last executing test programs:

18m41.936155918s ago: executing program 32 (id=114):
open(0x0, 0x141042, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f0000000580), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet6_udp(0xa, 0x2, 0x0)
r1 = syz_open_dev$sndctrl(&(0x7f0000000100), 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_ADD(r1, 0xc1105517, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 'syz0\x00'}, 0x6, 0x0, 0x4, 0x0, 0x59, 0x0, 'syz1\x00', 0x0})

13m50.230029197s ago: executing program 33 (id=699):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
memfd_create(&(0x7f0000000040)='\xf3\xda\xad\xc9\xb4\xb3S\xc87sV\ad\xb0l\x0e\xa3 \x00\xd7\xdb\\z\x13\xe3\xbd\x15~\x1eS\x1f\x85\x8e\x7f\x89\xb8\xc5;~\x04\x03~\x00\xfbP\b\x00', 0x6)
socket$nl_route(0x10, 0x3, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x2, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="1f003300d000000008021100000108021100000050505050505000001502", @ANYRES8=r0], 0x3c}}, 0x10)

13m36.718354267s ago: executing program 34 (id=722):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0x1bc, 0x19, 0x1, 0x0, 0x0, {{@in, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, [@tmpl={0x104, 0x5, [{{@in6=@loopback, 0x0, 0x6c}, 0xa}, {{@in=@broadcast, 0x0, 0x32}, 0xa, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0x0, 0x0, 0x0, 0x0, 0x3}, {{@in6=@empty, 0x0, 0x32}, 0xa, @in6=@mcast1, 0x0, 0x0, 0x2}, {{@in=@local, 0x0, 0x32}, 0x0, @in=@remote, 0x0, 0x4}]}]}, 0x1bc}}, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.events\x00', 0x275a, 0x0)
ioctl$FS_IOC_RESVSP(r1, 0x40305828, &(0x7f0000000180)={0x0, 0x2, 0x8, 0x7100000})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r2, 0x0)
socket$tipc(0x1e, 0x2, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r1, 0x0)
socket(0x15, 0x5, 0x0)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, 0x0, 0x0)
socket(0x11, 0x800000003, 0x0)
r4 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_ADD_VIF(r4, 0x0, 0xca, &(0x7f00000000c0)={0x1, 0x14, 0x0, 0xfffffffc, @vifc_lcl_addr=@dev={0xac, 0x14, 0x14, 0x2c}, @rand_addr=0x103}, 0x10)

10m59.915978177s ago: executing program 6 (id=974):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x1, 0x6, 0x8, 0x8, 0x41, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000040), &(0x7f00000004c0), 0xce, r3}, 0x38)
r4 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r4, &(0x7f0000000000), 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000003c0)={'vxcan0\x00', <r5=>0x0})
sendmsg$can_bcm(r4, &(0x7f0000000480)={&(0x7f0000000340)={0x1d, r5}, 0x10, &(0x7f00000000c0)={&(0x7f0000000580)={0x1, 0x7ab0715dca68fed7, 0x0, {}, {}, {}, 0x4, @canfd={{}, 0x0, 0x0, 0x0, 0x0, "b8ee0816756b62187804752330b2b55830d7228ef1593c0639bd084bba0bfd8db72f70e5b2e7f90e11cbc6ec61a03fc316d5d47970907af5fc4a27f6cf718909"}}, 0x20000600}}, 0x0)

10m58.744558872s ago: executing program 6 (id=977):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
connect$inet(r0, &(0x7f00000009c0)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x21}}, 0x10)
writev(r0, &(0x7f0000000200)=[{&(0x7f00000000c0)='X', 0x8030000}], 0x1)
shutdown(r0, 0x1)

10m56.252987885s ago: executing program 6 (id=979):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x400000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sync()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)={0x24, 0x3d, 0x9, 0x80000, 0x800, {0x1}, [@typed={0x4}, @nested={0x4, 0x1, 0x0, 0x1, [@generic]}, @typed={0x8, 0x2, 0x0, 0x0, @pid=0xffffffffffffffff}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000001}, 0x4000000)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="16000000000000000400"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r2}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000640)='console\x00'}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000000040)={'macsec0\x00', @random="06517dc2e6ea"})

10m45.722125136s ago: executing program 6 (id=995):
setresgid(0xee00, 0xee01, 0x0)
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x0)
socket(0x25, 0x805, 0x2)
r1 = dup(r0)
r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00')
mount$9p_fd(0x0, &(0x7f0000000140)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r3, &(0x7f0000000000)={0x2a, 0xffffffff, 0xfffffffe}, 0xc)
close_range(r0, r3, 0x0)
setuid(0xee00)
setgid(0x0)
mount$9p_virtio(0x0, 0x0, 0x0, 0x18, 0x0)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000000000)={0xfc, {"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", 0x1000}}, 0x102d)
r6 = syz_open_procfs(0x0, &(0x7f0000000040)='timerslack_ns\x00')
write$FUSE_NOTIFY_RETRIEVE(r6, &(0x7f0000000180)={0x30}, 0x30)

10m42.1366426s ago: executing program 6 (id=1004):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x2, 0x4})
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file3\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000003c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xc0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000640)=[<r5=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r0, 0xc01c64a3, &(0x7f0000000040)={0x3, r5, 0x10000000, 0x80000001, 0xb, 0x1fd, 0x1})

10m38.757163754s ago: executing program 6 (id=1008):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x27}, 0x74)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400), 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_type(r2, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r3, &(0x7f0000000280), 0x9)
r4 = openat$cgroup_procs(r2, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_subtree(r5, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[@ANYBLOB='+pid'], 0x6)

10m34.19051853s ago: executing program 3 (id=1014):
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
r1 = dup(r0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r5 = syz_io_uring_setup(0x9e, &(0x7f0000000640)={0x0, 0xec25, 0x0, 0x0, 0x40000333}, &(0x7f00000006c0)=<r6=>0x0, &(0x7f00000001c0)=<r7=>0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r1, 0x6, 0xd, 0x0, 0x0)
syz_io_uring_submit(r6, r7, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000240)=[{&(0x7f0000001800)=""/216, 0xd8}], 0x1})
io_uring_enter(r5, 0x47ba, 0x0, 0x0, 0x0, 0x0)

10m31.910599309s ago: executing program 3 (id=1017):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8f}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='devtmpfs\x00', 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000001340)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat2$dir(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000080), 0x18)
getdents64(r3, &(0x7f0000000300)=""/154, 0x9a)

10m28.341020648s ago: executing program 3 (id=1019):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x1, 0x0)
epoll_create(0x7f)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000400)=ANY=[@ANYBLOB="1201000006693010820505008800000203010902"], 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000007c0))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000040)=ANY=[@ANYRES16=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x79, 0x6, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0x0, 0x4, [{{0x9, 0x4, 0x0, 0x4, 0x2, 0x3, 0x1, 0x1, 0xdf, {0x9, 0x21, 0x4, 0xe7, 0x1, {0x22, 0x223}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x1, 0x2, 0xf5}}}}}]}}]}}, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000000))

10m26.64353005s ago: executing program 3 (id=1023):
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mount_setattr(0xffffffffffffffff, 0x0, 0x800, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000580)={0x0, @in={{0x2, 0x0, @empty}}, 0x0, 0x0, 0x400, 0x0, 0x32}, 0x9c)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r3, 0x84, 0x9, &(0x7f0000000200)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}, 0x0, 0x0, 0x0, 0x0, 0x8a}, 0x9c)
bind$inet6(r3, &(0x7f00004b8fe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r3, &(0x7f0000847fff)='X', 0x34000, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
shutdown(r3, 0x2)

10m24.64496309s ago: executing program 3 (id=1025):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r6, &(0x7f0000000140)=[{&(0x7f0000000900)="580000001400192340834b80040d8c560a066e0202ff000000000000000058000b4824ca945f64009400ff0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000200060c10000000010000000000", 0x58}], 0x1)

10m23.273098761s ago: executing program 35 (id=1008):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bind$bt_hci(0xffffffffffffffff, &(0x7f0000000000)={0x27}, 0x74)
r1 = openat$cgroup_procs(r0, &(0x7f0000000040)='tasks\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000400), 0x12)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = openat$cgroup_type(r2, &(0x7f00000001c0), 0x2, 0x0)
write$cgroup_type(r3, &(0x7f0000000280), 0x9)
r4 = openat$cgroup_procs(r2, &(0x7f0000000200)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r4, &(0x7f0000000c40), 0x12)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000140)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r5 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r6 = openat$cgroup_subtree(r5, &(0x7f0000000080), 0x2, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000040)=ANY=[@ANYBLOB='+pid'], 0x6)

10m19.171935693s ago: executing program 3 (id=1033):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x22803)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r0, 0xa)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f00000001c0)={0x2, 0x4e22, @empty}, 0x10)
accept(r0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB="8000000002000200080004000000000008001b"], 0x30}}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}}, 0x0)

10m3.552472939s ago: executing program 36 (id=1033):
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x22803)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x0, @empty, 0x4000006}, 0x1c)
listen(r0, 0xa)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r1, &(0x7f00000001c0)={0x2, 0x4e22, @empty}, 0x10)
accept(r0, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="3000000010000100"/20, @ANYRES32=0x0, @ANYBLOB="8000000002000200080004000000000008001b"], 0x30}}, 0x0)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf25010000000800020000000000050005000000000008000300010000004800018005000200200000000600010002000000080006000a000000080003"], 0x84}}, 0x0)

10m2.633113131s ago: executing program 1 (id=1055):
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
dup(0xffffffffffffffff)
r3 = syz_io_uring_setup(0x237, &(0x7f00000002c0)={0x0, 0xb3ca, 0x1, 0x2, 0x2b3}, &(0x7f0000000040)=<r4=>0x0, &(0x7f0000000380)=<r5=>0x0)
io_uring_register$IORING_REGISTER_PBUF_RING(r3, 0x16, &(0x7f00000001c0)={&(0x7f0000001000)={[{0x0, 0x0, 0x1}]}, 0x1, 0x1}, 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f0000000000)=@IORING_OP_PROVIDE_BUFFERS={0x1f, 0x40, 0x0, 0x80, 0x3, 0x0, 0x9276, 0x0, 0x0, {0x1}})
io_uring_enter(r3, 0x47bc, 0x3bf6, 0x7, 0x0, 0x0)

10m1.442790384s ago: executing program 1 (id=1057):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))

10m0.844876334s ago: executing program 1 (id=1059):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000040)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
accept(r1, 0x0, 0x0)
r3 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r3, &(0x7f0000000000)={0x2, 0x4e23, @local}, 0x10)
sendto$inet(r3, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r3, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendto$inet(r3, &(0x7f00000012c0)="09268a927f1f6588b967481241ba7860fcfaf65ac618ded8974895abeaf4b4834ff922b3f1e0b02bd67aa03059bcecc7a95425a3a07e758044ab4ea6f7ae55d88fecf90b1a7511bf746bec66ba", 0x20c8, 0x11, 0x0, 0x27)

9m59.66037779s ago: executing program 1 (id=1061):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r1 = bpf$OBJ_GET_PROG(0x7, 0x0, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000580)={r1, 0x0, 0x43, 0x0, &(0x7f0000000300)="029d6cb598f5d6847ec8d3250ea7f20c7e1c68b86331ca56706a61dbe8da2a0aba1241d063d51b0a9e47c272c324ec0bd525eb56d0c706d0b703dd5883c09b8b5a57fb", 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000540), 0x4, 0x0, 0x7ff}, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f0000000240)='napi_poll\x00'}, 0x18)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r0}, &(0x7f00000000c0), &(0x7f0000000140)}, 0x20)
r2 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
pipe(0x0)
listen(r2, 0xc)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="18010000210000000000000000000000850000007500"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r3, &(0x7f0000000380)=ANY=[@ANYRES16, @ANYRES64], 0x10448)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r3, 0x0)
bpf$PROG_BIND_MAP(0x23, &(0x7f0000000000)={0xffffffffffffffff, 0x1}, 0xc)
setsockopt$sock_timeval(r2, 0x1, 0x42, &(0x7f0000000000)={0x0, 0xea60}, 0x10)
accept(r2, 0x0, 0x0)

9m58.767516748s ago: executing program 1 (id=1064):
r0 = socket$inet6(0xa, 0x6, 0x0)
r1 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r1, 0xc02064b2, &(0x7f0000000200)={0x8000, 0x2, 0x4})
r2 = syz_open_dev$dri(&(0x7f0000000000), 0x1ff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file3\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000004c0)={0xffffffffffffffff, 0xc0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}, 0x10)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r2, 0xc04064a0, &(0x7f0000000700)={0x0, &(0x7f0000000640)=[<r6=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_CURSOR(r1, 0xc01c64a3, &(0x7f0000000040)={0x3, r6, 0x10000000, 0x80000001, 0xb, 0x1fd, 0x1})
close_range(r0, 0xffffffffffffffff, 0x0)

9m56.441243072s ago: executing program 1 (id=1065):
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
socket$igmp(0x2, 0x3, 0x2)
sched_setscheduler(0x0, 0x2, 0x0)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0)
getpid()
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000180), 0x2, 0x2)
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000844}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r1, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)

9m40.50685456s ago: executing program 37 (id=1065):
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(0xffffffffffffffff, 0x40182103, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.numa_stat\x00', 0x275a, 0x0)
socket$igmp(0x2, 0x3, 0x2)
sched_setscheduler(0x0, 0x2, 0x0)
sendmmsg$inet_sctp(0xffffffffffffffff, 0x0, 0x0, 0x0)
getpid()
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_open_dev$vim2m(&(0x7f0000000180), 0x2, 0x2)
r0 = syz_open_dev$vim2m(&(0x7f0000000100), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000040)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'ipvlan0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x24000844}, 0x0)
sendmsg$WG_CMD_SET_DEVICE(r1, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)

8m36.056649644s ago: executing program 7 (id=1164):
socket$inet6_mptcp(0xa, 0x1, 0x106)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x80)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000000)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000380)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r3 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r3, &(0x7f0000000180)={0xa0, 0xffffffffffffffda, 0x0, {{0x4, 0x3, 0x5, 0x6, 0x3, 0x1, {0x1, 0x180, 0x20ff, 0x5, 0x87, 0xd615, 0x9, 0x7fffffff, 0xfffffffe, 0x8000, 0x0, 0xee00, 0x0, 0x3ff, 0x1}}, {0x0, 0x11}}}, 0xa0)
sendfile(r3, r3, &(0x7f0000000080), 0x7f03)

8m34.208909162s ago: executing program 7 (id=1165):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000002000)=""/102400, 0x19000)
pipe2(&(0x7f00000000c0)={<r1=>0xffffffffffffffff}, 0x0)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
lseek(0xffffffffffffffff, 0x81, 0x0)
ioctl$sock_SIOCINQ(r1, 0x541b, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$can_j1939(0x1d, 0x2, 0x7)
openat$ttyS3(0xffffffffffffff9c, 0x0, 0x42000, 0x0)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl(r2, 0x8b32, &(0x7f0000000040))
socket$inet6_tcp(0xa, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)

8m30.393481146s ago: executing program 7 (id=1170):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x1008400, &(0x7f0000000080)=ANY=[], 0x85, 0x677, &(0x7f0000001500)="$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")
openat$nci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket(0x10, 0x803, 0x0)
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_udplite(0x11, 0x2, 0x88)
bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x2c)
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_netfilter(0x10, 0x3, 0xc)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000001c0))
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
pipe(&(0x7f0000000240))
r0 = syz_io_uring_setup(0x4d5a, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000180)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000040)=ANY=[@ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x11, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SEND={0x1a, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

8m29.297222221s ago: executing program 7 (id=1172):
r0 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
socket$nl_generic(0x11, 0x3, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={0x0}, 0x1, 0x0, 0x0, 0x804}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$alg(0xffffffffffffffff, &(0x7f0000000600)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(twofish)\x00'}, 0x58)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="02142000110000000040000000000000030005000000000002000000ffffffff0000000000000000080012000000010000000000000000000600000000000027b20e97a6a9ecae000000ee00000000000000000000000000fc020000000000000000000000000000030006000000000002000000e00000010000000000000000010018"], 0x88}}, 0x0)

8m27.081228182s ago: executing program 7 (id=1174):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
r0 = socket(0x200000000000011, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000300)={'virt_wifi0\x00', <r1=>0x0})
bind$packet(r0, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @multicast}, 0x14)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000280)='./file0\x00', &(0x7f00000000c0)='sysfs\x00', 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r3, 0x0, 0x15)
r4 = dup(r3)
write$FUSE_BMAP(r4, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_GETXATTR(r4, &(0x7f00000004c0)={0x18}, 0x18)
write$FUSE_INIT(r4, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x29, 0x20200}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r2}, 0x2c, {'wfdno', 0x3d, r4}, 0x2c, {[{@cache_fscache}]}})
r5 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r5, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)
mount(0x0, &(0x7f0000000200)='./file0/bus\x00', &(0x7f00000001c0)='sysfs\x00', 0x0, 0x0)

8m26.909015438s ago: executing program 7 (id=1175):
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x54c, 0x374, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f00000029c0)={0xc, {"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", 0x1000}}, 0x1006)

8m11.834536995s ago: executing program 38 (id=1175):
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x54c, 0x374, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x7, [{{0x9, 0x4, 0x0, 0x0, 0x12, 0x3, 0x0, 0x2, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x5}}}}]}}]}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
socket$packet(0x11, 0x2, 0x300)
add_key$keyring(&(0x7f0000000000), 0x0, 0x0, 0x0, 0xffffffffffffffff)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r4 = dup(r3)
write$UHID_INPUT(r4, &(0x7f00000029c0)={0xc, {"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", 0x1000}}, 0x1006)

5m44.227007409s ago: executing program 5 (id=1337):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$BLKTRACESETUP(0xffffffffffffffff, 0xc0481273, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETOBJ(r2, 0x0, 0x0)
ioctl$sock_inet_SIOCSIFFLAGS(r2, 0x8914, &(0x7f0000000100)={'\x00', 0x400})
ioctl$AUTOFS_DEV_IOCTL_ASKUMOUNT(0xffffffffffffffff, 0xc018937d, 0x0)
r3 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r3, &(0x7f0000000380)={{0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x2}, [@default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, @bcast, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast]}, 0x48)
r4 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r4, 0x105, 0x5000003a, r0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)
renameat2(0xffffffffffffff9c, &(0x7f0000000480)='./bus\x00', 0xffffffffffffff9c, &(0x7f00000004c0)='./file0\x00', 0x2)
readv(r4, &(0x7f0000000c40)=[{&(0x7f0000000500)=""/169, 0xffffffa0}], 0x1)

5m37.762655459s ago: executing program 5 (id=1348):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x0, 0x0, &(0x7f0000000080)='GPL\x00', 0xfffffff7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sndmidi(0x0, 0x2, 0x141101)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, 0x0)
openat$dma_heap(0xffffffffffffff9c, 0x0, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/meminfo\x00', 0x0, 0x0)
lseek(r3, 0x9, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r4, 0x6, 0xd, &(0x7f0000000080)='cdg\x00', 0x4)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x3, 0x0, @loopback}, 0x1c)

