last executing test programs:

18m20.750384901s ago: executing program 0 (id=7):
r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000040), 0x8002, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x18, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x40, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x3, @void, @value}, 0x94)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f000000b1c0)="02cbda572ec32cf73bdbc52bfa4e157261eb6cbd0d1d50c9d937a19739fcb9f8697bf69c0e2e526012185f1b86989056f9c2d38906e8a47b9b5fde55a777a6357ac40c211de6325f496fd86dac09bb38b62b37d715d06e3c61b172aa4a662cefc7810ba37161c637a9b56a7c7b022426826076f1d2bf3c3b6f92ab9c27d691385c3efc354f1423d01d6a49d534fca3f2bf518cd645cf18b4ac2d2ac4c5c29ba487c9d27bb488a73146d5b9e21427af37dee4a276646eb2519e4f6c76cce2f7bf7e708d5180959f71d3797220101849c5144ef8338a5a2079ecce466000cf290d4df42e82865512fb5fb01fb655613cf1c469682edd86a4bef86aa23240ca6a2ff38b59339f7530e8a8027aee0628e0f81b2f5c661b149d780f20ec54c8d3d42c0c49f83b1c0d4bec94bc9221e6fc7c75ebd3b68081df207721584055baeaf6429616d57cb35d2977d45971d209e4c45dfe3c5c105e0e2b49fc8685b4945f31c9468f3c950fcf70a8f45e5a3be62f73c228a6a34a99b6f584b42c50506a6c14187f44887270011cc98d7e5e258df533411c8d39bfa9e27014912ed9e9696fd4074fbefcd4817a344be5ea348f4a7a34733a5bc5674b1bcd39404d5a458d1e19b6d4bdb4e23403154249b5798dea7b60bbf0c09c25027a4efd49d36cbe65b7450c0bde580d356ad4e3cc7a9a57e6ac0b542592617869e57d9bed28f0590241bdeb51fa775aa8806a55df2c795a61146bdbe38eb7a716180bb9b728696bb0e78ff11f89b17c7e7fe9b14ea976ccd9991f01f5d0c4620053d0b5ce42af76591fd0706494b91a6dfc43560f9a9538ada19825ffe3a7cc7a56b755d46ae1189b1f1ac729d9938ad48a066624c1b28003a9d193b4b34c4ab2609949df96f693389f27dd3e1f42b178eb17079c1448d7e9fac30ddb53ce8e5a157db8296cd3069d332bad0528ae56a6db41ba84699b85f225a78a33879512a5f0b795fc58957ef6766afcf546fe36c8125276eeaac9d647b2459c164aae86a2703e85d4f552a0647cb4bdfaecf6ec3a264a6b6892a9a1ba08a9055e98b49edc4e1f8010f63f601a8251921df70e15011116c471a70a0580b1789bcff471dcc95ad209a44ca2453d58d3ea4c71e0383db68adf332a497a84faada33f18bd3cd79ff9d6809409769b02a66cf524534ab7134e3066eef904d8961195d9cdc396a012bb3bc1b1ccd60317d08cb059174642aa3f60584e58e7417c1736f6863fae9e7103158711167a53d7d5deddacee6958fd4c2e0672b8dd90b41512b1f59fc49099633860dd6902c1df3d5924b1cf81ec848d51129b3eddea619129e961390d65d2243d400a1e30e524eeee1a701da5e21598acf457947bad693892a2989097ecbe9607a33ffb33425ccac5e19ebd1f88bf3acc03331adf9697bed04b33ac9fceaa3bdc9a417b12108e10f9c45b6d36181099056a448689da4ef68beee35f5930ce4a5712cbed98239a674c5883d6a5e0df9c1cbe1eda8dc19d14c4abe896e3b28bb3d4b2a0e9ae31ca07b9819825f3a6ab82c5501becf023a656cbff569dbc3035ae3c585747fb459581629051286b170b679b683a0b2eea6ef3b41a68012e5f4d64f689c2b909cfd06d37c0a802be2d882351bffeddef1373d8cbafa10fefbc28b31a70b6e912fc61257aa76a0f0dc1d3ef72d2f61517a359053c3dcb7d49d8a4da61bcf3b3dafc0528bb037cec0d986b3949fff38a21dab6b8a3a167bacf067c5f7842ebebcc1bd54776b2e54a098303c6331beb16e42d0669a518af2d173405786439d739b813c145c4f9f98a537b1065bf4636c76e38b71943815a6d1227d0a6965dffc37c00444aebd2ec19286b83443902dba1354a69377e97070a79151e64711111bf3e0a755b0fb1a1d5d009fdf61b665b41a3b7dbd0655236360141c52b93bc907b0672743973c30d6c9ece47fa1fe3625cc8acbe305156012ef1c5ea140be70b804887be593f25faa13ee4ea2d9821d23c3e047d74ad4f7de4d95d275ea3e6c87479f1badfcef002ebc7020b581a096abac1a80ef6ff476a01b01f7c0fb1239fcc182f74e5b5965412c0f4170432af15daf457143b1f41422b8a7f9b81c15a156ddef9af95955090d013cd52aa66ebfbc87c8030e7f86b52aadaa2e63c261185eed7c46b5f8d56e8301a9cc1578aff77b42419a5eb2e263207ef259f4da6ca6466ac9326a633b39e005028c07c9aedf17a70e638d7ed84638406e6028be879fd0fe491152e181d5527933950eb67a52cf155d5c845a6425e41a47b44d9905de26e5132c8d594c1bf6d4f12dbcb96d7431a56546800275623679d6c189e0cebd1fb8063140b89d42da60ed06206d329c29841e69c820428bcde53c998bee0380a816d080b36f64574718b84e0ecafbfd2b9981f4886df258dbf1cfdb148b171516500572a7086516fd519bc861878ec2fceb6872229ff1e9782720e590d8ef4691fa9c4c54bfcc843015913a2ed40bf37048151d17b44365f7f8d3b816d1b1cd40dc5dda6ab8f637b5f6bae92580f1c269c9231c9a79d58d43208be7622147db352b1294260eeab12409f5b5ee94d99548640634bc9479a6e6e06cc8838bf85d9bd95452eaf8ad3cf6c070aac36a7d38fe23cebfaba46c74a6c5c98b1b5243edfe405161b8c3ea0cdb1bcb4e1041fc62451a6094b0c56ee2ed29520b87228959bc01a9a9f54d214704bd321b152a0e88d0646e99a92a390dfa6bc2c34d418e5e900a3b641ab34a5fd8de751bfb3253b7aae3948d871892d7b76b351b073a93f3ad82b0c59bc49ed922c8d63f8d12c14ce1912bf877bc7877f619b03d09200836c775675e0614efabfd5665c3bf12e6131a7232639729b79ac1c5e807246d30934b0f63b31a06c4722278299949c7785d796b6d3d4a5f2fa652b7fe8be447cafe93fcb07167f3ef16b94261fc3a9d22a57a7aac56562a231d79dbf3bdc1f436206337ff0f8e019d76b823c5976ee23ba4e553ec62d261bdc7da90fee46d3472cc267a7a74b88112ef765091df03bb59cf303feaa0149b371a7bdd75c0187ce842dd1e4cdaf7fc0f5ef7ffb559c535f19100ba653728cd936987731d5ac99cb9ef772975b17b2aff8b872df0d189c7944d63ed66cfce8ee92e7a1082c2a501007aacbe0011e6c32489bcb888e1c464bec59902d940d81136c543098a60104bcfd0f4e7c27cb114ff42e8d31fe09a4bcc21cae5ef2f8e4890bd8139fff1b1b2a39e29eaf2e5d2fb810ea37a13e6d2105a6c2ccd03fc110c6f9063e2433e1450dc8ebd8ede0445af662cf7ee705003630ab7d9fc6ed30169ed674dda2802d519e3b49016c6f11612ae53230b062281ddf7a678784516c3d177857f8bdbec7910af8c81333e471bd8a973ce858a14756ef6ec85498714fe8e1e6600023804004b968eea42c410bf0f5c5b2471835454f20230a6d342f96f71a2e64f54b838e5cd939d7a651d402fd60a8a2a081de0c536d5b81345d92165e79fa65140b91c23cdb5829db55f1f93b88bb43a355e9304a17355851d52c0d745b611a30eb400044dce6ac742bcce9df9583b827514af8a2ed4a04553817ba6ea22e9beaba65d32189a5c2bf65a09d2c8a8798c0645fb24157a4e71be7889fe65c34869d8852b21661407feed92afb0bfe582693a21c050e5adce1fe97755b0be276c36b81b89700b99d23d315a64f7e115eacdb3ade725cb3cfe36c27a5e2addad60290b022a9fc26132b5ec3b5f1d884399fd992525a3e17e18e7ee6078a64b7efc3bbd116e5c305d8ad935baff18ed94c7a8720e729132e110f986991a3ad21cc637282f55588b12756895e2d10afce85b1a04fc271b217278f156c7ffb1ed9dd52b18fc8b153802fc329dca81b278d715f6e31fbcc77d8ce5c2786573bacac30791aff5771fece44063d1e84abcd6a4ae016858893605eecf253c79e59c2152efbe9fdfee3c441e4bc9cb14fc96a675aa17bf7d2024d665fe3982b61888bbe7129a1ec8fafc3480170c71d05f5d22ef7ff0e2ca598fd02bbd0ad82e6ab0e775388bf3aa421c20b6a2a5e256386abff1103f46a8b5c54c2d54b81c50d8bd98aea724bda55f99d95956e939b85d59abdc50ea4cf1d44afa3e8dffc9d84c6b7d28b78c40d7498670602b97c5e2a6281c7876dabc1d14d156e827873818bc590644d2a1d084d39c84e78127b087bf2cd9353fd13d4ab12350318aedadaca6a2728267e6f5f16547caadf3ac2fade3c86b516c6ab53d61ea1c148835b9a2c91fd0ded7283ef720086dfc7728968924731715f78915045a69122d8b23a6db47cc6fccf402b9913e46c9a36924327ca9bba6bb8cf7cc80952501fc2181a2ec7ae4364cc6eac0cba0edda68f3b398a249d114702147f8b1cd9c7f8a15345f42a7a50334928eb4e2de974e4ae2ffb796bc640922f7ada0933460e0c0fc06276dfd228da9bfbbe5a3eade6f98594b0226339156022aad7aa8c9650417cb1551b3b6b31ce436396f68134a6ef23d6b926988fc410f81e1ae01282f244e70051f1b93644f78af3ef6359d106b291568e1ad00ad6ee102964fb7aaaec9732e43a21ea28cda496e4ae367ea738482e777290cca2ef61c8ff10c1b9546b5d395d21c98542f37578d297c13899247a6fdcdf0b8cba6b498875926a19852f97ef60dc1a0c4069fdd4d1fb87a6cd58b8786210687d644a4bad6f8fee0bc5fb94294cffc323e97597be6a5e457a5dd27fe2ebf5c34aef3bb5c43ba0a7d931e7ab02b7c290c5d04a41c01d14d6fc1ba80bfedf71caa0f7e59b135fad73e28d4861d601f79ad32edc6f8d1978d8ecf787f3c9ac71b2404939827b16f3915c8b1445dd1ec012aaeff88789c396665a50df52b244ce5b100d9a29ce52903b8f7f3662c0d0599fd1a7071798b759be02d58e5c6e4626b477653655fb7f5d7bc0ad94dbfe131c9ba5a994c1605c03b9f5173f8205c580bff685e693b23ab4cc7b2e4b21282b14f65684747ad98c0d855a205a6e17b5bb4c2b07097ae32393690e4e07a7f3e25d6bd01c1fb973a67edfa4e1d4a7a96b68570dd9d3bdfbe8a5a69adbd17167533ddbd2a58d70ca1ccea6428770dbcfeb47ddffa99e8b5e69bd34641c1f1a033e86215447fd2927482b12a85f11ae1d8b2054d7f642a9ba526e5a7d8e3d81bd394c264666f4b4dc3ff9c1584f277ff31a29c1358d9a953e0ae2822a3d174a0ce3da386083ae06f02723aea03931a38116a8e4afbc36fb9c094eb340214881a6f838f8d66141e451b9a1bd250363e591bc4ac566123a379272c08c0511e29e1dd1bc06869f3fd151bada9b28a6a71970ae3580d5bb0ab76b38068f504659bc335be1bb2a285329f749303600211d6ef7e151ad861b946d99f36d20074d65426f68a6758270ff946dd387ed3b150199fd81fd2e76a70a2fe2d7a2f8899079068ce48c5380db7e69a1a91f244ed32400e8d9e3097ec2065570dbde88faaee4a938f0b4cc20f31f175df62bf6cd88968ef7e24912dbbf91869eb9b34498d7f6000ef9a62c9441f4177ab5da1428d647b6e3cea1ca8a91b1a1246c2e048654e350cbf3dd4daaaa2558ff9c505ce0fcbcf93601a725289c38724290cffddf87e5345b43a66eb5f9fef718b0df4bcfe82c466017c3d8f0bbfd5544ff2d834a6e653ae789561df44281c8510b4bad838d04ab4a8e84fc4fc022bbe8454b36273cec843731c1df6fce42947a029f61e030990c0002b6f2c9c552227c8785c0b53683de3e518123548e332d25f2b270f595aad389951d1edbb9c6fb14cb4e479acff1ffac191da3d80a696b8be5919710c9137ecc0ca383d8666e30a356759a5299f44c2bfcd03a8df33de0e27d6038a9551cfc5ff43de0d42a6d033bf15f3a44d52f8a71554d1a2efb78042c1c9957256d7ea06b7751b40668feefff205c74f0f947ae0920aa746f17027bbef312708bf72fb23c12d0dcf6493584c1bdd0b5780017c038bc23fb6c25c560bb6da3775cf03502c07b987e64f8a2b84a870b5dd90c6aea7fad3d0a3ee46fda953dc085d272ee5855104b8bab8ed8bfd3338e75eb9ad8118f25c7e580fec613e30cf3eb7059e06d9be015709ba6c9de9dc9b6df8228b13f0439fa8d530aa9a4dc1d44abc3191c159a8816e7368fc5c6a0e57eb881d734c7a5459ba3be1b8a17b5ee6777ee42e962aee199f35ee2c2d4a39275e1dd6a8546daadc7ceab2c90667ad48c75bc7008ec2d7daa57562260d6d4509e67850e988b640569c050d3bedbd6c2de9b4f466e2d0c6f83c3c2392a5adcce1523e89f730a84f8cad28f84d1a0991f44aa4714f93088ec2a2836766d73569c7b0c1f70a067a3f0dff1d01661937aecb39e3d0f8e0ea282cffebbfdac63196eb13c4e53f144fc66a82cc0590f1d6d249c333420c24db92177c89cf0869346c34147dab6c3b94c325ef635d0e6d75c23906e71a7940e13364aef81b97108a4b209d372558d3bb0424ecb6a9a9ee28f7d1585c8af6f1256c812eb48515feda309a08f1a2954039ff0a60a2ab75717d2eb93024586837e552942eb63e0d6735d01258eb4dac6209370c109c1a1763dd742f3551276768648919f9093fd4e0cedff9442ac404e463eaea0ffe58a5085c987c093fd30e121218123457916ced3a7250a796a40451a4729125bce2ba5b6406e6626ecfb1d3f16287ba238feb575f60eba96443c60252d5927b81b73574ff1b7d424623b6cff5ce0d1b31b3d199c85da27f8736d990063f09dfef93402d880b2c5d7a9cdf45cbb4d1baf95be490f3dc9998c2c7ccfcc6e6395e7e09e6c44865834cd3e0968ffcc1d0f54406b55a8952cd8096e8968cdca3632b71546192c76472a66c4a8584eb748c1b3c30d52e8699adbef91329aefbf94d251d0b82bf42a648f73020881a914ea7c529802772b4b60617e9c1d9712a31d0ec3e92af4b97f50ec96e794486101a9e15daf8b7f13078d22767dc3b57bc0431ef39b3ca12b2932aa585bc856e8cf5496d78eaa50f06b483f416b31f78767bd25e260042e84c10e9cf9bb53a3f4fce11d703e90004949b55044907242f8eddef627cfc9642f4a828476074c298ea2d7b07ddb7b4a2b9f8f1e5a32fac7d105c5a12186da19ef5f6475763ee19aa670e7b45f37248fdfa796d6ae761dd77955851faa33675ee22e8174e0a126ac58b9998ccb5e4d12c3e00165533ddf710bf0ab0edf6ba1fecf9548ca1618fd980a4f9a35eeb5c1aa329a288378b9b5ed54b56075810cd22abf0c06ce0f1054805410375d6e41564b71b86cab6929c5c1cedb72e0b1237fdad44edbcfd326312caa49ed0c8f7c5a33986c89245fec75d0f9a34f744bf74d6e0f901c12ea25edd60c43d22f6644fa294534cac1c581b0cbf5d9765fc18fe6c223dcff4a85c7eeaf4cb1a9a889c236778b85e69d50d482743664bdeade11b4ced78c3d0b62ba07f98a898c6e89241ed6522fdfc430b75593673d43d695082b0114b25f231c8a141be953290b1a3855adc0146adee0b784fce2cf8243838bdcdbcf4e0dbcc2a9945deea1d02858a9e9dc54f0e818b81d024bd9b2e052a73fb59d037ab526c78faadfcdecc15f2a1d843e84aabc403e84b2fefbfbec982f22b89a2be560002d45ae12a8a2d00f0a3f55e26789a593fb8bdf20efb8a51e3d0dad9ad2caec39ea7392c58eebebc7201c78276f0127e43d5c8efef6e17ca522d69586a9e096efe80844c38841640238584936d8a96c0ba41dc0dc96a11623ff1e70ef54a9c43ec3cd0359dfdf55c8f8c306110d833d7de7a35f015369bf6d92b3b6f0f7dc717c84e51ce475df451b9a6a91c8d564aeb389267082b9cea77f09c6c6490084da3820f80d3e62bbd41a6540591c6c5cf2a18e4e829b82a6780b6b1f66d96fcfb1639a335a78f8c3ecf381148b2625859e514d35eb8c4acc98f7f8220e1827d7745f1f054691eeb1625e2d238ae03c93991058c1567be4938de2e60537749ee81f327f1f1e586ee3af4ccf53b29741c1bb0e774a1d27672ec27b43719d3710e9fd8634213738d98844717c8b1f707bd42f4077c9e59eb539f9cb32c11b47bcb7cb3efd3bf4994e90166a5ae380c821d2640fa99df59978e9b7e50f0b830943de787b1bf99e14edcdfe8565556ae2a8c0552d67898fd13551c007eb779edb60e85210a418cf0a4a41764fe9ece74f5d8000d168fab61588c5549113e8d8a059f17699d976fc7dc68cfd0ec404ef0c7eca459fbad1c40317d81b95a94b037cf96ba677697cfdce4c2c4e02cea296f25e556c02381ca891ddb6adcb0535e262b26290000c542e7616d63b211c16f86048079ca5167598aece3288f86658249e939cb6b59b6cdd3fce0e9ea81a3bb3f88908c600ea031b0028f12632d7ac2f81e54f7e7eb70ba70bc937571b242c4ef228f801b6a4376d11eabadaebb1322823eb30faf6cf21a8b38a769824e8b7009ff278f80ac2af39f0943a29458d127eabae81d2915557b09e3c49f8c22564edea93e8717306fb198dcc92eb3c9212f03dac94fa3fa1fa4e1dbd2119e024639f0ddc87cd906d3317c6ebc6e698257f73912ff46fe8d9adbd3f57ecc78cea5c1eb04ac5fd1bb79a53921fddaffd2d34f444b54208096cbd2aa3e26ca01359b05c10ff36e98e1ac97d51380c99e1b685928eced0d2f1e754001e7023d2473596feb7c7601619277dd7e844bd5544e7e360f8e4223fbd9e24b3fb69a34ced39bf7590fb853e44031d075fe647190ac7811522c73a6c6033457c14c415e4a84663d2540784a1cbb4a398f1d8612f4f3d334576c99d5721bbeac95cc34d18080e3b1365b6844152b8259c8d4618597f291f2b9e8812ab7729e108a8d44487f8993faabf6c6a8f49db727f17cdfec43b34c39cfdd3916fa6953e34f316100368c7b2836c11dcd4710986980356b7ec4ba23fab5cc5a8c6cacb61cc65570231407ca647946393031986cf4736280ed2d7976d66618fc240191455ae405f1d62145297179c040a707093fb8f60f5a3738b8bf78bbdf952478da7e9d3c892af5b83cd9dd4f00fcfa13beb9e6988e3c4b4e5300e3757a93efaef9023fb9d7442cb1a49d7efdec32ac1f98e6227cad38538f6383c3b6efca2fda7c101ec548c3549e7ac5e737478343ca47cdcd65acb71e0eade28c684b69785ae1fe31aaec713834b6635938d7d66426e965498978e4b467f6132daa6026c39dcbf95656b9be5c074badc18b5a74e12967b45e23099fa765ea5c8c18f0feae94755827e494f251ae96882b5c5f6d54713de02501faef1fcb59bf0d66f9d0cd3a493b139237aefdbd402a3df9dd5beb2887a055261a08047be52fa51f61636255870366e837f20d0f83b8557fa4a003647152ee27bd34b5af52743d4c431ff4a116ae1184c810e8397ef2a056845c6e3b5c0beafbf8f78488102412e04e47fb87be9a9ddc075ab519f424ebf821da659b18ae3b61a7b243ff94e3d1ba420cb342db7b8060937749892a7954d3ba5e63017703f5224602616ff6d3fec42444b2524f97dfa467d9db91681dce08de5ccb1ac2bf6cb5e6c1d586b2fc62e78b0bc23e1924a4f023adb39803fd6c3d52c40b13df9c6f54bb2b4ef88f5d0ffdfef13ae46dbf75aa6457da3bdc1781dc814b0b69debee7456aa7f75571caef87f624ef703fea75f136cc7f90af0ae558cf3de5e8cc92f3e803bd46e05f42e4167af8136db6982ad26a52778e1fefcbabe61a57f00cbf04e3c82445c04bbd8832b8bb9a7cb854a22f98cd7b422a7abafe6a00571539802e56f036d5a26d79a86cb100b90ae168d2406c2c0b9c5274ad69298e7983f4b30e006cf4882e90ca8af4e445dc06d0639231638dd39929065d920af913cc7284619fcacab0023893352468eec73d7014407e5d4bca9e49d412ffb12e68610c26206de0b3282e925b83389cbdfbc41cf279440a13838a1431ea4f1a371b6b143b914238773d171bc7b44c07729e8723fe51b8180fc9c9be6694477132cb82b22b2512518266781e687fcd460995ed581059d3c692ecbdc8daf3c76e5a5bc8e57973fed5fb3465a3dcb5557f92dba1e212f9bda66fc4829e10ce3e8b6c117b1214cb246211c861eaabf8ccaa94aedd58349399e619c2dc587719d7901d2cd85ced669d0ea898c4f127d1a4cf274aa0405d225605edf425dc9b7375c8ac2940bb369eec586097f0cc07940ecc8bd400976b9b36027a040be6e64a2fa4f7ba5d59ce9b4f76192d260d665290b20faa3a6a941939a0b3042ef4d8f9b980c71a13496b104965e1c3dab25cb46147bca6170baa0237c8a5cd1c437e43a50302490462585410f65e03186df5fc2c5bcd89f6d6a4ac34c971f0579070ab6e9a6a84159b2910a7ba797fb09dbd3ab88c23951b1a91df8cfc2d13de85dc715e2a111458acc4d640a59c199faa2bb28ec3309864fd8a6997ac89833853101a08198aa6ab3e5167b4e8e55843efae1ecd3fc6507f3a97bf2f8c4c4da4896c788a17a5fe8d8c3f79fe41dd7f4497380f1ffc8f8d6cc2c2dead697e4947cfe680a0e2b5100743444536134cde4378b0b1fe6ddc09dfe8d618f93edffeb7d097a37a19248be0bf9c4f536a484a5fc96f18f2eb4f6462b20bee241ce16b4790c854bca10914e3ba98eb0970765571a8ad45baba39d20b8c1bbb7c65717e265f5fc5edefb130aada09aa7f2c50c45de6de7327faef192977f499b7aed9e73c2ecb97f7256f89fc8b4834670f798438fac5a5045d61a7f429eba77de37517b984b0acfbd6f494a1414b0fc040244bb62a19150e0c15e5315b2618d05429263dd1847accc5de9baca08edc921ed9a0af00175c118ab801da9980098fc4a2bf16ba73e580000b49129a5fba00a1f2c45c0d0939be83ad93569dd61330913e8b381f9aff6d6a584862d636c1a4989dd3fd14853bf033be56f21a3cf1eb95d7df7c6436ff3d5a8f472bf4a3fa8b0b0741d953d9644e0ec801d4154336357d2d1492c6d336b9101827c1401898ecdca5a66c6f727d23d3ebb95530ecfee0f7649c221d2c131e56d37a8d422b0803ed0d623a2de36e9279c3c1c806654fbce9305cbb44210e282fa53c72f813440fd0cbfff492716c4a06cf99f4809481d51a03a88911f48f25db6784e16f3a251d5fb75fca164911e4a88d1b904b5372d8660d309f347dce2810552a4789af371f3e67418433cdb0d69a4fc562514cb396141f31312fab85f68c1ecd9d03ba37b40934535cc3e53c71a3a51663a479eca63dc5c15a387e5753cfa806402b6426b8dcaace2553d219b2ae02bd45fd4fde6e3e1bd6370d3e8d558aea69854381f1dad0fe2bbf1a73043f03aafe81c3a3d386c758abcb45cc537bf40d459e138f418802ec61abcad5e333389d74ea941eb5f26b25ed7642e0135fd8e3e2fc998613023dd5b804e2cf1a80ea60b353535b1446e3ebb542c1c15d87c6f5a4716455c8a9f52380161a5d23e9678417fe7ed64760e14c1390bcf73e1d531bb3548d7b9df25b6f85512667af396fad73110d1ab69a8ecdddaf29dc3701a5d927e599f5c2af293a6b276da7a5c917298ea24c2366d5e91593605fcbc4d6462", 0x2000, 0x0)
ioprio_set$uid(0x3, 0x0, 0x4004)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000040)={0x30, 0x0, 0x1, 0xffffffff, 0x0, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x9}}}}, 0x30}}, 0x0)
r4 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
bind$bt_hci(r4, &(0x7f0000000000)={0x27}, 0x74)
sendmmsg$unix(r4, &(0x7f0000006380)=[{{&(0x7f00000000c0)=@file={0x0, './file0\x00'}, 0x6e, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x0)
sendmsg$NFQNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0, 0x40}, 0x1, 0x0, 0x0, 0x1}, 0x0)
r5 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r5, 0x4008af60, &(0x7f0000000280)={@my=0x1})
socket$vsock_stream(0x28, 0x1, 0x0)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_tcp_TCP_CONGESTION(r6, 0x6, 0xd, &(0x7f0000000040)='westwood\x00', 0x9)
getsockopt$inet6_tcp_buf(r6, 0x6, 0x1a, 0x0, &(0x7f0000000080))
close_range(r0, 0xffffffffffffffff, 0x0)

