disconnect, device number 8
[  305.563573][ T9169] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  305.600416][ T9169] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  305.640560][ T9169] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  305.896729][ T9169] 8021q: adding VLAN 0 to HW filter on device bond0
[  305.961069][ T9169] 8021q: adding VLAN 0 to HW filter on device team0
[  306.044913][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.052067][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[  306.095636][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.102830][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state
[  306.152497][ T9322] netlink: 'syz.2.979': attribute type 4 has an invalid length.
[  306.214890][ T9169] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  306.235956][ T9169] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  307.469020][ T9169] 8021q: adding VLAN 0 to HW filter on device batadv0
[  308.123587][ T9374] kvm: pic: non byte write
[  308.148886][ T9169] veth0_vlan: entered promiscuous mode
[  308.192203][ T9169] veth1_vlan: entered promiscuous mode
[  309.095572][ T9169] veth0_macvtap: entered promiscuous mode
[  309.203519][ T9169] veth1_macvtap: entered promiscuous mode
[  309.258481][ T9169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  309.299884][ T9169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  309.350304][ T9169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  309.393374][ T9169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  309.434570][ T9169] batman_adv: batadv0: Interface activated: batadv_slave_0
[  309.473894][ T9169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  309.513303][ T9169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  309.523172][ T9169] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  309.566113][ T9169] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  309.599993][ T9169] batman_adv: batadv0: Interface activated: batadv_slave_1
[  309.689473][ T9169] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  309.734867][ T9169] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  309.773458][ T9169] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  309.801817][ T9169] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  309.948858][   T72] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  309.988608][   T72] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.090871][   T72] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.118719][   T72] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.819098][ T9424] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  310.827277][ T9424] F2FS-fs (loop7): Can't find valid F2FS filesystem in 1th superblock
[  310.836612][ T9424] F2FS-fs (loop7): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  310.844476][ T9424] F2FS-fs (loop7): Can't find valid F2FS filesystem in 2th superblock
[  311.463326][   T29] audit: type=1326 audit(1738590540.544:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9421 comm="syz.5.997" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fbab758cda9 code=0x0
[  311.919940][ T9438] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.927505][ T9438] bridge0: port 1(bridge_slave_0) entered disabled state
[  312.290163][   T29] audit: type=1326 audit(1738590541.374:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9443 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  312.437868][ T9438] bridge0: entered allmulticast mode
[  312.449506][   T29] audit: type=1326 audit(1738590541.374:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9443 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  312.508692][ T9451] bridge0: port 3(syz_tun) entered blocking state
[  312.545751][   T29] audit: type=1326 audit(1738590541.374:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9443 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  312.574145][ T9451] bridge0: port 3(syz_tun) entered disabled state
[  312.644247][ T9451] syz_tun: entered allmulticast mode
[  312.660480][   T29] audit: type=1326 audit(1738590541.374:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9443 comm="syz.3.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  312.688053][ T9451] syz_tun: entered promiscuous mode
[  312.717236][ T9449] bridge0: port 3(syz_tun) entered blocking state
[  312.723833][ T9449] bridge0: port 3(syz_tun) entered forwarding state
[  312.731787][ T9449] bridge0: port 2(bridge_slave_1) entered blocking state
[  312.738996][ T9449] bridge0: port 2(bridge_slave_1) entered forwarding state
[  312.746446][ T9449] bridge0: port 1(bridge_slave_0) entered blocking state
[  312.753682][ T9449] bridge0: port 1(bridge_slave_0) entered forwarding state
[  312.842726][ T9449] bridge0: entered promiscuous mode
[  312.880225][ T9440] bridge0: port 2(bridge_slave_1) entered blocking state
[  312.887483][ T9440] bridge0: port 2(bridge_slave_1) entered forwarding state
[  312.947993][ T9440] bridge0: port 2(bridge_slave_1) entered disabled state
[  314.373094][ T5836] Bluetooth: hci4: unexpected event 0x03 length: 1 < 11
[  316.404083][ T5836] Bluetooth: hci3: command tx timeout
[  316.844928][ T9550] loop7: detected capacity change from 0 to 16384
[  317.843903][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  317.850273][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  319.320180][ T9574] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1035'.
[  319.353839][ T9574] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1035'.
[  319.383376][ T9574] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1035'.
[  319.598083][ T5836] block nbd0: Receive control failed (result -107)
[  319.647951][ T9574] nbd0: detected capacity change from 0 to 256
[  319.706440][ T5828] block nbd0: Dead connection, failed to find a fallback
[  319.736795][ T5828] block nbd0: shutting down sockets
[  319.742859][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  319.792041][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  319.813501][ T9591] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1041'.
[  319.903584][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  319.959624][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  320.943008][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  320.955708][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  320.964890][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  321.001750][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  321.010568][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  321.020425][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  321.028405][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  321.037585][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  321.045583][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  321.055704][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  321.117537][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  321.364517][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  321.372370][ T5828] ldm_validate_partition_table(): Disk read failed.
[  321.381218][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  322.371836][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  322.481777][ T5828] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  323.393509][ T5828] Buffer I/O error on dev nbd0, logical block 0, async page read
[  323.462629][ T9616] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  323.519675][ T5828] Dev nbd0: unable to read RDB block 0
[  323.608651][ T5828]  nbd0: unable to read partition table
[  324.013759][ T5836] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  324.024940][ T5836] Bluetooth: hci3: Injecting HCI hardware error event
[  324.036200][ T5836] Bluetooth: hci3: hardware error 0x00
[  324.099765][ T5828] ldm_validate_partition_table(): Disk read failed.
[  324.238690][ T5828] Dev nbd0: unable to read RDB block 0
[  324.254412][ T5828]  nbd0: unable to read partition table
[  326.723441][ T5836] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  327.720628][   T29] audit: type=1326 audit(1738590556.574:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9655 comm="syz.3.1059" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x0
[  329.552720][   T29] audit: type=1326 audit(1738590558.634:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  329.577916][   T29] audit: type=1326 audit(1738590558.634:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  329.618387][   T29] audit: type=1326 audit(1738590558.634:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  329.735821][   T29] audit: type=1326 audit(1738590558.634:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  329.781745][   T29] audit: type=1326 audit(1738590558.634:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  329.952582][   T29] audit: type=1326 audit(1738590558.634:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  330.020177][   T29] audit: type=1326 audit(1738590558.634:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  330.116077][   T29] audit: type=1326 audit(1738590558.634:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  330.137620][    C1] vkms_vblank_simulate: vblank timer overrun
[  330.283336][   T29] audit: type=1326 audit(1738590558.634:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=9682 comm="syz.6.1065" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f32f278cda9 code=0x7fc00000
[  330.304819][    C1] vkms_vblank_simulate: vblank timer overrun
[  331.379142][ T9718] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1069'.
[  332.663883][ T9725] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1072'.
[  332.705162][ T9725] vlan2: entered promiscuous mode
[  333.133671][ T9739] syzkaller1: entered promiscuous mode
[  333.163319][ T9739] syzkaller1: entered allmulticast mode
[  333.461604][  T908] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  335.303338][  T908] usb 1-1: Using ep0 maxpacket: 8
[  335.315013][  T908] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  336.027153][  T908] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xC7, changing to 0x87
[  336.053617][  T908] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[  336.274127][  T908] usb 1-1: string descriptor 0 read error: -71
[  336.295251][  T908] usb 1-1: New USB device found, idVendor=187f, idProduct=0200, bcdDevice=6b.ad
[  336.369773][  T908] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  337.070910][  T908] usb 1-1: config 0 descriptor??
[  337.080928][ T9778] overlayfs: upper fs does not support tmpfile.
[  337.103562][  T908] usb 1-1: can't set config #0, error -71
[  337.125540][  T908] usb 1-1: USB disconnect, device number 9
[  338.991663][ T9169] bridge0: port 3(syz_tun) entered disabled state
[  339.204771][ T9169] syz_tun (unregistering): left allmulticast mode
[  339.211250][ T9169] syz_tun (unregistering): left promiscuous mode
[  339.523482][ T9169] bridge0: port 3(syz_tun) entered disabled state
[  340.339058][ T5836] Bluetooth: hci4: unexpected event for opcode 0x2031
[  340.398126][ T9826] netlink: 'syz.3.1094': attribute type 1 has an invalid length.
[  340.562595][ T9829] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1097'.
[  340.594897][ T9831] overlayfs: failed to clone upperpath
[  340.672773][ T9274] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.819911][ T9274] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.945796][ T9274] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  340.961559][ T9842] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[  340.969375][ T9842] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  341.672967][ T9274] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  341.760635][ T9858] 9pnet_fd: Insufficient options for proto=fd
[  341.791879][   T29] kauditd_printk_skb: 57 callbacks suppressed
[  341.791896][   T29] audit: type=1107 audit(1738590570.874:326): pid=9856 uid=0 auid=4294967295 ses=4294967295 subj=_ msg='rs'
[  342.207388][ T5832] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  342.228184][ T5832] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  342.229300][ T9274] bridge_slave_1: left promiscuous mode
[  342.241139][ T5832] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  343.044691][ T9274] bridge0: port 2(bridge_slave_1) entered disabled state
[  343.106738][ T9274] bridge_slave_0: left allmulticast mode
[  343.112535][ T9274] bridge_slave_0: left promiscuous mode
[  343.136699][ T5832] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  343.165462][ T5832] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  343.172935][ T5832] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  343.193530][ T9274] bridge0: port 1(bridge_slave_0) entered disabled state
[  344.413350][ T5836] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  344.422236][ T5836] Bluetooth: hci4: Injecting HCI hardware error event
[  344.435329][ T5832] Bluetooth: hci4: hardware error 0x00
[  345.243061][ T9274] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  345.267086][ T9274] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  345.283758][ T5836] Bluetooth: hci3: command tx timeout
[  345.310619][ T9274] bond0 (unregistering): Released all slaves
[  346.484245][ T5832] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  347.363424][ T5832] Bluetooth: hci3: command tx timeout
[  347.483156][ T9867] chnl_net:caif_netlink_parms(): no params data found
[  347.887457][ T9274] hsr_slave_0: left promiscuous mode
[  347.904404][ T9274] hsr_slave_1: left promiscuous mode
[  347.920560][ T9274] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  347.938561][ T9274] batman_adv: batadv0: Removing interface: batadv_slave_0
[  348.791614][ T9274] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  348.803619][ T9274] batman_adv: batadv0: Removing interface: batadv_slave_1
[  348.921371][ T9274] veth1_macvtap: left promiscuous mode
[  348.960030][ T9274] veth0_macvtap: left promiscuous mode
[  348.987452][ T9274] veth1_vlan: left promiscuous mode
[  349.063827][ T9274] veth0_vlan: left promiscuous mode
[  349.453408][ T5832] Bluetooth: hci3: command tx timeout
[  350.412617][ T9972] xt_bpf: check failed: parse error
[  351.102371][ T9274] team0 (unregistering): Port device team_slave_1 removed
[  351.253461][ T9274] team0 (unregistering): Port device team_slave_0 removed
[  351.528064][ T5832] Bluetooth: hci3: command tx timeout
[  352.238592][ T9867] bridge0: port 1(bridge_slave_0) entered blocking state
[  352.264699][ T9993] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1137'.
[  352.286482][ T9867] bridge0: port 1(bridge_slave_0) entered disabled state
[  352.311260][ T9867] bridge_slave_0: entered allmulticast mode
[  352.342757][ T9867] bridge_slave_0: entered promiscuous mode
[  352.428834][ T9867] bridge0: port 2(bridge_slave_1) entered blocking state
[  352.494026][ T9867] bridge0: port 2(bridge_slave_1) entered disabled state
[  352.501407][ T9867] bridge_slave_1: entered allmulticast mode
[  352.524341][ T9867] bridge_slave_1: entered promiscuous mode
[  353.673590][ T9867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  353.755796][ T9867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  354.466616][ T9867] team0: Port device team_slave_0 added
[  354.924045][ T9867] team0: Port device team_slave_1 added
[  355.868612][ T9867] batman_adv: batadv0: Adding interface: batadv_slave_0
[  355.889420][ T9867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  355.946412][ T9867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  355.966319][ T9867] batman_adv: batadv0: Adding interface: batadv_slave_1
[  355.968181][T10043] overlayfs: failed to get index nlink (file1/bus, err=-61)
[  355.978810][ T9867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  356.014023][ T9867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  356.198155][ T9867] hsr_slave_0: entered promiscuous mode
[  356.222551][ T9867] hsr_slave_1: entered promiscuous mode
[  356.256910][ T9867] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  356.270747][ T9867] Cannot create hsr debugfs directory
[  358.132466][ T9867] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  358.188381][ T9867] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  358.467230][ T9867] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  358.796038][ T9867] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  359.292331][T10090] xt_cluster: you have exceeded the maximum number of cluster nodes (16128 > 32)
[  360.022860][ T9867] 8021q: adding VLAN 0 to HW filter on device bond0
[  360.483177][ T9867] 8021q: adding VLAN 0 to HW filter on device team0
[  361.491006][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.498202][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  361.573974][T10100] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1160'.
