last executing test programs:

5m59.061367386s ago: executing program 1 (id=320):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0x25dfdbfd, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x42}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000006880)=@newtfilter={0x38, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r3, {0x4, 0xa}, {}, {0xfff2, 0x2}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8848}, 0x80)
sendmsg$nl_route_sched(r1, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=@gettfilter={0x24, 0x2e, 0x205, 0x70bd2c, 0x25dfdafd, {0x0, 0x0, 0x0, r3, {0xc, 0xc}, {0x0, 0xfff1}, {0x0, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x20000801}, 0x4041080)

5m58.089630331s ago: executing program 1 (id=324):
r0 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r0, 0x1, 0x4000000000000002, &(0x7f0000fee000)=0x3fa, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x22}}}, 0x6a)
listen(r0, 0xfffefffe)
r1 = socket$inet6(0xa, 0x5, 0x0)
setsockopt$sock_int(r1, 0x1, 0x2, &(0x7f00000002c0)=0x3fd, 0x4)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000000000)=0x1fe, 0x4)
bind$inet6(r1, &(0x7f0000000140)={0xa, 0x4e20, 0x0, @ipv4={'\x00', '\xff\xff', @local}}, 0x1c)

5m57.2099708s ago: executing program 1 (id=328):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
bind$vsock_stream(r1, &(0x7f0000000140)={0x28, 0x0, 0x2710}, 0x10)
listen(r1, 0x0)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x2710}, 0x10)
recvmmsg(r2, &(0x7f0000005cc0)=[{{0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000580)=""/48, 0x30}], 0x1}, 0x1}], 0x1, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

5m56.44200495s ago: executing program 1 (id=332):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x22020400)
mount$bind(&(0x7f0000000040)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x89101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f000000ac40)={0x2020}, 0x2020)

5m55.409133172s ago: executing program 1 (id=336):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
syz_mount_image$nilfs2(&(0x7f0000000dc0), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f0000003280)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$eJzs3UtvXNUdAPBzx544LxqHmMZN09glpbiP2CRYpbsaKV2gSqgSnwClgYYa+ghdgIKUsOi2kRAfoIh9F31mgRSxSsWmVb8AYtVNipBoG1UCI9vnjMf/zOjOOLbH4/n9pDtn7v2fe88587hz575OAkZWY+1xcXG6SuntW29dvDcz/r/VKTOtHLNrj+N5bCml1GzNl9JkWN7SxHr62SfXLrWnn+e0ShdSlarW9PTs3da8R1JK19Nsup0m03Mfn7z50gfPLL934saJi2/M3dmZ1gMAwGi596N3f/m3x3947fj/f39mKU20ppft86U8fjRv9y9V6+M5af0PqNrSqm28OBDyjeehEfKNdcjXXk4z5BvvUv6BsNxml3wTNeWPtU3r1G4YZhv/46vG/KbxRmN+fv0/+aoPxw5U869cWX7h6oAqCmy7T2fyLj6DwTByw8qxQa+BANbF44b3uR73LDyY1tLGeyv/7tONzvPDNtjtz7/yh6v8d29Y47B99uunqbSrfI+O5vF4HGE8zNfv978sLx6PaPZYz27HEYbl+EK3eo7tcj22qlv94+div/paTsvrcCbE278/8T0dlvcY6Oye/f8Gw8gOK4NeAQF7VjxvbiUr8XheX4xP1MQP1sQP1cQP18SP1MRhlP3h1d+mm9XG//z4n77f/WFlP9tDOf1Sn/WJ+yP7LT+e99uvBy0/nk8Me9rcf09/+uvbf4/n/38ezv8/m39LJ/MKouwvjPvVW+f+hwuDG13yPRyq81CH/GvPpzbnq6Y2lpPa1jP31WN683zHuuU7vTnfZMh3OG+LHAz1jdsnh8N8ZfujrFfL6zUe2tsM7TgQ6lHemeM5PRjac7xbu8KO7AMhXzMPJ0K7pkK7HgnzfTm0q5re3K64/7zU52SYHo+TlHzhbbvvdym+F/G6jEdz+mZO38np+zn9qEO5o6h8Hrud/18+n9OpWb1wZfnyE3m8fE7vjDUnVqef3+V6Aw+u1+t/ptPm63+OtqY3G+3rhWMb06v29cJkmH6hy/Qn83j5Pfvp2KG16fOXfr78k+1uPIy4q6+9/rPnl5cv/8oTTzzxpPVk0GsmYKctvPryLxauvvb6uSsvP//i5Rcvv3L+ie9/78mnnlpcWNuqX2jftgf2l40f/UHXBAAAAAAAAAAAAOhZdajz5JzW3d+2XE9erk+P18czHMr7Vj4N5T4G5frPbvd1KddvHt+FOrL9duNyokG3Eejs3+7/azCM7LCy4i7+wN4w6P7/yn0PS3r03D+Prw4l292nN68v4/0L4UHs9f7nlL+/+v9r9X/V8/ov9Jg1ubVy/3jv0D/aik2nei0/tr/cB3aqv/L/lMsvrXks9Vb+yu9C+fFGpT36cyj/cI/l39f+01sr/y+5/PKyzZ3ttfz1GleNzfWI+43LfQDjfuPir6H95d5+fbd/ix213crlwygbln4m+zUs/X92U5Zb1oN59dw6Tlfuvx37O+i3/uW+3+V34JGw/Krm903/n8Otrv/P8vlb0P8n7DsfOv5nMIzssLKyMtCuT0a135W9YtCv/6C3IQdd/qBf/zqx/8/4fyn2/xnjsf/PGI/9f8Z47F8rxmP/n/H1jP1/xvjJsNzYP+h0TfwrNfFTNfGv1sRP18Tj/7cYn62Jn6mJz9TEH66JP1oTP1sT/0ZN/LGa+OM18bma+H739ZyOavthlMV+I33/YXSU4z/dvv9TNXFgeMV+neP3+5s1cWB4lfM8fL9hBFWd79gR97eX/bhv5vSdnL6f0492rILshm/l9Ns5/U5Ov5vTczmdz+lCTvUNOdx+869TZ25WG+f5HQvxXs8njdcDxPvEnO+xPvH4XL/ns57ssZydKn+Ll4MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADI3G2uPi4nSV0tu33rr4n6kf/Hh1ykwrx+za43geW0opNVNKVR4fD8u7PrGefvbJtUud0ipdWHss4+nZu615j6zOn2bT7TSZnvv45M2XPnhm+b0TN05cfGPuzs60HgAAAEbDFwEAAP//ManlwQ==")
rename(&(0x7f0000000040)='./file1\x00', &(0x7f0000000180)='./file0/file0\x00')
sendmsg$NFT_BATCH(r0, 0x0, 0x0)
creat(&(0x7f0000000040)='./bus\x00', 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)=@FILEID_UDF_WITH_PARENT={0x14, 0x52, {{0x3, 0x6, 0x7, 0xa}, 0x10001, 0x9}}, &(0x7f0000000000), 0x0)
mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x0)

5m54.691788935s ago: executing program 1 (id=337):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x800, 0xffffffff, 0xbfe00000}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x2, 0x0, 0x300)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000008c0))

5m51.592976245s ago: executing program 32 (id=337):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000240)={0x1, &(0x7f0000000200)=[{0x6, 0xff, 0x7, 0x7fc00002}]})
socket$inet6_mptcp(0xa, 0x1, 0x106)
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000140)={0x0, 0xaee2, 0x800, 0xffffffff, 0xbfe00000}, &(0x7f0000000000)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47f6, 0x0, 0x2, 0x0, 0x300)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f00000008c0))

3m52.318723284s ago: executing program 3 (id=764):
fcntl$dupfd(0xffffffffffffffff, 0x0, 0xffffffffffffffff)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
mq_notify(0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x40}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000400)='locks_get_lock_context\x00', r1}, 0x10)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000600)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x26, &(0x7f0000000000)={0x2, 0x0, 0x7})

3m51.093078844s ago: executing program 3 (id=769):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[], 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r0 = socket(0x2a, 0x2, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r2=>0x0})
sendto$packet(r1, &(0x7f0000000240)="f2435f0100088000000000850800", 0xe, 0x0, &(0x7f0000000200)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @local}, 0x14)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="3c00000013000100000000000000000000000002", @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=r2, @ANYBLOB="1400350064756d6d7930"], 0x3c}}, 0x0)
ioctl$SIOCSIFMTU(r0, 0x8922, &(0x7f0000000080)={'dummy0\x00'})

3m50.029507658s ago: executing program 3 (id=773):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e21, @multicast2}, 0x10)
socket$nl_sock_diag(0x10, 0x3, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r1 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000002000000000000000000082295"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x1e00, 0x21}, 0x94)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendto$inet(r0, &(0x7f00000001c0)="b4979f", 0x3, 0x41, 0x0, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="340000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="8040deff000001000c002b8008000100", @ANYRES32=r1, @ANYBLOB="08001b"], 0x34}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
sendto$inet(r0, &(0x7f0000000000), 0xffffffffffffff94, 0x1000000, 0x0, 0x0)

3m48.642779485s ago: executing program 3 (id=777):
syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x200000, &(0x7f00000000c0)=ANY=[], 0x1, 0x14d3, &(0x7f0000002ac0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1fd)
write(r0, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x3fd, 0x0, 0x0, 0x1, 0x19, "e735af413bb901277fe4d0ce5d299db7aac63a0100000000d445f320710e9caa84a0ea00004121000000ef001d0000200000dcfbe6a300", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000f8ff00000000f0fffffffff2ff00", [0x4]})
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x40, 0x0, 0x0, 0x4)
truncate(&(0x7f0000000040)='./file1\x00', 0x7fff)

3m47.396744818s ago: executing program 3 (id=782):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0xc402, 0x80)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000003bc0)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100000}, 0x94)
write$P9_RVERSION(r0, &(0x7f00000000c0)=ANY=[], 0x13)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000003c0)={r2, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000280)='./file0\x00', &(0x7f0000000040)=[0x5], 0x0, 0x0, 0x1, 0x1}}, 0x40)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

3m46.632789338s ago: executing program 3 (id=785):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0xfffffffe, 0x8}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x68, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff1, 0x4}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34}]}}]}, 0x68}}, 0x0)

3m44.400768511s ago: executing program 33 (id=785):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fdffffff18110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000008"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000200)=@newqdisc={0x48, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0xfffffffe, 0x8}}]}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x68, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff1, 0x4}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x38, 0x2, [@TCA_CGROUP_ACT={0x34}]}}]}, 0x68}}, 0x0)

2m55.632540453s ago: executing program 6 (id=986):
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x4000, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='ramfs\x00', 0x10, 0x0)
syz_mount_image$fuse(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x400a8, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000080)='.\x00', 0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00')
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mount$bind(&(0x7f0000001a40)='./file0\x00', &(0x7f0000000340)='./file0/file0/../file0\x00', 0x0, 0xa1c08, 0x0)
mount$bind(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x10a5840, 0x0)
mount$fuse(0x0, &(0x7f0000000080)='./file0/file0\x00', 0x0, 0x80000, 0x0)

2m54.826920913s ago: executing program 6 (id=989):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000440), 0x0, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002"], &(0x7f0000000040)='GPL\x00', 0xd, 0x0, 0x0, 0x41100, 0x3b, '\x00', 0x0, @fallback=0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = userfaultfd(0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r1, 0xc028aa05, &(0x7f0000000180)={&(0x7f00002b9000/0x400000)=nil, &(0x7f00003ab000/0x2000)=nil, 0x400000, 0x2, 0x2})

2m54.023162334s ago: executing program 6 (id=994):
r0 = gettid()
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ppoll(0x0, 0x0, 0x0, &(0x7f00000000c0)={[0x8001a0ffffffff]}, 0x8)
ioctl$int_in(r1, 0x5452, &(0x7f0000000180)=0xffffffffffffffff)
fcntl$setsig(r1, 0xa, 0x12)
ppoll(&(0x7f0000000100)=[{r2}], 0x1, 0x0, &(0x7f0000000080)={[0x8001a0efffffff]}, 0x8)
dup2(r1, r2)
fcntl$setown(r2, 0x8, r0)
tkill(r0, 0x13)

2m52.662345145s ago: executing program 6 (id=1000):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000000c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0/file0\x00', 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6}]})
socket$inet(0x2, 0x4, 0x2)
close_range(r2, 0xffffffffffffffff, 0x3e00000000000000)

2m51.21878901s ago: executing program 6 (id=1005):
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x220)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
mount$tmpfs(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080), 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'})

2m49.739080681s ago: executing program 6 (id=1010):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x9, 0x6ea, &(0x7f0000000980)="$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")
symlinkat(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x21408, 0x0, 0x1, 0x0, &(0x7f0000006380))
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
creat(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
creat(&(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1fb)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)

2m34.474312006s ago: executing program 34 (id=1010):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000180)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f00000022c0)=ANY=[], 0x9, 0x6ea, &(0x7f0000000980)="$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")
symlinkat(&(0x7f0000000400)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x21408, 0x0, 0x1, 0x0, &(0x7f0000006380))
open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
creat(&(0x7f0000000300)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
creat(&(0x7f0000000500)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1fb)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)

1m27.243443863s ago: executing program 4 (id=1346):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000200))
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000080)=0x200000000)
r1 = dup2(r0, r0)
r2 = syz_io_uring_setup(0x890, &(0x7f0000000140)={0x0, 0xaee2, 0x0, 0x2, 0xbfdffffc}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r2, 0x47f6, 0x0, 0x2, 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x5)

1m26.724861541s ago: executing program 4 (id=1350):
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffcffffff, 0x20031, 0xffffffffffffffff, 0xbe9f5000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x2e8})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000140)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x4})
ioctl$UFFDIO_COPY(r1, 0xc028aa03, &(0x7f0000000080)={&(0x7f00006c6000/0x400000)=nil, &(0x7f000018b000/0x3000)=nil, 0x400000, 0x0, 0x18100})
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)

1m25.107620373s ago: executing program 4 (id=1355):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
clock_gettime(0x0, &(0x7f0000000200)={<r1=>0x0, <r2=>0x0})
timer_settime(0x0, 0x1, &(0x7f0000000280)={{}, {r1, r2+60000000}}, 0x0)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x4, 0x3032, 0xffffffffffffffff, 0x0)
r3 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x60})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f0000638000/0x1000)=nil, 0x6aa000, 0x2000, 0x3, &(0x7f00005c0000/0x2000)=nil)
close(r3)

1m24.026628234s ago: executing program 4 (id=1362):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000040)={'team0\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x4, 0x0, 0x300}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x1c, 0x2, 0x0, 0x1, [@IFLA_BR_STP_STATE={0x8, 0x5, 0x1}, @IFLA_BR_NF_CALL_IP6TABLES={0x5, 0x25, 0x1}, @IFLA_BR_VLAN_STATS_ENABLED={0x5}]}}}, @IFLA_MASTER={0x8, 0xa, r1}]}, 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x8044)
openat(0xffffffffffffff9c, 0x0, 0x40042, 0x1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r5=>0x0})
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r5, 0x3f, 0x40206}, [@IFLA_LINKINFO={0x30, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x20, 0x2, 0x0, 0x1, [@IFLA_BR_MULTI_BOOLOPT={0xc, 0x2e, {0x3, 0x3}}, @IFLA_BR_VLAN_FILTERING={0x5, 0x7, 0x8}, @IFLA_BR_MCAST_SNOOPING={0x5}]}}}]}, 0x50}, 0x1, 0x4000, 0x0, 0x44000}, 0x0)
ioctl$sock_SIOCBRDELBR(r2, 0x89a2, &(0x7f0000000200)='bridge0\x00')

1m23.335676227s ago: executing program 4 (id=1366):
mkdirat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x79)
r0 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x8, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0])
mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000280)='autofs\x00', 0x201000c, &(0x7f0000000040))
chdir(&(0x7f0000000080)='./file0\x00')
setpgid(r0, r0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
setpgid(0x0, r0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='hugetlbfs\x00', 0x16, 0x0)
mount$tmpfs(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x84022, 0x0)

1m22.42838247s ago: executing program 4 (id=1370):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$kcm(0x21, 0x2, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_local\x00', r2, 0x0, 0x80000001}, 0x18)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0xc0)
r3 = io_uring_setup(0x68ac, &(0x7f0000000480)={0x0, 0x10000000, 0x1880, 0x2})
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x8000)
close_range(r3, 0xffffffffffffffff, 0x0)

1m7.038221508s ago: executing program 35 (id=1370):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$kcm(0x21, 0x2, 0x2)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_local\x00', r2, 0x0, 0x80000001}, 0x18)
sendmsg$kcm(r1, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0xc0)
r3 = io_uring_setup(0x68ac, &(0x7f0000000480)={0x0, 0x10000000, 0x1880, 0x2})
r4 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000000040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b57000000860f5878c37ffe36e1165814d435be5b317c6c8189587d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988ab013f40afe403041323110f62055394412158e7a3adb148d641aa40d4ab077fe34232aa8b31851466d0998a61d7da0c86d70000001010"], 0x10b8}, 0x8000)
close_range(r3, 0xffffffffffffffff, 0x0)

7.739600717s ago: executing program 2 (id=1688):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x4e24, 0xfffffffe, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000200)=@gcm_256={{0x304}, "b5d4c27c5c778dd0", "5f128fd81908609c81286d4f6a539024ffb7007ed672afb4be7aec5ca3d27dbf", '\x00', "b690a3fabf2cb970"}, 0x38)
write$binfmt_script(r0, &(0x7f00000003c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000040)=0x1, 0x4)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r0, 0x6, 0x23, &(0x7f00000013c0)={&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0}, &(0x7f0000000140)=0x40)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000380)="ac", 0x1}], 0x1)

7.315481776s ago: executing program 0 (id=1692):
r0 = socket$xdp(0x2c, 0x3, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000, 0x6}, 0x7c)
setsockopt$XDP_UMEM_COMPLETION_RING(r0, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000580)={'batadv_slave_0\x00', <r2=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000140)=0x1, 0x4)
bind$xdp(r0, &(0x7f0000000100)={0x2c, 0x18, r2}, 0x10)
ppoll(&(0x7f0000000000)=[{r0, 0x5002}], 0x1, &(0x7f0000000040)={0x0, 0x989680}, 0x0, 0x0)

7.19114514s ago: executing program 2 (id=1693):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="0700000004000000800000000400000028"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000700000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r1, 0x10e, 0xc, &(0x7f0000000280)={0xfffffffc, 0x0, 0xfffffffe}, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=ANY=[@ANYBLOB="200000001200010a00000000000000000ae5ffff"], 0x26}}, 0x0)
unshare(0x64000600)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0b00000007000000080000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_clone(0x640c7000, 0x0, 0x0, 0x0, 0x0, 0x0)

