last executing test programs:

20.02940357s ago: executing program 1 (id=265):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00', @ANYRES32=0x0, @ANYBLOB="08001b"], 0x30}}, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$team(&(0x7f00000044c0), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_team(r1, 0x8933, &(0x7f0000004700)={'team0\x00', <r3=>0x0})
sendmsg$TEAM_CMD_OPTIONS_SET(r1, &(0x7f0000004bc0)={0x0, 0x0, &(0x7f0000004b80)={&(0x7f00000047c0)={0x60, r2, 0x405, 0x70bd2b, 0x25dfdbfe, {}, [{{0x8, 0x1, r3}, {0x44, 0x2, 0x0, 0x1, [{0x40, 0x1, @name={{0x24}, {0x5}, {0x10, 0x4, 'loadbalance\x00'}}}]}}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000401}, 0x44084)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r4, 0x8933, &(0x7f0000000000)={'team0\x00', <r5=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x10104}, [@IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x3c}}, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$tipc(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$TIPC_CMD_ENABLE_BEARER(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000280)={0x34, r7, 0x1, 0x0, 0x25dfdbff, {{}, {}, {0x18, 0x17, {0x0, 0x0, @l2={'eth', 0x3a, 'team0\x00'}}}}}, 0x34}}, 0x0)

18.661528516s ago: executing program 1 (id=275):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
pipe(&(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
mount$9p_fd(0x0, &(0x7f0000000040)='.\x00', &(0x7f0000000080), 0x800, &(0x7f0000000140)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@access_uid}]}})

16.674307232s ago: executing program 1 (id=278):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000380)='hrtimer_start\x00', r1}, 0x18)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='tlb_flush\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000004000000000000000001801000020786c3500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000020850000002d000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f00000002c0)='tlb_flush\x00', r3}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='workqueue_queue_work\x00', r4}, 0x10)

16.165304222s ago: executing program 1 (id=281):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
ioprio_set$pid(0x2, r0, 0x4004)

9.795985002s ago: executing program 1 (id=295):
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
r1 = fsopen(&(0x7f00000001c0)='ocfs2_dlmfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x80)
fchdir(r2)

7.198896848s ago: executing program 0 (id=301):
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000300)='syscall\x00')
read$FUSE(r0, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_READY(r0, 0xc0189376, 0x0)
r1 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r1, 0x0, &(0x7f0000000540)={0x84, &(0x7f0000000200)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mount$9p_virtio(&(0x7f0000000040), &(0x7f0000000100)='./file1\x00', &(0x7f0000000140), 0x2, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=virtio,cache=fscache,acc', @ANYRESDEC=0xee01])
lsetxattr$trusted_overlay_origin(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0), 0x0, 0x0, 0x0)
r2 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
ioctl$FS_IOC_GETVERSION(r2, 0x40045b0a, &(0x7f0000000040))

6.16994669s ago: executing program 2 (id=302):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000100)={0x40000000, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="021800001c000000000000000000000005000600000000000a00000000000000000000000000000000000000000000000000000000000000020012000000000000000000fcffffff0600ff0000000000000000000000000000000000000000000000000001000000fe8000000000002100000000000000bb050005002b0000000a00000000000000fc010000000200000002000000000000000000000000000008001900"], 0xe0}}, 0x0)

5.076587448s ago: executing program 2 (id=305):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0xc0ed4040, &(0x7f0000000080)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x2000003}}, {@nolazytime}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@data_journal}]}, 0xf5, 0x47a, &(0x7f0000000ac0)="$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")
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000080)="7800000018002507b9409b14ffff0b7a0204be04020714056406200c5c0009003f1406180a0000000d0085a168d0bf46d32345653610648d270005000a06024e49935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000400160008030a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)={0x2c, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL80211_ATTR_4ADDR={0x5}]}, 0x2c}}, 0x0)
r4 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)
ioctl$TIOCGLCKTRMIOS(r4, 0x5456, 0x0)
syz_open_dev$usbfs(0x0, 0x204, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
renameat2(r5, &(0x7f0000000000)='./file0\x00', r5, &(0x7f0000000280)='.\x02\x00', 0x4)

3.433007171s ago: executing program 3 (id=307):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0100000000000000000001000000280001801400040000000000000002000000ffffac1414aa060001000a0080000800060003"], 0x3c}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="010028bd7000eedbdf2504"], 0x14}, 0x1, 0x0, 0x0, 0x24008804}, 0x800)

3.207891893s ago: executing program 2 (id=308):
syz_kvm_add_vcpu$x86(0x0, &(0x7f00000004c0)={0x0, &(0x7f0000000040)=[@wr_drn={0x6e, 0x20, {0x2, 0x6}}, @code={0xa, 0x53, {"410f01c4430f01cb0fc73666410f54cb0f20e035002000000f22e0b9800000c00f3235010000000f30430f01c8c4c1bd71e2bb0f20e035004000000f22e067f340ab"}}, @out_dx={0xaa, 0x28, {0x9015, 0x4, 0x8}}, @cpuid={0x14, 0x18, {0xff, 0xfffffff7}}, @wrmsr={0x1e, 0x20, {0x82d, 0x8000000000000001}}, @wr_crn={0x46, 0x20, {0x0, 0x6}}, @wr_drn={0x6e, 0x20, {0x3, 0x8000}}], 0x113})
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
bind$inet6(r1, &(0x7f00000002c0)={0xa, 0x4e23, 0xfffffffc, @loopback}, 0x1c)
listen(r1, 0x4)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r1, 0x84, 0x76, &(0x7f0000000140)={0x0, 0x5}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r1, 0x84, 0x75, &(0x7f0000000000)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000100)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000040)={0x0, 0xaf1}, 0x8)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)
sendmmsg$inet6(r0, &(0x7f0000000200)=[{{&(0x7f00000000c0)={0xa, 0x4e23, 0x1, @loopback, 0x1}, 0x1c, &(0x7f0000000580)=[{&(0x7f0000001680)="89", 0x1}], 0x1}}], 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f0000000140)=ANY=[], 0x8397de475a1b5b02)

3.178582936s ago: executing program 3 (id=309):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=@newtaction={0x48, 0x32, 0x871a15abc695fa3d, 0x0, 0x25dfdbff, {}, [{0x34, 0x1, [@m_ctinfo={0x30, 0x1, 0x0, 0x0, {{0xb, 0x2}, {0x4}, {0x4}, {0xc}, {0xc}}}]}]}, 0x48}}, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv6_newrule={0x54, 0x20, 0x701, 0x70bd2a, 0x25dfdbfd, {0xa, 0x10, 0x80, 0x1b, 0x6, 0x0, 0x0, 0x1, 0x30}, [@FRA_DST={0x14, 0x1, @private0}, @FIB_RULE_POLICY=@FRA_IP_PROTO={0x5, 0x16, 0x62}, @FRA_SRC={0x14, 0x2, @mcast2}, @FIB_RULE_POLICY=@FRA_SUPPRESS_IFGROUP={0x8, 0xd, 0x7fffffff}]}, 0x54}}, 0x4)
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f00000012c0)={[{@shortname_mixed}, {@utf8}, {@fat=@sys_immutable}, {@uni_xlate}, {@utf8no}, {@fat=@umask={'umask', 0x3d, 0xa}}, {@iocharset={'iocharset', 0x3d, 'cp737'}}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'cp864'}}, {@fat=@codepage={'codepage', 0x3d, '850'}}, {@uni_xlateno}, {@utf8no}, {@uni_xlate}, {@fat=@nfs_nostale_ro}, {@rodir}, {@iocharset={'iocharset', 0x3d, 'cp862'}}], [{@appraise}]}, 0x6, 0x2b8, &(0x7f0000000640)="$eJzs3U9rK1UYB+B30mQSdZEsXInggC5cXW7v1k2K3AtiV16yUBdabAvSBKGFgn8wduXWjQsXfgJB8IO48RsIbgV3ViiMzGSmSdqYJtJUvH2eTd+eOb+Zd6aHdrro6Ycvj472szg8++LX6HSSaPSjH+dJ9KIRta9iTv+bAAD+z87zPP7IJ9bJJRHR2VxbAMAGrfbzvzktf7qTtgCADXr67ntv7+zuPn4nyzrxZPT16aD4zb74ODm+cxgfxzAO4mF04yKifFFoRfm2UJRP8jwfN7NCL14bjU8HRXL0wc/V+Xd+jyjz29GNXjl0+bZR5t/afbydTczkx0Ufz1fX7xf5R9GNFy/Dc/lHC/IxSOP1V2f6fxDd+OWj+CSGsV82Mc1/uZ1lb+bf/vn5+0V7RT4Znw7a5bypfOuOvzQAAAAAAAAAAAAAAAAAAAAAADzDHlR757Sj3L+nGKr239m6KD5pRVbrze/PM8kn9Ylm9wfK83ycx/f1/joPsyzLq4nTfDNeas5uLAgAAAAAAAAAAAAAAAAAAAD318mnnx3tDYcHx7dS1LsBNCPir6cR//Y8/ZmRV2L55HZ1zb3hsFGV83OasyOxVc9JIpa2UdzELT2Wm4rnrvVcFT/8uO4JOzfPaS2+1m0W9eo62ksWP8N21COdapF8l0ZM56Sx4rXSfzqUxzrLL114qLv2vacvlMV4yZxIljX2xm+TJ1eNJFfvIi2f6sJ4qypm4lfWxkrrOTqT+PXvFYndOgAAAAAAAAAAAAAAAAAAYKOmf/274ODZ0mgjb2+sLQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4U9P//79GMa7CK0xO4/jkP75FAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7oG/AwAA//83x1yS")
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x150}, 0x1, 0x0, 0x0, 0x2000c094}, 0x4040084)
r3 = gettid()
capget(&(0x7f00000000c0)={0x19980330, r3}, &(0x7f0000000100)={0x6, 0xb, 0xf, 0xe6, 0x4, 0x4})
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000001680)=ANY=[@ANYBLOB="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"/2728], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffedf, 0x10, &(0x7f0000000040)}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r4, 0x108, 0xe, 0x0, &(0x7f0000000340)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0xf48f, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

3.107223493s ago: executing program 0 (id=310):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0x15, 0x5, 0x0)
getsockopt(r3, 0x200000000114, 0x2710, &(0x7f000001eec0)=""/102389, &(0x7f0000000000)=0xc74)

1.984860704s ago: executing program 0 (id=311):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
bpf$BPF_PROG_TEST_RUN(0x21, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
setresgid(0x0, 0x0, 0x0)
r1 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
request_key(&(0x7f0000000540)='user\x00', &(0x7f00000001c0)={'syz', 0x3}, &(0x7f0000000200)=',$:@^@,\x00', r1)
add_key$user(&(0x7f0000000480), &(0x7f00000004c0)={'syz', 0x3}, &(0x7f0000000500)="3fd8", 0x2, r1)
r2 = add_key(&(0x7f0000000080)='user\x00', &(0x7f0000000000)={'syz', 0x2}, &(0x7f0000000040)='9', 0x1, 0xfffffffffffffffc)
keyctl$chown(0x4, r2, 0xee00, 0xffffffffffffffff)
keyctl$setperm(0x5, r2, 0x4002410)
keyctl$chown(0x4, r2, 0x0, 0x0)

