last executing test programs:

3m38.890957617s ago: executing program 0 (id=808):
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)

3m38.629464671s ago: executing program 0 (id=812):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000180)={0x0, 0x1c, &(0x7f00000001c0)=[@in6={0xa, 0x4e24, 0x9, @private2={0xfc, 0x2, '\x00', 0x6}, 0x7177}]}, &(0x7f0000000380)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r2=>0x0]}, &(0x7f0000000080)=0x8)
getsockopt$inet_sctp_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000080)={r2, @in6={{0xa, 0x4e20, 0x9, @empty, 0x9}}, 0x200, 0x6}, &(0x7f0000000140)=0x90)

3m37.649547196s ago: executing program 0 (id=822):
mount$tmpfs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000500), 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB='huge=always,huge=within_size,nr_blocks=5'])
chdir(&(0x7f0000000140)='./file0\x00')
r0 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x103a42, 0x32)
ftruncate(r0, 0x6000000)
statx(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x4000, 0xffff4a9c0080ffff, 0x0)

3m37.556054629s ago: executing program 0 (id=824):
openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x300f401, 0x0, 0x2, 0x0, 0x0)
mount$overlay(0x0, &(0x7f00000001c0)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@index_on}]})
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000400)='./file0/file0\x00', 0x400)
chdir(&(0x7f00000003c0)='./bus\x00')
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000440)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
read$FUSE(r0, &(0x7f00000062c0)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x29, 0x0, 0x300d2140, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x100}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000feff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000785700000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000160000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000004000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000eeffffff0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ff000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000140000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000190000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010800", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000900)={0x20, 0x0, 0x3, {0x0, 0x1c}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x0)
read$FUSE(r3, &(0x7f0000008300)={0x2020, 0x0, 0x0, <r4=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f0000000840)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x400000009, {0x200000000000008, 0x0, 0x0, {0x4, 0xffffffff7fffff01, 0x0, 0x8, 0x10001, 0x7, 0x0, 0x0, 0x887, 0x2000, 0x2, r4, r2, 0x7fffffff, 0x7fff}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3m36.61089409s ago: executing program 0 (id=833):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x181002, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x49db, 0x0, 0xfff9, 0xbfff, 0x18, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f00000000c0)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f00000001c0)={0x0, 0xffffef7b, 0x0, 0xb2, 0x10, "1b09000040000000000000e678000000001000"})
r1 = syz_open_pts(r0, 0x20800)
ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000100)=0x44)

3m36.172934562s ago: executing program 0 (id=835):
syz_mount_image$vfat(&(0x7f0000000880), &(0x7f0000003200)='./file0\x00', 0x4604, &(0x7f00000031c0)=ANY=[], 0x3, 0x335, &(0x7f0000000a40)="$eJzs3M9rG0cUwPEnWZYlGVs6lJYWiof20l4WW+25VBQbSgU1tlVqFwxre9UKbSWjFS4qpbZPvZbccwrkYHz0zZD4H/Alt+SSS266BHKICSEb9pf107asyJFjfz8QdjQzTzujGYW3i1f1X///s5i3tLxelXBMSUhE5EQkJWEJhPxj2C1HpdmOfD3+4vHni8srP2Wy2dkFpeYyS9+klVKTUw/++ifudzsck+PUav15+tnxx8ef1t8s/VGwVMFSpXJV6Wqt/LSqr5mG2ihYRU2pedPQLUMVSpZR8drLXnveLG9u1pRe2phIbFYMy1J6qaaKRk1Vy6paqSn9d71QUpqmqYmE4ALOgi7omT6j1wc8GlyRSiWjj4hIvKMltzeUAQEAgKFqz//DTkrfV/4vk27+73Ru5P/7XxxVx385mDx0Ylfrh9Fu+f+3T7z3asn/YyLST/5/Vy6R/3dmRLdLbm+h//wf18NUtKMq1PLKyf8T/vfXtfvb/rRbIP8HAAAAAAAAAAAAAAAAAAAAAOBDcGLbSdu2k8Ex+Nd4hMB/jRvprPUfE5GYs/o263+TLS6vSMx9cM9ZY/O/rdxWzjv6HY5ExBRDpiUpr9394HPKwZNHypGSh+a2G//KOY64LZm8FNz4GUlKqj3etud+zM7OKI8ff/qYUqI5Pi1J+ah7fLo13hn/9lYuKl992RSvSVIerUtZTNlw93Uj/t8ZpX74OdsWH/dOAgAAAADADaApFfIvn1Ot17/e9bumKdW93fuVkUzevU10xv0B7/p6uuv1eST5WWTYswcAAAAA4Hawan8XddM0KucU4nJxn/4Lkd46R9tqRs/rPNI0w17HE3VvZIi867zu9fipthSCP6RoaYr5lf2NJ5j/wNZrp7kmLD1ERdoHP+VUqEuefdefyGlNcNsoesbnLPOd7xM+ZyeMDmw/f3Ln/svBfUG+Owh2wMWdd/s9V6x917mF0av+fwcAAADA+9dI+oOa75ubQ0MZFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAt8yV/KRfW2HYcwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACui7cBAAD//5Oa+gc=")
fanotify_init(0x40, 0x80000)
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x75d, 0x2480)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xd, "fee8a2ab78fc17c2d1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f30600300000300", [0xfffffffffffffffd]}})
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, 0xffffffffffffffff)

3m35.93692523s ago: executing program 32 (id=835):
syz_mount_image$vfat(&(0x7f0000000880), &(0x7f0000003200)='./file0\x00', 0x4604, &(0x7f00000031c0)=ANY=[], 0x3, 0x335, &(0x7f0000000a40)="$eJzs3M9rG0cUwPEnWZYlGVs6lJYWiof20l4WW+25VBQbSgU1tlVqFwxre9UKbSWjFS4qpbZPvZbccwrkYHz0zZD4H/Alt+SSS266BHKICSEb9pf107asyJFjfz8QdjQzTzujGYW3i1f1X///s5i3tLxelXBMSUhE5EQkJWEJhPxj2C1HpdmOfD3+4vHni8srP2Wy2dkFpeYyS9+klVKTUw/++ifudzsck+PUav15+tnxx8ef1t8s/VGwVMFSpXJV6Wqt/LSqr5mG2ihYRU2pedPQLUMVSpZR8drLXnveLG9u1pRe2phIbFYMy1J6qaaKRk1Vy6paqSn9d71QUpqmqYmE4ALOgi7omT6j1wc8GlyRSiWjj4hIvKMltzeUAQEAgKFqz//DTkrfV/4vk27+73Ru5P/7XxxVx385mDx0Ylfrh9Fu+f+3T7z3asn/YyLST/5/Vy6R/3dmRLdLbm+h//wf18NUtKMq1PLKyf8T/vfXtfvb/rRbIP8HAAAAAAAAAAAAAAAAAAAAAOBDcGLbSdu2k8Ex+Nd4hMB/jRvprPUfE5GYs/o263+TLS6vSMx9cM9ZY/O/rdxWzjv6HY5ExBRDpiUpr9394HPKwZNHypGSh+a2G//KOY64LZm8FNz4GUlKqj3etud+zM7OKI8ff/qYUqI5Pi1J+ah7fLo13hn/9lYuKl992RSvSVIerUtZTNlw93Uj/t8ZpX74OdsWH/dOAgAAAADADaApFfIvn1Ot17/e9bumKdW93fuVkUzevU10xv0B7/p6uuv1eST5WWTYswcAAAAA4Hawan8XddM0KucU4nJxn/4Lkd46R9tqRs/rPNI0w17HE3VvZIi867zu9fipthSCP6RoaYr5lf2NJ5j/wNZrp7kmLD1ERdoHP+VUqEuefdefyGlNcNsoesbnLPOd7xM+ZyeMDmw/f3Ln/svBfUG+Owh2wMWdd/s9V6x917mF0av+fwcAAADA+9dI+oOa75ubQ0MZFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAt8yV/KRfW2HYcwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACui7cBAAD//5Oa+gc=")
fanotify_init(0x40, 0x80000)
r0 = syz_open_dev$loop(&(0x7f0000000180), 0x75d, 0x2480)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xd, "fee8a2ab78fc17c2d1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f30600300000300", [0xfffffffffffffffd]}})
ioctl$LOOP_GET_STATUS64(r0, 0x4c05, 0xffffffffffffffff)

1m47.836173746s ago: executing program 4 (id=1848):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0xfffffffc, 0x0, 0x10, 0x0, 0x7, 0x83, 0x9, 0x1, 0x0, 0x0, 0xfffffff8, 0x1, 0x8, 0xff, 0x0, '\x00', 0x0, 0x1})
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000380)={0x2, 0x0, @ioapic={0x0, 0x9, 0xffff, 0xfffffffe, 0x0, [{0x2, 0x3, 0x2, '\x00', 0x8}, {0x9, 0x8, 0x2, '\x00', 0xb}, {0xff, 0x7f, 0xd3, '\x00', 0xf8}, {0x0, 0x5, 0xf5, '\x00', 0xf}, {0x7, 0x9, 0x8, '\x00', 0xb4}, {0x0, 0x4, 0x4, '\x00', 0xff}, {0x75, 0xd5, 0xf1, '\x00', 0x7f}, {0x3, 0x5, 0xc}, {0x7f, 0x5, 0xb, '\x00', 0x8}, {0xd7, 0xd, 0x8, '\x00', 0x6}, {0x0, 0x28, 0x80, '\x00', 0xdc}, {0xff, 0x1, 0xfe, '\x00', 0x1}, {0xfe, 0x7, 0x26}, {0xcf, 0x5, 0x8, '\x00', 0x6}, {0xf, 0xee, 0x7, '\x00', 0x3}, {0xe, 0x2, 0x6, '\x00', 0xb}, {0x9, 0x6, 0x2, '\x00', 0x1}, {0x4, 0xc, 0x5, '\x00', 0xc}, {0x6, 0x1, 0x7, '\x00', 0xc2}, {0x0, 0x80, 0xe, '\x00', 0x7f}, {0x1, 0xc, 0x7d, '\x00', 0x7f}, {0x90, 0x7, 0x8, '\x00', 0x10}, {0x1, 0x3, 0xf3, '\x00', 0x1}, {0x7, 0x6, 0x4}]}})

1m47.57859275s ago: executing program 4 (id=1852):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x1, &(0x7f0000006680))
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$inet(r1, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r0, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[@cred={{0x1c}}, @cred={{0x1c}}, @rights={{0x34, 0x1, 0x1, [0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff, 0xffffffffffffffff]}}, @cred={{0x1c}}, @rights={{0x10}}], 0xa8}, 0x0)
select(0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)={0x0, 0x2710})

1m47.441217866s ago: executing program 4 (id=1855):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
ioctl$SG_SET_RESERVED_SIZE(r0, 0x2275, 0x0)

1m47.257336893s ago: executing program 4 (id=1857):
syz_mount_image$msdos(&(0x7f0000000200), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB='nodots,dmask=00000000000000000000003,usefree,nodots,flush,dots,dots,gid=', @ANYRESHEX=0x0, @ANYBLOB], 0x1, 0x214, &(0x7f0000000840)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x0)
ptrace(0x10, 0x0)
openat$binfmt_register(0xffffffffffffff9c, 0x0, 0x1, 0x0)
bpf$MAP_LOOKUP_ELEM(0x5, 0x0, 0x0)
syz_clone(0x1144280, &(0x7f0000000000), 0x0, 0x0, 0x0, 0x0)
pwrite64(r0, &(0x7f0000000100)='=', 0x1, 0x4fed3)

1m46.672084308s ago: executing program 4 (id=1860):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000002000000000000000000000d0000000600000000000000030000000001000000"], &(0x7f0000000f40)=""/4096, 0x4a, 0x1000, 0x1}, 0x28)

1m46.385547767s ago: executing program 4 (id=1863):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff})
mount$tmpfs(0x0, &(0x7f0000001880)='.\x00', 0x0, 0x2a300c1, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000001c0), 0x0)
close(0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0xf3a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
splice(r0, 0x0, r3, 0x0, 0x80, 0x8)
ioctl$sock_TIOCINQ(r3, 0x541b, 0x0)
write(r1, 0x0, 0x0)

1m45.902625901s ago: executing program 33 (id=1863):
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff})
mount$tmpfs(0x0, &(0x7f0000001880)='.\x00', 0x0, 0x2a300c1, 0x0)
openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f00000001c0), 0x0)
close(0x4)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0xf3a, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x9)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
splice(r0, 0x0, r3, 0x0, 0x80, 0x8)
ioctl$sock_TIOCINQ(r3, 0x541b, 0x0)
write(r1, 0x0, 0x0)

4.299799457s ago: executing program 5 (id=2694):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
sendto$inet(r0, &(0x7f0000000580)="17", 0xfdef, 0x10008095, 0x0, 0x0)

3.801618168s ago: executing program 5 (id=2696):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = dup(r1)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x2000, 0x1000, &(0x7f0000003000/0x1000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r0, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, 0x0}], 0x1, 0x3e, 0x0, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x1f, 0x2, 0x5a954949, 0xd, 0x9, 0x1ff, 0xffeffffa, 0x0, 0x0, 0x10, 0xffff}}, 0x50)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x11, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

2.832430045s ago: executing program 3 (id=2702):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'veth0_macvtap\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000840)=ANY=[@ANYBLOB="280000001e00431b00000000000000", @ANYRES32=r1], 0x28}}, 0x400c110)

2.548786545s ago: executing program 3 (id=2704):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x82, 0x3, 0x0, 0x717e387b, 0x40, "1ae34e0626788a22b2fb12dab240794233a5bd", 0x4, 0x2})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"})
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
ioctl$DRM_IOCTL_MODE_GETFB2(0xffffffffffffffff, 0xc06864ce, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x4b)
syz_open_dev$dri(0x0, 0x1, 0x0)
close_range(r1, 0xffffffffffffffff, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)

2.399216678s ago: executing program 5 (id=2706):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
socket$nl_rdma(0x10, 0x3, 0x14)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x5, 0xc, 0x42, 0x40, 0xc0, 0x1}, 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100), &(0x7f00000001c0), 0x10f0, r0}, 0x38)
bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000004c0), &(0x7f0000000640), 0x16c5, r0}, 0x38)

1.996611546s ago: executing program 5 (id=2709):
syz_open_dev$vim2m(&(0x7f0000000000), 0xd, 0x2)
r0 = syz_io_uring_setup(0x49a, &(0x7f00000000c0)={0x0, 0xbc14, 0x800, 0x8000, 0x40024e}, &(0x7f0000000340)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000000)=0xffb, 0x0, 0x4)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x40, 0x4007, @fd_index=0x3, 0xffffffffffffffff, 0x0, 0x0, 0x2, 0x1})
io_uring_enter(r0, 0x627, 0x4c1, 0x43, 0x0, 0x30)

