last executing test programs:

23m20.231643723s ago: executing program 2 (id=3):
r0 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000500)=ANY=[@ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)}, 0x20)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$UFFDIO_MOVE(0xffffffffffffffff, 0xc028aa05, &(0x7f0000000180)={&(0x7f0000193000/0x1000)=nil, &(0x7f00002da000/0x3000)=nil, 0x1000})
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)

23m15.020484675s ago: executing program 2 (id=20):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
connect$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(0xffffffffffffffff, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae03, 0x74)
sendmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x2e9, 0x0)

23m12.138012175s ago: executing program 2 (id=24):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x70, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x14, 0x0, 0xffffffffffffffdc)
keyctl$clear(0x3, 0xfffffffffffffffd)
r4 = socket$inet6(0xa, 0x1, 0xffd)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2, 0x1}, 0x20)
add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, 0x0, 0x0, 0xffffffffffffffff)
r5 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x101180, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r5, 0xc0040d07, &(0x7f0000000040)=0x122)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000070605000800000000000000010000020500010007000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
recvmsg(0xffffffffffffffff, &(0x7f000000c1c0)={0x0, 0x0, 0x0}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x0, 0x2, 0x3, 0x9, 0x0, 0xc96e}, 0x20)
close(0xffffffffffffffff)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="018d008dffff"})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x3, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae9}, {0x20, 0x7f, 0x4, 0xffeff038}, {0x6, 0x0, 0x8, 0x7}]}, 0x10)

23m8.868182887s ago: executing program 2 (id=28):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

23m3.565717722s ago: executing program 2 (id=32):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

22m47.363583536s ago: executing program 32 (id=32):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

21m38.038170226s ago: executing program 4 (id=171):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x0, &(0x7f0000000200), 0x1, 0x787, &(0x7f0000001000)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f0000000080)={0x0, 0x2, 0xffe, 0x4000006})
r1 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x40)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x14, 0x4, 0x4, 0x10002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff}, 0x50)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x9, 0x8010, r0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000340)={0x0, {{0xa, 0x4e22, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8}}}, 0x88)
pwrite64(r1, &(0x7f0000000140), 0x0, 0xfecc)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628)

21m35.98571317s ago: executing program 4 (id=177):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/user\x00')
r2 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r2, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r2, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r2)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$inet6(0xa, 0x80003, 0x6)

21m34.651044851s ago: executing program 1 (id=180):
r0 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r6 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000500)=ANY=[@ANYRES32=r5, @ANYRES32=r6, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r5}, &(0x7f00000006c0), &(0x7f0000000700)=r4}, 0x20)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$UFFDIO_MOVE(0xffffffffffffffff, 0xc028aa05, &(0x7f0000000180)={&(0x7f0000193000/0x1000)=nil, &(0x7f00002da000/0x3000)=nil, 0x1000})
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)

21m33.479139608s ago: executing program 1 (id=181):
socket$rds(0x15, 0x5, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x298})
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x48)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f0000000400)=ANY=[@ANYBLOB="18020000801000000000000004000000850000002700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x80)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000500)=ANY=[@ANYRES32=r4, @ANYRES32=r5, @ANYBLOB="05"], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000740)={{r4}, &(0x7f00000006c0), &(0x7f0000000700)=r3}, 0x20)
ioctl$UFFDIO_COPY(0xffffffffffffffff, 0xc028aa03, &(0x7f0000000040)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00005cf000/0x4000)=nil, 0x400000, 0x2, 0x2})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
ioctl$UFFDIO_MOVE(0xffffffffffffffff, 0xc028aa05, &(0x7f0000000180)={&(0x7f0000193000/0x1000)=nil, &(0x7f00002da000/0x3000)=nil, 0x1000})
move_pages(0x0, 0x1efe, &(0x7f0000000080), 0x0, &(0x7f0000000040), 0x0)

21m31.926850666s ago: executing program 1 (id=183):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$kcm(0x11, 0x3, 0x0)
r1 = socket$unix(0x1, 0x5, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x9102})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x40480, 0x0)
close(r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newqdisc={0x58, 0x24, 0x4ee4e6a52ff56541, 0x1, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0x10}, {0xffff, 0xffff}, {0xfff2}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x28, 0x2, {{0x3, 0x7fffffff, 0x6361, 0x5, 0xffffffff, 0x407}, [@TCA_NETEM_CORRUPT={0xc, 0x4, {0xfffffffd, 0x101}}]}}}]}, 0x58}, 0x1, 0x0, 0x0, 0x40088c1}, 0x0)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000580)=@xdp={0x2c, 0x300, r6, 0x3e}, 0x80, 0x0}, 0x0)

21m31.369644673s ago: executing program 1 (id=186):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000002c0)='./file1\x00', 0x0, &(0x7f0000000200), 0x1, 0x787, &(0x7f0000001000)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x42, 0x0)
ioctl$FS_IOC_RESVSP(r0, 0x40305839, &(0x7f0000000080)={0x0, 0x2, 0xffe, 0x4000006})
r1 = openat(0xffffffffffffff9c, 0x0, 0x101042, 0x40)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x14, 0x4, 0x4, 0x10002, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0xffffffff}, 0x50)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000ffe000/0x2000)=nil, 0x2000, 0x9, 0x8010, r0, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r1, 0x29, 0x2a, &(0x7f0000000340)={0x0, {{0xa, 0x4e22, 0x7, @private2={0xfc, 0x2, '\x00', 0x1}, 0x8}}}, 0x88)
pwrite64(r1, &(0x7f0000000140), 0x0, 0xfecc)
ioctl$EXT4_IOC_CLEAR_ES_CACHE(r1, 0x6628)

21m27.079098347s ago: executing program 4 (id=192):
socketpair$unix(0x1, 0x3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x14, 0x0, 0xffffffffffffffdc)
keyctl$clear(0x3, 0xfffffffffffffffd)
request_key(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000540)={'syz', 0x3}, &(0x7f0000000500)='\xbc50\xf4\xc4Fv:\xc0\xe3\x97\x8cL\x85\xf0\x9bhq\xa9', 0x0)
r3 = socket$inet6(0xa, 0x1, 0xffd)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2, 0x1}, 0x20)
add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, 0x0, 0x0, 0xffffffffffffffff)
r4 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x101180, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r4, 0xc0040d07, &(0x7f0000000040)=0x122)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000070605000800000000000000010000020500010007000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
recvmsg(0xffffffffffffffff, &(0x7f000000c1c0)={0x0, 0x0, 0x0}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x0, 0x2, 0x3, 0x9, 0x0, 0xc96e}, 0x20)
close(0xffffffffffffffff)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="018d008dffff"})
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000140)={0x3, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae9}, {0x20, 0x7f, 0x4, 0xffeff038}, {0x6, 0x0, 0x8, 0x7}]}, 0x10)

21m26.068933319s ago: executing program 4 (id=194):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

21m23.245841726s ago: executing program 1 (id=196):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)="36c1fefc4a84cb34adfeda", 0xb}], 0x1, &(0x7f00000012c0)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0xf8, 0x29, 0x4, {0x4, 0x1b, '\x00', [@calipso={0x7, 0x8, {0x1, 0x0, 0x9, 0x9f}}, @generic={0xfe, 0x72, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5"}, @generic={0x80}, @calipso={0x7, 0x38, {0x1, 0xc, 0x7a, 0x8001, [0x5, 0x9, 0x6, 0x4, 0x400, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @pad1, @generic={0x93, 0x11, "e80ee304ecb784ec4655260cecea14e498"}, @ra={0x5, 0x2, 0x6}]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x6, 0x4, 0x1, 0x9, 0x0, [@empty, @private0]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @dstopts={{0x20, 0x29, 0x37, {0x32, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x74}]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x1f0}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

21m21.943867887s ago: executing program 4 (id=198):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000580)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x70, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x29, 0x14, 0x0, 0xffffffffffffffdc)
keyctl$clear(0x3, 0xfffffffffffffffd)
request_key(&(0x7f00000004c0)='keyring\x00', &(0x7f0000000540)={'syz', 0x3}, &(0x7f0000000500)='\xbc50\xf4\xc4Fv:\xc0\xe3\x97\x8cL\x85\xf0\x9bhq\xa9', 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_wait_time_recursive\x00', 0x26e1, 0x0)
r5 = socket$inet6(0xa, 0x1, 0xffd)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000080)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x800, 0x0, 0x2, 0x1}, 0x20)
add_key$fscrypt_v1(&(0x7f00000002c0), &(0x7f0000000300)={'fscrypt:', @desc4}, 0x0, 0x0, 0xffffffffffffffff)
r6 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x101180, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r6, 0xc0040d07, &(0x7f0000000040)=0x122)
sendmsg$IPSET_CMD_LIST(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000000c0)=ANY=[@ANYBLOB="1c000000070605000800000000000000010000020500010007000000"], 0x1c}, 0x1, 0x0, 0x0, 0x20004080}, 0x48810)
recvmsg(0xffffffffffffffff, &(0x7f000000c1c0)={0x0, 0x0, 0x0}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r5, 0x29, 0x20, &(0x7f0000000100)={@loopback, 0x0, 0x2, 0x3, 0x9, 0x0, 0xc96e}, 0x20)
close(r4)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$SIOCSIFHWADDR(r4, 0x8b14, &(0x7f0000000000)={'wlan1\x00', @random="018d008dffff"})
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000140)={0x3, &(0x7f0000000000)=[{0x28, 0x2, 0xfd, 0x5ae9}, {0x20, 0x7f, 0x4, 0xffeff038}, {0x6, 0x0, 0x8, 0x7}]}, 0x10)

21m20.337550117s ago: executing program 4 (id=201):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/user\x00')
r2 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r2, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r2, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r2)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae03, 0x74)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)

21m19.491667254s ago: executing program 1 (id=203):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

21m2.225546191s ago: executing program 33 (id=203):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

21m2.174078183s ago: executing program 34 (id=201):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(0x0, &(0x7f0000000180)='ns/user\x00')
r2 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r2, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r2, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r2)
socket$nl_xfrm(0x10, 0x3, 0x6)
r3 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r3, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r4 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae03, 0x74)
sendmmsg(r3, &(0x7f0000000480), 0x2e9, 0x0)

19m47.863996507s ago: executing program 6 (id=300):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000))
syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/unix\x00')
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0500000004000000040000000a"], 0x50)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r0, &(0x7f0000001180)='cpuset.sched_relax_domain_level\x00', 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_int(r1, &(0x7f0000000100)='cpuset.mems\x00', 0x2, 0x0)
userfaultfd(0x801)
socket$igmp6(0xa, 0x3, 0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=@base={0xa, 0xb, 0x42, 0x3e, 0x42}, 0x50)
fsopen(0x0, 0x0)
fsopen(&(0x7f0000000080)='ext3\x00', 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280))
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000000c0), 0x111, 0x5}}, 0x20)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000940), 0x2, 0x0)
r3 = socket$unix(0x1, 0x2, 0x0)
ppoll(&(0x7f0000000300)=[{r3, 0x4236}], 0x1, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x8000001, &(0x7f0000000300), 0x2, 0x1}}, 0x20)
writev(r2, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

19m47.643369524s ago: executing program 6 (id=302):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)="36c1fefc4a84cb34adfeda", 0xb}], 0x1, &(0x7f00000012c0)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0xf8, 0x29, 0x4, {0x4, 0x1b, '\x00', [@calipso={0x7, 0x8, {0x1, 0x0, 0x9, 0x9f}}, @generic={0xfe, 0x72, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5"}, @generic={0x80}, @calipso={0x7, 0x38, {0x1, 0xc, 0x7a, 0x8001, [0x5, 0x9, 0x6, 0x4, 0x400, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @pad1, @generic={0x93, 0x11, "e80ee304ecb784ec4655260cecea14e498"}, @ra={0x5, 0x2, 0x6}]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x6, 0x4, 0x1, 0x9, 0x0, [@empty, @private0]}}}, @hopopts={{0xb0, 0x29, 0x36, {0x5e, 0x12, '\x00', [@generic={0xff, 0x45, "50d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec429ee1edc0bb903fe94b32c28f70dac43574"}, @pad1, @pad1, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x8, {0x3, 0x0, 0x0, 0xfff}}, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x6, [0x7fff]}}, @generic={0x8}, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x7, [0x0, 0xffffffffffffff04]}}, @generic={0x1, 0x4, "2bdb86d1"}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @dstopts={{0x20, 0x29, 0x37, {0x32, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x74}]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x3a, 0x4, 0x2, 0x70, 0x0, [@mcast1, @mcast2]}}}], 0x2a0}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

19m45.809231071s ago: executing program 6 (id=305):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100000008e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
ioctl$int_in(r3, 0x5421, &(0x7f0000000440)=0x6)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

