last executing test programs:

23m43.081884742s ago: executing program 32 (id=315):
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x5)
sched_setscheduler(0x0, 0x2, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
keyctl$link(0x8, 0x0, 0x0)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
r3 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x76, '\x00', 0x0, @fallback=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r4}, 0x10)
fcntl$F_GET_RW_HINT(r3, 0x40b, &(0x7f00000007c0))
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000740)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@noquota}, {@auto_da_alloc}, {@noload}, {@nodiscard}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")

21m55.858751965s ago: executing program 33 (id=867):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
connect$inet(r0, &(0x7f0000000140)={0x2, 0x0, @remote}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000000)=[@sack_perm, @window, @sack_perm, @sack_perm, @timestamp, @timestamp, @timestamp, @timestamp], 0x20000149)

20m24.31618414s ago: executing program 34 (id=1337):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x4}, &(0x7f00000001c0)=<r1=>0x0, &(0x7f0000000580)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x18, 0x0, 0x0, 0x4, &(0x7f0000000280)={0x0, 0x989680}, 0x1, 0x40, 0x1})
io_uring_enter(r0, 0x6e2, 0x3900, 0x1, 0x0, 0xe00)
pipe(0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff})
splice(r3, 0x0, 0xffffffffffffffff, 0x0, 0x10000008ebc, 0x0)
socket$tipc(0x1e, 0x5, 0x0)
mknodat$null(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0xb0a54e68b1cd2fdb, 0x103)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065fffff53000000800395032303030"], 0x15)
pipe2$9p(&(0x7f0000000000)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r5, &(0x7f0000000300)=ANY=[], 0x15)
r6 = dup(r5)
write$P9_RLERRORu(r6, &(0x7f0000000540)=ANY=[@ANYBLOB="8b"], 0x53)
write$binfmt_elf64(r6, 0x0, 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r4, @ANYBLOB=',wfdno=', @ANYRESHEX=r6])
lstat(&(0x7f0000000200)='./file0\x00', 0x0)

16m55.733046132s ago: executing program 6 (id=2449):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0xffffffffffffff34, &(0x7f0000000080)={0x0, 0xb8}}, 0x0)
getsockname$packet(r1, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x3c)
sendmsg$nl_route(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040000000010000000", @ANYRES32=r3, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0x0)

16m54.180228751s ago: executing program 6 (id=2453):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000a80)={[], [{@subj_role={'subj_role', 0x3d, '\xbf\xba&-.,'}}]}, 0x1, 0x55a, &(0x7f0000000480)="$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")
newfstatat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', &(0x7f0000000240), 0x100)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000040), 0x60442, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
r1 = dup(r0)
ioctl$PTP_PEROUT_REQUEST2(r1, 0x40383d0c, &(0x7f0000000280)={{0xeb4, 0xffffffff}, {0xeb4, 0x673ec22f}, 0x1001, 0x5})

16m53.721775915s ago: executing program 6 (id=2456):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x121602, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)

16m38.345899293s ago: executing program 35 (id=2456):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="02000000040000000600000027"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x121602, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)

13m56.118863145s ago: executing program 36 (id=3241):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
unshare(0x44040000)

13m2.021116544s ago: executing program 37 (id=3395):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xb, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020692500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xf, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000a80)='kfree\x00', r2}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x5, &(0x7f0000000300)=ANY=[@ANYRESOCT=r1], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_BLANKSCREEN(r3, 0x4b67, &(0x7f0000000000))
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a30000000006c000000160a01000000000000000000010000000900010073797a30000000000900020073797a3000000000400003800800014000000000080002400000fbff2b0003801400010067656e6576653000000000000000000014000100776732000000000000000000c6e49c0f5c000000180a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010067656e657665300000000000000000001400010076657468315f746f5f7465616d"], 0x110}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000380)=[{0x200000000006, 0x1, 0x7, 0x7ffc1ffb}]})
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2e, &(0x7f0000000000)=0x8, 0x4)
ppoll(&(0x7f0000000040)=[{0xffffffffffffffff, 0x100}], 0x1, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r5 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r8}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r9}, 0x10)
syz_mount_image$ext4(&(0x7f00000002c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f0000000300)={[{@noauto_da_alloc}, {@errors_remount}]}, 0x3, 0x445, &(0x7f0000000b00)="$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")

12m44.43913621s ago: executing program 38 (id=3442):
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000060000007c6e0000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000800007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x62040200)

12m39.978531177s ago: executing program 39 (id=3455):
mkdirat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
sendmsg$key(0xffffffffffffffff, &(0x7f00000001c0)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="02030609100000000000004c9e0000000200130002000000da16c167d803f1f805000600200000000a00060000000000ff0000000000000000001ffeff0001000003f1dc7f7c6e7c0200010000000000004000020000000005000500000000000a"], 0x80}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='netlink_extack\x00'}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000800)=ANY=[], 0x28}}, 0x0)
unshare(0x44040000)

11m54.541880728s ago: executing program 6 (id=3482):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x890}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)={0x34, 0x13, 0xa, 0x3, 0x0, 0x0, {0x2}, [@NFTA_OBJ_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_OBJ_TYPE={0x8, 0x3, 0x1, 0x0, 0x1}, @NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x34}}, 0x4000040)

11m54.246999788s ago: executing program 6 (id=3617):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x20081e, &(0x7f00000020c0), 0x1, 0x4fb, &(0x7f0000000500)="$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")
truncate(0x0, 0x1fff)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file1\x00', 0x107041, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file2\x00', 0x187842, 0x147)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="160000000000000004000000"], 0x48)
io_setup(0x3, &(0x7f0000000140)=<r2=>0x0)
io_submit(r2, 0x1, &(0x7f0000000140))
r3 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000100)=0x400, 0x4)
ioctl$LOOP_CTL_REMOVE(r3, 0x4c81, 0x0)

11m52.794333595s ago: executing program 6 (id=3623):
gettid()
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r0, &(0x7f0000000200)=""/202, 0xca)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x8000000000}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
socket$can_raw(0x1d, 0x3, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xa, 0xd, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a320000000008004100727865001400330076657468305f746f5f626f6e64"], 0x38}, 0x1, 0x0, 0x0, 0x20000854}, 0x0)

11m37.497234012s ago: executing program 40 (id=3623):
gettid()
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
read(r0, &(0x7f0000000200)=""/202, 0xca)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1, 0x0, 0x8000000000}, 0x18)
r2 = socket$netlink(0x10, 0x3, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x15, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r3}, 0x10)
socket$can_raw(0x1d, 0x3, 0x1)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0xa, 0xd, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r4}, 0x10)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000500)=ANY=[@ANYBLOB="38000000031401002dbd7000000000000900020073797a320000000008004100727865001400330076657468305f746f5f626f6e64"], 0x38}, 0x1, 0x0, 0x0, 0x20000854}, 0x0)

9m46.508695283s ago: executing program 0 (id=4280):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x10, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
openat(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup.cpu/cgroup.procs\x00', 0x80540, 0x188)
lstat(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000300))
gettid()
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r2)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r2, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})

9m45.41892509s ago: executing program 0 (id=4285):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETSET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB=' \x00\x00\x00\n\n'], 0x20}}, 0xc0c0)

9m45.095372687s ago: executing program 0 (id=4290):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="190000000400000004"], 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
r2 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r2, &(0x7f0000000040)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r3 = syz_io_uring_setup(0x497, &(0x7f0000000200)={0x0, 0x4661, 0x400, 0x3, 0x288}, 0x0, &(0x7f0000000300)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r4, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r2, 0x0, 0x0})
io_uring_enter(r3, 0x40f9, 0x217, 0xa5, 0x0, 0x0)
close_range(r1, r2, 0x0)

9m44.449887497s ago: executing program 0 (id=4295):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r0, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000600)='./file0\x00', 0xc8d0, &(0x7f0000000140)=ANY=[@ANYRES8=0x0], 0x1, 0x2e3, &(0x7f0000000280)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
truncate(&(0x7f0000000000)='./file1\x00', 0xd105)

9m42.825803666s ago: executing program 0 (id=4299):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x2, 0x0, 0x0, 0x0, 0x2c, '\x00', 0x0, @fallback=0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
setresuid(0x0, 0xee00, 0x0)

9m40.826937787s ago: executing program 0 (id=4303):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000740)=ANY=[], 0xffc9)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)

9m25.861601438s ago: executing program 41 (id=4303):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000003940)=ANY=[@ANYBLOB="210000000000000000000000000010000004"], 0x48)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x2000002, 0x13, r1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r2, 0x84, 0x17, &(0x7f0000000740)=ANY=[], 0xffc9)
write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"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", 0x1000}}, 0x1006)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0)

7m40.633352147s ago: executing program 4 (id=4928):
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000001c0)={0x5813}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="b40000004a008d2a00000000000000000a"], 0xb4}}, 0x0)

7m40.305475971s ago: executing program 4 (id=4931):
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x0, &(0x7f0000000000), 0x0, 0x248, &(0x7f0000000940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r0, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='mnt/encrypted_dir\x00', 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r1, 0x800c6613, &(0x7f00000006c0)=@v2={0x2, @adiantum, 0x4, '\x00', @a})
syz_mount_image$fuse(0x0, &(0x7f0000000100)='./file0\x00', 0x9080, &(0x7f0000000bc0)={{}, 0x2c, {'rootmode', 0x3d, 0x2000}, 0x2c, {'user_id', 0x3d, 0xee01}, 0x2c, {}, 0x2c, {[{@default_permissions}]}}, 0x1, 0x0, 0x0)

7m39.59400933s ago: executing program 4 (id=4937):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_int(r0, &(0x7f0000000540)='cpu.weight.nice\x00', 0x2, 0x0)
write$cgroup_subtree(r1, 0x0, 0x8b)

7m38.919360803s ago: executing program 4 (id=4942):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file1\x00', 0x8000, &(0x7f0000000480)=ANY=[@ANYBLOB="002918d910d46be7099c66b02010b1f0b7c3dc1dabe625969fb0adc922385af53d57a1d35dd71c90d9dd649b53142dd3d4108b4c7db82e8475d5bb6fa2fa626cd92c7326ce1ba2f33b0aef2b2164e01d910058b51684696959ea7f5a607a6572d2640cf9312a07000000260e3651a0cbfd2c080990fb4c76e9e613a759863734a70d0600ec77e8ba76aacbb21e4b903aa4873a9951f269a9c0f87805a1a0cbdf6b8644a1de05a8d9dd9687d67c8af7f68cb59e60d1fbefb49b93d6b72cce4162edc4468a13987d94d428df36915621aeff6dc1358a7331fa69e05c417c2e1e6b8dc29c496c76d02dfc2d7b48616fb3f01b221f4f8f484a00090964922de8909a1f9f7ef655a12a68a56cb341a8fba4cd81cedec9cb518d13d2a2564427b63b037494748a24daa21fe1256df68d000b2778bf0437cc642cd83c5a1b34eeffdf93ecbd85bb340eeef68dd60101769c74f94d217264c171feea0305bfc87c36247d90b129a9973f00000001d99b195d2f75653a0193672783c6dbca5d1445110621d8095064f0a034f492cf5aa4767a772d6f4967722546bfd83d3202f76c20a9d7f40f9e7818d77129df7fd072804e0227ecaa03dddd303a318d6f7763ce011543587e6a306780ca2f37db7e8a5b64a5059ac91ff2110e40ea13d70e1504653ba9eebcf61b427797fb3fd79d2bb9aaa13c9729fe323c4ac222991981381e004684fb200b17d2f6ede181067662ad8a31f45b613869ca8fc5b1dbe62407a1f6dcb86a4c430210e9bcfca9b83283b87316c4d17f388e0bab0500000092a82e12f8e5348f11e7739033e9081bfc598746cf032fa55d0300470000000019ac65f89ca7d96da3ca2db52f8ec80462fddf42dbbca24b720000000000000000000000000000005214e7febdbc0033d6402c34aa96940474"], 0x1, 0x1221, &(0x7f0000002300)="$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")
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x66960000)
creat(&(0x7f00000000c0)='./bus\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x201000, 0x0)
r0 = open(&(0x7f0000000540)='./bus\x00', 0x4000, 0x0)
preadv2(r0, &(0x7f00000000c0)=[{&(0x7f0000001200)=""/4096, 0x1000}], 0x100000000000000d, 0x0, 0x0, 0x0)

7m38.525949163s ago: executing program 4 (id=4947):
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
r0 = syz_open_procfs(0x0, &(0x7f00000004c0)='net\x00')
getdents64(r0, &(0x7f0000001fc0)=""/4086, 0xff6)

7m37.973917641s ago: executing program 4 (id=4953):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0d0d27bd700001dbdf252800000008000300", @ANYRES32=r2, @ANYBLOB="0a0006"], 0x34}, 0x1, 0x0, 0x0, 0x8854}, 0x10)

7m37.413374109s ago: executing program 42 (id=4953):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000500), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_DISASSOCIATE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000000c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0d0d27bd700001dbdf252800000008000300", @ANYRES32=r2, @ANYBLOB="0a0006"], 0x34}, 0x1, 0x0, 0x0, 0x8854}, 0x10)

4m36.550827344s ago: executing program 8 (id=5680):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
r1 = syz_io_uring_setup(0x6db, &(0x7f0000000340)={0x0, 0x58c8, 0x400, 0xffffffff, 0x10a}, &(0x7f0000000300)=<r2=>0x0, &(0x7f0000000140)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_genetlink_get_family_id$smc(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
sendmsg$SMC_PNETID_ADD(r4, &(0x7f00000001c0)={0x0, 0x0, 0x0}, 0xc800)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a000000040000000800000008"], 0x50)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00'}, 0x10)
syz_io_uring_submit(r2, r3, &(0x7f0000000240)=@IORING_OP_READ=@use_registered_buffer={0x16, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0x47ba, 0x233a, 0x0, 0x0, 0x41)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r6, &(0x7f00000000c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r6, 0x0)
ioctl$TCSETSW(r0, 0x5403, &(0x7f0000000000)={0x0, 0xfffffff7, 0x0, 0x6, 0x5, "30af0128c50000000020ec00010000ffe100"})
r7 = dup(r0)
ioctl$TIOCSTI(r7, 0x5412, &(0x7f0000000100)=0xff)

4m34.770097812s ago: executing program 8 (id=5686):
mkdir(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000d6cff0)=[@in={0x2, 0x4e20, @loopback}], 0x10)
sendto$inet(r0, &(0x7f0000000100)='7', 0x1, 0x0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000480)=[@in6={0xa, 0x4e20, 0x0, @loopback}], 0x1c)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x2c, &(0x7f0000000900)=[@in6={0xa, 0x4e20, 0x0, @loopback}, @in={0x2, 0x4e20, @loopback}]}, &(0x7f00000002c0)=0x10)

4m32.920700839s ago: executing program 8 (id=5690):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000001680)=[{{0x0, 0x0, 0x0}}], 0x1, 0x164, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1c3842, 0x44)
fsetxattr$security_capability(0xffffffffffffffff, &(0x7f0000000240), 0x0, 0x0, 0x0)

4m32.689566853s ago: executing program 8 (id=5693):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x8002)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
write$binfmt_aout(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="0301"], 0xc8)

4m31.898733065s ago: executing program 8 (id=5697):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f00000000c0), 0xa0201, 0x0)
write$dsp(r0, &(0x7f0000002200), 0x0)

4m31.125957574s ago: executing program 8 (id=5699):
io_uring_setup(0x38e2, &(0x7f00000000c0)={0x0, 0x38d3, 0x0, 0x0, 0x39f})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000a40)={@fallback, r1, 0x2f, 0x0, 0x0, @void, @value}, 0x20)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f00000001c0), 0x8)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz0\x00', 0x200002, 0x0)
bind$bt_hci(r0, &(0x7f0000000300)={0x1f, 0xffff, 0x2}, 0x6)
write(r0, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1f, &(0x7f0000000480)=0x1, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$packet(0x11, 0xa, 0x300)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r4)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
syz_usb_connect(0x2, 0x27d, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0xb)

4m15.174999006s ago: executing program 43 (id=5699):
io_uring_setup(0x38e2, &(0x7f00000000c0)={0x0, 0x38d3, 0x0, 0x0, 0x39f})
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000a40)={@fallback, r1, 0x2f, 0x0, 0x0, @void, @value}, 0x20)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f00000001c0), 0x8)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000140)='./cgroup/syz0\x00', 0x200002, 0x0)
bind$bt_hci(r0, &(0x7f0000000300)={0x1f, 0xffff, 0x2}, 0x6)
write(r0, 0x0, 0x0)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1f, &(0x7f0000000480)=0x1, 0x4)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
r2 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
setsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000000)=0x1f, 0x4)
getsockopt$bt_l2cap_L2CAP_LM(r2, 0x6, 0x3, &(0x7f0000000040), &(0x7f0000000080)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x10000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$packet(0x11, 0xa, 0x300)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
dup(r4)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)
setsockopt$SO_ATTACH_FILTER(r3, 0x1, 0x1a, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)
syz_usb_connect(0x2, 0x27d, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0xb)

58.161618042s ago: executing program 1 (id=6434):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="50ff00", @ANYRES16=0x0, @ANYBLOB="17090010000000000001010000000500070000000000080009000000000008000a00000000"], 0x50}, 0x1, 0x0, 0x0, 0x44}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000040)={{&(0x7f00004be000/0x2000)=nil, 0x2000}, 0x1})

57.806250364s ago: executing program 1 (id=6436):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$vsock_stream(0xffffffffffffffff, &(0x7f0000000440), 0x10)
listen(0xffffffffffffffff, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r4, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r5 = accept4$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000001680)=[{{0x0, 0x0, 0x0}}], 0x1, 0x164, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1c3842, 0x44)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0x1000c0e, &(0x7f0000000140)=ANY=[], 0xfb, 0x69d, &(0x7f0000000d00)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fsetxattr$security_capability(r6, &(0x7f0000000240), 0x0, 0x0, 0x0)

56.202014715s ago: executing program 1 (id=6439):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmsg$inet6(r3, &(0x7f0000002280)={&(0x7f0000001e40)={0xa, 0x4e24, 0x0, @mcast1}, 0x1c, 0x0, 0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="b005000000000000290000003600000000b2"], 0x5b0}, 0x20008001)
sendmsg$inet6(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000022c0)="f14889c2ad234ad6f0a71da72859c7c1e176134eff431253493482c723f8633d838bf127adff9f48a8854702b889321dfefd5644a03e0e41fb1cd1e442ac39d59aa0370071b34de016c447989af4c7d374e269dcbc1ce5f7083363d5bb2641018094b1721358f7a6c82f35dd9ed03c7be3fc46e5ef7b1fde49376ecde0494076cbe41c8292de99cc323303fda797e0704d3143999a0f53c8c056f2d7c2614c1bd977cc3e42e07548870d6bf096bf0369ee6a3f85cb27ec069f135e88005eb6147c3c08e1c787c9b5f9579653b876d44f3eb55573068fd1355b6fb755d1a72cb8eddfb7928f40f81e88e41bd2b3477299f540275d5107cd0dcb493a6f84ddbb9b43a60169c9ce7abb46e2d65a662a4e48cfafe180fbad39ee09548985149d100a6df90948f173ee8d7884fe5a916395d9631d7c55a09db75724229f3f492aca7c60e7c0984e5e05d555248874628cf294c6e1ad720e6f60662754e716d8e7f27b1321776768a8e4fd3abbeb3a23252a5e08b1f6b6e407cc69b8ed030f713f698db531f40f6082fce8f82eb6b90d7dcb33bd3cbcbc797d5597c444173c4455da38ffd93a45d756d158003c61c9d6e7e45a127a457172ccbbe9f2eadd4beb591f59ee37e3f23e858241463bb1d55b7ca1e19b84d1b077c7d6c3f942899a63dca8d63034da73146cc0e29ad541aff15049154a2c6ebe5b25b62833f09424bdabc08ffff5fff9cd35db4b3a9136ff557d88f68b8dc840e5edd3a9bf554986d3f706a1b962036d8f08e3d4cb9697c012f7be5bc00e77c89e796ee7d43a8c6ac172f262bc69517cc0978570280c2992c597ffa2ba8efc8b243b03b7f16942bf1e071de3dd4fa45a965946500d44fb10709fa8d4f1267077aa7afc2d32bc830e328762ade9f9d9a3b6835074eeffefbb98a45d688a0b76944e6fc4f805c912f966465266d4f43d2e70c65d6c5b0bddb1310c294e1b69b6f761bc4eda8b64121def17e864efc4ed59ca6973831827c77c1b27d50256341dd36e5e64cb78b509911e9cf36cc5b807648f119309f6fd403031434cf60873ce7582673581388cad04103e6b228d176ab09ed16d3d359fe02be3c014aefa3e7bca21ba3b7a5f981a375d0b920533936f8fc8afa3cc0156a902fca84745560fd50afd", 0x335}], 0x1}, 0x20000044)
r4 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_msfilter(r4, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e0000001ac1414aa0000000002000000ac1414aa"], 0x18)
socket$inet_udp(0x2, 0x2, 0x0)
ioctl$EVIOCSFF(0xffffffffffffffff, 0x40304580, &(0x7f0000000b40)={0x51, 0x1, 0x6, {0x5, 0x1}, {0x60, 0x2}, @ramp={0x1361, 0x5, {0x8001, 0xff, 0xa043, 0x8}}})
write$char_usb(0xffffffffffffffff, &(0x7f0000000040)="e2", 0x2250)

51.193779731s ago: executing program 9 (id=6449):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
sendmsg$NL80211_CMD_AUTHENTICATE(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x4004000}, 0x20000880)

50.467146799s ago: executing program 1 (id=6453):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000040)={0x0, 0x10, &(0x7f0000000000)=[@in={0x2, 0x0, @private=0xa010101}]}, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r0, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r1=>0x0]}, &(0x7f0000000240)=0x8)
getsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000180)={<r2=>r1, 0xfffff789, 0x10}, &(0x7f00000001c0)=0xc)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x7d, &(0x7f0000000000)={r2, 0xffff0006}, 0x8)

50.418082482s ago: executing program 9 (id=6454):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0, <r1=>0xffffffffffffffff}, 0x4)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x11, 0x10, &(0x7f0000000a40)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70500000800000085000000b600000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x10)
r3 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000010", 0x5}], 0x1}, 0x0)

50.254702188s ago: executing program 9 (id=6456):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000100)={0x2, 'wlan0\x00', 0x1}, 0x18)

48.157823463s ago: executing program 1 (id=6460):
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0xffffffffffffff72, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x70bd23, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x2, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x5, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c, 0x1, {{0x0, 0x0, 0x8}}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_NL_MEDIA_GET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x20}}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = syz_create_resource$binfmt(&(0x7f0000000040)='./file1\x00')
r5 = openat$binfmt(0xffffffffffffff9c, r4, 0x42, 0x1ff)
bind$inet6(0xffffffffffffffff, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback, 0x7}, 0x1c)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000640)='\x00', 0x1, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0x398, @empty}, 0x1c)
shutdown(0xffffffffffffffff, 0x1)
close(r5)
execveat$binfmt(0xffffffffffffff9c, r4, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000180)='./file0\x00', 0x0, 0x0, 0x0)
r6 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x1c1140, 0x0)
ioctl$SOUND_MIXER_WRITE_VOLUME(r6, 0xc0040d07, &(0x7f0000000040)=0x121)
socket$inet_udp(0x2, 0x2, 0x0)

48.049081625s ago: executing program 9 (id=6461):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0))
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="50ff00", @ANYRES16=0x0, @ANYBLOB="17090010000000000001010000000500070000000000080009000000000008000a0000000000060002000000000008001100010000001400"], 0x50}, 0x1, 0x0, 0x0, 0x44}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
ioctl$UFFDIO_CONTINUE(r0, 0xc020aa07, &(0x7f0000000040)={{&(0x7f00004be000/0x2000)=nil, 0x2000}, 0x1})

46.999842685s ago: executing program 9 (id=6464):
r0 = socket$unix(0x1, 0x2, 0x0)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB='P\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010028bd7000fddbdf250700000008000300", @ANYRES32=r2, @ANYBLOB="0c009900ff070000700000001400040073797a6b616c6c657230000000000000080005000700"], 0x50}, 0x1, 0x0, 0x0, 0x91}, 0x24044884)

46.725974968s ago: executing program 1 (id=6465):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0x0, 0x53, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r3}, 0x18)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e000000000000000000180002801400038010"], 0x44}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x41}, 0x40000000)

46.587369545s ago: executing program 9 (id=6467):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8)
recvmsg$kcm(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340)=[{0x0}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/32, 0x20}], 0x3, &(0x7f0000000380)=""/40, 0x28}, 0x2140)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x90}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x4, 0xa, 0x801, 0x0, 0x0, {0x2, 0x0, 0x89}}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x8002)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x30, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}]}, 0x30}}, 0x0)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)={0x1c, r6, 0xf01, 0xfffffffc, 0x0, {0x5}, [@BATADV_ATTR_MESH_IFINDEX={0x51}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_FREE_STREAMS(r9, 0x8008551d, &(0x7f0000000240)={0xc408, 0x1, [{}]})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8}}]}, 0x38}}, 0x4004010)
sendmmsg$inet(r7, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x44, 0x2, 0x6, 0x301, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x93}]}]}, 0x44}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r1, 0x58, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r12=>0x0}}, 0x10)
bind$xdp(r1, &(0x7f0000000500)={0x2c, 0x2, r12, 0x22, r1}, 0x10)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a0b04000000000000000002000000300004802c0001800b00010074617267657400001c13028010000100434f4e4e5345434d41524b0008000240000000000900010073797a3000000000090002007300010000000000000000000000000a00000000000000000000000069d465897ce28f1b916efb9fe733f355ddf98bda1317278969a89704c5cd3e851ac367d13b12b1d6c08b96eff2"], 0x84}}, 0x0)

31.285524557s ago: executing program 44 (id=6465):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[@ANYBLOB], 0x0, 0x53, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x28)
bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000900)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={0x0, r3}, 0x18)
sendmsg$ETHTOOL_MSG_DEBUG_SET(r1, &(0x7f0000001540)={0x0, 0x0, &(0x7f0000001500)={&(0x7f0000000080)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="0100000000000000000008000000180001801400020073797a5f74756e000000000000000000180002801400038010"], 0x44}}, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000200)={0x38, 0x1403, 0x1, 0x70bd2c, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan1\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x41}, 0x40000000)

30.904433664s ago: executing program 45 (id=6467):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = bpf$ITER_CREATE(0x21, &(0x7f0000000140), 0x8)
recvmsg$kcm(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000340)=[{0x0}, {&(0x7f0000000600)=""/4096, 0x1000}, {&(0x7f00000001c0)=""/32, 0x20}], 0x3, &(0x7f0000000380)=""/40, 0x28}, 0x2140)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000080)={0xd, 0x4, &(0x7f0000001300)=@framed={{}, [@ldst={0x1, 0x0, 0x3, 0x9, 0x1, 0x90}]}, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="4c000000020681010000000000000000000000000500050002000000050001000700000005000400030000000900020073797a310000000011000300686173683a6e65742c6e6574"], 0x4c}, 0x1, 0x0, 0x0, 0x4040000}, 0x800)
sendmsg$NFT_MSG_GETCHAIN(r0, &(0x7f0000000180)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000100)={&(0x7f0000000080)={0x14, 0x4, 0xa, 0x801, 0x0, 0x0, {0x2, 0x0, 0x89}}, 0x14}, 0x1, 0x0, 0x0, 0x8000}, 0x8002)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000580)={0x50, 0x9, 0x6, 0x201, 0x0, 0x0, {0x3}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_DATA={0x28, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @broadcast}}, @IPSET_ATTR_IP2={0xc, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @remote}}, @IPSET_ATTR_IP_TO={0xc, 0x2, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @rand_addr=0x64010101}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0xd24f4d5778621d46}, 0x4)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), r4)
sendmsg$IEEE802154_LLSEC_SETPARAMS(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x30, r5, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}, @IEEE802154_ATTR_LLSEC_KEY_ID={0x5}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5, 0x2b, 0x3}]}, 0x30}}, 0x0)
r6 = syz_genetlink_get_family_id$batadv(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$BATADV_CMD_GET_MCAST_FLAGS(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000400)={0x1c, r6, 0xf01, 0xfffffffc, 0x0, {0x5}, [@BATADV_ATTR_MESH_IFINDEX={0x51}]}, 0x1c}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = socket$nl_route(0x10, 0x3, 0x0)
r9 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
ioctl$USBDEVFS_FREE_STREAMS(r9, 0x8008551d, &(0x7f0000000240)={0xc408, 0x1, [{}]})
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000040)={'tunl0\x00', <r10=>0x0})
sendmsg$nl_route_sched(r8, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r10, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_pfifo={{0xa}, {0x8}}]}, 0x38}}, 0x4004010)
sendmmsg$inet(r7, &(0x7f0000005200)=[{{0x0, 0x4b, &(0x7f0000000000), 0x1}}], 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r11 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r11, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000040)={0x44, 0x2, 0x6, 0x301, 0x0, 0x0, {0x7}, [@IPSET_ATTR_SETNAME={0x9, 0x2, 'syz0\x00'}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_CADT_FLAGS={0x8, 0x8, 0x1, 0x0, 0x93}]}]}, 0x44}}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f00000004c0)={r1, 0x58, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, <r12=>0x0}}, 0x10)
bind$xdp(r1, &(0x7f0000000500)={0x2c, 0x2, r12, 0x22, r1}, 0x10)
r13 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r13, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a5c000000060a0b04000000000000000002000000300004802c0001800b00010074617267657400001c13028010000100434f4e4e5345434d41524b0008000240000000000900010073797a3000000000090002007300010000000000000000000000000a00000000000000000000000069d465897ce28f1b916efb9fe733f355ddf98bda1317278969a89704c5cd3e851ac367d13b12b1d6c08b96eff2"], 0x84}}, 0x0)