1.928191379s ago: executing program 2 (id=312):
r0 = timerfd_create(0x0, 0x0)
r1 = timerfd_create(0x0, 0x0)
timerfd_settime(r1, 0x3, &(0x7f0000000440)={{0x0, 0x3938700}}, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000d06000/0x4000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ec9000/0x1000)=nil, 0x0, 0x0, r0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r2 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8df, 0xc000, 0x20000a, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x800, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r3, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r2, 0x2219, 0x7721, 0x16, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000000)={0x3ff, 0x0, 0x0, 0xc, 0x0, 0x0, 0x4, 0x200000000000000, 0x0, 0x100, 0x0, 0x0, 0x9, 0x0, 0x0, 0xfffffffffffffffd, 0x0, 0x0, 0x1000, 0x8, 0x2, 0x3, 0x0, 0x3})

1.531245819s ago: executing program 3 (id=313):
r0 = fsopen(&(0x7f0000000240)='sysfs\x00', 0x1)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = inotify_init()
inotify_add_watch(r2, &(0x7f0000000100)='./bus\x00', 0x4000423)
r3 = inotify_init()
inotify_add_watch(r3, &(0x7f00000001c0)='.\x00', 0x4000423)
chdir(0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r4 = open(&(0x7f0000000000)='./bus\x00', 0x40000, 0x0)
getdents(r4, 0x0, 0x0)

1.432767979s ago: executing program 0 (id=314):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='qdisc_enqueue\x00', r0}, 0x18)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r1}, 0x8)
close(r2)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=ANY=[@ANYBLOB="150000001000000008"], 0x50)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000440)={0x8, 0xf, &(0x7f0000000c80)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {0x7, 0x0, 0xb, 0x2}, {0x85, 0x0, 0x0, 0x51}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x5}}}, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000540)={@map=r2, r4, 0x1, 0x0, 0xffffffffffffffff, @void, @value=r2}, 0x20)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r4, 0x0, 0x0}, 0x10)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x8, 0xf, &(0x7f0000000c80)=ANY=[], &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_GET_PROG_INFO(0x1c, &(0x7f00000003c0)={r5, 0x0, 0x0}, 0x10)

1.300866701s ago: executing program 2 (id=315):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, "00009200000000000000000000000058b200"})
r1 = epoll_create(0x8)
pselect6(0x40, &(0x7f0000000040)={0xc, 0x1, 0xfffffffffffffff3, 0x0, 0x0, 0x0, 0x400000000000, 0x400}, 0x0, 0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040))
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000600)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_nopr_hmac_sha256\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
syz_open_pts(r0, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
close_range(r3, 0xffffffffffffffff, 0x0)

1.171559074s ago: executing program 3 (id=316):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r0, 0xfffffffc)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @local}, 0x10)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x1, 0x0, 0x7fff0000}]})
r3 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000240)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000300)=@newqdisc={0x4c, 0x24, 0xd0f, 0x70bd2d, 0x0, {0x60, 0x0, 0x0, r5, {0x0, 0xa}, {0xffff, 0xffff}, {0x0, 0x8}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x80000001, 0x4, 0x4, 0xe3, 0x8000, 0x6}}}}]}, 0x4c}}, 0x44080)
close_range(r2, 0xffffffffffffffff, 0x0)

1.167958725s ago: executing program 0 (id=317):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000040), r0)
bpf$MAP_CREATE(0x1900000000000000, &(0x7f00000004c0)=@base={0xe, 0x0, 0x0, 0x2000}, 0x50)
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01000000000000000000040000001400050003030000000a0000005dc00000000001080002000500000014000600ff01000a00f2f3f31f000a0000000001060001"], 0x4c}, 0x1, 0x0, 0x0, 0x8004}, 0x4040000)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ipvs(&(0x7f0000000040), 0xffffffffffffffff)
socket$key(0xf, 0x3, 0x2)
sendmsg$IPVS_CMD_DEL_SERVICE(r2, &(0x7f0000000380)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x802}, 0xc, &(0x7f0000000340)={&(0x7f00000002c0)={0x18, r3, 0x800, 0x70bd28, 0x25dfdbfc, {}, [@IPVS_CMD_ATTR_DAEMON={0x4}]}, 0x18}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000080)=[{0x200000000006, 0x0, 0x5, 0x7ffc0005}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000280)='+}[@\x00')
getsockopt$inet_sctp_SCTP_FRAGMENT_INTERLEAVE(0xffffffffffffffff, 0x84, 0x12, 0x0, &(0x7f0000000180))
sendmsg$NLBL_MGMT_C_ADDDEF(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[], 0x4c}, 0x1, 0x0, 0x0, 0x24008000}, 0x4040000)

918.864269ms ago: executing program 0 (id=318):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0xc0ed4040, &(0x7f0000000080)={[{@noblock_validity}, {@stripe={'stripe', 0x3d, 0x1}}, {@journal_dev={'journal_dev', 0x3d, 0x2000003}}, {@nolazytime}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x2}}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x3}}, {@nolazytime}, {@data_journal}]}, 0xf5, 0x47a, &(0x7f0000000ac0)="$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")
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000080)="7800000018002507b9409b14ffff0b7a0204be04020714056406200c5c0009003f1406180a0000000d0085a168d0bf46d32345653610648d270005000a06024e49935ade4a460c89b6ec0cff3959547f509058ba86c902007a00004a32000400160008030a0000000000e000e218d1ddf66ed538f2523250", 0x78, 0x0, 0x0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r1)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000280)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000004c0)={0x2c, r2, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}, @NL80211_ATTR_4ADDR={0x5}]}, 0x2c}}, 0x0)
r4 = ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)
ioctl$TIOCGLCKTRMIOS(r4, 0x5456, 0x0)
syz_open_dev$usbfs(0x0, 0x204, 0x2)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000640)='.\x00', 0x0, 0x0)
renameat2(r5, &(0x7f0000000000)='./file0\x00', r5, &(0x7f0000000280)='.\x02\x00', 0x4)

826.532708ms ago: executing program 3 (id=319):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x0, 0x0, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$HIDIOCGRDESC(0xffffffffffffffff, 0x90044802, 0x0)
getpid()
r1 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_INIT(r1, 0x29, 0xc8, &(0x7f0000000040), 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000000}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$MRT6_ADD_MIF(r1, 0x29, 0xca, &(0x7f00000000c0)={0x4, 0x1, 0x78, 0x0, 0xfffffff8}, 0xc)
setsockopt$MRT6_FLUSH(r1, 0x29, 0xd4, &(0x7f0000000080)=0x6, 0x4)

543.237326ms ago: executing program 2 (id=320):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_sctp(0x2, 0x5, 0x84)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r2, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r2, &(0x7f0000000940)={0x28, 0x0, 0x0, @local}, 0x10)
close(0x3)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r3, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
close_range(r1, 0xffffffffffffffff, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000280)={0x0}, 0x1, 0x0, 0x0, 0x44004}, 0x0)

347.364756ms ago: executing program 3 (id=321):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x4)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r3, 0x10e, 0x1, &(0x7f0000000000)=0x1, 0x4)