[  361.641122][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.648387][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[  361.656307][T10100] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1160'.
[  361.805293][ T9867] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  361.843374][ T9867] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  364.970075][ T9867] 8021q: adding VLAN 0 to HW filter on device batadv0
[  365.577008][T10159] hfs: unable to load iocharset "lI=|�m�����I�䦅�aКzlK��@��Ɇ���'Cڰ{�����EJ�V*��G<��i�k��=��3�~�?m�Vʟ�i�dmӭA�4ϊ�H�ε_����!���k�"
[  365.768720][ T9867] veth0_vlan: entered promiscuous mode
[  365.800104][ T9867] veth1_vlan: entered promiscuous mode
[  365.852165][ T9867] veth0_macvtap: entered promiscuous mode
[  365.877052][ T9867] veth1_macvtap: entered promiscuous mode
[  365.928318][ T9867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.014633][ T9867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.673390][ T9867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  366.744175][ T9867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.794605][ T9867] batman_adv: batadv0: Interface activated: batadv_slave_0
[  366.834462][ T9867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.863626][ T9867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.883325][ T9867] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  366.920440][ T9867] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  366.960798][ T9867] batman_adv: batadv0: Interface activated: batadv_slave_1
[  367.015975][ T9867] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  367.220074][ T9867] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  367.229883][ T9867] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  367.238991][ T9867] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  368.337266][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  368.358318][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  368.472864][ T9274] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  368.522180][ T9274] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  370.332333][T10262] tipc: Started in network mode
[  370.353955][T10262] tipc: Node identity 2df6138a757ebd0e002e, cluster identity 4711
[  370.371946][T10261] overlayfs: failed to clone upperpath
[  376.519895][T10327] netlink: 1296 bytes leftover after parsing attributes in process `syz.7.1206'.
[  376.543366][T10327] openvswitch: netlink: Flow key attr not present in new flow.
[  376.556575][T10333] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1207'.
[  376.566025][T10333] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1207'.
[  377.519132][T10355] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  377.527131][T10355] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  377.535588][T10355] F2FS-fs (loop5): Magic Mismatch, valid(0xf2f52010) - read(0x0)
[  377.545234][T10355] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  378.330645][T10363] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1215'.
[  379.306012][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  379.312354][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  381.710126][T10406] netlink: 256 bytes leftover after parsing attributes in process `syz.5.1224'.
[  382.272261][T10384] syz_tun: entered promiscuous mode
[  382.626652][T10384] vlan2: entered promiscuous mode
[  382.697684][T10384] syz_tun: left promiscuous mode
[  383.277793][T10424] overlayfs: overlapping lowerdir path
[  390.548842][T10492] overlayfs: failed to clone upperpath
[  392.656754][   T29] audit: type=1326 audit(1738590621.734:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  392.691960][T10518] smb3: Unknown parameter 'rdma��'
[  392.799512][   T29] audit: type=1326 audit(1738590621.774:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  393.621178][   T29] audit: type=1326 audit(1738590621.774:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  393.642966][   T29] audit: type=1326 audit(1738590621.774:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  393.772643][   T29] audit: type=1326 audit(1738590621.774:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  393.816666][T10524] vlan3: entered allmulticast mode
[  393.906544][   T29] audit: type=1326 audit(1738590621.774:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  393.986040][   T29] audit: type=1326 audit(1738590621.774:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  394.049438][   T29] audit: type=1326 audit(1738590621.774:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  394.120262][   T29] audit: type=1326 audit(1738590621.774:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  394.141966][    C1] vkms_vblank_simulate: vblank timer overrun
[  394.160335][T10540] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1256'.
[  394.389211][   T29] audit: type=1326 audit(1738590621.774:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=10517 comm="syz.5.1249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbab758cda9 code=0x7ffc0000
[  394.410835][    C1] vkms_vblank_simulate: vblank timer overrun
[  401.808263][T10621] use of bytesused == 0 is deprecated and will be removed in the future,
[  401.817834][T10621] use the actual size instead.
[  407.274152][T10681] blk_print_req_error: 27 callbacks suppressed
[  407.274172][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.329778][T10681] buffer_io_error: 27 callbacks suppressed
[  407.329792][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.394625][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.433327][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.441281][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.534491][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.542463][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.576066][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.618003][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.640985][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.662504][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.672277][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.683700][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.693154][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.703212][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.712556][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.721831][T10681] ldm_validate_partition_table(): Disk read failed.
[  407.729828][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.739457][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.752816][T10681] I/O error, dev nbd0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  407.762283][T10681] Buffer I/O error on dev nbd0, logical block 0, async page read
[  407.790729][T10681] Dev nbd0: unable to read RDB block 0
[  407.819344][T10681]  nbd0: unable to read partition table
[  409.125075][  T173] wlan1: Trigger new scan to find an IBSS to join
[  410.131979][T10681] netlink: 56 bytes leftover after parsing attributes in process `syz.0.1285'.
[  410.216090][T10681] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1285'.
[  410.497767][T10721] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1295'.
[  412.434978][T10721] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1295'.
[  414.103348][ T5877] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[  414.313471][ T5877] usb 1-1: Using ep0 maxpacket: 8
[  414.356123][ T5877] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  414.546456][ T5877] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  414.784360][ T5877] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  415.039145][ T5877] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  415.052765][ T5877] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  415.079624][ T5877] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  415.124983][ T2995] wlan1: Trigger new scan to find an IBSS to join
[  415.717077][ T5877] usb 1-1: GET_CAPABILITIES returned 0
[  415.722618][ T5877] usbtmc 1-1:16.0: can't read capabilities
[  416.346751][ T2995] wlan1: Creating new IBSS network, BSSID 5a:20:51:5b:04:61
[  416.686557][ T5877] usb 1-1: USB disconnect, device number 10
[  420.851017][T10837] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  422.048842][T10843] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1323'.
[  423.640705][T10859] tipc: Started in network mode
[  423.653434][T10859] tipc: Node identity 6aaac175984e, cluster identity 4711
[  423.669045][T10863] overlayfs: failed to clone upperpath
[  423.681945][T10859] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  423.764593][T10859] +
: renamed from syzkaller0
[  423.801418][T10859] tipc: Disabling bearer <eth:syzkaller0>
[  423.903303][   T25] usb 1-1: new high-speed USB device number 11 using dummy_hcd
[  424.150498][   T25] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  424.297201][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  424.731062][   T25] usb 1-1: config 0 descriptor??
[  424.746187][   T25] cp210x 1-1:0.0: cp210x converter detected
[  424.860309][T10876] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1330'.
[  424.901122][T10876] ipvlan1: entered promiscuous mode
[  425.581530][   T25] usb 1-1: cp210x converter now attached to ttyUSB0
[  426.305860][ T5919] usb 1-1: USB disconnect, device number 11
[  426.312801][T10892] futex_wake_op: syz.3.1334 tries to shift op by -1; fix this program
[  426.318897][ T5919] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  426.398115][ T5919] cp210x 1-1:0.0: device disconnected
[  427.813358][ T5919] usb 1-1: new high-speed USB device number 12 using dummy_hcd
[  428.770062][ T5919] usb 1-1: Using ep0 maxpacket: 8
[  428.784476][ T5919] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024
[  428.845648][ T5919] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024
[  428.969841][ T5919] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  428.990415][T10936] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1345'.
[  429.032271][ T5919] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  429.089970][ T5919] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  429.129740][ T5919] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  429.642066][ T5919] usb 1-1: GET_CAPABILITIES returned 0
[  429.755910][ T5919] usbtmc 1-1:16.0: can't read capabilities
[  431.693786][ T5875] usb 1-1: USB disconnect, device number 12
[  432.526758][T10986] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1356'.
[  432.691777][T10989] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  432.700824][T10989] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  432.709945][T10989] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  432.718970][T10989] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  432.744132][T10989] bond0: (slave vxlan0): Enslaving as an active interface with an up link
[  434.348230][T11010] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1361'.
[  435.747835][   T29] kauditd_printk_skb: 9 callbacks suppressed
[  435.747853][   T29] audit: type=1326 audit(1738590664.834:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11011 comm="syz.7.1364" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7c3f18cda9 code=0x0
[  440.994142][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  441.000510][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  444.357316][   T29] audit: type=1326 audit(1738590673.434:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  444.664698][   T29] audit: type=1326 audit(1738590673.434:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  446.164974][   T29] audit: type=1326 audit(1738590673.434:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  446.193250][   T29] audit: type=1326 audit(1738590673.434:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  446.356421][   T35] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  446.485638][   T29] audit: type=1326 audit(1738590673.434:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  446.933053][   T29] audit: type=1326 audit(1738590673.434:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  447.092297][   T29] audit: type=1326 audit(1738590673.434:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  447.284366][T11146] team0: No ports can be present during mode change
[  447.454935][   T29] audit: type=1326 audit(1738590673.444:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  447.464212][T11146] vlan0: entered promiscuous mode
[  447.717657][T11146] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1393'.
[  447.794161][   T29] audit: type=1326 audit(1738590673.444:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  447.820882][   T29] audit: type=1326 audit(1738590673.444:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11115 comm="syz.3.1385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  449.506953][ T5832] Bluetooth: hci3: Unknown advertising packet type: 0x18
[  449.507025][ T5832] Bluetooth: hci3: Unknown advertising packet type: 0x1e
[  449.516483][ T5832] Bluetooth: hci3: Unknown advertising packet type: 0x30
[  449.523772][ T5832] Bluetooth: hci3: Malformed LE Event: 0x0d
[  449.551606][T11172] delete_channel: no stack
[  450.212828][T11180] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1395'.
[  450.447216][T11184] xt_hashlimit: size too large, truncated to 1048576
[  451.318026][T11146] team0 (unregistering): Port device team_slave_0 removed
[  451.383852][T11146] team0 (unregistering): Port device team_slave_1 removed
[  455.272472][T11236] netlink: 'syz.5.1413': attribute type 3 has an invalid length.
[  455.369747][T11236] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1413'.
[  456.293445][    T9] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  457.110744][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 32, changing to 9
[  457.132187][    T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  457.153278][    T9] usb 1-1: New USB device found, idVendor=054c, idProduct=0268, bcdDevice= 0.00
[  457.172788][    T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.203137][    T9] usb 1-1: config 0 descriptor??
[  458.555613][    T9] sony 0003:054C:0268.0005: unbalanced collection at end of report description
[  458.584676][    T9] sony 0003:054C:0268.0005: parse failed
[  458.590434][    T9] sony 0003:054C:0268.0005: probe with driver sony failed with error -22
[  458.774700][ T5921] usb 1-1: USB disconnect, device number 13
[  460.885736][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  460.885755][   T29] audit: type=1326 audit(1738590689.747:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  460.950722][   T29] audit: type=1326 audit(1738590689.747:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  460.981029][   T29] audit: type=1326 audit(1738590689.775:367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  461.004143][   T29] audit: type=1326 audit(1738590689.775:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  461.060703][   T29] audit: type=1326 audit(1738590689.775:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  461.083152][   T29] audit: type=1326 audit(1738590689.775:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  461.105516][   T29] audit: type=1326 audit(1738590689.775:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  461.686985][T11332] hub 2-0:1.0: USB hub found
[  461.697757][T11332] hub 2-0:1.0: 1 port detected
[  462.379486][T11333] syz.0.1434: attempt to access beyond end of device
[  462.379486][T11333] loop0: rw=6144, sector=128, nr_sectors = 8 limit=0
[  462.392876][T11333] gfs2: error -5 reading superblock
[  463.190223][   T29] audit: type=1326 audit(1738590689.775:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  463.713650][   T29] audit: type=1326 audit(1738590689.775:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  463.759657][   T29] audit: type=1326 audit(1738590689.775:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=11319 comm="syz.2.1432" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[  464.262932][T11341] openvswitch: netlink: Unexpected mask (mask=240, allowed=10048)
[  464.361579][T11340] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1438'.