13.164768374s ago: executing program 7 (id=6559):
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000080)=0xfffffffb)
write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc01c7c02, 0x0)
syz_open_dev$media(&(0x7f0000000380), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
getpid()
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x38ff, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
io_uring_enter(r3, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
lseek(r7, 0x851, 0x0)
mount(&(0x7f0000000040)=@nullb, &(0x7f00000000c0)='./cgroup\x00', &(0x7f00000002c0)='ext3\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}})
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x300, 0xfffe, 0x101}})

10.657910629s ago: executing program 7 (id=6565):
mkdir(0x0, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="ad4300000000009c260821"], 0x14}}, 0x0)

9.377819116s ago: executing program 2 (id=6568):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x20, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x22b, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000002, 0x0, r2}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
symlink(&(0x7f0000000bc0)='./file0/file0\x00', &(0x7f00000002c0)='./file0/file0\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

8.7983426s ago: executing program 2 (id=6570):
socket$netlink(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$packet(0x11, 0x2, 0x300)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = dup(0xffffffffffffffff)
write$6lowpan_enable(r0, &(0x7f0000000000)='0', 0xfffffd74)
r1 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r2 = memfd_create(&(0x7f0000000080)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea\x7f\x8cZ7`_4t\xcda\x9b\x11\x11\x0e\xa1\xcf\x00'/51, 0x2)
ftruncate(r2, 0x1000006)
fcntl$addseals(r2, 0x409, 0x7)
ioctl$UDMABUF_CREATE(r1, 0x40187542, &(0x7f0000000000)={r2, 0x3f, 0x0, 0x1000000})

8.112536851s ago: executing program 7 (id=6573):
r0 = syz_open_dev$I2C(&(0x7f00000002c0), 0x1, 0x0)
ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000001100)={&(0x7f0000000540)=[{0x5, 0xa10, 0x1, &(0x7f0000001140)="9e"}, {0x1, 0x10, 0x1, &(0x7f0000002140)="1b"}], 0x2})

7.63792525s ago: executing program 7 (id=6575):
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000080)=0xfffffffb)
write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc01c7c02, 0x0)
syz_open_dev$media(&(0x7f0000000380), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
getpid()
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x38ff, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000140)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd=r1})
io_uring_enter(r3, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
lseek(r7, 0x851, 0x0)
mount(&(0x7f0000000040)=@nullb, &(0x7f00000000c0)='./cgroup\x00', &(0x7f00000002c0)='ext3\x00', 0x0, 0x0)
r8 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r9 = dup(r8)
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}})
ioctl$TIOCL_SETSEL(r9, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x300, 0xfffe, 0x101}})

6.566385658s ago: executing program 3 (id=6578):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x841, 0x0)
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000140)=@req3={0x7813, 0x3, 0x0, 0x81, 0x1ff, 0x1, 0x1}, 0x1c)
getsockopt$inet_sctp_SCTP_PEER_AUTH_CHUNKS(0xffffffffffffffff, 0x84, 0x1a, &(0x7f0000000180), 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='0', 0xfffffd74)
r1 = syz_io_uring_setup(0x417, &(0x7f0000000400)={0x0, 0x7079, 0x0, 0x14, 0x126}, &(0x7f0000000bc0)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x5, 0x0, @fd_index=0x4, 0x0, 0x0, 0x0, 0x5})
ioctl$TUNSETVNETHDRSZ(r0, 0x400454d8, &(0x7f0000000100)=0x3)
io_uring_enter(r1, 0x3516, 0x0, 0x0, 0x0, 0x0)
arch_prctl$ARCH_SET_CPUID(0x1012, 0x0)

6.502125754s ago: executing program 7 (id=6579):
r0 = landlock_create_ruleset(&(0x7f0000000040)={0x4, 0x3, 0x2}, 0x18, 0x0)
landlock_restrict_self(r0, 0x5)
r1 = open(&(0x7f0000000280)='.\x00', 0x80, 0x122)
fcntl$notify(r1, 0x402, 0x8000003d)
fcntl$setown(r1, 0x8, 0xffffffffffffffff)

6.412441707s ago: executing program 2 (id=6580):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="9ab1446569aa24b774753c9e994c09c24df9d42fa5a228e469b44cecf6f9f5ce5f77c93b1895aaac9cf34b37415f11fe22d6fa0162aa743b242e8fe0a8659e32fb543d7969d6513136a9f332a8074f8ee1e445277ddd5859eb5ac3321eb710be880a441031da9b31f791d54fb3c97cd8ee92b00cbf962be8eb5fd0b7cab207645f59cf87a8c41e2739dd8386b6bb84b627cbf5e09bac876ad4b215f0e510a853c5e8b9f7822b26771d72972290a1f9a6f0a46942be0d0eb7aa5145ff368863b14e9845926088f9f92d554e572926290dc6e6b574aea8c500fbe5697f881c0cec48282c6d07619248da0c3b9aa6f7c778525d1760051e4ba8ef31d3c8d3e1d4214ffa5261ce1fdbc12eba889968137f5c06fea233000296cf18df494b4e7b1bee7dc2f3751c37415d46f6d7ffb3d0f788f2100ee41266e6fba75b61af22e1d7b286507ff100cc34ed28d5a2c8be3231446874bbbde6f3c367ca802d64192ffcce1ea41b2cbc57f7500fc4f8f12fe02690c1c9785bbc35542b59d05600783cf4f4633b374101d8ed395303392b238d198f9f68c8ae928cbf3b558deec6d38ebaa526e749ac4e47dd5b838ec34f2820a1134252ae60159d4e030cf5e5d6f8de799a31e12ae57cfe5a1a3ded525c6e71271271d35a0056265362387a361f21ea0f4b6d46f6a83a8512687e43b31e11b1396d6e9e49cf42b693732e226b55d21a1203022f6be9f8ecccb68de3bf4ce99689514bd752f4e60bd2f8e376d7fae5b5fc8db0f53db8c52746671e361b9319419c1b3f3168b4797ebd2d118ee42dda4bc59dd0251236195c8cdafc0546354eeb28f4c7e71e8245a6ccaddfb858f61039c0ccf5acd924680aab38dd061fc7b123f24ac7f3d3c0cee43b61045bb1efea25af86088a0591f166e2f11ea4089860893b17ca5e3d99ec75131268e2e4e290c2bf15e4dde23284e4bdf6e549c096ce221d9c8a6c0fc78aa6a1c8b547c0e10738de2a1e8663e03ab0ce4594e244989f75b6672de1eee97ba7e6467a0da51c0e75d5866c405b03c4744d8d3fbb01eddba5a0361662269154c2f0e61a9433982eb904ff562896cbfa692eb1e6c644fcf6cbc103a76b712af706a47608d3e2f5d54d47d8e9906ab37ddf04004d32ce00200fc3c274666aeb618b27424d87b6a4b0262de4436b9e6f150bc798394c298b25a2c318fbe786185464057c0bcfcd1917230d78ee1a49eca12068fa676852c1099096c6cb98dfda27fedac41826516e42cc116f0cbb68f0f810418258dc5a65c0e1ada296176e17f8d762894c80542a79383cc1674a4f3d6520633ce80baba214c20628899f9ac826484c887713aed9c5caf13b40a598cb1e81f7b18dae39efc22dc99ff497e11f158edc2716ebe3bcd593691aa26523efc168e1394ab439c9a9270575ef34eeee9084b0a31b2d81d47c964ac61e600f75d9321d7474dde45bb8d0cc46510488ab68486d3ba6cc9c3ddb6f66f2e5d251ee285121e1645a2f5167fc5fb8ac4491c0d9d0423c7a8452efea2f5a30096a0fa47173f3a68500a5c755ea939c838d3be126a87ff6baa5a1fba638a5c64767d17f04201b935fcb1cb6afa175594f410f2ff773194c703e623876051e46bb0850a5016e65f8fa34b96bafdfe851a0756fe26fb63d52113c0935b0867f7dc8a94d887484b15e8f92b6a316a22c04a985cc94e432cd43f44001bcdbd48efcd463c402d3d181298e96db60fdb714b82e146567af5ae3fc0c3f9d241471b4d129f928d286f780facb1e84434610ab3379dfff0f64d57b4a1c2e96c98b693de952d26773d24e7a95eddbc450f79932d5332d27991c7bfbd3bc35bfeb9496fbebccb5e4c35c368e021dea643cb292d794d3d3bbcc960f989bef09763dc73d83cbf907485635265e81f87b712d958a66719230fc6466615a0e3bb998d48159e9e9c51959354a545966bcffa298c7673b4d32b991c886a997236642c0f104f6795feab9f48d0ffc74667f3f3e82473ac892ad25f4b13029b0b27fb1d86991ddc42bbc3fe584ed364e769f3bc72ed8749e7a654ec1a2ec7a01bd2d5caccdc6241a1b1ef2726db54d2c34ab47020b4c729b5994b43deb00ad959950e0051d2c0f27217397055e78f1dd3bd867a45e06c2134ae8981021aae881cc7b2049fe7c82d2127ec81d6430c8116355c8d0ab8b9291c688ed9b8dbb1ed6f1a99bb58a1be8d5737acbf9461b142c8982f52481195d35ef82aed4fa52385ea4ed00a739d01cad7af9f7c27d357748e24f28d22065ccb37300e8f5d8dae5ca79af7a50edc3e05184d1a2a6d59784d5ceeb1f1550a44ea03bee4dc5c27eb78f0032593c7d082e59211f83a8b91aa78bfb7e959328ee63af26a37b79ce5e5139eeebd12e28b2a26ad2fcbdca652524d036b324782d54247a48b9f8200b2d6d2c091c41366d677e3be6e136cec6c3080d608849135c6e3c7d695d2e226ae1ce999d730d7f79116ab85762e55a3e5a66a690ce0a4bb4fd1560c796e2797414b544ef78e29d55e4853fdbf3362085a65c46105f32c360a0a9867b984a5d0297fe0b06a45684ac801a8e66294cef6e5f3c48648884fbb2422fa00488df33a9a0ff1039c81f1939f2cd2f5fe8aa805af2d2332ac37244ed4a7b50265af8062752b0c16511e5f25e8aa2b60645675bc826557bb75474ca4787f6b584b2f83bc25192579104aa0baae79f396df0d31121f90db9acea9695ee0fe0c22df4db503ec8b2437b05f5d35a65722fa82eebd2aff4bcd3316a5cffc4b31913fd02f82130c77f320bf04bf8fa873d0e3f62122d6a5f87d3e908bedafed4a3cb6d9f73ff546f5a2b74a2493b1753e89b682352bb3166563518dcb190c7b3d9fd667c57978a670b192641a674dc92c2401d067b6767aa632ce32a401175c98200a52ab5d80dffa719746d0bff8a84bac4a56e0ab8124fc332b64ea662d01e1b73231a6638f01cf4d699448da228c16951149c8d3dab9a7e3be9a16c7d1ffb061818f8f9cb2b42739fae4a0d70c0701c8dceee785d36ef6413162de1917df01c693ef3e1f517e7fc46245209fee52f5c6a2f50ab3f56d67d1cd987282b24071d8ebb1bc5cd635957b2a7ad92d0650abd5bbc24b75885b6119592a3d715392718e52f9124c4ac95be3582abba4ac3a4049ee49fa8ceb9b59d4e1e2a069c9d482879fd8d27d5ac22ef870542453be22c2ec4ebf1472c19fbfb56aa0a3671297b020e3fe49d201a82a04420e90bda43691dacf92347bcbcae3742cc4abad4c8010c0afa15278795d4d76c482461ae78f30569e1dcf87b9b150d07a2bd81676ec6022422d490759ae1e861a6c4cd1f733bd772d60975a59356c385a4a390429f3d2131e7f616015261df6db3cc3ec261a53be10c4f197e71878984fee00e6d1069f79825194b7af434fb6bb86db18e11977f82928be35054543060cea94ebb4015d061f20f8454e056e7b6e4f9a1621ef2377d77659c20bf358c817519f1801be15ae3b5b42adfab367777a6789635a0dcdd1f2b97edecea0210768af67601d1b95a8850dddb6b1f4b0c2f52c835b0833d81966ad19e49ceb9dc9c729cd8334bc3ee5bb8c74186f5cc3e765b9fdd91d79baaab3d2ab64c15d655d1af7de9cf8d5d7c1baef24577843ce142331743b45b06104b6d0d4392e61ca8c07507ff5f831bbf720854db4debf64182aaebf899ba57626a48748fc2dcf016013d575595d24d383eef2da0ff0c9f6fe9c64b186cd4617e3f37635d7dacb58ec297f3ddb48ce4a5e00cc127267e18a1fdf209e098f2cb2e9c0630d15ec9b867b2b95ecf82ad2c0ba39df9c4d36d492bc9a55c4b767da966e4fd7f4d2fef5e91d0575177c05d240b50757031c76333d43bcc828ab2f0376e29d12d1261ce104a8ea488091326bc451c120c8c04d3e64835c893f55b312e248ad8fc1c32429d68e6b67bf45ab8a1cc3db22f9f01a2266b8349046d3d3e081eaa7f7020c73c0762d11a33b517b8f081da3c61ef63e1d40cd87d69c7ac7491fb61bb57c1fe2d218aff6d39b3e1fc847f0ed894e2f0b4d6a4ad03ba42e28bb1dfab645081f548e64ceb8ce15d2214bd66a14fe594aa447c3537eb493299fef0f9326236ea5dae44e23b34801fe06ee16c79545feaf2528421d6e7f9a256a7914d86bd053dc33c8c2043ba73714f5ff5f0507097a56c40b2190e77877d43be849ee2ac129e582930ced06d359eebb49eda4edb13819f91cecc449c9613d9659906179f8fefa34fecb7d21cdaf09a1ce8d094421da80796c97c02fc56171aaba53fd8a7f55de059044717df164f3571028f16995d51fc8829534cdf58dd134def1e43a34e4f5f372fa8e19d3b85881e99ecd45faa4fccfdb47e094ab06955f3960fac71294dd965f24a97cff36b9966cf1a4c3e96c3e14a3951dcc8a3e9371f7e1ae9df77ddb1a99172174adbee8ea57a0c9872a6d677c2875da88a6a7234bebf68a3cc0532a9809a4de4b4d419bff67b0ba825a7ae6e999087155378357ae67e2dd98697f1d10ffa4497dde6582571670456db995228b97d0ecb2fb30c2ba6c16038c40059815c56b35666cc1c5090f6c38e0f4c12abf79919951b85a2734d32dd12b239912d541f9163387a4aa0be0b7a12d9c6b56dbcf1e9aadcfd72e2664a84d6c5147c72bffe7c3560ccd8c447b748dcd26cc9ca2a85cded742a8dccdfd8e78c96e78d405a19faab9e57183b37583f94b3d416b2920c6b746427ed75c08dc3be02720c1edc4743229153c48f1239b222b9fe2e21c0ae28122bc44f9dc78a59f3485ac8057eb21f0857bcfea2d9ebbbcc197e7880d81515bb1cb7192d97c4258c09926d137e245977db40812b253f99a504bb68137d8d73ca4e7c808d50f1dcc600e6a6db90238ff44e075932fe668c066e6988a6a8b4a8485120c8e4d6511268a75d8f9b0f06689aac8cd621e90c62af1e59aa9efe928e9ea098661b408a2825c4f9aac1efd9d54d163a651054b9ab32719d2be3b176f6795ddad0f1310b9237181689f2f9dd34a41d4d4cd2d7569bf56e6a80bc24d90df3bdde0f9649e699f4ef70c4f3faf9553a231215416bba26c29f17861e0f265e9641b2307ed43d6fde23a378669f4ade874e54c20a5e902205dcaa79a3e8584a3f78a86e703451115a1717df882507c607297afac0a056a0f3509a57502fd2ffff6035d04b91f72f5e1a69ddafaf80f7b2f7a13f38c683988436585e6bc7fc2da328449675c234ec0acf5294ce06c72442beba15e65d6a3e1b5dc3c8f115e1005798383f79b0194f6b7d4b1b32371acbf22340af6e5ee3ea840f7ed451226daef3041fc194e051af2fb450022b394c774273b9575c974c324ecd7268435176ee28c54bb54c8e829232ca636f3bdef60ed460b5ff425936626dd16a3f436f08a863582a79f393378f60f6c8ecdd13d83073bfda2e9f8d0c74a841021cbb8c148e70bfc585627449cdd9fb3045db3ea08a96108b52ee8a4f5048a5d910355789f4bb85c1362955e267e719581c38a2648eaa0b516db6277d2ee3c6e1e1090df3f53a31b747d99887e337dadddab16a297d9e56797007a3d18ce333311c70bb1bf45bdae517ffc589419af643773bb30a1fbff7ecd4a8ae7456a608fe73547c2eda4f070d57dc70b65d867526c946a435ea581497da18646ce569eaf6ccf3474cd6e7aa3d6d4732836ff4167c9153757ce58a34864be6d479f7b4ea1d6480b9ac16c5bff346a74e74133234744df867e16b3d2f1f7db4b21b89019b520917ef863e60f52999d6946b9e09cb60054f49d8a255f02e4b62fff6e6adb9a167ea70a177d00b26f56e29b63138a2ebc30b956161a4ab25d5da1c207c3f762714f651341ae771e17d84fa1c86685f2fcb0a128c2e1208d1930e7ff0d8d55299154112af574b881be8b69cc1721d548ad4dc02632e184c47f9b394bf4a834e60fbead8c8bfbf5087f8454513b0b086ac97bbbb9aa342af9def758fe88f1e4570e65f93fd4a9868665d08fac0cf6ebde786995c433504ca01cdf83311aaae20cc76f819a4344a8ee4e26c1094cb00d2c8a67c733fffcd89e97534cacb08a64d75e8594fa31f0dcfcafb0d1bc184c7067fec6a48ddefd580d4d9a4128d8f70f6fc6562da683904766e982ecd0286064db6844131bb7962a0a497f7b97fefad88a0b128bdf8cca774b1c32cb4af259bfebccda036e7e4ea8962838dbb5c04ffab0a2f1481848a27f06171645daf5246a2e563f3ed60097a9d7023d6ba5c8a58d39f733b12baf0863d82c427460f51cf9e3f77281a42221725b7bb75c2116ab31f704661f090d3eeddd2aa6efc619946b4933c398b635fd04ba3758294965c568997e1ef44b0562804e6c64558f6cfa87662a988c321a856ead51c848528a4954f9ff1948d517d67bc11db66801648848bfb7ee12296428bc3ffec863e9c77ff31ee386197679adab2a0e93bbe0c66ffe9c4b09b636f6216faa373aa8271678cc57ad46898222df7e2d8b14a5b70130596c0430997c4c04d9b5187fd9bb26b71fd19aacc8e08a3239f0eebca7b2873062a19f327a4a282012ebf9898a5ab6310b8623c864d4dada3ded00ad201ce8f3973f90396f5edc1ba466e16247fe6b0ee98acfd53792cc0fea33647b841596655b8d9efbc14b50fe0b588e4c41e2cbd0a700529e7ca91122d3d1b26e52bf44a0c9fe37cdbc352357f13b2adc68e78a00f6dc88a8e6ea54bd0b2c8276f9e1bfebc8655a1f47b72c25ffa97f4463630cc21428ca3bb381a6d3171d28bb946f746f820247bf3f7bb69caaeb5c47026ca9997e586e657a9e1569312bb443299ef4cfeacc9aaf4fc3aaa4a77a21579234d2aab6fd0234398ae07ca7c57ac6d6a51e025744b1430abce27f7f9b0d0e45c051e34d20db95cadcc0e4e327dbd979166b33e39a3951d0b8dd62c0d1542b69583cfc07b127243cac4b052cb29ccb3592972698fa4cd84633d222d78b8741d5f903f8636d95cddfe2ef13829df9ce32705edfda51ded2f0ef38f60a33a2e00373107eef56a01acb5e05d849279b5987343c8bbc73ea660ceaf7c9b90c0a8e1412ff3f517cef8fe604d7a26e085170a76e1bf43f5d1bb77ee771fe841d59fe2cc2874d25bf991b4af6bf9ffe1bfbf3a5587006b60bab5bdfd5a3192e82d474ecab0ab656967856c84cba9469c5823c1d1bf104d2a21c071bb08b2a137883dd9c8f545d6958db8efa45263ae303de76e70f2f6a10e1858e6654004f2a099dc31950ee730c465e0a1822935e309d41650fba489aa3050eedbf3f058d24d1f04fc340966e42d72052d84a66789ccf75000c3fc83b8842badd6b22ddaaaf53ed34e25c1b638e3630d66a7903405052902cf8e7395d54679e2f4a2bf7c8c89b0dc38969376ea164fe97b37b1172e6e8f05a929aa373108e891a64e38e18b432a115a44d754811e03c4f4ae7c525a6b9b92aab0d16967ee1a64eeeb2207c094f6aa96f126d058eff22435a4ae76c31f888ee13b327d2cab4ab5a56abf4cae88c583dd67129271708aa17f4f10886ead0e12734314bd4a49e64349beba4abdf94a1fb23a72cf7e16b5af2f1706d9646a5ff7dbf5c7b1cb2c3781346167b15d4625841d9f3d14392db1d39101d37175c42c522229db0708544058d75cebf3e399cd443d1b943c6f3017a898bd49836a8d92519deb810712aed76602682ef0df2be270734eeda7f289a76f4684baf75702a1ac3da005e62b83f794b934cf882db5d50e5ed4aca868e300d690c0b10daf0a47486e9f49d1b08eac6cf5090ddd2443b1459b2df86ab3447b2b5c6afe8aadb410de6a84b640e326eb882832d1a9cb12e0b8f13aef579f404af8631cdd5a30a031dad19cdf247575dd223229330f19fe4d88c51242217397acf66b86c743de283d5df7212fce59af17eb702eccab192f56f054a33709d41841e4a39638e02b4210559593f9b5c44fd22d9da637ef1a3a0a41c40469990dc4beec30a05b67931c0560d9a59fa875f3e26fd1eb32655aa30c7a1cd3d541716fdaacdda206328f3cbc8f16fc2be26690f18963a16febbaf2cb6c199330579ca067c60b54cbdd211c1350e066448fb50ae28ed58788ac98f0ded3414c8735ab90639916e26ab29102cc2609035e56d9b9d2dbc98118835bcf0e437c77052efe2293d9f19b7197aa1b94b10997b0b1efdef251de8945a97fec885f032c3bee2447335230b866d7aef515b04664d0c59e18233f9a229969e3e17d69716413ca3bc55f5959e340627ea803f7b26f4a74295b295344a3685287093998a1ce75b1ed5d730c9aec812617b4c200a0250c9ef8ef7d2fcfc59ef97422eca746bc6451a5b77307d14c1cfa0ea2c8eb7cf7819644577a6456efec0af058a0e3c8ec371019009462bfe174a11368b57fbe3090208a57b2236b97edc32cda5c6fc988cbaaf91c4020a06a7ad45519eaa761e045fc84d3219b287206282347a031ef1e7b7dbc67de738fa8f9fe71c44201fd1d548f8aebe93bf502d64d4b5f470a419e3fcd87f0616b9813048311ed20ac2efd7f18dcd6889542208b50c28c8c0700f73fa33a964e38d699819cab2098c6ff081266721cdced87ff41948c84037485f30d38a99eeeb3ff4c3049742a29eb09bb35c358e732546267c165a62fee9e25abdafdb8a48785bd432d160797e7a41d580f59d7d8e59b3e6b954d39f86db33b8f7cabde43e8e04cac1fcf9aa6fdbe4326e0d9c782d9a630055b36f85c2b8efebf18f42ef14ee5eb1d33ca322db69704f8bb90bf30eb05908b8d8ed169580923f53a6539cc3b55baa47718053d2ff103c23d90f9cb49ddc7d759950f605bafabcb7953c042c0523b84da994529a87ad68fc6f0709fd7af5fc20e53a17d3f5fd4d25fc5ff6598c6ddfc34668a08ee5e066d81a65e7979c50c08febf76dc5a3a405f551bb8449d94ea0dfdad6dd6dd6d6e4486f4ae1d2523c05f46198d8af4da12873ebdf7d6b5f2d0f1b2d29759ab0d78e34ae6f17b7ab83518cf8b18836ea5630ee934e5ecc123f0d3fe6b803ae1f735d65dcadcaaf6660e02ecad0290f6ead0594733a10b2b1654a44244424fa8b3180b551ac401828203e61603b017106e2256f01b9f26db33897167d9defb54ddfe49334150574493895370bad46cc658667aa9a8ed333c86f112b2a542936af92e2f933254b6fb0b1a599eec3bf2e476ae6714e2486dd31b29e4d26838d84bd7a62c62beab3ba71642278ecaf2e50d70670d9fdff105019791d36321bc57fdfd8f65f2ea1cb188035ecabf6140e777b7e6d2177ac29e9a1a2f87dd54d96184bb1a855bd9efdadfc606f13621f40e07cd8be9c2435c8c90b4ccba5eb7ddcf8cf1f76617c9a9e011abf4a63ffe31df63ecacb8b1d2d653e613cb399ce079392f9ca2e226c60b6e8103447c24c1f80d42e1ee747997602ae3ccff8f9f98ce9b56f6f3e3c0ba507df8b2169539cfc946c42da72644feb9b3b582ce332f8b2eda02192958194903d17b3e9b4bd60d08cd9a7989d946ece6d8dc01d6b66a7851bb11e4b075d38081d3ce7bf1875fec9daf47a589abdb72763c9747b83a28389238b0279c8e41db6521130420851acac463664a97be2190aff921923475f2c1f8a87d1169229e5f10dd0a92221e61358b156020f2c9ca2cb6580743a8d5e3c59e6fd97a7a246211450c7c62f1891cedb434102f8794d81c1caf2c1b4ae18b7c4b9c88de5c51da33e3343cef76da0d00341c2e60c4562c162e41a7efa8290cc9061f3d6a592d5f104c5018f31bcaf912bdd37370fbf8fedf0aa9026c1142299197d67ab026756927b5864ea42c45a82c23c275697d31a1b7900670c9a3c967d12974543c11f20c367a336bea9b9ebe480f9c806528138dff35c5f56b1199b75748e9c5cf50e6a32397dc3eeb04c3636c0848a5e13df8a9758bacea231f34cba13b466360b0dec69f74f8bf9a2dcf3dd94fa3a7d27e8caae00240559d75875ef9c619416593ca0072e7f38caae5a530c62dbe00e38c12cb8b924d63fca4d5c3a4c8f50e8f4f86fc1fe2b163219c46c21eb783e587e18e07ab7e1927a646c4f154c5000cb65ce9528457c3c66f43d9ab7d61580df0ecfb31cb38e4cbcdc3dafcca57311abec6b74048c8b74505ba678a4db07ed7243c70a821aee66a487bf91fd273418f8ef657d1eeb9ea6f095d47641e9f9fa30599e8b9c6b4453a1a5e8afd86fcafb46dd095fa4a98a2b26470e2c799b08c6000f5c3c4e28961463724377f37813f3922484fda986eb7c93ae8365baf648acbb344ca7e044d7ba93e7ba35c31085f3f99c5fdb2f9f2845f00b8590395e8ff730b86f5dd7f52297b8ecd5d5a6bb452bcd12b98d6adb27e7ef0e84b9567c66093ca3edab7e64ac4f56360501d81823ea2b1595f934c5f61c8558304c16154109a983a2af8725c7af91b5bc57e555768aa8115236a6ccc921d472b608eb6b82c4ba3747d79027d7856fae5369aa325df6a76138a5b41a94377eeeb251087e0b8510d8890e3f7a0cffaeddb9d2c29bc89f952489f82ee2e2b485cd297e6d30683701623cf73ee9ee606baeae9c3afba287eff57731b9cfaf034b1f56c8b31a32a1078c4fcab298c3f925a8e7cacceb9edf7ba2e54d31033a25462021e4a3c0bf5af341b462ee4417024da7c12c7f385de3af129aef1338a9c1fd68323d07ff47ec8bcca66b44300624d02c9202a2d093c3c85fd922b57b3bd14162c8ca5690734b7e4e4b8980b73a8e9908a9fa3dd508b30e3b1e1fd4ec388affa27c4bc26ca2820e0a902d51ff94984e8894fa5fca7b8704b7600ca6d6b1b1527ea999fcdf8fe3b290ec0036cad222f92cf8a5a54d0fa91de6e74ef61f60a233c9f15fdc86226c3f688de15ed8f0c3f1bc3afcad87cee47a19384afc6a804f197339ebce4aca211dbe0504a000755d18f20c4ecacd4123acdff7653cbb26456499495662508c8186afb883f5481c6bdf88cf137e263bde9d62f054573e0d1454cc119c95d4d9011332bd77682f79debcf5c21f0be7e9a83a58cec34e7cfb17a8122e030669228e4d3d9e274a678c5b77e6180aacc2fa8eb9952c5b04de6b2c7bee591badab96a3c3248c275b5b8faf5394eacc427a840570033be5006c33ce2d2c6e54f08681c3f74ad2fe54bca6dc62a9d84f6c58509c1e5dd5cfcc7a358493d428de48dfc1bc3f74154801c97e6aae38445045320b4cf66c1e56eb6ea2c1218de65f120b463c5cfb9255b3a25eb6e848cbd977f0605d71c561c2a754f5761c31f84101ee8178782cc8cf70b41a2204c5cb2f3134d572327fe4bbc1792249dfcf0ae7ba5d81fb5ae4a7978d044085f3b7f2e398c05733e2bf456cae898f8b5a81e9c79179bb5ca716713fce643dabe21eaee4386e646e25ad3adc5a4ad40f9bd6743f5f742efb1a674ffdbd2ced56c646ae590eb8f10283b47f57e6f96ad76adebecb24df74020b096fdee3c8d780d563a915f73c8b0246b861cd3a8580d5cf75798e8cf1c5875724661a39277e7165fe48ed8d5e6a20d68239f626fe8ea434a4e6e03ea434ec68c4b92a0fc2af15a135d6cbaeeca39a0c1896dab33daac", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x20, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x22b, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000002, 0x0, r2}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
symlink(&(0x7f0000000bc0)='./file0/file0\x00', &(0x7f00000002c0)='./file0/file0\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

