last executing test programs:

28m19.534130965s ago: executing program 32 (id=10):
r0 = syz_usb_connect$cdc_ncm(0x2, 0x6e, 0x0, 0x0)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x3000000, &(0x7f0000000080)=ANY=[@ANYRES64=0x0], 0x1, 0x5d8, &(0x7f00000006c0)="$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")
unlink(&(0x7f0000001a80)='./file2\x00')

27m41.455184277s ago: executing program 33 (id=128):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x8, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000070000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000a5df850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r0}, 0x10)
creat(&(0x7f00000001c0)='./file1\x00', 0x2)
acct(&(0x7f0000000080)='./file1\x00')
acct(0x0)

27m32.981652385s ago: executing program 34 (id=146):
ioctl$KVM_SET_REGS(0xffffffffffffffff, 0x4090ae82, &(0x7f00000000c0)={[0x8, 0x9, 0x7, 0x0, 0x1, 0xa871, 0x5, 0x0, 0x7e, 0x0, 0x0, 0x0, 0x7, 0x6, 0x1, 0x5], 0x8000000, 0x8340})
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x42, &(0x7f0000000100)=0x5, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

27m16.24934023s ago: executing program 35 (id=184):
creat(&(0x7f00000002c0)='./file0\x00', 0x140)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
truncate(&(0x7f0000000180)='./file0\x00', 0x8fff5)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r0, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[0x10000], 0x0, 0x0, 0x1, 0x1}}, 0x40)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)

26m13.688093655s ago: executing program 36 (id=366):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="380000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="000100000c02000018001280080001000300000000000000050004"], 0x38}, 0x1, 0x0, 0x0, 0x40001}, 0x20004090)
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f00000000c0), 0xffffffffffffffff)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_802154(r2, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r3=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_LEVEL(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000040)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000fedbdf252100000008000300", @ANYRES32=r3, @ANYBLOB="24002d8005000100fe000000080002"], 0x40}, 0x1, 0x0, 0x0, 0x20000044}, 0x0)

25m23.530296473s ago: executing program 37 (id=488):
r0 = syz_io_uring_setup(0xd2, &(0x7f0000000480)={0x0, 0xb46, 0x0, 0x0, 0x34f}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000080)=<r2=>0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x25, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4000, @fd, 0xd4b, 0x0, 0x0, 0x0, 0x1})
io_uring_enter(r0, 0x473a, 0x74ee, 0x0, 0x0, 0x0)

24m20.918646577s ago: executing program 38 (id=667):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x80000000, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000080)=0x2)
ioctl$vim2m_VIDIOC_DQBUF(r0, 0xc0585611, &(0x7f0000000380)=@mmap={0x401, 0x2, 0x4, 0x10, 0x4, {0x77359400}, {0x3, 0x0, 0xf, 0x6, 0x3, 0x1, "a91b63d9"}, 0x4, 0x1, {}, 0x101})

23m41.981396351s ago: executing program 39 (id=780):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
ioctl$int_in(r0, 0x5421, &(0x7f00000000c0)=0x7fffffffffffffff)
listen(r0, 0x0)
r1 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r1, &(0x7f00000002c0)={&(0x7f0000000080)=@nameseq={0x1e, 0x2, 0x2, {0x41}}, 0x10, 0x0}, 0x0)
accept4(r0, 0x0, 0x0, 0x0)

22m20.844783765s ago: executing program 40 (id=1054):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r1 = openat$random(0xffffffffffffff9c, &(0x7f0000000200), 0x80481, 0x0)
pwrite64(r1, 0x0, 0x0, 0x100000001)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x8, &(0x7f0000000040)=ANY=[@ANYRESOCT=r1, @ANYRES32=r0, @ANYBLOB="0000000000000000b702000001000000850000008600000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0xe40, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r3, 0x0, 0x40, &(0x7f00000003c0)=@filter={'filter\x00', 0x42, 0x4, 0x260, 0xffffffff, 0x0, 0x130, 0x130, 0xffffffff, 0xffffffff, 0x1c8, 0x1c8, 0x1c8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28}}, {{@uncond, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x7}}}, {{@ip={@rand_addr, @remote, 0x0, 0x0, 'ip6erspan0\x00', 'wlan1\x00'}, 0x0, 0x70, 0x98}, @REJECT={0x28, 'REJECT\x00', 0x0, {0x6}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2c0)

21m42.10054857s ago: executing program 41 (id=1179):
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f00000000c0)=0x3ada, 0x4)
r1 = socket$tipc(0x1e, 0x5, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000080)={'vxcan0\x00', <r2=>0x0})
sendmsg$can_raw(r0, &(0x7f0000000000)={&(0x7f0000000780)={0x1d, r2}, 0x10, &(0x7f0000000200)={&(0x7f0000000300)=@can={{0x0, 0x1, 0x1, 0x1}, 0x0, 0x3, 0x0, 0x0, "96ccd9f4c7b21421"}, 0x10}, 0x1, 0x0, 0x0, 0x4081}, 0x20004105)
close(0x4)

21m36.439914123s ago: executing program 42 (id=1194):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xc}}, 0x5}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000100)='vlan0\x00', 0x10)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$RDMA_USER_CM_CMD_BIND(r1, &(0x7f00000002c0)={0x14, 0x88, 0xfa00, {0xffffffffffffffff, 0x10, 0x0, @ib={0x1b, 0x2, 0x76, {"7b6b50c06a68a6d38ee852c88c49d963"}, 0xfffffffffffffb84, 0xac, 0x8}}}, 0x90)
sendmsg$WG_CMD_SET_DEVICE(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)={0x14, 0x0, 0x8, 0x70bd27, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x4008055}, 0x4000001)

19m13.392371319s ago: executing program 43 (id=1857):
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x3000006, 0x204031, 0xffffffffffffffff, 0x81b55000)
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @remote, @void, {@ipv6={0x86dd, @tcp={0x9, 0x6, '\x00', 0x14, 0x6, 0xff, @dev={0xfe, 0x80, '\x00', 0x39}, @local, {[], {{0x4e20, 0x4e24, 0x41424344, 0x41424344, 0x1, 0x0, 0x5, 0xc2, 0x7, 0x0, 0x3}}}}}}}, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000007880)=[{{0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000040)="af0ac9", 0x3}], 0x1}}], 0x1, 0x4000000)
r0 = syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x2001)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000200)='blkio.bfq.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_misc(r1, &(0x7f0000000040), 0xe09)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x2, 0x0, 0x0, 0x0, 0xb, 0x1c, "fee8a2ab78fc979fd1e00d96072000001ea89de2b7fb0000e60080b8785d96000100", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "f4bd000000801900", [0x0, 0xffffffff9673e35d]}})

18m42.219468698s ago: executing program 44 (id=1977):
pipe(&(0x7f0000000140))
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
unshare(0x2040400)
socket$xdp(0x2c, 0x3, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000280))
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x2, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f0000000240)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

17m22.816140118s ago: executing program 45 (id=2366):
r0 = syz_usb_connect$cdc_ncm(0x0, 0x6e, &(0x7f0000000480)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x40, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5c, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}}, {{0x9, 0x5, 0x81, 0x3, 0x200}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x2, 0x2, 0xd, 0x0, 0x0, "", {{{0x9, 0x5, 0x82, 0x2, 0x200}}, {{0x9, 0x5, 0x3, 0x2, 0x200}}}}}}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f0000000340)={0x44, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x20, 0x80, 0x1c, {0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10, 0x10}}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, &(0x7f0000000080)={0x14, 0x0, &(0x7f0000000040)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0)
syz_usb_ep_write(r0, 0x82, 0x5, &(0x7f0000002340)='hello')

17m1.088920551s ago: executing program 46 (id=2439):
r0 = socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'syz_tun\x00', <r1=>0x0})
bind$packet(r0, &(0x7f00000003c0)={0x11, 0xf8, r1, 0x1, 0x9, 0x6, @remote}, 0x14)
r2 = socket(0x200000000000011, 0x2, 0x0)
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @random="933c547ecfa7"}, 0x14)
r3 = socket(0x200000000000011, 0x2, 0xd)
bind$packet(r3, &(0x7f0000000080)={0x11, 0x800, 0x0, 0x1, 0x0, 0x6, @multicast}, 0x14)
syz_emit_ethernet(0x32, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa0000000000000800"], 0x0)

16m44.760332276s ago: executing program 47 (id=2496):
r0 = fsopen(&(0x7f0000000140)='sysfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x1)
fchdir(r1)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0, 0x4d)
getdents(r2, &(0x7f0000000200)=""/223, 0xdf)
lseek(r2, 0x101, 0x1)
getdents64(r2, &(0x7f0000003340)=""/48, 0x30)

15m43.164549434s ago: executing program 48 (id=2810):
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r2)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r3, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005840)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@newqdisc={0x58, 0x24, 0x5820a61ca228651, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x5, 0x101, 0x5, 0x5, 0x8, 0x200, 0xfffffffd, 0x9, 0x2a6}}}}]}, 0x58}}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000400)=@newtfilter={0x24, 0x28, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {}, {}, {0xfff1, 0x4}}}, 0x24}}, 0x0)

15m19.222182757s ago: executing program 49 (id=2909):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x458081, 0x0)
open$dir(&(0x7f0000000000)='./file1\x00', 0x412281, 0x40)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x200)

14m52.381034372s ago: executing program 50 (id=3010):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000900)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='kfree\x00', r1}, 0x18)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$batadv(&(0x7f0000003000), r2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r4, 0x8933, &(0x7f0000003040)={'batadv0\x00', <r5=>0x0})
sendmsg$BATADV_CMD_TP_METER(r2, &(0x7f0000003140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002bbd7000fbdbdf25020000000a000900aaaaaaaaaa44000008000300", @ANYRES32=r5, @ANYBLOB='\b\x00\v'], 0x30}, 0x1, 0x0, 0x0, 0x20000050}, 0x20040084)

14m19.451641485s ago: executing program 51 (id=3080):
r0 = landlock_create_ruleset(&(0x7f0000000000)={0x10, 0x0, 0x3}, 0x18, 0x0)
landlock_restrict_self(r0, 0x0)
r1 = open(&(0x7f0000000280)='.\x00', 0x141080, 0x0)
fcntl$notify(r1, 0x402, 0x8000003d)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
landlock_restrict_self(r0, 0x0)
symlink(&(0x7f0000001640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/../file0\x00', &(0x7f0000000e40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

14m7.131772464s ago: executing program 8 (id=3151):
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdir(&(0x7f0000000600)='./file0\x00', 0xe8)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000140)='securityfs\x00', 0x11, 0x0)
ioctl$AUTOFS_IOC_PROTOSUBVER(r0, 0x40049366, 0x0)

14m6.653680207s ago: executing program 8 (id=3155):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
socket$caif_stream(0x25, 0x1, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000ffffff00000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000850000000500000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pselect6(0x40, &(0x7f0000000000)={0x6, 0x100000001, 0x3, 0xffffffff, 0x2627bc41, 0xba4, 0x3, 0xfffffffffffffff8}, 0x0, &(0x7f00000000c0)={0x7ff, 0x7, 0x0, 0xc, 0x2, 0x6, 0x1, 0x7f}, &(0x7f0000000100)={0x0, 0x3938700}, 0x0)

13m51.305390863s ago: executing program 52 (id=3155):
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
socket$caif_stream(0x25, 0x1, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000ffffff00000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000850000000500000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000))
pselect6(0x40, &(0x7f0000000000)={0x6, 0x100000001, 0x3, 0xffffffff, 0x2627bc41, 0xba4, 0x3, 0xfffffffffffffff8}, 0x0, &(0x7f00000000c0)={0x7ff, 0x7, 0x0, 0xc, 0x2, 0x6, 0x1, 0x7f}, &(0x7f0000000100)={0x0, 0x3938700}, 0x0)

12m12.476406221s ago: executing program 3 (id=3708):
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
sched_setscheduler(0x0, 0x1, 0x0)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r0 = syz_io_uring_setup(0x1e1e, &(0x7f0000000200)={0x0, 0x86f7, 0x10100}, &(0x7f0000002000), &(0x7f0000000000))
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000380)=""/113, 0x71}], 0x1)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
syz_clone(0x80040000, 0x0, 0x0, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

12m11.262247208s ago: executing program 3 (id=3716):
syz_mount_image$hfs(&(0x7f00000001c0), &(0x7f0000000000)='./file2\x00', 0x40, &(0x7f0000000280)=ANY=[], 0x11, 0x2ff, &(0x7f0000000680)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='pids.current\x00', 0x275a, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0)
syz_clone(0x0, 0x0, 0xfffffffffffffead, 0x0, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpu.stat\x00', 0x275a, 0x0)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000140)='./file4\x00', 0x2129c19, 0x0, 0x0, 0x0, &(0x7f0000000100))

12m10.310330792s ago: executing program 3 (id=3724):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x12}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000280)={'pim6reg1\x00', 0x2})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000300)='qdisc_create\x00', r2}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000140)={'pim6reg1\x00', @broadcast})

12m9.407728458s ago: executing program 3 (id=3729):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f00000004c0)={[{@delalloc}, {@nojournal_checksum}, {@barrier_val={'barrier', 0x3d, 0x10002}}, {@dioread_lock}, {@data_err_ignore}, {@mb_optimize_scan}, {@dioread_nolock}, {@nobarrier}, {@abort}, {@user_xattr}, {@norecovery}, {@errors_remount}]}, 0x1, 0x570, &(0x7f00000019c0)="$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")
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000440)=@loop={'/dev/loop', 0x0}, &(0x7f0000000080)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r1 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r1, 0x8004587d, &(0x7f0000000080)={@desc={0x1, 0x0, @desc2}})
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x42, 0x10)

12m8.539728132s ago: executing program 3 (id=3735):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000003c0)={"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"})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000000)={[0x36, 0x790, 0x80000000002, 0x180, 0x400000004, 0xffffffffffffffff, 0xf1, 0x3, 0xfffffffffffffd7e, 0x45, 0x0, 0x3b9, 0xfffffffffffffffe, 0x0, 0x0, 0x8], 0x8000000, 0x3c4210})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

12m7.946737243s ago: executing program 3 (id=3739):
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
readv(r2, &(0x7f0000000440)=[{&(0x7f00000002c0)=""/252, 0xfc}], 0x1)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
syslog(0x2, &(0x7f0000000000)=""/41, 0x29)

12m5.672928971s ago: executing program 53 (id=3739):
r0 = fsopen(&(0x7f0000001340)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
r2 = openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
readv(r2, &(0x7f0000000440)=[{&(0x7f00000002c0)=""/252, 0xfc}], 0x1)
mkdir(&(0x7f0000000440)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, &(0x7f0000000300)='usrquota')
syslog(0x2, &(0x7f0000000000)=""/41, 0x29)

11m53.282595434s ago: executing program 2 (id=3804):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000080)=0x1, 0x4)
sendmsg$inet(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000006c0)=[{&(0x7f0000000b80)='n', 0x1}], 0x1}, 0x0)
setsockopt$inet6_tcp_TCP_REPAIR_WINDOW(r0, 0x6, 0x1d, &(0x7f0000000040)={0x0, 0x9, 0x7a8, 0x6}, 0x14)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000680)=@gcm_128={{0x303}, "db57cda808852139", "252432e72844858a068b92a5a810f4dc", "11802ff5", "5aee41448c84afb7"}, 0x28)

11m52.73331183s ago: executing program 2 (id=3807):
r0 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
setsockopt$netlink_NETLINK_BROADCAST_ERROR(r0, 0x10e, 0x4, &(0x7f0000000140)=0x6, 0x4)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000200), 0x4)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x64, 0x0, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x24, 0x2, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @empty}}}]}, @CTA_TIMEOUT={0x8}]}, 0x64}}, 0x0)
sendmsg$IPCTNL_MSG_CT_DELETE(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000640)={0x14, 0x2, 0x1, 0x5, 0x0, 0x0, {0x2, 0x0, 0x8}}, 0x14}, 0x1, 0x0, 0x0, 0x20044804}, 0x40040)

11m51.996032054s ago: executing program 2 (id=3812):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="180000000000000000000000a9000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000002d00000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f00000001c0)={0x0, 0x0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000004c0)={[{@acl}, {@barrier}, {@barrier_val}, {@sysvgroups}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x587, &(0x7f0000002100)="$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")
syz_mount_image$ext4(&(0x7f0000000000)='ext2\x00', &(0x7f0000000a80)='./file1\x00', 0x41, &(0x7f00000008c0)={[{@bsdgroups}, {@nodiscard}, {@noblock_validity}, {@grpjquota}, {@sb={'sb', 0x3d, 0x50cf}}, {@orlov}, {@norecovery}, {@barrier}, {@data_journal}]}, 0x66, 0x50a, &(0x7f0000000200)="$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")
syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000140)='.\x00', 0x1a4a438, &(0x7f00000008c0)=ANY=[], 0xc, 0x0, &(0x7f0000000000))

11m50.594433841s ago: executing program 2 (id=3816):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$tmpfs(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x104000, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0/file0\x00', 0x1c0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x1805406, 0x0)
mount$fuse(0x0, &(0x7f00000005c0)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$9p_unix(&(0x7f0000000100)='./file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x12f34d8, 0x0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000280)='./file0/file0\x00', 0x0, 0x2a05004, 0x0)

11m49.865413958s ago: executing program 2 (id=3819):
r0 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r1 = dup(r0)
write$6lowpan_enable(r1, &(0x7f0000000000)='0', 0xfffffd2c)
r2 = syz_io_uring_setup(0x239, &(0x7f0000000740)={0x0, 0x1c2a, 0x10100, 0x0, 0x3, 0x0, r1}, &(0x7f0000000180)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x2, 0x0, @fd=r0, 0x0, 0x0, 0x0, {}, 0x1})
io_uring_enter(r2, 0x2ded, 0xef92, 0x0, 0x0, 0x0)
r5 = msgget$private(0x0, 0x0)
msgsnd(r5, &(0x7f0000000080)=ANY=[@ANYBLOB="03"], 0x2000, 0x0)

11m49.136016175s ago: executing program 2 (id=3823):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
r2 = gettid()
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(r1, &(0x7f00000000c0)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x84000)
tee(r0, r3, 0xfffffffffffffc01, 0x0)

11m47.172614314s ago: executing program 54 (id=3823):
pipe2(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x4000)
r2 = gettid()
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$P9_RGETLOCK(r1, &(0x7f00000000c0)=ANY=[], 0xffffff6a)
pipe2(&(0x7f0000000040)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x84000)
tee(r0, r3, 0xfffffffffffffc01, 0x0)

9m6.520170955s ago: executing program 1 (id=4651):
r0 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r1 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xfffffffe, 0x0, 0x1, 0x9}, 0x50)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r2, &(0x7f0000000040), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
write$tun(r0, &(0x7f0000000600)=ANY=[], 0x32)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f0000000340)=[0x7], 0x0, 0x0, 0x1}}, 0x40)

9m5.909673954s ago: executing program 1 (id=4656):
syz_mount_image$ext4(&(0x7f0000002180)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x1008802, &(0x7f0000000180)={[{@resgid={'resgid', 0x3d, 0xee01}}, {@abort}, {@discard}, {@max_batch_time={'max_batch_time', 0x3d, 0xac9}}, {@data_ordered}, {@mblk_io_submit}, {@usrquota}, {@init_itable}, {@errors_remount}, {}, {@auto_da_alloc}]}, 0x9, 0x606, &(0x7f0000000600)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000500)='.\x00', 0x0, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000000018105e04da070000000000010902240001000000000904000009030000000921000000012222000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x22, {[@global=@item_012={0x2, 0x1, 0x9, "2313"}, @global=@item_012={0x2, 0x1, 0x0, "e53f"}, @global=@item_4={0x3, 0x1, 0x7, '\f\x00'}, @local=@item_012={0x2, 0x2, 0x2, "9000"}, @global=@item_4={0x3, 0x1, 0x0, "0900be00"}, @main=@item_4={0x3, 0x0, 0x8}, @local=@item_4={0x3, 0x2, 0x0, "09007a15"}, @local=@item_4={0x3, 0x2, 0x0, "5d8c3dda"}]}}, 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0x3, &(0x7f0000000000)='BBB')
syz_usb_ep_write(r0, 0x81, 0x3, &(0x7f0000000000)='BBB')
openat$ptmx(0xffffffffffffff9c, 0x0, 0x81, 0x0)
mknod(0x0, 0x8000, 0x77f8)
mount(0x0, 0x0, 0x0, 0x1000, 0x0)