19m44.394599885s ago: executing program 6 (id=306):
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000002480)=[{{0x0, 0x0, &(0x7f0000001780)}}], 0x1, 0x0)
mount$fuse(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x100000, 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0xf01c, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000740)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000002c0)="36c1fefc4a84cb34adfeda", 0xb}], 0x1, &(0x7f00000012c0)=[@hoplimit={{0x14, 0x29, 0x34, 0x4}}, @hoplimit={{0x14, 0x29, 0x34, 0xfffffffd}}, @dstopts_2292={{0xf8, 0x29, 0x4, {0x4, 0x1b, '\x00', [@calipso={0x7, 0x8, {0x1, 0x0, 0x9, 0x9f}}, @generic={0xfe, 0x72, "f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc1cf3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5"}, @generic={0x80}, @calipso={0x7, 0x38, {0x1, 0xc, 0x7a, 0x8001, [0x5, 0x9, 0x6, 0x4, 0x400, 0xb]}}, @ra={0x5, 0x2, 0xa7e}, @pad1, @pad1, @generic={0x93, 0x11, "e80ee304ecb784ec4655260cecea14e498"}, @ra={0x5, 0x2, 0x6}]}}}, @rthdr_2292={{0x38, 0x29, 0x39, {0x6, 0x4, 0x1, 0x9, 0x0, [@empty, @private0]}}}, @hopopts={{0x190, 0x29, 0x36, {0x5e, 0x2e, '\x00', [@generic={0xff, 0x45, "50d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec429ee1edc0bb903fe94b32c28f70dac43574"}, @pad1, @pad1, @padn={0x1, 0x8, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, @calipso={0x7, 0x8, {0x3, 0x0, 0x0, 0xfff}}, @calipso={0x7, 0x10, {0x0, 0x2, 0x7, 0x6, [0x7fff]}}, @generic={0x8, 0xe2, "c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d19b3754df39cc2dc26cf263cbebbddb9a7f17b6771f74c46623f9e38bd23e6f0a2fd3a9a017f66738394aca44d1a9f0b35d9df0a964360ab0900a5e6fcac1cd41c91c97f6826ff706c41edc4e00205bbb53218ed58a1122d993b55a1b9a870a17e7869e3fc704b388202add651f628963a90fea5d8196d5e0373fd13584ae57b4f1c03d4f67005cdb5938591d5ea712014e358ea0808807873fd7290c6d4f033de64c7e86ab309f93fd8146e6672c844ca0c43cde3afb3f9b0e9c19b929779fe65f579221b81"}, @calipso={0x7, 0x18, {0x3, 0x4, 0x3, 0x7, [0x0, 0xffffffffffffff04]}}, @generic={0x1, 0x4, "2bdb86d1"}]}}}, @rthdrdstopts={{0x20, 0x29, 0x37, {0x73, 0x0, '\x00', [@pad1]}}}, @flowinfo={{0x14, 0x29, 0xb, 0x2}}, @dstopts={{0x20, 0x29, 0x37, {0x32, 0x0, '\x00', [@enc_lim={0x4, 0x1, 0x74}]}}}, @rthdr_2292={{0x28, 0x29, 0x39, {0x3a, 0x2, 0x2, 0x70, 0x0, [@mcast2]}}}], 0x370}}], 0x1, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="ea7c5828b87d70214008724bcae1ce6577c01031b19698ecb8a7f5183947918ce2cc9dc778dbfff9e28e1a6df7d8f95c3e45768a6786d6325bc0fe4ed394c8ed0edcbb9f917074251a7f5b6b24c52516a68f181592262dfd12b5af7386658c5fb6c36d86d5084624a302a155c0463b6c36e9fc88338b0f66e2713728a21d19d9a33da93d419df63d8a87fa100381ec74de8b7409f4977d3cd7a9f2fb03cec91c4277b39b2c9f227a9b74926a11960d085e2aaf98673d2a67fa95b8d9dcc72ca6181f6b9b2d1c402267e6cfef5599e1520077d9bc472fb5a5db42b1befd498ec7b8d519b12f065323b15280a2540bc7a4ffe508fc12f93707064caf4111e893142f9867b432b1e6258caa2ae081b8b646c25de7f5366a21f9dd257b84546cd316e17b79d22c4bcaf70e8a96d1e502b53c581c75482d1d63f0d5f3fb5bdbb714583f0798e0c4d6c9d99513e91a68a26612053290f15f5a2e06acfa229356e37b4d57697224e9561c0430a67fcb5dea72acc91e60751a5b07eb603548a646f082ce213347b4ee908bd95cc56775330aa09d4f19f48a8cb5d7f6346d82bab8ff019309684bd01eb4d90febe2269cd2a1100130c242a2995ce38638a3bbc9008ac0e820a1e0b9a9511af47aa7f3e30a69589985423f3b4ea98152433bf1aa53a0981f783f11c4cc50f70fe63b2043b74b9cb7da59caedadc1fa1f662831a353969893d4f93b919cda52a1ce2200a0a7895abb293c29d6d197cce98a4df8fc90c582014742a00b4bd09f1fcc5ff5753320d2b5593e657c0fb87a4cfa323ce59111eea806a6e020fb0c4fdd601087811e33e793975b5e9e936c16d243bdea757e0ee4508f5d5b496ed07b6f0f1f46ed752448f30d679b23ba8142d4ab25beb913ee77547866e5d9501a55e9797ba3407f3f4cc11398bdaf3ac4c2e79a5b133a09fcf8ae790bb985fa01daf2758fd8a77fde15a822227dddf64bb2ebc49a56ad025e01c6c59e4818abdf808789d9f87c103cf7f7d21d2a1345b9b7fd66b1cf96002343fbd62f8080d945e70bd93d4bf42b401477abed49065b4a8ccfb9d93724118168de2e8df4f78ccf3b9593f993423a619ef6bd8392a2cfc6424d3687fcdc67d33073db95d856f312b934d05a3c4e967217837920fee73b00757b617d1ef3bfc2e88a8a72f0948263db2c9e7bd491f059b6ee8d0ea3f2193314562910529869b248172bfe0f914f7a91a27c6e9e6c2e3455a7ae765392b48fc959958aa39a5a483b2a6e873ac76f8579515e42f7a3bbc82bcf71edaf12f7b40a2adc74d67ef793988cc8ac788185049e57fb84757bdc700ffde10afc19df290787ed98222f8afb2b6d11944666331350e2914466b398750acae526146373b2cbe1bdd1803e6c920a182a1ad118a3d09313c2ce2703a0a1c09215cab90c35b03b1c795cf704f42dd31ddff6be67bb355977b2e07609c5228299a170308e54705674384fc294cdfa4abf989d3c3bf3eabbbcf52a6a0646bf6db5b61ad027007464fd6fc10490ee2e9190c28ae5cb3733105cb782c0d53e5c79c3e455609d557d824154d01e282788ec8ae7c8a03fcd6cd4e37829b0f921c46d715454d5e1281c641cf0756a2f31b0369ce94e819e6254af95b88bffd7bb2cfe9469d303497fead174839b2789b5aa703176510eab1f46916b3b63f6f5b2df262fe7274a0cee9bd6e115e5f9f48ac1c09e5b3c546ae95b9916a633869854d3ee39d4acb800e876e7fc084ffd79a20fca8331caff657ec89b445c6012ff7eb9531eb1e8c90cdc66b82d6fd608310099503a9dcf50b40d10a3b1ab520477e20ad5f6405cd4b5b36d201e12088d7868c6e94737ea88db6ed5f7df4d31cbd2d0c4f21cdcc3b181f5aae7216dc4c06b2989bb44e5369ba96ce87f3e3abbb530d103a53d7e0b914115c302c935eea7d256a73aa851d84dec6d9112163be8135889c67fa90e796a6f050fba0a6a740618cd513748072daac9f3e25034772cc400a14834afbde835bc9fd7cf1113d67ebe99a3b78907596886ad5a1670ef572c18e26c98fe40194428de339cba7b8efc5fa7faf7512ef6b89a877f3e534fb4512729df686e14aece08fab3b42ea14acde0e18ffe5dc00e74288661c7463e00f3b942cddf3b71e1dcf71989f378b933df099316451cca296a4e117bbeb3b1e552e5a10f9731449ae830de14989049ce818f720e77e78a86c307c80450b26278bc25ee7390ce6d4c4dfc8d39b6b4b1ce6f3865dbdd1d37aedb555288bea9ef95c8600dea1cd10e9e42d15aa804f99a31bfaa5ea52185333d734c766e3bb4a9abf86cf4d840dc188167a25cc3054b65fd7ce053d38518474ab55e59c1ccaf34d57b4cd73b07ed63d754ab3d57dfc0f67bbdb22e33d9f63aa2b36cf0af338794d4acbd1b13669bde67f7bd032f9c6b400e8054a0cff77fc6e0591195b21715e42c881e23156b4ba504d7e1b6eb9c2ec9b9e382d85f7c52bd964d305da9496dbaa022880ddf236730c458f31258d64ae2668aa863b3fe558c7f8cfb3dabf42edcaf2891e9b9462c44153658eae85cd499abd9dca762adf26d9904d28b772b3fc3d066d56261474c944387ac7eb00059025ff25e34b8f7c2986db1ccc4297e1315c3ceeef1b8f98e0500bbb8bb0ab52d80f8c6c8fa5d24b9a05f5350e2fd59af4b9fa9a2b4339b61e208f227ba968d4dbd36246133de2078c6a15dd57754a3537c31d04da545f062dbf9cbaa0840e23974f441a4d5937fec23ff81c193bd951a7bacac8eb6d4705702cbe3c930f27869753ba6026455bbb7742c53644f1646d7545467091a207905f831505f214fbd818aea4455705b5e727850cdcac40620135b8dba85cb0c0f393af252ec082cba5c43385fbc2cc5682bc1994b064e29c8c5a20e7e6d15fbb13e6fd1a86b2fda666fbcd80fd08be00a7423fcafbdd8283bac88ead203bc10d1c1a13ca2fe853fa6cc8991b0476561be085b086b0d0e45f73e59f519342c13f368a37464cb55b8a13846f4cd610536d5c4b8704fcd347abe6712d3de67d7918e6954898f31647a8ea37ecc2e1bb02b1b26e7a60fbb2b0a48efc5795c12d5c4ac8dc4149dea0f2e085422ec69352882622711b74e1e32c7ead2cf3c554e8ff1648e8b66d0dc6997b6304b3b560a33d75aa49476175a386ca721156ea79bdba432d439dbceb0285561abd5d134badd9f38c04fae8fa920edfff15705371c907848c14acdfb0b22a4c7168e1840e8b8a50349dcee5f429b3cb34e30f0f67acf93604792b8574f36ea9409d422621f3c0c7b781fc8e23d1d46f04a9b44f633e5f72cb079fbde66a9745705666c6dab6238628e57ee6cffa8cfad616dac1abe2789c9efccb4fc7e65e490d9a4e49e7ce72a6980e72f70a17649e67de86f86b61a4b6219daefc939b5904e5712ecaf85c98484fc02585b1aa990b95173e4a2907cf877af696e528e6b2b634a4fb7d791cacc8644fa76e062148d411e18f0da5aed22116828cd700a28e8f46bca950550acb4ab05eddeb6b2dac24702cff4de0a3ece393cac879ed2f0c5b9645839cfdb79fb1df87596b14504cba9dddda51edaffcd0214b91b5898ea022774e699aa0caf0f646cc0cb8e8fc8b8be43c23aa7f6bd29fd0615c0b78f3514a52989d7f35ad08a4bd473e61da6657cc2e85d3b2b7d3fb51174a96f27038ddbc87a35e09a668e436aa40146c6a26dca87b39220f139b772719d80aadb752c622bf09acd6846838fb48a8817ba4aa72eaa32e82251b3789969d8518f9aa07cdcb9a355f73f119725c086168aaca262f13cd742e5f06c969a462638a557e15a4f5d43e3242c08f23b00d2b8d57c60d3636abd4068ec03a4be3429b95e41351ab5c58812e552df90c3e6c9d8779aa484e74f073ea9fcdce13b1dff8e7c101b2c6865c5cefe108e3559f520e2bc42c9dc39b57fddb44ca49f2689e10c1381c0740d20cbca46da475c62f513cb08398a5fd5d4f6b13ce839fe149df0d291a8f7267fe90a7e1845dace17cd927c2d1aeffbdc36bb983172ceff025e84b0419645fcc72897b992f5081c78756122391947f08ccd20806cfc2bded705b472fc52e84734e016cbd309aadebbbb4e8bdfed77b1e0b15ce0904838d9e4d64643df66f0353c377e554b428dc0f31189a134cdb8e66d2755e84c2b2409c3d63a81f5f05616baf6a243b09153a4f8289e15a5a4ffb007b0cbeffde25391bb2acd86b453e245643c0fa1dfe5d42e0e3f1c592a00b77f0133adf7989c6c2bf3ddc0b8a2b14f35d33f62f4ee2fc56166372058e997b9abe6bad8aa718f8d87ad095e8f354aaef540840437b5451771266a8358ed75954db52b38bca4a1c8696dca1de03b12627254409f8bb68c94eeaa1a8bcf894482b96e81b9ff5c2383a907537a191aff0bb5b5418ef5670cecca1cfbd41b61879b11a5a5053cd86cf5d61f8c2f7d7ad2034a1801b3b92a79ac3b4343c680008b1ba10577a35173cac6d4dbc1d00e436f238b57093b34d4ea19c225b84a2d6086cc6cf72595b980c88142d268bbf9c8375a93afe75c3583b3b9687368d78147985d209e6d89c335e948c51696a948f01ad062dcf84a99584466e24646b2e441fefb10ef962432f2925d6d98e790acf4ca7d9339a589a537aa3392ec79f34a6544144072ab8248e45ac560a78c70c5afcbf10909299dfcd67981c88780c1340c951e115ffec56d23b9ead6a55024e199238f4b133e3e1e0e84318b5037a3947ae09749c25c7e4887936ecf0ba9a807dfa471ea1f3350b70feb58dc9e2836365ce4db456a341e43410cac1253fe08e79c21fca932716f4c171fc957cb325737b70532d81f0eb2f0a16478c0d934165728f7b29a8a0ff6bc964e99dea26d3efd28336b00c112a26da7a2ea1c21a9688cc3a68293958edf27ae89e5f9b8348af4121028e760cf68c931af92906d27dad4d330df9201b5395ccce0c803806422883667ccb11438d9dbe1901d4ab98d89914b313338486deb6f748053517e2188c479adb1eabb8e8ed5d05bb3f66826fae83bbc5bce3615ee32d937ffbe8846a1156aaf7bf9b9d4189bdf290b3df254077688eeda824d6ea0a452f7e7f915c1a94ee250a3907ec035d7ba7bb0256811f04646ca156b8925506c774df4d4072c02929e985057a5f7ddc1469c7306e6fdb86b810ada1cc96f6bd389597dd27dd656f55c316fb2d56b2d13eddf893722e813934a19778719be99697c365222db64039f9caab1201c430e53df1af8a0321c8759fc33e8204150080979936d0717f6c4c9145fb828389acbb894a4600485e8b105c7165a40e814889343deead6d434a8da60eed1e50aa507ac2793b4a4c5517265f859f223bb4f6cadc6fb53430304baea18189e2b5ddd266c38f5c325ba391a50fcd34060d217c4118889c4275e40a8428099ddfa3cc0d8241c22fc1554318e922f3b1257f2046d70df460c5283a539487583ffca1972a19237b06480e0a56d9e185fe4dc3607666d81ed0d9d9f5c5c568a5a0a87160b6d35c73dae9c6177f2b25d90a2598042f4b43bc765fa86a831c401a01c391a8fdc8f8c742f2322a1b8ef18ec7d82f013893c981f6bd96ec57d8e73e1633ae3970721fcea055ecc836ce3", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

19m43.660573818s ago: executing program 6 (id=310):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

19m41.591508262s ago: executing program 6 (id=314):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

19m24.364262279s ago: executing program 35 (id=314):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0\x00', 0x696c04, 0x0, 0x1, 0x0, 0x0)
setxattr$trusted_overlay_origin(0x0, &(0x7f0000000100), 0x0, 0x0, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,')
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000880)={@cgroup, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
syz_open_procfs$namespace(r0, &(0x7f0000000180)='ns/user\x00')
r3 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3)
connect$bt_rfcomm(r3, &(0x7f00000001c0)={0x1f, @any, 0x6}, 0xa)
close(r3)
socket$nl_xfrm(0x10, 0x3, 0x6)
r4 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r4, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev={0xfe, 0x80, '\x00', 0xfd}, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@empty, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
r5 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x143101, 0x0)
ioctl$KVM_CREATE_VM(r5, 0xae03, 0x74)
sendmmsg(r4, &(0x7f0000000480), 0x2e9, 0x0)

8.264401775s ago: executing program 3 (id=5526):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_socket_connect_nvme_tcp()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'veth0_to_bond\x00'})
r3 = socket$inet6(0xa, 0x3, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000980)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x40, 0x0}, @in6=@remote, 0x4e1f, 0x0, 0x4e24, 0x461, 0x2}, {0x0, 0x200000024, 0x40000000007, 0x6811220f, 0x100000000, 0x4, 0x200000004, 0x9}, {0x20005, 0x0, 0x3}, 0xb393, 0x0, 0x1, 0x0, 0x6, 0x2}, {{@in=@empty, 0x0, 0x6c}, 0x2, @in=@empty, 0x3502, 0x1, 0x0, 0x0, 0x9, 0xae, 0x4}}, 0xe8)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000804}, 0x4c844)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000040)=0x4)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x98}, 0x1, 0x7}, 0x14)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000280)={@rand_addr=0x64010102, @loopback}, 0x8)

7.997897314s ago: executing program 0 (id=5529):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000880)={[{@nouid32}, {@jqfmt_vfsv1}, {@noquota}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x9}}, {@nodioread_nolock}]}, 0x1, 0x5af, &(0x7f0000003e80)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105042, 0x0)
truncate(&(0x7f0000000940)='./file1\x00', 0x8da6)
truncate(&(0x7f0000000040)='./file1\x00', 0xc3f)

7.823869789s ago: executing program 8 (id=5531):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x15, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x50}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = fanotify_init(0x40, 0x80000)
readv(r0, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0xa880, 0x97)
fanotify_mark(r0, 0x1, 0x40001019, r1, 0x0)
getdents64(r1, 0x0, 0x0)

6.843746529s ago: executing program 8 (id=5536):
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x10, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x50)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0x0, 0x0, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r0}, 0xc)

6.756172622s ago: executing program 7 (id=5537):
open(0x0, 0x4c27e, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x7c}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x74}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000480)={0x5, {{0x2, 0x0, @multicast1}}}, 0x108)

6.755211342s ago: executing program 0 (id=5538):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f0000000180)='./file1\x00', 0x804800, &(0x7f00000002c0)=ANY=[@ANYRES8=0x0, @ANYBLOB="6092034e5823f645654f6e8edfc3b8e1a948efb0d4b9a9d4c30f5dacb3c1a7ea2587d59165777f070017c2921e793ec5a1384e143b57bb832f14bb43afdef6cb4ed4960b6c732be46a927cdd8c57f93ee6c15401df91ebcbe4f9989843313ea9f243d4dc3d276b966b898100a620b69b543033b9b7bcd9069b9248fbdff46c4a49f094a61938776ce1a1d0f0c84cb7a84bf0b1e2ce5f38f95e11d5b1977ead80625337f66dc391089ab8573d008a4bd03f6f9f01406db632558ed25be4beecd844ac00e52f95c5dc96a1e4a25c80d56aebf6cb33914d6bc72a40bf2fc94efed2f941cf3e"], 0xf9, 0x1213, &(0x7f0000000600)="$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")
syz_mount_image$ext4(&(0x7f0000000400)='ext2\x00', &(0x7f0000000480)='./file0\x00', 0x50000, &(0x7f0000000000)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x100000}}, {@grpquota}, {@jqfmt_vfsv1}, {@lazytime}, {@nobh}, {@grpquota, 0x2e}], [], 0x2e}, 0xfe, 0x477, &(0x7f0000001dc0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_service_time\x00', 0x275a, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
prlimit64(0x0, 0xe, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_open_dev$MSR(0x0, 0x0, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x1, 0x6}, 0x4)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x48041, 0x0)

6.521660109s ago: executing program 8 (id=5540):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x1f00)
getpid()
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil)

5.701214574s ago: executing program 7 (id=5541):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000569000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000340)={{0xfffffffe, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x2, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
dup(r0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
fsopen(0x0, 0x1)

5.50566826s ago: executing program 5 (id=5543):
open(0x0, 0x4c27e, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x7c}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x74}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bpf(0x0, &(0x7f00000023c0)='./file0\x00', 0x0, 0x958028, &(0x7f0000000180)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee00, @ANYRESDEC])
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, 0x0, 0x0)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000480)={0x5, {{0x2, 0x0, @multicast1}}}, 0x108)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x1, 0x111000)

5.413614023s ago: executing program 0 (id=5544):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file0/file0\x00', 0x400a8, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, &(0x7f00000001c0)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000000480)='./file0/file0\x00', &(0x7f0000000340)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x88000, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000200)='sysfs\x00', 0x0, 0x0)

4.53614714s ago: executing program 5 (id=5545):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x28, 0x1, 0x4, 0x301, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFULA_CFG_MODE={0xa, 0x2, {0x9, 0x2}}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x40)

4.423997214s ago: executing program 5 (id=5546):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x15, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x50}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = fanotify_init(0x40, 0x80000)
readv(r0, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0xa880, 0x97)
fanotify_mark(r0, 0x1, 0x40001019, r1, 0x0)
getdents64(r1, 0x0, 0x0)