6.27689416s ago: executing program 5 (id=6581):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, 0x0, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@local, 0x0, 0x0, 0x1, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000380)={@initdev={0xfe, 0x88, '\x00', 0xfe, 0x0}, 0x800, 0x2, 0x3, 0x2, 0x0, 0x100}, 0x20)

6.097905815s ago: executing program 3 (id=6582):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec85"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = getpid()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0xf5982500, 0x0, 0x0, 0x0, 0x0, 0x0)
bind$vsock_stream(r0, &(0x7f0000000440), 0x10)
listen(r0, 0x0)
r5 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r5, &(0x7f0000000100)={0x28, 0x0, 0x0, @local}, 0x10)
r6 = accept4$unix(r0, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000001680)=[{{0x0, 0x0, 0x0}}], 0x1, 0x164, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x1c3842, 0x44)
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000004c0)='./file1\x00', 0x1000c0e, &(0x7f0000000140)=ANY=[], 0xfb, 0x69d, &(0x7f0000000d00)="$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")
r7 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
fsetxattr$security_capability(r7, &(0x7f0000000240), 0x0, 0x0, 0x0)

6.097625313s ago: executing program 7 (id=6583):
mkdir(0x0, 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
r3 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000340)=ANY=[@ANYBLOB="14000000", @ANYRES16=r4, @ANYBLOB="ad4300000000009c260821"], 0x14}}, 0x0)

6.089379699s ago: executing program 2 (id=6584):
recvmsg(0xffffffffffffffff, 0x0, 0x40010022)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat$tcp_mem(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_wmem\x00', 0x1, 0x0)
sendfile(r3, 0xffffffffffffffff, 0x0, 0x3fffff)
ioctl$TCFLSH(0xffffffffffffffff, 0x540b, 0x1)
r4 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
get_robust_list(r4, 0x0, 0x0)

5.990455976s ago: executing program 5 (id=6585):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0x0, {}, [{0x90, 0x1, [@m_ct={0x44, 0x3, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x20000000, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x10d, &(0x7f0000000980)={0x0, 0x5885, 0x80, 0x10000000}, &(0x7f0000000340)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x4004, @fd_index=0x3, 0x0, 0x0})
io_uring_enter(r3, 0x3516, 0x0, 0x0, 0x0, 0x0)

3.847471862s ago: executing program 2 (id=6586):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=@newtaction={0x64, 0x30, 0x9, 0x70bd21, 0x0, {}, [{0x50, 0x1, [@m_vlan={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_VLAN_PARMS={0x1c, 0x2, {{0x5, 0x8, 0x20000000, 0xfffffff0, 0x4}, 0x3}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}]}]}, 0x64}, 0x1, 0x0, 0x0, 0x20000002}, 0x4)

3.293914684s ago: executing program 2 (id=6587):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x6, 0x4, &(0x7f00000006c0)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x45, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000200)={0x5}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x0, 0x0, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000380)=ANY=[@ANYBLOB="34000000100001f8ffffff000000000000000000", @ANYRES32=0x0, @ANYBLOB="00000000000000000c002b8008000100", @ANYRES32=r1, @ANYBLOB="08001b"], 0x34}}, 0x4004010)

2.917761417s ago: executing program 5 (id=6588):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0xffffffffffffff7c, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r1, 0x4008af00, &(0x7f0000000340)=0x4000000)
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f00000007c0)={0x1, 0x0, [{0xd000, 0x24, &(0x7f00000003c0)=""/36}]})
fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x12, 0x4, &(0x7f0000000000)=ANY=[], &(0x7f0000000280)='syzkaller\x00', 0x7, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @cgroup_sock_addr=0x8, 0xffffffffffffffff, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x5, @void, @value}, 0x94)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000400)=ANY=[@ANYBLOB="74010000", @ANYRES16, @ANYBLOB="11060000000000000000010000000800050001000000200108803c0000801400040002000000ac1e00010000000000000000240001000000000000000000000000000000000000000000000000000000000000000000e0000080a400098028000080060001000a0000001400020020010000000000000000000000000001050003000100000028000080060001000a00000014000200ff010000000000000000000000000001050003000100000028000080060001000a00000014000200ff010000000000000000000000000001050003000300000028020080060001000a00000014000200ff0100000000000000000000000000010500030000000000240001000000000000000000000000000000000000000000000000000000000000000000140004000200000000000000000000000000000024000300"/336], 0x174}}, 0x0)
r4 = openat(0xffffffffffffff9c, 0x0, 0x205000, 0x0)
fchown(r4, 0x0, 0xee01)
ioctl$DMA_HEAP_IOCTL_ALLOC(0xffffffffffffffff, 0xc0184800, &(0x7f0000000040)={0x7ffe, <r5=>0xffffffffffffffff, 0x80000})
ioctl$BINDER_GET_FROZEN_INFO(r5, 0xc00c620f, &(0x7f0000000300))
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000800)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

2.774462793s ago: executing program 3 (id=6589):
ioctl$EVIOCGRAB(0xffffffffffffffff, 0x40044590, &(0x7f0000000080)=0xfffffffb)
write$evdev(0xffffffffffffffff, &(0x7f0000000040)=[{{}, 0x0, 0x2}], 0x37)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r0, 0x10f, 0x87, 0x0, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(0xffffffffffffffff, 0xc01c7c02, 0x0)
syz_open_dev$media(&(0x7f0000000380), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000100), 0x2, 0x141121)
getpid()
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
r3 = syz_io_uring_setup(0x38ff, &(0x7f0000000300)={0x0, 0x200000, 0x10100}, &(0x7f0000000180), &(0x7f00000001c0))
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0))
io_uring_enter(r3, 0x2def, 0x4000, 0x0, 0x0, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r4, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r5 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000380)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
lseek(r5, 0x851, 0x0)
mount(&(0x7f0000000040)=@nullb, &(0x7f00000000c0)='./cgroup\x00', &(0x7f00000002c0)='ext3\x00', 0x0, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = dup(r6)
ioctl$TIOCL_SETSEL(r7, 0x541c, &(0x7f0000000100)={0x2, {0x2, 0x13d, 0x0, 0xd6e}})
ioctl$TIOCL_SETSEL(r7, 0x541c, &(0x7f0000001900)={0x2, {0x2, 0x300, 0xfffe, 0x101}})

1.741279219s ago: executing program 3 (id=6590):
socket$netlink(0x10, 0x3, 0x4)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
socket$packet(0x11, 0x2, 0x300)
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd74)
r2 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r3 = memfd_create(&(0x7f0000000080)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea\x7f\x8cZ7`_4t\xcda\x9b\x11\x11\x0e\xa1\xcf\x00'/51, 0x2)
ftruncate(r3, 0x1000006)
fcntl$addseals(r3, 0x409, 0x7)
ioctl$UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000000)={r3, 0x3f, 0x0, 0x1000000})

599.368244ms ago: executing program 5 (id=6591):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x11, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="180000000800000000"], &(0x7f0000000680)='GPL\x00', 0x4, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10)
r1 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
connect$bt_sco(r1, &(0x7f0000000080)={0x1f, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0x8)

466.60212ms ago: executing program 5 (id=6592):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
sendmmsg(r0, &(0x7f0000003a80)=[{{&(0x7f00000000c0)=@in={0x2, 0x4ea4, @rand_addr=0x64010101}, 0x80, 0x0}}], 0x1, 0x2c000811)
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r2, &(0x7f0000000040)={0xa, 0xe22, 0x0, @rand_addr, 0x99f}, 0x1c)
connect$inet6(r2, &(0x7f0000000340)={0x2, 0x4e21, 0x0, @private2}, 0x1c)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000000)=[{&(0x7f0000000080)="580000001500add427323b472545b45602117fffffff81000e224e217f000001925aa80020007b00090080007f000001e809000000ff0000f03ac71006000000ffffffffffffffffffe7ee00000000000000000200000000", 0x58}], 0x1)
connect$inet6(r2, &(0x7f0000000280)={0xa, 0x4e23, 0x3, @ipv4={'\x00', '\xff\xff', @local}, 0x7}, 0x1c)
listen(r1, 0xffffffff)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00'}, 0x10)
sync_file_range(r4, 0x4, 0xffff, 0x5)

397.490821ms ago: executing program 3 (id=6593):
write$6lowpan_enable(0xffffffffffffffff, &(0x7f0000000000)='1', 0x1)
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19)
mincore(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)

301.742377ms ago: executing program 5 (id=6594):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000c80)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x8, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@newtaction={0xa4, 0x30, 0x1, 0x0, 0xfffffffd, {}, [{0x90, 0x1, [@m_ct={0x44, 0x5, 0x0, 0x0, {{0x7}, {0x1c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x9d, 0x11e41e7a, 0x0, 0x0, 0xf}}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x1}}}}, @m_ife={0x48, 0x1, 0x0, 0x0, {{0x8}, {0x20, 0x2, 0x0, 0x1, [@TCA_IFE_PARMS={0x1c}]}, {0x4}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}]}]}, 0xa4}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$DMA_BUF_IOCTL_SYNC(0xffffffffffffffff, 0x40086200, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r3, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r4 = syz_init_net_socket$llc(0x1a, 0x2, 0x0)
getsockopt$llc_int(r4, 0x10c, 0x3, &(0x7f0000000080), &(0x7f0000000040)=0x4)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$ocfs2_control(0xffffff9c, &(0x7f0000000040), 0xc000, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x0, 0x40, &(0x7f00000001c0)=@raw={'raw\x00', 0x9, 0x3, 0x224, 0xd8, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x190, 0xffffffff, 0xffffffff, 0x190, 0xffffffff, 0x3, &(0x7f0000000080), {[{{@uncond, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x8, 0x94, 0x80000001, 0x1ff, 'syz1\x00', 'syz1\x00', {0x8}}}}, {{@uncond, 0x0, 0x70, 0xb8}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0xff, 0x0, 0x6, 'snmp\x00', {0x3}}}}], {{'\x00', 0x0, 0x70, 0x94}, {0x24}}}}, 0x280)
r7 = openat$cgroup_procs(r5, &(0x7f0000000840)='cgroup.procs\x00', 0x2, 0x0)
sendmsg$rds(r6, &(0x7f0000000e40)={0x0, 0x0, &(0x7f0000001080)=[{&(0x7f0000001180)=""/164, 0xa4}, {&(0x7f0000001580)=""/245, 0xf5}, {&(0x7f0000000680)=""/153, 0x99}, {&(0x7f0000000740)=""/215, 0xd7}, {&(0x7f0000000880)=""/129, 0x81}, {&(0x7f0000001100)=""/102, 0x66}, {&(0x7f00000009c0)=""/132, 0x84}, {&(0x7f0000000e80)=""/64, 0x40}, {&(0x7f0000000ec0)=""/160, 0xa0}, {&(0x7f0000000f80)=""/230, 0xe6}], 0xa, &(0x7f0000001680)=[@rdma_map={0x2c, 0x114, 0x3, {{&(0x7f0000000d40)=""/224, 0xe0}, &(0x7f00000005c0), 0xa4889b6e48dcdc7e}}, @rdma_args={0x48, 0x114, 0x1, {{0x7fff, 0xaba}, {&(0x7f00000004c0)=""/104, 0x68}, &(0x7f0000001500)=[{0x0}, {&(0x7f0000001240)=""/164, 0xa4}, {&(0x7f0000001300)=""/244, 0xf4}, {&(0x7f0000001400)=""/226, 0xe2}, {&(0x7f0000000440)=""/55, 0x37}], 0x5, 0x10, 0x3ee}}, @cswp={0x58, 0x114, 0x7, {{0x3, 0x8}, &(0x7f0000000b80)=0x7ff, &(0x7f0000000bc0)=0x6, 0x5, 0xffffffffffffffff, 0x400, 0x8, 0x20, 0x6}}, @mask_fadd={0x58, 0x114, 0x8, {{0x7fffffff, 0x6}, &(0x7f0000000c00)=0xa8, &(0x7f0000000c40)=0x2, 0x401, 0x1, 0x0, 0x1000, 0x18}}, @rdma_dest={0x18, 0x114, 0x2, {0x7ff, 0x5869}}, @mask_fadd={0x58, 0x114, 0x8, {{0x7}, &(0x7f0000000540)=0x3, &(0x7f0000000580)=0x6, 0x100, 0xf17b, 0x6, 0xd677, 0x19, 0x1000}}], 0x194, 0x24008040}, 0x401)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0xfffffffe, 0x0, &(0x7f0000006680))
r8 = epoll_create(0x207ffd)
epoll_pwait(r8, &(0x7f0000000180)=[{}], 0x1, 0x0, 0x0, 0x0)
write$cgroup_pid(r7, 0x0, 0x0)

0s ago: executing program 3 (id=6595):
mkdir(&(0x7f0000000580)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB, @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006840)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="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", 0x2000, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x2b, 0x0, 0x20, 0x0, 0x0, 0x400, 0x0, 0x0, 0x0, 0x80}}, 0x50)
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006780)={0x90, 0x0, 0x22b, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000002, 0x0, r2}}}, 0x0, 0x0, 0x0, 0x0, 0x0})
symlink(&(0x7f0000000bc0)='./file0/file0\x00', &(0x7f00000002c0)='./file0/file0\x00')
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

kernel console output (not intermixed with test programs):