6.895741673s ago: executing program 8 (id=1694):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r3 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r3, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0x4001, @empty}, 0x10, 0x0}, 0x30006041)
close(r3)

5.926890256s ago: executing program 0 (id=1696):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0xf0, &(0x7f0000000100)={&(0x7f0000000280)=@newlink={0x20, 0x10, 0x401, 0x0, 0x0, {0x0, 0x48, 0x0, r1, 0x21eae}}, 0x20}}, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.events\x00', 0x26e1, 0x0)
close(r2)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0))
ioctl$SIOCSIFHWADDR(r2, 0x8b06, &(0x7f0000000000)={'wlan1\x00', @random="060000000010"})
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

4.955640438s ago: executing program 0 (id=1700):
r0 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r1, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r2 = socket$inet6(0xa, 0x3, 0x1)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000580)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020d000014"], 0xa0}}, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000040)={{{@in6=@remote, @in=@empty, 0x4e24, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x53, 0xfff, 0x0, 0x0, 0x1e2, 0x0, 0x100000004}, {0x0, 0x0, 0x0, 0x1000}, 0x0, 0x0, 0x1}, {{@in=@dev={0xac, 0x14, 0x14, 0x22}, 0x0, 0x3c}, 0x2, @in6=@private2={0xfc, 0x2, '\x00', 0x1}, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xfffffff9}}, 0xe8)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)

4.381674343s ago: executing program 5 (id=1701):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x3, {0x42}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r1, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r2 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r2, &(0x7f00000000c0)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, &(0x7f0000000040)={0x43, 0x1}, 0x10)
bind$tipc(r0, 0x0, 0x0)
close(r0)

4.087151165s ago: executing program 7 (id=1702):
setsockopt$inet6_tcp_TCP_MD5SIG(0xffffffffffffffff, 0x6, 0xe, &(0x7f0000000300)={@in6={{0xa, 0x4e01, 0x9, @empty, 0xa}}, 0x0, 0x0, 0x3d, 0x0, "bb02a3c364ca41d6357e544524474004040b42a21d7214bf92494925608a0e2f964e0000c534a6324d6193fcf19b2df3ee818afaa4ff1f56c54dc46d8b6d2ccd008aa0cc1dc2760400"}, 0xd8)
r0 = socket$kcm(0x23, 0x5, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000240)=0x9, 0x4)
listen(r0, 0x800)
accept4(r0, 0x0, 0x0, 0x80000)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @link_local})
write$tun(r1, &(0x7f0000000380)=ANY=[@ANYBLOB="1c0000f500000000000000862dfdff000000"], 0x78)

3.966871074s ago: executing program 0 (id=1703):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000500)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000077c0)={0x2020, 0x0, <r1=>0x0, <r2=>0x0, <r3=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x207645a}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000009800)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000bc0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000f80)={0xb8, 0x0, 0x48, [{{0x5, 0x1, 0x3, 0x2, 0x9, 0xa, {0x1, 0xfffffffffffffffb, 0x6, 0x5, 0x2, 0x800, 0x6d, 0x1, 0x1, 0xa000, 0x6, r2, r3, 0x4, 0x6}}, {0x4, 0xfffffffffffffc00, 0xc, 0x4, 'dioread_lock'}}]}, 0x0, 0x0, 0x0})
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents64(r4, &(0x7f0000000300)=""/142, 0x8e)
syz_fuse_handle_req(r0, 0x0, 0x0, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3.761581467s ago: executing program 5 (id=1705):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005938d74010973077339600000001090212000100001e000904"], 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000080)={0x44, &(0x7f0000000140)=ANY=[@ANYBLOB="000006"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, &(0x7f0000000440)={0x34, &(0x7f0000000180)=ANY=[@ANYBLOB="400802000000c3dc"], 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, &(0x7f00000005c0)={0x34, &(0x7f0000000380)={0x40, 0x1a, 0x2, "b4c4"}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$printer(r0, 0x0, 0x0)

3.383582924s ago: executing program 0 (id=1706):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r0, 0x29, 0x23, &(0x7f00000004c0)={{{@in=@multicast1, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x4f}}, {{@in6=@mcast2, 0x404d3, 0x2b}, 0x0, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}}, 0xe8)
r1 = socket$key(0xf, 0x3, 0x2)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f00000001c0), 0x4)
sendmsg$key(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=ANY=[@ANYBLOB="020b000102"], 0x10}}, 0x0)
sendmsg$key(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="0212000002"], 0x10}}, 0x0)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x1d, 0x301, 0x0, 0x0, {0xc}}, 0x14}}, 0x0)
close(r0)
socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[], 0xb8}}, 0x0)

3.310532826s ago: executing program 8 (id=1707):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@timestamp, @window={0x3, 0x6, 0x7}, @mss={0x2, 0x7}, @window={0x3, 0x0, 0x4}, @window={0x3, 0x8, 0x6}, @timestamp, @window={0x3, 0xfffe}, @sack_perm], 0x2000000000000061)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000440)='bbr', 0x3)
sendmsg$inet(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000200)='U', 0x1}], 0x1}, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r0, &(0x7f00000004c0)='<', 0x381, 0x805, 0x0, 0x0)

3.296611596s ago: executing program 7 (id=1708):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000200), 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)={0x6c, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x2c, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @initdev={0xac, 0x1e, 0x0, 0x0}}}}, @CTA_TUPLE_ZONE={0x6, 0x3, 0x1, 0x0, 0x1}]}, @CTA_TIMEOUT={0x8}]}, 0x6c}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x44850)
sendmsg$IPCTNL_MSG_CT_GET_DYING(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x6, 0x1, 0x101, 0x0, 0x0, {0x2, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x2404c031}, 0x20000000)

3.236336556s ago: executing program 2 (id=1709):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bind$inet(r0, &(0x7f0000e15000)={0x2, 0x4e20, @multicast1}, 0x10)
listen(r0, 0x0)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f0000356ffc)=0xffffffffffffff40, 0x4)
bind$inet(r1, &(0x7f0000e15000)={0x2, 0x4e20, @multicast1}, 0x10)
listen(r1, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000000)="580000001400192340834b80040d8c560a067fbc45ff810500000000000058000b480400945f6400947e570028925a01000000000000008000f0fffeffe809000000fff5dd0000001000010002081000418e00000004fcff", 0x58}], 0x1)

2.884491326s ago: executing program 8 (id=1710):
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x180)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000002140)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000004180)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0xffffffffffffffff, {0xffffffffffffffff, 0x2, 0x101, 0x0, 0x0, 0x10000000, {0x40, 0xd08, 0x0, 0x100, 0x0, 0x0, 0x7, 0x0, 0x122, 0x6000, 0x10000, 0x0, 0x0, 0x902}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000440)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x0, 0x0, 0x2, 0xfffffffd, 0x2, 0x0, 0x0, 0x0, 0x1}}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
ioctl$TIOCGPTPEER(0xffffffffffffffff, 0x40480923, 0x200000000005)
ioctl$BLKROSET(r2, 0x125d, &(0x7f0000000300)=0x3)

2.768602204s ago: executing program 0 (id=1711):
syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="120100005938d740109730773396000000010902"], 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000002c0)={'erspan0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="5000000010000100"/20, @ANYRES32=r4, @ANYBLOB="fd00000000000000300012800b00010065727370616e000020000280040012000500160002000000060018"], 0x50}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x6b, 0xe)

2.721633466s ago: executing program 5 (id=1712):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x21)
syz_mount_image$fuse(0x0, &(0x7f0000000580)='./bus\x00', 0x100040, 0x0, 0x1, 0x0, 0x0)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f00000004c0)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='./bus\x00', 0x322020, &(0x7f00000008c0)=ANY=[], 0x1, 0x0, 0x0)
r0 = inotify_init1(0x0)
inotify_add_watch(r0, &(0x7f0000000240)='.\x00', 0x80000000)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x143042, 0x0)
pwritev2(r1, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
copy_file_range(r1, &(0x7f0000000000)=0x3ff, r1, 0x0, 0x6, 0x0)

2.646764576s ago: executing program 7 (id=1713):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x2bc, &(0x7f0000000740)={0x0, 0xb1e9, 0x10100, 0x0, 0x100, 0x0, r1}, &(0x7f0000000080)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
pipe2$9p(&(0x7f0000000400)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff}, 0x80800)
vmsplice(r6, &(0x7f0000000040)=[{&(0x7f0000000000)="e3", 0x1}], 0x1, 0x1)
fcntl$setpipe(r5, 0x407, 0x176)
vmsplice(r6, &(0x7f0000000240)=[{&(0x7f0000000a40)='5', 0x1}], 0x1, 0x0)

2.301508718s ago: executing program 2 (id=1714):
mkdir(&(0x7f0000000000)='./file0\x00', 0x2)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x80000000000000}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x0, {0x5, 0x0, 0xa53, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000, 0x0, 0x0, 0x0, 0x10b}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = open(&(0x7f00000001c0)='./file0/file0\x00', 0x2, 0x0)
write$tcp_mem(r2, &(0x7f0000000480)={0xa3cbf97, 0x20, 0x0, 0x20, 0x5}, 0x48)

2.153334372s ago: executing program 8 (id=1715):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x2000c16, &(0x7f0000000280)={[{@usrquota}, {@nodelalloc}]}, 0xff, 0x25e, &(0x7f0000000e80)="$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")
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x4c02})
r3 = openat$cgroup_ro(r1, &(0x7f00000003c0)='pids.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
ioctl$TUNSETVNETHDRSZ(r2, 0x400454d8, &(0x7f0000000100)=0x730)

2.078422381s ago: executing program 5 (id=1716):
close(0x3)
open(0x0, 0x14167e, 0xa0)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5}, 0x48)
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000000)=@newqdisc={0x44, 0x24, 0x2, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0x0, 0x6}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_codel={{0xa}, {0x14, 0x2, [@TCA_CODEL_INTERVAL={0x8, 0x3, 0x7}, @TCA_CODEL_LIMIT={0x8, 0x2, 0x101}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010001fff752b056800080000faff8141", @ANYRES32=0x0, @ANYBLOB="67a9fde500000000280012800a00010076786c616e"], 0x3}}, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="e2", 0x2250)
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe6, 0x0)

1.610453644s ago: executing program 2 (id=1717):
r0 = socket$netlink(0x10, 0x3, 0x10)
r1 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r1, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$sock_int(r1, 0x1, 0x8, &(0x7f0000000000)=0x80, 0x4)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r1, 0x10e, 0x4, &(0x7f0000000180)=0x800, 0x4)
r2 = syz_genetlink_get_family_id$devlink(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_RATE_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000300)={0x34, r2, 0x1, 0x0, 0x25dfdbfb, {0x25}, [@handle=@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x41}, 0x0)
r3 = socket$kcm(0x2, 0x200000000000001, 0x106)
sendmsg$inet(r3, &(0x7f0000000000)={&(0x7f0000000140)={0x2, 0x4001, @empty}, 0x10, 0x0}, 0x30006041)
close(r3)

1.427511799s ago: executing program 7 (id=1718):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)={0xffbfff}, 0x10)
write(0xffffffffffffffff, &(0x7f0000000000)="240000001a005f0214f9f407000904001f0000000002000200000000080004", 0x1f)
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x1004, 0x8000000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0xb3, 0x8d], 0xeeee8000, 0x2010d3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.09482036s ago: executing program 8 (id=1719):
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000300)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x2, 0xa3d8, 0x0, 0x0, 0x8, 0x1, {0x2}})
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x2, @multicast2}, 0x2, 0x0, 0x4}}, 0x2e)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$l2tp(&(0x7f00000000c0), 0xffffffffffffffff)
r4 = syz_genetlink_get_family_id$l2tp(&(0x7f00000008c0), 0xffffffffffffffff)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_SESSION_DELETE(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000005c0)={0x34, r4, 0x1, 0x1070bd2c, 0x4, {0x5}, [@L2TP_ATTR_PW_TYPE={0x6, 0x1, 0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x2}, @L2TP_ATTR_SESSION_ID={0x8}, @L2TP_ATTR_PEER_SESSION_ID={0x8, 0xc, 0xaa8}]}, 0x34}, 0x1, 0x0, 0x0, 0x20008000}, 0x30)
sendmsg$L2TP_CMD_SESSION_GET(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="0100000000000000000006000000140008"], 0x28}}, 0x8000)

860.778911ms ago: executing program 5 (id=1720):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r3 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x8)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r3, 0x0)
write$qrtrtun(r2, &(0x7f0000000240)="e853", 0x2)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r4, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[0x1], 0x0, 0x0, 0x1}}, 0x40)

822.643974ms ago: executing program 7 (id=1721):
statx(0xffffffffffffff9c, 0x0, 0x1000, 0x1, &(0x7f0000000180))
sendmsg$NFT_MSG_GETOBJ_RESET(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r0 = syz_io_uring_setup(0x20ff, &(0x7f0000000300)={0x0, 0x140d, 0x10100, 0x2, 0x3}, &(0x7f0000000280)=<r1=>0x0, &(0x7f0000000540)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB='9'], 0x38}}, 0x4000)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r4, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, r4, 0x0, 0x0, 0x0, 0x0, 0x0, {0x402}})
io_uring_enter(r0, 0x4f8, 0xd9b3, 0x44, 0x0, 0x0)

427.8355ms ago: executing program 8 (id=1722):
syz_usb_connect$cdc_ncm(0x4, 0xd1, &(0x7f0000000040)=ANY=[@ANYBLOB="12011003020000182505a1a44000010203010902bf0002010650000900000000020d00000524060001082400a9b30d240f010a0000000300ff000606241a05001407240a050905580c240c00000000a90c0900030424020204240200042402024424"], 0x0)
syz_mount_image$ext4(&(0x7f0000000340)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000140)={[{@debug}, {@stripe={'stripe', 0x3d, 0x61}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@test_dummy_encryption_v1}, {@nodiscard}, {@nomblk_io_submit}, {@acl}, {@journal_ioprio}, {@resuid}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$eJzs3M1rXOUaAPDnnHy2zb2TXi6X27tpLpdLC+I0raTYIthKxY0LQbdCQzopIdMPkkhNmsVE/wFR14IbQS1KF3bdjYJbN1q3FhdCkdgoiGjkzEeSJjNJ2k5yYvL7wZvzvvOcOe/z5DBzzgszE8CeNZD9SSMORcT5JKJQfzyNiO5qrzeiUttvYX525Jf52ZEkFhdf/jGJJCLuz8+ONI6V1LcH6oPeiPjquST+8ebaeSenZ8aHy+XSRH18bOrS1WOT0zNPjl0avli6WLp8/OTTQyeGTg6eGmpbrb9+d+bWz/994fvKbx/9fuOndz5I4kz01WMr66hX/dgGYmDpf7JSZ0QMt+H4O0FHvZ6VdSadGzwp3eKkAABoKV1xD/evKERHLN+8FeLzr3NNDgAAAGiLxY6IRQAAAGCXS6z/AQAAYJdrfA7g/vzsSKPl+4mE7XXvbET01+pfqLdapDMq1W1vdEXE/vtJrPxaa1J72mMbiIi73576NGvR5HvIW60yFxH/bnb+k2r9/fVvQq+uP42IwTbMP7Bq/Feq/0wb5s+7fgD2pttnaxeytde/dOn+J5pc/zqbXLseRd7Xv8b938Ka+7/l+jta3P+9tMk5rn/43rVWsaz+Z249/0mjZfNn28cq6iHcm4v4T2ez+pOl+pMW9Z/f5ByFP66VWsXyrn/x/Ygj0bz+hmT93yc6NjpWLg3W/jadY+7LoY9bzZ93/dn539+i/o3O/9UHjtT6R31ePXfuZqvYxvWnP3Qnr1R73fVHXh+empo4HtGdvLj28RPr19vYp3GMrP6j/1v/9d+s/uw9oVL/P2SVz9W32fiNVXM+e+P6Z+vVn6398jz/Fx7x/L+1yTn+/8XbR1vFVq5/s5bNfzeprYUBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoCGNiL5I0mJEJNV+mhaLEQci4p+xPy1fmZx6YvTKa5cvZLGI/uhKR8fKpcGIKNTGSTY+Xu0vj0+sGj8VEQcj4t3Cvuq4OHKlfCHv4gEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAFhyICL6IkmLEZFGxEIhTYvFvLMCAAAA2q4/7wQAAACALWf9DwAAALuf9T8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABb7ODh23eSiKic3ldtme56rCvXzICtluadAJCbjrwTAHLTmXcCQG4eco3vdgF2oWSDeG/LSE/bcwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABg5zpy6PadJCIqp/dVW6a7Hutq+ozD25gdsJXSvBMActOxXrBz+/IAtp+XOOxdzdf4wF6SbBDvXd6n8mCkZ8tyAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGDn6au2JC1GRFrtp2mxGPG3iOiPrmR0rFwajIi/R8Q3ha6ebNyTd9IAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC03eT0zPhwuVya0NHRybeT7Iw0ap2835kAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMjD5PTM+HC5XJqYzDsTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIG+T0zPjw+VyaWITnZsPs/OKTt41AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACQnz8DAAD//9b4DfQ=")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'team_slave_1\x00', <r2=>0x0})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000440)={'tunl0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @loopback}}}})
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000000080)={'team0\x00', <r4=>0x0})
r5 = syz_genetlink_get_family_id$team(&(0x7f0000000100), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000024c0)={0x5c, r5, 0x1, 0x0, 0x25dfdbfb, {}, [{{0x8, 0x1, r4}, {0x40, 0x2, 0x0, 0x1, [{0x3c, 0x1, @user_linkup={{{0x24}, {0x5}, {0x4}}, {0x8, 0x6, r2}}}]}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4004}, 0x40000)

285.228342ms ago: executing program 7 (id=1723):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000006ffc)=0x4000000000000200, 0xe50fb6c50bc849c9)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={0x0, 0x24}}, 0x0)
getsockname$packet(r2, &(0x7f0000000380)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000180)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffffffff00f687000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000000c0)=@newqdisc={0x4c, 0x24, 0xe0b, 0x70bd26, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0xfff3, 0xd064db0e491fa98f}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x1c, 0x2, [@TCA_CAKE_MEMORY={0x8, 0xa, 0x842}, @TCA_CAKE_INGRESS={0x8, 0xf, 0x1}, @TCA_CAKE_AUTORATE={0x8, 0x9, 0x3}]}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x4000021}, 0x4044080)
bind$packet(r0, &(0x7f0000000040)={0x11, 0x0, r3, 0x1, 0x0, 0x6, @remote}, 0x14)
sendto$inet6(r0, &(0x7f0000000800)="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", 0xfc13, 0x880, 0x0, 0xfffffffffffffef0)