9m2.128755326s ago: executing program 1 (id=4674):
mkdir(&(0x7f0000000000)='./file0\x00', 0x10)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff001000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENT(r2, &(0x7f0000000000)=ANY=[@ANYBLOB="58000000000000009fed2788c5532994414b47034801d524faf416638217", @ANYRES32], 0x58)
mount$9p_fd(0x0, &(0x7f00000025c0)='./file0\x00', &(0x7f0000002340), 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1])
chdir(&(0x7f0000000100)='./file0\x00')
read$FUSE(r0, &(0x7f0000000300)={0x2020}, 0x2020)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

9m1.49143087s ago: executing program 1 (id=4679):
r0 = syz_open_procfs(0x0, &(0x7f0000000340)='mountinfo\x00')
r1 = syz_io_uring_setup(0x88f, &(0x7f0000000200)={0x0, 0x8d33, 0x3c00, 0x0, 0x300, 0x0, r0}, &(0x7f0000000100)=<r2=>0x0, &(0x7f00000000c0)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x2200}})
io_uring_enter(r1, 0x47f6, 0x0, 0x0, 0x0, 0x0)
mkdir(&(0x7f00000001c0)='./file0\x00', 0x0)
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r4, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
r5 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r5, 0x0, 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x205)

9m0.728387293s ago: executing program 1 (id=4683):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000040)=ANY=[@ANYBLOB="1400000010000100fffffff500"], 0x9c}, 0x1, 0x0, 0x0, 0x24000144}, 0x20000050)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)=ANY=[@ANYBLOB="01000000000000000f478ef8ed"])
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x0, 0x2, 0x0, 0x4002004c4, 0x1004, 0xffffffffffffffff, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0x2000000000000000, 0x80000004000000, 0x8d], 0xeeee8000, 0x2010d3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

9m0.071513287s ago: executing program 1 (id=4684):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000b7080000002000007baaf8ff00000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], 0x0}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='ext4_writepages_result\x00', r2}, 0x10)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
close(r4)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc)

8m58.779657505s ago: executing program 55 (id=4684):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x11, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000b7080000002000007baaf8ff00000000b5080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500000800000085000000b300000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], 0x0}, 0x94)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
r3 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='ext4_writepages_result\x00', r2}, 0x10)
r4 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r3}, 0x8)
close(r4)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r1}, 0xc)

7m7.976972639s ago: executing program 0 (id=5166):
r0 = fsopen(&(0x7f00000001c0)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
fchdir(r1)
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)
r2 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
munmap(&(0x7f0000002000/0x4000)=nil, 0x4000)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r3, &(0x7f0000001f80)=""/4102, 0x1006)
getdents(r2, &(0x7f0000000100)=""/155, 0x9b)
rename(&(0x7f0000000840)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000540)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

7m7.396801774s ago: executing program 0 (id=5167):
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
ioctl$TUNSETLINK(0xffffffffffffffff, 0x400454cd, 0x20)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8914, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000100)=0x7ec3, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x400c944}, 0x24004030)

7m6.909044423s ago: executing program 0 (id=5170):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0xb49, 0x8, 0x8, 0x0, 0x3}, 0x0)
ioctl$IOMMU_IOAS_UNMAP$ALL(0xffffffffffffffff, 0x3b86, 0x0)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r2, 0x1, 0x3c, &(0x7f00000000c0)=0x1, 0x4)
setsockopt$SO_TIMESTAMPING(r2, 0x1, 0x25, &(0x7f0000000080)=0x1f6, 0x4)
sendmmsg$inet(r2, &(0x7f0000003240)=[{{&(0x7f0000000100)={0x2, 0x4e23, @empty}, 0x10, &(0x7f00000016c0)=[{&(0x7f0000001540)="94", 0xffe3}], 0x1}}], 0x1, 0x4000800)

7m5.668823435s ago: executing program 0 (id=5177):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_io_uring_setup(0x5472, 0x0, 0x0, 0x0)
migrate_pages(0x0, 0x3, &(0x7f0000000300)=0x3, &(0x7f0000000040)=0x13e)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x2200454, &(0x7f0000000000), 0x1, 0x236, &(0x7f0000000300)="$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")
writev(0xffffffffffffffff, 0x0, 0x0)
fallocate(0xffffffffffffffff, 0x0, 0x803, 0x2000404)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
timer_create(0x3, 0x0, 0x0)
syz_clone(0x40000000, 0x0, 0x0, 0x0, 0x0, 0x0)
mlock(&(0x7f00007c3000/0x1000)=nil, 0x1000)

7m4.206750473s ago: executing program 0 (id=5184):
r0 = inotify_init()
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r1, &(0x7f0000000380)={{0x6, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, 0xa}, [@rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}]}, 0x48)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r2, &(0x7f0000000300)={{0x6, @rose, 0x2}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @default, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x0}, @default]}, 0x48)
listen(r1, 0x1ad72f7)
accept4(r1, 0x0, 0x0, 0x80000)
sendmsg$ETHTOOL_MSG_COALESCE_SET(0xffffffffffffffff, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x14, 0x0, 0x1, 0x70bd2b}, 0x14}, 0x1, 0x0, 0x0, 0x4}, 0x0)
r3 = accept4$netrom(r1, 0x0, 0x0, 0x80000)
writev(r3, &(0x7f00000001c0), 0x7)
close_range(r0, 0xffffffffffffffff, 0x0)

7m3.06726708s ago: executing program 0 (id=5188):
close(0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r2=>0x0})
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@remote, r2}, 0x14)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@newtfilter={0x24, 0x11, 0x1, 0x70bd27, 0x2000, {0x0, 0x0, 0x74, r2, {0xfffd, 0x10}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x200088c0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
close(0x4)

7m0.494270614s ago: executing program 56 (id=5188):
close(0xffffffffffffffff)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000100)={@remote}, 0x14)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r2=>0x0})
setsockopt$inet6_mreq(r1, 0x29, 0x1b, &(0x7f0000000000)={@remote, r2}, 0x14)
sendmsg$nl_route_sched(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=@newtfilter={0x24, 0x11, 0x1, 0x70bd27, 0x2000, {0x0, 0x0, 0x74, r2, {0xfffd, 0x10}, {0x1, 0xfff1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x30004804}, 0x200088c0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x1, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x2)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
close(0x4)

35.433579422s ago: executing program 6 (id=7049):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x0, 0x1c, &(0x7f0000000040)=ANY=[@ANYBLOB="1808000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000005000000bf0900000000000055090100000000009500000000000000b7020000000000007b88f8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYBLOB="0000000000000000b705000008000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ptrace$getregset(0x4205, r0, 0x1, &(0x7f0000000080)={&(0x7f00000000c0)=""/120, 0x78})

34.741213043s ago: executing program 6 (id=7056):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000440)='./file1\x00', 0x0, &(0x7f00000000c0)=ANY=[], 0x1, 0x2da, &(0x7f0000000480)="$eJzs3EFrE20QwPFp0zdJU9rkBSkoqINe7CW08QNokBbEgFqboh6Erd1oyJqU3VBJEZuLePVzFI+9CeoX6EW8eBVvRRA92IO4YjbbJu02TTWJKf3/oOwkz0x2SnnCpJBn8/aLR4Wck8wZZRmMqgyKVGVLJPE7qhuoXwdrcVgaVWVi5NuH07fu3L2WzmQis6oz6bmLKVUdO/v68ZOX596WR+bXx15FZCNxb/NL6tPG+MbJzZ9zD/OO5h0tlspq6EKpVDYWLFMX804hqXrDMg3H1HzRMe2m9ZxVWlqqqFFcHI0t2abjqFGsaMGsaLmkZbuixgMjX9RkMqmjMTnehtrIya7Nzhrp4LXhj53uCF03HPSkbaerIhLeu5hd60VTAACgv7Se/71Zf//5PzPvXf35f7oz878I83+XVJsetZr/Wwl3riF0nW2njVh9/zZj/gcAAAAAAAAAAAAAAAAAAAAA4CjYct2467px/+r/REQkKiL+43/dJ7rjoL//1+CyS73uE93R8MW9qIj1fDm7nPWu3no6J3mxxJRJicuP2vtBnRfPXM1MT2rNd9d1V+v1q8vZkET8el8iqP7M/1Nevcobq6H+P4k13j8lcTkRfP+UV13n14dvXjjfUJ+UuLy7LyWxZLH2vrZT/3RK9cr1zK77D9fy9hV40gIAAAAAAP0pqdsSzZ9/Q956LSEqe9e9+kP8f2DX5+shOdXOEZUAAAAAAOCvOZWVgmFZph0QrIvIPku1ICIiLcq7FAzUj7Dt6U0PE4SkL9rYFVwWkT5oo2Uw2rkOoyLiPaN/UD7+ebu8rSq3jZyhA3ZTT/bOQPt7J/DAYAAAAABH2M7Qf4ii98+62BEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMdPy2PAJka8pMpKwc9vyml8oRav05AV6t1vBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPSfXwEAAP//TVMNeg==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42042, 0x14a)
write$P9_RXATTRCREATE(r0, &(0x7f00000000c0)={0x7, 0x21, 0x2}, 0x7)
renameat2(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000001240)='./file0/file0\x00', 0x2)

34.156861695s ago: executing program 6 (id=7061):
socket$nl_route(0x10, 0x3, 0x0)
r0 = getpid()
syz_pidfd_open(r0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
pipe(&(0x7f00000001c0))
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
eventfd2(0x8, 0x1)
epoll_create(0x89)
socket$kcm(0xa, 0x2, 0x73)
socket$key(0xf, 0x3, 0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$inet(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
socket$nl_route(0x10, 0x3, 0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x64)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000009a40)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000040900010073797a30000000002c000000030a01080000000000000000010000000900030073797a32000000000900010073797a300000000050000000060a010400000000000000000100000008000b40000000000900010073797a30000000002800048024000180090001006d6574610000000014000280080001400000001208000240000000", @ANYRES16=r1], 0xc4}}, 0x0)

33.507120579s ago: executing program 6 (id=7066):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x4010, &(0x7f0000000200)=ANY=[], 0xfe, 0x4db, &(0x7f0000000640)="$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")
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@verity_on}]})
openat$dir(0xffffffffffffff9c, &(0x7f0000000400)='./file0/file2\x00', 0x0, 0x0)

32.553561482s ago: executing program 6 (id=7074):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000710000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x406, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x7d}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8021}, 0x4000000)

31.637340665s ago: executing program 6 (id=7081):
r0 = socket(0x11, 0xa, 0x5)
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000040)={'ipvlan0\x00', {0x2, 0x4e20, @loopback}})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendto$inet(r0, &(0x7f0000000000)="cf3a19d02404e49cf90a0a4363d1", 0xe, 0x800, &(0x7f0000000040)={0x2, 0x4e20, @remote}, 0x10)

29.992984594s ago: executing program 57 (id=7081):
r0 = socket(0x11, 0xa, 0x5)
ioctl$sock_inet_SIOCSIFDSTADDR(0xffffffffffffffff, 0x8918, &(0x7f0000000040)={'ipvlan0\x00', {0x2, 0x4e20, @loopback}})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
sendto$inet(r0, &(0x7f0000000000)="cf3a19d02404e49cf90a0a4363d1", 0xe, 0x800, &(0x7f0000000040)={0x2, 0x4e20, @remote}, 0x10)

5.016082018s ago: executing program 7 (id=7222):
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'batadv_slave_0\x00'})
epoll_create1(0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, 0x0, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000040)={@broadcast, @multicast1, 0x1, "0d5011f02b7fab96e0aa834d3a9e7cfc12178ac0ab1e6227c2b6ddaa5effda90", 0x5, 0x16, 0xfffffffe, 0x1}, 0x3c)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x1d}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
r1 = socket$igmp(0x2, 0x3, 0x2)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000180), r2)
sendmsg$NET_DM_CMD_STOP(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r3, 0xbc914b49a8246e7, 0x0, 0x0, {0x8}}, 0x14}}, 0x0)
setsockopt$MRT_FLUSH(r1, 0x0, 0xd4, &(0x7f0000000100)=0xe, 0x4)
r4 = socket$unix(0x1, 0x1, 0x0)
close(r4)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/91, 0x128000, 0x800}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
setsockopt$XDP_TX_RING(r5, 0x11b, 0x3, &(0x7f00000003c0)=0x40, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000100)=0x20, 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @multicast1}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r6, 0x89f4, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000240)={'ip_vti0\x00', 0x0, 0x0, 0x80, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x29, 0x0, @rand_addr, @rand_addr=0x64010102}}}})

4.38636281s ago: executing program 7 (id=7225):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x406, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x7d}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8021}, 0x4000000)

4.227108887s ago: executing program 4 (id=7227):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r0, &(0x7f0000000040), 0x400000000000284, 0x2, 0x0)
syz_emit_ethernet(0x3e, &(0x7f0000000080)={@random="ed4e0300", @multicast, @void, {@ipv6={0x86dd, @udp={0xa, 0x6, 'I\x00', 0x8, 0x11, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, {[], {0x4e20, 0x4e20, 0x8}}}}}}, 0x0)

4.224528763s ago: executing program 8 (id=7084):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r1, &(0x7f0000000080)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7ff}, 0xe)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000500)={0x1, &(0x7f00000006c0)=[{@none}]})

3.932058409s ago: executing program 7 (id=7229):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macvlan0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000400)=@newlink={0x4c, 0x10, 0x503, 0x12000000, 0x0, {0x0, 0x0, 0x0, 0x0, 0x188c0}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0x14, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x10}, @IFLA_MACVLAN_MACADDR_MODE={0x8}]}}}, @IFLA_LINK={0x8, 0x5, r2}]}, 0x4c}}, 0x0)

3.881955266s ago: executing program 5 (id=7230):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000a00)=@delchain={0x1cc, 0x65, 0x2, 0x70bd27, 0x25dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x2, 0xa}, {0xfff2, 0x1}, {0x0, 0xb}}, [@TCA_CHAIN={0x8, 0xb, 0x6}, @filter_kind_options=@f_bpf={{0x8}, {0x198, 0x2, [@TCA_BPF_CLASSID={0x8, 0x3, {0x8, 0xfff1}}, @TCA_BPF_ACT={0x18c, 0x1, [@m_ctinfo={0x188, 0x1b, 0x0, 0x0, {{0xb}, {0x74, 0x2, 0x0, 0x1, [@TCA_CTINFO_ZONE={0x6, 0x4, 0x401}, @TCA_CTINFO_ACT={0x18, 0x3, {0xd, 0x6, 0x3, 0x101, 0x4}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x8, 0x8, 0x5, 0xf0, 0x9}}, @TCA_CTINFO_ACT={0x18, 0x3, {0x1, 0x4, 0x8, 0x8, 0x40}}, @TCA_CTINFO_ZONE={0x6, 0x4, 0x400}, @TCA_CTINFO_ACT={0x18, 0x3, {0x0, 0x0, 0xe, 0x8, 0x512ce089}}]}, {0xe9, 0x6, "2bc35728923701721aa3c1206907dcc9d8b543e2dff0e6c1f1c72f4bbe95b4d012071a9cd3a52c916baa192f13d49bd561d5cb8659385439830e75fb270a20c9e3cb09000067e8ad8dad5ee238c14d852e875544791bf401256a485ce63d670b94d0c0e72e83ff493f9f7832c0ac62b9be5206ab85931897350a76185eaa0a086f3f9c723ed1f1ae47fadcce83f0df3ec18ad73df9e2dbbf597a81169d561156ddae652f19d529a52ec8bce706bc317ce6d5d0dd605c256dbe2d08b90e595b41e88386bdd18542dd8b689a7975b590b240426a577bd91c64275898006519062a4986a8de51"}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}}]}, 0x1cc}, 0x1, 0x0, 0x0, 0x81}, 0x20000080)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0xffffffffffffff2f}}], 0x4000000000003b4, 0x2040000, &(0x7f0000003700)={0x77359400})

3.804235912s ago: executing program 8 (id=7231):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff0000000001000000000000d7", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800a000100767863616e0000000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x40}, 0x1, 0x0, 0x0, 0x24000804}, 0x8000)

3.450954932s ago: executing program 9 (id=7232):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000400)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CONTROL_PORT_FRAME(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x54, r1, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_CONTROL_PORT_ETHERTYPE={0x6, 0x66, 0x88c7}, @NL80211_ATTR_FRAME={0x22, 0x33, @data_frame={@a_msdu=@type11={{0x0, 0x2, 0x0, 0x1, 0x1, 0x1, 0x0, 0x1}, {0xff}, @broadcast, @device_a, @random="21b5c38e4497", {0xe}}}}, @NL80211_ATTR_MAC={0xa, 0x6, @device_b}]}, 0x54}}, 0x0)

3.321708632s ago: executing program 5 (id=7233):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000240)=@req3={0x1000, 0x1, 0x1000, 0x1, 0x7ff, 0xf84, 0x3}, 0x1c)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$SOCK_DIAG_BY_FAMILY(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000d00)={&(0x7f0000000000)={0x24, 0x14, 0x105, 0x70bc26, 0x25dfdb7a, {0x11}, [@INET_DIAG_REQ_BYTECODE={0xd, 0x1, "40da8480d582d0b1c2"}]}, 0x24}, 0x1, 0x0, 0x0, 0x8002}, 0x2005c840)

3.019624719s ago: executing program 8 (id=7234):
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000400)={'batadv_slave_0\x00'})
epoll_create1(0x0)
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_INIT(r0, 0x0, 0xc8, 0x0, 0x0)
setsockopt$MRT_ADD_MFC_PROXY(r0, 0x0, 0xd2, &(0x7f0000000040)={@broadcast, @multicast1, 0x1, "0d5011f02b7fab96e0aa834d3a9e7cfc12178ac0ab1e6227c2b6ddaa5effda90", 0x5, 0x16, 0xfffffffe, 0x1}, 0x3c)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x9, 0x4, &(0x7f0000000080)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x1d}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, &(0x7f00000000c0), 0x366, 0x10, &(0x7f0000000000), 0x2b2}, 0x48)
r1 = socket$igmp(0x2, 0x3, 0x2)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$net_dm(&(0x7f0000000180), r2)
sendmsg$NET_DM_CMD_STOP(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000400)={0x14, r3, 0xbc914b49a8246e7, 0x0, 0x0, {0x8}}, 0x14}}, 0x0)
setsockopt$MRT_FLUSH(r1, 0x0, 0xd4, &(0x7f0000000100)=0xe, 0x4)
r4 = socket$unix(0x1, 0x1, 0x0)
close(r4)
r5 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r5, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/91, 0x128000, 0x800}, 0x20)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, &(0x7f0000000080)={'batadv_slave_1\x00'})
setsockopt$XDP_TX_RING(r5, 0x11b, 0x3, &(0x7f00000003c0)=0x40, 0x4)
setsockopt$XDP_UMEM_FILL_RING(r5, 0x11b, 0x5, &(0x7f0000000100)=0x20, 0x4)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
r6 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r6, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @multicast1}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r6, 0x89f4, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000240)={'ip_vti0\x00', 0x0, 0x0, 0x80, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x29, 0x0, @rand_addr, @rand_addr=0x64010102}}}})

2.936133545s ago: executing program 4 (id=7235):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x49920d862a92153b, 0x800, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1b400}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r2}]}, 0x3c}}, 0x0)

2.922457645s ago: executing program 9 (id=7236):
r0 = socket(0x2, 0x3, 0x67)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000140)='bridge0\x00', 0x52c)
sendto$unix(r0, &(0x7f0000000440)="69e87337", 0x4, 0x4008000, &(0x7f00000001c0)=@file={0x0, './file0\x00'}, 0x6e)
sendto$unix(r0, 0x0, 0x0, 0x200000000000000, &(0x7f00000000c0)=@abs={0x0, 0x7, 0xd0000e0}, 0x6e)

2.858112378s ago: executing program 5 (id=7237):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
io_setup(0x6, &(0x7f0000001380)=<r1=>0x0)
io_submit(r1, 0x1, &(0x7f0000000040)=[&(0x7f0000000340)={0x1000000, 0x0, 0x0, 0x8, 0x11, r0, 0x0}])

2.743904489s ago: executing program 7 (id=7238):
unshare(0x6a040080)
socket$netlink(0x10, 0x3, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r0, 0x0, 0x482, &(0x7f0000000040)={0x84, @remote, 0x15, 0x3, 'dh\x00', 0x0, 0x4, 0x76}, 0x2c)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000000)={{0x84, @broadcast, 0x4e24, 0x3, 'lc\x00', 0xb, 0x323b, 0x3a}, {@rand_addr=0x64010102, 0x4e23, 0x0, 0x7, 0x12d5c, 0x12d5c}}, 0x44)
setsockopt$IP_VS_SO_SET_FLUSH(r0, 0x0, 0x485, 0x0, 0x0)
unshare(0x32050100)
r2 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmmsg$inet(r2, &(0x7f00000020c0)=[{{0x0, 0x0, &(0x7f0000000680), 0x0, 0x0, 0x0, 0x2000000}}], 0x1, 0x0)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
connect$bt_l2cap(r3, &(0x7f0000000380), 0xe)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, 0xffffffffffffffff, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x800)
write(0xffffffffffffffff, &(0x7f0000000040)="1c0000001a009b8a140000003b9b301f00"/28, 0x1c)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r4, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r4, &(0x7f0000000140), 0xffffffffffffff58, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)