ks per group (255) and clusters per group (8192) inconsistent
[ 1192.364541][   T63] kworker/u8:4: attempt to access beyond end of device
[ 1192.364541][   T63] loop8: rw=1, sector=1224, nr_sectors = 128 limit=256
[ 1192.545586][   T63] kworker/u8:4: attempt to access beyond end of device
[ 1192.545586][   T63] loop8: rw=1, sector=1384, nr_sectors = 32 limit=256
[ 1192.628468][   T63] kworker/u8:4: attempt to access beyond end of device
[ 1192.628468][   T63] loop8: rw=1, sector=1448, nr_sectors = 32 limit=256
[ 1192.756689][   T63] kworker/u8:4: attempt to access beyond end of device
[ 1192.756689][   T63] loop8: rw=1, sector=1512, nr_sectors = 32 limit=256
[ 1192.773534][   T63] kworker/u8:4: attempt to access beyond end of device
[ 1192.773534][   T63] loop8: rw=1, sector=1576, nr_sectors = 32 limit=256
[ 1193.220746][T32626] loop3: detected capacity change from 0 to 2048
[ 1193.265578][T32626] UDF-fs: error (device loop3): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0
[ 1193.333138][T32626] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[ 1193.379230][T32626] UDF-fs: Scanning with blocksize 512 failed
[ 1194.345878][T32642] loop8: detected capacity change from 0 to 256
[ 1194.360587][T32639] hub 2-0:1.0: USB hub found
[ 1194.365560][T32639] hub 2-0:1.0: 1 port detected
[ 1194.380754][T32639] loop5: detected capacity change from 0 to 512
[ 1194.388126][T32639] EXT4-fs: Ignoring removed oldalloc option
[ 1196.777089][T32639] EXT4-fs: error -4 creating inode table initialization thread
[ 1196.886110][T32639] EXT4-fs (loop5): mount failed
[ 1197.101338][T32626] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1197.749735][T32665] loop9: detected capacity change from 0 to 128
[ 1197.783580][T32665] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1197.891061][T32665] ext4 filesystem being mounted at /231/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1198.135375][ T5894] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1198.213371][T32679] loop3: detected capacity change from 0 to 512
[ 1198.251049][T25154] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1198.261483][T32683] loop8: detected capacity change from 0 to 1024
[ 1198.335251][ T5894] usb 2-1: Using ep0 maxpacket: 16
[ 1198.348756][T32679] EXT4-fs (loop3): 1 orphan inode deleted
[ 1198.387889][   T37] hfsplus: b-tree write err: -5, ino 4
[ 1198.393523][ T5894] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1198.412462][ T6437] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1198.427682][T32679] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1198.455583][ T5894] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1198.481368][ T6437] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:12: Failed to release dquot type 1
[ 1198.493503][T32679] ext4 filesystem being mounted at /269/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1198.495226][ T5894] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1198.542196][ T5894] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1198.563899][ T5894] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1198.574061][T32697] IPv6: Can't replace route, no match found
[ 1198.591270][T32699] $Hÿ: renamed from bond0 (while UP)
[ 1198.642795][T32699] $Hÿ: entered promiscuous mode
[ 1198.668924][T32699] bond_slave_0: entered promiscuous mode
[ 1198.670760][ T5894] usb 2-1: config 0 descriptor??
[ 1198.685409][T32699] bond_slave_1: entered promiscuous mode
[ 1199.659865][   T30] audit: type=1800 audit(1747263589.233:2999): pid=32679 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5174" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 1199.759143][   T30] audit: type=1800 audit(1747263589.233:3000): pid=32700 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5174" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 1199.886653][ T5894] HID 045e:07da: Invalid code 65791 type 1
[ 1199.897386][ T5894] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.000C/input/input7
[ 1199.918421][ T5894] microsoft 0003:045E:07DA.000C: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0
[ 1199.934234][   T10] usb 10-1: new high-speed USB device number 10 using dummy_hcd
[ 1199.964928][ T5894] usb 2-1: USB disconnect, device number 22
[ 1200.117380][   T10] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 201, changing to 11
[ 1200.154611][   T10] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[ 1200.215754][   T10] usb 10-1: New USB device found, idVendor=046d, idProduct=c091, bcdDevice= 0.00
[ 1200.286458][   T10] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1200.350468][   T10] usb 10-1: config 0 descriptor??
[ 1200.392770][T22313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1200.434845][ T6437] Quota error (device loop3): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1200.449091][ T6437] EXT4-fs error (device loop3): ext4_release_dquot:6969: comm kworker/u8:12: Failed to release dquot type 1
[ 1200.676186][T32755] loop2: detected capacity change from 0 to 1024
[ 1201.356014][   T10] logitech-hidpp-device 0003:046D:C091.000D: hidraw0: USB HID vff.fa Device [HID 046d:c091] on usb-dummy_hcd.9-1/input0
[ 1201.473470][ T5894] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[ 1201.528319][  T308] loop8: detected capacity change from 0 to 256
[ 1201.565449][  T308] exFAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1201.589664][T14149] usb 10-1: USB disconnect, device number 10
[ 1201.626309][  T308] exFAT-fs (loop8): Medium has reported failures. Some data may be lost.
[ 1201.644049][ T5894] usb 6-1: Using ep0 maxpacket: 16
[ 1201.677007][ T5894] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 64, changing to 7
[ 1201.693366][ T5894] usb 6-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1201.729835][  T308] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1201.745391][ T5894] usb 6-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1201.776403][ T5894] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1201.791498][ T5894] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1201.837134][  T325] loop3: detected capacity change from 0 to 8
[ 1201.843262][ T5894] usb 6-1: Product: syz
[ 1201.843295][ T5894] usb 6-1: Manufacturer: syz
[ 1201.843324][ T5894] usb 6-1: SerialNumber: syz
[ 1201.937914][  T325] SQUASHFS error: zlib decompression failed, data probably corrupt
[ 1201.982162][  T325] SQUASHFS error: Failed to read block 0x633: -5
[ 1202.009237][  T325] SQUASHFS error: Unable to read metadata cache entry [631]
[ 1202.044681][  T325] SQUASHFS error: Unable to read directory block [631:26]
[ 1202.078512][ T5894] usb 6-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1202.094630][  T333] SQUASHFS error: Unable to read metadata cache entry [631]
[ 1202.147283][  T333] SQUASHFS error: Unable to read directory block [631:26]
[ 1202.257123][  T341] loop1: detected capacity change from 0 to 512
[ 1202.276975][  T341] EXT4-fs (loop1): blocks per group (71) and clusters per group (20800) inconsistent
[ 1202.298330][ T5894] usb 6-1: USB disconnect, device number 3
[ 1203.754918][  T371] loop5: detected capacity change from 0 to 256
[ 1203.819787][  T371] FAT-fs (loop5): error, invalid access to FAT (entry 0x00000001)
[ 1203.951646][  T371] FAT-fs (loop5): Filesystem has been set read-only
[ 1205.287473][  T388] loop8: detected capacity change from 0 to 256
[ 1205.419203][  T387] hub 2-0:1.0: USB hub found
[ 1205.425503][  T387] hub 2-0:1.0: 1 port detected
[ 1205.477712][  T387] loop3: detected capacity change from 0 to 512
[ 1205.487826][  T387] EXT4-fs: Ignoring removed oldalloc option
[ 1205.857904][  T387] EXT4-fs error (device loop3): ext4_xattr_inode_iget:432: comm syz.3.5200: Parent and EA inode have the same ino 15
[ 1205.878447][  T387] EXT4-fs error (device loop3): ext4_xattr_inode_iget:432: comm syz.3.5200: Parent and EA inode have the same ino 15
[ 1205.900315][  T387] EXT4-fs (loop3): 1 orphan inode deleted
[ 1205.933282][  T387] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1207.348852][  T413] loop1: detected capacity change from 0 to 256
[ 1207.402079][  T413] exfat: Invalid uid '0x00000000ffffffff'
[ 1207.824976][T22313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1208.894328][  T434] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5217'.
[ 1208.959258][  T434] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1209.183033][  T438] loop5: detected capacity change from 0 to 1024
[ 1209.254629][  T438] EXT4-fs: Ignoring removed bh option
[ 1209.304668][  T443] loop8: detected capacity change from 0 to 128
[ 1209.331326][  T434] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1209.383951][  T438] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1210.118338][  T463] loop8: detected capacity change from 0 to 1024
[ 1210.700099][T31386] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1210.811905][  T472] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5229'.
[ 1210.878902][  T472] netlink: 24 bytes leftover after parsing attributes in process `syz.1.5229'.
[ 1210.884241][   T30] audit: type=1800 audit(1747263600.509:3001): pid=480 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.5227" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1211.006416][  T483] loop2: detected capacity change from 0 to 128
[ 1211.054349][  T483] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1211.089199][  T483] ext4 filesystem being mounted at /367/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1211.238956][  T483] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[ 1211.314331][  T483] fscrypt: loop2: 1 inode(s) still busy after removing key with identifier 69b2f6edeee720cce0577937eb8a6751, including ino 12
[ 1211.320905][  T494] binder: 493:494 ioctl c0306201 2000000003c0 returned -14
[ 1211.424540][  T501] support for the xor transformation has been removed.
[ 1211.469888][T20874] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1211.671434][  T508] loop2: detected capacity change from 0 to 16
[ 1211.742914][  T508] erofs (device loop2): mounted with root inode @ nid 36.
[ 1212.947768][  T517] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1213.261776][  T518] loop1: detected capacity change from 0 to 1024
[ 1213.498509][  T517] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1214.125091][  T525] loop2: detected capacity change from 0 to 16
[ 1214.247640][  T525] erofs (device loop2): mounted with root inode @ nid 36.
[ 1214.487108][  T528] mac80211_hwsim hwsim62 wlan0: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[ 1214.690847][  T537] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1214.711435][  T537] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1215.132214][  T539] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1215.395697][  T552] input: syz0 as /devices/virtual/input/input8
[ 1215.667752][  T569] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5251'.
[ 1215.700177][  T569] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5251'.
[ 1215.876599][  T574] loop3: detected capacity change from 0 to 1764
[ 1216.920888][T26146] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1216.942090][ T7165] wlan0: Trigger new scan to find an IBSS to join
[ 1217.088605][T26146] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[ 1217.259078][  T581] loop5: detected capacity change from 0 to 1024
[ 1217.919478][T26146] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1217.940882][T26146] usb 2-1: config 0 descriptor??
[ 1219.056636][  T581] hfsplus: failed to load extents file
[ 1219.245555][T26146] usb 2-1: Cannot read MAC address
[ 1219.250979][T26146] MOSCHIP usb-ethernet driver 2-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71
[ 1219.416671][T26146] usb 2-1: USB disconnect, device number 23
[ 1219.579877][  T609] loop9: detected capacity change from 0 to 16
[ 1219.615578][  T607] loop5: detected capacity change from 0 to 2048
[ 1219.651203][  T609] erofs (device loop9): mounted with root inode @ nid 36.
[ 1219.693017][  T611] binder: 610:611 ioctl c0306201 2000000003c0 returned -14
[ 1219.727258][  T607] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1220.019901][  T615] loop3: detected capacity change from 0 to 256
[ 1220.936907][  T617] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1221.184490][  T617] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1221.722830][ T6439] wlan0: Creating new IBSS network, BSSID c2:79:a3:3a:df:d2
[ 1223.434921][  T652] loop1: detected capacity change from 0 to 512
[ 1223.505646][  T651] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5271'.
[ 1223.536546][  T652] EXT4-fs error (device loop1): ext4_iget_extra_inode:4692: inode #15: comm syz.1.5272: corrupted in-inode xattr: invalid ea_ino
[ 1223.578691][  T651] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5271'.
[ 1223.637606][  T652] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.5272: couldn't read orphan inode 15 (err -117)
[ 1223.698851][  T652] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1223.936188][  T664] netlink: 'syz.9.5270': attribute type 11 has an invalid length.
[ 1223.944184][  T664] netlink: 36 bytes leftover after parsing attributes in process `syz.9.5270'.
[ 1224.382556][  T652] EXT4-fs warning (device loop1): ext4_resize_begin:81: There are errors in the filesystem, so online resizing is not allowed
[ 1224.646529][T20253] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1224.980093][  T678] loop5: detected capacity change from 0 to 128
[ 1225.392593][  T678] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256
[ 1225.756818][  T678] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1226.167424][  T696] loop2: detected capacity change from 0 to 512
[ 1226.230996][  T696] EXT4-fs (loop2): blocks per group (95) and clusters per group (32768) inconsistent
[ 1226.255315][  T705] loop9: detected capacity change from 0 to 16
[ 1226.281731][  T705] erofs (device loop9): mounted with root inode @ nid 36.
[ 1226.591120][  T696] loop2: detected capacity change from 0 to 4096
[ 1226.932110][  T717] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1226.943273][  T718] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1227.118123][  T696] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1227.464296][  T696] EXT4-fs (loop2): shut down requested (0)
[ 1227.654651][  T726] netlink: 16 bytes leftover after parsing attributes in process `syz.9.5290'.
[ 1227.690584][  T726] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5290'.
[ 1227.746922][T20874] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1228.569406][  T736] netlink: 'syz.2.5291': attribute type 11 has an invalid length.
[ 1228.577384][  T736] netlink: 36 bytes leftover after parsing attributes in process `syz.2.5291'.
[ 1232.077233][  T764] loop2: detected capacity change from 0 to 512
[ 1232.288056][  T764] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1232.328467][  T764] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1232.373720][  T764] Quota error (device loop2): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[ 1232.426124][  T764] EXT4-fs warning (device loop2): ext4_enable_quotas:7166: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1232.507868][  T764] EXT4-fs (loop2): Cannot turn on quotas: error -117
[ 1232.598865][  T764] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.5300: bg 0: block 40: padding at end of block bitmap is not set
[ 1232.636495][  T784] loop1: detected capacity change from 0 to 512
[ 1232.648833][  T764] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6548: Corrupt filesystem
[ 1232.654345][  T784] EXT4-fs: Ignoring removed oldalloc option
[ 1232.672075][  T784] EXT4-fs (loop1): blocks per group (71) and clusters per group (20800) inconsistent
[ 1232.712435][  T764] EXT4-fs (loop2): 1 truncate cleaned up
[ 1232.746736][  T764] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1232.793583][  T761] EXT4-fs error (device loop2): ext4_get_link:106: inode #16: comm syz.2.5300: bad symlink.
[ 1232.906470][  T784] loop1: detected capacity change from 0 to 512
[ 1232.944815][T20874] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1233.012045][  T784] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1233.037878][ T5894] usb 10-1: new high-speed USB device number 11 using dummy_hcd
[ 1233.067697][  T784] ext4 filesystem being mounted at /384/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1233.326173][  T808] netlink: 'syz.8.5309': attribute type 11 has an invalid length.
[ 1233.334194][  T808] netlink: 36 bytes leftover after parsing attributes in process `syz.8.5309'.
[ 1233.859658][   T30] audit: type=1326 audit(1747263623.481:3002): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=813 comm="syz.5.5312" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x0
[ 1234.001947][  T818] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5312'.
[ 1234.019577][ T5894] usb 10-1: config 220 has an invalid interface number: 76 but max is 2
[ 1234.028437][ T5894] usb 10-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1234.052097][ T5894] usb 10-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1234.083813][ T5894] usb 10-1: config 220 has no interface number 2
[ 1234.086005][T20253] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1234.098694][ T5894] usb 10-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1234.128127][ T5894] usb 10-1: config 220 interface 0 has no altsetting 0
[ 1234.166379][ T5894] usb 10-1: config 220 interface 76 has no altsetting 0
[ 1234.191704][ T5894] usb 10-1: config 220 interface 1 has no altsetting 0
[ 1234.218921][ T5894] usb 10-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1234.230744][ T5894] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1234.239027][ T5894] usb 10-1: Product: syz
[ 1234.247721][ T5894] usb 10-1: Manufacturer: syz
[ 1234.252571][ T5894] usb 10-1: SerialNumber: syz
[ 1234.518425][ T5894] usb 10-1: Found UVC 7.01 device syz (8086:0b07)
[ 1234.563663][ T5894] usb 10-1: No valid video chain found.
[ 1234.599862][ T5894] usb 10-1: selecting invalid altsetting 0
[ 1234.637590][  T841] loop3: detected capacity change from 0 to 256
[ 1234.693562][  T841] FAT-fs (loop3): Directory bread(block 64) failed
[ 1234.700442][  T841] FAT-fs (loop3): Directory bread(block 65) failed
[ 1234.707204][  T841] FAT-fs (loop3): Directory bread(block 66) failed
[ 1234.714252][  T841] FAT-fs (loop3): Directory bread(block 67) failed
[ 1234.733010][  T841] FAT-fs (loop3): Directory bread(block 68) failed
[ 1234.738394][ T5894] usb 10-1: selecting invalid altsetting 0
[ 1234.745672][ T5894] usbtest 10-1:220.1: probe with driver usbtest failed with error -22
[ 1234.779381][  T841] FAT-fs (loop3): Directory bread(block 69) failed
[ 1234.806482][  T841] FAT-fs (loop3): Directory bread(block 70) failed
[ 1234.821669][ T5894] usb 10-1: USB disconnect, device number 11
[ 1234.828039][  T841] FAT-fs (loop3): Directory bread(block 71) failed
[ 1234.834723][  T841] FAT-fs (loop3): Directory bread(block 72) failed
[ 1234.891452][  T841] FAT-fs (loop3): Directory bread(block 73) failed
[ 1237.619642][  T882] loop3: detected capacity change from 0 to 1024
[ 1238.599380][  T892] IPv6: Can't replace route, no match found
[ 1238.934145][  T897] netlink: 'syz.5.5328': attribute type 11 has an invalid length.
[ 1238.942117][  T897] netlink: 36 bytes leftover after parsing attributes in process `syz.5.5328'.
[ 1239.285900][  T896] 9pnet_virtio: no channels available for device syz
[ 1241.308745][  T936] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1242.545078][  T956] loop2: detected capacity change from 0 to 256
[ 1242.628083][  T956] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x89cb6648, utbl_chksum : 0xe619d30d)
[ 1242.678764][  T961] netlink: 16 bytes leftover after parsing attributes in process `syz.1.5346'.
[ 1242.692897][ T5894] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1242.854857][ T5894] usb 4-1: Using ep0 maxpacket: 32
[ 1242.881533][ T5894] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1242.914099][ T5894] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1242.943965][ T5894] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1242.952176][ T5894] usb 4-1: Product: syz
[ 1242.986887][ T5894] usb 4-1: Manufacturer: syz
[ 1242.991551][ T5894] usb 4-1: SerialNumber: syz
[ 1243.027631][ T5894] usb 4-1: config 0 descriptor??
[ 1243.055655][  T951] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1243.359036][  T983] bridge0: trying to set multicast startup query interval below minimum, setting to 100 (1000ms)
[ 1243.375083][  T983] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1243.383190][  T983] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1244.274173][T14149] usb 4-1: USB disconnect, device number 10
[ 1245.038804][ T1045] netlink: 'syz.2.5361': attribute type 1 has an invalid length.
[ 1245.064631][ T1045] netlink: 224 bytes leftover after parsing attributes in process `syz.2.5361'.
[ 1245.111042][ T1053] netlink: 56 bytes leftover after parsing attributes in process `syz.8.5362'.
[ 1245.480935][ T1059] 9pnet_fd: Insufficient options for proto=fd
[ 1245.548437][   T30] audit: type=1800 audit(1747263635.186:3003): pid=1062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5365" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1246.901234][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1247.217623][ T1088] netlink: 64 bytes leftover after parsing attributes in process `syz.8.5371'.
[ 1247.636000][ T1097] batadv_slave_0: entered promiscuous mode
[ 1247.810941][ T1096] batadv_slave_0: left promiscuous mode
[ 1248.074979][ T1104] syzkaller1: entered promiscuous mode
[ 1248.153001][ T1110] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5379'.
[ 1248.336316][ T1104] syzkaller1: entered allmulticast mode
[ 1248.891764][ T1113] binder: 1112:1113 ioctl c0306201 2000000003c0 returned -14
[ 1249.241729][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1249.241729][ T1123] nbd3: rw=0, sector=64, nr_sectors = 1 limit=0
[ 1249.723120][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1249.723120][ T1123] nbd3: rw=0, sector=256, nr_sectors = 1 limit=0
[ 1249.992507][ T1142] loop2: detected capacity change from 0 to 256
[ 1250.145893][ T1142] vfat filesystem being mounted at /396/file1 supports timestamps until 2107-12-31 (0x10390cdaa)
[ 1250.171675][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[ 1250.878204][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1250.878204][ T1123] nbd3: rw=0, sector=512, nr_sectors = 1 limit=0
[ 1250.920953][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[ 1250.975281][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1250.975281][ T1123] nbd3: rw=0, sector=64, nr_sectors = 2 limit=0
[ 1251.272354][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1251.272354][ T1123] nbd3: rw=0, sector=512, nr_sectors = 2 limit=0
[ 1251.286251][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[ 1251.296778][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1251.296778][ T1123] nbd3: rw=0, sector=1024, nr_sectors = 2 limit=0
[ 1251.328635][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[ 1251.641955][ T1191] netlink: 'syz.1.5391': attribute type 11 has an invalid length.
[ 1251.650460][ T1191] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5391'.
[ 1251.978342][   T63] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1252.071966][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1252.071966][ T1123] nbd3: rw=0, sector=64, nr_sectors = 4 limit=0
[ 1252.126592][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1252.126592][ T1123] nbd3: rw=0, sector=1024, nr_sectors = 4 limit=0
[ 1252.158250][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[ 1252.191278][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1252.191278][ T1123] nbd3: rw=0, sector=2048, nr_sectors = 4 limit=0
[ 1252.206597][ T1199] loop5: detected capacity change from 0 to 16
[ 1252.263671][ T1199] erofs (device loop5): mounted with root inode @ nid 36.
[ 1252.314443][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[ 1252.391247][ T1205] binder: 1204:1205 ioctl c0306201 2000000003c0 returned -14
[ 1252.603509][ T1123] syz.3.5382: attempt to access beyond end of device
[ 1252.603509][ T1123] nbd3: rw=0, sector=64, nr_sectors = 8 limit=0
[ 1252.616759][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=256, location=256
[ 1252.626571][ T1123] UDF-fs: error (device nbd3): udf_read_tagged: read failed, block=512, location=512
[ 1252.636128][ T1123] UDF-fs: warning (device nbd3): udf_fill_super: No partition found (1)
[ 1252.832442][ T1217] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1252.840918][ T1220] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1253.318402][ T1214] batadv_slave_0: entered promiscuous mode
[ 1253.379631][ T1212] batadv_slave_0: left promiscuous mode
[ 1253.559487][ T1227] loop2: detected capacity change from 0 to 16
[ 1253.590041][ T1227] erofs (device loop2): mounted with root inode @ nid 36.
[ 1256.015028][ T1249] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1256.024198][ T1251] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1258.159582][ T1274] loop3: detected capacity change from 0 to 256
[ 1259.647396][ T1274] vfat filesystem being mounted at /300/file1 supports timestamps until 2107-12-31 (0x10390cdaa)
[ 1259.902886][ T1295] loop9: detected capacity change from 0 to 16
[ 1259.940742][ T1295] erofs (device loop9): mounted with root inode @ nid 36.
[ 1260.407903][ T1308] netlink: 'syz.8.5410': attribute type 11 has an invalid length.
[ 1260.415967][ T1308] netlink: 36 bytes leftover after parsing attributes in process `syz.8.5410'.
[ 1261.373481][ T1311] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1261.473568][ T1311] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1261.955138][ T1318] $Hÿ: entered promiscuous mode
[ 1261.975491][ T1318] bond_slave_0: entered promiscuous mode
[ 1262.005382][ T1318] bond_slave_1: entered promiscuous mode
[ 1262.012236][ T1320] binder: 1319:1320 ioctl c0306201 2000000003c0 returned -14
[ 1262.020975][ T1320] binder_alloc: 1319: binder_alloc_buf, no vma
[ 1263.397787][ T1351] loop9: detected capacity change from 0 to 256
[ 1264.142137][   T30] audit: type=1326 audit(6042230946.761:3004): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1337 comm="syz.2.5422" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x0
[ 1264.514046][ T1365] tmpfs: Bad value for 'mpol'
[ 1265.112953][ T1369] loop1: detected capacity change from 0 to 1024
[ 1265.967864][ T1376] $Hÿ: renamed from bond0 (while UP)
[ 1266.007611][ T1376] $Hÿ: entered promiscuous mode
[ 1266.071195][ T1376] bond_slave_0: entered promiscuous mode
[ 1266.099531][ T1376] bond_slave_1: entered promiscuous mode
[ 1266.130074][ T1378] netlink: 8 bytes leftover after parsing attributes in process `syz.5.5430'.
[ 1266.933466][ T1401] loop2: detected capacity change from 0 to 1024
[ 1268.432847][ T1430] loop3: detected capacity change from 0 to 1024
[ 1269.231019][ T1446] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5456'.
[ 1269.541292][ T1457] netlink: 'syz.2.5459': attribute type 1 has an invalid length.
[ 1269.581281][ T1455] loop9: detected capacity change from 0 to 1024
[ 1269.614111][ T1457] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1269.630972][ T1459] vlan1: entered allmulticast mode
[ 1269.636622][ T1459] netdevsim netdevsim2 netdevsim0: entered allmulticast mode
[ 1269.726676][ T1459] bond0: (slave vlan1): making interface the new active one
[ 1270.168138][ T1500] netlink: 'syz.1.5455': attribute type 11 has an invalid length.
[ 1270.176147][ T1500] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5455'.
[ 1270.510275][ T1459] bond0: (slave vlan1): Enslaving as an active interface with an up link
[ 1270.872324][ T1506] 9p filesystem being mounted at /283/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1271.480530][ T1524] loop3: detected capacity change from 0 to 1024
[ 1272.129484][ T1529] loop2: detected capacity change from 0 to 16
[ 1272.288832][ T1529] erofs (device loop2): mounted with root inode @ nid 36.
[ 1272.701832][ T1540] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1272.720962][ T1540] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1273.401753][ T1548] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5472'.
[ 1273.431493][ T1548] netlink: 56 bytes leftover after parsing attributes in process `syz.1.5472'.
[ 1273.787203][T21188] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[ 1273.887171][ T1563] loop9: detected capacity change from 0 to 256
[ 1274.021395][T21188] usb 4-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1274.613378][T21188] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1274.910404][T21188] usb 4-1: config 0 descriptor??
[ 1275.701715][ T5839] Bluetooth: hci2: unexpected event for opcode 0x040d
[ 1275.936511][ T1577] loop1: detected capacity change from 0 to 512
[ 1276.015672][ T1577] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1276.149721][ T1577] ext4 filesystem being mounted at /410/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1276.523096][ T1590] loop9: detected capacity change from 0 to 1024
[ 1277.353494][T21188] pegasus 4-1:0.0: probe with driver pegasus failed with error -110
[ 1277.385515][   T30] audit: type=1800 audit(6042230960.038:3005): pid=1591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5480" name="file2" dev="loop1" ino=16 res=0 errno=0
[ 1278.143257][   T10] usb 4-1: USB disconnect, device number 11
[ 1278.197753][T20253] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1278.938583][ T1636] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5490'.
[ 1280.656958][ T1643] loop9: detected capacity change from 0 to 512
[ 1281.212985][ T1653] loop5: detected capacity change from 0 to 1024
[ 1282.239290][T21188] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[ 1282.408205][T21188] usb 4-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1282.473473][T21188] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1282.540186][T21188] usb 4-1: config 0 descriptor??
[ 1283.611679][T21188] pegasus 4-1:0.0: probe with driver pegasus failed with error -71
[ 1283.945655][ T1700] netlink: 44 bytes leftover after parsing attributes in process `syz.5.5510'.
[ 1284.591966][T21188] usb 4-1: USB disconnect, device number 12
[ 1284.798981][ T1709] loop2: detected capacity change from 0 to 16
[ 1284.808201][ T1711] loop1: detected capacity change from 0 to 512
[ 1284.886892][ T1709] erofs (device loop2): mounted with root inode @ nid 36.
[ 1285.174570][ T1714] batadv_slave_0: entered promiscuous mode
[ 1285.182008][ T1713] batadv_slave_0: left promiscuous mode
[ 1285.191173][ T1711] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1285.831038][ T1711] ext4 filesystem being mounted at /417/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1285.844230][ T1720] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1285.851639][ T1721] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1285.981591][ T6438] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1286.070219][   T30] audit: type=1800 audit(6042230968.722:3006): pid=1711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5515" name="file2" dev="loop1" ino=16 res=0 errno=0
[ 1287.309619][ T1738] loop2: detected capacity change from 0 to 1024
[ 1287.360961][ T1737] No buffer was provided with the request
[ 1288.466863][T20253] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1290.259302][ T1767] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[ 1290.619789][ T1784] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5529'.
[ 1291.537099][ T1790] loop5: detected capacity change from 0 to 512
[ 1291.615595][ T1790] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1291.692755][ T1800] netlink: 'syz.9.5531': attribute type 1 has an invalid length.