[  464.499443][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[  464.505976][    C1] vcan0: j1939_xtp_rx_dat: no rx connection found
[  464.512513][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[  464.519023][    C1] vcan0: j1939_xtp_rx_dat: no rx connection found
[  464.525569][    C1] vcan0: j1939_xtp_rx_dat: no tx connection found
[  464.532114][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.540096][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.547989][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.555935][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.563840][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.572024][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.579906][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.587837][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.595792][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.603763][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.611704][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.619631][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.627521][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.635503][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.643451][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.651362][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.659246][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.667214][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.675065][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.683035][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.690946][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  464.698897][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no tx connection found
[  464.706735][    C1] vcan0 (unregistering): j1939_xtp_rx_dat: no rx connection found
[  466.441775][T11364] bridge0: port 2(bridge_slave_1) entered disabled state
[  466.449103][T11364] bridge0: port 1(bridge_slave_0) entered disabled state
[  466.527536][T11364] bridge_slave_1: left allmulticast mode
[  466.533226][T11364] bridge_slave_1: left promiscuous mode
[  466.582065][T11364] bridge0: port 2(bridge_slave_1) entered disabled state
[  466.618489][T11364] bridge_slave_0: left allmulticast mode
[  466.626320][T11364] bridge_slave_0: left promiscuous mode
[  466.638789][T11364] bridge0: port 1(bridge_slave_0) entered disabled state
[  466.744747][T11377] syz.7.1449 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  466.787577][T11364] bond0: (slave bridge0): Releasing backup interface
[  467.650946][T11384] overlayfs: failed to clone upperpath
[  468.909188][ T5832] Bluetooth: hci3: command 0x0406 tx timeout
[  469.104835][T11411] xt_TPROXY: Can be used only with -p tcp or -p udp
[  470.332198][T11420] netlink: 596 bytes leftover after parsing attributes in process `syz.7.1461'.
[  471.769815][T11423] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1462'.
[  472.013342][T11425] ptrace attach of "./syz-executor exec"[11428] was attempted by ""[11425]
[  472.297076][T11436] xt_TPROXY: Can be used only with -p tcp or -p udp
[  473.089115][ T5831] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[  473.276607][ T5831] usb 6-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  473.530606][ T5831] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  474.310033][ T5831] usb 6-1: config 0 descriptor??
[  475.948634][ T5831] usbhid 6-1:0.0: can't add hid device: -71
[  475.978579][ T5831] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  476.007654][ T5831] usb 6-1: USB disconnect, device number 5
[  476.024730][   T29] audit: type=1800 audit(1738590703.909:375): pid=11465 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed(directio) comm="syz.0.1475" name="bus" dev="overlay" ino=1371 res=0 errno=0
[  476.044650][    C0] vkms_vblank_simulate: vblank timer overrun
[  477.603604][T11481] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1481'.
[  477.613087][T11481] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1481'.
[  477.734019][   T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.093013][   T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.643520][   T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  478.812788][   T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  479.042750][ T5832] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  479.062925][ T5832] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  479.073733][ T5832] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  479.082177][ T5832] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  479.091750][ T5832] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  479.100584][ T5832] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  479.252007][   T12] bridge_slave_1: left allmulticast mode
[  479.265724][   T12] bridge_slave_1: left promiscuous mode
[  479.272120][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  479.333127][   T12] bridge_slave_0: left allmulticast mode
[  479.339050][   T12] bridge_slave_0: left promiscuous mode
[  479.356696][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.424326][   T11] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  481.079606][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  481.106195][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  481.117152][   T12] bond0 (unregistering): Released all slaves
[  481.208159][T11514] syz.5.1491 (11514): drop_caches: 2
[  481.310947][ T5836] Bluetooth: hci0: command tx timeout
[  481.654444][   T12] bond1 (unregistering): (slave batadv1): Releasing active interface
[  481.669647][   T12] bond1 (unregistering): Released all slaves
[  482.423023][T11509] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  482.491043][   T12] tipc: Left network mode
[  483.533923][ T5836] Bluetooth: hci0: command tx timeout
[  484.380414][   T12] hsr_slave_0: left promiscuous mode
[  484.744371][   T12] hsr_slave_1: left promiscuous mode
[  484.777496][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  484.814523][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  485.757606][ T5836] Bluetooth: hci0: command tx timeout
[  485.918536][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  486.103483][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  486.423752][T11579] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1506'.
[  486.452450][T11579] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1506'.
[  486.597714][   T12] dummy0: left allmulticast mode
[  486.604353][   T12] dummy0: left promiscuous mode
[  486.610136][   T12] veth1_macvtap: left promiscuous mode
[  486.660169][   T12] veth0_macvtap: left promiscuous mode
[  486.665837][   T12] veth1_vlan: left promiscuous mode
[  486.697475][   T12] veth0_vlan: left promiscuous mode
[  487.981576][ T5836] Bluetooth: hci0: command tx timeout
[  488.292090][    T9] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  489.387093][    T9] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  489.397508][    T9] usb 8-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  489.419206][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  489.443919][    T9] usb 8-1: config 0 descriptor??
[  489.468662][    T9] pwc: Askey VC010 type 2 USB webcam detected.
[  489.546307][   T12] team0 (unregistering): Port device team_slave_1 removed
[  489.620578][   T12] team0 (unregistering): Port device team_slave_0 removed
[  489.919406][    T9] pwc: recv_control_msg error -32 req 02 val 2b00
[  489.933989][    T9] pwc: recv_control_msg error -32 req 02 val 2700
[  489.955714][    T9] pwc: recv_control_msg error -32 req 02 val 2c00
[  489.987627][    T9] pwc: recv_control_msg error -32 req 04 val 1000
[  489.996723][    T9] pwc: recv_control_msg error -32 req 04 val 1300
[  490.024365][    T9] pwc: recv_control_msg error -32 req 04 val 1400
[  490.032412][    T9] pwc: recv_control_msg error -32 req 02 val 2000
[  490.040388][    T9] pwc: recv_control_msg error -32 req 02 val 2100
[  490.060683][    T9] pwc: recv_control_msg error -32 req 04 val 1500
[  490.068988][    T9] pwc: recv_control_msg error -32 req 02 val 2500
[  490.076575][    T9] pwc: recv_control_msg error -32 req 02 val 2400
[  490.299033][    T9] pwc: recv_control_msg error -71 req 02 val 2900
[  490.318923][    T9] pwc: recv_control_msg error -71 req 02 val 2800
[  490.327660][    T9] pwc: recv_control_msg error -71 req 04 val 1100
[  490.337470][    T9] pwc: recv_control_msg error -71 req 04 val 1200
[  490.625848][    T9] pwc: Registered as video103.
[  490.737972][    T9] input: PWC snapshot button as /devices/platform/dummy_hcd.7/usb8/8-1/input/input18
[  490.914367][    T9] usb 8-1: USB disconnect, device number 2
[  491.240652][T11610] affs: No valid root block on device nullb0
[  492.622097][T11499] chnl_net:caif_netlink_parms(): no params data found
[  493.030916][T11629] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1525'.
[  493.075380][T11629] xt_connbytes: Forcing CT accounting to be enabled
[  493.082788][T11629] Cannot find add_set index 0 as target
[  493.276103][T11626] overlayfs: failed to get inode (-116)
[  493.351225][T11626] overlayfs: failed to look up (file2) for ino (-116)
[  493.660213][T11632] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1526'.
[  493.755665][T11632] tipc: Started in network mode
[  493.782388][T11632] tipc: Node identity 7, cluster identity 5
[  493.829234][T11632] tipc: Node number set to 7
[  494.000983][T11499] bridge0: port 1(bridge_slave_0) entered blocking state
[  494.008125][T11499] bridge0: port 1(bridge_slave_0) entered disabled state
[  494.033136][T11499] bridge_slave_0: entered allmulticast mode
[  494.040306][T11499] bridge_slave_0: entered promiscuous mode
[  494.075599][T11499] bridge0: port 2(bridge_slave_1) entered blocking state
[  494.082746][T11499] bridge0: port 2(bridge_slave_1) entered disabled state
[  494.118728][T11499] bridge_slave_1: entered allmulticast mode
[  494.125742][ T5832] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  494.137729][ T5832] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  494.149597][ T5832] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  494.167465][ T5832] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  494.179861][T11499] bridge_slave_1: entered promiscuous mode
[  494.225224][ T5832] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  494.232868][ T5832] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  494.268954][T11499] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  494.281896][T11499] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  494.422818][T11499] team0: Port device team_slave_0 added
[  494.435402][T11499] team0: Port device team_slave_1 added
[  495.512834][T11499] batman_adv: batadv0: Adding interface: batadv_slave_0
[  496.188164][T11499] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.271885][T11499] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  496.334130][T11499] batman_adv: batadv0: Adding interface: batadv_slave_1
[  496.357072][T11499] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  496.392236][T11499] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  496.428481][T11664] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1532'.
[  496.535626][ T5832] Bluetooth: hci1: command tx timeout
[  496.620066][T11499] hsr_slave_0: entered promiscuous mode
[  496.631600][T11499] hsr_slave_1: entered promiscuous mode
[  496.637792][T11499] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  496.671316][T11499] Cannot create hsr debugfs directory
[  496.843631][T11681] netdevsim netdevsim2 netdevsim0: entered promiscuous mode
[  497.844821][T11647] chnl_net:caif_netlink_parms(): no params data found
[  498.759059][ T5832] Bluetooth: hci1: command tx timeout
[  498.927519][T11722] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1544'.
[  500.005031][T11647] bridge0: port 1(bridge_slave_0) entered blocking state
[  500.018761][T11647] bridge0: port 1(bridge_slave_0) entered disabled state
[  500.025982][T11647] bridge_slave_0: entered allmulticast mode
[  500.037921][T11647] bridge_slave_0: entered promiscuous mode
[  500.138573][T11647] bridge0: port 2(bridge_slave_1) entered blocking state
[  500.182900][T11647] bridge0: port 2(bridge_slave_1) entered disabled state
[  500.585543][T11647] bridge_slave_1: entered allmulticast mode
[  500.629211][T11647] bridge_slave_1: entered promiscuous mode
[  500.727240][T11499] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  500.813126][T11647] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  500.967796][T11499] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  500.998205][ T5832] Bluetooth: hci1: command tx timeout
[  501.016162][T11499] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  501.816988][T11647] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  501.984280][T11499] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  502.326083][T11647] team0: Port device team_slave_0 added
[  503.322561][ T5832] Bluetooth: hci1: command tx timeout
[  503.325353][T11647] team0: Port device team_slave_1 added
[  503.731088][T11766] tty tty35: ldisc open failed (-12), clearing slot 34
[  504.330756][T11647] batman_adv: batadv0: Adding interface: batadv_slave_0
[  504.345447][T11647] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  504.508817][T11647] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  504.521855][T11779] sctp: [Deprecated]: syz.3.1556 (pid 11779) Use of int in max_burst socket option deprecated.
[  504.521855][T11779] Use struct sctp_assoc_value instead
[  504.593717][T11647] batman_adv: batadv0: Adding interface: batadv_slave_1
[  504.624855][T11647] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  504.700797][T11647] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  504.835844][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  504.842636][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  504.934646][T11647] hsr_slave_0: entered promiscuous mode
[  504.956998][T11647] hsr_slave_1: entered promiscuous mode
[  504.969096][T11647] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  504.976693][T11647] Cannot create hsr debugfs directory
[  506.121703][T11499] 8021q: adding VLAN 0 to HW filter on device bond0
[  506.149940][T11799] netlink: 'syz.7.1561': attribute type 10 has an invalid length.
[  506.164477][T11799] netlink: 40 bytes leftover after parsing attributes in process `syz.7.1561'.
[  506.427969][T11799] team0: Port device geneve0 added
[  506.450368][T11499] 8021q: adding VLAN 0 to HW filter on device team0
[  507.272773][T11499] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  507.299139][T11499] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  507.393603][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  507.400809][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  507.445615][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  507.452818][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  509.250287][T11499] 8021q: adding VLAN 0 to HW filter on device batadv0
[  509.395710][T11647] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  509.463374][T11647] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  510.453136][T11647] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  510.520346][T11647] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  511.445695][T11647] 8021q: adding VLAN 0 to HW filter on device bond0
[  511.511999][T11499] veth0_vlan: entered promiscuous mode
[  511.551573][T11647] 8021q: adding VLAN 0 to HW filter on device team0
[  511.580915][ T9274] bridge0: port 1(bridge_slave_0) entered blocking state
[  511.588091][ T9274] bridge0: port 1(bridge_slave_0) entered forwarding state
[  511.623435][T11854] overlayfs: failed to clone upperpath
[  511.836374][T11499] veth1_vlan: entered promiscuous mode
[  512.787692][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  512.794905][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  513.515042][T11647] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  513.609401][ T2976] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  513.664163][T11499] veth0_macvtap: entered promiscuous mode
[  513.897036][T11499] veth1_macvtap: entered promiscuous mode
[  513.996051][T11499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  514.048011][T11499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.070223][T11499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  514.091653][T11499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.131524][T11499] batman_adv: batadv0: Interface activated: batadv_slave_0
[  514.185049][T11499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  514.206330][T11877] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  514.262956][T11499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.307203][T11499] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  514.340214][T11499] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.352488][T11499] batman_adv: batadv0: Interface activated: batadv_slave_1
[  514.405059][T11647] 8021q: adding VLAN 0 to HW filter on device batadv0
[  514.563154][T11499] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  514.652553][T11499] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  514.683823][T11499] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  514.692962][T11499] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  516.696666][ T9274] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  516.704528][ T9274] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  517.647597][   T72] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  517.655465][   T72] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  517.772664][T11928] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1582'.