217.844352ms ago: executing program 2 (id=1724):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = fanotify_init(0x200, 0x0)
fanotify_mark(r1, 0x1, 0x40001019, r0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000080)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
munmap(&(0x7f0000001000/0x3000)=nil, 0x3000)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000800), 0x48080, 0x0)
ioctl$TIOCPKT(r3, 0x5420, &(0x7f00000000c0)=0x1)
ioctl$TCSETS(r3, 0x5402, &(0x7f0000000080)={0x4, 0x0, 0x2, 0xfffffffd, 0x0, "fe94b89fc43c3328eae0cae1f5eba329e6f216"})
read(r1, &(0x7f0000001bc0)=""/4096, 0x1000)
splice(r3, 0x0, r2, 0x0, 0x7ffff000, 0x1)

0s ago: executing program 5 (id=1725):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)="6d89d46205a34100ff2bbe11a5ce7879edaf02afe39ead95913e9c4f8cf31440006769ebdf12cfacae8e8c03f5db079da7d9", 0x32, 0x20004000, 0x0, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000200)={0x0, 0x0, 0xf000, 0x2000, &(0x7f0000f9a000/0x2000)=nil})
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000000)=@x86={0x9, 0x8, 0x6, 0x0, 0x5, 0x6, 0x2, 0x0, 0xb, 0xe8, 0x7, 0xfe, 0x0, 0x8, 0x7, 0xa, 0x80, 0x8, 0x9, '\x00', 0x1, 0x2})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