18m19.871349654s ago: executing program 0 (id=8):
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00000, 0xe)
r1 = ioctl$KVM_CREATE_VCPU(r0, 0xae41, 0x1)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x200000000000008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000c00)=ANY=[@ANYBLOB="05000000040000000800000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x80540, 0x188)
lstat(0x0, 0x0)
gettid()
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x22, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r1, &(0x7f0000000000/0x18000)=nil, &(0x7f00000014c0)=[@text64={0x40, &(0x7f0000001500)="267600410f01b00000000066b88e000f00d066420f3a14ce5736430f0164b107b805000000b9060000000f01c1f30f01330f015b7548b80c000000000000000f23d80f21f835800000000f23f8c44279185abb", 0x53}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_RUN(r1, 0xae80, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="a60a00000000000061118000000000001800000000000000000000000000000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)

18m18.784822478s ago: executing program 0 (id=9):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
syz_usb_connect(0x0, 0x36, 0x0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x13, &(0x7f0000000180)=0x100000001, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r1, 0x6, 0x1f, &(0x7f00000002c0), 0x3)
setsockopt$inet6_tcp_TLS_TX(r1, 0x11a, 0x1, &(0x7f00000000c0)=@ccm_128={{0x304}, "000000009b993e68", "75df9881592b9fd38bcad042e286f2cd", '\x00', "578619a280c847dd"}, 0x28)
r2 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r2, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket(0x2, 0x5, 0x0)
sendmmsg$inet_sctp(r6, &(0x7f00000032c0), 0x0, 0x40c0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000007040)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a6c000000060a0b04000000000000000002000000400004803c0001800b00010065787468647200002c0002800800034000000000080007401000000d0500020007000000080006400000000108000440000000170900010073797a30000000000900020073797a32"], 0x94}}, 0x0)

18m12.521181364s ago: executing program 0 (id=14):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000a00)='./file0\x00', 0x1008413, &(0x7f0000000080), 0x0, 0x533, &(0x7f0000001140)="$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")
r0 = socket$inet6(0xa, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r1 = socket(0x11, 0x3, 0x0)
r2 = epoll_create1(0x0)
r3 = epoll_create1(0x0)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, 0x0, 0x0)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000000)={0xe000202b})
epoll_pwait(r3, &(0x7f00008c9fc4)=[{}], 0x1, 0xfffffffffffffff7, 0x0, 0x0)
r5 = dup3(r1, r3, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r2, 0x1, r5, &(0x7f0000000300)={0x200f})
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8948, &(0x7f0000000140)={'bridge0\x00', @remote})
r6 = syz_open_dev$sndctrl(&(0x7f0000000000), 0x1, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(r6, 0xc4c85512, 0x0)
madvise(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x17)
sendto$inet6(r0, 0x0, 0x0, 0x409c884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @local}, 0x1c)

18m8.702130517s ago: executing program 0 (id=18):
mount(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x2080000, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0xb, 0xe, 0x2, 0x6, 0x5, 0xffffffffffffffff, 0xfffffffd, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x4, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x10, 0x4, 0x8, 0x2, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f00000000c0)={r2, 0x0, &(0x7f0000000000)=""/10, 0x2}, 0x20)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r3 = open_tree(0xffffffffffffff9c, 0x0, 0x89901)
move_mount(r3, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ERR(0xffffffffffffffff, 0x4008af22, &(0x7f0000000080))
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
r5 = syz_open_pts(r4, 0x0)
r6 = dup(r5)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0x3)

18m6.381797669s ago: executing program 0 (id=21):
connect$unix(0xffffffffffffffff, 0x0, 0xffffffffffffff57)
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x800)
gettid()
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r1, &(0x7f00000005c0)={{0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @default]}, 0x48)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r2, &(0x7f0000000440)={{0x6, @null, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
listen(r2, 0x80)
accept$netrom(r1, 0x0, 0x0)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000100)=0x1, 0x4)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, 0x0, 0x4040000)

18m1.672047055s ago: executing program 3 (id=27):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, 0x0, 0x400, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
connect$inet(r1, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
r2 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0)
ioctl$DRM_IOCTL_MODE_CREATEPROPBLOB(0xffffffffffffffff, 0xc01064bd, &(0x7f0000000100)={&(0x7f00000000c0)="7d099e607e903b019cf5cc31d524417958b34d2c9a03c5dd7f6ee30a44fb", 0x1e, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(0xffffffffffffffff, 0xc01064b5, &(0x7f0000000200)={&(0x7f0000000140)=[0x0, 0x0, <r4=>0x0, 0x0, 0x0], 0x5})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000400)={&(0x7f0000000380)=[0x0, <r5=>0x0, 0x0, 0x0, 0x0], &(0x7f00000003c0)=[0x0], 0x5, 0x0, 0xeeeeeeee})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000600)={&(0x7f0000000440)=[0x0, 0x0, 0x0], &(0x7f0000000500)=[{}, {}], &(0x7f0000000480)=[<r6=>0x0, 0x0, 0x0], &(0x7f00000005c0)=[0x0], 0x2, 0x3, 0x3})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000740)={&(0x7f0000000680)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000880)=[{}, {}, {}, {}, {}, {}, {}], 0x0, &(0x7f0000000700)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x0, 0x6})
r7 = syz_open_dev$dri(&(0x7f0000000140), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r7, 0xc01064c8, &(0x7f0000000040)={0x1, 0x0, &(0x7f0000000000)=[<r8=>0x0]})
ioctl$DRM_IOCTL_MODE_GETFB2(r7, 0xc06464ce, &(0x7f00000001c0)={r8, 0x5, 0x6, 0x3, 0x2, [], [0x10000, 0x262dcb5, 0x6, 0x6a339aaa], [0x800, 0x7, 0x0, 0x64d3], [0x5f41, 0xfffffffffffffffd, 0x9, 0x6]})
ioctl$DRM_IOCTL_MODE_GETCONNECTOR(0xffffffffffffffff, 0xc05064a7, &(0x7f0000000cc0)={&(0x7f00000007c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000a80)=[{}, {}, {}, {}, {}, {}, {}], &(0x7f0000000800)=[0x0, 0x0, 0x0, <r9=>0x0, 0x0, 0x0], &(0x7f0000000c80)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x7, 0x6, 0x6})
r10 = syz_open_dev$dri(&(0x7f00000000c0), 0x1ff, 0x80800)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r10, 0xc04064a0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[<r11=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_SETPROPERTY(r10, 0xc01064ab, &(0x7f0000000380)={0x1, 0x0, r11})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000e80)={&(0x7f0000000e00)=[0x0, 0x0, 0x0, 0x0, <r12=>0x0, 0x0], &(0x7f0000000e40)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x6, 0x0, 0xdededede})
ioctl$DRM_IOCTL_MODE_OBJ_GETPROPERTIES(0xffffffffffffffff, 0xc02064b9, &(0x7f0000000f40)={&(0x7f0000000ec0)=[<r13=>0x0], &(0x7f0000000f00)=[0x0], 0x1, 0x0, 0xc0c0c0c0})
ioctl$DRM_IOCTL_MODE_ATOMIC(r2, 0xc03864bc, &(0x7f0000001000)={0x0, 0x2, &(0x7f0000000280)=[r3, r4], &(0x7f0000000340)=[0x4, 0x6, 0x7a8c], &(0x7f0000000f80)=[r5, r6, 0x0, r8, r9, 0x0, 0x0, r12, r13], &(0x7f0000000fc0)=[0x6, 0xfffffffffffffc01, 0xdde, 0xff, 0xffffffffffffffb3, 0x0, 0x9, 0x577], 0x0, 0x7fffffffffffffff})
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000080)={[], [], 0x3d}, 0x0, 0x527, &(0x7f0000002240)="$eJzs3U9oJFkZAPCvOt3ZZCa7yaoHXXBd3ZXMoNNJNu5u2MO6wqKnAXW8jzHphJBOOqQ7M5MwaIIHj4KICp7GixfBkydBBrx4FGFQz4qKIjqjB0GdWrq7OjOTdOfPpJPOJL8fVOq911Xvey+hKvWqH1UBnFuvRMS7EfEwTdPLETGcleeyJTabS327B/dvz9SXJNL02j+SSLKyVl1pw3NxMdttICK+/IWIryW741bXNxany+XSapYfqy2tjFXXN64sLE3Pl+ZLy5OTE29OvTX1xtR4V/o5FBHvvPeX7337x59/5xefvvnH63+79PUkK48d/Tik/F4fNrteaPwuHt9h9SmDnUb5Rg8zg+226NtVsnXMbQIAoLMPRMQnIuJyDEff3pezAAAAwDMo/exQ/C9pfXe3S3+HcgAAAOAZkmvMgU1yxWy+71DkcsViNObwfigu5MqVau1Tc5W15dnmXNmRKOTmFsql8Wyu8EgUknp+opF+lH99R34yIl6MiO8ODzbyxZlKebbXNz8AAADgnLi4Y/z/7+Hm+B8AAAA4Y0Z63QAAAADg2Bn/AwAAwNln/A8AAABn2hevXq0vaev917M31tcWKzeuzJaqi8WltZniTGV1pThfqcw3ntm3tF995Upl5TOxvLYVEdXaWHV94/pSZW25dn3hiVdgAwAAACfoxY/d/X0SEZtvDzaWuv6D7XrAzYDTKr+dSrJ1m8P6Dy80138+oUYBJ6Kv1w0Aeibf6wYAPVPodQOAnkv2+bzj5J1fZ+uPd7c9AABA941+pP33//vfF9zMnUDzgGPkIAaA86dxnX/QmbwuFuBMKZgBCOfekb//31eaHqpBAABA1w01liRXzG7vDUUuVyxGPN94LUAhmVsol8Yj4oWI+N1w4bl6fqKxZ7LvmAEAAAAAAAAAAAAAAAAAAAAAAAAAaErTJFIAAADgTIvI/TX5ZfNZ/qPDrw3tvD/Qn/xnOLJXhN784bXv35qu1VYn6uX/3C6v/SArf70XdzAAAADgXMgfZuPWOL01jgcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAbnpw//ZMaznJuH//XESMtIufj4HGeiAKEXHhX0nkH9sviYi+LsQfrP/4cLv4Sb1Z2yHbxR+8c/T4m1t7xo+R7LewM34uIi4ePTyca3fr55932x1/uXilsR6I6N99/OUjnsg/rc7nv9g+//V1OP88f8AYL9376VjH+FsRL+Xbn39a8ZMO8V9tV+HPvrWr6Ktf2djoFD+9EzHa9v9P8kSssdrSylh1fePKwtL0fGm+tDw5OfHm1FtTb0yNj80tlEvZz7YxvvPRnz/cq/8XOsQf2af/r7Wpr79N2f/v3br/wWay0C7+pVfbxP/Vj7ItdsfPZf/7Ppml65+PttKbzfTjXv7Jb17eq/+zHfq/39//UqdKd7j8pW/+6YCbAgAnoLq+sThdLpdWT0fi7eh6zfURfs/79ewl/pueimYcb+IbXa0wTdO0fkwdoZ4kDr/Xb9972lh7NrXXZyYAAKDbHl3097olAAAAAAAAAAAAAAAAAAAAcH6dxFPWdsbc3E4l3XiENgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAV7wfAAD//x7C3zk=")

17m59.411172226s ago: executing program 3 (id=31):
getpid()
r0 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x40942, 0x0)
write$uinput_user_dev(r0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
lsetxattr$security_ima(&(0x7f00000002c0)='./bus\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[@ANYBLOB], 0xa, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
sendto$packet(0xffffffffffffffff, &(0x7f0000000000)='1', 0x1, 0x0, 0x0, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r5 = timerfd_create(0x1, 0x800)
timerfd_settime(r5, 0x3, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
timerfd_gettime(r5, &(0x7f00000000c0))
bind$bt_hci(r4, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r4, &(0x7f0000000000), 0xd)

17m57.602856161s ago: executing program 3 (id=32):
socket$packet(0x11, 0x3, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x18, 0x10, &(0x7f0000000500)=ANY=[@ANYRES16], &(0x7f0000000000)='GPL\x00', 0x8, 0xa2, &(0x7f0000000140)=""/162, 0x41000, 0x3, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x4b, 0x1, 0xffffffff, 0x6, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000280)=0x2)
openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
rt_tgsigqueueinfo(r0, r0, 0x16, &(0x7f0000000340)={0x20, 0x401, 0x2})
r3 = syz_open_dev$vim2m(&(0x7f0000000680), 0x8, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r3, 0xc0145608, &(0x7f00000000c0)={0x1, 0x2, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r3, 0xc058560f, &(0x7f00000002c0)=@multiplanar_mmap={0x0, 0x2, 0x0, 0x0, 0x0, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, "fafc00"}, 0x0, 0x1, {0x0}})
ioctl$vim2m_VIDIOC_STREAMOFF(r3, 0x40045612, &(0x7f0000000280)=0x2)
close(0x3)
socket$inet(0x2, 0x80000, 0x4)
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
getsockopt$EBT_SO_GET_INFO(0xffffffffffffffff, 0x0, 0x80, &(0x7f00000002c0)={'filter\x00', 0x88, 0x0, 0x0, [0x5, 0xfffffbfe, 0xffff0000, 0xae, 0x401, 0x8]}, &(0x7f0000000280)=0x50)

17m56.156505221s ago: executing program 3 (id=33):
syz_usb_control_io$cdc_ncm(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f00000003c0)={[{@nodiscard}, {}, {@background_gc_on}, {@alloc_mode_reuse}, {@noquota}, {@disable_roll_forward}, {@gc_merge}, {@nouser_xattr}, {@checkpoint_diasble}, {@user_xattr}, {@fsync_mode_strict}, {@adaptive_mode}, {@block_mode}, {@noinline_dentry}]}, 0x2, 0x5505, &(0x7f0000002480)="$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")
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x1811b000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r3, 0x0, 0xfc01, 0x1000f4)
open(0x0, 0x60142, 0x0)
open(0x0, 0x185102, 0x0)
r4 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r4, 0x0, 0xb7d4, 0x1001f0)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup\x00', 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, r5, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket(0x840000000002, 0x3, 0xf8)
mknod$loop(0x0, 0x100000000000600d, 0x1)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)

17m51.389595217s ago: executing program 3 (id=37):
socket(0x10, 0x3, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0xc1842, 0x0)
socket(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
write$FUSE_NOTIFY_INVAL_ENTRY(0xffffffffffffffff, 0x0, 0x26)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
setsockopt$inet6_int(0xffffffffffffffff, 0x29, 0x35, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000000580)=""/102392, 0x18ff8)
timer_create(0x2, 0x0, &(0x7f0000000280))
r2 = syz_open_procfs(0x0, &(0x7f0000000000)='timers\x00')
preadv(r2, &(0x7f0000000580)=[{&(0x7f0000000200)=""/122, 0x7a}], 0x1, 0x45, 0x0)
r3 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000040)='/proc/sys/net/ipv4/tcp_sack\x00', 0x2, 0x0)
sendfile(r3, r3, 0x0, 0x3)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000200)=ANY=[@ANYBLOB="61124c000000000061138c0000000000bf200000000000001500000008ffffffbd0301000000000095000000000000006916000000000000bf67000000000000170600000fff07006706000002000000070600000ee60000bf050000000000001f650000000000006507000002000000070700004c0000001f75000000000000bf54000000000000070500000419311f2d4301000000000095000000000000000500000000000000950000000000000032ed3c095ccb97309c8d5be95e76b67754bb12dc8c27df8ecf264e0f84f9f17d3c30e3c72fe9755ba08554bb4f2278af6d71d79a5e12810a089dc1d4681d295c45a674f888a08034b7dd399703d6c4f633a9a4f16d0a3e1282ee45a010fb94fa9de56c898a814261bdb9b44a6538b89dc6c60bf70d742a81b72bab8395fa64810b5b1bfd3782519518c51231422bb8fab4d4d897db2c540c0ec50b8eac8c63d2b1cd06a39702bd547f5ebaa6954f01cef3c9bacec15e2e3b2bd352e93a22adfe8efe33ff2f8ee5476d4ef7a6f0c47020000000"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000001140), 0x0, 0x40000020, 0x0)

17m50.47980201s ago: executing program 32 (id=21):
connect$unix(0xffffffffffffffff, 0x0, 0xffffffffffffff57)
socket$nl_route(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
socket$inet_udp(0x2, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_tcp(0x2, 0x1, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
accept4$packet(0xffffffffffffffff, 0x0, 0x0, 0x800)
gettid()
r1 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r1, &(0x7f00000005c0)={{0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x1}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @bcast, @default]}, 0x48)
r2 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r2, &(0x7f0000000440)={{0x6, @null, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x3}, @bcast, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null]}, 0x48)
listen(r2, 0x80)
accept$netrom(r1, 0x0, 0x0)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
setsockopt$PNPIPE_ENCAP(r3, 0x113, 0x1, &(0x7f0000000100)=0x1, 0x4)
sendmsg$L2TP_CMD_SESSION_GET(0xffffffffffffffff, 0x0, 0x4040000)

17m42.994342174s ago: executing program 3 (id=48):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
fcntl$dupfd(r8, 0x0, r8)
socket$inet6(0xa, 0x1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000280)={@fd={0x66642a85, 0x0, r2}, @ptr={0x70742a85, 0x0, &(0x7f0000000440)=""/220, 0xdc, 0x1, 0x29}, @fda={0x66646185, 0x5, 0x1, 0x18}}, &(0x7f0000000240)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

17m27.867369763s ago: executing program 33 (id=48):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r5 = getpid()
sched_setscheduler(r5, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r6, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r8 = syz_open_dev$usbfs(&(0x7f0000000180), 0x205, 0x2581)
fcntl$dupfd(r8, 0x0, r8)
socket$inet6(0xa, 0x1, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000180)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x60, 0x18, &(0x7f0000000280)={@fd={0x66642a85, 0x0, r2}, @ptr={0x70742a85, 0x0, &(0x7f0000000440)=""/220, 0xdc, 0x1, 0x29}, @fda={0x66646185, 0x5, 0x1, 0x18}}, &(0x7f0000000240)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

1m32.865720775s ago: executing program 4 (id=1660):
r0 = socket$pppoe(0x18, 0x1, 0x0)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x2000000, 0x10, r0, 0x571a0000)
socketpair$unix(0x1, 0x3, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
socket(0x400000000010, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
timer_create(0x2, &(0x7f000049efa0)={0x0, 0x7, 0x4}, &(0x7f0000044000))
timer_settime(0x0, 0xe54aef35e9c2845d, &(0x7f000006b000)={{0x77359400}, {0x0, 0x9}}, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f0000000040), 0x2, 0x141101)
r2 = dup(r1)
write$6lowpan_enable(r2, &(0x7f0000000000)='0', 0xfffffd2c)
syz_io_uring_setup(0x3b59, &(0x7f0000000500)={0x0, 0x4533, 0x1000, 0x3, 0x14f, 0x0, r2}, &(0x7f0000000180), &(0x7f0000000080))
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0xd, &(0x7f0000000100)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c)
mmap(&(0x7f0000ff0000/0x10000)=nil, 0x10000, 0x7fa962bfffff, 0x13012, 0xffffffffffffffff, 0x0)
r3 = socket(0x2, 0x3, 0xff)
futex(&(0x7f0000000140)=0xfffffffc, 0x5, 0x0, 0x0, &(0x7f00000001c0), 0xfffdffff)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_REGISTER_BEACONS(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000005c0)=ANY=[@ANYBLOB, @ANYRES16=r4, @ANYBLOB="070000000000fddbdf250800000008000300", @ANYRES32=r5, @ANYBLOB="aa904cd46feebae1729b7ed55f830edbef1c4035d341a72b5022b674a0dfd96422416a6cdf3f2b96f20b82cabb198e87e6674aac5109788acec0f6d22396b2f49b176961cb27bf47294f757d159dcce0d90f3913af3f320c9547e09b196b12bdfcf438f003fe652030bfab41c290229dbd66b469f3e2a6df768c12c48d99a7103d567dc5dae861f7abcdb2"], 0x1c}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r3, &(0x7f0000000500)={&(0x7f00000003c0)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000400)={&(0x7f0000000480)={0x50, r4, 0x400, 0x70bd2b, 0x25dfdbff, {{}, {@void, @void}}, [@NL80211_ATTR_DISABLE_HT={0x4}, @NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x5}, @NL80211_ATTR_HT_CAPABILITY={0x1e, 0x1f, {0x800, 0x2, 0x2, 0x0, {0x3, 0x5, 0x0, 0x220, 0x0, 0x0, 0x1, 0x1}, 0x1, 0x1000, 0xf}}, @NL80211_ATTR_VHT_CAPABILITY_MASK={0x10, 0xb0, {0x8, {0x4, 0x9e, 0x5, 0x1}}}]}, 0x50}}, 0x80)
syz_open_dev$sndctrl(&(0x7f0000000040), 0x0, 0x0)
r6 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000a80)={0x11, 0x3, &(0x7f0000000200)=@framed={{0x18, 0x0, 0x0, 0x0, 0xfffffffc}}, &(0x7f0000000100)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000440)='contention_end\x00', r6}, 0x18)
r7 = fsopen(&(0x7f0000002e40)='pvfs2\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r7, 0x1, &(0x7f0000000b40)='source', &(0x7f0000000040)='c:::\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r7, 0x6, 0x0, 0x0, 0x0)

1m29.600592319s ago: executing program 4 (id=1665):
writev(0xffffffffffffffff, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x16, 0x4, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
getrlimit(0xb, &(0x7f0000000180))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"], 0x25, 0x5586, &(0x7f00000079c0)="$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")
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000003c0)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x601c2, 0x0)
ftruncate(r3, 0x8800000)
r4 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r4, 0x107, 0xf, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'geneve0\x00'})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r5=>0xffffffffffffffff})
fcntl$setstatus(r5, 0x4, 0x42800)
sendfile(r5, r3, 0x0, 0x578410e9)
r6 = gettid()
r7 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r7, 0x107, 0x12, 0x0, 0x0)
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x11, 0x800000000004, @tid=r6}, 0x0)