[  518.249812][T11647] veth0_vlan: entered promiscuous mode
[  518.296940][T11647] veth1_vlan: entered promiscuous mode
[  518.389625][T11647] veth0_macvtap: entered promiscuous mode
[  518.519632][T11647] veth1_macvtap: entered promiscuous mode
[  518.537860][T11647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  518.548422][T11647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  518.559014][T11647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  518.569593][T11647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  518.579902][T11647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  518.604343][T11647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.480121][T11647] batman_adv: batadv0: Interface activated: batadv_slave_0
[  519.499365][T11647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  519.529131][T11647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.539001][T11647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  519.706485][T11647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.717846][T11647] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  519.728833][T11647] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  519.740175][T11647] batman_adv: batadv0: Interface activated: batadv_slave_1
[  519.793942][T11647] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  520.535905][T11647] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  520.664079][T11647] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  520.705432][T11647] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  521.081817][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  521.113863][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  521.218493][   T72] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  521.226362][   T72] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  529.373843][T12031] tty tty38: ldisc open failed (-12), clearing slot 37
[  530.360689][T12046] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1606'.
[  530.370018][T12046] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1606'.
[  530.393110][T12046] batadv1: entered promiscuous mode
[  530.400854][T12046] 8021q: adding VLAN 0 to HW filter on device batadv1
[  536.795084][T12100] bridge: RTM_NEWNEIGH with invalid ether address
[  537.086927][T12107] netlink: 'syz.7.1617': attribute type 62 has an invalid length.
[  537.557728][    T9] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  538.656820][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  538.716565][T12115] No such timeout policy "syz0"
[  539.082783][    T9] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  539.179891][    T9] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  539.243451][    T9] usb 9-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  539.330440][    T9] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  539.370646][    T9] usb 9-1: config 0 descriptor??
[  539.403442][T12106] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[  539.936662][    T9] plantronics 0003:047F:FFFF.0006: unknown main item tag 0xd
[  539.948825][    T9] plantronics 0003:047F:FFFF.0006: No inputs registered, leaving
[  540.259412][T12100] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  540.268075][T12100] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  540.299707][    T9] plantronics 0003:047F:FFFF.0006: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.8-1/input0
[  540.362374][    T9] usb 9-1: USB disconnect, device number 2
[  540.558483][T12138] kvm: pic: single mode not supported
[  540.574873][T12143] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1627'.
[  540.630135][T12143] netlink: 8 bytes leftover after parsing attributes in process `syz.9.1627'.
[  542.530597][T12164] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1632'.
[  547.380382][ T2976] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  550.638914][T12232] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1647'.
[  554.343869][T12256] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1653'.
[  556.607107][T12268] kernel read not supported for file / 
���ԢW)�S���-� (pid: 12268 comm: syz.2.1658)
[  556.617227][   T29] audit: type=1800 audit(1738590779.303:376): pid=12268 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.2.1658" name=20019CCFFCD4A25729EB5393A7C72DEB dev="mqueue" ino=32663 res=0 errno=0
[  556.687109][T12286] netlink: 830 bytes leftover after parsing attributes in process `syz.8.1659'.
[  558.748153][T12313] overlayfs: failed to clone upperpath
[  566.126577][T12381] xt_TCPMSS: Only works on TCP SYN packets
[  570.519617][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  570.526239][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  578.698318][T12472] Bluetooth: MGMT ver 1.23
[  579.201846][T12486] pim6reg: entered allmulticast mode
[  579.229163][T12486] pim6reg: left allmulticast mode
[  579.606826][T12501] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1709'.
[  581.395719][ T5836] Bluetooth: hci1: command 0x0405 tx timeout
[  583.544874][   T29] audit: type=1326 audit(1738590804.418:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=12519 comm="syz.3.1714" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x0
[  585.249653][   T72] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  588.487183][ T5832] Bluetooth: hci3: unexpected event for opcode 0x0c0d
[  590.921148][ T5919] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  592.463875][ T5919] usb 10-1: Using ep0 maxpacket: 16
[  592.501572][ T5919] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  592.535185][ T5919] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  592.571386][ T5919] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  592.595392][ T5919] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  592.777206][T12621] netlink: 108 bytes leftover after parsing attributes in process `syz.7.1736'.
[  593.572819][T12621] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1736'.
[  593.590461][ T5919] usb 10-1: Product: syz
[  593.604860][ T5919] usb 10-1: Manufacturer: syz
[  593.609585][ T5919] usb 10-1: SerialNumber: syz
[  593.637733][T12623] lo speed is unknown, defaulting to 1000
[  593.643542][T12623] lo speed is unknown, defaulting to 1000
[  593.649971][T12623] lo speed is unknown, defaulting to 1000
[  593.661812][T12623] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  593.683407][T12623] lo speed is unknown, defaulting to 1000
[  593.690232][T12623] lo speed is unknown, defaulting to 1000
[  593.696842][T12623] lo speed is unknown, defaulting to 1000
[  593.703853][T12623] lo speed is unknown, defaulting to 1000
[  593.710459][T12623] lo speed is unknown, defaulting to 1000
[  593.717121][T12623] lo speed is unknown, defaulting to 1000
[  593.808984][ T5919] usb 10-1: can't set config #1, error -71
[  593.835071][ T5919] usb 10-1: USB disconnect, device number 2
[  593.968668][T12632] netlink: 'syz.8.1741': attribute type 1 has an invalid length.
[  593.976469][T12632] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1741'.
[  594.056209][T12632] netlink: 'syz.8.1741': attribute type 1 has an invalid length.
[  594.302803][T12632] netlink: 224 bytes leftover after parsing attributes in process `syz.8.1741'.
[  598.066748][T12689] netlink: 'syz.8.1751': attribute type 4 has an invalid length.
[  598.158702][T12689] netlink: 'syz.8.1751': attribute type 4 has an invalid length.
[  601.415547][   T25] libceph: connect (1)[c::]:6789 error -101
[  601.441469][   T25] libceph: mon0 (1)[c::]:6789 connect error
[  601.546258][T12740] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1761'.
[  601.579073][T12740] netlink: 16 bytes leftover after parsing attributes in process `syz.7.1761'.
[  601.615740][T12740] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1761'.
[  601.669167][T12740] netlink: 36 bytes leftover after parsing attributes in process `syz.7.1761'.
[  601.743392][   T25] libceph: connect (1)[c::]:6789 error -101
[  601.752506][   T25] libceph: mon0 (1)[c::]:6789 connect error
[  601.784335][T12728] ceph: No mds server is up or the cluster is laggy
[  609.954735][   T29] audit: type=1804 audit(1738590829.187:378): pid=12794 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=ToMToU comm="syz.7.1775" name="/newroot/136/file0" dev="fuse" ino=1 res=1 errno=0
[  612.152469][ T5836] Bluetooth: hci0: command 0x0406 tx timeout
[  612.403233][T12809] overlayfs: failed to clone upperpath
[  618.670945][   T29] audit: type=1800 audit(1738590837.335:379): pid=12869 uid=0 auid=4294967295 ses=4294967295 subj=_ op=collect_data cause=failed comm="syz.8.1796" name="/" dev="9p" ino=2 res=0 errno=0
[  618.818062][T12875] netlink: 7084 bytes leftover after parsing attributes in process `syz.3.1798'.
[  619.637952][   T52] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  625.512238][T12908] overlayfs: failed to clone upperpath
[  628.276251][ T5832] Bluetooth: hci1: command 0x0405 tx timeout
[  631.876117][T12964] netlink: 168 bytes leftover after parsing attributes in process `syz.2.1821'.
[  636.220096][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  639.274653][ T5919] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[  639.400952][T13020] overlayfs: failed to clone upperpath
[  639.534944][ T5919] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  639.547033][ T5919] usb 8-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[  639.569485][ T5919] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[  639.603612][ T5919] usb 8-1: Product: syz
[  639.613042][ T5919] usb 8-1: Manufacturer: syz
[  639.633007][ T5919] usb 8-1: SerialNumber: syz
[  639.660038][ T5919] usb 8-1: config 0 descriptor??
[  641.954013][ T5875] usb 8-1: USB disconnect, device number 3
[  649.050830][T13092] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1853'.
[  650.097696][T13113] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1859'.
[  655.074361][T13147] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1871'.
[  655.229657][T13152] netlink: 830 bytes leftover after parsing attributes in process `syz.7.1869'.
[  655.751666][T13147] netlink: 28 bytes leftover after parsing attributes in process `syz.9.1871'.
[  656.296027][T13147] dummy0: entered promiscuous mode
[  656.837002][T13147] bond0: entered promiscuous mode
[  656.842404][T13147] bond_slave_0: entered promiscuous mode
[  656.980050][T13147] bond_slave_1: entered promiscuous mode
[  657.314627][ T1150] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  659.357902][T13184] xt_SECMARK: unable to map security context 'unconfined'
[  666.796916][T13256] Can't find a SQUASHFS superblock on nullb0
[  668.425592][T13269] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1903'.
[  675.758888][ T5877] libceph: connect (1)[c::]:6789 error -101
[  675.783503][ T5877] libceph: mon0 (1)[c::]:6789 connect error
[  676.061905][T13321] vlan2: entered promiscuous mode
[  676.072674][ T5877] libceph: connect (1)[c::]:6789 error -101
[  676.073426][T13321] dummy0: entered promiscuous mode
[  676.078759][ T5877] libceph: mon0 (1)[c::]:6789 connect error
[  676.111334][T13321] team0: Port device vlan2 added
[  676.329661][T13304] ceph: No mds server is up or the cluster is laggy
[  676.846558][    T9] libceph: connect (1)[c::]:6789 error -101
[  676.852820][    T9] libceph: mon0 (1)[c::]:6789 connect error
[  677.286046][T13333] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  678.856457][    T9] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  679.457687][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  679.600775][    T9] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  680.027241][    T9] usb 8-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  680.350153][    T9] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  680.412194][ T5836] Bluetooth: hci3: command 0x0406 tx timeout
[  680.414906][    T9] usb 8-1: config 0 descriptor??
[  681.344086][    T9] usbhid 8-1:0.0: can't add hid device: -71
[  681.361198][    T9] usbhid 8-1:0.0: probe with driver usbhid failed with error -71
[  681.371225][    T9] usb 8-1: USB disconnect, device number 4
[  682.254877][T13377] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1933'.
[  684.003507][T13395] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1939'.
[  684.034904][T13395] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1939'.
[  688.131671][   T25] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[  689.424563][   T25] usb 8-1: Using ep0 maxpacket: 32
[  689.446640][   T25] usb 8-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  689.466187][   T25] usb 8-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  690.371978][   T25] usb 8-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  690.382613][   T25] usb 8-1: Product: syz
[  690.387921][   T25] usb 8-1: Manufacturer: syz
[  690.392619][   T25] usb 8-1: SerialNumber: syz
[  690.421274][   T25] usb 8-1: config 0 descriptor??
[  690.439878][T13427] raw-gadget.0 gadget.7: fail, usb_ep_enable returned -22
[  690.576249][T13442] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  690.929895][ T5919] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  691.273801][ T5919] usb 9-1: Using ep0 maxpacket: 32
[  691.370890][ T2995] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  691.372019][    T9] usb 8-1: USB disconnect, device number 5
[  691.467841][ T5919] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[  691.477401][ T5919] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[  691.513686][ T5919] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[  691.533234][ T5919] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[  691.548393][ T5919] usb 9-1: config 0 interface 0 has no altsetting 0
[  691.561698][ T5919] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[  691.573840][ T5919] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[  691.594452][ T5919] usb 9-1: Product: syz
[  691.605124][ T5919] usb 9-1: Manufacturer: syz
[  691.612952][ T5919] usb 9-1: SerialNumber: syz
[  691.638962][ T5919] usb 9-1: config 0 descriptor??