4.332476956s ago: executing program 8 (id=5547):
socket$netlink(0x10, 0x3, 0x9)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x11, 0x6fd, &(0x7f0000000ac0)="$eJzs3U1sHFcdAPD/rNf2bioct03TIFWqaaWCiEjiWC6YSwxCyEgVVEGCs9U4jZXNB7aL3B6IC0hcOXBFKgdzgRMIISEhRSriCLfCzeJUgeDSU9JDB83Xeuzuetdx/FH4/aLJvJk3781//jPzZnclawL4v7VwPpr3ox0L519Zz5a3Nmc6W5szt4pyoxMR4xHRiGjWWiXvRsxHMcWnsxVVRb/9/Gx57up7H2y9Xyw1y6kRxX/t/gE2hzmKjXKKqYgYKecHsKO/1x6tv/HtYtLNTJawF6vEwXEbjYh0h++d3a7pJR2pLfS934FPjqR4btYU9/9kxKmIaFUPtI2isnH0EQ60r7Fo4/DiAAAAgBPj9IN7EesxcdxxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwCdJ+f7/pJweVuWpSKr3/4/V3rE/dszh9rd3ZK2qcL9xFMEAAAAAAAAAwOF6/kH86mqaTlTLaRKN74yUC+1y/kasxlIz4kKsx2KsxVqsxHRETNY6GltfXFtbmY4X8qUzH6ZpGk8ULWNlR8vLPVteHjLg9kGPGAAAAAAAAAD+p1yZHc/nP4yFmDjuYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoC6JGClm+XSmKk9GoxkRrYgYy7bbiPhrVT5BmvttcP9w4gAAAIAT5fSDeBDrMVEtp0n+nf9s/r2/FW/E7ViL5ViLTizFtfy3gOJbf2Nrc6aztTlzK5siYnRnv1/5z3b5txMDw8h7jOK3h957Ppdv0Y7rsZyvuRCvxZ3oxLVo5C0z56p4anHVvJ3FlFwppGmMD5Oga+U8O/KflvMj0R60wWSekdFuRi5lsSVFHp/cOxP1szOE3Xuajkb3l58z/ffU/TGmyvmVPfeSfJSmRelUtSbiiW/smfP8ehnd18H097c///tbAzbZnYnLtavv7N45j/js73793Rud2zdvJBvnj+wyeiTP9149/o/qDFWZKGzEUszUMvHs0Jm4vnrCM9HXzl8aG/FMt7wQX49vx/mYildjJZbj+7EYa7EUU/G1vLRYXs/Z/5N7Z2p+x9Krg2IaK8/LyK6YPnO6mO8V0wt524lYjm/GnbgWS/Fy/u9yTMcXYzZmY652hp8ZYqRt9Ljrf98/+Bc/Vxayge8n2wPg47q7DyDL65O1vNbH3Mm8rr6mEWn5ZHlqH8+jvcfGyvYjKzsTP6rdg8evm4lWdJ8SVXRPVxkY7ZmJX+TDymrn9s2VG4t3d/WbbPTe30ux8/BPzkCSXS9PdceInVdHVvd0z7rpvO5Mt66xu+6X7W7doDt1rPwM9/GeLud1z0bEz8tos7pMNoZndedq7bLPW6287sM0TYvPWwCcUB+l3S9Snz811v5X+y/td9o/bt9ov9L66viXxp8bi9E/jX65eWnkpcZzyW/infhBDP6GDgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADLT65ls3FzudpZVdhTRN7/WpOpRCNCN2rPnjH2rb5O8ai4jhO8y2nm9E5GuaURaGaP7PiCjX3Hu0w3m7V9V4DG7+9/KcHEnC9ygkQ2/c6nv9lIU7nyoP52Gapkd+ONW72vbdPC0d2yl4zIXqFVkfq0qaEX1aHctwBByhi2u37l5cffOtLyzfWnx96fWl23Ozs3OX5mZfnrl4fbnTOu7wgEOUP+vzzznHHQkAAAAAAAAAAAAwrOH+OCe5uRjFmmavvyIY1BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADgABbOR/N+JDF96cKlbHlrc6aTTVU5m4/kWz6MiEZEJFMRybsR81FMMVnrLum3n42Iq+99sPV+sdQsp3z7xsGPYqOcYqoMd6r3dq1eK9N7/fpL8n7u9u9vSEk5jXTXzB+oP3hM/hsAAP//zi8OkA==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2, 0x11, r0, 0x0)
truncate(&(0x7f0000000940)='./file1\x00', 0x8da6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="4600010002"], 0x8)

4.303345877s ago: executing program 0 (id=5548):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x404, &(0x7f00000002c0)={[{@max_batch_time={'max_batch_time', 0x3d, 0x4}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4}}, {@block_validity}, {@errors_remount}, {@nombcache}]}, 0x1, 0x44f, &(0x7f0000000640)="$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")
chdir(&(0x7f0000000040)='./file0\x00')
syz_mount_image$fuse(0x0, &(0x7f0000000080)='./file1\x00', 0xa54ec2991df72bc, 0x0, 0x0, 0x0, 0x0)
quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000180)='memory.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x20, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)

4.302951007s ago: executing program 3 (id=5549):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0xffffffffffffffff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = socket(0x1, 0x3, 0x0)
bind$unix(r0, &(0x7f0000000840)=@file={0x1, './file0\x00'}, 0x6e)
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x25, &(0x7f0000000140)=0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/cgroup.procs\x00', 0x88080, 0x16)
openat$fuse(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@abs={0x1, 0x0, 0x4e22}, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='./cgroup.net/cgroup.procs\x00', 0x0, 0x82)
close(0x3)
open_by_handle_at(r5, &(0x7f00000003c0)=ANY=[@ANYBLOB="1000000002000000"], 0x0)
read$FUSE(r4, &(0x7f0000006780)={0x2020}, 0x2020)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r6 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000300)='syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000540)={0x81000000, 0x0, 0x0, 0x0, {0x3d}, &(0x7f00000001c0)=""/170, 0xaa, &(0x7f0000000380)=""/209, &(0x7f0000000280)=[r1], 0x1, {r6}}, 0x58)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x2e9, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000100)=ANY=[@ANYBLOB="8510000004000000950000000000000018000000000000000000000000000000950000000000000085100000fcffffff95"], &(0x7f00000000c0)='GPL\x00'}, 0x80)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000100)='./file0\x00', 0x2a00005, &(0x7f00000002c0)=ANY=[], 0x0, 0x2b7, &(0x7f0000000580)="$eJzs3c9Ka1cUB+Bf1JjoJEI7Kh0cKJSORH2DUCyUBgqWQO3IUJUWI0IEoR1UZ32XPk4foy9QC4Vcridq4s31D3o93vh9EM6Cvdc5aychOwl7JzufHx7sHh3vb3/yT5rNIgvJWf5LkrnMZ+QqSGpZzLizAAAfm62tXrvqGviwBoN2r56k8U5Lt15JQQAAAAAAAAAAADza1PX/58nK2Pr/2ug4Z/0/AMwE6/9n32DQ7i2P3r9N6v5VSUEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAASc6Hw9bwllvV9QEAT+8x8/+/w9LzVQsAPIXJ+b92lvj8DwCz7nxirq/F9/8AMPt+2P7pu3ans7lVFM3k8M+T7km3PJbt7f38mn72spZW/k+GV8r4m287m2vFhZXsHJ6O8k9PGqMLXOavp5WV6fnrZX4xkd+tZ3n8+htp5dPp+RtT8xfz1Rdj+atp5e+fc5R+dvM29zr/j/Wi+Pr7zo38xkU/AAAAAAAAAAAAAAAAAAAAeA6rxZXJ/fvd+bJ99X3tSeqjk9zv9wFu7K9fyGcLlQ4dAAAAAAAAAAAAAAAAAAAAXozj334/6PX7ewPB7cGXjXt0Xnrae/XyQap67A8Lmrmrz9JLKfVVBMNW+Sx6YHpFL0gAAAAAAAAAAAAAAAAAAPCKXW/6TRarLgYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKnL9//8PDn78pTzFnZ2rHiMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwOrwJAAD//ypU4JE=")

4.301624767s ago: executing program 7 (id=5550):
open(0x0, 0x4c27e, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x7c}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x74}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bpf(0x0, &(0x7f00000023c0)='./file0\x00', 0x0, 0x958028, &(0x7f0000000180)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee00, @ANYRESDEC])
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, 0x0, 0x0)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000480)={0x5, {{0x2, 0x0, @multicast1}}}, 0x108)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x1, 0x111000)

4.270052598s ago: executing program 5 (id=5551):
syz_mount_image$ext4(&(0x7f0000000500)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f00000000c0)={[{@barrier}, {@nogrpid}, {@quota}, {@nobh}]}, 0xff, 0x511, &(0x7f0000000ac0)="$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")
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
ptrace(0x10, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8b26, &(0x7f0000000000)={'wlan1\x00', @random="00280e00ec00"})
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r3, 0x6, 0x14, &(0x7f0000000140)=0x1, 0x4)
connect$inet(r3, &(0x7f0000000300)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000500)='^', 0x1, 0x20000894, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x2, 0x7fff7ffc}]})
getpeername$packet(0xffffffffffffffff, &(0x7f0000001280)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @dev}, 0x0)
sendmmsg$inet(r3, &(0x7f0000002ac0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000002a40)=[{0x0}, {0x0}], 0x2}}], 0x2, 0x8000)
recvfrom$inet(r3, &(0x7f0000000540)=""/213, 0xd5, 0x10100, 0x0, 0x0)
r4 = creat(0x0, 0x4)
quotactl_fd$Q_SETINFO(r4, 0xffffffff80000601, 0x0, &(0x7f0000000080)={0xed, 0x5, 0x0, 0x2})

3.359031676s ago: executing program 5 (id=5552):
open(0x0, 0x4c27e, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x7c}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x74}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000480)={0x5, {{0x2, 0x0, @multicast1}}}, 0x108)

3.305720358s ago: executing program 3 (id=5553):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0xffffffffffffffff}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = socket(0x1, 0x3, 0x0)
bind$unix(r0, &(0x7f0000000840)=@file={0x1, './file0\x00'}, 0x6e)
ioctl$SIOCGETMIFCNT_IN6(r0, 0x89e0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
sched_setaffinity(0x0, 0x25, &(0x7f0000000140)=0x2)
r4 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./cgroup.cpu/cgroup.procs\x00', 0x88080, 0x16)
socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@abs={0x1, 0x0, 0x4e22}, 0x0)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000500)='./cgroup.net/cgroup.procs\x00', 0x0, 0x82)
close(0x3)
open_by_handle_at(r5, &(0x7f00000003c0)=ANY=[@ANYBLOB="1000000002000000"], 0x0)
read$FUSE(r4, &(0x7f0000006780)={0x2020}, 0x2020)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r6 = openat$cgroup(0xffffffffffffffff, &(0x7f0000000300)='syz1\x00', 0x200002, 0x0)
syz_clone3(&(0x7f0000000540)={0x81000000, 0x0, 0x0, 0x0, {0x3d}, &(0x7f00000001c0)=""/170, 0xaa, &(0x7f0000000380)=""/209, &(0x7f0000000280)=[r1], 0x1, {r6}}, 0x58)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, &(0x7f0000000480), 0x2e9, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000240)=@bpf_lsm={0x18, 0x7, &(0x7f0000000100)=ANY=[@ANYBLOB="8510000004000000950000000000000018000000000000000000000000000000950000000000000085100000fcffffff95"], &(0x7f00000000c0)='GPL\x00'}, 0x80)
syz_mount_image$vfat(&(0x7f0000000280), &(0x7f0000000100)='./file0\x00', 0x2a00005, &(0x7f00000002c0)=ANY=[], 0x0, 0x2b7, &(0x7f0000000580)="$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")

3.22542819s ago: executing program 8 (id=5554):
syz_mount_image$ext4(&(0x7f0000000200)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x2a0471a, &(0x7f0000000280)={[{@max_batch_time={'max_batch_time', 0x3d, 0x3}}]}, 0x82, 0x48f, &(0x7f0000000840)="$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")
socket$inet_tcp(0x2, 0x1, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c091}, 0x40d0)

3.138806193s ago: executing program 7 (id=5555):
open(0x0, 0x4c27e, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
write$tcp_mem(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
socket(0x80000000000000a, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xd, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x61, 0x14, 0x7c}, [@ldst={0x4}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x48)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x66, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x74}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x80)
syz_open_dev$sndpcmc(&(0x7f0000000080), 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bpf(0x0, &(0x7f00000023c0)='./file0\x00', 0x0, 0x958028, &(0x7f0000000180)=ANY=[@ANYBLOB='uid=', @ANYRESHEX=0xee00, @ANYRESDEC])
r3 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, 0x0, 0x0)
setsockopt$inet_group_source_req(r3, 0x0, 0x2e, &(0x7f0000000480)={0x5, {{0x2, 0x0, @multicast1}}}, 0x108)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_open_dev$sndpcmp(&(0x7f0000000000), 0x1, 0x111000)

2.942568389s ago: executing program 0 (id=5556):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x28, 0x1, 0x4, 0x301, 0x0, 0x0, {0x2, 0x0, 0x1}, [@NFULA_CFG_MODE={0xa, 0x2, {0x9, 0x2}}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x1}, 0x40)

2.087380585s ago: executing program 5 (id=5557):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
recvmsg(0xffffffffffffffff, 0x0, 0x1f00)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mremap(&(0x7f000000d000/0x2000)=nil, 0xfffffffffffffe74, 0x1000, 0x3, &(0x7f0000007000/0x1000)=nil)

2.063588306s ago: executing program 3 (id=5558):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x1000040, &(0x7f0000000880)={[{@nouid32}, {@jqfmt_vfsv1}, {@noquota}, {@debug}, {@journal_dev={'journal_dev', 0x3d, 0x9}}, {@nodioread_nolock}]}, 0x1, 0x5af, &(0x7f0000003e80)="$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")
mmap$IORING_OFF_SQ_RING(&(0x7f0000003000/0x1000)=nil, 0x1000, 0x2, 0x11, 0xffffffffffffffff, 0x0)
truncate(&(0x7f0000000940)='./file1\x00', 0x8da6)
truncate(&(0x7f0000000040)='./file1\x00', 0xc3f)

2.062641316s ago: executing program 7 (id=5559):
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_socket_connect_nvme_tcp()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'veth0_to_bond\x00'})
r3 = socket$inet6(0xa, 0x3, 0x88)
setsockopt$inet6_IPV6_XFRM_POLICY(r3, 0x29, 0x23, &(0x7f0000000980)={{{@in6=@initdev={0xfe, 0x88, '\x00', 0x40, 0x0}, @in6=@remote, 0x4e1f, 0x0, 0x4e24, 0x461, 0x2}, {0x0, 0x200000024, 0x40000000007, 0x6811220f, 0x100000000, 0x4, 0x200000004, 0x9}, {0x20005, 0x0, 0x3}, 0xb393, 0x0, 0x1, 0x0, 0x6, 0x2}, {{@in=@empty, 0x0, 0x6c}, 0x2, @in=@empty, 0x3502, 0x1, 0x0, 0x0, 0x9, 0xae, 0x4}}, 0xe8)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)
r4 = openat$ppp(0xffffffffffffff9c, &(0x7f0000001740), 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000380)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x80000}, 0xc, &(0x7f0000000300)={&(0x7f0000000180)={0x1c, 0x2, 0x3, 0x201, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFQA_CFG_MASK={0x8, 0x4, 0x1, 0x0, 0x22}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000804}, 0x4c844)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$PPPIOCNEWUNIT(r4, 0xc004743e, &(0x7f0000000040)=0x4)
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000200)=ANY=[@ANYBLOB], 0x98}, 0x1, 0x7}, 0x14)
setsockopt$inet_mreq(0xffffffffffffffff, 0x0, 0x20, &(0x7f0000000280)={@rand_addr=0x64010102, @loopback}, 0x8)

1.914368081s ago: executing program 8 (id=5560):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r1 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x60140, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r3, 0xae60)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000569000/0x18000)=nil, &(0x7f0000000240)=[@textreal={0x8, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f0000000380)={"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"})
ioctl$KVM_RUN(r4, 0xae80, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x12, 0x0, 0x0, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(0xffffffffffffffff, 0xc1105517, &(0x7f0000000340)={{0xfffffffe, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x2, 0x4, 0x0, 0x0, 0x0, 'syz1\x00', 0x0})
dup(r0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0x17)
fsopen(0x0, 0x1)

1.61519109s ago: executing program 0 (id=5561):
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000480)={0x15, 0x4, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41100, 0x50}, 0x94)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = fanotify_init(0x40, 0x80000)
readv(r0, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/175, 0xaf}], 0x1)
openat$random(0xffffffffffffff9c, &(0x7f0000000000), 0x141080, 0x0)
fanotify_mark(r0, 0x1, 0x40001019, 0xffffffffffffffff, 0x0)
getdents64(0xffffffffffffffff, 0x0, 0x0)

1.446825135s ago: executing program 3 (id=5562):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000200)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x403}, 0x50)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, r3, 0xfff}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xbda}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2000002}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

1.034094117s ago: executing program 7 (id=5563):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x7, 0x4, 0x800, 0x20008894, 0x8, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2}, 0x50)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x138, 0x10, 0x633, 0x70bd2c, 0x0, {{@in6=@empty, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x5, 0x0, 0xfffd, 0x0, 0x0, 0x0, 0x3a}, {@in=@multicast2, 0xfffffffd, 0x32}, @in6=@loopback, {0x0, 0x0, 0x0, 0x9, 0x2, 0x0, 0x0, 0xfffffffffffffffc}, {0x0, 0x0, 0x0, 0xa}, {}, 0x100, 0x0, 0x2, 0x0, 0x0, 0x23}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}]}, 0x138}, 0x1, 0x0, 0x0, 0x20040}, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x16)
connect$inet(r1, &(0x7f0000000480)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$inet_IP_XFRM_POLICY(r1, 0x0, 0x11, &(0x7f00000002c0)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x4}, @in6=@empty, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x4, 0x0, 0xfffffffffffffffc, 0x0, 0x6}, {0x0, 0x0, 0x400000000}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3}, {{@in6=@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010101}, 0x0, 0x32}, 0x0, @in=@private=0xa010101, 0x0, 0x0, 0x0, 0xb7, 0x2, 0xfffffffe}}, 0xe8)
sendmmsg(r1, &(0x7f0000007fc0), 0x800001d, 0x1c)