1m28.260638497s ago: executing program 4 (id=1668):
syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES8], 0x1, 0xab2, &(0x7f0000001740)="$eJzs3ctrHfe9APDvHD0sKcFxEt8k1yTx2MGJkvjKR9KNjcnixpaOZOXqcZFkiOGWOMRyMRZNSVpITME2LV01NJRSaAulZNlVIF3Um+Jdu+yqi0Ib+g+U0JVT2k6ZmSPpHOkcHVuWJTv9fMTRvL6/18xofjqv+QUPsizLiscWl8/+Yicry/3n9PhnH3/yYf64fi16oyteSX4V0RcRaUT3P4pzpWdsfH5upkNGlyPOR8TNiCQi9kQ5baO/ael8JN+Ph9eWb0by03iqRbK+O2wcHWX8W9vt8w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO5LY+PV6nAS01OzZ99I2yuGAN9k+0p2N5Loj0hudCo2iUjyR/T1rQz1/dT+tc1P5L8Ox9Pl0tPlyN99ceWhJ/a9+nh3ZSX9JhXaEe99cOXyW8vLS+/Wl/ekaU/HRHvuebXuXO/Wkk3WZqcW5qZmTk3W0qmFufTk8ePVY2cmFtKJ6xFxbmGxNpOOzddOLc7Np4NjL6bDJ0+OprWhc3NnZyfHh6ZrKytP/NdItXo8fX3o/2qn5hfmZo+9PrQwdmZqenpqdrKIyTfnMSfyE/F/pxbTxdqpmTS9eGl5abRTJfOg4ZZbkuagkU45jVRHRoaHR/rj+CsnXzlRrXbXV4wMr6yorhMbInb/pGW7/ey2I3+5/Rdw2LpKvf+P6ZiK2Tgbb0Ta8mcsxmM+5mKmxbZkLb8bxXxy48ix2qblNvb/K738U2ubD0TR/z9bLj3brv9vU9fOP1lW5rzV9Kstv/ZBXInL8VYsx3Isxbt3m2PWFetq9sX6mL9nWbaFnNM8z4ON++CuW5/GZNRiNqZiIeZiKmbiVEzGt/9ctmAu0jgZx+N4VOPNOBMTsRBpTMRUTEctFuJcLMRi1Iozaizmo5ZGLMZczEcagzEWL0Yaw3Ey+mM00qjFUJyLuTgbszEZ48UZUYuLcanY76Ob1HE1aPh2gkY2CdrQmd9d/5/dj/8JsmUd//XPsrThqRLsuqze//e2DchW5gbHdqxWAAAAwHb6z9/G3v2P/eaPET3xTPG6/MTUdK2629UCAAAAtlHxcb2n80lPFhHPRNLi+X9llyoHAAAAbIuk+I5dEhEDcbCcK78J1RU+BAAAAABfEsX7/8/mk4F87mAkq3dCOd8iEgAAAHgAdbzHfv1p/7VNIvqifk/L9EI5vVCPqN/nd2Biaro2NDY3/epwPF/cZaD4psGG3Loikp48du1mhIcGyunAao79eaZ9edTw0KvD8VIcrjdk8Ll88txgc9lF5EgZ+UIZ+cImkaN55G24dpe7HQB21eGN/fEXWdM99jv/h/BSHC0jjh7ozrvu7gMtetbqWs/avRsNBQBWdR5jpzniaj1dY///3/nz/+ZOvan/fywu/jNfuRRD8Xa8E8txIY4W3zYoPnHQVO7/f1R/zWD1YwjVOBqHytiNrwY0xf7uRCWOdng9YKBhoJejHV4RKGPjKxGj9/AIAMDOO9y6H94bbfr/IiJWPg5Y9v9HG57/x8bn/6uv5i/5SiEA3BdWR7Df1pmsq3HNbrcRAGjWrpduOx4wAAAAAAAAAAAAAAAAAAAAAAAAAAAA0NG23va/b4vJ/1Qf169ck23/eAStZ/rr+2BlzdU72hvX3/vgyg8ionFTJW/EvalzUdPtzbmyDflkEbFTx2vnZmJfxJb3arTa1BsR97zy/dtRxBf1mfJvo7LZxePsplsBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4ACQRXa3WVyL2REQ1Io7tfK3unWu7XYGd9z+NC8mtuBXvx97dqw4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJdT/f7/lSinD5WrorsScSQizkdEttt13E63drsC26R/i+ka7v+fH/PIkuguD3skPWPj83Mz+eEvxn6ofPbxJx8+2Zx8z+2WUwRW1g0uUS9hfezPH16Ze7RINTC+9N7lb7zz9XT8dFSiN04vTkyPz0zOv7aW5Ink04g0yseKvL7541tHfv1Ri5Z/mre0tfXlThQ7Z3xjuU+2St2u3Eq74lZdWl4ayaMWa28sfvNrl95v2PRYHIp4bjBisLmkr+aP1i2MQ9GzYV3v2mzyefLdZG/8KM4Xxz/fG0mW5IfokaK6/RcvLS8Nvf3O8oU2ddoXByPiQkRf1NO3rdPqrj5YXE9aKs66Sk9earUIyn/t79DG1lbHuLiwkuNwmzY8WpwyA/U29Da1odKmzLR9G4od3rDfV4950pCkrNFovUa90Vyjx+P5Fkc62xPRfi883+JId5R8nvwhORO/j+80jP9RyY//kaz9X2dzFkei+UxpG1kpI4uWjzRueHN95F9+fFu1bzlMDXfqe+WJX1dpuP7Xj9XWrkd968vJktbXo7qGEkfblNj672Ld1WH9WdH+mlv0SPvXpahffdomKuu5v4xqU8//iJcjug9E045trueG3vrl9leU5vSvrVufXS0mW/37/0kyGH+Na8b/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7n9JRFer9ZVysm9lOY3I7iDbPeWkb2O+A8kd13E7XVv99YDbX/yuNK273jlZcituZVfvVaUAAAAAAAAA2Gmnxz/7+JMP80fxfnzXrSyrv7+fRnRHxL7kh/0xPj830yGjnojzEXEzWr7dX/e3rNS8Nk8XD68t34zIHtl6kwCADv4VAAD///NHdPg=")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
geteuid()
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000240)=0x6)
listen(r2, 0xfffffffc)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r3, 0x1, 0x8, 0x0, 0x0)
connect$inet(r3, 0x0, 0x0)
r4 = accept(r1, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, 0x0, 0x1)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

1m26.678406299s ago: executing program 4 (id=1672):
bpf$BPF_BTF_GET_NEXT_ID(0x17, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80000, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
open_by_handle_at(0xffffffffffffffff, 0x0, 0x1)
mlock2(&(0x7f0000627000/0x3000)=nil, 0x3000, 0x0)
mremap(&(0x7f0000532000/0x3000)=nil, 0x3000, 0x1000, 0x3, &(0x7f0000190000/0x1000)=nil)
mlock(&(0x7f0000626000/0x5000)=nil, 0x5000)
mkdirat(0xffffffffffffff9c, &(0x7f0000000400)='./file0\x00', 0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8001}, 0x8)
keyctl$update(0x2, 0x0, 0x0, 0x0)
getsockopt$bt_hci(r4, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
epoll_create1(0x80000)
preadv(0xffffffffffffffff, &(0x7f0000000640)=[{&(0x7f0000000100)=""/115, 0x73}], 0x1, 0x80000001, 0x800000f5)
syz_emit_vhci(&(0x7f0000000200)=ANY=[@ANYBLOB="040b0305c900"], 0x6)

1m24.705931376s ago: executing program 1 (id=1675):
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x40, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x2000c16, &(0x7f0000000040)={[{@nobh}, {@usrjquota}]}, 0xff, 0x240, &(0x7f00000002c0)="$eJzs3T1oO2UcB/DvXRL/tg1SdRHEFxARLZS6CS51UShIKSKCChURF6UVaotb6+TioLNKJ5ciblZH6VJcFMGpaoe6CFocLA46RJJrpbYRX1Jz4n0+cLm75J77Pcfd97kQOBKgsaaTzCdpJZlJ0klSnN/gzmqaPl3dnthfTnq9x34oBttV65WzdlNJtpI8kGSvLPJCO9nYferop4NH7nl9vXP3u7tPToz1IE8dHx0+evLO4msfLNy/8dkX3y0WmU/3d8d19Yoh77WL5KZ/o9h/RNGuuwf8FUuvvP9lP/c3J7lrkP9OylQn74216/Y6ue/tP2r75vef3zrOvgJXr9fr9O+BWz2gccok3RTlbJJquSxnZ6vv8F+1JssXV9dennl+dX3lubpHKuCqdJPDhz+69uHUhfx/26ryD/xPVT9KHT6+tPN1f+GkVXeHgLG4rZr17/8zz2zeG/mHxpF/aC75h+aSf2gu+Yfmkn9oLvmH5pJ/aC75h+aSf2iu8/kHAJqld63uJ5CButQ9/gAAAAAAAAAAAAAAAAAAAJdtT+wvn03jqvnJW8nxQ0naw+q3Bv9HnFw/eJ38sehv9puiajaSp+8YcQcjeq/mp69v+Kbe+p/eXm/9zZVk69Ukc+325euvOL3+/rkb/+TzzrMjFvibigvrDz4x3voX/bJTb/2Fg+Tj/vgzN2z8KXPLYD58/On2z9+I9V/6ecQdAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDa/BgAA//8YZW08")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x181242, 0x0)
syz_mount_image$hfs(&(0x7f0000000140), &(0x7f00000008c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2810880, &(0x7f0000000000)=ANY=[], 0x1, 0x2c6, &(0x7f0000000c80)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000005c0)='cpu.stat\x00', 0x275a, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, 0x0, 0x141042, 0x0)
write$FUSE_INIT(r3, &(0x7f0000000500)={0x50, 0x0, 0x0, {0x7, 0x2b, 0x3, 0x100a0800, 0x81, 0x4f6, 0xb, 0x6, 0x0, 0x0, 0x80, 0x3ff}}, 0x50)
fallocate(r3, 0x10, 0xfff, 0x5)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
socket(0x10, 0x3, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xffffffffffffff7e, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x10)
pselect6(0x40, &(0x7f00000001c0)={0x1, 0x0, 0x2, 0x0, 0x0, 0x0, 0x4, 0x2000000000000}, 0x0, &(0x7f0000000040)={0x3ff, 0x0, 0x5f8, 0x2, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
ioctl$EXT4_IOC_MOVE_EXT(r2, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xffffffffffffffff})
syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)

1m22.983143439s ago: executing program 4 (id=1677):
ioctl$BTRFS_IOC_BALANCE_PROGRESS(0xffffffffffffffff, 0x84009422, &(0x7f00000003c0)={0x0, 0x0, {}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}, {0x0, @struct, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @struct}})
r0 = socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0xd5108000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f00000008c0)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x148, 0x178, 0xc, 0x0, 0x178, 0x258, 0x258, 0x258, 0x258, 0x258, 0x3, 0x0, {[{{@ipv6={@loopback={0x1f0}, @mcast2, [], [], 'team_slave_0\x00', 'wlan1\x00'}, 0x0, 0x118, 0x148, 0x0, {}, [@common=@unspec=@limit={{0x48}, {0x0, 0x836}}, @common=@unspec=@addrtype1={{0x28}, {0x0, 0x904}}]}, @common=@inet=@SET2={0x30}}, {{@ipv6={@private1, @mcast1, [], [], 'wg1\x00', 'hsr0\x00'}, 0x0, 0xa8, 0x110}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x8000, 0x80, 0x0, 'pptp\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000980)=ANY=[@ANYBLOB="140000004200"], 0x14}}, 0x0)
syz_open_dev$MSR(&(0x7f0000000000), 0x4, 0x0)
capset(&(0x7f0000000100)={0x20080522}, 0x0)
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x15, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r6 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_udp_encap(r6, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
r7 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r7, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000100)={0x2, 0x4, 0x4, 0x7, 0xa, 0x0, 0x0, 0x0, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x1}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e24, @broadcast}}]}, 0x50}, 0x1, 0x7}, 0x0)
ioctl$SYNC_IOC_FILE_INFO(0xffffffffffffffff, 0xc0383e04, 0x0)
getsockopt$IP_VS_SO_GET_DAEMON(r6, 0x0, 0x487, &(0x7f0000000240), &(0x7f0000000280)=0x30)
syz_emit_ethernet(0x3f, &(0x7f0000000380)={@link_local, @local, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "010700", 0x9, 0x11, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, {[], {0x0, 0xe22, 0x9, 0x0, @opaque="7f"}}}}}}, 0x0)

1m22.459737377s ago: executing program 4 (id=1679):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getsockopt$XDP_STATISTICS(0xffffffffffffffff, 0x11b, 0x7, &(0x7f0000000080), 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000900), 0x0, 0x0, 0x0})
syz_emit_ethernet(0xc5, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffffffffffffffffffff884700000000000000000000000000000000401a00a7006500000e219078e0000002e0000001860a346715960ce5e061445433c1e00000017fffffff0a010100000000080000000000000007ac1414aa000089880a016e9ab6960008e000000100000003ac1414bb0000008a0000000000000006ac14140a7eaa00010001ac1414bb00000005890bed0a010102e00000020000004e204e2204519078c84753b9081af4edab9464977e1a668761d696a7c69227744ef6ab7c04", @ANYRES16=r2], 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c0002800800"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

1m21.47845997s ago: executing program 1 (id=1681):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
fallocate(0xffffffffffffffff, 0x20, 0x4000, 0x5)
bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[], 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000000040000000000", @ANYRES32=0x0, @ANYBLOB="00000000001fe73100000000000000e76d1714254f8e3b", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000380), 0x1, r3}, 0x38)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r5 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r5, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
ioctl$RTC_WIE_OFF(r5, 0x7010)
pread64(0xffffffffffffffff, &(0x7f0000001240)=""/102400, 0x200000, 0x0)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000700)={r4, 0x20, &(0x7f0000000680)={&(0x7f0000000580)=""/128, 0x80, <r6=>0x0, &(0x7f0000000600)=""/100, 0x64}}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r7 = syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000200))
ioctl$USBDEVFS_IOCTL(r7, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)

1m19.617642105s ago: executing program 1 (id=1684):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000340)='sched_switch\x00', r0}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f0000000280)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r6 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r6, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r6, 0x101)
r7 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r7, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r7, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
sendmmsg$inet(r7, &(0x7f0000004a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x800)

1m17.310870017s ago: executing program 1 (id=1688):
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_DETACH(0x9, 0x0, 0x20)
dup(0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x420000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_emit_ethernet(0x42, &(0x7f0000000000)=ANY=[], 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
getsockopt$inet_mptcp_buf(r3, 0x11c, 0x2, 0x0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r4}, 0x10)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
ustat(0x1, &(0x7f0000000040))
ioctl$I2C_SMBUS(0xffffffffffffffff, 0x720, 0x0)
r5 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r5, &(0x7f0000002200), 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000005c0)='./bus\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@barrier}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@min_batch_time={'min_batch_time', 0x3d, 0x5}}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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")
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')

1m12.958951276s ago: executing program 1 (id=1692):
syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES8], 0x1, 0xab2, &(0x7f0000001740)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0x1}], 0x1)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
geteuid()
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000240)=0x6)
listen(r2, 0xfffffffc)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r3, 0x1, 0x8, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r1, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYRES16], 0xfffffdef}}, 0x1)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

1m6.462363885s ago: executing program 34 (id=1679):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getsockopt$XDP_STATISTICS(0xffffffffffffffff, 0x11b, 0x7, &(0x7f0000000080), 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000900), 0x0, 0x0, 0x0})
syz_emit_ethernet(0xc5, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffffffffffffffffffff884700000000000000000000000000000000401a00a7006500000e219078e0000002e0000001860a346715960ce5e061445433c1e00000017fffffff0a010100000000080000000000000007ac1414aa000089880a016e9ab6960008e000000100000003ac1414bb0000008a0000000000000006ac14140a7eaa00010001ac1414bb00000005890bed0a010102e00000020000004e204e2204519078c84753b9081af4edab9464977e1a668761d696a7c69227744ef6ab7c04", @ANYRES16=r2], 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c0002800800"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

1m6.427701875s ago: executing program 1 (id=1695):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpriority(0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4041}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd4, 0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000004c0)={'vlan1\x00', &(0x7f0000000480)=@ethtool_eee={0x17}})
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r5 = accept$alg(r3, 0x0, 0x0)
sendmsg$alg(r5, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0x4)
write$binfmt_script(r5, &(0x7f0000000600), 0xfec8)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000100)=0xfffffffc, 0x0, 0x4)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000003c0)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x81, 0x2, &(0x7f0000000280)="935a")

51.190006753s ago: executing program 35 (id=1695):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000000)='/proc/keys\x00', 0x0, 0x0)
read$FUSE(r0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f0000000680)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
getpriority(0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r2, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4041}, 0x0)
syz_open_procfs(0x0, &(0x7f0000000080)='fdinfo/3\x00')
socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$MRT_FLUSH(0xffffffffffffffff, 0x0, 0xd4, 0x0, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128-generic\x00'}, 0x58)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCETHTOOL(r4, 0x8946, &(0x7f00000004c0)={'vlan1\x00', &(0x7f0000000480)=@ethtool_eee={0x17}})
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000000080)="ab553fec94248c32e27d04000000288a", 0x10)
r5 = accept$alg(r3, 0x0, 0x0)
sendmsg$alg(r5, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000140)=0x4)
write$binfmt_script(r5, &(0x7f0000000600), 0xfec8)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000100)=0xfffffffc, 0x0, 0x4)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
syz_usb_control_io(0xffffffffffffffff, &(0x7f00000003c0)={0x2c, &(0x7f00000000c0)=ANY=[@ANYBLOB="000008000000080482"], 0x0, 0x0, 0x0, 0x0}, 0x0)
syz_usb_ep_write(0xffffffffffffffff, 0x81, 0x2, &(0x7f0000000280)="935a")

14.256120657s ago: executing program 2 (id=1761):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
landlock_restrict_self(0xffffffffffffffff, 0x0)
syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
setgroups(0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f05ebbee6, 0x8031, 0xffffffffffffffff, 0x0)
ioctl$VIDIOC_QUERYCAP(0xffffffffffffffff, 0x80685600, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x806, 0x0)
bind$inet6(r3, &(0x7f0000000100)={0xa, 0x4e23}, 0x1c)
listen(r3, 0x3)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r4, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
r5 = accept4(r3, 0x0, 0x0, 0x0)
recvmmsg(r4, &(0x7f0000007940), 0x55, 0x30, 0x0)
sendmmsg(r5, &(0x7f0000001500), 0x588, 0x0)
r6 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f00000002c0)='./file0\x00', 0x2808000, &(0x7f0000000300)={[{@iocharset={'iocharset', 0x3d, 'koi8-ru'}}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@shortname_win95}, {@shortname_winnt}, {@shortname_win95}, {@fat=@codepage={'codepage', 0x3d, '850'}}, {@shortname_winnt}, {@shortname_mixed}, {@shortname_win95}, {@uni_xlateno}, {@uni_xlate}, {@uni_xlateno}, {@shortname_winnt}, {@numtail}]}, 0x11, 0x2b1, &(0x7f0000001980)="$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")
syz_mount_image$vfat(&(0x7f00000191c0), &(0x7f0000019100)='./file0\x00', 0x635f1d78a1ef5a0, 0x0, 0xfc, 0x0, &(0x7f0000000040))
ioctl$SG_BLKTRACETEARDOWN(r6, 0x1276, 0x0)
pread64(0xffffffffffffffff, &(0x7f0000000080)=""/102356, 0x18fd4, 0x3)

12.991894454s ago: executing program 2 (id=1763):
syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES8], 0x1, 0xab2, &(0x7f0000001740)="$eJzs3ctrHfe9APDvHD0sKcFxEt8k1yTx2MGJkvjKR9KNjcnixpaOZOXqcZFkiOGWOMRyMRZNSVpITME2LV01NJRSaAulZNlVIF3Um+Jdu+yqi0Ib+g+U0JVT2k6ZmSPpHOkcHVuWJTv9fMTRvL6/18xofjqv+QUPsizLiscWl8/+Yicry/3n9PhnH3/yYf64fi16oyteSX4V0RcRaUT3P4pzpWdsfH5upkNGlyPOR8TNiCQi9kQ5baO/ael8JN+Ph9eWb0by03iqRbK+O2wcHWX8W9vt8w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAO5LY+PV6nAS01OzZ99I2yuGAN9k+0p2N5Loj0hudCo2iUjyR/T1rQz1/dT+tc1P5L8Ox9Pl0tPlyN99ceWhJ/a9+nh3ZSX9JhXaEe99cOXyW8vLS+/Wl/ekaU/HRHvuebXuXO/Wkk3WZqcW5qZmTk3W0qmFufTk8ePVY2cmFtKJ6xFxbmGxNpOOzddOLc7Np4NjL6bDJ0+OprWhc3NnZyfHh6ZrKytP/NdItXo8fX3o/2qn5hfmZo+9PrQwdmZqenpqdrKIyTfnMSfyE/F/pxbTxdqpmTS9eGl5abRTJfOg4ZZbkuagkU45jVRHRoaHR/rj+CsnXzlRrXbXV4wMr6yorhMbInb/pGW7/ey2I3+5/Rdw2LpKvf+P6ZiK2Tgbb0Ta8mcsxmM+5mKmxbZkLb8bxXxy48ix2qblNvb/K738U2ubD0TR/z9bLj3brv9vU9fOP1lW5rzV9Kstv/ZBXInL8VYsx3Isxbt3m2PWFetq9sX6mL9nWbaFnNM8z4ON++CuW5/GZNRiNqZiIeZiKmbiVEzGt/9ctmAu0jgZx+N4VOPNOBMTsRBpTMRUTEctFuJcLMRi1Iozaizmo5ZGLMZczEcagzEWL0Yaw3Ey+mM00qjFUJyLuTgbszEZ48UZUYuLcanY76Ob1HE1aPh2gkY2CdrQmd9d/5/dj/8JsmUd//XPsrThqRLsuqze//e2DchW5gbHdqxWAAAAwHb6z9/G3v2P/eaPET3xTPG6/MTUdK2629UCAAAAtlHxcb2n80lPFhHPRNLi+X9llyoHAAAAbIuk+I5dEhEDcbCcK78J1RU+BAAAAABfEsX7/8/mk4F87mAkq3dCOd8iEgAAAHgAdbzHfv1p/7VNIvqifk/L9EI5vVCPqN/nd2Biaro2NDY3/epwPF/cZaD4psGG3Loikp48du1mhIcGyunAao79eaZ9edTw0KvD8VIcrjdk8Ll88txgc9lF5EgZ+UIZ+cImkaN55G24dpe7HQB21eGN/fEXWdM99jv/h/BSHC0jjh7ozrvu7gMtetbqWs/avRsNBQBWdR5jpzniaj1dY///3/nz/+ZOvan/fywu/jNfuRRD8Xa8E8txIY4W3zYoPnHQVO7/f1R/zWD1YwjVOBqHytiNrwY0xf7uRCWOdng9YKBhoJejHV4RKGPjKxGj9/AIAMDOO9y6H94bbfr/IiJWPg5Y9v9HG57/x8bn/6uv5i/5SiEA3BdWR7Df1pmsq3HNbrcRAGjWrpduOx4wAAAAAAAAAAAAAAAAAAAAAAAAAAAA0NG23va/b4vJ/1Qf169ck23/eAStZ/rr+2BlzdU72hvX3/vgyg8ionFTJW/EvalzUdPtzbmyDflkEbFTx2vnZmJfxJb3arTa1BsR97zy/dtRxBf1mfJvo7LZxePsplsBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4ACQRXa3WVyL2REQ1Io7tfK3unWu7XYGd9z+NC8mtuBXvx97dqw4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJdT/f7/lSinD5WrorsScSQizkdEttt13E63drsC26R/i+ka7v+fH/PIkuguD3skPWPj83Mz+eEvxn6ofPbxJx8+2Zx8z+2WUwRW1g0uUS9hfezPH16Ze7RINTC+9N7lb7zz9XT8dFSiN04vTkyPz0zOv7aW5Ink04g0yseKvL7541tHfv1Ri5Z/mre0tfXlThQ7Z3xjuU+2St2u3Eq74lZdWl4ayaMWa28sfvNrl95v2PRYHIp4bjBisLmkr+aP1i2MQ9GzYV3v2mzyefLdZG/8KM4Xxz/fG0mW5IfokaK6/RcvLS8Nvf3O8oU2ddoXByPiQkRf1NO3rdPqrj5YXE9aKs66Sk9earUIyn/t79DG1lbHuLiwkuNwmzY8WpwyA/U29Da1odKmzLR9G4od3rDfV4950pCkrNFovUa90Vyjx+P5Fkc62xPRfi883+JId5R8nvwhORO/j+80jP9RyY//kaz9X2dzFkei+UxpG1kpI4uWjzRueHN95F9+fFu1bzlMDXfqe+WJX1dpuP7Xj9XWrkd968vJktbXo7qGEkfblNj672Ld1WH9WdH+mlv0SPvXpahffdomKuu5v4xqU8//iJcjug9E045trueG3vrl9leU5vSvrVufXS0mW/37/0kyGH+Na8b/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7n9JRFer9ZVysm9lOY3I7iDbPeWkb2O+A8kd13E7XVv99YDbX/yuNK273jlZcituZVfvVaUAAAAAAAAA2Gmnxz/7+JMP80fxfnzXrSyrv7+fRnRHxL7kh/0xPj830yGjnojzEXEzWr7dX/e3rNS8Nk8XD68t34zIHtl6kwCADv4VAAD///NHdPg=")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{0x0}, {0x0}], 0x2)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
geteuid()
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000240)=0x6)
listen(r2, 0xfffffffc)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r3, 0x1, 0x8, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r1, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYRES16], 0xfffffdef}}, 0x1)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

