last executing test programs:

7m23.314351111s ago: executing program 0 (id=58):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x102, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000380)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r6, {0x0, 0xb}, {0xffff, 0xffff}, {0x0, 0xfff3}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xffffffed, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70b925, 0x25dfdbff, {0x0, 0x0, 0x0, r6, {}, {0xb, 0xb}, {0x0, 0xb}}, [@qdisc_kind_options=@q_skbprio={{0xc}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20018041}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

7m22.829657762s ago: executing program 0 (id=60):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000002a5, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x49, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
vmsplice(0xffffffffffffffff, &(0x7f0000000680), 0x0, 0x0)
r3 = dup2(r2, r0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001780)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32, @ANYBLOB="08000a005225eec3c93e67d23449034c5b1e4e7f640be00503d730fded9bb7affe0dbf53b2de17c67d52"], 0x54}, 0x1, 0x0, 0x0, 0x4048814}, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1e, 0x5, 0xfffffffe, 0x5, 0x200, r3, 0x2, '\x00', r4, 0xffffffffffffffff, 0x3, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r5}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100004}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r7 = fcntl$dupfd(r6, 0x0, r6)
ioctl$SG_IO(r7, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000008c0)={0xffffffffffffffff, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1, &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000680)=[0x0], <r8=>0x0, 0x82, &(0x7f00000006c0)=[{}], 0x8, 0x10, &(0x7f0000000700), &(0x7f0000000740), 0x8, 0xe3, 0x8, 0x0, 0x0}}, 0x10)
r9 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r8, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r9}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x22000406, &(0x7f0000000840)={[{@dioread_lock}, {@noblock_validity}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}, {@jqfmt_vfsold}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@usrjquota}, {@barrier_val={'barrier', 0x3d, 0x8}}, {@nobh}, {@grpid}], [], 0x2c}, 0x84, 0x4d9, &(0x7f0000000e00)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x8, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000f8880000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c0000fb0000000000009500000000200000"], &(0x7f0000000640)='syzkaller\x00', 0x7}, 0x94)

7m22.039466626s ago: executing program 0 (id=62):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=@framed={{0x18, 0x5}, [@snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}, {0x7, 0x0, 0xb, 0x4}, {0x85, 0x0, 0x0, 0x95}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r1}, 0x10)
r2 = gettid()
timer_create(0x0, &(0x7f0000000180)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc)=<r3=>0x0)
timer_settime(r3, 0x1, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x3938700}}, 0x0)
futex(&(0x7f000000cffc)=0x1, 0x86, 0x2, 0x0, 0x0, 0xfffffffc)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r4, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r4, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

7m21.309872568s ago: executing program 0 (id=68):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="1801000001ffffeb00000000eb658e0d850000007b00000095"], &(0x7f0000000140)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x18)
fstat(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, <r1=>0x0, <r2=>0x0})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x8007ca, &(0x7f0000000680)={[{@delalloc}, {@resuid={'resuid', 0x3d, r1}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid={'resgid', 0x3d, r2}}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x483, &(0x7f0000001040)="$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")

7m19.620690111s ago: executing program 0 (id=74):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x4, @empty, 0x4}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000040)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000c80)="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", 0x3b2, 0xbcff, 0x0, 0x0)
shutdown(r0, 0x1)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000200)={0x0, 0x7, 0x1, 0x9, 0xe, 0x3, 0x3ff, 0xe, {0x0, @in6={{0xa, 0x4e23, 0x0, @dev={0xfe, 0x80, '\x00', 0x3d}}}, 0x6, 0x2, 0x9, 0x7, 0x9}}, &(0x7f0000000080)=0xb0)

7m17.994846131s ago: executing program 0 (id=81):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

7m2.977145351s ago: executing program 32 (id=81):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_usb_disconnect(0xffffffffffffffff)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

6m50.645615614s ago: executing program 1 (id=153):
socket$can_raw(0x1d, 0x3, 0x1)
r0 = getpid()
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x20, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000008000000850000007800000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x73cea2d47785b264, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='sched_switch\x00', r5}, 0x18)
r6 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000340)='./binderfs/binder0\x00', 0x800, 0x0)

6m50.606599985s ago: executing program 2 (id=154):
socket$inet6(0xa, 0x3, 0xff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSETD(r1, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r1, 0x5437, 0x2)

6m49.458197355s ago: executing program 1 (id=155):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f00000002c0)='kmem_cache_free\x00', r1}, 0x10)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000002c0), 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f0000000300)={0x1, 0x0, 0x0, 'queue1\x00'})
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0xe, 0x4, 0x5, 0x21}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000000001850000001b000000b700000000000700"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0)
write$cgroup_int(r4, &(0x7f0000000040)=0xfe8e, 0x12)
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick, {}, {}, @raw32={[0x0, 0x0, 0x1]}}], 0x1c)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x85, 0x7, 0x7ffc0001}]})
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000005e002200850000006d00000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='kmem_cache_free\x00', r5}, 0x10)
iopl(0x3)
ioctl$SNDRV_SEQ_IOCTL_REMOVE_EVENTS(r2, 0x4040534e, &(0x7f0000000080)={0x32b, @tick=0x440, 0xff, {}, 0x0, 0x0, 0xfb})
sendmsg$can_raw(r0, &(0x7f0000000080)={&(0x7f0000000180), 0x10, &(0x7f0000000140)={&(0x7f0000000200)=@can={{}, 0x3, 0x0, 0x4, 0x0, "000000cef4a89800"}, 0x10}, 0x2, 0x0, 0x0, 0x40080}, 0x4000855)

6m49.390462068s ago: executing program 2 (id=157):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000c80)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='rxrpc_recvmsg\x00', r1}, 0x18)
r2 = socket$kcm(0x21, 0x2, 0x2)
sendmsg$kcm(r2, &(0x7f0000000140)={&(0x7f0000000440)=@rxrpc=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @loopback}}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000100)="a6", 0xfffffcf4}, {0x0}], 0x2, &(0x7f0000001a00)=ANY=[@ANYBLOB="180000000000000010010000010000007d95df16a39b1a6c900000000000000001000005040500002b24ec10064b6f2f000000fb718aef932f3889d1fdda5b00000009860f5878c37ffe36e1165814d435be5b317c6c8189767d2f97879f07a515bb7c169f46933d9338f4ab04834e6f618988c5944741afe403461323110f62055394412158e7a3adb164d641aa40d4ab077fe34232aa8b319d7666d0998a61d7da0c86d70000001010"], 0x10b8}, 0x106)
recvmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, 0x0}, 0x100)

6m49.325838831s ago: executing program 2 (id=158):
r0 = syz_open_procfs(0x0, 0x0)
fchdir(r0)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffff9]}, 0x0, 0x8)
gettid()
r1 = gettid()
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x589b}, 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095000000000000005df1dc711751c21fd8571dbfaf40becd9eb604f1d56e5ff26f038fb839ee87d8f4d619ef4939f9b93d8d2da2a76acc44c44e790c539935190c67c622b6a3d0612ff16aca0248f6b4732550d233cb0b22e85a6962dee3675332b269b71a82a3f2545487cfdabd14a6321ed6bec5e99cf2b2efc9a074fbf1fd1c776f9857c7"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000700)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r6, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000000)={0x42, 0x1}, 0x10)
close(r6)
sendmsg$TIPC_NL_NET_SET(0xffffffffffffffff, 0x0, 0x4000854)
r7 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r8 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), r7)
getpid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000007c0)={0x44, r8, 0x1, 0x70bd29, 0x0, {}, [@NL802154_ATTR_NETNS_FD={0x8, 0x1d, r0}, @NL802154_ATTR_PID={0x8, 0x1c, r1}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFINDEX={0x8}, @NL802154_ATTR_IFINDEX={0x8}]}, 0x44}}, 0x0)

6m48.838304042s ago: executing program 1 (id=160):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=@newtfilter={0x84, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r4, {0x0, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x50, 0x2, [@TCA_MATCHALL_ACT={0x4c, 0x2, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x4, 0xffffff00, 0x5, 0xc31, 0x7}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}]}]}}]}, 0x84}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r5 = socket$kcm(0x11, 0x3, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
setsockopt$sock_attach_bpf(r5, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accb", 0x26}], 0x1}, 0x4)

6m46.845139738s ago: executing program 2 (id=162):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000002a5, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
vmsplice(0xffffffffffffffff, &(0x7f0000000680), 0x0, 0x0)
r2 = dup2(r1, r0)
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, &(0x7f00000003c0)={'vxcan1\x00', <r3=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001780)=ANY=[@ANYBLOB="540000001000010400000000000000ffff000000", @ANYRES32=0x0, @ANYBLOB="0380000000000000240012800c0001006d6163766c616e00140002800800010008000000060002000100000008000500", @ANYRES32, @ANYBLOB="08000a005225eec3c93e67d23449034c5b1e4e7f640be00503d730fded9bb7affe0dbf53b2de17c67d52"], 0x54}, 0x1, 0x0, 0x0, 0x4048814}, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1e, 0x5, 0xfffffffe, 0x5, 0x200, r2, 0x2, '\x00', r3, 0xffffffffffffffff, 0x3, 0x0, 0x1}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x100004}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x20002)
r6 = fcntl$dupfd(r5, 0x0, r5)
ioctl$SG_IO(r6, 0x2285, &(0x7f0000000040)={0x53, 0xfffffffe, 0x6, 0x0, @buffer={0x2, 0x41001, &(0x7f00000000c0)=""/81}, &(0x7f0000000380)="259374c96ee3", 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000008c0)={0xffffffffffffffff, 0xe0, &(0x7f00000007c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, &(0x7f00000005c0)=[0x0, 0x0, 0x0, 0x0, 0x0], ""/16, 0x0, 0x0, 0x0, 0x0, 0xa, 0x1, &(0x7f0000000600)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000680)=[0x0], <r7=>0x0, 0x82, &(0x7f00000006c0)=[{}], 0x8, 0x10, &(0x7f0000000700), &(0x7f0000000740), 0x8, 0xe3, 0x8, 0x0, 0x0}}, 0x10)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r7, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r8}, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080))
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x22000406, &(0x7f0000000840)={[{@dioread_lock}, {@noblock_validity}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}, {@jqfmt_vfsold}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@usrjquota}, {@barrier_val={'barrier', 0x3d, 0x8}}, {@nobh}, {@grpid}], [], 0x2c}, 0x84, 0x4d9, &(0x7f0000000e00)="$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")
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x6, 0x8, &(0x7f0000000540)=ANY=[@ANYBLOB="18000000f8880000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b703000000000000850000000c0000fb0000000000009500000000200000"], &(0x7f0000000640)='syzkaller\x00', 0x7}, 0x94)

6m46.578686469s ago: executing program 1 (id=164):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x0, 0x41}, 0x28)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES8=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x55, 0x0, 0x0, 0x4859bd0f8653de88, 0xa}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001940)=@newtaction={0x6c, 0x30, 0x10b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x7, 0x2, 0x10000000, 0xfffffffc, 0xfffffffe}, 0x1}}, @TCA_IFE_SMAC={0xa, 0x4, @link_local}]}, {0x4}, {0xc}, {0x2, 0x8, {0x0, 0x1}}}}]}]}, 0x6c}}, 0x0)

6m45.316362724s ago: executing program 2 (id=166):
socket$inet6(0xa, 0x3, 0xff)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000004b64ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d9000000000020b200850000007b00000095"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
syz_genetlink_get_family_id$SEG6(&(0x7f0000000580), r1)
r2 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x121202, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f00000003c0)=0x1)
ioctl$TIOCVHANGUP(r2, 0x5437, 0x2)

6m43.373568208s ago: executing program 1 (id=177):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000100)={&(0x7f0000000080)=ANY=[], 0x0, 0x41}, 0x28)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES8=0x0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0, 0x55, 0x0, 0x0, 0x4859bd0f8653de88, 0xa}, 0x94)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000001940)=@newtaction={0x6c, 0x30, 0x10b, 0x0, 0x0, {}, [{0x58, 0x1, [@m_ife={0x54, 0x1, 0x0, 0x0, {{0x8}, {0x2c, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x7, 0x2, 0x10000000, 0xfffffffc, 0xfffffffe}, 0x1}}, @TCA_IFE_SMAC={0xa, 0x4, @link_local}]}, {0x4}, {0xc}, {0x2, 0x8, {0x0, 0x1}}}}]}]}, 0x6c}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x94)
creat(&(0x7f00000002c0)='./file0\x00', 0x2)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00'}, 0x10)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffffffffffffff27}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x3000010, &(0x7f0000000340)={[{@errors_remount}, {@nodioread_nolock}]}, 0x1, 0x512, &(0x7f0000000380)="$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")

6m41.426787682s ago: executing program 1 (id=180):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r2 = fsmount(r1, 0x0, 0x80)
r3 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114df, 0x0, 0x1, 0x89}, &(0x7f00000003c0)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r3, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

6m41.426360232s ago: executing program 2 (id=171):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x80)
fchdir(r2)
symlink(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(0xffffffffffffffff, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

6m25.605748507s ago: executing program 33 (id=180):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
r2 = fsmount(r1, 0x0, 0x80)
r3 = syz_io_uring_setup(0x109, &(0x7f0000000140)={0x0, 0x114df, 0x0, 0x1, 0x89}, &(0x7f00000003c0)=<r4=>0x0, &(0x7f0000000200)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(r3, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

6m25.353605617s ago: executing program 34 (id=171):
unshare(0x6a040000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001380)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f00000003c0)='kfree\x00', r0}, 0x10)
r1 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x80)
fchdir(r2)
symlink(&(0x7f0000000340)='./file0/../file0\x00', &(0x7f00000017c0)='./file0\x00')
syz_io_uring_submit(0x0, 0x0, &(0x7f00000002c0)=@IORING_OP_OPENAT={0x12, 0x0, 0x0, r2, 0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x29c780})
io_uring_enter(0xffffffffffffffff, 0x3518, 0xaddf, 0x2, 0x0, 0x0)

5m10.691440065s ago: executing program 4 (id=359):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8001000d, 0xad, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x8d}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x28)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000000)=0x49d0, 0x4)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @local}, 0x1c)
recvmmsg(r5, &(0x7f00000066c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001fc0)=""/148, 0x94}}], 0x1, 0x2000, 0x0)
r6 = add_key$fscrypt_v1(&(0x7f0000000440), &(0x7f0000000480)={'fscrypt:', @auto=[0x39, 0x65, 0x62, 0x62, 0x86cc4097e8288a3a, 0x31, 0x66, 0x34, 0x34, 0x30, 0x62, 0x0, 0x0, 0x64, 0x61, 0x3f]}, &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1a5f2c848722ba3b132e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a6b0aa00", 0x16}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000000)={<r7=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r7, 0x1d)
pipe2$watch_queue(&(0x7f0000000040)={<r8=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r8, 0xb1)
close_range(r1, 0xffffffffffffffff, 0x0)
ioctl(r0, 0x8b1a, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)

5m8.302194269s ago: executing program 4 (id=362):
r0 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8001000d, 0xad, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x8d}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r1 = creat(&(0x7f0000000000)='./file1\x00', 0x28)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r5, 0x1, 0x25, &(0x7f0000000000)=0x49d0, 0x4)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
sendto$inet6(r5, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @local}, 0x1c)
recvmmsg(r5, &(0x7f00000066c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001fc0)=""/148, 0x94}}], 0x1, 0x2000, 0x0)
r6 = add_key$fscrypt_v1(&(0x7f0000000440), &(0x7f0000000480)={'fscrypt:', @auto=[0x39, 0x65, 0x62, 0x62, 0x86cc4097e8288a3a, 0x31, 0x66, 0x34, 0x34, 0x30, 0x62, 0x0, 0x0, 0x64, 0x61, 0x3f]}, &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1a5f2c848722ba3b132e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a6b0aa00", 0x16}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000000)={<r7=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r6, r7, 0x1d)
pipe2$watch_queue(&(0x7f0000000040), 0x80)
close_range(r1, 0xffffffffffffffff, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0xe860049e1867c856, &(0x7f0000000140), 0x0, 0x4)
ioctl(r0, 0x8b1a, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)

5m7.310483052s ago: executing program 4 (id=365):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000000)="09000000010000", 0x7)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_io_uring_submit(0x0, 0x0, 0x0)
waitid(0x2, r1, 0x0, 0x4, &(0x7f0000000500))
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000002c0)="f5", 0x30, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, 0x0, 0x0, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000013c0)={0x200, 0x2, 0x2, {0x5, @vbi={0xb5, 0x0, 0x3, 0x20363159, [0x0, 0x8000000], [0x8200, 0x1]}}, 0x4})
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
ioctl$AUTOFS_DEV_IOCTL_FAIL(0xffffffffffffffff, 0xc0189377, &(0x7f0000000080)={{0x1, 0x1, 0x18, 0xffffffffffffffff, {0x0, 0x7f}}, './file0\x00'})
openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100), 0xc081, 0x0)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "230700dd"}, 0xffffffff, 0x2, {}, 0x1c000})

5m6.232174189s ago: executing program 4 (id=370):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}})