[ 1291.715208][ T1790] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1291.824649][ T1814] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1292.003046][ T1800] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1292.508439][   T30] audit: type=1800 audit(6042230975.145:3007): pid=1838 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.5534" name="file2" dev="loop5" ino=16 res=0 errno=0
[ 1292.595631][ T1810] vlan3: entered allmulticast mode
[ 1292.777965][ T1810] netdevsim netdevsim9 netdevsim0: entered allmulticast mode
[ 1293.102783][ T1810] bond0: (slave vlan3): making interface the new active one
[ 1293.192449][ T1810] bond0: (slave vlan3): Enslaving as an active interface with an up link
[ 1293.259096][ T1843] 9p filesystem being mounted at /421/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1293.263821][T31386] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1294.013664][ T1850] loop3: detected capacity change from 0 to 1024
[ 1295.292948][ T1860] loop9: detected capacity change from 0 to 1024
[ 1296.061840][ T1890] loop2: detected capacity change from 0 to 512
[ 1296.279543][ T1892] loop1: detected capacity change from 0 to 2048
[ 1296.763580][ T1892]  loop1: p1 < > p2 p3 < p5 p6 > p4
[ 1296.769084][ T1892] loop1: partition table partially beyond EOD, truncated
[ 1296.777180][ T1892] loop1: p1 start 3405774849 is beyond EOD, truncated
[ 1296.784011][ T1892] loop1: p2 size 5046285 extends beyond EOD, truncated
[ 1296.799452][ T1892] loop1: p5 size 5046285 extends beyond EOD, truncated
[ 1296.897534][ T5839] Bluetooth: hci4: unexpected event for opcode 0x2029
[ 1296.952032][ T1890] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1297.035870][ T1890] ext4 filesystem being mounted at /424/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1297.074974][ T1917] netlink: 'syz.3.5550': attribute type 1 has an invalid length.
[ 1297.423292][   T30] audit: type=1800 audit(6042230980.088:3008): pid=1890 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5548" name="file2" dev="loop2" ino=16 res=0 errno=0
[ 1297.636351][ T1964] loop9: detected capacity change from 0 to 1024
[ 1298.241303][ T1917] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1298.514063][ T1929] 9p filesystem being mounted at /182/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1298.785718][ T1930] vlan3: entered allmulticast mode
[ 1298.830488][ T1930] netdevsim netdevsim3 netdevsim0: entered allmulticast mode
[ 1298.887402][ T1930] bond0: (slave vlan3): making interface the new active one
[ 1298.941476][ T1930] bond0: (slave vlan3): Enslaving as an active interface with an up link
[ 1298.991821][T20874] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1299.614304][   T10] usb 2-1: new full-speed USB device number 24 using dummy_hcd
[ 1299.852409][   T10] usb 2-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1300.903606][   T10] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1300.916972][   T10] usb 2-1: config 0 descriptor??
[ 1300.955956][ T5839] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[ 1300.965096][ T5839] Bluetooth: hci4: Injecting HCI hardware error event
[ 1300.981542][ T5839] Bluetooth: hci4: hardware error 0x00
[ 1302.005972][   T10] pegasus 2-1:0.0: probe with driver pegasus failed with error -71
[ 1302.840955][   T10] usb 2-1: USB disconnect, device number 24
[ 1303.252697][ T5839] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[ 1303.289315][ T2034] loop5: detected capacity change from 0 to 512
[ 1303.508058][ T2041] netlink: 'syz.1.5574': attribute type 1 has an invalid length.
[ 1303.780489][ T2044] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5572'.
[ 1304.759510][ T2034] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1304.807107][ T2076] 9p filesystem being mounted at /324/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1304.821930][ T2034] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1305.255991][   T30] audit: type=1800 audit(6042230987.912:3009): pid=2088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.5571" name="file2" dev="loop5" ino=16 res=0 errno=0
[ 1305.648499][ T2041] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1306.463004][T31386] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1306.484131][   T30] audit: type=1800 audit(6042230989.132:3010): pid=2103 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5579" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1307.155348][ T2115] loop9: detected capacity change from 0 to 1024
[ 1307.749779][   T10] IPVS: starting estimator thread 0...
[ 1307.880456][ T2120] IPVS: using max 22 ests per chain, 52800 per kthread
[ 1308.310758][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1308.332245][ T2131] loop1: detected capacity change from 0 to 16
[ 1308.351200][ T2131] erofs (device loop1): mounted with root inode @ nid 36.
[ 1308.719415][ T2136] erofs (device loop1): corrupted dir block 8200 @ nid 36
[ 1308.728674][ T2136] erofs (device loop1): corrupted dir block 8200 @ nid 36
[ 1309.110100][ T2146] netlink: 20 bytes leftover after parsing attributes in process `syz.9.5588'.
[ 1310.581863][ T2153] netlink: 'syz.1.5591': attribute type 1 has an invalid length.
[ 1310.619863][ T2151] loop9: detected capacity change from 0 to 512
[ 1310.722103][ T2153] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1311.554565][   T30] audit: type=1800 audit(6042230994.225:3011): pid=2197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.5595" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1312.365664][ T2212] loop9: detected capacity change from 0 to 1024
[ 1313.750753][ T2227] 9p filesystem being mounted at /307/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1314.342076][ T2248] netlink: 'syz.2.5606': attribute type 8 has an invalid length.
[ 1314.574896][ T2252] loop9: detected capacity change from 0 to 512
[ 1315.376561][ T2262] netlink: 'syz.2.5610': attribute type 1 has an invalid length.
[ 1315.738255][ T2262] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1316.033011][ T2304] loop9: detected capacity change from 0 to 256
[ 1317.755601][T26146] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[ 1318.148234][T26146] usb 2-1: config 0 has no interfaces?
[ 1319.153712][ T6437] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1319.331261][ T2340] loop9: detected capacity change from 0 to 512
[ 1323.713403][T26146] usb 2-1: string descriptor 0 read error: -32
[ 1323.719811][T26146] usb 2-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b
[ 1323.764477][ T2392] loop5: detected capacity change from 0 to 1024
[ 1323.799754][T26146] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1324.080868][T26146] usb 2-1: config 0 descriptor??
[ 1324.602183][T26146] usb 2-1: can't set config #0, error -71
[ 1324.612012][T26146] usb 2-1: USB disconnect, device number 25
[ 1324.846661][ T2408] 9p filesystem being mounted at /439/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1325.211504][ T5891] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1325.401388][ T5891] usb 4-1: Using ep0 maxpacket: 32
[ 1325.409183][ T5891] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1325.455725][ T5891] usb 4-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1325.490604][ T5891] usb 4-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1325.530927][ T5891] usb 4-1: Product: syz
[ 1325.565139][ T5891] usb 4-1: Manufacturer: syz
[ 1325.601278][ T5891] usb 4-1: SerialNumber: syz
[ 1325.621784][ T5891] usb 4-1: config 0 descriptor??
[ 1325.659561][ T2421] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1326.801373][T26146] usb 4-1: USB disconnect, device number 13
[ 1327.028789][ T2469] loop1: detected capacity change from 0 to 512
[ 1327.113201][ T2469] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1327.242537][ T2469] ext4 filesystem being mounted at /433/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1327.914652][   T30] audit: type=1800 audit(6042231010.033:3012): pid=2487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5645" name="file2" dev="loop1" ino=16 res=0 errno=0
[ 1327.935220][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1328.698415][ T2502] loop5: detected capacity change from 0 to 1024
[ 1328.868824][T20253] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1329.388107][ T2513] netlink: 14 bytes leftover after parsing attributes in process `syz.2.5656'.
[ 1330.837662][ T2551] loop5: detected capacity change from 0 to 16
[ 1330.869320][ T2551] erofs (device loop5): mounted with root inode @ nid 36.
[ 1331.054075][ T2556] loop1: detected capacity change from 0 to 512
[ 1331.193373][ T2551] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1331.202396][ T2551] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1331.301951][ T2556] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1331.386214][ T2556] ext4 filesystem being mounted at /435/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1331.427589][   T30] audit: type=1800 audit(6042231014.105:3013): pid=2556 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.5665" name="file2" dev="loop1" ino=16 res=0 errno=0
[ 1332.964313][T20253] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1333.185197][ T2589] vxcan0: tx drop: invalid sa for name 0x0000000000000003
[ 1333.203731][ T2589] 9pnet_virtio: no channels available for device syz
[ 1333.967910][ T2598] loop5: detected capacity change from 0 to 16
[ 1334.137149][ T2598] erofs (device loop5): mounted with root inode @ nid 36.
[ 1334.230756][ T2598] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1334.240867][ T2598] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1334.287032][ T5891] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[ 1334.400632][ T2616] 9p filesystem being mounted at /437/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1334.510229][ T5891] usb 3-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1334.541194][ T5891] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[ 1334.597590][ T5891] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[ 1334.668408][ T5891] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[ 1334.746203][ T5891] usb 3-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[ 1335.417992][ T2635] loop9: detected capacity change from 0 to 16
[ 1335.622119][ T5891] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1335.658826][ T2635] erofs (device loop9): mounted with root inode @ nid 36.
[ 1335.690593][ T5891] usb 3-1: config 0 descriptor??
[ 1335.696931][ T2602] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1336.008689][ T2635] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1336.017725][ T2635] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1336.167815][ T2651] loop3: detected capacity change from 0 to 512
[ 1336.237396][ T2651] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1336.296520][ T2651] ext4 filesystem being mounted at /346/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1336.350687][ T5891] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[ 1336.382567][   T30] audit: type=1800 audit(6042231019.067:3014): pid=2651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5684" name="file2" dev="loop3" ino=16 res=0 errno=0
[ 1336.384731][ T5891] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[ 1336.471785][ T5891] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[ 1336.535279][ T5891] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[ 1336.585637][ T5891] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[ 1336.624028][ T5891] plantronics 0003:047F:FFFF.000E: unknown main item tag 0x0
[ 1336.669648][ T5891] plantronics 0003:047F:FFFF.000E: No inputs registered, leaving
[ 1337.804044][ T5891] plantronics 0003:047F:FFFF.000E: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.2-1/input0
[ 1338.071459][T22313] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1338.184732][ T2688] loop5: detected capacity change from 0 to 16
[ 1338.214695][ T2688] erofs (device loop5): mounted with root inode @ nid 36.
[ 1338.235619][ T5891] IPVS: starting estimator thread 0...
[ 1338.262429][ T2688] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1338.271986][ T2688] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1338.345034][ T2697] IPVS: using max 21 ests per chain, 50400 per kthread
[ 1338.901823][ T5891] usb 3-1: USB disconnect, device number 8
[ 1339.120632][ T2729] netlink: 'syz.5.5692': attribute type 23 has an invalid length.
[ 1339.905989][ T2748] loop9: detected capacity change from 0 to 16
[ 1339.937757][ T2748] erofs (device loop9): mounted with root inode @ nid 36.
[ 1340.076286][ T2748] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1340.083615][ T2750] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1340.344192][ T2759] loop9: detected capacity change from 0 to 512
[ 1341.727730][ T2769] input: syz1 as /devices/virtual/input/input9
[ 1345.158556][ T2798] netlink: 'syz.1.5707': attribute type 1 has an invalid length.
[ 1345.566614][ T2798] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1345.887619][ T2808] vlan2: entered allmulticast mode
[ 1345.931647][ T2808] netdevsim netdevsim1 netdevsim0: entered allmulticast mode
[ 1348.925760][ T2880] loop2: detected capacity change from 0 to 512
[ 1349.088529][ T2887] netlink: 20 bytes leftover after parsing attributes in process `syz.9.5713'.
[ 1349.578312][ T2880] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1349.673487][ T2880] ext4 filesystem being mounted at /447/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1349.957305][   T30] audit: type=1800 audit(6042231032.634:3015): pid=2889 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5714" name="file2" dev="loop2" ino=16 res=0 errno=0
[ 1350.638064][T20874] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1350.817556][ T7118] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1351.328313][ T5839] Bluetooth: hci1: command 0x0406 tx timeout
[ 1351.673012][ T2899] could not allocate digest TFM handle cbcmac-aes-neon
[ 1352.233600][ T2917] loop9: detected capacity change from 0 to 16
[ 1352.289689][ T2917] erofs (device loop9): mounted with root inode @ nid 36.
[ 1353.368079][ T2923] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1353.767480][ T2923] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1354.157541][ T2925] netlink: 'syz.5.5723': attribute type 1 has an invalid length.
[ 1354.418667][ T2925] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1354.486141][ T2927] vlan2: entered allmulticast mode
[ 1354.585382][ T2927] netdevsim netdevsim5 netdevsim0: entered allmulticast mode
[ 1354.682926][ T2966] sp0: Synchronizing with TNC
[ 1356.984846][ T3007] veth1_to_team: entered promiscuous mode
[ 1357.038372][ T3007] veth0: entered promiscuous mode
[ 1357.394405][ T5839] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1357.404444][ T5839] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1357.412431][ T5839] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1357.421042][ T3015] loop3: detected capacity change from 0 to 16
[ 1357.421818][ T5839] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1357.479818][ T3015] erofs (device loop3): mounted with root inode @ nid 36.
[ 1357.538147][ T5839] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1358.914675][ T3026] erofs (device loop3): corrupted dir block 8200 @ nid 36
[ 1359.016935][ T3028] erofs (device loop3): corrupted dir block 8200 @ nid 36
[ 1359.874341][T16145] Bluetooth: hci3: command tx timeout
[ 1360.350579][ T3097] netlink: 20 bytes leftover after parsing attributes in process `syz.3.5741'.
[ 1361.596305][ T3011] chnl_net:caif_netlink_parms(): no params data found
[ 1361.943160][T16145] Bluetooth: hci3: command tx timeout
[ 1362.150330][ T3185] fuse: Bad value for 'fd'
[ 1362.408205][ T3011] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1362.430264][ T3011] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1362.448955][ T3011] bridge_slave_0: entered allmulticast mode
[ 1362.475891][ T3011] bridge_slave_0: entered promiscuous mode
[ 1362.508655][ T3011] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1362.528476][ T3011] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1362.561458][ T3011] bridge_slave_1: entered allmulticast mode
[ 1362.593340][ T3011] bridge_slave_1: entered promiscuous mode
[ 1362.987504][ T3011] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1363.049260][ T3011] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1363.390621][ T3011] team0: Port device team_slave_0 added
[ 1363.584933][ T2752] Set syz1 is full, maxelem 65536 reached
[ 1363.635176][ T3011] team0: Port device team_slave_1 added
[ 1363.645276][ T3025] syz.5.5736: vmalloc error: size 6291456, failed to allocated page array size 12288, mode:0x400dc2(GFP_KERNEL_ACCOUNT|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz5,mems_allowed=0-1
[ 1363.726977][ T3025] CPU: 0 UID: 0 PID: 3025 Comm: syz.5.5736 Not tainted 6.15.0-rc6-syzkaller-00052-g9f35e33144ae #0 PREEMPT(full) 
[ 1363.727023][ T3025] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1363.727040][ T3025] Call Trace:
[ 1363.727050][ T3025]  <TASK>
[ 1363.727061][ T3025]  dump_stack_lvl+0x16c/0x1f0
[ 1363.727109][ T3025]  warn_alloc+0x248/0x3a0
[ 1363.727154][ T3025]  ? __pfx_warn_alloc+0x10/0x10
[ 1363.727209][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.727244][ T3025]  ? __get_vm_area_node+0x1dc/0x330
[ 1363.727277][ T3025]  ? __get_vm_area_node+0x208/0x330
[ 1363.727319][ T3025]  __vmalloc_node_range_noprof+0x1110/0x1540
[ 1363.727356][ T3025]  ? nfnetlink_rcv_msg+0x9fc/0x1200
[ 1363.727397][ T3025]  ? netlink_rcv_skb+0x16d/0x440
[ 1363.727447][ T3025]  ? hash_ipportip_create+0x3ec/0x1250
[ 1363.727498][ T3025]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1363.727538][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.727573][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.727609][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.727649][ T3025]  __kvmalloc_node_noprof+0x2ff/0x600
[ 1363.727690][ T3025]  ? hash_ipportip_create+0x3ec/0x1250
[ 1363.727733][ T3025]  ? hash_ipportip_create+0x3ec/0x1250
[ 1363.727783][ T3025]  ? hash_ipportip_create+0x3ec/0x1250
[ 1363.727823][ T3025]  hash_ipportip_create+0x3ec/0x1250
[ 1363.727866][ T3025]  ? __nla_parse+0x13/0x60
[ 1363.727896][ T3025]  ? __pfx_hash_ipportip_create+0x10/0x10
[ 1363.727941][ T3025]  ip_set_create+0x7e4/0x14d0
[ 1363.727981][ T3025]  ? __pfx_ip_set_create+0x10/0x10
[ 1363.728060][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.728107][ T3025]  ? find_held_lock+0x2b/0x80
[ 1363.728158][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.728213][ T3025]  nfnetlink_rcv_msg+0x9fc/0x1200
[ 1363.728290][ T3025]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1363.728345][ T3025]  ? kmem_cache_free+0x2d4/0x4d0
[ 1363.728472][ T3025]  netlink_rcv_skb+0x16d/0x440
[ 1363.728525][ T3025]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[ 1363.728587][ T3025]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1363.728638][ T3025]  ? __pfx_aa_get_newest_label+0x10/0x10
[ 1363.728701][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.728746][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.728791][ T3025]  ? security_capable+0x7e/0x260
[ 1363.728831][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.728876][ T3025]  ? ns_capable+0xd7/0x110
[ 1363.728927][ T3025]  nfnetlink_rcv+0x1b3/0x430
[ 1363.728984][ T3025]  ? __pfx_nfnetlink_rcv+0x10/0x10
[ 1363.729044][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.729089][ T3025]  ? netlink_deliver_tap+0x1ae/0xd30
[ 1363.729150][ T3025]  netlink_unicast+0x53d/0x7f0
[ 1363.729211][ T3025]  ? __pfx_netlink_unicast+0x10/0x10
[ 1363.729279][ T3025]  netlink_sendmsg+0x8d1/0xdd0
[ 1363.729341][ T3025]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1363.729392][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.729459][ T3025]  ____sys_sendmsg+0xa98/0xc70
[ 1363.729520][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.729565][ T3025]  ? copy_msghdr_from_user+0x10a/0x160
[ 1363.729612][ T3025]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1363.729678][ T3025]  ? _raw_spin_unlock_irqrestore+0x3b/0x80
[ 1363.729733][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.729792][ T3025]  ___sys_sendmsg+0x134/0x1d0
[ 1363.729842][ T3025]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1363.729914][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.729997][ T3025]  __sys_sendmsg+0x16d/0x220
[ 1363.730049][ T3025]  ? __pfx___sys_sendmsg+0x10/0x10
[ 1363.730094][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.730140][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.730206][ T3025]  ? rcu_is_watching+0x12/0xc0
[ 1363.730254][ T3025]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1363.730313][ T3025]  do_syscall_64+0xcd/0x260
[ 1363.730379][ T3025]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1363.730418][ T3025] RIP: 0033:0x7f4025b8e969
[ 1363.730448][ T3025] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1363.730486][ T3025] RSP: 002b:00007f4023581038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1363.730522][ T3025] RAX: ffffffffffffffda RBX: 00007f4025db6240 RCX: 00007f4025b8e969
[ 1363.730547][ T3025] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 000000000000000c
[ 1363.730572][ T3025] RBP: 00007f4025c10ab1 R08: 0000000000000000 R09: 0000000000000000
[ 1363.730596][ T3025] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1363.730620][ T3025] R13: 0000000000000000 R14: 00007f4025db6240 R15: 00007fff110845f8
[ 1363.730671][ T3025]  </TASK>
[ 1364.180424][ T3025] Mem-Info:
[ 1364.183773][ T3025] active_anon:8679 inactive_anon:0 isolated_anon:0
[ 1364.183773][ T3025]  active_file:15568 inactive_file:40417 isolated_file:0
[ 1364.183773][ T3025]  unevictable:768 dirty:209 writeback:0
[ 1364.183773][ T3025]  slab_reclaimable:11545 slab_unreclaimable:110793
[ 1364.183773][ T3025]  mapped:45586 shmem:5843 pagetables:816
[ 1364.183773][ T3025]  sec_pagetables:0 bounce:0
[ 1364.183773][ T3025]  kernel_misc_reclaimable:0
[ 1364.183773][ T3025]  free:1269905 free_pcp:2553 free_cma:0
[ 1364.231430][ T3025] Node 0 active_anon:34716kB inactive_anon:0kB active_file:62272kB inactive_file:161472kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:182344kB dirty:832kB writeback:0kB shmem:21836kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11588kB pagetables:3264kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1364.265210][ T3025] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1364.296541][ T3025] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1364.323663][ T3025] lowmem_reserve[]: 0 2484 2486 2486 2486
[ 1364.331899][ T3025] Node 0 DMA32 free:1154660kB boost:0kB min:34108kB low:42632kB high:51156kB reserved_highatomic:0KB active_anon:34668kB inactive_anon:0kB active_file:62272kB inactive_file:159632kB unevictable:1536kB writepending:828kB present:3129332kB managed:2544068kB mlocked:0kB bounce:0kB free_pcp:6032kB local_pcp:952kB free_cma:0kB
[ 1364.362874][ T3025] lowmem_reserve[]: 0 0 1 1 1
[ 1364.367631][ T3025] Node 0 Normal free:4kB boost:0kB min:24kB low:28kB high:32kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1840kB unevictable:0kB writepending:4kB present:1048580kB managed:1900kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[ 1364.394826][ T3025] lowmem_reserve[]: 0 0 0 0 0
[ 1364.399577][ T3025] Node 1 Normal free:3909596kB boost:0kB min:55768kB low:69708kB high:83648kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:196kB unevictable:1536kB writepending:4kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:4124kB local_pcp:4124kB free_cma:0kB
[ 1364.431609][ T3025] lowmem_reserve[]: 0 0 0 0 0
[ 1364.436425][ T3025] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1364.449199][ T3025] Node 0 DMA32: 18*4kB (M) 613*8kB (ME) 366*16kB (UME) 357*32kB (UME) 711*64kB (UME) 493*128kB (UME) 445*256kB (UM) 261*512kB (UM) 132*1024kB (UM) 25*2048kB (UME) 144*4096kB (UM) = 1154608kB
[ 1364.468461][ T3025] Node 0 Normal: 1*4kB (M) 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 4kB
[ 1364.480453][ T3025] Node 1 Normal: 213*4kB (UME) 67*8kB (UME) 43*16kB (UME) 178*32kB (UME) 84*64kB (UME) 35*128kB (UME) 17*256kB (UME) 9*512kB (UME) 2*1024kB (UM) 3*2048kB (UME) 946*4096kB (UM) = 3909596kB
[ 1364.499289][ T3025] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1364.508903][ T3025] Node 0 hugepages_total=5 hugepages_free=0 hugepages_surp=1 hugepages_size=2048kB
[ 1364.518246][ T3025] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1364.527817][ T3025] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB
[ 1364.539555][ T3025] 61749 total pagecache pages
[ 1364.544276][ T3025] 0 pages in swap cache
[ 1364.548446][ T3025] Free swap  = 124996kB
[ 1364.552652][ T3025] Total swap = 124996kB
[ 1364.556804][ T3025] 2097051 pages RAM
[ 1364.560603][ T3025] 0 pages HighMem/MovableOnly
[ 1364.565465][ T3025] 428928 pages reserved
[ 1364.569615][ T3025] 0 pages cma reserved
[ 1364.683870][ T3298] loop9: detected capacity change from 0 to 16
[ 1364.691908][T16145] Bluetooth: hci3: command tx timeout
[ 1364.698087][ T3298] erofs (device loop9): mounted with root inode @ nid 36.
[ 1366.619020][ T3310] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1366.626526][ T3311] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1366.810756][ T2006] Bluetooth: hci3: command tx timeout
[ 1367.510764][ T3025] veth0: left promiscuous mode
[ 1367.531026][ T3025] veth1_to_team: left promiscuous mode
[ 1367.567469][ T3011] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1367.578121][ T3011] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1367.680351][ T3011] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1367.865571][ T3011] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1368.081430][ T3011] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1368.107548][ T3011] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1368.550332][ T3352] fuse: Bad value for 'fd'
[ 1369.023229][ T3011] hsr_slave_0: entered promiscuous mode
[ 1369.038488][ T3011] hsr_slave_1: entered promiscuous mode
[ 1369.055336][ T3011] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1369.067586][ T3011] Cannot create hsr debugfs directory
[ 1369.084057][   T49] usb 10-1: new high-speed USB device number 12 using dummy_hcd
[ 1369.259511][   T49] usb 10-1: Using ep0 maxpacket: 8
[ 1369.271886][   T49] usb 10-1: config 0 has an invalid interface number: 55 but max is 0
[ 1369.325161][   T49] usb 10-1: config 0 has no interface number 0
[ 1369.353433][   T49] usb 10-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1369.400905][   T49] usb 10-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1369.416856][T21145] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1369.502800][   T49] usb 10-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1369.545013][   T49] usb 10-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1369.608575][   T49] usb 10-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1369.654489][   T49] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1369.707732][   T49] usb 10-1: config 0 descriptor??
[ 1369.720158][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1370.068398][   T49] ldusb 10-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1370.081381][T21145] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1370.651080][   T49] usb 10-1: USB disconnect, device number 12
[ 1370.695930][   T49] ldusb 10-1:0.55: LD USB Device #0 now disconnected
[ 1371.082761][T21145] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1371.346134][T21145] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1371.606373][ T3498] binder: 3495:3498 ioctl 4018620d 0 returned -22
[ 1371.672945][ T3498] binder: 3495:3498 ioctl c0306201 2000000003c0 returned -14
[ 1372.392802][T21145] bridge_slave_1: left allmulticast mode
[ 1372.547888][ T3541] loop1: detected capacity change from 0 to 256
[ 1372.665828][ T3541] vfat filesystem being mounted at /454/file1 supports timestamps until 2107-12-31 (0x10390cdaa)
[ 1373.047552][T21145] bridge_slave_1: left promiscuous mode
[ 1373.053606][T21145] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1373.288902][T21145] bridge_slave_0: left allmulticast mode
[ 1373.312787][T21145] bridge_slave_0: left promiscuous mode
[ 1373.326532][T21145] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1375.779629][T21145] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1375.800568][T21145] bond_slave_0: left promiscuous mode
[ 1375.809690][T21145] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1375.827283][T21145] bond_slave_1: left promiscuous mode
[ 1375.835217][T21145] $Hÿ (unregistering): Released all slaves
[ 1376.159545][ T3586] binder: 3585:3586 ioctl 4018620d 0 returned -22
[ 1376.216805][ T3586] binder: 3585:3586 ioctl c0306201 2000000003c0 returned -14
[ 1376.872112][ T3613] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5789'.
[ 1378.440338][ T3613] macvtap1: entered promiscuous mode
[ 1378.446011][ T3613] dummy0: entered promiscuous mode
[ 1378.452853][ T3613] macvtap1: entered allmulticast mode
[ 1378.458884][ T3613] dummy0: entered allmulticast mode
[ 1378.736934][ T3618] dummy0: left allmulticast mode
[ 1378.905051][ T3618] dummy0: left promiscuous mode
[ 1380.028343][T21145] hsr_slave_0: left promiscuous mode
[ 1380.050303][T21145] hsr_slave_1: left promiscuous mode
[ 1380.064214][T21145] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1380.071936][T21145] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1380.131975][T21145] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1380.144139][T21145] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1380.330077][T21145] veth1_macvtap: left promiscuous mode
[ 1380.352540][T21145] veth0_macvtap: left promiscuous mode
[ 1380.358540][T21145] veth1_vlan: left promiscuous mode
[ 1380.364151][T21145] veth0_vlan: left promiscuous mode
[ 1380.614753][ T3659] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1381.270724][ T3663] binder: BINDER_SET_CONTEXT_MGR already set
[ 1381.282160][ T3663] binder: 3662:3663 ioctl 4018620d 200000000040 returned -16
[ 1384.036330][T21145] team0 (unregistering): Port device team_slave_1 removed
[ 1384.169273][T21145] team0 (unregistering): Port device team_slave_0 removed
[ 1384.393390][   T82] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1385.410475][ T3706] binder: BINDER_SET_CONTEXT_MGR already set
[ 1385.429176][ T3706] binder: 3705:3706 ioctl 4018620d 200000000040 returned -16
[ 1385.683851][ T3710] input: syz1 as /devices/virtual/input/input10
[ 1386.033991][ T3667] batadv_slave_0: entered promiscuous mode
[ 1386.062956][ T3707] lo speed is unknown, defaulting to 1000
[ 1386.186490][ T3667] batadv_slave_0: left promiscuous mode
[ 1386.218704][ T3707] lo speed is unknown, defaulting to 1000
[ 1386.252934][ T3707] lo speed is unknown, defaulting to 1000
[ 1386.318182][ T3011] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1386.703992][ T3707] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1386.754931][ T3011] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1386.875717][ T3739] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1387.577738][ T3011] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1387.930551][ T3707] lo speed is unknown, defaulting to 1000
[ 1387.938511][ T3707] lo speed is unknown, defaulting to 1000
[ 1387.946477][ T3707] lo speed is unknown, defaulting to 1000
[ 1387.954546][ T3707] lo speed is unknown, defaulting to 1000
[ 1387.963228][ T3707] lo speed is unknown, defaulting to 1000
[ 1387.972404][ T3707] lo speed is unknown, defaulting to 1000
[ 1387.980187][ T3011] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1388.834194][ T3707] lo speed is unknown, defaulting to 1000
[ 1389.210121][ T3763] binder: BINDER_SET_CONTEXT_MGR already set
[ 1389.216197][ T3763] binder: 3762:3763 ioctl 4018620d 200000000040 returned -16
[ 1389.220923][ T3011] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1389.316988][ T3011] 8021q: adding VLAN 0 to HW filter on device team0