[  691.649287][ T5919] ldusb 9-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[  691.665130][ T5919] ldusb 9-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[  693.457112][   T25] usb 9-1: USB disconnect, device number 3
[  693.463027][    C1] ldusb 9-1:0.0: usb_submit_urb failed (-19)
[  693.472665][   T25] ldusb 9-1:0.0: LD USB Device #0 now disconnected
[  693.655093][T13477] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1965'.
[  693.839862][T13480] openvswitch: netlink: Mixed IPv4 and IPv6 tunnel attributes
[  700.073167][T13521] netlink: 'syz.7.1977': attribute type 1 has an invalid length.
[  701.884646][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  701.944161][T13536] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1981'.
[  702.018395][T13538] overlayfs: failed to clone lowerpath
[  702.086894][T13536] vlan2: entered allmulticast mode
[  702.152300][T13536] dummy0: entered allmulticast mode
[  702.483490][T13536] dummy0: left allmulticast mode
[  702.694688][T13545] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1983'.
[  707.725025][   T29] audit: type=1326 audit(1738590920.637:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  708.299301][   T29] audit: type=1326 audit(1738590920.665:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  708.392709][   T29] audit: type=1326 audit(1738590920.665:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=37 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  708.587419][   T29] audit: type=1326 audit(1738590920.665:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  708.656413][   T29] audit: type=1326 audit(1738590920.665:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  709.481075][   T29] audit: type=1326 audit(1738590920.665:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  709.503603][   T29] audit: type=1326 audit(1738590920.665:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  709.525772][   T29] audit: type=1326 audit(1738590920.665:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  709.548045][   T29] audit: type=1326 audit(1738590920.665:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  709.570107][   T29] audit: type=1326 audit(1738590920.674:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=13579 comm="syz.3.1994" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[  712.947800][T13611] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2004'.
[  713.309567][T13619] input: syz0 as /devices/virtual/input/input20
[  714.327241][T13623] netlink: 12 bytes leftover after parsing attributes in process `syz.7.2008'.
[  714.351998][T13623] smc: net device bond0 applied user defined pnetid SYZ
[  715.748127][T13658] smc: net device caif0 applied user defined pnetid SYZ2
[  716.640338][T13666] netlink: 16 bytes leftover after parsing attributes in process `syz.8.2019'.
[  724.132383][T13722] lo speed is unknown, defaulting to 1000
[  724.941233][T13728] CIFS: iocharset name too long
[  726.694425][   T52] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  729.274517][T13753] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2043'.
[  729.284376][T13753] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2043'.
[  729.293454][T13753] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2043'.
[  729.302438][T13753] netlink: 72 bytes leftover after parsing attributes in process `syz.2.2043'.
[  729.889621][T13758] pim6reg: entered allmulticast mode
[  729.905558][T13758] pim6reg: left allmulticast mode
[  733.704970][ T5875] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[  733.718274][T13806] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2058'.
[  733.929320][ T5875] usb 10-1: Using ep0 maxpacket: 16
[  733.967712][ T5875] usb 10-1: config 1 has an invalid interface number: 10 but max is 2
[  734.034699][ T5875] usb 10-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  734.121362][ T5875] usb 10-1: config 1 has 1 interface, different from the descriptor's value: 3
[  734.255227][ T5875] usb 10-1: config 1 has no interface number 0
[  734.321377][ T5875] usb 10-1: config 1 interface 10 altsetting 36 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  734.403775][ T5875] usb 10-1: config 1 interface 10 has no altsetting 0
[  734.429729][ T5875] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  734.454979][ T5875] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  734.480660][ T5875] usb 10-1: Product: syz
[  734.535862][ T5875] usb 10-1: Manufacturer: syz
[  734.540854][ T5875] usb 10-1: SerialNumber: syz
[  735.559654][ T5875] usb 10-1: USB disconnect, device number 3
[  739.127963][T13845] xt_CT: No such helper "pptp"
[  740.003556][T13851] delete_channel: no stack
[  744.524803][T13878] ISOFS: Unable to identify CD-ROM format.
[  746.353757][T13916] netlink: 'syz.9.2089': attribute type 61 has an invalid length.
[  748.769504][T13931] xt_l2tp: invalid flags combination: 4
[  751.124119][T13939] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  753.027718][T13958] netlink: 'syz.3.2105': attribute type 21 has an invalid length.
[  753.036122][T13958] netlink: 'syz.3.2105': attribute type 6 has an invalid length.
[  753.065631][T13958] netlink: 132 bytes leftover after parsing attributes in process `syz.3.2105'.
[  753.110219][T13961] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  753.605003][T13969] omfs: Invalid superblock (0)
[  758.862731][T14008] 
: renamed from ipvlan1
[  760.138301][T14017] pim6reg: entered allmulticast mode
[  760.974851][T14017] pim6reg: left allmulticast mode
[  761.754513][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  763.098682][T14051] PKCS7: Unknown OID: [4] 5.25(bad)
[  763.753438][T14051] PKCS7: Only support pkcs7_signedData type
[  763.967896][T14056] trusted_key: encrypted_key: insufficient parameters specified
[  766.251881][T14077] netlink: 'syz.2.2135': attribute type 19 has an invalid length.
[  767.785872][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  770.786749][T14116] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  770.876920][T14116] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  770.889850][T14116] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  774.978611][T14157] program syz.9.2155 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  776.036227][T14163] 
: renamed from ipvlan1
[  777.362678][T14169] delete_channel: no stack
[  779.268887][T14183] openvswitch: netlink: Either Ethernet header or EtherType is required.
[  788.588168][T14252] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2186'.
[  794.171062][T14299] netlink: 'syz.9.2199': attribute type 21 has an invalid length.
[  794.179517][T14299] netlink: 132 bytes leftover after parsing attributes in process `syz.9.2199'.
[  795.294996][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  800.323890][  T908] usb 10-1: new high-speed USB device number 4 using dummy_hcd
[  800.863261][  T908] usb 10-1: Using ep0 maxpacket: 32
[  801.201925][  T908] usb 10-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  801.221720][  T908] usb 10-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  801.237297][  T908] usb 10-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  801.253860][  T908] usb 10-1: Product: syz
[  801.258162][  T908] usb 10-1: Manufacturer: syz
[  801.265810][  T908] usb 10-1: SerialNumber: syz
[  801.311326][  T908] usb 10-1: config 0 descriptor??
[  801.341262][T14349] raw-gadget.0 gadget.9: fail, usb_ep_enable returned -22
[  802.406279][T14366] netlink: 40 bytes leftover after parsing attributes in process `syz.7.2220'.
[  802.521278][T14368] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  802.529926][T14368] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  803.843051][  T975] usb 10-1: USB disconnect, device number 4
[  805.174942][T14393] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  805.209923][T14393] kvm: pic: level sensitive irq not supported
[  805.210082][T14393] kvm: pic: non byte read
[  806.220468][T14393] kvm: pic: level sensitive irq not supported
[  806.220544][T14393] kvm: pic: non byte read
[  806.273002][T14393] kvm: pic: level sensitive irq not supported
[  806.273096][T14393] kvm: pic: non byte read
[  806.288169][T14393] kvm: pic: level sensitive irq not supported
[  806.288263][T14393] kvm: pic: non byte read
[  815.185621][T14456] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2243'.
[  815.209510][T14456] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2243'.
[  816.017264][T14459] netdevsim netdevsim2 : renamed from netdevsim0
[  816.070593][T14459] netdevsim netdevsim2 : left promiscuous mode
[  816.216540][T14450] netlink: 12 bytes leftover after parsing attributes in process `syz.8.2241'.
[  819.683914][T14487] o2cb: This node has not been configured.
[  819.690287][T14487] o2cb: Cluster check failed. Fix errors before retrying.
[  819.697617][T14487] (syz.7.2252,14487,0):user_dlm_register:674 ERROR: status = -22
[  819.705530][T14487] (syz.7.2252,14487,0):dlmfs_mkdir:438 ERROR: Error -22 could not register domain "file1"
[  821.703155][T14495] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[  822.480588][T14502] netlink: 'syz.9.2257': attribute type 16 has an invalid length.
[  822.488855][T14502] netlink: 'syz.9.2257': attribute type 17 has an invalid length.
[  822.910951][T14502] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  826.025275][T14522] program syz.7.2262 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  829.529011][  T908] IPVS: starting estimator thread 0...
[  830.343464][   T12] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  830.658460][T14554] --map-set only usable from mangle table
[  831.374294][T14552] IPVS: using max 28 ests per chain, 67200 per kthread
[  833.260033][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  834.731686][T14594] netlink: 'syz.7.2283': attribute type 32 has an invalid length.
[  834.812927][T14600] bond0: option mode: unable to set because the bond device has slaves
[  835.819567][T14600] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[  840.217846][T14653] netlink: 'syz.2.2294': attribute type 4 has an invalid length.
[  841.013657][T14662] xt_bpf: check failed: parse error
[  843.476073][T14685] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2304'.
[  844.480943][   T12] wlan1: Trigger new scan to find an IBSS to join
[  845.166141][T14708] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2310'.
[  846.002100][T14708] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  846.029036][T14708] tipc: Started in network mode
[  846.058125][T14708] tipc: Node identity f9, cluster identity 4711
[  846.076378][T14708] tipc: Node number set to 249
[  846.190484][T14724] overlayfs: failed to clone lowerpath
[  846.245714][T14708] lo speed is unknown, defaulting to 1000
[  846.270327][T14726] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2314'.
[  846.289913][T14726] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2314'.
[  847.886872][   T12] wlan1: Trigger new scan to find an IBSS to join
[  848.092411][T14745] netlink: 'syz.9.2320': attribute type 21 has an invalid length.
[  850.579443][T14769] x_tables: (null)_tables: SNAT target: only valid in nat table, not syz0
[  850.799980][ T9269] wlan1: Trigger new scan to find an IBSS to join
[  851.016732][T14775] Bluetooth: MGMT ver 1.23
[  851.108245][ T9269] wlan1: Creating new IBSS network, BSSID be:e1:c4:66:33:cf
[  851.768251][T14790] bridge_slave_0: left allmulticast mode
[  851.774297][T14790] bridge_slave_0: left promiscuous mode
[  851.780877][T14790] bridge0: port 1(bridge_slave_0) entered disabled state
[  852.671242][T14790] bridge_slave_1: left allmulticast mode
[  852.676999][T14790] bridge_slave_1: left promiscuous mode
[  852.682861][T14790] bridge0: port 2(bridge_slave_1) entered disabled state
[  852.849507][T14790] bond0: (slave bond_slave_0): Releasing backup interface
[  852.859934][T14790] bond_slave_0: left promiscuous mode
[  853.012738][T14790] bond0: (slave bond_slave_1): Releasing backup interface
[  853.027931][T14790] bond_slave_1: left promiscuous mode
[  853.059511][T14790] team0: Port device team_slave_0 removed
[  854.022336][T14790] team0: Port device team_slave_1 removed
[  854.031557][T14790] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  854.039913][T14790] batman_adv: batadv0: Removing interface: batadv_slave_0
[  854.065614][T14790] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  854.073616][T14790] batman_adv: batadv0: Removing interface: batadv_slave_1
[  856.007144][T14816] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2336'.
[  856.031156][T14816] netlink: 12 bytes leftover after parsing attributes in process `syz.9.2336'.
[  857.265356][   T29] kauditd_printk_skb: 19 callbacks suppressed
[  857.265369][   T29] audit: type=1326 audit(1738591060.517:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=14791 comm="syz.7.2342" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7c3f18cda9 code=0x7fc00000
[  857.577998][T14819] ebtables: ebtables: counters copy to user failed while replacing table
[  858.928424][T14838] netlink: 'syz.7.2340': attribute type 2 has an invalid length.
[  860.035841][  T908] usb 10-1: new full-speed USB device number 5 using dummy_hcd
[  860.352371][  T908] usb 10-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d
[  861.138593][  T908] usb 10-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3
[  861.146839][  T908] usb 10-1: Product: syz
[  861.233707][  T908] usb 10-1: Manufacturer: syz
[  861.238458][  T908] usb 10-1: SerialNumber: syz
[  861.297298][  T908] usb 10-1: can't set config #4, error -71
[  861.321168][  T908] usb 10-1: USB disconnect, device number 5
[  862.424281][T14871] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2351'.
[  863.151758][T14871] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2351'.
[  876.687104][ T5832] Bluetooth: hci1: unexpected event for opcode 0x041b
[  878.899281][T14998] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2387'.
[  879.394323][T15015] IPVS: rr: UDP 224.0.0.2:0 - no destination available
[  884.787902][T15047] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  885.085535][T15055] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2398'.
[  885.981957][T15070] netlink: 'syz.8.2402': attribute type 10 has an invalid length.