5m4.546201381s ago: executing program 4 (id=376):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x1, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff85000000040000"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = syz_genetlink_get_family_id$batadv(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_VLAN(r4, &(0x7f00000005c0)={&(0x7f0000000380)={0x10, 0x0, 0x0, 0x1201000}, 0xc, &(0x7f0000000580)={&(0x7f0000000540)={0x1c, r5, 0x200, 0x70bd27, 0x25dfdbfc, {}, [@BATADV_ATTR_VLANID={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40400d4}, 0x800)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000"], 0x48)
r6 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000100)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f138d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade5b175c0a9b2ce9", 0x55}], 0x1}, 0x0)

4m56.757156279s ago: executing program 4 (id=390):
prlimit64(0x0, 0xe, &(0x7f00000002c0)={0xa, 0x4008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000300)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5c, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
get_robust_list(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x880)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f0000000000)={0x0, 0x1, 0x8, 0x13, 0x200, &(0x7f0000000d80)="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"})

4m40.507926581s ago: executing program 35 (id=390):
prlimit64(0x0, 0xe, &(0x7f00000002c0)={0xa, 0x4008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000300)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000001000000e27f000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r3}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x5c, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
get_robust_list(0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x880)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f0000000000)={0x0, 0x1, 0x8, 0x13, 0x200, &(0x7f0000000d80)="1ae19327aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a730900000000fdfd000f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000005000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c536689a4a62f872f9ca3b86cf3c645413f4afbcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714a2e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258a88dd6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949b196f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d228186ed360750ca8e728150d988844b9a5cff46591ccaff416e5a8c25f9555da5ca6fdf75b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a25978b463dc961416c80c55773f91ffffffffd51cfd73c1e06fbadd156d56bedc117af95d242d6dccbe2ce34dccd6005e944afa92b22ec9a698469c6ece06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a2a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8294de988cd35df2cd7344aa8a9f3432b96fb889c02f484f635a0cc3466a3c2733d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0600000000000000a1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe021c773a6664b66ae04aa62c564d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000000000000004000000000f800"})

1m51.577397666s ago: executing program 5 (id=707):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_open_dev$video4linux(&(0x7f0000000000), 0xf, 0x101800)
socket$netlink(0x10, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000009c0)='y\x105\xf3\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x2)
ftruncate(r5, 0xffff)
fcntl$addseals(r5, 0x409, 0x7)
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000100)={r5, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000080)=0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'hsr0\x00'})
syz_io_uring_setup(0x3b, &(0x7f00000001c0)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
inotify_init()
pipe(&(0x7f0000000000)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4)
pipe(&(0x7f0000000080)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
splice(r10, 0x0, r9, 0x0, 0x1000, 0x0)
splice(r7, 0x0, r11, 0x0, 0x80, 0x0)
write$binfmt_aout(r8, &(0x7f00000004c0)=ANY=[], 0x120)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))

1m50.865717456s ago: executing program 5 (id=708):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000a00)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r1, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unlink(&(0x7f00000002c0)='./file0\x00')
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000700)=@newlink={0x50, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x585d}, [@IFLA_IFNAME={0x14, 0x3, 'ipvlan1\x00'}, @IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipvlan={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPVLAN_FLAGS={0x6, 0x2, 0x1}]}}}]}, 0x50}, 0x1, 0x0, 0x0, 0x840}, 0x0)

1m49.85250552s ago: executing program 5 (id=710):
socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x52, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
mq_open(0x0, 0x40, 0x22, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102392, 0x18ff8)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r2 = timerfd_create(0x7, 0x0)
timerfd_settime(r2, 0x0, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x989680}}, 0x0)
readv(r2, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/52, 0x34}], 0x1)
close(r0)
mknodat(0xffffffffffffff9c, 0x0, 0x21c0, 0x103)
r3 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r3, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b18, &(0x7f0000000300)={'wlan1\x00', @random="010000000700"})

1m47.272220632s ago: executing program 5 (id=714):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_open_dev$video4linux(&(0x7f0000000000), 0xf, 0x101800)
socket$netlink(0x10, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000009c0)='y\x105\xf3\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x2)
ftruncate(r5, 0xffff)
fcntl$addseals(r5, 0x409, 0x7)
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000100)={r5, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000080)=0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'hsr0\x00'})
syz_io_uring_setup(0x3b, &(0x7f00000001c0)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000000)='.\x00', 0x400017e)
r8 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r9, 0x0, r8, 0x0, 0x1000, 0x0)
splice(0xffffffffffffffff, 0x0, r10, 0x0, 0x80, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x120)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))

1m45.890729422s ago: executing program 5 (id=727):
r0 = socket$unix(0x1, 0x1, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000280)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, r3, {0x0, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accb", 0x26}], 0x1}, 0x4)

1m42.139461634s ago: executing program 5 (id=721):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x1)
socket(0x18, 0x0, 0x1)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
fsopen(0x0, 0x1)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000180)={0xff, 0x0, 0x8, 0x5, 0xfd, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x2, 0x0, 0x93}, 0xe)
sendto$inet6(r1, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r1, 0x1)

1m26.784452898s ago: executing program 36 (id=721):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
ioctl$vim2m_VIDIOC_S_FMT(0xffffffffffffffff, 0xc0d05605, &(0x7f0000000140)={0x3, @raw_data="dea233684c996156af0d4bd8e3300217e750b8c97b7123d48003e7e1d3be5f710c41a1db6719881876e9bcc6e2f73c67cc6b675eb43188b5b7f9f898868de9a9c5d536d418ba283121a73a5aba55a87d2a2525295f4492bbde02ad8bc8e88779f2de06f38e99172df4d45b6f13c813dee4230c204a93172922b778fef7a1f89ce876bb89d44cd705bbb28db4869dfac20d928950507acd92c02d17f51b0a627539f6e0a0bdb92004bc6252cd35e8cd100962db9a83ad63a4e7e1ca17c1b6aac63fefa9bebe429d00"})
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, 0x0, 0x1)
socket(0x18, 0x0, 0x1)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
fsopen(0x0, 0x1)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r1, 0x84, 0xb, &(0x7f0000000180)={0xff, 0x0, 0x8, 0x5, 0xfd, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x2, 0x0, 0x93}, 0xe)
sendto$inet6(r1, &(0x7f0000000300)="8b", 0x34000, 0x0, &(0x7f0000000000)={0xa, 0x0, 0x0, @private1}, 0x1c)
shutdown(r1, 0x1)

23.719183315s ago: executing program 8 (id=850):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000000)="09000000010000", 0x7)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_io_uring_submit(0x0, 0x0, 0x0)
waitid(0x2, r1, 0x0, 0x4, &(0x7f0000000500))
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000002c0)="f5", 0x30, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, 0x0, 0x0, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000013c0)={0x200, 0x2, 0x2, {0x5, @vbi={0xb5, 0x0, 0x3, 0x20363159, [0x0, 0x8000000], [0x8200, 0x1]}}, 0x4})
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100), 0xc081, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000680)={0x0, 0x5d, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x20000824}, 0x20004000)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "230700dd"}, 0xffffffff, 0x2, {}, 0x1c000})

22.491928177s ago: executing program 8 (id=853):
socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80782, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
write(r2, &(0x7f0000000100)="e97b891ab3", 0x5)
write(r2, &(0x7f0000001040)="224df6e3aa1367ce197ae58cbef1e37891a6d533aebbaba3bd3d95760fb9bef8fee32642e76a", 0x26)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)

21.091931878s ago: executing program 8 (id=856):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000000), 0x10}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000740)=ANY=[@ANYBLOB="38000000070a010100000006000000000a0040010900010073797a310000"], 0x38}, 0x1, 0x0, 0x0, 0x20040850}, 0x44054)
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r5}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r4}, 0x0, &(0x7f0000000080)=r5}, 0x20)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
request_key(&(0x7f0000002740)='asymmetric\x00', 0x0, &(0x7f00000027c0)=',*[\\/&)\x00', 0xffffffffffffffff)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, &(0x7f0000001fee)='R\x10rust\xe3c*sgrVdx2Dd', 0x0)
r6 = syz_open_dev$vim2m(&(0x7f0000000480), 0x3, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r6, 0xc0d05605, 0x0)

20.151365069s ago: executing program 8 (id=860):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000001c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @in={0x2, 0x4e23, @loopback}}}, 0x90)

19.711200638s ago: executing program 3 (id=862):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_open_dev$video4linux(&(0x7f0000000000), 0xf, 0x101800)
socket$netlink(0x10, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000009c0)='y\x105\xf3\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x2)
ftruncate(r5, 0xffff)
fcntl$addseals(r5, 0x409, 0x7)
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000100)={r5, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000080)=0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'hsr0\x00'})
syz_io_uring_setup(0x3b, &(0x7f00000001c0)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000000)='.\x00', 0x400017e)
r8 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r9, 0x0, r8, 0x0, 0x1000, 0x0)
splice(0xffffffffffffffff, 0x0, r10, 0x0, 0x80, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x120)

18.26708103s ago: executing program 8 (id=864):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000000)="09000000010000", 0x7)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_io_uring_submit(0x0, 0x0, 0x0)
waitid(0x2, r1, 0x0, 0x4, &(0x7f0000000500))
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000002c0)="f5", 0x30, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, 0x0, 0x0, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000013c0)={0x200, 0x2, 0x2, {0x5, @vbi={0xb5, 0x0, 0x3, 0x20363159, [0x0, 0x8000000], [0x8200, 0x1]}}, 0x4})
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100), 0xc081, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000680)={0x0, 0x5d, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x20000824}, 0x20004000)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "230700dd"}, 0xffffffff, 0x2, {}, 0x1c000})

17.252843584s ago: executing program 8 (id=867):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$video(&(0x7f0000000000), 0x8, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205648, &(0x7f0000000100)={0x980000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f90b, 0x9, '\x00', @p_u16=0x0}})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240))
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1})
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x1000, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80800, 0x20)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74, 0x5000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000700))
unshare(0x64000600)

13.059330686s ago: executing program 9 (id=870):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$key(0xf, 0x3, 0x2)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x6, 0x8, &(0x7f0000006680))
sendmsg$key(r3, &(0x7f0000001300)={0x0, 0x0, &(0x7f00000012c0)={&(0x7f0000001240)={0x2, 0x16, 0xe8, 0x5, 0x2, 0x0, 0x70bd2d, 0x25dfdbfc}, 0x10}}, 0x4004800)
fsopen(&(0x7f0000000140)='cgroup2\x00', 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200008010000000000000040000008500000027000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0xe, &(0x7f0000002140)=ANY=[], &(0x7f0000000b80)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000040), 0x10}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000440)={'tunl0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @private}}}})
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000240)={0xfffffffc}, 0x8)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000280)={r4, 0x0, 0x25, 0x2, @void}, 0x10)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)

11.292756892s ago: executing program 3 (id=871):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_open_dev$video4linux(&(0x7f0000000000), 0xf, 0x101800)
socket$netlink(0x10, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000009c0)='y\x105\xf3\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x2)
fcntl$addseals(r5, 0x409, 0x7)
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000100)={r5, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000080)=0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'hsr0\x00'})
syz_io_uring_setup(0x3b, &(0x7f00000001c0)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000000)='.\x00', 0x400017e)
pipe(&(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
splice(r11, 0x0, r10, 0x0, 0x1000, 0x0)
splice(r8, 0x0, r12, 0x0, 0x80, 0x0)
write$binfmt_aout(r9, &(0x7f00000004c0)=ANY=[], 0x120)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))

10.65580691s ago: executing program 7 (id=872):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x400, @empty, 0x7}, 0x1c, 0x0}}], 0x2, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x1, 0x81, 0x0, 0x6, 0x5}, {0x8000000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0x2000, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000740)={"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"})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

10.602151472s ago: executing program 9 (id=873):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accb", 0x26}], 0x1}, 0x4)

10.472647717s ago: executing program 6 (id=874):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
chdir(&(0x7f0000000140)='./file0\x00')
fcntl$dupfd(0xffffffffffffffff, 0x406, 0xffffffffffffffff)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x2)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f00000001c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @in={0x2, 0x4e23, @loopback}}}, 0x90)

10.471317948s ago: executing program 3 (id=875):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x52, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
mq_open(0x0, 0x40, 0x22, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102392, 0x18ff8)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r3 = timerfd_create(0x7, 0x0)
timerfd_settime(r3, 0x0, &(0x7f0000007000)={{0x0, 0x4}, {0x0, 0x989680}}, 0x0)
readv(r3, &(0x7f00000003c0)=[{&(0x7f0000000040)=""/52, 0x34}], 0x1)
close(r1)
mknodat(0xffffffffffffff9c, 0x0, 0x21c0, 0x103)
r4 = socket(0x400000000010, 0x3, 0x0)
sendmsg$nl_route_sched(r4, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8b18, &(0x7f0000000300)={'wlan1\x00', @random="010000000700"})
r5 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='fdinfo/3\x00')
preadv(r5, &(0x7f0000000640)=[{0x0}], 0x1, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="3c00000010000d0400"/18, @ANYRES32=0x0, @ANYBLOB="00000000000000001c00138009000100626f6e64000000000c0002800800140001000000"], 0x3c}}, 0x0)

9.203472213s ago: executing program 6 (id=876):
bpf$MAP_CREATE(0x0, 0x0, 0xb285f305e6b16ca5)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141182)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/5, 0x1c000, 0x800, 0x8, 0x2}, 0x1c)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f00000000c0)=0x100, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
bind$xdp(r1, &(0x7f00000001c0)={0x2c, 0x0, r3}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

8.021829703s ago: executing program 7 (id=877):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000000)="09000000010000", 0x7)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_io_uring_submit(0x0, 0x0, 0x0)
waitid(0x2, r1, 0x0, 0x4, &(0x7f0000000500))
r4 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000002c0)="f5", 0x30, 0xfffffffffffffffe)
r5 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r4, r5, r4}, 0x0, 0x0, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000013c0)={0x200, 0x2, 0x2, {0x5, @vbi={0xb5, 0x0, 0x3, 0x20363159, [0x0, 0x8000000], [0x8200, 0x1]}}, 0x4})
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100), 0xc081, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000680)={0x0, 0x5d, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x20000824}, 0x20004000)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "230700dd"}, 0xffffffff, 0x2, {}, 0x1c000})

7.794969943s ago: executing program 6 (id=879):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x8, 0x2, 0x4, 0x5}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000000b00), &(0x7f0000000300)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xe, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r2}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x2}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, 0x0, 0x0)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @multicast1}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0xc9100120, 0x0, 0xfffffffffffffd25)

7.794670113s ago: executing program 3 (id=881):
socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80782, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
write(r2, &(0x7f0000000100)="e97b891ab3", 0x5)
write(r2, &(0x7f0000001040)="224df6e3aa1367ce197ae58cbef1e37891a6d533aebbaba3bd3d95760fb9bef8fee32642e76a", 0x26)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)

7.793755093s ago: executing program 9 (id=890):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000280)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000bc0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000800)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0x5}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000640)=@newtfilter={0x38, 0x2c, 0xd27, 0x30bd29, 0x25dfdc00, {0x0, 0x0, 0x0, 0x0, {0x0, 0x4}, {}, {0x8, 0xf}}, [@filter_kind_options=@f_matchall={{0xd}, {0x4}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000010}, 0x20000000)
r4 = socket$kcm(0x11, 0x3, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r5)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
setsockopt$sock_attach_bpf(r4, 0x107, 0xf, &(0x7f0000000600), 0x56)
sendmsg$kcm(r4, &(0x7f0000000000)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)="27030200590214000600002fb96dbcf706e10500000086ddffff1144ee163cd4b8bf4a31accb", 0x26}], 0x1}, 0x4)

6.327627216s ago: executing program 3 (id=882):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000e13d6a206419010015d4010203010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
r1 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2603)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000000)={0x0})

6.326674467s ago: executing program 7 (id=893):
r0 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000340)={0x1f, 0xffff, 0x3}, 0x6)
write(0xffffffffffffffff, &(0x7f0000000000)="09000000010000", 0x7)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_io_uring_submit(0x0, 0x0, 0x0)
waitid(0x2, r1, 0x0, 0x4, &(0x7f0000000500))
r3 = add_key$user(&(0x7f0000000200), &(0x7f0000000300)={'syz', 0x2}, &(0x7f00000002c0)="f5", 0x30, 0xfffffffffffffffe)
r4 = add_key$user(&(0x7f00000003c0), &(0x7f0000000440), &(0x7f00000000c0), 0xc9, 0xfffffffffffffffd)
keyctl$dh_compute(0x17, &(0x7f0000000140)={r3, r4, r3}, 0x0, 0x0, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f00000013c0)={0x200, 0x2, 0x2, {0x5, @vbi={0xb5, 0x0, 0x3, 0x20363159, [0x0, 0x8000000], [0x8200, 0x1]}}, 0x4})
mq_getsetattr(0xffffffffffffffff, 0x0, 0x0)
r5 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000100), 0xc081, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000680)={0x0, 0x5d, &(0x7f0000000240)={&(0x7f0000000140)=ANY=[@ANYRES32], 0x20}, 0x1, 0x0, 0x0, 0x20000824}, 0x20004000)
ioctl$VIDIOC_QBUF(r0, 0xc058565d, &(0x7f0000000200)=@fd={0x0, 0x5, 0x4, 0x10, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "230700dd"}, 0xffffffff, 0x2, {}, 0x1c000})