2.593709608s ago: executing program 9 (id=7239):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x406, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x7d}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8021}, 0x4000000)

2.051025377s ago: executing program 5 (id=7240):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'lo\x00', <r1=>0x0})
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x70bd27, 0x25dfdbff, {0xa, 0x40, 0x0, 0xff, r1}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_RT_PRIORITY={0x8, 0x9, 0x1}]}, 0x34}, 0x1, 0x0, 0x0, 0x2004c041}, 0x2004c8d0)

1.812212379s ago: executing program 9 (id=7241):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000ac0)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_DEL_SEC_KEY(r0, &(0x7f0000000c80)={0x0, 0x0, &(0x7f0000000c40)={&(0x7f0000000300)=ANY=[@ANYBLOB='@\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002dbd7000fcdbdf251800000008000300", @ANYRES32=r2, @ANYBLOB="24003080140003"], 0x40}}, 0x20000000)

1.792162151s ago: executing program 4 (id=7242):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000500)={0xa, 0x4e20, 0xd19, @empty, 0x4}, 0x1c)
connect$inet6(r0, &(0x7f0000001d40)={0xa, 0x4e1d, 0xf, @remote, 0x2}, 0x1c)
syz_emit_ethernet(0x86, &(0x7f0000000140)={@multicast, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x78, 0x4400, 0x0, 0x0, 0x11, 0x0, @empty, @multicast1}, {0x0, 0x4e20, 0x64, 0x0, @wg=@response={0x2, 0x1, 0x1, "93c9691928972925723d55c712e63c92b492a3c50c9c3d27093a79585e8b73b3", "8aa4c506a2ba17a29171ce08a1e0f09d", {"c952a7f1f0443ce3114cee3518bfb345"}}}}}}}, 0x0)

1.69036092s ago: executing program 8 (id=7243):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0xcf, 0x8b, 0xed, 0x20, 0xfd9, 0x25, 0x2940, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xca, 0xfb, 0x1a}}]}}]}}, 0x0)
syz_usb_control_io$uac1(r0, 0x0, &(0x7f0000000580)={0x44, &(0x7f0000000700)={0x20, 0x11, 0x1, "ce"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_SMBUS(r1, 0x720, &(0x7f0000000040)={0x1, 0x7, 0x4, &(0x7f0000000100)={0x8, "c6c1f7b51030c4b7c54bf28facb1ed3ee2dfe17a04bc517b5452b3b94bce47509d"}})

1.403985413s ago: executing program 4 (id=7244):
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="12"], 0x50)
pipe2(&(0x7f0000000480), 0x4000)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
ppoll(&(0x7f00000000c0)=[{}, {}], 0x20000000000000dc, 0x0, 0x0, 0x0)

1.306183149s ago: executing program 5 (id=7245):
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000340)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2], 0x3c}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff0000000001000000000000d7", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800a000100767863616e0000000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000001c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=@newlink={0x40, 0x10, 0x403, 0x70bd25, 0x0, {0x0, 0x0, 0x0, 0x0, 0x500}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x8, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}]}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x40}, 0x1, 0x0, 0x0, 0x24000804}, 0x8000)

1.224096259s ago: executing program 7 (id=7246):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)={0x5c, r1, 0x101, 0x80, 0x80000, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_PRIVACY={0x4}, @NL80211_ATTR_SSID={0x5, 0x34, @random='n'}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @NL80211_ATTR_KEYS={0x2c, 0x51, 0x0, 0x1, [{0x28, 0x0, 0x0, 0x1, [@NL80211_KEY_CIPHER={0x8, 0x3, 0xfac05}, @NL80211_KEY_IDX={0x5, 0x2, 0x3}, @NL80211_KEY_DATA_WEP104={0x11, 0x1, "40fd2cad9ee68885bcd051518e"}]}]}]}, 0x5c}, 0x1, 0x0, 0x0, 0x80}, 0x48800)

999.661435ms ago: executing program 9 (id=7247):
r0 = socket$inet(0x2, 0x3, 0x2)
setsockopt$inet_mreqsrc(r0, 0x0, 0x27, &(0x7f0000000280)={@multicast2, @local, @remote}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e0000002ac1414aa"], 0x1c)
syz_emit_ethernet(0x36, &(0x7f0000001800)={@link_local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x28, 0x64, 0x0, 0x4, 0x2, 0x0, @empty=0xb00, @multicast2}, @timestamp_reply={0x11, 0x0, 0x0, 0xe000, 0x2, 0x2, 0x0, 0xff80000}}}}}, 0x0)

851.468427ms ago: executing program 4 (id=7248):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, 0x0, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=@mpls_getroute={0x1c, 0x1a, 0x1, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0x0, 0x1, 0xc8, 0x0, 0x100}}, 0x1c}}, 0x0)
r1 = socket(0x10, 0x3, 0x0)
write(r1, &(0x7f0000000080)="1400000052004f030e789e7ee2ce2fa4ff612d27", 0x14)
recvmmsg(r1, &(0x7f0000005c80)=[{{0x0, 0x0, 0x0}}], 0x344, 0x10122, 0x0)
r2 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x62181)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r2, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x0, 0x0, 'queue0\x00'})
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000280)={{}, &(0x7f0000000100), &(0x7f0000000140)}, 0x1c)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000580)={'syztnl0\x00', &(0x7f0000000500)={'ip6_vti0\x00', 0x0, 0x4, 0x80, 0x49, 0x1000, 0x2e, @ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @local, 0x7800, 0x1, 0x2, 0xea60}})
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000700)={0xffffffffffffffff, 0x20, &(0x7f00000006c0)={0x0, 0x0, 0x0, &(0x7f0000000680)=""/30, 0x1e}}, 0x10)
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$incfs(0xffffffffffffffff, &(0x7f0000000a00)='.log\x00', 0x10002, 0x80)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000a40)={0x1}, 0x4)
r3 = socket$netlink(0x10, 0x3, 0x0)
splice(0xffffffffffffffff, 0x0, r3, 0x0, 0x10d00, 0xf)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000a80)={0xffffffffffffffff, 0x9, 0x10}, 0xc)
write$sndseq(r2, &(0x7f0000000000)=[{0x84, 0x77, 0x0, 0x0, @tick=0x1f4, {}, {}, @raw32={[0x2600]}}], 0xffc8)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x62181)
write$sndseq(r4, &(0x7f0000000080)=[{0x1e, 0x0, 0x8, 0xfd, @time={0x7ffffffd, 0x4}, {}, {}, @result={0x1f00}}], 0x1c)

343.451126ms ago: executing program 9 (id=7249):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000000)={0x24, r0, 0x901, 0x0, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}]}, 0x24}}, 0x20000000)

258.937326ms ago: executing program 5 (id=7250):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000440)={0x2, 0xfffffffc, 0x6}, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)={0x20, 0x12, 0xa01, 0x0, 0x0, {0x80}}, 0x26}}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r0)

71.54457ms ago: executing program 7 (id=7251):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xa, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000040)='qdisc_destroy\x00', r0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[], 0x0}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x1)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x406, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000380)={'bond0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000280)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r3, {0x0, 0xb}, {0xffff, 0xffff}, {0x8}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x7d}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x1}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x8021}, 0x4000000)

0s ago: executing program 4 (id=7252):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f00000003c0), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000540)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_KEY(r1, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000140)={0x30, r0, 0x801, 0x0, 0x3, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_KEY={0x14, 0x50, 0x0, 0x1, [@NL80211_KEY_IDX={0x5}, @NL80211_KEY_CIPHER={0x8, 0x3, 0xfac04}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

kernel console output (not intermixed with test programs):