[ 1389.389098][ T6439] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1389.396353][ T6439] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1389.503288][ T7118] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1389.510587][ T7118] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1389.533701][ T3767] netlink: 'syz.9.5830': attribute type 1 has an invalid length.
[ 1389.569714][ T3767] netlink: 224 bytes leftover after parsing attributes in process `syz.9.5830'.
[ 1389.581846][   T30] audit: type=1800 audit(6042231072.284:3016): pid=3773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.5832" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1390.342811][ T3791] batadv_slave_0: entered promiscuous mode
[ 1390.399085][ T3788] batadv_slave_0: left promiscuous mode
[ 1391.267266][   T30] audit: type=1400 audit(6042231073.854:3017): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=3801 comm="syz.5.5837"
[ 1391.422025][ T3812] ceph: No mds server is up or the cluster is laggy
[ 1391.449990][ T5988] libceph: connect (1)[c::]:6789 error -101
[ 1391.647677][ T3810] tmpfs: Bad value for 'mpol'
[ 1391.653120][ T5988] libceph: mon0 (1)[c::]:6789 connect error
[ 1392.118332][ T3829] binder: 3827:3829 ioctl c0306201 0 returned -14
[ 1392.137378][ T3829] binder: 3827:3829 ioctl c0306201 2000000003c0 returned -14
[ 1392.143351][ T3011] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1392.549710][   T30] audit: type=1800 audit(6042231075.265:3018): pid=3842 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5846" name="SYSV00000000" dev="hugetlbfs" ino=2 res=0 errno=0
[ 1392.685632][ T3848] batadv_slave_0: entered promiscuous mode
[ 1392.772057][ T3847] batadv_slave_0: left promiscuous mode
[ 1394.559009][ T3011] veth0_vlan: entered promiscuous mode
[ 1394.583285][ T3011] veth1_vlan: entered promiscuous mode
[ 1394.765896][ T3011] veth0_macvtap: entered promiscuous mode
[ 1394.873640][ T3011] veth1_macvtap: entered promiscuous mode
[ 1394.914464][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1394.935610][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1394.986636][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1395.055555][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1395.112173][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1395.148778][ T3868] tmpfs: Bad value for 'mpol'
[ 1395.180615][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1396.039053][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1396.102463][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1396.146300][ T3011] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1396.182253][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1396.223736][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1396.241302][ T3881] binder: 3880:3881 ioctl c0306201 0 returned -14
[ 1396.250876][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1396.266789][ T3881] binder: 3880:3881 ioctl c0306201 2000000003c0 returned -14
[ 1396.277308][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1396.295998][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1396.323678][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1396.350953][ T3011] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1396.386112][ T3011] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1396.414982][ T3011] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1396.484290][ T3011] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.514759][ T3011] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.532837][ T3011] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.541854][ T3011] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.687537][   T30] audit: type=1800 audit(6042231079.397:3019): pid=3887 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5861" name="SYSV00000000" dev="hugetlbfs" ino=3 res=0 errno=0
[ 1396.857395][   T37] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1396.904957][   T37] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1397.082674][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1397.108522][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1397.340470][ T3913] tmpfs: Bad value for 'mpol'
[ 1397.636945][ T3920] binder: 3918:3920 ioctl c0306201 0 returned -14
[ 1397.670009][ T3920] binder: 3918:3920 ioctl c0306201 2000000003c0 returned -14
[ 1398.233302][   T30] audit: type=1800 audit(6042231080.948:3020): pid=3938 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.5878" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1398.314984][ T5919] usb 6-1: new full-speed USB device number 4 using dummy_hcd
[ 1398.617265][ T5919] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1398.635428][ T5919] usb 6-1: config 0 has no interfaces?
[ 1398.659000][ T5919] usb 6-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1398.679187][ T5919] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1398.727742][ T5919] usb 6-1: config 0 descriptor??
[ 1398.767130][ T3958] binder: 3957:3958 ioctl c0306201 2000000003c0 returned -14
[ 1399.638736][ T3976] fuse: Bad value for 'fd'
[ 1400.114019][   T30] audit: type=1800 audit(6042231082.829:3021): pid=3989 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.5895" name="SYSV00000000" dev="hugetlbfs" ino=1 res=0 errno=0
[ 1401.116587][ T4002] binder: 4001:4002 ioctl c0306201 2000000003c0 returned -14
[ 1401.167339][   T49] usb 6-1: USB disconnect, device number 4
[ 1401.204635][ T4006] binder_alloc: 4004: binder_alloc_buf, no vma
[ 1401.424197][ T4021] fuse: Bad value for 'fd'
[ 1401.431860][ T4018] netlink: 'syz.5.5902': attribute type 1 has an invalid length.
[ 1401.529077][ T4025] vlan2: entered allmulticast mode
[ 1401.652489][ T4034] netlink: 16 bytes leftover after parsing attributes in process `syz.2.5909'.
[ 1402.364802][   T30] audit: type=1800 audit(6042231085.080:3022): pid=4047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.7.5910" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[ 1402.613190][ T4060] netlink: 'syz.5.5914': attribute type 8 has an invalid length.
[ 1402.894400][T24259] usb 10-1: new full-speed USB device number 13 using dummy_hcd
[ 1402.936634][ T4070] loop7: detected capacity change from 0 to 256
[ 1403.034299][ T4070] FAT-fs (loop7): Directory bread(block 64) failed
[ 1403.071091][ T4070] FAT-fs (loop7): Directory bread(block 65) failed
[ 1403.096862][ T4070] FAT-fs (loop7): Directory bread(block 66) failed
[ 1403.125760][T24259] usb 10-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1403.142509][ T4070] FAT-fs (loop7): Directory bread(block 67) failed
[ 1403.179155][T24259] usb 10-1: config 0 has no interfaces?
[ 1403.199873][ T4070] FAT-fs (loop7): Directory bread(block 68) failed
[ 1403.207465][T24259] usb 10-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1403.237694][ T4070] FAT-fs (loop7): Directory bread(block 69) failed
[ 1403.275058][T24259] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1403.296039][ T4070] FAT-fs (loop7): Directory bread(block 70) failed
[ 1403.334261][ T4070] FAT-fs (loop7): Directory bread(block 71) failed
[ 1403.396959][T24259] usb 10-1: config 0 descriptor??
[ 1403.403568][ T4070] FAT-fs (loop7): Directory bread(block 72) failed
[ 1403.410149][ T4070] FAT-fs (loop7): Directory bread(block 73) failed
[ 1403.531177][ T4070] vfat filesystem being mounted at /8/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1404.485275][ T4089] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5918'.
[ 1404.948384][ T4098] fuse: Bad value for 'fd'
[ 1405.840134][T24259] usb 10-1: USB disconnect, device number 13
[ 1406.313878][   T30] audit: type=1800 audit(6042231089.032:3023): pid=4124 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.9.5929" name="SYSV798dd838" dev="tmpfs" ino=0 res=0 errno=0
[ 1406.631284][ T4127] netlink: 'syz.7.5928': attribute type 1 has an invalid length.
[ 1406.846753][ T4127] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1406.864562][ T4131] vlan2: entered allmulticast mode
[ 1406.869804][ T4131] netdevsim netdevsim7 netdevsim0: entered allmulticast mode
[ 1408.180826][ T4178] netlink: 'syz.1.5932': attribute type 8 has an invalid length.
[ 1409.661367][ T4182] loop2: detected capacity change from 0 to 256
[ 1409.766429][ T4182] FAT-fs (loop2): Directory bread(block 64) failed
[ 1409.812683][ T4182] FAT-fs (loop2): Directory bread(block 65) failed
[ 1409.836671][ T4182] FAT-fs (loop2): Directory bread(block 66) failed
[ 1409.863483][ T4182] FAT-fs (loop2): Directory bread(block 67) failed
[ 1410.129146][ T4182] FAT-fs (loop2): Directory bread(block 68) failed
[ 1410.135753][ T4182] FAT-fs (loop2): Directory bread(block 69) failed
[ 1410.143117][ T4182] FAT-fs (loop2): Directory bread(block 70) failed
[ 1410.149779][ T4191] block nbd0: Unsupported socket: shutdown callout must be supported.
[ 1410.158596][ T4182] FAT-fs (loop2): Directory bread(block 71) failed
[ 1410.168073][ T4182] FAT-fs (loop2): Directory bread(block 72) failed
[ 1410.177383][ T4182] FAT-fs (loop2): Directory bread(block 73) failed
[ 1411.105447][ T4182] vfat filesystem being mounted at /488/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1411.245551][ T4195] fuse: Bad value for 'fd'
[ 1412.673918][ T4213] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5943'.
[ 1413.680443][ T4217] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1415.655521][ T7118] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1416.719731][ T4265] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[ 1417.379557][ T4273] 9pnet_fd: Insufficient options for proto=fd
[ 1417.649555][ T4277] binder: BINDER_SET_CONTEXT_MGR already set
[ 1417.656263][ T4277] binder: 4276:4277 ioctl 4018620d 200000000040 returned -16
[ 1418.639617][ T4286] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5967'.
[ 1419.444269][ T4299] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1421.060794][ T4317] binder: BINDER_SET_CONTEXT_MGR already set
[ 1421.090509][ T4317] binder: 4316:4317 ioctl 4018620d 200000000040 returned -16
[ 1421.222581][ T4321] netlink: 72 bytes leftover after parsing attributes in process `syz.2.5978'.
[ 1421.895439][   T30] audit: type=1326 audit(6042231104.620:3024): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1421.988275][   T30] audit: type=1326 audit(6042231104.620:3025): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.011866][   T30] audit: type=1326 audit(6042231104.620:3026): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.035070][   T30] audit: type=1326 audit(6042231104.620:3027): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.058301][   T30] audit: type=1326 audit(6042231104.620:3028): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.081126][   T30] audit: type=1326 audit(6042231104.620:3029): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.136527][   T30] audit: type=1326 audit(6042231104.620:3030): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.233034][   T30] audit: type=1326 audit(6042231104.620:3031): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.255991][   T30] audit: type=1326 audit(6042231104.620:3032): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1422.293311][   T30] audit: type=1326 audit(6042231104.620:3033): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4319 comm="syz.2.5978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5b25b8e969 code=0x7fc00000
[ 1424.164738][ T4348] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(3)
[ 1424.171943][ T4348] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[ 1424.213487][ T4348] vhci_hcd vhci_hcd.0: Device attached
[ 1424.254442][ T4355] vhci_hcd: connection closed
[ 1424.269325][ T6437] vhci_hcd: stop threads
[ 1424.300956][ T6437] vhci_hcd: release socket
[ 1424.324706][ T6437] vhci_hcd: disconnect device
[ 1424.372646][ T5919] vhci_hcd: vhci_device speed not set
[ 1425.259712][ T4381] netlink: 'syz.2.5997': attribute type 8 has an invalid length.
[ 1425.365659][ T4385] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6000'.
[ 1425.375681][ T4385] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6000'.
[ 1425.408333][ T4387] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan0, syncid = 1, id = 0
[ 1427.021282][ T4422] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1428.125079][ T4440] netlink: 'syz.1.6017': attribute type 8 has an invalid length.
[ 1428.706015][ T4456] input: syz1 as /devices/virtual/input/input12
[ 1430.424780][ T5891] usb 8-1: new full-speed USB device number 12 using dummy_hcd
[ 1431.184577][ T5891] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1431.251954][ T5891] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1431.319073][ T5891] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1431.361246][ T5891] usb 8-1: config 0 descriptor??
[ 1433.480142][ T4539] netlink: 'syz.5.6039': attribute type 1 has an invalid length.
[ 1433.520497][T24259] usb 8-1: USB disconnect, device number 12
[ 1433.753581][ T4539] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1433.839246][ T4586] input: syz1 as /devices/virtual/input/input13
[ 1434.493566][ T4559] vlan2: entered allmulticast mode
[ 1434.586661][ T4559] bond2: (slave vlan2): making interface the new active one
[ 1434.648587][ T4559] bond2: (slave vlan2): Enslaving as an active interface with an up link
[ 1435.718609][ T4627] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1438.091113][ T4640] netlink: 'syz.9.6054': attribute type 8 has an invalid length.
[ 1438.175320][T21188] usb 2-1: new high-speed USB device number 26 using dummy_hcd
[ 1438.325684][   T49] usb 4-1: new full-speed USB device number 14 using dummy_hcd
[ 1438.337661][T21188] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1438.373877][T21188] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1438.404950][T21188] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1438.417575][T21188] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1438.450111][ T4635] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1438.467547][T21188] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[ 1438.765277][   T49] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1438.805379][ T4667] input: syz1 as /devices/virtual/input/input14
[ 1438.919057][   T49] usb 4-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1439.307119][   T49] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1439.436002][   T49] usb 4-1: config 0 descriptor??
[ 1439.469915][ T5919] usb 2-1: USB disconnect, device number 26
[ 1439.678491][ T4684] netlink: 'syz.5.6061': attribute type 1 has an invalid length.
[ 1439.744118][ T4684] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1441.255832][ T5988] IPVS: starting estimator thread 0...
[ 1441.443840][ T4752] IPVS: using max 20 ests per chain, 48000 per kthread
[ 1442.052514][ T4762] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6070'.
[ 1442.312176][   T49] usb 4-1: USB disconnect, device number 14
[ 1442.668115][ T4777] qrtr: Invalid version 0
[ 1442.811112][ T4784] netlink: 'syz.9.6075': attribute type 8 has an invalid length.
[ 1443.005185][ T4783] Invalid ELF header magic: != ELF
[ 1443.099297][ T4778] ceph: No mds server is up or the cluster is laggy
[ 1444.348811][ T4795] binder: BINDER_SET_CONTEXT_MGR already set
[ 1444.416357][ T4795] binder: 4793:4795 ioctl 4018620d 200000000040 returned -16
[ 1444.813512][ T4803] netlink: 'syz.9.6080': attribute type 1 has an invalid length.
[ 1445.999372][ T4803] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1446.051210][T21188] IPVS: starting estimator thread 0...
[ 1446.450639][ T4852] IPVS: using max 22 ests per chain, 52800 per kthread
[ 1447.116163][ T4855] macsec0: entered promiscuous mode
[ 1447.121810][ T4855] macsec0: entered allmulticast mode
[ 1447.127896][ T4855] veth1_macvtap: entered allmulticast mode
[ 1447.260851][T15278] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1447.400511][T21188] usb 8-1: new full-speed USB device number 13 using dummy_hcd
[ 1447.582858][T21188] usb 8-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[ 1447.598945][T21188] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1447.647027][T21188] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1447.684096][T21188] usb 8-1: config 0 descriptor??
[ 1449.577007][ T4900] binder: BINDER_SET_CONTEXT_MGR already set
[ 1449.614791][ T4890] netlink: 'syz.1.6092': attribute type 8 has an invalid length.
[ 1449.637036][ T4900] binder: 4894:4900 ioctl 4018620d 200000000040 returned -16
[ 1449.923693][T14149] usb 8-1: USB disconnect, device number 13
[ 1450.403890][ T4922] netlink: 4 bytes leftover after parsing attributes in process `syz.9.6096'.
[ 1451.245081][ T4925] overlayfs: failed to resolve './file0': -2
[ 1451.698516][T16145] Bluetooth: hci4: command 0x1003 tx timeout
[ 1451.728318][ T2006] Bluetooth: hci4: Opcode 0x1003 failed: -110
[ 1452.999578][ T4937] loop2: detected capacity change from 0 to 256
[ 1453.159914][ T4937] FAT-fs (loop2): Directory bread(block 64) failed
[ 1453.225857][ T4937] FAT-fs (loop2): Directory bread(block 65) failed
[ 1453.258135][ T4947] loop9: detected capacity change from 0 to 16
[ 1453.267599][ T4937] FAT-fs (loop2): Directory bread(block 66) failed
[ 1453.303113][ T4937] FAT-fs (loop2): Directory bread(block 67) failed
[ 1453.310611][ T4937] FAT-fs (loop2): Directory bread(block 68) failed
[ 1453.317969][ T4937] FAT-fs (loop2): Directory bread(block 69) failed
[ 1453.325370][ T4947] erofs (device loop9): mounted with root inode @ nid 36.
[ 1453.333493][ T4937] FAT-fs (loop2): Directory bread(block 70) failed
[ 1453.344628][ T4937] FAT-fs (loop2): Directory bread(block 71) failed
[ 1453.352960][ T4937] FAT-fs (loop2): Directory bread(block 72) failed
[ 1453.363051][ T4937] FAT-fs (loop2): Directory bread(block 73) failed
[ 1453.420276][ T4937] vfat filesystem being mounted at /515/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1453.743761][ T4961] binder: BINDER_SET_CONTEXT_MGR already set
[ 1453.764122][ T4961] binder: 4956:4961 ioctl 4018620d 200000000040 returned -16
[ 1455.285449][ T4979] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1455.434446][ T4980] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1456.207143][ T4988] loop3: detected capacity change from 0 to 1024
[ 1456.658492][ T5005] loop7: detected capacity change from 0 to 16
[ 1456.692273][ T5005] erofs (device loop7): mounted with root inode @ nid 36.
[ 1456.826049][ T5008] netlink: 16 bytes leftover after parsing attributes in process `syz.9.6120'.
[ 1458.738496][ T5039] erofs (device loop7): corrupted dir block 8200 @ nid 36
[ 1458.755204][ T5040] erofs (device loop7): corrupted dir block 8200 @ nid 36
[ 1459.146498][ T5044] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1459.298399][ T5050] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1459.339232][ T5053] 9p filesystem being mounted at /419/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1459.448705][ T5056] loop5: detected capacity change from 0 to 16
[ 1459.480982][ T5056] erofs (device loop5): mounted with root inode @ nid 36.
[ 1462.313876][ T5083] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1462.482286][ T5083] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1464.267395][ T5100] loop2: detected capacity change from 0 to 1024
[ 1465.519667][ T5118] veth0: entered promiscuous mode
[ 1466.744775][ T5116] veth0: left promiscuous mode
[ 1468.248713][ T5139] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1468.295883][ T5140] 9pnet_virtio: no channels available for device syz
[ 1471.531702][ T5167] netlink: 'syz.1.6155': attribute type 21 has an invalid length.
[ 1471.584783][ T5168] loop5: detected capacity change from 0 to 256
[ 1473.022992][ T5167] binder: 5159:5167 unknown command 0
[ 1473.028523][ T5167] binder: 5159:5167 ioctl c0306201 200000000080 returned -22
[ 1473.073900][ T5168] FAT-fs (loop5): Directory bread(block 64) failed
[ 1473.098394][ T5168] FAT-fs (loop5): Directory bread(block 65) failed
[ 1473.154562][ T5168] FAT-fs (loop5): Directory bread(block 66) failed
[ 1473.214721][ T5168] FAT-fs (loop5): Directory bread(block 67) failed
[ 1473.249915][ T5168] FAT-fs (loop5): Directory bread(block 68) failed
[ 1473.257006][ T5168] FAT-fs (loop5): Directory bread(block 69) failed
[ 1473.264469][ T5168] FAT-fs (loop5): Directory bread(block 70) failed
[ 1473.271263][ T5168] FAT-fs (loop5): Directory bread(block 71) failed
[ 1473.278621][ T5168] FAT-fs (loop5): Directory bread(block 72) failed
[ 1473.285255][ T5168] FAT-fs (loop5): Directory bread(block 73) failed
[ 1473.382723][ T5168] vfat filesystem being mounted at /160/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1473.490631][ T5191] 9pnet_fd: Insufficient options for proto=fd
[ 1474.001550][ T5190] vlan4: entered allmulticast mode
[ 1474.006801][ T5190] $Hÿ: entered allmulticast mode
[ 1474.047865][ T5190] bond_slave_0: entered allmulticast mode
[ 1474.095695][ T5190] bond_slave_1: entered allmulticast mode
[ 1478.698724][T15278] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1481.305475][ T5265] loop5: detected capacity change from 0 to 256
[ 1481.609477][ T5265] FAT-fs (loop5): Directory bread(block 64) failed
[ 1482.148772][   T49] kernel read not supported for file /dsp1 (pid: 49 comm: kworker/1:1)
[ 1482.383172][ T5265] FAT-fs (loop5): Directory bread(block 65) failed
[ 1482.389888][ T5265] FAT-fs (loop5): Directory bread(block 66) failed
[ 1482.402471][ T5265] FAT-fs (loop5): Directory bread(block 67) failed
[ 1482.520873][ T5265] FAT-fs (loop5): Directory bread(block 68) failed
[ 1482.683068][ T5265] FAT-fs (loop5): Directory bread(block 69) failed
[ 1483.313280][ T5265] FAT-fs (loop5): Directory bread(block 70) failed
[ 1483.321862][ T5265] FAT-fs (loop5): Directory bread(block 71) failed
[ 1483.332887][ T5988] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 1483.350857][ T5265] FAT-fs (loop5): Directory bread(block 72) failed
[ 1483.391257][ T5265] FAT-fs (loop5): Directory bread(block 73) failed
[ 1483.471471][ T5265] vfat filesystem being mounted at /163/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1483.532431][ T5988] usb 3-1: Using ep0 maxpacket: 16
[ 1483.552142][ T5988] usb 3-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice= 8.e8
[ 1483.592315][ T5988] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1483.622430][ T5988] usb 3-1: Product: syz
[ 1483.626637][ T5988] usb 3-1: Manufacturer: syz
[ 1483.695932][ T5988] usb 3-1: SerialNumber: syz
[ 1483.763496][ T5988] usb 3-1: config 0 descriptor??
[ 1484.364576][T16145] Bluetooth: hci3: command 0x0406 tx timeout
[ 1484.461212][ T5299] netlink: 'syz.2.6182': attribute type 23 has an invalid length.
[ 1485.105622][ T5314] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6186'.
[ 1485.165680][ T5314] netlink: 24 bytes leftover after parsing attributes in process `syz.5.6186'.
[ 1488.234328][ T5919] usb 3-1: USB disconnect, device number 9
[ 1488.725504][ T5361] loop5: detected capacity change from 0 to 256
[ 1489.174578][ T5361] FAT-fs (loop5): Directory bread(block 64) failed
[ 1489.205606][ T5361] FAT-fs (loop5): Directory bread(block 65) failed
[ 1489.227583][ T5361] FAT-fs (loop5): Directory bread(block 66) failed
[ 1489.257749][ T5361] FAT-fs (loop5): Directory bread(block 67) failed
[ 1489.311693][ T5361] FAT-fs (loop5): Directory bread(block 68) failed
[ 1489.343915][ T5361] FAT-fs (loop5): Directory bread(block 69) failed
[ 1489.368200][ T5361] FAT-fs (loop5): Directory bread(block 70) failed
[ 1489.378166][ T5361] FAT-fs (loop5): Directory bread(block 71) failed
[ 1489.392713][ T5361] FAT-fs (loop5): Directory bread(block 72) failed
[ 1489.427034][ T5361] FAT-fs (loop5): Directory bread(block 73) failed
[ 1489.488595][ T5361] vfat filesystem being mounted at /168/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1492.538912][T21188] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1492.931557][ T5409] fuse: Bad value for 'fd'
[ 1493.198219][T21188] usb 2-1: Using ep0 maxpacket: 16
[ 1493.243474][T21188] usb 2-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice= 8.e8
[ 1493.267669][T21188] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1493.275719][T21188] usb 2-1: Product: syz
[ 1493.305569][T21188] usb 2-1: Manufacturer: syz
[ 1493.320063][T21188] usb 2-1: SerialNumber: syz
[ 1493.336023][T21188] usb 2-1: config 0 descriptor??
[ 1493.817791][ T5436] netlink: 'syz.1.6208': attribute type 23 has an invalid length.
[ 1493.959581][ T5443] loop6: detected capacity change from 0 to 63
[ 1493.978211][ T5443] buffer_io_error: 4 callbacks suppressed
[ 1493.978238][ T5443] Buffer I/O error on dev loop6, logical block 0, lost async page write
[ 1494.000330][ T5443] Buffer I/O error on dev loop6, logical block 1, lost async page write
[ 1494.031974][ T5443] Buffer I/O error on dev loop6, logical block 2, lost async page write
[ 1494.129531][ T5443] Buffer I/O error on dev loop6, logical block 3, lost async page write
[ 1494.180632][ T5443] Buffer I/O error on dev loop6, logical block 4, lost async page write
[ 1494.206838][ T5443] Buffer I/O error on dev loop6, logical block 5, lost async page write
[ 1494.234338][ T5443] Buffer I/O error on dev loop6, logical block 6, lost async page write
[ 1494.548445][ T5451] loop7: detected capacity change from 0 to 256
[ 1494.643484][ T5451] FAT-fs (loop7): Directory bread(block 64) failed
[ 1494.704298][ T5451] FAT-fs (loop7): Directory bread(block 65) failed
[ 1494.772288][ T5451] FAT-fs (loop7): Directory bread(block 66) failed
[ 1494.809434][ T5451] FAT-fs (loop7): Directory bread(block 67) failed
[ 1494.862633][ T5451] FAT-fs (loop7): Directory bread(block 68) failed
[ 1494.878853][ T5451] FAT-fs (loop7): Directory bread(block 69) failed
[ 1494.910596][ T5451] FAT-fs (loop7): Directory bread(block 70) failed
[ 1494.921483][ T5451] FAT-fs (loop7): Directory bread(block 71) failed
[ 1494.941745][ T5451] FAT-fs (loop7): Directory bread(block 72) failed
[ 1494.960052][ T5451] FAT-fs (loop7): Directory bread(block 73) failed
[ 1494.989438][ T5451] vfat filesystem being mounted at /57/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1495.183313][ T5919] usb 2-1: USB disconnect, device number 27
[ 1495.316854][ T5466] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan0, syncid = 1, id = 0
[ 1497.538945][ T5492] fuse: Bad value for 'fd'
[ 1498.144709][   T30] kauditd_printk_skb: 57 callbacks suppressed
[ 1498.144736][   T30] audit: type=1326 audit(6042231180.908:3091): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5499 comm="syz.1.6228" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fac33b8e969 code=0x0
[ 1499.167623][ T5988] usb 6-1: new high-speed USB device number 5 using dummy_hcd
[ 1499.425733][ T5988] usb 6-1: Using ep0 maxpacket: 16
[ 1499.462505][ T5988] usb 6-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice= 8.e8
[ 1499.495590][ T5526] netlink: 'syz.1.6235': attribute type 1 has an invalid length.
[ 1499.503432][ T5988] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1499.583319][ T5988] usb 6-1: Product: syz
[ 1499.587673][ T5988] usb 6-1: Manufacturer: syz
[ 1499.592298][ T5988] usb 6-1: SerialNumber: syz
[ 1499.638230][ T5988] usb 6-1: config 0 descriptor??
[ 1499.696069][ T5526] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1499.796028][ T5526] vlan2: entered allmulticast mode
[ 1499.815549][ T5526] bond3: (slave vlan2): Opening slave failed
[ 1500.065830][ T5574] netlink: 'syz.5.6233': attribute type 23 has an invalid length.
[ 1500.865489][ T5595] fuse: Bad value for 'fd'
[ 1501.813667][ T5610] fuse: Bad value for 'group_id'
[ 1501.827718][ T5610] fuse: Bad value for 'group_id'
[ 1501.940189][T21188] usb 6-1: USB disconnect, device number 5
[ 1503.590233][ T5630] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6248'.
[ 1504.067025][ T5630] netlink: 32 bytes leftover after parsing attributes in process `syz.2.6248'.
[ 1506.524712][ T5670] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6257'.
[ 1506.706882][ T5670] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6257'.
[ 1507.942016][   T49] usb 10-1: new full-speed USB device number 14 using dummy_hcd
[ 1508.339564][ T5891] usb 3-1: new high-speed USB device number 10 using dummy_hcd
[ 1508.510134][ T5891] usb 3-1: Using ep0 maxpacket: 16
[ 1508.781837][   T49] usb 10-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1509.034278][ T5695] loop7: detected capacity change from 0 to 1024
[ 1509.583943][ T5891] usb 3-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice= 8.e8
[ 1509.595100][ T5891] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1509.603371][ T5891] usb 3-1: Product: syz
[ 1509.607945][ T5891] usb 3-1: Manufacturer: syz
[ 1509.613059][ T5891] usb 3-1: SerialNumber: syz
[ 1509.626248][   T49] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1509.636438][ T5891] usb 3-1: config 0 descriptor??
[ 1509.695188][   T49] usb 10-1: config 0 descriptor??
[ 1510.409828][ T5717] overlayfs: failed to resolve './file1': -2
[ 1511.106278][ T5715] netlink: 'syz.2.6261': attribute type 23 has an invalid length.
[ 1511.115166][   T49] pegasus 10-1:0.0: probe with driver pegasus failed with error -121
[ 1511.513357][ T5726] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6267'.
[ 1511.607402][ T6439] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1512.439242][   T49] usb 10-1: USB disconnect, device number 14
[ 1512.465055][ T5748] netlink: 'syz.3.6273': attribute type 1 has an invalid length.
[ 1512.491155][ T5919] usb 3-1: USB disconnect, device number 10
[ 1512.625789][ T5748] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1512.962826][ T5809] loop5: detected capacity change from 0 to 16
[ 1513.043133][ T5809] erofs (device loop5): mounted with root inode @ nid 36.
[ 1513.677265][ T5817] overlayfs: failed to resolve './file1': -2
[ 1514.475207][ T5819] binder: BINDER_SET_CONTEXT_MGR already set
[ 1514.481767][ T5819] binder: 5816:5819 ioctl 4018620d 200000000040 returned -16
[ 1515.903887][ T5842] 9p filesystem being mounted at /439/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1515.935265][ T5846] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1515.946893][ T5846] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1517.005695][ T5891] usb 8-1: new high-speed USB device number 14 using dummy_hcd
[ 1518.280997][ T5878] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1518.389408][ T5891] usb 8-1: Using ep0 maxpacket: 16
[ 1518.401285][ T5891] usb 8-1: New USB device found, idVendor=0b49, idProduct=064f, bcdDevice= 8.e8
[ 1518.410686][ T5891] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1518.433276][ T5891] usb 8-1: Product: syz
[ 1518.985299][ T5891] usb 8-1: Manufacturer: syz
[ 1518.989975][ T5891] usb 8-1: SerialNumber: syz
[ 1519.001443][ T5891] usb 8-1: config 0 descriptor??
[ 1519.080487][ T5889] binder: BINDER_SET_CONTEXT_MGR already set
[ 1519.112514][ T5889] binder: 5880:5889 ioctl 4018620d 200000000040 returned -16
[ 1519.502047][ T5897] netlink: 'syz.7.6289': attribute type 23 has an invalid length.
[ 1519.732668][ T5908] netlink: 'syz.2.6298': attribute type 8 has an invalid length.
[ 1520.287634][ T5922] 9p filesystem being mounted at /186/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1520.899498][T21188] usb 8-1: USB disconnect, device number 14
[ 1522.072608][ T5962] netlink: 60 bytes leftover after parsing attributes in process `syz.3.6314'.
[ 1522.610103][ T5975] loop9: detected capacity change from 0 to 16
[ 1522.649186][ T5975] erofs (device loop9): mounted with root inode @ nid 36.
[ 1523.382033][ T5989] 9p filesystem being mounted at /71/file0 supports timestamps until 2106-02-07 (0xffffffff)
[ 1523.801394][ T5995] loop1: detected capacity change from 0 to 256
[ 1523.955837][ T5995] FAT-fs (loop1): Directory bread(block 64) failed
[ 1523.986886][ T5995] FAT-fs (loop1): Directory bread(block 65) failed
[ 1524.038498][ T5995] FAT-fs (loop1): Directory bread(block 66) failed
[ 1524.062246][ T5995] FAT-fs (loop1): Directory bread(block 67) failed