5m35.115078576s ago: executing program 5 (id=1351):
r0 = syz_open_dev$dri(&(0x7f0000000040), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r0, 0xc04064a0, 0x0)
ioctl$DRM_IOCTL_MODE_SETCRTC(r0, 0xc06864a2, 0x0)
syz_io_uring_setup(0x1f87, &(0x7f0000000080), &(0x7f0000000100), 0x0)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
dup2(r2, r1)
setsockopt$sock_attach_bpf(r1, 0x1, 0x21, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0xfffffffffffffeb7, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={0x0, r3, 0x0, 0xffffffff7fffffff}, 0x18)
openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x1abb81, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='smaps_rollup\x00')
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
read$FUSE(r5, &(0x7f00000007c0)={0x2020}, 0x2020)

5m32.059438436s ago: executing program 5 (id=1355):
syz_open_dev$tty1(0xc, 0x4, 0x1)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSETMODE(r0, 0x4b3a, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000070000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r4}, 0x10)
r5 = socket(0x1e, 0x4, 0x0)
r6 = socket(0x1e, 0x4, 0x0)
setsockopt$packet_tx_ring(r6, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc}, 0x10)
setsockopt$packet_tx_ring(r5, 0x10f, 0x87, &(0x7f0000000440)=@req={0x3fc, 0x0, 0x2}, 0x10)
sendmmsg(r5, &(0x7f00000030c0)=[{{0x0, 0xa9cc7003, &(0x7f0000000400)=[{&(0x7f00000000c0)="ee", 0x101d0}], 0x1}}], 0x400000000000181, 0x9200000000000000)

5m28.681674563s ago: executing program 5 (id=1361):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
ioctl$sock_SIOCGIFINDEX_802154(0xffffffffffffffff, 0x8933, &(0x7f000000e880)={'wpan0\x00'})
syz_genetlink_get_family_id$nl802154(&(0x7f0000000340), 0xffffffffffffffff)
r0 = fspick(0xffffffffffffff9c, 0x0, 0xf)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
copy_file_range(r0, &(0x7f0000000380)=0x6a, 0xffffffffffffffff, 0x0, 0x40, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x140, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$radio(&(0x7f0000000640), 0x0, 0x2)
read(r2, &(0x7f0000001e80)=""/96, 0x60)
r3 = syz_open_dev$vim2m(&(0x7f0000000000), 0x100000001, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r3, 0xc0d05605, &(0x7f0000000140)={0x1, @pix={0x0, 0x0, 0x34343459, 0x2}})
syz_mount_image$cramfs(&(0x7f00000000c0), &(0x7f0000000000)='./file1\x00', 0x2200409, &(0x7f0000000400)=ANY=[], 0xfe, 0x15f, &(0x7f0000000200)="$eJzs0M1qGmEUxvH/O/M6ClVsqQUptArd2ErBD9pdKU6pVKgdaOmmK8FOP0CxVGjdVSnddSF066JJtiGQK9DoIiToJrmJbNwFsjTMjEkI8Q5yfrt5znueA/Py2SyjuPCi1fz23W233Y/pt061/O5oOCx5uQWd7Uvz4P2oBF/QjDTMe+DFkxh8+tpwjXqr4X3PSxAG7Bt+HgLiZ/fshKanIU+wn3kA4zv+O4OrmVsk5O/d1WDHgywHLNasoO9WkHl9x4AJSlnLY/dM/lSyqdsKOoPs1ub+m+le5fGj5+7fQrn/MJo0s79gHVtFdiefD83l1mxafe1UnVmxUHhazOUNnhz4hd0++lX0B3xQoL0+A7/PInlfv4ffCv75t+Y7KgaM/584zfD5v+7+NNOgUoN6LRnaqCVuGpgZ7U0WrOBPiKwaCSGEEEIIIYQQQgghhBBCCCGEuO5OAwAA//+/BFIO")
open(&(0x7f0000000180)='./bus\x00', 0x14927f, 0x0)
sendmsg$TIPC_NL_BEARER_ENABLE(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB="0000ce0000e2ff71511a6b95b19f5e90bf6614522c34bd042befbdf84d62d654962758", @ANYRES16, @ANYBLOB="010000000000000000000300000014000180100001006574683a6272696467653000"], 0x28}}, 0x0)

5m25.091631923s ago: executing program 4 (id=1363):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x3e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r3, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r3, 0x0, 0x0, 0x4098884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c)
setsockopt$sock_int(r3, 0x1, 0x2a, &(0x7f0000000140)=0x2f, 0x4)
recvmmsg(r3, &(0x7f0000008880), 0x483, 0x44000102, 0x0)
sendto$inet6(r3, 0x0, 0x0, 0x2000, 0x0, 0x0)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa8698dfa871c51852e4451b57d037ad3c045942824251d7d17b5191584cdd4fbe40a27424d", "bcfd56f1373669caaa2f19935e6996c7096ffe4f3a4745a8f762b964", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
ioperm(0x0, 0x7, 0x7)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
sendmsg$NFC_CMD_GET_TARGET(0xffffffffffffffff, 0x0, 0x0)

5m24.188533495s ago: executing program 5 (id=1367):
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000ec0)={[{@gid}, {@cruft}, {@check_relaxed}, {}, {}, {@map_normal}, {@check_strict}, {@dmode={'dmode', 0x3d, 0x3}}, {@block={'block', 0x3d, 0x800}}, {@cruft}, {@gid}, {@block={'block', 0x3d, 0x600}}, {@utf8}, {@utf8}, {@gid}]}, 0x4, 0xa00, &(0x7f00000003c0)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x11)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x50, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x20, 0x2, [@TCA_FLOW_EMATCHES={0x1c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x69}}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0xc, 0x1, 0x0, 0x0, {{0x1, 0x9, 0x100}}}]}]}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x2008c014)

5m21.840159365s ago: executing program 4 (id=1370):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000540)='rcu_utilization\x00', r0}, 0x10)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r4}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r5 = creat(&(0x7f0000000000)='./file0\x00', 0xd931d3864d39dddb)
close(r5)
r6 = open(&(0x7f0000000480)='./file0\x00', 0x80, 0x8)
fcntl$setlease(r6, 0x400, 0x1)
execve(&(0x7f00000000c0)='./file0\x00', 0x0, 0x0)

5m18.14313262s ago: executing program 4 (id=1375):
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
socket$tipc(0x1e, 0x5, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000040)={[{@bh}, {@nolazytime}]}, 0x1, 0x4ef, &(0x7f0000000580)="$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")
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$tipc(r0, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)

5m15.046155297s ago: executing program 4 (id=1379):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0xd0d, 0x0, 0x3)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ptrace(0x10, 0x0)
ptrace$ARCH_SHSTK_ENABLE(0x1e, 0x0, 0x1, 0x5001)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$nl_xfrm(0x10, 0x3, 0x6)
r1 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in=@private=0xa010101, 0x0, 0x33}, 0x0, @in=@dev, 0x200, 0x0, 0x0, 0x7}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1}, {{@in6=@mcast1, 0x4d3, 0x33}, 0x0, @in=@dev, 0xfffffffe}}, 0xe8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x2000001)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)

5m12.190318357s ago: executing program 4 (id=1384):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000300)={[{@noauto_da_alloc}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1}}, {@dioread_lock}, {@norecovery}, {@discard}, {@lazytime}, {@noload}, {@usrquota}, {@noauto_da_alloc}]}, 0xfe, 0x54d, &(0x7f0000000400)="$eJzs3d9rW1UcAPDvTdv96nQdjKE+SGEPTubStfXHBB/mo+hwoO8ztHdlNFlGk461Dtwe3IsvMgQRB+If4LuPw3/Av2KggyGj6IMvkZvedNmatFmXrZn5fOC259x703NPzv2enpOTkACG1mT2oxDxakR8m0Qcajs2GvnByfXz1h5cm8u2JBqNz/5KIsn3tc5P8t/jeeaViPjt64gThc3l1lZWF0vlcrqU56fqlctTtZXVkxcrpYV0Ib00Mzt7+p3Zmfffe7dvdX3z3D8/fHrno9PfHFv7/pd7h28lcSYO5sfa6/EUrrdnJmMyf07G4sxjJ073obBBkuz2BbAjI3mcj0XWBxyKkTzqgf+/ryKiAQypRPzDkGqNA1pz+z7Ng18Y9z9cnwBtrv/o+msjsa85NzqwljwyM8rmuxN9KD8r49c/b9/Ktujf6xAA27p+IyJOjY5u7v+SvP/buVM9nPN4Gfo/eH7uZOOftzqNfwob45/oMP4Z7xC7O7F9/Bfu9aGYrrLx3wcdx78bi1YTI3nupeaYbyy5cLGcZn3byxFxPMb2Zvmt1nNOr91tdDvWPv7Ltqz81lgwv457o3sffcx8qV56mjq3u38j4rWO499ko/2TDu2fPR/neizjaHr79W7Htq//s9X4OeKNju3/cEUr2Xp9cqp5P0y17orN/r559Pdu5e92/bP2P7B1/SeS9vXa2pOX8dO+f9Nux3Z6/+9JPm+m9+T7rpbq9aXpiD3JJ5v3zzx8bCvfOj+r//FjW/d/ne7//RHxRY/1v3nkZtdTB6H955+o/Z88cffjL3/sVn5v7f92M3U839NL/9frBT7NcwcAAAAAAACDphARByMpFDfShUKxuP7+jiNxoFCu1uonLlSXL81H87OyEzFWaK10j7e9H2I6fz9sKz/zWH42Ig5HxHcj+5v54ly1PL/blQcAAAAAAAAAAAAAAAAAAIABMd7l8/+ZP0Z2++qAZ85XfsPw2jb++/FNT8BA8v8fhpf4h+El/mF4iX8YXuIfhpf4h+El/mF4iX8AAAAAAAAAAAAAAAAAAAAAAAAAAADoq3Nnz2ZbY+3BtbksP39lZXmxeuXkfFpbLFaW54pz1aXLxYVqdaGcFueqle3+XrlavTw9E8tXp+pprT5VW1k9X6kuX6qfv1gpLaTn07HnUisAAAAAAAAAAAAAAAAAAAB4sdRWVhdL5XK6JCGxo8ToYFyGRJ8Tu90zAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBD/wUAAP//y284sw==")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d0000"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xa, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
syz_emit_ethernet(0x3e, &(0x7f00000002c0)={@multicast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f4adf7", 0x8, 0x2c, 0x0, @dev, @mcast2, {[], @echo_reply}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x9)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
openat$ptmx(0xffffffffffffff9c, 0x0, 0x8040, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x18)

5m7.667601145s ago: executing program 39 (id=1367):
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x2000c12, &(0x7f0000000ec0)={[{@gid}, {@cruft}, {@check_relaxed}, {}, {}, {@map_normal}, {@check_strict}, {@dmode={'dmode', 0x3d, 0x3}}, {@block={'block', 0x3d, 0x800}}, {@cruft}, {@gid}, {@block={'block', 0x3d, 0x600}}, {@utf8}, {@utf8}, {@gid}]}, 0x4, 0xa00, &(0x7f00000003c0)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd, @void, @value}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$TIOCSETD(0xffffffffffffffff, 0x5423, &(0x7f0000000040)=0x11)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0x1}, {0xffff, 0xffff}, {0x0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000600)=@newtfilter={0x50, 0x2c, 0xd27, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0x0, 0xf}, {}, {0x7}}, [@filter_kind_options=@f_flow={{0x9}, {0x20, 0x2, [@TCA_FLOW_EMATCHES={0x1c, 0xb, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x69}}, @TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0xc, 0x1, 0x0, 0x0, {{0x1, 0x9, 0x100}}}]}]}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x10}, 0x2008c014)

5m6.951393407s ago: executing program 4 (id=1389):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f00000002c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
write$tun(r1, &(0x7f0000000300)=ANY=[], 0xcc)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r7, 0x84, 0x10, 0x0, 0x0)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[], 0x48)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0)

4m51.787774437s ago: executing program 40 (id=1389):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/sys/net/ipv4/vs/sync_ports\x00', 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f00000002c0)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
write$tun(r1, &(0x7f0000000300)=ANY=[], 0xcc)
sendmsg$nl_route(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r5, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000980)=@delchain={0x34, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0x0, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)
r6 = socket$netlink(0x10, 0x3, 0x0)
r7 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x83, 0x0, 0x0)
getsockopt$inet_sctp6_SCTP_DELAYED_SACK(r7, 0x84, 0x10, 0x0, 0x0)
bind$netlink(r6, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
ioctl$sock_SIOCETHTOOL(0xffffffffffffffff, 0x8946, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[], 0x48)
sendmsg$nl_route_sched(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@delchain={0x24, 0x11, 0x1, 0x1f, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0)

1m40.507444913s ago: executing program 8 (id=1667):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000140)={0x2, 0x0, @rand_addr=0x64010100}, 0x10, 0x0}, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x7, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
r2 = socket(0x1e, 0x1, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
shutdown(r2, 0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000005c0)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f00000000c0)={r5}, 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x16, 0x18, &(0x7f0000000680)=@framed={{}, [@printk={@p, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x20008000}, {0x85, 0x0, 0x0, 0x72}}, @snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x8}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r5}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @flow_dissector, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)

1m38.831243568s ago: executing program 8 (id=1670):
mmap(&(0x7f0000261000/0xc00000)=nil, 0xc00000, 0x3000003, 0x31, 0xffffffffffffffff, 0x0)
iopl(0x3)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x3ff, 0x1)
capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000180)={0x200000, 0x200000})
mknodat$null(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0, 0x103)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000001180), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000100)={0x50, 0x0, r1, {0x7, 0x1f, 0x1, 0x5069f481, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000500)={0x20, 0x0, 0x0, {0x0, 0x9}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
io_setup(0x202, &(0x7f0000000200)=<r3=>0x0)
io_submit(r3, 0x20, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011004, 0x4, 0x1, 0x0, r2, &(0x7f00000000c0)='!', 0xb7f40}])
dup3(r2, r0, 0x0)
syz_io_uring_setup(0x111, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x1)
fcntl$getflags(0xffffffffffffffff, 0x401)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0xffffffffffffff99)
read$msr(r4, &(0x7f0000002700)=""/102392, 0x18ff8)

1m37.153853235s ago: executing program 8 (id=1673):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet_sctp(0x2, 0x1, 0x84)
mkdirat(0xffffffffffffffff, 0x0, 0x81)
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f00000002c0)='tmpfs\x00', 0x0, &(0x7f0000000180)='usrquota')
chdir(&(0x7f0000000280)='./file1\x00')
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f00000000c0)={0x84, @multicast2, 0x15, 0x3, 'sh\x00', 0x30, 0x4, 0x75}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, 0x0, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r3, 0x0, 0x485, 0x0, 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
r5 = socket$inet6(0xa, 0x3, 0x8000000003c)
connect$inet6(r5, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x9}, 0x1c)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x428, 0xd0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x358, 0xffffffff, 0xffffffff, 0x358, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x488)
sendmsg(r5, &(0x7f00000000c0)={0x0, 0x9521, &(0x7f0000000100)=[{&(0x7f0000000000)="2c10", 0x5dc}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

1m33.539008628s ago: executing program 8 (id=1677):
syz_open_procfs(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
gettid()
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000040)={r0, 0x0, &(0x7f0000001300)=""/4096}, 0x20)
timer_create(0x0, 0x0, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r2 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r2, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x0, 0x891018, 0x0)
mount$bind(&(0x7f00000000c0)='.\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x80700a, 0x0)
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0xfffff000)

1m29.249154865s ago: executing program 8 (id=1682):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmat(0x0, &(0x7f0000ffc000/0x2000)=nil, 0x4000)
ioctl$vim2m_VIDIOC_ENUM_FMT(0xffffffffffffffff, 0xc0405602, 0x0)
setsockopt$netlink_NETLINK_NO_ENOBUFS(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000040)=0x7f, 0x4)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r5 = dup(r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x13, r5, 0x0)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
read$FUSE(r5, &(0x7f0000003080)={0x2020}, 0xfffffda3)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000480)={0x0, 0x18, 0xfa00, {0x0, &(0x7f00000002c0), 0x13f}}, 0x20)

1m27.646624012s ago: executing program 8 (id=1686):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x1, 0x0)
epoll_create(0x7f)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000400)=ANY=[], 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000007c0))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000040)=ANY=[@ANYRES16=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x79, 0x6, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0x0, 0x4, [{{0x9, 0x4, 0x0, 0x4, 0x2, 0x3, 0x1, 0x1, 0xdf, {0x9, 0x21, 0x4, 0xe7, 0x1, {0x22, 0x223}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x1, 0x2, 0xf5}}}}}]}}]}}, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000000))

1m27.221919657s ago: executing program 41 (id=1686):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x1, 0x0)
epoll_create(0x7f)
syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_usb_connect(0x2, 0x2d, &(0x7f0000000400)=ANY=[], 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000007c0))
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cgroup.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000040)=ANY=[@ANYRES16=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)
syz_usb_connect$hid(0x1, 0x36, &(0x7f0000000140)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x79, 0x6, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x1, 0x8, 0x0, 0x4, [{{0x9, 0x4, 0x0, 0x4, 0x2, 0x3, 0x1, 0x1, 0xdf, {0x9, 0x21, 0x4, 0xe7, 0x1, {0x22, 0x223}}, {{{0x9, 0x5, 0x81, 0x3, 0x200, 0x1, 0x2, 0xf5}}}}}]}}]}}, 0x0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r1, 0x541c, &(0x7f0000000000))

11.438628108s ago: executing program 2 (id=1777):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x10000}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000000c0)=0xa)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mknod$loop(&(0x7f0000000140)='./file0\x00', 0x1000, 0x0)
mount(&(0x7f0000000100)=@nullb, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000040)='gfs2meta\x00', 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r1, 0x0, 0x20007fffffff}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = syz_open_dev$vim2m(0x0, 0x403, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc058560f, &(0x7f0000000040)={0x0, 0x4})
sendmsg$IPCTNL_MSG_CT_NEW(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)={0xac, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @private0}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @local}, {0x14, 0x4, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8, 0x7, 0x1, 0x0, 0x9}, @CTA_NAT_SRC={0x18, 0x6, 0x0, 0x1, [@CTA_NAT_V6_MINIP={0x14, 0x4, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}]}]}, 0xac}}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$kcm(0x10, 0x2, 0x0)
syslog(0x3, &(0x7f0000002e00)=""/165, 0xa5)
sendmsg$inet(r4, &(0x7f0000000040)={0x0, 0x900, &(0x7f0000000100)=[{&(0x7f0000000080)="5c0000002d006bcd9e3fe3dc6e48ab31086b87033c0000001f03000000000000040014000d000aaf0d0000009ee517d34460bc24eab556a705251e6182949a3651f60a84c9f5d1938037e786a6d0bdd7fcf50e4509c5bb5a00f69853", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
socket$netlink(0x10, 0x3, 0x0)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42f82, 0x0)
ioctl$SNDCTL_DSP_SPEED(r5, 0xc0045002, &(0x7f0000000180))
write$dsp(r5, &(0x7f00000001c0)="5cba91a4", 0xffffffd9)

7.416716174s ago: executing program 0 (id=1780):
socket$tipc(0x1e, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_io_uring_setup(0x10d, &(0x7f0000000480)={0x0, 0x809268, 0x400}, 0x0, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x42, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socket$kcm(0x10, 0x2, 0x0)
socket$rds(0x15, 0x5, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pipe2$9p(&(0x7f0000000240), 0x0)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r0 = syz_io_uring_setup(0x117, &(0x7f0000000300)={0x0, 0x0, 0x10100, 0x200000, 0x1000000}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='rdma.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f00000000c0)=ANY=[@ANYRES16=r3], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