 pid=21666 comm="syz.6.5372" exe="/root/syz-executor" sig=0 arch=40000003 syscall=340 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1565.987689][T21667] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1565.989811][   T30] audit: type=1326 audit(2000000706.719:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.6.5372" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1565.990084][   T30] audit: type=1326 audit(2000000706.719:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.6.5372" exe="/root/syz-executor" sig=0 arch=40000003 syscall=156 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1565.990351][   T30] audit: type=1326 audit(2000000706.719:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.6.5372" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1566.071934][   T30] audit: type=1326 audit(2000000706.729:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.6.5372" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1566.094653][   T30] audit: type=1326 audit(2000000706.729:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.6.5372" exe="/root/syz-executor" sig=0 arch=40000003 syscall=345 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1566.119937][   T30] audit: type=1326 audit(2000000706.729:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21666 comm="syz.6.5372" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1566.392455][T17515] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1568.021631][T21687] loop6: detected capacity change from 0 to 4096
[ 1568.055667][T21689] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1568.337437][T21689] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1568.365194][T21689] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1568.531106][T21698] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1569.064791][T21689] gtp0: left promiscuous mode
[ 1569.147116][T21689] bond3: left promiscuous mode
[ 1569.152986][T21689] bond3: left allmulticast mode
[ 1569.201285][T21327] NILFS (loop6): DAT doesn't have a block to manage vblocknr = 144115188075855872
[ 1569.210937][T21327] NILFS error (device loop6): nilfs_bmap_truncate: broken bmap (inode number=14)
[ 1569.310653][T21327] Remounting filesystem read-only
[ 1569.311631][T17525] netdevsim netdevsim9 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1569.319460][T21327] NILFS (loop6): error -5 truncating bmap (ino=14)
[ 1569.402797][T17525] netdevsim netdevsim9 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1569.417968][T21327] NILFS (loop6): disposed unprocessed dirty file(s) when stopping log writer
[ 1569.483722][T17515] netdevsim netdevsim9 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1569.485483][T21327] NILFS (loop6): disposed unprocessed dirty file(s) when detaching log writer
[ 1569.528206][T17515] netdevsim netdevsim9 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1569.987854][T21714] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1569.995801][T21714] overlayfs: failed to set xattr on upper
[ 1570.001844][T21714] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1570.011067][T21714] overlayfs: ...falling back to index=off.
[ 1570.017049][T21714] overlayfs: ...falling back to uuid=null.
[ 1570.024836][T21714] overlayfs: failed to clone lowerpath
[ 1570.054611][T21718] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5389'.
[ 1570.088459][T21720] overlayfs: overlay with incompat feature 'volatile' cannot be mounted
[ 1571.025881][   T30] kauditd_printk_skb: 52 callbacks suppressed
[ 1571.025965][   T30] audit: type=1326 audit(2000000711.869:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=4 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.119178][T19610] Bluetooth: hci2: unexpected event 0x05 length: 10 > 4
[ 1571.245327][   T30] audit: type=1326 audit(2000000712.079:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=91 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.361719][   T30] audit: type=1326 audit(2000000712.129:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.385816][   T30] audit: type=1326 audit(2000000712.129:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=6 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.476494][T21738] lo speed is unknown, defaulting to 1000
[ 1571.742232][   T30] audit: type=1326 audit(2000000712.319:311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.766701][   T30] audit: type=1326 audit(2000000712.319:312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.792418][   T30] audit: type=1326 audit(2000000712.509:313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=92 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.815708][   T30] audit: type=1326 audit(2000000712.509:314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.838227][   T30] audit: type=1326 audit(2000000712.509:315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1571.862503][   T30] audit: type=1326 audit(2000000712.519:316): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21729 comm="syz.7.5392" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1572.265862][T21750] netlink: 'syz.4.5400': attribute type 3 has an invalid length.
[ 1572.274795][T21750] netlink: 'syz.4.5400': attribute type 3 has an invalid length.
[ 1572.708225][T21754] overlayfs: failed to clone upperpath
[ 1572.736436][T21757] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5402'.
[ 1572.794149][T21758] overlayfs: failed to clone upperpath
[ 1573.426996][T21764] vlan1: entered promiscuous mode
[ 1573.432543][T21764] : entered promiscuous mode
[ 1574.709935][T21786] Set syz1 is full, maxelem 65536 reached
[ 1577.260025][T21831] netlink: 2020 bytes leftover after parsing attributes in process `syz.5.5425'.
[ 1577.269783][T21831] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5425'.
[ 1577.825840][T21827] infiniband syz1: set down
[ 1577.830945][T21827] infiniband syz1: added ipvlan0
[ 1577.892977][T21827] RDS/IB: syz1: added
[ 1577.897237][T21827] smc: adding ib device syz1 with port count 1
[ 1577.903853][T21827] smc:    ib device syz1 port 1 has pnetid 
[ 1578.516987][T21844] netlink: 'syz.6.5429': attribute type 2 has an invalid length.
[ 1579.679676][   T30] kauditd_printk_skb: 23 callbacks suppressed
[ 1579.679765][   T30] audit: type=1326 audit(2000000720.520:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21851 comm="syz.4.5432" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1580.020626][T21853] loop6: detected capacity change from 0 to 2048
[ 1580.071274][   T30] audit: type=1326 audit(2000000720.700:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21851 comm="syz.4.5432" exe="/root/syz-executor" sig=0 arch=40000003 syscall=325 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1580.130121][   T30] audit: type=1326 audit(2000000720.980:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21851 comm="syz.4.5432" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1580.244026][T21853] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1580.262422][   T30] audit: type=1326 audit(2000000721.000:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21851 comm="syz.4.5432" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1580.289218][   T30] audit: type=1326 audit(2000000721.030:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21851 comm="syz.4.5432" exe="/root/syz-executor" sig=0 arch=40000003 syscall=3 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1580.313973][   T30] audit: type=1326 audit(2000000727.091:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21851 comm="syz.4.5432" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1580.339600][   T30] audit: type=1326 audit(2000000727.091:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21851 comm="syz.4.5432" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1581.908552][T17525] bond1 (unregistering): (slave ip6erspan0): Releasing active interface
[ 1582.714840][T21876] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5439'.
[ 1582.929699][T19610] Bluetooth: hci1: unexpected event for opcode 0x0c20
[ 1583.115779][T17525]  (unregistering): (slave team0): Releasing backup interface
[ 1583.147018][T17525]  (unregistering): Released all slaves
[ 1583.177315][T17525] bond0 (unregistering): Released all slaves
[ 1583.207524][T17525] bond1 (unregistering): Released all slaves
[ 1583.480140][T17525] tipc: Left network mode
[ 1583.999041][T17525] hsr_slave_0: left promiscuous mode
[ 1584.037304][T17525] hsr_slave_1: left promiscuous mode
[ 1584.058935][T17525] batman_adv: batadv0: Removing interface: dummy0
[ 1584.377978][T17525] pimreg (unregistering): left allmulticast mode
[ 1584.574654][T21893] netlink: 'syz.5.5447': attribute type 13 has an invalid length.
[ 1584.584270][T21893] netlink: 'syz.5.5447': attribute type 17 has an invalid length.
[ 1584.916857][T21898] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5449'.
[ 1585.073280][T21900] rdma_rxe: rxe_newlink: failed to add ipvlan0
[ 1585.791067][T21893] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1586.740893][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1586.747657][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1587.143663][T21920] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5458'.
[ 1589.445358][   T30] audit: type=1800 audit(2000000736.281:347): pid=21928 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.5461" name="/" dev="9p" ino=2 res=0 errno=0
[ 1590.389772][T21935] veth7: entered promiscuous mode
[ 1590.728535][T14242] usb 7-1: new full-speed USB device number 27 using dummy_hcd
[ 1590.936628][T14242] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[ 1590.948434][T14242] usb 7-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[ 1590.957738][T14242] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1591.061255][T14242] usb 7-1: config 0 descriptor??
[ 1591.069763][T21941] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1592.112105][T14242] usbhid 7-1:0.0: can't add hid device: -71
[ 1592.119013][T14242] usbhid 7-1:0.0: probe with driver usbhid failed with error -71
[ 1592.180527][T14242] usb 7-1: USB disconnect, device number 27
[ 1592.461394][T21965] trusted_key: encrypted_key: master key parameter '' is invalid
[ 1592.518949][T21967] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5472'.
[ 1593.307456][T21978] netlink: 28 bytes leftover after parsing attributes in process `syz.5.5474'.
[ 1593.359171][T11388] usb 7-1: new high-speed USB device number 28 using dummy_hcd
[ 1593.489538][T21981] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5478'.
[ 1593.549950][T11388] usb 7-1: Using ep0 maxpacket: 16
[ 1593.563886][T11388] usb 7-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 9
[ 1593.577657][T11388] usb 7-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[ 1593.588280][T11388] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1593.663213][T21984] netlink: 'syz.4.5479': attribute type 4 has an invalid length.
[ 1593.682481][T11388] usb 7-1: config 0 descriptor??
[ 1593.725042][T11388] usbhid 7-1:0.0: couldn't find an input interrupt endpoint
[ 1593.757701][T21984] netlink: 'syz.4.5479': attribute type 4 has an invalid length.
[ 1593.977857][T21970] loop6: detected capacity change from 0 to 512
[ 1594.072996][T19610] Bluetooth: hci3: unknown advertising packet type: 0x64
[ 1594.073159][T19610] Bluetooth: hci3: Dropping invalid advertising data
[ 1594.078783][T14242] usb 7-1: USB disconnect, device number 28
[ 1594.082480][T19610] Bluetooth: hci3: unknown advertising packet type: 0x7c
[ 1594.093795][T19610] Bluetooth: hci3: unknown advertising packet type: 0x09
[ 1594.102363][T19610] Bluetooth: hci3: Malformed LE Event: 0x02
[ 1594.345742][T21988] syz_tun: entered allmulticast mode
[ 1594.403520][T21985] syz_tun: left allmulticast mode
[ 1595.250779][T22003] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5487'.
[ 1595.351170][T21995] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5484'.
[ 1598.237364][T22025] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5494'.
[ 1598.320881][T22013] ref_ctr_offset mismatch. inode: 0x14e offset: 0x0 ref_ctr_offset(old): 0x80000100 ref_ctr_offset(new): 0x0
[ 1598.744260][T22013] uprobe: syz.4.5490:22013 failed to unregister, leaking uprobe
[ 1599.625784][T21998] Set syz1 is full, maxelem 65536 reached
[ 1600.528857][T22045] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5502'.
[ 1600.657407][T22045] bond1: entered promiscuous mode
[ 1600.664388][T22045] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1600.681352][T22050] netlink: 'syz.5.5504': attribute type 4 has an invalid length.
[ 1600.825136][T22057] netlink: 'syz.5.5504': attribute type 4 has an invalid length.
[ 1600.829677][ T5870] lo speed is unknown, defaulting to 1000
[ 1600.840205][ T5870] syz2: Port: 1 Link DOWN
[ 1600.852533][T14242] lo speed is unknown, defaulting to 1000
[ 1600.861661][T14242] syz2: Port: 1 Link ACTIVE
[ 1600.879523][T22058] lo: entered allmulticast mode
[ 1600.890070][T22058] tunl0: entered allmulticast mode
[ 1600.904179][T22058] gre0: entered allmulticast mode
[ 1601.084089][T22058] gretap0: entered allmulticast mode
[ 1601.200369][T22058] erspan0: entered allmulticast mode
[ 1601.216796][T22058] ip_vti0: entered allmulticast mode
[ 1601.231042][T22058] ip6_vti0: entered allmulticast mode
[ 1601.250808][T22058] sit0: entered allmulticast mode
[ 1601.293431][T22058] ip6tnl0: entered allmulticast mode
[ 1601.313113][T22058] ip6gre0: entered allmulticast mode
[ 1601.331614][T22058] syz_tun: entered allmulticast mode
[ 1601.413689][T22058] ip6gretap0: entered allmulticast mode
[ 1601.462505][T22058] bridge0: entered allmulticast mode
[ 1601.503557][   T30] audit: type=1326 audit(2000000748.341:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.527057][   T30] audit: type=1326 audit(2000000748.341:349): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.551421][   T30] audit: type=1326 audit(2000000748.381:350): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.579588][   T30] audit: type=1326 audit(2000000748.381:351): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.585850][T22058] vcan0: entered allmulticast mode
[ 1601.602141][   T30] audit: type=1326 audit(2000000748.381:352): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.634246][T22058] bond0: entered allmulticast mode
[ 1601.640011][T22058] bond_slave_0: entered allmulticast mode
[ 1601.645965][T22058] bond_slave_1: entered allmulticast mode
[ 1601.681858][T22066] loop6: detected capacity change from 0 to 256
[ 1601.753443][   T30] audit: type=1326 audit(2000000748.511:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=434 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.778844][   T30] audit: type=1326 audit(2000000748.521:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.798679][T22058] team0: entered allmulticast mode
[ 1601.802682][   T30] audit: type=1326 audit(2000000748.521:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.806273][T22058] team_slave_0: entered allmulticast mode
[ 1601.828534][   T30] audit: type=1326 audit(2000000748.601:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=296 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.828778][   T30] audit: type=1326 audit(2000000748.631:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22061 comm="syz.6.5506" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf705e539 code=0x7ffc0000
[ 1601.884125][T22058] team_slave_1: entered allmulticast mode
[ 1601.907747][T22058] nlmon0: entered allmulticast mode
[ 1601.921607][T22058] caif0: entered allmulticast mode
[ 1601.928255][T22058] batadv0: entered allmulticast mode
[ 1601.943432][T22058] vxcan0: entered allmulticast mode
[ 1601.952386][T22058] vxcan1: entered allmulticast mode
[ 1601.973953][T22058] veth0: entered allmulticast mode
[ 1601.993587][T22058] veth1: entered allmulticast mode
[ 1602.008909][T22058] veth0_to_bridge: entered allmulticast mode
[ 1602.032662][T22058] veth1_to_bridge: entered allmulticast mode
[ 1602.057163][T22058] veth0_to_bond: entered allmulticast mode
[ 1602.085697][T22058] veth1_to_bond: entered allmulticast mode
[ 1602.104388][T22058] veth0_to_team: entered allmulticast mode
[ 1602.125926][T22058] veth1_to_team: entered allmulticast mode
[ 1602.148747][T22058] veth0_to_batadv: entered allmulticast mode
[ 1602.165009][T22058] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1602.172936][T22058] batadv_slave_0: entered allmulticast mode
[ 1602.190589][T22058] xfrm0: entered allmulticast mode
[ 1602.204370][T22058] veth0_to_hsr: entered allmulticast mode
[ 1602.219782][T22058] hsr_slave_0: entered allmulticast mode
[ 1602.231833][T22058] veth1_to_hsr: entered allmulticast mode
[ 1602.246332][T22058] hsr_slave_1: entered allmulticast mode
[ 1602.357559][T22058] hsr0: entered allmulticast mode
[ 1602.373746][T22058] veth1_virt_wifi: entered allmulticast mode
[ 1602.390069][T22058] veth0_virt_wifi: entered allmulticast mode
[ 1602.405573][T22058] net veth1_virt_wifi virt_wifi0: entered allmulticast mode
[ 1602.414995][T22058] veth1_vlan: entered allmulticast mode
[ 1602.429628][T22058] veth0_vlan: entered allmulticast mode
[ 1602.473199][T22058] vlan0: entered allmulticast mode
[ 1602.479740][T22058] vlan1: entered allmulticast mode
[ 1602.560491][T22058] macvlan0: entered allmulticast mode
[ 1602.628805][T22058] macvlan1: entered allmulticast mode
[ 1602.643258][T22058] ipvlan0: entered allmulticast mode
[ 1602.649861][T22058] ipvlan1: entered allmulticast mode
[ 1602.656873][T22058] veth1_macvtap: entered allmulticast mode
[ 1602.672331][T22058] veth0_macvtap: entered allmulticast mode
[ 1602.737750][T22058] macvtap0: entered allmulticast mode
[ 1602.753103][T22058] macsec0: entered allmulticast mode
[ 1602.796779][T22058] geneve0: entered allmulticast mode
[ 1602.858296][T22058] geneve1: entered allmulticast mode
[ 1602.892458][T22058] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[ 1602.944342][T22058] netdevsim netdevsim4 netdevsim1: entered allmulticast mode
[ 1602.961854][T22058] netdevsim netdevsim4 netdevsim2: entered allmulticast mode
[ 1602.991705][T22058] netdevsim netdevsim4 netdevsim3: entered allmulticast mode
[ 1603.043383][T22058] mac80211_hwsim hwsim60 wlan0: entered allmulticast mode
[ 1603.121883][T22058] mac80211_hwsim hwsim61 wlan1: entered allmulticast mode
[ 1603.164065][T22058] bridge0.257: entered allmulticast mode
[ 1603.198945][T17499] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.229087][T17499] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.250288][T17499] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1603.287456][T17499] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1608.002748][T22154] netlink: 'syz.7.5526': attribute type 4 has an invalid length.
[ 1608.051328][T22154] netlink: 'syz.7.5526': attribute type 4 has an invalid length.
[ 1608.280718][T22156] loop6: detected capacity change from 0 to 256
[ 1608.335363][T22156] exfat: Deprecated parameter 'utf8'
[ 1608.341258][T22156] exfat: Unknown parameter 'keep_last_d'
[ 1609.124815][T22160] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5529'.
[ 1611.246845][T22178] netlink: 'syz.6.5535': attribute type 4 has an invalid length.
[ 1611.337000][T22178] netlink: 'syz.6.5535': attribute type 4 has an invalid length.
[ 1611.801446][T22187] netlink: 'syz.5.5541': attribute type 16 has an invalid length.
[ 1611.811281][T22187] netlink: 'syz.5.5541': attribute type 17 has an invalid length.
[ 1612.520725][T15333] lo speed is unknown, defaulting to 1000
[ 1612.527665][T15333] syz2: Port: 1 Link DOWN
[ 1613.511507][T22193] netlink: 129704 bytes leftover after parsing attributes in process `syz.7.5543'.
[ 1617.286914][T22240] netlink: 'syz.6.5559': attribute type 9 has an invalid length.
[ 1617.333475][T22241] netlink: 'syz.5.5560': attribute type 4 has an invalid length.
[ 1617.406878][T22241] netlink: 'syz.5.5560': attribute type 4 has an invalid length.
[ 1617.431588][T15354] lo speed is unknown, defaulting to 1000
[ 1617.437636][T15354] syz2: Port: 1 Link ACTIVE
[ 1617.941955][T22253] bridge1: entered allmulticast mode
[ 1617.976099][T22252] batman_adv: batadv0: Adding interface: dummy0
[ 1617.983008][T22252] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1618.015392][T22252] batman_adv: batadv0: Interface activated: dummy0
[ 1618.091321][T22256] batadv0: mtu less than device minimum
[ 1618.099640][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.112719][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.125764][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.139118][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.152225][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.165271][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.178478][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.191565][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1618.204702][T22256] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1619.003158][T22269] 9pnet: Could not find request transport: 0xffffffffffffffff
[ 1620.979551][T22293] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5579'.
[ 1621.452323][T22305] bond3: (slave dummy0): Releasing active interface
[ 1621.459638][T22305] dummy0: left promiscuous mode
[ 1621.762999][T22307] lo speed is unknown, defaulting to 1000
[ 1623.464082][T22323] loop6: detected capacity change from 0 to 512
[ 1623.820567][T22323] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1623.833940][T22323] ext4 filesystem being mounted at /45/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1626.851353][T21327] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1627.041932][T22344] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1627.456569][T22353] batman_adv: batadv0: Adding interface: dummy0
[ 1627.463576][T22353] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1627.492890][T22353] batman_adv: batadv0: Not using interface dummy0 (retrying later): interface not active
[ 1627.925273][T22361] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5597'.
[ 1627.975891][T22361] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5597'.
[ 1631.862794][   T30] kauditd_printk_skb: 16 callbacks suppressed
[ 1631.862882][   T30] audit: type=1326 audit(2000000778.711:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1631.938732][   T30] audit: type=1326 audit(2000000778.771:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1631.961983][   T30] audit: type=1326 audit(2000000778.771:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1631.987136][   T30] audit: type=1326 audit(2000000778.781:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=224 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1632.010150][   T30] audit: type=1326 audit(2000000778.781:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1632.032840][   T30] audit: type=1326 audit(2000000778.781:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=259 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1632.055436][   T30] audit: type=1326 audit(2000000778.781:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1632.078534][   T30] audit: type=1326 audit(2000000778.781:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=260 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1632.102624][   T30] audit: type=1326 audit(2000000778.781:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1632.130472][   T30] audit: type=1326 audit(2000000778.791:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22415 comm="syz.7.5617" exe="/root/syz-executor" sig=0 arch=40000003 syscall=331 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1632.367357][T22422] : (slave team0): Releasing backup interface
[ 1632.442367][T22422] : (slave bond_slave_0): Releasing backup interface
[ 1632.477345][T22427] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5619'.
[ 1632.732333][T22422] : (slave bond_slave_1): Releasing backup interface