[ 1524.086350][ T5995] FAT-fs (loop1): Directory bread(block 68) failed
[ 1524.120829][ T5995] FAT-fs (loop1): Directory bread(block 69) failed
[ 1524.286904][ T5995] FAT-fs (loop1): Directory bread(block 70) failed
[ 1524.293657][ T5995] FAT-fs (loop1): Directory bread(block 71) failed
[ 1524.304386][ T5995] FAT-fs (loop1): Directory bread(block 72) failed
[ 1524.310950][ T5995] FAT-fs (loop1): Directory bread(block 73) failed
[ 1524.341938][ T5995] vfat filesystem being mounted at /562/bus supports timestamps until 2107-12-31 (0x10391447e)
[ 1524.818143][ T6010] netlink: 12 bytes leftover after parsing attributes in process `syz.7.6329'.
[ 1525.569480][ T6022] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1525.664695][ T6022] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1525.695529][ T6025] netlink: 48 bytes leftover after parsing attributes in process `syz.1.6332'.
[ 1525.721279][T21188] usb 8-1: new full-speed USB device number 15 using dummy_hcd
[ 1525.928246][T21188] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1525.977165][T21188] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1526.009475][T21188] usb 8-1: config 0 descriptor??
[ 1526.282121][ T6036] mac80211_hwsim hwsim38 wlan1: entered allmulticast mode
[ 1526.537878][ T6038] netlink: 8 bytes leftover after parsing attributes in process `syz.1.6335'.
[ 1526.593071][ T6038] netlink: 'syz.1.6335': attribute type 10 has an invalid length.
[ 1526.603802][ T6038] mac80211_hwsim hwsim38 wlan1: left allmulticast mode
[ 1527.073301][T21188] pegasus 8-1:0.0: probe with driver pegasus failed with error -32
[ 1527.105011][T21188] usb 8-1: USB disconnect, device number 15
[ 1530.285822][ T6098] loop7: detected capacity change from 0 to 1024
[ 1531.067215][ T6105] loop1: detected capacity change from 0 to 16
[ 1531.089256][ T6105] erofs (device loop1): mounted with root inode @ nid 36.
[ 1531.953491][ T6102] bio_check_eod: 2 callbacks suppressed
[ 1531.953512][ T6102] syz.2.6355: attempt to access beyond end of device
[ 1531.953512][ T6102] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[ 1531.973073][ T6102] XFS (nbd2): SB validate failed with error -5.
[ 1532.302811][ T6125] IPVS: sync thread started: state = BACKUP, mcast_ifn = wlan0, syncid = 1, id = 0
[ 1533.423137][ T6142] erofs (device loop1): corrupted dir block 8200 @ nid 36
[ 1533.430748][ T6144] erofs (device loop1): corrupted dir block 8200 @ nid 36
[ 1533.922337][ T6149] loop7: detected capacity change from 0 to 1024
[ 1535.465477][ T6175] loop7: detected capacity change from 0 to 1024
[ 1536.598502][T21188] usb 8-1: new full-speed USB device number 16 using dummy_hcd
[ 1536.947727][T21188] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1536.994658][T21188] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1537.045434][T21188] usb 8-1: config 0 descriptor??
[ 1538.558436][T21188] pegasus 8-1:0.0: probe with driver pegasus failed with error -32
[ 1539.563820][T21188] usb 8-1: USB disconnect, device number 16
[ 1539.942173][ T6243] netlink: 'syz.2.6390': attribute type 1 has an invalid length.
[ 1540.175960][ T6243] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1541.312368][ T6297] loop9: detected capacity change from 0 to 16
[ 1541.359560][ T6297] erofs (device loop9): mounted with root inode @ nid 36.
[ 1541.728776][ T6301] netlink: 68 bytes leftover after parsing attributes in process `syz.7.6399'.
[ 1542.619894][ T5953] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1543.562450][ T6316] loop1: detected capacity change from 0 to 1024
[ 1545.081744][ T5891] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[ 1545.280373][ T6333] loop5: detected capacity change from 0 to 1024
[ 1545.929283][ T6338] netlink: 36 bytes leftover after parsing attributes in process `syz.1.6409'.
[ 1546.071373][ T5891] usb 3-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[ 1546.093937][ T5891] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1546.109854][ T5891] usb 3-1: config 0 descriptor??
[ 1547.466056][ T5891] pegasus 3-1:0.0: probe with driver pegasus failed with error -32
[ 1547.569036][ T5891] usb 3-1: USB disconnect, device number 11
[ 1548.607000][ T6389] loop3: detected capacity change from 0 to 1024
[ 1549.876156][ T6393] loop1: detected capacity change from 0 to 1024
[ 1550.243905][ T6400] loop3: detected capacity change from 0 to 16
[ 1550.300058][ T6400] erofs (device loop3): mounted with root inode @ nid 36.
[ 1551.158917][ T6403] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6424'.
[ 1552.240665][ T6417] erofs (device loop3): corrupted dir block 8200 @ nid 36
[ 1552.248237][ T6418] erofs (device loop3): corrupted dir block 8200 @ nid 36
[ 1552.592925][ T6426] netlink: 12 bytes leftover after parsing attributes in process `syz.9.6430'.
[ 1552.919130][ T6430] syzkaller0: entered promiscuous mode
[ 1552.963598][ T6430] syzkaller0: entered allmulticast mode
[ 1553.081975][ T6442] netlink: 'syz.9.6433': attribute type 8 has an invalid length.
[ 1554.133231][ T6453] loop1: detected capacity change from 0 to 1024
[ 1555.676298][ T6464] netlink: 4 bytes leftover after parsing attributes in process `syz.9.6440'.
[ 1556.022492][ T6472] loop9: detected capacity change from 0 to 16
[ 1556.073805][ T6472] erofs (device loop9): mounted with root inode @ nid 36.
[ 1556.619159][ T6480] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1556.653331][ T6480] erofs (device loop9): corrupted dir block 8200 @ nid 36
[ 1556.703533][ T6482] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1561.739253][ T6523] loop7: detected capacity change from 0 to 1024
[ 1564.032851][ T6549] fuse: Bad value for 'fd'
[ 1564.967693][ T6563] netlink: 28 bytes leftover after parsing attributes in process `syz.9.6467'.
[ 1565.861691][ T6556] infiniband syz2: set down
[ 1565.870693][ T6556] infiniband syz2: added ipvlan1
[ 1565.884900][ T6556] syz2: rxe_create_cq: returned err = -12
[ 1565.899674][ T6556] infiniband syz2: Couldn't create ib_mad CQ
[ 1565.913497][ T6556] infiniband syz2: Couldn't open port 1
[ 1566.011724][ T6556] RDS/IB: syz2: added
[ 1566.015828][ T6556] smc: adding ib device syz2 with port count 1
[ 1566.022903][ T6556] smc:    ib device syz2 port 1 has pnetid SYZ2 (user defined)
[ 1567.672897][ T6594] loop3: detected capacity change from 0 to 1024
[ 1570.315160][ T6615] kernel read not supported for file /eth0 (pid: 6615 comm: syz.3.6483)
[ 1570.366154][   T30] audit: type=1800 audit(6042231253.164:3092): pid=6615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.6483" name="eth0" dev="mqueue" ino=74606 res=0 errno=0
[ 1572.794392][ T6644] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6493'.
[ 1572.926960][ T6646] loop3: detected capacity change from 0 to 1024
[ 1573.994981][ T6653] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1574.899614][ T6665] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1575.067443][ T6439] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1578.218623][ T6697] loop3: detected capacity change from 0 to 1024
[ 1580.321258][ T6710] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1581.078798][ T6713] fuse: Bad value for 'user_id'
[ 1581.093972][ T6713] fuse: Bad value for 'user_id'
[ 1581.459369][ T6726] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1581.476778][ T5839] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1581.512185][ T6725] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1581.540259][ T6725] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1581.598127][ T6725] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1581.698105][ T6725] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1581.801749][ T6720] lo speed is unknown, defaulting to 1000
[ 1582.363420][ T6725] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[ 1582.375745][ T6725] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[ 1582.388451][ T6725] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[ 1582.399179][ T6725] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[ 1582.409223][ T6725] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[ 1582.613484][ T6744] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6519'.
[ 1582.641551][ T6748] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6518'.
[ 1582.716353][ T6737] lo speed is unknown, defaulting to 1000
[ 1583.342877][   T30] audit: type=1326 audit(6042231266.141:3093): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1583.930518][ T6725] Bluetooth: hci4: command tx timeout
[ 1584.222142][   T30] audit: type=1326 audit(6042231266.141:3094): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1584.314499][   T30] audit: type=1326 audit(6042231266.141:3095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1584.409929][   T30] audit: type=1326 audit(6042231266.141:3096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1584.620607][ T6772] vimc link validate: Scaler:src:640x480 (0x33424752, 8, 0, 0, 0) RGB/YUV Capture:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1584.646291][ T6725] Bluetooth: hci8: command tx timeout
[ 1584.831210][ T6775] loop5: detected capacity change from 0 to 1024
[ 1585.447416][   T30] audit: type=1326 audit(6042231266.141:3097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1585.472094][   T30] audit: type=1326 audit(6042231266.141:3098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1585.512840][   T30] audit: type=1326 audit(6042231266.141:3099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1585.638056][   T30] audit: type=1326 audit(6042231266.141:3100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1585.700883][ T6790] fuse: Bad value for 'user_id'
[ 1585.750385][ T6790] fuse: Bad value for 'user_id'
[ 1585.761744][   T30] audit: type=1326 audit(6042231266.141:3101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1585.993481][ T6725] Bluetooth: hci4: command tx timeout
[ 1586.386082][   T30] audit: type=1326 audit(6042231266.141:3102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6741 comm="syz.3.6518" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1586.720910][ T6725] Bluetooth: hci8: command tx timeout
[ 1586.946636][ T6809] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1587.024301][ T6810] netlink: 'syz.5.6530': attribute type 10 has an invalid length.
[ 1588.080560][ T6725] Bluetooth: hci4: command tx timeout
[ 1588.496104][ T6720] chnl_net:caif_netlink_parms(): no params data found
[ 1588.727223][ T6559] Set syz1 is full, maxelem 65536 reached
[ 1588.795900][ T6725] Bluetooth: hci8: command tx timeout
[ 1589.323693][ T6971] netlink: 72 bytes leftover after parsing attributes in process `syz.5.6535'.
[ 1589.403716][T25890] bridge_slave_1: left allmulticast mode
[ 1589.426118][T25890] bridge_slave_1: left promiscuous mode
[ 1589.446637][T25890] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1589.491742][T25890] bridge_slave_0: left promiscuous mode
[ 1589.523781][T25890] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1589.626899][   T30] kauditd_printk_skb: 52 callbacks suppressed
[ 1589.626921][   T30] audit: type=1326 audit(6042231272.434:3155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.675410][   T30] audit: type=1326 audit(6042231272.434:3156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.701944][   T30] audit: type=1326 audit(6042231272.434:3157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.728470][   T30] audit: type=1326 audit(6042231272.434:3158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.753318][   T30] audit: type=1326 audit(6042231272.434:3159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.776574][   T30] audit: type=1326 audit(6042231272.434:3160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.811486][   T30] audit: type=1326 audit(6042231272.434:3161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.839628][   T30] audit: type=1326 audit(6042231272.434:3162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.864037][   T30] audit: type=1326 audit(6042231272.434:3163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1589.888110][   T30] audit: type=1326 audit(6042231272.434:3164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz.5.6535" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4025b8e969 code=0x7fc00000
[ 1590.161673][ T6725] Bluetooth: hci4: command tx timeout
[ 1590.502868][T25890] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1590.526649][T25890] bond_slave_0: left promiscuous mode
[ 1590.544116][T25890] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1590.569569][T25890] bond_slave_1: left promiscuous mode
[ 1590.575666][T25890] $Hÿ (unregistering): Released all slaves
[ 1590.855616][T25890] bond0 (unregistering): Released all slaves
[ 1591.678260][ T6725] Bluetooth: hci8: command tx timeout
[ 1592.049577][ T7086] loop2: detected capacity change from 0 to 16
[ 1592.087907][ T7086] erofs (device loop2): mounted with root inode @ nid 36.
[ 1592.215526][T25890] bond1 (unregistering): Released all slaves
[ 1592.469074][ T7086] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1592.487512][ T7086] erofs (device loop2): corrupted dir block 8200 @ nid 36
[ 1592.490366][T25890] bond2 (unregistering): Released all slaves
[ 1592.715352][T25890] bond3 (unregistering): Released all slaves
[ 1593.044875][ T7105] fuse: Bad value for 'user_id'
[ 1593.051845][ T7105] fuse: Bad value for 'user_id'
[ 1593.134299][T25890] IPVS: stopping backup sync thread 4387 ...
[ 1593.349906][ T7122] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1595.476911][ T7175] loop7: detected capacity change from 0 to 16
[ 1595.503662][ T7175] erofs (device loop7): mounted with root inode @ nid 36.
[ 1596.025700][ T7254] erofs (device loop7): corrupted dir block 8200 @ nid 36
[ 1596.035801][ T7254] erofs (device loop7): corrupted dir block 8200 @ nid 36
[ 1597.028949][ T6720] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1597.056051][ T6720] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1597.075960][ T6720] bridge_slave_0: entered allmulticast mode
[ 1597.101386][ T6720] bridge_slave_0: entered promiscuous mode
[ 1597.120187][ T7275] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6553'.
[ 1597.348611][ T6720] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1597.356119][ T6720] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1597.363853][ T6720] bridge_slave_1: entered allmulticast mode
[ 1597.364118][ T7287] fuse: Bad value for 'fd'
[ 1597.372286][ T6720] bridge_slave_1: entered promiscuous mode
[ 1597.443259][ T6737] chnl_net:caif_netlink_parms(): no params data found
[ 1597.868763][   T30] kauditd_printk_skb: 50 callbacks suppressed
[ 1597.868789][   T30] audit: type=1326 audit(6042231280.688:3215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1597.960538][   T30] audit: type=1326 audit(6042231280.688:3216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.085132][   T30] audit: type=1326 audit(6042231280.728:3217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.141745][   T30] audit: type=1326 audit(6042231280.728:3218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.198330][   T30] audit: type=1326 audit(6042231280.728:3219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.237835][   T30] audit: type=1326 audit(6042231280.728:3220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.261089][   T30] audit: type=1326 audit(6042231280.728:3221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.295197][ T7331] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1598.308446][   T30] audit: type=1326 audit(6042231280.728:3222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.429981][   T30] audit: type=1326 audit(6042231280.728:3223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1598.462535][   T30] audit: type=1326 audit(6042231280.728:3224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7263 comm="syz.3.6553" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f357cf8e969 code=0x7fc00000
[ 1599.807233][ T6720] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1600.380358][ T6720] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1600.630380][ T7379] loop5: detected capacity change from 0 to 16
[ 1601.013183][ T7379] erofs (device loop5): mounted with root inode @ nid 36.
[ 1601.689825][ T7419] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1601.700286][ T7419] erofs (device loop5): corrupted dir block 8200 @ nid 36
[ 1601.872011][ T7427] fuse: Bad value for 'fd'
[ 1602.274492][ T6737] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1602.281708][ T6737] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1602.298381][ T6737] bridge_slave_0: entered allmulticast mode
[ 1602.308504][ T6737] bridge_slave_0: entered promiscuous mode
[ 1602.356886][ T6737] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1602.422091][ T6737] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1602.439173][ T6737] bridge_slave_1: entered allmulticast mode
[ 1602.458374][ T6737] bridge_slave_1: entered promiscuous mode
[ 1602.530493][ T6720] team0: Port device team_slave_0 added
[ 1603.012638][T25890] hsr_slave_0: left promiscuous mode
[ 1603.029757][T25890] hsr_slave_1: left promiscuous mode
[ 1603.050711][T25890] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1603.085083][T25890] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1603.110277][T25890] veth1_macvtap: left allmulticast mode
[ 1604.005570][ T7465] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1604.072897][ T7467] fuse: Unknown parameter 'grou00000000000000000000'
[ 1604.661993][ T6439] smc: removing ib device syz2
[ 1604.781340][ T7475] fuse: Bad value for 'fd'
[ 1606.396706][ T7493] loop3: detected capacity change from 0 to 1024
[ 1607.170038][   T63] wlan0: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[ 1608.775412][ T7513] EXT4-fs (nullb0): VFS: Can't find ext4 filesystem
[ 1608.831066][T25890] team0 (unregistering): Port device team_slave_1 removed
[ 1608.974747][T25890] team0 (unregistering): Port device team_slave_0 removed
[ 1611.118208][ T6720] team0: Port device team_slave_1 added
[ 1611.135064][ T7551] fuse: Bad value for 'fd'
[ 1611.291150][T14149] ==================================================================
[ 1611.299284][T14149] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0x1bf/0x200
[ 1611.308159][T14149] Read of size 8 at addr ffff888068aa22e8 by task kworker/1:0/14149
[ 1611.316144][T14149] 
[ 1611.318474][T14149] CPU: 1 UID: 0 PID: 14149 Comm: kworker/1:0 Not tainted 6.15.0-rc6-syzkaller-00052-g9f35e33144ae #0 PREEMPT(full) 
[ 1611.318512][T14149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1611.318532][T14149] Workqueue: events smc_ib_port_event_work
[ 1611.318578][T14149] Call Trace:
[ 1611.318589][T14149]  <TASK>
[ 1611.318601][T14149]  dump_stack_lvl+0x116/0x1f0
[ 1611.318645][T14149]  print_report+0xc3/0x670
[ 1611.318688][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.318722][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.318755][T14149]  ? __phys_addr+0xc6/0x150
[ 1611.318796][T14149]  ? __ethtool_get_link_ksettings+0x1bf/0x200
[ 1611.318842][T14149]  kasan_report+0xe0/0x110
[ 1611.318887][T14149]  ? __ethtool_get_link_ksettings+0x1bf/0x200
[ 1611.318938][T14149]  __ethtool_get_link_ksettings+0x1bf/0x200
[ 1611.318985][T14149]  __ethtool_get_link_ksettings+0x148/0x200
[ 1611.319032][T14149]  ib_get_eth_speed+0x122/0xb50
[ 1611.319076][T14149]  ? __pfx_ib_get_eth_speed+0x10/0x10
[ 1611.319119][T14149]  ? __pfx___mutex_lock+0x10/0x10
[ 1611.319170][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319209][T14149]  ? do_raw_spin_unlock+0x172/0x230
[ 1611.319244][T14149]  rxe_query_port+0x108/0x330
[ 1611.319289][T14149]  ib_query_port+0x441/0x8a0
[ 1611.319332][T14149]  smc_ib_port_event_work+0x12f/0xbf0
[ 1611.319375][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319413][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319446][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1611.319483][T14149]  process_one_work+0x9cf/0x1b70
[ 1611.319522][T14149]  ? __pfx_process_one_work+0x10/0x10
[ 1611.319553][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319592][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319625][T14149]  ? assign_work+0x1a0/0x250
[ 1611.319654][T14149]  worker_thread+0x6c8/0xf10
[ 1611.319688][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319723][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319756][T14149]  ? __kthread_parkme+0x19e/0x250
[ 1611.319796][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.319831][T14149]  ? __pfx_worker_thread+0x10/0x10
[ 1611.319861][T14149]  kthread+0x3c5/0x780
[ 1611.319888][T14149]  ? __pfx_kthread+0x10/0x10
[ 1611.319913][T14149]  ? __pfx_kthread+0x10/0x10
[ 1611.319939][T14149]  ? __pfx_kthread+0x10/0x10
[ 1611.319968][T14149]  ? __pfx_kthread+0x10/0x10
[ 1611.319993][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1611.320026][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1611.320059][T14149]  ? __pfx_kthread+0x10/0x10
[ 1611.320085][T14149]  ret_from_fork+0x48/0x80
[ 1611.320113][T14149]  ? __pfx_kthread+0x10/0x10
[ 1611.320139][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1611.320195][T14149]  </TASK>
[ 1611.320205][T14149] 
[ 1611.578287][T14149] Allocated by task 20253:
[ 1611.582705][T14149]  kasan_save_stack+0x33/0x60
[ 1611.587412][T14149]  kasan_save_track+0x14/0x30
[ 1611.592117][T14149]  __kasan_kmalloc+0xaa/0xb0
[ 1611.596759][T14149]  __kvmalloc_node_noprof+0x279/0x600
[ 1611.602162][T14149]  alloc_netdev_mqs+0xd2/0x1570
[ 1611.607086][T14149]  rtnl_create_link+0xc10/0xfa0
[ 1611.611964][T14149]  rtnl_newlink+0xb69/0x2000
[ 1611.616579][T14149]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1611.621546][T14149]  netlink_rcv_skb+0x16d/0x440
[ 1611.626337][T14149]  netlink_unicast+0x53d/0x7f0
[ 1611.631128][T14149]  netlink_sendmsg+0x8d1/0xdd0
[ 1611.635923][T14149]  __sys_sendto+0x498/0x510
[ 1611.640443][T14149]  __x64_sys_sendto+0xe0/0x1c0
[ 1611.645221][T14149]  do_syscall_64+0xcd/0x260
[ 1611.649760][T14149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1611.655671][T14149] 
[ 1611.657995][T14149] Freed by task 25890:
[ 1611.662063][T14149]  kasan_save_stack+0x33/0x60
[ 1611.666770][T14149]  kasan_save_track+0x14/0x30
[ 1611.671476][T14149]  kasan_save_free_info+0x3b/0x60
[ 1611.676549][T14149]  __kasan_slab_free+0x51/0x70
[ 1611.681348][T14149]  kfree+0x2b6/0x4d0
[ 1611.685266][T14149]  device_release+0xa4/0x240
[ 1611.689895][T14149]  kobject_put+0x1e7/0x5a0
[ 1611.694320][T14149]  netdev_run_todo+0x7e9/0x1320
[ 1611.699197][T14149]  default_device_exit_batch+0x858/0xaf0
[ 1611.704864][T14149]  ops_exit_list+0x12b/0x180
[ 1611.709488][T14149]  cleanup_net+0x5c1/0xb30
[ 1611.713971][T14149]  process_one_work+0x9cf/0x1b70
[ 1611.718930][T14149]  worker_thread+0x6c8/0xf10
[ 1611.723538][T14149]  kthread+0x3c5/0x780
[ 1611.727619][T14149]  ret_from_fork+0x48/0x80
[ 1611.732052][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1611.736852][T14149] 
[ 1611.739183][T14149] The buggy address belongs to the object at ffff888068aa2000
[ 1611.739183][T14149]  which belongs to the cache kmalloc-cg-4k of size 4096
[ 1611.753547][T14149] The buggy address is located 744 bytes inside of
[ 1611.753547][T14149]  freed 4096-byte region [ffff888068aa2000, ffff888068aa3000)
[ 1611.767461][T14149] 
[ 1611.769787][T14149] The buggy address belongs to the physical page:
[ 1611.776202][T14149] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x68aa0
[ 1611.784971][T14149] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1611.793526][T14149] memcg:ffff88807ecfd001
[ 1611.797768][T14149] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1611.805331][T14149] page_type: f5(slab)
[ 1611.809327][T14149] raw: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1611.817924][T14149] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1611.826520][T14149] head: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1611.835208][T14149] head: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1611.843894][T14149] head: 00fff00000000003 ffffea0001a2a801 00000000ffffffff 00000000ffffffff
[ 1611.852578][T14149] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1611.861250][T14149] page dumped because: kasan: bad access detected
[ 1611.867662][T14149] page_owner tracks the page as allocated
[ 1611.873380][T14149] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 20869, tgid 20865 (syz.4.3288), ts 778116862047, free_ts 778063601540
[ 1611.896344][T14149]  post_alloc_hook+0x181/0x1b0
[ 1611.901141][T14149]  get_page_from_freelist+0x135c/0x3920
[ 1611.906728][T14149]  __alloc_frozen_pages_noprof+0x263/0x23a0
[ 1611.912652][T14149]  alloc_pages_mpol+0x1fb/0x550
[ 1611.917536][T14149]  new_slab+0x244/0x340
[ 1611.921714][T14149]  ___slab_alloc+0xd9c/0x1940
[ 1611.926408][T14149]  __slab_alloc.constprop.0+0x56/0xb0
[ 1611.931806][T14149]  __kmalloc_noprof+0x2f2/0x510
[ 1611.936688][T14149]  __register_sysctl_table+0xb3/0x1900
[ 1611.942165][T14149]  __addrconf_sysctl_register+0x1a2/0x360
[ 1611.947911][T14149]  addrconf_sysctl_register+0x15f/0x1f0
[ 1611.953478][T14149]  ipv6_add_dev+0xb39/0x15f0
[ 1611.958087][T14149]  addrconf_notify+0x53e/0x19e0
[ 1611.962971][T14149]  notifier_call_chain+0xbc/0x410
[ 1611.968022][T14149]  call_netdevice_notifiers_info+0xbe/0x140
[ 1611.973955][T14149]  register_netdevice+0x182e/0x2270
[ 1611.979181][T14149] page last free pid 20879 tgid 20879 stack trace:
[ 1611.985692][T14149]  __free_frozen_pages+0x69d/0xff0
[ 1611.990838][T14149]  __put_partials+0x16d/0x1c0
[ 1611.995557][T14149]  qlist_free_all+0x4e/0x120
[ 1612.000193][T14149]  kasan_quarantine_reduce+0x195/0x1e0
[ 1612.005680][T14149]  __kasan_slab_alloc+0x69/0x90
[ 1612.010563][T14149]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 1612.016058][T14149]  vm_area_dup+0x25/0x760
[ 1612.020430][T14149]  __split_vma+0x17f/0x1030
[ 1612.024962][T14149]  vms_gather_munmap_vmas+0x392/0x1310
[ 1612.030450][T14149]  __mmap_region+0x314/0x27c0
[ 1612.035190][T14149]  mmap_region+0x1ab/0x3f0
[ 1612.039642][T14149]  do_mmap+0xd8e/0x11b0
[ 1612.043821][T14149]  vm_mmap_pgoff+0x281/0x450
[ 1612.048434][T14149]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1612.053218][T14149]  __x64_sys_mmap+0x125/0x190
[ 1612.057909][T14149]  do_syscall_64+0xcd/0x260
[ 1612.062450][T14149] 
[ 1612.064773][T14149] Memory state around the buggy address:
[ 1612.070404][T14149]  ffff888068aa2180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1612.078480][T14149]  ffff888068aa2200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1612.086555][T14149] >ffff888068aa2280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1612.094625][T14149]                                                           ^
[ 1612.102122][T14149]  ffff888068aa2300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1612.110202][T14149]  ffff888068aa2380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1612.118279][T14149] ==================================================================
[ 1612.320884][T14149] Disabling lock debugging due to kernel taint
[ 1612.327683][T14149] ==================================================================
[ 1612.335777][T14149] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0xa4/0x200
[ 1612.344618][T14149] Read of size 8 at addr ffff888068aa20a8 by task kworker/1:0/14149
[ 1612.352630][T14149] 
[ 1612.354982][T14149] CPU: 1 UID: 0 PID: 14149 Comm: kworker/1:0 Tainted: G    B               6.15.0-rc6-syzkaller-00052-g9f35e33144ae #0 PREEMPT(full) 
[ 1612.355040][T14149] Tainted: [B]=BAD_PAGE
[ 1612.355054][T14149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1612.355081][T14149] Workqueue: events smc_ib_port_event_work
[ 1612.355142][T14149] Call Trace:
[ 1612.355156][T14149]  <TASK>
[ 1612.355170][T14149]  dump_stack_lvl+0x116/0x1f0
[ 1612.355233][T14149]  print_report+0xc3/0x670
[ 1612.355290][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.355335][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.355380][T14149]  ? __phys_addr+0xc6/0x150
[ 1612.355435][T14149]  ? __ethtool_get_link_ksettings+0xa4/0x200
[ 1612.355496][T14149]  kasan_report+0xe0/0x110
[ 1612.355555][T14149]  ? __ethtool_get_link_ksettings+0xa4/0x200
[ 1612.355623][T14149]  kasan_check_range+0xef/0x1a0
[ 1612.355664][T14149]  __ethtool_get_link_ksettings+0xa4/0x200
[ 1612.355726][T14149]  __ethtool_get_link_ksettings+0x148/0x200
[ 1612.355788][T14149]  ib_get_eth_speed+0x122/0xb50
[ 1612.355845][T14149]  ? __pfx_ib_get_eth_speed+0x10/0x10
[ 1612.355901][T14149]  ? __pfx___mutex_lock+0x10/0x10
[ 1612.355966][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356012][T14149]  ? do_raw_spin_unlock+0x172/0x230
[ 1612.356058][T14149]  rxe_query_port+0x108/0x330
[ 1612.356117][T14149]  ib_query_port+0x441/0x8a0
[ 1612.356173][T14149]  smc_ib_port_event_work+0x12f/0xbf0
[ 1612.356236][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356286][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356331][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1612.356378][T14149]  process_one_work+0x9cf/0x1b70
[ 1612.356429][T14149]  ? __pfx_process_one_work+0x10/0x10
[ 1612.356469][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356519][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356563][T14149]  ? assign_work+0x1a0/0x250
[ 1612.356600][T14149]  worker_thread+0x6c8/0xf10
[ 1612.356644][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356692][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356737][T14149]  ? __kthread_parkme+0x19e/0x250
[ 1612.356790][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.356836][T14149]  ? __pfx_worker_thread+0x10/0x10
[ 1612.356877][T14149]  kthread+0x3c5/0x780
[ 1612.356913][T14149]  ? __pfx_kthread+0x10/0x10
[ 1612.356946][T14149]  ? __pfx_kthread+0x10/0x10
[ 1612.356981][T14149]  ? __pfx_kthread+0x10/0x10
[ 1612.357015][T14149]  ? __pfx_kthread+0x10/0x10
[ 1612.357048][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1612.357093][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1612.357137][T14149]  ? __pfx_kthread+0x10/0x10
[ 1612.357173][T14149]  ret_from_fork+0x48/0x80
[ 1612.357214][T14149]  ? __pfx_kthread+0x10/0x10
[ 1612.357249][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1612.357314][T14149]  </TASK>
[ 1612.357327][T14149] 
[ 1612.625249][T14149] Allocated by task 20253:
[ 1612.629677][T14149]  kasan_save_stack+0x33/0x60
[ 1612.634391][T14149]  kasan_save_track+0x14/0x30
[ 1612.639098][T14149]  __kasan_kmalloc+0xaa/0xb0
[ 1612.643715][T14149]  __kvmalloc_node_noprof+0x279/0x600
[ 1612.649118][T14149]  alloc_netdev_mqs+0xd2/0x1570
[ 1612.654003][T14149]  rtnl_create_link+0xc10/0xfa0
[ 1612.658879][T14149]  rtnl_newlink+0xb69/0x2000
[ 1612.663493][T14149]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1612.668453][T14149]  netlink_rcv_skb+0x16d/0x440
[ 1612.673244][T14149]  netlink_unicast+0x53d/0x7f0
[ 1612.678036][T14149]  netlink_sendmsg+0x8d1/0xdd0
[ 1612.682834][T14149]  __sys_sendto+0x498/0x510
[ 1612.687349][T14149]  __x64_sys_sendto+0xe0/0x1c0
[ 1612.692125][T14149]  do_syscall_64+0xcd/0x260
[ 1612.696687][T14149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1612.702595][T14149] 
[ 1612.704916][T14149] Freed by task 25890:
[ 1612.708982][T14149]  kasan_save_stack+0x33/0x60
[ 1612.713688][T14149]  kasan_save_track+0x14/0x30
[ 1612.718396][T14149]  kasan_save_free_info+0x3b/0x60
[ 1612.723441][T14149]  __kasan_slab_free+0x51/0x70
[ 1612.728238][T14149]  kfree+0x2b6/0x4d0
[ 1612.732173][T14149]  device_release+0xa4/0x240
[ 1612.736795][T14149]  kobject_put+0x1e7/0x5a0
[ 1612.741230][T14149]  netdev_run_todo+0x7e9/0x1320
[ 1612.746109][T14149]  default_device_exit_batch+0x858/0xaf0
[ 1612.751771][T14149]  ops_exit_list+0x12b/0x180
[ 1612.756388][T14149]  cleanup_net+0x5c1/0xb30
[ 1612.760843][T14149]  process_one_work+0x9cf/0x1b70
[ 1612.765814][T14149]  worker_thread+0x6c8/0xf10
[ 1612.770429][T14149]  kthread+0x3c5/0x780
[ 1612.774511][T14149]  ret_from_fork+0x48/0x80