5.962804752s ago: executing program 6 (id=883):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="14000000000000002900000034000000040000000000000014000000000000002900000034000000fdffffff0000000000010000000000002900000004000000041c000000000000fe72f4a4a3142ee1e12b9826287997a6b33d89f3d60da1641d9fe3896c3c1b6c130ef4f01be8f5836d417874540898619050b14420ab124b11de36afb16ef4fc00f3f4e4fa0e647cd1b07b068d3894180b6aa7527a4a8252f6836a0d67a7782c675a838ea989e567e4774de1f52d188e0b0888c5801409e12e5f0b6bdcf72f2ec7008a15fa88b025e0ad0738000000010c7a0180050000000000000009000000000000000400000000000000060000000000000000040000000000000b0000000000000005020a7e00010005020bf4c910fc0200000000000000000000780e000000000000000000140000000000000029000000340000000000000000000000700100000000000029000000360000005e2a000000000000ff4150d650847249ad288702ebd0d654b985e8908defb7ec6c5ff115c58e128b9e3a21c34b45ef9de99984e143ca7c3509a971b2ec429ee1edc0bb903fe94b32c28f70000100000100010800000000000000000708000000030000ff0f07100000000002070600ff7f00000000000008c6c8a110995d439fbfac9716a99c357bcb2d59a850490739734f6b321d19b3754df39cc2dc26cf263cbebbddb9a7f17b6771f74c46623f9e38bd23e6f0a2fd3a9a017f66738394aca44d1a9f0b35d9df0a964360ab0900a5e6fcac1cd41c91c97f6826ff706c41edc4e00205bbb53218ed58a1122d993b55a1b9a870a17e7869e3fc704b388202add651f628963a90fea5d8196d5e0373fd13584ae57b4f1c03d4f67005cdb5938591d5ea712014e358ea0808807873fd7290c6d4f033de64c7e86ab3030700008000000000000001082bdb86d1ce6a20c2000000000020000000000000002900000037000000730000000000000000010000000000001400000000000000290000000b000000000000020000000018000000000000002900000039000000000000000000000038"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x400, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000540)="a22caaffe37d4620d1a9427c00787b63b26c5b83ef8ce8f8fe823d77c642dd73361c1f115fdce55de92bede6e812191b9780a257fa4fb3bba896dc1a01fcc30adb201f2ee3a5c8676d6b812ec2342bd0723b7db488a027513df1870c31", 0x5d}, {0x0}, {&(0x7f0000000700)="e59c889c8be9e17c21882a76c6907239d44f6a0efb65359c6a8e5ede789aa995461e91d2", 0x24}], 0x3}}], 0x2, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x1, 0x81, 0x0, 0x6, 0x5}, {0x8000000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0x2000, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000740)={"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"})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

5.937065784s ago: executing program 9 (id=884):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_open_dev$video4linux(&(0x7f0000000000), 0xf, 0x101800)
socket$netlink(0x10, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000009c0)='y\x105\xf3\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x2)
ftruncate(r5, 0xffff)
fcntl$addseals(r5, 0x409, 0x7)
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000100)={r5, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000080)=0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'hsr0\x00'})
syz_io_uring_setup(0x3b, &(0x7f00000001c0)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000000)='.\x00', 0x400017e)
r8 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4)
pipe(&(0x7f0000000080)={<r9=>0xffffffffffffffff, <r10=>0xffffffffffffffff})
splice(r9, 0x0, r8, 0x0, 0x1000, 0x0)
splice(0xffffffffffffffff, 0x0, r10, 0x0, 0x80, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f00000004c0)=ANY=[], 0x120)

5.272052862s ago: executing program 9 (id=885):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
ioctl$TIOCGSID(0xffffffffffffffff, 0x5429, &(0x7f0000000040)=<r0=>0x0)
tgkill(0x0, r0, 0x10)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$dsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0x109801, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, &(0x7f0000000200)=ANY=[@ANYBLOB='dyn'])
r3 = syz_open_procfs(0x0, &(0x7f00000000c0)='mountstats\x00')
read$FUSE(r3, &(0x7f0000003240)={0x2020}, 0x2020)
ioctl$SNDCTL_DSP_SETFRAGMENT(r2, 0xc004500a, &(0x7f0000000000)=0x74000000)
r4 = socket$unix(0x1, 0x1, 0x0)
bind$unix(0xffffffffffffffff, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x0)
connect$unix(r4, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r5 = socket$unix(0x1, 0x1, 0x0)
connect$unix(r5, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(0xffffffffffffffff, 0x802)
syz_open_procfs(0x0, &(0x7f0000000180)='fdinfo/4\x00')
write$dsp(r2, &(0x7f0000002000)='`', 0x88020)

5.271725362s ago: executing program 7 (id=886):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x8001000d, 0xad, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x8d}, 0x90)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r0 = creat(&(0x7f0000000000)='./file1\x00', 0x28)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r4, 0x1, 0x25, &(0x7f0000000000)=0x49d0, 0x4)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000080)={0xa, 0x4e23, 0x0, @local}, 0x1c)
recvmmsg(r4, &(0x7f00000066c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001fc0)=""/148, 0x94}}], 0x1, 0x2000, 0x0)
r5 = add_key$fscrypt_v1(&(0x7f0000000440), &(0x7f0000000480)={'fscrypt:', @auto=[0x39, 0x65, 0x62, 0x62, 0x86cc4097e8288a3a, 0x31, 0x66, 0x34, 0x34, 0x30, 0x62, 0x0, 0x0, 0x64, 0x61, 0x3f]}, &(0x7f00000004c0)={0x0, "3e82554dc8ccfbc2e85ec82d4ee9df60f6ae16b1a5f2c848722ba3b132e4fde178c945bd950b0477e801fc8a1be9b4ebbe9c2289a6b0aa00", 0x16}, 0x48, 0xfffffffffffffffe)
pipe2$watch_queue(&(0x7f0000000000), 0x80)
pipe2$watch_queue(&(0x7f0000000040)={<r6=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r5, r6, 0xb1)
close_range(r0, 0xffffffffffffffff, 0x0)
ioctl(0xffffffffffffffff, 0x8b1a, &(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)

4.260565336s ago: executing program 7 (id=887):
r0 = socket$packet(0x11, 0x3, 0x300)
syz_open_dev$video4linux(&(0x7f0000000000), 0xf, 0x101800)
socket$netlink(0x10, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r5 = memfd_create(&(0x7f00000009c0)='y\x105\xf3\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdbU\xb1\xe1br\xb6\x008\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\x90i\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14O\xf8\xb5C\x1f\xb6b8b\x06A2@D\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\x05\x00\x00\x00\x00\x00\x00\x00\'\x93\xef\x1d\xa0H\xd9\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00\x88\xd1\x1eQB\x18\xc1-\xc4\x8fK\xf8\xfa\xb6\xf8\v;\xaa\x8fW\xcc\n\x17\x7f\x98\xb7\xcdqV\xd4\xf0)\xfa\x0fG\xc8\xbf\xfd\xe8>K\f\xcd+\xb0\x99Q\xba/\xa8\xb9`k\b\xd1\xcc\xfc\xeaA\"\v=\x83fC\x90%\xa1d\x91\xf8:\x16<\xad\xc2\x18\xdf\x01\xe2\x96\xfcj\xe9\xa4\x065m\x03\x05Np\xda\"\xf1\xb6\xbcP\x8fP\x8d\x89%\xf2\x12T\xd0\xc3\x15W\x9c\x87\x1b\x8c\xc9\xd9\xc6\xad\x96-d\xa2wFB\xcaB\xa5\x15\xf8,\x04\x1c*\xd98\x8bG\x90\x81`\x03\xe0\xde\x9c\x9a\x0f\x1b\x8f\xd2%*&$Wc\xb3\xa6\xc4TK1}2\xb3\xab\xf4\xb7\xb7\x85\apa\xaf\x1c\x10i\xb9\x9f\x06\xff4%\"7f \x0e\xf5Bk\r\xac\"\x13tNx\xc0$\x85\x9f', 0x2)
fcntl$addseals(r5, 0x409, 0x7)
r6 = ioctl$UDMABUF_CREATE(r4, 0x40187542, &(0x7f0000000100)={r5, 0x0, 0x0, 0x8000})
ioctl$DMA_BUF_IOCTL_SYNC(r6, 0x40086200, &(0x7f0000000080)=0x2)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'hsr0\x00'})
syz_io_uring_setup(0x3b, &(0x7f00000001c0)={0x0, 0x0, 0x10100}, &(0x7f0000000000), &(0x7f0000000100))
r7 = inotify_init()
inotify_add_watch(r7, &(0x7f0000000000)='.\x00', 0x400017e)
pipe(&(0x7f0000000000)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
r10 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x4)
pipe(&(0x7f0000000080)={<r11=>0xffffffffffffffff, <r12=>0xffffffffffffffff})
splice(r11, 0x0, r10, 0x0, 0x1000, 0x0)
splice(r8, 0x0, r12, 0x0, 0x80, 0x0)
write$binfmt_aout(r9, &(0x7f00000004c0)=ANY=[], 0x120)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000040))

1.908582468s ago: executing program 37 (id=867):
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$sock_FIOSETOWN(0xffffffffffffffff, 0x8901, 0x0)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000200)={0x8, 0x8a}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$video(&(0x7f0000000000), 0x8, 0x0)
ioctl$VIDIOC_S_EXT_CTRLS(r2, 0xc0205648, &(0x7f0000000100)={0x980000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f90b, 0x9, '\x00', @p_u16=0x0}})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240))
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1})
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x1000, 0x1)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x80800, 0x20)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74, 0x5000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000700))
unshare(0x64000600)

1.843423771s ago: executing program 3 (id=889):
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000b40)=ANY=[@ANYBLOB="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"], 0x340}}, {{&(0x7f0000000300)={0xa, 0x4e20, 0x400, @empty, 0x7}, 0x1c, 0x0}}], 0x2, 0x810)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, &(0x7f00000001c0)={{0xeeee8000, 0x4, 0x3, 0xf1, 0x5, 0xfa, 0xd4, 0xd4, 0x0, 0x4, 0x7, 0x4f}, {0x5000, 0x2, 0xd, 0x9, 0x8, 0x3, 0x6, 0xb, 0x5, 0xf, 0x3, 0xc0}, {0xffff1000, 0xeeef0000, 0xb, 0x1, 0x2, 0x7, 0x4, 0x1, 0x81, 0x0, 0x6, 0x5}, {0x8000000, 0x2000, 0x8, 0xf8, 0x3, 0x46, 0x2, 0xd, 0x6, 0x3, 0x8, 0x1}, {0x100000, 0x4000, 0x9, 0x9, 0x3, 0x9, 0xd, 0x6, 0x5, 0x9, 0xc, 0x4b}, {0x6000, 0x0, 0x4, 0x6, 0x3, 0x7d, 0x1, 0xff, 0x4, 0x90, 0x1, 0xfc}, {0x8000000, 0x4000, 0x0, 0x9d, 0x3, 0x0, 0x0, 0xb, 0x5, 0x7, 0x9, 0xf8}, {0xf7f63004, 0x8000000, 0xf, 0x5, 0x28, 0x3, 0xa, 0x9, 0x54, 0x1, 0x2, 0x7}, {0xdddd1000, 0x5}, {0x4, 0x9}, 0x40030000, 0x0, 0x80a0000, 0x300, 0x1, 0x2000, 0xe6e70c00, [0x3, 0x401, 0x7, 0xc5]})
ioctl$KVM_SET_LAPIC(0xffffffffffffffff, 0x4400ae8f, &(0x7f0000000740)={"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"})
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3", 0x5)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.452755947s ago: executing program 6 (id=891):
socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80782, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
write(r2, &(0x7f0000000100)="e97b891ab3", 0x5)
write(r2, &(0x7f0000001040)="224df6e3aa1367ce197ae58cbef1e37891a6d533aebbaba3bd3d95760fb9bef8fee32642e76a", 0x26)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)

264.38µs ago: executing program 9 (id=892):
bpf$MAP_CREATE(0x0, 0x0, 0xb285f305e6b16ca5)
openat$binderfs(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80202, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000140), 0x2, 0x141182)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r1, 0x11b, 0x4, &(0x7f0000000040)={&(0x7f0000000000)=""/5, 0x1c000, 0x800, 0x8, 0x2}, 0x1c)
setsockopt$XDP_TX_RING(r1, 0x11b, 0x3, &(0x7f00000003c0)=0x800, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'lo\x00', <r3=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r1, 0x11b, 0x5, &(0x7f00000000c0)=0x100, 0x4)
setsockopt$XDP_UMEM_COMPLETION_RING(r1, 0x11b, 0x6, &(0x7f0000000180)=0x20, 0x4)
bind$xdp(r1, &(0x7f00000001c0)={0x2c, 0x0, r3}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x100000000, 0xfffffffffffffffd, 0x0, 0x0, 0x1000001000, 0x49}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0xffffffffffffffff, 0x9, 0x0, 0xf, 0x80000005}, 0x0, 0x0)

81.11µs ago: executing program 6 (id=894):
socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80782, 0x0)
ioctl$TCXONC(r2, 0x540a, 0x0)
write(r2, &(0x7f0000000100)="e97b891ab3", 0x5)
write(r2, &(0x7f0000001040)="224df6e3aa1367ce197ae58cbef1e37891a6d533aebbaba3bd3d95760fb9bef8fee32642e76a", 0x26)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)

0s ago: executing program 7 (id=895):
socket$inet6(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x80782, 0x0)
ioctl$TCXONC(r1, 0x540a, 0x0)
write(r1, &(0x7f0000000100)="e97b891ab3", 0x5)
write(r1, &(0x7f0000001040)="224df6e3aa1367ce197ae58cbef1e37891a6d533aebbaba3bd3d95760fb9bef8fee32642e76a", 0x26)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{0x77359400}}, 0x0)

kernel console output (not intermixed with test programs):