1.746024982s ago: executing program 5 (id=2711):
r0 = socket$inet6(0xa, 0x3, 0x83)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f00000000c0)={@local, 0x800, 0x0, 0x2000000000903, 0x1}, 0x20)
setsockopt$inet6_int(r0, 0x29, 0x1000000000021, &(0x7f00000005c0)=0x7fff, 0x4)
connect$inet6(r0, 0x0, 0x0)

1.634873002s ago: executing program 2 (id=2713):
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
getpid()
close(r0)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x60, r3, 0xb7a006d1969b963b, 0x1, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x44, 0x33, @probe_request={{{}, {}, @broadcast, @device_b}, @val, @val, @void, @val={0x2d, 0x1a, {0x8802, 0x3, 0x6, 0x0, {0x5, 0xd, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x1, 0x95ce, 0x9}}, @val={0x72, 0x6}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40001}, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, r2)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602019900000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

1.525825152s ago: executing program 5 (id=2714):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100007516b7108c0d0e008f8e0018030109021b0001000000000904080001030000000905", @ANYBLOB="8fcf"], 0x0)
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x4, 0x20000)
setsockopt$CAN_RAW_RECV_OWN_MSGS(0xffffffffffffffff, 0x65, 0x4, &(0x7f0000000040)=0x1, 0x4)
ioctl$EVIOCGKEYCODE_V2(r0, 0x80284504, &(0x7f0000000040)=""/185)

1.34195096s ago: executing program 2 (id=2716):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001780)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0x10}, {0xffff}, {0x2, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008091}, 0x4000000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, 0x0, 0x0, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x1000)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x75, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xff, 0xff})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.147957645s ago: executing program 1 (id=2718):
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000140)={{}, "2382aa525cbc622ba948a20e95cbceeff967ddf7969bbabe34c764d9e45e283b0f285b55cfed54e5b44575ea5775dbe17f2848a0c185b03c8747c5d6c081d8f95c3a6196b5055c280ec2dd4fe68dde71de471cc3fef185a0d4b8bc8bb0f57f3c09de21184963d25b355cad6d488f341ed4741591955ffd6223b3dac8817cf88ae0f999307ec7598c392c311cd859672e55d3cc18c9634ca9b3552fab386cded7ca3db60ec81928c931f7925b74a8eb33ed723fff69efbb2caadcc7362ca534a776812c42e7f2c975bc1e4aea6b883bb55a97641988b131328869ea98bf14d606912c1e8a7c3107816b0c3329206deccdd0019af7ca9b1e118d7c506033f65302412d5c8c240a1b69d27f42f168efc3a7b729b8557ec55488274ff951145998db72d76d2adf2a86a745ac29981aa1fafa91a56213bd33045c4c3c5e62bd8b860b35ef69caf7a51e5f7852f5c5aec6ce259f6425f3b8406e235ab95074c5748fae5035345463461e6f11128d8de5b4dc42dbbb363603e63931a14e4b5c408924c61169bd81457a93f513152123c063fc03c0b4fb728ea8e6c00c3093dbb21a12777cc719d1d9a6cfdf7f803e64e8ea9f2eb10bd4e9cd935f37969f3ad5c5ce2e810a62dd11f12471b0fbf59a472f529a81c444108480a3f7bb8c3dc1fec3586729bfeba35fe72266dfb9918ac08093c50cfed400bc3d9861a423e95228774e002173ad251f9aac18ed4170f7723d16411d7b23c8bb0f6a34b12c600085edd41c8fc74e5114e8059313126c24fe57a705e11e9689dd0bea41ab31befaf7ea7a6d4f8e0bb81404ddf172e518e1e7b78a76288ed15e59c0266472f7d4ed71bc4f8ef2a84ab782af1a6b176cfdc8e53f946388162d2ccaef1d04523676ec71eb0eefec6a3711052457cced771739a2d11c6ba4ef590a7e07f6b71b3dd8ebe1a4985d583d214bb078ebd0f582e9807968918bf0be988b18c35f47a4983c0cef5a6826a90dd3241e4da0ef9493440c8264faed03f51ff37370ee869563d5be1bc427dc7a7a5d758e4cda3030e8be599a572a87bdfd8b036cc333cc1935e93cc22d5f6a9049b4e3c8d66561929bb645c7d16382ee93b2ad8e0e55d9c3c909a6231772beb89fa866b0add8e0f1cf764b6c0e288a76262b68d9c519371c7cfc05e3122eae970e3d20050f126badb865e71b65d7473d51280283af23ef7eef357914dd0b8cb756ea5d8263dc8f36f23ac6566180f7451c609f354704a39366664edc3ed86fd56083570bf576c549ff5f0e0713e6098191cd4bce3929b3192ad579f62e5727a194592401242556306e329e9aa773bdfdbd631503f1e60e2baed25d45edf73fdc25f2edee5ee1ce59b625c9f1a337aa0265430a270586d290e2dea04c0c89c1fe6db3a039ed04e49aaa84f97e7fc02a9d2f75d00336339a3c617b990cb469a10384165ddd1392134b99744d25accc8d1c9b1e9eb05c359cf731d58c0a96ffe48c5071c49eb38005d4b96351d576b1f382fdaf2de653a5946d2f91740ec475524962ca8b4ffc2cf9f1ad06bc8676d73aad6b0ef95d9d70b68f970a8e5e6a65f8baea76479d2fc81130eee6a7b72a1f2808db1ea66ced988dbc97f3c0b32a7d0fbe946d74873bdb18b5008b64a68444ba8e6be96063f63621f708fa57f8818036978d49e14fac2a9b99310bbd3081a580b572f2b2e42888984d045ba45be93566654774e5c51e5cfd7b2876b79dda507f560952bddd0c633405cfa397b4009323153976482e7ed17449a81c817169772eb0577732a730a520227396659e17dd1968be7a2648ef07281c25e1f4019e405a609c0f2e203c5b36ab88a663a88ed3769aefc03cec514bc92f3c3e57f0058302daac44e4358d391669a9777f15fd532c6ddf723d79c084d57c2b882bcc384c3250d566374e82c8452edaeac9e9e5e16783624ed7cfc3fe025245dcd25fc2ed548c6d980556f2088cdb399509bf29e9d8c7b041cf5345ce8a5d32e25fcedcb4f436eafc473aa172f794b1056e77d432dbc8cb8cef6f7561e4da5cef15bccfc9bd87bf8fcc91739ba98aceaa209b3b0d5dd7a0cf7416c0b7bf8b87cab105dbe17b82c6e7aa2cc9c2f064e17752f6754926e0d9615eb253d1ad3465deabaa9b0915b5e28445825832eb9e1f2113afc99018c20a7b7956cd86d58e5511300d11d4dad6cbd37e172efd33d7ee8327e2f8dd1c80538afd8d020bb4edd0519707df38d5dbddfae7417224dcac0edd8a637ac6816f8e4c7ed23a72d4c1eda2f5ffd628f05be3b07674ad5bc037f8c495e036da50b76632434ae19514dfa2281076b673fd03a200ff33055ff63427d1e7685ea77aa4fe3236b8d6f8dc453e8b6b80711c6bd677de2823f9d93bb9eea7f024442ffe5600764c43669a64a59b6e8be54f0fe047d7c4e98ce02cf17ce4ea4e7f22c884a8fd072cfc5a85cc987076624bba631638f5463c62af4e73567e477edb82eb9f0fef3b6fe507e177f0ef461ed73a2fd792c93ac454e974c8b52ebdd72d2bd1a0a2fec4d4f1adf4cc1caadc5194554a468ab4bd60a1df66d3dae9fa6d1a42773a214bb1999d742c785b4da6200232783426d2106709f0371184916706979a034e0f5226296613e76e84c9904ff4daa877d8e7c0f4ae775a94475753410cdcf090afd609f8657cd577e519edc63321903becc6955380a618409c8505d09e492d0dedc4dfed517ece8f33727fc2eceb618126e9e367c4f2ed6186bdbea169d39d8a4b48b558e9a7ce5566411a742970767fd3bc37c4ce0bacc93e90655871c6b7934296ae94ac8be27f3658b74a106c7655f240025e1f05e660062d7a368b34932bc779c59a813039aba638dd165a9076218a0c37751058ff7629f55ebdf30916f7a21eb8a93ab5cd4e25a4437aa7f6e9586031cb55488d567e9bc7cb778da2b221e65929d320599ef15ba59aff48fbbef90109f6dd625f64915ad3a09d954b59580d8830c2badb9d6b76623d12a1a1b0b8309397a88199ff868da5dc401985f36a81546017c2344de8e959876152e1b6c75c8254212663afac666841cfbe113d108e76c423558b5a0611ed1d0cb0d71e09ebe7ab215f755b7b9e10fde23db36dd1107367b5a236c6ae4f29b3bd7791c4f96dfbbf2a054467064e2ad7fbaa04c02ee606ff82a664208c6b66a0db0fe4c4ba354395e2990c8216a7084020a9b7e61b532477bb3517e22c9e9199fba7a89f69a2a5a1e8935a6bf29a4e29015a898fcd2200587adcabbca4129881440c02ea5dcf6707458967a6493310f3c39c707b9156685ec8afcd59eeef11291632f1b9ea172d958b836fcdf46fa3237682339bcee93c78dce544d75480a0f277d7c423eb22474d84ab2fa45299343a6a3d724152b7f468885675651b3169f7709563cb7d1f3fb401f6280828d1e3c6a2a4ca1cd8130d1bf19552dc0bfa0d884302374564e39fdece138c9cde9878f3b5a7b3252e5b1210123447e3df442e60f1bde52a45b8d067152dfcca0e05a36abf9a682173cf77f324a6dbbc4c1f3bf10b1c3a40adf47b597f28bfa5bc1271373f243cf2b17e1430e761689cb58826ca2c0c0a390c04378c3bad227968e95d3202ce4532ebb257fd8b8f62b0d134b5c25372d10863895ac527868974fb3478f1f30bc3952cf37efbb4d06ce6dda2eb5a043013c56dd259c67dcd962d5f1c6a48b54bc51c8064dcc717bbbc1a732d4db97e07f95525da20b28934e4bb004adf5ee581eebcc609dbf1883a797ec9f7ddaee16126cba184824ab016acf400e3fce084134785b2d74913d55b951a63ce6ce30f9d62c41de209eb7e50fae436df9aaa1e8f5b9053ed136298a9b1f81341d58a9556576c56c2f2bb92ac34ce7184206e7976b150ac9918e82a497be4b4678d04bda1512f7ef624981a88568822b5600baf1c5a4bcf24b89eaf0b83c5b6aa2f7ee8164346de982a35905dbce33ac6860908df79dc4a7f6bec2e7273d0c9919c1baa93933e9fe6718103cff668fefc0bb06c5833ffee6989dd6c8ba615e062d55301d8cf7ecb6f896095c152838de6e20b03bb162e19924a14fc95afc2ccf1b665ef5deb2fbf2606c55a7127afb4c1574f140896c77826329b8f34f189ce99cc236ae86b4c8c2e11207befe1c3b2daeaa04b51dcb8210ae24afa7e6f9ae4120d121375cc319cdf6dd49644288a8a06f2e366433830ae5a5ae5d0c3274e65d7d11282e2b246b39a3a970dc74e0491477b3fc80798aa234a2a7b11071150ffda7c9104dd422e70eb4e1adf5352a4b6982e2fa987be2a428c12152e6d646282303ea40de762be2e6e0287b23ba8615d2e9ee5269c3b71a1f0a93d6ad7419b28692677c7ed0abe941ae7811a2a3d82d66cfb5cb512b5060e17da9628de8b43883aed16cca798e0f46ac309052b306327519a14783eca80fcdf9f71c2fd5d070cb4b10f170ef52333501e86c11e0e17ab2923b8343490d6e117239154bc21f8e36983aac1e510f950d2eb5a2218a9ecbd468abf2f2d7d973f0a2ac6f0e8d6be659d35efd05e174a8b7bd0601890abcfb74e5ac25ed8924c9679a68490525e9cb7d7c070eb60985e0bcf0de31ab57f28984435b793709f79508e8cc2d2864617fb6ff65ca1eed23a2ea595db91bdfc1233fbbb00a54b62f506b9fe2376746db572237c3dcd0b4cdb0c4c77916628519b411dda5c336978b5ab42d09a306333bca233b9333c7e08913393ab3be99ea6b22049d8a0ed783eb758ad0312cb960ff1e96471b9fd074234fc32b0f41e7e66aef9e8459d3327f26705ac09721488f1e60d57d0822abb84a91927152fce7ee198ce92bdb9ef90eb3fa39f3d4df835efd7a94845cd4cc77330bc529826614b2420f5ef1af002f4e4ff63daaf58e5c92e894f929a8b97feac4907c96bbf87436b64a448a939aae78d30dcd58fcdf6c75278c06db44a20490752729c3e01f6b701135d0f26d478822711843e6b9c170c3e4ec16468a09fffbc2ba761ae07b2b34af8f2e60f41ae7ea7f44411f0905a0058e024400ece76717dffd5748e95679efff8bc6406e380053cfb36663248558d77b67313305c3ee6b02b4fe6dade627f68c5041d72813ad5282bdc5e0ebc43faeea58d9ddadc7d30a6aea3a6c8e2651d3ac58a17931a41bb3185c00f47de6183e0e9df378d538595e621d50734bcaebdea4e15ab3df61e662d2599c3647f070f1a0901f40984a7f94f7f5a8b21577835b7c644a5a4fbe002cd814796e8c105ed8fac5ae306e7979ad5d96a27e3b583162d56dbe9a612c9627fa928a63b2dbde44b77185557c147a00bc181fa5b51ec05dffea2e426e87fb01fe969962d93bd18b0e57de1b9e8b9897c78e470988db5c1f9fc954c2497ce1d97fc35d1279fef8872af9627d5e0a0c5c8326f1572082006d0102e7f036ca709be13797cf81ee7c53ab6cf7cd5f243196347ca43494cfdd4b60ffaa8cbc4cdde5f00b9dca8ac64a9976434fa7a14700d0f56d17239a07a3f0d22a1489d7f27e025ad68a2c93e57d3d3ade8065560268d973ed137a0ad07b21e2206b993c0bcfd4b9264a6a2651fe2798c82cfde7a7427f860b844fe4d1eadc13b52d995f7fce5b1a82d5e9deced8727a12ab65ea2022236cab3f78a073f6b9b8895a0813a0e8a02da86739af83e74fc3aaeab6bd1ce4d0b99d03dd609ac9e7c1909d60e465232e0ae61be485387dbdd8846e7b273b0f2e0dc3b01bd8edfe239a5d597d1bcdc9e89df5393c87d57e34b488e30d8bb967a669ec6a191aee25bec16f740"})
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x30040a9, 0x0, 0xf, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240))
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x1)
open_by_handle_at(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000f800000000"], 0x200000)