[  886.022430][T15072] overlayfs: missing 'lowerdir'
[  886.111123][T15077] netlink: 164 bytes leftover after parsing attributes in process `syz.8.2402'.
[  886.166969][T15070] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  886.291115][T15083] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2405'.
[  889.234562][   T29] audit: type=1804 audit(1738591090.432:410): pid=15108 uid=0 auid=4294967295 ses=4294967295 subj=_ op=invalid_pcr cause=open_writers comm="syz.8.2411" name="bus" dev="ramfs" ino=42158 res=1 errno=0
[  889.385474][T15116] netlink: 4 bytes leftover after parsing attributes in process `syz.7.2415'.
[  889.397733][T15116] ipvlan1: entered promiscuous mode
[  889.416100][T15116] 8021q: adding VLAN 0 to HW filter on device ipvlan1
[  889.471040][T15100] xt_CT: No such helper "pptp"
[  896.340657][T15170] input: syz1 as /devices/virtual/input/input21
[  898.714415][T15185] xt_l2tp: invalid flags combination: c
[  899.015232][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  904.288976][T15226] netlink: 'syz.8.2445': attribute type 3 has an invalid length.
[  904.296887][T15226] netlink: 199836 bytes leftover after parsing attributes in process `syz.8.2445'.
[  906.138028][T15237] netlink: 'syz.8.2447': attribute type 5 has an invalid length.
[  906.154137][T15237] : entered promiscuous mode
[  906.788415][T15251] /dev/nullb0: Can't open blockdev
[  907.060379][T15251] infiniband syz1: set down
[  907.065165][T15251] infiniband syz1: added team_slave_0
[  907.125816][T15251] RDS/IB: syz1: added
[  907.130668][T15251] smc: adding ib device syz1 with port count 1
[  907.137038][T15251] smc:    ib device syz1 port 1 has pnetid SYZ (user defined)
[  913.969786][T15331] netlink: 'syz.9.2474': attribute type 4 has an invalid length.
[  918.554730][ T5919] usb 10-1: new full-speed USB device number 6 using dummy_hcd
[  919.798503][ T5919] usb 10-1: unable to get BOS descriptor or descriptor too short
[  919.811133][ T5919] usb 10-1: not running at top speed; connect to a high speed hub
[  919.852436][ T5919] usb 10-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  919.886112][ T5919] usb 10-1: config 1 interface 0 has no altsetting 0
[  919.914079][ T5919] usb 10-1: New USB device found, idVendor=05ac, idProduct=0246, bcdDevice= 0.40
[  919.948227][ T5919] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  920.000598][ T5919] usb 10-1: Product: syz
[  920.004908][ T5919] usb 10-1: Manufacturer: syz
[  920.047404][ T5919] usb 10-1: SerialNumber: syz
[  920.276053][ T5919] usb 10-1: can't set config #1, error -71
[  920.315541][ T5919] usb 10-1: USB disconnect, device number 6
[  921.875318][T15402] ipvlan1: entered allmulticast mode
[  921.880886][T15402] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  921.896273][T15402] batman_adv: batadv0: Adding interface: ipvlan1
[  921.902769][T15402] batman_adv: batadv0: The MTU of interface ipvlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  921.928287][T15402] batman_adv: batadv0: Interface activated: ipvlan1
[  936.086693][T15511] xt_l2tp: invalid flags combination: c
[  938.055709][ T5832] Bluetooth: hci2: unexpected event for opcode 0x041b
[  939.142916][T15538] netlink: 8 bytes leftover after parsing attributes in process `syz.9.2527'.
[  939.217936][T15538] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  939.231080][T15538] tipc: Started in network mode
[  940.171430][T15538] tipc: Node identity f9, cluster identity 4711
[  940.824714][T15538] tipc: Node number set to 249
[  942.142121][T15541] lo speed is unknown, defaulting to 1000
[  943.341462][T15563] 
: renamed from ipvlan1
[  948.989018][T15592] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2542'.
[  949.967704][T15599] cifs: Unknown parameter 'no'�a��N�[G�zob,er��;%j��
[  949.967704][T15599] ��z�,�@q�������J#�"��h/.�W1ȱ�nNC�"�C�׈�E)�8+����'
[  954.878425][T15629] 9pnet_virtio: no channels available for device syz
[  955.143673][T15638] netlink: 16 bytes leftover after parsing attributes in process `syz.7.2555'.
[  956.091165][T15638] dummy0: entered promiscuous mode
[  956.098372][T15638] dummy0: left promiscuous mode
[  956.444441][ T5836] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  956.454465][T15647] tmpfs: Bad value for 'mpol'
[  956.493707][ T5836] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  956.513257][ T5836] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  956.535199][ T5836] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  956.765032][ T5836] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  956.774628][ T5836] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  958.477449][T15669] netlink: 3 bytes leftover after parsing attributes in process `syz.3.2565'.
[  958.486727][T15669] 0�X���: renamed from caif0
[  958.495129][T15669] 0�X���: entered allmulticast mode
[  958.500470][T15669] A link change request failed with some changes committed already. Interface 
60�X��� may have been left with an inconsistent configuration, please check.
[  958.861022][T15646] lo speed is unknown, defaulting to 1000
[  958.900866][T15676] netlink: 'syz.7.2568': attribute type 10 has an invalid length.
[  959.731711][ T5832] Bluetooth: hci5: command tx timeout
[  959.863245][T14566] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  960.032059][T15676] bridge0: port 2(bridge_slave_1) entered disabled state
[  960.039329][T15676] bridge0: port 1(bridge_slave_0) entered disabled state
[  960.928986][T15676] bridge0: port 2(bridge_slave_1) entered blocking state
[  960.936141][T15676] bridge0: port 2(bridge_slave_1) entered forwarding state
[  960.943452][T15676] bridge0: port 1(bridge_slave_0) entered blocking state
[  960.950640][T15676] bridge0: port 1(bridge_slave_0) entered forwarding state
[  961.052508][ T5832] Bluetooth: hci0: Unable to find connection for big 0x00
[  961.067851][T15676] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  962.238260][ T5836] Bluetooth: hci5: command tx timeout
[  962.268603][T14566] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  963.470932][T14566] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  964.496304][ T5836] Bluetooth: hci5: command tx timeout
[  964.615126][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  965.443570][T14566] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  965.774074][T15700] macsec0: entered promiscuous mode
[  966.663943][ T5836] Bluetooth: hci5: command tx timeout
[  966.830956][T15646] chnl_net:caif_netlink_parms(): no params data found
[  975.251415][T14566] bond0 (unregistering): left promiscuous mode
[  975.258315][T14566] bond0 (unregistering): Released all slaves
[  975.273467][T15646] bridge0: port 1(bridge_slave_0) entered blocking state
[  975.285152][T15646] bridge0: port 1(bridge_slave_0) entered disabled state
[  975.297498][T15646] bridge_slave_0: entered allmulticast mode
[  975.309864][T15646] bridge_slave_0: entered promiscuous mode
[  975.349983][T15646] bridge0: port 2(bridge_slave_1) entered blocking state
[  975.361768][T15646] bridge0: port 2(bridge_slave_1) entered disabled state
[  975.373605][T15646] bridge_slave_1: entered allmulticast mode
[  975.387903][T15646] bridge_slave_1: entered promiscuous mode
[  975.394774][T15776] netlink: 'syz.2.2592': attribute type 21 has an invalid length.
[  975.402770][T15776] netlink: 'syz.2.2592': attribute type 6 has an invalid length.
[  975.410592][T15776] netlink: 132 bytes leftover after parsing attributes in process `syz.2.2592'.
[  975.898493][T14566] tipc: Left network mode
[  975.917840][T15646] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  976.651159][T15646] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  977.987056][T15816] kAFS: unable to lookup cell ''
[  978.412763][T15800] netlink: 'syz.2.2603': attribute type 12 has an invalid length.
[  978.460627][T15646] team0: Port device team_slave_0 added
[  978.480436][T15646] team0: Port device team_slave_1 added
[  981.081625][T15646] batman_adv: batadv0: Adding interface: batadv_slave_0
[  981.103961][T15646] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  981.143424][T15646] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  981.473249][T15646] batman_adv: batadv0: Adding interface: batadv_slave_1
[  981.480761][T15646] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  982.582037][T15646] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  983.204721][T15863] batman_adv: The newly added mac address (08:02:11:00:00:00) already exists on: ipvlan1
[  983.215027][T15863] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  983.226953][T15863] ipvlan1: entered allmulticast mode
[  983.232276][T15863] mac80211_hwsim hwsim20 wlan0: entered allmulticast mode
[  983.241392][T15863] batman_adv: batadv0: Adding interface: ipvlan1
[  983.249639][T15863] batman_adv: batadv0: The MTU of interface ipvlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  983.275263][T15863] batman_adv: batadv0: Interface activated: ipvlan1
[  984.338651][T14566] dummy0: left promiscuous mode
[  984.363439][T14566] hsr_slave_0: left promiscuous mode
[  984.670591][T14566] hsr_slave_1: left promiscuous mode
[  985.748246][T14566] veth1_macvtap: left promiscuous mode
[  985.925225][T14566] veth0_macvtap: left promiscuous mode
[  985.938547][T14566] veth1_vlan: left promiscuous mode
[  985.948456][T14566] veth0_vlan: left promiscuous mode
[  992.477825][ T1150] smc: removing ib device syz1
[  994.132699][T15646] hsr_slave_0: entered promiscuous mode
[  994.160732][T15646] hsr_slave_1: entered promiscuous mode
[  994.174910][T15646] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  994.188017][T15646] Cannot create hsr debugfs directory
[  998.144196][T15979] overlayfs: failed to clone upperpath
[ 1000.523277][T16003] openvswitch: netlink: IP tunnel dst address not specified
[ 1002.771810][T15646] netdevsim netdevsim4 netdevsim0: renamed from eth0
[ 1002.800927][T15646] netdevsim netdevsim4 netdevsim1: renamed from eth1
[ 1002.835425][T15646] netdevsim netdevsim4 netdevsim2: renamed from eth2
[ 1003.942402][T15646] netdevsim netdevsim4 netdevsim3: renamed from eth3
[ 1004.405594][T15646] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1004.547199][T16049] ebtables: ebtables: counters copy to user failed while replacing table
[ 1004.887901][T15646] 8021q: adding VLAN 0 to HW filter on device team0
[ 1004.931017][ T1150] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1004.938264][ T1150] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1005.056774][ T1150] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1005.063914][ T1150] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1005.797884][T15646] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1006.226812][T16074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2663'.
[ 1006.279458][T16074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2663'.
[ 1006.802878][T15646] veth0_vlan: entered promiscuous mode
[ 1006.887928][T15646] veth1_vlan: entered promiscuous mode
[ 1006.929648][T16092] netlink: 32 bytes leftover after parsing attributes in process `syz.8.2666'.
[ 1007.007940][T15646] veth0_macvtap: entered promiscuous mode
[ 1007.027458][T15646] veth1_macvtap: entered promiscuous mode
[ 1007.063918][T15646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1007.120381][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1007.323026][T15646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1007.334330][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1007.344294][T15646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1007.354778][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1007.365910][T15646] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1007.411994][T15646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1008.186137][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.200372][T15646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1008.227740][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.252146][T15646] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1008.262794][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1008.291081][T15646] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1008.609007][T15646] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.518807][T15646] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1010.570485][T15646] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1011.661037][T15646] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1012.447009][T15646] batman_adv: The newly added mac address (08:02:11:00:00:00) already exists on: ipvlan1
[ 1012.457700][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1012.468066][T15646] batman_adv: The newly added mac address (08:02:11:00:00:00) already exists on: ipvlan1
[ 1012.478389][T15646] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1013.743194][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1014.134927][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1014.453328][  T173] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1014.461201][  T173] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1014.608213][ T5836] Bluetooth: hci2: unexpected event for opcode 0x041c
[ 1017.784274][T16195] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[ 1018.919521][ T5832] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[ 1018.928296][ T5832] Bluetooth: hci2: Injecting HCI hardware error event
[ 1018.939327][ T5832] Bluetooth: hci2: hardware error 0x00
[ 1021.367673][ T5832] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[ 1026.849471][T16316] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1030.470549][T16371] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1031.261640][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1032.207323][T16380] 9pnet_fd: Insufficient options for proto=fd
[ 1042.156922][T16484] netlink: 224 bytes leftover after parsing attributes in process `syz.7.2750'.