[ 1632.827646][T22422] team0: Port device team_slave_0 removed
[ 1632.852606][T22422] team0: Port device team_slave_1 removed
[ 1632.890042][T22422] bond0: (slave bond1): Releasing backup interface
[ 1632.903441][T22422] bond1: left promiscuous mode
[ 1632.918934][T22422] bond1: left allmulticast mode
[ 1632.951405][T22422] bond2: (slave veth11): Releasing active interface
[ 1633.023534][T22422] vlan4: left promiscuous mode
[ 1633.029041][T22422] bridge0: left promiscuous mode
[ 1633.036134][T22422] bridge9: port 1(vlan4) entered disabled state
[ 1633.639535][T22443] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5626'.
[ 1633.648939][T22443] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1634.909777][T22463] bridge0: port 1(erspan0) entered blocking state
[ 1634.916735][T22463] bridge0: port 1(erspan0) entered disabled state
[ 1634.924166][T22463] erspan0: entered allmulticast mode
[ 1634.936491][T22463] erspan0: entered promiscuous mode
[ 1634.964014][T22464] erspan0: left allmulticast mode
[ 1634.969674][T22464] erspan0: left promiscuous mode
[ 1634.976166][T22464] bridge0: port 1(erspan0) entered disabled state
[ 1635.182547][ T5821] Bluetooth: hci1: command 0x0406 tx timeout
[ 1635.299466][T22470] smc: net device bond0 applied user defined pnetid SYZ2
[ 1635.367654][T22470] netlink: 14 bytes leftover after parsing attributes in process `syz.6.5636'.
[ 1635.540449][T22470] smc: removing net device bond0 with user defined pnetid SYZ2
[ 1635.596766][T22470] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1635.693960][T22470] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1635.724879][T22470] bond0 (unregistering): Released all slaves
[ 1635.802387][T22474] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1635.813121][T22474] bridge0: port 3(macvlan2) entered blocking state
[ 1635.821110][T22474] bridge0: port 3(macvlan2) entered disabled state
[ 1635.828678][T22474] macvlan2: entered allmulticast mode
[ 1635.856486][T22474] macvlan2: entered promiscuous mode
[ 1636.000967][T22484] bond0: (slave bridge0): Releasing backup interface
[ 1636.036098][T22484] batman_adv: batadv0: Removing interface: dummy0
[ 1636.072857][T22484] bridge_slave_0: left allmulticast mode
[ 1636.081213][T22484] bridge_slave_0: left promiscuous mode
[ 1636.088198][T22484] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1636.185718][T22484] bridge_slave_1: left allmulticast mode
[ 1636.191897][T22484] bridge_slave_1: left promiscuous mode
[ 1636.205447][T22484] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1636.280768][T22485] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5641'.
[ 1636.363798][T22484] bond0: (slave bond_slave_0): Releasing backup interface
[ 1636.407444][T22484] bond0: (slave bond_slave_1): Releasing backup interface
[ 1636.472773][T22484] team0: Port device team_slave_0 removed
[ 1636.522966][T22484] team0: Port device team_slave_1 removed
[ 1636.531616][T22484] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1636.599284][T22484] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1636.645630][T22484] bond2: (slave gretap1): Releasing active interface
[ 1636.653195][T22484] gretap1: left allmulticast mode
[ 1636.716073][T22484] bond3: (slave veth3): Releasing active interface
[ 1636.891279][T22490] lo speed is unknown, defaulting to 1000
[ 1639.748478][   T39] IPVS: starting estimator thread 0...
[ 1639.791247][T22531] tipc: Started in network mode
[ 1639.796641][T22531] tipc: Node identity 7f000001, cluster identity 4711
[ 1639.806153][T22531] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1639.878977][T22530] IPVS: using max 192 ests per chain, 9600 per kthread
[ 1639.937181][T22531] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[ 1639.958467][T22531] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1639.978788][ T5821] Bluetooth: hci2: command 0x0406 tx timeout
[ 1640.767018][T22541] bridge_slave_0: left allmulticast mode
[ 1640.773199][T22541] bridge_slave_0: left promiscuous mode
[ 1640.780350][T22541] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1640.840158][T22545] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5662'.
[ 1640.890346][T22541] bridge_slave_1: left allmulticast mode
[ 1640.899015][T22541] bridge_slave_1: left promiscuous mode
[ 1640.906058][T22541] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1640.967429][T22540] netlink: 16 bytes leftover after parsing attributes in process `syz.9.5663'.
[ 1640.984644][T22546] netlink: 28 bytes leftover after parsing attributes in process `syz.4.5664'.
[ 1641.047870][T22541] team0: Port device team_slave_0 removed
[ 1641.080406][T15354] tipc: Node number set to 2130706433
[ 1641.144784][T22541] team0: Port device team_slave_1 removed
[ 1641.156916][T22541] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1641.165283][T22541] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1641.220789][T22541] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1641.228716][T22541] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1642.079279][T22560] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5668'.
[ 1642.176154][T22560] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5668'.
[ 1642.676653][T22569] netlink: 'syz.5.5672': attribute type 83 has an invalid length.
[ 1643.202506][T22580] netlink: 'syz.5.5677': attribute type 16 has an invalid length.
[ 1643.879415][T22593] netlink: 'syz.7.5692': attribute type 83 has an invalid length.
[ 1643.964203][T15331] IPVS: starting estimator thread 0...
[ 1644.058827][T22598] IPVS: using max 192 ests per chain, 9600 per kthread
[ 1644.214186][T22600] batman_adv: batadv0: Interface deactivated: dummy0
[ 1644.222518][T22600] batman_adv: batadv0: Removing interface: dummy0
[ 1644.288512][T15354] usb 7-1: new high-speed USB device number 29 using dummy_hcd
[ 1644.380804][T22600] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5683'.
[ 1644.484233][T15354] usb 7-1: Using ep0 maxpacket: 32
[ 1644.517215][T15354] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1644.527880][T15354] usb 7-1: config 0 has no interfaces?
[ 1644.533917][T15354] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1644.543368][T15354] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1644.609213][T15354] usb 7-1: config 0 descriptor??
[ 1644.828663][T19610] Bluetooth: hci3: unexpected cc 0x2007 length: 100 > 2
[ 1644.855396][T15346] usb 7-1: USB disconnect, device number 29
[ 1644.965877][T22612] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5686'.
[ 1645.132440][T22612] gretap2: entered promiscuous mode
[ 1645.152031][T22612] bond4: (slave gretap2): Enslaving as an active interface with an up link
[ 1645.189689][T22612] bond4 (unregistering): (slave gretap2): Releasing backup interface
[ 1645.211939][T22612] bond4 (unregistering): Released all slaves
[ 1646.034001][T22623] netlink: 'syz.4.5694': attribute type 4 has an invalid length.
[ 1646.337154][T22627] overlayfs: failed to clone upperpath
[ 1646.678742][T15331] IPVS: starting estimator thread 0...
[ 1646.771218][T22634] IPVS: using max 192 ests per chain, 9600 per kthread
[ 1646.858291][   T30] kauditd_printk_skb: 132 callbacks suppressed
[ 1646.858388][   T30] audit: type=1326 audit(2000000793.701:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1646.988316][   T30] audit: type=1326 audit(2000000793.741:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.013840][   T30] audit: type=1326 audit(2000000793.761:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.039490][   T30] audit: type=1326 audit(2000000793.761:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.063085][   T30] audit: type=1326 audit(2000000793.761:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.152121][   T30] audit: type=1326 audit(2000000793.951:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.176194][   T30] audit: type=1326 audit(2000000793.951:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.200630][   T30] audit: type=1326 audit(2000000793.971:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.224734][   T30] audit: type=1326 audit(2000000793.991:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.250555][   T30] audit: type=1326 audit(2000000793.991:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22635 comm="syz.9.5698" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1647.275780][T22641] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5699'.
[ 1647.298674][T22641] netlink: 12 bytes leftover after parsing attributes in process `syz.5.5699'.
[ 1647.436495][T22642] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5700'.
[ 1647.700197][T22641] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5699'.
[ 1648.191080][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1648.197889][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1648.677288][T22663] bond0: (slave bridge0): Releasing backup interface
[ 1648.699712][T22665] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5703'.
[ 1648.802377][T22663] bridge_slave_0: left promiscuous mode
[ 1648.809667][T22663] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1648.863008][T19610] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1648.872620][T19610] Bluetooth: hci3: Injecting HCI hardware error event
[ 1648.885633][T19610] Bluetooth: hci3: hardware error 0x00
[ 1648.907666][T22663] bridge_slave_1: left promiscuous mode
[ 1648.915111][T22663] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1649.068735][T22663] bond0: (slave bond_slave_0): Releasing backup interface
[ 1649.135192][T22663] bond0: (slave bond_slave_1): Releasing backup interface
[ 1649.184991][T22663] team0: Port device team_slave_0 removed
[ 1649.302589][T22663] team0: Port device team_slave_1 removed
[ 1649.316411][T22663] macvlan2: left allmulticast mode
[ 1649.322247][T22663] macvlan2: left promiscuous mode
[ 1649.328665][T22663] bridge0: port 3(macvlan2) entered disabled state
[ 1650.974429][T19610] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1652.603362][T22688] fuse: Unknown parameter 'use0000000000000000000000000000000000000000'
[ 1653.025216][T22694] netlink: 'syz.9.5717': attribute type 5 has an invalid length.
[ 1653.123745][   T30] kauditd_printk_skb: 29 callbacks suppressed
[ 1653.123833][   T30] audit: type=1326 audit(2000000799.961:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22693 comm="syz.9.5717" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x0
[ 1653.912624][T22705] net_ratelimit: 10 callbacks suppressed
[ 1653.912723][T22705] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[ 1654.094083][T22708] bridge3: entered allmulticast mode
[ 1654.322417][T22712] netlink: 'syz.9.5725': attribute type 1 has an invalid length.
[ 1654.471535][T22712] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1654.523152][T22716] erspan0: entered allmulticast mode
[ 1654.551930][T22716] bond4: (slave erspan0): making interface the new active one
[ 1654.566582][T22716] bond4: (slave erspan0): Enslaving as an active interface with an up link
[ 1654.669871][   T12] bond4: (slave erspan0): link status definitely down, disabling slave
[ 1654.679783][   T12] bond4: now running without any active interface!
[ 1654.798955][T22718] tipc: Started in network mode
[ 1654.804130][T22718] tipc: Node identity 7f000001, cluster identity 4711
[ 1654.811742][T22718] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[ 1654.937628][T22720] tipc: Started in network mode
[ 1654.943109][T22720] tipc: Node identity 4a4845f4b6aa, cluster identity 4711
[ 1654.951554][T22720] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1655.016170][T22718] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[ 1655.041946][T22724] syzkaller0: entered promiscuous mode
[ 1655.047665][T22724] syzkaller0: entered allmulticast mode
[ 1655.083228][T22720] tipc: Resetting bearer <eth:syzkaller0>
[ 1655.147695][T22719] tipc: Resetting bearer <eth:syzkaller0>
[ 1655.174370][T22719] tipc: Disabling bearer <eth:syzkaller0>
[ 1655.312724][T22727] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5730'.
[ 1655.590264][T22727] bridge6: port 1(veth9) entered blocking state
[ 1655.597378][T22727] bridge6: port 1(veth9) entered disabled state
[ 1655.604684][T22727] veth9: entered allmulticast mode
[ 1655.614234][T22727] veth9: entered promiscuous mode
[ 1655.651592][T22730] bridge6: port 2(veth0_to_bond) entered blocking state
[ 1655.659667][T22730] bridge6: port 2(veth0_to_bond) entered disabled state
[ 1655.667438][T22730] veth0_to_bond: entered allmulticast mode
[ 1655.677465][T22730] veth0_to_bond: entered promiscuous mode
[ 1656.041998][T22733] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5732'.
[ 1656.944724][T22748] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5738'.
[ 1657.109424][T22748] netlink: 8 bytes leftover after parsing attributes in process `syz.9.5738'.
[ 1658.239011][T15346] usb 7-1: new high-speed USB device number 30 using dummy_hcd
[ 1658.325508][T22769] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5744'.
[ 1658.385530][T22772] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5744'.
[ 1658.438819][T15346] usb 7-1: Using ep0 maxpacket: 32
[ 1658.442048][   T30] audit: type=1326 audit(2000000805.281:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22768 comm="syz.4.5744" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x0
[ 1658.469093][T15346] usb 7-1: config 0 has an invalid interface number: 12 but max is 0
[ 1658.477634][T15346] usb 7-1: config 0 has no interface number 0
[ 1658.485838][T15346] usb 7-1: config 0 interface 12 has no altsetting 0
[ 1658.575823][T15346] usb 7-1: New USB device found, idVendor=2c42, idProduct=1202, bcdDevice=85.40
[ 1658.588229][T15346] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1658.596493][T15346] usb 7-1: Product: syz
[ 1658.601877][T15346] usb 7-1: Manufacturer: syz
[ 1658.609448][T15346] usb 7-1: SerialNumber: syz
[ 1658.671311][T15346] usb 7-1: config 0 descriptor??
[ 1659.208607][T15346] f81534 7-1:0.12: f81534_get_register: reg: 1003 failed: -71
[ 1659.210416][T22777] netlink: 'syz.7.5747': attribute type 1 has an invalid length.
[ 1659.216453][T15346] f81534 7-1:0.12: f81534_find_config_idx: read failed: -71
[ 1659.216584][T15346] f81534 7-1:0.12: f81534_calc_num_ports: find idx failed: -71
[ 1659.244878][T15346] f81534 7-1:0.12: probe with driver f81534 failed with error -71
[ 1659.391594][T15346] usb 7-1: USB disconnect, device number 30
[ 1659.469872][T22779] bond10: (slave ip6gretap0): Enslaving as a backup interface with an up link
[ 1659.595544][T22777] 8021q: adding VLAN 0 to HW filter on device bond10
[ 1659.609912][T17503] bond10: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1659.728580][   T12] bond10: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1660.125548][T22788] netlink: 'syz.7.5751': attribute type 4 has an invalid length.
[ 1660.191168][T22791] netlink: 'syz.9.5753': attribute type 1 has an invalid length.
[ 1660.375923][T22793] bond5: (slave geneve2): making interface the new active one
[ 1660.390712][T22793] bond5: (slave geneve2): Enslaving as an active interface with an up link
[ 1660.431508][T17494] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 20000 - 0
[ 1660.504453][T17494] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 20000 - 0
[ 1660.529601][T22791] netlink: 28 bytes leftover after parsing attributes in process `syz.9.5753'.
[ 1660.544500][T22791] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1660.570313][T17494] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 20000 - 0
[ 1660.606128][T17494] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 20000 - 0
[ 1660.919308][T22804] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5754'.
[ 1661.305229][T22808] netlink: 'syz.9.5757': attribute type 4 has an invalid length.
[ 1661.669695][T22813] netlink: 'syz.7.5759': attribute type 1 has an invalid length.
[ 1661.802135][T22813] 8021q: adding VLAN 0 to HW filter on device bond11
[ 1661.869591][T22817] erspan0: entered allmulticast mode
[ 1661.905109][T22817] bond11: (slave erspan0): making interface the new active one
[ 1661.920526][T22817] bond11: (slave erspan0): Enslaving as an active interface with an up link
[ 1662.100846][T22821] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5760'.
[ 1662.128415][T22821] vxlan0: entered promiscuous mode
[ 1662.135574][T17508] netdevsim netdevsim9 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1662.187924][T17508] netdevsim netdevsim9 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1662.223898][T17508] netdevsim netdevsim9 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1662.262017][T17508] netdevsim netdevsim9 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1662.442712][T22830] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5761'.
[ 1662.486573][T22824] netlink: 36 bytes leftover after parsing attributes in process `syz.4.5763'.
[ 1662.506316][T22825] tipc: Cannot configure node identity twice
[ 1662.614813][T22832] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5764'.
[ 1663.309672][T22837] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5765'.
[ 1664.200259][T22851] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5769'.
[ 1664.946982][T22862] netlink: 'syz.9.5774': attribute type 4 has an invalid length.
[ 1666.130486][T22877] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5780'.
[ 1666.242707][T22880] bond6: (slave ip6gretap1): Enslaving as an active interface with an up link
[ 1666.361592][T22881] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5782'.
[ 1666.362300][T22874] loop6: detected capacity change from 0 to 1024
[ 1666.382260][T22874] hfsplus: Unknown parameter 'ÿÿÿÿ01777777777777777777777ÿÿÿÿÿÿÿÿ'
[ 1666.418627][T22877] netlink: 28 bytes leftover after parsing attributes in process `syz.9.5780'.
[ 1666.430721][T22877] bond6: entered promiscuous mode
[ 1666.435995][T22877] ip6gretap1: entered promiscuous mode
[ 1666.442940][T22877] bond6: entered allmulticast mode
[ 1666.448554][T22877] ip6gretap1: entered allmulticast mode
[ 1666.459420][T22877] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1666.726434][T22874] loop6: detected capacity change from 0 to 512
[ 1667.045140][T22874] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1667.059064][T22874] ext4 filesystem being mounted at /77/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1668.535152][T21327] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1669.021168][T22910] vlan5: entered promiscuous mode
[ 1669.028699][T22910] veth0_virt_wifi: entered promiscuous mode
[ 1669.036606][T22910] vlan5: entered allmulticast mode
[ 1669.042533][T22910] veth0_virt_wifi: entered allmulticast mode
[ 1669.087569][T22912] netlink: 'syz.6.5791': attribute type 9 has an invalid length.
[ 1669.096209][T22912] netlink: 201392 bytes leftover after parsing attributes in process `syz.6.5791'.
[ 1670.523309][T22936] veth1_to_bond: entered allmulticast mode
[ 1670.573296][T22936] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5802'.
[ 1670.645296][T22936] veth1_to_bond (unregistering): left allmulticast mode
[ 1670.678440][T15356] usb 7-1: new full-speed USB device number 31 using dummy_hcd
[ 1670.948591][T15356] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1670.963424][T22942] netlink: 43 bytes leftover after parsing attributes in process `syz.5.5803'.
[ 1670.975151][T22942] tipc: Bearer <eth:vlan0>: already 2 bearers with priority 10
[ 1670.983836][T22942] tipc: Bearer <eth:vlan0>: trying with adjusted priority
[ 1670.994973][T22942] tipc: Enabled bearer <eth:vlan0>, priority 9
[ 1671.029401][T15356] usb 7-1: not running at top speed; connect to a high speed hub
[ 1671.091962][T15356] usb 7-1: config 5 has an invalid interface number: 44 but max is 1
[ 1671.103328][T15356] usb 7-1: config 5 has no interface number 1
[ 1671.111228][T15356] usb 7-1: config 5 interface 44 has no altsetting 0
[ 1671.118303][T15356] usb 7-1: config 5 interface 0 has no altsetting 0
[ 1671.219035][T15356] usb 7-1: New USB device found, idVendor=0582, idProduct=0074, bcdDevice=2a.70
[ 1671.228586][T15356] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1671.236834][T15356] usb 7-1: Product: syz
[ 1671.241504][T15356] usb 7-1: Manufacturer: syz
[ 1671.246315][T15356] usb 7-1: SerialNumber: syz
[ 1671.263864][T22942] ªªªªªª: renamed from vlan0
[ 1671.324384][T22942] tipc: Disabling bearer <eth:vlan0>
[ 1671.646065][T22952] netlink: 16 bytes leftover after parsing attributes in process `syz.9.5805'.
[ 1671.655633][T15356] usb 7-1: bad CDC descriptors
[ 1671.699599][T17494] netdevsim netdevsim9 eth0: set [1, 1] type 2 family 0 port 6081 - 0
[ 1671.739817][T17494] netdevsim netdevsim9 eth1: set [1, 1] type 2 family 0 port 6081 - 0
[ 1671.748324][T15356] usb 7-1: USB disconnect, device number 31
[ 1671.808954][T17494] netdevsim netdevsim9 eth2: set [1, 1] type 2 family 0 port 6081 - 0
[ 1671.873998][T17494] netdevsim netdevsim9 eth3: set [1, 1] type 2 family 0 port 6081 - 0
[ 1672.061278][T22957] I/O error, dev loop9, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[ 1672.071188][T22957] FAT-fs (loop9): unable to read boot sector
[ 1672.891087][T22963] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5809'.
[ 1672.951133][T22967] tipc: Enabled bearer <udp:s>, priority 10
[ 1673.507112][T22974] netlink: 'syz.4.5814': attribute type 3 has an invalid length.
[ 1673.520060][T22974] netlink: 'syz.4.5814': attribute type 3 has an invalid length.
[ 1673.949401][T15346] tipc: Node number set to 4242687476
[ 1674.095178][T22980] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5817'.
[ 1674.104743][T22980] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5817'.
[ 1674.411113][T22986] veth0_vlan: entered allmulticast mode
[ 1674.456824][T22987] loop6: detected capacity change from 0 to 256
[ 1674.681374][T22990] veth0_vlan: left promiscuous mode
[ 1674.693428][T22990] veth0_vlan: entered promiscuous mode
[ 1674.849647][T22994] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5821'.
[ 1674.931118][T22995] netlink: 48 bytes leftover after parsing attributes in process `syz.4.5821'.
[ 1678.807717][T23019] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5832'.
[ 1678.818227][T23019] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5832'.
[ 1678.827405][T23019] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5832'.
[ 1678.889681][T23019] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5832'.
[ 1678.899303][T23019] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5832'.
[ 1679.239710][T23023] netlink: 'syz.5.5833': attribute type 4 has an invalid length.
[ 1679.377011][   T39] lo speed is unknown, defaulting to 1000
[ 1679.383374][   T39] syz2: Port: 1 Link DOWN
[ 1679.683210][T23029] netlink: 'syz.7.5836': attribute type 14 has an invalid length.
[ 1680.921178][T23037] netlink: 'syz.5.5838': attribute type 5 has an invalid length.
[ 1680.929699][T23037] netlink: 3657 bytes leftover after parsing attributes in process `syz.5.5838'.
[ 1682.072660][T23058] lo speed is unknown, defaulting to 1000
[ 1683.878553][T23076] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5850'.
[ 1684.549678][T23079] netlink: 12 bytes leftover after parsing attributes in process `syz.9.5852'.
[ 1688.325611][T23105] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1688.653545][T23107] overlayfs: failed to clone upperpath
[ 1689.719545][T23116] veth0_vlan: left allmulticast mode
[ 1690.013922][T23116] bond0: left promiscuous mode
[ 1690.021210][T23116] bond0: left allmulticast mode
[ 1690.030349][T23116] vlan3: left promiscuous mode
[ 1690.035256][T23116] bond3: left promiscuous mode
[ 1690.049451][T23116] vlan4: left allmulticast mode
[ 1690.054446][T23116] bridge0: left allmulticast mode
[ 1690.308504][T23116] vlan5: left promiscuous mode
[ 1690.313505][T23116] veth0_virt_wifi: left promiscuous mode
[ 1690.320782][T23116] vlan5: left allmulticast mode
[ 1690.328261][T23116] veth0_virt_wifi: left allmulticast mode