0s ago: executing program 1 (id=322):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
r2 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r2, 0x2)
r3 = open(&(0x7f0000000300)='.\x00', 0x102000, 0x0)
flock(r3, 0x1)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.240' (ED25519) to the list of known hosts.
[   80.256137][ T5780] cgroup: Unknown subsys name 'net'
[   80.386498][ T5780] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   82.118811][ T5780] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   83.841923][ T5791] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   83.851661][ T5791] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   83.891853][ T5802] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   83.901095][ T5802] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   83.909905][ T5802] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   83.911787][ T5799] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   83.919881][ T5802] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   83.925813][ T5799] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   83.932482][ T5802] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   83.940570][ T5799] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   83.946779][ T5802] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   83.956236][ T5799] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   83.961129][ T5802] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   83.968591][ T5799] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   83.976203][ T5802] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   83.983605][ T5799] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   83.989029][ T5802] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   84.000389][ T5799] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   84.012298][ T5108] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   84.021467][ T5108] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   84.029516][ T5108] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   84.037353][ T5108] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   84.100935][ T5799] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   84.121842][ T5798] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   84.632854][ T5789] chnl_net:caif_netlink_parms(): no params data found
[   84.733073][ T5794] chnl_net:caif_netlink_parms(): no params data found
[   84.785722][ T5793] chnl_net:caif_netlink_parms(): no params data found
[   84.808438][ T5790] chnl_net:caif_netlink_parms(): no params data found
[   84.865988][ T5789] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.874153][ T5789] bridge0: port 1(bridge_slave_0) entered disabled state
[   84.881871][ T5789] bridge_slave_0: entered allmulticast mode
[   84.890129][ T5789] bridge_slave_0: entered promiscuous mode
[   84.906604][ T5789] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.913944][ T5789] bridge0: port 2(bridge_slave_1) entered disabled state
[   84.921807][ T5789] bridge_slave_1: entered allmulticast mode
[   84.929445][ T5789] bridge_slave_1: entered promiscuous mode
[   85.050540][ T5789] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.064388][ T5789] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.133369][ T5793] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.141089][ T5793] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.148482][ T5793] bridge_slave_0: entered allmulticast mode
[   85.155626][ T5793] bridge_slave_0: entered promiscuous mode
[   85.176293][ T5794] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.184035][ T5794] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.191818][ T5794] bridge_slave_0: entered allmulticast mode
[   85.199600][ T5794] bridge_slave_0: entered promiscuous mode
[   85.236275][ T5789] team0: Port device team_slave_0 added
[   85.245830][ T5789] team0: Port device team_slave_1 added
[   85.252363][ T5793] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.263463][ T5793] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.271854][ T5793] bridge_slave_1: entered allmulticast mode
[   85.282590][ T5793] bridge_slave_1: entered promiscuous mode
[   85.290151][ T5794] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.297456][ T5794] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.304872][ T5794] bridge_slave_1: entered allmulticast mode
[   85.312556][ T5794] bridge_slave_1: entered promiscuous mode
[   85.331641][ T5790] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.339072][ T5790] bridge0: port 1(bridge_slave_0) entered disabled state
[   85.347003][ T5790] bridge_slave_0: entered allmulticast mode
[   85.354446][ T5790] bridge_slave_0: entered promiscuous mode
[   85.363553][ T5790] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.370925][ T5790] bridge0: port 2(bridge_slave_1) entered disabled state
[   85.378331][ T5790] bridge_slave_1: entered allmulticast mode
[   85.385348][ T5790] bridge_slave_1: entered promiscuous mode
[   85.471383][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.478799][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.507445][ T5789] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.523539][ T5793] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.535403][ T5794] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.562135][ T5789] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.569571][ T5789] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.596163][ T5789] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.609629][ T5793] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.634081][ T5794] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.662037][ T5790] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   85.674144][ T5790] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   85.721582][ T5794] team0: Port device team_slave_0 added
[   85.761510][ T5793] team0: Port device team_slave_0 added
[   85.771853][ T5793] team0: Port device team_slave_1 added
[   85.782651][ T5794] team0: Port device team_slave_1 added
[   85.805846][ T5790] team0: Port device team_slave_0 added
[   85.866431][ T5790] team0: Port device team_slave_1 added
[   85.889026][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.896100][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.923510][ T5794] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.940773][ T5789] hsr_slave_0: entered promiscuous mode
[   85.948054][ T5789] hsr_slave_1: entered promiscuous mode
[   85.981295][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.988684][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.016026][ T5793] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.028836][ T5794] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.036279][ T5794] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.063295][ T5794] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.087744][   T50] Bluetooth: hci0: command tx timeout
[   86.095362][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_0
[   86.102777][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.129749][ T5790] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   86.142463][ T5793] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.149970][ T5793] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.157624][ T5798] Bluetooth: hci1: command tx timeout
[   86.176777][   T50] Bluetooth: hci2: command tx timeout
[   86.182654][ T5798] Bluetooth: hci3: command tx timeout
[   86.195052][ T5793] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.228957][ T5790] batman_adv: batadv0: Adding interface: batadv_slave_1
[   86.235966][ T5790] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   86.262803][ T5790] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   86.347701][ T5794] hsr_slave_0: entered promiscuous mode
[   86.354205][ T5794] hsr_slave_1: entered promiscuous mode
[   86.361183][ T5794] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.369391][ T5794] Cannot create hsr debugfs directory
[   86.446093][ T5793] hsr_slave_0: entered promiscuous mode
[   86.453532][ T5793] hsr_slave_1: entered promiscuous mode
[   86.460260][ T5793] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.469983][ T5793] Cannot create hsr debugfs directory
[   86.528987][ T5790] hsr_slave_0: entered promiscuous mode
[   86.535853][ T5790] hsr_slave_1: entered promiscuous mode
[   86.543468][ T5790] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   86.551272][ T5790] Cannot create hsr debugfs directory
[   86.927474][ T5789] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   86.942569][ T5789] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   86.953689][ T5789] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   86.970006][ T5789] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   87.052102][ T5794] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   87.069691][ T5794] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   87.081903][ T5794] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   87.093076][ T5794] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   87.202237][ T5790] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   87.238617][ T5790] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   87.253511][ T5790] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   87.264506][ T5790] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   87.431973][ T5794] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.478395][ T5793] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   87.491018][ T5793] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   87.514806][ T5793] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   87.535193][ T5789] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.553017][ T5793] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   87.574630][ T5794] 8021q: adding VLAN 0 to HW filter on device team0
[   87.641611][ T5789] 8021q: adding VLAN 0 to HW filter on device team0
[   87.652650][ T2974] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.660276][ T2974] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.695542][ T2974] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.702872][ T2974] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.716469][ T2974] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.723735][ T2974] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.734863][ T2974] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.742282][ T2974] bridge0: port 2(bridge_slave_1) entered forwarding state
[   87.766379][ T5790] 8021q: adding VLAN 0 to HW filter on device bond0
[   87.854560][ T5790] 8021q: adding VLAN 0 to HW filter on device team0
[   87.914620][ T2953] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.921954][ T2953] bridge0: port 1(bridge_slave_0) entered forwarding state
[   87.966575][ T5789] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   87.993572][ T2953] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.000926][ T2953] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.156871][ T5798] Bluetooth: hci0: command tx timeout
[   88.158289][ T5793] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.218363][ T5793] 8021q: adding VLAN 0 to HW filter on device team0
[   88.238901][ T5798] Bluetooth: hci3: command tx timeout
[   88.239722][   T50] Bluetooth: hci2: command tx timeout
[   88.245108][ T5798] Bluetooth: hci1: command tx timeout
[   88.273511][ T2106] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.280800][ T2106] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.375380][ T2106] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.382879][ T2106] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.586132][ T5789] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.810050][ T5789] veth0_vlan: entered promiscuous mode
[   88.850098][ T5794] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.863452][ T5789] veth1_vlan: entered promiscuous mode
[   88.878371][ T5790] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.023253][ T5789] veth0_macvtap: entered promiscuous mode
[   89.030789][ T5794] veth0_vlan: entered promiscuous mode
[   89.050789][ T5789] veth1_macvtap: entered promiscuous mode
[   89.060379][ T5790] veth0_vlan: entered promiscuous mode
[   89.068610][ T5794] veth1_vlan: entered promiscuous mode
[   89.089825][ T5793] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.114447][ T5790] veth1_vlan: entered promiscuous mode