han:343: Corrupt filesystem
[  137.852648][ T5137] EXT4-fs (loop4): Remounting filesystem read-only
[  137.860132][ T5137] EXT4-fs (loop4): 1 truncate cleaned up
[  138.025346][ T5137] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  138.481584][ T5158] netlink: 12 bytes leftover after parsing attributes in process `syz.3.203'.
[  138.491023][ T5158] netlink: 12 bytes leftover after parsing attributes in process `syz.3.203'.
[  139.836558][ T5171] netlink: 12 bytes leftover after parsing attributes in process `syz.3.205'.
[  139.847369][ T5171] netlink: 12 bytes leftover after parsing attributes in process `syz.3.205'.
[  139.856790][ T5172] netlink: 12 bytes leftover after parsing attributes in process `syz.4.206'.
[  139.865891][ T5172] netlink: 12 bytes leftover after parsing attributes in process `syz.4.206'.
[  140.762360][ T5187] netlink: 12 bytes leftover after parsing attributes in process `syz.3.207'.
[  140.771337][ T5187] netlink: 12 bytes leftover after parsing attributes in process `syz.3.207'.
[  141.062102][ T5195] netlink: 12 bytes leftover after parsing attributes in process `syz.5.209'.
[  141.071228][ T5195] netlink: 12 bytes leftover after parsing attributes in process `syz.5.209'.
[  141.155118][ T5195] loop5: detected capacity change from 0 to 512
[  143.253295][ T1108] Bluetooth: hci6: command 0x0409 tx timeout
[  143.265498][ T1108] Bluetooth: hci0: command 0x0409 tx timeout
[  143.272627][ T5195] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  143.282157][ T5195] EXT4-fs (loop5): orphan cleanup on readonly fs
[  143.292885][ T5195] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.209: corrupted inode contents
[  143.305602][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.312216][ T5195] EXT4-fs error (device loop5): ext4_dirty_inode:6054: inode #16: comm syz.5.209: mark_inode_dirty error
[  143.324461][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.331500][ T5195] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.209: corrupted inode contents
[  143.344251][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.350849][ T5195] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm syz.5.209: mark_inode_dirty error
[  143.363151][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.369865][ T5195] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.209: corrupted inode contents
[  143.382555][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.389337][ T5195] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  143.398465][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.405225][ T5195] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm syz.5.209: corrupted inode contents
[  143.417647][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.424328][ T5195] EXT4-fs error (device loop5): ext4_truncate:4279: inode #16: comm syz.5.209: mark_inode_dirty error
[  143.437147][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.443780][ T5195] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  143.453299][ T5195] EXT4-fs (loop5): Remounting filesystem read-only
[  143.460296][ T5195] EXT4-fs (loop5): 1 truncate cleaned up
[  143.479955][ T5195] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  145.054391][ T5223] __nla_validate_parse: 2 callbacks suppressed
[  145.054445][ T5223] netlink: 12 bytes leftover after parsing attributes in process `syz.5.213'.
[  145.072917][ T5223] netlink: 12 bytes leftover after parsing attributes in process `syz.5.213'.
[  145.846966][ T1108] Bluetooth: hci6: command 0x041b tx timeout
[  145.888014][ T1108] Bluetooth: hci0: command 0x041b tx timeout
[  145.915388][ T5168] chnl_net:caif_netlink_parms(): no params data found
[  145.918682][ T4193] syz-executor (4193) used greatest stack depth: 20928 bytes left
[  146.150181][ T5166] chnl_net:caif_netlink_parms(): no params data found
[  146.661237][ T5240] netlink: 12 bytes leftover after parsing attributes in process `syz.3.216'.
[  146.670435][ T5240] netlink: 12 bytes leftover after parsing attributes in process `syz.3.216'.
[  146.859694][ T5168] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.873749][ T5168] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.921348][ T5168] device bridge_slave_0 entered promiscuous mode
[  146.953549][ T5166] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.998364][ T5166] bridge0: port 1(bridge_slave_0) entered disabled state
[  147.045658][ T5166] device bridge_slave_0 entered promiscuous mode
[  147.089175][ T5168] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.096290][ T5168] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.346963][ T5168] device bridge_slave_1 entered promiscuous mode
[  147.357464][ T5166] bridge0: port 2(bridge_slave_1) entered blocking state
[  148.698784][ T5256] loop5: detected capacity change from 0 to 512
[  148.715766][   T23] Bluetooth: hci6: command 0x040f tx timeout
[  148.723371][ T5166] bridge0: port 2(bridge_slave_1) entered disabled state
[  148.738019][   T23] Bluetooth: hci0: command 0x040f tx timeout
[  148.754573][ T5166] device bridge_slave_1 entered promiscuous mode
[  148.832089][ T5259] netlink: 12 bytes leftover after parsing attributes in process `syz.5.218'.
[  148.841098][ T5259] netlink: 12 bytes leftover after parsing attributes in process `syz.5.218'.
[  148.850960][ T5260] netlink: 12 bytes leftover after parsing attributes in process `syz.4.220'.
[  148.860351][ T5260] netlink: 12 bytes leftover after parsing attributes in process `syz.4.220'.
[  148.966465][ T5168] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.017924][ T5166] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  149.063920][ T5168] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.096573][ T5256] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  149.105792][ T5256] EXT4-fs (loop5): orphan cleanup on readonly fs
[  149.119056][ T5256] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  149.131798][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.138394][ T5256] EXT4-fs error (device loop5): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  149.149815][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.156483][ T5256] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  149.169015][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.175680][ T5256] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  149.187654][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.194400][ T5256] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  149.206618][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.213204][ T5256] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  149.223319][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.230057][ T5256] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  149.242942][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.249558][ T5256] EXT4-fs error (device loop5): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  149.264703][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.271689][ T5256] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  149.281439][ T5256] EXT4-fs (loop5): Remounting filesystem read-only
[  149.288578][ T5256] EXT4-fs (loop5): 1 truncate cleaned up
[  149.295033][ T5256] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  149.370811][ T5166] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  149.934307][ T5168] team0: Port device team_slave_0 added
[  149.969821][ T5280] netlink: 12 bytes leftover after parsing attributes in process `syz.3.221'.
[  149.978874][ T5280] netlink: 12 bytes leftover after parsing attributes in process `syz.3.221'.
[  150.023644][ T5168] team0: Port device team_slave_1 added
[  150.092515][ T5166] team0: Port device team_slave_0 added
[  150.391632][ T5166] team0: Port device team_slave_1 added
[  150.673005][ T5168] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.690365][ T5168] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  150.762628][ T5168] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  150.807345][ T5292] netlink: 12 bytes leftover after parsing attributes in process `syz.4.223'.
[  150.816739][ T5292] netlink: 12 bytes leftover after parsing attributes in process `syz.4.223'.
[  150.826709][ T4223] Bluetooth: hci0: command 0x0419 tx timeout
[  150.858810][ T4223] Bluetooth: hci6: command 0x0419 tx timeout
[  150.903466][ T5168] batman_adv: batadv0: Adding interface: batadv_slave_1
[  150.937988][ T5168] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.085999][ T5168] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  151.121475][ T5166] batman_adv: batadv0: Adding interface: batadv_slave_0
[  151.177502][ T5166] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.216833][ T5166] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.647579][ T5320] netlink: 12 bytes leftover after parsing attributes in process `syz.4.229'.
[  151.656556][ T5320] netlink: 12 bytes leftover after parsing attributes in process `syz.4.229'.
[  151.677218][ T5320] loop4: detected capacity change from 0 to 512
[  151.747487][ T5166] batman_adv: batadv0: Adding interface: batadv_slave_1
[  152.783013][ T5166] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.012030][ T5166] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.059855][ T5320] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  153.069209][ T5320] EXT4-fs (loop4): orphan cleanup on readonly fs
[  153.079930][ T5320] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  153.092113][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.098805][ T5320] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  153.111213][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.117783][ T5320] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  153.130506][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.137033][ T5320] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  153.148749][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.155306][ T5320] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  153.169042][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.175662][ T5320] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[  153.184789][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.191559][ T5320] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  153.205058][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.211872][ T5320] EXT4-fs error (device loop4): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  153.227646][ T5322] netlink: 12 bytes leftover after parsing attributes in process `syz.3.228'.
[  153.236689][ T5322] netlink: 12 bytes leftover after parsing attributes in process `syz.3.228'.
[  153.246201][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.252926][ T5320] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[  153.265011][ T5320] EXT4-fs (loop4): Remounting filesystem read-only
[  153.272192][ T5320] EXT4-fs (loop4): 1 truncate cleaned up
[  153.279516][ T5320] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  153.364479][ T4298] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  153.630183][ T5166] device hsr_slave_0 entered promiscuous mode
[  153.637164][ T5166] device hsr_slave_1 entered promiscuous mode
[  153.644354][ T5166] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  153.652322][ T5166] Cannot create hsr debugfs directory
[  153.887288][ T5168] device hsr_slave_0 entered promiscuous mode
[  153.903620][ T5168] device hsr_slave_1 entered promiscuous mode
[  153.914200][ T5168] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  153.927651][ T5168] Cannot create hsr debugfs directory
[  153.966610][ T5330] netlink: 12 bytes leftover after parsing attributes in process `syz.5.230'.
[  153.975826][ T5330] netlink: 12 bytes leftover after parsing attributes in process `syz.5.230'.
[  154.351664][ T4298] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.460816][ T4298] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.711881][ T5340] netlink: 12 bytes leftover after parsing attributes in process `syz.4.231'.
[  154.721098][ T5340] netlink: 12 bytes leftover after parsing attributes in process `syz.4.231'.
[  154.737475][ T4298] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  155.255781][ T4298] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.334626][ T5351] netlink: 12 bytes leftover after parsing attributes in process `syz.4.232'.
[  156.344755][ T5351] netlink: 12 bytes leftover after parsing attributes in process `syz.4.232'.
[  156.437025][ T5352] netlink: 12 bytes leftover after parsing attributes in process `syz.3.240'.
[  156.446898][ T5352] netlink: 12 bytes leftover after parsing attributes in process `syz.3.240'.
[  156.561657][ T5361] loop4: detected capacity change from 0 to 512
[  156.570431][ T4298] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.617438][ T5361] EXT4-fs warning (device loop4): ext4_xattr_inode_get:509: inode #11: comm syz.4.234: EA inode hash validation failed
[  156.636921][ T5361] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #15: comm syz.4.234: corrupted inode contents
[  156.638782][ T4298] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.653991][ T5361] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #15: comm syz.4.234: mark_inode_dirty error
[  156.672049][ T5361] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #15: comm syz.4.234: corrupted inode contents
[  156.692807][ T5361] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2971: inode #15: comm syz.4.234: mark_inode_dirty error
[  156.705369][ T5361] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2974: inode #15: comm syz.4.234: mark inode dirty (error -117)
[  156.730080][ T5361] EXT4-fs warning (device loop4): ext4_evict_inode:302: xattr delete (err -117)
[  156.731395][ T4298] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  156.739482][ T5361] EXT4-fs (loop4): 1 orphan inode deleted
[  156.756638][ T5361] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x000000000000005c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  156.957577][ T5371] loop3: detected capacity change from 0 to 512
[  157.004766][ T5166] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  157.061727][ T5371] EXT4-fs (loop3): Ignoring removed nobh option
[  157.247162][ T5371] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  157.337886][ T5371] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  157.400217][ T5371] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.237: Corrupt directory, running e2fsck is recommended
[  157.482697][ T5371] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  157.519101][ T5371] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2229: inode #15: comm syz.3.237: corrupted in-inode xattr
[  157.559177][ T5166] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  157.584374][ T5371] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.237: couldn't read orphan inode 15 (err -117)
[  157.610686][ T5373] netlink: 12 bytes leftover after parsing attributes in process `syz.5.235'.
[  157.620043][ T5373] netlink: 12 bytes leftover after parsing attributes in process `syz.5.235'.
[  157.648135][ T5371] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  157.684435][ T5166] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  157.792311][ T5166] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  158.677867][ T5409] loop3: detected capacity change from 0 to 512
[  159.495857][ T5409] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  159.504988][ T5409] EXT4-fs (loop3): orphan cleanup on readonly fs
[  159.518503][ T5409] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  159.527090][ T5404] netlink: 12 bytes leftover after parsing attributes in process `syz.5.239'.
[  159.539862][ T5404] netlink: 12 bytes leftover after parsing attributes in process `syz.5.239'.
[  159.541593][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.555403][ T5409] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  159.577636][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.584905][ T5409] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  159.597422][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.604457][ T5409] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  159.617715][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.624771][ T5409] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  159.647680][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.662131][ T5409] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[  159.672260][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.678886][ T5409] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  159.692675][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.699804][ T5409] EXT4-fs error (device loop3): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  159.711592][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.719048][ T5409] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[  159.730942][ T5409] EXT4-fs (loop3): Remounting filesystem read-only
[  159.740019][ T5409] EXT4-fs (loop3): 1 truncate cleaned up
[  159.811015][ T5168] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  159.860140][ T5409] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  159.959813][ T5168] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  160.075935][ T5428] loop5: detected capacity change from 0 to 512
[  160.850266][ T5428] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  160.859646][ T5428] EXT4-fs (loop5): orphan cleanup on readonly fs
[  160.919069][ T5428] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  160.935719][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  160.942500][ T5428] EXT4-fs error (device loop5): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  160.957964][ T5168] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  160.966085][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  160.973080][ T5428] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  160.985577][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  160.993030][ T5428] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  161.006023][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  161.012640][ T5428] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  161.025145][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  161.031762][ T5428] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  161.042661][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  161.049975][ T5428] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  161.062432][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  161.069044][ T5428] EXT4-fs error (device loop5): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  161.166886][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  161.173520][ T5428] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  161.185334][ T5428] EXT4-fs (loop5): Remounting filesystem read-only
[  161.192401][ T5428] EXT4-fs (loop5): 1 truncate cleaned up
[  161.200858][ T5168] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  161.228124][ T5428] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  161.486914][ T5441] loop4: detected capacity change from 0 to 512
[  161.658338][ T5445] loop3: detected capacity change from 0 to 512
[  161.669285][ T5441] EXT4-fs (loop4): Ignoring removed nobh option
[  161.822161][ T5441] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  161.841050][ T5445] EXT4-fs warning (device loop3): ext4_xattr_inode_get:509: inode #11: comm syz.3.245: EA inode hash validation failed
[  161.879672][ T5166] 8021q: adding VLAN 0 to HW filter on device bond0
[  161.932123][ T5445] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #15: comm syz.3.245: corrupted inode contents
[  161.945544][ T5441] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  161.956175][ T5441] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.244: Corrupt directory, running e2fsck is recommended
[  161.972061][ T5166] 8021q: adding VLAN 0 to HW filter on device team0
[  161.979452][ T5441] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  161.988836][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  161.996718][ T5445] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #15: comm syz.3.245: mark_inode_dirty error
[  161.997514][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  162.051917][ T5441] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2229: inode #15: comm syz.4.244: corrupted in-inode xattr
[  162.053174][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  162.079470][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  162.082178][ T5445] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #15: comm syz.3.245: corrupted inode contents
[  162.088851][ T4801] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.106635][ T4801] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.111129][ T5441] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.244: couldn't read orphan inode 15 (err -117)
[  162.115538][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  162.135520][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  162.137387][ T5445] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2971: inode #15: comm syz.3.245: mark_inode_dirty error
[  162.143651][ T5441] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  162.181560][ T4801] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.188707][ T4801] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.197165][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  162.198017][ T5445] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2974: inode #15: comm syz.3.245: mark inode dirty (error -117)
[  162.207262][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  162.307153][ T5445] EXT4-fs warning (device loop3): ext4_evict_inode:302: xattr delete (err -117)
[  162.318346][ T5445] EXT4-fs (loop3): 1 orphan inode deleted
[  162.324303][ T5445] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x000000000000005c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  162.364701][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  162.387281][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  162.421022][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  162.481086][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  162.504551][ T5471] loop4: detected capacity change from 0 to 512
[  162.528755][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  162.558558][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  162.698160][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  162.706735][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  162.725670][ T5471] EXT4-fs (loop4): Ignoring removed nobh option
[  162.763822][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  162.774818][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  162.802580][ T5166] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  162.823495][ T5471] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  162.952769][ T5482] loop5: detected capacity change from 0 to 512
[  163.129493][ T5482] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  163.145815][ T5482] EXT4-fs (loop5): orphan cleanup on readonly fs