[ 1042.566291][T16495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1044.013330][T16495] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1046.316241][T16519] overlayfs: failed to clone upperpath
[ 1046.738302][   T29] audit: type=1326 audit(1738591237.757:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1048.076900][   T29] audit: type=1326 audit(1738591237.757:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1049.223766][   T29] audit: type=1326 audit(1738591237.757:413): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1049.326990][   T29] audit: type=1326 audit(1738591237.785:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1049.351603][   T29] audit: type=1326 audit(1738591237.785:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1049.376464][   T29] audit: type=1326 audit(1738591237.785:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1049.419925][   T29] audit: type=1326 audit(1738591237.794:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1049.464637][   T29] audit: type=1326 audit(1738591237.794:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1049.503507][   T29] audit: type=1326 audit(1738591237.794:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1050.595175][   T29] audit: type=1326 audit(1738591237.794:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=16517 comm="syz.3.2759" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd5de18cda9 code=0x7ffc0000
[ 1053.460540][T16583] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2772'.
[ 1053.525222][T16583] netlink: 8 bytes leftover after parsing attributes in process `syz.8.2772'.
[ 1064.003534][T16693] xt_CT: No such helper "snmp"
[ 1065.515587][T16731] xt_CONNSECMARK: invalid mode: 0
[ 1067.467440][T16751] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2809'.
[ 1075.151250][T16838] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2830'.
[ 1075.160535][T16838] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2830'.
[ 1075.177593][T16838] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2830'.
[ 1075.186772][T16838] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2830'.
[ 1076.137952][T16859] openvswitch: netlink: IP tunnel dst address not specified
[ 1081.169131][T16942] ebt_among: wrong size: 1048 against expected 710676, rounded to 710680
[ 1082.599936][T16962] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1083.160226][T16964] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2851'.
[ 1083.599668][T16971] [U] �
[ 1090.209054][T17035] netlink: 28 bytes leftover after parsing attributes in process `syz.3.2869'.
[ 1090.219606][T17035] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2869'.
[ 1090.228769][T17035] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2869'.
[ 1090.290700][T17041] 9pnet_fd: Insufficient options for proto=fd
[ 1092.823779][ T5832] Bluetooth: hci5: command 0x0406 tx timeout
[ 1093.103709][T17072] netlink: 24 bytes leftover after parsing attributes in process `syz.4.2877'.
[ 1095.646328][T17084] openvswitch: netlink: Tunnel attr 54 out of range max 16
[ 1096.024202][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1100.396285][   T29] kauditd_printk_skb: 15 callbacks suppressed
[ 1100.396303][   T29] audit: type=1326 audit(1738591287.941:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.530227][   T29] audit: type=1326 audit(1738591287.941:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.564727][   T29] audit: type=1326 audit(1738591287.941:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.588973][   T29] audit: type=1326 audit(1738591287.941:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.612118][   T29] audit: type=1326 audit(1738591287.941:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.634336][   T29] audit: type=1326 audit(1738591287.941:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.659351][T17151] nfs: Unknown parameter ''
[ 1100.684157][   T29] audit: type=1326 audit(1738591287.941:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.707930][   T29] audit: type=1326 audit(1738591287.941:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1100.951987][   T29] audit: type=1326 audit(1738591287.941:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1101.268259][   T29] audit: type=1326 audit(1738591287.941:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17139 comm="syz.2.2892" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1106.807323][T17202] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1111.586955][T17249] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1111.677540][T17249] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1111.750310][T17249] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1111.818596][T17262] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2919'.
[ 1112.134114][T17272] xt_hashlimit: max too large, truncated to 1048576
[ 1112.783573][T17273] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2921'.
[ 1112.898246][T17278] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2922'.
[ 1118.585439][T17345] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[ 1119.961868][T17364] trusted_key: encrypted_key: insufficient parameters specified
[ 1124.330155][T17400] netlink: 'syz.4.2949': attribute type 1 has an invalid length.
[ 1128.750265][T17440] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2956'.
[ 1128.792340][T17440] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2956'.
[ 1128.829141][T17440] batadv0: entered promiscuous mode
[ 1128.864475][T17440] bond0: entered promiscuous mode
[ 1128.883171][T17440] bond_slave_0: entered promiscuous mode
[ 1128.904864][T17440] bond_slave_1: entered promiscuous mode
[ 1128.926523][T17440] 8021q: adding VLAN 0 to HW filter on device hsr1
[ 1130.262267][   T29] kauditd_printk_skb: 11 callbacks suppressed
[ 1130.262286][   T29] audit: type=1326 audit(1738591315.872:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1130.593873][   T29] audit: type=1326 audit(1738591315.872:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1131.354635][   T29] audit: type=1326 audit(1738591315.872:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1131.671563][   T29] audit: type=1326 audit(1738591315.882:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1131.998104][   T29] audit: type=1326 audit(1738591315.882:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1132.026205][   T29] audit: type=1326 audit(1738591315.882:462): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1132.078209][   T29] audit: type=1326 audit(1738591315.882:463): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1132.172090][   T29] audit: type=1326 audit(1738591315.882:464): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1132.333653][   T29] audit: type=1326 audit(1738591315.882:465): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1132.355801][   T29] audit: type=1326 audit(1738591315.882:466): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17459 comm="syz.8.2961" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1138.798324][T17545] openvswitch: netlink: Port -1 exceeds max allowable 65535
[ 1141.552881][   T29] kauditd_printk_skb: 25 callbacks suppressed
[ 1141.552899][   T29] audit: type=1326 audit(1738591326.452:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1141.736527][   T29] audit: type=1326 audit(1738591326.452:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1142.543707][   T29] audit: type=1326 audit(1738591326.489:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1143.604161][   T29] audit: type=1326 audit(1738591326.489:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1143.656569][   T29] audit: type=1326 audit(1738591326.489:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4b3c98b710 code=0x7ffc0000
[ 1143.738968][   T29] audit: type=1326 audit(1738591326.489:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1143.828699][   T29] audit: type=1326 audit(1738591326.489:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1144.012377][   T29] audit: type=1326 audit(1738591326.489:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1144.925742][   T29] audit: type=1326 audit(1738591326.489:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1146.186648][   T29] audit: type=1326 audit(1738591326.489:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17580 comm="syz.2.2988" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4b3c98cda9 code=0x7ffc0000
[ 1148.013988][T17632] syz_tun: entered promiscuous mode
[ 1148.279368][T17645] netlink: 'syz.3.3003': attribute type 3 has an invalid length.
[ 1148.288924][T17645] netlink: 56 bytes leftover after parsing attributes in process `syz.3.3003'.
[ 1150.414668][T17665] Cannot find set identified by id 632 to match
[ 1150.943705][T17674] ip6t_REJECT: TCP_RESET illegal for non-tcp
[ 1153.463182][T17695] overlayfs: failed to clone upperpath
[ 1156.729009][ T5919] IPVS: starting estimator thread 0...
[ 1157.779910][T17742] IPVS: using max 24 ests per chain, 57600 per kthread
[ 1161.152235][T17783] overlayfs: failed to clone lowerpath
[ 1161.725034][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1167.745571][   T29] kauditd_printk_skb: 43 callbacks suppressed
[ 1167.745590][   T29] audit: type=1400 audit(1738591350.631:545): lsm=SMACK fn=smack_file_receive action=denied subject="w" object="_" requested=w pid=17825 comm="syz.4.3044" path="socket:[49308]" dev="sockfs" ino=49308
[ 1170.978292][T17876] xt_TCPMSS: Only works on TCP SYN packets
[ 1170.978332][   T29] audit: type=1326 audit(1738591353.942:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17870 comm="syz.8.3053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1171.934209][   T29] audit: type=1326 audit(1738591353.942:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=_ pid=17870 comm="syz.8.3053" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd4cdf8cda9 code=0x7ffc0000
[ 1172.781990][T17897] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1179.480417][T17931] delete_channel: no stack
[ 1182.055724][T17974] xt_bpf: check failed: parse error
[ 1182.109585][T17982] netlink: 36 bytes leftover after parsing attributes in process `syz.8.3073'.
[ 1182.276643][T17987] netlink: 'syz.2.3076': attribute type 10 has an invalid length.
[ 1183.113093][T18008] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1183.740598][T18008] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1185.393450][T18035] netlink: 830 bytes leftover after parsing attributes in process `syz.4.3090'.
[ 1185.527780][T18042] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3091'.
[ 1185.536923][T18042] netlink: 28 bytes leftover after parsing attributes in process `syz.2.3091'.
[ 1194.892693][T18120] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3107'.
[ 1208.310124][T18251] overlayfs: failed to clone upperpath
[ 1227.472219][T18253] sched: DL replenish lagged too much
[ 1321.442268][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1321.449269][    C0] rcu: 	1-...!: (0 ticks this GP) idle=38e4/1/0x4000000000000000 softirq=71764/71764 fqs=0
[ 1321.461309][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P11499/1:b..l
[ 1321.469354][    C0] rcu: 	(detected by 0, t=10506 jiffies, g=65049, q=110 ncpus=2)
[ 1321.477083][    C0] Sending NMI from CPU 0 to CPUs 1:
[ 1321.477120][    C1] NMI backtrace for cpu 1
[ 1321.477145][    C1] CPU: 1 UID: 0 PID: 18254 Comm: syz.4.3142 Not tainted 6.14.0-rc1-syzkaller #0
[ 1321.477161][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[ 1321.477171][    C1] RIP: 0010:lock_acquire+0x144/0x550
[ 1321.477197][    C1] Code: 8b 05 70 d1 67 7e 85 c0 0f 85 8f 01 00 00 65 48 8b 1c 25 c0 d4 03 00 48 81 c3 ec 0a 00 00 48 89 d8 48 c1 e8 03 42 0f b6 04 28 <84> c0 0f 85 e5 02 00 00 83 3b 00 0f 85 62 01 00 00 4c 8d bc 24 80
[ 1321.477210][    C1] RSP: 0018:ffffc90000a18b00 EFLAGS: 00000807
[ 1321.477223][    C1] RAX: 0000000000000000 RBX: ffff88802b2846ec RCX: ffffffff819ab8c4
[ 1321.477234][    C1] RDX: 0000000000000000 RSI: ffffffff8c5fb5a0 RDI: ffffffff8c5fb560
[ 1321.477245][    C1] RBP: ffffc90000a18c48 R08: ffffffff901a2777 R09: 1ffffffff20344ee