7.414324985s ago: executing program 2 (id=1781):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000200)='sched_switch\x00', r0}, 0x10)
mkdir(&(0x7f00000000c0)='./bus\x00', 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount$overlay(0x0, &(0x7f0000000240)='./cgroup/file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000300)={[{@workdir={'workdir', 0x3d, './bus'}}, {@index_on}, {@metacopy_off}, {@nfs_export_on}], [{@dont_measure}, {@smackfshat}]})
mount(&(0x7f00000000c0)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000000)='./cgroup\x00', &(0x7f0000000040)='xfs\x00', 0x8000, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
syz_open_dev$vim2m(0x0, 0x8004, 0x2)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='smaps\x00')
mlock(&(0x7f0000002000/0x2000)=nil, 0x2000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
read$FUSE(r4, &(0x7f0000000640)={0x2020}, 0x2020)

7.050593556s ago: executing program 0 (id=1782):
openat$tun(0xffffffffffffff9c, 0x0, 0x40241, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
sendto$inet(0xffffffffffffffff, &(0x7f0000000100), 0x0, 0x0, 0x0, 0x0)
bind$bt_hci(0xffffffffffffffff, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x2000})
socket$kcm(0x2, 0xa, 0x2)
r1 = socket$nl_rdma(0x10, 0x3, 0x14)
r2 = shmget(0x1, 0x4000, 0x200, &(0x7f0000ffb000/0x4000)=nil)
shmctl$IPC_RMID(r2, 0x0)
sendmsg$RDMA_NLDEV_CMD_GET_CHARDEV(r1, 0x0, 0x0)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r3, 0x4010640d, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r3, 0xc01064c8, &(0x7f0000000280)={0x0, 0x0, 0x0})

6.247482709s ago: executing program 2 (id=1783):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_io_uring_setup(0x5bf, &(0x7f0000000140), 0x0, &(0x7f0000000200))
r4 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_udp_int(r4, 0x11, 0x67, &(0x7f0000000040)=0x91, 0x4)
setsockopt$inet6_IPV6_DSTOPTS(r4, 0x29, 0x3b, &(0x7f00000000c0)={0x2c}, 0x8)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$FICLONERANGE(0xffffffffffffffff, 0x4020940d, 0x0)
mq_open(&(0x7f0000000080)='group_id', 0x40, 0x2, &(0x7f0000000100)={0x7fff, 0x5})
io_uring_enter(r3, 0x6e2, 0x3900, 0x1, 0x0, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=@migrate={0x50, 0x21, 0x1, 0x0, 0x0, {{@in6=@local, @in6=@private2, 0x0, 0x0, 0x0, 0x0, 0xa}}}, 0x50}}, 0x2004c010)
r5 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r5, 0x40345410, &(0x7f0000000080)={{0x3, 0x3}})

6.08820678s ago: executing program 0 (id=1784):
syz_mount_image$vfat(&(0x7f00000005c0), &(0x7f00000002c0)='./bus\x00', 0x1800840, &(0x7f0000000140)=ANY=[@ANYBLOB='nonumtail=0,shortname=winnt,uni_xlate=1,iocharset=cp860,shortname=win95,nonumtail=0,0,uni_xlate=0,iocharset=iso8859-14,codepage=936,iocharset=maccenteuro,errors=continue,shortname=lower,\x00'], 0x1, 0x362, &(0x7f0000000900)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_io_uring_setup(0x6e85, &(0x7f0000000080)={0x0, 0x4000948b, 0x0, 0x7, 0x223}, &(0x7f0000ff0000), 0x0)
mlock(&(0x7f00007d8000/0x800000)=nil, 0x800000)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, @void, @value}, 0x28)
socket$nl_route(0x10, 0x3, 0x0)

4.776221876s ago: executing program 0 (id=1785):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000900)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r4 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r4, &(0x7f0000001600)='./file1\x00', 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
linkat(r4, &(0x7f0000000100)='./file1\x00', r4, &(0x7f0000000240)='./file0\x00', 0x0)
rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000f40)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

4.145102629s ago: executing program 2 (id=1786):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mq_open(0x0, 0x40, 0x260, 0x0)
r3 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, 0x0, 0x0)
openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0x0, 0x80)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x1000000000021, 0x0, 0x0)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x4e22, 0x0, @empty, 0x3ffffe}, 0x1c)
listen(r4, 0xfffffffd)
accept(r4, 0x0, 0x0)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r5, 0x0, 0x0, 0x240540c3, &(0x7f0000000200)={0xa, 0x4e22, 0x0, @loopback}, 0x1c)
mount(0x0, 0x0, 0x0, 0x100000000000000, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)

2.330513332s ago: executing program 0 (id=1787):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0xfffffffffffffcd4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = socket$inet_dccp(0x2, 0x6, 0x0)
getsockopt$inet_int(r1, 0x10d, 0x5, &(0x7f0000000000), &(0x7f0000000080)=0x4)
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x22020600)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, 0x0, &(0x7f0000001200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
r5 = bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000003c0)={r4}, 0x10)
bpf$ITER_CREATE(0x22, &(0x7f0000000040)={r5}, 0x8)
r6 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
r7 = syz_pidfd_open(r6, 0x0)
process_madvise(r7, 0x0, 0x0, 0x65, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000000c0)={@map, 0x35, 0x0, 0xa315, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

2.178393833s ago: executing program 2 (id=1788):
r0 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPCONNDEL(r0, 0x400442c9, &(0x7f0000000040)={0x0, @remote})
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0}, 0x18)
r1 = open(0x0, 0x0, 0x0)
mkdirat(r1, 0x0, 0x0)
renameat2(r1, &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0xffffffffffffffff, &(0x7f00000022c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYRES32, @ANYRES32], 0x48)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x8000002000000, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
openat(0xffffffffffffff9c, 0x0, 0x143042, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020}, 0xfffffffffffffd0a)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = mq_open(&(0x7f000084dff0)='!selinuxselinux\x00', 0x6e93ebbbcc0884f2, 0x0, &(0x7f0000000300)={0x0, 0x1, 0x7})
mq_timedsend(r4, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r4, 0x0, 0x0, 0x0, 0x0)

741.217513ms ago: executing program 0 (id=1789):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x87, &(0x7f0000000000)={[{@debug}, {@nolazytime}, {@lazytime}, {@dioread_nolock}, {@nolazytime}]}, 0x0, 0x5a8, &(0x7f0000001100)="$eJzs3U9sFNUfAPDvzPYPLf3R8ssvvwAXm3CAxLjQ1gh6ArwZY/x7NKEphTQslNCaAOkB7h48cPBq4sWrF9QTicaDBw+ewJNnE2IapCbGWDO7M2Wh2z+p7U5hPp9kduft2933vjv5dt7b2ZcGUFmj2U0acTAiziYRw211PZFXjraet7S4MPXH4sJUEsvL7/2WRBIRjxYXpornJ/n93rywJyJ+OhPx39rqdueu37g42WhMX83Lx+YvXTk2d/3GSzOXJi9MX5i+PDE2/urLExMTJ04WL+nfTDx969R98O6ht+ofvnH/i9lX/rr9zr4fkjgVQ62qWrTFsV1GY3TlM2mXfa4ntruxktTyeDrFye5XHL/eiPh/DEctz/rMcMx8XGrngB21XItYBioqkf9QUcU4IJvHF1u5I5LuenC6NQHK4l7Kt1ZNT+u7kdiTzY2G+h8mbTOj1nx3ZBvaz9q4duTMt9kWT32f0g03b0XEgU7HP2n2baT5LU7E4MP0ifjTiDie32ePj2+x/dGnys9S/Kfa4j+zxfbXi793i+8JABu5e7p1Il99/ktXxj/RPP89Of4Z6nDu2oqyz//F+G9p1fjvcfy1DvFn47+3N9nGz9/f+XGtuvbxX7YtLdamirFgNzy4FXGoY/zJSvxJh/izcc/ZTbbx5VeH17x2tzr+ha7Gv/xZxJHoHH8hWf/65LHzM43p463bjm38cuD1O2u1X3b82fEfXCP+9Y5/9tiVTbZxcvDop2vVbRx/+mtf8n5zr7i2e21yfv7qWERf8ubqxzeYiBTPKd4ji//o4fXzv1P8A9ncYZPxP5r95s+tx7+zsvjPbfH4f7LJNr7+/Lt7a9W1x78v70c34wcAAAAAAIDnSdr8LUeS1lf207Reb63h/V8Mpo3ZufkXz89+dPlc6zcfI9GbFle6h1vlJCuP5b+HLcrjT5UnImJ/RNyuDTTL9anZxrmygwcAAAAAAAAAAAAAAAAAAIBdYm/b+v+eiPi91lr/D1RET9kdAEoj/6G65D9Ul/yH6pL/UF3yH6pL/kN1yX+oLvkP1SX/obrkPwAAAAA8l/a/cPd+EhE3Xxtobpm+vK631J4BOy0tuwNAaWpldwAojUv/UF3m+ECyQf2eJ+7a3N3olQAAAAAAAAAAAADAdjly0Pp/qCrr/6G6rP+H6rL+H6rLHB/osIq/r72weuF/zvp/AAAAAAAAAAAAAOiaoeaWpPV8LfBQpGm9HvGfiBiJ3uT8TGP6eETsi4h7td7+rDxWdqcBAAAAAAAAAAAAAAAAAADgOTN3/cbFyUZj+qodO93fGYiIXdCNf7Hz9/gu6EZ/ns3b+c4l/2ECAAAAAAAAAAAAAAAAAIAKerzot+yeAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB5Hv///53byZvqKTlUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOAZ808AAAD//3VZC0I=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
r3 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='devtmpfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000440)=@ipv4_newaddr={0x2c, 0x14, 0x509, 0x0, 0x0, {0x2, 0x1f}, [@IFA_CACHEINFO={0x14, 0x6, {0x42f, 0x2, 0x0, 0x2}}]}, 0x2c}}, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
r5 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r5, &(0x7f0000001fc0)=""/184, 0x20002078)

0s ago: executing program 2 (id=1790):
socket$unix(0x1, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x0, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r3, 0x6, 0x210000000013, &(0x7f0000000300)=0x100000001, 0x4)
bind$inet(r3, &(0x7f0000000080)={0x2, 0x4e21, @empty}, 0x10)
connect$inet(r3, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r3, 0x6, 0x16, &(0x7f0000000000)=[@mss, @sack_perm, @window={0x3, 0x7}, @mss={0x2, 0xfff}, @window={0x3, 0x0, 0x401}, @window], 0x20000000000000e4)
setsockopt$inet_tcp_TCP_REPAIR(r3, 0x6, 0x13, &(0x7f00000001c0), 0x4)
sendto$inet(r3, &(0x7f0000000340)='\b', 0x1, 0x0, 0x0, 0x0)
sendto$inet(r3, &(0x7f0000000000), 0xffffffffffffff94, 0xb, 0x0, 0x0)
recvfrom$inet(r3, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x0, 0x0, 0xfffffffffffffd25)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

kernel console output (not intermixed with test programs):