0s ago: executing program 3 (id=5564):
socket$netlink(0x10, 0x3, 0x9)
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x11, 0x6fd, &(0x7f0000000ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x105042, 0x0)
mmap$IORING_OFF_SQ_RING(&(0x7f0000001000/0x3000)=nil, 0x3000, 0x2, 0x11, r0, 0x0)
truncate(&(0x7f0000000940)='./file1\x00', 0x8da6)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
write$bt_hci(r1, &(0x7f0000000580)=ANY=[@ANYBLOB="4600010002"], 0x8)

kernel console output (not intermixed with test programs):

atman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1183.894765][T19019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1183.923193][T19019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1183.946085][T19019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1183.992288][T19019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1184.038424][T19019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1184.072057][T19019] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1184.109284][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1184.122840][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1184.156347][T19019] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1184.179641][T19019] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1184.221613][T19019] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1184.246582][T19019] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1184.488311][ T4425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1184.516375][ T4425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1184.564566][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1184.602651][ T4303] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1184.623313][ T4303] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1184.654542][ T4303] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1184.858857][ T7982] Bluetooth: hci4: command 0x0419 tx timeout
[ 1185.998790][ T4425] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1186.082833][ T4425] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1186.179605][ T4425] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1186.277905][ T4425] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1186.539333][T19200] chnl_net:caif_netlink_parms(): no params data found
[ 1186.974801][T19200] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1187.068869][T19200] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1187.148009][T19200] device bridge_slave_0 entered promiscuous mode
[ 1187.268668][T19200] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1187.275841][T19200] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1187.327406][T19200] device bridge_slave_1 entered promiscuous mode
[ 1187.506592][T19200] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1187.580631][T19200] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1187.733721][T19200] team0: Port device team_slave_0 added
[ 1187.740490][ T8000] Bluetooth: hci5: command 0x0409 tx timeout
[ 1187.792004][T19200] team0: Port device team_slave_1 added
[ 1187.889226][T19200] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1187.913251][T19200] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1188.027786][T19200] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1188.096615][T19200] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1188.125183][T19200] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1188.218779][T19200] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1188.359803][T19200] device hsr_slave_0 entered promiscuous mode
[ 1188.387605][T19200] device hsr_slave_1 entered promiscuous mode
[ 1188.413640][T19200] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1188.436258][T19200] Cannot create hsr debugfs directory
[ 1188.812124][ T4425] device hsr_slave_0 left promiscuous mode
[ 1188.869842][ T4425] device hsr_slave_1 left promiscuous mode
[ 1188.886491][ T4425] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1188.913899][ T4425] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1188.955785][ T4425] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1189.018737][ T4425] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1189.079329][ T4425] device bridge_slave_1 left promiscuous mode
[ 1189.085613][ T4425] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1189.152909][ T4425] device bridge_slave_0 left promiscuous mode
[ 1189.179055][ T4425] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1189.266396][ T4425] device veth1_macvtap left promiscuous mode
[ 1189.298499][ T4425] device veth0_macvtap left promiscuous mode
[ 1189.341266][ T4425] device veth1_vlan left promiscuous mode
[ 1189.387669][ T4425] device veth0_vlan left promiscuous mode
[ 1189.818531][ T8000] Bluetooth: hci5: command 0x041b tx timeout
[ 1190.213087][ T4425] team0 (unregistering): Port device team_slave_1 removed
[ 1190.279873][ T4425] team0 (unregistering): Port device team_slave_0 removed
[ 1190.362565][ T4425] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1190.433292][ T4425] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1190.531544][T19320] QAT: Stopping all acceleration devices.
[ 1191.543602][ T4425] bond0 (unregistering): Released all slaves
[ 1191.898610][ T4235] Bluetooth: hci5: command 0x040f tx timeout
[ 1192.684869][T19200] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1192.791129][T19200] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1192.823507][T19200] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1192.878496][T19200] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1193.329080][T19200] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1193.395961][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1193.416153][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1193.484897][T19200] 8021q: adding VLAN 0 to HW filter on device team0
[ 1193.538454][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1193.580710][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1193.618915][ T4616] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1193.626128][ T4616] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1193.719215][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1193.750357][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1193.799184][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1193.816593][ T4616] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1193.823778][ T4616] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1193.888810][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1193.925931][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1193.986118][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1193.994861][ T8000] Bluetooth: hci5: command 0x0419 tx timeout
[ 1194.037594][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1194.067878][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1194.098122][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1194.131420][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1194.170509][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1194.210221][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1194.241244][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1194.281413][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1194.301068][T19200] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1194.526592][T19391] loop5: detected capacity change from 0 to 256
[ 1194.635930][T19391] exFAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1194.680288][T19391] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1194.770474][T19391] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1195.929259][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1195.967526][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1196.035858][T19200] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1196.227969][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1196.274420][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1196.391022][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1196.405789][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1196.466915][T19200] device veth0_vlan entered promiscuous mode
[ 1196.479402][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1196.524081][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1196.575052][T19200] device veth1_vlan entered promiscuous mode
[ 1196.585235][T19435] loop8: detected capacity change from 0 to 256
[ 1196.642494][T19435] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1196.694897][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1196.707118][T19435] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[ 1196.738980][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1196.753613][T19435] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1196.766782][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1196.813047][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1196.849658][T19200] device veth0_macvtap entered promiscuous mode
[ 1196.907500][T19200] device veth1_macvtap entered promiscuous mode
[ 1197.128085][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1197.164847][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1197.231703][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1197.258371][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1197.268259][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1197.318485][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1197.365683][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1197.396536][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1197.448533][T19200] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1197.459499][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1197.478089][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1197.563432][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1197.612203][ T4291] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1197.682128][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1197.695777][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1197.767522][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1197.830833][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1197.881418][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1197.956900][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1197.998004][T19200] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1198.067436][T19200] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1198.120410][T19200] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1198.130542][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1198.174032][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1198.257501][T19200] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.288056][T19200] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.312750][T19200] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.368861][T19200] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1198.752446][ T1281] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1198.808585][ T1281] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1198.849195][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1198.952873][ T1281] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1198.996936][ T1281] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1199.049159][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1199.910184][T19526] loop7: detected capacity change from 0 to 256
[ 1200.053364][T19526] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1200.071227][T19526] exFAT-fs (loop7): Medium has reported failures. Some data may be lost.
[ 1200.186544][T19526] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1201.486525][ T1281] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1201.716600][ T1281] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1201.803880][T19530] chnl_net:caif_netlink_parms(): no params data found
[ 1201.867785][ T1281] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1202.040939][ T1281] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1202.218800][ T4235] Bluetooth: hci1: command 0x0409 tx timeout
[ 1202.322400][T19530] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1202.408834][T19530] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1202.432918][T19530] device bridge_slave_0 entered promiscuous mode
[ 1202.509723][T19530] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1202.539159][T19530] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1202.579899][T19530] device bridge_slave_1 entered promiscuous mode
[ 1202.721448][T19530] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1202.797778][T19530] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1202.962884][T19530] team0: Port device team_slave_0 added
[ 1202.981069][T19530] team0: Port device team_slave_1 added
[ 1203.096048][T19530] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1203.116485][T19530] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1203.243092][T19530] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1203.339759][T19530] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1203.395661][T19530] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1203.548439][T19530] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1203.693846][T19530] device hsr_slave_0 entered promiscuous mode
[ 1203.756866][T19530] device hsr_slave_1 entered promiscuous mode
[ 1203.807283][T19530] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1203.831930][T19530] Cannot create hsr debugfs directory
[ 1204.311900][ T7199] Bluetooth: hci1: command 0x041b tx timeout
[ 1204.887493][ T1281] device hsr_slave_0 left promiscuous mode
[ 1204.972036][ T1281] device hsr_slave_1 left promiscuous mode
[ 1204.987556][ T1281] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1205.018534][ T1281] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1205.049267][ T1281] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1205.056741][ T1281] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1205.127212][ T1281] device bridge_slave_1 left promiscuous mode
[ 1205.167166][ T1281] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1205.266403][ T1281] device bridge_slave_0 left promiscuous mode
[ 1205.282985][ T1281] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1205.293740][   T26] audit: type=1326 audit(1779113974.994:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19680 comm="syz.0.3511" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcc36886e59 code=0x0
[ 1205.413738][ T1281] device veth1_macvtap left promiscuous mode
[ 1205.428549][ T1281] device veth0_macvtap left promiscuous mode
[ 1205.434694][ T1281] device veth1_vlan left promiscuous mode
[ 1205.498906][ T1281] device veth0_vlan left promiscuous mode
[ 1206.378426][ T4384] Bluetooth: hci1: command 0x040f tx timeout
[ 1206.523517][ T1281] team0 (unregistering): Port device team_slave_1 removed
[ 1206.602484][ T1281] team0 (unregistering): Port device team_slave_0 removed
[ 1206.669888][ T1281] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1206.743570][ T1281] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1206.910315][ T1281] bond0 (unregistering): Released all slaves
[ 1207.312990][T19530] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1207.400760][T19530] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1207.453456][T19530] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1207.499351][T19530] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1207.762743][T19793] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1207.887682][T19530] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1207.959176][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1207.984495][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1208.070955][T19530] 8021q: adding VLAN 0 to HW filter on device team0
[ 1208.090635][T19805] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1208.099182][T19810] sctp: [Deprecated]: syz.7.3556 (pid 19810) Use of int in max_burst socket option.
[ 1208.099182][T19810] Use struct sctp_assoc_value instead
[ 1208.099710][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1208.124428][T19805] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1208.166546][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1208.201918][ T4425] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1208.209111][ T4425] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1208.246347][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1208.293202][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1208.340210][ T4425] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1208.347388][ T4425] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1208.439540][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1208.457177][ T7199] Bluetooth: hci1: command 0x0419 tx timeout
[ 1208.479643][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1208.505651][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1208.522504][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1208.592690][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1208.678673][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1208.717529][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1208.766945][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1208.813378][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1208.885120][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1209.285860][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1209.754668][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1209.775254][T19530] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1209.980796][T19857] loop7: detected capacity change from 0 to 16
[ 1210.035727][T19857] erofs: (device loop7): erofs_read_superblock: blkszbits 10 isn't supported on this platform
[ 1210.109068][T19860] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3565'.
[ 1211.006033][T19857] loop7: detected capacity change from 0 to 512
[ 1211.015863][T19869] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1211.051486][T19857] FAT-fs (loop7): Unrecognized mount option "check=re·laxed" or missing value
[ 1211.110337][T19869] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1211.224334][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1211.273263][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1211.311638][T19530] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1211.356098][T19877] sctp: [Deprecated]: syz.0.3570 (pid 19877) Use of int in max_burst socket option deprecated.
[ 1211.356098][T19877] Use struct sctp_assoc_value instead
[ 1211.428945][T19875] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3570'.
[ 1211.837147][T19891] bridge1: trying to set multicast query interval below minimum, setting to 100 (1000ms)
[ 1212.009373][T19897] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3577'.
[ 1212.169446][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1212.189819][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1212.332249][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1212.354905][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1212.410378][T19530] device veth0_vlan entered promiscuous mode
[ 1212.420492][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1212.459381][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1212.487292][T19530] device veth1_vlan entered promiscuous mode
[ 1212.656074][T19530] device veth0_macvtap entered promiscuous mode
[ 1212.693439][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1212.738031][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1212.781810][T14028] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1212.817054][T19530] device veth1_macvtap entered promiscuous mode
[ 1213.151588][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.188254][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.225318][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.254368][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.270068][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.614014][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1213.750040][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1213.904146][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1214.158290][T19530] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1214.198219][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1214.276487][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1214.286980][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1214.299254][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1214.318546][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1214.348439][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1214.378579][T19530] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1214.408045][T19530] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1214.444072][T19530] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1214.475279][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1214.508194][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1214.695817][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1214.930496][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1215.146522][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1215.515133][T19530] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1215.555812][T19530] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1216.538400][T19530] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1216.608416][T19530] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1216.868972][ T4616] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1216.876885][ T4616] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1216.945678][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1217.070847][ T3096] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1217.137459][ T3096] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1217.165557][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1218.385354][ T1281] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1218.573899][ T1281] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1218.963109][ T1281] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.640423][ T1281] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1219.843777][T20043] device syzkaller0 entered promiscuous mode
[ 1220.032266][T20003] chnl_net:caif_netlink_parms(): no params data found
[ 1220.138658][ T1111] Bluetooth: hci2: command 0x0409 tx timeout
[ 1220.188523][ T4384] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[ 1220.448031][T20003] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1220.448485][ T4384] usb 8-1: Using ep0 maxpacket: 8
[ 1220.470467][T20003] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1220.499393][T20003] device bridge_slave_0 entered promiscuous mode
[ 1220.544923][T20003] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1220.562700][T20003] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1220.588680][ T4384] usb 8-1: config index 0 descriptor too short (expected 301, got 45)