[ 1693.634847][T23163] tipc: Enabling of bearer <eth:syzkaller0> rejected, max 3 bearers permitted
[ 1694.715139][T23177] netlink: 'syz.6.5887': attribute type 7 has an invalid length.
[ 1694.723355][T23177] netlink: 'syz.6.5887': attribute type 8 has an invalid length.
[ 1694.733759][T23177] netlink: 'syz.6.5887': attribute type 13 has an invalid length.
[ 1695.143351][T15331] usb 7-1: new high-speed USB device number 32 using dummy_hcd
[ 1695.255559][T23183] netdevsim netdevsim9 eth3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1695.267389][T23183] netdevsim netdevsim9 eth3 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[ 1695.278225][T23183] netdevsim netdevsim9 eth3 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1695.318613][T15331] usb 7-1: Using ep0 maxpacket: 32
[ 1695.385294][T15331] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1695.395939][T15331] usb 7-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[ 1695.405291][T15331] usb 7-1: too many endpoints for config 1 interface 1 altsetting 3: 120, using maximum allowed: 30
[ 1695.416377][T15331] usb 7-1: config 1 interface 1 altsetting 3 has 0 endpoint descriptors, different from the interface descriptor's value: 120
[ 1695.431166][T15331] usb 7-1: config 1 interface 1 has no altsetting 0
[ 1695.493674][T23183] netdevsim netdevsim9 eth2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1695.507695][T23183] netdevsim netdevsim9 eth2 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[ 1695.517925][T23183] netdevsim netdevsim9 eth2 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1695.706790][T23183] netdevsim netdevsim9 eth1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1695.718500][T23183] netdevsim netdevsim9 eth1 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[ 1695.729253][T23183] netdevsim netdevsim9 eth1 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1695.826801][T23188] erspan0: left allmulticast mode
[ 1695.853158][T15331] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1695.863156][T15331] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1695.871832][T15331] usb 7-1: Product: syz
[ 1695.873283][T23188] bond11: (slave erspan0): Releasing active interface
[ 1695.876171][T15331] usb 7-1: Manufacturer: syz
[ 1695.889577][T15331] usb 7-1: SerialNumber: syz
[ 1695.971312][T23188] macsec0: left allmulticast mode
[ 1695.977427][T23188] bridge1: left allmulticast mode
[ 1696.174124][T23188] bond10: (slave ip6gretap0): Removing an active aggregator
[ 1696.184517][T23188] bond10: (slave ip6gretap0): Releasing backup interface
[ 1696.354861][T23183] netdevsim netdevsim9 eth0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[ 1696.365495][T23183] netdevsim netdevsim9 eth0 (unregistering): unset [1, 0] type 2 family 0 port 20000 - 0
[ 1696.378448][T23183] netdevsim netdevsim9 eth0 (unregistering): unset [1, 1] type 2 family 0 port 6081 - 0
[ 1696.476784][T23195] tipc: Failed to remove unknown binding: 66,1,1/0:3797360752/3797360754
[ 1696.485785][T23195] tipc: Failed to remove unknown binding: 66,1,1/0:3797360752/3797360754
[ 1696.622036][T15331] usb 7-1: 0:2 : does not exist
[ 1696.820139][T17508] netdevsim netdevsim9 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1696.829169][T17508] netdevsim netdevsim9 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1696.837659][T17508] netdevsim netdevsim9 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[ 1696.872731][T15331] usb 7-1: USB disconnect, device number 32
[ 1696.916886][T17508] netdevsim netdevsim9 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1696.929080][T17508] netdevsim netdevsim9 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1696.937557][T17508] netdevsim netdevsim9 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[ 1696.994146][T17508] netdevsim netdevsim9 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1697.003863][T17508] netdevsim netdevsim9 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1697.015104][T17508] netdevsim netdevsim9 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[ 1697.119173][T17508] netdevsim netdevsim9 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1697.128138][T17508] netdevsim netdevsim9 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1697.136596][T17508] netdevsim netdevsim9 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[ 1698.109859][T23207] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1698.150410][T23206] bond4: (slave erspan0): Releasing active interface
[ 1698.177612][T23206] veth0_to_bond: left allmulticast mode
[ 1698.185201][T23206] veth0_to_bond: left promiscuous mode
[ 1698.192334][T23206] bridge6: port 2(veth0_to_bond) entered disabled state
[ 1698.316794][T23206] veth9: left allmulticast mode
[ 1698.327929][T23206] veth9: left promiscuous mode
[ 1698.334187][T23206] bridge6: port 1(veth9) entered disabled state
[ 1698.505711][T23206] bond5: (slave geneve2): Releasing active interface
[ 1698.795574][T23206] bond6: (slave ip6gretap1): Releasing backup interface
[ 1698.891828][T23206] ip6gretap1: left promiscuous mode
[ 1698.901179][T23206] ip6gretap1: left allmulticast mode
[ 1699.014024][T23207] vlan0: entered allmulticast mode
[ 1699.019753][T23207] veth1: entered allmulticast mode
[ 1699.031461][T23207] bond4: (slave vlan0): Opening slave failed
[ 1699.088418][T23211] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1699.107585][T17511] netdevsim netdevsim9 eth0: unset [1, 1] type 2 family 0 port 20000 - 0
[ 1699.117411][T15331] usb 7-1: new high-speed USB device number 33 using dummy_hcd
[ 1699.150711][T17511] netdevsim netdevsim9 eth1: unset [1, 1] type 2 family 0 port 20000 - 0
[ 1699.194861][T17511] netdevsim netdevsim9 eth2: unset [1, 1] type 2 family 0 port 20000 - 0
[ 1699.228877][T17511] netdevsim netdevsim9 eth3: unset [1, 1] type 2 family 0 port 20000 - 0
[ 1699.288721][T15331] usb 7-1: Using ep0 maxpacket: 8
[ 1699.314341][T15331] usb 7-1: New USB device found, idVendor=0ccd, idProduct=0039, bcdDevice=90.7b
[ 1699.324065][T15331] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1699.390106][T15331] pvrusb2: Hardware description: Terratec Grabster AV400
[ 1699.397371][T15331] pvrusb2: **********
[ 1699.402845][T15331] pvrusb2: ***WARNING*** Support for this device (Terratec Grabster AV400) is experimental.
[ 1699.413426][T15331] pvrusb2: Important functionality might not be entirely working.
[ 1699.421690][T15331] pvrusb2: Please consider contacting the driver author to help with further stabilization of the driver.
[ 1699.433485][T15331] pvrusb2: **********
[ 1699.652703][ T2329] pvrusb2: Invalid write control endpoint
[ 1699.931605][T23214] pvrusb2: Invalid write control endpoint
[ 1699.988334][T15331] usb 7-1: USB disconnect, device number 33
[ 1700.111506][ T2329] pvrusb2: Invalid write control endpoint
[ 1700.117628][ T2329] pvrusb2: ***WARNING*** Detected a wedged cx25840 chip; the device will not work.
[ 1700.127410][ T2329] pvrusb2: ***WARNING*** Try power cycling the pvrusb2 device.
[ 1700.135270][ T2329] pvrusb2: ***WARNING*** Disabling further access to the device to prevent other foul-ups.
[ 1700.145609][ T2329] pvrusb2: Device being rendered inoperable
[ 1700.152005][ T2329] cx25840 1-0044: Unable to detect h/w, assuming cx23887
[ 1700.159482][ T2329] cx25840 1-0044: cx23887 A/V decoder found @ 0x88 (pvrusb2_a)
[ 1700.168783][ T2329] pvrusb2: Attached sub-driver cx25840
[ 1700.174427][ T2329] pvrusb2: ***WARNING*** pvrusb2 device hardware appears to be jammed and I can't clear it.
[ 1700.185799][ T2329] pvrusb2: You might need to power cycle the pvrusb2 device in order to recover.
[ 1700.539495][T23230] tipc: Enabling of bearer <eth:syzkaller0> rejected, already enabled
[ 1703.083991][T23261] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5916'.
[ 1703.093967][T23261] netlink: 9 bytes leftover after parsing attributes in process `syz.7.5916'.
[ 1704.784812][T23287] 9pnet_fd: Insufficient options for proto=fd
[ 1704.869955][T23291] IPVS: set_ctl: invalid protocol: 50 127.0.0.1:20002
[ 1704.972898][T23287] netlink: 20 bytes leftover after parsing attributes in process `syz.6.5926'.
[ 1704.974068][T23293] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5929'.
[ 1705.119185][T23293] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5929'.
[ 1705.322733][T23295] tipc: Enabling of bearer <eth:syzkaller0> rejected, max 3 bearers permitted
[ 1705.549146][T23300] A link change request failed with some changes committed already. Interface bridge0 may have been left with an inconsistent configuration, please check.
[ 1707.876213][T23334] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5944'.
[ 1707.945818][T23334] macvtap1: entered promiscuous mode
[ 1707.951654][T23334] bond0: entered promiscuous mode
[ 1707.951868][T23338] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5944'.
[ 1707.957725][T23334] macvtap1: entered allmulticast mode
[ 1707.975419][T23334] bond0: entered allmulticast mode
[ 1707.987417][T23334] 8021q: adding VLAN 0 to HW filter on device macvtap1
[ 1708.024715][T23337] syz_tun: entered allmulticast mode
[ 1708.081312][T23337] netlink: 'syz.5.5945': attribute type 4 has an invalid length.
[ 1708.116551][T23337] dvmrp1: entered allmulticast mode
[ 1708.125085][T23338] bond0: left allmulticast mode
[ 1708.131408][T23338] bond0: left promiscuous mode
[ 1708.213661][T23336] syz_tun: left allmulticast mode
[ 1708.233445][T23339] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5943'.
[ 1709.604266][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1709.615634][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1709.960806][T23362] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5954'.
[ 1710.242995][T23367] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5957'.
[ 1711.729962][T23378] netlink: 204 bytes leftover after parsing attributes in process `syz.4.5960'.
[ 1712.148999][T23380] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5961'.
[ 1714.540273][T23390] loop6: detected capacity change from 0 to 4096
[ 1714.845330][T23390] ntfs3(loop6): Failed to initialize $Extend/$ObjId.
[ 1714.993027][T23418] GUP no longer grows the stack in syz.5.5974 (23418): 80002000-8000a000 (80001000)
[ 1715.005978][T23418] CPU: 0 UID: 0 PID: 23418 Comm: syz.5.5974 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[ 1715.006168][T23418] Tainted: [W]=WARN
[ 1715.006227][T23418] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1715.006325][T23418] Call Trace:
[ 1715.006384][T23418]  <TASK>
[ 1715.006441][T23418]  __dump_stack+0x26/0x30
[ 1715.006632][T23418]  dump_stack_lvl+0x1df/0x270
[ 1715.006831][T23418]  dump_stack+0x1e/0x25
[ 1715.007005][T23418]  __get_user_pages+0x52c2/0x6180
[ 1715.007256][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.007434][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.007600][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.007797][T23418]  ? __rcu_read_unlock+0x6d/0xd0
[ 1715.008023][T23418]  ? kmsan_internal_unpoison_memory+0x14/0x20
[ 1715.008266][T23418]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1715.008459][T23418]  __gup_longterm_locked+0x1884/0x26a0
[ 1715.008639][T23418]  ? gup_fast_fallback+0xfc1/0x3c80
[ 1715.008803][T23418]  ? filter_irq_stacks+0x49/0x190
[ 1715.009071][T23418]  ? stack_depot_save_flags+0x35/0x7b0
[ 1715.009350][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.009510][T23418]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1715.009687][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.009857][T23418]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1715.010033][T23418]  gup_fast_fallback+0x3589/0x3c80
[ 1715.010326][T23418]  pin_user_pages_fast+0xb7/0x120
[ 1715.010490][T23418]  iov_iter_extract_pages+0xa33/0xc40
[ 1715.010736][T23418]  extract_iter_to_sg+0x2716/0x4330
[ 1715.010963][T23418]  ? should_fail_ex+0x45/0x8a0
[ 1715.011155][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.011379][T23418]  af_alg_get_rsgl+0x5fd/0xf30
[ 1715.011601][T23418]  aead_recvmsg+0x7b8/0x24f0
[ 1715.011853][T23418]  ? __pfx_aead_recvmsg+0x10/0x10
[ 1715.012011][T23418]  sock_recvmsg_nosec+0x240/0x2f0
[ 1715.012200][T23418]  ____sys_recvmsg+0x4e5/0x610
[ 1715.012383][T23418]  ? import_iovec+0xb0/0xe0
[ 1715.012551][T23418]  ? get_compat_msghdr+0x670/0x740
[ 1715.012780][T23418]  ___sys_recvmsg+0x20b/0x850
[ 1715.012949][T23418]  ? filter_irq_stacks+0x13f/0x190
[ 1715.013171][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.013366][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.013535][T23418]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1715.013704][T23418]  ? __cond_resched+0x15/0x130
[ 1715.013891][T23418]  do_recvmmsg+0x50b/0xdf0
[ 1715.014097][T23418]  ? kmsan_get_metadata+0xfb/0x160
[ 1715.014302][T23418]  __sys_recvmmsg+0xf3/0x460
[ 1715.014473][T23418]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1715.014653][T23418]  __ia32_compat_sys_recvmmsg_time32+0x102/0x1b0
[ 1715.014875][T23418]  ia32_sys_call+0x2970/0x4310
[ 1715.015030][T23418]  __do_fast_syscall_32+0xb0/0x150
[ 1715.015246][T23418]  do_fast_syscall_32+0x38/0x80
[ 1715.015430][T23418]  do_SYSENTER_32+0x1f/0x30
[ 1715.015614][T23418]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1715.015797][T23418] RIP: 0023:0xf706e539
[ 1715.015897][T23418] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1715.016035][T23418] RSP: 002b:00000000f545e55c EFLAGS: 00000206 ORIG_RAX: 0000000000000151
[ 1715.016169][T23418] RAX: ffffffffffffffda RBX: 0000000000000008 RCX: 0000000080000180
[ 1715.016291][T23418] RDX: 0000000000000002 RSI: 0000000000000101 RDI: 0000000000000000
[ 1715.016373][T23418] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1715.016465][T23418] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1715.016553][T23418] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1715.016671][T23418]  </TASK>
[ 1715.960043][T23426] smc: adding net device bond0 with user defined pnetid SYZ2
[ 1715.972980][T23426] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1716.001662][T23430] netlink: 4 bytes leftover after parsing attributes in process `syz.9.5976'.
[ 1716.785571][T23442] netlink: 'syz.4.5980': attribute type 2 has an invalid length.
[ 1717.821512][T23452] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5984'.
[ 1718.041921][T23452] bridge4: port 1(veth3) entered blocking state
[ 1718.049066][T23452] bridge4: port 1(veth3) entered disabled state
[ 1718.056229][T23452] veth3: entered allmulticast mode
[ 1718.065801][T23452] veth3: entered promiscuous mode
[ 1718.085168][T23460] veth0_to_bond: left allmulticast mode
[ 1718.093136][T23460] bridge4: port 2(veth0_to_bond) entered blocking state
[ 1718.104287][T23460] bridge4: port 2(veth0_to_bond) entered disabled state
[ 1718.112217][T23460] veth0_to_bond: entered allmulticast mode
[ 1718.121593][T23460] veth0_to_bond: entered promiscuous mode
[ 1718.293807][T23460] vlan2: entered allmulticast mode
[ 1718.301472][T23460] bridge4: port 3(vlan2) entered blocking state
[ 1718.309849][T23460] bridge4: port 3(vlan2) entered disabled state
[ 1718.321396][T23460] vlan2: entered promiscuous mode
[ 1718.326921][T23460] veth0_to_hsr: entered promiscuous mode
[ 1718.689976][T23465] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5988'.
[ 1719.772601][T23475] dummy0: entered promiscuous mode
[ 1719.778480][T23475] vlan1: entered promiscuous mode
[ 1720.320377][T23473] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5991'.
[ 1720.769907][T23491] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1720.957073][T23498] netlink: 27 bytes leftover after parsing attributes in process `syz.9.5998'.
[ 1722.137783][T23511] siw: device registration error -23
[ 1723.396211][T23526] netlink: 'syz.6.6008': attribute type 1 has an invalid length.
[ 1723.677182][T23526] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1723.695174][T23526] bond2: (slave vxcan3): Error -95 calling set_mac_address
[ 1723.901677][T23529] gretap1: entered promiscuous mode
[ 1723.924164][T23529] bond2: (slave gretap1): making interface the new active one
[ 1723.933786][T23529] bond2: (slave gretap1): Enslaving as an active interface with an up link
[ 1724.231452][T23526] macvlan2: entered promiscuous mode
[ 1724.236990][T23526] macvlan2: entered allmulticast mode
[ 1724.251592][T23526] bond2: entered promiscuous mode
[ 1724.260983][T23526] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1724.305668][T23526] bond2: (slave macvlan2): the slave hw address is in use by the bond; giving it the hw address of gretap1
[ 1724.381261][T23526] bond2: left promiscuous mode
[ 1725.163525][   T30] audit: type=1326 audit(2000000872.011:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23547 comm="syz.7.6015" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x0
[ 1726.169062][T23562] lo speed is unknown, defaulting to 1000
[ 1726.336487][T23563] netlink: 'syz.9.6021': attribute type 5 has an invalid length.
[ 1727.340149][T23567] loop6: detected capacity change from 0 to 512
[ 1727.459248][T23567] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1727.531271][T23567] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a01ec018, mo2=0002]
[ 1727.573032][T23567] System zones: 1-12
[ 1727.642428][T23567] EXT4-fs (loop6): 1 truncate cleaned up
[ 1727.650492][T23567] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1731.282110][T21327] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1731.900442][T15346] usb 7-1: new high-speed USB device number 34 using dummy_hcd
[ 1732.260353][T15346] usb 7-1: New USB device found, idVendor=0424, idProduct=7850, bcdDevice= 0.00
[ 1732.270014][T15346] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1732.278443][T15346] usb 7-1: Product: syz
[ 1732.282817][T15346] usb 7-1: Manufacturer: syz
[ 1732.287535][T15346] usb 7-1: SerialNumber: syz
[ 1732.533631][T23608] netlink: 9 bytes leftover after parsing attributes in process `syz.7.6033'.
[ 1735.186599][T15346] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00000010. ret = -EPIPE
[ 1735.238747][T15346] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to read register index 0x00001000. ret = -EPIPE
[ 1737.057828][T15346] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to write register index 0x000000f4. ret = -EPROTO
[ 1737.075372][T15346] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Failed to init LTM with error -EPROTO
[ 1737.086192][T15346] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Registers INIT FAILED....
[ 1737.096706][T15346] lan78xx 7-1:1.0 (unnamed net_device) (uninitialized): Bind routine FAILED
[ 1737.149677][T23643] netlink: 'syz.5.6042': attribute type 10 has an invalid length.
[ 1737.171319][T23644] sock: sock_timestamping_bind_phc: sock not bind to device
[ 1737.185679][T23643] netlink: 'syz.5.6042': attribute type 10 has an invalid length.
[ 1737.210294][T23643] : (slave syz_tun): Enslaving as an active interface with an up link
[ 1738.214118][T15346] lan78xx 7-1:1.0: probe with driver lan78xx failed with error -71
[ 1738.366889][T15346] usb 7-1: USB disconnect, device number 34
[ 1738.997110][T23656] batman_adv: batadv0: Adding interface: ip6gretap2
[ 1739.004286][T23656] batman_adv: batadv0: The MTU of interface ip6gretap2 is too small (1434) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1739.031064][T23656] batman_adv: batadv0: Interface activated: ip6gretap2
[ 1739.174364][T23663] netlink: 'syz.7.6048': attribute type 1 has an invalid length.
[ 1739.486927][T23663] bond12 (unregistering): Released all slaves
[ 1740.411424][T23676] pimreg: left allmulticast mode
[ 1740.417141][T23676] syz_tun: left allmulticast mode
[ 1740.468972][T23680] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6055'.
[ 1740.478727][T23680] netlink: 24 bytes leftover after parsing attributes in process `syz.4.6055'.
[ 1740.542469][   T30] audit: type=1326 audit(2000000887.381:558): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23679 comm="syz.4.6055" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf711e539 code=0x0
[ 1741.005242][T23691] openvswitch: netlink: IP tunnel TTL not specified.
[ 1741.105162][T23691] loop6: detected capacity change from 0 to 256
[ 1741.285424][T23691] loop6: detected capacity change from 0 to 1024
[ 1741.339603][T23691] EXT4-fs (loop6): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[ 1741.356459][T23691] EXT4-fs (loop6): required journal recovery suppressed and not mounted read-only
[ 1742.004702][T23700] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6061'.
[ 1742.723826][T23697] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1742.831399][T23697] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1742.932301][T23711] syz.5.6063 (23711): attempted to duplicate a private mapping with mremap.  This is not supported.
[ 1743.656565][T23718] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6065'.
[ 1744.824595][T23738] virtio-fs: tag </dev/md0> not found
[ 1746.109884][   T30] audit: type=1326 audit(2000000892.951:559): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.725000][T23759] netlink: 'syz.9.6075': attribute type 10 has an invalid length.
[ 1746.753793][   T30] audit: type=1326 audit(2000000893.551:560): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.778473][   T30] audit: type=1326 audit(2000000893.571:561): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.802523][   T30] audit: type=1326 audit(2000000893.571:562): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.825127][   T30] audit: type=1326 audit(2000000893.571:563): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.847882][   T30] audit: type=1326 audit(2000000893.571:564): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.870799][   T30] audit: type=1326 audit(2000000893.571:565): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.894335][   T30] audit: type=1326 audit(2000000893.581:566): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=359 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1746.918062][   T30] audit: type=1326 audit(2000000893.581:567): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1748.094101][T23767] netlink: 'syz.7.6076': attribute type 1 has an invalid length.
[ 1748.277595][T23771] bond12: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1748.295720][T23771] bond12: (slave vxcan1): Error -95 calling set_mac_address
[ 1748.342582][   T30] audit: type=1326 audit(2000000893.911:568): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23755 comm="syz.5.6073" exe="/root/syz-executor" sig=0 arch=40000003 syscall=366 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1749.242605][T23772] gretap4: entered promiscuous mode
[ 1749.299377][T23774] lo speed is unknown, defaulting to 1000
[ 1749.773185][T23775] macvlan0: entered promiscuous mode
[ 1749.778909][T23775] macvlan0: entered allmulticast mode
[ 1749.787862][T23775] bond12: entered promiscuous mode
[ 1749.796238][T23775] 8021q: adding VLAN 0 to HW filter on device macvlan0
[ 1749.967127][T23775] bond12: left promiscuous mode
[ 1751.075144][T23796] bridge0: port 1(syz_tun) entered blocking state
[ 1751.083049][T23796] bridge0: port 1(syz_tun) entered disabled state
[ 1751.090755][T23796] syz_tun: entered allmulticast mode
[ 1751.100031][T23796] syz_tun: entered promiscuous mode
[ 1751.401566][   T30] kauditd_printk_skb: 33 callbacks suppressed
[ 1751.401653][   T30] audit: type=1800 audit(2000000898.241:602): pid=23786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.4.6080" name="/newroot/178/bus/#974//deleted" dev="tmpfs" ino=974 res=0 errno=0