uetooth: hci1: command 0x0405 tx timeout
[  893.104967][ T5853] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  895.314329][ T9557] bridge_slave_1: left allmulticast mode
[  895.433795][ T9557] bridge_slave_1: left promiscuous mode
[  895.906233][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[  898.364151][ T9557] bridge_slave_0: left allmulticast mode
[  899.137361][ T9557] bridge_slave_0: left promiscuous mode
[  899.143136][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[  901.686420][T12592] loop8: detected capacity change from 0 to 128
[  901.735104][T12589] loop0: detected capacity change from 0 to 512
[  901.756350][T12592] UDF-fs: error (device loop8): udf_read_tagged: read failed, block=256, location=256
[  901.831647][T12589] EXT4-fs: Ignoring removed bh option
[  901.881255][T12592] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  901.932800][T12589] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  901.981734][T12589] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  903.352377][ T5898] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[  903.621451][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  904.242320][T12625] xt_time: unknown flags 0xc
[  908.130965][T12658] netlink: 'syz.4.1339': attribute type 4 has an invalid length.
[  908.270606][T12662] netlink: 'syz.4.1339': attribute type 4 has an invalid length.
[  909.772652][T12672] tls_set_device_offload_rx: netdev not found
[  910.396663][    C1] vkms_vblank_simulate: vblank timer overrun
[  911.249424][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  911.254514][T12698] loop8: detected capacity change from 0 to 512
[  911.279932][T12700] loop0: detected capacity change from 0 to 1024
[  911.288800][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  911.290612][T12698] EXT4-fs: Ignoring removed bh option
[  911.314203][T12700] EXT4-fs: Ignoring removed orlov option
[  911.321018][T12700] EXT4-fs: Ignoring removed nomblk_io_submit option
[  911.322868][ T9557] bond0 (unregistering): Released all slaves
[  911.367782][T12698] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  911.392858][T12435] bridge0: port 1(bridge_slave_0) entered blocking state
[  911.401322][T12435] bridge0: port 1(bridge_slave_0) entered disabled state
[  911.408638][T12435] bridge_slave_0: entered allmulticast mode
[  911.409653][T12700] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  911.416439][T12435] bridge_slave_0: entered promiscuous mode
[  911.445335][T12435] bridge0: port 2(bridge_slave_1) entered blocking state
[  911.452610][T12435] bridge0: port 2(bridge_slave_1) entered disabled state
[  911.474105][T12435] bridge_slave_1: entered allmulticast mode
[  911.481183][T12435] bridge_slave_1: entered promiscuous mode
[  911.486468][T12698] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  912.723689][   T29] audit: type=1326 audit(2000000458.015:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  912.878688][   T29] audit: type=1326 audit(2000000458.015:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.321773][   T29] audit: type=1326 audit(2000000458.145:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.383742][   T29] audit: type=1326 audit(2000000458.145:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.409649][   T29] audit: type=1326 audit(2000000458.145:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.434949][   T29] audit: type=1326 audit(2000000458.265:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.457546][   T29] audit: type=1326 audit(2000000458.265:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.480240][   T29] audit: type=1326 audit(2000000458.265:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.523408][T11904] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  913.545687][   T29] audit: type=1326 audit(2000000458.265:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12697 comm="syz.0.1344" exe="/root/syz-executor" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7efc8938d169 code=0x7ffc0000
[  913.637096][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  916.996993][ T9557] hsr_slave_0: left promiscuous mode
[  917.133115][ T9557] hsr_slave_1: left promiscuous mode
[  917.177832][ T9557] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  917.233378][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[  917.283803][ T9557] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  917.400723][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[  918.044723][ T9557] veth1_macvtap: left promiscuous mode
[  918.050514][ T9557] veth0_macvtap: left promiscuous mode
[  918.065823][ T9557] veth1_vlan: left promiscuous mode
[  918.071192][ T9557] veth0_vlan: left promiscuous mode
[  919.048629][ T5853] Bluetooth: hci4: command 0x0406 tx timeout
[  919.109297][T12753] vivid-006: disconnect
[  919.119090][T12752] vivid-006: reconnect
[  920.676180][T12770] loop0: detected capacity change from 0 to 128
[  921.758084][T12785] trusted_key: syz.8.1356 sent an empty control message without MSG_MORE.
[  922.503550][   T29] audit: type=1800 audit(2000000467.776:160): pid=12782 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1357" name="bus" dev="loop0" ino=116 res=0 errno=0
[  922.650086][T12788] loop4: detected capacity change from 0 to 512
[  922.773353][T12788] EXT4-fs: Ignoring removed bh option
[  922.890378][T12788] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  923.720967][T12788] ext4 filesystem being mounted at /365/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  925.308279][T12808] loop5: detected capacity change from 0 to 16
[  925.451780][T12808] MTD: Attempt to mount non-MTD device "/dev/loop5"
[  926.437364][ T5850] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  927.288466][T12820] loop2: detected capacity change from 0 to 256
[  928.261495][ T5848] Bluetooth: hci0: command 0x0406 tx timeout
[  928.294807][T12820] exfat: Bad value for 'gid'
[  928.299446][T12820] exfat: Bad value for 'gid'
[  929.536591][T12828] tls_set_device_offload_rx: netdev not found
[  930.122126][T12834] syz.8.1369 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  930.200564][T12830] loop5: detected capacity change from 0 to 1764
[  931.455863][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  931.462215][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  933.554303][T12869] loop4: detected capacity change from 0 to 512
[  933.576072][T12869] EXT4-fs: Ignoring removed bh option
[  933.914067][T12878] loop8: detected capacity change from 0 to 512
[  933.921061][T12878] EXT4-fs: Ignoring removed i_version option
[  934.004801][T12878] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  934.631221][ T9559] Bluetooth: hci3: Frame reassembly failed (-84)
[  935.168652][T12878] EXT4-fs (loop8): 1 truncate cleaned up
[  935.175411][T12878] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  935.244569][T12876] EXT4-fs: Ignoring removed orlov option
[  935.250432][T12876] EXT4-fs: Can't set or change test_dummy_encryption on remount
[  935.297193][T12869] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  935.383953][T12869] ext4 filesystem being mounted at /368/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  935.418017][T12889] loop0: detected capacity change from 0 to 128
[  936.092368][ T5853] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  936.386206][ T5850] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  936.534194][T11904] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  938.749609][ T5848] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  938.782795][ T5848] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  938.792136][ T5848] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  938.805014][ T5848] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  938.822374][ T5848] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  938.829743][ T5848] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  940.500680][T12927] loop4: detected capacity change from 0 to 1024
[  940.865310][ T5853] Bluetooth: hci3: command tx timeout
[  941.997019][T12927] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  943.058466][ T5853] Bluetooth: hci3: command tx timeout
[  943.682956][   T29] audit: type=1326 audit(2000000488.937:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  944.427430][ T5850] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  944.481869][   T29] audit: type=1326 audit(2000000488.937:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  944.653890][   T29] audit: type=1326 audit(2000000488.947:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  944.676286][    C1] vkms_vblank_simulate: vblank timer overrun
[  944.694026][T12954] loop2: detected capacity change from 0 to 512
[  944.700946][T12954] EXT4-fs: Ignoring removed bh option
[  944.752119][   T29] audit: type=1326 audit(2000000488.947:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  944.774483][    C1] vkms_vblank_simulate: vblank timer overrun
[  944.969944][T12960] snd_dummy snd_dummy.0: control 0:0:0:syz0:0 is already present
[  945.042432][   T29] audit: type=1326 audit(2000000488.947:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  945.119814][ T5853] Bluetooth: hci3: command tx timeout
[  945.126784][T12954] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  945.144238][   T29] audit: type=1326 audit(2000000488.947:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  945.167215][T12966] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1389'.
[  946.042266][T12954] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  946.151793][   T29] audit: type=1326 audit(2000000488.957:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  946.174257][    C1] vkms_vblank_simulate: vblank timer overrun
[  946.285273][T12973] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1389'.
[  946.317267][   T29] audit: type=1326 audit(2000000488.957:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12924 comm="syz.4.1384" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f45d778d169 code=0x7ffc0000
[  947.191789][ T5848] Bluetooth: hci3: command tx timeout
[  947.256385][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  948.034989][T12990] kernel profiling enabled (shift: 7)
[  948.755461][ T5848] Bluetooth: hci2: command 0x0406 tx timeout
[  948.844839][T12506] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  948.863771][T12506] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  948.871899][T12506] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  948.880591][T12506] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  948.898549][T12506] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  948.911761][T12506] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  949.049662][ T9557] team0 (unregistering): Port device team_slave_1 removed
[  951.011235][ T9557] team0 (unregistering): Port device team_slave_0 removed
[  951.025537][ T5853] Bluetooth: hci6: command tx timeout
[  952.903669][T13030] loop2: detected capacity change from 0 to 512
[  953.841948][ T5848] Bluetooth: hci6: command tx timeout
[  953.841955][T12506] Bluetooth: hci7: command 0x0406 tx timeout
[  953.920303][T13030] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  953.932959][T13030] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  955.445952][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  955.587333][T13044] loop8: detected capacity change from 0 to 8
[  955.619069][T13044] Filesystem uses "unknown" compression. This is not supported
[  955.901226][ T5853] Bluetooth: hci6: command tx timeout
[  955.930169][T13044] loop8: detected capacity change from 0 to 32768
[  956.870957][T13051] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nbd2": -EINTR
[  957.981119][ T5853] Bluetooth: hci6: command tx timeout
[  959.604093][T12435] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  962.617083][T13100] loop2: detected capacity change from 0 to 16
[  962.790313][T13100] erofs (device loop2): mounted with root inode @ nid 36.
[  963.262163][ T5848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  963.275869][ T5848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  963.283939][ T5848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  963.293564][ T5848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  963.301532][ T5848] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  963.308914][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  964.645928][T13092] loop0: detected capacity change from 0 to 1024
[  964.672869][T13092] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  964.954098][T13092] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.1412: Invalid block bitmap block 0 in block_group 0
[  965.198579][T13092] EXT4-fs (loop0): Remounting filesystem read-only
[  965.250801][T13092] Quota error (device loop0): write_blk: dquota write failed
[  965.261321][T13117] batman_adv: batadv0: Adding interface: vxlan0
[  965.275462][T13117] batman_adv: batadv0: The MTU of interface vxlan0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  965.287942][T13092] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  965.324755][T13117] batman_adv: batadv0: Not using interface vxlan0 (retrying later): interface not active
[  965.347609][T13092] EXT4-fs (loop0): 1 orphan inode deleted
[  965.366951][T13092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  965.420903][ T5848] Bluetooth: hci1: command tx timeout
[  966.720370][T12909] chnl_net:caif_netlink_parms(): no params data found
[  967.068256][T12989] chnl_net:caif_netlink_parms(): no params data found
[  967.503574][ T5848] Bluetooth: hci1: command tx timeout
[  968.017358][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  968.031032][ T5920] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[  968.285522][ T5920] usb 9-1: config 0 has no interfaces?
[  968.328759][ T5920] usb 9-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[  968.339430][ T5920] usb 9-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[  968.529076][ T9557] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  969.530509][ T5920] usb 9-1: Product: syz
[  969.535512][ T5920] usb 9-1: SerialNumber: syz
[  969.571604][ T5920] usb 9-1: config 0 descriptor??
[  969.581634][ T5848] Bluetooth: hci1: command tx timeout
[  969.797833][T13137] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  969.808194][T13137] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  970.865223][ T5899] usb 9-1: USB disconnect, device number 4
[  971.539218][ T9557] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  971.678196][ T5848] Bluetooth: hci1: command tx timeout
[  972.753055][T13179] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  972.868878][T13169] ISOFS: Unable to identify CD-ROM format.
[  973.565593][ T9557] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  973.617053][T12909] bridge0: port 1(bridge_slave_0) entered blocking state
[  973.640371][T12909] bridge0: port 1(bridge_slave_0) entered disabled state
[  973.678181][T12909] bridge_slave_0: entered allmulticast mode
[  973.707974][T12909] bridge_slave_0: entered promiscuous mode
[  973.723761][T12909] bridge0: port 2(bridge_slave_1) entered blocking state
[  973.761043][T12909] bridge0: port 2(bridge_slave_1) entered disabled state
[  973.768292][T12909] bridge_slave_1: entered allmulticast mode
[  973.801411][T12909] bridge_slave_1: entered promiscuous mode
[  973.849037][T13105] chnl_net:caif_netlink_parms(): no params data found
[  974.335787][T13201] loop8: detected capacity change from 0 to 128
[  974.961245][T13201] affs: No valid root block on device loop8
[  975.023981][ T9557] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  975.483265][T12989] bridge0: port 1(bridge_slave_0) entered blocking state
[  975.510452][T12989] bridge0: port 1(bridge_slave_0) entered disabled state
[  975.578770][T13206] loop2: detected capacity change from 0 to 256
[  975.588264][T13206] vfat: Bad value for 'shortname'
[  975.779695][T12989] bridge_slave_0: entered allmulticast mode
[  975.799776][T12989] bridge_slave_0: entered promiscuous mode
[  977.273079][T13211] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nbd8": -EINTR
[  977.573924][T12909] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  977.730218][T12989] bridge0: port 2(bridge_slave_1) entered blocking state
[  977.737367][T12989] bridge0: port 2(bridge_slave_1) entered disabled state
[  978.624702][T12989] bridge_slave_1: entered allmulticast mode
[  978.632311][T12989] bridge_slave_1: entered promiscuous mode
[  978.890608][T12909] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  978.954794][T13226] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1434'.
[  978.997527][T13226] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1434'.
[  979.037183][T13226] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1434'.
[  979.261791][T13226] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1434'.
[  979.270663][T12909] team0: Port device team_slave_0 added
[  979.840585][T12989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  981.121070][T13250] relay: one or more items not logged [item size (56) > sub-buffer size (10)]
[  981.430158][T12909] team0: Port device team_slave_1 added
[  981.704127][T12989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  983.574403][T13266] loop8: detected capacity change from 0 to 256
[  983.594798][T13264] loop2: detected capacity change from 0 to 512
[  983.633987][T13264] EXT4-fs: Ignoring removed bh option
[  983.640404][T13266] exfat: Deprecated parameter 'utf8'
[  983.670347][T13266] exfat: Deprecated parameter 'utf8'
[  983.693693][T13264] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  983.750843][T13266] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  983.769851][T13264] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  985.102132][T12989] team0: Port device team_slave_0 added
[  985.296506][T13105] bridge0: port 1(bridge_slave_0) entered blocking state
[  985.419866][T13105] bridge0: port 1(bridge_slave_0) entered disabled state
[  985.427293][T13105] bridge_slave_0: entered allmulticast mode
[  985.457990][T13105] bridge_slave_0: entered promiscuous mode
[  985.468871][T13105] bridge0: port 2(bridge_slave_1) entered blocking state
[  985.488550][T13105] bridge0: port 2(bridge_slave_1) entered disabled state
[  985.500186][T13105] bridge_slave_1: entered allmulticast mode
[  985.527419][T13105] bridge_slave_1: entered promiscuous mode
[  985.744067][T12909] batman_adv: batadv0: Adding interface: batadv_slave_0
[  985.853651][T13282] hub 6-0:1.0: USB hub found
[  985.864586][T12909] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  985.916045][T13282] hub 6-0:1.0: 1 port detected
[  986.008943][T12909] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  986.145884][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  986.158400][T12909] batman_adv: batadv0: Adding interface: batadv_slave_1
[  986.171498][T12909] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  986.198868][T12909] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  986.271877][T12989] team0: Port device team_slave_1 added
[  986.697445][T13105] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  988.258065][ T9557] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  990.024931][T12989] batman_adv: batadv0: Adding interface: batadv_slave_0
[  990.086715][T12989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  990.921056][T12989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  990.935458][T13105] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  992.470353][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  992.478762][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  994.919185][ T9557] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  994.994988][T12989] batman_adv: batadv0: Adding interface: batadv_slave_1
[  995.015036][T12989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  995.090023][T13350] tls_set_device_offload_rx: netdev not found
[  995.098628][T12989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  995.188527][T13105] team0: Port device team_slave_0 added
[  995.226246][T12909] hsr_slave_0: entered promiscuous mode
[  995.432922][T12909] hsr_slave_1: entered promiscuous mode
[  995.456434][T12909] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  995.466138][T12909] Cannot create hsr debugfs directory
[  996.352812][ T9557] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  996.672297][T13105] team0: Port device team_slave_1 added
[  996.776399][ T5853] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  997.044778][ T5853] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  997.058564][ T5853] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  997.070319][ T5853] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  997.549167][  T904] IPVS: starting estimator thread 0...
[  997.609437][ T5853] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  997.739275][ T5853] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  997.786771][T13379] IPVS: using max 19 ests per chain, 45600 per kthread
[  997.946492][ T9557] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  999.724751][T12989] hsr_slave_0: entered promiscuous mode
[  999.739739][T12989] hsr_slave_1: entered promiscuous mode
[  999.745886][T12989] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  999.832117][ T5853] Bluetooth: hci4: command tx timeout
[  999.939350][T12989] Cannot create hsr debugfs directory
[ 1000.833893][T13105] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1000.863102][T13105] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1000.963844][T13105] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1001.038748][T12595] usb 9-1: new full-speed USB device number 5 using dummy_hcd
[ 1001.216221][T13105] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1001.236469][T13105] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1001.308758][T13105] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1001.350576][T12595] usb 9-1: config 0 has no interfaces?
[ 1001.357633][T12595] usb 9-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[ 1001.388752][T12595] usb 9-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1001.396847][T12595] usb 9-1: Product: syz
[ 1001.459264][T12595] usb 9-1: SerialNumber: syz
[ 1001.471866][T12595] usb 9-1: config 0 descriptor??
[ 1001.521528][T13415] loop0: detected capacity change from 0 to 64
[ 1001.635331][T13105] hsr_slave_0: entered promiscuous mode
[ 1001.652436][T13105] hsr_slave_1: entered promiscuous mode
[ 1001.670348][T13105] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1001.679638][T13415] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1469'.
[ 1001.690663][T13105] Cannot create hsr debugfs directory
[ 1001.712450][T13408] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1001.739426][T13408] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1001.775997][T12595] usb 9-1: USB disconnect, device number 5
[ 1001.898925][ T5853] Bluetooth: hci4: command tx timeout
[ 1002.343675][ T9557] bridge_slave_1: left allmulticast mode
[ 1002.448742][ T9557] bridge_slave_1: left promiscuous mode
[ 1002.499158][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1002.572512][ T9557] bridge_slave_0: left promiscuous mode
[ 1002.579909][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1002.680587][ T9557] bridge_slave_1: left allmulticast mode
[ 1002.728886][ T9557] bridge_slave_1: left promiscuous mode
[ 1002.734644][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1003.252049][ T9557] bridge_slave_0: left allmulticast mode
[ 1003.257794][ T9557] bridge_slave_0: left promiscuous mode
[ 1003.289184][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1004.122382][ T5853] Bluetooth: hci4: command tx timeout
[ 1004.201037][ T9557] bridge_slave_1: left allmulticast mode
[ 1004.206740][ T9557] bridge_slave_1: left promiscuous mode
[ 1004.250746][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1004.398794][T13428] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1004.460720][ T9557] bridge_slave_0: left allmulticast mode
[ 1004.466425][ T9557] bridge_slave_0: left promiscuous mode
[ 1004.483917][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1006.138603][ T5853] Bluetooth: hci4: command tx timeout
[ 1006.294501][ T9557] bond1 (unregistering): (slave ip6gretap1): Removing an active aggregator
[ 1006.399164][ T9557] bond1 (unregistering): (slave ip6gretap1): Releasing backup interface