[ 1321.477257][    C1] R10: dffffc0000000000 R11: fffffbfff20344ef R12: 1ffff92000143168
[ 1321.477287][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff88802b2846d8
[ 1321.477298][    C1] FS:  00007fddbd9a46c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000
[ 1321.477311][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1321.477321][    C1] CR2: 000000110c325c64 CR3: 0000000035766000 CR4: 00000000003526f0
[ 1321.477335][    C1] Call Trace:
[ 1321.477343][    C1]  <NMI>
[ 1321.477351][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[ 1321.477371][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1321.477390][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1321.477406][    C1]  ? nmi_handle+0x2a/0x5a0
[ 1321.477433][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[ 1321.477450][    C1]  ? nmi_handle+0x14f/0x5a0
[ 1321.477470][    C1]  ? nmi_handle+0x2a/0x5a0
[ 1321.477491][    C1]  ? lock_acquire+0x144/0x550
[ 1321.477508][    C1]  ? default_do_nmi+0x63/0x160
[ 1321.477524][    C1]  ? exc_nmi+0x123/0x1f0
[ 1321.477538][    C1]  ? end_repeat_nmi+0xf/0x53
[ 1321.477562][    C1]  ? lock_acquire+0xd4/0x550
[ 1321.477580][    C1]  ? lock_acquire+0x144/0x550
[ 1321.477598][    C1]  ? lock_acquire+0x144/0x550
[ 1321.477617][    C1]  ? lock_acquire+0x144/0x550
[ 1321.477635][    C1]  </NMI>
[ 1321.477640][    C1]  <IRQ>
[ 1321.477648][    C1]  ? __pfx_lock_acquire+0x10/0x10
[ 1321.477667][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1321.477686][    C1]  ? __hrtimer_run_queues+0x477/0xd30
[ 1321.477708][    C1]  ? __pfx_lock_release+0x10/0x10
[ 1321.477729][    C1]  ? __pfx_advance_sched+0x10/0x10
[ 1321.477746][    C1]  _raw_spin_lock+0x2e/0x40
[ 1321.477762][    C1]  ? advance_sched+0xab/0xca0
[ 1321.477777][    C1]  advance_sched+0xab/0xca0
[ 1321.477793][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1321.477811][    C1]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 1321.477831][    C1]  ? __pfx_advance_sched+0x10/0x10
[ 1321.477847][    C1]  __hrtimer_run_queues+0x59b/0xd30
[ 1321.477877][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[ 1321.477898][    C1]  ? sched_clock+0x4a/0x70
[ 1321.477913][    C1]  ? read_tsc+0x9/0x20
[ 1321.477928][    C1]  ? ktime_get_update_offsets_now+0x38e/0x3b0
[ 1321.477949][    C1]  hrtimer_interrupt+0x403/0xa40
[ 1321.477982][    C1]  __sysvec_apic_timer_interrupt+0x110/0x420
[ 1321.478004][    C1]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1321.478024][    C1]  </IRQ>
[ 1321.478028][    C1]  <TASK>
[ 1321.478034][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1321.478055][    C1] RIP: 0010:try_charge_memcg+0x4e0/0x1150
[ 1321.478078][    C1] Code: 44 24 18 00 02 00 00 75 1b 80 7c 24 38 00 75 20 e9 90 09 00 00 e8 90 8a c2 09 f7 44 24 18 00 02 00 00 74 e5 fb 80 7c 24 38 00 <0f> 84 75 09 00 00 e9 06 02 00 00 44 89 fb 48 8b bc 24 80 00 00 00
[ 1321.478090][    C1] RSP: 0018:ffffc9000d7cf480 EFLAGS: 00000246
[ 1321.478103][    C1] RAX: 631577697e2b6b00 RBX: 1ffff92001af9eaa RCX: ffffffff9a3ca903
[ 1321.478115][    C1] RDX: dffffc0000000000 RSI: ffffffff8c0aa660 RDI: ffffc9000d7cf550
[ 1321.478126][    C1] RBP: ffffc9000d7cf630 R08: ffffffff901a2777 R09: 1ffffffff20344ee
[ 1321.478138][    C1] R10: dffffc0000000000 R11: fffffbfff20344ef R12: ffff88807eace000
[ 1321.478149][    C1] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000040
[ 1321.478168][    C1]  ? try_charge_memcg+0x261/0x1150
[ 1321.478195][    C1]  ? __pfx_try_charge_memcg+0x10/0x10
[ 1321.478223][    C1]  ? get_mem_cgroup_from_objcg+0x1af/0x1d0
[ 1321.478246][    C1]  ? get_mem_cgroup_from_objcg+0x1a/0x1d0
[ 1321.478270][    C1]  obj_cgroup_charge_pages+0x91/0x230
[ 1321.478316][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1321.478335][    C1]  ? __pfx_obj_cgroup_charge_pages+0x10/0x10
[ 1321.478358][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1321.478376][    C1]  ? __x64_sys_creat+0x123/0x170
[ 1321.478398][    C1]  ? obj_cgroup_charge+0x305/0x5d0
[ 1321.478421][    C1]  obj_cgroup_charge+0x380/0x5d0
[ 1321.478444][    C1]  ? obj_cgroup_charge+0x11d/0x5d0
[ 1321.478467][    C1]  ? __pfx_obj_cgroup_charge+0x10/0x10
[ 1321.478495][    C1]  __memcg_slab_post_alloc_hook+0x1b1/0x7e0
[ 1321.478523][    C1]  ? alloc_empty_file+0x9e/0x1d0
[ 1321.478542][    C1]  ? alloc_empty_file+0x9e/0x1d0
[ 1321.478561][    C1]  kmem_cache_alloc_noprof+0x287/0x380
[ 1321.478582][    C1]  alloc_empty_file+0x9e/0x1d0
[ 1321.478602][    C1]  path_openat+0x107/0x3590
[ 1321.478629][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[ 1321.478647][    C1]  ? mark_lock+0x9a/0x360
[ 1321.478670][    C1]  ? __pfx_path_openat+0x10/0x10
[ 1321.478700][    C1]  do_filp_open+0x27f/0x4e0
[ 1321.478724][    C1]  ? __pfx_do_filp_open+0x10/0x10
[ 1321.478744][    C1]  ? do_raw_spin_lock+0x14f/0x370
[ 1321.478776][    C1]  do_sys_openat2+0x13e/0x1d0
[ 1321.478794][    C1]  ? __pfx_do_futex+0x10/0x10
[ 1321.478814][    C1]  ? __pfx_do_sys_openat2+0x10/0x10
[ 1321.478838][    C1]  __x64_sys_creat+0x123/0x170
[ 1321.478858][    C1]  ? __pfx___x64_sys_creat+0x10/0x10
[ 1321.478880][    C1]  ? do_syscall_64+0x100/0x230
[ 1321.478901][    C1]  ? do_syscall_64+0xb6/0x230
[ 1321.478922][    C1]  do_syscall_64+0xf3/0x230
[ 1321.478942][    C1]  ? clear_bhb_loop+0x35/0x90
[ 1321.478964][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1321.478984][    C1] RIP: 0033:0x7fddbcb8cda9
[ 1321.479002][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1321.479015][    C1] RSP: 002b:00007fddbd9a4038 EFLAGS: 00000246 ORIG_RAX: 0000000000000055
[ 1321.479029][    C1] RAX: ffffffffffffffda RBX: 00007fddbcda5fa0 RCX: 00007fddbcb8cda9
[ 1321.479041][    C1] RDX: 0000000000000000 RSI: 000000000000015d RDI: 0000000020000300
[ 1321.479050][    C1] RBP: 00007fddbcc0e2a0 R08: 0000000000000000 R09: 0000000000000000
[ 1321.479059][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1321.479069][    C1] R13: 0000000000000000 R14: 00007fddbcda5fa0 R15: 00007ffe5b1f1c48
[ 1321.479086][    C1]  </TASK>
[ 1321.479114][    C0] task:syz-executor    state:R  running task     stack:19632 pid:11499 tgid:11499 ppid:11485  task_flags:0x400140 flags:0x00004000
[ 1322.136106][    C0] Call Trace:
[ 1322.139390][    C0]  <TASK>
[ 1322.142334][    C0]  __schedule+0x18bc/0x4c40
[ 1322.146872][    C0]  ? __pfx___schedule+0x10/0x10
[ 1322.151734][    C0]  ? mark_lock+0x9a/0x360
[ 1322.156091][    C0]  ? preempt_schedule+0xe1/0xf0
[ 1322.160952][    C0]  preempt_schedule_common+0x84/0xd0
[ 1322.166249][    C0]  preempt_schedule+0xe1/0xf0
[ 1322.170939][    C0]  ? __pfx_preempt_schedule+0x10/0x10
[ 1322.176320][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1322.182226][    C0]  ? __page_table_check_ptes_set+0x30f/0x410
[ 1322.188224][    C0]  ? copy_pmd_range+0x6d6d/0x77a0
[ 1322.193256][    C0]  preempt_schedule_thunk+0x1a/0x30
[ 1322.198478][    C0]  _raw_spin_unlock+0x3e/0x50
[ 1322.203165][    C0]  copy_pmd_range+0x6dc8/0x77a0
[ 1322.208035][    C0]  ? is_bpf_text_address+0x26/0x2a0
[ 1322.213256][    C0]  ? __pfx_copy_pmd_range+0x10/0x10
[ 1322.218471][    C0]  ? look_up_lock_class+0x77/0x170
[ 1322.223596][    C0]  ? register_lock_class+0x102/0x980
[ 1322.228900][    C0]  ? __pfx_mas_destroy+0x10/0x10
[ 1322.233852][    C0]  ? mark_lock+0x9a/0x360
[ 1322.238196][    C0]  ? __lock_acquire+0x1397/0x2100
[ 1322.243259][    C0]  copy_page_range+0x99f/0xe90
[ 1322.248058][    C0]  ? __pfx_copy_page_range+0x10/0x10
[ 1322.253356][    C0]  ? __pfx_up_write+0x10/0x10
[ 1322.258054][    C0]  ? __asan_memset+0x23/0x50
[ 1322.262658][    C0]  ? __pfx_vma_interval_tree_augment_rotate+0x10/0x10
[ 1322.269439][    C0]  ? vma_interval_tree_insert_after+0x259/0x2b0
[ 1322.275701][    C0]  copy_mm+0x1269/0x2160
[ 1322.279973][    C0]  ? __pfx_copy_mm+0x10/0x10
[ 1322.284583][    C0]  ? __init_rwsem+0x122/0x160
[ 1322.289277][    C0]  ? copy_signal+0x51c/0x640
[ 1322.293875][    C0]  copy_process+0x1845/0x3d50
[ 1322.298574][    C0]  ? copy_process+0x9fa/0x3d50
[ 1322.303345][    C0]  ? __lock_acquire+0x1397/0x2100
[ 1322.308391][    C0]  ? __pfx_copy_process+0x10/0x10
[ 1322.313437][    C0]  kernel_clone+0x223/0x870
[ 1322.317958][    C0]  ? __pfx_kernel_clone+0x10/0x10
[ 1322.323012][    C0]  __x64_sys_clone+0x258/0x2a0
[ 1322.327789][    C0]  ? __pfx___x64_sys_clone+0x10/0x10
[ 1322.333080][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1322.339082][    C0]  ? exc_page_fault+0x590/0x8b0
[ 1322.343949][    C0]  ? do_syscall_64+0xb6/0x230
[ 1322.348654][    C0]  do_syscall_64+0xf3/0x230
[ 1322.353351][    C0]  ? clear_bhb_loop+0x35/0x90
[ 1322.358045][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1322.363958][    C0] RIP: 0033:0x7fd4cdf83613
[ 1322.368479][    C0] RSP: 002b:00007ffcb6036e88 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1322.376904][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fd4cdf83613
[ 1322.385407][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1322.393393][    C0] RBP: 0000000000000001 R08: 0000000000000000 R09: 0000000000000001
[ 1322.401367][    C0] R10: 00005555650a77d0 R11: 0000000000000246 R12: 0000000000000000
[ 1322.409343][    C0] R13: 00000000000927c0 R14: 000000000011b4d3 R15: 00007ffcb6037020
[ 1322.417336][    C0]  </TASK>
[ 1322.420361][    C0] rcu: rcu_preempt kthread timer wakeup didn't happen for 10505 jiffies! g65049 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[ 1322.432685][    C0] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=96429
[ 1322.440573][    C0] rcu: rcu_preempt kthread starved for 10506 jiffies! g65049 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[ 1322.451941][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1322.461915][    C0] rcu: RCU grace-period kthread stack dump:
[ 1322.467807][    C0] task:rcu_preempt     state:I stack:25752 pid:17    tgid:17    ppid:2      task_flags:0x208040 flags:0x00004000
[ 1322.479736][    C0] Call Trace:
[ 1322.483033][    C0]  <TASK>
[ 1322.485974][    C0]  __schedule+0x18bc/0x4c40
[ 1322.490509][    C0]  ? __pfx___schedule+0x10/0x10
[ 1322.495416][    C0]  ? __pfx_lock_release+0x10/0x10
[ 1322.500476][    C0]  ? __pfx___mod_timer+0x10/0x10
[ 1322.505438][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[ 1322.511782][    C0]  ? schedule+0x90/0x320
[ 1322.516038][    C0]  schedule+0x14b/0x320
[ 1322.520210][    C0]  schedule_timeout+0x15a/0x290
[ 1322.525067][    C0]  ? __pfx_schedule_timeout+0x10/0x10
[ 1322.530455][    C0]  ? __pfx_process_timeout+0x10/0x10
[ 1322.535766][    C0]  ? prepare_to_swait_event+0x330/0x350
[ 1322.541323][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1322.546532][    C0]  rcu_gp_fqs_loop+0x2df/0x1330
[ 1322.551398][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[ 1322.556616][    C0]  ? rcu_gp_init+0x1256/0x1630
[ 1322.561403][    C0]  ? __pfx_rcu_gp_init+0x10/0x10
[ 1322.566373][    C0]  ? __pfx_rcu_watching_snap_save+0x10/0x10
[ 1322.572286][    C0]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1322.577585][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1322.583517][    C0]  ? finish_swait+0xd4/0x1e0
[ 1322.588121][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1322.593346][    C0]  rcu_gp_kthread+0xa7/0x3b0
[ 1322.597956][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1322.603173][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1322.609083][    C0]  ? __kthread_parkme+0x169/0x1d0
[ 1322.614135][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1322.619347][    C0]  kthread+0x7a9/0x920
[ 1322.623431][    C0]  ? __pfx_kthread+0x10/0x10
[ 1322.628045][    C0]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1322.633256][    C0]  ? __pfx_kthread+0x10/0x10
[ 1322.637855][    C0]  ? __pfx_kthread+0x10/0x10
[ 1322.642469][    C0]  ? __pfx_kthread+0x10/0x10
[ 1322.647079][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1322.652283][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[ 1322.657495][    C0]  ? __pfx_kthread+0x10/0x10
[ 1322.662100][    C0]  ret_from_fork+0x4b/0x80
[ 1322.666529][    C0]  ? __pfx_kthread+0x10/0x10
[ 1322.671151][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1322.675960][    C0]  </TASK>