11.682372081s ago: executing program 5 (id=1765):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getsockopt$XDP_STATISTICS(0xffffffffffffffff, 0x11b, 0x7, &(0x7f0000000080), 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000900), 0x0, 0x0, 0x0})
syz_emit_ethernet(0xc5, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffffffffffffffffffff884700000000000000000000000000000000401a00a7006500000e219078e0000002e0000001860a346715960ce5e061445433c1e00000017fffffff0a010100000000080000000000000007ac1414aa000089880a016e9ab6960008e000000100000003ac1414bb0000008a0000000000000006ac14140a7eaa00010001ac1414bb00000005890bed0a010102e00000020000004e204e2204519078c84753b9081af4edab9464977e1a668761d696a7c69227744ef6ab7c04", @ANYRES16=r2], 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c0002800800"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

8.562495904s ago: executing program 2 (id=1767):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0xe3}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x2000000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000002c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
syz_init_net_socket$llc(0x1a, 0x1, 0x0)
r3 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x40, 0x3, 0x40000333}, 0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(0x0, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(0x0, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{0x0}], 0x1})
io_uring_enter(r3, 0x40aa, 0x0, 0x7d, 0x0, 0x0)
shutdown(0xffffffffffffffff, 0x0)
r5 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r5, 0x0, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000440), 0x0, 0x800)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
r7 = inotify_init1(0x0)
inotify_add_watch(r7, &(0x7f0000000400)='./file1\x00', 0xc0000281)
ftruncate(r6, 0x6000000)
copy_file_range(r6, 0x0, r6, &(0x7f00000004c0)=0x100, 0x9, 0x0)
syz_usb_connect$cdc_ecm(0x0, 0x5f, &(0x7f0000000040)={{0x12, 0x1, 0x250, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x4d, 0x1, 0x1, 0xff, 0x70, 0x8, [{{0x9, 0x4, 0x0, 0x1, 0x2, 0x2, 0x6, 0x0, 0x9, {{0x7, 0x24, 0x6, 0x0, 0x0, "41e1"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0x7fff, 0x1ff, 0x6eee, 0x5}, [@dmm={0x7, 0x24, 0x14, 0xdf, 0x8}]}, {[{{0x9, 0x5, 0x81, 0x3, 0x228, 0x5, 0x2, 0x7f}}], {{0x9, 0x5, 0x82, 0x2, 0x400, 0xe, 0xf, 0x2}}, {{0x9, 0x5, 0x3, 0x2, 0x10, 0x30, 0x50, 0x40}}}}}]}}]}}, &(0x7f0000000500)={0xa, &(0x7f00000000c0)={0xa, 0x6, 0x310, 0x6, 0x59, 0xfb, 0x20}, 0x2e, &(0x7f0000000100)={0x5, 0xf, 0x2e, 0x3, [@ss_cap={0xa, 0x10, 0x3, 0x0, 0x2, 0x9, 0x5, 0xc8e8}, @ss_container_id={0x14, 0x10, 0x4, 0x3, "82b5d1d0170b6161251b2a6138908510"}, @wireless={0xb, 0x10, 0x1, 0x8, 0x34, 0xf7, 0x2, 0x3, 0x6}]}, 0x3, [{0x2d, &(0x7f0000000240)=@string={0x2d, 0x3, "eb249df41fc827d945f342603ece30be73a0e7089da81cf548c05301d0ebacb6d1f346f1a29ab8673196be"}}, {0xde, &(0x7f0000000300)=@string={0xde, 0x3, "0b4cd2133de4877b139a8aad8b0b39a6ee4bc3578fae8e953c3f3d14d67003082174e259cd1d9bcfb7e553a4e08f9c1a6bc784e951e802d3a70f53a2c34089659cc5313defec6002e7c82b972157962cbb530c53a138c9a1f1c80a2423456e7492c0b5bf6cd2afd02b5b90577a4e583266f8ad411983f107691bd220e14ebde3ec43a329485240ee2f94941cc4bf9127f45a1df6e145906c3f9eebd337e01258e1dff8544728c30a880a60f354739149bbbb18eac7bccf22db49b0a2e24ca19b4c9ccbb426d85e03c48e6046a3203ab073d16bf7953ebbb097796ecb"}}, {0x3a, &(0x7f0000000480)=@string={0x3a, 0x3, "9feeadaa87930ae938b49cfa773fa8409eeb90c254d6dac54127e7c8f034e13ea5939b153d00b1428884cf3decdf99d9593c4658dbab9fa7"}}]})

8.562151984s ago: executing program 5 (id=1768):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x810, 0xffffffffffffffff, 0x17c62000)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec85000000750000008500000008"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='signal_generate\x00', r0}, 0x10)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000700)='signal_generate\x00', r1}, 0x10)
syz_open_procfs$namespace(0x0, 0xfffffffffffffffe)
recvfrom$rose(0xffffffffffffffff, 0x0, 0x0, 0x40, 0x0, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
ioctl$PIO_SCRNMAP(0xffffffffffffffff, 0x4b41, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00'})
r3 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0xfffffffffffffe1d)
ioctl$sock_netdev_private(r3, 0x8914, &(0x7f0000000000))
r4 = syz_init_net_socket$x25(0x9, 0x5, 0x0)
r5 = creat(&(0x7f00000001c0)='./bus\x00', 0x77)
lsetxattr$security_ima(&(0x7f0000000080)='./bus\x00', &(0x7f0000000180), 0x0, 0x2, 0x1)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f0000000200))
r6 = syz_init_net_socket$ax25(0x3, 0x3, 0xca)
sendto$inet(r5, &(0x7f0000000440)="eaedc54dc9dd37a911162a3c52d59ee540a4cd090c8e034120d46bad3f8ded27a52b03e717f986f978355f2af6d47fbcb18b60f23a5c8bc6ef1714a4f6ba5ae886b3f4e06d6611fea293c08ff63fa3966ec4", 0x52, 0x4010, 0x0, 0x0)
bind$ax25(r6, &(0x7f0000000540)={{0x3, @bcast, 0x1}, [@null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @null, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
ioctl$sock_ifreq(r4, 0x8990, &(0x7f0000000180)={'bond0\x00', @ifru_names='rose0\x00'})
r7 = socket$kcm(0x10, 0x400000002, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000100)=ANY=[@ANYBLOB="0007000042009103"], 0xfe33)

8.561749444s ago: executing program 6 (id=1769):
r0 = syz_open_dev$swradio(&(0x7f0000000080), 0x0, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={0x0}}, 0x40000)
r5 = syz_open_dev$radio(&(0x7f0000000000), 0x2, 0x2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r6 = fanotify_init(0xf00, 0x1000)
fanotify_mark(r6, 0x105, 0x5000003a, 0xffffffffffffffff, 0x0)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./bus\x00', 0x42, 0x0)
ioctl$SNDRV_PCM_IOCTL_HWSYNC(r7, 0x4122, 0x0)
ioctl$VIDIOC_ENUM_FRAMEINTERVALS(r0, 0xc034564b, &(0x7f0000002080)={0x338, 0x31435641, 0xffffffff, 0x16b724f6, 0x2, @stepwise={{0xd2a, 0x1a67}, {0x1, 0xda56}, {0x2, 0x4}}})
r8 = epoll_create(0x6)
r9 = dup3(r5, r8, 0x0)
read$FUSE(r9, &(0x7f0000000040)={0x2020}, 0x2020)
r10 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_GET(r10, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)={0x18, 0x1401, 0x1, 0x70bd25, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8, 0x1, 0x2}]}, 0x18}, 0x1, 0x0, 0x0, 0x44}, 0x4044080)

6.723884409s ago: executing program 6 (id=1770):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$usbfs(&(0x7f0000000340), 0x7f, 0x100)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="12000000060000000400000091c6be", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
gettid()
socket(0x27, 0x3, 0x80000000)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x3004c080)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB, @ANYRES32], 0x34}, 0x1, 0x0, 0x0, 0x24044066}, 0x800)
r3 = socket$inet6(0xa, 0x3, 0x38)
connect$inet6(r3, &(0x7f0000000300)={0xa, 0x4e23, 0x41200003, @mcast1, 0xb}, 0x1c)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xf338}], 0x1)
ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, &(0x7f00000000c0)={&(0x7f0000341000/0x4000)=nil, 0x4000})

5.619121424s ago: executing program 6 (id=1771):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000480)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
pwrite64(r1, &(0x7f0000000100)="b9405eb6c04c5b9afd3a54d1e63748f29d73f34c8d827f207b0660fb50e723b2a7e1c14059c2a6a48ab44506330486be0b1e", 0x32, 0x80)
r3 = openat$ipvs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/sys/net/ipv4/vs/drop_entry\x00', 0x2, 0x0)
r4 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x101040)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r4, 0xc0a85320, &(0x7f0000000180)={{0x80, 0x80}, 'port0\x00', 0x172, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000000c0), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_PORT(r5, 0xc0a85352, &(0x7f0000000200)={{0x80}, 'port1\x00', 0x89, 0x0, 0x4, 0xffdffeff, 0x0, 0x0, 0x200000, 0x0, 0x4875c99660ff2b28})
write$cgroup_int(r3, &(0x7f0000000040)=0x3, 0x12)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000180)={0x2008})
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB="0300000004000000040000000a00"], 0x48)
socket$inet6_sctp(0xa, 0x1, 0x84)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
r7 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./bus\x00', 0x101042, 0x0)
fcntl$setlease(r7, 0x400, 0x1)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000006c0)={{r7}, 0x0, &(0x7f0000000080)=r6}, 0x20)

5.618266734s ago: executing program 5 (id=1779):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
syz_open_dev$usbfs(&(0x7f0000000340), 0x7f, 0x100)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="12000000060000000400000091c6be", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32], 0x50)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000380)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
gettid()
socket(0x27, 0x3, 0x80000000)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
syz_clone(0x1000, 0x0, 0x0, 0x0, 0x0, 0x0)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000080)={&(0x7f0000000140)={0x2, 0x4001, @local}, 0x10, 0x0}, 0x3004c080)
sendmsg$BATADV_CMD_SET_HARDIF(0xffffffffffffffff, &(0x7f0000000180)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x20000000}, 0xc, &(0x7f0000000100)={&(0x7f0000000440)=ANY=[@ANYRES16=0x0, @ANYBLOB, @ANYRES32], 0x34}, 0x1, 0x0, 0x0, 0x24044066}, 0x800)
r3 = socket$inet6(0xa, 0x3, 0x38)
connect$inet6(r3, &(0x7f0000000300)={0xa, 0x4e23, 0x41200003, @mcast1, 0xb}, 0x1c)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000100)=',', 0xf338}], 0x1)
ioctl$UFFDIO_UNREGISTER(0xffffffffffffffff, 0x8010aa01, &(0x7f00000000c0)={&(0x7f0000341000/0x4000)=nil, 0x4000})

5.370638488s ago: executing program 2 (id=1772):
socket$key(0xf, 0x3, 0x2)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000009c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_ENABLE_STREAM_RESET(r4, 0x84, 0x76, &(0x7f0000444ff8)={0x0, 0x7}, 0x8)
setsockopt$inet_sctp6_SCTP_RECONFIG_SUPPORTED(r4, 0x84, 0x75, &(0x7f0000000380)={0x0, 0x8c}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000280)=[@in6={0xa, 0x4e23, 0x0, @loopback}], 0x1c)
sendmmsg$inet6(r4, &(0x7f0000000480), 0x0, 0x34000811)
setsockopt$inet_sctp6_SCTP_RESET_STREAMS(r4, 0x84, 0x77, &(0x7f0000000040)=ANY=[], 0x1000f)
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04230d00c900"], 0x10)
r5 = openat$cuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
read$FUSE(r5, 0x0, 0x0)
ptrace$ARCH_MAP_VDSO_64(0x1e, 0x0, 0x61a, 0x2003)
socket$nl_netfilter(0x10, 0x3, 0xc)
ptrace$ARCH_GET_GS(0x1e, 0x0, 0x0, 0x1004)

4.44845107s ago: executing program 6 (id=1773):
syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES8], 0x1, 0xab2, &(0x7f0000001740)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
geteuid()
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000240)=0x6)
listen(r2, 0xfffffffc)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r3, 0x1, 0x8, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r1, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

4.364140531s ago: executing program 5 (id=1774):
socket$nl_generic(0x10, 0x3, 0x10)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r1 = socket(0x2000000015, 0x80005, 0x0)
bind$inet6(r1, 0x0, 0x0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
clock_nanosleep(0x2, 0x0, 0x0, 0x0)
clock_adjtime(0x0, &(0x7f0000000900)={0x6, 0x20000000e, 0xf, 0x0, 0xf, 0x8000000000000000, 0xa, 0x2, 0x9, 0x4, 0x5, 0x8000000000000000, 0xc, 0x9, 0x7, 0x9, 0x8, 0x3, 0x8, 0xfffffffffffffffa, 0x0, 0x5, 0x7, 0x7, 0x3, 0x6})
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x1)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r3 = socket$tipc(0x1e, 0x2, 0x0)
sendmsg$tipc(r3, &(0x7f0000002340)={0x0, 0x0, 0x0}, 0x0)
setresuid(0x0, 0xee00, 0xee01)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x86ac726dff2f4713, 0xa)
socket$inet6_tcp(0xa, 0x1, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0x8, 0x0, 0x0, 0x0, 0x47}, 0x0, &(0x7f00000002c0)={0x3ff, 0x7, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)

3.068856449s ago: executing program 2 (id=1775):
syz_mount_image$iso9660(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000000c0)=ANY=[@ANYRES8], 0x1, 0xab2, &(0x7f0000001740)="$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")
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{0x0}, {0x0}], 0x2)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
geteuid()
ioctl$SNDRV_RAWMIDI_IOCTL_DROP(r0, 0x40045730, &(0x7f0000000240)=0x6)
listen(r2, 0xfffffffc)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$sock_int(r3, 0x1, 0x8, 0x0, 0x0)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r1, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_EVENTFD(0xffffffffffffffff, 0x5, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)=ANY=[@ANYRES16], 0xfffffdef}}, 0x1)
recvfrom(r3, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

2.99823002s ago: executing program 5 (id=1776):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x800700, &(0x7f0000000c00)={[{@usrjquota}, {@block_validity}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}, {@bsdgroups}, {@resgid}, {@minixdf}, {@usrjquota}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@data_err_ignore}, {@dioread_lock}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
chdir(&(0x7f0000000400)='./file0\x00')
r0 = open$dir(&(0x7f0000000000)='./file0/file0\x00', 0x200000, 0x102)
renameat2(0xffffffffffffff9c, 0x0, r0, &(0x7f0000000440)='./file5\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
pipe(&(0x7f0000000000))
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
copy_file_range(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
socket$vsock_stream(0x28, 0x1, 0x0)
r5 = socket(0x1e, 0x805, 0x0)
connect$tipc(r5, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{}, 0x2}}, 0x10)
connect$tipc(r5, &(0x7f0000000000)=@id={0x1e, 0x3, 0x1}, 0x10)
close(r5)

2.053432532s ago: executing program 6 (id=1777):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
sched_setaffinity(0x0, 0xfffffef7, &(0x7f0000000740)=0x410000002)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000700)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1, 0x0, 0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}]}, @NFT_MSG_NEWCHAIN={0x54, 0x3, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x28, 0x4, 0x0, 0x1, [@NFTA_HOOK_HOOKNUM={0x8, 0x1, 0x1, 0x0, 0x5}, @NFTA_HOOK_PRIORITY={0x8, 0x2, 0x1, 0x0, 0x1b2fd2c5}, @NFTA_HOOK_DEV={0x14, 0x3, 'ip6gre0\x00'}]}]}, @NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1, 0x0, 0x8}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz1\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x1}]}], {0x14}}, 0xc4}, 0x1, 0x0, 0x0, 0x20004000}, 0x0)
r4 = socket$kcm(0xa, 0x1, 0x106)
sendmsg$kcm(r4, &(0x7f00000019c0)={&(0x7f0000000200)=@l2tp6={0xa, 0x0, 0x0, @remote, 0xfffffffe}, 0x80, 0x0}, 0x20040010)
r5 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
ioctl$UI_SET_EVBIT(r5, 0x40045564, 0x3)
ioctl$UI_SET_ABSBIT(r5, 0x40045567, 0x0)
write$uinput_user_dev(r5, &(0x7f0000000ec0)={'syz0\x00', {0x0, 0x0, 0x0, 0x9}, 0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x1, 0x7, 0x0, 0x0, 0x0, 0x5, 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff], [0x0, 0x0, 0x8, 0xb16, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x2, 0x0, 0x9, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xd, 0x1000, 0x0, 0xf, 0x0, 0x2, 0x0, 0x0, 0x0, 0xfffffffe, 0x4, 0x1, 0x0, 0x0, 0x0, 0xfffffffd, 0xfffffffd, 0x0, 0xfffffffa, 0x0, 0x80000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0xe], [0x7, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0xfffffffc, 0xff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0xe, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x7, 0x4], [0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc045, 0x0, 0x0, 0x0, 0x1000, 0x0, 0x80, 0x0, 0x3, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x4, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5]}, 0x45c)
ioctl$UI_DEV_CREATE(r5, 0x5501)
write$uinput_user_dev(r5, &(0x7f0000000a40)={'syz1\x00', {0xfffd, 0xd}, 0x4d, [0x400, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x7ff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x3, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, 0x0, 0xfffffffe, 0xffff, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2], [0xffffffff, 0x3, 0x3, 0x0, 0x0, 0x6, 0x0, 0xfffffffb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x400000, 0x1, 0x0, 0x0, 0xfffffffe, 0x0, 0x4, 0x0, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfd5], [0x0, 0x80000000, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc, 0x0, 0x200000, 0x0, 0x0, 0x0, 0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x3, 0x7fffffc, 0x0, 0x0, 0x7fff, 0x0, 0x3, 0x0, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x6, 0x2], [0x81, 0x0, 0x5d30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfc2, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x2, 0x2, 0x0, 0x0, 0x0, 0x0, 0xe58b, 0xe, 0x0, 0x3, 0x0, 0x1, 0x1ff]}, 0x45c)
r6 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x900, 0x0)
ioctl$F2FS_IOC_GET_FEATURES(r4, 0x8004f50c, &(0x7f0000000040))
ioctl$SNDCTL_TMR_SOURCE(r6, 0x541b)
r7 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000080)='/sys/power/pm_freeze_timeout', 0x200001, 0x80)
ioctl$ifreq_SIOCGIFINDEX_vcan(r4, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r8=>0x0})
bind$can_raw(r7, &(0x7f0000000100)={0x1d, r8}, 0x10)

731.090621ms ago: executing program 5 (id=1778):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000280)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r5 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r5, &(0x7f0000000000)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
listen(r5, 0x101)
r6 = socket$inet_dccp(0x2, 0x6, 0x0)
setsockopt(r6, 0x10d, 0x800000000d, &(0x7f00001c9fff)="03", 0x1)
connect$inet(r6, &(0x7f0000000080)={0x2, 0x4e20, @loopback}, 0x10)
sendmmsg$inet(r6, &(0x7f0000004a80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x800)

42.50897ms ago: executing program 2 (id=1780):
r0 = socket(0x10, 0x3, 0x0)
lseek(r0, 0x5, 0x2)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
r2 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x402, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r2, 0x0)
execveat(0xffffffffffffffff, &(0x7f0000000040)='./file0\x00', &(0x7f0000000140)={[&(0x7f00000000c0), &(0x7f0000000100)='\'\x18}&&l,\x00']}, 0x0, 0x100)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x1, 0x2000)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)
syz_usb_connect(0x2, 0x0, 0x0, 0x0)
ioctl$VT_RESIZEX(0xffffffffffffffff, 0x560a, &(0x7f00000000c0)={0x3ff, 0x101, 0x6, 0x5, 0x8, 0x4})
bpf$MAP_CREATE(0x0, 0x0, 0x50)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x3)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$sock_SIOCGPGRP(r4, 0x8904, &(0x7f0000000000)=<r5=>0x0)
r6 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast2, 0x15, 0x3, 'wrr\x00', 0x1, 0x4, 0x55}, 0x2c)
r7 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADDDEST(r7, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e21, 0x3, 'wrr\x00', 0x23, 0x81, 0x5}, {@rand_addr=0xac1414aa, 0x4e23, 0x10000, 0x1cb, 0x12d5e, 0x12d58}}, 0x44)
syz_open_procfs(r5, 0x0)
bind$can_j1939(r4, 0x0, 0x0)

0s ago: executing program 6 (id=1781):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
getsockopt$XDP_STATISTICS(0xffffffffffffffff, 0x11b, 0x7, &(0x7f0000000080), 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
r4 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r4, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r5 = dup3(r4, 0xffffffffffffffff, 0x0)
ioctl$BINDER_WRITE_READ(r5, 0xc0306201, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000900), 0x0, 0x0, 0x0})
syz_emit_ethernet(0xc5, &(0x7f0000000380)=ANY=[@ANYBLOB, @ANYRES16=r2], 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x4c, 0x2, 0x6, 0x801, 0xe4340000, 0x0, {0x1, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_TYPENAME={0x12, 0x3, 'hash:net,port\x00'}]}, 0x4c}}, 0x2)
sendmsg$IPSET_CMD_ADD(r6, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)=ANY=[@ANYBLOB="54000000090601080000000000000000050000000900020073797a310000000005000100070000002c000780060004404e21000005000700e30000000c00018008000140850101010c0002800800"], 0x54}, 0x1, 0x0, 0x0, 0x10004893}, 0x80)

kernel console output (not intermixed with test programs):