[ 1007.875706][ T5848] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1007.887529][ T5848] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1007.910575][ T5848] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1007.921190][ T5848] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1007.931503][ T5848] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1007.942183][ T5848] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1008.423833][T13462] loop2: detected capacity change from 0 to 40427
[ 1008.450704][T13462] F2FS-fs (loop2): heap/no_heap options were deprecated
[ 1008.460640][T13462] F2FS-fs (loop2): invalid crc value
[ 1008.481044][T13462] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1008.542114][T13462] F2FS-fs (loop2): Start checkpoint disabled!
[ 1008.571273][T13462] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 1010.158346][ T5848] Bluetooth: hci3: command tx timeout
[ 1010.973098][T11012] kworker/u8:32: attempt to access beyond end of device
[ 1010.973098][T11012] loop2: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[ 1012.026021][T11012] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[ 1012.068134][T11012] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[ 1012.075065][T11012] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[ 1012.349007][ T5848] Bluetooth: hci3: command tx timeout
[ 1013.052437][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1013.121915][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1013.147837][ T9557] bond0 (unregistering): Released all slaves
[ 1013.408026][    T9] usb 3-1: new full-speed USB device number 7 using dummy_hcd
[ 1013.560000][    T9] usb 3-1: config 0 has no interfaces?
[ 1014.389359][ T5848] Bluetooth: hci3: command tx timeout
[ 1014.493382][    T9] usb 3-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[ 1014.504637][ T9557] bond1 (unregistering): Released all slaves
[ 1014.510879][    T9] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1014.519047][    T9] usb 3-1: Product: syz
[ 1014.523236][    T9] usb 3-1: SerialNumber: syz
[ 1014.548772][    T9] usb 3-1: config 0 descriptor??
[ 1015.146208][T13496] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1015.277083][T13496] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1015.562076][  T904] usb 3-1: USB disconnect, device number 7
[ 1015.838501][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1015.866390][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1015.879449][ T9557] bond0 (unregistering): Released all slaves
[ 1015.895107][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1015.910659][ T9557] bond0 (unregistering): Released all slaves
[ 1016.120426][T13503] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1487'.
[ 1016.458161][ T5848] Bluetooth: hci3: command tx timeout
[ 1016.979540][  T904] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[ 1017.622267][  T904] usb 1-1: config 0 has no interfaces?
[ 1017.760090][  T904] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[ 1017.778662][ T9557] tipc: Left network mode
[ 1017.809078][  T904] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1017.832896][  T904] usb 1-1: Product: syz
[ 1017.837102][  T904] usb 1-1: SerialNumber: syz
[ 1017.876987][  T904] usb 1-1: config 0 descriptor??
[ 1018.137177][T13500] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1018.148454][T13500] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1018.180862][T12595] usb 1-1: USB disconnect, device number 2
[ 1018.196892][T13369] chnl_net:caif_netlink_parms(): no params data found
[ 1023.292142][  T904] usb 9-1: new high-speed USB device number 6 using dummy_hcd
[ 1023.627562][  T904] usb 9-1: Using ep0 maxpacket: 8
[ 1023.693924][  T904] usb 9-1: New USB device found, idVendor=110a, idProduct=1450, bcdDevice=62.cb
[ 1023.809580][  T904] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1023.837084][  T904] usb 9-1: Product: syz
[ 1023.846201][  T904] usb 9-1: Manufacturer: syz
[ 1023.864433][  T904] usb 9-1: SerialNumber: syz
[ 1023.976857][ T5853] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1024.007183][ T5853] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1024.017748][ T5853] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1024.028401][ T5853] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1024.036792][ T5853] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1024.050288][ T5853] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1024.236432][  T904] mxuport 9-1:254.0: mxuport_send_ctrl_data_urb - usb_control_msg failed (-71)
[ 1024.256782][  T904] mxuport 9-1:254.0: mxuport_send_ctrl_data_urb - usb_control_msg failed (-71)
[ 1024.277395][  T904] mxuport 9-1:254.0: probe with driver mxuport failed with error -71
[ 1024.304532][  T904] usb 9-1: USB disconnect, device number 6
[ 1024.313309][T13568] loop0: detected capacity change from 0 to 512
[ 1024.338159][T13568] EXT4-fs: Ignoring removed bh option
[ 1024.420520][T13568] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1024.465967][T13369] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1024.477581][T13568] ext4 filesystem being mounted at /63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1024.507960][T13369] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1024.515179][T13369] bridge_slave_0: entered allmulticast mode
[ 1024.766194][T13369] bridge_slave_0: entered promiscuous mode
[ 1024.891058][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1026.463914][ T5848] Bluetooth: hci5: command tx timeout
[ 1026.482967][T13593] loop8: detected capacity change from 0 to 256
[ 1027.589452][T13369] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1027.597430][T13369] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1027.604716][T13369] bridge_slave_1: entered allmulticast mode
[ 1028.526546][T13369] bridge_slave_1: entered promiscuous mode
[ 1028.549802][ T5848] Bluetooth: hci5: command tx timeout
[ 1030.617063][ T5848] Bluetooth: hci5: command tx timeout
[ 1031.186179][T13369] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1032.292962][T13638] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1507'.
[ 1032.327020][T13638] netlink: 16 bytes leftover after parsing attributes in process `syz.8.1507'.
[ 1032.368498][T13638] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1507'.
[ 1032.395216][T13638] netlink: 36 bytes leftover after parsing attributes in process `syz.8.1507'.
[ 1032.433372][T13369] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1032.545997][T13459] chnl_net:caif_netlink_parms(): no params data found
[ 1032.764512][ T5848] Bluetooth: hci5: command tx timeout
[ 1032.806645][T13644] loop2: detected capacity change from 0 to 512
[ 1033.781944][T13644] EXT4-fs: Ignoring removed bh option
[ 1034.785085][T13644] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1034.841243][T13644] ext4 filesystem being mounted at /56/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1035.080294][ T9557] hsr_slave_0: left promiscuous mode
[ 1035.086102][ T9557] hsr_slave_1: left promiscuous mode
[ 1035.100441][ T9557] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1035.136878][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1035.164009][ T9557] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1035.244958][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1035.299631][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1035.333499][ T9557] hsr_slave_0: left promiscuous mode
[ 1035.391913][ T9557] hsr_slave_1: left promiscuous mode
[ 1035.401037][ T9557] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1035.417697][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1035.435151][ T9557] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1035.465431][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1035.636869][  T904] usb 9-1: new full-speed USB device number 7 using dummy_hcd
[ 1035.721804][ T9557] bridge_slave_0: left allmulticast mode
[ 1035.757283][ T9557] veth1_macvtap: left promiscuous mode
[ 1035.762916][ T9557] veth0_macvtap: left promiscuous mode
[ 1035.779570][ T9557] veth1_vlan: left promiscuous mode
[ 1035.791479][ T9557] veth0_vlan: left promiscuous mode
[ 1035.828816][  T904] usb 9-1: config 0 has no interfaces?
[ 1035.837009][  T904] usb 9-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[ 1035.859736][  T904] usb 9-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1035.875554][ T9557] veth1_macvtap: left promiscuous mode
[ 1035.896316][  T904] usb 9-1: Product: syz
[ 1035.904239][ T9557] veth0_macvtap: left promiscuous mode
[ 1035.909931][  T904] usb 9-1: SerialNumber: syz
[ 1035.927214][ T9557] veth1_vlan: left promiscuous mode
[ 1035.937131][  T904] usb 9-1: config 0 descriptor??
[ 1035.956854][ T9557] veth0_vlan: left promiscuous mode
[ 1036.181873][T13660] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1036.231022][T13660] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1036.329293][ T3072] usb 9-1: USB disconnect, device number 7
[ 1038.217702][T13684] loop0: detected capacity change from 0 to 32768
[ 1038.325261][T13684] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1038.552249][T13684] XFS (loop0): Ending clean mount
[ 1038.560311][T13684] XFS (loop0): Quotacheck needed: Please wait.
[ 1038.662865][T13684] XFS (loop0): Quotacheck: Done.
[ 1039.682450][T12076] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1040.117078][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1040.283482][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1040.663511][T13710] ipt_REJECT: TCP_RESET invalid for non-tcp
[ 1041.998129][T13714] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1043.387195][T13726] loop0: detected capacity change from 0 to 128
[ 1043.416281][T13726] ADFS-fs (loop0): error: can't find an ADFS filesystem on dev loop0.
[ 1044.877535][ T3072] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[ 1045.907831][ T3072] usb 1-1: config 0 has no interfaces?
[ 1045.915160][ T3072] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[ 1045.939827][ T3072] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1045.947956][ T3072] usb 1-1: Product: syz
[ 1045.967351][ T3072] usb 1-1: SerialNumber: syz
[ 1045.991764][ T3072] usb 1-1: config 0 descriptor??
[ 1047.052500][T13729] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1047.093560][T13729] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1047.140506][  T904] usb 1-1: USB disconnect, device number 3
[ 1049.915168][T13755] loop2: detected capacity change from 0 to 64
[ 1051.965867][T13764] loop8: detected capacity change from 0 to 4096
[ 1051.972996][T13764] ntfs3: Unknown parameter '0x0000000000000003%
'
[ 1052.114524][T13766] loop0: detected capacity change from 0 to 1024
[ 1052.126434][T13766] EXT4-fs: Ignoring removed nobh option
[ 1052.183499][T13766] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1053.976480][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1054.384819][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1054.661518][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1055.926371][T13784] evm: overlay not supported
[ 1056.753121][T13788] loop0: detected capacity change from 0 to 512
[ 1056.771289][T13788] EXT4-fs: Ignoring removed bh option
[ 1056.881401][T13788] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1056.953965][T13788] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1057.058340][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1057.338245][T13796] loop2: detected capacity change from 0 to 512
[ 1057.399759][T13796] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1057.430317][T13796] ext4 filesystem being mounted at /70/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1057.460487][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1057.695733][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1058.539555][ T5853] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1058.548828][ T5853] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1058.565690][ T5853] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1058.578868][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1058.586952][ T5853] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1058.595903][ T5853] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1058.611362][ T5853] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1058.977398][T13813] loop8: detected capacity change from 0 to 256
[ 1060.374433][T13819] loop8: detected capacity change from 0 to 512
[ 1060.394831][T13806] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[ 1060.398309][T13819] udf: Unknown parameter 'ÿÉTj+‰ƒÄ¼öãÞ:¶Éæá;‡RÄAª£bªÔ*CžÐ馦ØÙµ~;’óéô¡BÜ(
LV¥~Öad»rKÂÇH²ùlê”%ÿWÆŽ1VLîh'¤�.>ãXß;�¨*ïÊ.#|]™¥´÷†ò^†ßìîf'
[ 1060.567620][T13819] loop8: detected capacity change from 0 to 128
[ 1060.679703][T13819] loop8: detected capacity change from 0 to 256
[ 1060.695953][ T5853] Bluetooth: hci1: command tx timeout
[ 1060.703463][T13819] exfat: Deprecated parameter 'namecase'
[ 1060.745615][T13819] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0xcd8273f8, utbl_chksum : 0xe619d30d)
[ 1062.775666][ T5853] Bluetooth: hci1: command tx timeout
[ 1063.248852][T13841] loop2: detected capacity change from 0 to 512
[ 1063.266054][T13841] EXT4-fs: Ignoring removed bh option
[ 1063.350380][T13841] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1063.369064][T13841] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1063.388937][T13834] loop8: detected capacity change from 0 to 1024
[ 1063.399906][T13834] EXT4-fs (loop8): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1063.448375][T13834] EXT4-fs error (device loop8): ext4_read_block_bitmap_nowait:483: comm syz.8.1549: Invalid block bitmap block 0 in block_group 0
[ 1063.476206][T13834] EXT4-fs (loop8): Remounting filesystem read-only
[ 1063.496932][T13834] Quota error (device loop8): write_blk: dquota write failed
[ 1063.504367][T13834] Quota error (device loop8): qtree_write_dquot: Error -117 occurred while creating quota
[ 1063.532438][T13834] EXT4-fs (loop8): 1 orphan inode deleted
[ 1063.540298][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1063.540327][T13834] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1063.906070][  T904] usb 3-1: new full-speed USB device number 8 using dummy_hcd
[ 1064.635511][ T5898] IPVS: starting estimator thread 0...
[ 1064.647539][  T904] usb 3-1: config 0 has no interfaces?
[ 1064.659367][  T904] usb 3-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88
[ 1064.669294][  T904] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1064.707426][  T904] usb 3-1: Product: syz
[ 1064.716183][  T904] usb 3-1: SerialNumber: syz
[ 1064.730346][  T904] usb 3-1: config 0 descriptor??
[ 1064.747956][T13864] IPVS: using max 20 ests per chain, 48000 per kthread
[ 1064.863243][ T5848] Bluetooth: hci1: command tx timeout
[ 1064.968883][T13851] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1065.025604][T13851] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1065.244212][T12182] usb 3-1: USB disconnect, device number 8
[ 1065.329730][T11904] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1066.522184][T13459] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1066.555057][T13459] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1066.562451][T13459] bridge_slave_0: entered allmulticast mode
[ 1066.606760][T13459] bridge_slave_0: entered promiscuous mode
[ 1066.711216][T13564] chnl_net:caif_netlink_parms(): no params data found
[ 1066.935074][ T5848] Bluetooth: hci1: command tx timeout
[ 1068.026471][ T5853] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1068.053107][ T5853] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1068.061646][ T5853] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1068.070292][ T5853] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1068.078019][ T5853] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1068.085329][ T5853] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1068.649048][T13564] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1068.670802][T13564] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1068.699343][T13564] bridge_slave_0: entered allmulticast mode
[ 1068.725083][T13564] bridge_slave_0: entered promiscuous mode
[ 1068.744567][T13564] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1069.704686][ T5848] Bluetooth: hci1: command tx timeout
[ 1070.004929][T13564] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1070.012236][T13564] bridge_slave_1: entered allmulticast mode
[ 1070.036168][T13564] bridge_slave_1: entered promiscuous mode
[ 1070.216178][ T5848] Bluetooth: hci4: command tx timeout
[ 1070.632933][T13808] chnl_net:caif_netlink_parms(): no params data found
[ 1071.914245][T13564] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1072.309997][ T5848] Bluetooth: hci4: command tx timeout
[ 1072.605273][T13564] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1072.791271][T13944] loop8: detected capacity change from 0 to 1024
[ 1072.845444][T13944] EXT4-fs (loop8): Test dummy encryption mode enabled
[ 1072.891448][T13944] EXT4-fs (loop8): stripe (7) is not aligned with cluster size (16), stripe is disabled
[ 1072.984509][T13944] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1074.488411][ T5848] Bluetooth: hci4: command tx timeout
[ 1075.035527][T13961] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1569'.
[ 1075.111075][T13944] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[ 1075.179349][T13564] team0: Port device team_slave_0 added
[ 1075.187522][T13564] team0: Port device team_slave_1 added
[ 1076.537220][ T5848] Bluetooth: hci4: command tx timeout
[ 1076.911816][T11904] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1077.046946][T13564] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1077.053936][T13564] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1077.136372][T13564] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1077.240800][T13808] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1077.267128][T13808] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1077.287383][T13808] bridge_slave_0: entered allmulticast mode
[ 1077.307815][T13808] bridge_slave_0: entered promiscuous mode
[ 1077.332592][T13894] chnl_net:caif_netlink_parms(): no params data found
[ 1077.358523][T13564] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1077.387077][T13564] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1077.474407][T13564] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1078.496255][T13808] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1078.503407][T13808] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1078.515071][T13808] bridge_slave_1: entered allmulticast mode
[ 1078.522221][T13808] bridge_slave_1: entered promiscuous mode
[ 1078.592003][ T9557] IPVS: stop unused estimator thread 0...
[ 1078.632341][T13988] loop8: detected capacity change from 0 to 4096
[ 1078.919074][T13564] hsr_slave_0: entered promiscuous mode
[ 1079.028329][T13564] hsr_slave_1: entered promiscuous mode
[ 1081.602479][T13808] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1081.666923][T13808] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1082.394677][ T5853] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1082.405457][ T5853] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1082.454346][ T5853] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1082.504272][ T5853] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1082.517829][ T5853] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1082.526383][ T5853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1083.066635][ T9557] bridge_slave_0: left allmulticast mode
[ 1083.072354][ T9557] bridge_slave_0: left promiscuous mode
[ 1083.091280][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1083.357719][ T9557] bridge_slave_1: left allmulticast mode
[ 1083.384077][ T9557] bridge_slave_1: left promiscuous mode
[ 1083.389843][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1084.397195][ T9557] bridge_slave_0: left allmulticast mode
[ 1084.402969][ T9557] bridge_slave_0: left promiscuous mode
[ 1084.459477][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1084.485060][ T9557] bridge_slave_1: left allmulticast mode
[ 1084.497235][ T9557] bridge_slave_1: left promiscuous mode
[ 1084.513255][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1084.596028][ T9557] bridge_slave_0: left allmulticast mode
[ 1084.601791][ T9557] bridge_slave_0: left promiscuous mode
[ 1084.607807][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1084.618981][ T5848] Bluetooth: hci3: command tx timeout
[ 1084.662806][ T9557] bridge_slave_1: left allmulticast mode
[ 1084.860072][ T9557] bridge_slave_1: left promiscuous mode
[ 1085.878423][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1086.054994][ T9557] bridge_slave_0: left allmulticast mode
[ 1086.061314][ T9557] bridge_slave_0: left promiscuous mode
[ 1086.098842][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1086.155557][ T9557] bridge_slave_1: left allmulticast mode
[ 1086.161861][ T9557] bridge_slave_1: left promiscuous mode
[ 1086.194059][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1086.873279][T14051] loop8: detected capacity change from 0 to 40427
[ 1086.902498][ T5848] Bluetooth: hci3: command tx timeout
[ 1087.322636][T14052] orangefs_mount: mount request failed with -4
[ 1087.510474][T14051] F2FS-fs (loop8): heap/no_heap options were deprecated
[ 1087.523223][T14051] F2FS-fs (loop8): invalid crc value
[ 1087.544803][T14051] F2FS-fs (loop8): Found nat_bits in checkpoint
[ 1087.554770][ T9557] bridge_slave_0: left allmulticast mode
[ 1087.560441][ T9557] bridge_slave_0: left promiscuous mode
[ 1087.597769][T14051] F2FS-fs (loop8): Start checkpoint disabled!
[ 1087.614162][T14051] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e6
[ 1087.614664][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1088.451702][T14055] syz.8.1583 (14055): drop_caches: 2
[ 1088.575743][ T5899] hid-generic 0000:0000:0000.000A: unknown main item tag 0x0
[ 1088.684030][ T9559] kworker/u8:30: attempt to access beyond end of device
[ 1088.684030][ T9559] loop8: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[ 1088.686554][ T5899] hid-generic 0000:0000:0000.000A: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1088.719114][T14058] loop2: detected capacity change from 0 to 1024
[ 1088.747102][ T9559] F2FS-fs (loop8): Stopped filesystem due to reason: 3
[ 1088.784715][T14058] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1088.860469][T14058] EXT4-fs: Mount option(s) incompatible with ext2
[ 1088.936192][ T5848] Bluetooth: hci3: command tx timeout
[ 1089.355826][T14060] loop2: detected capacity change from 0 to 512
[ 1089.362902][T14060] ext4: Unknown parameter 'euid<00000000000000000000'
[ 1091.014314][ T5848] Bluetooth: hci3: command tx timeout
[ 1092.964198][T14082] loop8: detected capacity change from 0 to 128
[ 1093.880738][ T9557] bond0 (unregistering): Released all slaves
[ 1094.467256][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1094.744210][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1095.736868][ T9557] bond0 (unregistering): Released all slaves
[ 1095.838199][T14094] loop8: detected capacity change from 0 to 128
[ 1095.864972][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1096.133971][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1096.237649][   T29] audit: type=1800 audit(2000000642.175:169): pid=14096 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.8.1594" name="bus" dev="loop8" ino=126 res=0 errno=0
[ 1096.968888][ T9557] bond0 (unregistering): Released all slaves
[ 1097.010306][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1097.048573][T14100] loop2: detected capacity change from 0 to 1024
[ 1097.058882][    T9] hid-generic 0000:0000:0000.000B: unknown main item tag 0x0
[ 1097.070600][    T9] hid-generic 0000:0000:0000.000B: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1097.093409][T14100] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1097.179669][T14100] EXT4-fs: Mount option(s) incompatible with ext2
[ 1097.213897][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1097.268779][ T9557] bond0 (unregistering): Released all slaves
[ 1097.324803][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1097.397880][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1097.422606][ T9557] bond0 (unregistering): Released all slaves
[ 1098.274797][T13808] team0: Port device team_slave_0 added
[ 1098.314697][T13894] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1098.321861][T13894] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1098.365291][T13894] bridge_slave_0: entered allmulticast mode