nge from 0 to 2048
[  312.253156][ T6856] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[  312.391800][ T6863] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  313.693534][ T6874] netlink: 8 bytes leftover after parsing attributes in process `syz.4.306'.
[  313.703156][ T6874] netlink: 8 bytes leftover after parsing attributes in process `syz.4.306'.
[  313.712705][ T6874] netlink: 8 bytes leftover after parsing attributes in process `syz.4.306'.
[  313.821715][ T4142] failed while handling packet from 1:16384
[  314.629906][ T5880] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  314.872669][ T5880] usb 4-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[  314.887691][ T5880] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  314.898424][ T5880] usb 4-1: Product: syz
[  314.902928][ T5880] usb 4-1: Manufacturer: syz
[  314.907943][ T5880] usb 4-1: SerialNumber: syz
[  315.487844][ T5880] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000098. ret = -EPIPE
[  315.506622][ T5880] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to sync IRQ enable register: -EPIPE
[  315.673727][   T30] audit: type=1804 audit(1767678651.242:4): pid=6894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.314" name="/newroot/58/bus/file1" dev="overlay" ino=356 res=1 errno=0
[  316.337321][ T6899] netlink: 24 bytes leftover after parsing attributes in process `syz.2.316'.
[  316.596115][ T5880] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000118. ret = -EPROTO
[  316.609069][ T5880] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[  316.628105][ T5880] lan78xx 4-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[  316.709966][ T5880] lan78xx 4-1:1.0: probe with driver lan78xx failed with error -71
[  316.852598][ T5880] usb 4-1: USB disconnect, device number 2
[  320.470516][ T6941] Bluetooth: MGMT ver 1.23
[  320.640643][ T5880] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  320.851700][ T5880] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  320.863325][ T5880] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  320.873524][ T5880] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  320.886900][ T5880] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  320.896782][ T5880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.994624][ T5880] usb 3-1: config 0 descriptor??
[  321.519165][ T5880] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[  321.726335][ T6382] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.082338][ T6382] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.142033][    C0] plantronics 0003:047F:FFFF.0002: hid_field_extract() called with n (132) > 32! (syz-executor)
[  322.298552][ T6382] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.382972][ T5880] usb 3-1: USB disconnect, device number 6
[  322.443931][ T6382] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  322.962395][ T6382] bridge_slave_1: left allmulticast mode
[  322.974127][ T6382] bridge_slave_1: left promiscuous mode
[  322.980990][ T6382] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.043034][ T6382] bridge_slave_0: left allmulticast mode
[  323.048944][ T6382] bridge_slave_0: left promiscuous mode
[  323.055849][ T6382] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.611265][ T6382] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  323.654222][ T6382] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  323.693357][ T6382] bond0 (unregistering): Released all slaves
[  324.214541][ T6382] hsr_slave_0: left promiscuous mode
[  324.222853][ T6382] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  324.234053][ T6382] batman_adv: batadv0: Removing interface: batadv_slave_0
[  324.272405][ T6382] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  324.280368][ T6382] batman_adv: batadv0: Removing interface: batadv_slave_1
[  324.340033][ T6382] veth1_macvtap: left promiscuous mode
[  324.345815][ T6382] veth0_macvtap: left promiscuous mode
[  324.353729][ T6382] veth1_vlan: left promiscuous mode
[  324.359320][ T6382] veth0_vlan: left promiscuous mode
[  325.593669][ T6976] mkiss: ax0: crc mode is auto.
[  326.390780][ T6981] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  326.397978][ T6981] overlayfs: failed to set xattr on upper
[  326.404338][ T6981] overlayfs: ...falling back to redirect_dir=nofollow.
[  326.411660][ T6981] overlayfs: ...falling back to index=off.
[  326.417730][ T6981] overlayfs: ...falling back to uuid=null.
[  326.470989][ T5093] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  326.520431][ T5093] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  326.530206][ T5093] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  326.564190][ T5093] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  326.579304][ T5093] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  327.027386][ T6991] sctp: [Deprecated]: syz.0.346 (pid 6991) Use of int in max_burst socket option deprecated.
[  327.027386][ T6991] Use struct sctp_assoc_value instead
[  327.783593][ T6998] hsr0: entered promiscuous mode
[  327.816188][ T6998] netlink: 4 bytes leftover after parsing attributes in process `syz.3.347'.
[  327.849860][ T6998] hsr_slave_0: left promiscuous mode
[  328.026367][ T6983] chnl_net:caif_netlink_parms(): no params data found
[  328.729783][ T5800] Bluetooth: hci0: command tx timeout
[  329.124632][ T5800] Bluetooth: hci3: command 0x0406 tx timeout
[  329.132090][ T5800] Bluetooth: hci1: command 0x0406 tx timeout
[  329.135377][ T5802] Bluetooth: hci2: command 0x0406 tx timeout
[  329.140034][ T5800] Bluetooth: hci4: command 0x0406 tx timeout
[  329.388848][ T7022] binder: 7020:7022 ioctl c0306201 800000c0 returned -14
[  330.231488][ T6983] bridge0: port 1(bridge_slave_0) entered blocking state
[  330.243479][ T6983] bridge0: port 1(bridge_slave_0) entered disabled state
[  330.251458][ T6983] bridge_slave_0: entered allmulticast mode
[  330.261446][ T6983] bridge_slave_0: entered promiscuous mode
[  330.382802][ T6983] bridge0: port 2(bridge_slave_1) entered blocking state
[  330.390842][ T6983] bridge0: port 2(bridge_slave_1) entered disabled state
[  330.398625][ T6983] bridge_slave_1: entered allmulticast mode
[  330.408701][ T6983] bridge_slave_1: entered promiscuous mode
[  330.800587][   T51] Bluetooth: hci0: command tx timeout
[  330.906431][ T6983] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  331.003319][ T6983] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  331.478797][ T6983] team0: Port device team_slave_0 added
[  331.491127][ T7046] TCP: request_sock_TCPv6: Possible SYN flooding on port [::]:20002. Sending cookies.
[  331.597245][ T6983] team0: Port device team_slave_1 added
[  332.080191][ T6983] batman_adv: batadv0: Adding interface: batadv_slave_0
[  332.090674][ T6983] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  332.117908][ T6983] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  332.344419][ T6983] batman_adv: batadv0: Adding interface: batadv_slave_1
[  332.351700][ T6983] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  332.378439][ T6983] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  332.882686][   T51] Bluetooth: hci0: command tx timeout
[  333.166574][ T6983] hsr_slave_0: entered promiscuous mode
[  333.179815][ T6983] hsr_slave_1: entered promiscuous mode
[  333.189115][ T6983] debugfs: 'hsr0' already exists in 'hsr'
[  333.195192][ T6983] Cannot create hsr debugfs directory
[  333.913955][ T7071] binder: 7066:7071 ioctl c0306201 80000640 returned -22
[  334.339981][ T7076] netlink: 12 bytes leftover after parsing attributes in process `syz.4.370'.
[  334.969803][   T51] Bluetooth: hci0: command tx timeout
[  335.376418][ T6983] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  335.511346][ T6983] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  335.631782][ T6983] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  335.743313][ T6983] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  336.432267][ T5880] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  336.532534][ T7106] netlink: 'syz.0.378': attribute type 29 has an invalid length.
[  336.636296][ T5880] usb 3-1: Using ep0 maxpacket: 8
[  336.663465][ T5880] usb 3-1: config 0 has no interfaces?
[  336.669770][ T5880] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  336.679088][ T5880] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  336.809754][ T5880] usb 3-1: config 0 descriptor??
[  336.888424][ T7110] netlink: 24 bytes leftover after parsing attributes in process `syz.3.379'.
[  337.218030][ T7102] netlink: 16 bytes leftover after parsing attributes in process `syz.2.377'.
[  337.415219][ T7114] netlink: 8 bytes leftover after parsing attributes in process `syz.3.379'.
[  337.494825][   T11] usb 3-1: USB disconnect, device number 7
[  337.948986][ T6983] 8021q: adding VLAN 0 to HW filter on device bond0
[  338.191630][ T6983] 8021q: adding VLAN 0 to HW filter on device team0
[  338.299477][ T6382] bridge0: port 1(bridge_slave_0) entered blocking state
[  338.307096][ T6382] bridge0: port 1(bridge_slave_0) entered forwarding state
[  338.436796][ T6382] bridge0: port 2(bridge_slave_1) entered blocking state
[  338.444555][ T6382] bridge0: port 2(bridge_slave_1) entered forwarding state
[  339.053069][ T7130] futex_wake_op: syz.2.385 tries to shift op by 32; fix this program
[  339.126747][ T7130] warning: `syz.2.385' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  340.278747][ T7148] netlink: 1900 bytes leftover after parsing attributes in process `syz.2.389'.
[  340.292975][ T7148] netlink: 24 bytes leftover after parsing attributes in process `syz.2.389'.
[  340.704648][ T7144] loop4: detected capacity change from 0 to 4096
[  340.923829][ T7160] netlink: 8 bytes leftover after parsing attributes in process `syz.3.391'.
[  341.243173][ T6983] 8021q: adding VLAN 0 to HW filter on device batadv0
[  343.192968][ T7185] batman_adv: batadv0: Adding interface: dummy0
[  343.199698][ T7185] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  343.225922][ T7185] batman_adv: batadv0: Interface activated: dummy0
[  343.317289][ T7185] batadv0: mtu less than device minimum
[  343.325709][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.339029][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.352501][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.365689][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.378841][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.392054][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.405434][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.418678][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  343.431847][ T7185] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  344.433111][ T6983] veth0_vlan: entered promiscuous mode
[  344.546540][ T6983] veth1_vlan: entered promiscuous mode
[  344.848930][ T7205] netlink: 8 bytes leftover after parsing attributes in process `syz.3.401'.
[  344.936122][ T7205] netlink: 7 bytes leftover after parsing attributes in process `syz.3.401'.
[  344.951130][ T6983] veth0_macvtap: entered promiscuous mode
[  345.014634][ T6983] veth1_macvtap: entered promiscuous mode
[  345.239170][ T6983] batman_adv: batadv0: Interface activated: batadv_slave_0
[  345.389506][ T6983] batman_adv: batadv0: Interface activated: batadv_slave_1
[  345.551477][ T1111] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  345.609881][ T1111] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  345.672456][ T1111] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  345.731660][ T1111] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  345.801957][ T7214] netlink: 20 bytes leftover after parsing attributes in process `syz.4.403'.
[  346.477991][ T7227] loop0: detected capacity change from 0 to 256
[  346.591641][ T7227] exfat: Deprecated parameter 'utf8'
[  346.597421][ T7227] exfat: Deprecated parameter 'namecase'
[  346.604715][ T7227] exfat: Deprecated parameter 'namecase'
[  346.610878][ T7227] exfat: Deprecated parameter 'utf8'
[  346.786348][ T7227] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0x822ffc2e, utbl_chksum : 0xe619d30d)
[  346.800642][ T7227] exFAT-fs (loop0): failed to test first cluster bit of root dir(5)
[  346.998471][   T30] audit: type=1804 audit(1767678682.572:5): pid=7227 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.406" name=2F6E6577726F6F742F38372FE91F7189591E9233614B2F627573 dev="loop0" ino=1048606 res=1 errno=0
[  349.712942][ T7255] input: syz0 as /devices/virtual/input/input7
[  351.044635][ T7262] loop0: detected capacity change from 0 to 8192
[  351.117214][ T7275] loop3: detected capacity change from 0 to 1024
[  351.296170][ T7275] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  351.482762][ T5801] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  351.960076][ T5798] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000e1b1)
[  351.968167][ T5798] FAT-fs (loop0): Filesystem has been set read-only
[  352.226164][ T7286] ip6tnl1: entered promiscuous mode
[  353.124935][ T7296] loop2: detected capacity change from 0 to 256
[  353.220128][ T5426] usb 1-1: new full-speed USB device number 4 using dummy_hcd
[  353.512621][ T5426] usb 1-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f
[  353.522693][ T5426] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  353.531148][ T5426] usb 1-1: Product: syz
[  353.535530][ T5426] usb 1-1: Manufacturer: syz
[  353.540515][ T5426] usb 1-1: SerialNumber: syz
[  353.671459][ T5426] usb 1-1: config 0 descriptor??
[  353.963556][ T7304] fuse: Bad value for 'fd'
[  354.209549][ T5426] airspy 1-1:0.0: Board ID: 00
[  354.214790][ T5426] airspy 1-1:0.0: Firmware version: 
[  354.293807][ T6382] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.302514][ T6382] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  354.671139][ T6384] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  354.679689][ T6384] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  355.373855][ T5426] airspy 1-1:0.0: Registered as swradio24
[  355.380382][ T5426] airspy 1-1:0.0: SDR API is still slightly experimental and functionality changes may follow
[  355.588475][ T5426] usb 1-1: USB disconnect, device number 4
[  356.645371][ T7326] Zero length message leads to an empty skb
[  356.724692][ T7327] netlink: 12 bytes leftover after parsing attributes in process `syz.5.431'.
[  357.794628][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  357.801522][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  361.342723][ T7376] netlink: 28 bytes leftover after parsing attributes in process `syz.4.448'.
[  361.352509][ T7376] netlink: 28 bytes leftover after parsing attributes in process `syz.4.448'.
[  362.608320][   T51] Bluetooth: hci2: Invalid connection link type handle 0x00c9
[  363.190067][ T5426] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  363.435301][ T5426] usb 5-1: config 0 has no interfaces?
[  363.441373][ T5426] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  363.450927][ T5426] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  363.552393][ T5426] usb 5-1: config 0 descriptor??
[  363.585723][   T30] audit: type=1804 audit(1767678699.162:6): pid=7408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.458" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="ramfs" ino=18918 res=1 errno=0
[  363.819647][   T30] audit: type=1804 audit(1767678699.262:7): pid=7408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.458" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="ramfs" ino=18918 res=1 errno=0
[  363.941842][ T5426] usb 5-1: USB disconnect, device number 4
[  366.030488][ T7428] loop4: detected capacity change from 0 to 4096
[  366.187017][ T7442] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  366.550793][ T7451] netlink: 'syz.5.469': attribute type 2 has an invalid length.
[  366.689868][ T7451] loop5: detected capacity change from 0 to 256
[  367.133814][ T7451] FAT-fs (loop5): Directory bread(block 64) failed
[  367.142120][ T7451] FAT-fs (loop5): Directory bread(block 65) failed
[  367.150178][ T7451] FAT-fs (loop5): Directory bread(block 66) failed
[  367.157621][ T7451] FAT-fs (loop5): Directory bread(block 67) failed
[  367.164739][ T7451] FAT-fs (loop5): Directory bread(block 68) failed
[  367.171808][ T7451] FAT-fs (loop5): Directory bread(block 69) failed
[  367.178733][ T7451] FAT-fs (loop5): Directory bread(block 70) failed
[  367.185807][ T7451] FAT-fs (loop5): Directory bread(block 71) failed
[  367.192946][ T7451] FAT-fs (loop5): Directory bread(block 72) failed
[  367.199995][ T7451] FAT-fs (loop5): Directory bread(block 73) failed
[  367.550108][ T7451] FAT-fs (loop5): Filesystem has been set read-only
[  367.562439][   T30] audit: type=1800 audit(1767678703.132:8): pid=7451 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.469" name="cpu.stat" dev="loop5" ino=1048624 res=0 errno=0
[  369.390548][ T7479] netlink: 'syz.3.478': attribute type 4 has an invalid length.
[  369.500791][ T7479] netlink: 'syz.3.478': attribute type 4 has an invalid length.
[  371.668931][ T7505] bond1: option lacp_rate: mode dependency failed, not supported in mode active-backup(1)
[  371.846929][ T7505] bond1 (unregistering): Released all slaves
[  372.340930][   T51] Bluetooth: hci0: unexpected cc 0x042d length: 63 > 7
[  372.604194][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  372.695479][ T7519] netlink: 8 bytes leftover after parsing attributes in process `syz.0.487'.
[  372.705222][ T7519] netlink: 8 bytes leftover after parsing attributes in process `syz.0.487'.
[  374.326192][ T5851] IPVS: starting estimator thread 0...
[  374.424904][ T7540] IPVS: using max 192 ests per chain, 9600 per kthread
[  374.521460][ T7544] binder: 7541:7544 ioctl c0306201 80000540 returned -14
[  374.531766][ T7542] v: renamed from lo (while UP)
[  374.542168][ T7544] binder: 7541:7544 unknown command 0
[  374.547754][ T7544] binder: 7541:7544 ioctl c0306201 80000640 returned -22
[  375.236985][ T7549] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  375.244706][ T7549] overlayfs: failed to set xattr on upper
[  375.253070][ T7549] overlayfs: ...falling back to redirect_dir=nofollow.
[  375.260257][ T7549] overlayfs: ...falling back to index=off.
[  375.266228][ T7549] overlayfs: ...falling back to uuid=null.
[  375.650765][ T7560] netlink: 40 bytes leftover after parsing attributes in process `syz.3.500'.
[  376.399877][   T51] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  376.408691][   T51] Bluetooth: hci0: Injecting HCI hardware error event
[  376.417108][   T51] Bluetooth: hci0: hardware error 0x00
[  378.133332][ T7582] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  378.481494][   T51] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  378.886262][ T7596] netlink: 'syz.0.514': attribute type 4 has an invalid length.
[  378.914450][   T30] audit: type=1800 audit(1767678714.452:9): pid=7591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.513" name="bus" dev="overlay" ino=579 res=0 errno=0
[  379.051263][ T7595] netlink: 'syz.0.514': attribute type 4 has an invalid length.
[  379.206615][ T7598] netlink: 12 bytes leftover after parsing attributes in process `syz.3.516'.
[  379.500887][ T5851] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  379.726092][ T5851] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  379.785550][ T5851] usb 6-1: New USB device found, idVendor=2294, idProduct=425b, bcdDevice=a2.10
[  379.795220][ T5851] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  379.807963][ T5851] usb 6-1: Product: syz
[  379.814019][ T5851] usb 6-1: Manufacturer: syz
[  379.818882][ T5851] usb 6-1: SerialNumber: syz
[  379.908060][ T5851] usb 6-1: config 0 descriptor??
[  379.928627][ T5851] usb 6-1: ucan: probing device on interface #0
[  379.935499][ T5851] usb 6-1: ucan: invalid EP count (0)
[  379.946145][ T5851] usb 6-1: ucan: probe failed; try to update the device firmware
[  380.380918][ T7611] netlink: 4 bytes leftover after parsing attributes in process `syz.4.522'.
[  380.431784][ T5426] usb 6-1: USB disconnect, device number 2
[  381.230411][ T7622] loop4: detected capacity change from 0 to 512
[  381.252723][ T7622] EXT4-fs: Ignoring removed oldalloc option
[  381.267325][ T7622] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  381.281763][ T7622] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  381.420637][ T7622] EXT4-fs error (device loop4): ext4_init_orphan_info:620: comm syz.4.526: orphan file block 0: bad magic
[  381.532894][ T7622] EXT4-fs (loop4): Remounting filesystem read-only
[  381.547833][ T7622] EXT4-fs (loop4): mount failed
[  382.241089][ T7633] cgroup: Unknown subsys name 'cpuset'
[  382.732735][ T7640] erspan0: entered promiscuous mode
[  382.751443][ T7640] netlink: 8 bytes leftover after parsing attributes in process `syz.4.531'.
[  382.911668][ T7643] netlink: 12 bytes leftover after parsing attributes in process `syz.0.533'.
[  383.707697][ T7652] input: syz0 as /devices/virtual/input/input8
[  384.789132][ T7667] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  384.796633][ T7667] overlayfs: failed to set xattr on upper
[  384.802953][ T7667] overlayfs: ...falling back to redirect_dir=nofollow.
[  384.810222][ T7667] overlayfs: ...falling back to index=off.
[  384.816192][ T7667] overlayfs: ...falling back to uuid=null.
[  384.825636][ T7667] overlayfs: ...falling back to xino=off.
[  384.832623][ T7667] overlayfs: conflicting lowerdir path
[  385.415634][ T7674] netlink: 60 bytes leftover after parsing attributes in process `syz.5.545'.
[  385.499934][ T7674] netlink: 8 bytes leftover after parsing attributes in process `syz.5.545'.
[  385.595524][ T7678] netlink: 'syz.2.546': attribute type 13 has an invalid length.
[  387.205410][ T7696] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  387.213073][ T7696] IPv6: NLM_F_CREATE should be set when creating new route
[  387.220832][ T7696] IPv6: NLM_F_CREATE should be set when creating new route
[  387.703484][ T7703] netlink: 4 bytes leftover after parsing attributes in process `syz.0.556'.
[  387.755284][ T7703] netlink: 4 bytes leftover after parsing attributes in process `syz.0.556'.
[  387.821958][ T7704] netlink: 4 bytes leftover after parsing attributes in process `syz.0.556'.
[  389.033703][ T7717] loop3: detected capacity change from 0 to 128
[  389.331579][ T7717] syz.3.559: attempt to access beyond end of device
[  389.331579][ T7717] loop3: rw=2049, sector=145, nr_sectors = 16 limit=128
[  389.384312][ T7717] syz.3.559: attempt to access beyond end of device
[  389.384312][ T7717] loop3: rw=2049, sector=169, nr_sectors = 8 limit=128
[  389.417369][ T7717] syz.3.559: attempt to access beyond end of device
[  389.417369][ T7717] loop3: rw=2049, sector=185, nr_sectors = 8 limit=128
[  389.502501][ T7717] syz.3.559: attempt to access beyond end of device
[  389.502501][ T7717] loop3: rw=2049, sector=201, nr_sectors = 8 limit=128
[  389.517274][ T7717] syz.3.559: attempt to access beyond end of device
[  389.517274][ T7717] loop3: rw=2049, sector=217, nr_sectors = 8 limit=128
[  389.534985][ T7717] syz.3.559: attempt to access beyond end of device
[  389.534985][ T7717] loop3: rw=2049, sector=233, nr_sectors = 8 limit=128
[  389.552083][ T7717] syz.3.559: attempt to access beyond end of device
[  389.552083][ T7717] loop3: rw=2049, sector=249, nr_sectors = 8 limit=128
[  389.580869][ T7717] syz.3.559: attempt to access beyond end of device
[  389.580869][ T7717] loop3: rw=2049, sector=265, nr_sectors = 8 limit=128