998.184068ms ago: executing program 2 (id=2719):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000003d00010324bd7002ffdbdf2501"], 0x14}, 0x1, 0x0, 0x0, 0x4008}, 0x44010)

949.87019ms ago: executing program 3 (id=2720):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100))
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000140)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000fc0)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}}], 0x0, 0x0, 0x0})

945.480938ms ago: executing program 1 (id=2721):
ioctl$AUTOFS_DEV_IOCTL_CLOSEMOUNT(0xffffffffffffffff, 0xc0189375, 0x0)
ioctl$SNDCTL_DSP_GETOPTR(0xffffffffffffffff, 0x800c5012, 0x0)
syz_emit_vhci(&(0x7f0000003400)=@HCI_EVENT_PKT={0x4, @hci_ev_io_capa_request={{0x31, 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}}}, 0x9)

804.855753ms ago: executing program 2 (id=2722):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(0x3)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000400)=ANY=[@ANYBLOB="1400000010000100f7000000000000000500000a44000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc08000340000000144c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a3100000000200003801c0000800c00018006000100d10300000c000440000000000000000114000000110001"], 0xb8}, 0x1, 0x0, 0x0, 0x4000850}, 0x40)
sendmsg$NFT_BATCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a400000000c0a010400000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c00018006000100d6"], 0x68}, 0x1, 0x0, 0x0, 0x24000840}, 0x40)
close(r0)

681.902532ms ago: executing program 3 (id=2723):
syz_kvm_add_vcpu$x86(0x0, &(0x7f0000000100)={0x0, 0x0})
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x200, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x16, 0x0, 0x0, &(0x7f0000000200)='syzkaller\x00', 0x5, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10001}, 0x94)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_CREATE_PIT2(r1, 0x4040ae77, &(0x7f00000000c0)={0x3})
ioctl$KVM_SET_PIT2(r1, 0x4070aea0, &(0x7f0000000140)={[{0x4, 0xc, 0x6, 0x6, 0x40, 0x3, 0x42, 0x9, 0x0, 0x4, 0x2, 0x8, 0x10000}, {0x1, 0x8080, 0x6, 0x0, 0x8, 0x4, 0x49, 0x6, 0x2, 0x1, 0x9, 0xf, 0x6c7e}, {0x2, 0xc8b, 0x5, 0x4, 0x8, 0x7, 0xfd, 0x40, 0x5, 0x3, 0x2, 0x3}], 0xf87})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

652.835546ms ago: executing program 1 (id=2724):
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
getpid()
close(r0)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x60, r3, 0xb7a006d1969b963b, 0x1, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x44, 0x33, @probe_request={{{}, {}, @broadcast, @device_b}, @val, @val, @void, @val={0x2d, 0x1a, {0x8802, 0x3, 0x6, 0x0, {0x5, 0xd, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x1, 0x95ce, 0x9}}, @val={0x72, 0x6}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40001}, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, r2)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602019900000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

555.328279ms ago: executing program 2 (id=2725):
ioctl$vim2m_VIDIOC_CREATE_BUFS(0xffffffffffffffff, 0xc100565c, 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='blkio.bfq.io_serviced\x00', 0x26e1, 0x0)
getpid()
close(r0)
r1 = socket$netlink(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b18, &(0x7f0000000000)={'wlan1\x00', @random="010000000700"})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x60, r3, 0xb7a006d1969b963b, 0x1, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_FRAME={0x44, 0x33, @probe_request={{{}, {}, @broadcast, @device_b}, @val, @val, @void, @val={0x2d, 0x1a, {0x8802, 0x3, 0x6, 0x0, {0x5, 0xd, 0x0, 0xc0, 0x0, 0x0, 0x0, 0x3, 0x1}, 0x1, 0x95ce, 0x9}}, @val={0x72, 0x6}}}]}, 0x60}, 0x1, 0x0, 0x0, 0x40001}, 0x10)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602019900000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

269.595928ms ago: executing program 1 (id=2726):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x20000845, 0x0, 0x0)
sendto$packet(0xffffffffffffffff, &(0x7f0000000400), 0xfffffd23, 0x24005010, 0x0, 0x0)
pselect6(0x40, &(0x7f0000000600)={0x2, 0x8, 0x35, 0xc5, 0x7ff, 0xe, 0xfffffffffffffff7, 0xc7}, &(0x7f0000000640)={0x8, 0xe, 0x7fff, 0x8000000000000001, 0x8, 0x3, 0x5, 0xffffffffffff48e5}, 0x0, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f0000000240)=@abs={0x0, 0x0, 0x4e22}, 0x6e)

234.082782ms ago: executing program 2 (id=2727):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001780)=@newqdisc={0x24, 0x28, 0x4ee4e6a52ff56541, 0x4001, 0xfffffdfc, {0x0, 0x0, 0x0, 0x0, {0x10}, {0xffff}, {0x2, 0xfff1}}}, 0x24}, 0x1, 0x0, 0x0, 0x20008091}, 0x4000000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, 0x0}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x1000)
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x75, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x0, 0xfffffff8, 0x0, 0xff, 0xff})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

206.657676ms ago: executing program 3 (id=2728):
r0 = socket$igmp(0x2, 0x3, 0x2)
setsockopt$MRT_FLUSH(r0, 0x0, 0xd1, &(0x7f0000000000)=0x3, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000040)={'vxcan0\x00'})

69.728932ms ago: executing program 1 (id=2729):
ioctl$BTRFS_IOC_ADD_DEV(0xffffffffffffffff, 0x5000940a, &(0x7f0000000140)={{}, "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"})
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000000)='./bus\x00', 0x30040a9, 0x0, 0xf, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000240))
r0 = openat$dir(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0, 0x1)
open_by_handle_at(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="18000000f800000000"], 0x200000)

639µs ago: executing program 1 (id=2730):
sendmsg$TIPC_NL_BEARER_SET(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x14}, 0x1, 0x0, 0x0, 0x48c05}, 0x4040140)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={0x0, 0x30}, 0x1, 0x0, 0x0, 0x48815}, 0xc000)
r0 = syz_open_dev$radio(&(0x7f0000002b40), 0x3, 0x2)
ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000000)={0x98f907, 0x5, @name="03489dc364b8b035b088af7cd259cf32928518e18ff9ffffff08581448a7fc5e"})
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000200)={[0xc45, 0x9, 0xfffffffffffffffd, 0x0, 0x10003, 0x3, 0x4002004c2, 0x7ff, 0x9, 0x3, 0x400, 0x80, 0x89, 0x0, 0xa, 0x8d], 0x100000, 0x240046})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$cgroup_subtree(r6, &(0x7f0000000100)=ANY=[], 0x9)
write$binfmt_script(r6, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r6, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
preadv(r6, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r7 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r7, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
ioctl$KVM_RUN(r7, 0xae80, 0x0)

0s ago: executing program 3 (id=2731):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000400)={'veth0_to_hsr\x00', <r1=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, r1, {0x0, 0xffe1}, {0xffff, 0xffff}, {0xffe0}}, [@qdisc_kind_options=@q_htb={{0x8}, {0x1c, 0x2, [@TCA_HTB_INIT={0x18, 0x2, {0x3, 0x4, 0x9}}]}}]}, 0x48}}, 0xc840)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000800)=@newtfilter={0x54, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, {0x6}, {}, {0x7, 0xfff1}}, [@filter_kind_options=@f_u32={{0x8}, {0x28, 0x2, [@TCA_U32_SEL={0x24, 0x5, {0xd, 0x7, 0x1, 0x3d3f, 0x0, 0xfff, 0xb709, 0x58f, [{0x0, 0x20008000, 0x4, 0x1}]}}]}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4084}, 0x24040084)
recvmmsg$unix(r0, &(0x7f0000000580)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000002c0)=""/219, 0xdb}], 0x1}}], 0x1, 0x60, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, 0x0, &(0x7f0000000200))
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$gtp(&(0x7f0000000040), 0xffffffffffffffff)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$unix(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4040850}, 0x0)
sendmsg$GTP_CMD_NEWPDP(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)={0x2c, r4, 0x1, 0x2, 0x25dfdbfe, {}, [@GTPA_LINK={0x8}, @GTPA_VERSION={0x8, 0x2, 0x1}, @GTPA_LINK={0x8, 0x1, r1}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4004054}, 0x4000044)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[], 0xc3}, 0x1, 0x100000000000000, 0x0, 0x2000}, 0x40400c0)
r5 = socket(0x10, 0x3, 0x0)
sendmmsg(r5, &(0x7f0000000000), 0x4000000000001f2, 0x0)

kernel console output (not intermixed with test programs):