[ 1098.396478][T13894] bridge_slave_0: entered promiscuous mode
[ 1098.426510][T13894] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1098.446827][T13894] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1098.474087][T13894] bridge_slave_1: entered allmulticast mode
[ 1098.481256][T13894] bridge_slave_1: entered promiscuous mode
[ 1098.534361][T14086] netlink: 16402 bytes leftover after parsing attributes in process `syz.0.1592'.
[ 1098.596228][T13808] team0: Port device team_slave_1 added
[ 1098.647956][ T9557] hsr_slave_0: left promiscuous mode
[ 1098.726026][ T9557] hsr_slave_1: left promiscuous mode
[ 1098.732135][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1098.795134][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1098.933719][ T9557] hsr_slave_0: left promiscuous mode
[ 1099.052805][ T9557] hsr_slave_1: left promiscuous mode
[ 1099.097566][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1099.932061][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1100.011486][T12020] usb 1-1: new low-speed USB device number 4 using dummy_hcd
[ 1100.105873][ T9557] hsr_slave_0: left promiscuous mode
[ 1100.111880][ T9557] hsr_slave_1: left promiscuous mode
[ 1100.125737][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1100.165603][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1100.200455][T12020] usb 1-1: device descriptor read/64, error -71
[ 1100.833509][T12020] usb 1-1: new low-speed USB device number 5 using dummy_hcd
[ 1101.089948][T12020] usb 1-1: device descriptor read/64, error -71
[ 1101.883275][T12020] usb usb1-port1: attempt power cycle
[ 1104.030017][T14144] loop0: detected capacity change from 0 to 64
[ 1105.251809][ T5899] hid-generic 0000:0000:0000.000C: unknown main item tag 0x0
[ 1105.301675][T14150] loop0: detected capacity change from 0 to 1024
[ 1105.312700][ T5899] hid-generic 0000:0000:0000.000C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1105.333948][T14150] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1105.384002][T14150] EXT4-fs: Mount option(s) incompatible with ext2
[ 1107.572086][T14164] hub 6-0:1.0: USB hub found
[ 1107.577577][T14164] hub 6-0:1.0: 1 port detected
[ 1108.124280][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1108.228512][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1108.552852][T12595] usb 3-1: new low-speed USB device number 9 using dummy_hcd
[ 1108.724727][T12595] usb 3-1: device descriptor read/64, error -71
[ 1108.962902][T12595] usb 3-1: new low-speed USB device number 10 using dummy_hcd
[ 1109.132707][T12595] usb 3-1: device descriptor read/64, error -71
[ 1109.285605][T12595] usb usb3-port1: attempt power cycle
[ 1109.662611][T12595] usb 3-1: new low-speed USB device number 11 using dummy_hcd
[ 1110.252763][T12595] usb 3-1: device descriptor read/8, error -71
[ 1110.534285][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1110.621287][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1110.696251][T12595] usb 3-1: new low-speed USB device number 12 using dummy_hcd
[ 1110.743023][T12595] usb 3-1: device descriptor read/8, error -71
[ 1111.530370][T12595] usb usb3-port1: unable to enumerate USB device
[ 1111.623634][   T46] IPVS: starting estimator thread 0...
[ 1112.012908][T14186] IPVS: using max 19 ests per chain, 45600 per kthread
[ 1113.608476][T14199] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[ 1114.442910][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1115.002900][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1115.030064][T14202] loop2: detected capacity change from 0 to 512
[ 1115.051847][T14202] EXT4-fs: Ignoring removed bh option
[ 1115.383164][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1115.389575][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1115.401718][T14202] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1115.416520][T14202] ext4 filesystem being mounted at /100/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1117.650041][T13894] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1117.812181][ T5853] Bluetooth: hci3: command 0x0405 tx timeout
[ 1118.131040][T13894] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1118.339189][T13808] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1118.368264][T13808] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1118.432172][T13808] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1118.571645][T13894] team0: Port device team_slave_0 added
[ 1118.615836][T13894] team0: Port device team_slave_1 added
[ 1118.757742][T13894] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1118.772157][T13894] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1118.822538][T13894] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1118.902775][T13894] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1118.909762][T13894] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1118.949278][T13894] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1119.094151][T13894] hsr_slave_0: entered promiscuous mode
[ 1119.123566][T13894] hsr_slave_1: entered promiscuous mode
[ 1119.144650][T13894] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1119.162005][T13894] Cannot create hsr debugfs directory
[ 1119.599566][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1119.696142][ T5899] usb 1-1: new low-speed USB device number 7 using dummy_hcd
[ 1120.012673][ T5899] usb 1-1: device descriptor read/64, error -71
[ 1120.683689][ T5899] usb 1-1: new low-speed USB device number 8 using dummy_hcd
[ 1120.731989][ T5898] usb 3-1: new low-speed USB device number 13 using dummy_hcd
[ 1120.787310][ T5848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1120.798108][ T5848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1120.804516][T14026] chnl_net:caif_netlink_parms(): no params data found
[ 1120.808585][ T5848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1120.820168][ T5848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1120.828119][ T5848] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1120.835779][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1120.839752][T14252] loop8: detected capacity change from 0 to 1024
[ 1120.861971][ T5898] usb 3-1: device descriptor read/64, error -71
[ 1120.876679][T14252] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1120.897623][ T5899] usb 1-1: device descriptor read/64, error -71
[ 1120.921845][T14252] EXT4-fs: Mount option(s) incompatible with ext2
[ 1121.035861][ T5899] usb usb1-port1: attempt power cycle
[ 1121.104049][ T5898] usb 3-1: new low-speed USB device number 14 using dummy_hcd
[ 1121.443367][ T5899] usb 1-1: new low-speed USB device number 9 using dummy_hcd
[ 1121.475243][ T5899] usb 1-1: device descriptor read/8, error -71
[ 1121.764211][ T5899] usb 1-1: new low-speed USB device number 10 using dummy_hcd
[ 1121.961743][ T5899] usb 1-1: device descriptor read/8, error -71
[ 1122.104607][T14026] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1122.115111][ T5899] usb usb1-port1: unable to enumerate USB device
[ 1122.166748][T14026] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1122.208132][ T5898] usb 3-1: device descriptor read/64, error -71
[ 1122.322477][ T5898] usb usb3-port1: attempt power cycle
[ 1122.442142][T14026] bridge_slave_0: entered allmulticast mode
[ 1122.451213][T14026] bridge_slave_0: entered promiscuous mode
[ 1123.079872][ T5848] Bluetooth: hci1: command tx timeout
[ 1123.222162][ T5898] usb 3-1: new low-speed USB device number 15 using dummy_hcd
[ 1123.313079][ T5898] usb 3-1: device descriptor read/8, error -71
[ 1123.659536][ T5898] usb 3-1: new low-speed USB device number 16 using dummy_hcd
[ 1123.937815][ T5898] usb 3-1: device descriptor read/8, error -71
[ 1123.956347][   T29] audit: type=1326 audit(2000000669.907:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1124.070644][   T29] audit: type=1326 audit(2000000669.907:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=133 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1124.093165][T14026] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1124.100279][T14026] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1124.109164][ T5898] usb usb3-port1: unable to enumerate USB device
[ 1124.130010][T14026] bridge_slave_1: entered allmulticast mode
[ 1124.173157][T14026] bridge_slave_1: entered promiscuous mode
[ 1124.187326][   T29] audit: type=1326 audit(2000000669.907:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1124.225797][T14290] loop0: detected capacity change from 0 to 256
[ 1124.239173][   T29] audit: type=1326 audit(2000000669.907:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1124.302409][   T29] audit: type=1326 audit(2000000669.907:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1124.339941][   T29] audit: type=1326 audit(2000000669.907:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1125.340858][   T29] audit: type=1326 audit(2000000669.907:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1125.366233][ T5853] Bluetooth: hci1: command tx timeout
[ 1126.045721][   T29] audit: type=1326 audit(2000000669.987:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1126.142333][T14290] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb107716d, utbl_chksum : 0xe619d30d)
[ 1126.191978][   T29] audit: type=1326 audit(2000000669.987:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1126.403836][   T29] audit: type=1326 audit(2000000669.987:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14285 comm="syz.8.1631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f31e258d169 code=0x7ffc0000
[ 1127.413113][ T5853] Bluetooth: hci1: command tx timeout
[ 1127.481281][T14301] loop0: detected capacity change from 0 to 512
[ 1127.556970][T14301] EXT4-fs: Ignoring removed bh option
[ 1127.876219][T14026] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1127.913094][T14301] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1128.032100][T14301] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1128.614723][T14026] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1128.829165][ T5848] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1128.839464][ T5848] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1128.847553][ T5848] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1128.873938][ T5848] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1128.902223][ T5848] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1128.909546][ T5848] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1129.746487][ T5853] Bluetooth: hci1: command tx timeout
[ 1130.136554][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1130.174255][T14026] team0: Port device team_slave_0 added
[ 1130.216130][T14324] loop8: detected capacity change from 0 to 512
[ 1130.232171][T14324] EXT4-fs: Ignoring removed bh option
[ 1130.376171][T14324] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1130.440665][T14324] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1130.466746][T14026] team0: Port device team_slave_1 added
[ 1131.124859][ T5853] Bluetooth: hci5: command tx timeout
[ 1132.833276][T14026] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1132.833301][T14026] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1132.833337][T14026] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1132.835259][T14026] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1132.835280][T14026] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1132.835315][T14026] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1133.171322][ T5853] Bluetooth: hci5: command tx timeout
[ 1133.457826][T14254] chnl_net:caif_netlink_parms(): no params data found
[ 1133.472948][T11904] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1135.340714][ T5853] Bluetooth: hci5: command tx timeout
[ 1135.965313][T14026] hsr_slave_0: entered promiscuous mode
[ 1136.022446][T14026] hsr_slave_1: entered promiscuous mode
[ 1136.037125][T14026] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1136.079795][T14026] Cannot create hsr debugfs directory
[ 1137.139057][T14364] tipc: Started in network mode
[ 1137.186522][T14364] tipc: Node identity ac14140f, cluster identity 4711
[ 1137.217692][T14364] tipc: New replicast peer: 255.255.255.255
[ 1137.227080][T14364] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1137.454956][ T5853] Bluetooth: hci5: command tx timeout
[ 1137.844327][T14373] loop8: detected capacity change from 0 to 256
[ 1137.980337][T14373] FAT-fs (loop8): Directory bread(block 64) failed
[ 1138.001081][T14373] FAT-fs (loop8): Directory bread(block 65) failed
[ 1138.017949][T14373] FAT-fs (loop8): Directory bread(block 66) failed
[ 1138.040298][T14373] FAT-fs (loop8): Directory bread(block 67) failed
[ 1138.078842][T14254] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1138.086105][T14254] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1138.093339][T14254] bridge_slave_0: entered allmulticast mode
[ 1138.100372][T14254] bridge_slave_0: entered promiscuous mode
[ 1138.115924][T14373] FAT-fs (loop8): Directory bread(block 68) failed
[ 1138.125166][T14373] FAT-fs (loop8): Directory bread(block 69) failed
[ 1138.138810][T14373] FAT-fs (loop8): Directory bread(block 70) failed
[ 1138.151858][ T9557] bridge_slave_1: left allmulticast mode
[ 1138.158065][T14373] FAT-fs (loop8): Directory bread(block 71) failed
[ 1138.168507][ T9557] bridge_slave_1: left promiscuous mode
[ 1138.191914][T14373] FAT-fs (loop8): Directory bread(block 72) failed
[ 1138.204987][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1138.256073][T14373] FAT-fs (loop8): Directory bread(block 73) failed
[ 1139.038311][T12182] tipc: Node number set to 2886997007
[ 1139.188433][ T9557] bridge_slave_0: left allmulticast mode
[ 1139.242965][ T9557] bridge_slave_0: left promiscuous mode
[ 1139.471923][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1139.599901][T14380] loop0: detected capacity change from 0 to 40427
[ 1139.644188][T14380] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x1fffff
[ 1139.655196][T14380] F2FS-fs (loop0): heap/no_heap options were deprecated
[ 1139.888815][T14380] F2FS-fs (loop0): invalid crc value
[ 1139.896790][T14380] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1139.948756][T14380] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1139.996742][ T9557] bridge_slave_1: left allmulticast mode
[ 1140.016258][ T9557] bridge_slave_1: left promiscuous mode
[ 1140.033843][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1140.050300][ T9557] bridge_slave_0: left allmulticast mode
[ 1140.058117][ T9557] bridge_slave_0: left promiscuous mode
[ 1140.064148][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1140.157500][ T9557] bridge_slave_1: left allmulticast mode
[ 1140.247642][ T9557] bridge_slave_1: left promiscuous mode
[ 1140.291824][ T9557] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1140.355583][ T9557] bridge_slave_0: left allmulticast mode
[ 1140.401169][ T9557] bridge_slave_0: left promiscuous mode
[ 1140.406929][ T9557] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1140.595065][T12076] F2FS-fs (loop0): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x57a/0x1f20
[ 1140.675629][T12076] F2FS-fs (loop0): invalid blkaddr: 1028, type: 10, run fsck to fix.
[ 1141.230979][T14431] loop0: detected capacity change from 0 to 512
[ 1141.331435][T14433] openvswitch: netlink: nsh attribute has 65532 unknown bytes.
[ 1141.340150][T14433] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1141.821611][T14431] EXT4-fs: Ignoring removed bh option
[ 1141.931715][T14431] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1141.980078][T14431] ext4 filesystem being mounted at /113/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1143.336086][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1143.762085][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1144.110404][ T9557] bond0 (unregistering): Released all slaves
[ 1144.171433][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1144.202036][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1144.233268][ T5848] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1144.246280][ T9557] bond0 (unregistering): Released all slaves
[ 1144.247372][ T5848] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1144.264695][ T5848] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1144.280188][ T5848] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1144.350372][ T5848] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1144.354385][ T9557] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1144.367059][ T5848] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1144.474924][ T9557] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1144.509460][ T9557] bond0 (unregistering): Released all slaves
[ 1144.598247][T14254] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1144.627356][T14254] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1144.699723][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1144.707443][T14254] bridge_slave_1: entered allmulticast mode
[ 1144.761464][T14254] bridge_slave_1: entered promiscuous mode
[ 1145.250376][ T9557] hsr_slave_0: left promiscuous mode
[ 1145.322806][ T9557] hsr_slave_1: left promiscuous mode
[ 1145.349054][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1145.446727][T14461] loop2: detected capacity change from 0 to 512
[ 1145.500658][T14461] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1145.566285][T14458] loop0: detected capacity change from 0 to 32768
[ 1145.616213][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1145.643865][T14464] tls_set_device_offload_rx: netdev not found
[ 1145.726402][T14458] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1145.867936][T14458] (syz.0.1657,14458,0):ocfs2_inode_is_valid_to_delete:886 ERROR: Skipping delete of system file 72
[ 1145.939688][T14458] ocfs2: Unmounting device (7,0) on (node local)
[ 1146.071700][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1146.158271][T14461] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1146.221596][T14461] ext4 filesystem being mounted at /110/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1146.385411][ T9557] hsr_slave_0: left promiscuous mode
[ 1146.452556][ T5848] Bluetooth: hci4: command tx timeout
[ 1146.593745][ T9557] hsr_slave_1: left promiscuous mode
[ 1146.685061][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1146.784659][ T9557] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1147.135287][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1148.560525][ T5848] Bluetooth: hci4: command tx timeout
[ 1148.586087][T14482] loop2: detected capacity change from 0 to 1024
[ 1148.593409][T14482] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1148.601138][T14482] EXT4-fs: Mount option(s) incompatible with ext2
[ 1148.771185][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1149.061885][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1149.145753][T14487] iommufd_mock iommufd_mock0: Adding to iommu group 0
[ 1150.610622][ T5848] Bluetooth: hci4: command tx timeout
[ 1150.780872][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1150.856640][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1151.272210][ T9557] team0 (unregistering): Port device team_slave_1 removed
[ 1151.309218][ T9557] team0 (unregistering): Port device team_slave_0 removed
[ 1151.505558][T14254] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1151.627988][T14254] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1151.697934][T14312] chnl_net:caif_netlink_parms(): no params data found
[ 1152.440774][T14513] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1668'.
[ 1152.480704][T14513] loop0: detected capacity change from 0 to 16
[ 1152.533296][T14513] erofs (device loop0): mounted with root inode @ nid 36.
[ 1152.692192][ T5848] Bluetooth: hci4: command tx timeout
[ 1153.469012][T14254] team0: Port device team_slave_0 added
[ 1155.219348][T14254] team0: Port device team_slave_1 added
[ 1156.464785][T14312] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1156.560601][T14312] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1156.630604][T14312] bridge_slave_0: entered allmulticast mode
[ 1156.818535][T14312] bridge_slave_0: entered promiscuous mode
[ 1156.826532][T14312] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1156.833914][T14312] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1156.841182][T14312] bridge_slave_1: entered allmulticast mode
[ 1156.916161][T14312] bridge_slave_1: entered promiscuous mode
[ 1157.922944][T14254] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1157.963810][T14254] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1159.113950][T14254] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1159.412532][T14254] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1159.445267][T14254] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1160.092326][T14254] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1161.224870][T14312] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1161.241304][T14452] chnl_net:caif_netlink_parms(): no params data found
[ 1161.333440][T14312] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1162.073309][T14254] hsr_slave_0: entered promiscuous mode
[ 1162.106903][T14254] hsr_slave_1: entered promiscuous mode
[ 1162.115972][T14563] loop0: detected capacity change from 0 to 1024
[ 1162.160422][T14563] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1162.196744][T14563] EXT4-fs: Mount option(s) incompatible with ext2
[ 1162.413296][T14312] team0: Port device team_slave_0 added
[ 1162.662480][T14567] tls_set_device_offload_rx: netdev not found
[ 1162.796006][T14571] program syz.0.1684 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1163.470994][T14571] loop0: detected capacity change from 0 to 512
[ 1163.516024][T14571] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 1163.523195][T14571] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 1163.533153][T14571] EXT4-fs (loop0): SIPHASH is not a valid default hash value
[ 1163.551417][T14312] team0: Port device team_slave_1 added
[ 1163.873362][T14312] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1163.890408][T14312] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1163.918116][T14312] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1163.979725][T14312] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1163.986762][T14312] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1164.020443][T14312] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1164.080572][T14452] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1164.088852][T14452] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1164.096142][T14452] bridge_slave_0: entered allmulticast mode
[ 1164.110746][T14452] bridge_slave_0: entered promiscuous mode
[ 1164.175596][T14452] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1164.194182][T14452] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1164.220434][T14452] bridge_slave_1: entered allmulticast mode
[ 1164.227549][T14452] bridge_slave_1: entered promiscuous mode
[ 1164.403839][T14452] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1164.448072][T14312] hsr_slave_0: entered promiscuous mode
[ 1165.112447][T14583] loop2: detected capacity change from 0 to 8
[ 1165.421865][T14312] hsr_slave_1: entered promiscuous mode
[ 1165.439632][T14312] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1165.484138][T14312] Cannot create hsr debugfs directory
[ 1166.254148][T14575] SQUASHFS error: Failed to read block 0x4e8: -5
[ 1166.286182][T14575] SQUASHFS error: Failed to read block 0x4de: -5
[ 1167.024284][T14575] SQUASHFS error: Failed to read block 0x4de: -5
[ 1167.033559][T14452] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1167.084759][T14575] SQUASHFS error: Failed to read block 0x4de: -5
[ 1167.169917][   T29] kauditd_printk_skb: 63 callbacks suppressed
[ 1167.169937][   T29] audit: type=1800 audit(2000000713.119:243): pid=14575 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1685" name="file1" dev="loop2" ino=5 res=0 errno=0
[ 1167.342018][T14619] loop0: detected capacity change from 0 to 512
[ 1167.460024][T14619] EXT4-fs (loop0): blocks per group (8192) and clusters per group (2304) inconsistent