[  391.348601][ T7743] tipc: Started in network mode
[  391.353993][ T7743] tipc: Node identity 84e, cluster identity 4711
[  391.360971][ T7743] tipc: Node number set to 2126
[  392.870818][ T7758] loop4: detected capacity change from 0 to 128
[  393.005961][ T7758] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  393.048996][ T7758] ext4 filesystem being mounted at /117/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  393.138017][ T7758] syz.4.578 (pid 7758) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  393.237090][ T7758] EXT4-fs (loop4): shut down requested (2)
[  393.287402][ T7758] fscrypt (loop4, inode 12): Error -5 getting encryption context
[  393.362246][ T7765] Bluetooth: MGMT ver 1.23
[  393.598874][ T7769] netlink: 4 bytes leftover after parsing attributes in process `syz.0.582'.
[  393.613181][ T7769] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  393.685815][ T5809] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  393.770143][ T7769] batman_adv: batadv0: Removing interface: batadv_slave_1
[  394.519630][   T51] Bluetooth: hci4: unexpected event 0x03 length: 1 < 11
[  396.952722][ T7805] 8021q: adding VLAN 0 to HW filter on device bond1
[  396.968642][ T7805] bond0: (slave bond1): Enslaving as an active interface with an up link
[  397.083325][ T7809] netlink: 14 bytes leftover after parsing attributes in process `syz.4.596'.
[  397.293503][ T7809] bond0 (unregistering): (slave bond1): Releasing backup interface
[  397.365816][ T7809] bond0 (unregistering): Released all slaves
[  397.753101][ T7815] loop0: detected capacity change from 0 to 512
[  397.821494][ T7815] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  397.834910][ T7815] EXT4-fs (loop0): blocks per group (42) and clusters per group (32768) inconsistent
[  399.775571][   T30] audit: type=1800 audit(1767678735.352:10): pid=7827 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.604" name="/" dev="fuse" ino=1 res=0 errno=0
[  400.113911][ T5426] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  400.367426][ T5426] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  400.377198][ T5426] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  400.388881][ T5426] usb 5-1: Product: syz
[  400.394285][ T5426] usb 5-1: Manufacturer: syz
[  400.399235][ T5426] usb 5-1: SerialNumber: syz
[  400.494473][ T5426] usb 5-1: config 0 descriptor??
[  400.536645][ T5426] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  400.686508][ T7833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.607'.
[  400.700432][ T7833] netlink: 8 bytes leftover after parsing attributes in process `syz.3.607'.
[  401.956301][ T7844] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[  401.966418][ T7844] block device autoloading is deprecated and will be removed.
[  402.515256][ T5426] gspca_stk1135: reg_w 0x200 err -71
[  402.525857][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.533188][ T5426] gspca_stk1135: Sensor write failed
[  402.538730][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.550297][ T5426] gspca_stk1135: Sensor write failed
[  402.555867][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.566826][ T5426] gspca_stk1135: Sensor read failed
[  402.572952][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.579715][ T5426] gspca_stk1135: Sensor read failed
[  402.585082][ T5426] gspca_stk1135: Detected sensor type unknown (0x0)
[  402.592805][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.599613][ T5426] gspca_stk1135: Sensor read failed
[  402.605145][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.611907][ T5426] gspca_stk1135: Sensor read failed
[  402.617352][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.624336][ T5426] gspca_stk1135: Sensor write failed
[  402.629996][ T5426] gspca_stk1135: serial bus timeout: status=0x00
[  402.642014][ T5426] gspca_stk1135: Sensor write failed
[  402.647853][ T5426] stk1135 5-1:0.0: probe with driver stk1135 failed with error -71
[  402.912004][ T5426] usb 5-1: USB disconnect, device number 5
[  403.665237][ T7849] netlink: 4 bytes leftover after parsing attributes in process `syz.0.612'.
[  403.916848][   T30] audit: type=1804 audit(1767678739.482:11): pid=7853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.613" name="/newroot/125/file0" dev="tmpfs" ino=698 res=1 errno=0
[  404.309557][ T7858] netlink: 24 bytes leftover after parsing attributes in process `syz.0.616'.
[  406.514730][ T7885] loop4: detected capacity change from 0 to 256
[  406.588298][ T7885] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  406.855015][ T5426] libceph: connect (1)[c::]:6789 error -101
[  406.861834][ T5426] libceph: mon0 (1)[c::]:6789 connect error
[  406.906102][ T7885] FAT-fs (loop4): Directory bread(block 64) failed
[  406.913230][ T7885] FAT-fs (loop4): Directory bread(block 65) failed
[  406.913377][ T7888] ceph: No mds server is up or the cluster is laggy
[  406.920478][ T7885] FAT-fs (loop4): Directory bread(block 66) failed
[  406.920595][ T7885] FAT-fs (loop4): Directory bread(block 67) failed
[  406.920850][ T7885] FAT-fs (loop4): Directory bread(block 68) failed
[  406.920959][ T7885] FAT-fs (loop4): Directory bread(block 69) failed
[  406.921327][ T7885] FAT-fs (loop4): Directory bread(block 70) failed
[  406.967255][ T7885] FAT-fs (loop4): Directory bread(block 71) failed
[  406.974468][ T7885] FAT-fs (loop4): Directory bread(block 72) failed
[  406.981581][ T7885] FAT-fs (loop4): Directory bread(block 73) failed
[  407.291563][ T7879] loop3: detected capacity change from 0 to 4096
[  408.452275][ T7904] 8021q: adding VLAN 0 to HW filter on device bond0
[  408.563999][ T7904] team0: Failed to send port change of device bond0 via netlink (err -105)
[  408.581631][ T7904] team0: Failed to send options change via netlink (err -105)
[  408.589582][ T7904] team0: Port device bond0 added
[  408.602145][ T6380] team0: Failed to send port change of device bond0 via netlink (err -105)
[  409.244777][ T7913] netlink: 8 bytes leftover after parsing attributes in process `syz.3.633'.
[  409.545468][ T7916] hsr0: entered promiscuous mode
[  409.606745][ T7916] netlink: 4 bytes leftover after parsing attributes in process `syz.2.632'.
[  409.641588][ T7916] hsr_slave_0: left promiscuous mode
[  409.693880][ T7916] hsr_slave_1: left promiscuous mode
[  410.311351][ T7929] netlink: 12 bytes leftover after parsing attributes in process `syz.5.638'.
[  411.090864][ T5426] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  411.256670][ T7939] 8021q: adding VLAN 0 to HW filter on device bond1
[  411.272561][ T7939] bond0: (slave bond1): Enslaving as an active interface with an up link
[  411.303212][ T7943] netlink: 14 bytes leftover after parsing attributes in process `syz.2.643'.
[  411.325366][ T5426] usb 4-1: Using ep0 maxpacket: 32
[  411.383839][ T7943] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  411.426539][ T7943] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  411.461292][ T5426] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  411.472757][ T5426] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  411.483070][ T5426] usb 4-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  411.492593][ T5426] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  411.533130][ T7943] bond0 (unregistering): (slave bond1): Releasing backup interface
[  411.585345][ T7943] bond0 (unregistering): Released all slaves
[  411.706589][ T5426] usb 4-1: config 0 descriptor??
[  412.158041][ T5426] ft260 0003:0403:6030.0003: unknown main item tag 0x0
[  412.171744][ T5426] ft260 0003:0403:6030.0003: unknown main item tag 0x0
[  412.347211][ T5426] ft260 0003:0403:6030.0003: chip code: 6424 8183
[  412.573498][ T5426] ft260 0003:0403:6030.0003: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.3-1/input0
[  412.760479][ T5426] ft260 0003:0403:6030.0003: failed to retrieve status: -32, no wakeup
[  412.968798][   T51] Bluetooth: hci3: unexpected subevent 0x1a length: 10 > 6
[  412.995573][ T7936] ft260 0003:0403:6030.0003: ft260_i2c_read: failed with -38
[  413.083953][   T42] usb 4-1: USB disconnect, device number 3
[  413.909943][ T7964] overlayfs: failed to clone lowerpath
[  414.484879][ T7977] netlink: 4 bytes leftover after parsing attributes in process `syz.2.656'.
[  414.646304][ T7979] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  414.653904][ T7979] IPv6: NLM_F_CREATE should be set when creating new route
[  414.777673][ T7977] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  414.785417][ T7977] IPv6: NLM_F_CREATE should be set when creating new route
[  415.861163][ T7999] Illegal XDP return value 4294967274 on prog  (id 96) dev syz_tun, expect packet loss!
[  417.716120][ T8021] bridge_slave_0: left allmulticast mode
[  417.722276][ T8021] bridge_slave_0: left promiscuous mode
[  417.729062][ T8021] bridge0: port 1(bridge_slave_0) entered disabled state
[  417.826583][ T8021] bridge_slave_1: left allmulticast mode
[  417.832943][ T8021] bridge_slave_1: left promiscuous mode
[  417.840021][ T8021] bridge0: port 2(bridge_slave_1) entered disabled state
[  418.044431][ T8021] bond0: (slave bond_slave_0): Releasing backup interface
[  418.197313][ T8021] bond0: (slave bond_slave_1): Releasing backup interface
[  419.219269][ T8021] team0: Port device team_slave_0 removed
[  419.253003][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  419.260322][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  419.707400][ T8021] team0: Port device team_slave_1 removed
[  419.718789][ T8021] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  419.726637][ T8021] batman_adv: batadv0: Removing interface: batadv_slave_0
[  419.833984][ T8021] net_ratelimit: 10 callbacks suppressed
[  419.834073][ T8021] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  420.267694][ T8039] netlink: 12 bytes leftover after parsing attributes in process `syz.4.678'.
[  420.317811][ T8039] netlink: 'syz.4.678': attribute type 2 has an invalid length.
[  421.524805][ T8045] loop3: detected capacity change from 0 to 1024
[  421.789749][   T42] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  422.009698][   T42] usb 5-1: Using ep0 maxpacket: 32
[  422.050515][   T42] usb 5-1: config 0 has an invalid interface number: 12 but max is 0
[  422.059283][   T42] usb 5-1: config 0 has no interface number 0
[  422.066000][   T42] usb 5-1: config 0 interface 12 has no altsetting 0
[  422.140609][   T42] usb 5-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  422.150262][   T42] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  422.158498][   T42] usb 5-1: Product: syz
[  422.163508][   T42] usb 5-1: Manufacturer: syz
[  422.168364][   T42] usb 5-1: SerialNumber: syz
[  422.306517][   T42] usb 5-1: config 0 descriptor??
[  422.341505][   T42] f81534 5-1:0.12: required endpoints missing
[  422.611813][ T5880] usb 5-1: USB disconnect, device number 6
[  423.097578][ T8059] netlink: 'syz.5.685': attribute type 1 has an invalid length.
[  423.206077][ T8059] 8021q: adding VLAN 0 to HW filter on device bond1
[  423.387573][ T8059] bond1: (slave veth0_to_bond): making interface the new active one
[  423.403264][ T8059] bond1: (slave veth0_to_bond): Enslaving as an active interface with an up link
[  423.552533][ T8059] bond1: entered promiscuous mode
[  423.558024][ T8059] veth0_to_bond: entered promiscuous mode
[  423.565372][ T8059] bond1: entered allmulticast mode
[  423.570934][ T8059] veth0_to_bond: entered allmulticast mode
[  423.720750][ T8062] netlink: 24 bytes leftover after parsing attributes in process `syz.3.686'.
[  424.299801][   T42] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  424.390088][ T8071] tipc: Failed to remove unknown binding: 66,1,1/2126:1644028400/1644028402
[  424.464070][ T8071] tipc: Failed to remove unknown binding: 66,1,1/2126:1644028400/1644028402
[  424.473520][ T8071] tipc: Failed to remove unknown binding: 66,1,1/2126:1644028400/1644028402
[  424.542562][   T42] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc
[  424.555471][   T42] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  424.565006][   T42] usb 5-1: Product: syz
[  424.569512][   T42] usb 5-1: Manufacturer: syz
[  424.574317][   T42] usb 5-1: SerialNumber: syz
[  424.620505][   T42] usb 5-1: config 0 descriptor??
[  424.667708][   T42] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 007
[  425.122038][   T42]  (null): failure reading functionality
[  425.147856][   T42] i2c i2c-1: failure reading functionality
[  425.186304][   T42] i2c i2c-1: connected i2c-tiny-usb device
[  425.508530][   T42] usb 5-1: USB disconnect, device number 7
[  425.515890][ T8079] i2c i2c-1: failure writing data
[  426.332161][ T8084] netlink: 156 bytes leftover after parsing attributes in process `syz.3.695'.
[  427.064549][ T8090] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  427.670910][ T5880] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  427.915772][ T5880] usb 6-1: Using ep0 maxpacket: 32
[  427.972661][ T5880] usb 6-1: config 0 has an invalid interface number: 12 but max is 0
[  427.981162][ T5880] usb 6-1: config 0 has no interface number 0
[  427.987471][ T5880] usb 6-1: config 0 interface 12 has no altsetting 0
[  428.287528][ T5880] usb 6-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  428.297160][ T5880] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  428.305686][ T5880] usb 6-1: Product: syz
[  428.310364][ T5880] usb 6-1: Manufacturer: syz
[  428.315165][ T5880] usb 6-1: SerialNumber: syz
[  428.842710][ T5880] usb 6-1: config 0 descriptor??
[  428.933226][ T5880] f81534 6-1:0.12: required endpoints missing
[  429.538718][   T24] usb 6-1: USB disconnect, device number 3
[  429.705530][   T30] audit: type=1326 audit(1767678765.272:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d539 code=0x7ffc0000
[  429.728888][   T30] audit: type=1326 audit(1767678765.282:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d539 code=0x7ffc0000
[  429.882981][   T30] audit: type=1326 audit(1767678765.352:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=265 compat=1 ip=0xf707d539 code=0x7ffc0000
[  429.905906][   T30] audit: type=1326 audit(1767678765.352:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d539 code=0x7ffc0000
[  429.928700][   T30] audit: type=1326 audit(1767678765.362:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=370 compat=1 ip=0xf707d539 code=0x7ffc0000
[  429.951390][   T30] audit: type=1326 audit(1767678765.362:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d539 code=0x7ffc0000
[  429.973877][   T30] audit: type=1326 audit(1767678765.362:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707d539 code=0x7ffc0000
[  429.999806][   T30] audit: type=1326 audit(1767678765.362:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d539 code=0x7ffc0000
[  430.023682][   T30] audit: type=1326 audit(1767678765.372:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf707d539 code=0x7ffc0000
[  430.046099][   T30] audit: type=1326 audit(1767678765.382:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.4.704" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf707d539 code=0x7ffc0000
[  430.906304][ T8120] netlink: 'syz.5.709': attribute type 1 has an invalid length.
[  431.035147][ T8120] 8021q: adding VLAN 0 to HW filter on device bond2
[  431.167395][ T8126] macvlan2: entered promiscuous mode
[  431.173202][ T8126] macvlan2: entered allmulticast mode
[  431.184644][ T8126] bond2: entered promiscuous mode
[  431.193064][ T8126] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  431.313835][ T8126] bond2: left promiscuous mode
[  431.814343][ T8129] netlink: 8 bytes leftover after parsing attributes in process `syz.2.712'.
[  431.827420][ T8129] netlink: 8 bytes leftover after parsing attributes in process `syz.2.712'.
[  432.088204][ T8131] syzkaller0: entered promiscuous mode
[  432.094309][ T8131] syzkaller0: entered allmulticast mode
[  432.695670][ T8142] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  433.674755][ T8149] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.684819][ T8149] bridge0: port 1(bridge_slave_0) entered disabled state
[  433.951152][ T8149] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  433.983581][ T8149] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  434.980460][ T6380] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  435.038233][   T58] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  435.101834][   T58] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  435.149696][   T58] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  435.262226][ T8163] netlink: 8 bytes leftover after parsing attributes in process `syz.0.726'.
[  435.762530][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  435.762607][   T30] audit: type=1326 audit(1767678771.342:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.5.729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  435.869623][   T30] audit: type=1326 audit(1767678771.402:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8169 comm="syz.5.729" exe="/root/syz-executor" sig=0 arch=40000003 syscall=29 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  436.513100][ T8176] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  438.100080][   T30] audit: type=1326 audit(1767678773.672:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  438.122705][   T30] audit: type=1326 audit(1767678773.672:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  438.273160][   T30] audit: type=1326 audit(1767678773.762:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=54 compat=1 ip=0xf706d539 code=0x7ffc0000
[  438.296236][   T30] audit: type=1326 audit(1767678773.762:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  438.318878][   T30] audit: type=1326 audit(1767678773.772:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=358 compat=1 ip=0xf706d539 code=0x7ffc0000
[  438.341919][   T30] audit: type=1326 audit(1767678773.772:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  438.366452][   T30] audit: type=1326 audit(1767678773.782:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=219 compat=1 ip=0xf706d539 code=0x7ffc0000
[  438.390875][   T30] audit: type=1326 audit(1767678773.792:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8197 comm="syz.3.739" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  439.525294][ T8210] kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  441.367421][ T8233] loop5: detected capacity change from 0 to 128
[  441.554597][ T8233] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  441.670650][ T8233] ext4 filesystem being mounted at /62/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  442.073843][ T6983] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  442.768056][ T8249] bridge_slave_0: left allmulticast mode
[  442.774152][ T8249] bridge_slave_0: left promiscuous mode
[  442.785227][ T8249] bridge0: port 1(bridge_slave_0) entered disabled state
[  442.902812][ T8249] bridge_slave_1: left allmulticast mode
[  442.908849][ T8249] bridge_slave_1: left promiscuous mode
[  442.919456][ T8249] bridge0: port 2(bridge_slave_1) entered disabled state
[  443.165193][ T8249] team0: Port device team_slave_0 removed
[  443.225489][ T8249] team0: Port device team_slave_1 removed
[  443.236682][ T8249] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  443.244652][ T8249] batman_adv: batadv0: Removing interface: batadv_slave_0
[  443.407691][ T8249] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  443.417051][ T8249] batman_adv: batadv0: Removing interface: batadv_slave_1
[  444.363851][ T8263] netlink: 24 bytes leftover after parsing attributes in process `syz.2.763'.
[  444.548600][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  444.548678][   T30] audit: type=1326 audit(1767678780.122:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.650009][ T8263] netlink: 4 bytes leftover after parsing attributes in process `syz.2.763'.
[  444.669975][   T30] audit: type=1326 audit(1767678780.172:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.693022][   T30] audit: type=1326 audit(1767678780.192:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=281 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.715718][   T30] audit: type=1326 audit(1767678780.192:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.740269][   T30] audit: type=1326 audit(1767678780.222:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.763192][   T30] audit: type=1326 audit(1767678780.222:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.785468][   T30] audit: type=1326 audit(1767678780.322:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.809550][   T30] audit: type=1326 audit(1767678780.322:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.832832][   T30] audit: type=1326 audit(1767678780.322:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706d539 code=0x7ffc0000
[  444.858782][   T30] audit: type=1326 audit(1767678780.362:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8264 comm="syz.3.764" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf706d539 code=0x7ffc0000
[  445.158490][ T8269] netlink: 4 bytes leftover after parsing attributes in process `syz.4.765'.
[  445.252400][ T8271] netlink: 12 bytes leftover after parsing attributes in process `syz.4.765'.
[  445.758015][ T8274] batman_adv: batadv0: Adding interface: dummy0
[  445.764994][ T8274] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  445.790934][ T8274] batman_adv: batadv0: Interface activated: dummy0
[  445.832203][ T8276] batadv0: mtu less than device minimum
[  445.840736][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.853925][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.866925][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.880213][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.893290][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.906743][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.919860][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.932886][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  445.946034][ T8276] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  446.963794][ T8287] loop4: detected capacity change from 0 to 512
[  447.101944][ T8287] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  447.314591][ T8287] EXT4-fs (loop4): too many log groups per flexible block group
[  447.323481][ T8287] EXT4-fs (loop4): failed to initialize mballoc (-12)
[  447.377935][ T8287] EXT4-fs (loop4): mount failed
[  448.232337][ T8300] loop3: detected capacity change from 0 to 256
[  448.611116][ T8300] loop3: detected capacity change from 256 to 0
[  448.661636][ T8302] exFAT-fs (loop3): error, failed to access to FAT (entry 0x00000008, err:-5)
[  448.670940][ T8302] exFAT-fs (loop3): Filesystem has been set read-only
[  451.832118][   T12] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  451.919626][ T6380] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  451.928859][ T6380] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  451.939124][ T6380] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  452.945191][ T8333] overlayfs: failed to resolve './cgroup': -2
[  453.041013][ T5093] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  453.129030][ T5093] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  453.140027][ T5093] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  453.156089][ T5093] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  453.173484][ T5093] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  454.593017][ T4142] Bluetooth: hci5: Frame reassembly failed (-84)