[ T8209] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  211.298684][ T8019] 8021q: adding VLAN 0 to HW filter on device bond0
[  211.312655][ T5781] Bluetooth: hci2: command tx timeout
[  211.438512][ T8019] 8021q: adding VLAN 0 to HW filter on device team0
[  211.453357][ T8209] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  211.526864][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.534298][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  211.593580][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.601009][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  211.665487][   T42] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  211.694039][ T8216] syzkaller0: entered promiscuous mode
[  211.707020][ T8216] syzkaller0: entered allmulticast mode
[  212.021095][ T8019] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  212.693315][ T8019] 8021q: adding VLAN 0 to HW filter on device batadv0
[  213.285707][ T8260] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  213.296979][ T8260] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  213.321855][ T8262] syzkaller0: entered promiscuous mode
[  213.355440][ T8262] syzkaller0: entered allmulticast mode
[  213.494526][ T8270] syzkaller1: tun_chr_ioctl cmd 1074812118
[  213.705313][ T8019] veth0_vlan: entered promiscuous mode
[  213.761995][ T8019] veth1_vlan: entered promiscuous mode
[  213.923340][ T8019] veth0_macvtap: entered promiscuous mode
[  213.961561][ T8019] veth1_macvtap: entered promiscuous mode
[  214.026499][ T8019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.065161][ T8019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.086875][ T8019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.114917][ T8019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.132495][ T8019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.153414][ T8019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.180334][ T8019] batman_adv: batadv0: Interface activated: batadv_slave_0
[  214.236422][ T8019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.262373][ T8019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.284166][ T8019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.306598][ T8019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.331412][ T8019] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.345817][ T8019] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.373989][ T8019] batman_adv: batadv0: Interface activated: batadv_slave_1
[  214.410012][ T8019] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  214.430102][ T8019] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  214.457070][ T8019] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.483998][ T8019] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.616685][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  214.616698][   T28] audit: type=1326 audit(1773090326.876:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8297 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  214.646383][    C1] vkms_vblank_simulate: vblank timer overrun
[  214.707061][ T8302] loop3: detected capacity change from 0 to 164
[  214.709590][   T28] audit: type=1326 audit(1773090326.916:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8297 comm="syz.2.922" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  214.769835][ T3477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  214.818503][ T3477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  214.911000][ T6129] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  214.964154][ T2955] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  215.003158][ T2955] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  215.408606][ T8319] netlink: 4 bytes leftover after parsing attributes in process `syz.3.928'.
[  215.580254][ T8327] loop3: detected capacity change from 0 to 512
[  215.969423][ T8334] netlink: 48 bytes leftover after parsing attributes in process `syz.3.932'.
[  216.006182][ T8334] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  216.191265][ T8337] netlink: 48 bytes leftover after parsing attributes in process `syz.3.932'.
[  216.242727][ T8337] bond2: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  217.042940][ T8363] overlayfs: missing 'lowerdir'
[  218.997497][ T8425] netlink: 40 bytes leftover after parsing attributes in process `syz.4.960'.
[  219.024731][ T8425] netlink: 40 bytes leftover after parsing attributes in process `syz.4.960'.
[  220.344409][ T8461] netlink: 40 bytes leftover after parsing attributes in process `syz.4.971'.
[  220.392696][ T8461] netlink: 40 bytes leftover after parsing attributes in process `syz.4.971'.
[  220.519045][ T8465] netlink: 'syz.2.972': attribute type 12 has an invalid length.
[  220.542363][ T8465] netlink: 'syz.2.972': attribute type 29 has an invalid length.
[  220.558746][ T8465] netlink: 148 bytes leftover after parsing attributes in process `syz.2.972'.
[  220.578456][ T8465] netlink: 43 bytes leftover after parsing attributes in process `syz.2.972'.
[  221.587340][ T8486] overlayfs: missing 'workdir'
[  221.782781][ T8488] netlink: 'syz.3.980': attribute type 1 has an invalid length.
[  222.586662][ T8510] overlayfs: missing 'workdir'
[  222.707165][ T8513] loop2: detected capacity change from 0 to 7
[  222.720061][ T8513] Dev loop2: unable to read RDB block 7
[  222.730288][ T8513]  loop2: unable to read partition table
[  222.736366][ T8513] loop2: partition table beyond EOD, truncated
[  222.746072][ T8513] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  223.533143][ T8532] bond0: (slave lo): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  223.651216][ T8532] bond0: (slave lo): Enslaving as an active interface with an up link
[  223.712892][ T8532] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  223.820056][ T8532] syz.1.996 (8532) used greatest stack depth: 20840 bytes left
[  223.829870][ T8540] loop2: detected capacity change from 0 to 7
[  223.848560][ T8540] Dev loop2: unable to read RDB block 7
[  223.854535][ T8540]  loop2: unable to read partition table
[  223.873635][ T8540] loop2: partition table beyond EOD, truncated
[  223.888084][ T8540] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  224.724277][ T8570] loop3: detected capacity change from 0 to 2048
[  225.261916][ T8581] loop1: detected capacity change from 0 to 1764
[  226.472025][ T8612] loop1: detected capacity change from 0 to 2048
[  227.365741][ T8629] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1035'.
[  227.377880][ T8629] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  227.444550][ T8633] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1035'.
[  227.471035][ T8631] loop3: detected capacity change from 0 to 2048
[  227.490260][ T8633] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  227.927784][   T28] audit: type=1326 audit(1773090340.186:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8643 comm="syz.1.1041" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x0
[  228.143652][ T8649] netlink: 76 bytes leftover after parsing attributes in process `syz.1.1043'.
[  228.596707][ T8657] loop1: detected capacity change from 0 to 2048
[  229.171324][ T8673] tmpfs: Unknown parameter 'n'
[  229.723198][ T8684] loop4: detected capacity change from 0 to 2048
[  233.112378][ T8762] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1078'.
[  233.294371][ T8765] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1078'.
[  233.343208][ T8765] A link change request failed with some changes committed already. Interface gre1 may have been left with an inconsistent configuration, please check.
[  234.395531][ T8803] loop2: detected capacity change from 0 to 7
[  234.429751][ T8803]  loop2: p1
[  234.436500][ T8803] loop2: partition table partially beyond EOD, truncated
[  234.458988][ T8803] loop2: p1 size 1919251295 extends beyond EOD, truncated
[  234.491654][ T5139]  loop2: p1
[  234.501251][ T5139] loop2: partition table partially beyond EOD, truncated
[  234.517522][ T5139] loop2: p1 size 1919251295 extends beyond EOD, truncated
[  234.620180][ T6129] udevd[6129]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  234.738756][ T6129] udevd[6129]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  234.845814][ T8814] cgroup: fork rejected by pids controller in /syz4
[  235.842312][   T11] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.001431][   T11] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.185708][   T11] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.202170][ T8952] tmpfs: Bad value for 'nr_blocks'
[  236.421274][   T11] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  236.555378][ T8963] loop1: detected capacity change from 0 to 2048
[  237.209692][ T5776] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  237.243926][ T5776] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  237.254178][ T5776] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  237.267805][ T5776] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  237.277488][ T5776] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  237.296754][ T5776] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  238.003340][ T9003] tmpfs: Bad value for 'nr_blocks'
[  238.029209][  T786] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  238.255192][  T786] usb 3-1: Using ep0 maxpacket: 8
[  238.275271][  T786] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  238.300479][  T786] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  238.319782][  T786] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  238.347861][  T786] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  238.356500][  T786] usb 3-1: Product: syz
[  238.366830][  T786] usb 3-1: Manufacturer: syz
[  238.371930][  T786] usb 3-1: SerialNumber: syz
[  238.380248][  T786] usb 3-1: config 0 descriptor??
[  238.781090][ T8979] chnl_net:caif_netlink_parms(): no params data found
[  238.953667][ T9031] Option '[��y�$
[  238.953667][ T9031] ���>�ڎ��Tk���S�@S�V��fhJ' to dns_resolver key: bad/missing value
[  239.380712][ T5776] Bluetooth: hci2: command tx timeout
[  239.761170][ T9048] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1122'.
[  239.774501][ T9048] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  239.832047][ T9050] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1122'.
[  239.841889][ T9050] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  239.931730][ T8979] bridge0: port 1(bridge_slave_0) entered blocking state
[  239.952627][ T8979] bridge0: port 1(bridge_slave_0) entered disabled state
[  239.979007][ T8979] bridge_slave_0: entered allmulticast mode
[  239.986610][ T8979] bridge_slave_0: entered promiscuous mode
[  240.039145][ T8979] bridge0: port 2(bridge_slave_1) entered blocking state
[  240.046370][ T8979] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.088454][ T8979] bridge_slave_1: entered allmulticast mode
[  240.095956][ T8979] bridge_slave_1: entered promiscuous mode
[  240.182629][ T9062] tmpfs: Bad value for 'nr_blocks'
[  240.332628][ T8979] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  240.382217][ T8979] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  240.527684][ T8979] team0: Port device team_slave_0 added
[  240.590768][ T8979] team0: Port device team_slave_1 added
[  240.794658][   T11] hsr_slave_0: left promiscuous mode
[  240.821858][   T11] hsr_slave_1: left promiscuous mode
[  240.843157][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  240.861648][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  240.875147][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  240.892807][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  240.906247][   T11] bridge_slave_1: left allmulticast mode
[  240.918308][   T11] bridge_slave_1: left promiscuous mode
[  240.932152][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  240.958887][   T11] bridge_slave_0: left allmulticast mode
[  240.985107][   T11] bridge_slave_0: left promiscuous mode
[  241.009258][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.123739][   T11] veth1_macvtap: left promiscuous mode
[  241.138419][   T11] veth0_macvtap: left promiscuous mode
[  241.154401][   T11] veth1_vlan: left promiscuous mode
[  241.164485][   T11] veth0_vlan: left promiscuous mode
[  241.432022][ T9095] tmpfs: Bad value for 'nr_blocks'
[  241.458115][ T5776] Bluetooth: hci2: command tx timeout
[  241.587701][  T786] usb 3-1: USB disconnect, device number 2
[  243.538133][ T5776] Bluetooth: hci2: command tx timeout
[  244.396119][   T11] team0 (unregistering): Port device team_slave_1 removed
[  244.510337][   T11] team0 (unregistering): Port device team_slave_0 removed
[  244.582200][   T28] audit: type=1326 audit(1773090356.846:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.3.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  244.625735][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  244.627796][   T28] audit: type=1326 audit(1773090356.846:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9133 comm="syz.3.1147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  244.827594][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  245.398481][   T11] bond0 (unregistering): Released all slaves
[  245.546569][ T8979] batman_adv: batadv0: Adding interface: batadv_slave_0
[  245.558074][ T8979] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  245.596521][ T8979] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  245.616170][ T8979] batman_adv: batadv0: Adding interface: batadv_slave_1
[  245.623654][ T8979] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  245.628292][ T5776] Bluetooth: hci2: command tx timeout
[  245.661697][ T8979] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  245.878531][ T9155] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1155'.
[  245.894741][ T8979] hsr_slave_0: entered promiscuous mode
[  245.928193][ T8979] hsr_slave_1: entered promiscuous mode
[  245.945185][ T8979] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  245.974560][ T8979] Cannot create hsr debugfs directory
[  246.529861][ T9169] No such timeout policy "syz1"
[  246.854997][   T28] audit: type=1326 audit(1773090359.116:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.1.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  246.934914][   T28] audit: type=1326 audit(1773090359.146:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9174 comm="syz.1.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  247.316981][ T8979] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  247.354751][ T8979] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  247.382722][ T8979] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  247.441381][ T8979] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  247.763382][ T8979] 8021q: adding VLAN 0 to HW filter on device bond0
[  247.852804][ T8979] 8021q: adding VLAN 0 to HW filter on device team0
[  247.900996][ T3477] bridge0: port 1(bridge_slave_0) entered blocking state
[  247.909206][ T3477] bridge0: port 1(bridge_slave_0) entered forwarding state
[  247.954834][ T3477] bridge0: port 2(bridge_slave_1) entered blocking state
[  247.962179][ T3477] bridge0: port 2(bridge_slave_1) entered forwarding state
[  248.134098][ T9205] loop2: detected capacity change from 0 to 7
[  248.145106][ T9205] Dev loop2: unable to read RDB block 7
[  248.155583][ T9205]  loop2: unable to read partition table
[  248.168433][ T9205] loop2: partition table beyond EOD, truncated
[  248.186366][ T9205] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  248.513697][ T9215] loop2: detected capacity change from 0 to 128
[  250.275915][ T8979] 8021q: adding VLAN 0 to HW filter on device batadv0
[  251.020098][   T28] audit: type=1326 audit(1773090363.286:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.1.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  251.283186][ T8979] veth0_vlan: entered promiscuous mode
[  251.328639][ T8979] veth1_vlan: entered promiscuous mode
[  251.412159][ T8979] veth0_macvtap: entered promiscuous mode
[  251.437411][ T8979] veth1_macvtap: entered promiscuous mode
[  251.484349][ T8979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.503361][ T8979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.516304][ T8979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.534405][ T8979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.545487][ T8979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  251.564908][ T8979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.577667][ T8979] batman_adv: batadv0: Interface activated: batadv_slave_0
[  251.641539][ T8979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.663676][ T8979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.691160][ T8979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.704182][   T28] audit: type=1326 audit(1773090363.976:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9234 comm="syz.1.1172" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  251.731805][ T8979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.743775][ T8979] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  251.759222][ T8979] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.774682][ T8979] batman_adv: batadv0: Interface activated: batadv_slave_1
[  251.833371][ T8979] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.856749][ T8979] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.866085][ T8979] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.924588][ T8979] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  252.179600][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.219090][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.323889][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  252.375532][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.813036][ T9281] loop4: detected capacity change from 0 to 256
[  253.065681][   T28] audit: type=1326 audit(1773090365.326:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9282 comm="syz.1.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  253.346638][ T9298] loop2: detected capacity change from 0 to 7
[  253.358513][ T9298] Dev loop2: unable to read RDB block 7
[  253.368752][ T9298]  loop2: unable to read partition table
[  253.395021][ T9298] loop2: partition table beyond EOD, truncated
[  253.426251][ T9298] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  253.529438][ T9301] loop4: detected capacity change from 0 to 128
[  253.726890][   T28] audit: type=1326 audit(1773090365.976:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9282 comm="syz.1.1182" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  255.722657][   T28] audit: type=1326 audit(1773090367.986:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.4.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7fc00000
[  256.102781][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  256.110774][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  256.443855][   T28] audit: type=1326 audit(1773090368.706:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9340 comm="syz.4.1202" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8f72b9c799 code=0x7fc00000
[  256.825535][ T9373] ������: renamed from vlan0 (while UP)
[  259.478619][ T9466] loop3: detected capacity change from 0 to 164
[  259.519615][ T9466] isofs_fill_super: root inode is not a directory. Corrupted media?
[  260.004155][ T9440] bridge0: port 2(bridge_slave_1) entered disabled state
[  260.012127][ T9440] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.693395][ T9440] bridge_slave_0: left allmulticast mode
[  260.704455][ T9440] bridge_slave_0: left promiscuous mode
[  260.712743][ T9440] bridge0: port 1(bridge_slave_0) entered disabled state
[  260.801158][ T9440] bridge_slave_1: left allmulticast mode