[   89.142084][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.158568][ T5789] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.193022][ T5789] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.202964][ T5789] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.212776][ T5789] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.221723][ T5789] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.315946][ T5793] veth0_vlan: entered promiscuous mode
[   89.331582][ T5794] veth0_macvtap: entered promiscuous mode
[   89.342826][ T5794] veth1_macvtap: entered promiscuous mode
[   89.368662][ T5790] veth0_macvtap: entered promiscuous mode
[   89.402430][ T5793] veth1_vlan: entered promiscuous mode
[   89.424432][ T5790] veth1_macvtap: entered promiscuous mode
[   89.480291][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.492393][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.504245][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.516471][ T5794] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.530088][ T5794] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.543312][ T5794] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.577334][ T5794] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.586234][ T5794] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.599052][ T5794] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.609437][ T5794] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.621790][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.633071][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.643209][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   89.653989][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.666205][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_0
[   89.686004][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.688050][ T2953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.704226][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.716023][ T5790] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   89.726617][ T5790] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   89.726741][ T2953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.740412][ T5790] batman_adv: batadv0: Interface activated: batadv_slave_1
[   89.791208][ T5790] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   89.802162][ T5790] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   89.811826][ T5790] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   89.821066][ T5790] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   89.845885][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.856404][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.881300][ T5793] veth0_macvtap: entered promiscuous mode
[   89.892651][ T5793] veth1_macvtap: entered promiscuous mode
[   90.012904][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.031915][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.042081][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.052777][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.065099][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.076684][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.089383][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.139858][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.178361][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.189619][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.200503][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.210901][ T5793] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   90.213310][   T28] audit: type=1326 audit(1760756777.612:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.222244][ T5793] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   90.254897][ T5798] Bluetooth: hci0: command tx timeout
[   90.265733][   T28] audit: type=1326 audit(1760756777.652:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.288698][   T28] audit: type=1326 audit(1760756777.652:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.300157][ T5793] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.310831][   T28] audit: type=1326 audit(1760756777.652:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.310881][   T28] audit: type=1326 audit(1760756777.652:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.310926][   T28] audit: type=1326 audit(1760756777.652:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=7 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.310975][   T28] audit: type=1326 audit(1760756777.662:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.347204][ T5798] Bluetooth: hci2: command tx timeout
[   90.363690][   T50] Bluetooth: hci3: command tx timeout
[   90.363741][   T50] Bluetooth: hci1: command tx timeout
[   90.430386][   T28] audit: type=1326 audit(1760756777.662:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.453576][ T3469] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.478934][ T3469] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.497187][   T28] audit: type=1326 audit(1760756777.662:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.521125][   T28] audit: type=1326 audit(1760756777.662:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5879 comm="syz.1.2" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f15f758efc9 code=0x7ffc0000
[   90.551925][ T5793] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.574174][ T5793] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.584251][ T5793] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.593144][ T5793] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.753316][ T2953] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.762096][ T3478] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.772282][ T2953] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.782837][ T3478] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.787587][ T5885] syz.1.6[5885]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   90.894399][ T3478] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.940337][ T3478] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   90.993972][ T3469] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.015852][ T3469] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.060871][ T2974] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.084799][ T2974] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.333220][ T5798] Bluetooth: hci0: command tx timeout
[   92.419283][ T5799] Bluetooth: hci1: command tx timeout
[   92.424794][ T5799] Bluetooth: hci3: command tx timeout
[   92.468399][   T27] cfg80211: failed to load regulatory.db
[   92.477805][ T5799] Bluetooth: hci2: command tx timeout
[   93.799102][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   94.047332][    T0] NOHZ tick-stop error: local softirq work is pending, handler #302!!!
[   94.163230][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   94.240609][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   94.318818][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   94.528140][ T5933] Zero length message leads to an empty skb
[   94.566471][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   95.089112][ T5938] loop3: detected capacity change from 0 to 4096
[   95.180004][ T5938] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[   95.216797][ T5938] ntfs3: loop3: Failed to load $LogFile (-22).
[   96.314296][ T5951] netlink: 12 bytes leftover after parsing attributes in process `syz.1.23'.
[   96.687354][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   96.887239][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   96.915019][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   97.017493][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   98.012976][ T5973] netlink: 'syz.1.29': attribute type 1 has an invalid length.
[   99.001553][ T5984] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   99.022737][ T5986] netlink: 9275 bytes leftover after parsing attributes in process `syz.2.32'.
[  100.092551][   T28] kauditd_printk_skb: 15 callbacks suppressed
[  100.092567][   T28] audit: type=1326 audit(1760756787.502:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.128647][   T28] audit: type=1326 audit(1760756787.542:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.181949][   T28] audit: type=1326 audit(1760756787.592:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.222843][   T28] audit: type=1326 audit(1760756787.592:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.250393][   T28] audit: type=1326 audit(1760756787.592:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.290735][   T28] audit: type=1326 audit(1760756787.592:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.311380][ T6007] netlink: 'syz.1.37': attribute type 10 has an invalid length.
[  100.321829][   T28] audit: type=1326 audit(1760756787.592:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.353355][   T28] audit: type=1326 audit(1760756787.592:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.376453][   T28] audit: type=1326 audit(1760756787.592:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.405899][ T6007] 8021q: adding VLAN 0 to HW filter on device team0
[  100.423228][ T6011] loop3: detected capacity change from 0 to 1024
[  100.430215][ T6007] bond0: (slave team0): Enslaving as an active interface with an up link
[  100.434005][   T28] audit: type=1326 audit(1760756787.592:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6003 comm="syz.0.36" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7fc00000
[  100.455119][ T6010] netlink: 'syz.1.37': attribute type 10 has an invalid length.
[  100.477881][ T6011] =======================================================
[  100.477881][ T6011] WARNING: The mand mount option has been deprecated and
[  100.477881][ T6011]          and is ignored by this kernel. Remove the mand
[  100.477881][ T6011]          option from the mount to silence this warning.
[  100.477881][ T6011] =======================================================
[  100.525836][ T6010] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  100.577022][ T6011] EXT4-fs: Ignoring removed bh option
[  100.603167][ T6011] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  100.646219][ T6012] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  100.790801][ T6011] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  100.804271][ T6012] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  101.062233][ T5790] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.867320][ T6040] loop1: detected capacity change from 0 to 1024
[  104.894796][ T6040] EXT4-fs: Ignoring removed nomblk_io_submit option
[  105.012846][ T6040] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  105.352728][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  107.575567][ T6066] loop3: detected capacity change from 0 to 8192
[  107.622100][ T6066] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  107.696437][ T6066] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  107.997620][ T6066] REISERFS (device loop3): using journaled data mode
[  108.129253][ T6066] reiserfs: using flush barriers
[  108.306933][ T6066] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  108.369152][ T6066] REISERFS (device loop3): checking transaction log (loop3)
[  108.411351][ T6066] REISERFS (device loop3): Using r5 hash to sort names
[  108.423136][ T6066] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  108.457394][ T6066] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  109.164259][ T6066] process 'syz.3.55' launched './file2' with NULL argv: empty string added
[  109.579153][ T5796] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  110.499365][ T5796] usb 3-1: Using ep0 maxpacket: 32
[  110.645006][ T5796] usb 3-1: config 0 has an invalid interface number: 12 but max is 0
[  110.676756][ T5796] usb 3-1: config 0 has no interface number 0
[  110.682961][ T5796] usb 3-1: config 0 interface 12 has no altsetting 0
[  110.694323][ T5796] usb 3-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[  110.723653][ T5796] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  110.745398][ T5796] usb 3-1: Product: syz
[  110.759671][ T5796] usb 3-1: Manufacturer: syz
[  110.764454][ T5796] usb 3-1: SerialNumber: syz
[  110.809341][ T5796] usb 3-1: config 0 descriptor??
[  110.892363][ T5796] f81534 3-1:0.12: required endpoints missing
[  112.184739][ T6108] loop1: detected capacity change from 0 to 128
[  112.523659][   T28] kauditd_printk_skb: 59 callbacks suppressed
[  112.523704][   T28] audit: type=1800 audit(1760756799.932:96): pid=6108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.66" name="file1" dev="loop1" ino=1048592 res=0 errno=0