[  454.640733][ T8338] chnl_net:caif_netlink_parms(): no params data found
[  454.771929][ T8354] bridge0: port 1(syz_tun) entered blocking state
[  454.779031][ T8354] bridge0: port 1(syz_tun) entered disabled state
[  454.786340][ T8354] syz_tun: entered allmulticast mode
[  454.795608][ T8354] syz_tun: entered promiscuous mode
[  454.814747][ T5093] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[  454.824941][ T5093] CPU: 1 UID: 0 PID: 5093 Comm: kworker/u9:1 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  454.825123][ T5093] Tainted: [W]=WARN
[  454.825173][ T5093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  454.825304][ T5093] Workqueue: hci4 hci_rx_work
[  454.825507][ T5093] Call Trace:
[  454.825566][ T5093]  <TASK>
[  454.825616][ T5093]  __dump_stack+0x26/0x30
[  454.825784][ T5093]  dump_stack_lvl+0x14c/0x1c0
[  454.825956][ T5093]  dump_stack+0x1e/0x25
[  454.826104][ T5093]  sysfs_create_dir_ns+0x46c/0x540
[  454.826233][ T5093]  kobject_add_internal+0xf0f/0x1870
[  454.826358][ T5093]  kobject_add+0x2c1/0x410
[  454.826472][ T5093]  ? kmsan_get_metadata+0xfb/0x160
[  454.826610][ T5093]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  454.826755][ T5093]  device_add+0xa70/0x1c10
[  454.826880][ T5093]  hci_conn_add_sysfs+0x15f/0x2f0
[  454.827007][ T5093]  le_conn_complete_evt+0x1d03/0x2240
[  454.827139][ T5093]  hci_le_enh_conn_complete_evt+0x158/0x260
[  454.827306][ T5093]  hci_le_meta_evt+0x6eb/0x960
[  454.827442][ T5093]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  454.827615][ T5093]  hci_event_packet+0xce2/0x1e40
[  454.827738][ T5093]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  454.827925][ T5093]  hci_rx_work+0x8c3/0xfc0
[  454.828068][ T5093]  ? kmsan_get_metadata+0xfb/0x160
[  454.828203][ T5093]  ? __pfx_hci_rx_work+0x10/0x10
[  454.828332][ T5093]  process_scheduled_works+0xb91/0x1d80
[  454.828524][ T5093]  worker_thread+0xedf/0x1590
[  454.828642][ T5093]  kthread+0xd5c/0xf00
[  454.828738][ T5093]  ? __pfx_worker_thread+0x10/0x10
[  454.828848][ T5093]  ? __pfx_kthread+0x10/0x10
[  454.828948][ T5093]  ret_from_fork+0x208/0x710
[  454.829079][ T5093]  ? __switch_to+0x53d/0x790
[  454.829190][ T5093]  ? __pfx_kthread+0x10/0x10
[  454.829334][ T5093]  ret_from_fork_asm+0x1a/0x30
[  454.829554][ T5093]  </TASK>
[  455.012808][ T5093] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  455.030026][ T5093] Bluetooth: hci4: failed to register connection device
[  455.280653][ T7017] Bluetooth: hci2: command tx timeout
[  455.672452][ T8338] bridge0: port 1(bridge_slave_0) entered blocking state
[  455.683766][ T8338] bridge0: port 1(bridge_slave_0) entered disabled state
[  455.694140][ T8338] bridge_slave_0: entered allmulticast mode
[  455.704111][ T8338] bridge_slave_0: entered promiscuous mode
[  455.733429][ T8338] bridge0: port 2(bridge_slave_1) entered blocking state
[  455.741328][ T8338] bridge0: port 2(bridge_slave_1) entered disabled state
[  455.749154][ T8338] bridge_slave_1: entered allmulticast mode
[  455.759736][ T8338] bridge_slave_1: entered promiscuous mode
[  456.056916][ T8338] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  456.138609][ T8338] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  456.245720][ T8371] overlayfs: failed to clone upperpath
[  456.347439][ T8338] team0: Port device team_slave_0 added
[  456.382897][ T8338] team0: Port device team_slave_1 added
[  456.621273][ T8338] batman_adv: batadv0: Adding interface: batadv_slave_0
[  456.628569][ T8338] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  456.655157][ T8338] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  456.655199][ T7017] Bluetooth: hci5: command 0x1003 tx timeout
[  456.655578][   T51] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  456.684105][ T8338] batman_adv: batadv0: Adding interface: batadv_slave_1
[  456.692861][ T8338] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  456.721264][ T8338] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  457.169759][ T8338] hsr_slave_0: entered promiscuous mode
[  457.180586][ T8338] hsr_slave_1: entered promiscuous mode
[  457.190140][ T8338] debugfs: 'hsr0' already exists in 'hsr'
[  457.196079][ T8338] Cannot create hsr debugfs directory
[  457.374096][   T51] Bluetooth: hci2: command tx timeout
[  457.453761][ T8377] 9pnet: p9_errstr2errno: server reported unknown error 000000000
[  458.324830][ T8388] netlink: 156 bytes leftover after parsing attributes in process `syz.5.813'.
[  458.367206][ T8387] netlink: 4 bytes leftover after parsing attributes in process `syz.4.812'.
[  458.384548][ T8394] netlink: 12 bytes leftover after parsing attributes in process `syz.5.813'.
[  458.479038][ T8387] netlink: 44 bytes leftover after parsing attributes in process `syz.4.812'.
[  458.727676][ T8338] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  458.828766][ T8338] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  458.883001][ T8338] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  458.930607][ T8338] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  458.960922][ T8398] fuse: Bad value for 'fd'
[  459.440306][   T51] Bluetooth: hci2: command tx timeout
[  459.771460][ T8338] 8021q: adding VLAN 0 to HW filter on device bond0
[  459.982416][ T8338] 8021q: adding VLAN 0 to HW filter on device team0
[  460.078807][   T58] bridge0: port 1(bridge_slave_0) entered blocking state
[  460.086527][   T58] bridge0: port 1(bridge_slave_0) entered forwarding state
[  460.204340][   T58] bridge0: port 2(bridge_slave_1) entered blocking state
[  460.212022][   T58] bridge0: port 2(bridge_slave_1) entered forwarding state
[  461.521597][   T51] Bluetooth: hci2: command tx timeout
[  462.053985][ T8338] 8021q: adding VLAN 0 to HW filter on device batadv0
[  462.370673][ T8441] netlink: 96 bytes leftover after parsing attributes in process `syz.0.830'.
[  463.500928][ T8455] bridge0: port 1(syz_tun) entered blocking state
[  463.507853][ T8455] bridge0: port 1(syz_tun) entered disabled state
[  463.518894][ T8455] syz_tun: entered allmulticast mode
[  463.533643][ T8455] syz_tun: entered promiscuous mode
[  464.331298][ T8338] veth0_vlan: entered promiscuous mode
[  464.473178][ T8338] veth1_vlan: entered promiscuous mode
[  464.888012][ T8338] veth0_macvtap: entered promiscuous mode
[  464.980585][ T8338] veth1_macvtap: entered promiscuous mode
[  465.136610][ T8338] batman_adv: batadv0: Interface activated: batadv_slave_0
[  465.251882][ T8338] batman_adv: batadv0: Interface activated: batadv_slave_1
[  465.371873][ T6382] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  465.395873][ T6382] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  465.468068][ T6380] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  465.561827][ T6382] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  467.827481][ T8501] bridge0: port 3(syz_tun) entered blocking state
[  467.834824][ T8501] bridge0: port 3(syz_tun) entered disabled state
[  467.842450][ T8501] syz_tun: entered allmulticast mode
[  467.851632][ T8501] syz_tun: entered promiscuous mode
[  470.227436][ T8539] netlink: 4 bytes leftover after parsing attributes in process `syz.2.861'.
[  471.171578][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  471.180568][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  471.333021][ T6384] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  471.341493][ T6384] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  473.209016][ T8578] netlink: 'syz.5.871': attribute type 15 has an invalid length.
[  473.217310][ T8578] netlink: 24 bytes leftover after parsing attributes in process `syz.5.871'.
[  473.674857][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.873'.
[  473.749633][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.873'.
[  473.823957][ T8584] netlink: 4 bytes leftover after parsing attributes in process `syz.0.873'.
[  476.587038][ T8614] net_ratelimit: 11 callbacks suppressed
[  476.587122][ T8614] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  476.776698][ T8615] loop5: detected capacity change from 0 to 512
[  476.924463][    C1] IPv4: Oversized IP packet from 172.20.20.170
[  476.935964][ T8615] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  477.000524][    C0] IPv4: Oversized IP packet from 172.20.20.170
[  477.546890][ T6983] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.689684][ T8630] loop4: detected capacity change from 0 to 8
[  477.785112][ T8630] unable to read xattr id index table
[  478.184411][ T8630] ceph: No mds server is up or the cluster is laggy
[  478.196451][   T24] libceph: connect (1)[c::]:6789 error -101
[  478.203082][   T24] libceph: mon0 (1)[c::]:6789 connect error
[  479.531403][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  479.531478][   T30] audit: type=1326 audit(1767678815.112:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f32539 code=0x7ffc0000
[  479.790114][   T30] audit: type=1326 audit(1767678815.142:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f32567 code=0x7ffc0000
[  479.812357][   T30] audit: type=1326 audit(1767678815.142:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f32539 code=0x7ffc0000
[  479.835055][   T30] audit: type=1326 audit(1767678815.142:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f32539 code=0x7ffc0000
[  479.859812][   T30] audit: type=1326 audit(1767678815.152:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f32567 code=0x7ffc0000
[  479.883923][   T30] audit: type=1326 audit(1767678815.162:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f32539 code=0x7ffc0000
[  479.906239][   T30] audit: type=1326 audit(1767678815.192:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f32539 code=0x7ffc0000
[  479.928576][   T30] audit: type=1326 audit(1767678815.222:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f32567 code=0x7ffc0000
[  479.953272][   T30] audit: type=1326 audit(1767678815.222:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f32539 code=0x7ffc0000
[  479.976360][   T30] audit: type=1326 audit(1767678815.222:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8655 comm="syz.2.899" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f32567 code=0x7ffc0000
[  480.688562][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  480.695880][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  481.263768][ T8672] netlink: 12 bytes leftover after parsing attributes in process `syz.5.904'.
[  484.626349][ T8717] netlink: 12 bytes leftover after parsing attributes in process `syz.4.923'.
[  484.635918][ T8717] tipc: Started in network mode
[  484.644573][ T8717] tipc: Node identity 7, cluster identity 4711
[  484.661368][ T8717] tipc: Node number set to 7
[  484.954043][ T8720] loop6: detected capacity change from 0 to 2048
[  485.127296][ T8720] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  485.243692][ T8727] fuse: Bad value for 'fd'
[  485.565466][ T8733] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  485.644740][ T8733] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 252 with error 28
[  485.657719][ T8733] EXT4-fs (loop6): This should not happen!! Data will be lost
[  485.657719][ T8733] 
[  485.667775][ T8733] EXT4-fs (loop6): Total free blocks count 0
[  485.674141][ T8733] EXT4-fs (loop6): Free/Dirty block details
[  485.680622][ T8733] EXT4-fs (loop6): free_blocks=2415919104
[  485.689728][ T8733] EXT4-fs (loop6): dirty_blocks=256
[  485.695155][ T8733] EXT4-fs (loop6): Block reservation details
[  485.702892][ T8733] EXT4-fs (loop6): i_reserved_data_blocks=16
[  486.385677][ T1111] EXT4-fs (loop6): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  486.457507][ T8743] overlayfs: failed to clone upperpath
[  486.482922][ T8743] overlayfs: failed to clone upperpath
[  487.313324][ T8754] batman_adv: batadv0: Adding interface: gretap1
[  487.324567][ T8754] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  487.351009][ T8754] batman_adv: batadv0: Interface activated: gretap1
[  488.753291][ T8773] loop5: detected capacity change from 0 to 64
[  490.594885][ T8784] loop6: detected capacity change from 0 to 32768
[  490.693483][ T8784] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.948 (8784)
[  490.726008][ T8784] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  490.738616][ T8784] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[  491.125568][ T8784] BTRFS info (device loop6): rebuilding free space tree
[  491.157621][ T8784] BTRFS info (device loop6): disabling free space tree
[  491.165107][ T8784] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  491.175119][ T8784] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  491.237978][ T8784] BTRFS info (device loop6): setting nodatasum
[  491.244554][ T8784] BTRFS info (device loop6): setting nodatacow
[  491.251150][ T8784] BTRFS info (device loop6): turning off barriers
[  491.257899][ T8784] BTRFS info (device loop6): force clearing of disk cache
[  491.631996][ T8338] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  493.117336][ T8819] loop4: detected capacity change from 0 to 136
[  493.171975][ T8819] iso9660: Bad value for 'uid'
[  493.176995][ T8819] iso9660: Bad value for 'uid'
[  493.846700][ T8824] netlink: 28 bytes leftover after parsing attributes in process `syz.0.958'.
[  494.467756][ T8835] netlink: 'syz.0.960': attribute type 1 has an invalid length.
[  494.699069][ T8837] 8021q: adding VLAN 0 to HW filter on device bond2
[  494.714984][ T8837] bond1: (slave bond2): making interface the new active one
[  494.726208][ T8837] bond1: (slave bond2): Enslaving as an active interface with an up link
[  495.812361][ T8850] fuse: Bad value for 'fd'
[  495.910217][   T30] kauditd_printk_skb: 22 callbacks suppressed
[  495.910300][   T30] audit: type=1326 audit(1767678831.472:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8847 comm="syz.4.965" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf707d539 code=0x0
[  496.738433][ T8859] fuse: Bad value for 'fd'
[  497.019605][ T5880] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  497.209577][ T5880] usb 6-1: Using ep0 maxpacket: 8
[  497.291229][ T5880] usb 6-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2e.04
[  497.300718][ T5880] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  497.309078][ T5880] usb 6-1: Product: syz
[  497.313648][ T5880] usb 6-1: Manufacturer: syz
[  497.318446][ T5880] usb 6-1: SerialNumber: syz
[  497.391905][ T5880] usb 6-1: config 0 descriptor??
[  497.620227][ T5880] usb 6-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  497.741081][ T8868] bond0: option lacp_rate: mode dependency failed, not supported in mode active-backup(1)
[  497.806120][ T8868] bond0 (unregistering): Released all slaves
[  498.108190][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.0.975'.
[  498.120097][ T8875] netlink: 8 bytes leftover after parsing attributes in process `syz.0.975'.
[  498.466819][ T5880] dvb_usb_rtl28xxu 6-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[  498.549683][ T5880] usb 6-1: USB disconnect, device number 4
[  498.919748][ T8884] loop6: detected capacity change from 0 to 128
[  498.932080][ T8884] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535)
[  499.032634][ T8884] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none.
[  499.062078][ T8884] netlink: 12 bytes leftover after parsing attributes in process `syz.6.979'.
[  499.556104][ T8338] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  499.687597][   T30] audit: type=1804 audit(1767678835.262:90): pid=8890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.981" name="bus" dev="ramfs" ino=25100 res=1 errno=0
[  500.231777][ T8895] loop5: detected capacity change from 0 to 2048
[  500.393330][ T8895] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  500.654551][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[  501.085707][ T6983] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  504.349910][   T30] audit: type=1326 audit(1767678839.912:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8943 comm="syz.6.1000" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf709d539 code=0x0
[  505.230695][ T8962] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1002'.
[  508.949708][ T8990] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1015'.
[  508.959079][ T8990] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1015'.
[  510.578544][ T8992] syz.4.1016 (8992): drop_caches: 2
[  513.220647][   T30] audit: type=1326 audit(1767678848.792:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.246194][   T30] audit: type=1326 audit(1767678848.792:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.269580][   T30] audit: type=1326 audit(1767678848.792:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.564760][   T30] audit: type=1326 audit(1767678848.892:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.587487][   T30] audit: type=1326 audit(1767678848.902:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.610033][   T30] audit: type=1326 audit(1767678848.952:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.632363][   T30] audit: type=1326 audit(1767678848.952:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=192 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.657538][   T30] audit: type=1326 audit(1767678848.952:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=125 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.681326][   T30] audit: type=1326 audit(1767678848.952:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=175 compat=1 ip=0xf704d539 code=0x7ffc0000
[  513.703876][   T30] audit: type=1326 audit(1767678848.952:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9019 comm="syz.0.1028" exe="/root/syz-executor" sig=0 arch=40000003 syscall=435 compat=1 ip=0xf71e8b00 code=0x7ffc0000
[  514.775074][ T9034] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1033'.
[  516.344043][ T9055] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1041'.
[  520.271616][ T9094] syz_tun: entered allmulticast mode
[  520.335511][ T9091] syz_tun: left allmulticast mode
[  521.045475][ T9106] overlayfs: failed to resolve './cgroup': -2
[  521.484959][ T9108] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1061'.
[  521.696893][ T9113] netlink: 44 bytes leftover after parsing attributes in process `syz.2.1062'.
[  521.871053][ T9114] netlink: 'syz.5.1060': attribute type 1 has an invalid length.
[  521.987582][ T9114] 8021q: adding VLAN 0 to HW filter on device bond3
[  522.312400][ T9114] bond3: (slave veth3): Enslaving as an active interface with a down link
[  522.391411][ T9120] bond3: (slave dummy0): making interface the new active one
[  522.405853][ T9120] dummy0: entered promiscuous mode
[  522.413353][ T9120] bond3: (slave dummy0): Enslaving as an active interface with an up link
[  522.762315][ T9123] bond3 (unregistering): (slave veth3): Releasing active interface
[  522.840756][ T7017] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  522.850824][ T7017] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  522.865871][ T9123] bond3 (unregistering): (slave dummy0): Releasing active interface
[  522.887043][ T7017] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  522.911442][ T7017] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  522.924360][ T7017] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  522.944970][ T9123] bond3 (unregistering): Released all slaves
[  523.830720][ T9126] chnl_net:caif_netlink_parms(): no params data found
[  525.039624][   T51] Bluetooth: hci5: command tx timeout
[  525.505192][ T9126] bridge0: port 1(bridge_slave_0) entered blocking state
[  525.512950][ T9126] bridge0: port 1(bridge_slave_0) entered disabled state
[  525.524341][ T9126] bridge_slave_0: entered allmulticast mode
[  525.534556][ T9126] bridge_slave_0: entered promiscuous mode
[  525.662667][ T9126] bridge0: port 2(bridge_slave_1) entered blocking state
[  525.670591][ T9126] bridge0: port 2(bridge_slave_1) entered disabled state
[  525.678478][ T9126] bridge_slave_1: entered allmulticast mode
[  525.689004][ T9126] bridge_slave_1: entered promiscuous mode
[  525.781502][ T9159] netlink: 'syz.0.1079': attribute type 1 has an invalid length.
[  525.858107][ T9159] bond3: entered promiscuous mode
[  525.863581][ T9159] bond3: entered allmulticast mode
[  525.870484][ T9159] 8021q: adding VLAN 0 to HW filter on device bond3
[  526.095937][ T5851] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  526.103882][ T5851] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  526.111695][ T5851] hid-generic 0000:0004:0000.0004: unknown main item tag 0x0
[  526.228330][ T5851] hid-generic 0000:0004:0000.0004: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  526.271040][ T9159] macvlan2: entered promiscuous mode
[  526.276578][ T9159] macvlan2: entered allmulticast mode
[  526.290767][ T9159] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  526.426784][ T9126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  526.578709][ T9126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  526.815354][ T4244] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  526.929586][ T9170] loop4: detected capacity change from 0 to 16
[  526.943135][ T9170] erofs (device loop4): mounted with root inode @ nid 36.
[  527.017491][ T9170] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1083'.
[  527.035264][ T4244] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  527.119785][   T51] Bluetooth: hci5: command tx timeout
[  527.141612][ T9126] team0: Port device team_slave_0 added
[  527.335485][ T9126] team0: Port device team_slave_1 added
[  527.502703][ T4244] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  527.738378][ T4244] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  527.770920][    T0] NOHZ tick-stop error: local softirq work is pending, handler #252!!!
[  527.838630][ T9126] batman_adv: batadv0: Adding interface: batadv_slave_0
[  527.846532][ T9126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  527.876807][ T9126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  528.101520][ T9126] batman_adv: batadv0: Adding interface: batadv_slave_1
[  528.109892][ T9126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  528.136924][ T9126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  528.180492][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c0!!!
[  528.190196][    T0] NOHZ tick-stop error: local softirq work is pending, handler #280!!!
[  528.620911][ T4244] bridge_slave_1: left allmulticast mode
[  528.627006][ T4244] bridge_slave_1: left promiscuous mode
[  528.633727][ T4244] bridge0: port 2(bridge_slave_1) entered disabled state
[  528.652587][ T4244] bridge_slave_0: left allmulticast mode
[  528.658610][ T4244] bridge_slave_0: left promiscuous mode
[  528.666142][ T4244] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.177187][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  529.187021][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  529.200572][   T51] Bluetooth: hci5: command tx timeout
[  529.211167][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!!
[  529.222185][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  529.231373][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  529.271849][ T4244] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  529.301770][ T4244] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  529.375769][ T4244] bond0 (unregistering): Released all slaves