[  260.807820][ T9440] bridge_slave_1: left promiscuous mode
[  260.815583][ T9440] bridge0: port 2(bridge_slave_1) entered disabled state
[  260.866614][ T9440] bond0: (slave bond_slave_0): Releasing backup interface
[  260.914309][ T9440] bond0: (slave bond_slave_1): Releasing backup interface
[  260.968599][ T9440] team0: Port device team_slave_0 removed
[  261.019436][ T9440] team0: Port device team_slave_1 removed
[  261.035467][ T9440] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  261.069181][ T9440] batman_adv: batadv0: Removing interface: batadv_slave_0
[  261.090847][ T9440] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  261.103022][ T9440] batman_adv: batadv0: Removing interface: batadv_slave_1
[  261.382173][ T9440] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  261.394956][ T9440] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  261.404334][ T9440] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  261.413495][ T9440] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  261.783865][ T9523] loop1: detected capacity change from 0 to 128
[  261.894659][ T9523] syz.1.1248: attempt to access beyond end of device
[  261.894659][ T9523] loop1: rw=2049, sector=153, nr_sectors = 3 limit=128
[  263.275901][ T9566] loop3: detected capacity change from 0 to 512
[  263.880147][ T9592] syzkaller0: entered promiscuous mode
[  263.885844][ T9592] syzkaller0: entered allmulticast mode
[  265.005244][ T9614] loop3: detected capacity change from 0 to 512
[  266.219807][ T9663] ������: renamed from vlan0
[  266.399914][   T28] audit: type=1326 audit(1773090378.666:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9668 comm="syz.4.1315" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x0
[  266.582833][ T9676] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1318'.
[  266.596653][ T9676] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  266.715133][ T9676] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1318'.
[  266.732556][ T9676] bond1: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  268.602553][ T9722] loop4: detected capacity change from 0 to 256
[  268.678909][ T9722] FAT-fs (loop4): Directory bread(block 64) failed
[  268.712028][ T9722] FAT-fs (loop4): Directory bread(block 65) failed
[  268.727830][ T9722] FAT-fs (loop4): Directory bread(block 66) failed
[  268.757627][ T9722] FAT-fs (loop4): Directory bread(block 67) failed
[  268.776782][ T9722] FAT-fs (loop4): Directory bread(block 68) failed
[  268.797185][ T9722] FAT-fs (loop4): Directory bread(block 69) failed
[  268.818996][ T9722] FAT-fs (loop4): Directory bread(block 70) failed
[  268.829146][ T9727] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1339'.
[  268.840164][ T9727] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  268.849152][ T9722] FAT-fs (loop4): Directory bread(block 71) failed
[  268.856868][ T9722] FAT-fs (loop4): Directory bread(block 72) failed
[  268.864440][ T9722] FAT-fs (loop4): Directory bread(block 73) failed
[  268.983123][ T9727] batman_adv: batadv0: Removing interface: batadv_slave_1
[  269.056883][   T12] kworker/u4:1: attempt to access beyond end of device
[  269.056883][   T12] loop4: rw=1, sector=1800, nr_sectors = 8 limit=256
[  269.097186][ T9730] loop2: detected capacity change from 0 to 7
[  269.108169][ T9730]  loop2: p1
[  269.112086][ T9730] loop2: partition table partially beyond EOD, truncated
[  269.134114][ T9730] loop2: p1 size 1919251295 extends beyond EOD, truncated
[  269.208928][ T9732] overlayfs: failed to resolve './file2': -2
[  269.300642][ T6129] udevd[6129]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  269.406945][ T9734] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1343'.
[  269.449584][ T9734] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  269.570187][ T9740] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1343'.
[  269.608078][ T9740] bond4: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  270.030199][ T9755] overlayfs: failed to resolve './file2': -2
[  272.733302][ T9806] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1371'.
[  272.746955][ T9806] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  272.891060][ T9806] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1371'.
[  272.933778][ T9806] bond2: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  272.967078][ T9815] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  273.050589][ T9816] ������: renamed from vlan0 (while UP)
[  273.306461][   T28] audit: type=1326 audit(1773090385.566:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  273.822036][ T9842] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1385'.
[  273.833902][ T9842] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  273.933881][ T9842] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1385'.
[  273.945641][ T9842] bond2: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  273.987856][   T28] audit: type=1326 audit(1773090386.246:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9817 comm="syz.1.1377" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  274.572209][ T9866] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1396'.
[  274.586851][ T9866] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  274.702605][ T9869] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1396'.
[  274.759259][ T9869] bond6: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  274.763549][ T9875] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1399'.
[  274.850834][ T9873] block device autoloading is deprecated and will be removed.
[  275.487538][ T9898] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1410'.
[  275.506316][ T9898] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  275.565207][ T9898] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1410'.
[  275.574883][ T9898] bond7: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  275.673879][ T9905] ip6tnl1: entered allmulticast mode
[  276.406804][ T9931] overlayfs: failed to resolve './file2': -2
[  276.418761][   T49] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  276.427126][   T49] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  276.461690][ T5833] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  276.528228][ T5833] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  276.692913][ T9933] loop3: detected capacity change from 0 to 8192
[  276.727799][ T9940] syz.1.1429 (9940) used greatest stack depth: 20144 bytes left
[  277.378284][    T8] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  278.632996][T10013] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294967290 (549755813120 ns) > initial count (4194816 ns). Using initial count to start timer.
[  279.259076][T10041] overlayfs: missing 'lowerdir'
[  279.952195][T10057] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1478'.
[  279.977601][T10057] ip6gre1: entered promiscuous mode
[  279.988520][T10057] ip6gre1: entered allmulticast mode
[  280.175690][T10063] syz.4.1481 uses obsolete (PF_INET,SOCK_PACKET)
[  280.258137][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  280.295457][T10065] program syz.3.1482 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  280.473958][   T28] audit: type=1326 audit(1773090392.736:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10068 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7fc00000
[  280.503932][   T28] audit: type=1326 audit(1773090392.766:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10068 comm="syz.4.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8f72b9c799 code=0x7fc00000
[  281.078150][T10079] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1488'.
[  281.111398][T10079] ip6gre1: entered promiscuous mode
[  281.124565][T10079] ip6gre1: entered allmulticast mode
[  281.537303][T10087] kvm: pic: non byte write
[  281.637827][T10092] loop2: detected capacity change from 0 to 7
[  281.647118][ T6129] Dev loop2: unable to read RDB block 7
[  281.653538][ T6129]  loop2: unable to read partition table
[  281.660064][ T6129] loop2: partition table beyond EOD, truncated
[  281.670863][T10092] Dev loop2: unable to read RDB block 7
[  281.677076][T10092]  loop2: unable to read partition table
[  281.693859][T10092] loop2: partition table beyond EOD, truncated
[  281.718015][T10092] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  282.727139][T10127] loop2: detected capacity change from 0 to 128
[  282.795042][   T28] audit: type=1326 audit(1773090395.056:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  282.817556][T10128] loop3: detected capacity change from 0 to 164
[  282.833885][T10128] isofs_fill_super: bread failed, dev=loop3, iso_blknum=1073741844, block=-2147483608
[  282.848721][   T28] audit: type=1326 audit(1773090395.056:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  282.907789][   T28] audit: type=1326 audit(1773090395.096:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  282.951453][T10130] 9pnet: p9_errstr2errno: server reported unknown error 0x000000
[  282.968003][   T28] audit: type=1326 audit(1773090395.096:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  283.001928][   T28] audit: type=1326 audit(1773090395.096:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  283.024842][   T28] audit: type=1326 audit(1773090395.096:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  283.096123][   T28] audit: type=1326 audit(1773090395.096:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  283.148791][   T28] audit: type=1326 audit(1773090395.096:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10129 comm="syz.4.1511" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  283.456539][T10145] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1516'.
[  283.551669][T10150] loop1: detected capacity change from 0 to 128
[  283.633910][T10155] syzkaller0: entered promiscuous mode
[  283.645067][T10155] syzkaller0: entered allmulticast mode
[  283.911911][T10160] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1524'.
[  284.062799][T10160] loop3: detected capacity change from 0 to 8192
[  284.161125][T10168] overlayfs: missing 'lowerdir'
[  284.523141][T10175] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1524'.
[  284.588177][ T9515] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  284.778769][ T9515] usb 3-1: Using ep0 maxpacket: 8
[  284.787853][ T9515] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  284.805395][ T9515] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  284.841749][ T9515] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  284.862521][ T9515] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  284.882912][ T9515] usb 3-1: Product: syz
[  284.887267][ T9515] usb 3-1: Manufacturer: syz
[  284.895269][ T9515] usb 3-1: SerialNumber: syz
[  284.925488][ T9515] usb 3-1: config 0 descriptor??
[  285.169850][T10188] loop3: detected capacity change from 0 to 16
[  285.184123][T10184] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.196334][T10188] erofs: Unknown parameter '������00000000000000000000000����'
[  285.506668][T10197] Option '[��y�$
[  285.506668][T10197] ���>�ڎ��Tk���S�@S�V��fhJ' to dns_resolver key: bad/missing value
[  285.872504][T10184] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  286.352004][T10184] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  286.361134][T10184] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  286.371379][T10184] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  286.380630][T10184] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  286.803336][T10206] overlayfs: missing 'lowerdir'
[  286.843181][T10208] syzkaller0: entered promiscuous mode
[  286.855552][T10208] syzkaller0: entered allmulticast mode
[  287.485670][T10230] loop2: detected capacity change from 0 to 7
[  287.511560][T10204] Dev loop2: unable to read RDB block 7
[  287.517334][T10204]  loop2: unable to read partition table
[  287.529733][T10204] loop2: partition table beyond EOD, truncated
[  287.537199][T10230] Dev loop2: unable to read RDB block 7
[  287.552785][T10230]  loop2: unable to read partition table
[  287.562912][T10230] loop2: partition table beyond EOD, truncated
[  287.571314][T10230] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  287.808759][ T5810] usb 3-1: USB disconnect, device number 3
[  288.098121][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  288.701559][T10267] loop2: detected capacity change from 0 to 8192
[  288.734634][T10267] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  288.758754][ T9515] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  288.958077][ T9515] usb 2-1: Using ep0 maxpacket: 8
[  288.994482][ T9515] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  289.014044][ T9515] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  289.032570][ T9515] usb 2-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  289.064657][ T9515] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  289.077010][ T9515] usb 2-1: Product: syz
[  289.080563][T10281] loop2: detected capacity change from 0 to 128
[  289.093471][ T9515] usb 2-1: Manufacturer: syz
[  289.098493][ T9515] usb 2-1: SerialNumber: syz
[  289.108681][T10281] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  289.129883][ T9515] usb 2-1: config 0 descriptor??
[  289.140288][T10282] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294967290 (549755813120 ns) > initial count (4194816 ns). Using initial count to start timer.
[  289.462785][T10281] syz.2.1572 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  289.481504][T10281] Cannot find add_set index 1 as target
[  289.708991][T10290] Option '[��y�$
[  289.708991][T10290] ���>�ڎ��Tk���S�@S�V��fhJ' to dns_resolver key: bad/missing value
[  289.737186][T10292] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1575'.
[  289.762657][T10292] ip6gre2: entered promiscuous mode
[  289.768240][T10292] ip6gre2: entered allmulticast mode
[  289.775852][ T1324] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  289.792712][ T1324] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  289.802770][ T5814] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  289.811589][T10294] overlayfs: failed to resolve './file2': -2
[  289.908902][T10296] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1577'.
[  290.019462][ T5814] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  290.068693][ T5814] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  290.186465][T10306] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1582'.
[  290.332329][T10306] loop2: detected capacity change from 0 to 8192
[  290.745282][T10319] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1588'.
[  290.765153][T10320] overlayfs: failed to resolve './file2': -2
[  291.503498][ T9514] usb 2-1: USB disconnect, device number 2
[  291.605311][T10342] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1597'.
[  291.623538][T10343] overlayfs: failed to resolve './file2': -2
[  291.756982][T10345] ������: renamed from vlan0
[  292.028234][T10355] capability: warning: `syz.4.1603' uses deprecated v2 capabilities in a way that may be insecure
[  292.309209][T10368] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1608'.
[  292.432399][ T5814] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  292.576610][T10379] syzkaller0: entered promiscuous mode
[  292.582572][T10379] syzkaller0: entered allmulticast mode
[  292.638698][ T5814] usb 3-1: Using ep0 maxpacket: 8
[  292.664169][ T5814] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  292.697973][ T5814] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  292.720905][ T5814] usb 3-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  292.735853][ T5814] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  292.746893][ T5814] usb 3-1: Product: syz
[  292.752585][ T5814] usb 3-1: Manufacturer: syz
[  292.761123][ T5814] usb 3-1: SerialNumber: syz
[  292.778561][ T5814] usb 3-1: config 0 descriptor??
[  293.318470][T10393] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1619'.
[  293.353853][T10394] Option '[��y�$
[  293.353853][T10394] ���>�ڎ��Tk���S�@S�V��fhJ' to dns_resolver key: bad/missing value
[  293.548153][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  293.906201][T10412] loop4: detected capacity change from 0 to 16
[  293.923878][T10412] erofs: (device loop4): mounted with root inode @ nid 36.
[  294.148745][T10417] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1629'.
[  295.125656][ T9515] usb 3-1: USB disconnect, device number 4
[  295.201270][T10447] loop1: detected capacity change from 0 to 128
[  295.563433][   T28] kauditd_printk_skb: 75 callbacks suppressed
[  295.563448][   T28] audit: type=1326 audit(2000000005.140:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.1.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  295.662508][   T28] audit: type=1326 audit(2000000005.180:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10452 comm="syz.1.1645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  295.766723][T10464] loop3: detected capacity change from 0 to 256
[  295.939418][T10468] overlayfs: missing 'lowerdir'
[  295.983192][T10470] loop4: detected capacity change from 0 to 128
[  296.495158][T10478] kvm: vcpu 0: requested 768 ns lapic timer period limited to 200000 ns
[  296.755014][T10493] overlayfs: missing 'workdir'
[  296.832409][T10495] loop2: detected capacity change from 0 to 7
[  296.852222][T10495] Dev loop2: unable to read RDB block 7
[  296.865420][T10495]  loop2: unable to read partition table
[  296.881767][T10495] loop2: partition table beyond EOD, truncated
[  296.896586][T10495] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  297.209331][   T28] audit: type=1326 audit(2000000006.790:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10503 comm="syz.3.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  297.251423][   T28] audit: type=1326 audit(2000000006.810:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10503 comm="syz.3.1669" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  298.442280][T10544] sg_read: process 1045 (syz.1.1687) changed security contexts after opening file descriptor, this is not allowed.
[  298.630578][   T28] audit: type=1326 audit(2000000008.210:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10549 comm="syz.1.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  298.656210][   T28] audit: type=1326 audit(2000000008.210:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10549 comm="syz.1.1690" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  298.757062][T10555] futex_wake_op: syz.4.1692 tries to shift op by 35; fix this program
[  299.576423][T10577] loop1: detected capacity change from 0 to 16
[  299.619871][T10579] loop2: detected capacity change from 0 to 7
[  299.634472][T10579] Dev loop2: unable to read RDB block 7
[  299.635054][T10577] erofs: (device loop1): mounted with root inode @ nid 36.
[  299.677350][T10579]  loop2: unable to read partition table
[  299.694262][T10579] loop2: partition table beyond EOD, truncated
[  299.720262][T10579] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  300.034219][T10590] bond0: option mode: unable to set because the bond device has slaves
[  300.049122][T10590] A link change request failed with some changes committed already. Interface tunl0 may have been left with an inconsistent configuration, please check.
[  300.612565][T10607] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1716'.
[  300.633913][T10607] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1716'.
[  300.898155][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  301.203564][T10635] loop2: detected capacity change from 0 to 7
[  301.244507][T10635] Dev loop2: unable to read RDB block 7
[  301.274963][T10635]  loop2: unable to read partition table
[  301.285211][T10635] loop2: partition table beyond EOD, truncated