[ 1753.137708][   T30] audit: type=1326 audit(2000000899.961:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.161502][   T30] audit: type=1326 audit(2000000899.971:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.184084][   T30] audit: type=1326 audit(2000000899.971:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.584116][   T30] audit: type=1326 audit(2000000900.071:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.607125][   T30] audit: type=1326 audit(2000000900.071:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=295 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.631474][   T30] audit: type=1326 audit(2000000900.081:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.656838][   T30] audit: type=1326 audit(2000000900.081:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.680411][   T30] audit: type=1326 audit(2000000900.101:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1753.703052][   T30] audit: type=1326 audit(2000000900.101:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23818 comm="syz.9.6089" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf70ee539 code=0x7ffc0000
[ 1754.441964][T23834] netlink: 'syz.9.6093': attribute type 1 has an invalid length.
[ 1754.666504][T23835] bond7: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1754.682454][T23835] bond7: (slave vxcan1): Error -95 calling set_mac_address
[ 1755.697738][T23852] lo speed is unknown, defaulting to 1000
[ 1756.583995][T23864] loop6: detected capacity change from 0 to 128
[ 1760.564922][T23884] netlink: 'syz.7.6107': attribute type 1 has an invalid length.
[ 1760.764220][T23888] bond13: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1760.785443][T23888] bond13: (slave vxcan1): Error -95 calling set_mac_address
[ 1762.232497][T23907] lo speed is unknown, defaulting to 1000
[ 1762.279182][T23900] loop6: detected capacity change from 0 to 512
[ 1762.368838][T23900] EXT4-fs: Ignoring removed orlov option
[ 1762.376076][T23900] EXT4-fs (loop6): unable to read superblock
[ 1762.466714][T23910] netlink: 'syz.7.6115': attribute type 5 has an invalid length.
[ 1763.183495][T19610] Bluetooth: hci4: unexpected cc 0x0c05 length: 4 > 1
[ 1763.190863][T19610] Bluetooth: hci4: unexpected event for opcode 0x0c05
[ 1764.306174][T19610] Bluetooth: hci2: unexpected event for opcode 0x0c1b
[ 1764.837877][T23941] lo speed is unknown, defaulting to 1000
[ 1765.402752][T23938] : (slave syz_tun): Releasing backup interface
[ 1766.365471][T23954] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6132'.
[ 1766.543458][T19610] Bluetooth: min 0 < 6
[ 1767.263694][T23971] netlink: 'syz.4.6137': attribute type 1 has an invalid length.
[ 1767.388733][T23971] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1767.406446][T23971] bond1: (slave vxcan3): Error -95 calling set_mac_address
[ 1767.702631][T23975] gretap1: entered promiscuous mode
[ 1767.722772][T23975] bond1: (slave gretap1): making interface the new active one
[ 1767.732673][T23975] bond1: (slave gretap1): Enslaving as an active interface with an up link
[ 1767.996749][   T30] kauditd_printk_skb: 28 callbacks suppressed
[ 1767.996837][   T30] audit: type=1326 audit(2000000914.841:640): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.026461][   T30] audit: type=1326 audit(2000000914.841:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.051674][   T30] audit: type=1326 audit(2000000914.871:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=386 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.074647][   T30] audit: type=1326 audit(2000000914.871:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.100110][   T30] audit: type=1326 audit(2000000914.871:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.123513][   T30] audit: type=1326 audit(2000000914.871:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=343 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.146451][   T30] audit: type=1326 audit(2000000914.871:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.171465][   T30] audit: type=1326 audit(2000000914.871:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=365 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.196884][   T30] audit: type=1326 audit(2000000914.881:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.220196][   T30] audit: type=1326 audit(2000000914.881:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23983 comm="syz.7.6141" exe="/root/syz-executor" sig=0 arch=40000003 syscall=441 compat=1 ip=0xf7f26539 code=0x7ffc0000
[ 1768.619978][T19610] Bluetooth: hci2: command 0x0406 tx timeout
[ 1771.634937][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1771.641761][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1771.941457][T24012] lo speed is unknown, defaulting to 1000
[ 1772.707669][T24021] netlink: 'syz.7.6153': attribute type 1 has an invalid length.
[ 1772.778603][T15346] usb 7-1: new high-speed USB device number 35 using dummy_hcd
[ 1772.824287][T24023] bond14: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1772.841766][T24023] bond14: (slave vxcan1): Error -95 calling set_mac_address
[ 1772.999657][T15346] usb 7-1: Using ep0 maxpacket: 32
[ 1773.014481][T15346] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1773.044247][T15346] usb 7-1: config 1 has an invalid interface number: 48 but max is 0
[ 1773.053436][T15346] usb 7-1: config 1 has no interface number 0
[ 1773.060382][T15346] usb 7-1: config 1 interface 48 altsetting 9 bulk endpoint 0xF has invalid maxpacket 64
[ 1773.072361][T15346] usb 7-1: config 1 interface 48 has no altsetting 0
[ 1773.233143][T15346] usb 7-1: New USB device found, idVendor=110a, idProduct=1130, bcdDevice=f3.9e
[ 1773.243048][T15346] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1773.251393][T15346] usb 7-1: Product: syz
[ 1773.255776][T15346] usb 7-1: Manufacturer: syz
[ 1773.260680][T15346] usb 7-1: SerialNumber: syz
[ 1773.531675][T19610] Bluetooth: hci4: SCO packet for unknown connection handle 200
[ 1773.881834][T15346] usb 7-1: can't set config #1, error -71
[ 1773.951956][T15346] usb 7-1: USB disconnect, device number 35
[ 1774.310582][T19610] Bluetooth: hci1: ACL packet for unknown connection handle 201
[ 1774.344180][T19610] Bluetooth: hci4: unexpected event 0x32 length: 16 > 9
[ 1774.608979][T24047] netlink: 10 bytes leftover after parsing attributes in process `syz.9.6161'.
[ 1774.833503][T24051] netlink: 'syz.5.6163': attribute type 1 has an invalid length.
[ 1774.999555][T24051] bond6: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1775.024721][T24051] bond6: (slave vxcan3): Error -95 calling set_mac_address
[ 1775.087510][T24054] gretap1: entered promiscuous mode
[ 1775.221081][T24058] netlink: 'syz.9.6166': attribute type 1 has an invalid length.
[ 1775.365353][T24062] bond8: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1775.384570][T24062] bond8: (slave vxcan1): Error -95 calling set_mac_address
[ 1775.574490][T19610] Bluetooth: hci4: Unable to find connection with handle 0x0000
[ 1776.748596][T24084] veth0_to_bond: entered allmulticast mode
[ 1776.830095][T19610] Bluetooth: hci2: unexpected event for opcode 0x200c
[ 1776.963914][T24090] lo speed is unknown, defaulting to 1000
[ 1777.549244][T24092] netlink: 'syz.6.6178': attribute type 5 has an invalid length.
[ 1777.998954][T24098] netlink: 'syz.5.6181': attribute type 1 has an invalid length.
[ 1778.235479][T24098] bond7: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1778.254208][T24098] bond7: (slave vxcan3): Error -95 calling set_mac_address
[ 1779.289832][T24114] dvmrp1: left allmulticast mode
[ 1779.532142][   T30] kauditd_printk_skb: 46 callbacks suppressed
[ 1779.532230][   T30] audit: type=1800 audit(2000000926.381:696): pid=24119 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.6188" name="nullb0" dev="tmpfs" ino=1819 res=0 errno=0
[ 1779.758194][   T30] audit: type=1326 audit(2000000926.581:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24121 comm="syz.4.6190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1779.781326][   T30] audit: type=1326 audit(2000000926.581:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24121 comm="syz.4.6190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1779.973284][   T30] audit: type=1326 audit(2000000926.691:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24121 comm="syz.4.6190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=449 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1779.999719][   T30] audit: type=1326 audit(2000000926.691:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24121 comm="syz.4.6190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1780.023366][   T30] audit: type=1326 audit(2000000926.691:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24121 comm="syz.4.6190" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf711e539 code=0x7ffc0000
[ 1780.221363][T19610] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 1780.230380][T19610] Bluetooth: hci1: Injecting HCI hardware error event
[ 1780.240285][T19610] Bluetooth: hci1: hardware error 0x00
[ 1780.853522][T24131] Bluetooth: hci1: unexpected event for opcode 0x1407
[ 1780.889035][T24140] netlink: 'syz.4.6197': attribute type 1 has an invalid length.
[ 1781.033003][T24142] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1781.051169][T24142] bond2: (slave vxcan3): Error -95 calling set_mac_address
[ 1782.299408][T19610] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 1782.385214][T24168] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6209'.
[ 1783.542039][T19610] Bluetooth: unknown link type 83
[ 1783.547420][T19610] Bluetooth: hci2: connection err: -111
[ 1783.649363][T24186] netlink: 'syz.5.6216': attribute type 1 has an invalid length.
[ 1783.810553][T24186] bond8: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1783.829126][T24186] bond8: (slave vxcan3): Error -95 calling set_mac_address
[ 1783.911302][T24190] macvlan2: entered promiscuous mode
[ 1783.916835][T24190] macvlan2: entered allmulticast mode
[ 1783.926006][T24190] bond8: entered promiscuous mode
[ 1783.934437][T24190] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1783.962844][T24190] bond8: left promiscuous mode
[ 1785.408907][T24224] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6231'.
[ 1786.171562][T24239] lo speed is unknown, defaulting to 1000
[ 1787.839161][T24265] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6248'.
[ 1789.154020][T24287] lo speed is unknown, defaulting to 1000
[ 1789.181582][T24290] netlink: 'syz.9.6258': attribute type 5 has an invalid length.
[ 1789.512536][T24293] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0)
[ 1790.166772][T24304] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6265'.
[ 1790.176631][T24304] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6265'.
[ 1793.934368][T24375] netlink: 68 bytes leftover after parsing attributes in process `syz.9.6294'.
[ 1794.200615][T24380] netlink: 'syz.5.6297': attribute type 1 has an invalid length.
[ 1794.339471][T24380] bond9: (slave vxcan3): The slave device specified does not support setting the MAC address
[ 1794.358122][T24380] bond9: (slave vxcan3): Error -95 calling set_mac_address
[ 1795.972303][T24420] netlink: 32 bytes leftover after parsing attributes in process `syz.7.6314'.
[ 1796.084116][T24422] bridge0: port 1(batadv0) entered blocking state
[ 1796.091472][T24422] bridge0: port 1(batadv0) entered disabled state
[ 1796.099126][T24422] batadv0: entered allmulticast mode
[ 1796.108245][T24422] batadv0: entered promiscuous mode
[ 1796.608143][T17494] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 1796.617683][T17494] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 1800.416578][T24515] bridge0: port 1(batadv0) entered blocking state
[ 1800.423954][T24515] bridge0: port 1(batadv0) entered disabled state
[ 1800.435423][T24515] batadv0: entered allmulticast mode
[ 1800.444857][T24515] batadv0: entered promiscuous mode
[ 1800.906717][T17513] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[ 1800.916966][T17513] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[ 1804.372909][   T30] audit: type=1326 audit(2000000951.201:702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24596 comm="syz.5.6389" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1804.396531][   T30] audit: type=1326 audit(2000000951.201:703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24596 comm="syz.5.6389" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1804.531019][   T30] audit: type=1326 audit(2000000951.311:704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24596 comm="syz.5.6389" exe="/root/syz-executor" sig=0 arch=40000003 syscall=368 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1804.557480][   T30] audit: type=1326 audit(2000000951.311:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24596 comm="syz.5.6389" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf706e539 code=0x7ffc0000
[ 1805.366677][T24617] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1807.932883][T24667] lo: left allmulticast mode
[ 1807.941603][T24667] tunl0: left allmulticast mode
[ 1807.950239][T24667] gre0: left allmulticast mode
[ 1807.957592][T24667] gretap0: left allmulticast mode
[ 1807.969150][T24667] erspan0: left allmulticast mode
[ 1807.976628][T24667] ip_vti0: left allmulticast mode
[ 1807.986298][T24667] ip6_vti0: left allmulticast mode
[ 1807.994128][T24667] sit0: left allmulticast mode
[ 1808.001834][T24667] ip6tnl0: left allmulticast mode
[ 1808.011507][T24667] ip6gre0: left allmulticast mode
[ 1808.019374][T24667] ip6gretap0: left allmulticast mode
[ 1808.031774][T24667] vcan0: left allmulticast mode
[ 1808.040873][T24667] bond0: left allmulticast mode
[ 1808.050439][T24667] nlmon0: left allmulticast mode
[ 1808.211827][T24667] caif0: left allmulticast mode
[ 1808.219129][T24667] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1808.822463][T24682] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6422'.
[ 1810.145103][T24708] netlink: 'syz.7.6433': attribute type 1 has an invalid length.
[ 1810.304662][T24708] bond16: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1810.322395][T24708] bond16: (slave vxcan1): Error -95 calling set_mac_address
[ 1810.389368][T24711] macvlan0: entered promiscuous mode
[ 1810.394915][T24711] macvlan0: entered allmulticast mode
[ 1810.404017][T24711] bond16: entered promiscuous mode
[ 1810.412261][T24711] 8021q: adding VLAN 0 to HW filter on device macvlan0
[ 1810.456082][T24711] bond16: left promiscuous mode
[ 1811.913146][T24743] libceph: resolve 'cc' (ret=-3): failed
[ 1812.793015][T24760] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[ 1815.029201][T24792] tipc: Enabling of bearer <eth:syzkall> rejected, failed to enable media
[ 1818.076833][T24853] netlink: 120 bytes leftover after parsing attributes in process `syz.6.6493'.
[ 1819.017561][T24869] tmpfs: Bad value for 'mpol'
[ 1819.430707][T24877] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6504'.
[ 1820.657811][T24901] netlink: 4 bytes leftover after parsing attributes in process `syz.9.6513'.
[ 1821.507647][T24914] bridge0: port 1(syz_tun) entered blocking state
[ 1821.514876][T24914] bridge0: port 1(syz_tun) entered disabled state
[ 1821.522382][T24914] syz_tun: entered allmulticast mode
[ 1821.535141][T24914] syz_tun: entered promiscuous mode
[ 1821.544361][T24914] bridge0: port 1(syz_tun) entered blocking state
[ 1821.551385][T24914] bridge0: port 1(syz_tun) entered forwarding state
[ 1822.985262][T24946] netlink: 'syz.5.6533': attribute type 1 has an invalid length.
[ 1824.341041][T24977] netlink: 9 bytes leftover after parsing attributes in process `syz.4.6546'.
[ 1824.606354][T24983] netlink: 'syz.7.6548': attribute type 1 has an invalid length.
[ 1824.747100][T24988] bond17: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1824.764971][T24988] bond17: (slave vxcan1): Error -95 calling set_mac_address
[ 1824.894766][T24989] macvlan0: entered promiscuous mode
[ 1824.900502][T24989] macvlan0: entered allmulticast mode
[ 1824.911441][T24989] bond17: entered promiscuous mode
[ 1824.920217][T24989] 8021q: adding VLAN 0 to HW filter on device macvlan0
[ 1825.029007][T24989] bond17: left promiscuous mode
[ 1825.127787][T24991] netlink: 'syz.6.6550': attribute type 1 has an invalid length.
[ 1826.301540][T25013] loop6: detected capacity change from 0 to 16
[ 1826.359058][T25013] erofs (device loop6): mounted with root inode @ nid 36.
[ 1826.435973][T25013] erofs (device loop6): bogus lookback distance 1388 @ lcn 42 of nid 36
[ 1826.489212][T25015] netlink: 9 bytes leftover after parsing attributes in process `syz.5.6561'.
[ 1826.519470][T25019] lo speed is unknown, defaulting to 1000
[ 1826.559621][T25020] netlink: 'syz.9.6562': attribute type 5 has an invalid length.
[ 1826.598577][T25013] erofs (device loop6): failed to decompress -23 in[64, 4032] out[1851]
[ 1826.607464][T25013] erofs (device loop6): read error -117 @ 43 of nid 36
[ 1827.186183][T25028] netlink: 'syz.7.6566': attribute type 1 has an invalid length.
[ 1827.226211][T25029] loop6: detected capacity change from 0 to 24
[ 1827.275366][T25029] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1828.832661][T25049] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6576'.
[ 1829.219045][T25056] lo speed is unknown, defaulting to 1000
[ 1829.320622][T25061] netlink: 'syz.6.6581': attribute type 1 has an invalid length.
[ 1832.195330][T25111] netlink: 'syz.4.6597': attribute type 1 has an invalid length.
[ 1832.334713][T25116] netlink: 'syz.7.6598': attribute type 5 has an invalid length.
[ 1832.405172][T25114] lo speed is unknown, defaulting to 1000
[ 1832.494829][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1832.502481][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1835.524993][T25163] netlink: 9 bytes leftover after parsing attributes in process `syz.4.6617'.
[ 1836.268843][T25176] netlink: 'syz.5.6623': attribute type 11 has an invalid length.
[ 1836.278225][T25176] netlink: 56 bytes leftover after parsing attributes in process `syz.5.6623'.
[ 1836.690488][T25184] netlink: 'syz.4.6626': attribute type 1 has an invalid length.
[ 1836.935500][T25188] macvlan2: entered promiscuous mode
[ 1836.941332][T25188] macvlan2: entered allmulticast mode
[ 1836.951889][T25188] bond4: entered promiscuous mode
[ 1836.960178][T25188] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1837.078423][T25193] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6630'.
[ 1837.114030][T25188] bond4: left promiscuous mode
[ 1837.586832][T25202] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6633'.
[ 1838.129811][T25209] netlink: 'syz.9.6637': attribute type 32 has an invalid length.
[ 1838.139005][T25209] netlink: 8 bytes leftover after parsing attributes in process `syz.9.6637'.
[ 1838.149066][T25209] (unnamed net_device) (uninitialized): Setting coupled_control to off (0)
[ 1839.219016][T25230] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6646'.
[ 1840.568747][T15331] usb 7-1: new high-speed USB device number 36 using dummy_hcd
[ 1840.758546][T15331] usb 7-1: Using ep0 maxpacket: 32
[ 1840.783737][T15331] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[ 1840.792567][T15331] usb 7-1: config 0 has no interface number 0
[ 1840.841312][T15331] usb 7-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=b6.d8
[ 1840.851066][T15331] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1840.859598][T15331] usb 7-1: Product: syz
[ 1840.863961][T15331] usb 7-1: Manufacturer: syz
[ 1840.868996][T15331] usb 7-1: SerialNumber: syz
[ 1840.916482][T25267] netlink: 'syz.7.6663': attribute type 3 has an invalid length.
[ 1840.933808][T15331] usb 7-1: config 0 descriptor??
[ 1840.966320][T15331] usb 7-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state
[ 1840.975612][T15331] usb 7-1: selecting invalid altsetting 1
[ 1840.983490][T15331] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-22
[ 1841.039647][T15331] usb 7-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1841.051226][T15331] dvbdev: DVB: registering new adapter (Intel CE9500 reference design)
[ 1841.060346][T15331] usb 7-1: media controller created
[ 1841.183956][T15331] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1842.299091][T25256] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-110
[ 1842.319457][T15331] usb 7-1: dvb_usb_ce6230: usb_control_msg() failed=-71
[ 1842.326754][T15331] zl10353_read_register: readreg error (reg=127, ret==-71)
[ 1842.369759][T15331] usb 7-1: dvb_usb_ce6230: usb_set_interface() failed=-71
[ 1842.857414][T15331] usb 7-1: USB disconnect, device number 36
[ 1843.793801][T25314] overlayfs: missing 'lowerdir'
[ 1844.149074][T25316] netlink: 9 bytes leftover after parsing attributes in process `syz.5.6686'.
[ 1844.725985][T25330] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[ 1844.732766][T25330] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1844.741380][T25330] vhci_hcd vhci_hcd.0: Device attached
[ 1844.821154][T25334] vhci_hcd vhci_hcd.0: pdev(6) rhport(1) sockfd(12)
[ 1844.828029][T25334] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1844.836244][T25334] vhci_hcd vhci_hcd.0: Device attached
[ 1844.882226][T25330] vhci_hcd vhci_hcd.0: pdev(6) rhport(2) sockfd(10)
[ 1844.889106][T25330] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1844.897612][T25330] vhci_hcd vhci_hcd.0: Device attached
[ 1844.931813][T25339] vhci_hcd vhci_hcd.0: pdev(6) rhport(3) sockfd(17)
[ 1844.938708][T25339] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1844.947208][T25339] vhci_hcd vhci_hcd.0: Device attached
[ 1844.959371][T25334] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1844.971046][T15331] vhci_hcd: vhci_device speed not set
[ 1845.012669][T25330] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1845.061447][T15331] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[ 1845.148177][T25337] vhci_hcd: connection closed
[ 1845.153831][T20499] vhci_hcd: stop threads
[ 1845.160146][T25332] vhci_hcd: connection reset by peer
[ 1845.164509][T20499] vhci_hcd: release socket
[ 1845.171407][T25335] vhci_hcd: connection closed
[ 1845.174519][T20499] vhci_hcd: disconnect device
[ 1845.188867][T25340] vhci_hcd: connection closed
[ 1845.285493][T20499] vhci_hcd: stop threads
[ 1845.294914][T20499] vhci_hcd: release socket
[ 1845.299945][T20499] vhci_hcd: disconnect device
[ 1845.348310][T20499] vhci_hcd: stop threads
[ 1845.352749][T20499] vhci_hcd: release socket
[ 1845.357521][T20499] vhci_hcd: disconnect device
[ 1845.408949][T20499] vhci_hcd: stop threads
[ 1845.413414][T20499] vhci_hcd: release socket
[ 1845.425525][T20499] vhci_hcd: disconnect device
[ 1845.567607][T25351] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[ 1845.944110][T25357] netlink: 9 bytes leftover after parsing attributes in process `syz.7.6701'.
[ 1847.159124][T25382] netlink: 4 bytes leftover after parsing attributes in process `syz.9.6713'.
[ 1847.512026][T25391] netlink: 9 bytes leftover after parsing attributes in process `syz.4.6716'.
[ 1848.017472][T25400] vlan3: entered allmulticast mode
[ 1848.024054][T25400] bond0: entered allmulticast mode
[ 1848.794900][T25414] netlink: 277 bytes leftover after parsing attributes in process `syz.5.6727'.
[ 1848.804451][T25414] netlink: 277 bytes leftover after parsing attributes in process `syz.5.6727'.
[ 1849.378879][T25424] tmpfs: Bad value for 'mpol'
[ 1849.705006][T25430] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(8)
[ 1849.711800][T25430] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1849.719958][T25430] vhci_hcd vhci_hcd.0: Device attached
[ 1849.742695][T25430] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1849.777450][T25430] vhci_hcd vhci_hcd.0: pdev(6) rhport(2) sockfd(12)
[ 1849.784339][T25430] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1849.794981][T25430] vhci_hcd vhci_hcd.0: Device attached
[ 1849.860741][T25436] vhci_hcd vhci_hcd.0: pdev(6) rhport(3) sockfd(15)
[ 1849.867634][T25436] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1849.878618][T25436] vhci_hcd vhci_hcd.0: Device attached
[ 1849.920892][T25430] vhci_hcd vhci_hcd.0: pdev(6) rhport(4) sockfd(14)
[ 1849.927769][T25430] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[ 1849.936360][T25430] vhci_hcd vhci_hcd.0: Device attached