[  529.495080][ T9126] hsr_slave_0: entered promiscuous mode
[  529.505839][ T9126] hsr_slave_1: entered promiscuous mode
[  529.518519][ T9126] debugfs: 'hsr0' already exists in 'hsr'
[  529.525503][ T9126] Cannot create hsr debugfs directory
[  530.219704][ T4244] hsr_slave_0: left promiscuous mode
[  530.249875][ T4244] hsr_slave_1: left promiscuous mode
[  530.258484][ T4244] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  530.266745][ T4244] batman_adv: batadv0: Removing interface: batadv_slave_0
[  530.304879][ T4244] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  530.313332][ T4244] batman_adv: batadv0: Removing interface: batadv_slave_1
[  530.402251][ T4244] veth1_macvtap: left promiscuous mode
[  530.408142][ T4244] veth0_macvtap: left promiscuous mode
[  530.414315][ T4244] veth1_vlan: left promiscuous mode
[  530.419978][ T4244] veth0_vlan: left promiscuous mode
[  531.289822][   T51] Bluetooth: hci5: command tx timeout
[  531.512797][ T4244] team0 (unregistering): Port device team_slave_1 removed
[  531.541406][ T4244] team0 (unregistering): Port device team_slave_0 removed
[  532.930396][ T9216] netlink: 5128 bytes leftover after parsing attributes in process `syz.4.1097'.
[  533.242866][   T11] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  533.276332][ T9126] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  533.307704][ T9126] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  533.333493][ T9126] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  533.384329][ T9126] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  533.457918][   T11] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  533.468417][   T11] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  533.562334][   T11] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  533.571785][   T11] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  533.580196][   T11] usb 5-1: SerialNumber: syz
[  533.873547][   T11] usb 5-1: 0:2 : does not exist
[  533.878842][   T11] usb 5-1: unit 255 not found!
[  533.949094][   T11] usb 5-1: 5:0: cannot get min/max values for control 2 (id 5)
[  534.051606][   T11] usb 5-1: USB disconnect, device number 8
[  534.076237][ T9227] 9p: Bad value for 'wfdno'
[  534.102597][ T9227] tipc: Started in network mode
[  534.107974][ T9227] tipc: Node identity ac14140f, cluster identity 4711
[  534.121235][ T9227] tipc: New replicast peer: 255.255.255.255
[  534.131542][ T9227] tipc: Enabled bearer <udp:syz2>, priority 10
[  534.405140][ T9126] 8021q: adding VLAN 0 to HW filter on device bond0
[  534.534868][   T30] kauditd_printk_skb: 52 callbacks suppressed
[  534.534963][   T30] audit: type=1326 audit(1767678870.092:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.568022][   T30] audit: type=1326 audit(1767678870.112:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.590550][   T30] audit: type=1326 audit(1767678870.112:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.613735][   T30] audit: type=1326 audit(1767678870.132:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.639505][   T30] audit: type=1326 audit(1767678870.132:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.662165][   T30] audit: type=1326 audit(1767678870.152:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.682906][ T9126] 8021q: adding VLAN 0 to HW filter on device team0
[  534.691500][   T30] audit: type=1326 audit(1767678870.172:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=363 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.714020][   T30] audit: type=1326 audit(1767678870.172:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.738511][   T30] audit: type=1326 audit(1767678870.222:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  534.840632][ T6384] bridge0: port 1(bridge_slave_0) entered blocking state
[  534.848180][ T6384] bridge0: port 1(bridge_slave_0) entered forwarding state
[  534.983782][ T6384] bridge0: port 2(bridge_slave_1) entered blocking state
[  534.991508][ T6384] bridge0: port 2(bridge_slave_1) entered forwarding state
[  535.012903][   T30] audit: type=1326 audit(1767678870.352:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9228 comm="syz.5.1102" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f02539 code=0x7ffc0000
[  535.240156][   T24] tipc: Node number set to 2886997007
[  537.092853][ T9126] 8021q: adding VLAN 0 to HW filter on device batadv0
[  538.083533][ T9274] netlink: 'syz.2.1115': attribute type 1 has an invalid length.
[  538.166791][ T9274] bond0: entered promiscuous mode
[  538.172374][ T9274] bond0: entered allmulticast mode
[  538.179105][ T9274] 8021q: adding VLAN 0 to HW filter on device bond0
[  538.356877][ T9274] macvlan2: entered promiscuous mode
[  538.363001][ T9274] macvlan2: entered allmulticast mode
[  538.376766][ T9274] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  539.572230][ T9126] veth0_vlan: entered promiscuous mode
[  539.692582][ T9126] veth1_vlan: entered promiscuous mode
[  539.963771][ T9126] veth0_macvtap: entered promiscuous mode
[  540.053750][ T9126] veth1_macvtap: entered promiscuous mode
[  540.256133][ T9126] batman_adv: batadv0: Interface activated: batadv_slave_0
[  540.345826][ T9126] batman_adv: batadv0: Interface activated: batadv_slave_1
[  540.465330][ T4036] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  540.486027][ T4036] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  540.547002][ T4036] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  540.585283][ T4036] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  540.972055][ T9297] overlayfs: failed to clone upperpath
[  541.026955][ T9297] overlayfs: failed to clone upperpath
[  541.670722][ T9308] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1125'.
[  542.123868][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  542.131785][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  542.156656][ T9311] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1126'.
[  544.394896][ T9346] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  545.442262][ T9363] syz_tun: entered allmulticast mode
[  545.534996][ T9362] EXT4-fs: Value of option "test_dummy_encryption" is unrecognized
[  545.613297][ T9361] syz_tun: left allmulticast mode
[  545.668298][ T6380] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  545.676611][ T6380] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  545.953789][ T4036] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  545.961950][ T4036] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  546.640857][ T9376] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1146'.
[  549.567882][ T4181] Bluetooth: hci2: Frame reassembly failed (-84)
[  549.620476][ T9422] Bluetooth: hci2: Frame reassembly failed (-90)
[  550.802095][ T7017] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  550.816566][ T7017] Bluetooth: hci5: Injecting HCI hardware error event
[  550.824545][ T7017] Bluetooth: hci5: hardware error 0x00
[  551.600056][   T51] Bluetooth: hci2: Opcode 0x1003 failed: -110
[  552.889548][ T7017] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  553.011338][ T9459] ref_ctr_offset mismatch. inode: 0x58c offset: 0x0 ref_ctr_offset(old): 0x72 ref_ctr_offset(new): 0x0
[  553.563087][ T9471] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1184'.
[  553.673099][ T9471] 8021q: adding VLAN 0 to HW filter on device bond4
[  553.720109][ T9476] macvlan2: entered promiscuous mode
[  553.725598][ T9476] macvlan2: entered allmulticast mode
[  553.737679][ T9476] bond4: (slave macvlan2): Opening slave failed
[  554.512488][ T9486] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1190'.
[  555.201490][ T9497] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1193'.
[  555.281213][ T9497] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1193'.
[  555.332352][ T9497] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1193'.
[  555.351905][ T9497] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1193'.
[  555.880583][ T9510] netlink: 2028 bytes leftover after parsing attributes in process `syz.4.1199'.
[  555.890373][ T9510] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1199'.
[  556.450446][ T7017] Bluetooth: hci1: unexpected event for opcode 0x0c12
[  557.851142][ T9541] veth0_to_team: entered promiscuous mode
[  559.217303][ T9559] overlayfs: failed to clone lowerpath
[  559.245975][ T9559] overlayfs: failed to clone upperpath
[  560.209921][ T9579] veth0_to_team: entered promiscuous mode
[  560.490024][ T7017] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  560.498597][ T7017] Bluetooth: hci1: Injecting HCI hardware error event
[  560.506394][ T5093] Bluetooth: hci1: hardware error 0x00
[  561.316075][ T9589] infiniband !yz!: set down
[  561.321050][ T9589] infiniband !yz!: added team_slave_0
[  561.446680][ T9589] RDS/IB: !yz!: added
[  561.451192][ T9589] smc: adding ib device !yz! with port count 1
[  561.461219][ T9589] smc:    ib device !yz! port 1 has no pnetid
[  562.572374][ T5093] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  564.622560][ T9616] overlayfs: failed to clone upperpath
[  565.158994][ T9627] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1242'.
[  566.266551][ T9643] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1247'.
[  567.986993][ T9657] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  568.021973][ T9657] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  568.062597][ T9657] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  568.095741][ T9657] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1251'.
[  568.761634][ T9672] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1258'.
[  568.866458][ T9672] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1258'.
[  569.127665][ T9675] netlink: 'syz.4.1259': attribute type 1 has an invalid length.
[  569.384447][ T9675] bond2: (slave gretap1): making interface the new active one
[  569.396300][ T9675] bond2: (slave gretap1): Enslaving as an active interface with an up link
[  570.098838][ T9692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1265'.
[  570.165801][ T9692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1265'.
[  570.241913][ T9693] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1265'.
[  570.284266][ T9692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1265'.
[  570.297864][ T9692] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1265'.
[  570.516562][ T9698] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1267'.
[  570.569072][ T9698] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1267'.
[  570.631439][ T9699] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1267'.
[  570.678240][ T9699] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1267'.
[  573.149755][ T9735] loop4: detected capacity change from 0 to 1024
[  576.662723][ T9763] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1293'.
[  576.672583][ T9763] netlink: 'syz.5.1293': attribute type 7 has an invalid length.
[  576.680659][ T9763] netlink: 'syz.5.1293': attribute type 8 has an invalid length.
[  576.688553][ T9763] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1293'.
[  576.740923][ T9765] lo: Caught tx_queue_len zero misconfig
[  579.307703][ T9750] Set syz1 is full, maxelem 65536 reached
[  579.969746][ T9790] dvmrp0: entered allmulticast mode
[  580.706866][ T9804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1308'.
[  580.768169][ T9808] netlink: 'syz.4.1310': attribute type 13 has an invalid length.
[  581.103926][ T9808] batman_adv: batadv0: Interface deactivated: dummy0
[  581.634269][ T9818] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1314'.
[  582.895245][ T9818] workqueue: Failed to create a rescuer kthread for wq "bond5": -EINTR
[  582.899596][ T6382] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  582.984355][ T6382] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  583.025954][ T6382] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  583.056869][ T6382] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  583.236290][ T9834] netlink: 'syz.2.1317': attribute type 1 has an invalid length.
[  583.336119][ T9834] 8021q: adding VLAN 0 to HW filter on device bond2
[  583.402738][ T9838] bond2: (slave gretap2): making interface the new active one
[  583.415758][ T9838] bond2: (slave gretap2): Enslaving as an active interface with an up link
[  584.454062][ T9852] dvmrp1: entered allmulticast mode
[  584.855524][ T9856] netem: change failed
[  586.004021][ T9877] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1334'.
[  586.013750][ T9877] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1334'.
[  590.823514][ T9931] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1353'.
[  592.333598][ T9950] netlink: 1900 bytes leftover after parsing attributes in process `syz.2.1359'.
[  592.343564][ T9950] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1359'.
[  592.706772][ T9955] bridge4: entered promiscuous mode
[  592.712524][ T9955] bridge4: entered allmulticast mode
[  592.730801][ T9955] team0: Port device bridge4 added
[  592.780289][ T9955] bridge0: port 2(team0) entered blocking state
[  592.787077][ T9955] bridge0: port 2(team0) entered disabled state
[  592.797191][ T9955] team0: entered allmulticast mode
[  592.802844][ T9955] bond0: entered allmulticast mode
[  592.816089][ T9955] team0: entered promiscuous mode
[  592.821630][ T9955] bond0: entered promiscuous mode
[  592.920173][ T9961] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1363'.
[  593.222354][ T9963] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[  593.236504][ T9963] bond3: (slave vxcan3): Error -95 calling set_mac_address
[  593.435496][ T9963] macvlan2: entered promiscuous mode
[  593.441354][ T9963] macvlan2: entered allmulticast mode
[  593.448510][ T9963] bond3: (slave macvlan2): Error -98 calling set_mac_address
[  593.711481][ T9974] overlayfs: failed to resolve './file0': -2
[  594.325223][ T9986] overlayfs: failed to clone upperpath
[  594.385018][ T9986] overlayfs: failed to clone upperpath
[  595.786394][T10007] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1375'.
[  595.838165][T10010] bridge1: entered promiscuous mode
[  595.845351][T10010] bridge1: entered allmulticast mode
[  595.867767][T10010] team0: Port device bridge1 added
[  595.953560][T10010] bridge0: port 3(team0) entered blocking state
[  595.960705][T10010] bridge0: port 3(team0) entered disabled state
[  595.970915][T10010] team0: entered allmulticast mode
[  595.976272][T10010] team_slave_0: entered allmulticast mode
[  595.982433][T10010] team_slave_1: entered allmulticast mode
[  595.994980][T10010] team0: entered promiscuous mode
[  596.000921][T10010] team_slave_0: entered promiscuous mode
[  596.007670][T10010] team_slave_1: entered promiscuous mode
[  596.017809][T10010] bridge0: port 3(team0) entered blocking state
[  596.024722][T10010] bridge0: port 3(team0) entered forwarding state
[  596.083188][T10011] syz_tun: left allmulticast mode
[  596.088477][T10011] syz_tun: left promiscuous mode
[  596.096983][T10011] bridge0: port 1(syz_tun) entered disabled state
[  597.733014][T10035] loop7: detected capacity change from 0 to 512
[  598.035239][T10035] ------------[ cut here ]------------
[  598.041376][T10035] EA inode 11 i_nlink=2
[  598.041473][T10035] WARNING: fs/ext4/xattr.c:1058 at ext4_xattr_inode_update_ref+0x73c/0x800, CPU#1: syz.7.1387/10035
[  598.057399][T10035] Modules linked in:
[  598.061733][T10035] CPU: 1 UID: 0 PID: 10035 Comm: syz.7.1387 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  598.073616][T10035] Tainted: [W]=WARN
[  598.077674][T10035] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  598.088258][T10035] RIP: 0010:ext4_xattr_inode_update_ref+0x7b6/0x800
[  598.097881][T10035] Code: 06 00 00 44 89 b3 70 09 00 00 48 c7 83 80 0c 00 00 00 00 00 00 4d 85 e4 75 38 45 85 ff 75 40 48 8b 7d c0 48 8b 75 d0 8b 55 b0 <67> 48 0f b9 3a e9 b9 fd ff ff 44 89 ef e8 78 41 57 ff 45 85 ff 0f
[  598.121594][T10035] RSP: 0018:ffff888060516d58 EFLAGS: 00010246
[  598.127952][T10035] RAX: 0000000000000000 RBX: ffff88805392acd0 RCX: 0000000000aaa7b7
[  598.137077][T10035] RDX: 0000000000000002 RSI: 000000000000000b RDI: ffffffff9273d290
[  598.145465][T10035] RBP: ffff888060516de0 R08: ffffea000000000f R09: 0000000000000000
[  598.153935][T10035] R10: ffff88805fd16ca0 R11: 00000000abcd0100 R12: 0000000000000000
[  598.162375][T10035] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  598.171668][T10035] FS:  0000000000000000(0000) GS:ffff8881aadfb000(0063) knlGS:00000000f53f5b40
[  598.181053][T10035] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[  598.187873][T10035] CR2: 0000000080078000 CR3: 00000000b9ac4000 CR4: 00000000003526f0
[  598.196351][T10035] Call Trace:
[  598.200097][T10035]  <TASK>
[  598.203233][T10035]  ext4_xattr_set_entry+0x1169/0x3440
[  598.208990][T10035]  ext4_xattr_ibody_set+0x437/0xa40
[  598.214741][T10035]  ext4_expand_extra_isize_ea+0x2ea9/0x3bb0
[  598.224588][T10035]  __ext4_expand_extra_isize+0x571/0x6f0
[  598.231494][T10035]  __ext4_mark_inode_dirty+0x654/0x970
[  598.237399][T10035]  ext4_evict_inode+0x167b/0x23d0
[  598.242946][T10035]  ? __pfx_ext4_evict_inode+0x10/0x10
[  598.248648][T10035]  evict+0x6a9/0xca0
[  598.253019][T10035]  ? kmsan_get_metadata+0xfb/0x160
[  598.258461][T10035]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  598.265392][T10035]  iput+0xc6f/0x1070
[  598.269732][T10035]  ext4_process_orphan+0x49a/0x520
[  598.275150][T10035]  ext4_orphan_cleanup+0x10a6/0x1e30
[  598.280935][T10035]  ext4_fill_super+0xa5d3/0xae50
[  598.286256][T10035]  ? kmsan_get_metadata+0xfb/0x160
[  598.291894][T10035]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  598.298113][T10035]  ? sb_set_blocksize+0x24e/0x390
[  598.303622][T10035]  get_tree_bdev_flags+0x6e6/0x920
[  598.309073][T10035]  ? __pfx_ext4_fill_super+0x10/0x10
[  598.314918][T10035]  ? __pfx_ext4_fill_super+0x10/0x10
[  598.320815][T10035]  ? __pfx_ext4_get_tree+0x10/0x10
[  598.329722][T10035]  get_tree_bdev+0x38/0x50
[  598.334795][T10035]  ext4_get_tree+0x35/0x40
[  598.340429][T10035]  vfs_get_tree+0xb3/0x5c0
[  598.345148][T10035]  do_new_mount+0x879/0x1700
[  598.350223][T10035]  ? kmsan_get_metadata+0xfb/0x160
[  598.355693][T10035]  path_mount+0x749/0x1fb0
[  598.360611][T10035]  ? user_path_at+0x241/0x3e0
[  598.365573][T10035]  __se_sys_mount+0x6f7/0x7e0
[  598.370815][T10035]  __ia32_sys_mount+0xe2/0x150
[  598.375911][T10035]  ia32_sys_call+0x2ae7/0x4340
[  598.381335][T10035]  __do_fast_syscall_32+0x154/0x320
[  598.386878][T10035]  do_fast_syscall_32+0x38/0x80
[  598.392224][T10035]  do_SYSENTER_32+0x1f/0x30
[  598.397041][T10035]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  598.406239][T10035] RIP: 0023:0xf7f22539
[  598.411366][T10035] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  598.434973][T10035] RSP: 002b:00000000f53f53b0 EFLAGS: 00000206 ORIG_RAX: 0000000000000015
[  598.444736][T10035] RAX: ffffffffffffffda RBX: 00000000f53f5410 RCX: 00000000800001c0
[  598.453240][T10035] RDX: 0000000080000180 RSI: 0000000000800700 RDI: 00000000f53f5450
[  598.461608][T10035] RBP: 00000000f53f5410 R08: 0000000000000000 R09: 0000000000000000
[  598.470021][T10035] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  598.478239][T10035] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  598.486732][T10035]  </TASK>
[  598.490051][T10035] ---[ end trace 0000000000000000 ]---
[  598.496443][T10035] EXT4-fs error (device loop7): ext4_xattr_inode_iget:441: inode #18: comm syz.7.1387: iget: bad extra_isize 90 (inode size 256)
[  598.539728][T10035] EXT4-fs (loop7): Remounting filesystem read-only
[  598.546955][T10035] EXT4-fs warning (device loop7): ext4_evict_inode:273: xattr delete (err -30)
[  598.557403][T10035] EXT4-fs (loop7): 1 orphan inode deleted
[  598.566025][T10035] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  598.614772][T10035] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.845962][T10044] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  599.540961][T10053] v: renamed from dummy0
[  602.116932][T10086] netlink: 'syz.2.1402': attribute type 13 has an invalid length.
[  603.571708][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  603.578421][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  603.640131][T10101] netlink: 24 bytes leftover after parsing attributes in process `syz.7.1408'.
[  604.188191][T10086] batman_adv: batadv0: Interface deactivated: gretap1
[  604.603401][T10102] sch_tbf: burst 88 is lower than device veth3 mtu (1514) !
[  604.614455][   T59] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  604.635141][   T59] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  604.674172][   T59] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  604.722650][   T59] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  604.771742][T10111] dvmrp1: entered allmulticast mode
[  604.836340][T10105] bond4: entered allmulticast mode
[  604.993103][T10106] ip6gretap1: entered allmulticast mode
[  605.005172][T10106] bond4: (slave ip6gretap1): Enslaving as an active interface with an up link
[  605.515119][T10117] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1412'.
[  606.212528][T10129] binder: 10128:10129 ioctl c0306201 80000080 returned -14
[  608.594752][T10146] netlink: 'syz.5.1421': attribute type 13 has an invalid length.
[  610.791121][T10157] netlink: 'syz.5.1426': attribute type 10 has an invalid length.
[  610.800543][T10157] netlink: 40 bytes leftover after parsing attributes in process `syz.5.1426'.
[  610.989187][T10160] bridge4: entered allmulticast mode
[  611.010184][T10160] team0: Port device bridge4 added
[  611.030323][ T7017] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  611.046766][ T7017] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  611.068867][ T7017] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  611.114144][ T7017] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  611.138288][ T7017] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  611.138339][T10157] bridge0: port 4(team0) entered blocking state
[  611.138992][T10157] bridge0: port 4(team0) entered disabled state
[  611.159589][T10157] team0: entered allmulticast mode
[  611.165002][T10157] team_slave_0: entered allmulticast mode
[  611.171491][T10157] team_slave_1: entered allmulticast mode
[  611.182507][T10157] team0: entered promiscuous mode
[  611.187904][T10157] team_slave_0: entered promiscuous mode
[  611.194930][T10157] team_slave_1: entered promiscuous mode
[  611.202685][T10157] bridge4: entered promiscuous mode
[  612.345793][ T5809] syz_tun (unregistering): left allmulticast mode
[  612.353872][ T5809] syz_tun (unregistering): left promiscuous mode
[  612.360882][ T5809] bridge0: port 1(syz_tun) entered disabled state
[  612.391028][ T5809] team0: left promiscuous mode
[  612.396186][ T5809] bond0: left promiscuous mode
[  612.645033][T10170] vlan2: entered promiscuous mode
[  612.650612][T10170] veth0_virt_wifi: entered promiscuous mode
[  612.658970][T10170] vlan2: entered allmulticast mode
[  612.664552][T10170] veth0_virt_wifi: entered allmulticast mode
[  613.280362][ T7017] Bluetooth: hci2: command tx timeout
[  613.452999][T10158] chnl_net:caif_netlink_parms(): no params data found
[  614.461836][T10193] netem: change failed
[  614.756064][T10158] bridge0: port 1(bridge_slave_0) entered blocking state
[  614.765197][T10158] bridge0: port 1(bridge_slave_0) entered disabled state
[  614.773408][T10158] bridge_slave_0: entered allmulticast mode