[  163.175901][ T5482] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  163.191979][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.200050][ T5482] EXT4-fs error (device loop5): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  163.217693][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.224645][ T5482] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  163.238659][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.245248][ T5482] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  163.257927][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.264793][ T5482] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  163.278422][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.285522][ T5482] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  163.296207][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.303792][ T5482] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  163.323622][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.330337][ T5482] EXT4-fs error (device loop5): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  163.342858][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.349472][ T5482] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  163.360866][ T5482] EXT4-fs (loop5): Remounting filesystem read-only
[  163.369437][ T5482] EXT4-fs (loop5): 1 truncate cleaned up
[  163.380659][ T5482] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  163.387984][ T5471] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  163.461970][ T5471] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.247: Corrupt directory, running e2fsck is recommended
[  163.570053][ T5471] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  163.592131][ T5168] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.617202][ T5471] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2229: inode #15: comm syz.4.247: corrupted in-inode xattr
[  163.686646][ T5471] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.247: couldn't read orphan inode 15 (err -117)
[  163.814934][ T5471] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  164.082943][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  164.101190][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  164.124037][ T5168] 8021q: adding VLAN 0 to HW filter on device team0
[  164.160433][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  164.187663][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  164.223754][ T5510] loop3: detected capacity change from 0 to 512
[  164.234354][ T5166] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.242894][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  164.253024][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  164.268547][  T331] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.275706][  T331] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.314056][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  164.326421][ T5510] EXT4-fs warning (device loop3): ext4_xattr_inode_get:509: inode #11: comm syz.3.252: EA inode hash validation failed
[  164.367096][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  164.376899][ T5510] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #15: comm syz.3.252: corrupted inode contents
[  164.402847][  T331] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.410028][  T331] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.423857][ T5510] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #15: comm syz.3.252: mark_inode_dirty error
[  164.436088][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  164.446795][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  164.453730][ T5510] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #15: comm syz.3.252: corrupted inode contents
[  164.505283][ T5510] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2971: inode #15: comm syz.3.252: mark_inode_dirty error
[  164.528525][ T5510] EXT4-fs error (device loop3): ext4_xattr_delete_inode:2974: inode #15: comm syz.3.252: mark inode dirty (error -117)
[  164.549224][ T5510] EXT4-fs warning (device loop3): ext4_evict_inode:302: xattr delete (err -117)
[  164.565505][ T5510] EXT4-fs (loop3): 1 orphan inode deleted
[  164.576740][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  164.587303][ T5510] EXT4-fs (loop3): mounted filesystem without journal. Opts: delalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x000000000000005c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  164.654635][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  164.671296][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  164.697055][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  164.730995][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  164.759399][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  164.842787][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  164.873191][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  164.904168][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  164.931336][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  164.968477][ T5168] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  165.260825][ T5544] loop4: detected capacity change from 0 to 512
[  165.427600][ T5166] device veth0_vlan entered promiscuous mode
[  165.630102][ T5166] device veth1_vlan entered promiscuous mode
[  165.885854][ T5166] device veth0_macvtap entered promiscuous mode
[  165.949826][ T5166] device veth1_macvtap entered promiscuous mode
[  165.968297][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  165.997187][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  166.016889][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  166.037079][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  166.052316][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  166.067718][ T5544] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  166.077342][ T5544] EXT4-fs (loop4): orphan cleanup on readonly fs
[  166.101809][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  166.109593][ T5544] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  166.124126][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.130986][ T5544] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  166.135166][ T5551] loop3: detected capacity change from 0 to 512
[  166.142976][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  166.156909][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.164199][ T5544] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  166.176798][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  166.186216][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.186988][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  166.192913][ T5544] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  166.200827][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.213517][ T5551] EXT4-fs (loop3): Ignoring removed nobh option
[  166.218347][ T5544] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  166.240024][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  166.248125][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  166.255406][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.261980][ T5544] EXT4-fs error (device loop4) in ext4_orphan_del:301: Corrupt filesystem
[  166.264657][ T5551] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  166.272102][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  166.291036][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.294174][ T5551] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  166.297579][ T5544] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  166.315262][ T5551] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.256: Corrupt directory, running e2fsck is recommended
[  166.320904][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.338769][ T5544] EXT4-fs error (device loop4): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  166.346161][ T5551] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  166.378239][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  166.385798][  T331] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  166.408421][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.415026][ T5544] EXT4-fs error (device loop4) in ext4_process_orphan:343: Corrupt filesystem
[  166.424918][ T5544] EXT4-fs (loop4): Remounting filesystem read-only
[  166.428843][ T5551] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2229: inode #15: comm syz.3.256: corrupted in-inode xattr
[  166.432247][ T5544] EXT4-fs (loop4): 1 truncate cleaned up
[  166.446246][ T5551] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.256: couldn't read orphan inode 15 (err -117)
[  166.455597][ T5544] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  166.466913][ T5551] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  166.516555][ T5168] 8021q: adding VLAN 0 to HW filter on device batadv0
[  166.539865][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.579732][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.590035][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.628865][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.649439][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.676268][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.692948][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.704047][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.732317][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  166.744046][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.764046][ T5166] batman_adv: batadv0: Interface activated: batadv_slave_0
[  166.938380][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  166.975540][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  167.512493][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  167.542542][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  167.786335][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.797461][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.808336][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.819090][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.829930][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.840906][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.855617][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.869267][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.879561][ T5166] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  167.893291][ T5166] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  167.916242][ T5166] batman_adv: batadv0: Interface activated: batadv_slave_1
[  167.988099][ T5168] device veth0_vlan entered promiscuous mode
[  168.017084][ T5168] device veth1_vlan entered promiscuous mode
[  168.070139][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  168.079554][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  168.088580][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  168.098013][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  168.106950][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  168.116385][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  168.125386][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  168.133494][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  168.151151][ T5166] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  168.182820][ T5592] loop3: detected capacity change from 0 to 512
[  168.183603][ T5166] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  168.227963][ T5166] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  168.247105][ T5166] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  168.288472][ T5592] EXT4-fs (loop3): Ignoring removed nobh option
[  168.298832][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  168.309465][ T5592] EXT4-fs warning (device loop3): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  168.317224][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  168.339349][ T5592] EXT4-fs warning (device loop3): dx_probe:881: Enable large directory feature to access it
[  168.357640][ T5592] EXT4-fs warning (device loop3): dx_probe:966: inode #2: comm syz.3.265: Corrupt directory, running e2fsck is recommended
[  168.383695][ T5592] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -117
[  168.401750][ T5592] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2229: inode #15: comm syz.3.265: corrupted in-inode xattr
[  168.419967][ T5592] EXT4-fs error (device loop3): ext4_orphan_get:1406: comm syz.3.265: couldn't read orphan inode 15 (err -117)
[  168.452455][ T5592] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  168.476260][ T5168] device veth0_macvtap entered promiscuous mode
[  168.534868][ T5599] loop5: detected capacity change from 0 to 512
[  168.555871][ T5601] loop4: detected capacity change from 0 to 512
[  168.578531][ T5168] device veth1_macvtap entered promiscuous mode
[  168.618318][ T5601] EXT4-fs (loop4): Ignoring removed nobh option
[  168.654995][ T5599] EXT4-fs warning (device loop5): ext4_xattr_inode_get:509: inode #11: comm syz.5.258: EA inode hash validation failed
[  168.669311][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.679967][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.687023][ T5599] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #15: comm syz.5.258: corrupted inode contents
[  168.719075][ T5601] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  168.742630][ T5599] EXT4-fs error (device loop5): ext4_dirty_inode:6054: inode #15: comm syz.5.258: mark_inode_dirty error
[  168.755393][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.794254][ T5601] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it
[  168.806236][ T5599] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #15: comm syz.5.258: corrupted inode contents
[  168.819485][ T5601] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.259: Corrupt directory, running e2fsck is recommended
[  168.833471][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.843468][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.855153][ T5601] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[  168.863523][ T5601] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2229: inode #15: comm syz.4.259: corrupted in-inode xattr
[  168.875927][ T5599] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2971: inode #15: comm syz.5.258: mark_inode_dirty error
[  168.888948][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.893536][ T5601] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.259: couldn't read orphan inode 15 (err -117)
[  168.906747][ T5599] EXT4-fs error (device loop5): ext4_xattr_delete_inode:2974: inode #15: comm syz.5.258: mark inode dirty (error -117)
[  168.924614][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.938376][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  168.948930][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  168.954663][ T5601] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  168.967122][ T5599] EXT4-fs warning (device loop5): ext4_evict_inode:302: xattr delete (err -117)
[  168.993882][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.008045][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.019040][ T5599] EXT4-fs (loop5): 1 orphan inode deleted
[  169.024800][ T5599] EXT4-fs (loop5): mounted filesystem without journal. Opts: delalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x000000000000005c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  169.036344][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.060254][ T5168] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.076119][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  169.102516][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  169.119854][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  169.164397][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.188955][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.215045][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.241389][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.254205][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.265323][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.275772][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.289470][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.315148][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.326490][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.340619][ T5168] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.351297][ T5168] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.364077][ T5168] batman_adv: batadv0: Interface activated: batadv_slave_1
[  169.403582][ T5168] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  169.412513][ T5168] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  169.421332][ T5168] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  169.447009][ T5168] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  169.512166][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  169.532831][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  169.588647][ T4746] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  169.597127][ T4746] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  169.602880][ T5627] loop5: detected capacity change from 0 to 512
[  169.644856][ T5627] EXT4-fs (loop5): Ignoring removed nobh option
[  169.675373][ T5627] EXT4-fs warning (device loop5): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  169.688373][ T5627] EXT4-fs warning (device loop5): dx_probe:881: Enable large directory feature to access it
[  169.701187][ T5627] EXT4-fs warning (device loop5): dx_probe:966: inode #2: comm syz.5.262: Corrupt directory, running e2fsck is recommended
[  169.721834][ T5627] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  169.741967][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  169.777282][ T4372] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  169.789032][ T5627] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2229: inode #15: comm syz.5.262: corrupted in-inode xattr
[  169.837201][ T4372] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  169.858397][ T5627] EXT4-fs error (device loop5): ext4_orphan_get:1406: comm syz.5.262: couldn't read orphan inode 15 (err -117)
[  169.883902][ T5627] EXT4-fs (loop5): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  169.958855][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  169.998264][ T4746] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.006552][ T4746] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.248369][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  170.357504][ T4381] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.247553][ T5654] loop6: detected capacity change from 0 to 512
[  171.664401][ T4381] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.916398][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  172.387230][ T5667] loop3: detected capacity change from 0 to 512
[  172.863164][ T5653] netlink: 12 bytes leftover after parsing attributes in process `syz.6.200'.
[  172.872400][ T5653] netlink: 12 bytes leftover after parsing attributes in process `syz.6.200'.
[  172.977647][ T5654] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  172.991637][ T5654] EXT4-fs (loop6): orphan cleanup on readonly fs
[  173.024281][ T5654] EXT4-fs error (device loop6): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.070859][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.077607][ T5654] EXT4-fs error (device loop6): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  173.093962][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.101068][ T5654] EXT4-fs error (device loop6): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.114252][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.121528][ T5654] EXT4-fs error (device loop6): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  173.135183][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.141961][ T5654] EXT4-fs error (device loop6): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.158064][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.164654][ T5654] EXT4-fs error (device loop6) in ext4_orphan_del:301: Corrupt filesystem
[  173.178123][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.184810][ T5654] EXT4-fs error (device loop6): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.197159][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.203972][ T5654] EXT4-fs error (device loop6): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  173.215559][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.222421][ T5654] EXT4-fs error (device loop6) in ext4_process_orphan:343: Corrupt filesystem
[  173.237962][ T5654] EXT4-fs (loop6): Remounting filesystem read-only
[  173.245134][ T5654] EXT4-fs (loop6): 1 truncate cleaned up
[  173.261600][ T5654] EXT4-fs (loop6): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  173.282781][ T5667] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  173.291951][ T5667] EXT4-fs (loop3): orphan cleanup on readonly fs
[  173.304665][ T5667] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.317242][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.323905][ T5667] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  173.336515][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.343832][ T5667] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.356132][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.362947][ T5667] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  173.491228][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.497995][ T5667] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.513933][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.520755][ T5667] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[  173.532977][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.540585][ T5667] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  173.558945][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.565537][ T5667] EXT4-fs error (device loop3): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  173.579717][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.586458][ T5667] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[  173.604371][ T5667] EXT4-fs (loop3): Remounting filesystem read-only
[  173.615160][ T5667] EXT4-fs (loop3): 1 truncate cleaned up
[  173.843111][ T5667] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  174.500786][ T5697] loop4: detected capacity change from 0 to 512
[  174.573135][ T5697] EXT4-fs warning (device loop4): ext4_xattr_inode_get:509: inode #11: comm syz.4.275: EA inode hash validation failed
[  174.589858][ T5697] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #15: comm syz.4.275: corrupted inode contents
[  174.602733][ T5697] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #15: comm syz.4.275: mark_inode_dirty error
[  174.615045][ T5697] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #15: comm syz.4.275: corrupted inode contents
[  174.641654][ T5697] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2971: inode #15: comm syz.4.275: mark_inode_dirty error
[  174.686478][ T5697] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2974: inode #15: comm syz.4.275: mark inode dirty (error -117)
[  174.740067][ T5697] EXT4-fs warning (device loop4): ext4_evict_inode:302: xattr delete (err -117)
[  175.166396][ T5697] EXT4-fs (loop4): 1 orphan inode deleted
[  175.625426][ T5697] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,resuid=0x0000000000000000,debug_want_extra_isize=0x000000000000005c,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,,errors=continue. Quota mode: none.
[  175.712967][ T5690] usb usb1: usbfs: interface 0 claimed by hub while 'syz.7.201' sets config #-1
[  175.805983][ T5690] loop7: detected capacity change from 0 to 512
[  176.472853][ T5690] EXT4-fs (loop7): Quota format mount options ignored when QUOTA feature is enabled
[  176.490126][ T5690] EXT4-fs (loop7): Quota format mount options ignored when QUOTA feature is enabled