ttr" info="current" error=-22 profile="unconfined" pid=5933 comm="syz.1.307"
[  333.141656][ T5938] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(6)
[  333.148705][ T5938] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  333.157971][ T5938] vhci_hcd vhci_hcd.0: Device attached
[  333.745687][  T127] usb 35-1: new low-speed USB device number 2 using vhci_hcd
[  333.819021][ T5939] vhci_hcd: connection closed
[  333.823794][ T4347] vhci_hcd: stop threads
[  333.964490][ T4347] vhci_hcd: release socket
[  333.976754][ T5943] netlink: 4 bytes leftover after parsing attributes in process `syz.4.308'.
[  334.082787][ T4347] vhci_hcd: disconnect device
[  334.496299][ T5564] 8021q: adding VLAN 0 to HW filter on device bond0
[  335.543011][ T4347] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  335.572112][ T4347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  336.498963][ T5564] 8021q: adding VLAN 0 to HW filter on device team0
[  336.554898][ T5564] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  336.625660][ T5564] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  336.702435][ T5952] netlink: 28 bytes leftover after parsing attributes in process `syz.1.311'.
[  336.727888][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  336.798353][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  336.829589][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  336.836834][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  336.865225][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  336.910941][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  337.740341][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  337.747556][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  337.993561][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  338.003389][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  338.012683][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  338.041790][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  338.061300][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  338.071865][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  338.087525][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  338.428893][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  338.935654][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  338.976296][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  339.009974][  T127] vhci_hcd: vhci_device speed not set
[  339.047644][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  339.866265][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  339.925177][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  343.453845][ T4267] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  343.474838][ T4267] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  343.495552][ T4267] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  343.519081][ T4267] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  343.538718][ T4267] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  343.550538][ T4267] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  345.799081][ T4259] Bluetooth: hci5: command 0x0409 tx timeout
[  345.989783][ T5995] lo speed is unknown, defaulting to 1000
[  346.296980][ T5836] chnl_net:caif_netlink_parms(): no params data found
[  347.724689][ T6034] loop1: detected capacity change from 0 to 1764
[  347.883444][ T4259] Bluetooth: hci5: command 0x041b tx timeout
[  348.176601][ T6041] syz.2.328 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  349.284125][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[  349.332344][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[  349.385643][ T5836] device bridge_slave_0 entered promiscuous mode
[  349.430742][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[  349.533076][ T5900] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  349.558333][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[  349.570022][ T5836] device bridge_slave_1 entered promiscuous mode
[  349.615170][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  349.656951][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  349.935665][ T4259] Bluetooth: hci5: command 0x040f tx timeout
[  352.005807][ T4259] Bluetooth: hci5: command 0x0419 tx timeout
[  352.458758][ T5836] team0: Port device team_slave_0 added
[  353.024683][ T5836] team0: Port device team_slave_1 added
[  354.155207][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[  354.745441][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  356.615492][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  356.962466][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[  356.969829][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  356.996686][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  357.872072][ T5995] chnl_net:caif_netlink_parms(): no params data found
[  358.048713][ T5836] device hsr_slave_0 entered promiscuous mode
[  358.112200][ T5836] device hsr_slave_1 entered promiscuous mode
[  358.168331][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  358.246537][ T6092] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  358.262943][ T5836] Cannot create hsr debugfs directory
[  358.475633][ T6092] overlayfs: missing 'lowerdir'
[  358.636316][ T6088] netlink: 44 bytes leftover after parsing attributes in process `syz.2.339'.
[  359.272161][ T6102] loop1: detected capacity change from 0 to 1024
[  359.299239][ T6102] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  359.446296][ T6102] EXT4-fs (loop1): barriers disabled
[  359.451780][ T6102] JBD2: no valid journal superblock found
[  359.457909][ T6102] EXT4-fs (loop1): error loading journal
[  359.601060][ T5995] bridge0: port 1(bridge_slave_0) entered blocking state
[  359.661068][ T5995] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.758949][ T5995] device bridge_slave_0 entered promiscuous mode
[  360.355463][ T5995] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.362623][ T5995] bridge0: port 2(bridge_slave_1) entered disabled state
[  360.384654][ T5995] device bridge_slave_1 entered promiscuous mode
[  360.724267][ T6116] loop1: detected capacity change from 0 to 64
[  361.179913][ T6116] --map-set only usable from mangle table
[  362.320343][ T5995] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  362.365832][ T5995] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  362.514656][ T5995] team0: Port device team_slave_0 added
[  363.731729][ T5995] team0: Port device team_slave_1 added
[  365.728663][ T6151] loop1: detected capacity change from 0 to 16
[  365.743316][ T6151] erofs: (device loop1): mounted with root inode @ nid 36.
[  365.753490][ T5995] batman_adv: batadv0: Adding interface: batadv_slave_0
[  365.765864][ T5995] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  367.971492][ T5995] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  367.988831][ T5995] batman_adv: batadv0: Adding interface: batadv_slave_1
[  368.002149][ T5995] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.038711][ T5995] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  368.102452][ T5995] device hsr_slave_0 entered promiscuous mode
[  368.109912][ T5995] device hsr_slave_1 entered promiscuous mode
[  368.116803][ T5995] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  368.124507][ T5995] Cannot create hsr debugfs directory
[  369.406442][ T4483] device hsr_slave_0 left promiscuous mode
[  369.445719][ T4483] device hsr_slave_1 left promiscuous mode
[  369.458626][ T4483] batman_adv: batadv0: Removing interface: batadv_slave_0
[  369.717503][ T4483] batman_adv: batadv0: Removing interface: batadv_slave_1
[  369.726560][ T4483] device bridge_slave_1 left promiscuous mode
[  370.115041][ T4483] bridge0: port 2(bridge_slave_1) entered disabled state
[  370.575711][ T4483] device bridge_slave_0 left promiscuous mode
[  370.843905][ T4483] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.000484][ T6202] UBIFS error (pid: 6202): cannot open "/dev/sg0", error -22
[  375.184488][ T4483] team0 (unregistering): Port device team_slave_1 removed
[  375.387699][ T4483] team0 (unregistering): Port device team_slave_0 removed
[  375.448104][ T4483] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  375.502068][ T4483] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.060392][ T4267] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  377.124755][ T4267] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  377.158005][ T4267] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  377.172670][ T4267] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  377.184030][ T4267] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  377.193939][ T4267] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  379.283838][ T4483] bond0 (unregistering): Released all slaves
[  379.840834][ T6213] lo speed is unknown, defaulting to 1000
[  379.846830][ T4267] Bluetooth: hci1: command 0x0409 tx timeout
[  381.925718][ T4267] Bluetooth: hci1: command 0x041b tx timeout
[  382.152313][   T27] audit: type=1326 audit(1748932514.937:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6243 comm="syz.4.374" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7ff5d798e969 code=0x0
[  384.035460][ T4267] Bluetooth: hci1: command 0x040f tx timeout
[  384.357764][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  384.366161][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  386.085554][ T4259] Bluetooth: hci1: command 0x0419 tx timeout
[  386.595470][   T27] audit: type=1400 audit(1748932519.187:34): apparmor="DENIED" operation="change_hat" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=6281 comm="syz.4.382"
[  387.676535][ T6213] chnl_net:caif_netlink_parms(): no params data found
[  388.056537][ T6213] bridge0: port 1(bridge_slave_0) entered blocking state
[  388.221259][ T6213] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.229789][ T6213] device bridge_slave_0 entered promiscuous mode
[  388.238786][ T6213] bridge0: port 2(bridge_slave_1) entered blocking state
[  388.267695][ T6213] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.278230][ T6302] loop1: detected capacity change from 0 to 512
[  388.288591][ T6302] ext3: Unknown parameter 'pcr'
[  388.294777][ T6213] device bridge_slave_1 entered promiscuous mode
[  388.449401][   T27] audit: type=1326 audit(1748932521.217:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6300 comm="syz.1.385" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f027ad8e969 code=0x0
[  390.420121][ T6213] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  392.182164][ T6213] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  392.341661][ T6213] team0: Port device team_slave_0 added
[  392.361873][ T6213] team0: Port device team_slave_1 added
[  392.387592][ T5995] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  392.448939][ T5995] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  392.478731][ T5995] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  392.539805][ T5995] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  392.564275][ T6213] batman_adv: batadv0: Adding interface: batadv_slave_0
[  392.572619][ T6213] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.599985][ T6213] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  392.614725][ T6213] batman_adv: batadv0: Adding interface: batadv_slave_1
[  392.621815][ T6213] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.650543][ T6213] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  392.746329][ T6213] device hsr_slave_0 entered promiscuous mode
[  392.753208][ T6213] device hsr_slave_1 entered promiscuous mode
[  393.023046][ T5995] 8021q: adding VLAN 0 to HW filter on device bond0
[  393.104262][ T5995] 8021q: adding VLAN 0 to HW filter on device team0
[  393.118814][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  393.127031][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  393.164988][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  393.176578][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  393.185057][ T4384] bridge0: port 1(bridge_slave_0) entered blocking state
[  393.192215][ T4384] bridge0: port 1(bridge_slave_0) entered forwarding state
[  393.214243][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  393.260692][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  393.270296][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  393.280787][ T4344] bridge0: port 2(bridge_slave_1) entered blocking state
[  393.288108][ T4344] bridge0: port 2(bridge_slave_1) entered forwarding state
[  393.299004][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  393.307921][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  393.345586][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  393.354971][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  393.364397][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  393.380256][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  393.389253][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  393.398212][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  393.407138][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  393.464450][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  393.487426][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  393.518990][ T5995] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  393.783235][ T6213] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  393.808743][ T6213] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  393.830602][ T6213] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  393.851078][ T6213] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  393.916480][ T4483] device hsr_slave_0 left promiscuous mode
[  393.923509][ T4483] device hsr_slave_1 left promiscuous mode
[  393.934111][ T4483] batman_adv: batadv0: Removing interface: batadv_slave_0
[  393.951082][ T4483] batman_adv: batadv0: Removing interface: batadv_slave_1
[  393.959945][ T4483] device bridge_slave_1 left promiscuous mode
[  393.966493][ T4483] bridge0: port 2(bridge_slave_1) entered disabled state
[  393.974994][ T4483] device bridge_slave_0 left promiscuous mode
[  393.981854][ T4483] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.002836][ T4483] device hsr_slave_0 left promiscuous mode
[  394.015029][ T4483] device hsr_slave_1 left promiscuous mode
[  394.022627][ T4483] batman_adv: batadv0: Removing interface: batadv_slave_0
[  394.030727][ T4483] batman_adv: batadv0: Removing interface: batadv_slave_1
[  394.039073][ T4483] device bridge_slave_1 left promiscuous mode
[  394.045650][ T4483] bridge0: port 2(bridge_slave_1) entered disabled state
[  394.055253][ T4483] device bridge_slave_0 left promiscuous mode
[  394.062280][ T4483] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.402565][ T4483] team0 (unregistering): Port device team_slave_1 removed
[  394.453942][ T4483] team0 (unregistering): Port device team_slave_0 removed
[  394.510559][ T4483] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  394.554948][ T4483] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  394.666826][ T4483] bond0 (unregistering): Released all slaves
[  394.891236][ T4483] team0 (unregistering): Port device team_slave_1 removed
[  394.938714][ T4483] team0 (unregistering): Port device team_slave_0 removed
[  394.985637][ T4483] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  395.035240][ T4483] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  395.479641][ T4483] bond0 (unregistering): Released all slaves
[  395.709600][ T6213] 8021q: adding VLAN 0 to HW filter on device bond0
[  395.756142][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  395.771556][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  395.810078][ T6213] 8021q: adding VLAN 0 to HW filter on device team0
[  395.822073][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  395.832262][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  395.841234][ T4379] bridge0: port 1(bridge_slave_0) entered blocking state
[  395.848427][ T4379] bridge0: port 1(bridge_slave_0) entered forwarding state
[  395.867245][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  395.877139][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  395.887048][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  395.897869][ T4379] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.904999][ T4379] bridge0: port 2(bridge_slave_1) entered forwarding state
[  395.919313][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  395.987833][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  396.006954][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  396.027664][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  396.044948][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  396.053490][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  396.061831][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  396.071192][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  396.089581][ T5995] 8021q: adding VLAN 0 to HW filter on device batadv0
[  396.121788][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  396.142212][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  396.164023][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  396.192347][ T6213] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  396.227261][ T6213] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  396.236628][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  396.246733][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  396.841990][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  396.856921][ T4379] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  396.875065][ T6213] 8021q: adding VLAN 0 to HW filter on device batadv0
[  397.003507][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  397.024418][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  397.076111][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  397.088459][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  397.114264][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  397.134266][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  397.144493][ T5995] device veth0_vlan entered promiscuous mode
[  397.168882][ T5995] device veth1_vlan entered promiscuous mode
[  397.215709][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  397.231809][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  397.241079][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  397.258791][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  397.276791][ T5995] device veth0_macvtap entered promiscuous mode
[  397.291353][ T5995] device veth1_macvtap entered promiscuous mode
[  397.332248][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.355421][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.388585][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.399203][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.409096][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.419637][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.431332][ T5995] batman_adv: batadv0: Interface activated: batadv_slave_0
[  397.443715][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  397.462976][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  397.485036][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  397.506730][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  397.532521][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  397.565813][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.576475][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  397.595415][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.615726][ T5995] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  397.645491][ T5995] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.666849][ T5995] batman_adv: batadv0: Interface activated: batadv_slave_1
[  397.674591][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  397.697032][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  397.716622][ T5995] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  397.726040][ T5995] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  397.734780][ T5995] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  397.744416][ T5995] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  397.780859][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  397.797550][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  397.868500][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  397.882470][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  397.900103][ T6213] device veth0_vlan entered promiscuous mode
[  397.921220][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  397.936716][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  397.951826][ T6213] device veth1_vlan entered promiscuous mode
[  397.976225][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  397.984439][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.026534][ T4313] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  398.034944][ T4313] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  398.043455][ T4313] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  398.067281][ T4379] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  398.073648][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  398.078470][ T4379] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.084430][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  398.114984][ T4344] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  398.146226][ T6213] device veth0_macvtap entered promiscuous mode
[  398.169536][ T6213] device veth1_macvtap entered promiscuous mode
[  398.215197][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.229809][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.240167][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.251400][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.262363][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.295686][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.315376][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.335379][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.347345][ T6213] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.357128][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  398.378094][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  398.398044][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  398.416251][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  398.448875][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.466455][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.481611][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.496452][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.506667][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.517907][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.528151][ T6213] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.538926][ T6213] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.550767][ T6213] batman_adv: batadv0: Interface activated: batadv_slave_1
[  398.560914][ T4313] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  398.573233][ T4313] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  398.599346][ T6213] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  398.626066][ T6213] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  398.634839][ T6213] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  398.656586][ T6213] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  398.928660][ T4313] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  398.960033][ T4313] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  398.987272][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  399.037312][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  399.056157][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  399.104878][ T4344] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.117782][ T4267] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  399.136923][ T4267] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  399.149183][ T4267] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  399.159138][ T4267] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  399.170930][ T4384] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  399.183010][ T4267] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  399.190838][ T4267] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  399.246090][ T6393] lo speed is unknown, defaulting to 1000
[  401.675016][ T4267] Bluetooth: hci4: command 0x0409 tx timeout
[  402.776831][ T4344] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  403.707744][ T4267] Bluetooth: hci4: command 0x041b tx timeout
[  404.572323][ T6426] UBIFS error (pid: 6426): cannot open "/dev/sg0", error -22
[  404.708037][ T6431] sd 0:0:1:0: device reset
[  405.009857][ T6433] vxfs: WRONG superblock magic 00000000 at 1
[  405.016713][ T6433] vxfs: WRONG superblock magic 00000000 at 8
[  405.022831][ T6433] vxfs: can't find superblock.
[  405.917847][ T4267] Bluetooth: hci4: command 0x040f tx timeout
[  406.273353][ T4344] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.719588][ T6431] loop5: detected capacity change from 0 to 32768
[  407.089837][ T6435] loop1: detected capacity change from 0 to 512
[  407.926026][ T4267] Bluetooth: hci4: command 0x0419 tx timeout
[  407.961754][ T6435] EXT4-fs (loop1): couldn't mount as ext3 due to feature incompatibilities
[  408.118670][ T6438] netlink: 48 bytes leftover after parsing attributes in process `syz.2.394'.
[  409.330906][ T4344] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.667363][ T6431] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  411.467747][ T6393] chnl_net:caif_netlink_parms(): no params data found
[  413.938519][ T6478] loop1: detected capacity change from 0 to 32768
[  417.286998][ T6213] ocfs2: Unmounting device (7,5) on (node local)
[  420.090076][ T6580] loop5: detected capacity change from 0 to 512
[  420.103269][ T6580] EXT4-fs: Ignoring removed bh option
[  420.151354][ T6580] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  420.475886][ T6580] EXT4-fs (loop5): 1 truncate cleaned up
[  420.481614][ T6580] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  420.758148][ T6213] EXT4-fs (loop5): unmounting filesystem.
[  421.542012][ T6393] bridge0: port 1(bridge_slave_0) entered blocking state
[  421.582176][ T6393] bridge0: port 1(bridge_slave_0) entered disabled state
[  422.281993][ T6393] device bridge_slave_0 entered promiscuous mode
[  422.305750][ T6600] ax25_connect(): syz.4.415 uses autobind, please contact jreuter@yaina.de
[  422.836463][ T6393] bridge0: port 2(bridge_slave_1) entered blocking state
[  422.843618][ T6393] bridge0: port 2(bridge_slave_1) entered disabled state
[  422.892657][ T6393] device bridge_slave_1 entered promiscuous mode
[  425.417063][ T6624] batman_adv: batadv: cannot create tp meter kthread
[  425.998729][ T6393] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  426.094268][ T6393] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  427.325524][ T6642] loop1: detected capacity change from 0 to 512
[  427.336339][ T6642] EXT4-fs: Ignoring removed bh option
[  427.359902][ T6642] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[  427.590609][ T6393] team0: Port device team_slave_0 added
[  428.279901][ T6642] EXT4-fs (loop1): 1 truncate cleaned up
[  428.285923][ T6642] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  428.554257][ T4250] EXT4-fs (loop1): unmounting filesystem.
[  428.622489][ T6659] loop5: detected capacity change from 0 to 1764
[  428.638439][ T6393] team0: Port device team_slave_1 added
[  431.260705][ T6690] loop5: detected capacity change from 0 to 128
[  431.327380][ T6690] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  431.410367][ T6690] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  432.230899][ T4267] Bluetooth: hci4: command 0x0405 tx timeout
[  434.557418][ T6539] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  435.466294][ T6393] batman_adv: batadv0: Adding interface: batadv_slave_0
[  435.479727][ T6393] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  435.587518][ T6393] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  435.704531][ T6393] batman_adv: batadv0: Adding interface: batadv_slave_1
[  435.734323][ T6393] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  435.747603][ T6720] loop1: detected capacity change from 0 to 1764
[  435.833895][ T6393] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  438.795817][ T6393] device hsr_slave_0 entered promiscuous mode
[  438.806004][ T6393] device hsr_slave_1 entered promiscuous mode
[  438.815742][ T6393] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  438.824511][ T6393] Cannot create hsr debugfs directory
[  438.833076][ T4344] device hsr_slave_0 left promiscuous mode
[  438.863786][ T4344] device hsr_slave_1 left promiscuous mode
[  438.911382][ T4344] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  438.953536][ T4344] batman_adv: batadv0: Removing interface: batadv_slave_0
[  438.991227][ T4344] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  439.038413][ T4344] batman_adv: batadv0: Removing interface: batadv_slave_1
[  439.135245][ T4344] device bridge_slave_1 left promiscuous mode
[  439.211783][ T4344] bridge0: port 2(bridge_slave_1) entered disabled state
[  439.356412][ T4344] device bridge_slave_0 left promiscuous mode
[  439.408439][ T4344] bridge0: port 1(bridge_slave_0) entered disabled state
[  439.460382][ T6735] Process accounting resumed
[  439.717885][ T4344] device veth1_macvtap left promiscuous mode
[  439.725133][ T4344] device veth0_macvtap left promiscuous mode
[  439.968629][ T4344] device veth1_vlan left promiscuous mode
[  439.974523][ T4344] device veth0_vlan left promiscuous mode
[  444.868753][ T6804] loop1: detected capacity change from 0 to 1764
[  444.953746][ T6414] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  445.382595][ T4344] team0 (unregistering): Port device team_slave_1 removed
[  445.691144][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  445.697949][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  445.926259][ T4344] team0 (unregistering): Port device team_slave_0 removed
[  446.167872][ T4344] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  446.362860][ T4344] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  449.707440][ T6849] Cannot find del_set index 1 as target
[  449.716227][ T6849] netlink: 24 bytes leftover after parsing attributes in process `syz.2.475'.
[  453.740964][ T6868] syz.4.477 (6868): drop_caches: 2
[  455.854100][ T4344] bond0 (unregistering): Released all slaves
[  459.226018][ T6914] loop5: detected capacity change from 0 to 256
[  459.233051][ T6914] exfat: Unknown parameter '�ys_tz'
[  459.288026][ T6414] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  462.950335][ T6919] syz.5.491 (6919): drop_caches: 2
[  464.557056][ T6930] binder: 6925:6930 ioctl c0306201 0 returned -14