[  112.635070][   T28] audit: type=1326 audit(1760756799.952:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  112.714806][   T28] audit: type=1326 audit(1760756799.952:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  112.787741][   T28] audit: type=1326 audit(1760756799.962:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  112.846971][   T28] audit: type=1326 audit(1760756799.962:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  112.873340][   T28] audit: type=1326 audit(1760756799.962:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  113.025160][   T28] audit: type=1326 audit(1760756799.962:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  113.228243][   T28] audit: type=1326 audit(1760756799.962:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  113.247639][   T42] kworker/u4:2: attempt to access beyond end of device
[  113.247639][   T42] loop1: rw=1, sector=145, nr_sectors = 88 limit=128
[  113.265442][   T28] audit: type=1326 audit(1760756799.962:104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  113.427222][   T28] audit: type=1326 audit(1760756799.962:105): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6113 comm="syz.0.69" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  113.493998][ T5837] usb 3-1: USB disconnect, device number 2
[  114.533962][ T6153] loop0: detected capacity change from 0 to 1024
[  114.592523][ T6153] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  114.621363][ T6153] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  114.715357][ T6153] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 3)
[  114.780914][ T6153] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  114.847000][ T6157] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  114.867212][ T6153] EXT4-fs (loop0): This should not happen!! Data will be lost
[  114.867212][ T6153] 
[  114.897625][ T6158] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  114.951138][ T6158] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  114.985754][ T6152] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  114.998620][ T6162] loop2: detected capacity change from 0 to 1024
[  115.018421][ T6158] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  115.034814][ T6162] EXT4-fs: Ignoring removed orlov option
[  115.039028][ T6152] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  115.091041][ T6158] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  115.092938][ T6162] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.124064][ T6152] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  115.146082][ T6158] EXT4-fs error (device loop0): ext4_map_blocks:608: inode #15: block 3: comm syz.0.82: lblock 3 mapped to illegal pblock 3 (length 1)
[  115.324941][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.557274][   T48] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  115.601758][   T48] EXT4-fs (loop0): This should not happen!! Data will be lost
[  115.601758][   T48] 
[  115.668657][ T6171] netlink: 'syz.2.87': attribute type 10 has an invalid length.
[  115.676990][ T5794] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  115.680491][ T6171] netlink: 40 bytes leftover after parsing attributes in process `syz.2.87'.
[  115.755433][ T6175] xt_nat: multiple ranges no longer supported
[  116.301591][ T6171] team0: Port device geneve0 added
[  116.312926][ T6174] netlink: 12 bytes leftover after parsing attributes in process `syz.3.88'.
[  119.338287][ T6198] loop1: detected capacity change from 0 to 8
[  119.454776][ T6198] SQUASHFS error: lzo decompression failed, data probably corrupt
[  119.494950][ T6198] SQUASHFS error: Failed to read block 0x91: -5
[  119.503495][ T6198] SQUASHFS error: Unable to read metadata cache entry [8f]
[  119.511358][ T6198] SQUASHFS error: Unable to read inode 0x11f
[  121.336655][    C1] sched: RT throttling activated
[  123.834095][ T6237] netlink: 16 bytes leftover after parsing attributes in process `syz.1.104'.
[  128.868880][ T6282] Cannot find map_set index 0 as target
[  130.549331][ T6284] loop0: detected capacity change from 0 to 40427
[  130.596235][ T6284] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504)
[  130.614479][ T6284] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  130.632726][ T6284] F2FS-fs (loop0): build fault injection attr: rate: 17008, type: 0x7ffff
[  130.642545][ T6284] F2FS-fs (loop0): build fault injection attr: rate: 0, type: 0x1f8
[  130.678826][ T6284] F2FS-fs (loop0): invalid crc value
[  130.723922][ T6284] F2FS-fs (loop0): Found nat_bits in checkpoint
[  130.905163][ T6284] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  130.927353][ T6284] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  131.296135][ T5794] syz-executor: attempt to access beyond end of device
[  131.296135][ T5794] loop0: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  131.336142][ T5794] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  131.345124][ T5794] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  133.361986][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  133.371166][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  134.126152][ T6296] netlink: 24 bytes leftover after parsing attributes in process `syz.3.121'.
[  134.706812][ T6340] netlink: 60 bytes leftover after parsing attributes in process `syz.2.131'.
[  134.752492][ T6340] unsupported nlmsg_type 40
[  135.230357][ T6352] bridge_slave_0: left allmulticast mode
[  135.238211][ T6352] bridge_slave_0: left promiscuous mode
[  135.266931][ T6352] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.376290][ T6352] bridge_slave_1: left allmulticast mode
[  135.386469][ T6352] bridge_slave_1: left promiscuous mode
[  135.396712][ T6352] bridge0: port 2(bridge_slave_1) entered disabled state
[  135.414522][ T6352] bond0: (slave bond_slave_0): Releasing backup interface
[  135.463076][ T6352] bond0: (slave bond_slave_1): Releasing backup interface
[  135.563284][ T6352] team0: Port device team_slave_0 removed
[  135.632170][ T6352] team0: Port device team_slave_1 removed
[  135.647853][ T6352] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  135.655378][ T6352] batman_adv: batadv0: Removing interface: batadv_slave_0
[  135.740573][ T6352] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  135.760580][ T6352] batman_adv: batadv0: Removing interface: batadv_slave_1
[  135.860343][ T6353] team0: Mode changed to "random"
[  138.249894][ T6399] loop0: detected capacity change from 0 to 128
[  138.295576][ T6382] syz.3.136 (6382) used greatest stack depth: 20296 bytes left
[  138.335557][ T6399] syz.0.145: attempt to access beyond end of device
[  138.335557][ T6399] loop0: rw=2049, sector=145, nr_sectors = 89 limit=128
[  138.545497][ T6399] syz.0.145: attempt to access beyond end of device
[  138.545497][ T6399] loop0: rw=2049, sector=241, nr_sectors = 800 limit=128
[  138.669251][ T6399] syz.0.145: attempt to access beyond end of device
[  138.669251][ T6399] loop0: rw=524288, sector=241, nr_sectors = 256 limit=128
[  138.710931][ T6399] syz.0.145: attempt to access beyond end of device
[  138.710931][ T6399] loop0: rw=0, sector=241, nr_sectors = 8 limit=128
[  138.759254][ T6406] syz.0.145: attempt to access beyond end of device
[  138.759254][ T6406] loop0: rw=0, sector=241, nr_sectors = 1 limit=128
[  138.818635][ T6399] syz.0.145: attempt to access beyond end of device
[  138.818635][ T6399] loop0: rw=0, sector=241, nr_sectors = 1 limit=128
[  138.858696][ T6399] Buffer I/O error on dev loop0, logical block 241, async page read
[  138.975813][ T6399] syz.0.145: attempt to access beyond end of device
[  138.975813][ T6399] loop0: rw=0, sector=242, nr_sectors = 1 limit=128
[  139.455654][ T6399] Buffer I/O error on dev loop0, logical block 242, async page read
[  139.492442][ T6399] syz.0.145: attempt to access beyond end of device
[  139.492442][ T6399] loop0: rw=0, sector=243, nr_sectors = 1 limit=128
[  139.571449][ T6399] Buffer I/O error on dev loop0, logical block 243, async page read
[  139.616856][ T6399] syz.0.145: attempt to access beyond end of device
[  139.616856][ T6399] loop0: rw=0, sector=244, nr_sectors = 1 limit=128
[  139.713170][ T6399] Buffer I/O error on dev loop0, logical block 244, async page read
[  139.814394][ T6399] syz.0.145: attempt to access beyond end of device
[  139.814394][ T6399] loop0: rw=0, sector=245, nr_sectors = 1 limit=128
[  139.891539][ T6399] Buffer I/O error on dev loop0, logical block 245, async page read
[  139.927438][ T6399] Buffer I/O error on dev loop0, logical block 246, async page read
[  139.937174][ T6399] Buffer I/O error on dev loop0, logical block 247, async page read
[  139.945907][ T6399] Buffer I/O error on dev loop0, logical block 248, async page read
[  139.990482][ T6420] batadv_slave_0: entered promiscuous mode
[  140.046864][ T6420] batadv_slave_0: left promiscuous mode
[  140.680482][ T6431] loop1: detected capacity change from 0 to 512
[  140.782524][ T6431] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.156: invalid indirect mapped block 1024 (level 0)
[  141.558126][ T6431] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.156: bg 0: block 35: padding at end of block bitmap is not set
[  141.643560][ T6431] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6637: Corrupt filesystem
[  141.706258][ T6431] EXT4-fs (loop1): 1 truncate cleaned up
[  141.729814][ T6431] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  141.899419][ T6424] netlink: 124 bytes leftover after parsing attributes in process `syz.1.156'.
[  142.060493][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.052093][ T6455] netlink: 12 bytes leftover after parsing attributes in process `syz.1.161'.
[  146.994553][   T28] kauditd_printk_skb: 21 callbacks suppressed
[  146.994574][   T28] audit: type=1326 audit(1760756834.402:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  147.082539][ T6468] loop2: detected capacity change from 0 to 2048
[  147.096463][   T28] audit: type=1326 audit(1760756834.432:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  147.176779][   T28] audit: type=1326 audit(1760756834.432:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  147.216767][   T28] audit: type=1326 audit(1760756834.432:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  147.318356][   T28] audit: type=1326 audit(1760756834.442:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  147.348413][ T6468] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  147.374555][   T28] audit: type=1326 audit(1760756834.442:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  147.462330][   T28] audit: type=1326 audit(1760756834.442:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  147.491060][   T28] audit: type=1326 audit(1760756834.442:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fbdfbf8f003 code=0x7ffc0000
[  147.523037][   T28] audit: type=1326 audit(1760756834.462:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fbdfbf8da7f code=0x7ffc0000
[  147.560440][   T28] audit: type=1326 audit(1760756834.492:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6467 comm="syz.2.166" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7fbdfbf8f057 code=0x7ffc0000
[  147.613665][ T5793] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  147.757391][ T5837] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  149.828600][ T5837] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  149.856689][ T5837] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  149.866562][ T5837] usb 1-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  149.878568][ T5837] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  149.930236][ T5837] usb 1-1: config 0 descriptor??
[  150.221629][ T6500] netlink: 4 bytes leftover after parsing attributes in process `syz.3.173'.
[  151.585894][ T6503] netlink: 4 bytes leftover after parsing attributes in process `syz.3.173'.
[  151.674430][ T6504] netlink: 'syz.3.173': attribute type 10 has an invalid length.
[  151.701827][ T5837] usbhid 1-1:0.0: can't add hid device: -71
[  151.729677][ T5837] usbhid: probe of 1-1:0.0 failed with error -71
[  151.806505][ T5837] usb 1-1: USB disconnect, device number 2
[  151.993371][ T6504] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  152.400835][ T6511] netlink: 4 bytes leftover after parsing attributes in process `syz.2.177'.
[  152.686648][ T6517] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  152.715844][ T6517] CIFS: Unable to determine destination address
[  154.397824][ T6533] loop1: detected capacity change from 0 to 128
[  154.485394][ T6533] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  154.514002][ T6533] ext4 filesystem being mounted at /53/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  154.767177][ T6541] hugetlbfs: syz.2.185 (6541): Using mlock ulimits for SHM_HUGETLB is obsolete