[  176.728656][ T5690] EXT4-fs (loop7): revision level too high, forcing read-only mode
[  176.769095][ T5690] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[  176.777291][ T5690] System zones: 0-1, 15-15, 18-18, 34-34
[  176.845160][ T5690] EXT4-fs (loop7): orphan cleanup on readonly fs
[  176.901024][ T5690] __quota_error: 19 callbacks suppressed
[  176.901040][ T5690] Quota error (device loop7): v2_read_header: Failed header read: expected=8 got=0
[  177.175786][ T5690] EXT4-fs warning (device loop7): ext4_enable_quotas:6461: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  177.403334][ T5734] netlink: 12 bytes leftover after parsing attributes in process `syz.5.282'.
[  177.412526][ T5734] netlink: 12 bytes leftover after parsing attributes in process `syz.5.282'.
[  177.471183][ T5734] loop5: detected capacity change from 0 to 512
[  178.071435][ T5690] EXT4-fs (loop7): Cannot turn on quotas: error -22
[  178.083434][ T5690] EXT4-fs error (device loop7): ext4_validate_block_bitmap:438: comm syz.7.201: bg 0: block 40: padding at end of block bitmap is not set
[  178.121694][ T5734] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  178.135192][ T5734] EXT4-fs (loop5): orphan cleanup on readonly fs
[  178.163158][ T5734] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  178.177368][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.184261][ T5734] EXT4-fs error (device loop5): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  178.201732][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.208698][ T5734] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  178.220963][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.227540][ T5734] EXT4-fs error (device loop5): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  178.240347][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.246977][ T5734] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  178.261118][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.267758][ T5734] EXT4-fs error (device loop5) in ext4_orphan_del:301: Corrupt filesystem
[  178.277256][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.284008][ T5734] EXT4-fs error (device loop5): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  178.297781][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.304435][ T5734] EXT4-fs error (device loop5): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  178.316022][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.322629][ T5734] EXT4-fs error (device loop5) in ext4_process_orphan:343: Corrupt filesystem
[  178.332456][ T5734] EXT4-fs (loop5): Remounting filesystem read-only
[  178.339459][ T5734] EXT4-fs (loop5): 1 truncate cleaned up
[  178.348047][ T5734] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  179.227965][ T5690] EXT4-fs error (device loop7) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  179.283427][ T5690] EXT4-fs (loop7): 1 truncate cleaned up
[  179.320363][ T5690] EXT4-fs (loop7): mounted filesystem without journal. Opts: jqfmt=vfsv1,nouid32,jqfmt=vfsv0,norecovery,nogrpid,dioread_lock,,errors=continue. Quota mode: writeback.
[  181.325529][ T5775] loop6: detected capacity change from 0 to 512
[  182.062742][ T4287] Bluetooth: hci3: command 0x0406 tx timeout
[  182.399796][ T4287] Bluetooth: hci1: command 0x0406 tx timeout
[  183.301936][ T5775] EXT4-fs (loop6): Ignoring removed nobh option
[  184.297081][ T5775] EXT4-fs warning (device loop6): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  184.358332][ T5775] EXT4-fs warning (device loop6): dx_probe:881: Enable large directory feature to access it
[  184.376759][ T5775] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.291: Corrupt directory, running e2fsck is recommended
[  184.603538][ T5775] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[  184.603623][ T5775] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2229: inode #15: comm syz.6.291: corrupted in-inode xattr
[  184.604022][ T5775] EXT4-fs error (device loop6): ext4_orphan_get:1406: comm syz.6.291: couldn't read orphan inode 15 (err -117)
[  184.604386][ T5775] EXT4-fs (loop6): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,auto_da_alloc=0x0000000000000006,jqfmt=vfsold,auto_da_alloc,grpjquota=.usrjquota=,barrier=0x0000000000000008,nobh,grpid,,,errors=continue. Quota mode: writeback.
[  186.361266][ T5829] netlink: 12 bytes leftover after parsing attributes in process `syz.3.302'.
[  186.370354][ T5829] netlink: 12 bytes leftover after parsing attributes in process `syz.3.302'.
[  186.444980][ T5829] loop3: detected capacity change from 0 to 512
[  187.152490][ T5829] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  187.162411][ T5829] EXT4-fs (loop3): orphan cleanup on readonly fs
[  187.185385][ T5829] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  187.197502][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  187.205515][ T5829] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #16: comm +}[@: mark_inode_dirty error
[  187.227225][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  187.233989][ T5829] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  187.342916][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  187.349699][ T5829] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #16: comm +}[@: mark_inode_dirty error
[  187.369957][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  187.376630][ T5829] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  187.397533][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  187.404182][ T5829] EXT4-fs error (device loop3) in ext4_orphan_del:301: Corrupt filesystem
[  187.447048][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  187.453820][ T5829] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #16: comm +}[@: corrupted inode contents
[  187.733065][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  187.739717][ T5829] EXT4-fs error (device loop3): ext4_truncate:4279: inode #16: comm +}[@: mark_inode_dirty error
[  189.529747][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  189.536431][ T5829] EXT4-fs error (device loop3) in ext4_process_orphan:343: Corrupt filesystem
[  189.547049][ T5829] EXT4-fs (loop3): Remounting filesystem read-only
[  189.554057][ T5829] EXT4-fs (loop3): 1 truncate cleaned up
[  189.560917][ T5829] EXT4-fs (loop3): mounted filesystem without journal. Opts: errors=remount-ro,nodioread_nolock,. Quota mode: writeback.
[  190.945364][ T4298] device hsr_slave_0 left promiscuous mode
[  191.103216][ T4298] device hsr_slave_1 left promiscuous mode
[  191.117180][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.590899][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.625153][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.659228][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.746620][ T4298] device bridge_slave_1 left promiscuous mode
[  191.752964][ T4298] bridge0: port 2(bridge_slave_1) entered disabled state
[  191.762334][ T4298] device bridge_slave_0 left promiscuous mode
[  192.028117][ T4298] bridge0: port 1(bridge_slave_0) entered disabled state
[  192.946090][ T4298] device hsr_slave_0 left promiscuous mode
[  192.953090][ T4298] device hsr_slave_1 left promiscuous mode
[  192.963388][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  194.661769][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  194.913370][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_0
[  194.924245][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  194.945787][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_1
[  197.753003][ T4298] device bridge_slave_1 left promiscuous mode
[  197.777698][ T4298] bridge0: port 2(bridge_slave_1) entered disabled state
[  198.062522][ T4298] device bridge_slave_0 left promiscuous mode
[  198.845945][ T4298] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.458128][ T4298] device veth1_macvtap left promiscuous mode
[  200.464212][ T4298] device veth0_macvtap left promiscuous mode
[  200.489580][ T4298] device veth1_vlan left promiscuous mode
[  200.495511][ T4298] device veth0_vlan left promiscuous mode
[  200.726218][ T4298] device veth1_macvtap left promiscuous mode
[  200.744471][ T4298] device veth0_macvtap left promiscuous mode
[  200.756991][ T4298] device veth1_vlan left promiscuous mode
[  200.768376][ T4298] device veth0_vlan left promiscuous mode
[  201.687275][ T4298] team0 (unregistering): Port device team_slave_1 removed
[  201.704830][ T4298] team0 (unregistering): Port device team_slave_0 removed
[  201.717127][ T4298] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  201.732790][ T4298] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  201.793110][ T4298] bond0 (unregistering): Released all slaves
[  201.912671][ T4298] team0 (unregistering): Port device team_slave_1 removed
[  201.927541][ T4298] team0 (unregistering): Port device team_slave_0 removed
[  201.941514][ T4298] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  201.955679][ T4298] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  202.020103][ T4298] bond0 (unregistering): Released all slaves
[  202.101841][ T5928] netlink: 12 bytes leftover after parsing attributes in process `syz.7.320'.
[  202.111772][ T5928] netlink: 12 bytes leftover after parsing attributes in process `syz.7.320'.
[  203.820177][ T5981] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  208.915672][ T6057] Zero length message leads to an empty skb
[  209.008881][ T6060] netlink: 'syz.5.346': attribute type 4 has an invalid length.
[  209.168592][ T6060] netlink: 17 bytes leftover after parsing attributes in process `syz.5.346'.
[  209.253932][ T6062] netlink: 'syz.7.347': attribute type 4 has an invalid length.
[  209.275357][ T6062] netlink: 17 bytes leftover after parsing attributes in process `syz.7.347'.
[  209.617835][    C0] hrtimer: interrupt took 49420 ns
[  211.949773][ T6102] netlink: 'syz.3.356': attribute type 4 has an invalid length.
[  211.957522][ T6102] netlink: 17 bytes leftover after parsing attributes in process `syz.3.356'.
[  215.981519][ T6150] netlink: 'syz.3.368': attribute type 4 has an invalid length.
[  216.088572][ T6150] netlink: 17 bytes leftover after parsing attributes in process `syz.3.368'.
[  218.597052][ T6174] netlink: 'syz.3.372': attribute type 4 has an invalid length.
[  218.604853][ T6174] netlink: 17 bytes leftover after parsing attributes in process `syz.3.372'.
[  220.813378][ T6176] netlink: 'syz.5.373': attribute type 4 has an invalid length.
[  220.821355][ T6176] netlink: 17 bytes leftover after parsing attributes in process `syz.5.373'.
[  222.694212][ T6184] netlink: 'syz.4.376': attribute type 4 has an invalid length.
[  222.702432][ T6184] netlink: 17 bytes leftover after parsing attributes in process `syz.4.376'.
[  227.458048][ T6227] netlink: 'syz.6.384': attribute type 4 has an invalid length.
[  227.692159][ T6227] netlink: 17 bytes leftover after parsing attributes in process `syz.6.384'.
[  228.274678][   T23] Bluetooth: hci5: command 0x0406 tx timeout
[  228.934260][ T6252] netlink: 'syz.5.387': attribute type 4 has an invalid length.
[  228.934332][ T6252] netlink: 17 bytes leftover after parsing attributes in process `syz.5.387'.
[  232.678049][ T6273] netlink: 'syz.5.393': attribute type 4 has an invalid length.
[  232.678117][ T6273] netlink: 17 bytes leftover after parsing attributes in process `syz.5.393'.
[  239.536752][ T6327] netlink: 'syz.7.404': attribute type 4 has an invalid length.
[  239.544916][ T6327] netlink: 17 bytes leftover after parsing attributes in process `syz.7.404'.
[  241.576975][ T6333] netlink: 'syz.3.405': attribute type 4 has an invalid length.
[  241.584754][ T6333] netlink: 17 bytes leftover after parsing attributes in process `syz.3.405'.
[  243.945233][ T6354] netlink: 'syz.7.410': attribute type 4 has an invalid length.
[  243.953106][ T6354] netlink: 17 bytes leftover after parsing attributes in process `syz.7.410'.
[  244.950197][ T6359] binder: 6350:6359 ioctl c0306201 0 returned -14
[  244.958261][ T6359] binder: 6350:6359 ioctl c0306201 200000000780 returned -11
[  244.969175][ T6359] virtio-fs: tag </dev/md0> not found
[  244.980547][ T6359] afs: Unknown parameter 'au'
[  250.729103][ T1108] Bluetooth: hci2: command 0x0409 tx timeout
[  251.265612][ T6418] binder: 6414:6418 ioctl c0306201 0 returned -14
[  251.273794][ T6418] binder: 6414:6418 ioctl c0306201 200000000780 returned -11
[  251.284238][ T6418] virtio-fs: tag </dev/md0> not found
[  251.295509][ T6418] afs: Unknown parameter 'au'
[  251.976422][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[  251.986094][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[  251.995175][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[  252.004190][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[  252.036900][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!!
[  252.045850][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!!
[  252.054747][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!!
[  252.063725][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!!
[  252.072613][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #8a!!!
[  252.081785][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #18a!!!
[  253.858006][ T6444] netlink: 12 bytes leftover after parsing attributes in process `syz.5.429'.
[  253.999401][ T6445] netlink: 24 bytes leftover after parsing attributes in process `syz.5.429'.
[  254.300954][ T1108] Bluetooth: hci2: command 0x041b tx timeout
[  255.690900][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  256.345334][ T4236] Bluetooth: hci2: command 0x040f tx timeout
[  256.455835][ T6472] binder: 6468:6472 ioctl c0306201 0 returned -14
[  256.463942][ T6472] binder: 6468:6472 ioctl c0306201 200000000780 returned -11
[  256.474124][ T6472] virtio-fs: tag </dev/md0> not found
[  256.485651][ T6472] afs: Unknown parameter 'au'
[  257.681769][ T6396] chnl_net:caif_netlink_parms(): no params data found
[  258.582125][   T23] Bluetooth: hci2: command 0x0419 tx timeout
[  259.989919][ T6506] binder: 6496:6506 ioctl c0306201 0 returned -14
[  259.998390][ T6506] binder: 6496:6506 ioctl c0306201 200000000780 returned -11
[  260.008467][ T6506] virtio-fs: tag </dev/md0> not found
[  260.017529][ T6506] afs: Unknown parameter 'au'
[  261.979787][ T6396] bridge0: port 1(bridge_slave_0) entered blocking state
[  262.019164][ T6396] bridge0: port 1(bridge_slave_0) entered disabled state
[  262.027633][ T6396] device bridge_slave_0 entered promiscuous mode
[  263.958934][ T6536] netlink: 'syz.7.449': attribute type 4 has an invalid length.
[  263.966760][ T6536] netlink: 17 bytes leftover after parsing attributes in process `syz.7.449'.
[  264.058465][ T6396] bridge0: port 2(bridge_slave_1) entered blocking state
[  264.067680][   T23] Bluetooth: hci0: command 0x0406 tx timeout
[  264.073856][   T23] Bluetooth: hci6: command 0x0406 tx timeout
[  264.080190][ T6396] bridge0: port 2(bridge_slave_1) entered disabled state
[  264.098905][ T6396] device bridge_slave_1 entered promiscuous mode
[  266.781067][ T6396] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  266.873393][ T6396] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  267.182952][ T6571] binder: 6566:6571 ioctl c0306201 0 returned -14
[  267.190912][ T6571] binder: 6566:6571 ioctl c0306201 200000000780 returned -11
[  267.200489][ T6571] virtio-fs: tag </dev/md0> not found
[  267.210283][ T6571] afs: Unknown parameter 'au'
[  267.218076][ T5399] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  267.969895][ T6396] team0: Port device team_slave_0 added
[  268.551686][ T6396] team0: Port device team_slave_1 added
[  268.857885][ T5399] usb 4-1: Using ep0 maxpacket: 32
[  268.880318][ T4298] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  269.112106][ T5399] usb 4-1: device descriptor read/all, error -71
[  269.326005][ T6596] binder: 6586:6596 ioctl c0306201 0 returned -14
[  269.334413][ T6596] binder: 6586:6596 ioctl c0306201 200000000780 returned -11
[  269.346405][ T6596] virtio-fs: tag </dev/md0> not found
[  269.409357][ T6597] binder: 6589:6597 ioctl c0306201 0 returned -14
[  269.417464][ T6597] binder: 6589:6597 ioctl c0306201 200000000780 returned -11
[  269.428078][ T6597] virtio-fs: tag </dev/md0> not found
[  269.437801][ T6597] afs: Unknown parameter 'au'
[  270.182587][ T6396] batman_adv: batadv0: Adding interface: batadv_slave_0
[  270.230476][ T6396] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  270.326594][ T6396] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  270.465326][ T4298] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  270.527950][ T6396] batman_adv: batadv0: Adding interface: batadv_slave_1
[  270.558194][ T6396] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  270.973416][ T6396] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  271.281624][ T4298] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  271.529409][ T6396] device hsr_slave_0 entered promiscuous mode
[  271.812627][ T6396] device hsr_slave_1 entered promiscuous mode
[  272.129547][ T4298] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  272.729992][ T6633] binder: 6620:6633 ioctl c0306201 0 returned -14
[  272.737518][ T6633] binder: 6620:6633 ioctl c0306201 200000000780 returned -11
[  272.747562][ T6633] virtio-fs: tag </dev/md0> not found
[  272.756620][ T6633] afs: Unknown parameter 'au'
[  274.636023][ T6647] netlink: 'syz.3.474': attribute type 4 has an invalid length.
[  274.643913][ T6647] netlink: 17 bytes leftover after parsing attributes in process `syz.3.474'.
[  274.740106][ T6396] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  276.610842][ T6396] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  276.877961][ T4298] tipc: Left network mode
[  276.963716][ T6681] netlink: 12 bytes leftover after parsing attributes in process `syz.5.480'.
[  277.402782][ T6396] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  277.577116][ T6396] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  277.837183][ T6668] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  279.107981][ T6668] usb 8-1: Using ep0 maxpacket: 32
[  279.328130][ T6717] virtio-fs: tag </dev/md0> not found
[  279.458129][ T6668] usb 8-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  279.558949][ T6668] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  279.574042][ T6668] usb 8-1: Product: syz
[  279.578954][ T6668] usb 8-1: Manufacturer: syz
[  279.583753][ T6668] usb 8-1: SerialNumber: syz
[  280.549647][ T6668] usb 8-1: config 0 descriptor??
[  280.568075][ T6668] usb 8-1: can't set config #0, error -71
[  280.584692][ T6668] usb 8-1: USB disconnect, device number 2
[  280.593453][ T6396] 8021q: adding VLAN 0 to HW filter on device bond0
[  280.620924][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  280.643981][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  280.647616][ T6396] 8021q: adding VLAN 0 to HW filter on device team0
[  280.782492][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  280.930670][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  280.984471][ T4383] bridge0: port 1(bridge_slave_0) entered blocking state
[  280.991651][ T4383] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.008444][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  282.019284][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  282.051497][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  282.891589][ T4281] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.899018][ T4281] bridge0: port 2(bridge_slave_1) entered forwarding state
[  282.972365][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  282.995267][ T6761] No source specified
[  283.003275][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  283.116562][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  283.206487][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  283.785160][ T6396] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  283.968158][ T6396] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  284.058041][ T6755] device syzkaller0 entered promiscuous mode
[  285.778851][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  285.787391][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  285.799987][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  285.808779][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  285.828630][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  285.845756][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  285.854750][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  285.920879][ T4281] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  287.215550][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  287.226994][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  287.240331][ T6396] 8021q: adding VLAN 0 to HW filter on device batadv0
[  287.395207][ T6816] No source specified
[  287.497009][ T6820] binder: 6812:6820 ioctl c0306201 0 returned -14
[  287.505215][ T6820] binder: 6812:6820 ioctl c0306201 200000000780 returned -11
[  287.515579][ T6820] virtio-fs: tag </dev/md0> not found
[  287.524935][ T6820] afs: Unknown parameter 'au'
[  288.994359][ T6839] binder: 6828:6839 ioctl c0306201 0 returned -14
[  289.003692][ T6839] binder: 6828:6839 ioctl c0306201 200000000780 returned -11
[  289.016620][ T6839] virtio-fs: tag </dev/md0> not found
[  289.029735][ T6839] afs: Unknown parameter 'au'
[  290.860050][ T6861] device syzkaller0 entered promiscuous mode
[  290.907070][ T6867] No source specified
[  291.865080][ T6882] binder: 6875:6882 ioctl c0306201 0 returned -14
[  291.873177][ T6882] binder: 6875:6882 ioctl c0306201 200000000780 returned -11
[  291.883508][ T6882] virtio-fs: tag </dev/md0> not found
[  291.894000][ T6882] afs: Unknown parameter 'au'
[  292.791371][ T6396] device veth0_vlan entered promiscuous mode
[  292.886976][ T6893] binder: 6886:6893 ioctl c0306201 0 returned -14
[  292.895407][ T6893] binder: 6886:6893 ioctl c0306201 200000000780 returned -11
[  292.905399][ T6893] virtio-fs: tag </dev/md0> not found
[  292.914385][ T6893] afs: Unknown parameter 'au'
[  293.524296][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  293.809237][ T6904] binder: 6891:6904 ioctl c0306201 0 returned -14
[  293.817153][ T6904] binder: 6891:6904 ioctl c0306201 200000000780 returned -11
[  293.828840][ T6904] afs: Unknown parameter 'au'
[  294.088292][ T6906] binder: 6901:6906 ioctl c0306201 0 returned -14
[  294.097630][ T6906] binder: 6901:6906 ioctl c0306201 200000000780 returned -11
[  294.110384][ T6906] virtio-fs: tag </dev/md0> not found
[  294.124988][ T6906] afs: Unknown parameter 'au'
[  294.539391][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  294.549461][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  294.580061][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  294.600406][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  294.608700][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  294.801801][ T6396] device veth1_vlan entered promiscuous mode
[  295.803323][ T6396] device veth0_macvtap entered promiscuous mode
[  296.013759][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  296.027196][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  296.036989][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  296.058598][ T6396] device veth1_macvtap entered promiscuous mode