[  466.937618][ T4259] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  466.950671][ T4259] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  466.959932][ T4259] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  466.969615][ T4259] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  466.978505][ T4259] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  466.986220][ T4259] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  467.679961][ T6952] lo speed is unknown, defaulting to 1000
[  469.045529][ T4267] Bluetooth: hci4: command 0x0409 tx timeout
[  470.024447][ T6523] device hsr_slave_0 left promiscuous mode
[  470.038552][ T6523] device hsr_slave_1 left promiscuous mode
[  470.053636][ T6523] batman_adv: batadv0: Removing interface: batadv_slave_0
[  470.090581][ T6523] batman_adv: batadv0: Removing interface: batadv_slave_1
[  470.141760][ T6523] device bridge_slave_1 left promiscuous mode
[  470.165612][ T6523] bridge0: port 2(bridge_slave_1) entered disabled state
[  470.223388][ T6523] device bridge_slave_0 left promiscuous mode
[  470.254705][ T6523] bridge0: port 1(bridge_slave_0) entered disabled state
[  470.657669][ T6987] random: crng reseeded on system resumption
[  471.125372][ T4267] Bluetooth: hci4: command 0x041b tx timeout
[  473.205726][ T4267] Bluetooth: hci4: command 0x040f tx timeout
[  474.868929][ T7000] binder: 6998:7000 ioctl c0306201 0 returned -14
[  475.286001][ T4267] Bluetooth: hci4: command 0x0419 tx timeout
[  475.800354][ T6523] team0 (unregistering): Port device team_slave_1 removed
[  477.444957][ T4267] Bluetooth: hci4: command 0x0405 tx timeout
[  477.916982][ T6461] Bluetooth: hci5: Frame reassembly failed (-84)
[  478.136062][ T6523] team0 (unregistering): Port device team_slave_0 removed
[  478.167838][ T6523] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  479.925489][ T4267] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  480.970025][ T6523] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  481.063067][ T7021] tty tty31: ldisc open failed (-12), clearing slot 30
[  481.071049][ T7028] tty tty1: ldisc open failed (-12), clearing slot 0
[  481.459081][ T7035] loop1: detected capacity change from 0 to 1764
[  482.269924][ T6414] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  484.522866][ T6523] bond0 (unregistering): Released all slaves
[  485.064054][ T7064] random: crng reseeded on system resumption
[  489.911267][ T6952] chnl_net:caif_netlink_parms(): no params data found
[  491.461598][ T7089] loop1: detected capacity change from 0 to 4096
[  491.664721][   T27] audit: type=1800 audit(1748932624.407:36): pid=7088 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.528" name="file1" dev="loop1" ino=15 res=0 errno=0
[  491.689546][ T7091] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  491.732143][ T6952] bridge0: port 1(bridge_slave_0) entered blocking state
[  491.911411][ T6952] bridge0: port 1(bridge_slave_0) entered disabled state
[  491.965631][ T6952] device bridge_slave_0 entered promiscuous mode
[  491.996010][ T6952] bridge0: port 2(bridge_slave_1) entered blocking state
[  492.041826][ T6952] bridge0: port 2(bridge_slave_1) entered disabled state
[  492.205355][ T6952] device bridge_slave_1 entered promiscuous mode
[  492.701348][ T6952] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  492.727096][ T6952] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  492.768592][ T6952] team0: Port device team_slave_0 added
[  492.782703][ T6952] team0: Port device team_slave_1 added
[  492.810578][ T6952] batman_adv: batadv0: Adding interface: batadv_slave_0
[  492.817734][ T6952] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.057022][ T6952] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  493.163202][ T6952] batman_adv: batadv0: Adding interface: batadv_slave_1
[  493.251346][ T6952] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  493.414607][ T6952] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  493.430113][ T7109] loop5: detected capacity change from 0 to 512
[  493.497530][ T7109] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  494.189466][ T7109] EXT4-fs error (device loop5): ext4_do_update_inode:5253: inode #16: comm syz.5.542: corrupted inode contents
[  494.225992][ T7109] EXT4-fs error (device loop5): ext4_dirty_inode:6118: inode #16: comm syz.5.542: mark_inode_dirty error
[  494.350468][ T7109] EXT4-fs error (device loop5): ext4_do_update_inode:5253: inode #16: comm syz.5.542: corrupted inode contents
[  494.415375][ T7109] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #16: comm syz.5.542: mark_inode_dirty error
[  494.472193][ T7109] EXT4-fs error (device loop5): ext4_do_update_inode:5253: inode #16: comm syz.5.542: corrupted inode contents
[  494.534462][ T7109] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  494.567665][ T6952] device hsr_slave_0 entered promiscuous mode
[  494.605626][ T7109] EXT4-fs error (device loop5): ext4_do_update_inode:5253: inode #16: comm syz.5.542: corrupted inode contents
[  494.692769][ T6952] device hsr_slave_1 entered promiscuous mode
[  495.440341][ T7109] EXT4-fs error (device loop5): ext4_truncate:4312: inode #16: comm syz.5.542: mark_inode_dirty error
[  495.480453][ T6952] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  495.505479][ T6952] Cannot create hsr debugfs directory
[  495.685576][ T7109] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  496.020187][ T7109] EXT4-fs (loop5): 1 truncate cleaned up
[  496.370890][ T6512] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  496.409378][ T7109] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  496.441430][ T7109] ext4 filesystem being mounted at /29/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  496.479183][ T6512] EXT4-fs error (device loop5): ext4_release_dquot:6838: comm kworker/u4:21: Failed to release dquot type 1
[  496.682027][ T6213] EXT4-fs (loop5): unmounting filesystem.
[  501.339548][ T6952] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  501.821820][ T6952] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  502.136308][ T6952] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  502.815960][ T6952] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  504.068786][ T6952] 8021q: adding VLAN 0 to HW filter on device bond0
[  504.085368][ T4259] Bluetooth: hci1: command 0x0406 tx timeout
[  506.011287][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  506.057800][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  506.231220][ T6952] 8021q: adding VLAN 0 to HW filter on device team0
[  506.523444][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  506.606815][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  506.739024][ T4378] bridge0: port 1(bridge_slave_0) entered blocking state
[  506.746243][ T4378] bridge0: port 1(bridge_slave_0) entered forwarding state
[  506.906203][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  507.003400][ T4426] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  507.046278][ T4426] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  507.101650][ T4426] bridge0: port 2(bridge_slave_1) entered blocking state
[  507.108859][ T4426] bridge0: port 2(bridge_slave_1) entered forwarding state
[  507.129188][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  507.135672][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  507.285704][ T6527] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  507.294673][ T6527] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  508.100148][ T6527] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  508.164607][ T6527] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  508.221992][ T6527] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  508.273069][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  508.316613][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  508.383952][ T6952] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  508.444028][ T6952] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  508.509896][ T7194] loop5: detected capacity change from 0 to 1764
[  509.571002][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  509.652137][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  509.683815][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  511.355723][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  511.495433][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  512.522582][ T7216] binder: BINDER_SET_CONTEXT_MGR already set
[  512.528693][ T7216] binder: 7212:7216 ioctl 4018620d 200000000040 returned -16
[  512.539172][ T7216] binder: 7212:7216 ioctl c0306201 2000000003c0 returned -22
[  512.969607][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  512.978818][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  512.999750][ T6952] 8021q: adding VLAN 0 to HW filter on device batadv0
[  513.543101][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  513.553784][ T6546] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  513.594233][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  513.603908][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  513.616367][ T6952] device veth0_vlan entered promiscuous mode
[  513.625899][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  513.634577][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  513.649299][ T6952] device veth1_vlan entered promiscuous mode
[  513.680466][ T6531] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  513.690854][ T6531] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  513.700207][ T6531] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  513.709449][ T6531] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  513.720907][ T6952] device veth0_macvtap entered promiscuous mode
[  513.733582][ T6952] device veth1_macvtap entered promiscuous mode
[  513.759237][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.775171][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.788571][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.804418][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.816084][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.831396][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.842507][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  513.858039][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.872003][ T6952] batman_adv: batadv0: Interface activated: batadv_slave_0
[  513.884174][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  513.895544][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  513.904035][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  513.921982][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  513.934579][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.950090][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.961762][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  513.976543][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  513.989798][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  514.002491][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.021279][ T6952] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  514.033593][ T6952] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  514.050909][ T6952] batman_adv: batadv0: Interface activated: batadv_slave_1
[  514.061125][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  514.076630][ T4389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  514.093378][ T6952] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  514.104391][ T6952] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  514.113995][ T6952] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  514.124622][ T6952] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  514.228585][ T6546] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  514.245377][ T6546] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  514.268018][ T6531] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  514.283580][ T6531] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  514.295617][ T6531] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  514.311050][ T4378] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  517.233106][ T7296] loop6: detected capacity change from 0 to 256
[  517.240246][ T7296] exfat: Unknown parameter '�ys_tz'
[  518.021648][ T6414] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  519.158118][ T7311] syz.6.556 (7311): drop_caches: 2
[  520.765962][ T7319] device dummy0 entered promiscuous mode
[  521.254084][ T7327] loop6: detected capacity change from 0 to 2048
[  521.294079][ T7327] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  521.301953][ T7327] UDF-fs: Scanning with blocksize 512 failed
[  521.321484][ T7327] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  522.303132][ T7331] loop6: detected capacity change from 0 to 1764
[  523.287204][ T7343] loop1: detected capacity change from 0 to 32768
[  523.307988][ T6414] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  523.394436][ T7343] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode.
[  523.907027][ T4250] ocfs2: Unmounting device (7,1) on (node local)
[  525.065490][ T7357] loop6: detected capacity change from 0 to 16
[  525.212564][ T7357] erofs: (device loop6): mounted with root inode @ nid 36.
[  525.443968][ T7359] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  525.453504][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 47 @ nid 36
[  525.462745][ T7359] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  525.472242][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 46 @ nid 36
[  525.481640][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 45 @ nid 36
[  525.509011][ T7359] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  525.518600][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 43 @ nid 36
[  525.527966][ T7359] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  525.537493][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 42 @ nid 36
[  525.546873][ T7359] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  525.556478][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 41 @ nid 36
[  525.565850][ T7359] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  525.575398][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 40 @ nid 36
[  525.584727][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 39 @ nid 36
[  525.594259][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 38 @ nid 36
[  525.603922][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 36 @ nid 36
[  525.830663][ T7359] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36
[  525.840714][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 31 @ nid 36
[  525.855448][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 25 @ nid 36
[  525.864617][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 24 @ nid 36
[  525.875583][ T7359] erofs: (device loop6): z_erofs_readahead: readahead error at page 19 @ nid 36
[  525.884964][ T7359] syz.6.573: attempt to access beyond end of device
[  525.884964][ T7359] loop6: rw=524288, sector=784, nr_sectors = 64 limit=16
[  525.905589][ T7359] syz.6.573: attempt to access beyond end of device
[  525.905589][ T7359] loop6: rw=524288, sector=13478624080, nr_sectors = 24 limit=16
[  525.930284][ T7359] syz.6.573: attempt to access beyond end of device
[  525.930284][ T7359] loop6: rw=524288, sector=13478624032, nr_sectors = 48 limit=16
[  525.945098][ T7359] syz.6.573: attempt to access beyond end of device
[  525.945098][ T7359] loop6: rw=524288, sector=16, nr_sectors = 16 limit=16
[  530.524557][ T7413] device veth0_vlan left promiscuous mode
[  530.531326][ T7413] device veth0_vlan entered promiscuous mode
[  530.602827][ T7414] overlayfs: unrecognized mount option "/" or missing value
[  534.500523][ T7437] device macsec0 entered promiscuous mode
[  542.661333][ T7410] [U] .�
[  546.471036][ T7497] Process accounting resumed
[  549.751695][ T7523] loop5: detected capacity change from 0 to 1764
[  554.734292][ T7562] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(10)
[  554.740971][ T7562] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[  554.752811][ T7562] vhci_hcd vhci_hcd.0: Device attached
[  554.787933][ T7573] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  554.867396][ T7575] vhci_hcd vhci_hcd.0: pdev(6) rhport(2) sockfd(12)
[  554.874061][ T7575] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  554.902098][ T7575] vhci_hcd vhci_hcd.0: Device attached
[  554.947932][ T4552] vhci_hcd: vhci_device speed not set
[  554.963024][ T7571] vhci_hcd vhci_hcd.0: pdev(6) rhport(1) sockfd(13)
[  554.969688][ T7571] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  555.025458][ T4552] usb 45-1: new full-speed USB device number 2 using vhci_hcd
[  556.594744][ T7571] vhci_hcd vhci_hcd.0: Device attached
[  556.608730][ T7581] loop1: detected capacity change from 0 to 1764
[  556.799926][ T7562] vhci_hcd vhci_hcd.0: pdev(6) rhport(4) sockfd(15)
[  556.806600][ T7562] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  556.814844][ T7573] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  557.625066][ T7597] loop5: detected capacity change from 0 to 1764
[  557.643706][ T7562] vhci_hcd vhci_hcd.0: Device attached
[  557.653161][ T7562] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  557.663205][ T7562] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  557.769231][ T7571] vhci_hcd vhci_hcd.0: pdev(6) rhport(0) sockfd(21)
[  557.775911][ T7571] vhci_hcd vhci_hcd.0: devid(0) speed(5) speed_str(super-speed)
[  558.536128][ T7571] vhci_hcd vhci_hcd.0: Device attached
[  558.605445][ T6479] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  559.209031][ T7590] vhci_hcd: connection closed
[  559.210497][ T6527] vhci_hcd: stop threads
[  559.220073][ T6527] vhci_hcd: release socket
[  559.630883][ T7587] vhci_hcd: connection closed
[  559.633399][ T7577] vhci_hcd: connection closed
[  559.643647][ T7572] vhci_hcd: connection closed
[  559.650648][ T7564] vhci_hcd: connection reset by peer
[  559.666243][ T6527] vhci_hcd: disconnect device
[  559.730254][ T6527] vhci_hcd: stop threads
[  559.906186][ T6527] vhci_hcd: release socket
[  559.911054][ T6527] vhci_hcd: disconnect device
[  559.916630][ T6527] vhci_hcd: stop threads
[  559.935441][ T6527] vhci_hcd: release socket
[  559.975334][ T6527] vhci_hcd: disconnect device
[  560.012305][ T6527] vhci_hcd: stop threads
[  560.045397][ T6527] vhci_hcd: release socket
[  560.073258][ T6527] vhci_hcd: disconnect device
[  561.152994][ T6527] vhci_hcd: stop threads
[  561.159214][ T6527] vhci_hcd: release socket
[  561.164167][ T6527] vhci_hcd: disconnect device
[  561.695669][ T4552] vhci_hcd: vhci_device speed not set
[  563.866763][ T7653] loop1: detected capacity change from 0 to 256
[  563.873739][ T7653] exfat: Unknown parameter '�ys_tz'
[  563.926227][    T7] usb usb46-port1: attempt power cycle
[  563.999564][ T6414] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  567.379467][ T7661] syz.1.632 (7661): drop_caches: 2
[  567.746864][    T7] usb usb46-port1: unable to enumerate USB device
[  568.575555][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  568.588489][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  568.891634][ T7678] loop1: detected capacity change from 0 to 1764
[  569.821682][ T6479] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  569.874315][ T7687] loop5: detected capacity change from 0 to 1764
[  572.893437][ T7725] loop1: detected capacity change from 0 to 8
[  574.191622][ T7733] netlink: 'syz.1.647': attribute type 10 has an invalid length.
[  574.444293][ T7733] 8021q: adding VLAN 0 to HW filter on device batadv0
[  574.452192][ T7733] team0: Port device batadv0 added
[  574.982792][ T7735] loop6: detected capacity change from 0 to 1764
[  576.303071][ T7741] loop1: detected capacity change from 0 to 1764
[  580.727834][ T7785] loop5: detected capacity change from 0 to 1764
[  580.957330][ T6414] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  582.848342][ T7810] loop6: detected capacity change from 0 to 1764
[  583.561506][ T6479] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  584.479013][ T7826] loop1: detected capacity change from 0 to 1764
[  585.306088][ T6414] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  585.364786][ T7836] loop5: detected capacity change from 0 to 1764
[  590.563269][ T7889] loop5: detected capacity change from 0 to 1764
[  591.190483][ T7901] loop1: detected capacity change from 0 to 1764
[  591.285404][ T4259] Bluetooth: hci4: command 0x0406 tx timeout
[  591.317991][ T6414] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  601.266909][ T7963] loop1: detected capacity change from 0 to 1764
[  603.474219][ T7984] loop6: detected capacity change from 0 to 1764
[  607.016840][ T8020] random: crng reseeded on system resumption
[  611.952752][ T8034] loop1: detected capacity change from 0 to 1764
[  612.772644][ T6479] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  616.762729][ T8067] loop1: detected capacity change from 0 to 1764
[  616.894275][ T8070] loop6: detected capacity change from 0 to 1764
[  617.200987][ T6441] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  620.589657][ T8101] loop1: detected capacity change from 0 to 1764
[  624.022335][ T8130] loop1: detected capacity change from 0 to 1764
[  624.027685][ T8134] loop6: detected capacity change from 0 to 1764
[  628.234079][ T8175] loop6: detected capacity change from 0 to 1764
[  628.325361][ T6414] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  629.704018][ T8186] loop6: detected capacity change from 0 to 1764
[  629.797066][ T6414] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  630.036076][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  630.042445][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  632.275749][ T8194] overlayfs: failed to clone upperpath
[  632.488405][ T8195] loop5: detected capacity change from 0 to 1764
[  632.799606][ T6479] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  633.177080][ T8202] loop1: detected capacity change from 0 to 1764
[  633.193321][ T8209] random: crng reseeded on system resumption
[  638.310091][ T8217] loop6: detected capacity change from 0 to 1764
[  639.732714][ T8240] loop1: detected capacity change from 0 to 1764
[  645.075086][ T8262] loop1: detected capacity change from 0 to 1764
[  645.120246][ T6414] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  645.133903][ T8263] loop5: detected capacity change from 0 to 1764
[  645.229925][ T6479] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  646.205796][ T8273] random: crng reseeded on system resumption
[  650.872615][ T8290] loop1: detected capacity change from 0 to 1764
[  650.923891][ T8292] loop5: detected capacity change from 0 to 1764
[  651.315503][ T6414] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  651.331269][ T6479] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  653.913680][ T8313] I/O error, dev loop6, sector 128 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 1
[  653.923466][ T8313] gfs2: error 10 reading superblock
[  654.064575][ T8321] loop5: detected capacity change from 0 to 1764
[  655.019959][ T8325] loop1: detected capacity change from 0 to 1764
[  655.143765][ T6479] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  656.699320][ T8342] loop6: detected capacity change from 0 to 1764
[  658.418134][ T8354] loop5: detected capacity change from 0 to 32768
[  658.955356][ T8358] loop6: detected capacity change from 0 to 1764
[  661.590861][ T8372] loop5: detected capacity change from 0 to 1764
[  662.203064][ T8382] loop1: detected capacity change from 0 to 1764
[  662.278337][ T6479] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  663.990979][ T8399] loop6: detected capacity change from 0 to 1764
[  664.074123][ T6414] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  665.207061][ T8407] loop1: detected capacity change from 0 to 1764
[  665.319169][ T6441] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  665.391540][ T8417] gfs2: gfs2 mount does not exist
[  671.534242][ T8469] netlink: 8 bytes leftover after parsing attributes in process `syz.1.817'.
[  672.413425][ T8464] loop5: detected capacity change from 0 to 1764
[  672.730148][ T6414] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  672.796113][ T8477] loop1: detected capacity change from 0 to 256
[  674.726709][ T8484] loop6: detected capacity change from 0 to 1764
[  674.956344][ T6441] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  675.508142][ T8495] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  675.517047][ T8495] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  675.524596][ T8495] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  675.685475][ T8496] netlink: 40 bytes leftover after parsing attributes in process `syz.1.824'.
[  677.082979][ T8507] loop1: detected capacity change from 0 to 1764
[  677.147149][ T6479] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  679.006784][ T8519] loop5: detected capacity change from 0 to 1764
[  680.156389][ T8531] random: crng reseeded on system resumption
[  683.453442][ T8546] loop5: detected capacity change from 0 to 1764
[  683.516054][ T8542] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  685.364595][ T8560] loop6: detected capacity change from 0 to 1764
[  686.926284][ T8573] loop1: detected capacity change from 0 to 1764
[  687.218537][ T8576] loop6: detected capacity change from 0 to 1764
[  690.105005][ T8604] loop5: detected capacity change from 0 to 1764
[  691.447388][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  691.455066][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  691.897993][ T8620] loop5: detected capacity change from 0 to 1764
[  694.263256][ T8633] loop6: detected capacity change from 0 to 1764
[  694.933215][ T8639] loop5: detected capacity change from 0 to 1764
[  695.332076][ T8643] loop6: detected capacity change from 0 to 1764
[  696.385480][ T8653] loop1: detected capacity change from 0 to 1764
[  696.525737][ T8557] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  698.514410][ T8673] loop6: detected capacity change from 0 to 4096
[  698.668881][ T8673] ntfs3: loop6: Different NTFS' sector size (1024) and media sector size (512)
[  699.864518][ T8673] ntfs3: loop6: Mark volume as dirty due to NTFS errors
[  699.895741][ T8673] ntfs3: loop6: Failed to load $Bitmap.
[  700.874967][ T8691] loop1: detected capacity change from 0 to 1764
[  701.680023][ T8557] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  702.063024][ T8705] loop5: detected capacity change from 0 to 1764
[  703.137620][ T8711] 8021q: VLANs not supported on xfrm0
[  705.421821][ T8728] loop1: detected capacity change from 0 to 1764
[  706.704324][ T8734] loop5: detected capacity change from 0 to 1764
[  707.649394][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  713.177918][    C0] Unknown status report in ack skb
[  713.584614][ T8790] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  715.086857][ T8804] xt_hashlimit: overflow, try lower: 35184372088832/511
[  715.615421][ T4259] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  715.616893][ T4267] Bluetooth: hci5: command 0x1003 tx timeout
[  717.254538][ T8816] loop5: detected capacity change from 0 to 1764
[  717.536438][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  717.745464][ T8824] loop6: detected capacity change from 0 to 2048
[  718.507952][ T4377] kworker/dying (4377) used greatest stack depth: 20384 bytes left
[  718.566479][ T8824] UDF-fs: warning (device loop6): udf_load_vrs: No anchor found
[  718.574196][ T8824] UDF-fs: Scanning with blocksize 512 failed
[  718.611503][ T8824] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  723.534622][ T8877] loop1: detected capacity change from 0 to 1764
[  726.562713][ T8905] autofs4:pid:8905:autofs_fill_super: called with bogus options
[  726.713283][ T8907] erofs: (device nullb0): erofs_read_superblock: cannot find valid erofs superblock
[  730.363823][ T8951] syz.4.925[8951] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  730.363937][ T8951] syz.4.925[8951] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  733.580923][ T8962] fuse: Invalid rootmode
[  743.503687][ T9050] loop6: detected capacity change from 0 to 1764
[  743.655352][ T9052] tipc: Started in network mode
[  743.661612][ T9052] tipc: Node identity 4000004, cluster identity 4711
[  743.668433][ T9052] tipc: Node number set to 67108868
[  752.952755][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  752.952848][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  759.313030][ T9166] loop6: detected capacity change from 0 to 1764
[  761.859929][ T9200] loop6: detected capacity change from 0 to 1764
[  767.180943][ T9250] loop6: detected capacity change from 0 to 1764
[  767.367717][ T8540] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  769.274176][   T27] audit: type=1326 audit(1748932902.057:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  769.713428][    C0] Unknown status report in ack skb
[  771.473747][   T27] audit: type=1326 audit(1748932902.057:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  771.535472][   T27] audit: type=1326 audit(1748932902.057:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  771.749992][   T27] audit: type=1326 audit(1748932902.057:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  771.804712][   T27] audit: type=1326 audit(1748932902.057:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f027ad8e9a3 code=0x7ffc0000
[  771.829296][   T27] audit: type=1326 audit(1748932902.057:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f027ad8e9a3 code=0x7ffc0000
[  773.170541][   T27] audit: type=1326 audit(1748932902.057:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  773.349473][   T27] audit: type=1326 audit(1748932902.217:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  775.934717][   T27] audit: type=1326 audit(1748932902.217:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  775.957316][   T27] audit: type=1326 audit(1748932902.217:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  775.980207][   T27] audit: type=1326 audit(1748932902.257:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  776.002548][   T27] audit: type=1326 audit(1748932902.257:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  776.024859][   T27] audit: type=1326 audit(1748932902.257:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  776.048305][   T27] audit: type=1326 audit(1748932902.257:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  776.070663][   T27] audit: type=1326 audit(1748932902.257:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  776.202430][   T27] audit: type=1326 audit(1748932902.257:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  776.335292][   T27] audit: type=1326 audit(1748932902.257:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  777.282457][   T27] audit: type=1326 audit(1748932902.257:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9275 comm="syz.1.1002" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f027ad8e969 code=0x7ffc0000