[ 1220.597424][ T4384] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1220.604314][T20003] device bridge_slave_1 entered promiscuous mode
[ 1220.648967][ T4384] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1220.692955][T20003] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1220.706972][ T4384] usb 8-1: config 16 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 54322, setting to 1024
[ 1220.721733][T20003] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1220.732147][ T4384] usb 8-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[ 1220.767239][ T4384] usb 8-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1220.836526][ T4384] usb 8-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1220.858598][ T4384] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1220.961311][T20003] team0: Port device team_slave_0 added
[ 1221.016215][T20003] team0: Port device team_slave_1 added
¼kn€bü[ 1221.107105][T20003] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1221.122393][T20003] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1221.148746][ T4384] usb 8-1: usb_control_msg returned -32
[ 1221.155781][T20003] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1221.157897][T20003] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1221.191246][ T4384] usbtmc 8-1:16.0: can't read capabilities
[ 1221.223355][T20003] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1221.264552][T20003] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1221.359572][T20087] capability: warning: `syz.0.3631' uses deprecated v2 capabilities in a way that may be insecure
[ 1221.378001][T20087] loop0: detected capacity change from 0 to 512
[ 1221.588579][T20087] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1222.277738][ T8000] Bluetooth: hci2: command 0x041b tx timeout
[ 1222.451488][T20003] device hsr_slave_0 entered promiscuous mode
[ 1222.478246][T20093] =======================================================
[ 1222.478246][T20093] WARNING: The mand mount option has been deprecated and
[ 1222.478246][T20093]          and is ignored by this kernel. Remove the mand
[ 1222.478246][T20093]          option from the mount to silence this warning.
[ 1222.478246][T20093] =======================================================
[ 1222.518031][T20003] device hsr_slave_1 entered promiscuous mode
[ 1222.524903][T20089] usbtmc 8-1:16.0: usb_control_msg returned -32
[ 1222.535575][T20003] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1222.546228][T20003] Cannot create hsr debugfs directory
[ 1222.582980][ T4384] usb 8-1: USB disconnect, device number 2
[ 1222.696565][T20093] 9pnet_virtio: no channels available for device syz
[ 1223.092545][T20103] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1223.394713][ T4207] Bluetooth: Wrong link type (-22)
[ 1223.561299][ T1281] device hsr_slave_0 left promiscuous mode
[ 1223.574560][ T1281] device hsr_slave_1 left promiscuous mode
[ 1223.608083][ T1281] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1223.632118][ T1281] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1223.650395][ T1281] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1223.677517][ T1281] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1223.700591][ T1281] device bridge_slave_1 left promiscuous mode
[ 1223.723934][ T1281] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1223.760860][ T1281] device bridge_slave_0 left promiscuous mode
[ 1223.784702][ T1281] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1223.859833][ T1281] device veth1_macvtap left promiscuous mode
[ 1223.872904][ T1281] device veth0_macvtap left promiscuous mode
[ 1223.889960][ T1281] device veth1_vlan left promiscuous mode
[ 1223.895823][ T1281] device veth0_vlan left promiscuous mode
[ 1224.299400][ T8000] Bluetooth: hci2: command 0x040f tx timeout
[ 1224.331333][ T1281] team0 (unregistering): Port device team_slave_1 removed
[ 1224.367632][ T1281] team0 (unregistering): Port device team_slave_0 removed
[ 1224.817730][ T1281] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1225.077663][ T1281] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1225.784300][ T1281] bond0 (unregistering): Released all slaves
[ 1226.506403][ T8000] Bluetooth: hci2: command 0x0419 tx timeout
[ 1226.564686][T20125] device gre1 entered promiscuous mode
[ 1226.811564][T20003] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1227.877541][T20003] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1227.995411][T20003] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1228.056860][T20003] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1228.120102][T20148] netlink: 12 bytes leftover after parsing attributes in process `syz.7.3646'.
[ 1228.447122][T20003] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1228.500748][T20003] 8021q: adding VLAN 0 to HW filter on device team0
[ 1228.541875][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1228.584795][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1228.664188][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1228.726255][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1228.790569][ T4405] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1228.797712][ T4405] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1228.813813][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1228.823183][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1228.843737][ T4405] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1228.850926][ T4405] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1228.905318][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1228.924997][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1229.062669][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1229.131228][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1229.160927][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1229.178624][ T2356] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[ 1229.187314][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1229.205877][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1229.267662][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1229.312747][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1229.326055][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1229.335175][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1229.345964][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1229.379796][T20003] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1229.399839][T20191] netlink: 64 bytes leftover after parsing attributes in process `syz.0.3654'.
[ 1229.418842][ T2356] usb 8-1: Using ep0 maxpacket: 32
[ 1229.485997][T20188] device syzkaller1 entered promiscuous mode
[ 1229.538812][ T2356] usb 8-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1229.564534][T20188] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1229.593101][ T2356] usb 8-1: config 0 has no interfaces?
[ 1229.728026][T20200] APIC base relocation is unsupported by KVM
[ 1229.768714][ T2356] usb 8-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[ 1229.828534][ T2356] usb 8-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[ 1229.858915][ T2356] usb 8-1: Product: syz
[ 1229.868694][ T2356] usb 8-1: Manufacturer: syz
[ 1229.876380][ T2356] usb 8-1: SerialNumber: syz
[ 1229.908014][ T2356] usb 8-1: config 0 descriptor??
[ 1230.016962][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1230.032921][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1230.071288][T20003] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1230.160342][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1230.202125][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1230.227113][ T2356] usb 8-1: USB disconnect, device number 3
[ 1230.324752][T20003] device veth0_vlan entered promiscuous mode
[ 1230.362983][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1230.397478][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1230.435525][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1230.469044][ T3096] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1230.510407][T20003] device veth1_vlan entered promiscuous mode
[ 1230.577843][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1230.589661][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1230.642525][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1230.663548][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1230.739167][T20003] device veth0_macvtap entered promiscuous mode
[ 1230.754667][T20236] device syzkaller0 entered promiscuous mode
[ 1230.774458][T20003] device veth1_macvtap entered promiscuous mode
[ 1230.897038][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1230.925608][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1230.958511][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1230.978424][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1230.998974][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1231.025744][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1231.052216][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1231.074692][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1231.107543][T20003] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1231.130942][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1231.170638][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1231.233183][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1231.251394][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1231.269461][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1231.293983][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1231.312270][T20003] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1231.326732][T20003] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1231.343001][T20003] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1231.360538][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1231.386595][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 1231.402475][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1231.459230][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1231.489251][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1231.505168][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1231.527579][T20003] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1231.538901][T20003] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1231.547999][T20003] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1231.558697][T20003] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1231.573768][T20265] netlink: 'syz.0.3671': attribute type 1 has an invalid length.
[ 1231.626876][T20267] device veth3 entered promiscuous mode
[ 1231.649528][T20267] bond1: (slave veth3): Enslaving as a backup interface with a down link
[ 1231.658253][T20268] tipc: Started in network mode
[ 1231.663660][T20268] tipc: Node identity 7ef9702c8d39, cluster identity 4711
[ 1231.675094][T20268] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1231.735803][T20263] device syzkaller0 entered promiscuous mode
[ 1231.744012][T20265] netlink: 28 bytes leftover after parsing attributes in process `syz.0.3671'.
[ 1231.754107][T20265] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1231.784771][T20262] tipc: Resetting bearer <eth:syzkaller0>
[ 1231.920238][T20262] tipc: Disabling bearer <eth:syzkaller0>
[ 1232.148248][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1232.180331][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1232.194668][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1232.229982][T14027] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1232.258942][T14027] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1232.266628][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1232.372901][T20287] netlink: 48 bytes leftover after parsing attributes in process `syz.7.3676'.
[ 1232.410268][T20286] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3673'.
[ 1232.455667][ T4207] Bluetooth: hci5: unexpected event for opcode 0x0803
[ 1233.686687][T20322] syz.7.3688 uses obsolete (PF_INET,SOCK_PACKET)
[ 1234.073140][T20311] chnl_net:caif_netlink_parms(): no params data found
[ 1234.125773][T20334] 9pnet_virtio: no channels available for device syz
[ 1234.475351][T20311] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1234.482723][T20311] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1234.491771][T20311] device bridge_slave_0 entered promiscuous mode
[ 1234.511739][T20342] device syzkaller0 entered promiscuous mode
[ 1234.558544][T20311] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1234.592001][T20311] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1234.664918][T20311] device bridge_slave_1 entered promiscuous mode
[ 1234.904198][T20311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1234.956234][T20311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1234.984325][T20357] 9pnet_virtio: no channels available for device syz
[ 1235.086765][T20311] team0: Port device team_slave_0 added
[ 1235.145546][T20311] team0: Port device team_slave_1 added
[ 1235.216374][T20311] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1235.232538][T20311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1235.324434][T20311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1235.364212][T20311] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1235.383639][T20311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1235.411148][ T2356] Bluetooth: hci0: command 0x0409 tx timeout
[ 1235.448438][ T9190] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[ 1235.456340][T20311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1235.573106][T20311] device hsr_slave_0 entered promiscuous mode
[ 1235.591621][T20311] device hsr_slave_1 entered promiscuous mode
[ 1235.608435][T20311] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1235.626407][T20311] Cannot create hsr debugfs directory
[ 1235.698443][ T4384] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1235.708605][ T9190] usb 4-1: Using ep0 maxpacket: 16
[ 1235.754741][ T9190] usb 4-1: too many configurations: 123, using maximum allowed: 8
[ 1235.848503][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1235.892109][T20311] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1235.938995][ T4384] usb 9-1: Using ep0 maxpacket: 8
[ 1235.948687][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1236.048901][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1236.059755][T20311] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1236.078623][ T4384] usb 9-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1236.089990][ T4384] usb 9-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1236.118433][ T4384] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1236.129428][ T4384] usb 9-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[ 1236.148605][ T4384] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1236.169982][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1236.187880][ T4384] usb 9-1: config 0 descriptor??
[ 1236.209017][T20311] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1236.268648][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1236.368846][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1236.409265][ T5640] usb 8-1: new low-speed USB device number 4 using dummy_hcd
[ 1236.468721][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1236.507878][T20311] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1236.547168][T20311] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1236.568841][ T9190] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1236.584104][T20372] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3703'.
[ 1236.616947][T20311] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1236.638274][T20372] af_packet: tpacket_rcv: packet too big, clamped from 64521 to 3956. macoff=92
[ 1236.639171][T20311] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1236.659211][ T9190] usb 4-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00
[ 1236.668299][ T9190] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=45
[ 1236.672987][ T4384] mcp2221 0003:04D8:00DD.0001: unknown main item tag 0x0
[ 1236.690817][ T9190] usb 4-1: SerialNumber: syz
[ 1236.706601][ T9190] usb 4-1: config 0 descriptor??
[ 1236.712403][ T4384] mcp2221 0003:04D8:00DD.0001: unknown main item tag 0x0
[ 1236.721308][ T4384] mcp2221 0003:04D8:00DD.0001: unknown main item tag 0x0
[ 1236.729221][ T4384] mcp2221 0003:04D8:00DD.0001: unknown main item tag 0x0
[ 1236.753339][ T9190] input: bcm5974 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input6
[ 1236.770641][ T4384] mcp2221 0003:04D8:00DD.0001: unknown main item tag 0x0
[ 1236.789980][ T5640] usb 8-1: config 0 has an invalid interface number: 1 but max is 0
[ 1236.798032][ T5640] usb 8-1: config 0 has no interface number 0
[ 1236.805277][ T4384] mcp2221 0003:04D8:00DD.0001: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.8-1/input0
[ 1236.826927][ T5640] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1236.843365][ T5640] usb 8-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 1236.858984][ T5640] usb 8-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1236.870081][ T5640] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1236.881205][ T5640] usb 8-1: config 0 descriptor??
[ 1236.899164][T20370] raw-gadget.2 gadget: fail, usb_ep_enable returned -22
[ 1236.943184][ T5640] iowarrior 8-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1236.998939][T20361] input: syz1 as /devices/virtual/input/input7
[ 1237.029067][ T4384] usb 9-1: USB disconnect, device number 2
[ 1237.149118][ T3547] bcm5974 4-1:0.0: could not read from device
[ 1237.184525][ T9190] usb 4-1: USB disconnect, device number 2
[ 1237.211553][ T3547] bcm5974 4-1:0.0: could not read from device
[ 1237.240852][ T1111] usb 8-1: USB disconnect, device number 4
[ 1237.255244][ T7726] bcm5974 4-1:0.0: could not read from device
[ 1237.308128][T20311] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1237.366096][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1237.375540][T14027] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1237.404666][T20311] 8021q: adding VLAN 0 to HW filter on device team0
[ 1237.423694][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1237.462443][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1237.471648][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1237.478817][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1237.487561][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1237.489640][ T4284] Bluetooth: hci0: command 0x041b tx timeout
[ 1237.498020][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1237.513414][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1237.520574][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1237.559610][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1237.587846][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1237.810927][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1238.016034][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1238.270243][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1238.549487][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1238.586137][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1238.627092][T20311] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1238.672683][T20311] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1238.717754][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1238.740755][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1238.772068][ T1428] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.778229][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1238.778467][ T1428] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.831109][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1238.844680][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1238.873939][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1239.243025][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1239.258041][ T4616] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1239.268514][ T8000] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1239.304725][T20311] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1239.495860][T20428] syz.7.3718 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[ 1239.508841][ T8000] usb 9-1: Using ep0 maxpacket: 8
[ 1239.569262][ T9190] Bluetooth: hci0: command 0x040f tx timeout
[ 1239.659180][ T8000] usb 9-1: config index 0 descriptor too short (expected 301, got 45)
[ 1239.667594][ T8000] usb 9-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1240.573731][ T8000] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1240.584044][ T8000] usb 9-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1240.594649][ T8000] usb 9-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1240.630677][ T8000] usb 9-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1240.660104][ T8000] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1240.968583][ T8000] usb 9-1: usb_control_msg returned -32
[ 1240.974230][ T8000] usbtmc 9-1:16.0: can't read capabilities
[ 1241.000667][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1241.032680][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1241.151197][T20311] device veth0_vlan entered promiscuous mode
[ 1241.199449][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1241.224325][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1241.284663][T20311] device veth1_vlan entered promiscuous mode
[ 1241.331392][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1241.379874][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1241.387919][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1241.533195][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 1241.567507][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1241.609912][T20458] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1241.617073][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1241.648575][ T4384] Bluetooth: hci0: command 0x0419 tx timeout
[ 1241.677123][T20311] device veth0_macvtap entered promiscuous mode
[ 1241.703610][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1241.733108][T20311] device veth1_macvtap entered promiscuous mode