[  296.194038][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  296.215766][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.241490][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  296.256403][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.279834][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  296.297581][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.314914][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  296.329742][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.340632][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  296.351352][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.363336][ T6396] batman_adv: batadv0: Interface activated: batadv_slave_0
[  296.374725][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  296.386084][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  296.396614][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  296.407623][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.055717][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.066999][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.084827][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.096319][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.113844][ T6396] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  297.125041][ T6396] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  297.144881][ T6396] batman_adv: batadv0: Interface activated: batadv_slave_1
[  297.167606][ T6396] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  297.176624][ T6396] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  297.185728][ T6396] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  297.195017][ T6396] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  297.268537][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  297.285616][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  297.336862][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  297.502541][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  299.099903][ T6955] ptrace attach of "./syz-executor exec"[5168] was attempted by "./syz-executor exec"[6955]
[  301.418094][ T4260] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.434559][ T4260] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.521468][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  301.542837][ T4260] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  301.572944][ T4260] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  301.884247][ T6981] netlink: 12 bytes leftover after parsing attributes in process `syz.5.549'.
[  302.548099][ T4260] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  308.804448][ T4746] wlan1: Trigger new scan to find an IBSS to join
[  308.885208][ T7055] netlink: 12 bytes leftover after parsing attributes in process `syz.3.560'.
[  308.896257][ T7055] netlink: 24 bytes leftover after parsing attributes in process `syz.3.560'.
[  309.257469][ T5402] Bluetooth: hci2: command 0x0409 tx timeout
[  310.579633][ T7066] device syzkaller0 entered promiscuous mode
[  311.835862][ T4236] Bluetooth: hci2: command 0x041b tx timeout
[  313.797103][ T4298] device hsr_slave_0 left promiscuous mode
[  313.804030][ T4298] device hsr_slave_1 left promiscuous mode
[  313.810942][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  313.839640][ T4801] wlan1: Creating new IBSS network, BSSID 06:10:51:0e:6b:2f
[  313.859475][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_0
[  313.938621][   T23] Bluetooth: hci2: command 0x040f tx timeout
[  314.344984][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  314.367922][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_1
[  314.416738][ T4298] device bridge_slave_1 left promiscuous mode
[  314.468008][ T4298] bridge0: port 2(bridge_slave_1) entered disabled state
[  315.738502][ T4298] device bridge_slave_0 left promiscuous mode
[  315.744771][ T4298] bridge0: port 1(bridge_slave_0) entered disabled state
[  315.777118][ T4298] device veth1_macvtap left promiscuous mode
[  315.794040][ T4298] device veth0_macvtap left promiscuous mode
[  315.838143][ T4746] wlan1: Trigger new scan to find an IBSS to join
[  315.919303][ T4298] device veth1_vlan left promiscuous mode
[  315.925185][ T4298] device veth0_vlan left promiscuous mode
[  316.008039][   T21] Bluetooth: hci2: command 0x0419 tx timeout
[  317.120487][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  317.621832][ T4298] team0 (unregistering): Port device team_slave_1 removed
[  317.655091][ T4298] team0 (unregistering): Port device team_slave_0 removed
[  317.682071][ T4298] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  317.715449][ T4298] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  317.866858][ T4298] bond0 (unregistering): Released all slaves
[  318.239738][ T7032] chnl_net:caif_netlink_parms(): no params data found
[  319.116794][ T7032] bridge0: port 1(bridge_slave_0) entered blocking state
[  319.140861][ T7032] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.184590][ T7032] device bridge_slave_0 entered promiscuous mode
[  319.211616][ T7032] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.225827][ T7032] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.259941][ T7032] device bridge_slave_1 entered promiscuous mode
[  319.460158][ T7032] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  319.616394][ T7032] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  320.424256][ T4801] wlan1: Trigger new scan to find an IBSS to join
[  321.772622][  T154] wlan1: Creating new IBSS network, BSSID 1e:7b:3a:b3:1f:6c
[  322.044597][ T7032] team0: Port device team_slave_0 added
[  322.819804][ T7032] team0: Port device team_slave_1 added
[  324.630525][ T7032] batman_adv: batadv0: Adding interface: batadv_slave_0
[  324.637562][ T7032] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.855200][ T7032] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  325.079072][ T7032] batman_adv: batadv0: Adding interface: batadv_slave_1
[  325.086475][ T7032] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  325.903380][ T7032] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  327.028519][ T7032] device hsr_slave_0 entered promiscuous mode
[  327.071124][ T7032] device hsr_slave_1 entered promiscuous mode
[  327.289124][ T7032] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  327.301238][ T7032] Cannot create hsr debugfs directory
[  327.400171][ T7221] virtio-fs: tag </dev/md0> not found
[  327.409954][ T7221] afs: Unknown parameter 'au'
[  327.867689][ T7213] device syzkaller0 entered promiscuous mode
[  332.359257][ T7032] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.442684][ T7032] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  335.923403][ T7032] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  336.238337][ T7032] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  338.976597][ T7032] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  339.017209][ T7032] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  339.075950][ T7032] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  339.142957][ T7032] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  339.546194][ T7303] device syzkaller0 entered promiscuous mode
[  340.089177][ T7032] 8021q: adding VLAN 0 to HW filter on device bond0
[  340.228573][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  340.274806][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  340.425883][ T7032] 8021q: adding VLAN 0 to HW filter on device team0
[  341.448887][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  341.567126][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  341.714808][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  341.722281][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  341.886468][ T4379] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  342.006332][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  342.148891][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  342.297681][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  342.433315][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  342.440760][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  342.734614][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  342.927145][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  343.142994][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  343.396955][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  343.775416][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  343.928243][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  344.009439][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  344.084583][ T7032] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  344.128156][ T7032] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  344.170586][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  344.190521][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  344.248964][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  344.305385][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  344.314291][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  346.446831][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  346.454758][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  346.505840][ T7032] 8021q: adding VLAN 0 to HW filter on device batadv0
[  351.586806][ T7397] netlink: 24 bytes leftover after parsing attributes in process `syz.5.620'.
[  352.436555][ T4746] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  353.050376][ T7399] device syzkaller0 entered promiscuous mode
[  353.612474][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  353.631988][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  353.999591][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  354.019046][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  354.042878][ T7032] device veth0_vlan entered promiscuous mode
[  354.070577][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  354.168679][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  354.222081][ T7032] device veth1_vlan entered promiscuous mode
[  354.529049][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  354.537042][ T7420] ptrace attach of "./syz-executor exec"[5168] was attempted by "./syz-executor exec"[7420]
[  354.560222][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  354.649442][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  354.688094][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  354.789429][ T4298] device hsr_slave_0 left promiscuous mode
[  354.806403][ T4298] device hsr_slave_1 left promiscuous mode
[  354.834532][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  354.852251][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_0
[  354.866071][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  354.878149][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_1
[  354.894935][ T4298] device bridge_slave_1 left promiscuous mode
[  354.903308][ T4298] bridge0: port 2(bridge_slave_1) entered disabled state
[  354.925425][ T4298] device bridge_slave_0 left promiscuous mode
[  354.933626][ T4298] bridge0: port 1(bridge_slave_0) entered disabled state
[  354.975157][ T4298] device veth1_macvtap left promiscuous mode
[  355.002972][ T4298] device veth0_macvtap left promiscuous mode
[  355.028030][ T4298] device veth1_vlan left promiscuous mode
[  355.053577][ T4298] device veth0_vlan left promiscuous mode
[  355.957609][ T4298] team0 (unregistering): Port device team_slave_1 removed
[  355.988971][ T4298] team0 (unregistering): Port device team_slave_0 removed
[  356.249410][ T4298] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  356.543434][ T4298] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  358.237298][ T4298] bond0 (unregistering): Released all slaves
[  358.995704][ T7447] netlink: 24 bytes leftover after parsing attributes in process `syz.7.633'.
[  361.130528][ T7032] device veth0_macvtap entered promiscuous mode
[  363.462509][ T7463] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  363.521867][ T7458] device syzkaller0 entered promiscuous mode
[  363.531771][ T7032] device veth1_macvtap entered promiscuous mode
[  365.994946][ T7501] netlink: 24 bytes leftover after parsing attributes in process `syz.3.644'.
[  367.294072][ T4236] Bluetooth: hci3: command 0x0409 tx timeout
[  369.433079][   T23] Bluetooth: hci3: command 0x041b tx timeout
[  370.826765][ T7527] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  371.528211][ T2343] Bluetooth: hci3: command 0x040f tx timeout
[  371.571779][ T7533] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  372.755446][ T7470] chnl_net:caif_netlink_parms(): no params data found
[  373.016474][ T4281] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  375.174930][ T4236] Bluetooth: hci3: command 0x0419 tx timeout
[  377.149985][ T7551] ptrace attach of "./syz-executor exec"[5166] was attempted by "./syz-executor exec"[7551]
[  377.560062][ T7470] bridge0: port 1(bridge_slave_0) entered blocking state
[  377.593072][ T7470] bridge0: port 1(bridge_slave_0) entered disabled state
[  377.641891][ T7470] device bridge_slave_0 entered promiscuous mode
[  377.788851][ T7470] bridge0: port 2(bridge_slave_1) entered blocking state
[  377.810644][ T7470] bridge0: port 2(bridge_slave_1) entered disabled state
[  377.859017][ T7470] device bridge_slave_1 entered promiscuous mode
[  377.898093][ T7470] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  377.912206][ T7470] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  378.013350][ T7470] team0: Port device team_slave_0 added
[  378.048949][ T7470] team0: Port device team_slave_1 added
[  378.618815][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  380.356301][ T7470] batman_adv: batadv0: Adding interface: batadv_slave_0
[  380.419321][ T7470] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  380.543828][ T7470] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  380.764256][ T7470] batman_adv: batadv0: Adding interface: batadv_slave_1
[  380.781147][ T7470] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  381.496202][ T7470] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  383.970462][ T4801] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  384.275860][ T7470] device hsr_slave_0 entered promiscuous mode
[  384.363434][ T7470] device hsr_slave_1 entered promiscuous mode
[  389.514137][ T7470] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  389.590287][ T7470] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  389.657629][ T7470] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  389.692614][ T7470] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  389.801315][ T7694] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  390.761214][ T7470] 8021q: adding VLAN 0 to HW filter on device bond0
[  390.795926][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  390.808274][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  390.820390][ T7470] 8021q: adding VLAN 0 to HW filter on device team0
[  390.841744][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  390.880228][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  390.897385][ T4746] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.904685][ T4746] bridge0: port 1(bridge_slave_0) entered forwarding state
[  390.928396][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  390.984726][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  392.505460][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  392.744904][ T4746] bridge0: port 2(bridge_slave_1) entered blocking state
[  392.752383][ T4746] bridge0: port 2(bridge_slave_1) entered forwarding state
[  392.773961][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  393.040746][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  393.996580][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  394.017250][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  394.041238][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  394.109620][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  394.137506][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  394.154065][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  394.167214][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  394.365359][ T4298] device hsr_slave_0 left promiscuous mode
[  394.376209][ T4298] device hsr_slave_1 left promiscuous mode
[  395.103390][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_0
[  395.235593][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_1
[  395.552671][ T4298] device bridge_slave_1 left promiscuous mode
[  395.612692][ T4298] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.680256][ T4298] device bridge_slave_0 left promiscuous mode
[  395.927414][ T4298] bridge0: port 1(bridge_slave_0) entered disabled state
[  397.158021][ T4298] device veth1_macvtap left promiscuous mode
[  397.241830][ T4298] device veth0_macvtap left promiscuous mode
[  397.324739][ T4298] device veth1_vlan left promiscuous mode
[  397.405793][ T4298] device veth0_vlan left promiscuous mode
[  398.393282][ T4298] team0 (unregistering): Port device team_slave_1 removed
[  398.425716][ T4298] team0 (unregistering): Port device team_slave_0 removed
[  398.441553][ T4298] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  398.464080][ T4298] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  400.483695][ T4298] bond0 (unregistering): Released all slaves
[  400.832745][ T7470] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  400.934001][ T7470] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  401.009869][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  401.052380][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  403.344973][ T7786] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  403.948165][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  403.985200][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  404.047007][ T7470] 8021q: adding VLAN 0 to HW filter on device batadv0
[  407.523090][ T4746] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  410.189963][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  410.213012][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  410.844978][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  410.866144][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  410.943207][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  410.985762][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  411.058988][ T7470] device veth0_vlan entered promiscuous mode
[  411.136741][ T7470] device veth1_vlan entered promiscuous mode
[  411.205501][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  411.300005][ T4801] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  411.540377][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  411.910157][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  412.012062][ T7470] device veth0_macvtap entered promiscuous mode
[  412.186450][ T7470] device veth1_macvtap entered promiscuous mode
[  412.233294][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  412.262900][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  412.576044][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  412.662642][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  412.743809][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  412.809913][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  413.044684][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  413.077843][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  413.114040][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  413.183416][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  413.229463][ T7470] batman_adv: batadv0: Interface activated: batadv_slave_0
[  413.552733][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  413.934723][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  413.944772][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  413.964782][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  413.993023][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  414.024977][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  414.070306][ T7470] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  414.070406][ T7470] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  414.086274][ T7470] batman_adv: batadv0: Interface activated: batadv_slave_1
[  414.095303][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  414.406593][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  414.524711][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  414.525492][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  414.574380][ T7470] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  414.574406][ T7470] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  414.574423][ T7470] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  414.574439][ T7470] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  415.689179][ T4381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  415.782560][ T4381] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  415.813156][ T4383] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  416.151062][ T4383] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  416.157094][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  416.375038][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  438.439879][ T8093] chnl_net:caif_netlink_parms(): no params data found
[  440.371321][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  441.056018][ T4236] Bluetooth: hci2: command 0x0409 tx timeout
[  441.234273][ T8123] netlink: 'syz.6.749': attribute type 4 has an invalid length.
[  441.242654][ T8123] netlink: 17 bytes leftover after parsing attributes in process `syz.6.749'.
[  441.258122][ T8093] bridge0: port 1(bridge_slave_0) entered blocking state
[  441.265599][ T8093] bridge0: port 1(bridge_slave_0) entered disabled state
[  441.344768][ T8093] device bridge_slave_0 entered promiscuous mode
[  443.997551][ T6652] Bluetooth: hci2: command 0x041b tx timeout
[  444.225748][ T8093] bridge0: port 2(bridge_slave_1) entered blocking state
[  444.266414][ T8093] bridge0: port 2(bridge_slave_1) entered disabled state
[  444.316243][ T8093] device bridge_slave_1 entered promiscuous mode
[  445.064372][ T8093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  445.158878][ T8093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  445.408792][ T8093] team0: Port device team_slave_0 added
[  445.482441][ T8093] team0: Port device team_slave_1 added
[  445.660160][ T8093] batman_adv: batadv0: Adding interface: batadv_slave_0
[  445.687121][ T8093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  445.784591][ T8093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  445.877193][ T8093] batman_adv: batadv0: Adding interface: batadv_slave_1
[  445.922671][ T8093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.056634][ T8093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  446.091067][   T13] Bluetooth: hci2: command 0x040f tx timeout
[  446.441463][ T8093] device hsr_slave_0 entered promiscuous mode
[  446.486803][ T8093] device hsr_slave_1 entered promiscuous mode
[  446.691863][ T8093] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  446.711807][ T8093] Cannot create hsr debugfs directory
[  448.170060][ T6669] Bluetooth: hci2: command 0x0419 tx timeout
[  450.431134][ T4372] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  451.141736][ T8093] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  451.323855][ T8093] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  451.672752][ T8093] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  453.131105][ T8093] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  453.311677][ T8245] ptrace attach of "./syz-executor exec"[5168] was attempted by "./syz-executor exec"[8245]