[  777.426568][ T9333] random: crng reseeded on system resumption
[  780.900430][ T9338] loop5: detected capacity change from 0 to 1764
[  786.448787][ T9404] loop5: detected capacity change from 0 to 1764
[  786.508202][ T9406] loop1: detected capacity change from 0 to 1764
[  786.549110][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  786.599247][ T8547] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  787.707661][ T9416] random: crng reseeded on system resumption
[  790.851932][ T9419] loop1: detected capacity change from 0 to 1764
[  794.924653][ T9457] loop5: detected capacity change from 0 to 2048
[  795.444187][ T9464] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  796.499029][ T9471] loop5: detected capacity change from 0 to 1764
[  796.600043][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  799.682313][ T9506] loop5: detected capacity change from 0 to 1764
[  801.023429][ T9522] loop1: detected capacity change from 0 to 1764
[  802.052330][ T9533] loop6: detected capacity change from 0 to 1764
[  803.066100][ T8547] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  805.657255][ T9585] loop5: detected capacity change from 0 to 1764
[  805.719851][ T9581] loop1: detected capacity change from 0 to 1764
[  806.017602][ T8547] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  806.032820][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  808.713216][ T9620] loop1: detected capacity change from 0 to 1764
[  808.784596][ T9621] loop6: detected capacity change from 0 to 1764
[  810.461434][ T9635] loop5: detected capacity change from 0 to 1764
[  810.899614][ T9643] loop1: detected capacity change from 0 to 2048
[  812.729199][ T9652] [U] .�
[  812.874492][ T9654] loop6: detected capacity change from 0 to 1764
[  813.227186][ T8540] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  813.802450][ T9673] overlayfs: failed to clone upperpath
[  814.167889][ T9678] loop1: detected capacity change from 0 to 1764
[  814.199102][ T9676] loop5: detected capacity change from 0 to 1764
[  814.240850][ T8540] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  814.316386][ T8547] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  814.330435][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  814.338689][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  816.416174][ T9698] loop5: detected capacity change from 0 to 256
[  819.178967][ T9727] loop6: detected capacity change from 0 to 1764
[  819.299717][ T8540] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  820.588266][ T9743] loop1: detected capacity change from 0 to 1764
[  822.484983][ T9756] loop6: detected capacity change from 0 to 1764
[  825.164626][ T9807] loop6: detected capacity change from 0 to 1764
[  827.698737][ T9831] loop6: detected capacity change from 0 to 1764
[  827.771150][ T8540] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  829.936164][ T9862] xt_HMARK: proto mask must be zero with L3 mode
[  829.962166][ T9862] Bluetooth: (null): Invalid header checksum
[  831.286718][ T9875] loop6: detected capacity change from 0 to 64
[  832.317364][ T9889] loop1: detected capacity change from 0 to 512
[  834.112588][ T9889] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  834.358934][ T9889] EXT4-fs warning (device loop1): ext4_multi_mount_protect:404: Unable to create kmmpd thread for loop1.
[  835.190190][ T9883] ptm ptm1: ldisc open failed (-12), clearing slot 1
[  840.035734][ T9957] can0: slcan on ptm0.
[  841.158007][ T9953] can0 (unregistered): slcan off ptm0.
[  845.964922][T10007] loop5: detected capacity change from 0 to 1764
[  848.017435][T10023] loop1: detected capacity change from 0 to 32768
[  848.278554][T10023] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.1173 (10023)
[  848.938828][T10023] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  848.949767][T10023] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  848.958542][T10023] BTRFS info (device loop1): force clearing of disk cache
[  848.965773][T10023] BTRFS info (device loop1): force zlib compression, level 3
[  848.973202][T10023] BTRFS info (device loop1): enabling auto defrag
[  848.979737][T10023] BTRFS info (device loop1): max_inline at 0
[  848.986095][T10023] BTRFS info (device loop1): enabling disk space caching
[  848.993172][T10023] BTRFS info (device loop1): disk space caching is enabled
[  849.572897][T10023] BTRFS info (device loop1): enabling ssd optimizations
[  849.586264][T10023] BTRFS info (device loop1): rebuilding free space tree
[  849.686229][T10023] BTRFS info (device loop1): disabling free space tree
[  849.693268][T10023] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  849.703639][T10023] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  850.374769][ T4250] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  853.504698][T10086] loop1: detected capacity change from 0 to 1764
[  853.521384][T10088] loop5: detected capacity change from 0 to 1764
[  854.636338][T10095] loop5: detected capacity change from 0 to 512
[  855.407173][T10095] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[  855.689021][T10095] ext4 filesystem being mounted at /145/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[  856.670462][ T8807] Bluetooth: hci1: unexpected event 0x06 length: 4 > 3
[  857.701456][T10110] loop1: detected capacity change from 0 to 1764
[  857.858070][ T6213] EXT4-fs (loop5): unmounting filesystem.
[  857.899994][ T8557] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  860.490930][T10137] loop5: detected capacity change from 0 to 2048
[  860.596411][T10137] UDF-fs: bad mount option "partitiow=00000000000000000002" or missing value
[  862.286251][T10154] loop6: detected capacity change from 0 to 2048
[  862.316960][T10154] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  862.398858][T10155] --map-set only usable from mangle table
[  862.761838][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  863.985415][T10145] Process accounting resumed
[  868.233614][T10176] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1217'.
[  869.765891][T10188] loop6: detected capacity change from 0 to 512
[  869.785724][T10188] EXT4-fs: Ignoring removed bh option
[  869.793285][T10188] EXT4-fs (loop6): mounting ext3 file system using the ext4 subsystem
[  870.007822][T10188] EXT4-fs (loop6): 1 truncate cleaned up
[  870.013576][T10188] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  871.353087][T10214] QAT: failed to copy from user.
[  872.530153][ T6952] EXT4-fs (loop6): unmounting filesystem.
[  872.562699][T10225] loop5: detected capacity change from 0 to 1764
[  872.640455][T10228] loop1: detected capacity change from 0 to 1764
[  874.431555][T10242] I/O error, dev loop5, sector 128 op 0x0:(READ) flags 0x1000 phys_seg 1 prio class 2
[  874.441965][T10242] gfs2: error 10 reading superblock
[  875.778577][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  875.784977][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  878.218534][T10273] loop5: detected capacity change from 0 to 1764
[  878.295190][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  880.198791][T10289] loop5: detected capacity change from 0 to 1764
[  884.468855][T10320] loop6: detected capacity change from 0 to 1764
[  885.231803][T10331] loop5: detected capacity change from 0 to 1764
[  885.718613][T10337] loop1: detected capacity change from 0 to 1764
[  885.834271][ T8540] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  887.359201][T10353] loop5: detected capacity change from 0 to 1764
[  890.189829][T10372] overlayfs: failed to resolve './file0': -2
[  891.281893][T10384] loop5: detected capacity change from 0 to 1764
[  892.926166][T10401] loop5: detected capacity change from 0 to 32768
[  893.609493][T10404] read_mapping_page failed!
[  893.614968][T10404] jfs_create: dtInsert returned -EIO
[  893.621555][T10404] ERROR: (device loop5): jfs_create: 
[  893.621555][T10404] 
[  893.634936][T10404] ERROR: (device loop5): remounting filesystem as read-only
[  894.183643][T10414] loop1: detected capacity change from 0 to 1764
[  894.297786][ T8547] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  896.082286][T10432] loop1: detected capacity change from 0 to 1764
[  898.228606][T10447] loop1: detected capacity change from 0 to 1764
[  898.315213][ T8540] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  900.070768][ T6512] Bluetooth: hci5: Frame reassembly failed (-84)
[  902.085437][ T8807] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  902.128873][T10488] loop6: detected capacity change from 0 to 1764
[  902.463454][T10493] loop1: detected capacity change from 0 to 1764
[  904.284351][T10506] loop5: detected capacity change from 0 to 1764
[  907.871211][T10537] loop5: detected capacity change from 0 to 1764
[  908.666633][T10540] binder: 10529:10540 ioctl c00c620f 200000000dc0 returned -22
[  911.283518][T10563] loop6: detected capacity change from 0 to 1764
[  912.073911][T10559] loop5: detected capacity change from 0 to 1764
[  912.184842][ T8557] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  915.387475][T10591] loop6: detected capacity change from 0 to 1764
[  915.413720][T10594] loop1: detected capacity change from 0 to 1764
[  920.473745][T10640] loop6: detected capacity change from 0 to 1764
[  920.650064][T10645] binder: 10637:10645 ioctl c0306201 0 returned -14
[  920.829731][ T8540] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  925.179922][T10682] loop1: detected capacity change from 0 to 1764
[  925.307308][ T8547] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  925.573060][T10687] loop6: detected capacity change from 0 to 1024
[  925.623621][T10687] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  925.652800][T10687] EXT4-fs (loop6): barriers disabled
[  925.663922][T10687] JBD2: no valid journal superblock found
[  925.691649][T10687] EXT4-fs (loop6): error loading journal
[  927.703190][T10701] binder: 10697:10701 ioctl c0306201 0 returned -14
[  929.419178][T10694] loop6: detected capacity change from 0 to 64
[  930.175875][T10694] --map-set only usable from mangle table
[  933.550804][T10739] loop1: detected capacity change from 0 to 1764
[  933.768563][ T8547] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  935.544675][T10767] loop6: detected capacity change from 0 to 2048
[  935.552848][T10767] UDF-fs: bad mount option "partitiow=00000000000000000002" or missing value
[  935.605677][ T8540] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  937.379377][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  937.385723][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  938.941069][T10794] loop1: detected capacity change from 0 to 1764
[  939.953315][ T4252] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  939.963741][ T4252] CPU: 0 PID: 4252 Comm: kworker/u5:1 Not tainted 6.1.140-syzkaller #0
[  939.972032][ T4252] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[  939.982208][ T4252] Workqueue: hci1 hci_rx_work
[  939.986972][ T4252] Call Trace:
[  939.990371][ T4252]  <TASK>
[  939.993333][ T4252]  dump_stack_lvl+0x168/0x22e
[  939.998053][ T4252]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  940.003720][ T4252]  ? show_regs_print_info+0x12/0x12
[  940.008958][ T4252]  ? asm_sysvec_reschedule_ipi+0x16/0x20
[  940.014636][ T4252]  ? dump_stack+0x5/0x12
[  940.018927][ T4252]  sysfs_create_dir_ns+0x252/0x280
[  940.024082][ T4252]  ? hci_rx_work+0x3eb/0xd40
[  940.028710][ T4252]  ? sysfs_warn_dup+0xa0/0xa0
[  940.033431][ T4252]  ? do_raw_spin_unlock+0x11d/0x230
[  940.038679][ T4252]  kobject_add_internal+0x6b8/0xc80
[  940.043916][ T4252]  kobject_add+0x152/0x210
[  940.048385][ T4252]  ? kobject_init+0x1d0/0x1d0
[  940.053113][ T4252]  ? klist_children_get+0x50/0x50
[  940.058197][ T4252]  ? get_device_parent+0x121/0x3f0
[  940.063374][ T4252]  device_add+0x483/0xfb0
[  940.067740][ T4252]  ? kmem_cache_free+0xf7/0x290
[  940.072634][ T4252]  hci_conn_add_sysfs+0xd1/0x1e0
[  940.077616][ T4252]  le_conn_complete_evt+0xd1d/0x1320
[  940.082953][ T4252]  ? hci_le_big_info_adv_report_evt+0x310/0x310
[  940.089236][ T4252]  ? skb_pull_data+0x23/0x200
[  940.093965][ T4252]  ? __sanitizer_cov_trace_pc+0x45/0x60
[  940.099564][ T4252]  ? skb_pull_data+0xf7/0x200
[  940.104331][ T4252]  hci_le_conn_complete_evt+0x183/0x440
[  940.110151][ T4252]  ? hci_remote_host_features_evt+0x270/0x270
[  940.116325][ T4252]  hci_event_packet+0x791/0x1210
[  940.121372][ T4252]  ? bis_list+0x280/0x280
[  940.125809][ T4252]  ? kcov_remote_start+0x27/0x7e0
[  940.130912][ T4252]  ? hci_send_to_monitor+0x9c/0x4a0
[  940.136202][ T4252]  hci_rx_work+0x3eb/0xd40
[  940.140863][ T4252]  ? _raw_spin_unlock+0x40/0x40
[  940.145842][ T4252]  ? process_one_work+0x7a1/0x1160
[  940.151052][ T4252]  process_one_work+0x898/0x1160
[  940.156172][ T4252]  ? worker_detach_from_pool+0x240/0x240
[  940.161894][ T4252]  ? _raw_spin_lock_irq+0xab/0xe0
[  940.167012][ T4252]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  940.172492][ T4252]  ? kthread_data+0x4b/0xc0
[  940.177093][ T4252]  worker_thread+0xaa2/0x1250
[  940.181898][ T4252]  kthread+0x29d/0x330
[  940.186063][ T4252]  ? worker_clr_flags+0x1a0/0x1a0
[  940.191350][ T4252]  ? kthread_blkcg+0xd0/0xd0
[  940.196037][ T4252]  ret_from_fork+0x1f/0x30
[  940.200565][ T4252]  </TASK>
[  940.224256][ T4252] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  940.237874][ T4252] Bluetooth: hci1: failed to register connection device
[  941.040105][T10809] loop1: detected capacity change from 0 to 128
[  941.060827][T10809] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  941.098688][T10809] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  941.743712][ T6523] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  942.948658][T10823] xt_hashlimit: overflow, try lower: 35184372088832/511
[  946.042904][T10850] --map-set only usable from mangle table
[  946.405226][ T8807] Bluetooth: hci1: command 0x0406 tx timeout
[  946.884169][T10861] loop6: detected capacity change from 0 to 128
[  946.905000][T10861] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  947.021280][T10861] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  947.606589][ T6539] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  949.364697][T10884] loop6: detected capacity change from 0 to 1764
[  950.669231][T10894] loop5: detected capacity change from 0 to 512
[  950.680882][T10894] EXT4-fs: Ignoring removed bh option
[  950.926119][T10894] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  950.966860][T10894] EXT4-fs (loop5): 1 truncate cleaned up
[  950.972579][T10894] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  951.202014][ T6213] EXT4-fs (loop5): unmounting filesystem.
[  955.366380][T10946] loop1: detected capacity change from 0 to 1764
[  957.513018][T10958] loop5: detected capacity change from 0 to 40427
[  957.749920][T10958] F2FS-fs (loop5): invalid crc value
[  957.759914][T10962] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1399'.
[  958.263819][T10958] F2FS-fs (loop5): Found nat_bits in checkpoint
[  958.315176][T10958] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  960.559114][ T6213] syz-executor: attempt to access beyond end of device
[  960.559114][ T6213] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  965.923190][T11009] loop1: detected capacity change from 0 to 1764
[  967.783216][T11021] loop6: detected capacity change from 0 to 1764
[  974.363791][ T4483] Bluetooth: hci5: Frame reassembly failed (-84)
[  976.406237][ T4252] Bluetooth: hci5: command 0x1003 tx timeout
[  976.415245][ T8807] Bluetooth: hci5: Opcode 0x1003 failed: -110
[  977.689048][T11087] loop5: detected capacity change from 0 to 1764
[  979.873699][T11107] binder: 11102:11107 ioctl c0306201 0 returned -14
[  985.534815][T11139] tipc: Started in network mode
[  985.539846][T11139] tipc: Node identity 4000004, cluster identity 4711
[  985.546648][T11139] tipc: Node number set to 67108868
[  986.442286][T11152] loop1: detected capacity change from 0 to 1764
[  987.111068][T11157] loop5: detected capacity change from 0 to 128
[  987.128386][T11157] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  987.188850][T11157] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  987.224898][T11154] xt_CT: No such helper "snmp"
[  987.845355][T10989] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  989.057265][T11173] binder: 11170:11173 ioctl c0306201 0 returned -14
[  993.950087][T11204] tipc: Started in network mode
[  993.955014][T11204] tipc: Node identity 4000004, cluster identity 4711
[  993.963766][T11204] tipc: Node number set to 67108868
[  996.723890][T11232] input: syz1 as /devices/virtual/input/input16
[  998.769120][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  998.779615][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  999.377742][T11252] loop1: detected capacity change from 0 to 1764
[ 1000.676268][T11265] netlink: 88 bytes leftover after parsing attributes in process `syz.4.1470'.
[ 1000.687118][T11265] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1470'.
[ 1002.576725][T11269] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1473'.
[ 1002.635303][T11269] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1473'.
[ 1003.861491][T11294] xt_HMARK: proto mask must be zero with L3 mode
[ 1003.897588][T11294] Bluetooth: (null): Invalid header checksum
[ 1005.420823][T11300] loop1: detected capacity change from 0 to 1764
[ 1007.391424][T11322] FAT-fs (nullb0): bogus number of reserved sectors
[ 1007.398429][T11322] FAT-fs (nullb0): Can't find a valid FAT filesystem
[ 1010.674658][T11354] loop1: detected capacity change from 0 to 512
[ 1010.686363][T11354] EXT4-fs: Ignoring removed bh option
[ 1010.707666][T11354] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[ 1010.845657][T11354] EXT4-fs (loop1): 1 truncate cleaned up
[ 1010.851423][T11354] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1011.117063][ T4250] EXT4-fs (loop1): unmounting filesystem.
[ 1012.123683][T11368] loop1: detected capacity change from 0 to 1764
[ 1012.243800][ T8540] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1012.305553][T11370] loop5: detected capacity change from 0 to 128
[ 1012.312971][T11370] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1012.595966][T11370] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1015.411977][T11399] xt_HMARK: proto mask must be zero with L3 mode
[ 1015.441679][T11399] Bluetooth: (null): Invalid header checksum
[ 1016.361559][T10989] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1018.768710][T11425] binder: 11421:11425 ioctl c0306201 0 returned -14
[ 1021.027690][T11452] mmap: syz.4.1515 (11452) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 1022.005913][T11458] No such timeout policy "syz1"
[ 1023.060634][T11468] xt_HMARK: proto mask must be zero with L3 mode
[ 1024.236202][T11465] netlink: 72 bytes leftover after parsing attributes in process `syz.1.1518'.
[ 1028.914355][T11491] loop6: detected capacity change from 0 to 512
[ 1029.479804][T11491] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1030.361891][T11491] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1030.383057][T11491] ext4 filesystem being mounted at /199/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1031.847648][T11515] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters
[ 1032.062949][ T6952] EXT4-fs (loop6): unmounting filesystem.
[ 1032.266293][T11528] binder: 11522:11528 ioctl c0306201 0 returned -14
[ 1034.985116][ T4297] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[ 1035.941575][ T4297] usb 7-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1037.424279][ T4297] usb 7-1: string descriptor 0 read error: -71
[ 1037.435371][ T4297] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1037.444557][ T4297] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1037.552417][ T4297] usb 7-1: can't set config #1, error -71
[ 1037.725937][ T4297] usb 7-1: USB disconnect, device number 2
[ 1038.698866][ T8557] udevd[8557]: setting owner of /dev/bus/usb/007/002 to uid=0, gid=0 failed: No such file or directory
[ 1038.710228][   T27] kauditd_printk_skb: 13 callbacks suppressed
[ 1038.710242][   T27] audit: type=1326 audit(2000000004.070:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1038.832999][   T27] audit: type=1326 audit(2000000004.080:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1040.199209][   T27] audit: type=1326 audit(2000000004.080:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1040.254523][T11595] loop5: detected capacity change from 0 to 1024
[ 1040.300360][T11595] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[ 1040.303062][   T27] audit: type=1326 audit(2000000004.080:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f644ff8e9a3 code=0x7ffc0000
[ 1040.348918][T11595] EXT4-fs (loop5): barriers disabled
[ 1040.364168][T11595] JBD2: no valid journal superblock found
[ 1040.390709][T11595] EXT4-fs (loop5): error loading journal
[ 1040.436269][   T27] audit: type=1326 audit(2000000004.080:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f644ff8e9a3 code=0x7ffc0000
[ 1040.624254][   T27] audit: type=1326 audit(2000000004.080:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1041.113838][T11605] --map-set only usable from mangle table
[ 1041.520084][   T27] audit: type=1326 audit(2000000004.090:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1041.864698][   T27] audit: type=1326 audit(2000000004.090:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1041.979032][   T27] audit: type=1326 audit(2000000004.090:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1042.017519][   T27] audit: type=1326 audit(2000000004.090:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11585 comm="syz.2.1548" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7ffc0000
[ 1043.274933][T11621] loop6: detected capacity change from 0 to 512
[ 1045.691772][T11621] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[ 1045.711056][T11621] ext4 filesystem being mounted at /202/w��5�T��)�`)Y�F�nA��@T<�3�ڂ$���r�cnH�<�p�r��>�wC�" ��-������8 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1046.412879][ T4259] Bluetooth: hci4: unexpected event 0x06 length: 4 > 3
[ 1047.739227][ T6952] EXT4-fs (loop6): unmounting filesystem.
[ 1048.441208][T11679] loop6: detected capacity change from 0 to 1024
[ 1050.099690][T11679] EXT4-fs (loop6): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[ 1050.705299][T11679] EXT4-fs (loop6): barriers disabled
[ 1050.710659][T11679] JBD2: no valid journal superblock found
[ 1050.785289][T11679] EXT4-fs (loop6): error loading journal
[ 1051.443688][T11693] --map-set only usable from mangle table
[ 1055.955429][T11727] loop5: detected capacity change from 0 to 1764
[ 1057.440904][T11737] loop6: detected capacity change from 0 to 2048
[ 1059.608915][T11737] Alternate GPT is invalid, using primary GPT.
[ 1059.615624][T11737]  loop6: p1 p2 p3
[ 1059.739659][ T8540] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1060.457554][T11756] --map-set only usable from mangle table
[ 1060.741980][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1060.748426][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1060.930672][T11746] loop5: detected capacity change from 0 to 4096
[ 1061.010508][T11746] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512)
[ 1062.133627][ T8542] udevd[8542]: inotify_add_watch(7, /dev/loop6p3, 10) failed: No such file or directory
[ 1062.136953][ T8547] udevd[8547]: inotify_add_watch(7, /dev/loop6p2, 10) failed: No such file or directory
[ 1062.337824][ T8540] udevd[8540]: inotify_add_watch(7, /dev/loop6p1, 10) failed: No such file or directory
[ 1062.404595][T11746] ntfs3: loop5: failed to convert "c46c" to macroman
[ 1062.874686][T11774] netlink: 36 bytes leftover after parsing attributes in process `syz.6.1585'.
[ 1062.892746][T11774] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1585'.
[ 1062.925944][T11774] IPv6: ADDRCONF(NETDEV_CHANGE): wg2: link becomes ready
[ 1065.369847][T11791] device syzkaller0 entered promiscuous mode
[ 1065.381151][T11789] loop1: detected capacity change from 0 to 1764
[ 1065.423495][T11791] PF_CAN: dropped non conform CAN FD skbuff: dev type 280, len 65487
[ 1066.845982][T11803] loop6: detected capacity change from 0 to 128
[ 1066.863588][T11803] ext4: Unknown parameter 'fowner'
[ 1068.519711][T11806] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1593'.
[ 1069.626262][T11805] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1593'.
[ 1070.340274][T11827] Invalid ELF header magic: != ELF
[ 1070.368873][T11826] kernel read not supported for file / 
�7���âW)�s���!Q���fs�l{T�r�)r��O���2:"��T+͟v|�ղDvc���֠�6�x�c: (pid: 11826 comm: syz.5.1596)
[ 1070.385727][   T27] kauditd_printk_skb: 57 callbacks suppressed
[ 1070.385774][   T27] audit: type=1800 audit(2000000015.620:135): pid=11826 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.1596" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=60288 res=0 errno=0
[ 1073.076499][T11837] loop6: detected capacity change from 0 to 16
[ 1073.128720][T11837] erofs: (device loop6): mounted with root inode @ nid 36.
[ 1074.813883][T11857] loop1: detected capacity change from 0 to 1764
[ 1077.459680][T11875] Quota error (device loop4): write_blk: dquota write failed
[ 1077.468598][T11875] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota
[ 1077.479294][T11875] EXT4-fs error (device loop4): ext4_acquire_dquot:6802: comm syz.4.1605: Failed to acquire dquot type 0
[ 1077.714976][ T4259] Bluetooth: hci3: unexpected event 0x06 length: 4 > 3
[ 1079.094319][T11884] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0.
[ 1080.152053][T11899] lo speed is unknown, defaulting to 1000
[ 1080.814366][T11903] input: syz0 as /devices/virtual/input/input17
[ 1084.085302][ T4339] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1085.507830][T11944] loop6: detected capacity change from 0 to 128
[ 1085.765836][ T4339] usb 6-1: device not accepting address 2, error -71
[ 1086.342159][T11947] vivid-002: kernel_thread() failed
[ 1087.987077][T11945] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1621'.
[ 1097.898589][T12036] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1098.815165][ T4297] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 1099.085231][ T4297] usb 5-1: Using ep0 maxpacket: 32
[ 1099.097565][ T4297] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[ 1099.159181][ T4297] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[ 1099.221974][ T4297] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[ 1099.294131][ T4297] usb 5-1: Product: syz
[ 1099.318929][ T4297] usb 5-1: Manufacturer: syz
[ 1099.323587][ T4297] usb 5-1: SerialNumber: syz
[ 1099.405960][ T4297] usb 5-1: config 0 descriptor??
[ 1099.414449][T12026] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1100.520855][ T8966] usb 5-1: USB disconnect, device number 2
[ 1101.714458][T12056] lo speed is unknown, defaulting to 1000
[ 1101.915415][T12054] loop1: detected capacity change from 0 to 256
[ 1102.286099][T12066] kernel profiling enabled (shift: 9)
[ 1103.765229][T12076] ptrace attach of "./syz-executor exec"[4258] was attempted by "./syz-executor exec"[12076]
[ 1103.793557][T12076] batman_adv: batadv0: Interface activated: wlan0
[ 1105.174809][T12077] lo speed is unknown, defaulting to 1000
[ 1111.296184][T12112] futex_wake_op: syz.4.1660 tries to shift op by -33; fix this program
[ 1111.573022][T12120] loop5: detected capacity change from 0 to 40427
[ 1111.605918][T12120] F2FS-fs (loop5): invalid crc value
[ 1111.666986][T12120] F2FS-fs (loop5): Found nat_bits in checkpoint
[ 1111.741882][T12120] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[ 1112.072247][T12129] syz.5.1661: attempt to access beyond end of device
[ 1112.072247][T12129] loop5: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[ 1112.403258][T12112] orangefs_mount: mount request failed with -4
[ 1113.061506][ T6213] syz-executor: attempt to access beyond end of device
[ 1113.061506][ T6213] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[ 1113.435248][T12136] loop1: detected capacity change from 0 to 1764
[ 1116.339550][T12159] loop6: detected capacity change from 0 to 128
[ 1117.006035][T12159] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1117.076720][T12159] ext4 filesystem being mounted at /225/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1118.197233][ T4259] Bluetooth: hci3: unexpected event 0x0b length: 3 < 11
[ 1119.164531][T12187] loop1: detected capacity change from 0 to 128
[ 1119.240395][T12187] EXT4-fs: Ignoring removed nobh option
[ 1119.322161][T12187] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[ 1119.722467][T12192] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[ 1119.899333][T12187] ext4 filesystem being mounted at /376/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1120.337397][ T6952] EXT4-fs (loop6): unmounting filesystem.
[ 1121.215928][T12196] loop6: detected capacity change from 0 to 1764
[ 1121.326325][ T4250] EXT4-fs (loop1): unmounting filesystem.
[ 1121.530361][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1121.536791][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1121.842811][T12202] loop6: detected capacity change from 0 to 1764
[ 1122.028712][T12203] hub 8-0:1.0: USB hub found
[ 1122.034864][T12203] hub 8-0:1.0: 1 port detected
[ 1122.349993][T11931] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1125.166806][T12222] loop5: detected capacity change from 0 to 128
[ 1125.246764][T12222] qnx6: unable to set blocksize
[ 1125.782087][T12229] loop6: detected capacity change from 0 to 32768
[ 1125.873191][T12234] loop1: detected capacity change from 0 to 1024
[ 1126.935518][T12229] sctp: [Deprecated]: syz.6.1687 (pid 12229) Use of int in max_burst socket option.
[ 1126.935518][T12229] Use struct sctp_assoc_value instead
[ 1128.492111][T12234] EXT4-fs: Ignoring removed orlov option
[ 1128.572149][T12247] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[ 1129.508110][T12234] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 1129.526271][T12234] EXT4-fs: failed to create workqueue
[ 1129.531715][T12234] EXT4-fs (loop1): mount failed
[ 1129.843983][T12247] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1686'.
[ 1130.245488][ T4315] usb 7-1: new full-speed USB device number 3 using dummy_hcd
[ 1131.535260][ T4259] Bluetooth: hci4: command 0x0405 tx timeout
[ 1136.383077][ T4315] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1136.535967][ T4315] usb 7-1: unable to read config index 0 descriptor/start: -71
[ 1136.543627][ T4315] usb 7-1: can't read configurations, error -71
[ 1136.671797][T12269] syz.1.1695 sent an empty control message without MSG_MORE.
[ 1136.862239][ T6828] EXT4-fs (loop4): unmounting filesystem.
[ 1138.959086][T12278] loop6: detected capacity change from 0 to 1764