[ 1241.813053][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1241.864714][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1241.945954][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1241.993511][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.024052][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1242.054277][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.068262][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1242.095590][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.105775][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1242.121179][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.164424][T20311] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1242.200266][ T4303] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1242.220990][T20465] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1242.239271][ T4303] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1242.279507][T20465] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1242.281465][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1242.339975][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.351768][T20472] vhci_hcd vhci_hcd.0: pdev(7) rhport(0) sockfd(3)
[ 1242.358698][T20472] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1242.374229][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1242.395222][T20472] vhci_hcd vhci_hcd.0: Device attached
[ 1242.407577][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.422203][T20473] vhci_hcd: connection closed
[ 1242.426808][ T4405] vhci_hcd: stop threads
[ 1242.435080][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1242.455803][ T4405] vhci_hcd: release socket
[ 1242.459053][ T4284] usb 9-1: USB disconnect, device number 3
[ 1242.465573][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.492236][ T4405] vhci_hcd: disconnect device
[ 1242.516271][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1242.551256][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.572290][T20311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1242.608579][T20311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1242.646460][T20311] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1242.672968][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1242.700460][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1242.732202][T20311] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1242.749896][T20311] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1242.772503][T20311] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1242.793844][T20311] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1242.978514][ T8000] usb 9-1: new high-speed USB device number 4 using dummy_hcd
[ 1243.027079][ T4425] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1243.038285][ T4425] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1243.079028][ T4405] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1243.101746][T20489] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[ 1243.191108][ T4303] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1243.247488][ T4303] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1243.276842][T20494] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1243.352091][T20494] device bridge_slave_0 left promiscuous mode
[ 1243.386168][T20494] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1243.405839][ T4486] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1243.408665][ T8000] usb 9-1: config 0 has no interfaces?
[ 1243.588812][ T8000] usb 9-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1243.597925][ T8000] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1243.651546][ T8000] usb 9-1: Product: syz
[ 1243.655783][ T8000] usb 9-1: Manufacturer: syz
[ 1243.681969][ T8000] usb 9-1: SerialNumber: syz
[ 1243.709020][ T8000] usb 9-1: config 0 descriptor??
[ 1243.765341][T20505] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[ 1243.778721][T20505] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[ 1244.048029][T20516] 9pnet_virtio: no channels available for device syz
[ 1244.116217][T20518] loop7: detected capacity change from 0 to 512
[ 1244.180591][T20518] FAT-fs (loop7): Unrecognized mount option "fsuuid=aefcb9fb-dbee-f262-eaf5-0c3" or missing value
[ 1245.335855][T20481] device veth0_vlan left promiscuous mode
[ 1245.337816][T20531] IPv4: Oversized IP packet from 127.0.0.1
[ 1245.349467][    C0] IPv4: Oversized IP packet from 127.0.0.1
[ 1245.356577][T20481] device veth0_vlan entered promiscuous mode
[ 1245.372173][ T4384] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1245.564168][   T21] usb 9-1: USB disconnect, device number 4
[ 1245.648466][ T4384] usb 6-1: Using ep0 maxpacket: 32
[ 1245.768796][ T4384] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1245.858834][T20543] device syzkaller0 entered promiscuous mode
[ 1245.918562][ T8000] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[ 1245.959530][ T4384] usb 6-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1245.978121][ T4384] usb 6-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1245.996885][ T4384] usb 6-1: Product: syz
[ 1246.000790][T20545] loop7: detected capacity change from 0 to 512
[ 1246.001710][ T4384] usb 6-1: Manufacturer: syz
[ 1246.022387][ T4384] usb 6-1: SerialNumber: syz
[ 1246.038718][ T4384] usb 6-1: config 0 descriptor??
[ 1246.063419][T20521] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[ 1246.109201][ T4384] hub 6-1:0.0: bad descriptor, ignoring hub
[ 1246.115184][ T4384] hub: probe of 6-1:0.0 failed with error -5
[ 1246.168471][ T8000] usb 4-1: Using ep0 maxpacket: 32
[ 1246.309130][ T8000] usb 4-1: config index 0 descriptor too short (expected 156, got 27)
[ 1246.323623][ T8000] usb 4-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1246.344696][ T8000] usb 4-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1246.361529][ T8000] usb 4-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1246.375208][ T8000] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1247.406896][ T8000] usb 4-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1247.416518][ T8000] usb 4-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1247.470910][ T8000] usb 4-1: Product: syz
[ 1247.475153][ T8000] usb 4-1: Manufacturer: syz
[ 1247.476167][T20566] overlayfs: workdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1247.494995][ T8000] usb 4-1: SerialNumber: syz
[ 1247.729270][ T8000] usb 4-1: config 0 descriptor??
[ 1247.990497][ T8000] ldusb 4-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1248.125795][ T8000] ldusb 4-1:0.0: LD USB Device #1 now attached to major 180 minor 1
[ 1248.434192][T20577] loop8: detected capacity change from 0 to 16
[ 1248.438030][ T8000] usb 4-1: USB disconnect, device number 3
[ 1248.513185][T20577] erofs: (device loop8): erofs_read_superblock: blkszbits 10 isn't supported on this platform
[ 1248.622763][T20577] loop8: detected capacity change from 0 to 512
[ 1248.630821][T20577] FAT-fs (loop8): Unrecognized mount option "check=re·laxed" or missing value
[ 1249.735314][ T9190] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1250.118563][ T9190] usb 8-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1250.140771][ T9190] usb 8-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config
[ 1250.204336][ T9190] usb 8-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1250.261537][ T9190] usb 8-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[ 1250.489407][ T9190] usb 8-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1250.527355][ T9190] usb 8-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1250.614881][ T9190] usb 8-1: Product: syz
[ 1250.666056][ T9190] usb 8-1: Manufacturer: syz
[ 1250.870019][T20591] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1251.012692][ T9190] cdc_wdm 8-1:1.0: skipping garbage
[ 1251.022574][ T9190] cdc_wdm 8-1:1.0: skipping garbage
[ 1251.027838][ T9190] cdc_wdm: probe of 8-1:1.0 failed with error -22
[ 1251.213467][ T4384] usb 6-1: USB disconnect, device number 2
[ 1251.228794][ T8000] ldusb 4-1:0.0: LD USB Device #1 now disconnected
[ 1251.790456][ T9190] usb 8-1: USB disconnect, device number 5
[ 1253.220234][T20624] loop3: detected capacity change from 0 to 16
[ 1254.838827][T20624] erofs: (device loop3): erofs_read_superblock: blkszbits 10 isn't supported on this platform
[ 1254.996922][T20622] loop3: detected capacity change from 0 to 512
[ 1255.049813][T20622] FAT-fs (loop3): Unrecognized mount option "check=re·laxed" or missing value
[ 1255.139661][ T4284] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[ 1255.653486][T20646] overlayfs: failed to resolve './bus': -2
[ 1256.818661][ T4284] usb 9-1: config 0 has an invalid interface number: 50 but max is 0
[ 1256.826804][ T4284] usb 9-1: config 0 has no interface number 0
[ 1256.861127][ T4284] usb 9-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1257.048643][ T4284] usb 9-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[ 1257.057856][ T4284] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1257.062795][T20660] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1257.127493][ T4284] usb 9-1: Product: syz
[ 1257.137628][ T4284] usb 9-1: Manufacturer: syz
[ 1257.147757][ T4284] usb 9-1: SerialNumber: syz
[ 1257.179896][ T4284] usb 9-1: config 0 descriptor??
[ 1257.242514][ T4284] yurex 9-1:0.50: USB YUREX device now attached to Yurex #0
[ 1257.368435][ T8000] usb 8-1: new high-speed USB device number 6 using dummy_hcd
[ 1257.500842][ T4284] usb 9-1: USB disconnect, device number 5
[ 1257.520582][ T4284] yurex 9-1:0.50: USB YUREX #0 now disconnected
[ 1257.768606][ T8000] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1257.785192][ T8000] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1257.805943][ T8000] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 48, changing to 9
[ 1257.824511][ T8000] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid maxpacket 8240, setting to 1024
[ 1258.010321][ T8000] usb 8-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[ 1258.026845][ T8000] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1258.035009][ T8000] usb 8-1: Product: syz
[ 1258.039237][ T8000] usb 8-1: Manufacturer: syz
[ 1258.043842][ T8000] usb 8-1: SerialNumber: syz
[ 1258.057821][ T8000] usb 8-1: config 0 descriptor??
[ 1258.071929][T20684] serio: Serial port ptm0
[ 1258.330069][ T8000] adutux 8-1:0.0: ADU208 4242424 now attached to /dev/usb/adutux0
[ 1258.487661][T20696] serio: Serial port ptm1
[ 1258.629005][ T8000] usb 8-1: USB disconnect, device number 6
[ 1258.890159][T20699] loop3: detected capacity change from 0 to 8192
[ 1260.195152][T20737] loop3: detected capacity change from 0 to 512
[ 1260.770126][T20737] FAT-fs (loop3): Unrecognized mount option "check=re·laxed" or missing value
[ 1262.656704][T20773] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1264.166955][T20804] team0: Port device vlan0 added
[ 1265.218252][T20830] loop7: detected capacity change from 0 to 128
[ 1266.811735][T20849] loop0: detected capacity change from 0 to 512
[ 1267.381193][T20869] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[ 1267.539127][T20878] syz.0.3868 (20878): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1267.772662][T20885] kernel read not supported for file /file0 (pid: 20885 comm: syz.7.3872)
[ 1267.815117][   T26] audit: type=1800 audit(1779114037.514:3): pid=20885 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.3872" name="file0" dev="mqueue" ino=195923 res=0 errno=0
[ 1268.839384][T20928] netlink: 352 bytes leftover after parsing attributes in process `syz.0.3888'.
[ 1268.845254][T20929] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3887'.
[ 1268.922689][T20929] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1268.996176][T20929] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1269.030865][T20929] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1269.113283][T20928] netlink: 352 bytes leftover after parsing attributes in process `syz.0.3888'.
[ 1269.134375][T20932] netlink: 'syz.3.3887': attribute type 16 has an invalid length.
[ 1269.168442][T20932] netlink: 'syz.3.3887': attribute type 17 has an invalid length.
[ 1269.289046][T20932] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1269.329844][T20932] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1269.357855][T20932] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1269.416372][T20932] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1269.683755][T20949] overlayfs: failed to resolve './file0': -2
[ 1270.286230][T20965] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1270.508422][T20973] netlink: 'syz.0.3905': attribute type 1 has an invalid length.
[ 1270.581989][T20973] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1270.735947][T20974] bond2: (slave dummy0): making interface the new active one
[ 1270.757580][T20981] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[ 1270.789240][T20974] bond2: (slave dummy0): Enslaving as an active interface with an up link
[ 1270.823026][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready
[ 1271.771962][T20973] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1272.802114][T20973] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1272.831437][T20973] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1274.266490][T20973] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.285662][T20973] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.311449][T20973] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.329943][T20973] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1274.570206][   T26] audit: type=1326 audit(1779114044.274:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21027 comm="syz.8.3924" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178db80e59 code=0x7ffc0000
[ 1274.626593][   T26] audit: type=1326 audit(1779114044.274:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21027 comm="syz.8.3924" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178db80e59 code=0x7ffc0000
[ 1274.705340][T21032] loop3: detected capacity change from 0 to 512
[ 1274.718202][   T26] audit: type=1326 audit(1779114044.294:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21027 comm="syz.8.3924" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=239 compat=0 ip=0x7f178db80e59 code=0x7ffc0000
[ 1274.772298][   T26] audit: type=1326 audit(1779114044.294:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21027 comm="syz.8.3924" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178db80e59 code=0x7ffc0000
[ 1274.861830][   T26] audit: type=1326 audit(1779114044.294:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21027 comm="syz.8.3924" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f178db80e59 code=0x7ffc0000
[ 1274.937392][T20999] 8021q: VLANs not supported on ipvlan0
[ 1274.984771][T20973] syz.0.3905 (20973) used greatest stack depth: 19792 bytes left
[ 1276.062646][T21073] capability: warning: `syz.0.3943' uses 32-bit capabilities (legacy support in use)
[ 1276.086955][T21074] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1276.129334][T21073] overlayfs: upper fs does not support file handles, falling back to index=off.
[ 1276.144130][T21074] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1276.826765][T21108] overlayfs: failed to resolve './bus': -2
[ 1277.973633][T21117] sctp: [Deprecated]: syz.5.3956 (pid 21117) Use of int in max_burst socket option.
[ 1277.973633][T21117] Use struct sctp_assoc_value instead
[ 1278.006836][T21115] 9pnet: Insufficient options for proto=fd
[ 1278.478601][T21135] loop8: detected capacity change from 0 to 8192
[ 1278.511161][T21135] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1279.431067][T21153] overlayfs: failed to clone upperpath
[ 1280.966893][T21185] 9pnet: Insufficient options for proto=fd
[ 1282.559021][T21220] overlayfs: failed to resolve './bus': -2
[ 1283.148873][T21230] fuse: Bad value for 'fd'
[ 1283.157809][T21230] 9pnet: Insufficient options for proto=fd
[ 1284.463892][T21257] overlayfs: failed to clone upperpath
[ 1287.216930][T21317] 9pnet: Insufficient options for proto=fd
[ 1291.080736][T21362] 9pnet: Insufficient options for proto=fd
[ 1293.812556][T21407] fuse: Bad value for 'fd'
[ 1294.557489][T21440] overlayfs: failed to clone upperpath
[ 1295.964751][T21457] device syzkaller0 entered promiscuous mode
[ 1296.185916][T21473] loop0: detected capacity change from 0 to 128
[ 1296.554961][T21473] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 50)
[ 1296.565253][T21473] FAT-fs (loop0): Filesystem has been set read-only
[ 1296.582235][T21473] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 50)
[ 1296.611400][T21473] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 50)
[ 1296.651401][T21473] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 50)
[ 1298.016850][T21510] device syzkaller0 entered promiscuous mode
[ 1299.898548][T21558] overlayfs: failed to clone upperpath
[ 1300.211382][ T1428] ieee802154 phy0 wpan0: encryption failed: -22
[ 1300.219369][ T1428] ieee802154 phy1 wpan1: encryption failed: -22
[ 1302.429586][   T21] Bluetooth: hci4: command 0x0406 tx timeout
[ 1303.128226][T21636] fuse: Bad value for 'fd'
[ 1303.300650][T21641] fuse: Bad value for 'fd'
[ 1305.560449][T21663] device gre1 entered promiscuous mode
[ 1305.811004][T21672] device syzkaller0 entered promiscuous mode
[ 1308.438559][T21718] fuse: Bad value for 'fd'
[ 1312.032621][T21767] overlayfs: failed to clone upperpath
[ 1312.630921][   T21] Bluetooth: hci5: command 0x0406 tx timeout
[ 1312.879134][T21776] device syzkaller0 entered promiscuous mode
[ 1313.394788][T21802] overlayfs: failed to clone upperpath
[ 1314.394811][T21810] overlayfs: failed to clone upperpath
[ 1316.439796][T21840] overlayfs: failed to clone upperpath
[ 1316.844067][T21838] device syzkaller0 entered promiscuous mode
[ 1320.435540][T21899] fuse: Bad value for 'fd'
[ 1320.628814][T21906] overlayfs: failed to clone upperpath
[ 1322.768521][ T4237] Bluetooth: hci1: command 0x0406 tx timeout
[ 1329.447946][T22034] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4272'.
[ 1331.534990][T22081] overlayfs: failed to clone upperpath
[ 1332.968145][T22110] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4295'.
[ 1335.931156][T22153] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4308'.
[ 1336.440690][T22171] device syzkaller0 entered promiscuous mode
[ 1337.160419][T22191] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4321'.
[ 1337.215764][T11648] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[ 1337.250524][  T145] tipc: Left network mode
[ 1337.468448][T11648] usb 4-1: Using ep0 maxpacket: 32
[ 1337.588777][T11648] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1337.628777][T11648] usb 4-1: config 0 has no interfaces?
[ 1337.661511][T22225] device syzkaller0 entered promiscuous mode
[ 1337.798692][T11648] usb 4-1: New USB device found, idVendor=05ac, idProduct=020f, bcdDevice= 0.22
[ 1337.830665][T11648] usb 4-1: New USB device strings: Mfr=1, Product=130, SerialNumber=131
[ 1337.849757][T11648] usb 4-1: Product: syz
[ 1337.858786][T11648] usb 4-1: Manufacturer: syz
[ 1337.868737][T11648] usb 4-1: SerialNumber: syz
[ 1337.893365][T11648] usb 4-1: config 0 descriptor??
[ 1338.182251][T11648] usb 4-1: USB disconnect, device number 4
[ 1339.760892][  T145] device hsr_slave_0 left promiscuous mode
[ 1339.797614][  T145] device hsr_slave_1 left promiscuous mode
[ 1339.881549][  T145] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1339.918431][  T145] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1339.965471][  T145] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1339.993914][  T145] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1340.028694][  T145] device bridge_slave_1 left promiscuous mode
[ 1340.065728][  T145] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1340.138884][  T145] device bridge_slave_0 left promiscuous mode
[ 1340.172530][  T145] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1340.254792][  T145] device veth1_macvtap left promiscuous mode
[ 1340.273092][  T145] device veth0_macvtap left promiscuous mode
[ 1340.290843][  T145] device veth1_vlan left promiscuous mode
[ 1340.317088][  T145] device veth0_vlan left promiscuous mode
[ 1340.998123][  T145] team0 (unregistering): Port device team_slave_1 removed
[ 1341.025330][  T145] team0 (unregistering): Port device team_slave_0 removed
[ 1341.046855][  T145] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1341.077001][  T145] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1341.119770][T22365] overlayfs: failed to clone upperpath
[ 1341.174103][T22367] overlayfs: failed to clone upperpath
[ 1341.204259][  T145] bond0 (unregistering): Released all slaves
[ 1343.050634][T22433] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4386'.
[ 1343.248657][ T7488] Bluetooth: hci2: command 0x0406 tx timeout
[ 1343.453290][T22449] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4390'.
[ 1343.971517][T22466] netlink: 'syz.8.4394': attribute type 1 has an invalid length.
[ 1344.099454][T22466] device veth3 entered promiscuous mode
[ 1344.109400][T22466] bond1: (slave veth3): Enslaving as a backup interface with a down link
[ 1344.122080][T22470] netlink: 28 bytes leftover after parsing attributes in process `syz.8.4394'.
[ 1344.221300][T22470] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1345.028193][T22512] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4405'.
[ 1346.093356][T22549] overlayfs: failed to clone upperpath
[ 1346.176186][T22552] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4422'.
[ 1346.178487][ T7488] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 1346.462135][ T7488] usb 1-1: Using ep0 maxpacket: 8
[ 1346.578606][ T7488] usb 1-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1346.609610][ T7488] usb 1-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1346.654254][ T7488] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1346.682213][ T7488] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00
[ 1346.728417][ T7488] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1346.775851][ T7488] usb 1-1: config 0 descriptor??
[ 1347.281540][ T7488] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[ 1347.317122][ T7488] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[ 1347.370184][ T7488] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[ 1347.377356][ T7488] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[ 1347.470643][ T7488] mcp2221 0003:04D8:00DD.0002: unknown main item tag 0x0
[ 1347.506363][ T7488] mcp2221 0003:04D8:00DD.0002: USB HID vff.ff Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0
[ 1347.679470][ T7488] usb 1-1: USB disconnect, device number 2
[ 1347.927267][T22591] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4435'.
[ 1348.524303][ T7483] usb 4-1: new low-speed USB device number 5 using dummy_hcd
[ 1348.715136][T22616] device syzkaller0 entered promiscuous mode
[ 1348.844774][T22620] overlayfs: failed to clone upperpath
[ 1348.908597][ T7483] usb 4-1: config 0 has an invalid interface number: 1 but max is 0
[ 1348.933461][ T7483] usb 4-1: config 0 has no interface number 0
[ 1348.960452][ T7483] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[ 1348.995351][ T7483] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[ 1349.026861][ T7483] usb 4-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[ 1349.057452][ T7483] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1349.088824][ T7483] usb 4-1: config 0 descriptor??