[  301.297518][T10635] loop_reread_partitions: partition scan of loop2 (�被x������ ) failed (rc=-5)
[  301.466228][   T28] audit: type=1326 audit(2000000011.040:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10640 comm="syz.4.1729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  301.490738][   T28] audit: type=1326 audit(2000000011.040:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10640 comm="syz.4.1729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  301.537239][   T28] audit: type=1326 audit(2000000011.070:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10640 comm="syz.4.1729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=107 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  301.570930][   T28] audit: type=1326 audit(2000000011.070:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10640 comm="syz.4.1729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  301.599442][   T28] audit: type=1326 audit(2000000011.070:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10640 comm="syz.4.1729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=262 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  301.622696][   T28] audit: type=1326 audit(2000000011.070:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10640 comm="syz.4.1729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  301.649714][   T28] audit: type=1326 audit(2000000011.070:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10640 comm="syz.4.1729" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7ffc0000
[  302.926559][T10689] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1750'.
[  303.015770][T10693] netlink: 'syz.1.1753': attribute type 30 has an invalid length.
[  303.148643][T10698] loop3: detected capacity change from 0 to 16
[  303.158711][T10696] overlayfs: missing 'lowerdir'
[  303.190675][T10698] erofs: (device loop3): mounted with root inode @ nid 36.
[  303.544802][T10713] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1762'.
[  303.770569][T10721] overlayfs: missing 'lowerdir'
[  304.036975][T10727] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4018234088 (64291745408 ns) > initial count (53454525424 ns). Using initial count to start timer.
[  304.098336][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  304.396768][T10744] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore
[  304.428927][T10744] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  304.931544][T10773] loop1: detected capacity change from 0 to 1764
[  304.975983][ T6129] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  305.286811][T10781] kvm: Disabled LAPIC found during irq injection
[  305.399507][T10787] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1792'.
[  305.527037][T10791] syzkaller0: left promiscuous mode
[  305.533060][T10791] syzkaller0: left allmulticast mode
[  305.605062][T10793] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1795'.
[  305.635680][T10793] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1795'.
[  305.648790][   T28] audit: type=1326 audit(2000000015.230:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10788 comm="syz.3.1794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  305.692394][   T28] audit: type=1326 audit(2000000015.250:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10788 comm="syz.3.1794" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  306.086963][T10806] loop4: detected capacity change from 0 to 16
[  306.125006][T10806] erofs: (device loop4): mounted with root inode @ nid 36.
[  306.402480][T10816] fuse: Unknown parameter '00000000000000000000'
[  306.416905][T10816] cgroup: noprefix used incorrectly
[  306.931236][T10835] loop4: detected capacity change from 0 to 8192
[  306.954962][T10835] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  307.243125][T10840] loop1: detected capacity change from 0 to 16
[  307.277820][T10840] erofs: (device loop1): mounted with root inode @ nid 36.
[  307.596652][   T28] audit: type=1326 audit(2000000017.170:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10841 comm="syz.4.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8f72b9c799 code=0x7fc00000
[  307.641650][   T28] audit: type=1326 audit(2000000017.200:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10841 comm="syz.4.1814" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8f72b9c799 code=0x7fc00000
[  308.263539][T10862] loop3: detected capacity change from 0 to 16
[  308.290965][T10862] erofs: (device loop3): mounted with root inode @ nid 36.
[  308.491874][T10870] Illegal XDP return value 4294967294 on prog  (id 53) dev N/A, expect packet loss!
[  309.045952][   T28] audit: type=1326 audit(2000000018.620:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.1.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  309.073697][   T28] audit: type=1326 audit(2000000018.650:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10886 comm="syz.1.1833" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  310.490151][   T28] audit: type=1326 audit(2000000020.060:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.3.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  310.590900][   T28] audit: type=1326 audit(2000000020.070:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10936 comm="syz.3.1853" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ffa5e99c799 code=0x7fc00000
[  310.672185][T10948] loop4: detected capacity change from 0 to 128
[  310.909761][T10952] syz.4.1857: attempt to access beyond end of device
[  310.909761][T10952] loop4: rw=2049, sector=138, nr_sectors = 112 limit=128
[  312.508049][   T28] audit: type=1326 audit(2000000022.080:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  312.532837][   T28] audit: type=1326 audit(2000000022.080:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10974 comm="syz.1.1869" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f78c899c799 code=0x7fc00000
[  312.888794][ T5781] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  312.899893][ T5781] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  312.912893][ T5781] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  312.935311][ T5781] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  312.957320][ T5781] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  312.966198][ T5781] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  314.048707][T10988] chnl_net:caif_netlink_parms(): no params data found
[  314.126647][T11020] overlayfs: missing 'workdir'
[  314.160327][   T49] hsr_slave_0: left promiscuous mode
[  314.168320][   T49] hsr_slave_1: left promiscuous mode
[  314.190617][   T49] bond3 (unregistering): Released all slaves
[  314.220502][   T49] bond2 (unregistering): Released all slaves
[  314.317328][T11024] overlayfs: orphan index entry (index/00fb210001e7ac13bc50de434d85a6ea0ddb2e9a7892b810df9b09000000000000, ftype=2000, nlink=1)
[  314.344288][T11024] overlayfs: bad index found (index=index/00fb210001e7ac13bc50de434d85a6ea0ddb2e9a7892b810df9b09000000000000, ftype=2000, origin ftype=2000).
[  314.367057][   T49] bond1 (unregistering): Released all slaves
[  314.988070][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  315.064315][ T5776] Bluetooth: hci2: command tx timeout
[  315.667757][   T49] bond0 (unregistering): Released all slaves
[  315.788087][T11028] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1883'.
[  315.821938][T11030] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1884'.
[  316.171380][T10988] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.206307][T10988] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.222852][T10988] bridge_slave_0: entered allmulticast mode
[  316.269427][T10988] bridge_slave_0: entered promiscuous mode
[  316.294837][T10988] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.303329][T10988] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.310681][T10988] bridge_slave_1: entered allmulticast mode
[  316.332079][T10988] bridge_slave_1: entered promiscuous mode
[  316.512402][T10988] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  316.561824][T10988] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  316.718603][   T28] audit: type=1326 audit(2000000026.290:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11059 comm="syz.2.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  316.746507][T10988] team0: Port device team_slave_0 added
[  316.789351][T10988] team0: Port device team_slave_1 added
[  316.859741][T10988] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.866771][T10988] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.902525][T10988] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.950848][T11069] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1893'.
[  316.979648][T10988] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.986760][T10988] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  317.035671][T10988] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  317.057716][T11072] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1894'.
[  317.145887][ T5776] Bluetooth: hci2: command tx timeout
[  317.179267][T10988] hsr_slave_0: entered promiscuous mode
[  317.195775][T10988] hsr_slave_1: entered promiscuous mode
[  317.211180][T10988] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  317.228098][T10988] Cannot create hsr debugfs directory
[  317.450532][   T28] audit: type=1326 audit(2000000027.030:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11059 comm="syz.2.1891" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  317.543242][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  317.549811][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  317.971987][T10988] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  318.006362][T10988] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  318.038183][T10988] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  318.107386][T10988] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  318.563960][T11109] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[  318.726964][T11114] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1904'.
[  318.756068][T11114] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  318.783204][T11113] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1904'.
[  318.810441][T11113] (unnamed net_device) (uninitialized): Unable to set up delay as MII monitoring is disabled
[  318.858092][   T28] audit: type=1326 audit(2000000028.420:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11116 comm="syz.2.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  319.043245][T10988] 8021q: adding VLAN 0 to HW filter on device bond0
[  319.177539][T10988] 8021q: adding VLAN 0 to HW filter on device team0
[  319.212379][ T1324] bridge0: port 1(bridge_slave_0) entered blocking state
[  319.219654][ T1324] bridge0: port 1(bridge_slave_0) entered forwarding state
[  319.227970][ T5776] Bluetooth: hci2: command tx timeout
[  319.266985][ T1324] bridge0: port 2(bridge_slave_1) entered blocking state
[  319.274292][ T1324] bridge0: port 2(bridge_slave_1) entered forwarding state
[  319.560814][   T28] audit: type=1326 audit(2000000029.130:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11116 comm="syz.2.1906" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  320.059731][T11144] loop3: detected capacity change from 0 to 16
[  320.076838][T11144] erofs: (device loop3): mounted with root inode @ nid 36.
[  320.206881][ T5781] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  320.224201][ T5781] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  320.232773][ T5781] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  320.242126][ T5781] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  320.249943][ T5781] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  320.269054][ T5781] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  320.734252][   T28] audit: type=1326 audit(2000000030.310:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11161 comm="syz.2.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  321.014653][T10988] 8021q: adding VLAN 0 to HW filter on device batadv0
[  321.298939][ T5781] Bluetooth: hci2: command tx timeout
[  321.468155][   T28] audit: type=1326 audit(2000000031.030:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11161 comm="syz.2.1916" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f797879c799 code=0x7fc00000
[  321.710783][T11190] loop3: detected capacity change from 0 to 16
[  321.743820][T11190] erofs: (device loop3): mounted with root inode @ nid 36.
[  321.755105][T11146] chnl_net:caif_netlink_parms(): no params data found
[  321.983169][ T1136] hsr_slave_0: left promiscuous mode
[  322.033445][ T1136] hsr_slave_1: left promiscuous mode
[  322.057806][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  322.083795][ T1136] bridge_slave_1: left allmulticast mode
[  322.091345][ T1136] bridge_slave_1: left promiscuous mode
[  322.097957][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  322.122318][ T1136] bond5 (unregistering): Released all slaves
[  322.151041][ T1136] bond4 (unregistering): Released all slaves
[  322.266510][ T1136] bond3 (unregistering): Released all slaves
[  322.305341][ T1136] bond2 (unregistering): Released all slaves
[  322.338458][ T5781] Bluetooth: hci0: command tx timeout
[  322.393367][ T1136] bond0 (unregistering): (slave lo): Releasing backup interface
[  322.402345][ T1136] bond0 (unregistering): (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  322.414712][ T1136] bond0 (unregistering): Released all slaves
[  322.443638][ T1136] bond1 (unregistering): Released all slaves
[  323.079885][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  323.126384][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  323.657386][T11197] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1923'.
[  323.812845][T11146] bridge0: port 1(bridge_slave_0) entered blocking state
[  323.848192][T11146] bridge0: port 1(bridge_slave_0) entered disabled state
[  323.855539][T11146] bridge_slave_0: entered allmulticast mode
[  323.907370][T11146] bridge_slave_0: entered promiscuous mode
[  323.926074][T11146] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.936462][T11146] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.956789][T11146] bridge_slave_1: entered allmulticast mode
[  323.975402][T11146] bridge_slave_1: entered promiscuous mode
[  324.074308][T11146] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  324.123748][T11146] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  324.161796][T10988] veth0_vlan: entered promiscuous mode
[  324.251079][T10988] veth1_vlan: entered promiscuous mode
[  324.275672][T11146] team0: Port device team_slave_0 added
[  324.306720][T11146] team0: Port device team_slave_1 added
[  324.381944][T11146] batman_adv: batadv0: Adding interface: batadv_slave_0
[  324.391490][T11146] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.418009][ T5781] Bluetooth: hci0: command tx timeout
[  324.433006][T11146] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  324.446042][T11225] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1931'.
[  324.462715][T11225] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  324.589029][T11225] batman_adv: batadv0: Removing interface: batadv_slave_1
[  324.643110][T10988] veth0_macvtap: entered promiscuous mode
[  324.653874][T11146] batman_adv: batadv0: Adding interface: batadv_slave_1
[  324.662632][T11146] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  324.691862][T11146] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  324.719650][T10988] veth1_macvtap: entered promiscuous mode
[  324.862101][T11146] hsr_slave_0: entered promiscuous mode
[  324.891224][T11146] hsr_slave_1: entered promiscuous mode
[  324.974930][T10988] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.022426][T10988] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.054062][T10988] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  325.066331][T10988] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.089915][T10988] batman_adv: batadv0: Interface activated: batadv_slave_0
[  325.172240][T10988] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  325.198041][T10988] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  325.214167][T10988] batman_adv: batadv0: Interface activated: batadv_slave_1
[  325.264522][T10988] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  325.287966][T10988] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  325.317198][T10988] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  325.346886][T10988] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  325.369827][T11244] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1935'.
[  325.419682][T11248] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1936'.
[  325.677053][T11248] loop3: detected capacity change from 0 to 8192
[  325.773223][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  325.804269][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.015086][T11251] netlink: 40 bytes leftover after parsing attributes in process `syz.3.1936'.
[  326.049148][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  326.085154][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  326.498203][ T5781] Bluetooth: hci0: command tx timeout
[  326.545674][T11268] futex_wake_op: syz.5.1864 tries to shift op by 35; fix this program
[  326.872874][T11279] loop3: detected capacity change from 0 to 256
[  326.890899][   T28] audit: type=1800 audit(2000000001.070:157): pid=11279 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1943" name="bus" dev="loop3" ino=1048631 res=0 errno=0
[  326.918560][T11146] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  326.987429][T11146] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  327.052886][T11146] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  327.228267][T11146] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  327.265202][T11289] loop5: detected capacity change from 0 to 128
[  327.697186][T11146] 8021q: adding VLAN 0 to HW filter on device bond0
[  327.787243][T11146] 8021q: adding VLAN 0 to HW filter on device team0
[  327.863665][ T1324] bridge0: port 1(bridge_slave_0) entered blocking state
[  327.870978][ T1324] bridge0: port 1(bridge_slave_0) entered forwarding state
[  327.922836][ T1324] bridge0: port 2(bridge_slave_1) entered blocking state
[  327.930219][ T1324] bridge0: port 2(bridge_slave_1) entered forwarding state
[  328.579580][ T5781] Bluetooth: hci0: command tx timeout
[  328.883196][T11146] 8021q: adding VLAN 0 to HW filter on device batadv0
[  329.036934][T11330] loop3: detected capacity change from 0 to 128
[  329.101789][T11146] veth0_vlan: entered promiscuous mode
[  329.159468][T11146] veth1_vlan: entered promiscuous mode
[  329.277741][T11146] veth0_macvtap: entered promiscuous mode
[  329.319794][T11146] veth1_macvtap: entered promiscuous mode
[  329.384780][T11146] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  329.417935][T11146] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.440257][T11146] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  329.487932][T11146] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.514303][T11146] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  329.535757][T11146] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.589490][T11146] batman_adv: batadv0: Interface activated: batadv_slave_0
[  329.631971][T11146] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.672857][T11146] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.695505][T11341] program syz.2.1963 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  329.715947][T11146] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  329.738330][T11146] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  329.770202][T11146] batman_adv: batadv0: Interface activated: batadv_slave_1