[  155.360341][ T6533] EXT4-fs error (device loop1): dx_make_map:1328: inode #2: block 20: comm syz.1.183: bad entry in directory: inode out of bounds - offset=988, inode=128, rec_len=36, size=1024 fake=1
[  155.467592][ T6533] EXT4-fs error (device loop1) in do_split:2095: Corrupt filesystem
[  155.543045][ T6533] EXT4-fs error (device loop1): htree_dirblock_to_tree:1112: inode #2: block 20: comm syz.1.183: bad entry in directory: inode out of bounds - offset=2012, inode=128, rec_len=36, size=1024 fake=1
[  155.621765][ T5789] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  156.751582][ T6559] loop0: detected capacity change from 0 to 256
[  156.863734][ T6562] bond0: (slave syz_tun): Releasing backup interface
[  156.874114][ T6559] FAT-fs (loop0): Directory bread(block 64) failed
[  156.891205][ T6559] FAT-fs (loop0): Directory bread(block 65) failed
[  156.904732][ T6559] FAT-fs (loop0): Directory bread(block 66) failed
[  156.917590][ T6562] bond0: (slave team0): Releasing backup interface
[  156.935378][ T6559] FAT-fs (loop0): Directory bread(block 67) failed
[  156.937148][ T3373] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  156.955819][ T6559] FAT-fs (loop0): Directory bread(block 68) failed
[  156.975318][ T6559] FAT-fs (loop0): Directory bread(block 69) failed
[  156.984144][ T6559] FAT-fs (loop0): Directory bread(block 70) failed
[  156.992018][ T6559] FAT-fs (loop0): Directory bread(block 71) failed
[  157.001623][ T6559] FAT-fs (loop0): Directory bread(block 72) failed
[  157.009701][ T6562] bridge_slave_0: left allmulticast mode
[  157.030031][ T6562] bridge_slave_0: left promiscuous mode
[  157.036374][ T6562] bridge0: port 1(bridge_slave_0) entered disabled state
[  157.045652][ T6559] FAT-fs (loop0): Directory bread(block 73) failed
[  157.075278][ T6562] bridge_slave_1: left allmulticast mode
[  157.091717][ T6562] bridge_slave_1: left promiscuous mode
[  157.105596][ T6562] bridge0: port 2(bridge_slave_1) entered disabled state
[  157.145515][ T6562] bond0: (slave bond_slave_0): Releasing backup interface
[  157.157718][ T3373] usb 4-1: Using ep0 maxpacket: 32
[  157.192756][ T3373] usb 4-1: config 0 has an invalid interface number: 67 but max is 0
[  157.202578][ T6562] bond0: (slave bond_slave_1): Releasing backup interface
[  157.210508][ T3373] usb 4-1: config 0 has no interface number 0
[  157.244897][ T3373] usb 4-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  157.259244][ T3373] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.268248][ T3373] usb 4-1: Product: syz
[  157.272585][ T3373] usb 4-1: Manufacturer: syz
[  157.273360][ T6562] team0: Port device team_slave_0 removed
[  157.277440][ T3373] usb 4-1: SerialNumber: syz
[  157.283088][ T3373] usb 4-1: config 0 descriptor??
[  157.312604][ T3373] smsc95xx v2.0.0
[  157.316955][ T3373] smsc95xx 4-1:0.67 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  157.360116][ T3373] smsc95xx: probe of 4-1:0.67 failed with error -22
[  157.369351][ T6562] team0: Port device team_slave_1 removed
[  157.392243][ T6562] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  157.406916][ T6562] batman_adv: batadv0: Removing interface: batadv_slave_0
[  157.424866][ T6562] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  157.434810][ T6562] batman_adv: batadv0: Removing interface: batadv_slave_1
[  157.483428][ T6563] netlink: 'syz.1.192': attribute type 10 has an invalid length.
[  157.569284][ T6563] 8021q: adding VLAN 0 to HW filter on device bond0
[  157.623189][ T6563] team0: Port device bond0 added
[  158.002114][ T6555] loop3: detected capacity change from 0 to 1024
[  158.031092][ T6555] bio_check_eod: 3 callbacks suppressed
[  158.031110][ T6555] syz.3.190: attempt to access beyond end of device
[  158.031110][ T6555] loop3: rw=0, sector=8589934590, nr_sectors = 2 limit=1024
[  158.055911][ T6555] Buffer I/O error on dev loop3, logical block 4294967295, async page read
[  158.069098][ T6555] hfsplus: failed to load extents file
[  158.124343][ T6575] netlink: 'syz.2.194': attribute type 1 has an invalid length.
[  159.434595][ T6579] loop2: detected capacity change from 0 to 8192
[  159.456000][ T6579] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  159.486145][ T6579] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  159.506861][ T6579] REISERFS (device loop2): using ordered data mode
[  159.513649][ T6579] reiserfs: using flush barriers
[  159.557700][ T6579] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  159.574846][ T6579] REISERFS (device loop2): checking transaction log (loop2)
[  159.664078][    T9] usb 4-1: USB disconnect, device number 2
[  160.822501][ T6579] REISERFS (device loop2): Using tea hash to sort names
[  160.841743][ T6579] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  160.872189][ T6579] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  160.934754][ T6590] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: 1
[  160.968532][ T6590] ref_ctr increment failed for inode: 0xf9 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88807b3f5f00
[  161.033019][ T6593] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -14123, delta: -1
[  161.050073][ T5799] Bluetooth: hci1: command tx timeout
[  161.059644][ T6593] ref_ctr decrement failed for inode: 0xf9 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88807b3f5f00
[  161.180098][ T6595] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  161.413480][ T6598] netlink: 12 bytes leftover after parsing attributes in process `syz.3.202'.
[  161.573290][ T6598] veth1: entered promiscuous mode
[  161.591884][ T6598] bridge1: entered promiscuous mode
[  161.605561][ T6598] hsr1: entered promiscuous mode
[  161.912615][ T6601] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  161.932259][ T6602] netlink: 4 bytes leftover after parsing attributes in process `syz.0.203'.
[  162.113702][ T6609] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  162.364083][ T6592] syz.1.201: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[  162.390593][ T6592] CPU: 0 PID: 6592 Comm: syz.1.201 Not tainted syzkaller #0
[  162.398079][ T6592] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  162.408288][ T6592] Call Trace:
[  162.411632][ T6592]  <TASK>
[  162.414706][ T6592]  dump_stack_lvl+0x16c/0x230
[  162.419731][ T6592]  ? show_regs_print_info+0x20/0x20
[  162.424988][ T6592]  ? load_image+0x3b0/0x3b0
[  162.429630][ T6592]  ? __rcu_read_unlock+0x7c/0xd0
[  162.434683][ T6592]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  162.441168][ T6592]  ? cpuset_print_current_mems_allowed+0x2e3/0x360
[  162.447874][ T6592]  warn_alloc+0x210/0x300
[  162.452240][ T6592]  ? zone_watermark_ok_safe+0x230/0x230
[  162.457913][ T6592]  ? _raw_spin_unlock+0x28/0x40
[  162.462782][ T6592]  ? netlink_rcv_skb+0x216/0x480
[  162.468013][ T6592]  __vmalloc_node_range+0x662/0x1320
[  162.473350][ T6592]  ? __asan_memset+0x22/0x40
[  162.477989][ T6592]  ? free_vm_area+0x50/0x50
[  162.482601][ T6592]  ? kvmalloc_node+0x70/0x180
[  162.487308][ T6592]  ? rcu_is_watching+0x15/0xb0
[  162.492214][ T6592]  ? kvmalloc_node+0x70/0x180
[  162.497426][ T6592]  ? trace_kmalloc+0x1f/0xa0
[  162.502094][ T6592]  kvmalloc_node+0x13f/0x180
[  162.506844][ T6592]  ? hash_netport4_resize+0x232/0x1b50
[  162.512860][ T6592]  hash_netport4_resize+0x232/0x1b50
[  162.518477][ T6592]  ? hash_netport4_uadt+0xc1f/0xed0
[  162.523941][ T6592]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  162.530161][ T6592]  ? hash_netport4_uadt+0xed0/0xed0
[  162.535417][ T6592]  ? hash_netport4_kadt+0x560/0x560
[  162.540672][ T6592]  ? _local_bh_enable+0xa0/0xa0
[  162.545779][ T6592]  call_ad+0x43f/0xae0
[  162.550189][ T6592]  ? ip_set_ad+0x930/0x930
[  162.554780][ T6592]  ? __nla_parse+0x40/0x50
[  162.559253][ T6592]  ip_set_ad+0x787/0x930
[  162.563574][ T6592]  ? trace_raw_output_contention_begin+0xf0/0xf0
[  162.569972][ T6592]  ? ip_set_dump_done+0x1e0/0x1e0
[  162.575352][ T6592]  ? rcu_is_watching+0x15/0xb0
[  162.580438][ T6592]  nfnetlink_rcv_msg+0xb49/0x1130
[  162.585527][ T6592]  ? entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  162.591641][ T6592]  ? nfnetlink_rcv_msg+0x20e/0x1130
[  162.597210][ T6592]  ? nfnetlink_unbind+0x160/0x160
[  162.602324][ T6592]  ? __dev_queue_xmit+0x1a64/0x35a0
[  162.607775][ T6592]  ? __netlink_deliver_tap+0x5ab/0x830
[  162.613956][ T6592]  ? netlink_deliver_tap+0x19c/0x1b0
[  162.619675][ T6592]  ? netlink_unicast+0x72c/0x8d0
[  162.624854][ T6592]  ? netlink_sendmsg+0x8c1/0xbe0
[  162.629851][ T6592]  ? ____sys_sendmsg+0x5bf/0x950
[  162.634994][ T6592]  ? ___sys_sendmsg+0x220/0x290
[  162.640012][ T6592]  ? __se_sys_sendmsg+0x1a5/0x270
[  162.645112][ T6592]  ? do_syscall_64+0x55/0xb0
[  162.649884][ T6592]  netlink_rcv_skb+0x216/0x480
[  162.654719][ T6592]  ? nfnetlink_unbind+0x160/0x160
[  162.659906][ T6592]  ? netlink_ack+0x1110/0x1110
[  162.664715][ T6592]  ? apparmor_capable+0x137/0x1a0
[  162.669864][ T6592]  ? bpf_lsm_capable+0x9/0x10
[  162.675199][ T6592]  ? security_capable+0x89/0xb0
[  162.680234][ T6592]  nfnetlink_rcv+0x274/0x2180
[  162.685081][ T6592]  ? __local_bh_enable_ip+0x12e/0x1c0
[  162.690567][ T6592]  ? lockdep_hardirqs_on+0x98/0x150
[  162.695915][ T6592]  ? __local_bh_enable_ip+0x12e/0x1c0
[  162.701506][ T6592]  ? _local_bh_enable+0xa0/0xa0
[  162.706650][ T6592]  ? __dev_queue_xmit+0x245/0x35a0
[  162.711821][ T6592]  ? nfnetlink_net_exit_batch+0xa0/0xa0
[  162.717423][ T6592]  ? __dev_queue_xmit+0x245/0x35a0
[  162.722681][ T6592]  ? ref_tracker_free+0x634/0x7d0
[  162.728533][ T6592]  ? __copy_skb_header+0xa7/0x550
[  162.733686][ T6592]  ? refcount_inc+0x70/0x70
[  162.738238][ T6592]  ? __skb_clone+0x63/0x790
[  162.743169][ T6592]  ? __skb_clone+0x480/0x790
[  162.747972][ T6592]  ? __netlink_deliver_tap+0x7e8/0x830
[  162.753639][ T6592]  ? netlink_deliver_tap+0x2e/0x1b0
[  162.759325][ T6592]  ? __lock_acquire+0x7c80/0x7c80
[  162.764401][ T6592]  ? netlink_deliver_tap+0x2e/0x1b0
[  162.769736][ T6592]  netlink_unicast+0x751/0x8d0
[  162.774644][ T6592]  netlink_sendmsg+0x8c1/0xbe0
[  162.779833][ T6592]  ? netlink_getsockopt+0x580/0x580
[  162.785164][ T6592]  ? aa_sock_msg_perm+0x94/0x150
[  162.790234][ T6592]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  162.795742][ T6592]  ? security_socket_sendmsg+0x80/0xa0
[  162.801421][ T6592]  ? netlink_getsockopt+0x580/0x580
[  162.806696][ T6592]  ____sys_sendmsg+0x5bf/0x950
[  162.811887][ T6592]  ? __asan_memset+0x22/0x40
[  162.816706][ T6592]  ? __sys_sendmsg_sock+0x30/0x30
[  162.821866][ T6592]  ? __import_iovec+0x5f2/0x860
[  162.826754][ T6592]  ? import_iovec+0x73/0xa0
[  162.831287][ T6592]  ___sys_sendmsg+0x220/0x290
[  162.836086][ T6592]  ? __sys_sendmsg+0x270/0x270
[  162.840965][ T6592]  __se_sys_sendmsg+0x1a5/0x270
[  162.845890][ T6592]  ? __x64_sys_sendmsg+0x80/0x80
[  162.850914][ T6592]  ? lockdep_hardirqs_on+0x98/0x150
[  162.856178][ T6592]  do_syscall_64+0x55/0xb0
[  162.860638][ T6592]  ? clear_bhb_loop+0x40/0x90
[  162.865458][ T6592]  ? clear_bhb_loop+0x40/0x90
[  162.870161][ T6592]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  162.876071][ T6592] RIP: 0033:0x7f15f758efc9
[  162.880544][ T6592] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  162.900363][ T6592] RSP: 002b:00007f15f83e3038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  162.908813][ T6592] RAX: ffffffffffffffda RBX: 00007f15f77e5fa0 RCX: 00007f15f758efc9
[  162.916828][ T6592] RDX: 0000000000000080 RSI: 00002000000002c0 RDI: 0000000000000004
[  162.924931][ T6592] RBP: 00007f15f7611f91 R08: 0000000000000000 R09: 0000000000000000
[  162.932948][ T6592] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  162.940948][ T6592] R13: 00007f15f77e6038 R14: 00007f15f77e5fa0 R15: 00007ffd531e3d08
[  162.949041][ T6592]  </TASK>
[  163.036833][ T6592] Mem-Info:
[  163.040102][ T6592] active_anon:6860 inactive_anon:0 isolated_anon:0
[  163.040102][ T6592]  active_file:1125 inactive_file:39902 isolated_file:0
[  163.040102][ T6592]  unevictable:768 dirty:271 writeback:0
[  163.040102][ T6592]  slab_reclaimable:10043 slab_unreclaimable:93183
[  163.040102][ T6592]  mapped:24450 shmem:1361 pagetables:580
[  163.040102][ T6592]  sec_pagetables:0 bounce:0
[  163.040102][ T6592]  kernel_misc_reclaimable:0
[  163.040102][ T6592]  free:1347157 free_pcp:12725 free_cma:0
[  163.154175][ T6592] Node 0 active_anon:27740kB inactive_anon:0kB active_file:4500kB inactive_file:159404kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:97800kB dirty:1084kB writeback:0kB shmem:3908kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11564kB pagetables:2320kB sec_pagetables:0kB all_unreclaimable? no