[ 1349.118677][T22602] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1349.157976][T22628] fuse: Bad value for 'fd'
[ 1349.164096][ T7483] iowarrior 4-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[ 1349.183250][T22625] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4449'.
[ 1349.451579][ T7483] usb 4-1: USB disconnect, device number 5
[ 1349.748220][T22652] overlayfs: failed to clone upperpath
[ 1350.114327][T22659] device syzkaller0 entered promiscuous mode
[ 1350.380771][T22671] fuse: Bad value for 'fd'
[ 1350.395658][T22669] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4466'.
[ 1351.575155][T22709] overlayfs: failed to resolve './bus': -2
[ 1351.701856][T22718] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4481'.
[ 1351.837236][T22721] overlayfs: failed to resolve './bus': -2
[ 1352.401857][T22739] device syzkaller0 entered promiscuous mode
[ 1352.806236][T22753] overlayfs: failed to clone upperpath
[ 1352.847907][T22751] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4496'.
[ 1353.180340][T22763] fuse: Bad value for 'fd'
[ 1354.226796][T22798] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4511'.
[ 1354.554424][T22803] device syzkaller0 entered promiscuous mode
[ 1355.190311][T22823] overlayfs: failed to clone upperpath
[ 1355.443956][T22835] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4525'.
[ 1355.705472][T22841] device syzkaller0 entered promiscuous mode
[ 1356.212206][T22871] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4542'.
[ 1357.341566][T22913] netlink: 16 bytes leftover after parsing attributes in process `syz.8.4558'.
[ 1357.565007][T22918] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1357.605217][T22918] device bridge_slave_0 left promiscuous mode
[ 1357.634560][T22918] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1358.567276][T22951] device syzkaller0 entered promiscuous mode
[ 1358.596788][T22949] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4573'.
[ 1358.609040][ T7488] Bluetooth: hci0: command 0x0406 tx timeout
[ 1358.785140][T22957] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1358.831550][T22957] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1358.920554][T22969] overlayfs: failed to resolve './bus': -2
[ 1359.409686][T22988] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4588'.
[ 1359.842513][T23017] overlayfs: failed to resolve './bus': -2
[ 1360.495591][T23036] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4602'.
[ 1360.685759][T23049] overlayfs: failed to resolve './bus': -2
[ 1361.662130][ T1428] ieee802154 phy0 wpan0: encryption failed: -22
[ 1361.668640][ T1428] ieee802154 phy1 wpan1: encryption failed: -22
[ 1361.867800][T23093] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1361.876357][T23093] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1361.894863][T23090] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4620'.
[ 1362.461085][T23120] overlayfs: missing 'lowerdir'
[ 1363.169542][ T7197] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 1363.204129][T23147] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4637'.
[ 1363.232335][T23152] overlayfs: missing 'lowerdir'
[ 1363.428636][ T7197] usb 4-1: Using ep0 maxpacket: 8
[ 1363.549378][ T7197] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[ 1363.567964][ T7197] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1363.578443][ T7197] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1363.588714][ T7197] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1363.614586][ T7197] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1363.644529][ T7197] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1363.671923][ T7197] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1363.781444][T23184] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4653'.
[ 1363.874764][T23190] overlayfs: missing 'lowerdir'
[ 1363.948500][ T7197] usb 4-1: usb_control_msg returned -32
[ 1363.954608][ T7197] usbtmc 4-1:16.0: can't read capabilities
[ 1364.680977][T23223] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4666'.
[ 1364.877471][T23231] overlayfs: missing 'lowerdir'
[ 1365.042708][T23237] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1365.066362][T23237] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1365.597858][T23269] overlayfs: missing 'lowerdir'
[ 1365.739272][T23275] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4685'.
[ 1365.913869][ T7197] usb 4-1: USB disconnect, device number 6
[ 1366.124895][T23297] overlayfs: missing 'lowerdir'
[ 1366.471336][T23314] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4697'.
[ 1366.707400][T23321] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1366.723899][T23321] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1367.578365][ T4384] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1367.818614][ T4384] usb 9-1: Using ep0 maxpacket: 32
[ 1367.938566][ T4384] usb 9-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1368.062402][T23360] overlayfs: missing 'lowerdir'
[ 1368.108548][ T4384] usb 9-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1368.139107][ T4384] usb 9-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1368.149373][ T4384] usb 9-1: Product: syz
[ 1368.157229][ T4384] usb 9-1: Manufacturer: syz
[ 1368.181392][ T4384] usb 9-1: SerialNumber: syz
[ 1368.207509][ T4384] usb 9-1: config 0 descriptor??
[ 1368.248697][T23338] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[ 1368.289515][ T4384] hub 9-1:0.0: bad descriptor, ignoring hub
[ 1368.306262][ T4384] hub: probe of 9-1:0.0 failed with error -5
[ 1368.439468][T23374] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4721'.
[ 1368.636782][T23387] overlayfs: missing 'lowerdir'
[ 1369.488031][T23413] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4735'.
[ 1369.701985][T23419] overlayfs: missing 'lowerdir'
[ 1372.461949][T23453] overlayfs: missing 'lowerdir'
[ 1372.750808][T23469] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4754'.
[ 1372.886690][T23474] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1372.935419][T23474] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1373.244358][T23492] overlayfs: missing 'lowerdir'
[ 1374.062466][T23515] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4771'.
[ 1374.085029][ T7997] usb 9-1: USB disconnect, device number 6
[ 1374.252958][T23527] overlayfs: missing 'lowerdir'
[ 1374.625283][T23549] overlayfs: failed to clone upperpath
[ 1374.851945][T23556] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4786'.
[ 1374.886687][T23561] overlayfs: missing 'lowerdir'
[ 1375.017386][T23566] overlayfs: failed to clone upperpath
[ 1375.218089][T23579] overlayfs: missing 'workdir'
[ 1375.675592][T23606] overlayfs: missing 'lowerdir'
[ 1375.828700][T23610] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4802'.
[ 1376.252731][T23631] overlayfs: missing 'workdir'
[ 1376.358084][T23641] overlayfs: missing 'lowerdir'
[ 1376.560040][T23652] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4816'.
[ 1376.755006][T23666] overlayfs: failed to clone upperpath
[ 1377.031217][T23677] overlayfs: missing 'workdir'
[ 1377.081563][T23680] overlayfs: missing 'lowerdir'
[ 1377.325725][T23690] device syzkaller0 entered promiscuous mode
[ 1377.500362][T23696] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4834'.
[ 1377.856908][T23713] team0: Port device vlan2 added
[ 1377.946132][T23721] overlayfs: missing 'lowerdir'
[ 1377.983027][T23720] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1378.014783][T23720] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1378.084780][T23720] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1378.254808][T23734] device syzkaller0 entered promiscuous mode
[ 1378.621407][T23748] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4855'.
[ 1378.912670][T23760] overlayfs: missing 'lowerdir'
[ 1379.133154][T23766] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1379.167388][T23766] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1379.210814][T23766] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1379.343282][T23771] device syzkaller0 entered promiscuous mode
[ 1379.458620][T23778] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1379.481834][T23778] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1379.498407][T23778] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1379.898072][T23785] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[ 1380.199385][T23799] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4873'.
[ 1380.299617][T23801] fuse: Bad value for 'fd'
[ 1380.790196][T23835] overlayfs: missing 'workdir'
[ 1380.803210][T23836] loop0: detected capacity change from 0 to 512
[ 1380.809590][T23838] fuse: Bad value for 'fd'
[ 1380.930300][T23836] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 1380.977846][T23843] netlink: 16 bytes leftover after parsing attributes in process `syz.5.4892'.
[ 1381.356410][T23861] fuse: Bad value for 'fd'
[ 1381.384181][T23868] overlayfs: missing 'workdir'
[ 1381.752471][T23882] netlink: 16 bytes leftover after parsing attributes in process `syz.7.4908'.
[ 1381.953345][T23891] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1381.981279][T23891] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1382.213454][T23900] overlayfs: missing 'workdir'
[ 1382.775185][T23925] netlink: 16 bytes leftover after parsing attributes in process `syz.3.4922'.
[ 1382.873563][T23929] overlayfs: failed to clone upperpath
[ 1383.051182][T23936] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1383.101321][T23945] "syz.5.4932" (23945) uses obsolete ecb(arc4) skcipher
[ 1383.108592][T23936] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1383.607383][T23971] overlayfs: failed to clone upperpath
[ 1383.773669][T23978] overlayfs: failed to clone upperpath
[ 1383.802824][T23980] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1383.819871][T23978] overlayfs: failed to clone upperpath
[ 1383.837706][T23980] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1384.057861][T23988] loop3: detected capacity change from 0 to 512
[ 1384.144286][T23988] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 1384.287068][T23992] netlink: 8 bytes leftover after parsing attributes in process `syz.5.4948'.
[ 1384.390145][T20526] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[ 1384.545143][   T26] audit: type=1326 audit(1779114154.234:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1384.650976][   T26] audit: type=1326 audit(1779114154.274:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1384.670247][T24011] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1384.749179][   T26] audit: type=1326 audit(1779114154.294:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1384.757155][T24011] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[ 1384.838068][T24016] overlayfs: invalid origin (00000079009f31f4fba579604b42dfae2394430704eacc47f2088ff7b1e93690f550a427cee3a2341936c551a14b95d6fa6ce9d15c0d26b263b38da7b7a80353)
[ 1384.873147][   T26] audit: type=1326 audit(1779114154.294:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1385.010978][   T26] audit: type=1326 audit(1779114154.294:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=290 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1385.166063][   T26] audit: type=1326 audit(1779114154.294:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1385.285155][   T26] audit: type=1326 audit(1779114154.294:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1385.446553][   T26] audit: type=1326 audit(1779114154.294:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1385.475172][T24037] netlink: 9 bytes leftover after parsing attributes in process `syz.7.4965'.
[ 1385.513866][T24037] device gretap0 entered promiscuous mode
[ 1385.552210][T24041] netlink: 5 bytes leftover after parsing attributes in process `syz.7.4965'.
[ 1385.557489][   T26] audit: type=1326 audit(1779114154.294:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24005 comm="syz.3.4953" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fd2afac1e59 code=0x7ffc0000
[ 1385.587067][T24041] 0ªî{X¹¦: renamed from gretap0
[ 1385.625362][T24041] device 
30ªî{X¹¦ left promiscuous mode
[ 1385.649934][T24041] A link change request failed with some changes committed already. Interface 
30ªî{X¹¦ may have been left with an inconsistent configuration, please check.
[ 1385.680208][   T26] audit: type=1326 audit(1779114155.214:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24017 comm="syz.5.4961" exe="/root/ci2-linux-5-15-kasan/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0973959e59 code=0x0
[ 1385.934535][T24054] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4971'.
[ 1386.134890][T24064] loop3: detected capacity change from 0 to 128
[ 1386.453595][T24077] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1387.865049][T24130] IPv6: addrconf: prefix option has invalid lifetime
[ 1388.602028][T24159] overlayfs: failed to clone upperpath
[ 1388.807646][T24168] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1389.188121][T24177] loop0: detected capacity change from 0 to 8192
[ 1390.158230][T24230] tmpfs: Unknown parameter 'noswap'
[ 1390.184348][T24219] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[ 1390.963326][T24261] overlayfs: failed to clone upperpath
[ 1394.098130][T24365] overlayfs: failed to clone upperpath
[ 1394.149760][T24367] overlayfs: failed to clone upperpath
[ 1394.274118][T24371] fuse: Bad value for 'group_id'
[ 1394.351427][T24373] loop3: detected capacity change from 0 to 2048
[ 1394.954240][T24373] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1395.094515][T24382] loop0: detected capacity change from 0 to 256
[ 1395.267692][T24382] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1395.308111][T24387] loop3: detected capacity change from 0 to 128
[ 1396.072477][T24402] device syzkaller0 entered promiscuous mode
[ 1399.221846][T24442] device syzkaller0 entered promiscuous mode
[ 1399.638450][ T8000] usb 1-1: new low-speed USB device number 3 using dummy_hcd
[ 1400.018457][ T8000] usb 1-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1400.088346][ T8000] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1400.136068][ T8000] usb 1-1: config 0 descriptor??
[ 1400.190371][ T8000] asix: probe of 1-1:0.0 failed with error -22
[ 1400.389527][T24481] overlayfs: failed to clone upperpath
[ 1400.443994][T24481] overlayfs: failed to clone upperpath
[ 1400.912731][T24493] device syzkaller0 entered promiscuous mode
[ 1401.105940][T24499] loop8: detected capacity change from 0 to 1024
[ 1402.582891][ T1111] usb 1-1: USB disconnect, device number 3
[ 1402.728950][T24526] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5141'.
[ 1402.754208][T24524] loop8: detected capacity change from 0 to 2048
[ 1402.928752][T24524] EXT4-fs error (device loop8): ext4_ext_check_inode:501: inode #2: comm syz.8.5139: pblk 0 bad header/extent: eh_entries is 0 but eh_depth is > 0 - magic f30a, entries 0, max 4(4), depth 5(5)
[ 1402.984541][T24524] EXT4-fs (loop8): get root inode failed
[ 1402.990696][T24524] EXT4-fs (loop8): mount failed
[ 1403.149684][T24524] loop8: detected capacity change from 0 to 1024
[ 1403.247737][T24524] EXT4-fs (loop8): Invalid want_extra_isize 5
[ 1404.865597][T24569] netlink: 20 bytes leftover after parsing attributes in process `syz.5.5152'.
[ 1405.879752][T24582] netlink: 16 bytes leftover after parsing attributes in process `syz.8.5155'.
[ 1407.957293][T24625] loop3: detected capacity change from 0 to 128
[ 1408.002293][T24623] netlink: 16 bytes leftover after parsing attributes in process `syz.0.5171'.
[ 1408.175358][T24631] loop8: detected capacity change from 0 to 1024
[ 1409.386409][T24625] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1409.408543][T24625] ext4 filesystem being mounted at /298/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1410.734392][T24631] EXT4-fs warning (device loop8): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop8.
[ 1410.976626][T24625] EXT4-fs (loop3): shut down requested (1)
[ 1411.004317][T24625] fscrypt (loop3, inode 12): Error -5 getting encryption context
[ 1411.131404][T24625] fscrypt (loop3, inode 12): Error -5 getting encryption context
[ 1411.221043][T24639] device syzkaller0 entered promiscuous mode
[ 1411.375921][T24646] loop0: detected capacity change from 0 to 512
[ 1411.390949][T24625] fscrypt (loop3, inode 12): Error -5 getting encryption context
[ 1411.448141][T24646] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[ 1411.511035][T24646] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1411.658478][T24646] EXT4-fs (loop0): 1 truncate cleaned up
[ 1411.718892][T24646] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,max_dir_size_kb=0x0000000000000004,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[ 1411.856128][T24646] EXT4-fs error (device loop0): ext4_map_blocks:631: inode #2: block 13: comm syz.0.5177: lblock 0 mapped to illegal pblock 13 (length 1)
[ 1411.924358][T24652] loop8: detected capacity change from 0 to 512
[ 1411.955390][T24646] EXT4-fs (loop0): Remounting filesystem read-only
[ 1412.098719][T24652] EXT4-fs (loop8): 1 truncate cleaned up
[ 1412.104438][T24652] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000003,,errors=continue. Quota mode: none.
[ 1413.168955][T24690] loop0: detected capacity change from 0 to 16
[ 1413.637817][T24690] erofs: (device loop0): mounted with root inode @ nid 36.
[ 1416.753933][T24742] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1416.788039][T24742] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1417.866562][T24774] loop3: detected capacity change from 0 to 512
[ 1417.991285][T24774] EXT4-fs (loop3): external journal device major/minor numbers have changed
[ 1418.049795][T24774] blk_update_request: I/O error, dev loop20, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1418.078438][T24774] EXT4-fs (loop3): couldn't read superblock of external journal
[ 1418.202374][T24774] loop3: detected capacity change from 0 to 512
[ 1418.246229][T24774] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1418.406467][T24774] EXT4-fs error (device loop3): ext4_orphan_get:1432: comm syz.3.5223: bad orphan inode 131083
[ 1418.588722][T24774] EXT4-fs (loop3): mounted filesystem without journal. Opts: acl,noblock_validity,debug_want_extra_isize=0x0000000000000008,,errors=continue. Quota mode: none.
[ 1419.006465][T24790] loop0: detected capacity change from 0 to 256
[ 1419.361171][T24790] exfat: Bad value for 'time_offset'
[ 1419.532412][T24803] device syzkaller0 entered promiscuous mode
[ 1419.610564][T24790] loop0: detected capacity change from 0 to 256
[ 1419.623427][T24790] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1419.634330][T24790] exFAT-fs (loop0): Medium has reported failures. Some data may be lost.
[ 1419.691613][T24790] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1419.917597][T24811] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1419.926293][T24811] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1420.304437][T24828] loop8: detected capacity change from 0 to 128
[ 1420.464141][T24828] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1420.572377][T24828] ext4 filesystem being mounted at /271/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1421.408726][ T4384] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 1422.408357][ T4384] usb 4-1: Using ep0 maxpacket: 32
[ 1423.138616][ T4384] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1423.149786][ T1428] ieee802154 phy0 wpan0: encryption failed: -22
[ 1423.171432][ T1428] ieee802154 phy1 wpan1: encryption failed: -22
[ 1423.433507][ T4384] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 1423.465313][ T4384] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1423.498210][ T4384] usb 4-1: Product: syz
[ 1423.502814][ T4384] usb 4-1: Manufacturer: syz
[ 1423.525410][T24885] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1423.535211][ T4384] usb 4-1: SerialNumber: syz
[ 1423.547875][T24888] loop0: detected capacity change from 0 to 2048
[ 1423.561432][ T4384] usb 4-1: config 0 descriptor??
[ 1423.574744][T24885] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1423.629164][ T4384] usb 4-1: bad CDC descriptors
[ 1423.635512][ T4384] usb 4-1: unsupported MDLM descriptors
[ 1423.711091][T24888] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1424.593801][T24919] process 'syz.7.5268' launched './file1' with NULL argv: empty string added
[ 1425.793491][T24926] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -4
[ 1425.802922][T24926] platform regulatory.0: Direct firmware load for regulatory.db failed with error -4
[ 1425.812681][T24926] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[ 1425.828155][T24926] syz.0.5267 (24926) used greatest stack depth: 18320 bytes left
[ 1426.129207][   T26] kauditd_printk_skb: 25 callbacks suppressed
[ 1426.129290][   T26] audit: type=1800 audit(1779114195.494:44): pid=24926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.5267" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[ 1426.678995][ T4384] usb 4-1: USB disconnect, device number 7
[ 1426.746068][T24937] mmap: syz.7.5271 (24937) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[ 1427.019539][T24951] loop3: detected capacity change from 0 to 512
[ 1427.139009][T24951] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1427.376523][T24951] EXT4-fs (loop3): 1 truncate cleaned up
[ 1427.386662][T24951] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,max_dir_size_kb=0x0000000000000004,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[ 1428.722668][T24977] loop3: detected capacity change from 0 to 2048
[ 1428.784424][T24983] loop8: detected capacity change from 0 to 1024
[ 1428.874855][T24983] EXT4-fs (loop8): Invalid want_extra_isize 5
[ 1429.707573][T24993] loop8: detected capacity change from 0 to 136
[ 1431.073581][T24993] kvm: emulating exchange as write
[ 1431.533971][T25014] loop3: detected capacity change from 0 to 2048
[ 1431.673821][T25014] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[ 1431.705635][T25014] UDF-fs: Scanning with blocksize 512 failed
[ 1431.772066][T25014] UDF-fs: warning (device loop3): udf_fill_super: No fileset found
[ 1432.959527][T25040] loop3: detected capacity change from 0 to 2048
[ 1433.121705][T25040] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=3932051, location=3932051
[ 1433.139426][T25059] loop8: detected capacity change from 0 to 512
[ 1433.193160][T25040] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1433.207154][T25059] EXT4-fs (loop8): Ignoring removed nobh option
[ 1433.338540][T25059] EXT4-fs (loop8): mounted filesystem without journal. Opts: barrier,nogrpid,quota,nobh,,errors=continue. Quota mode: writeback.