[  454.557302][ T8093] 8021q: adding VLAN 0 to HW filter on device bond0
[  454.841360][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  455.722555][ T4746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  456.677395][ T8093] 8021q: adding VLAN 0 to HW filter on device team0
[  456.721332][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  456.734203][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  456.766934][ T4383] bridge0: port 1(bridge_slave_0) entered blocking state
[  456.774282][ T4383] bridge0: port 1(bridge_slave_0) entered forwarding state
[  457.039324][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  457.173853][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  457.217939][   T23] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  457.341304][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  457.497850][   T23] usb 7-1: Using ep0 maxpacket: 32
[  457.541783][ T4383] bridge0: port 2(bridge_slave_1) entered blocking state
[  457.549190][ T4383] bridge0: port 2(bridge_slave_1) entered forwarding state
[  457.564924][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  457.574645][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  457.596704][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  457.648033][   T23] usb 7-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  457.733125][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  457.741962][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  457.773830][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  457.803591][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  457.938157][   T23] usb 7-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  458.454267][   T23] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  458.599917][   T23] usb 7-1: Product: syz
[  458.604419][   T23] usb 7-1: Manufacturer: syz
[  458.623469][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  459.419152][   T23] usb 7-1: SerialNumber: syz
[  459.461069][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  459.470785][   T23] usb 7-1: config 0 descriptor??
[  459.526575][ T8093] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  459.860935][ T8093] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  460.129570][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  460.139112][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  460.850951][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  460.863471][ T4383] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  460.955651][ T8093] 8021q: adding VLAN 0 to HW filter on device batadv0
[  461.631530][ T4287] usb 7-1: USB disconnect, device number 2
[  461.824855][ T8335] ptrace attach of "./syz-executor exec"[5166] was attempted by "./syz-executor exec"[8335]
[  462.858393][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  463.014351][ T4372] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  463.149104][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  463.181745][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  464.110812][ T8093] device veth0_vlan entered promiscuous mode
[  464.131638][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  464.186505][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  464.243753][ T8093] device veth1_vlan entered promiscuous mode
[  464.435399][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  464.534028][ T4425] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  464.670351][ T8093] device veth0_macvtap entered promiscuous mode
[  464.845824][ T8093] device veth1_macvtap entered promiscuous mode
[  465.176763][ T5669] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  465.229347][ T5669] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  465.364913][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  465.499655][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.635039][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  465.765055][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.894174][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  466.032358][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  466.164868][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  466.305157][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  466.435005][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  466.557827][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  466.694265][ T8093] batman_adv: batadv0: Interface activated: batadv_slave_0
[  466.797074][ T5669] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  466.865140][ T5669] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  467.004957][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  467.092163][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  467.218017][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  467.341419][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  467.444427][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  467.561364][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  467.662798][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  467.770265][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  467.874917][ T8093] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  467.980363][ T8093] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  468.038350][ T8093] batman_adv: batadv0: Interface activated: batadv_slave_1
[  468.050336][ T5669] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  468.108226][ T5669] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  468.142384][ T8093] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  468.194925][ T8093] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  468.360446][ T8093] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  468.429883][ T8093] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  470.196415][ T4381] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  470.331388][ T4381] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  470.514649][ T4746] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  470.515415][ T4381] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  470.582697][ T4746] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  470.656277][ T4298] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  470.789275][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  470.871947][ T4298] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.052460][ T4243] usb 8-1: new high-speed USB device number 3 using dummy_hcd
[  471.082367][ T4298] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  471.357958][ T4243] usb 8-1: Using ep0 maxpacket: 32
[  471.478308][ T4243] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  471.698443][ T4243] usb 8-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  471.759621][ T4243] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  471.829338][ T4243] usb 8-1: Product: syz
[  471.839097][ T4243] usb 8-1: Manufacturer: syz
[  471.843756][ T4243] usb 8-1: SerialNumber: syz
[  471.874533][ T4243] usb 8-1: config 0 descriptor??
[  471.933233][ T4298] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  473.908507][ T4243] usb 8-1: USB disconnect, device number 3
[  481.437859][ T5402] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  481.717949][ T5402] usb 9-1: Using ep0 maxpacket: 32
[  483.077983][ T5402] usb 9-1: unable to read config index 0 descriptor/start: -71
[  483.128310][ T5402] usb 9-1: can't read configurations, error -71
[  486.838338][ T8542] netlink: 28 bytes leftover after parsing attributes in process `syz.9.821'.
[  488.335322][ T6668] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  488.353971][ T1108] Bluetooth: hci3: command 0x0406 tx timeout
[  488.480757][ T4298] device hsr_slave_0 left promiscuous mode
[  488.560629][ T4298] device hsr_slave_1 left promiscuous mode
[  488.638150][ T6668] usb 7-1: Using ep0 maxpacket: 32
[  490.061433][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  490.090007][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_0
[  490.194468][ T4298] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  490.216502][ T6668] usb 7-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  490.280205][ T4298] batman_adv: batadv0: Removing interface: batadv_slave_1
[  490.409778][ T4298] device bridge_slave_1 left promiscuous mode
[  490.527084][ T4298] bridge0: port 2(bridge_slave_1) entered disabled state
[  490.707083][ T4298] device bridge_slave_0 left promiscuous mode
[  490.815161][ T4298] bridge0: port 1(bridge_slave_0) entered disabled state
[  491.054924][ T6668] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  491.063160][ T6668] usb 7-1: Product: syz
[  491.067444][ T6668] usb 7-1: Manufacturer: syz
[  491.072195][ T6668] usb 7-1: SerialNumber: syz
[  491.084017][ T6668] usb 7-1: config 0 descriptor??
[  491.101566][ T4298] device veth1_macvtap left promiscuous mode
[  491.118292][ T6668] usb 7-1: can't set config #0, error -71
[  491.139942][ T6668] usb 7-1: USB disconnect, device number 3
[  491.305582][ T4298] device veth0_macvtap left promiscuous mode
[  491.320833][ T4298] device veth1_vlan left promiscuous mode
[  491.326994][ T4298] device veth0_vlan left promiscuous mode
[  496.067173][ T4298] team0 (unregistering): Port device team_slave_1 removed
[  496.083988][ T4298] team0 (unregistering): Port device team_slave_0 removed
[  496.099317][ T4298] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  496.115751][ T4298] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  496.250524][ T4298] bond0 (unregistering): Released all slaves
[  496.621907][ T8608] netlink: 28 bytes leftover after parsing attributes in process `syz.7.833'.
[  496.635645][ T8635] netlink: 28 bytes leftover after parsing attributes in process `syz.3.840'.
[  497.794534][ T8669] binder: 8656:8669 ioctl c0306201 0 returned -14
[  497.802199][ T8669] binder: 8656:8669 ioctl c0306201 200000000780 returned -11
[  497.811233][ T8669] virtio-fs: tag </dev/md0> not found
[  497.818162][ T8669] afs: Unknown parameter 'au'
[  498.499999][ T8668] netlink: 28 bytes leftover after parsing attributes in process `syz.9.845'.
[  501.452458][ T1432] ieee802154 phy1 wpan1: encryption failed: -22
[  502.009451][ T8716] netlink: 24 bytes leftover after parsing attributes in process `syz.8.856'.
[  504.972112][ T5568] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  505.238008][ T5568] usb 8-1: Using ep0 maxpacket: 32
[  505.640108][ T5568] usb 8-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  505.820910][ T5568] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  506.307633][ T5568] usb 8-1: Product: syz
[  506.326716][ T5568] usb 8-1: Manufacturer: syz
[  506.336840][ T5568] usb 8-1: SerialNumber: syz
[  506.377442][ T5568] usb 8-1: config 0 descriptor??
[  506.684861][ T5568] RobotFuzz Open Source InterFace, OSIF 8-1:0.0: version d4.15 found at bus 008 address 004
[  506.980145][ T5568] usb 8-1: USB disconnect, device number 4
[  507.628285][ T5568] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[  507.887852][ T5568] usb 10-1: Using ep0 maxpacket: 32
[  508.198246][ T5568] usb 10-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  509.155210][ T5568] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  509.323003][ T5568] usb 10-1: Product: syz
[  509.425854][ T5568] usb 10-1: Manufacturer: syz
[  509.531371][ T5568] usb 10-1: SerialNumber: syz
[  509.787447][ T5568] usb 10-1: config 0 descriptor??
[  509.913785][ T5568] usb 10-1: can't set config #0, error -71
[  510.040322][ T5568] usb 10-1: USB disconnect, device number 2
[  512.270230][ T8781] netlink: 28 bytes leftover after parsing attributes in process `syz.6.880'.
[  514.734097][ T8817] netlink: 28 bytes leftover after parsing attributes in process `syz.3.875'.
[  515.444440][ T8834] device syzkaller0 entered promiscuous mode
[  517.447791][ T5467] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  517.687801][ T5467] usb 4-1: Using ep0 maxpacket: 32
[  518.778218][ T5467] usb 4-1: New USB device found, idVendor=1964, idProduct=0001, bcdDevice=d4.15
[  519.958358][ T5467] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  520.053381][ T5467] usb 4-1: Product: syz
[  520.109063][ T5467] usb 4-1: Manufacturer: syz
[  520.157060][ T5467] usb 4-1: SerialNumber: syz
[  520.266945][ T5467] usb 4-1: config 0 descriptor??
[  520.930865][ T5467] usb 4-1: can't set config #0, error -71
[  521.289206][ T5467] usb 4-1: USB disconnect, device number 4
[  627.967603][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  627.974710][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P8765/1:b..l P5669/1:b..l
[  627.984749][    C0] 	(detected by 0, t=10503 jiffies, g=32141, q=96)
[  627.991612][    C0] task:kworker/u4:15   state:R  running task     stack:23072 pid: 5669 ppid:     2 flags:0x00004000
[  628.003369][    C0] Workqueue: bat_events batadv_nc_worker
[  628.009136][    C0] Call Trace:
[  628.012517][    C0]  <TASK>
[  628.015470][    C0]  __schedule+0x11bb/0x4390
[  628.019999][    C0]  ? verify_lock_unused+0x140/0x140
[  628.025328][    C0]  ? mark_lock+0x94/0x320
[  628.029703][    C0]  ? release_firmware_map_entry+0x190/0x190
[  628.035806][    C0]  ? preempt_schedule_irq+0xa6/0x150
[  628.041196][    C0]  preempt_schedule_irq+0xb1/0x150
[  628.046323][    C0]  ? __cond_resched+0xb0/0xb0
[  628.051127][    C0]  ? rcu_irq_exit_check_preempt+0xdb/0x200
[  628.057044][    C0]  irqentry_exit+0x63/0x70
[  628.061579][    C0]  asm_sysvec_reschedule_ipi+0x16/0x20
[  628.067089][    C0] RIP: 0010:lock_acquire+0x1f2/0x3f0
[  628.072390][    C0] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f6 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 44 3d 00 00 00 00 00 66 43 c7 44 3d 09 00 00 43 c6 44 3d 0b
[  628.092790][    C0] RSP: 0018:ffffc90003bffaa0 EFLAGS: 00000206
[  628.099488][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 20bb9073e515ef00
[  628.108179][    C0] RDX: 0000000000000000 RSI: ffffffff8a0b2f00 RDI: ffffffff8a59e580
[  628.116336][    C0] RBP: ffffc90003bffbc0 R08: dffffc0000000000 R09: fffffbfff1ff7c19
[  628.124322][    C0] R10: fffffbfff1ff7c19 R11: 1ffffffff1ff7c18 R12: ffffffff8c11c760
[  628.132479][    C0] R13: 1ffff9200077ff60 R14: 0000000000000246 R15: dffffc0000000000
[  628.140486][    C0]  ? rcu_lock_release+0x5/0x20
[  628.145270][    C0]  ? read_lock_is_recursive+0x10/0x10
[  628.150664][    C0]  ? __lock_acquire+0x7c60/0x7c60
[  628.155709][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  628.161885][    C0]  rcu_lock_acquire+0x2a/0x30
[  628.166751][    C0]  ? rcu_lock_acquire+0x5/0x30
[  628.171611][    C0]  batadv_nc_worker+0xc9/0x5c0
[  628.176400][    C0]  process_one_work+0x863/0x1000
[  628.181604][    C0]  ? worker_detach_from_pool+0x240/0x240
[  628.187483][    C0]  ? lockdep_hardirqs_off+0x70/0x100
[  628.192784][    C0]  ? _raw_spin_lock_irq+0xab/0xe0
[  628.197905][    C0]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  628.203291][    C0]  ? wq_worker_running+0x97/0x170
[  628.208613][    C0]  worker_thread+0xaa8/0x12a0
[  628.213637][    C0]  kthread+0x436/0x520
[  628.217840][    C0]  ? rcu_lock_release+0x20/0x20
[  628.223001][    C0]  ? kthread_blkcg+0xd0/0xd0
[  628.227609][    C0]  ret_from_fork+0x1f/0x30
[  628.232155][    C0]  </TASK>
[  628.235546][    C0] task:syz.8.867       state:R  running task     stack:25376 pid: 8765 ppid:  7470 flags:0x00004004
[  628.246691][    C0] Call Trace:
[  628.249980][    C0]  <TASK>
[  628.252927][    C0]  __schedule+0x11bb/0x4390
[  628.257474][    C0]  ? release_firmware_map_entry+0x190/0x190
[  628.263444][    C0]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  628.269119][    C0]  ? preempt_schedule_irq+0xa6/0x150
[  628.274600][    C0]  preempt_schedule_irq+0xb1/0x150
[  628.279733][    C0]  ? __cond_resched+0xb0/0xb0
[  628.284440][    C0]  ? rcu_is_watching+0x11/0xa0
[  628.289229][    C0]  ? rcu_irq_exit_check_preempt+0xdb/0x200
[  628.295059][    C0]  irqentry_exit+0x63/0x70
[  628.299582][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  628.305581][    C0] RIP: 0010:inet_twsk_purge+0x1a7/0x810
[  628.311522][    C0] Code: c7 60 21 09 8b be e6 02 00 00 48 c7 c2 a0 21 09 8b e8 2d a1 49 01 48 8b 44 24 68 42 80 3c 28 00 74 08 4c 89 f7 e8 b9 0f 67 f9 <4d> 8b 26 4c 89 e6 48 83 e6 01 31 ff e8 68 ab 22 f9 4c 89 e0 48 83
[  628.331936][    C0] RSP: 0018:ffffc9000380fac0 EFLAGS: 00000246
[  628.338303][    C0] RAX: 1ffff1100587acfe RBX: 0000000000000001 RCX: 0000000000080000
[  628.346507][    C0] RDX: ffffc90012b39000 RSI: 000000000007ffff RDI: 0000000000080000
[  628.354748][    C0] RBP: ffffc9000380fbd0 R08: dffffc0000000000 R09: fffffbfff1ff7c19
[  628.363337][    C0] R10: fffffbfff1ff7c19 R11: 1ffffffff1ff7c18 R12: 000000000007acfd
[  628.371499][    C0] R13: dffffc0000000000 R14: ffff88802c3d67f0 R15: ffffffff8d414368
[  628.379517][    C0]  ? __inet_twsk_schedule+0x130/0x130
[  628.385000][    C0]  ? iput+0x706/0x8a0
[  628.388999][    C0]  ? dccp_v6_exit_net+0x80/0x80
[  628.393896][    C0]  setup_net+0x822/0x9f0
[  628.398333][    C0]  ? copy_net_ns+0x5b0/0x5b0
[  628.403033][    C0]  ? preempt_count_add+0x8d/0x190
[  628.408337][    C0]  ? down_read_killable+0x1ce/0x340
[  628.413655][    C0]  copy_net_ns+0x348/0x5b0
[  628.418095][    C0]  create_new_namespaces+0x3d3/0x6f0
[  628.423494][    C0]  unshare_nsproxy_namespaces+0x116/0x160
[  628.429325][    C0]  ksys_unshare+0x4bc/0x890
[  628.433979][    C0]  ? sighand_ctor+0x40/0x40
[  628.438689][    C0]  ? lock_chain_count+0x20/0x20
[  628.443849][    C0]  ? vtime_user_exit+0x2dc/0x400
[  628.449415][    C0]  ? syscall_enter_from_user_mode+0x21/0x70
[  628.455439][    C0]  __x64_sys_unshare+0x34/0x40
[  628.460409][    C0]  do_syscall_64+0x4c/0xa0
[  628.464925][    C0]  ? clear_bhb_loop+0x30/0x80
[  628.469827][    C0]  ? clear_bhb_loop+0x30/0x80
[  628.474931][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  628.481066][    C0] RIP: 0033:0x7f9fcd3ad749
[  628.485882][    C0] RSP: 002b:00007f9fcb5f3038 EFLAGS: 00000246 ORIG_RAX: 0000000000000110
[  628.494443][    C0] RAX: ffffffffffffffda RBX: 00007f9fcd604090 RCX: 00007f9fcd3ad749
[  628.502689][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000064000600
[  628.511077][    C0] RBP: 00007f9fcd431f91 R08: 0000000000000000 R09: 0000000000000000
[  628.519566][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  628.527724][    C0] R13: 00007f9fcd604128 R14: 00007f9fcd604090 R15: 00007ffc80f2a4e8
[  628.536160][    C0]  </TASK>
[  628.539288][    C0] rcu: rcu_preempt kthread starved for 10552 jiffies! g32141 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  628.551024][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  628.561186][    C0] rcu: RCU grace-period kthread stack dump:
[  628.567259][    C0] task:rcu_preempt     state:R  running task     stack:28064 pid:   15 ppid:     2 flags:0x00004000
[  628.578328][    C0] Call Trace:
[  628.581714][    C0]  <TASK>
[  628.584662][    C0]  __schedule+0x11bb/0x4390
[  628.589368][    C0]  ? _raw_spin_lock_irqsave+0x7f/0xf0
[  628.594853][    C0]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[  628.600967][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  628.606967][    C0]  ? _raw_spin_unlock+0x40/0x40
[  628.612008][    C0]  ? rcu_is_watching+0x11/0xa0
[  628.616786][    C0]  ? release_firmware_map_entry+0x190/0x190
[  628.622713][    C0]  schedule+0x11b/0x1e0
[  628.626887][    C0]  schedule_timeout+0x15c/0x280
[  628.631866][    C0]  ? console_conditional_schedule+0x40/0x40
[  628.637866][    C0]  ? update_process_times+0x200/0x200
[  628.643261][    C0]  ? prepare_to_swait_event+0x331/0x350
[  628.648962][    C0]  rcu_gp_fqs_loop+0x29e/0x11b0
[  628.653920][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  628.659444][    C0]  ? dyntick_save_progress_counter+0x230/0x230
[  628.665632][    C0]  ? rcu_gp_init+0x10e0/0x10e0
[  628.670425][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  628.675636][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  628.680949][    C0]  rcu_gp_kthread+0x98/0x350
[  628.686006][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  628.691342][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[  628.697266][    C0]  ? __kthread_parkme+0x157/0x1b0
[  628.702314][    C0]  kthread+0x436/0x520
[  628.706590][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  628.711929][    C0]  ? kthread_blkcg+0xd0/0xd0
[  628.716666][    C0]  ret_from_fork+0x1f/0x30
[  628.721283][    C0]  </TASK>
[  628.725025][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  628.731527][    C0] Sending NMI from CPU 0 to CPUs 1:
[  628.736760][    C1] NMI backtrace for cpu 1
[  628.736769][    C1] CPU: 1 PID: 8891 Comm: syz.7.895 Not tainted syzkaller #0
[  628.736784][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  628.736792][    C1] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x0/0x80
[  628.736811][    C1] Code: 28 4d 39 ca 77 22 89 ff 89 f6 4a c7 44 02 08 03 00 00 00 4a 89 7c 02 10 4a 89 74 02 18 4a 89 44 02 20 48 ff c1 48 89 0a c3 90 <48> 8b 04 24 65 48 8b 0d 44 a0 8a 7e 65 8b 15 45 a0 8a 7e 81 e2 00
[  628.736823][    C1] RSP: 0000:ffffc9000409fb30 EFLAGS: 00000046
[  628.736837][    C1] RAX: ffffffff814a9c22 RBX: ffff8880289ce800 RCX: ffff888021000000
[  628.736848][    C1] RDX: 0000000000010000 RSI: 0000000000000001 RDI: 0000000000000000
[  628.736857][    C1] RBP: ffff888026ecbb80 R08: dffffc0000000000 R09: fffffbfff1ff7c1b
[  628.736867][    C1] R10: fffffbfff1ff7c1b R11: 1ffffffff1ff7c1a R12: dffffc0000000000
[  628.736877][    C1] R13: 0000000100000000 R14: 0000000100000000 R15: 0000000000000001
[  628.736887][    C1] FS:  00007f80467676c0(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  628.736899][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  628.736910][    C1] CR2: 0000200000000058 CR3: 000000005b7b4000 CR4: 00000000003506e0
[  628.736924][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  628.736933][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  628.736942][    C1] Call Trace:
[  628.736947][    C1]  <TASK>
[  628.736951][    C1]  complete_signal+0x197/0xa20
[  628.736967][    C1]  ? __lock_task_sighand+0x272/0x290
[  628.736985][    C1]  send_sigqueue+0x3e9/0x620
[  628.737000][    C1]  posix_timer_fn+0x16a/0x3d0
[  628.737018][    C1]  __hrtimer_run_queues+0x53d/0xc40
[  628.737037][    C1]  ? common_timer_wait_running+0x10/0x10
[  628.737057][    C1]  ? hrtimer_interrupt+0x8d0/0x8d0
[  628.737072][    C1]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[  628.737089][    C1]  hrtimer_interrupt+0x3bb/0x8d0
[  628.737113][    C1]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[  628.737128][    C1]  sysvec_apic_timer_interrupt+0x4d/0xc0
[  628.737144][    C1]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  628.737158][    C1] RIP: 0033:0x7f8048528e80
[  628.737172][    C1] Code: 83 c0 16 83 e0 f7 74 12 50 48 8d 3d 8a 54 08 00 e8 05 8f f8 ff 0f 1f 44 00 00 c3 66 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 <83> ff 21 74 0b c3 66 2e 0f 1f 84 00 00 00 00 00 55 53 48 89 f3 48
[  628.737183][    C1] RSP: 002b:00007f8046766a78 EFLAGS: 00000246
[  628.737194][    C1] RAX: 0000000000000000 RBX: 00007f8048756fa0 RCX: 00007f8048500749
[  628.737204][    C1] RDX: 00007f8046766a80 RSI: 00007f8046766bb0 RDI: 0000000000000021
[  628.737213][    C1] RBP: 00007f8048584f91 R08: 0000000000000000 R09: 0000000000000000
[  628.737221][    C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  628.737230][    C1] R13: 00007f8048757038 R14: 00007f8048756fa0 R15: 00007ffd93950098
[  628.737246][    C1]  </TASK>