[ 1139.082405][T11931] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1140.839990][ T6525] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1141.929844][ T6525] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1142.099117][ T4259] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1142.110797][ T4259] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1142.119478][ T4259] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1142.128950][ T4259] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1142.139708][ T4259] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[ 1142.147219][ T4259] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1142.365788][T12306] loop6: detected capacity change from 0 to 256
[ 1143.518199][ T6525] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1143.697200][T12301] lo speed is unknown, defaulting to 1000
[ 1144.247027][ T4259] Bluetooth: hci3: command 0x0409 tx timeout
[ 1146.373235][ T4259] Bluetooth: hci3: command 0x041b tx timeout
[ 1147.309975][ T6525] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1148.405294][ T4259] Bluetooth: hci3: command 0x040f tx timeout
[ 1150.495104][ T4259] Bluetooth: hci3: command 0x0419 tx timeout
[ 1150.925831][T12341] loop5: detected capacity change from 0 to 512
[ 1151.021929][T12341] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #15: comm syz.5.1710: casefold flag without casefold feature
[ 1151.157135][T12341] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.1710: couldn't read orphan inode 15 (err -117)
[ 1151.248983][T12341] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback.
[ 1151.348711][T12301] chnl_net:caif_netlink_parms(): no params data found
[ 1152.005270][ T6408] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[ 1152.189379][ T6525] tipc: Left network mode
[ 1152.328257][ T6408] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[ 1152.398201][ T6408] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1152.409218][ T6408] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66
[ 1152.419214][ T6408] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1152.446344][ T6408] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[ 1152.456174][ T6408] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[ 1152.464207][ T6408] usb 6-1: Product: syz
[ 1152.468885][ T6408] usb 6-1: Manufacturer: syz
[ 1152.506768][ T6408] cdc_wdm 6-1:1.0: skipping garbage
[ 1152.512652][ T6408] cdc_wdm 6-1:1.0: skipping garbage
[ 1152.838973][T12351] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1152.848451][T12351] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1153.115175][ T6408] cdc_wdm: probe of 6-1:1.0 failed with error -22
[ 1154.406868][ T4339] usb 6-1: USB disconnect, device number 4
[ 1154.497581][ T6213] EXT4-fs (loop5): unmounting filesystem.
[ 1156.556753][T12393] loop5: detected capacity change from 0 to 1764
[ 1156.650148][ T8807] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1156.662090][ T8807] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1156.678524][ T8807] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1156.693353][ T8807] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1156.703443][ T8807] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1156.711061][ T8807] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1156.829572][T12301] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1156.840299][T12301] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1157.035301][T12301] device bridge_slave_0 entered promiscuous mode
[ 1157.056179][T12301] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1157.063566][T12301] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1157.081116][T12301] device bridge_slave_1 entered promiscuous mode
[ 1157.106353][T12404] ax25_connect(): syz.6.1719 uses autobind, please contact jreuter@yaina.de
[ 1158.805332][ T4259] Bluetooth: hci0: command 0x0409 tx timeout
[ 1159.037750][T12394] lo speed is unknown, defaulting to 1000
[ 1159.086100][T12301] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1159.297683][T12301] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1159.355921][T12409] loop5: detected capacity change from 0 to 1764
[ 1160.222779][T12301] team0: Port device team_slave_0 added
[ 1160.458421][T12418] netlink: 36 bytes leftover after parsing attributes in process `syz.2.1722'.
[ 1160.486358][T12301] team0: Port device team_slave_1 added
[ 1160.564096][T12422] loop6: detected capacity change from 0 to 512
[ 1160.648706][T12422] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.1723: inode #1: comm syz.6.1723: iget: illegal inode #
[ 1160.690281][T12422] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.1723: error while reading EA inode 1 err=-117
[ 1160.835719][   T27] audit: type=1326 audit(2000000069.880:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1160.861962][T12422] EXT4-fs warning (device loop6): ext4_expand_extra_isize_ea:2818: Unable to expand inode 15. Delete some EAs or run e2fsck.
[ 1160.891330][ T4259] Bluetooth: hci0: command 0x041b tx timeout
[ 1160.903106][T12422] EXT4-fs error (device loop6): ext4_xattr_inode_iget:404: comm syz.6.1723: inode #1: comm syz.6.1723: iget: illegal inode #
[ 1161.580712][T12422] EXT4-fs error (device loop6): ext4_xattr_inode_iget:409: comm syz.6.1723: error while reading EA inode 1 err=-117
[ 1161.607680][T12422] EXT4-fs (loop6): 1 orphan inode deleted
[ 1161.613534][T12422] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[ 1161.723928][   T27] audit: type=1326 audit(2000000069.880:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1161.803460][   T27] audit: type=1326 audit(2000000069.880:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1161.826675][   T27] audit: type=1326 audit(2000000069.880:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1161.852595][   T27] audit: type=1326 audit(2000000069.880:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1161.903158][T12301] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1161.920574][T12301] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1162.238061][   T27] audit: type=1326 audit(2000000069.880:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1162.239474][T12301] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1162.269039][   T27] audit: type=1326 audit(2000000069.880:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1163.314873][ T8807] Bluetooth: hci0: command 0x040f tx timeout
[ 1163.321043][ T8807] Bluetooth: hci1: unexpected event 0x0b length: 3 < 11
[ 1163.364726][   T27] audit: type=1326 audit(2000000069.880:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1163.390738][   T27] audit: type=1326 audit(2000000069.880:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1163.399695][ T6952] EXT4-fs (loop6): unmounting filesystem.
[ 1163.510075][   T27] audit: type=1326 audit(2000000069.880:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12411 comm="syz.2.1722" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f644ff8e969 code=0x7fc00000
[ 1163.570853][T12301] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1163.602777][T12442] loop5: detected capacity change from 0 to 1764
[ 1163.613634][T12301] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1163.950147][T12449] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1727'.
[ 1164.572480][T12446] sctp: failed to load transform for md5: -2
[ 1164.575908][T12301] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1165.437769][ T8807] Bluetooth: hci0: command 0x0419 tx timeout
[ 1167.014396][T12301] device hsr_slave_0 entered promiscuous mode
[ 1167.055613][T12301] device hsr_slave_1 entered promiscuous mode
[ 1167.084698][T12301] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1167.129577][T12301] Cannot create hsr debugfs directory
[ 1167.135776][T12394] chnl_net:caif_netlink_parms(): no params data found
[ 1167.377244][T12490] loop5: detected capacity change from 0 to 4096
[ 1169.255171][T12501] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1169.281338][T12501] CIFS: Unable to determine destination address
[ 1170.578773][T12394] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1170.600159][T12394] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1170.639963][T12394] device bridge_slave_0 entered promiscuous mode
[ 1170.675950][T12394] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1170.735640][T12394] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1170.765440][T12394] device bridge_slave_1 entered promiscuous mode
[ 1171.267563][ T6213] ntfs3: loop5: ntfs_evict_inode r=5 failed, -22.
[ 1171.281942][T12502] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[ 1171.327144][ T6213] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[ 1171.387231][T12394] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1171.551874][T12394] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1171.776817][T12520] loop6: detected capacity change from 0 to 1764
[ 1172.701662][ T6525] device hsr_slave_0 left promiscuous mode
[ 1172.724505][ T6525] device hsr_slave_1 left promiscuous mode
[ 1172.757338][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1172.790886][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1172.826021][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1172.858936][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1172.907908][ T6525] device bridge_slave_1 left promiscuous mode
[ 1172.924761][ T6525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1172.953719][T12343] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1172.985518][ T6525] device bridge_slave_0 left promiscuous mode
[ 1172.991818][ T6525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1174.102012][ T6525] device veth1_macvtap left promiscuous mode
[ 1174.125181][ T6525] device veth0_macvtap left promiscuous mode
[ 1174.157679][ T6525] device veth1_vlan left promiscuous mode
[ 1174.175004][ T6525] device veth0_vlan left promiscuous mode
[ 1174.300577][ T6546] Bluetooth: hci5: Frame reassembly failed (-84)
[ 1174.318174][T12536] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1176.559606][ T4259] Bluetooth: hci5: Opcode 0x1003 failed: -110
[ 1176.676008][ T6525] infiniband s
z1: set down
[ 1180.676819][T12566] loop5: detected capacity change from 0 to 2048
[ 1181.123455][T12580] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1182.193454][T12587] xt_time: invalid argument - start or stop time greater than 23:59:59
[ 1182.307273][ T6525] team0 (unregistering): Port device team_slave_1 removed
[ 1182.441018][ T6525] team0 (unregistering): Port device team_slave_0 removed
[ 1182.554732][ T6525] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1182.815881][ T6525] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1183.007687][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1183.014001][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[ 1185.904556][T12604] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1186.234675][ T6525] bond0 (unregistering): Released all slaves
[ 1187.490979][ T6539] smc: removing ib device s
z1
[ 1187.518417][T12301] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1187.649056][T10068] lo speed is unknown, defaulting to 1000
[ 1187.663383][T12394] team0: Port device team_slave_0 added
[ 1188.613796][T12301] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1188.658069][T12619] loop6: detected capacity change from 0 to 1764
[ 1188.688123][T12301] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1188.774642][T12394] team0: Port device team_slave_1 added
[ 1190.037372][T12301] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1190.330214][T12394] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1190.337354][T12394] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1190.382018][T12394] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1191.089875][T12394] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1191.098448][T12394] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1191.209474][T12394] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1191.926358][T12394] device hsr_slave_0 entered promiscuous mode
[ 1191.981435][T12394] device hsr_slave_1 entered promiscuous mode
[ 1192.135737][T12394] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1192.143388][T12394] Cannot create hsr debugfs directory
[ 1194.506987][T12660] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[ 1195.686241][T12301] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1195.986783][T12661] bond0: (slave rose0): Enslaving as an active interface with an up link
[ 1196.077899][ T6512] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1196.109853][ T6512] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1196.200368][T12301] 8021q: adding VLAN 0 to HW filter on device team0
[ 1196.313582][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1196.449025][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1197.014799][ T4483] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1197.022078][ T4483] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1197.095806][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1197.138212][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1197.202086][ T4483] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1197.209328][ T4483] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1197.363666][ T4483] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1199.579876][T12696] loop6: detected capacity change from 0 to 1764
[ 1200.109308][T12705] loop5: detected capacity change from 0 to 512
[ 1200.128118][T12394] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1200.175682][T12394] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1200.288693][T12394] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1200.412378][T12705] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.1776: inode #1: comm syz.5.1776: iget: illegal inode #
[ 1200.428184][T12394] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1200.453908][T12705] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.1776: error while reading EA inode 1 err=-117
[ 1200.529855][T12705] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.1776: inode #1: comm syz.5.1776: iget: illegal inode #
[ 1200.609608][T12705] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.1776: error while reading EA inode 1 err=-117
[ 1200.719161][ T4259] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1200.744429][ T4259] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1200.752633][T12705] EXT4-fs (loop5): 1 orphan inode deleted
[ 1200.758735][ T4252] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1200.779270][ T4252] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1200.786602][T12705] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[ 1200.795531][ T4252] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[ 1200.802876][ T4252] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1200.852894][ T6525] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1201.096908][T12394] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1201.115853][T12394] 8021q: adding VLAN 0 to HW filter on device team0
[ 1202.124293][T12717] input: syz0 as /devices/virtual/input/input19
[ 1202.406162][ T6213] EXT4-fs (loop5): unmounting filesystem.
[ 1202.796859][T12722] 
[ 1202.799252][T12722] ======================================================
[ 1202.806290][T12722] WARNING: possible circular locking dependency detected
[ 1202.813339][T12722] 6.1.140-syzkaller #0 Not tainted
[ 1202.818464][T12722] ------------------------------------------------------
[ 1202.825498][T12722] syz.2.1780/12722 is trying to acquire lock:
[ 1202.831586][T12722] ffff888071208290 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}, at: process_measurement+0x33c/0x1a10
[ 1202.842348][T12722] 
[ 1202.842348][T12722] but task is already holding lock:
[ 1202.849738][T12722] ffff88807d2a1f58 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770
[ 1202.859801][T12722] 
[ 1202.859801][T12722] which lock already depends on the new lock.
[ 1202.859801][T12722] 
[ 1202.870233][T12722] 
[ 1202.870233][T12722] the existing dependency chain (in reverse order) is:
[ 1202.879274][T12722] 
[ 1202.879274][T12722] -> #1 (&mm->mmap_lock){++++}-{3:3}:
[ 1202.886868][T12722]        down_read_killable+0x4c/0x340
[ 1202.892365][T12722]        mmap_read_lock_killable+0x1d/0x60
[ 1202.898300][T12722]        lock_mm_and_find_vma+0x2b1/0x2f0
[ 1202.904045][T12722]        do_user_addr_fault+0x2db/0xb10
[ 1202.909622][T12722]        exc_page_fault+0x60/0x100
[ 1202.914766][T12722]        asm_exc_page_fault+0x22/0x30
[ 1202.920175][T12722]        fault_in_readable+0x13e/0x1f0
[ 1202.925666][T12722]        fault_in_iov_iter_readable+0xbb/0x2e0
[ 1202.931855][T12722]        generic_perform_write+0x1d2/0x560
[ 1202.937699][T12722]        __generic_file_write_iter+0x172/0x430
[ 1202.943890][T12722]        generic_file_write_iter+0xab/0x2e0
[ 1202.949991][T12722]        vfs_write+0x44c/0x960
[ 1202.954775][T12722]        ksys_write+0x143/0x240
[ 1202.959642][T12722]        do_syscall_64+0x4c/0xa0
[ 1202.964617][T12722]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1202.969455][ T8807] Bluetooth: hci5: command 0x0409 tx timeout
[ 1202.971054][T12722] 
[ 1202.971054][T12722] -> #0 (&sb->s_type->i_mutex_key#12){+.+.}-{3:3}:
[ 1202.985763][T12722]        __lock_acquire+0x2cf8/0x7c50
[ 1202.991176][T12722]        lock_acquire+0x1b4/0x490
[ 1202.996235][T12722]        down_write+0x36/0x60
[ 1203.000941][T12722]        process_measurement+0x33c/0x1a10
[ 1203.006688][T12722]        ima_file_mmap+0x104/0x150
[ 1203.011821][T12722]        __se_sys_remap_file_pages+0x53e/0x770
[ 1203.018012][T12722]        do_syscall_64+0x4c/0xa0
[ 1203.022978][T12722]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1203.029436][T12722] 
[ 1203.029436][T12722] other info that might help us debug this:
[ 1203.029436][T12722] 
[ 1203.039766][T12722]  Possible unsafe locking scenario:
[ 1203.039766][T12722] 
[ 1203.047231][T12722]        CPU0                    CPU1
[ 1203.052609][T12722]        ----                    ----
[ 1203.057986][T12722]   lock(&mm->mmap_lock);
[ 1203.062336][T12722]                                lock(&sb->s_type->i_mutex_key#12);
[ 1203.070347][T12722]                                lock(&mm->mmap_lock);
[ 1203.077236][T12722]   lock(&sb->s_type->i_mutex_key#12);
[ 1203.082718][T12722] 
[ 1203.082718][T12722]  *** DEADLOCK ***
[ 1203.082718][T12722] 
[ 1203.090868][T12722] 1 lock held by syz.2.1780/12722:
[ 1203.095991][T12722]  #0: ffff88807d2a1f58 (&mm->mmap_lock){++++}-{3:3}, at: __se_sys_remap_file_pages+0x17d/0x770
[ 1203.106481][T12722] 
[ 1203.106481][T12722] stack backtrace:
[ 1203.112463][T12722] CPU: 1 PID: 12722 Comm: syz.2.1780 Not tainted 6.1.140-syzkaller #0
[ 1203.120651][T12722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 1203.130744][T12722] Call Trace:
[ 1203.134036][T12722]  <TASK>
[ 1203.136978][T12722]  dump_stack_lvl+0x168/0x22e
[ 1203.141687][T12722]  ? load_image+0x3b0/0x3b0
[ 1203.146206][T12722]  ? show_regs_print_info+0x12/0x12
[ 1203.151433][T12722]  ? print_circular_bug+0x12b/0x1a0
[ 1203.156663][T12722]  check_noncircular+0x274/0x310
[ 1203.161631][T12722]  ? add_chain_block+0x940/0x940
[ 1203.166598][T12722]  ? lockdep_lock+0xdc/0x1e0
[ 1203.171218][T12722]  ? verify_lock_unused+0x140/0x140
[ 1203.176442][T12722]  ? __lock_acquire+0x13c0/0x7c50
[ 1203.181493][T12722]  ? _find_first_zero_bit+0xcf/0x100
[ 1203.186803][T12722]  __lock_acquire+0x2cf8/0x7c50
[ 1203.191689][T12722]  ? ima_match_policy+0x104/0x2100
[ 1203.196825][T12722]  ? verify_lock_unused+0x140/0x140
[ 1203.202049][T12722]  ? ima_match_policy+0x207a/0x2100
[ 1203.207270][T12722]  ? finish_task_switch+0x265/0x8f0
[ 1203.212495][T12722]  lock_acquire+0x1b4/0x490
[ 1203.217028][T12722]  ? process_measurement+0x33c/0x1a10
[ 1203.222437][T12722]  ? __might_sleep+0xd0/0xd0
[ 1203.227057][T12722]  ? read_lock_is_recursive+0x10/0x10
[ 1203.232456][T12722]  ? ima_get_action+0x71/0xa0
[ 1203.237153][T12722]  down_write+0x36/0x60
[ 1203.241332][T12722]  ? process_measurement+0x33c/0x1a10
[ 1203.246721][T12722]  process_measurement+0x33c/0x1a10
[ 1203.251944][T12722]  ? preempt_schedule+0xa7/0xb0
[ 1203.256832][T12722]  ? ima_file_mmap+0x150/0x150
[ 1203.261639][T12722]  ? aa_file_perm+0x117/0xec0
[ 1203.266376][T12722]  ? mtree_load+0xeb/0xa40
[ 1203.270823][T12722]  ? mtree_load+0x90a/0xa40
[ 1203.275363][T12722]  ? aa_get_current_label+0x110/0x1d0
[ 1203.280763][T12722]  ? apparmor_current_getsecid_subj+0xb1/0x110
[ 1203.286951][T12722]  ima_file_mmap+0x104/0x150
[ 1203.291576][T12722]  ? ima_file_free+0x3e0/0x3e0
[ 1203.296371][T12722]  ? common_file_perm+0x171/0x1c0
[ 1203.301432][T12722]  ? bpf_lsm_mmap_file+0x5/0x10
[ 1203.306310][T12722]  ? security_mmap_file+0x11b/0x180
[ 1203.311554][T12722]  __se_sys_remap_file_pages+0x53e/0x770
[ 1203.317229][T12722]  ? __se_sys_futex+0x14a/0x440
[ 1203.322122][T12722]  ? __x64_sys_remap_file_pages+0xc0/0xc0
[ 1203.327906][T12722]  ? lock_chain_count+0x20/0x20
[ 1203.332806][T12722]  ? lockdep_hardirqs_on+0x94/0x140
[ 1203.338041][T12722]  ? __x64_sys_remap_file_pages+0x1c/0xc0
[ 1203.343802][T12722]  do_syscall_64+0x4c/0xa0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1203.348259][T12722]  ? clear_bhb_loop+0x60/0xb0
[ 1203.352962][T12722]  ? clear_bhb_loop+0x60/0xb0
[ 1203.357669][T12722]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1203.363617][T12722] RIP: 0033:0x7f644ff8e969
[ 1203.368101][T12722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1203.387834][T12722] RSP: 002b:00007f6450dfd038 EFLAGS: 00000246 ORIG_RAX: 00000000000000d8
[ 1203.396313][T12722] RAX: ffffffffffffffda RBX: 00007f64501b5fa0 RCX: 00007f644ff8e969
[ 1203.404329][T12722] RDX: 0000000000000000 RSI: 0000000000200000 RDI: 00002000002ec000
[ 1203.412349][T12722] RBP: 00007f6450010ab1 R08: 0000000000002000 R09: 0000000000000000
[ 1203.420370][T12722] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 1203.428385][T12722] R13: 0000000000000000 R14: 00007f64501b5fa0 R15: 00007ffd34efa528
[ 1203.436394][T12722]  </TASK>
[ 1203.670692][ T6525] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1203.985076][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1203.994043][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1204.049869][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1204.075651][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1204.088556][T10989] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1204.095749][T10989] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1204.110902][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1204.122385][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1204.133789][T10989] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1204.140938][T10989] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1204.151589][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1204.178686][ T6525] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.273282][T10989] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1204.288190][ T6525] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1204.489809][ T6525] tipc: Left network mode
[ 1205.241949][ T6525] batman_adv: batadv0: Removing interface: wlan0
[ 1205.287876][ T6525] device hsr_slave_0 left promiscuous mode
[ 1205.294085][ T6525] device hsr_slave_1 left promiscuous mode
[ 1205.300847][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1205.310959][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1205.319591][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1205.327119][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1205.334694][ T6525] device bridge_slave_1 left promiscuous mode
[ 1205.340947][ T6525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1205.348844][ T6525] device bridge_slave_0 left promiscuous mode
[ 1205.355428][ T6525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1205.365578][ T6525] device veth1_macvtap left promiscuous mode
[ 1205.371633][ T6525] device veth0_macvtap left promiscuous mode
[ 1205.377822][ T6525] device veth1_vlan left promiscuous mode
[ 1205.383619][ T6525] device veth0_vlan left promiscuous mode
[ 1205.644366][ T6525] team0 (unregistering): Port device team_slave_1 removed
[ 1205.682034][ T6525] team0 (unregistering): Port device team_slave_0 removed
[ 1205.712808][ T6525] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1205.745769][ T6525] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1205.823743][ T6525] team0 (unregistering): Port device batadv0 removed
[ 1205.858233][ T6525] bond0 (unregistering): Released all slaves
[ 1206.642721][ T6525] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1206.719867][ T6525] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1206.761901][ T6525] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1206.811630][ T6525] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1206.916939][ T6525] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1206.969667][ T6525] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.019316][ T6525] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.060342][ T6525] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.165750][ T6525] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.200975][ T6525] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.259797][ T6525] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.310166][ T6525] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1207.636261][ T6525] tipc: Left network mode
[ 1208.779567][ T6525] batman_adv: batadv0: Interface deactivated: wlan0
[ 1208.846830][ T6525] batman_adv: batadv0: Removing interface: wlan0
[ 1208.923475][ T6525] device hsr_slave_0 left promiscuous mode
[ 1208.930557][ T6525] device hsr_slave_1 left promiscuous mode
[ 1208.937352][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1208.944831][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1208.953020][ T6525] device bridge_slave_1 left promiscuous mode
[ 1208.959354][ T6525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1208.968113][ T6525] device bridge_slave_0 left promiscuous mode
[ 1208.974328][ T6525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1208.985506][ T6525] device hsr_slave_0 left promiscuous mode
[ 1208.991685][ T6525] device hsr_slave_1 left promiscuous mode
[ 1208.998163][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1209.008340][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1209.017023][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1209.024434][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1209.032108][ T6525] device bridge_slave_1 left promiscuous mode
[ 1209.038394][ T6525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1209.046502][ T6525] device bridge_slave_0 left promiscuous mode
[ 1209.052664][ T6525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1209.063296][ T6525] device hsr_slave_0 left promiscuous mode
[ 1209.069720][ T6525] device hsr_slave_1 left promiscuous mode
[ 1209.076110][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1209.083524][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1209.091484][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1209.099086][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1209.106852][ T6525] device bridge_slave_1 left promiscuous mode
[ 1209.113011][ T6525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1209.121133][ T6525] device bridge_slave_0 left promiscuous mode
[ 1209.127387][ T6525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1209.137872][ T6525] device hsr_slave_0 left promiscuous mode
[ 1209.144008][ T6525] device hsr_slave_1 left promiscuous mode
[ 1209.150451][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1209.157978][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1209.166213][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1209.173633][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1209.181354][ T6525] device bridge_slave_1 left promiscuous mode
[ 1209.187547][ T6525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1209.195683][ T6525] device bridge_slave_0 left promiscuous mode
[ 1209.201873][ T6525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1209.212722][ T6525] device hsr_slave_0 left promiscuous mode
[ 1209.219060][ T6525] device hsr_slave_1 left promiscuous mode
[ 1209.225981][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1209.233492][ T6525] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1209.241351][ T6525] device bridge_slave_1 left promiscuous mode
[ 1209.247711][ T6525] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1209.256521][ T6525] device bridge_slave_0 left promiscuous mode
[ 1209.262697][ T6525] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1209.275789][ T6525] device veth1_macvtap left promiscuous mode
[ 1209.281827][ T6525] device veth0_macvtap left promiscuous mode
[ 1209.288234][ T6525] device veth1_vlan left promiscuous mode
[ 1209.294000][ T6525] device veth0_vlan left promiscuous mode
[ 1209.300669][ T6525] device veth1_macvtap left promiscuous mode
[ 1209.307031][ T6525] device veth0_macvtap left promiscuous mode
[ 1209.313086][ T6525] device veth1_vlan left promiscuous mode
[ 1209.318987][ T6525] device veth0_vlan left promiscuous mode
[ 1209.326028][ T6525] device veth1_macvtap left promiscuous mode
[ 1209.332062][ T6525] device veth0_macvtap left promiscuous mode
[ 1209.338401][ T6525] device veth1_vlan left promiscuous mode
[ 1209.344166][ T6525] device veth0_vlan left promiscuous mode
[ 1209.568320][ T6525] team0 (unregistering): Port device team_slave_1 removed
[ 1209.579676][ T6525] team0 (unregistering): Port device team_slave_0 removed
[ 1209.611364][ T6525] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1209.623796][ T6525] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1209.675878][ T6525] bond0 (unregistering): Released all slaves
[ 1209.857333][ T6525] team0 (unregistering): Port device team_slave_1 removed
[ 1209.891209][ T6525] team0 (unregistering): Port device team_slave_0 removed
[ 1209.924623][ T6525] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1209.958154][ T6525] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1210.012733][ T6525] bond0 (unregistering): Released all slaves
[ 1210.151031][ T6525] team0 (unregistering): Port device team_slave_1 removed
[ 1210.183292][ T6525] team0 (unregistering): Port device team_slave_0 removed
[ 1210.213654][ T6525] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1210.226906][ T6525] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1210.281660][ T6525] bond0 (unregistering): Released all slaves
[ 1210.405174][ T6525] team0 (unregistering): Port device team_slave_1 removed
[ 1210.416701][ T6525] team0 (unregistering): Port device team_slave_0 removed
[ 1210.449067][ T6525] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1210.482300][ T6525] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1210.520070][ T6525] team0 (unregistering): Port device batadv0 removed
[ 1210.552955][ T6525] bond0 (unregistering): Released all slaves
[ 1210.614184][ T6525] team0 (unregistering): Port device team_slave_1 removed
[ 1210.645177][ T6525] team0 (unregistering): Port device team_slave_0 removed
[ 1210.657261][ T6525] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1210.669252][ T6525] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1210.726456][ T6525] bond0 (unregistering): Released all slaves