[  163.296718][ T6592] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  163.456100][ T6592] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  163.516876][ T6592] lowmem_reserve[]: 0 2525 2526 2526 2526
[  163.523218][ T6592] Node 0 DMA32 free:1506764kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:28612kB inactive_anon:0kB active_file:4500kB inactive_file:158084kB unevictable:1536kB writepending:1100kB present:3129332kB managed:2589604kB mlocked:0kB bounce:0kB free_pcp:32700kB local_pcp:13952kB free_cma:0kB
[  163.696734][ T6592] lowmem_reserve[]: 0 0 1 1 1
[  163.740191][ T6592] Node 0 Normal free:20kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:44kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  163.826813][ T6592] lowmem_reserve[]: 0 0 0 0 0
[  163.831740][ T6592] Node 1 Normal free:3890172kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:204kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:18848kB local_pcp:9312kB free_cma:0kB
[  163.900898][ T6592] lowmem_reserve[]: 0 0 0 0 0
[  163.919612][ T6592] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  163.934804][ T6592] Node 0 DMA32: 1523*4kB (UME) 512*8kB (UME) 281*16kB (UME) 426*32kB (UME) 127*64kB (UME) 63*128kB (UME) 25*256kB (UME) 16*512kB (UM) 8*1024kB (UM) 6*2048kB (UM) 357*4096kB (UM) = 1541852kB
[  163.972801][ T6592] Node 0 Normal: 1*4kB (M) 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 20kB
[  164.017772][ T6592] Node 1 Normal: 233*4kB (UME) 43*8kB (UME) 36*16kB (UME) 82*32kB (UME) 26*64kB (UME) 6*128kB (UME) 1*256kB (M) 0*512kB 0*1024kB 2*2048kB (UE) 947*4096kB (M) = 3890172kB
[  164.045845][ T6592] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  164.079393][ T6592] Node 0 hugepages_total=2 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  164.119029][ T6592] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  164.159529][ T6592] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  164.178686][ T6592] 42653 total pagecache pages
[  164.183625][ T6592] 0 pages in swap cache
[  164.189068][ T6592] Free swap  = 124200kB
[  164.206912][ T6592] Total swap = 124996kB
[  164.211303][ T6592] 2097051 pages RAM
[  164.215443][ T6592] 0 pages HighMem/MovableOnly
[  164.223507][ T6592] 416136 pages reserved
[  164.227963][ T6592] 0 pages cma reserved
[  164.474523][ T6625] netlink: 'syz.0.208': attribute type 1 has an invalid length.
[  164.519601][ T6625] netlink: 'syz.0.208': attribute type 4 has an invalid length.
[  164.546860][ T6625] netlink: 15334 bytes leftover after parsing attributes in process `syz.0.208'.
[  165.953365][ T6643] netlink: 44 bytes leftover after parsing attributes in process `syz.2.216'.
[  165.975819][ T6643] netlink: 8 bytes leftover after parsing attributes in process `syz.2.216'.
[  165.994933][ T6643] netlink: 16 bytes leftover after parsing attributes in process `syz.2.216'.
[  167.642291][ T6672] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  167.671564][ T6672] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  170.550368][ T6677] cgroup: fork rejected by pids controller in /syz3
[  172.658446][ T6740] xt_cgroup: path and classid specified
[  173.617148][ T6745] netlink: 9 bytes leftover after parsing attributes in process `syz.1.234'.
[  173.657518][ T6745] gretap0: entered promiscuous mode
[  174.160162][ T6749] loop0: detected capacity change from 0 to 256
[  174.818078][ T6745] syz.1.234 (6745) used greatest stack depth: 20232 bytes left
[  175.530675][ T6756] netdevsim netdevsim1 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  175.540088][ T6756] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  175.549066][ T6756] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  175.559036][ T6756] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  175.568619][ T6756] geneve2: entered promiscuous mode
[  175.574088][ T6756] geneve2: entered allmulticast mode
[  175.592741][ T6757] syz.0.237[6757] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.592846][ T6757] syz.0.237[6757] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  175.711138][ T6756] netdevsim netdevsim1 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  175.816219][ T6756] netdevsim netdevsim1 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  175.880053][ T6756] netdevsim netdevsim1 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  175.899330][ T6756] netdevsim netdevsim1 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  176.010154][ T6765] loop3: detected capacity change from 0 to 128
[  176.047085][ T6765] FAT-fs (loop3): bogus number of FAT sectors
[  176.057825][ T6765] FAT-fs (loop3): Can't find a valid FAT filesystem
[  176.133008][ T6765] netlink: 20 bytes leftover after parsing attributes in process `syz.3.238'.
[  176.202125][ T6765] netlink: 16 bytes leftover after parsing attributes in process `syz.3.238'.
[  176.273014][  T787] IPVS: starting estimator thread 0...
[  176.416914][ T6769] IPVS: using max 25 ests per chain, 60000 per kthread
[  183.042032][ T6835] capability: warning: `syz.2.264' uses deprecated v2 capabilities in a way that may be insecure
[  183.398442][ T6839] team0: Port device bond0 removed
[  183.593223][ T6840] team0: Mode changed to "loadbalance"
[  183.648398][ T6844] vlan0: entered promiscuous mode
[  183.825090][ T6844] team0: Port device vlan0 added
[  183.863508][ T6845] warning: `syz.2.267' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  184.082922][ T6839] tipc: Started in network mode
[  184.113195][ T6839] tipc: Node identity aaaaaaaaaa1a, cluster identity 4711
[  184.153439][ T6839] tipc: Enabled bearer <eth:team0>, priority 0
[  185.287757][ T5848] tipc: Node number set to 11578026
[  186.477315][ T6880] loop3: detected capacity change from 0 to 512
[  186.534710][ T6880] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  186.575010][ T6880] EXT4-fs (loop3): external journal device major/minor numbers have changed
[  186.701257][ T6878] netlink: 4 bytes leftover after parsing attributes in process `syz.0.277'.
[  186.895881][ T6880] EXT4-fs (loop3): failed to open journal device unknown-block(0,8195) -6
[  190.067095][ T6916] netem: change failed
[  191.260754][ T6925] GUP no longer grows the stack in syz.2.291 (6925): 200000004000-200000008000 (200000002000)
[  191.296764][ T6925] CPU: 0 PID: 6925 Comm: syz.2.291 Not tainted syzkaller #0
[  191.304321][ T6925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  191.314489][ T6925] Call Trace:
[  191.317793][ T6925]  <TASK>
[  191.320746][ T6925]  dump_stack_lvl+0x16c/0x230
[  191.325461][ T6925]  ? show_regs_print_info+0x20/0x20
[  191.330706][ T6925]  ? load_image+0x3b0/0x3b0
[  191.335437][ T6925]  ? find_vma+0x12e/0x1b0
[  191.340065][ T6925]  __get_user_pages+0xfb9/0x1470
[  191.345066][ T6925]  ? populate_vma_page_range+0x370/0x370
[  191.350784][ T6925]  get_user_pages_remote+0x3de/0xc10
[  191.356124][ T6925]  ? get_dump_page+0x200/0x200
[  191.361120][ T6925]  __access_remote_vm+0x1ff/0x570
[  191.366361][ T6925]  ? generic_access_phys+0x650/0x650
[  191.371844][ T6925]  ? alloc_pages+0x4dc/0x740
[  191.376553][ T6925]  ? do_raw_spin_unlock+0x121/0x230
[  191.381818][ T6925]  proc_pid_cmdline_read+0x551/0x830
[  191.387136][ T6925]  ? _raw_spin_unlock+0x40/0x40
[  191.392212][ T6925]  ? comm_show+0x150/0x150
[  191.396676][ T6925]  ? common_file_perm+0xe0/0x1f0
[  191.401663][ T6925]  ? fsnotify_perm+0x271/0x5e0
[  191.406609][ T6925]  do_iter_read+0x506/0xc80
[  191.411195][ T6925]  ? comm_show+0x150/0x150
[  191.415688][ T6925]  ? vfs_iter_read+0xa0/0xa0
[  191.420329][ T6925]  ? __import_iovec+0x5f2/0x860
[  191.425309][ T6925]  ? import_iovec+0x73/0xa0
[  191.430068][ T6925]  do_preadv+0x1fa/0x330
[  191.434483][ T6925]  ? do_writev+0x410/0x410
[  191.438963][ T6925]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  191.444980][ T6925]  ? lock_chain_count+0x20/0x20
[  191.449892][ T6925]  ? lockdep_hardirqs_on+0x98/0x150
[  191.455124][ T6925]  do_syscall_64+0x55/0xb0
[  191.459845][ T6925]  ? clear_bhb_loop+0x40/0x90
[  191.464929][ T6925]  ? clear_bhb_loop+0x40/0x90
[  191.469819][ T6925]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  191.475743][ T6925] RIP: 0033:0x7fbdfbf8efc9
[  191.480189][ T6925] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  191.499846][ T6925] RSP: 002b:00007fbdfa1f6038 EFLAGS: 00000246 ORIG_RAX: 0000000000000127
[  191.508761][ T6925] RAX: ffffffffffffffda RBX: 00007fbdfc1e5fa0 RCX: 00007fbdfbf8efc9
[  191.517061][ T6925] RDX: 0000000000000001 RSI: 0000200000000d00 RDI: 0000000000000006
[  191.525058][ T6925] RBP: 00007fbdfc011f91 R08: 0000000000000200 R09: 0000000000000000
[  191.533145][ T6925] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  191.541241][ T6925] R13: 00007fbdfc1e6038 R14: 00007fbdfc1e5fa0 R15: 00007fff362ee5d8
[  191.549349][ T6925]  </TASK>
[  191.751233][   T28] kauditd_printk_skb: 22 callbacks suppressed
[  191.751253][   T28] audit: type=1326 audit(1760756879.152:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  191.933127][   T28] audit: type=1326 audit(1760756879.152:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.039993][   T28] audit: type=1326 audit(1760756879.192:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.125424][ T6933] loop3: detected capacity change from 0 to 4096
[  192.132935][   T28] audit: type=1326 audit(1760756879.192:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.211414][   T28] audit: type=1326 audit(1760756879.192:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.445764][   T28] audit: type=1326 audit(1760756879.402:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.655279][   T28] audit: type=1326 audit(1760756879.402:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.693006][ T6932] pimreg: entered allmulticast mode
[  192.719181][   T28] audit: type=1326 audit(1760756879.412:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.839363][   T28] audit: type=1326 audit(1760756879.412:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.886897][   T28] audit: type=1326 audit(1760756879.412:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6929 comm="syz.2.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbdfbf8efc9 code=0x7ffc0000
[  192.888252][ T6939] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  192.980428][ T6929] pimreg: left allmulticast mode
[  193.456285][    T9] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  194.177995][    T9] usb 4-1: Using ep0 maxpacket: 32
[  194.221452][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  194.266963][    T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  194.292378][    T9] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  194.334182][    T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  194.381551][    T9] usb 4-1: config 0 descriptor??
[  194.807380][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[  194.814310][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[  195.925922][    T9] usbhid 4-1:0.0: can't add hid device: -71
[  195.951364][    T9] usbhid: probe of 4-1:0.0 failed with error -71
[  195.968871][    T9] usb 4-1: USB disconnect, device number 3
[  196.560253][  T787] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  197.076748][  T787] usb 1-1: Using ep0 maxpacket: 8
[  197.085323][  T787] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  197.098755][  T787] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  197.109086][  T787] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  197.119597][  T787] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  197.134268][  T787] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  197.143934][  T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  197.989932][ T6972] loop2: detected capacity change from 0 to 512
[  198.062428][ T5799] Bluetooth: hci1: ACL packet too small
[  198.070074][ T5799] Bluetooth: Unexpected continuation frame (len 10)
[  198.097534][ T6972] EXT4-fs (loop2): external journal device major/minor numbers have changed
[  198.117216][  T787] usb 1-1: GET_CAPABILITIES returned 0
[  198.136250][  T787] usbtmc 1-1:16.0: can't read capabilities
[  198.163280][ T6974] loop3: detected capacity change from 0 to 256
[  198.200753][ T6974] exfat: Deprecated parameter 'namecase'
[  198.207844][ T6974] exfat: Unknown parameter 'obj_user'
[  198.327985][ T6963] 9pnet_virtio: no channels available for device syz
[  198.372846][ T5848] usb 1-1: USB disconnect, device number 3
[  198.803463][ T6972] EXT4-fs (loop2): failed to open journal device unknown-block(0,8195) -6
[  200.081087][ T6985] tc_dump_action: action bad kind