[ 1612.778943][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1612.783740][T14149] 
[ 1612.786063][T14149] The buggy address belongs to the object at ffff888068aa2000
[ 1612.786063][T14149]  which belongs to the cache kmalloc-cg-4k of size 4096
[ 1612.800399][T14149] The buggy address is located 168 bytes inside of
[ 1612.800399][T14149]  freed 4096-byte region [ffff888068aa2000, ffff888068aa3000)
[ 1612.814303][T14149] 
[ 1612.816628][T14149] The buggy address belongs to the physical page:
[ 1612.823044][T14149] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x68aa0
[ 1612.831826][T14149] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1612.840339][T14149] memcg:ffff88807ecfd001
[ 1612.844585][T14149] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1612.852143][T14149] page_type: f5(slab)
[ 1612.856162][T14149] raw: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1612.864772][T14149] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1612.873379][T14149] head: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1612.882069][T14149] head: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1612.890933][T14149] head: 00fff00000000003 ffffea0001a2a801 00000000ffffffff 00000000ffffffff
[ 1612.899624][T14149] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1612.908304][T14149] page dumped because: kasan: bad access detected
[ 1612.914721][T14149] page_owner tracks the page as allocated
[ 1612.920461][T14149] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 20869, tgid 20865 (syz.4.3288), ts 778116862047, free_ts 778063601540
[ 1612.943444][T14149]  post_alloc_hook+0x181/0x1b0
[ 1612.948246][T14149]  get_page_from_freelist+0x135c/0x3920
[ 1612.953827][T14149]  __alloc_frozen_pages_noprof+0x263/0x23a0
[ 1612.959754][T14149]  alloc_pages_mpol+0x1fb/0x550
[ 1612.964645][T14149]  new_slab+0x244/0x340
[ 1612.968827][T14149]  ___slab_alloc+0xd9c/0x1940
[ 1612.973531][T14149]  __slab_alloc.constprop.0+0x56/0xb0
[ 1612.978932][T14149]  __kmalloc_noprof+0x2f2/0x510
[ 1612.983826][T14149]  __register_sysctl_table+0xb3/0x1900
[ 1612.989309][T14149]  __addrconf_sysctl_register+0x1a2/0x360
[ 1612.995047][T14149]  addrconf_sysctl_register+0x15f/0x1f0
[ 1613.000614][T14149]  ipv6_add_dev+0xb39/0x15f0
[ 1613.005219][T14149]  addrconf_notify+0x53e/0x19e0
[ 1613.010097][T14149]  notifier_call_chain+0xbc/0x410
[ 1613.015149][T14149]  call_netdevice_notifiers_info+0xbe/0x140
[ 1613.021080][T14149]  register_netdevice+0x182e/0x2270
[ 1613.026302][T14149] page last free pid 20879 tgid 20879 stack trace:
[ 1613.032811][T14149]  __free_frozen_pages+0x69d/0xff0
[ 1613.037952][T14149]  __put_partials+0x16d/0x1c0
[ 1613.042668][T14149]  qlist_free_all+0x4e/0x120
[ 1613.047286][T14149]  kasan_quarantine_reduce+0x195/0x1e0
[ 1613.052784][T14149]  __kasan_slab_alloc+0x69/0x90
[ 1613.057673][T14149]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 1613.063163][T14149]  vm_area_dup+0x25/0x760
[ 1613.067521][T14149]  __split_vma+0x17f/0x1030
[ 1613.072058][T14149]  vms_gather_munmap_vmas+0x392/0x1310
[ 1613.077552][T14149]  __mmap_region+0x314/0x27c0
[ 1613.082266][T14149]  mmap_region+0x1ab/0x3f0
[ 1613.086711][T14149]  do_mmap+0xd8e/0x11b0
[ 1613.090882][T14149]  vm_mmap_pgoff+0x281/0x450
[ 1613.095490][T14149]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1613.100270][T14149]  __x64_sys_mmap+0x125/0x190
[ 1613.104961][T14149]  do_syscall_64+0xcd/0x260
[ 1613.109500][T14149] 
[ 1613.111822][T14149] Memory state around the buggy address:
[ 1613.117459][T14149]  ffff888068aa1f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1613.125534][T14149]  ffff888068aa2000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1613.133607][T14149] >ffff888068aa2080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1613.141678][T14149]                                   ^
[ 1613.147054][T14149]  ffff888068aa2100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1613.155126][T14149]  ffff888068aa2180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1613.163197][T14149] ==================================================================
[ 1613.220624][T14149] ==================================================================
[ 1613.228754][T14149] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0x1cc/0x200
[ 1613.237658][T14149] Read of size 8 at addr ffff888068aa20a8 by task kworker/1:0/14149
[ 1613.245664][T14149] 
[ 1613.247993][T14149] CPU: 1 UID: 0 PID: 14149 Comm: kworker/1:0 Tainted: G    B               6.15.0-rc6-syzkaller-00052-g9f35e33144ae #0 PREEMPT(full) 
[ 1613.248037][T14149] Tainted: [B]=BAD_PAGE
[ 1613.248048][T14149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1613.248067][T14149] Workqueue: events smc_ib_port_event_work
[ 1613.248112][T14149] Call Trace:
[ 1613.248122][T14149]  <TASK>
[ 1613.248134][T14149]  dump_stack_lvl+0x116/0x1f0
[ 1613.248177][T14149]  print_report+0xc3/0x670
[ 1613.248224][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.248258][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.248290][T14149]  ? __phys_addr+0xc6/0x150
[ 1613.248331][T14149]  ? __ethtool_get_link_ksettings+0x1cc/0x200
[ 1613.248377][T14149]  kasan_report+0xe0/0x110
[ 1613.248421][T14149]  ? __ethtool_get_link_ksettings+0x1cc/0x200
[ 1613.248471][T14149]  __ethtool_get_link_ksettings+0x1cc/0x200
[ 1613.248518][T14149]  __ethtool_get_link_ksettings+0x148/0x200
[ 1613.248564][T14149]  ib_get_eth_speed+0x122/0xb50
[ 1613.248608][T14149]  ? __pfx_ib_get_eth_speed+0x10/0x10
[ 1613.248649][T14149]  ? __pfx___mutex_lock+0x10/0x10
[ 1613.248699][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.248732][T14149]  ? do_raw_spin_unlock+0x172/0x230
[ 1613.248766][T14149]  rxe_query_port+0x108/0x330
[ 1613.248811][T14149]  ib_query_port+0x441/0x8a0
[ 1613.248853][T14149]  smc_ib_port_event_work+0x12f/0xbf0
[ 1613.248895][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.248932][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.248965][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1613.249001][T14149]  process_one_work+0x9cf/0x1b70
[ 1613.249038][T14149]  ? __pfx_process_one_work+0x10/0x10
[ 1613.249068][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.249106][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.249139][T14149]  ? assign_work+0x1a0/0x250
[ 1613.249167][T14149]  worker_thread+0x6c8/0xf10
[ 1613.249204][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.249238][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.249271][T14149]  ? __kthread_parkme+0x19e/0x250
[ 1613.249311][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.249345][T14149]  ? __pfx_worker_thread+0x10/0x10
[ 1613.249375][T14149]  kthread+0x3c5/0x780
[ 1613.249401][T14149]  ? __pfx_kthread+0x10/0x10
[ 1613.249426][T14149]  ? __pfx_kthread+0x10/0x10
[ 1613.249451][T14149]  ? __pfx_kthread+0x10/0x10
[ 1613.249477][T14149]  ? __pfx_kthread+0x10/0x10
[ 1613.249501][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1613.249534][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1613.249567][T14149]  ? __pfx_kthread+0x10/0x10
[ 1613.249594][T14149]  ret_from_fork+0x48/0x80
[ 1613.249621][T14149]  ? __pfx_kthread+0x10/0x10
[ 1613.249647][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1613.249696][T14149]  </TASK>
[ 1613.249705][T14149] 
[ 1613.512801][T14149] Allocated by task 20253:
[ 1613.517225][T14149]  kasan_save_stack+0x33/0x60
[ 1613.521941][T14149]  kasan_save_track+0x14/0x30
[ 1613.526648][T14149]  __kasan_kmalloc+0xaa/0xb0
[ 1613.531264][T14149]  __kvmalloc_node_noprof+0x279/0x600
[ 1613.536673][T14149]  alloc_netdev_mqs+0xd2/0x1570
[ 1613.541556][T14149]  rtnl_create_link+0xc10/0xfa0
[ 1613.546438][T14149]  rtnl_newlink+0xb69/0x2000
[ 1613.551069][T14149]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1613.556034][T14149]  netlink_rcv_skb+0x16d/0x440
[ 1613.560828][T14149]  netlink_unicast+0x53d/0x7f0
[ 1613.565619][T14149]  netlink_sendmsg+0x8d1/0xdd0
[ 1613.570413][T14149]  __sys_sendto+0x498/0x510
[ 1613.574931][T14149]  __x64_sys_sendto+0xe0/0x1c0
[ 1613.579713][T14149]  do_syscall_64+0xcd/0x260
[ 1613.584252][T14149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1613.590164][T14149] 
[ 1613.592493][T14149] Freed by task 25890:
[ 1613.596561][T14149]  kasan_save_stack+0x33/0x60
[ 1613.601270][T14149]  kasan_save_track+0x14/0x30
[ 1613.605975][T14149]  kasan_save_free_info+0x3b/0x60
[ 1613.611022][T14149]  __kasan_slab_free+0x51/0x70
[ 1613.615819][T14149]  kfree+0x2b6/0x4d0
[ 1613.619743][T14149]  device_release+0xa4/0x240
[ 1613.624373][T14149]  kobject_put+0x1e7/0x5a0
[ 1613.628807][T14149]  netdev_run_todo+0x7e9/0x1320
[ 1613.633683][T14149]  default_device_exit_batch+0x858/0xaf0
[ 1613.639353][T14149]  ops_exit_list+0x12b/0x180
[ 1613.643970][T14149]  cleanup_net+0x5c1/0xb30
[ 1613.648415][T14149]  process_one_work+0x9cf/0x1b70
[ 1613.653379][T14149]  worker_thread+0x6c8/0xf10
[ 1613.657992][T14149]  kthread+0x3c5/0x780
[ 1613.662076][T14149]  ret_from_fork+0x48/0x80
[ 1613.666506][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1613.671309][T14149] 
[ 1613.673638][T14149] The buggy address belongs to the object at ffff888068aa2000
[ 1613.673638][T14149]  which belongs to the cache kmalloc-cg-4k of size 4096
[ 1613.687976][T14149] The buggy address is located 168 bytes inside of
[ 1613.687976][T14149]  freed 4096-byte region [ffff888068aa2000, ffff888068aa3000)
[ 1613.701896][T14149] 
[ 1613.704232][T14149] The buggy address belongs to the physical page:
[ 1613.710644][T14149] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x68aa0
[ 1613.719422][T14149] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1613.727931][T14149] memcg:ffff88807ecfd001
[ 1613.732189][T14149] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1613.739829][T14149] page_type: f5(slab)
[ 1613.743822][T14149] raw: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1613.752430][T14149] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1613.761036][T14149] head: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1613.769727][T14149] head: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1613.778418][T14149] head: 00fff00000000003 ffffea0001a2a801 00000000ffffffff 00000000ffffffff
[ 1613.787109][T14149] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1613.795828][T14149] page dumped because: kasan: bad access detected
[ 1613.802338][T14149] page_owner tracks the page as allocated
[ 1613.808054][T14149] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 20869, tgid 20865 (syz.4.3288), ts 778116862047, free_ts 778063601540
[ 1613.831031][T14149]  post_alloc_hook+0x181/0x1b0
[ 1613.835839][T14149]  get_page_from_freelist+0x135c/0x3920
[ 1613.841457][T14149]  __alloc_frozen_pages_noprof+0x263/0x23a0
[ 1613.847399][T14149]  alloc_pages_mpol+0x1fb/0x550
[ 1613.852285][T14149]  new_slab+0x244/0x340
[ 1613.856468][T14149]  ___slab_alloc+0xd9c/0x1940
[ 1613.861174][T14149]  __slab_alloc.constprop.0+0x56/0xb0
[ 1613.866578][T14149]  __kmalloc_noprof+0x2f2/0x510
[ 1613.871463][T14149]  __register_sysctl_table+0xb3/0x1900
[ 1613.876951][T14149]  __addrconf_sysctl_register+0x1a2/0x360
[ 1613.882699][T14149]  addrconf_sysctl_register+0x15f/0x1f0
[ 1613.888275][T14149]  ipv6_add_dev+0xb39/0x15f0
[ 1613.892885][T14149]  addrconf_notify+0x53e/0x19e0
[ 1613.897765][T14149]  notifier_call_chain+0xbc/0x410
[ 1613.902818][T14149]  call_netdevice_notifiers_info+0xbe/0x140
[ 1613.908747][T14149]  register_netdevice+0x182e/0x2270
[ 1613.913975][T14149] page last free pid 20879 tgid 20879 stack trace:
[ 1613.920481][T14149]  __free_frozen_pages+0x69d/0xff0
[ 1613.925617][T14149]  __put_partials+0x16d/0x1c0
[ 1613.930316][T14149]  qlist_free_all+0x4e/0x120
[ 1613.934931][T14149]  kasan_quarantine_reduce+0x195/0x1e0
[ 1613.940423][T14149]  __kasan_slab_alloc+0x69/0x90
[ 1613.945302][T14149]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 1613.950789][T14149]  vm_area_dup+0x25/0x760
[ 1613.955139][T14149]  __split_vma+0x17f/0x1030
[ 1613.959674][T14149]  vms_gather_munmap_vmas+0x392/0x1310
[ 1613.965163][T14149]  __mmap_region+0x314/0x27c0
[ 1613.969873][T14149]  mmap_region+0x1ab/0x3f0
[ 1613.974319][T14149]  do_mmap+0xd8e/0x11b0
[ 1613.978494][T14149]  vm_mmap_pgoff+0x281/0x450
[ 1613.983099][T14149]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1613.987882][T14149]  __x64_sys_mmap+0x125/0x190
[ 1613.992577][T14149]  do_syscall_64+0xcd/0x260
[ 1613.997119][T14149] 
[ 1613.999444][T14149] Memory state around the buggy address:
[ 1614.005084][T14149]  ffff888068aa1f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1614.013153][T14149]  ffff888068aa2000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.021228][T14149] >ffff888068aa2080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.029291][T14149]                                   ^
[ 1614.034664][T14149]  ffff888068aa2100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.042732][T14149]  ffff888068aa2180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.050800][T14149] ==================================================================
[ 1614.077263][T14149] ==================================================================
[ 1614.085391][T14149] BUG: KASAN: slab-use-after-free in __ethtool_get_link_ksettings+0x1e3/0x200
[ 1614.094307][T14149] Read of size 8 at addr ffff888068aa22e8 by task kworker/1:0/14149
[ 1614.102353][T14149] 
[ 1614.104682][T14149] CPU: 1 UID: 0 PID: 14149 Comm: kworker/1:0 Tainted: G    B               6.15.0-rc6-syzkaller-00052-g9f35e33144ae #0 PREEMPT(full) 
[ 1614.104725][T14149] Tainted: [B]=BAD_PAGE
[ 1614.104736][T14149] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1614.104756][T14149] Workqueue: events smc_ib_port_event_work
[ 1614.104803][T14149] Call Trace:
[ 1614.104814][T14149]  <TASK>
[ 1614.104824][T14149]  dump_stack_lvl+0x116/0x1f0
[ 1614.104867][T14149]  print_report+0xc3/0x670
[ 1614.104910][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.104944][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.104977][T14149]  ? __phys_addr+0xc6/0x150
[ 1614.105018][T14149]  ? __ethtool_get_link_ksettings+0x1e3/0x200
[ 1614.105064][T14149]  kasan_report+0xe0/0x110
[ 1614.105108][T14149]  ? __ethtool_get_link_ksettings+0x1e3/0x200
[ 1614.105159][T14149]  __ethtool_get_link_ksettings+0x1e3/0x200
[ 1614.105211][T14149]  __ethtool_get_link_ksettings+0x148/0x200
[ 1614.105258][T14149]  ib_get_eth_speed+0x122/0xb50
[ 1614.105301][T14149]  ? __pfx_ib_get_eth_speed+0x10/0x10
[ 1614.105343][T14149]  ? __pfx___mutex_lock+0x10/0x10
[ 1614.105392][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.105426][T14149]  ? do_raw_spin_unlock+0x172/0x230
[ 1614.105461][T14149]  rxe_query_port+0x108/0x330
[ 1614.105506][T14149]  ib_query_port+0x441/0x8a0
[ 1614.105547][T14149]  smc_ib_port_event_work+0x12f/0xbf0
[ 1614.105589][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.105627][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.105660][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1614.105696][T14149]  process_one_work+0x9cf/0x1b70
[ 1614.105734][T14149]  ? __pfx_process_one_work+0x10/0x10
[ 1614.105764][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.105802][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.105835][T14149]  ? assign_work+0x1a0/0x250
[ 1614.105863][T14149]  worker_thread+0x6c8/0xf10
[ 1614.105896][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.105931][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.105964][T14149]  ? __kthread_parkme+0x19e/0x250
[ 1614.106004][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.106038][T14149]  ? __pfx_worker_thread+0x10/0x10
[ 1614.106068][T14149]  kthread+0x3c5/0x780
[ 1614.106094][T14149]  ? __pfx_kthread+0x10/0x10
[ 1614.106120][T14149]  ? __pfx_kthread+0x10/0x10
[ 1614.106146][T14149]  ? __pfx_kthread+0x10/0x10
[ 1614.106171][T14149]  ? __pfx_kthread+0x10/0x10
[ 1614.106199][T14149]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1614.106232][T14149]  ? rcu_is_watching+0x12/0xc0
[ 1614.106265][T14149]  ? __pfx_kthread+0x10/0x10
[ 1614.106292][T14149]  ret_from_fork+0x48/0x80
[ 1614.106319][T14149]  ? __pfx_kthread+0x10/0x10
[ 1614.106346][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1614.106395][T14149]  </TASK>
[ 1614.106404][T14149] 
[ 1614.369334][T14149] Allocated by task 20253:
[ 1614.373740][T14149]  kasan_save_stack+0x33/0x60
[ 1614.378435][T14149]  kasan_save_track+0x14/0x30
[ 1614.383145][T14149]  __kasan_kmalloc+0xaa/0xb0
[ 1614.387745][T14149]  __kvmalloc_node_noprof+0x279/0x600
[ 1614.393128][T14149]  alloc_netdev_mqs+0xd2/0x1570
[ 1614.397991][T14149]  rtnl_create_link+0xc10/0xfa0
[ 1614.402849][T14149]  rtnl_newlink+0xb69/0x2000
[ 1614.407448][T14149]  rtnetlink_rcv_msg+0x95e/0xe90
[ 1614.412398][T14149]  netlink_rcv_skb+0x16d/0x440
[ 1614.417172][T14149]  netlink_unicast+0x53d/0x7f0
[ 1614.421942][T14149]  netlink_sendmsg+0x8d1/0xdd0
[ 1614.426738][T14149]  __sys_sendto+0x498/0x510
[ 1614.431242][T14149]  __x64_sys_sendto+0xe0/0x1c0
[ 1614.436005][T14149]  do_syscall_64+0xcd/0x260
[ 1614.440524][T14149]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1614.446417][T14149] 
[ 1614.448729][T14149] Freed by task 25890:
[ 1614.452786][T14149]  kasan_save_stack+0x33/0x60
[ 1614.457479][T14149]  kasan_save_track+0x14/0x30
[ 1614.462165][T14149]  kasan_save_free_info+0x3b/0x60
[ 1614.467197][T14149]  __kasan_slab_free+0x51/0x70
[ 1614.472011][T14149]  kfree+0x2b6/0x4d0
[ 1614.475911][T14149]  device_release+0xa4/0x240
[ 1614.480514][T14149]  kobject_put+0x1e7/0x5a0
[ 1614.484931][T14149]  netdev_run_todo+0x7e9/0x1320
[ 1614.489791][T14149]  default_device_exit_batch+0x858/0xaf0
[ 1614.495438][T14149]  ops_exit_list+0x12b/0x180
[ 1614.500037][T14149]  cleanup_net+0x5c1/0xb30
[ 1614.504467][T14149]  process_one_work+0x9cf/0x1b70
[ 1614.509407][T14149]  worker_thread+0x6c8/0xf10
[ 1614.514003][T14149]  kthread+0x3c5/0x780
[ 1614.518070][T14149]  ret_from_fork+0x48/0x80
[ 1614.522487][T14149]  ret_from_fork_asm+0x1a/0x30
[ 1614.527264][T14149] 
[ 1614.529585][T14149] The buggy address belongs to the object at ffff888068aa2000
[ 1614.529585][T14149]  which belongs to the cache kmalloc-cg-4k of size 4096
[ 1614.543897][T14149] The buggy address is located 744 bytes inside of
[ 1614.543897][T14149]  freed 4096-byte region [ffff888068aa2000, ffff888068aa3000)
[ 1614.557780][T14149] 
[ 1614.560094][T14149] The buggy address belongs to the physical page:
[ 1614.566493][T14149] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x68aa0
[ 1614.575252][T14149] head: order:3 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1614.583751][T14149] memcg:ffff88807ecfd001
[ 1614.587982][T14149] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1614.595523][T14149] page_type: f5(slab)
[ 1614.599504][T14149] raw: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1614.608089][T14149] raw: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1614.616673][T14149] head: 00fff00000000040 ffff88801b44b500 ffffea0001311600 dead000000000002
[ 1614.625441][T14149] head: 0000000000000000 0000000000040004 00000000f5000000 ffff88807ecfd001
[ 1614.634120][T14149] head: 00fff00000000003 ffffea0001a2a801 00000000ffffffff 00000000ffffffff
[ 1614.642817][T14149] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000008
[ 1614.651481][T14149] page dumped because: kasan: bad access detected
[ 1614.657902][T14149] page_owner tracks the page as allocated
[ 1614.663603][T14149] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 20869, tgid 20865 (syz.4.3288), ts 778116862047, free_ts 778063601540
[ 1614.686537][T14149]  post_alloc_hook+0x181/0x1b0
[ 1614.691315][T14149]  get_page_from_freelist+0x135c/0x3920
[ 1614.696892][T14149]  __alloc_frozen_pages_noprof+0x263/0x23a0
[ 1614.702799][T14149]  alloc_pages_mpol+0x1fb/0x550
[ 1614.707672][T14149]  new_slab+0x244/0x340
[ 1614.711940][T14149]  ___slab_alloc+0xd9c/0x1940
[ 1614.716636][T14149]  __slab_alloc.constprop.0+0x56/0xb0
[ 1614.722046][T14149]  __kmalloc_noprof+0x2f2/0x510
[ 1614.726911][T14149]  __register_sysctl_table+0xb3/0x1900
[ 1614.732372][T14149]  __addrconf_sysctl_register+0x1a2/0x360
[ 1614.738097][T14149]  addrconf_sysctl_register+0x15f/0x1f0
[ 1614.743649][T14149]  ipv6_add_dev+0xb39/0x15f0
[ 1614.748242][T14149]  addrconf_notify+0x53e/0x19e0
[ 1614.753101][T14149]  notifier_call_chain+0xbc/0x410
[ 1614.758139][T14149]  call_netdevice_notifiers_info+0xbe/0x140
[ 1614.764052][T14149]  register_netdevice+0x182e/0x2270
[ 1614.769261][T14149] page last free pid 20879 tgid 20879 stack trace:
[ 1614.775756][T14149]  __free_frozen_pages+0x69d/0xff0
[ 1614.780878][T14149]  __put_partials+0x16d/0x1c0
[ 1614.785565][T14149]  qlist_free_all+0x4e/0x120
[ 1614.790166][T14149]  kasan_quarantine_reduce+0x195/0x1e0
[ 1614.795641][T14149]  __kasan_slab_alloc+0x69/0x90
[ 1614.800509][T14149]  kmem_cache_alloc_noprof+0x1cb/0x3b0
[ 1614.806004][T14149]  vm_area_dup+0x25/0x760
[ 1614.810343][T14149]  __split_vma+0x17f/0x1030
[ 1614.814856][T14149]  vms_gather_munmap_vmas+0x392/0x1310
[ 1614.820326][T14149]  __mmap_region+0x314/0x27c0
[ 1614.825015][T14149]  mmap_region+0x1ab/0x3f0
[ 1614.829447][T14149]  do_mmap+0xd8e/0x11b0
[ 1614.833624][T14149]  vm_mmap_pgoff+0x281/0x450
[ 1614.838219][T14149]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1614.842986][T14149]  __x64_sys_mmap+0x125/0x190
[ 1614.847663][T14149]  do_syscall_64+0xcd/0x260
[ 1614.852188][T14149] 
[ 1614.854518][T14149] Memory state around the buggy address:
[ 1614.860138][T14149]  ffff888068aa2180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.868200][T14149]  ffff888068aa2200: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.876256][T14149] >ffff888068aa2280: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.884311][T14149]                                                           ^
[ 1614.891762][T14149]  ffff888068aa2300: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.899824][T14149]  ffff888068aa2380: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1614.907880][T14149] ==================================================================
[ 1615.093879][ T6737] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1615.142068][ T6737] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1615.223866][ T6720] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1615.237311][ T6720] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1615.303358][ T6720] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1615.352213][ T6720] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1615.361565][ T6720] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1615.392881][ T6720] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1615.442558][ T6737] team0: Port device team_slave_0 added
[ 1615.464550][ T6737] team0: Port device team_slave_1 added
[ 1615.673536][ T6720] hsr_slave_0: entered promiscuous mode
[ 1615.680587][ T6720] hsr_slave_1: entered promiscuous mode
[ 1615.690315][ T6720] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1615.699514][ T6720] Cannot create hsr debugfs directory
[ 1615.716401][ T6737] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1615.723455][ T6737] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1615.758573][ T6737] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1615.778838][ T6737] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1615.785921][ T6737] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1615.818079][ T6737] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1616.101399][ T6737] hsr_slave_0: entered promiscuous mode
[ 1616.112477][ T6737] hsr_slave_1: entered promiscuous mode
[ 1616.119035][ T6737] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1616.126718][ T6737] Cannot create hsr debugfs directory
[ 1616.232625][T25890] IPVS: stop unused estimator thread 0...
[ 1616.462685][T25890] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.531575][T25890] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.634073][T25890] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.702889][T25890] bond0: (slave vlan3): Releasing active interface
[ 1616.713505][T25890] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1616.803785][T25890] bridge_slave_1: left allmulticast mode
[ 1616.810936][T25890] bridge_slave_1: left promiscuous mode
[ 1616.816699][T25890] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1616.825558][T25890] bridge_slave_0: left promiscuous mode
[ 1616.831702][T25890] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1617.052278][T25890] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1617.061804][T25890] bond_slave_0: left promiscuous mode
[ 1617.067599][T25890] bond_slave_0: left allmulticast mode
[ 1617.074553][T25890] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1617.083571][T25890] bond_slave_1: left promiscuous mode
[ 1617.089771][T25890] bond_slave_1: left allmulticast mode
[ 1617.096354][T25890] $Hÿ (unregistering): Released all slaves
[ 1617.213745][T25890] bond0 (unregistering): Released all slaves
[ 1617.315162][T25890] bond1 (unregistering): Released all slaves
[ 1617.374348][T25890] tipc: Left network mode
[ 1617.406554][T25890] IPVS: stopping backup sync thread 6125 ...
[ 1617.461320][ T6720] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1617.494732][ T6720] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1617.506605][ T6720] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1617.526201][ T6720] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1617.560961][ T6737] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1617.571699][ T6737] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1617.582371][ T6737] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1617.599734][ T6737] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1617.613866][T25890] hsr_slave_0: left promiscuous mode
[ 1617.619882][T25890] hsr_slave_1: left promiscuous mode
[ 1617.625780][T25890] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1617.633237][T25890] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1617.644453][T25890] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1617.651987][T25890] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1617.664283][T25890] veth1_macvtap: left promiscuous mode
[ 1617.670109][T25890] veth0_macvtap: left promiscuous mode
[ 1617.677309][T25890] veth1_vlan: left promiscuous mode
[ 1617.682633][T25890] veth0_vlan: left promiscuous mode
[ 1617.862095][T25890] team0 (unregistering): Port device team_slave_1 removed
[ 1617.877691][T25890] team0 (unregistering): Port device team_slave_0 removed
[ 1618.111225][ T6720] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1618.143288][ T6737] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1618.173939][ T6720] 8021q: adding VLAN 0 to HW filter on device team0
[ 1618.193644][ T6737] 8021q: adding VLAN 0 to HW filter on device team0
[ 1618.225406][ T7118] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1618.232568][ T7118] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1618.242102][ T7118] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1618.249223][ T7118] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1618.259512][ T7118] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1618.266666][ T7118] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1618.284070][T18497] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1618.291237][T18497] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1618.354510][ T6737] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1618.409835][ T6720] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1618.436163][ T6720] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1618.633856][ T6737] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1618.693594][ T6737] veth0_vlan: entered promiscuous mode
[ 1618.709299][ T6737] veth1_vlan: entered promiscuous mode
[ 1618.742597][ T6737] veth0_macvtap: entered promiscuous mode
[ 1618.757278][ T6737] veth1_macvtap: entered promiscuous mode
[ 1618.782610][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1618.793440][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.804049][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1618.814630][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.824493][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1618.835579][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.845469][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1618.856258][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.867339][ T6737] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1618.881211][ T6720] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1618.894133][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1618.908766][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.919477][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1618.932778][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.944974][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1618.956011][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.965942][ T6737] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1618.977634][ T6737] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1618.988551][ T6737] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1619.004088][ T6737] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.025219][ T6737] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.034011][ T6737] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.054650][ T6737] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.131186][ T5954] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1619.156427][ T5954] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1619.191578][T25890] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1619.200600][T25890] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1619.243132][ T6720] veth0_vlan: entered promiscuous mode
[ 1619.262784][ T6720] veth1_vlan: entered promiscuous mode
[ 1619.287209][ T6720] veth0_macvtap: entered promiscuous mode
[ 1619.296290][ T6720] veth1_macvtap: entered promiscuous mode
[ 1619.311712][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1619.322977][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.333379][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1619.344512][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.356614][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1619.367218][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.377193][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1619.388076][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.397993][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1619.408453][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.420773][ T6720] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1619.437850][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1619.448545][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.458593][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1619.469137][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.479735][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1619.490655][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.501053][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1619.511550][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.522082][ T6720] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1619.532570][ T6720] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1619.543568][ T6720] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1619.557481][ T6720] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.566710][ T6720] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.576004][ T6720] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.585330][ T6720] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1619.649951][ T7118] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1619.670493][ T7118] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1619.693906][T25890] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1619.703144][T25890] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50