[ 1849.961627][T25445] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1849.970296][T25440] netlink: 9 bytes leftover after parsing attributes in process `syz.5.6734'.
[ 1850.001539][T25436] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[ 1850.103789][T25437] vhci_hcd: connection closed
[ 1850.103811][T25433] vhci_hcd: connection closed
[ 1850.105711][T25431] vhci_hcd: connection closed
[ 1850.115995][T25442] vhci_hcd: connection closed
[ 1850.119573][T22137] vhci_hcd: stop threads
[ 1850.130190][T22137] vhci_hcd: release socket
[ 1850.134849][T22137] vhci_hcd: disconnect device
[ 1850.163731][T25432] vhci_hcd: sendmsg failed!, ret=-32 for 48
[ 1850.219692][T22137] vhci_hcd: stop threads
[ 1850.224150][T22137] vhci_hcd: release socket
[ 1850.229360][T22137] vhci_hcd: disconnect device
[ 1850.234501][T22137] vhci_hcd: stop threads
[ 1850.239053][T22137] vhci_hcd: release socket
[ 1850.243827][T22137] vhci_hcd: disconnect device
[ 1850.308807][T15331] vhci_hcd: vhci_device speed not set
[ 1850.353943][T22137] vhci_hcd: stop threads
[ 1850.362007][T22137] vhci_hcd: release socket
[ 1850.366899][T22137] vhci_hcd: disconnect device
[ 1851.421703][T25472] netlink: 9 bytes leftover after parsing attributes in process `syz.7.6747'.
[ 1852.671060][T25498] loop6: detected capacity change from 0 to 512
[ 1852.693401][T25498] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[ 1852.721603][T25499] lo speed is unknown, defaulting to 1000
[ 1853.303965][T25498] EXT4-fs (loop6): 1 orphan inode deleted
[ 1853.310479][T25498] EXT4-fs (loop6): 1 truncate cleaned up
[ 1853.318554][T25498] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1853.634696][T21327] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1855.730715][T25542] lo speed is unknown, defaulting to 1000
[ 1856.669646][T25553] netlink: 48 bytes leftover after parsing attributes in process `syz.5.6777'.
[ 1857.009212][T25556] netlink: 9 bytes leftover after parsing attributes in process `syz.6.6776'.
[ 1858.839528][   T30] audit: type=1800 audit(2000001005.681:706): pid=25591 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6792" name="nullb0" dev="tmpfs" ino=1739 res=0 errno=0
[ 1859.104892][T25595] delete_channel: no stack
[ 1859.737502][T25604] lo speed is unknown, defaulting to 1000
[ 1861.429637][   T30] audit: type=1800 audit(2000001008.271:707): pid=25631 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.6808" name="nullb0" dev="tmpfs" ino=1819 res=0 errno=0
[ 1862.655565][T25655] lo speed is unknown, defaulting to 1000
[ 1864.728710][T25680] bridge0: entered promiscuous mode
[ 1864.746132][T25680] bridge0: port 2(macsec1) entered blocking state
[ 1864.753265][T25680] bridge0: port 2(macsec1) entered disabled state
[ 1864.761489][T25680] macsec1: entered allmulticast mode
[ 1864.767246][T25680] bridge0: entered allmulticast mode
[ 1864.793646][T25680] macsec1: left allmulticast mode
[ 1864.799428][T25680] bridge0: left allmulticast mode
[ 1864.855849][T25684] netlink: 9 bytes leftover after parsing attributes in process `syz.7.6830'.
[ 1864.910235][T25680] bridge0: left promiscuous mode
[ 1865.430234][T25693] lo speed is unknown, defaulting to 1000
[ 1865.803326][T25698] netlink: 'syz.7.6834': attribute type 5 has an invalid length.
[ 1866.340139][T25702] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6838'.
[ 1867.729984][T25727] tipc: Enabling of bearer <udp:s> rejected, already enabled
[ 1868.073829][   T30] audit: type=1800 audit(2000001014.921:708): pid=25733 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6849" name="nullb0" dev="tmpfs" ino=1739 res=0 errno=0
[ 1868.372758][T25738] lo speed is unknown, defaulting to 1000
[ 1870.593666][   T30] audit: type=1800 audit(2000001017.431:709): pid=25767 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6863" name="nullb0" dev="tmpfs" ino=1739 res=0 errno=0
[ 1870.715002][T25771] tipc: Enabled bearer <eth:batadv0>, priority 10
[ 1871.279660][T25777] loop6: detected capacity change from 0 to 256
[ 1871.313306][T25777] exfat: Deprecated parameter 'utf8'
[ 1871.320323][T25777] exfat: Deprecated parameter 'namecase'
[ 1871.327056][T25777] exfat: Deprecated parameter 'namecase'
[ 1871.333383][T25777] exfat: Deprecated parameter 'utf8'
[ 1871.534333][T25777] exFAT-fs (loop6): failed to load upcase table (idx : 0x00012153, chksum : 0x5270ca8d, utbl_chksum : 0xe619d30d)
[ 1871.634644][T25777] exFAT-fs (loop6): start_clu is invalid cluster(0x400)
[ 1872.246077][T25792] loop6: detected capacity change from 0 to 1024
[ 1872.358077][   T30] audit: type=1800 audit(2000001019.201:710): pid=25792 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.6874" name="file1" dev="loop6" ino=20 res=0 errno=0
[ 1872.359319][T25792] bio_check_eod: 406 callbacks suppressed
[ 1872.359413][T25792] syz.6.6874: attempt to access beyond end of device
[ 1872.359413][T25792] loop6: rw=0, sector=5778, nr_sectors = 2 limit=1024
[ 1872.578609][   T30] audit: type=1800 audit(2000001019.421:711): pid=25798 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.6877" name="nullb0" dev="tmpfs" ino=1739 res=0 errno=0
[ 1874.541656][   T30] audit: type=1800 audit(2000001021.381:712): pid=25835 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.6893" name="nullb0" dev="tmpfs" ino=1819 res=0 errno=0
[ 1874.669088][T25839] netlink: 48 bytes leftover after parsing attributes in process `syz.4.6895'.
[ 1874.683671][T25839] unsupported nla_type 49100
[ 1877.811160][T25903] lo speed is unknown, defaulting to 1000
[ 1880.922477][T25949] lo speed is unknown, defaulting to 1000
[ 1880.927371][T25952] netlink: 'syz.4.6943': attribute type 5 has an invalid length.
[ 1883.169036][   T30] audit: type=1800 audit(2000001030.011:713): pid=25979 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.7.6955" name="nullb0" dev="tmpfs" ino=1819 res=0 errno=0
[ 1883.732785][T25990] lo speed is unknown, defaulting to 1000
[ 1884.553306][T26002] netlink: 'syz.4.6963': attribute type 5 has an invalid length.
[ 1884.806191][T26001] lo speed is unknown, defaulting to 1000
[ 1886.584808][T26031] netlink: 20 bytes leftover after parsing attributes in process `syz.4.6973'.
[ 1886.679173][T26028] netlink: 36 bytes leftover after parsing attributes in process `syz.5.6972'.
[ 1887.011932][T26036] lo speed is unknown, defaulting to 1000
[ 1887.535293][T26037] netlink: 'syz.9.6976': attribute type 5 has an invalid length.
[ 1890.045331][T26085] lo speed is unknown, defaulting to 1000
[ 1890.087385][T26086] netlink: 'syz.9.6994': attribute type 5 has an invalid length.
[ 1893.499152][T26147] loop6: detected capacity change from 0 to 512
[ 1893.551347][T26147] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1893.559486][T26147] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1893.628610][T26147] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[ 1893.684999][T26147] EXT4-fs (loop6): Cannot turn on journaled quota: type 0: error -2
[ 1893.693771][T26147] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -2
[ 1893.802480][T26147] EXT4-fs (loop6): 1 truncate cleaned up
[ 1893.811096][T26147] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1893.919595][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1893.927105][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1893.985109][T26147] EXT4-fs error (device loop6): ext4_map_blocks:778: inode #2: block 4: comm syz.6.7017: lblock 0 mapped to illegal pblock 4 (length 1)
[ 1894.017636][T26147] EXT4-fs (loop6): Remounting filesystem read-only
[ 1894.225867][T21327] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1896.327484][T26203] loop6: detected capacity change from 0 to 512
[ 1896.364727][T26203] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1896.537505][T26203] FAT-fs (loop6): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[ 1898.516254][T26242] netlink: 544 bytes leftover after parsing attributes in process `syz.4.7057'.
[ 1898.603474][T26249] loop6: detected capacity change from 0 to 128
[ 1898.648210][T26249] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1898.990640][   T12] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1899.896388][T26275] loop6: detected capacity change from 0 to 128
[ 1899.969826][T26275] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[ 1900.022734][T26275] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1900.172985][T26275] UDF-fs: error (device loop6): udf_bitmap_new_block: bitmap for partition 0 corrupted (block 48 marked as free, partition length is 40)
[ 1900.188935][T26275] overlayfs: failed to create directory ./bus/work (errno: 5); mounting read-only
[ 1900.198979][T26275] overlayfs: failed to get uuid (/file0, err=-95); falling back to uuid=null.
[ 1900.623259][T21327] UDF-fs: error (device loop6): udf_read_inode: (ino 89) failed !bh
[ 1900.655452][T21327] UDF-fs: error (device loop6): udf_read_inode: (ino 89) failed !bh
[ 1900.940548][T26293] netlink: 4 bytes leftover after parsing attributes in process `syz.9.7075'.
[ 1901.172565][T26237] bridge0: port 1(syz_tun) entered disabled state
[ 1901.218310][T26237] syz_tun (unregistering): left allmulticast mode
[ 1901.224997][T26237] syz_tun (unregistering): left promiscuous mode
[ 1901.232175][T26237] bridge0: port 1(syz_tun) entered disabled state
[ 1901.454047][T20499] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1901.591126][T20499] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1901.784879][T20499] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1902.004107][T20499] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1902.839860][T20499] bond2 (unregistering): (slave gretap1): Releasing active interface
[ 1903.228657][T20499] bond1 (unregistering): Released all slaves
[ 1903.254671][T20499] smc: removing net device bond0 with user defined pnetid SYZ2
[ 1903.264185][T20499] bond0 (unregistering): Released all slaves
[ 1903.289313][T20499] bond2 (unregistering): Released all slaves
[ 1903.358514][T20499] bond3 (unregistering): Released all slaves
[ 1903.475381][T26313] lo speed is unknown, defaulting to 1000
[ 1903.534237][T26314] netlink: 'syz.4.7088': attribute type 5 has an invalid length.
[ 1903.809636][T20499] tipc: Disabling bearer <udp:s>
[ 1903.815287][T20499] tipc: Disabling bearer <eth:batadv0>
[ 1903.851020][T20499] tipc: Left network mode
[ 1904.415271][T26330] netlink: 'syz.9.7090': attribute type 1 has an invalid length.
[ 1904.695146][T26333] bond10: (slave vxcan1): The slave device specified does not support setting the MAC address
[ 1904.720955][T26333] bond10: (slave vxcan1): Error -95 calling set_mac_address
[ 1905.021523][T26339] macvlan2: entered promiscuous mode
[ 1905.027049][T26339] macvlan2: entered allmulticast mode
[ 1905.036545][T26339] bond10: entered promiscuous mode
[ 1905.044921][T26339] 8021q: adding VLAN 0 to HW filter on device macvlan2
[ 1905.274986][T24131] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1905.285346][T26339] bond10: left promiscuous mode
[ 1905.285910][T24131] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1905.313275][T24131] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1905.341072][T24131] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1905.363198][T24131] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1905.455344][T20499] hsr_slave_0: left promiscuous mode
[ 1905.530258][T20499] hsr_slave_1: left promiscuous mode
[ 1905.568879][T20499] veth1_macvtap: left promiscuous mode
[ 1905.574794][T20499] veth0_macvtap: left promiscuous mode
[ 1905.584432][T20499] veth1_vlan: left promiscuous mode
[ 1905.590240][T20499] veth0_vlan: left promiscuous mode
[ 1905.694576][T24131] Bluetooth: hci4: unexpected event for opcode 0x0c03
[ 1905.706817][T24131] Bluetooth: hci4: unexpected event for opcode 0x0c03
[ 1907.315940][T26341] lo speed is unknown, defaulting to 1000
[ 1907.469161][T24131] Bluetooth: hci3: command tx timeout
[ 1908.013791][T20499] IPVS: stop unused estimator thread 0...
[ 1909.508884][T24131] Bluetooth: hci3: command tx timeout
[ 1909.651403][T26341] chnl_net:caif_netlink_parms(): no params data found
[ 1911.233367][   T30] audit: type=1326 audit(2000001058.071:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26419 comm="syz.7.7124" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f26539 code=0x0
[ 1911.320481][T26341] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1911.331653][T26341] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1911.339960][T26341] bridge_slave_0: entered allmulticast mode
[ 1911.350343][T26341] bridge_slave_0: entered promiscuous mode
[ 1911.406802][T26341] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1911.414806][T26341] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1911.422966][T26341] bridge_slave_1: entered allmulticast mode
[ 1911.434683][T26341] bridge_slave_1: entered promiscuous mode
[ 1911.603140][T24131] Bluetooth: hci3: command tx timeout
[ 1911.699531][T26341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1911.785173][T26341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1912.036128][T26341] team0: Port device team_slave_0 added
[ 1912.084991][T26341] team0: Port device team_slave_1 added
[ 1912.486100][T26435] batadv_slave_0: entered promiscuous mode
[ 1912.513942][T26435] batadv_slave_0: left promiscuous mode
[ 1912.561905][T26341] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1912.569326][T26341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1912.596018][T26341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1912.676731][T26341] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1912.684346][T26341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1912.714649][T26341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1913.131191][T26341] hsr_slave_0: entered promiscuous mode
[ 1913.143445][T26341] hsr_slave_1: entered promiscuous mode
[ 1913.660335][T24131] Bluetooth: hci3: command tx timeout
[ 1914.987715][T26341] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1915.020118][T26341] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1915.048285][T26341] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1915.081037][T26341] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1915.247644][T26479] netlink: 'syz.9.7147': attribute type 10 has an invalid length.
[ 1915.256119][T26479] netlink: 40 bytes leftover after parsing attributes in process `syz.9.7147'.
[ 1915.265925][T26479] bond0: entered promiscuous mode
[ 1915.272751][T26479] bridge0: port 2(bond0) entered blocking state
[ 1915.279686][T26479] bridge0: port 2(bond0) entered disabled state
[ 1915.289775][T26479] A link change request failed with some changes committed already. Interface bond0 may have been left with an inconsistent configuration, please check.
[ 1915.726699][T26486] netlink: 32 bytes leftover after parsing attributes in process `syz.9.7151'.
[ 1915.911669][T26341] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1916.026790][T26341] 8021q: adding VLAN 0 to HW filter on device team0
[ 1916.104829][T20499] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1916.112549][T20499] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1916.216496][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1916.224327][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1917.973605][T26519] lo speed is unknown, defaulting to 1000
[ 1918.591111][T26341] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1920.261736][T26549] netlink: 'syz.5.7180': attribute type 1 has an invalid length.
[ 1921.335737][T26341] veth0_vlan: entered promiscuous mode
[ 1921.413849][T26341] veth1_vlan: entered promiscuous mode
[ 1921.712948][T26341] veth0_macvtap: entered promiscuous mode
[ 1921.777440][T26341] veth1_macvtap: entered promiscuous mode
[ 1921.924824][T26341] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1921.985733][T26341] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1922.029656][T17513] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1922.119011][T17513] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1922.156662][T17513] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1922.190190][T17513] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1922.589649][T26584] netlink: 'syz.9.7185': attribute type 1 has an invalid length.
[ 1924.386648][T24131] Bluetooth: hci2: unexpected event for opcode 0x042d
[ 1924.432678][T26619] netlink: 'syz.5.7197': attribute type 1 has an invalid length.
[ 1926.408430][T26659] netlink: 40 bytes leftover after parsing attributes in process `syz.7.7210'.
[ 1926.418286][T26659] netlink: 3 bytes leftover after parsing attributes in process `syz.7.7210'.
[ 1928.375274][T17494] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1928.383668][T17494] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1928.629447][T26705] sch_tbf: burst 0 is lower than device lo mtu (18) !
[ 1928.680705][T17499] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1928.689072][T17499] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1929.576583][T26724] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7231'.
[ 1929.746343][T26725] gretap1: entered promiscuous mode
[ 1930.418452][T26735] raw_sendmsg: syz.9.7236 forgot to set AF_INET. Fix it!
[ 1930.504003][T26736] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1930.616415][T26736] bond0: (slave bond5): Enslaving as an active interface with a down link
[ 1930.721487][T26742] lo speed is unknown, defaulting to 1000
[ 1932.198356][T26762] netlink: 28 bytes leftover after parsing attributes in process `syz.5.7245'.
[ 1932.533527][T15331] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1932.749599][T15331] usb 9-1: Using ep0 maxpacket: 32
[ 1932.776665][T15331] usb 9-1: New USB device found, idVendor=0fd9, idProduct=0025, bcdDevice=29.40
[ 1932.786426][T15331] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1932.871572][T15331] usb 9-1: config 0 descriptor??
[ 1933.110139][T15331] dvb-usb: found a 'Elgato EyeTV Sat' in warm state.
[ 1933.169675][T15331] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1933.204626][T15331] dvbdev: DVB: registering new adapter (Elgato EyeTV Sat)
[ 1933.213951][T15331] usb 9-1: media controller created
[ 1933.310272][T26757] =====================================================
[ 1933.315509][T15331] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1933.317707][T26757] BUG: KMSAN: kernel-infoleak in _copy_to_user+0xcc/0x120
[ 1933.333651][T26757]  _copy_to_user+0xcc/0x120
[ 1933.338459][T26757]  i2cdev_ioctl_smbus+0x586/0x660
[ 1933.343781][T26757]  compat_i2cdev_ioctl+0x48f/0xb40
[ 1933.352311][T26757]  __ia32_compat_sys_ioctl+0x7f6/0x1270
[ 1933.360134][T26757]  ia32_sys_call+0x2d5f/0x4310
[ 1933.366071][T26757]  __do_fast_syscall_32+0xb0/0x150
[ 1933.371970][T26757]  do_fast_syscall_32+0x38/0x80
[ 1933.377063][T26757]  do_SYSENTER_32+0x1f/0x30
[ 1933.381880][T26757]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1933.388862][T26757] 
[ 1933.391294][T26757] Uninit was stored to memory at:
[ 1933.396528][T26757]  __i2c_smbus_xfer+0x254d/0x2f60
[ 1933.401900][T26757]  i2c_smbus_xfer+0x31d/0x4d0
[ 1933.406927][T26757]  i2cdev_ioctl_smbus+0x4a1/0x660
[ 1933.412310][T26757]  compat_i2cdev_ioctl+0x48f/0xb40
[ 1933.417616][T26757]  __ia32_compat_sys_ioctl+0x7f6/0x1270
[ 1933.423631][T26757]  ia32_sys_call+0x2d5f/0x4310
[ 1933.428708][T26757]  __do_fast_syscall_32+0xb0/0x150
[ 1933.434043][T26757]  do_fast_syscall_32+0x38/0x80
[ 1933.439244][T26757]  do_SYSENTER_32+0x1f/0x30
[ 1933.443993][T26757]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1933.453435][T26757] 
[ 1933.455867][T26757] Local variable msgbuf1.i created at:
[ 1933.462411][T26757]  __i2c_smbus_xfer+0x86a/0x2f60
[ 1933.468620][T26757]  i2c_smbus_xfer+0x31d/0x4d0
[ 1933.473569][T26757] 
[ 1933.475984][T26757] Bytes 0-1 of 2 are uninitialized
[ 1933.481811][T26757] Memory access of size 2 starts at ffff8880a7137c86
[ 1933.488734][T26757] Data copied to user address 0000000080000100
[ 1933.495005][T26757] 
[ 1933.497464][T26757] CPU: 0 UID: 0 PID: 26757 Comm: syz.8.7243 Tainted: G        W           syzkaller #0 PREEMPT(none) 
[ 1933.508779][T26757] Tainted: [W]=WARN
[ 1933.512727][T26757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1933.523074][T26757] =====================================================
[ 1933.530256][T26757] Disabling lock debugging due to kernel taint
[ 1933.536524][T26757] Kernel panic - not syncing: kmsan.panic set ...
[ 1933.543087][T26757] CPU: 0 UID: 0 PID: 26757 Comm: syz.8.7243 Tainted: G    B   W           syzkaller #0 PREEMPT(none) 
[ 1933.554269][T26757] Tainted: [B]=BAD_PAGE, [W]=WARN
[ 1933.559413][T26757] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1933.569618][T26757] Call Trace:
[ 1933.573037][T26757]  <TASK>
[ 1933.576058][T26757]  __dump_stack+0x26/0x30
[ 1933.580575][T26757]  dump_stack_lvl+0x53/0x270
[ 1933.585385][T26757]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1933.591425][T26757]  dump_stack+0x1e/0x25
[ 1933.595814][T26757]  vpanic+0x361/0xc50
[ 1933.600038][T26757]  panic+0x15d/0x160
[ 1933.604224][T26757]  kmsan_report+0x31c/0x320
[ 1933.608948][T26757]  ? kmsan_internal_check_memory+0x1e1/0x230
[ 1933.615115][T26757]  ? kmsan_copy_to_user+0xf1/0x190
[ 1933.620429][T26757]  ? _copy_to_user+0xcc/0x120
[ 1933.625302][T26757]  ? i2cdev_ioctl_smbus+0x586/0x660
[ 1933.630726][T26757]  ? compat_i2cdev_ioctl+0x48f/0xb40
[ 1933.636276][T26757]  ? __ia32_compat_sys_ioctl+0x7f6/0x1270
[ 1933.642205][T26757]  ? ia32_sys_call+0x2d5f/0x4310
[ 1933.647307][T26757]  ? __do_fast_syscall_32+0xb0/0x150
[ 1933.652799][T26757]  ? do_fast_syscall_32+0x38/0x80
[ 1933.658065][T26757]  ? do_SYSENTER_32+0x1f/0x30
[ 1933.662981][T26757]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1933.669738][T26757]  ? __pfx_az6027_i2c_xfer+0x10/0x10
[ 1933.675476][T26757]  ? __i2c_transfer+0x11cd/0x3110
[ 1933.680704][T26757]  ? kmsan_get_metadata+0xfb/0x160
[ 1933.686044][T26757]  ? kmsan_internal_set_shadow_origin+0x79/0x110
[ 1933.692603][T26757]  ? kmsan_get_metadata+0xfb/0x160
[ 1933.697943][T26757]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1933.704013][T26757]  ? __i2c_smbus_xfer+0x1e93/0x2f60
[ 1933.709428][T26757]  ? kmsan_get_metadata+0xfb/0x160
[ 1933.714786][T26757]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[ 1933.720850][T26757]  kmsan_internal_check_memory+0x1e1/0x230
[ 1933.726903][T26757]  kmsan_copy_to_user+0xf1/0x190
[ 1933.732037][T26757]  _copy_to_user+0xcc/0x120
[ 1933.736762][T26757]  i2cdev_ioctl_smbus+0x586/0x660
[ 1933.742041][T26757]  compat_i2cdev_ioctl+0x48f/0xb40
[ 1933.747407][T26757]  ? __pfx_compat_i2cdev_ioctl+0x10/0x10
[ 1933.753255][T26757]  __ia32_compat_sys_ioctl+0x7f6/0x1270
[ 1933.759022][T26757]  ? kmsan_get_metadata+0xfb/0x160
[ 1933.764365][T26757]  ? kmsan_get_metadata+0xfb/0x160
[ 1933.769708][T26757]  ia32_sys_call+0x2d5f/0x4310
[ 1933.774661][T26757]  __do_fast_syscall_32+0xb0/0x150
[ 1933.780015][T26757]  ? irqentry_exit_to_user_mode+0x82/0xa0
[ 1933.785993][T26757]  do_fast_syscall_32+0x38/0x80
[ 1933.791106][T26757]  do_SYSENTER_32+0x1f/0x30
[ 1933.795864][T26757]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1933.802445][T26757] RIP: 0023:0xf7f94539
[ 1933.806663][T26757] Code: 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1933.826817][T26757] RSP: 002b:00000000f54a655c EFLAGS: 00000206 ORIG_RAX: 0000000000000036
[ 1933.835445][T26757] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 0000000000000720
[ 1933.843576][T26757] RDX: 0000000080000040 RSI: 0000000000000000 RDI: 0000000000000000
[ 1933.851733][T26757] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1933.859864][T26757] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1933.867991][T26757] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1933.876158][T26757]  </TASK>
[ 1933.879662][T26757] Kernel Offset: disabled
[ 1933.884086][T26757] Rebooting in 86400 seconds..