[  329.859769][T11146] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  329.889810][T11146] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  329.918088][T11146] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  329.926972][T11146] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  330.258538][ T1136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  330.297588][ T1136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  330.425457][ T1324] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  330.450449][ T1324] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  332.038026][ T5815] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  332.123767][T11409] fuse: Bad value for 'fd'
[  332.249684][ T5815] usb 6-1: Using ep0 maxpacket: 8
[  332.269490][ T5815] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  332.286724][ T5815] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  332.304329][ T5815] usb 6-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  332.326957][ T5815] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  332.336947][ T5815] usb 6-1: Product: syz
[  332.349022][ T5815] usb 6-1: Manufacturer: syz
[  332.355271][ T5815] usb 6-1: SerialNumber: syz
[  332.386805][ T5815] usb 6-1: config 0 descriptor??
[  332.676402][T11420] loop3: detected capacity change from 0 to 128
[  332.791200][T11420] syz.3.1985: attempt to access beyond end of device
[  332.791200][T11420] loop3: rw=2049, sector=138, nr_sectors = 16 limit=128
[  332.867509][T11420] syz.3.1985: attempt to access beyond end of device
[  332.867509][T11420] loop3: rw=2049, sector=138, nr_sectors = 8 limit=128
[  332.979579][T11428] Option '[��y�$
[  332.979579][T11428] ���>�ڎ��Tk���S�@S�V��fhJ' to dns_resolver key: bad/missing value
[  332.998923][T11423] syz.3.1985: attempt to access beyond end of device
[  332.998923][T11423] loop3: rw=2049, sector=138, nr_sectors = 2 limit=128
[  333.092137][T11420] syz.3.1985: attempt to access beyond end of device
[  333.092137][T11420] loop3: rw=2049, sector=138, nr_sectors = 2 limit=128
[  333.176024][T11420] Buffer I/O error on dev loop3, logical block 69, lost async page write
[  333.186704][T11420] syz.3.1985: attempt to access beyond end of device
[  333.186704][T11420] loop3: rw=2049, sector=140, nr_sectors = 2 limit=128
[  333.201152][T11420] Buffer I/O error on dev loop3, logical block 70, lost async page write
[  333.280267][T11420] syz.3.1985: attempt to access beyond end of device
[  333.280267][T11420] loop3: rw=2049, sector=142, nr_sectors = 2 limit=128
[  333.353957][T11420] Buffer I/O error on dev loop3, logical block 71, lost async page write
[  333.438883][T11437] fuse: Bad value for 'fd'
[  333.721331][T11446] loop3: detected capacity change from 0 to 512
[  334.817577][ T5834] usb 6-1: USB disconnect, device number 2
[  334.981746][T11483] loop5: detected capacity change from 0 to 128
[  335.588880][T11503] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2019'.
[  335.706732][T11508] loop5: detected capacity change from 0 to 128
[  335.784634][T11512] loop3: detected capacity change from 0 to 256
[  335.951898][T11512] FAT-fs (loop3): Directory bread(block 64) failed
[  335.972164][T11512] FAT-fs (loop3): Directory bread(block 65) failed
[  335.994837][T11512] FAT-fs (loop3): Directory bread(block 66) failed
[  336.008435][T11512] FAT-fs (loop3): Directory bread(block 67) failed
[  336.027823][T11512] FAT-fs (loop3): Directory bread(block 68) failed
[  336.035732][T11512] FAT-fs (loop3): Directory bread(block 69) failed
[  336.092913][T11512] FAT-fs (loop3): Directory bread(block 70) failed
[  336.148321][T11512] FAT-fs (loop3): Directory bread(block 71) failed
[  336.155082][T11512] FAT-fs (loop3): Directory bread(block 72) failed
[  336.188785][T11512] FAT-fs (loop3): Directory bread(block 73) failed
[  336.509761][T11512] syz.3.2024: attempt to access beyond end of device
[  336.509761][T11512] loop3: rw=0, sector=1768, nr_sectors = 4 limit=256
[  336.567084][T11512] syz.3.2024: attempt to access beyond end of device
[  336.567084][T11512] loop3: rw=0, sector=1768, nr_sectors = 4 limit=256
[  336.594432][T11512] Buffer I/O error on dev loop3, logical block 442, async page read
[  336.603889][   T28] audit: type=1800 audit(2000000010.780:158): pid=11512 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.2024" name="file1" dev="loop3" ino=1048637 res=0 errno=0
[  336.636124][T11512] syz.3.2024: attempt to access beyond end of device
[  336.636124][T11512] loop3: rw=0, sector=1768, nr_sectors = 4 limit=256
[  336.680189][   T28] audit: type=1800 audit(2000000010.810:159): pid=11512 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2024" name="file1" dev="loop3" ino=1048637 res=0 errno=0
[  337.997349][   T28] audit: type=1326 audit(2000000012.170:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.070347][   T28] audit: type=1326 audit(2000000012.210:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.232165][   T28] audit: type=1326 audit(2000000012.410:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.338041][   T28] audit: type=1326 audit(2000000012.440:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.391368][   T28] audit: type=1326 audit(2000000012.440:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.444433][T11597] overlayfs: failed to resolve './bus': -2
[  338.472379][   T28] audit: type=1326 audit(2000000012.440:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.502191][T11599] overlayfs: failed to resolve './bus': -2
[  338.551336][   T28] audit: type=1326 audit(2000000012.440:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=425 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.624684][   T28] audit: type=1326 audit(2000000012.730:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11575 comm="syz.5.2050" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb56c99c799 code=0x7ffc0000
[  338.838924][T11610] loop3: detected capacity change from 0 to 16
[  338.867780][T11610] erofs: (device loop3): mounted with root inode @ nid 36.
[  339.692551][T11637] overlayfs: failed to resolve './bus': -2
[  339.730793][T11637] overlayfs: failed to resolve './bus': -2
[  339.919118][T11643] loop2: detected capacity change from 0 to 128
[  340.238408][T11649] netlink: 84 bytes leftover after parsing attributes in process `syz.5.2072'.
[  340.278265][T11649] netlink: 84 bytes leftover after parsing attributes in process `syz.5.2072'.
[  340.520327][T11663] fuse: Bad value for 'fd'
[  341.215811][T11690] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2084'.
[  341.280014][T11690] netlink: 84 bytes leftover after parsing attributes in process `syz.1.2084'.
[  341.645505][T11710] fuse: Bad value for 'fd'
[  341.902122][T11720] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2093'.
[  342.089003][T11726] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2096'.
[  342.366852][T11739] loop3: detected capacity change from 0 to 128
[  342.483581][T11726] team0: Port device team_slave_0 removed
[  342.499353][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  342.518300][T11739] FAT-fs (loop3): error, clusters badly computed (2 != 0)
[  342.550898][T11739] FAT-fs (loop3): Filesystem has been set read-only
[  342.863004][T11752] fuse: Bad value for 'fd'
[  343.380730][T11773] loop2: detected capacity change from 0 to 128
[  344.433590][T11815] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2126'.
[  344.654823][T11815] loop3: detected capacity change from 0 to 8192
[  344.904556][T11832] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2126'.
[  346.042835][T11868] loop1: detected capacity change from 0 to 8192
[  346.099127][T11868] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  346.121386][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  346.121402][   T28] audit: type=1800 audit(2000000001.300:169): pid=11868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.2139" name="file2" dev="loop1" ino=1048644 res=0 errno=0
[  346.163795][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.208028][T11868] FAT-fs (loop1): Filesystem has been set read-only
[  346.220294][T11879] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2142'.
[  346.233025][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.308998][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.338455][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.365065][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.419921][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.477913][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.566900][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.601177][T11879] loop5: detected capacity change from 0 to 8192
[  346.607735][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  346.643063][T11868] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1046)
[  347.144743][T11892] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2142'.
[  347.659531][T11918] futex_wake_op: syz.1.2152 tries to shift op by 35; fix this program
[  347.806165][T11922] netlink: 76 bytes leftover after parsing attributes in process `syz.2.2153'.
[  347.863792][T11926] loop3: detected capacity change from 0 to 128
[  347.901847][T11926] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  348.136364][ T1136] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  348.529056][T11951] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2159'.
[  348.717606][T11954] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2160'.
[  348.782748][T11951] loop1: detected capacity change from 0 to 8192
[  348.924764][T11962] futex_wake_op: syz.2.2162 tries to shift op by 35; fix this program
[  349.074186][T11965] netlink: 76 bytes leftover after parsing attributes in process `syz.3.2163'.
[  349.103541][T11961] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2159'.
[  349.894555][T11992] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2171'.
[  350.163141][T12004] futex_wake_op: syz.3.2173 tries to shift op by 35; fix this program
[  350.708594][T12022] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2177'.
[  350.781970][T12024] netlink: 40 bytes leftover after parsing attributes in process `syz.3.2180'.
[  351.013909][T12022] loop5: detected capacity change from 0 to 8192
[  351.386847][T12040] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2177'.
[  352.370241][T12081] netlink: 40 bytes leftover after parsing attributes in process `syz.1.2194'.
[  352.393809][T12083] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2195'.
[  352.398872][T12081] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  354.477157][T12159] bond8: entered promiscuous mode
[  354.499529][T12159] 8021q: adding VLAN 0 to HW filter on device bond8
[  354.537344][T12163] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2221'.
[  355.029398][ T9515] kernel write not supported for file /163/comm (pid: 9515 comm: kworker/1:14)
[  355.329262][T12189] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2231'.
[  355.388530][T12194] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2233'.
[  355.580205][T12194] loop2: detected capacity change from 0 to 8192
[  355.634202][T12199] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2235'.
[  355.787063][T12201] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2233'.
[  356.518249][ T9515] usb 6-1: new high-speed USB device number 3 using dummy_hcd
[  356.642393][T12235] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2246'.
[  356.718159][ T9515] usb 6-1: Using ep0 maxpacket: 8
[  356.735089][ T9515] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  356.778055][ T9515] usb 6-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  356.835327][ T9515] usb 6-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[  356.847342][ T9515] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  356.872486][ T9515] usb 6-1: Product: syz
[  356.876856][ T9515] usb 6-1: Manufacturer: syz
[  356.881792][ T9515] usb 6-1: SerialNumber: syz
[  356.895665][ T9515] usb 6-1: config 0 descriptor??
[  357.167421][T12249] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2252'.
[  357.367748][T12249] loop2: detected capacity change from 0 to 8192
[  357.454811][T12251] loop1: detected capacity change from 0 to 512
[  357.499161][T12253] Option '[��y�$
[  357.499161][T12253] ���>�ڎ��Tk���S�@S�V��fhJ' to dns_resolver key: bad/missing value
[  357.649047][T12252] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2252'.
[  357.915427][ T5776] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  357.941299][ T5776] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  357.954723][ T5776] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  357.983766][ T5776] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  357.993537][ T5776] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  358.011551][ T5776] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  358.815149][T12260] chnl_net:caif_netlink_parms(): no params data found
[  358.934593][T12260] bridge0: port 1(bridge_slave_0) entered blocking state
[  358.942136][T12260] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.954163][T12260] bridge_slave_0: entered allmulticast mode
[  358.967953][T12260] bridge_slave_0: entered promiscuous mode
[  358.991377][T12260] bridge0: port 2(bridge_slave_1) entered blocking state
[  358.999864][T12280] kvm: pic: non byte write
[  359.007059][T12260] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.015396][T12260] bridge_slave_1: entered allmulticast mode
[  359.026880][T12260] bridge_slave_1: entered promiscuous mode
[  359.066024][T12260] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  359.080629][T12260] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  359.140790][T12260] team0: Port device team_slave_0 added
[  359.156682][T12260] team0: Port device team_slave_1 added
[  359.197257][T12260] batman_adv: batadv0: Adding interface: batadv_slave_0
[  359.205686][T12260] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.233075][T12260] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  359.249611][ T5815] usb 6-1: USB disconnect, device number 3
[  359.281222][T12260] batman_adv: batadv0: Adding interface: batadv_slave_1
[  359.288494][T12260] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.345997][T12260] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  359.525957][ T1136] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  359.669920][T12291] binfmt_misc: register: failed to install interpreter file ./file0
[  359.722157][T12260] hsr_slave_0: entered promiscuous mode
[  359.753934][T12260] hsr_slave_1: entered promiscuous mode
[  359.776379][T12260] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  359.803365][T12260] Cannot create hsr debugfs directory
[  359.886815][ T1136] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.040070][ T1136] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.098384][ T5776] Bluetooth: hci4: command tx timeout
[  360.225969][ T1136] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  360.258290][T12297] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2265'.
[  360.283277][T12301] loop2: detected capacity change from 0 to 2048
[  360.419494][T12301] Alternate GPT is invalid, using primary GPT.
[  360.447317][T12301]  loop2: p2 p3 p7
[  362.188456][ T5776] Bluetooth: hci4: command tx timeout
[  362.847712][T12260] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  363.005973][T12260] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  363.041865][T12260] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  363.201367][T12260] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  363.550406][T12376] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2286'.
[  363.575062][T12376] netlink: 2 bytes leftover after parsing attributes in process `syz.2.2286'.
[  363.684522][T12382] loop5: detected capacity change from 0 to 128
[  363.724088][T12382] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  363.974637][ T5834] kernel write not supported for file /1379/comm (pid: 5834 comm: kworker/0:6)
[  363.989636][   T12] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  364.258487][ T5776] Bluetooth: hci4: command tx timeout
[  364.393792][T12260] 8021q: adding VLAN 0 to HW filter on device bond0
[  364.431649][T12405] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2295'.
[  364.592838][ T1136] hsr_slave_0: left promiscuous mode
[  364.638136][ T1136] hsr_slave_1: left promiscuous mode
[  364.679246][ T1136] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  364.686756][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  364.708671][ T1136] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  364.726488][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  364.742709][ T1136] bridge_slave_1: left allmulticast mode
[  364.750396][ T1136] bridge_slave_1: left promiscuous mode
[  364.756265][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  364.773072][ T1136] bridge_slave_0: left allmulticast mode
[  364.785751][ T1136] bridge_slave_0: left promiscuous mode
[  364.795220][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  364.944651][ T1136] veth1_macvtap: left promiscuous mode
[  364.955789][ T1136] veth0_macvtap: left promiscuous mode
[  364.961795][ T1136] veth1_vlan: left promiscuous mode
[  364.967207][ T1136] veth0_vlan: left promiscuous mode
[  365.433361][ T1136] bond8 (unregistering): Released all slaves
[  365.477430][ T1136] bond7 (unregistering): Released all slaves
[  365.511949][ T1136] bond6 (unregistering): Released all slaves
[  365.585859][ T1136] bond5 (unregistering): Released all slaves
[  365.616459][ T1136] bond4 (unregistering): Released all slaves
[  365.644148][ T1136] bond3 (unregistering): Released all slaves
[  365.742304][ T1136] bond2 (unregistering): Released all slaves
[  365.775747][ T1136] bond1 (unregistering): Released all slaves
[  366.338260][ T5776] Bluetooth: hci4: command tx timeout
[  366.761694][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  366.835009][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  366.952968][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  367.046807][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  367.342991][T12455] loop5: detected capacity change from 0 to 128
[  367.387086][T12455] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  367.451508][T12455] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  367.475924][T12455] FAT-fs (loop5): Filesystem has been set read-only
[  367.621525][ T9516] kernel write not supported for file /236/comm (pid: 9516 comm: kworker/1:15)
[  367.896361][ T1136] bond0 (unregistering): Released all slaves
[  368.067985][T12417] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2300'.
[  368.108834][T12260] 8021q: adding VLAN 0 to HW filter on device team0
[  368.216999][ T3477] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.224421][ T3477] bridge0: port 1(bridge_slave_0) entered forwarding state
[  368.283390][ T3477] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.290884][ T3477] bridge0: port 2(bridge_slave_1) entered forwarding state
[  368.386854][T12465] loop1: detected capacity change from 0 to 512
[  368.576627][T12469] loop2: detected capacity change from 0 to 164
[  368.638462][T12469] ISOFS: unable to read i-node block
[  368.643900][T12469] isofs_fill_super: get root inode failed
[  369.025349][T12477] loop1: detected capacity change from 0 to 128
[  369.070395][T12477] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  369.158322][T12477] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  369.184309][T12477] FAT-fs (loop1): Filesystem has been set read-only
[  369.239495][T12260] 8021q: adding VLAN 0 to HW filter on device batadv0
[  369.405572][T12260] veth0_vlan: entered promiscuous mode