[ 1433.441907][T25059] ext4 filesystem being mounted at /286/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1433.964832][T25077] EXT4-fs error (device loop8): ext4_find_dest_de:2115: inode #2: block 3: comm syz.8.5313: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0
[ 1434.236282][T25076] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5318'.
[ 1434.407479][T25085] tmpfs: Unknown parameter 'sourceõa
'
[ 1435.662113][T25097] loop8: detected capacity change from 0 to 512
[ 1435.695085][T25097] EXT4-fs (loop8): Ignoring removed nobh option
[ 1435.763966][T25097] EXT4-fs (loop8): mounted filesystem without journal. Opts: barrier,nogrpid,quota,nobh,,errors=continue. Quota mode: writeback.
[ 1435.778652][T25097] ext4 filesystem being mounted at /289/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1436.641449][T25107] netlink: 28 bytes leftover after parsing attributes in process `syz.7.5330'.
[ 1436.784644][T25111] loop8: detected capacity change from 0 to 512
[ 1436.810306][T25111] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1436.856969][T25111] EXT4-fs (loop8): 1 truncate cleaned up
[ 1436.866154][T25111] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,max_dir_size_kb=0x0000000000000004,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[ 1436.993841][T25118] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5333'.
[ 1437.174289][T25125] loop8: detected capacity change from 0 to 2048
[ 1437.279987][T25129] loop0: detected capacity change from 0 to 128
[ 1437.291226][T25125] EXT4-fs (loop8): mounted filesystem without journal. Opts: auto_da_alloc,data_err=abort,,errors=continue. Quota mode: writeback.
[ 1437.334518][T25125] ext4 filesystem being mounted at /291/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1437.468486][T25129] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1437.514412][T25129] ext4 filesystem being mounted at /378/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1438.107785][T25143] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1438.116536][T25143] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1438.139418][T25143] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1438.147716][T25143] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1438.158266][T25143] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1438.166526][T25143] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1438.464607][T25143] device veth3 left promiscuous mode
[ 1439.249372][T25129] EXT4-fs (loop0): shut down requested (1)
[ 1439.562389][T25154] loop0: detected capacity change from 0 to 512
[ 1439.613313][T25154] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1439.689261][T25154] EXT4-fs (loop0): 1 truncate cleaned up
[ 1439.708334][T25154] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,max_dir_size_kb=0x0000000000000004,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[ 1439.727657][T25161] loop8: detected capacity change from 0 to 1024
[ 1439.844002][   T26] audit: type=1800 audit(1779114209.544:45): pid=25161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.5347" name="file1" dev="loop8" ino=20 res=0 errno=0
[ 1439.858135][T25160] attempt to access beyond end of device
[ 1439.858135][T25160] loop8: rw=0, want=5780, limit=1024
[ 1439.935257][T25160] Buffer I/O error on dev loop8, logical block 2889, async page read
[ 1439.968379][T25163] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5350'.
[ 1440.003928][T25160] attempt to access beyond end of device
[ 1440.003928][T25160] loop8: rw=0, want=393218, limit=1024
[ 1440.007054][T25163] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5350'.
[ 1440.059111][T25160] Buffer I/O error on dev loop8, logical block 196608, async page read
[ 1440.090859][T25160] attempt to access beyond end of device
[ 1440.090859][T25160] loop8: rw=0, want=393220, limit=1024
[ 1440.116640][T25160] Buffer I/O error on dev loop8, logical block 196609, async page read
[ 1440.168745][T25160] attempt to access beyond end of device
[ 1440.168745][T25160] loop8: rw=0, want=393222, limit=1024
[ 1440.216171][T25160] Buffer I/O error on dev loop8, logical block 196610, async page read
[ 1440.239426][T25160] attempt to access beyond end of device
[ 1440.239426][T25160] loop8: rw=0, want=393224, limit=1024
[ 1440.294262][T25160] Buffer I/O error on dev loop8, logical block 196611, async page read
[ 1440.330240][T25160] attempt to access beyond end of device
[ 1440.330240][T25160] loop8: rw=0, want=393226, limit=1024
[ 1440.377244][T25160] Buffer I/O error on dev loop8, logical block 196612, async page read
[ 1440.416239][T25160] attempt to access beyond end of device
[ 1440.416239][T25160] loop8: rw=0, want=393228, limit=1024
[ 1440.441048][T25174] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5353'.
[ 1440.478728][T25160] Buffer I/O error on dev loop8, logical block 196613, async page read
[ 1440.509158][T25160] attempt to access beyond end of device
[ 1440.509158][T25160] loop8: rw=0, want=393230, limit=1024
[ 1440.556243][T25160] Buffer I/O error on dev loop8, logical block 196614, async page read
[ 1440.596174][T25160] attempt to access beyond end of device
[ 1440.596174][T25160] loop8: rw=0, want=393232, limit=1024
[ 1440.650372][T25160] Buffer I/O error on dev loop8, logical block 196615, async page read
[ 1440.708113][T25160] attempt to access beyond end of device
[ 1440.708113][T25160] loop8: rw=0, want=393234, limit=1024
[ 1440.758456][T25160] Buffer I/O error on dev loop8, logical block 196616, async page read
[ 1441.495852][T25205] 9pnet: Insufficient options for proto=fd
[ 1442.030555][T25222] loop3: detected capacity change from 0 to 8192
[ 1442.398098][T25222] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1443.137626][T25237] 9pnet: Insufficient options for proto=fd
[ 1444.178637][T25247] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5379'.
[ 1444.243502][T25251] loop8: detected capacity change from 0 to 2048
[ 1444.340701][T25251] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1444.350314][T25254] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1445.487778][T25265] loop8: detected capacity change from 0 to 512
[ 1445.638333][T25265] EXT4-fs (loop8): Mount option "nouser_xattr" will be removed by 3.5
[ 1445.638333][T25265] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[ 1445.638333][T25265] 
[ 1445.822223][T25265] EXT4-fs error (device loop8): ext4_map_blocks:631: inode #2: block 3: comm syz.8.5386: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1445.895622][T25265] EXT4-fs warning (device loop8): dx_probe:823: inode #2: lblock 0: comm syz.8.5386: error -117 reading directory block
[ 1445.944826][T25265] EXT4-fs (loop8): Cannot turn on journaled quota: type 1: error -117
[ 1445.969049][T25265] EXT4-fs (loop8): mounted filesystem without journal. Opts: nouser_xattr,delalloc,auto_da_alloc=0x0000000000000004,jqfmt=vfsold,nolazytime,grpjquota=.noacl,resuid=0x0000000000000000,lazytime,grpid,,,errors=continue. Quota mode: writeback.
[ 1446.004053][T25284] loop0: detected capacity change from 0 to 512
[ 1446.036269][T25287] fuse: Unknown parameter 'group_id00000000000000000000'
[ 1446.069258][T25284] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1446.106455][T25284] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[ 1446.149885][T25265] EXT4-fs error (device loop8): ext4_map_blocks:631: inode #2: block 3: comm syz.8.5386: lblock 0 mapped to illegal pblock 3 (length 1)
[ 1446.170925][T25291] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5394'.
[ 1446.185339][T25284] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended
[ 1446.194881][T25265] EXT4-fs warning (device loop8): dx_probe:823: inode #2: lblock 0: comm syz.8.5386: error -117 reading directory block
[ 1446.233631][T25284] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006]
[ 1446.248924][T25284] System zones: 0-2, 18-18, 34-35
[ 1446.278941][T25284] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1447.684471][T25319] fuse: Bad value for 'user_id'
[ 1449.388929][T25347] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1449.397324][T25347] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1449.416536][T25356] fuse: Bad value for 'user_id'
[ 1450.394626][T25370] 9pnet: Insufficient options for proto=fd
[ 1450.523680][T25371] loop0: detected capacity change from 0 to 512
[ 1451.960392][T25371] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1452.243069][T25395] fuse: Bad value for 'user_id'
[ 1452.592763][T25409] loop3: detected capacity change from 0 to 2048
[ 1452.603618][T25404] loop8: detected capacity change from 0 to 4096
[ 1452.808759][T25404] EXT4-fs (loop8): Ignoring removed nobh option
[ 1452.949283][T25409] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1453.677992][T25428] fuse: Bad value for 'fd'
[ 1453.710813][T25404] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1453.779832][T25404] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1453.788066][T25404] System zones: 0-5
[ 1453.813244][T25404] EXT4-fs (loop8): mounted filesystem without journal. Opts: debug,min_batch_time=0x0000000000000004,nobh,test_dummy_encryption,errors=continue,nolazytime,delalloc,barrier,,errors=continue. Quota mode: writeback.
[ 1454.572594][T25445] loop0: detected capacity change from 0 to 512
[ 1454.579448][T25450] loop3: detected capacity change from 0 to 1024
[ 1454.687798][T25445] EXT4-fs (loop0): mounted filesystem without journal. Opts: quota,grpquota,init_itable,,errors=continue. Quota mode: writeback.
[ 1454.719144][T25462] fuse: Bad value for 'fd'
[ 1454.741641][T25445] ext4 filesystem being mounted at /397/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1455.074772][T25478] loop0: detected capacity change from 0 to 256
[ 1455.115257][T25478] exfat: Bad value for 'time_offset'
[ 1455.180546][T25476] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[ 1456.340510][T25499] loop3: detected capacity change from 0 to 16
[ 1456.794487][T25499] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1456.808767][T25499] handle_bad_sector: 190 callbacks suppressed
[ 1456.808837][T25499] attempt to access beyond end of device
[ 1456.808837][T25499] loop3: rw=524288, want=1072, limit=16
[ 1456.848295][T19020] erofs: (device loop3): z_erofs_lz4_decompress: failed to decompress -26 in[46, 4050] out[9000]
[ 1456.861872][T25502] fuse: Bad value for 'fd'
[ 1456.889410][   T26] audit: type=1800 audit(1779114226.594:46): pid=25499 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5468" name="file2" dev="loop3" ino=89 res=0 errno=0
[ 1456.987529][T25505] loop0: detected capacity change from 0 to 512
[ 1457.104891][T25505] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1457.226946][T25505] EXT4-fs (loop0): 1 truncate cleaned up
[ 1457.229693][T25514] loop3: detected capacity change from 0 to 1024
[ 1457.258388][T25505] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,max_dir_size_kb=0x0000000000000004,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[ 1457.343163][T25514] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802e018, mo2=0002]
[ 1457.359007][T25514] System zones: 0-1, 3-8
[ 1457.364420][T25514] EXT4-fs (loop3): mounted filesystem without journal. Opts: nouid32,jqfmt=vfsv1,noquota,debug,journal_dev=0x0000000000000009,nodioread_nolock,,errors=continue. Quota mode: none.
[ 1457.408477][T25514] ext4 filesystem being mounted at /342/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1457.434841][   T26] audit: type=1800 audit(1779114227.134:47): pid=25514 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5473" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 1457.702922][T25535] loop3: detected capacity change from 0 to 512
[ 1457.759157][T25538] fuse: Bad value for 'fd'
[ 1457.784408][T25535] EXT4-fs (loop3): 1 truncate cleaned up
[ 1457.855324][T25535] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000003,,errors=continue. Quota mode: none.
[ 1458.052527][T25550] loop8: detected capacity change from 0 to 512
[ 1459.022181][T25510] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set
[ 1459.326520][T25550] EXT4-fs (loop8): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 1459.914336][T25566] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (128 ns). Using initial count to start timer.
[ 1460.044936][T25580] fuse: Bad value for 'fd'
[ 1461.144056][T25595] loop8: detected capacity change from 0 to 512
[ 1461.250906][T25595] EXT4-fs (loop8): 1 truncate cleaned up
[ 1461.256979][T25595] EXT4-fs (loop8): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000003,,errors=continue. Quota mode: none.
[ 1462.206075][T25612] netlink: 36 bytes leftover after parsing attributes in process `syz.7.5506'.
[ 1462.331136][T25618] loop3: detected capacity change from 0 to 1024
[ 1462.360562][T25621] fuse: Bad value for 'fd'
[ 1462.472454][T25618] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802e018, mo2=0002]
[ 1462.493536][T25618] System zones: 0-1, 3-8
[ 1462.509681][T25618] EXT4-fs (loop3): mounted filesystem without journal. Opts: nouid32,jqfmt=vfsv1,noquota,debug,journal_dev=0x0000000000000009,nodioread_nolock,,errors=continue. Quota mode: none.
[ 1463.199800][T25618] ext4 filesystem being mounted at /348/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1464.763608][T25601] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[ 1465.968360][T25650] loop0: detected capacity change from 0 to 1024
[ 1466.618807][   T26] audit: type=1800 audit(1779114236.314:48): pid=25650 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5519" name="file1" dev="loop0" ino=20 res=0 errno=0
[ 1466.642722][T25657] attempt to access beyond end of device
[ 1466.642722][T25657] loop0: rw=0, want=393286, limit=1024
[ 1466.699246][T25662] fuse: Invalid rootmode
[ 1467.181244][T25670] loop8: detected capacity change from 0 to 512
[ 1467.599454][T25670] EXT4-fs error (device loop8): ext4_xattr_inode_iget:401: inode #12: comm syz.8.5520: missing EA_INODE flag
[ 1467.657260][T25670] EXT4-fs error (device loop8): ext4_xattr_inode_iget:406: comm syz.8.5520: error while reading EA inode 12 err=-117
[ 1467.691169][T25670] EXT4-fs (loop8): 1 orphan inode deleted
[ 1467.697217][T25670] EXT4-fs (loop8): mounted filesystem without journal. Opts: nombcache,nogrpid,,errors=continue. Quota mode: writeback.
[ 1468.035519][T25692] loop0: detected capacity change from 0 to 1024
[ 1468.131795][T25692] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802e018, mo2=0002]
[ 1468.308281][T25692] System zones: 0-1, 3-8
[ 1468.544828][T25692] EXT4-fs (loop0): mounted filesystem without journal. Opts: nouid32,jqfmt=vfsv1,noquota,debug,journal_dev=0x0000000000000009,nodioread_nolock,,errors=continue. Quota mode: none.
[ 1468.806962][T25692] ext4 filesystem being mounted at /411/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1468.893285][   T26] audit: type=1800 audit(1779114238.594:49): pid=25692 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.5529" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 1468.932522][T25692] EXT4-fs error (device loop0): ext4_free_blocks:6231: comm syz.0.5529: Freeing blocks not in datazone - block = 0, count = 16
[ 1470.158086][T25720] loop0: detected capacity change from 0 to 8192
[ 1470.191149][T25720] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1471.640738][T25743] loop8: detected capacity change from 0 to 1024
[ 1471.713100][T25751] loop3: detected capacity change from 0 to 512
[ 1471.758037][T25750] loop0: detected capacity change from 0 to 512
[ 1471.782012][   T26] audit: type=1800 audit(1779114241.484:50): pid=25743 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.5547" name="file1" dev="loop8" ino=20 res=0 errno=0
[ 1471.783521][T25743] attempt to access beyond end of device
[ 1471.783521][T25743] loop8: rw=0, want=393286, limit=1024
[ 1471.852832][T25750] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1472.575653][T25750] EXT4-fs (loop0): 1 truncate cleaned up
[ 1472.597739][T25750] EXT4-fs (loop0): mounted filesystem without journal. Opts: max_batch_time=0x0000000000000004,max_batch_time=0x0000000000000002,max_dir_size_kb=0x0000000000000004,block_validity,errors=remount-ro,nombcache,. Quota mode: none.
[ 1472.671741][T25764] loop3: detected capacity change from 0 to 512
[ 1474.876169][T25785] kvm: vcpu 2: requested 128 ns lapic timer period limited to 200000 ns
[ 1474.886854][T25785] kvm: vcpu 2: requested lapic timer restore with starting count register 0x390=1812281087 (231971979136 ns) > initial count (200000 ns). Using initial count to start timer.
[ 1474.907727][T25785] ------------[ cut here ]------------
[ 1475.799109][T25785] WARNING: CPU: 0 PID: 25785 at arch/x86/kvm/x86.c:10372 kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[ 1475.863486][T25785] Modules linked in:
[ 1475.903058][T25785] CPU: 0 PID: 25785 Comm: syz.8.5560 Not tainted syzkaller #0
[ 1475.961489][T25785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1476.028319][T25801] loop3: detected capacity change from 0 to 1024
[ 1476.076497][T25785] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[ 1476.083843][T25785] Code: e8 21 1a af 00 e9 03 e9 ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d5 ed ff ff 4c 89 ff e8 06 1a af 00 e9 c8 ed ff ff e8 5c fb 69 00 <0f> 0b e9 31 fd ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d2 ed ff ff 4c
[ 1476.104114][T25785] RSP: 0018:ffffc9000316fc30 EFLAGS: 00010287
[ 1476.124662][T25785] RAX: ffffffff810f3ab4 RBX: ffff888056b88000 RCX: 0000000000080000
[ 1476.313984][T25785] RDX: ffffc900038f7000 RSI: 0000000000000432 RDI: 0000000000000433
[ 1476.768561][T25808] attempt to access beyond end of device
[ 1476.768561][T25808] loop3: rw=0, want=393286, limit=1024
[ 1476.787720][T25785] RBP: 0000000000000000 R08: ffffffff8d89f82f R09: 1ffffffff1b13f05
[ 1476.828002][   T26] audit: type=1800 audit(1779114246.524:51): pid=25801 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5564" name="file1" dev="loop3" ino=20 res=0 errno=0
[ 1476.885499][T25785] R10: dffffc0000000000 R11: fffffbfff1b13f06 R12: ffff88807c2a5001
[ 1476.948916][T25785] R13: 1ffff1100ad7101e R14: ffff888056b880f0 R15: ffff88807c2a5000
[ 1476.956991][T25785] FS:  00007f178bdda6c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[ 1476.985430][T25785] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1477.002485][T25785] CR2: 00007f8e98e57000 CR3: 0000000054bac000 CR4: 00000000003526f0
[ 1477.033671][T25785] Call Trace:
[ 1477.037186][T25785]  <TASK>
[ 1477.054888][T25785]  ? __lock_acquire+0x7d10/0x7d10
[ 1477.062464][T25785]  kvm_vcpu_ioctl+0x8f7/0xc10
[ 1477.067285][T25785]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[ 1477.073462][T25785]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1477.081505][T25785]  ? security_file_ioctl+0x7c/0xa0
[ 1477.086676][T25785]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[ 1477.098988][T25785]  __se_sys_ioctl+0xfa/0x170
[ 1477.103654][T25785]  do_syscall_64+0x4c/0xa0
[ 1477.108116][T25785]  ? clear_bhb_loop+0x30/0x80
[ 1477.125601][T25785]  ? clear_bhb_loop+0x30/0x80
[ 1477.130618][T25785]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1477.136759][T25785] RIP: 0033:0x7f178db80e59
[ 1477.141605][T25785] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1477.163064][T25785] RSP: 002b:00007f178bdda028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1477.171773][T25785] RAX: ffffffffffffffda RBX: 00007f178ddf9fa0 RCX: 00007f178db80e59
[ 1477.179957][T25785] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[ 1477.187959][T25785] RBP: 00007f178dc16d6f R08: 0000000000000000 R09: 0000000000000000
[ 1477.196258][T25785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1477.204536][T25785] R13: 00007f178ddfa038 R14: 00007f178ddf9fa0 R15: 00007ffe93fe9c58
[ 1477.212900][T25785]  </TASK>
[ 1477.215963][T25785] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1477.223244][T25785] CPU: 0 PID: 25785 Comm: syz.8.5560 Not tainted syzkaller #0
[ 1477.230796][T25785] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1477.240882][T25785] Call Trace:
[ 1477.244171][T25785]  <TASK>
[ 1477.247104][T25785]  dump_stack_lvl+0x188/0x250
[ 1477.251785][T25785]  ? show_regs_print_info+0x20/0x20
[ 1477.257075][T25785]  ? load_image+0x400/0x400
[ 1477.261708][T25785]  panic+0x2e5/0x810
[ 1477.265657][T25785]  ? bpf_jit_dump+0xd0/0xd0
[ 1477.270167][T25785]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[ 1477.275987][T25785]  __warn+0x248/0x2b0
[ 1477.279966][T25785]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[ 1477.286042][T25785]  report_bug+0x1b7/0x2e0
[ 1477.290384][T25785]  handle_bug+0x3a/0x70
[ 1477.294543][T25785]  exc_invalid_op+0x16/0x40
[ 1477.299043][T25785]  asm_exc_invalid_op+0x16/0x20
[ 1477.303887][T25785] RIP: 0010:kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[ 1477.310300][T25785] Code: e8 21 1a af 00 e9 03 e9 ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d5 ed ff ff 4c 89 ff e8 06 1a af 00 e9 c8 ed ff ff e8 5c fb 69 00 <0f> 0b e9 31 fd ff ff 44 89 f9 80 e1 07 38 c1 0f 8c d2 ed ff ff 4c
[ 1477.329901][T25785] RSP: 0018:ffffc9000316fc30 EFLAGS: 00010287
[ 1477.335964][T25785] RAX: ffffffff810f3ab4 RBX: ffff888056b88000 RCX: 0000000000080000
[ 1477.343928][T25785] RDX: ffffc900038f7000 RSI: 0000000000000432 RDI: 0000000000000433
[ 1477.351985][T25785] RBP: 0000000000000000 R08: ffffffff8d89f82f R09: 1ffffffff1b13f05
[ 1477.359976][T25785] R10: dffffc0000000000 R11: fffffbfff1b13f06 R12: ffff88807c2a5001
[ 1477.368202][T25785] R13: 1ffff1100ad7101e R14: ffff888056b880f0 R15: ffff88807c2a5000
[ 1477.376188][T25785]  ? kvm_arch_vcpu_ioctl_run+0x1bc4/0x1f40
[ 1477.381993][T25785]  ? __lock_acquire+0x7d10/0x7d10
[ 1477.387022][T25785]  kvm_vcpu_ioctl+0x8f7/0xc10
[ 1477.391697][T25785]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[ 1477.397337][T25785]  ? bpf_lsm_file_ioctl+0x5/0x10
[ 1477.402274][T25785]  ? security_file_ioctl+0x7c/0xa0
[ 1477.407378][T25785]  ? kvm_clear_stat_per_vcpu+0x1f0/0x1f0
[ 1477.413002][T25785]  __se_sys_ioctl+0xfa/0x170
[ 1477.417600][T25785]  do_syscall_64+0x4c/0xa0
[ 1477.422028][T25785]  ? clear_bhb_loop+0x30/0x80
[ 1477.426717][T25785]  ? clear_bhb_loop+0x30/0x80
[ 1477.431493][T25785]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 1477.437613][T25785] RIP: 0033:0x7f178db80e59
[ 1477.442057][T25785] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[ 1477.462004][T25785] RSP: 002b:00007f178bdda028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[ 1477.470434][T25785] RAX: ffffffffffffffda RBX: 00007f178ddf9fa0 RCX: 00007f178db80e59
[ 1477.478559][T25785] RDX: 0000000000000000 RSI: 000000000000ae80 RDI: 0000000000000006
[ 1477.486800][T25785] RBP: 00007f178dc16d6f R08: 0000000000000000 R09: 0000000000000000
[ 1477.494786][T25785] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1477.502990][T25785] R13: 00007f178ddfa038 R14: 00007f178ddf9fa0 R15: 00007ffe93fe9c58
[ 1477.511224][T25785]  </TASK>
[ 1477.514558][T25785] Kernel Offset: disabled
[ 1477.519114][T25785] Rebooting in 86400 seconds..