[  200.302530][ T6985] loop3: detected capacity change from 0 to 256
[  201.181825][ T6985] FAT-fs (loop3): IO charset cp8 not found
[  201.223994][ T6985] capability: warning: `syz.3.309' uses 32-bit capabilities (legacy support in use)
[  202.024693][   T28] kauditd_printk_skb: 13 callbacks suppressed
[  202.024710][   T28] audit: type=1326 audit(1760757145.416:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="syz.0.317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.059688][   T28] audit: type=1326 audit(1760757145.416:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="syz.0.317" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.103544][   T28] audit: type=1326 audit(1760757145.416:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.127175][   T28] audit: type=1326 audit(1760757145.416:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=55 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.202290][   T28] audit: type=1326 audit(1760757145.416:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.215658][ T7013] loop0: detected capacity change from 0 to 512
[  202.275212][   T28] audit: type=1326 audit(1760757145.416:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.305335][ T7013] EXT4-fs (loop0): external journal device major/minor numbers have changed
[  202.358220][   T28] audit: type=1326 audit(1760757145.416:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.397063][ T7015] pim6reg: entered allmulticast mode
[  202.419535][ T7015] pim6reg: left allmulticast mode
[  202.428398][   T28] audit: type=1326 audit(1760757145.426:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7007 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f619bd8efc9 code=0x7ffc0000
[  202.690041][ T7013] EXT4-fs (loop0): failed to open journal device unknown-block(0,8195) -6
[  312.566679][    C1] ------------[ cut here ]------------
[  312.573424][    C1] WARNING: CPU: 1 PID: 7028 at kernel/rcu/tree_stall.h:1001 rcu_check_gp_start_stall+0x2dc/0x460
[  312.584190][    C1] Modules linked in:
[  312.588455][    C1] CPU: 1 PID: 7028 Comm: syz.1.322 Not tainted syzkaller #0
[  312.596746][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  312.607312][    C1] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[  312.614374][    C1] Code: ff ff ff 48 c7 c7 a0 04 ef 96 be 04 00 00 00 e8 9a ba 6c 00 48 89 df b8 01 00 00 00 87 05 7c d9 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 80 51 d3 8c 74 47 48 c7 c0 1c ba 4a 8e 48 c1 e8 03
[  312.634714][    C1] RSP: 0018:ffffc900001f0bb8 EFLAGS: 00010046
[  312.640874][    C1] RAX: 0000000000000000 RBX: ffffffff8cd35180 RCX: ffffffff81702b16
[  312.648939][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35180
[  312.657127][    C1] RBP: ffffc900001f0e30 R08: 0000000000000003 R09: 0000000000000004
[  312.665133][    C1] R10: dffffc0000000000 R11: fffffbfff2dde094 R12: 0000000000002904
[  312.673244][    C1] R13: 1ffff110171e7a22 R14: 0000000000000a02 R15: dffffc0000000000
[  312.681684][    C1] FS:  00007f15f83e36c0(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  312.690813][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  312.697433][    C1] CR2: 0000200000000058 CR3: 000000001b70b000 CR4: 00000000003506e0
[  312.705611][    C1] Call Trace:
[  312.709224][    C1]  <IRQ>
[  312.712114][    C1]  rcu_core+0x612/0x1720
[  312.716479][    C1]  ? ktime_get+0x7f/0x280
[  312.720940][    C1]  ? rcu_cpu_kthread_park+0x90/0x90
[  312.726468][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  312.731794][    C1]  ? sched_clock+0x3f/0x60
[  312.736383][    C1]  ? sched_clock_cpu+0x75/0x430
[  312.741564][    C1]  ? ktime_get+0x7f/0x280
[  312.746025][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  312.752023][    C1]  ? lock_chain_count+0x20/0x20
[  312.756955][    C1]  handle_softirqs+0x280/0x820
[  312.761835][    C1]  ? __irq_exit_rcu+0xc7/0x190
[  312.766857][    C1]  ? do_softirq+0x180/0x180
[  312.771446][    C1]  __irq_exit_rcu+0xc7/0x190
[  312.776258][    C1]  ? irq_exit_rcu+0x20/0x20
[  312.780927][    C1]  irq_exit_rcu+0x9/0x20
[  312.785477][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  312.791140][    C1]  </IRQ>
[  312.794098][    C1]  <TASK>
[  312.797143][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  312.803449][    C1] RIP: 0010:kasan_save_alloc_info+0x0/0x30
[  312.809754][    C1] Code: ff 48 89 c3 e8 91 da ff ff 89 43 08 5b 41 5e 41 5f c3 0f 1f 84 00 00 00 00 00 66 0f 1f 00 31 f6 e9 35 ff ff ff 0f 1f 44 00 00 <66> 0f 1f 00 48 63 87 bc 00 00 00 48 85 c0 0f 94 c1 48 01 c6 0f 94
[  312.829914][    C1] RSP: 0018:ffffc9000457f9d0 EFLAGS: 00000246
[  312.836012][    C1] RAX: 0000000000000000 RBX: ffff88801df5a2a0 RCX: 0000000000000000
[  312.844038][    C1] RDX: 0000000000000dc0 RSI: ffff88801df5a2a0 RDI: ffff88814007f280
[  312.852310][    C1] RBP: 0000000000000dc0 R08: 0000000000000004 R09: 0000000000000004
[  312.860400][    C1] R10: ffffed1003beb454 R11: fffffbfff1c950ae R12: 0000000000000001
[  312.868670][    C1] R13: 0000000000000110 R14: ffff88814007f280 R15: 0000000000000001
[  312.877216][    C1]  __kasan_slab_alloc+0x6c/0x80
[  312.882153][    C1]  slab_post_alloc_hook+0x6e/0x4d0
[  312.887387][    C1]  kmem_cache_alloc+0x11e/0x2e0
[  312.892346][    C1]  ? flock_lock_inode+0x226/0x17e0
[  312.897522][    C1]  flock_lock_inode+0x226/0x17e0
[  312.902480][    C1]  ? aa_file_perm+0x3e8/0xec0
[  312.907457][    C1]  ? check_conflicting_open+0x230/0x230
[  312.913407][    C1]  locks_lock_inode_wait+0x10d/0x460
[  312.918815][    C1]  ? fcntl_setlease+0x340/0x340
[  312.923802][    C1]  ? lockdep_softirqs_off+0x430/0x430
[  312.929332][    C1]  ? __fget_files+0x44a/0x4d0
[  312.934234][    C1]  ? end_current_label_crit_section+0x149/0x170
[  312.940489][    C1]  ? common_file_perm+0x198/0x1f0
[  312.945545][    C1]  ? bpf_lsm_file_lock+0x9/0x10
[  312.950580][    C1]  __se_sys_flock+0x46d/0x5a0
[  312.955375][    C1]  ? __x64_sys_flock+0x60/0x60
[  312.960381][    C1]  ? lock_chain_count+0x20/0x20
[  312.965382][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  312.970636][    C1]  do_syscall_64+0x55/0xb0
[  312.975425][    C1]  ? clear_bhb_loop+0x40/0x90
[  312.980656][    C1]  ? clear_bhb_loop+0x40/0x90
[  312.985529][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  312.991837][    C1] RIP: 0033:0x7f15f758efc9
[  312.997892][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.019457][    C1] RSP: 002b:00007f15f83e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000049
[  313.027905][    C1] RAX: ffffffffffffffda RBX: 00007f15f77e5fa0 RCX: 00007f15f758efc9
[  313.036273][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000004
[  313.044269][    C1] RBP: 00007f15f7611f91 R08: 0000000000000000 R09: 0000000000000000
[  313.052628][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  313.060798][    C1] R13: 00007f15f77e6038 R14: 00007f15f77e5fa0 R15: 00007ffd531e3d08
[  313.069333][    C1]  </TASK>
[  313.072664][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  313.080173][    C1] CPU: 1 PID: 7028 Comm: syz.1.322 Not tainted syzkaller #0
[  313.087846][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  313.098597][    C1] Call Trace:
[  313.102011][    C1]  <IRQ>
[  313.105078][    C1]  dump_stack_lvl+0x16c/0x230
[  313.110119][    C1]  ? show_regs_print_info+0x20/0x20
[  313.115989][    C1]  ? load_image+0x3b0/0x3b0
[  313.120646][    C1]  panic+0x2c0/0x710
[  313.124660][    C1]  ? bpf_jit_dump+0xd0/0xd0
[  313.129352][    C1]  __warn+0x2e0/0x470
[  313.133393][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  313.139410][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  313.145556][    C1]  report_bug+0x2be/0x4f0
[  313.150174][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  313.156048][    C1]  ? rcu_check_gp_start_stall+0x2dc/0x460
[  313.161808][    C1]  ? rcu_check_gp_start_stall+0x2de/0x460
[  313.167765][    C1]  handle_bug+0xcf/0x120
[  313.172046][    C1]  exc_invalid_op+0x1a/0x50
[  313.176833][    C1]  asm_exc_invalid_op+0x1a/0x20
[  313.181807][    C1] RIP: 0010:rcu_check_gp_start_stall+0x2dc/0x460
[  313.188167][    C1] Code: ff ff ff 48 c7 c7 a0 04 ef 96 be 04 00 00 00 e8 9a ba 6c 00 48 89 df b8 01 00 00 00 87 05 7c d9 7e 15 85 c0 0f 85 19 ff ff ff <0f> 0b 48 81 ff 80 51 d3 8c 74 47 48 c7 c0 1c ba 4a 8e 48 c1 e8 03
[  313.207983][    C1] RSP: 0018:ffffc900001f0bb8 EFLAGS: 00010046
[  313.214059][    C1] RAX: 0000000000000000 RBX: ffffffff8cd35180 RCX: ffffffff81702b16
[  313.222235][    C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffffff8cd35180
[  313.230387][    C1] RBP: ffffc900001f0e30 R08: 0000000000000003 R09: 0000000000000004
[  313.238452][    C1] R10: dffffc0000000000 R11: fffffbfff2dde094 R12: 0000000000002904
[  313.246554][    C1] R13: 1ffff110171e7a22 R14: 0000000000000a02 R15: dffffc0000000000
[  313.254599][    C1]  ? rcu_check_gp_start_stall+0x2c6/0x460
[  313.260543][    C1]  ? rcu_check_gp_start_stall+0x2c6/0x460
[  313.266576][    C1]  rcu_core+0x612/0x1720
[  313.270956][    C1]  ? ktime_get+0x7f/0x280
[  313.275357][    C1]  ? rcu_cpu_kthread_park+0x90/0x90
[  313.280595][    C1]  ? kvm_sched_clock_read+0x11/0x20
[  313.285831][    C1]  ? sched_clock+0x3f/0x60
[  313.290278][    C1]  ? sched_clock_cpu+0x75/0x430
[  313.295163][    C1]  ? ktime_get+0x7f/0x280
[  313.299567][    C1]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  313.305854][    C1]  ? lock_chain_count+0x20/0x20
[  313.310842][    C1]  handle_softirqs+0x280/0x820
[  313.315843][    C1]  ? __irq_exit_rcu+0xc7/0x190
[  313.321064][    C1]  ? do_softirq+0x180/0x180
[  313.325602][    C1]  __irq_exit_rcu+0xc7/0x190
[  313.330211][    C1]  ? irq_exit_rcu+0x20/0x20
[  313.334730][    C1]  irq_exit_rcu+0x9/0x20
[  313.339452][    C1]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  313.345664][    C1]  </IRQ>
[  313.348706][    C1]  <TASK>
[  313.351666][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  313.358390][    C1] RIP: 0010:kasan_save_alloc_info+0x0/0x30
[  313.364456][    C1] Code: ff 48 89 c3 e8 91 da ff ff 89 43 08 5b 41 5e 41 5f c3 0f 1f 84 00 00 00 00 00 66 0f 1f 00 31 f6 e9 35 ff ff ff 0f 1f 44 00 00 <66> 0f 1f 00 48 63 87 bc 00 00 00 48 85 c0 0f 94 c1 48 01 c6 0f 94
[  313.385606][    C1] RSP: 0018:ffffc9000457f9d0 EFLAGS: 00000246
[  313.391821][    C1] RAX: 0000000000000000 RBX: ffff88801df5a2a0 RCX: 0000000000000000
[  313.399998][    C1] RDX: 0000000000000dc0 RSI: ffff88801df5a2a0 RDI: ffff88814007f280
[  313.408480][    C1] RBP: 0000000000000dc0 R08: 0000000000000004 R09: 0000000000000004
[  313.416757][    C1] R10: ffffed1003beb454 R11: fffffbfff1c950ae R12: 0000000000000001
[  313.425131][    C1] R13: 0000000000000110 R14: ffff88814007f280 R15: 0000000000000001
[  313.433350][    C1]  __kasan_slab_alloc+0x6c/0x80
[  313.438245][    C1]  slab_post_alloc_hook+0x6e/0x4d0
[  313.443396][    C1]  kmem_cache_alloc+0x11e/0x2e0
[  313.448351][    C1]  ? flock_lock_inode+0x226/0x17e0
[  313.453572][    C1]  flock_lock_inode+0x226/0x17e0
[  313.458574][    C1]  ? aa_file_perm+0x3e8/0xec0
[  313.463514][    C1]  ? check_conflicting_open+0x230/0x230
[  313.469384][    C1]  locks_lock_inode_wait+0x10d/0x460
[  313.474803][    C1]  ? fcntl_setlease+0x340/0x340
[  313.479849][    C1]  ? lockdep_softirqs_off+0x430/0x430
[  313.485542][    C1]  ? __fget_files+0x44a/0x4d0
[  313.490325][    C1]  ? end_current_label_crit_section+0x149/0x170
[  313.496742][    C1]  ? common_file_perm+0x198/0x1f0
[  313.502056][    C1]  ? bpf_lsm_file_lock+0x9/0x10
[  313.506935][    C1]  __se_sys_flock+0x46d/0x5a0
[  313.511995][    C1]  ? __x64_sys_flock+0x60/0x60
[  313.516805][    C1]  ? lock_chain_count+0x20/0x20
[  313.521728][    C1]  ? lockdep_hardirqs_on+0x98/0x150
[  313.526998][    C1]  do_syscall_64+0x55/0xb0
[  313.531438][    C1]  ? clear_bhb_loop+0x40/0x90
[  313.536143][    C1]  ? clear_bhb_loop+0x40/0x90
[  313.540849][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  313.546869][    C1] RIP: 0033:0x7f15f758efc9
[  313.551301][    C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  313.572299][    C1] RSP: 002b:00007f15f83e3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000049
[  313.580906][    C1] RAX: ffffffffffffffda RBX: 00007f15f77e5fa0 RCX: 00007f15f758efc9
[  313.589170][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000004
[  313.598156][    C1] RBP: 00007f15f7611f91 R08: 0000000000000000 R09: 0000000000000000
[  313.606334][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  313.615032][    C1] R13: 00007f15f77e6038 R14: 00007f15f77e5fa0 R15: 00007ffd531e3d08
[  313.623129][    C1]  </TASK>
[  313.626690][    C1] Kernel Offset: disabled
[  313.631948][    C1] Rebooting in 86400 seconds..