[  614.783759][T10158] bridge_slave_0: entered promiscuous mode
[  614.866567][T10158] bridge0: port 2(bridge_slave_1) entered blocking state
[  614.874503][T10158] bridge0: port 2(bridge_slave_1) entered disabled state
[  614.882602][T10158] bridge_slave_1: entered allmulticast mode
[  614.892876][T10158] bridge_slave_1: entered promiscuous mode
[  615.275841][T10158] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  615.334123][T10158] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  615.369028][ T7017] Bluetooth: hci2: command tx timeout
[  615.588711][T10158] team0: Port device team_slave_0 added
[  616.085738][T10158] team0: Port device team_slave_1 added
[  616.414246][T10158] batman_adv: batadv0: Adding interface: batadv_slave_0
[  616.421876][T10158] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  616.448954][T10158] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  616.496420][T10158] batman_adv: batadv0: Adding interface: batadv_slave_1
[  616.503934][T10158] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  616.531199][T10158] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  616.936730][T10158] hsr_slave_0: entered promiscuous mode
[  616.947821][T10158] hsr_slave_1: entered promiscuous mode
[  616.957554][T10158] debugfs: 'hsr0' already exists in 'hsr'
[  616.964457][T10158] Cannot create hsr debugfs directory
[  617.456828][ T7017] Bluetooth: hci2: command tx timeout
[  617.847218][T10158] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  617.941839][T10158] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  617.994786][T10158] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  618.071326][T10158] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  618.272402][T10228] netem: change failed
[  619.101186][T10158] 8021q: adding VLAN 0 to HW filter on device bond0
[  619.285872][T10158] 8021q: adding VLAN 0 to HW filter on device team0
[  619.391495][ T4142] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.399160][ T4142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  619.528141][ T7017] Bluetooth: hci2: command tx timeout
[  619.549013][ T4142] bridge0: port 2(bridge_slave_1) entered blocking state
[  619.556660][ T4142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  620.710487][   T11] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  621.000264][   T11] usb 8-1: Using ep0 maxpacket: 32
[  621.044248][   T11] usb 8-1: config 0 has an invalid interface number: 89 but max is 0
[  621.053363][   T11] usb 8-1: config 0 has no interface number 0
[  621.061599][   T11] usb 8-1: config 0 interface 89 has no altsetting 0
[  621.225313][   T11] usb 8-1: New USB device found, idVendor=0ccd, idProduct=10af, bcdDevice=38.4e
[  621.235176][   T11] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  621.243864][   T11] usb 8-1: Product: syz
[  621.248258][   T11] usb 8-1: Manufacturer: syz
[  621.254592][   T11] usb 8-1: SerialNumber: syz
[  621.273557][   T11] usb 8-1: config 0 descriptor??
[  621.296712][   T11] em28xx 8-1:0.89: New device syz syz @ 480 Mbps (0ccd:10af, interface 89, class 89)
[  621.306849][   T11] em28xx 8-1:0.89: Video interface 89 found: bulk
[  621.991178][   T11] em28xx 8-1:0.89: unknown em28xx chip ID (0)
[  622.264833][T10158] 8021q: adding VLAN 0 to HW filter on device batadv0
[  622.857069][   T11] em28xx 8-1:0.89: writing to i2c device at 0xa0 failed (error=-5)
[  622.870501][   T11] em28xx 8-1:0.89: failed to read eeprom (err=-5)
[  622.877309][   T11] em28xx 8-1:0.89: em28xx_i2c_register: em28xx_i2_eeprom failed! retval [-5]
[  622.950462][   T11] em28xx 8-1:0.89: Identified as Terratec Grabby (card=67)
[  622.958248][   T11] em28xx 8-1:0.89: analog set to bulk mode.
[  622.969168][ T5880] em28xx 8-1:0.89: Registering V4L2 extension
[  622.997636][   T11] usb 8-1: USB disconnect, device number 2
[  623.007791][   T11] em28xx 8-1:0.89: Disconnecting em28xx
[  623.267420][ T5880] em28xx 8-1:0.89: Config register raw data: 0xffffffed
[  623.274962][ T5880] em28xx 8-1:0.89: AC97 chip type couldn't be determined
[  623.284080][ T5880] em28xx 8-1:0.89: No AC97 audio processor
[  623.343337][ T5880] usb 8-1: Decoder not found
[  623.348172][ T5880] em28xx 8-1:0.89: failed to create media graph
[  623.354948][ T5880] em28xx 8-1:0.89: V4L2 device video103 deregistered
[  623.452276][ T5880] em28xx 8-1:0.89: Registering snapshot button...
[  623.461815][ T5880] input: em28xx snapshot button as /devices/platform/dummy_hcd.7/usb8/8-1/8-1:0.89/input/input10
[  623.538298][ T5880] em28xx 8-1:0.89: Remote control support is not available for this card.
[  623.569966][   T11] em28xx 8-1:0.89: Closing input extension
[  623.576037][   T11] em28xx 8-1:0.89: Deregistering snapshot button
[  623.668200][   T11] em28xx 8-1:0.89: Freeing device
[  624.327393][T10158] veth0_vlan: entered promiscuous mode
[  624.410650][T10158] veth1_vlan: entered promiscuous mode
[  624.442552][T10284] overlayfs: failed to clone upperpath
[  624.693759][T10158] veth0_macvtap: entered promiscuous mode
[  624.745055][T10158] veth1_macvtap: entered promiscuous mode
[  624.968491][T10158] batman_adv: batadv0: Interface activated: batadv_slave_0
[  625.065011][T10158] batman_adv: batadv0: Interface activated: batadv_slave_1
[  625.210792][ T4027] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  625.261127][ T1111] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  625.335881][ T1111] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  625.398501][ T1111] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  626.080900][T10308] overlayfs: failed to clone upperpath
[  626.476342][T10311] syzkaller0: entered promiscuous mode
[  626.484966][T10311] syzkaller0: entered allmulticast mode
[  626.810605][T10315] netlink: 'syz.2.1474': attribute type 13 has an invalid length.
[  627.694279][T10315] 8021q: adding VLAN 0 to HW filter on device team0
[  627.758348][T10315] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  631.408458][   T58] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  631.417066][   T58] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  631.497728][T10378] netlink: 'syz.0.1492': attribute type 1 has an invalid length.
[  631.892836][T10378] bond5: (slave veth7): Enslaving as an active interface with a down link
[  631.923549][T10381] bond5: entered promiscuous mode
[  631.929531][T10381] bond5: entered allmulticast mode
[  631.943361][T10381] 8021q: adding VLAN 0 to HW filter on device bond5
[  631.966551][ T4036] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  631.975824][ T4036] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  636.156572][T10441] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN
[  636.204543][T10443] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1518'.
[  636.278736][T10441] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1517'.
[  637.145870][   T11] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  637.330294][   T11] usb 8-1: Using ep0 maxpacket: 16
[  637.379031][   T11] usb 8-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[  637.391225][   T11] usb 8-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[  637.463595][   T11] usb 8-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  637.473495][   T11] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  637.481889][   T11] usb 8-1: Product: syz
[  637.486260][   T11] usb 8-1: Manufacturer: syz
[  637.491186][   T11] usb 8-1: SerialNumber: syz
[  637.551895][   T11] usb 8-1: config 0 descriptor??
[  637.587418][   T11] em28xx 8-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  637.597209][   T11] em28xx 8-1:0.0: Audio interface 0 found (Vendor Class)
[  637.756635][T10463] overlayfs: failed to clone upperpath
[  638.206629][   T11] em28xx 8-1:0.0: unknown em28xx chip ID (0)
[  638.216729][   T11] em28xx 8-1:0.0: Config register raw data: 0xfffffffb
[  638.841990][   T11] em28xx 8-1:0.0: Unknown AC97 audio processor detected!
[  639.060109][   T11] em28xx 8-1:0.0: couldn't setup AC97 register 2
[  639.095033][   T11] em28xx 8-1:0.0: couldn't setup AC97 register 4
[  639.116962][   T11] em28xx 8-1:0.0: couldn't setup AC97 register 6
[  639.145371][   T11] em28xx 8-1:0.0: couldn't setup AC97 register 54
[  639.164133][   T11] em28xx 8-1:0.0: couldn't setup AC97 register 56
[  639.230839][   T11] usb 8-1: USB disconnect, device number 3
[  640.885085][T10504] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  641.108230][T10513] netlink: 2028 bytes leftover after parsing attributes in process `syz.7.1543'.
[  641.118240][T10513] netlink: 'syz.7.1543': attribute type 1 has an invalid length.
[  641.752492][T10519] bridge: RTM_NEWNEIGH with invalid ether address
[  641.986719][T10522] netlink: 12 bytes leftover after parsing attributes in process `syz.8.1547'.
[  642.430668][T10529] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.613410][T10529] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.780488][T10529] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.986198][T10529] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  643.420152][ T4036] netdevsim netdevsim7 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  643.460917][ T1103] netdevsim netdevsim7 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  643.552711][ T1103] netdevsim netdevsim7 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  643.592697][ T1103] netdevsim netdevsim7 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  644.458598][T10555] netlink: 96 bytes leftover after parsing attributes in process `syz.7.1557'.
[  645.114679][T10562] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1560'.
[  646.228054][   T30] kauditd_printk_skb: 8 callbacks suppressed
[  646.228137][   T30] audit: type=1804 audit(1767678981.802:172): pid=10579 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.8.1568" name="/newroot/14/file0" dev="tmpfs" ino=97 res=1 errno=0
[  651.083153][T10657] overlayfs: failed to clone upperpath
[  651.468415][T10662] loop7: detected capacity change from 0 to 256
[  651.493943][T10662] vfat: Deprecated parameter 'posix'
[  651.501640][T10662] FAT-fs: "posix" option is obsolete, not supported now
[  651.846655][T10669] netlink: 'syz.8.1604': attribute type 13 has an invalid length.
[  652.279783][   T30] audit: type=1804 audit(1767678987.842:173): pid=10680 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.7.1606" name="/newroot/82/file0" dev="tmpfs" ino=473 res=1 errno=0
[  652.475211][T10669] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  652.854345][T10685] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1620'.
[  654.588116][T10706] overlayfs: failed to clone upperpath
[  655.561169][T10723] netlink: 'syz.0.1622': attribute type 13 has an invalid length.
[  656.395224][T10723] 8021q: adding VLAN 0 to HW filter on device bond0
[  656.554466][T10723] 8021q: adding VLAN 0 to HW filter on device team0
[  656.681449][T10723] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  657.148918][   T42] libceph: connect (1)[c::]:6789 error -101
[  657.159114][   T42] libceph: mon0 (1)[c::]:6789 connect error
[  657.184207][T10744] netlink: 72 bytes leftover after parsing attributes in process `syz.2.1627'.
[  657.197857][T10738] ceph: No mds server is up or the cluster is laggy
[  660.424908][T10779] overlayfs: failed to clone upperpath
[  661.612217][T10790] loop7: detected capacity change from 0 to 4096
[  661.710224][T10797] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  662.185407][T10799] overlayfs: failed to clone upperpath
[  663.192351][T10818] overlayfs: failed to clone upperpath
[  663.677507][T10827] loop8: detected capacity change from 0 to 1024
[  663.718516][T10827] EXT4-fs: Ignoring removed mblk_io_submit option
[  663.810931][T10827] EXT4-fs (loop8): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  663.823858][T10827] ext4 filesystem being mounted at /31/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  663.940366][T10827] EXT4-fs error (device loop8): ext4_map_blocks:825: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 3)
[  663.974893][T10827] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  663.987986][T10827] EXT4-fs (loop8): This should not happen!! Data will be lost
[  663.987986][T10827] 
[  664.007591][T10833] EXT4-fs error (device loop8): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  664.070184][T10827] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.206029][T10827] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.250028][T10827] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.300158][T10826] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.325181][T10826] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.372023][T10826] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.435262][T10827] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.488206][T10838] EXT4-fs error (device loop8): ext4_map_blocks:783: inode #15: block 3: comm syz.8.1659: lblock 3 mapped to illegal pblock 3 (length 1)
[  664.982797][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  664.990649][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  665.184348][ T1111] EXT4-fs (loop8): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  665.202516][ T1111] EXT4-fs (loop8): This should not happen!! Data will be lost
[  665.202516][ T1111] 
[  665.287678][T10158] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  665.398344][T10856] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1667'.
[  666.115344][T10873] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1672'.
[  666.304904][T10876] xt_CT: You must specify a L4 protocol and not use inversions on it
[  666.972343][T10888] overlayfs: failed to clone upperpath
[  667.636383][T10899] netlink: 'syz.2.1679': attribute type 4 has an invalid length.
[  667.694020][T10899] netlink: 'syz.2.1679': attribute type 4 has an invalid length.
[  669.258062][T10924] loop8: detected capacity change from 0 to 16
[  669.341397][T10924] erofs (device loop8): mounted with root inode @ nid 36.
[  670.906643][T10936] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  671.032569][T10946] netlink: 'syz.0.1696': attribute type 10 has an invalid length.
[  671.061420][T10944] mac80211_hwsim hwsim6 wlan1: entered allmulticast mode
[  671.149922][T10946] bond0: (slave ip6erspan0): Enslaving as an active interface with an up link
[  671.223922][T10936] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  671.426403][T10936] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  672.398414][T10936] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  672.618425][ T4181] netdevsim netdevsim8 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  672.702061][ T4181] netdevsim netdevsim8 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  672.837825][   T59] netdevsim netdevsim8 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  672.855997][   T59] netdevsim netdevsim8 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  673.332305][T10965] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1706'.
[  673.341756][T10965] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1706'.
[  674.104336][T10984] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1711'.
[  674.202894][T10983] overlayfs: failed to clone upperpath
[  674.621062][T10990] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1716'.
[  674.672222][T10990] vxlan0: entered promiscuous mode
[  674.684621][ T6380] netdevsim netdevsim5 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  674.694215][ T6380] netdevsim netdevsim5 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  674.704360][ T6380] netdevsim netdevsim5 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  674.715286][ T6380] netdevsim netdevsim5 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  674.738589][T10991] loop8: detected capacity change from 0 to 128
[  674.799799][T10991] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  674.866702][T10991] ext4 filesystem being mounted at /39/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  675.335519][T10158] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  676.070977][   T30] audit: type=1804 audit(1767679011.642:174): pid=11005 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1720" name="file0" dev="ramfs" ino=34404 res=1 errno=0
[  676.431718][T11009] netlink: 12 bytes leftover after parsing attributes in process `syz.7.1723'.
[  676.604589][T11007] loop8: detected capacity change from 0 to 4096
[  676.626237][ T5779] =====================================================
[  676.633985][ T5779] BUG: KMSAN: kernel-infoleak-after-free in _copy_to_iter+0xef3/0x33f0
[  676.642777][ T5779]  _copy_to_iter+0xef3/0x33f0
[  676.646247][T11007] EXT4-fs: Ignoring removed nomblk_io_submit option
[  676.647657][ T5779]  copy_page_to_iter+0x482/0x910
[  676.660992][ T5779]  anon_pipe_read+0x769/0x1e80
[  676.665991][ T5779]  vfs_read+0x8ed/0xf90
[  676.674285][ T5779]  __ia32_sys_read+0x1f9/0x4d0
[  676.679448][ T5779]  ia32_sys_call+0x191f/0x4340
[  676.684440][ T5779]  __do_fast_syscall_32+0x154/0x320
[  676.690225][ T5779]  do_fast_syscall_32+0x38/0x80
[  676.695314][ T5779]  do_SYSENTER_32+0x1f/0x30
[  676.700207][ T5779]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  676.706763][ T5779] 
[  676.709183][ T5779] Uninit was stored to memory at:
[  676.714670][ T5779]  zswap_decompress+0x2bd/0x1000
[  676.724510][ T5779]  zswap_load+0x262/0x570
[  676.729043][ T5779]  swap_read_folio+0x662/0x3050
[  676.734914][ T5779]  swap_cluster_readahead+0x725/0xb20
[  676.740687][ T5779]  shmem_swapin_folio+0x1fd9/0x3ee0
[  676.746112][ T5779]  shmem_get_folio_gfp+0x92a/0x1fc0
[  676.752134][ T5779]  shmem_file_splice_read+0x350/0x11e0
[  676.757844][ T5779]  splice_file_to_pipe+0x5b4/0x8f0
[  676.764269][ T5779]  do_splice+0x29d8/0x30d0
[  676.768911][ T5779]  __se_sys_splice+0x549/0x8c0
[  676.774192][ T5779]  __ia32_sys_splice+0x112/0x1a0
[  676.779682][ T5779]  ia32_sys_call+0x31a6/0x4340
[  676.784705][ T5779]  __do_fast_syscall_32+0x154/0x320
[  676.790348][ T5779]  do_fast_syscall_32+0x38/0x80
[  676.795458][ T5779]  do_SYSENTER_32+0x1f/0x30
[  676.800379][ T5779]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  676.807045][ T5779] 
[  676.809631][ T5779] Uninit was created at:
[  676.814138][ T5779]  free_unref_folios+0x26a/0x29a0
[  676.819476][ T5779]  folios_put_refs+0xaac/0xb10
[  676.824515][ T5779]  __folio_batch_release+0xe1/0x100
[  676.830114][ T5779]  shmem_undo_range+0x929/0x20c0
[  676.835287][ T5779]  shmem_evict_inode+0x22c/0xed0
[  676.840714][ T5779]  evict+0x6a9/0xca0
[  676.844811][ T5779]  iput+0xc6f/0x1070
[  676.848942][ T5779]  do_unlinkat+0x58a/0xd80
[  676.853789][ T5779]  __ia32_sys_unlink+0x70/0xa0
[  676.858887][ T5779]  ia32_sys_call+0x1e4a/0x4340
[  676.864950][ T5779]  __do_fast_syscall_32+0x154/0x320
[  676.870587][ T5779]  do_fast_syscall_32+0x38/0x80
[  676.875760][ T5779]  do_SYSENTER_32+0x1f/0x30
[  676.880667][ T5779]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  676.887221][ T5779] 
[  676.889855][ T5779] Bytes 0-1023 of 1024 are uninitialized
[  676.895674][ T5779] Memory access of size 1024 starts at ffff8880731d2000
[  676.903126][ T5779] Data copied to user address 0000000056912be0
[  676.909606][ T5779] 
[  676.912162][ T5779] CPU: 1 UID: 0 PID: 5779 Comm: syz-executor Tainted: G        W           syzkaller #0 PREEMPT(none) 
[  676.923720][ T5779] Tainted: [W]=WARN
[  676.927654][ T5779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  676.938058][ T5779] =====================================================
[  676.945254][ T5779] Disabling lock debugging due to kernel taint
[  676.951752][ T5779] Kernel panic - not syncing: kmsan.panic set ...
[  676.958487][ T5779] CPU: 1 UID: 0 PID: 5779 Comm: syz-executor Tainted: G    B   W           syzkaller #0 PREEMPT(none) 
[  676.969787][ T5779] Tainted: [B]=BAD_PAGE, [W]=WARN
[  676.974924][ T5779] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  676.985154][ T5779] Call Trace:
[  676.988553][ T5779]  <TASK>
[  676.991588][ T5779]  __dump_stack+0x26/0x30
[  676.996212][ T5779]  dump_stack_lvl+0x50/0x1c0
[  677.000989][ T5779]  ? dump_stack+0x12/0x25
[  677.005506][ T5779]  dump_stack+0x1e/0x25
[  677.009853][ T5779]  vpanic+0x435/0xd30
[  677.014058][ T5779]  panic+0x15d/0x160
[  677.018199][ T5779]  kmsan_report+0x31c/0x320
[  677.022914][ T5779]  ? kmsan_internal_check_memory+0x1e1/0x230
[  677.029097][ T5779]  ? kmsan_copy_to_user+0xf1/0x190
[  677.034417][ T5779]  ? _copy_to_iter+0xef3/0x33f0
[  677.039457][ T5779]  ? copy_page_to_iter+0x482/0x910
[  677.044733][ T5779]  ? anon_pipe_read+0x769/0x1e80
[  677.049887][ T5779]  ? vfs_read+0x8ed/0xf90
[  677.054439][ T5779]  ? __ia32_sys_read+0x1f9/0x4d0
[  677.059563][ T5779]  ? ia32_sys_call+0x191f/0x4340
[  677.064734][ T5779]  ? __do_fast_syscall_32+0x154/0x320
[  677.070512][ T5779]  ? do_fast_syscall_32+0x38/0x80
[  677.075772][ T5779]  ? do_SYSENTER_32+0x1f/0x30
[  677.080642][ T5779]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  677.087351][ T5779]  ? __pfx_pollwake+0x10/0x10
[  677.092342][ T5779]  ? __pfx_pollwake+0x10/0x10
[  677.097254][ T5779]  ? __pfx_pollwake+0x10/0x10
[  677.102156][ T5779]  ? __pfx_pollwake+0x10/0x10
[  677.107059][ T5779]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  677.113630][ T5779]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  677.119927][ T5779]  ? kmsan_get_metadata+0xfb/0x160
[  677.125259][ T5779]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  677.131286][ T5779]  kmsan_internal_check_memory+0x1e1/0x230
[  677.137319][ T5779]  kmsan_copy_to_user+0xf1/0x190
[  677.142459][ T5779]  _copy_to_iter+0xef3/0x33f0
[  677.147320][ T5779]  ? compat_put_bitmap+0xe1/0x330
[  677.152515][ T5779]  ? filter_irq_stacks+0x49/0x190
[  677.157782][ T5779]  ? kmsan_get_metadata+0xfb/0x160
[  677.163116][ T5779]  ? kmsan_internal_check_memory+0x9c/0x230
[  677.169228][ T5779]  ? kmsan_get_metadata+0xfb/0x160
[  677.174592][ T5779]  copy_page_to_iter+0x482/0x910
[  677.179707][ T5779]  ? kmsan_get_shadow_origin_ptr+0x35/0xb0
[  677.185772][ T5779]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  677.191874][ T5779]  anon_pipe_read+0x769/0x1e80
[  677.196877][ T5779]  ? kmsan_get_metadata+0xfb/0x160
[  677.202210][ T5779]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  677.208306][ T5779]  vfs_read+0x8ed/0xf90
[  677.212677][ T5779]  ? __pfx_anon_pipe_read+0x10/0x10
[  677.218112][ T5779]  __ia32_sys_read+0x1f9/0x4d0
[  677.223083][ T5779]  ia32_sys_call+0x191f/0x4340
[  677.228081][ T5779]  __do_fast_syscall_32+0x154/0x320
[  677.233511][ T5779]  do_fast_syscall_32+0x38/0x80
[  677.238580][ T5779]  do_SYSENTER_32+0x1f/0x30
[  677.243291][ T5779]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[  677.249822][ T5779] RIP: 0023:0xf702d539
[  677.254019][ T5779] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[  677.273899][ T5779] RSP: 002b:00000000ff865f40 EFLAGS: 00000206 ORIG_RAX: 0000000000000003
[  677.282505][ T5779] RAX: ffffffffffffffda RBX: 0000000000000018 RCX: 0000000056912be0
[  677.290614][ T5779] RDX: 0000000000000400 RSI: 00000000f73c6ff4 RDI: 00000000f73c6ff4
[  677.298713][ T5779] RBP: 00000000ff8661c8 R08: 0000000000000000 R09: 0000000000000000
[  677.306830][ T5779] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  677.314929][ T5779] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  677.323123][ T5779]  </TASK>
[  677.326875][ T5779] Kernel Offset: disabled
[  677.331282][ T5779] Rebooting in 86400 seconds..