[ 1167.623521][ T5853] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1167.635242][ T5853] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1167.645385][ T5853] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1167.771445][ T5853] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1167.779120][ T5853] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1167.787010][ T5853] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1167.837712][T14452] team0: Port device team_slave_0 added
[ 1168.021349][T14627] ip6t_REJECT: ECHOREPLY is not supported
[ 1168.706347][T14452] team0: Port device team_slave_1 added
[ 1169.100546][T14452] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1169.577105][T14639] PKCS7: Unknown OID: [4] 0.38.11253.6554(bad)
[ 1169.583947][T14639] PKCS7: Only support pkcs7_signedData type
[ 1170.056938][ T5848] Bluetooth: hci0: command tx timeout
[ 1170.079510][T14452] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1170.474257][T14640] loop0: detected capacity change from 0 to 512
[ 1170.521963][T14452] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1170.667773][T14452] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1170.737377][T14452] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1170.948799][T14452] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1171.151608][T14640] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[ 1171.164182][T14640] ext4 filesystem being mounted at /125/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1171.457808][T14643] ucma_write: process 473 (syz.2.1693) changed security contexts after opening file descriptor, this is not allowed.
[ 1171.987633][T12076] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[ 1171.992534][T14426] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1172.139424][T14650] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1695'.
[ 1172.200245][ T5848] Bluetooth: hci0: command tx timeout
[ 1172.622069][T14653] tls_set_device_offload_rx: netdev not found
[ 1173.143776][T14426] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1173.227560][T14655] loop2: detected capacity change from 0 to 4096
[ 1173.343272][T14452] hsr_slave_0: entered promiscuous mode
[ 1173.357731][T14452] hsr_slave_1: entered promiscuous mode
[ 1173.366386][T14452] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1173.382301][T14452] Cannot create hsr debugfs directory
[ 1173.478427][T14426] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1174.210196][ T5853] Bluetooth: hci0: command tx timeout
[ 1174.976761][T14663] loop2: detected capacity change from 0 to 512
[ 1175.256000][T14426] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1175.336596][T14666] loop0: detected capacity change from 0 to 1024
[ 1176.297050][ T5848] Bluetooth: hci0: command tx timeout
[ 1176.804967][T14254] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1176.841688][T14254] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1176.852966][T14254] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1176.871287][T14254] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1176.965477][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1176.972043][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1177.132493][T14623] chnl_net:caif_netlink_parms(): no params data found
[ 1177.287851][T14254] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1179.084733][T14312] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1179.138126][T14688] loop2: detected capacity change from 0 to 512
[ 1179.152002][T14312] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1179.200671][T14426] bridge_slave_1: left allmulticast mode
[ 1179.206372][T14426] bridge_slave_1: left promiscuous mode
[ 1179.223749][T14688] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1179.251673][T14426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1179.266462][T14426] bridge_slave_0: left allmulticast mode
[ 1179.272827][T14688] ext4 filesystem being mounted at /129/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1179.278710][T14426] bridge_slave_0: left promiscuous mode
[ 1179.289306][T14426] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1179.300240][T14426] bridge_slave_1: left allmulticast mode
[ 1179.306046][T14426] bridge_slave_1: left promiscuous mode
[ 1179.336344][T14426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1179.356766][T14426] bridge_slave_0: left allmulticast mode
[ 1179.366696][T14426] bridge_slave_0: left promiscuous mode
[ 1179.383346][T14426] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1180.340782][T14697] tls_set_device_offload_rx: netdev not found
[ 1181.621629][ T5853] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1181.632752][ T5853] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1181.641340][ T5853] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1181.650448][ T5853] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1181.659683][ T5853] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1181.667308][ T5853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1181.784630][T14426] batman_adv: batadv0: Removing interface: vxlan0
[ 1182.940010][T14426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1182.980055][T14426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1182.999981][T14426] bond0 (unregistering): Released all slaves
[ 1183.015082][T14426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1183.027351][T14426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1183.055259][T14426] bond0 (unregistering): Released all slaves
[ 1183.120542][T14254] 8021q: adding VLAN 0 to HW filter on device team0
[ 1183.140843][T14312] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1183.848555][ T5853] Bluetooth: hci3: command tx timeout
[ 1183.861479][T14692] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 128: padding at end of block bitmap is not set
[ 1184.047280][T14623] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1184.069915][T14623] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1184.077110][T14623] bridge_slave_0: entered allmulticast mode
[ 1184.109365][T14623] bridge_slave_0: entered promiscuous mode
[ 1184.150310][T14623] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1184.165909][T14623] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1184.174733][T14623] bridge_slave_1: entered allmulticast mode
[ 1184.194951][T14623] bridge_slave_1: entered promiscuous mode
[ 1184.256057][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1184.294042][T14312] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1184.539787][T14426] tipc: Disabling bearer <udp:syz2>
[ 1184.665013][T14426] tipc: Left network mode
[ 1184.989584][T14716] loop2: detected capacity change from 0 to 256
[ 1185.027592][T14716] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1185.046549][T14623] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1185.756957][T14623] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1185.819999][T14452] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1185.918444][ T5853] Bluetooth: hci3: command tx timeout
[ 1185.926939][T14452] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1187.010273][T14728] do_dccp_setsockopt: sockopt(PACKET_SIZE) is deprecated: fix your app
[ 1187.178865][T14728] loop2: detected capacity change from 0 to 1764
[ 1187.479400][T14725] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1187.524766][T14728] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1187.586814][T14452] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1187.689094][T14623] team0: Port device team_slave_0 added
[ 1187.719350][T14623] team0: Port device team_slave_1 added
[ 1187.931436][T14623] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1187.945344][T14623] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1187.971876][ T5853] Bluetooth: hci3: command tx timeout
[ 1187.972355][T14623] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1187.997380][T14452] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1188.109802][T14623] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1188.116792][T14623] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1188.161740][T14623] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1188.197678][T14426] hsr_slave_0: left promiscuous mode
[ 1188.227990][T14426] hsr_slave_1: left promiscuous mode
[ 1188.252173][T14426] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1188.285689][T14426] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1188.458335][ T5853] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci2/hci2:201'
[ 1188.468237][ T5853] CPU: 1 UID: 0 PID: 5853 Comm: kworker/u9:7 Not tainted 6.14.0-rc5-syzkaller #0
[ 1188.468266][ T5853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1188.468283][ T5853] Workqueue: hci2 hci_rx_work
[ 1188.468313][ T5853] Call Trace:
[ 1188.468322][ T5853]  <TASK>
[ 1188.468331][ T5853]  dump_stack_lvl+0x241/0x360
[ 1188.468365][ T5853]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1188.468392][ T5853]  ? __pfx__printk+0x10/0x10
[ 1188.468418][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.468461][ T5853]  ? __kmalloc_cache_noprof+0x243/0x390
[ 1188.468507][ T5853]  ? sysfs_create_dir_ns+0x28a/0x3a0
[ 1188.468544][ T5853]  sysfs_create_dir_ns+0x2ce/0x3a0
[ 1188.468578][ T5853]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1188.468607][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.468658][ T5853]  kobject_add_internal+0x435/0x8d0
[ 1188.468707][ T5853]  kobject_add+0x152/0x220
[ 1188.468744][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.468782][ T5853]  ? preempt_schedule_thunk+0x1a/0x30
[ 1188.468819][ T5853]  ? device_add+0x3e7/0xbf0
[ 1188.468857][ T5853]  ? __pfx_kobject_add+0x10/0x10
[ 1188.468893][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.468934][ T5853]  ? _raw_spin_unlock+0x3e/0x50
[ 1188.468962][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.469004][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.469043][ T5853]  ? get_device_parent+0x165/0x410
[ 1188.469084][ T5853]  device_add+0x4e5/0xbf0
[ 1188.469142][ T5853]  hci_conn_add_sysfs+0xe8/0x200
[ 1188.469186][ T5853]  le_conn_complete_evt+0xd1a/0x1360
[ 1188.469218][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.469270][ T5853]  ? __pfx_le_conn_complete_evt+0x10/0x10
[ 1188.469302][ T5853]  ? __mutex_unlock_slowpath+0x227/0x800
[ 1188.469338][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.469385][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.469422][ T5853]  ? skb_pull_data+0x112/0x230
[ 1188.469458][ T5853]  hci_le_conn_complete_evt+0x18c/0x420
[ 1188.469503][ T5853]  hci_event_packet+0xa56/0x1540
[ 1188.469533][ T5853]  ? __pfx_hci_le_meta_evt+0x10/0x10
[ 1188.469570][ T5853]  ? __pfx_hci_event_packet+0x10/0x10
[ 1188.469600][ T5853]  ? mark_lock+0x9a/0x360
[ 1188.469626][ T5853]  ? kcov_remote_start+0x2e/0x7d0
[ 1188.469665][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.469703][ T5853]  ? hci_send_to_monitor+0xdc/0x530
[ 1188.469741][ T5853]  hci_rx_work+0x3f3/0xdb0
[ 1188.469778][ T5853]  ? process_scheduled_works+0x9c6/0x18e0
[ 1188.469810][ T5853]  process_scheduled_works+0xac0/0x18e0
[ 1188.469874][ T5853]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1188.469917][ T5853]  ? assign_work+0x364/0x3d0
[ 1188.469954][ T5853]  worker_thread+0x870/0xd30
[ 1188.470004][ T5853]  ? __kthread_parkme+0x169/0x1d0
[ 1188.470043][ T5853]  ? __pfx_worker_thread+0x10/0x10
[ 1188.470077][ T5853]  kthread+0x7ab/0x920
[ 1188.470113][ T5853]  ? __pfx_kthread+0x10/0x10
[ 1188.470153][ T5853]  ? __pfx_worker_thread+0x10/0x10
[ 1188.470187][ T5853]  ? __pfx_kthread+0x10/0x10
[ 1188.470224][ T5853]  ? __pfx_kthread+0x10/0x10
[ 1188.470265][ T5853]  ? __pfx_kthread+0x10/0x10
[ 1188.470302][ T5853]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1188.470330][ T5853]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1188.470368][ T5853]  ? lockdep_hardirqs_on+0x99/0x150
[ 1188.470401][ T5853]  ? __pfx_kthread+0x10/0x10
[ 1188.470441][ T5853]  ret_from_fork+0x4d/0x80
[ 1188.470474][ T5853]  ? __pfx_kthread+0x10/0x10
[ 1188.470518][ T5853]  ret_from_fork_asm+0x1a/0x30
[ 1188.470566][ T5853]  </TASK>
[ 1188.470760][ T5853] kobject: kobject_add_internal failed for hci2:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1188.501108][T14426] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1188.501479][ T5853] Bluetooth: hci2: failed to register connection device
[ 1189.163482][T14426] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1189.306215][T14426] hsr_slave_0: left promiscuous mode
[ 1189.331675][T14426] hsr_slave_1: left promiscuous mode
[ 1189.357841][T14426] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1189.451075][T14426] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1189.608087][T14426] veth1_macvtap: left promiscuous mode
[ 1189.648400][T14426] veth0_macvtap: left promiscuous mode
[ 1189.654036][T14426] veth1_vlan: left promiscuous mode
[ 1189.690840][T14426] veth0_vlan: left promiscuous mode
[ 1189.937797][ T5848] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1189.947284][ T5848] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1189.955318][ T5848] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1189.963917][ T5848] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1189.971721][ T5848] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1189.980747][ T5848] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1190.048190][ T5848] Bluetooth: hci3: command tx timeout
[ 1190.795362][T14746] overlayfs: failed to decode file handle (len=6, type=248, flags=0, err=-61)
[ 1192.165828][ T5848] Bluetooth: hci1: command tx timeout
[ 1193.647516][T14426] team0 (unregistering): Port device team_slave_1 removed
[ 1194.086236][T14426] team0 (unregistering): Port device team_slave_0 removed
[ 1194.477936][ T5848] Bluetooth: hci1: command tx timeout
[ 1195.953297][T14769] block device autoloading is deprecated and will be removed.
[ 1196.537802][ T5848] Bluetooth: hci1: command tx timeout
[ 1196.946137][T14776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1722'.
[ 1198.618602][ T5848] Bluetooth: hci1: command tx timeout
[ 1199.468736][T14426] team0 (unregistering): Port device team_slave_1 removed
[ 1199.487177][T14789] Bluetooth: MGMT ver 1.23
[ 1199.594111][T14426] team0 (unregistering): Port device team_slave_0 removed
[ 1201.630771][T14804] loop2: detected capacity change from 0 to 128
[ 1201.696187][ T5848] Bluetooth: hci0: Opcode 0x0401 failed: -110
[ 1201.704761][ T5848] Bluetooth: hci0: command 0x0401 tx timeout
[ 1202.693745][T14811] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1731'.
[ 1203.780369][ T5848] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1203.808112][ T5848] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1203.816649][ T5848] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1203.848363][ T5848] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1203.858637][ T5848] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[ 1203.866674][ T5848] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1203.877153][T14824] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1735'.
[ 1204.038856][T14623] hsr_slave_0: entered promiscuous mode
[ 1204.069966][T14623] hsr_slave_1: entered promiscuous mode
[ 1204.089862][T14623] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1204.125831][T14623] Cannot create hsr debugfs directory
[ 1204.163872][T14702] chnl_net:caif_netlink_parms(): no params data found
[ 1205.881781][T14702] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1205.935932][T14702] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1205.967343][T14702] bridge_slave_0: entered allmulticast mode
[ 1205.979277][ T5853] Bluetooth: hci4: command tx timeout
[ 1205.998432][T14702] bridge_slave_0: entered promiscuous mode
[ 1206.281874][T14702] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1206.289573][T14702] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1206.296743][T14702] bridge_slave_1: entered allmulticast mode
[ 1206.339354][T14702] bridge_slave_1: entered promiscuous mode
[ 1206.486618][T14702] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1206.629377][T14702] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1206.765010][T14702] team0: Port device team_slave_0 added
[ 1206.834887][T14702] team0: Port device team_slave_1 added
[ 1207.514415][T14426] IPVS: stop unused estimator thread 0...
[ 1207.780430][T14702] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1207.795567][T14702] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1207.960528][T14851] loop2: detected capacity change from 0 to 1024
[ 1207.971060][T14851] EXT4-fs: Ignoring removed orlov option
[ 1207.976793][T14851] EXT4-fs: Ignoring removed bh option
[ 1207.982522][T14851] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1208.068954][ T5853] Bluetooth: hci4: command tx timeout
[ 1208.224175][T14851] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1208.586193][T14702] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1208.758940][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1208.777840][T14739] chnl_net:caif_netlink_parms(): no params data found
[ 1208.906289][T14702] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1208.972226][T14860] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1742'.
[ 1209.098323][T14861] loop2: detected capacity change from 0 to 8
[ 1209.108439][T14861] SQUASHFS error: zlib decompression failed, data probably corrupt
[ 1209.116450][T14861] SQUASHFS error: Failed to read block 0x9b: -5
[ 1209.123296][T14861] SQUASHFS error: Unable to read metadata cache entry [99]
[ 1209.130916][T14861] SQUASHFS error: Unable to read inode 0x127
[ 1209.747400][T14702] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1209.777655][T14702] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1210.161792][ T5848] Bluetooth: hci4: command tx timeout
[ 1212.089302][T14883] loop2: detected capacity change from 0 to 128
[ 1212.137310][T14739] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1212.149185][T14739] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1212.171085][T14739] bridge_slave_0: entered allmulticast mode
[ 1212.207490][ T5848] Bluetooth: hci4: command tx timeout
[ 1212.225825][T14739] bridge_slave_0: entered promiscuous mode
[ 1212.350184][T14883] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1212.376380][T14883] ext4 filesystem being mounted at /147/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1212.460404][T14822] chnl_net:caif_netlink_parms(): no params data found
[ 1212.756924][T14890] syz.2.1747 (pid 14890) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[ 1213.249362][T14890] fscrypt (loop2, inode 12): Missing crypto API support for Adiantum (API name: "adiantum(xchacha12,aes)")
[ 1213.503732][T12034] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1213.611426][T14739] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1213.637010][T14739] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1213.644685][T14739] bridge_slave_1: entered allmulticast mode
[ 1213.651869][T14739] bridge_slave_1: entered promiscuous mode
[ 1213.912327][T14702] hsr_slave_0: entered promiscuous mode
[ 1213.918813][T14702] hsr_slave_1: entered promiscuous mode
[ 1213.926464][T14702] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1213.953954][T14702] Cannot create hsr debugfs directory
[ 1214.744861][T14904] sg_write: data in/out 1048540/17 bytes for SCSI command 0x0-- guessing data in;
[ 1214.744861][T14904]    program syz.0.1749 not setting count and/or reply_len properly
[ 1214.859665][T14904] fuse: Unknown parameter '0x0000000000000007'
[ 1214.949211][T14739] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1215.020447][T14739] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1215.133435][T14822] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1215.148380][T14822] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1215.166120][T14822] bridge_slave_0: entered allmulticast mode
[ 1215.179860][T14822] bridge_slave_0: entered promiscuous mode
[ 1215.224717][T14822] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1215.242612][T14822] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1215.254171][T14822] bridge_slave_1: entered allmulticast mode
[ 1215.261735][T14822] bridge_slave_1: entered promiscuous mode
[ 1215.377640][T12020] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[ 1215.552732][T12020] usb 3-1: no configurations
[ 1215.597597][T12020] usb 3-1: can't read configurations, error -22
[ 1215.807231][T12020] usb 3-1: new full-speed USB device number 18 using dummy_hcd
[ 1216.054680][T12020] usb 3-1: no configurations
[ 1216.059473][T12020] usb 3-1: can't read configurations, error -22
[ 1216.073307][T12020] usb usb3-port1: attempt power cycle
[ 1216.139989][T14822] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1216.178368][T14822] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1216.193465][T14623] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1216.254576][T14739] team0: Port device team_slave_0 added
[ 1216.371804][T14623] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1216.401803][T14739] team0: Port device team_slave_1 added
[ 1216.427811][T12020] usb 3-1: new full-speed USB device number 19 using dummy_hcd
[ 1216.481642][T12020] usb 3-1: no configurations
[ 1216.486347][T12020] usb 3-1: can't read configurations, error -22
[ 1216.519381][T14914] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1752'.
[ 1216.534829][T14623] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1216.707119][T12020] usb 3-1: new full-speed USB device number 20 using dummy_hcd
[ 1216.794053][T12020] usb 3-1: no configurations
[ 1216.835519][T12020] usb 3-1: can't read configurations, error -22
[ 1216.921833][T12020] usb usb3-port1: unable to enumerate USB device
[ 1217.051697][T14822] team0: Port device team_slave_0 added
[ 1217.074604][T14623] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1217.096749][T14739] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1217.113958][T14739] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1217.152883][T14739] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1217.184888][T14739] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1217.202464][T14739] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1217.242647][T14739] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1217.300667][T14822] team0: Port device team_slave_1 added
[ 1217.544486][T14822] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1217.552562][T14822] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1217.583840][T14822] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1217.623063][T14739] hsr_slave_0: entered promiscuous mode
[ 1217.635117][T14739] hsr_slave_1: entered promiscuous mode
[ 1217.641706][T14739] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1217.649532][T14739] Cannot create hsr debugfs directory
[ 1217.706425][T14822] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1217.714932][T14822] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1217.743833][T14822] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1218.851685][T14920] bpq0: entered allmulticast mode
[ 1218.919967][T14822] hsr_slave_0: entered promiscuous mode
[ 1218.928990][T14822] hsr_slave_1: entered promiscuous mode
[ 1218.950300][T14822] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1218.984221][T14822] Cannot create hsr debugfs directory
[ 1219.207281][T14426] bridge_slave_1: left allmulticast mode
[ 1219.222092][T14426] bridge_slave_1: left promiscuous mode
[ 1219.236749][T14426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1219.265948][T14426] bridge_slave_0: left allmulticast mode
[ 1219.275418][T14426] bridge_slave_0: left promiscuous mode
[ 1219.293285][T14426] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1219.317087][T14426] bridge_slave_1: left allmulticast mode
[ 1219.326613][T14426] bridge_slave_1: left promiscuous mode
[ 1219.337049][T14426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1219.362540][T14426] bridge_slave_0: left allmulticast mode
[ 1219.379426][T14426] bridge_slave_0: left promiscuous mode
[ 1219.397146][T14426] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1219.416088][T14426] bridge_slave_1: left allmulticast mode
[ 1219.428078][T14426] bridge_slave_1: left promiscuous mode
[ 1219.436948][T14426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1219.469981][T14426] bridge_slave_0: left allmulticast mode
[ 1219.496120][T14426] bridge_slave_0: left promiscuous mode
[ 1219.502127][T14426] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1219.588007][ T3072] hid-generic 0000:0000:0000.000D: unknown main item tag 0x0
[ 1219.618004][ T3072] hid-generic 0000:0000:0000.000D: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1219.637730][T14925] loop0: detected capacity change from 0 to 1024
[ 1219.644847][T14925] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1219.715980][T14925] EXT4-fs: Mount option(s) incompatible with ext2
[ 1220.418704][T14931] loop0: detected capacity change from 0 to 64
[ 1221.813177][T14933] loop2: detected capacity change from 0 to 512
[ 1221.913002][T14933] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1221.922537][T14933] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1221.933395][T14933] Quota error (device loop2): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[ 1221.945103][T14933] EXT4-fs warning (device loop2): ext4_enable_quotas:7145: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1221.976121][T14933] EXT4-fs (loop2): Cannot turn on quotas: error -117
[ 1222.002555][T14933] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.1757: bg 0: block 40: padding at end of block bitmap is not set
[ 1222.020307][T14933] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6550: Corrupt filesystem
[ 1222.036412][T14933] EXT4-fs (loop2): 1 truncate cleaned up
[ 1222.047245][T14933] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1222.108065][T14933] EXT4-fs error (device loop2): ext4_get_link:106: inode #16: comm syz.2.1757: bad symlink.
[ 1222.418641][T14426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1222.578339][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1222.590100][T14426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1222.628480][T14426] bond0 (unregistering): Released all slaves
[ 1222.669179][T14426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1222.690005][T14426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1222.718639][T14426] bond0 (unregistering): Released all slaves
[ 1224.827079][T14426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1224.879796][T14426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1224.938671][T14426] bond0 (unregistering): Released all slaves
[ 1226.143004][T14985] loop0: detected capacity change from 0 to 256
[ 1226.307716][   T29] audit: type=1800 audit(2000000772.263:244): pid=14985 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1762" name="bus" dev="loop0" ino=136 res=0 errno=0
[ 1226.491420][T14426] hsr_slave_0: left promiscuous mode
[ 1226.512119][ T5853] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1226.522334][ T5853] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1226.530413][ T5853] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1226.541043][ T5853] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1226.549219][ T5853] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1226.556706][ T5853] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1226.571919][T14426] hsr_slave_1: left promiscuous mode
[ 1226.597222][T14426] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1226.648525][T14426] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1226.695564][T14426] hsr_slave_0: left promiscuous mode
[ 1226.701548][T14426] hsr_slave_1: left promiscuous mode
[ 1226.727810][T14426] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1226.774129][T14426] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1226.793354][T14426] hsr_slave_0: left promiscuous mode
[ 1226.803888][T14426] hsr_slave_1: left promiscuous mode
[ 1226.811851][T14426] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1226.832559][T14426] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1227.200609][T14426] team0 (unregistering): Port device team_slave_1 removed
[ 1227.239388][T14426] team0 (unregistering): Port device team_slave_0 removed
[ 1228.277594][T14426] team0 (unregistering): Port device team_slave_1 removed
[ 1228.341512][T14426] team0 (unregistering): Port device team_slave_0 removed
[ 1228.652335][T15008] fuse: Invalid rootmode
[ 1228.702194][ T5853] Bluetooth: hci5: command tx timeout
[ 1229.870725][T14426] team0 (unregistering): Port device team_slave_1 removed
[ 1230.052274][T14426] team0 (unregistering): Port device team_slave_0 removed
[ 1230.775894][ T5853] Bluetooth: hci5: command tx timeout
[ 1232.258482][T15026] loop0: detected capacity change from 0 to 8
[ 1232.325412][T15026] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 1232.335160][T15026] SQUASHFS error: Failed to read block 0x82: -5
[ 1232.342108][T15026] SQUASHFS error: Unable to read metadata cache entry [80]
[ 1232.349595][T15026] SQUASHFS error: Unable to read inode 0x11f
[ 1232.470676][T15028] loop2: detected capacity change from 0 to 512
[ 1232.506428][T15028] EXT4-fs: Ignoring removed nobh option
[ 1232.519051][T15028] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1232.638059][T15028] EXT4-fs (loop2): 1 truncate cleaned up
[ 1232.659936][T15028] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1232.787273][T14702] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1232.837606][T14702] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1232.846118][ T5853] Bluetooth: hci5: command tx timeout
[ 1235.165730][ T5853] Bluetooth: hci5: command tx timeout
[ 1235.179204][T14702] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1235.596653][T12034] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1235.607398][T14702] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1236.579816][T14702] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1236.857391][T14702] 8021q: adding VLAN 0 to HW filter on device team0
[ 1237.011804][T14996] chnl_net:caif_netlink_parms(): no params data found
[ 1237.042709][ T6385] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1237.049874][ T6385] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1237.120127][ T1085] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1237.127293][ T1085] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1237.573533][T14702] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1237.593562][T14702] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1237.616628][T14996] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1237.623728][T14996] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1237.632023][T14996] bridge_slave_0: entered allmulticast mode
[ 1237.651085][T14996] bridge_slave_0: entered promiscuous mode
[ 1237.909856][T14996] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1237.935471][T14996] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1237.963938][T14996] bridge_slave_1: entered allmulticast mode
[ 1237.987851][T14996] bridge_slave_1: entered promiscuous mode
[ 1238.110671][T14996] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1238.168200][T14996] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1238.210655][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[ 1238.219013][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[ 1238.401523][T14996] team0: Port device team_slave_0 added
[ 1238.578874][T14996] team0: Port device team_slave_1 added
[ 1239.064695][T14996] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1239.198869][T14996] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1239.224979][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1239.601833][T14996] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1239.654291][T14702] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1239.687266][T14822] netdevsim netdevsim3 netdevsim0: renamed from eth0
[ 1239.728372][T14822] netdevsim netdevsim3 netdevsim1: renamed from eth1
[ 1239.752483][T15102] loop2: detected capacity change from 0 to 1024
[ 1239.761520][    T9] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[ 1239.778181][T15102] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1239.778355][T14822] netdevsim netdevsim3 netdevsim2: renamed from eth2
[ 1239.791747][T15102] EXT4-fs: Mount option(s) incompatible with ext2
[ 1239.806417][    T9] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1239.843808][T14996] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1239.875415][T14996] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1239.965424][T14996] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1240.051477][T14822] netdevsim netdevsim3 netdevsim3: renamed from eth3
[ 1240.132623][T15111] gfs2: gfs2 mount does not exist
[ 1240.647641][T15114] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1777'.
[ 1241.146398][T14996] hsr_slave_0: entered promiscuous mode
[ 1241.165745][T14996] hsr_slave_1: entered promiscuous mode
[ 1241.175062][T14739] netdevsim netdevsim6 netdevsim0: renamed from eth0
[ 1241.197540][T14739] netdevsim netdevsim6 netdevsim1: renamed from eth1
[ 1241.301679][T14739] netdevsim netdevsim6 netdevsim2: renamed from eth2
[ 1241.365689][T14739] netdevsim netdevsim6 netdevsim3: renamed from eth3
[ 1241.783440][T14426] bridge_slave_1: left allmulticast mode
[ 1241.795439][T14426] bridge_slave_1: left promiscuous mode
[ 1241.801421][T14426] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1241.850879][T14426] bridge_slave_0: left allmulticast mode
[ 1241.863336][T14426] bridge_slave_0: left promiscuous mode
[ 1241.884943][T14426] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1242.989658][T15154] Cannot find map_set index 2 as target
[ 1244.075658][T14426] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1244.115747][T14426] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1244.134432][T14426] bond0 (unregistering): Released all slaves
[ 1244.200888][T14822] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1244.337150][ T5848] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1244.365581][ T5848] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1244.599884][ T5848] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1244.658605][ T5848] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1244.677371][ T5848] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1244.686949][ T5848] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1244.824255][T15167] syz.2.1781: attempt to access beyond end of device
[ 1244.824255][T15167] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[ 1245.252217][T14822] 8021q: adding VLAN 0 to HW filter on device team0
[ 1245.329786][T15180] loop0: detected capacity change from 0 to 256
[ 1245.337025][T15180] vfat: Unknown parameter '0'
[ 1245.427276][T14426] hsr_slave_0: left promiscuous mode
[ 1245.442330][T14426] hsr_slave_1: left promiscuous mode
[ 1245.458756][T14426] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1245.516968][T14426] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1246.848134][ T5848] Bluetooth: hci0: command tx timeout
[ 1249.187360][ T5848] Bluetooth: hci0: command tx timeout
[ 1250.714431][T14426] team0 (unregistering): Port device team_slave_1 removed
[ 1251.248426][ T5848] Bluetooth: hci0: command tx timeout
[ 1251.287862][T15217] loop0: detected capacity change from 0 to 1024
[ 1251.350807][T15217] EXT4-fs (loop0): first meta block group too large: 50331648 (group descriptor block count 1)
[ 1251.376215][ T5853] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1251.387207][T14426] team0 (unregistering): Port device team_slave_0 removed
[ 1251.415034][ T5853] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1251.427485][ T5853] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1251.455486][ T5853] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1251.480551][ T5853] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1251.489149][ T5853] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1251.750440][  T904] 
[ 1251.752836][  T904] =============================
[ 1251.757707][  T904] [ BUG: Invalid wait context ]
[ 1251.762577][  T904] 6.14.0-rc5-syzkaller #0 Not tainted
[ 1251.768025][  T904] -----------------------------
[ 1251.772883][  T904] kworker/0:2/904 is trying to lock:
[ 1251.778153][  T904] ffff8880b873e958 (&ping_table.lock){+.+.}-{3:3}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 1251.788096][  T904] other info that might help us debug this:
[ 1251.793970][  T904] context-{5:5}
[ 1251.797415][  T904] 4 locks held by kworker/0:2/904:
[ 1251.802514][  T904]  #0: ffff88801b079d48 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x98b/0x18e0
[ 1251.814906][  T904]  #1: ffffc900037f7c60 ((work_completion)(&(&gc_work->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9c6/0x18e0
[ 1251.827812][  T904]  #2: ffffffff8eb3e558 (&rcu_state.expedited_wq){-.-.}-{2:2}, at: swake_up_one+0x20/0x160
[ 1251.837851][  T904]  #3: ffff88801d2c4628 (&p->pi_lock){-.-.}-{2:2}, at: try_to_wake_up+0xc2/0x1470
[ 1251.847116][  T904] stack backtrace:
[ 1251.850824][  T904] CPU: 0 UID: 0 PID: 904 Comm: kworker/0:2 Not tainted 6.14.0-rc5-syzkaller #0
[ 1251.850846][  T904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1251.850862][  T904] Workqueue: events_power_efficient gc_worker
[ 1251.850893][  T904] Call Trace:
[ 1251.850902][  T904]  <TASK>
[ 1251.850911][  T904]  dump_stack_lvl+0x241/0x360
[ 1251.850937][  T904]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1251.850961][  T904]  ? __pfx__printk+0x10/0x10
[ 1251.850985][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.851024][  T904]  __lock_acquire+0x15a8/0x2100
[ 1251.851066][  T904]  lock_acquire+0x1ed/0x550
[ 1251.851098][  T904]  ? raw_spin_rq_lock_nested+0x2a/0x140
[ 1251.851128][  T904]  ? __pfx_lock_acquire+0x10/0x10
[ 1251.851159][  T904]  ? select_task_rq_fair+0x3b4/0x3b60
[ 1251.851192][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.851226][  T904]  ? select_task_rq_fair+0x792/0x3b60
[ 1251.851265][  T904]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1251.851295][  T904]  ? select_task_rq_fair+0x3b4/0x3b60
[ 1251.851330][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.851367][  T904]  _raw_spin_lock_nested+0x31/0x40
[ 1251.851397][  T904]  ? raw_spin_rq_lock_nested+0x2a/0x140
[ 1251.851423][  T904]  raw_spin_rq_lock_nested+0x2a/0x140
[ 1251.851452][  T904]  try_to_wake_up+0x7e2/0x1470
[ 1251.851486][  T904]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1251.851518][  T904]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1251.851551][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.851585][  T904]  ? _raw_spin_lock_irqsave+0xe1/0x120
[ 1251.851611][  T904]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 1251.851638][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.851676][  T904]  swake_up_one+0x70/0x160
[ 1251.851707][  T904]  rcu_preempt_deferred_qs_irqrestore+0x8e5/0xca0
[ 1251.851751][  T904]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[ 1251.851786][  T904]  ? irqentry_exit+0x63/0x90
[ 1251.851814][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.851848][  T904]  ? lockdep_hardirqs_on+0x99/0x150
[ 1251.851877][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.851911][  T904]  ? rcu_is_watching+0x15/0xb0
[ 1251.851935][  T904]  rcu_read_unlock_special+0x497/0x570
[ 1251.851970][  T904]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[ 1251.852001][  T904]  ? seqcount_lockdep_reader_access+0x1e0/0x220
[ 1251.852027][  T904]  ? __pfx_lock_release+0x10/0x10
[ 1251.852059][  T904]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1251.852090][  T904]  __rcu_read_unlock+0xa1/0x110
[ 1251.852120][  T904]  ? gc_worker+0x272/0x1400
[ 1251.852149][  T904]  gc_worker+0xcad/0x1400
[ 1251.852177][  T904]  ? gc_worker+0x272/0x1400
[ 1251.852207][  T904]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1251.852243][  T904]  ? __pfx_gc_worker+0x10/0x10
[ 1251.852281][  T904]  ? process_scheduled_works+0x9c6/0x18e0
[ 1251.852308][  T904]  process_scheduled_works+0xac0/0x18e0
[ 1251.852349][  T904]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1251.852381][  T904]  ? assign_work+0x364/0x3d0
[ 1251.852410][  T904]  worker_thread+0x870/0xd30
[ 1251.852440][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.852476][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.852509][  T904]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1251.852538][  T904]  ? __kthread_parkme+0x169/0x1d0
[ 1251.852570][  T904]  ? __pfx_worker_thread+0x10/0x10
[ 1251.852599][  T904]  kthread+0x7ab/0x920
[ 1251.852632][  T904]  ? __pfx_kthread+0x10/0x10
[ 1251.852666][  T904]  ? __pfx_worker_thread+0x10/0x10
[ 1251.852695][  T904]  ? __pfx_kthread+0x10/0x10
[ 1251.852728][  T904]  ? __pfx_kthread+0x10/0x10
[ 1251.852763][  T904]  ? __pfx_kthread+0x10/0x10
[ 1251.852795][  T904]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1251.852819][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1251.852853][  T904]  ? lockdep_hardirqs_on+0x99/0x150
[ 1251.852880][  T904]  ? __pfx_kthread+0x10/0x10
[ 1251.852913][  T904]  ret_from_fork+0x4d/0x80
[ 1251.852943][  T904]  ? __pfx_kthread+0x10/0x10
[ 1251.852977][  T904]  ret_from_fork_asm+0x1a/0x30
[ 1251.853010][  T904]  </TASK>
[ 1251.853027][  T904] BUG: unable to handle page fault for address: fffffbfff3598930
[ 1252.236082][  T904] #PF: supervisor read access in kernel mode
[ 1252.242056][  T904] #PF: error_code(0x0000) - not-present page
[ 1252.248031][  T904] PGD 23ffe4067 P4D 23ffe4067 PUD 23ffe3067 PMD 13fff1067 PTE 0
[ 1252.255712][  T904] Oops: Oops: 0000 [#1] PREEMPT SMP KASAN NOPTI
[ 1252.261946][  T904] CPU: 0 UID: 0 PID: 904 Comm: kworker/0:2 Not tainted 6.14.0-rc5-syzkaller #0
[ 1252.270882][  T904] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025
[ 1252.281030][  T904] Workqueue: events_power_efficient gc_worker
[ 1252.287130][  T904] RIP: 0010:kasan_check_range+0x82/0x290
[ 1252.292818][  T904] Code: 01 00 00 00 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 48 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd <41> 80 3b 00 0f 85 c9 01 00 00 49 ff c3 48 ff c5 75 ee e9 1e 01 00
[ 1252.312440][  T904] RSP: 0018:ffffc900037f72e0 EFLAGS: 00010086
[ 1252.318532][  T904] RAX: 0000000000cef601 RBX: 1ffffffff3598930 RCX: ffffffff819cc4e4
[ 1252.326515][  T904] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff9acc4980
[ 1252.334494][  T904] RBP: ffffffffffffffff R08: ffffffff9acc4987 R09: 1ffffffff3598930
[ 1252.342484][  T904] R10: dffffc0000000000 R11: fffffbfff3598930 R12: ffff888025be0ad4
[ 1252.350472][  T904] R13: ffff888025be0000 R14: dffffc0000000001 R15: fffffbfff3598931
[ 1252.358461][  T904] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1252.367400][  T904] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1252.373978][  T904] CR2: fffffbfff3598930 CR3: 000000002f0ca000 CR4: 0000000000350ef0
[ 1252.381948][  T904] Call Trace:
[ 1252.385222][  T904]  <TASK>
[ 1252.388149][  T904]  ? __die_body+0x5f/0xb0
[ 1252.392519][  T904]  ? page_fault_oops+0x8e4/0xcc0
[ 1252.397501][  T904]  ? __pfx_page_fault_oops+0x10/0x10
[ 1252.402797][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.408450][  T904]  ? is_prefetch+0x4f6/0x780
[ 1252.413050][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.418695][  T904]  ? _printk+0xd5/0x120
[ 1252.422875][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.428526][  T904]  ? __pfx_is_prefetch+0x10/0x10
[ 1252.433475][  T904]  ? __bad_area_nosemaphore+0x118/0x770
[ 1252.439034][  T904]  ? __pfx___bad_area_nosemaphore+0x10/0x10
[ 1252.444933][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.450578][  T904]  ? spurious_kernel_fault+0x119/0x5a0
[ 1252.456043][  T904]  ? do_kern_addr_fault+0x30/0x80
[ 1252.461074][  T904]  ? exc_page_fault+0x5c8/0x8b0
[ 1252.465935][  T904]  ? __printk_cpu_sync_put+0x67/0x80
[ 1252.471225][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.476869][  T904]  ? asm_exc_page_fault+0x26/0x30
[ 1252.481901][  T904]  ? __lock_acquire+0xc94/0x2100
[ 1252.486849][  T904]  ? kasan_check_range+0x82/0x290
[ 1252.491879][  T904]  __lock_acquire+0xc94/0x2100
[ 1252.496658][  T904]  lock_acquire+0x1ed/0x550
[ 1252.501169][  T904]  ? raw_spin_rq_lock_nested+0x2a/0x140
[ 1252.506719][  T904]  ? __pfx_lock_acquire+0x10/0x10
[ 1252.511748][  T904]  ? select_task_rq_fair+0x3b4/0x3b60
[ 1252.517130][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.522772][  T904]  ? select_task_rq_fair+0x792/0x3b60
[ 1252.528160][  T904]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1252.533540][  T904]  ? select_task_rq_fair+0x3b4/0x3b60
[ 1252.538919][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.544564][  T904]  _raw_spin_lock_nested+0x31/0x40
[ 1252.549682][  T904]  ? raw_spin_rq_lock_nested+0x2a/0x140
[ 1252.555248][  T904]  raw_spin_rq_lock_nested+0x2a/0x140
[ 1252.560626][  T904]  try_to_wake_up+0x7e2/0x1470
[ 1252.565402][  T904]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1252.570779][  T904]  ? __pfx_try_to_wake_up+0x10/0x10
[ 1252.575984][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.581622][  T904]  ? _raw_spin_lock_irqsave+0xe1/0x120
[ 1252.587090][  T904]  ? __pfx__raw_spin_lock_irqsave+0x10/0x10
[ 1252.592990][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.598634][  T904]  swake_up_one+0x70/0x160
[ 1252.603053][  T904]  rcu_preempt_deferred_qs_irqrestore+0x8e5/0xca0
[ 1252.609487][  T904]  ? __pfx_rcu_preempt_deferred_qs_irqrestore+0x10/0x10
[ 1252.616440][  T904]  ? irqentry_exit+0x63/0x90
[ 1252.621032][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.626671][  T904]  ? lockdep_hardirqs_on+0x99/0x150
[ 1252.631873][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.637517][  T904]  ? rcu_is_watching+0x15/0xb0
[ 1252.642278][  T904]  rcu_read_unlock_special+0x497/0x570
[ 1252.647747][  T904]  ? __pfx_rcu_read_unlock_special+0x10/0x10
[ 1252.653756][  T904]  ? seqcount_lockdep_reader_access+0x1e0/0x220
[ 1252.659999][  T904]  ? __pfx_lock_release+0x10/0x10
[ 1252.665055][  T904]  ? do_raw_spin_unlock+0x13c/0x8b0
[ 1252.670263][  T904]  __rcu_read_unlock+0xa1/0x110
[ 1252.675120][  T904]  ? gc_worker+0x272/0x1400
[ 1252.679631][  T904]  gc_worker+0xcad/0x1400
[ 1252.683969][  T904]  ? gc_worker+0x272/0x1400
[ 1252.688487][  T904]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[ 1252.694487][  T904]  ? __pfx_gc_worker+0x10/0x10
[ 1252.699268][  T904]  ? process_scheduled_works+0x9c6/0x18e0
[ 1252.705080][  T904]  process_scheduled_works+0xac0/0x18e0
[ 1252.710649][  T904]  ? __pfx_process_scheduled_works+0x10/0x10
[ 1252.716640][  T904]  ? assign_work+0x364/0x3d0
[ 1252.721235][  T904]  worker_thread+0x870/0xd30
[ 1252.725835][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.731483][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.737129][  T904]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[ 1252.743028][  T904]  ? __kthread_parkme+0x169/0x1d0
[ 1252.748062][  T904]  ? __pfx_worker_thread+0x10/0x10
[ 1252.753180][  T904]  kthread+0x7ab/0x920
[ 1252.757357][  T904]  ? __pfx_kthread+0x10/0x10
[ 1252.762141][  T904]  ? __pfx_worker_thread+0x10/0x10
[ 1252.767369][  T904]  ? __pfx_kthread+0x10/0x10
[ 1252.771968][  T904]  ? __pfx_kthread+0x10/0x10
[ 1252.776570][  T904]  ? __pfx_kthread+0x10/0x10
[ 1252.781169][  T904]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1252.786385][  T904]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1252.792025][  T904]  ? lockdep_hardirqs_on+0x99/0x150
[ 1252.797229][  T904]  ? __pfx_kthread+0x10/0x10
[ 1252.801831][  T904]  ret_from_fork+0x4d/0x80
[ 1252.806256][  T904]  ? __pfx_kthread+0x10/0x10
[ 1252.810852][  T904]  ret_from_fork_asm+0x1a/0x30
[ 1252.815632][  T904]  </TASK>
[ 1252.818643][  T904] Modules linked in:
[ 1252.822532][  T904] CR2: fffffbfff3598930
[ 1252.826675][  T904] ---[ end trace 0000000000000000 ]---
[ 1252.832116][  T904] RIP: 0010:kasan_check_range+0x82/0x290
[ 1252.837759][  T904] Code: 01 00 00 00 00 fc ff df 4f 8d 3c 31 4c 89 fd 4c 29 dd 48 83 fd 10 7f 29 48 85 ed 0f 84 3e 01 00 00 4c 89 cd 48 f7 d5 48 01 dd <41> 80 3b 00 0f 85 c9 01 00 00 49 ff c3 48 ff c5 75 ee e9 1e 01 00
[ 1252.857371][  T904] RSP: 0018:ffffc900037f72e0 EFLAGS: 00010086
[ 1252.863439][  T904] RAX: 0000000000cef601 RBX: 1ffffffff3598930 RCX: ffffffff819cc4e4
[ 1252.871416][  T904] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff9acc4980
[ 1252.879383][  T904] RBP: ffffffffffffffff R08: ffffffff9acc4987 R09: 1ffffffff3598930
[ 1252.887350][  T904] R10: dffffc0000000000 R11: fffffbfff3598930 R12: ffff888025be0ad4
[ 1252.895319][  T904] R13: ffff888025be0000 R14: dffffc0000000001 R15: fffffbfff3598931
[ 1252.903285][  T904] FS:  0000000000000000(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000
[ 1252.912212][  T904] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1252.918790][  T904] CR2: fffffbfff3598930 CR3: 000000002f0ca000 CR4: 0000000000350ef0
[ 1252.926785][  T904] Kernel panic - not syncing: Fatal exception
[ 1252.932945][  T904] Kernel Offset: disabled
[ 1252.937257][  T904] Rebooting in 86400 seconds..