[  369.470791][T12260] veth1_vlan: entered promiscuous mode
[  369.587683][T12491] loop2: detected capacity change from 0 to 512
[  369.595645][T12260] veth0_macvtap: entered promiscuous mode
[  369.637496][T12260] veth1_macvtap: entered promiscuous mode
[  369.725553][T12260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  369.767947][T12260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  369.793254][T12260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  369.804379][T12260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  369.815934][T12260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  369.826899][T12260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  369.866902][T12260] batman_adv: batadv0: Interface activated: batadv_slave_0
[  369.919577][T12260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  369.953036][T12260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  369.983471][T12260] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  369.998668][T12260] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  370.026519][T12260] batman_adv: batadv0: Interface activated: batadv_slave_1
[  370.061564][T12260] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  370.086175][T12260] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  370.106607][T12260] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  370.137480][T12260] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  370.404304][ T3477] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  370.458105][ T3477] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  370.544527][T12510] loop5: detected capacity change from 0 to 128
[  370.550141][ T3477] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  370.575597][T12510] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  370.580616][ T3477] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  370.679857][T12510] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  370.729153][T12510] FAT-fs (loop5): Filesystem has been set read-only
[  371.012917][T12518] 9pnet_fd: Insufficient options for proto=fd
[  371.157192][T12522] loop3: detected capacity change from 0 to 512
[  371.494965][T12532] netlink: 4 bytes leftover after parsing attributes in process `syz.3.2341'.
[  371.827425][T12532] team0: Port device team_slave_0 removed
[  371.904990][T12539] netlink: 'syz.5.2343': attribute type 12 has an invalid length.
[  371.919219][T12539] netlink: 'syz.5.2343': attribute type 29 has an invalid length.
[  371.939708][T12544] loop1: detected capacity change from 0 to 128
[  371.946408][T12539] netlink: 148 bytes leftover after parsing attributes in process `syz.5.2343'.
[  372.789216][ T5781] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  372.803686][ T5781] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  372.812344][ T5781] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  372.854831][ T5781] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  372.872708][ T5781] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  372.883454][ T5781] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  373.076820][T12566] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2354'.
[  373.248841][ T1324] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.484292][ T1324] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  373.802208][ T1324] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.040996][ T1324] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.130879][T12559] chnl_net:caif_netlink_parms(): no params data found
[  374.499518][T12559] bridge0: port 1(bridge_slave_0) entered blocking state
[  374.528779][T12559] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.536249][T12559] bridge_slave_0: entered allmulticast mode
[  374.562092][T12559] bridge_slave_0: entered promiscuous mode
[  374.617502][T12559] bridge0: port 2(bridge_slave_1) entered blocking state
[  374.640738][T12559] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.668315][T12559] bridge_slave_1: entered allmulticast mode
[  374.675989][T12559] bridge_slave_1: entered promiscuous mode
[  374.998099][ T5781] Bluetooth: hci1: command tx timeout
[  375.096505][T12559] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  375.140074][T12559] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  375.551511][T12605] loop1: detected capacity change from 0 to 128
[  376.296495][T12559] team0: Port device team_slave_0 added
[  376.404532][T12559] team0: Port device team_slave_1 added
[  376.929375][T12559] batman_adv: batadv0: Adding interface: batadv_slave_0
[  376.936677][T12559] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  376.982976][T12559] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  376.998413][T12646] loop1: detected capacity change from 0 to 128
[  377.058623][ T5781] Bluetooth: hci1: command tx timeout
[  377.164466][T12559] batman_adv: batadv0: Adding interface: batadv_slave_1
[  377.182313][T12559] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  377.257815][T12559] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  377.601345][T12559] hsr_slave_0: entered promiscuous mode
[  377.628371][T12559] hsr_slave_1: entered promiscuous mode
[  377.653526][T12559] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  377.682990][T12559] Cannot create hsr debugfs directory
[  377.775029][   T28] audit: type=1326 audit(2000000020.240:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12655 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ae6f9c799 code=0x7ffc0000
[  377.838105][   T28] audit: type=1326 audit(2000000020.240:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12655 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ae6f9c799 code=0x7ffc0000
[  377.940641][   T28] audit: type=1326 audit(2000000020.240:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12655 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f7ae6f9c799 code=0x7ffc0000
[  378.032298][   T28] audit: type=1326 audit(2000000020.250:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12655 comm="syz.3.2382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7ae6f9c799 code=0x7ffc0000
[  378.386836][ T1324] hsr_slave_0: left promiscuous mode
[  378.392503][T12671] 9pnet_fd: Insufficient options for proto=fd
[  378.406051][ T1324] hsr_slave_1: left promiscuous mode
[  378.430457][ T1324] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  378.461596][ T1324] batman_adv: batadv0: Removing interface: batadv_slave_0
[  378.548967][ T1324] bridge_slave_1: left allmulticast mode
[  378.554884][ T1324] bridge_slave_1: left promiscuous mode
[  378.576417][ T1324] bridge0: port 2(bridge_slave_1) entered disabled state
[  378.625925][ T1324] bridge_slave_0: left allmulticast mode
[  378.641626][ T1324] bridge_slave_0: left promiscuous mode
[  378.688693][ T1324] bridge0: port 1(bridge_slave_0) entered disabled state
[  378.864498][ T1324] veth1_macvtap: left promiscuous mode
[  378.878454][ T1324] veth0_macvtap: left promiscuous mode
[  378.884301][ T1324] veth1_vlan: left promiscuous mode
[  378.919848][ T1324] veth0_vlan: left promiscuous mode
[  378.998296][ T1285] ieee802154 phy0 wpan0: encryption failed: -22
[  379.004869][ T1285] ieee802154 phy1 wpan1: encryption failed: -22
[  379.156391][ T5781] Bluetooth: hci1: command tx timeout
[  379.389919][ T1324] bond3 (unregistering): Released all slaves
[  379.424308][ T1324] bond2 (unregistering): Released all slaves
[  379.485684][ T1324] bond1 (unregistering): Released all slaves
[  379.525493][T12707] loop5: detected capacity change from 0 to 512
[  380.363005][T12727] 9pnet_fd: Insufficient options for proto=fd
[  380.515000][T12729] loop3: detected capacity change from 0 to 512
[  380.975739][ T1324] team0 (unregistering): Port device team_slave_1 removed
[  381.071600][ T1324] team0 (unregistering): Port device team_slave_0 removed
[  381.218686][ T5781] Bluetooth: hci1: command tx timeout
[  381.230642][ T1324] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  381.305804][ T1324] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  381.713344][T12748] loop5: detected capacity change from 0 to 128
[  381.887646][T12747] kvm: emulating exchange as write
[  382.066153][T12751] loop5: detected capacity change from 0 to 512
[  382.309203][T12756] loop3: detected capacity change from 0 to 512
[  382.323513][T12757] 9pnet_fd: Insufficient options for proto=fd
[  382.355664][ T1324] bond0 (unregistering): Released all slaves
[  382.416909][T10204] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  382.645921][T12704] netlink: 'syz.1.2391': attribute type 4 has an invalid length.
[  383.070548][T12772] loop3: detected capacity change from 0 to 128
[  384.214197][T12805] loop5: detected capacity change from 0 to 128
[  384.303976][T12559] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  384.332265][T12559] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  384.396094][T12559] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  384.437391][T12559] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  384.761318][T12559] 8021q: adding VLAN 0 to HW filter on device bond0
[  384.845701][T12559] 8021q: adding VLAN 0 to HW filter on device team0
[  384.900372][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.907769][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  384.943881][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.951216][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[  385.706423][T12559] 8021q: adding VLAN 0 to HW filter on device batadv0
[  385.880583][T12559] veth0_vlan: entered promiscuous mode
[  385.914244][T12559] veth1_vlan: entered promiscuous mode
[  386.000258][T12559] veth0_macvtap: entered promiscuous mode
[  386.042703][T12559] veth1_macvtap: entered promiscuous mode
[  386.123864][T12559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  386.176399][T12559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  386.207895][T12559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  386.227888][T12559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  386.253719][T12559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  386.265044][T12559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  386.283444][T12559] batman_adv: batadv0: Interface activated: batadv_slave_0
[  386.297076][T12559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  386.358074][T12559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  386.371244][T12559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  386.382234][T12559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  386.394718][T12559] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  386.406565][T12559] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  386.424112][T12559] batman_adv: batadv0: Interface activated: batadv_slave_1
[  386.456189][T12559] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  386.475040][T12873] loop1: detected capacity change from 0 to 512
[  386.487436][T12559] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  386.526129][T12559] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  386.546926][T12559] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  386.968588][   T42] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.976498][   T42] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  387.119907][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  387.147088][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  387.482877][T12896] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2345'.
[  388.626943][T12922] loop1: detected capacity change from 0 to 512
[  388.993142][T12931] loop1: detected capacity change from 0 to 128
[  389.374125][T12945] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2461'.
[  389.976316][T12967] loop3: detected capacity change from 0 to 128
[  390.726996][T12970] bridge0: port 2(bridge_slave_1) entered disabled state
[  390.734885][T12970] bridge0: port 1(bridge_slave_0) entered disabled state
[  391.405430][T12996] loop2: detected capacity change from 0 to 128
[  391.601603][T12970] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  391.699029][T12970] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  391.715524][T13000] loop2: detected capacity change from 0 to 128
[  391.732991][T13000] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  391.762317][T13000] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  391.773134][T13000] FAT-fs (loop2): Filesystem has been set read-only
[  392.330842][T12970] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  392.339933][T12970] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  392.350810][T12970] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  392.359988][T12970] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  392.554052][T12970] syz.1.2468 (12970) used greatest stack depth: 19432 bytes left
[  393.683081][T13047] loop3: detected capacity change from 0 to 128
[  393.807776][T13047] syz.3.2499: attempt to access beyond end of device
[  393.807776][T13047] loop3: rw=2049, sector=138, nr_sectors = 66 limit=128
[  393.833700][T13047] syz.3.2499: attempt to access beyond end of device
[  393.833700][T13047] loop3: rw=2049, sector=142, nr_sectors = 2 limit=128
[  393.855440][T13047] Buffer I/O error on dev loop3, logical block 71, lost async page write
[  393.865239][T13047] syz.3.2499: attempt to access beyond end of device
[  393.865239][T13047] loop3: rw=2049, sector=144, nr_sectors = 2 limit=128
[  393.893461][T13047] Buffer I/O error on dev loop3, logical block 72, lost async page write
[  393.938282][T13047] syz.3.2499: attempt to access beyond end of device
[  393.938282][T13047] loop3: rw=2049, sector=146, nr_sectors = 24 limit=128
[  394.007457][T13047] syz.3.2499: attempt to access beyond end of device
[  394.007457][T13047] loop3: rw=2049, sector=170, nr_sectors = 2 limit=128
[  394.049029][T13047] Buffer I/O error on dev loop3, logical block 85, lost async page write
[  394.057602][T13047] syz.3.2499: attempt to access beyond end of device
[  394.057602][T13047] loop3: rw=2049, sector=172, nr_sectors = 2 limit=128
[  394.126466][T13047] Buffer I/O error on dev loop3, logical block 86, lost async page write
[  394.148997][T13058] loop5: detected capacity change from 0 to 128
[  394.155762][T13047] syz.3.2499: attempt to access beyond end of device
[  394.155762][T13047] loop3: rw=2049, sector=174, nr_sectors = 2 limit=128
[  394.155800][T13047] Buffer I/O error on dev loop3, logical block 87, lost async page write
[  394.595548][T13066] tmpfs: Bad value for 'mpol'
[  395.269496][T13092] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  395.572503][T13101] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  396.520154][T13130] kvm: pic: non byte write
[  397.028868][T13142] binder: BC_ACQUIRE_RESULT not supported
[  397.040114][T13146] loop5: detected capacity change from 0 to 128
[  397.050378][T13142] binder: 13141:13142 ioctl c0306201 2000000001c0 returned -22
[  397.084508][T13146] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  397.301830][   T12] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  397.525568][T13158] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2537'.
[  397.700338][T13163] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2538'.
[  397.940822][T13171] 9pnet_virtio: no channels available for device syz
[  398.164971][T13180] loop2: detected capacity change from 0 to 128
[  398.207483][T13180] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  398.361291][   T12] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  398.667528][T13188] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2548'.
[  398.848269][T13195] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2550'.
[  399.049240][T13201] 9pnet_virtio: no channels available for device syz
[  399.180780][T13204] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  399.205821][T13204] xt_hashlimit: overflow, rate too high: 0
[  399.261952][T13211] tmpfs: Unknown parameter 'mp�l'
[  403.631921][T13323] warning: `syz.5.2599' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  403.653954][T13323] netlink: 'syz.5.2599': attribute type 10 has an invalid length.
[  403.676277][T13323] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  403.997010][T13329] tipc: Started in network mode
[  404.004859][T13329] tipc: Node identity 4ae9c2fb937d, cluster identity 4711
[  404.041513][T13329] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  404.073999][T13334] syzkaller0: entered promiscuous mode
[  404.120759][T13334] syzkaller0: entered allmulticast mode
[  404.246065][T13329] tipc: Resetting bearer <eth:syzkaller0>
[  404.269457][T13328] tipc: Resetting bearer <eth:syzkaller0>
[  404.329144][T13328] tipc: Disabling bearer <eth:syzkaller0>
[  404.595889][T13346] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2608'.
[  405.128102][ T5811] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  405.294563][T13363] syzkaller1: entered promiscuous mode
[  405.308397][T13363] syzkaller1: entered allmulticast mode
[  405.333105][ T5811] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  405.359969][ T5811] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  405.381320][ T5811] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  405.411262][ T5811] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  405.423313][ T5811] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.440928][ T5811] usb 2-1: Product: syz
[  405.450933][ T5811] usb 2-1: Manufacturer: syz
[  405.461459][ T5811] usb 2-1: SerialNumber: syz
[  405.488928][ T5811] hub 2-1:1.0: bad descriptor, ignoring hub
[  405.513985][ T5811] hub: probe of 2-1:1.0 failed with error -5
[  405.731965][ T5811] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 3 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  406.082203][ T5811] usb 2-1: USB disconnect, device number 3
[  406.142185][ T5811] usblp0: removed
[  406.479973][T13392] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  406.850076][T13398] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  407.655833][T13408] loop2: detected capacity change from 0 to 128
[  407.689064][T13408] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  407.851871][   T42] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  408.028319][ T5834] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  408.251118][ T5834] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  408.272158][ T5834] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  408.292793][ T5834] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  408.307896][ T5834] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  408.319527][ T5834] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  408.331603][ T5834] usb 2-1: config 0 descriptor??
[  408.561754][T13431] syzkaller0: entered promiscuous mode
[  408.578098][T13431] syzkaller0: entered allmulticast mode
[  408.761603][ T5834] plantronics 0003:047F:FFFF.0001: unknown main item tag 0xd
[  408.797127][ T5834] plantronics 0003:047F:FFFF.0001: No inputs registered, leaving
[  408.872355][ T5834] plantronics 0003:047F:FFFF.0001: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  408.998702][T13446] loop3: detected capacity change from 0 to 128
[  409.032442][T13446] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  409.053826][T13441] netlink: 'syz.2.2643': attribute type 10 has an invalid length.
[  409.068852][ T5834] usb 2-1: USB disconnect, device number 4
[  409.150406][T13441] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  409.209541][T13444] fido_id[13444]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  409.281601][ T3477] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  409.631901][T13455] syzkaller0: entered promiscuous mode
[  409.641862][T13455] syzkaller0: entered allmulticast mode
[  409.886145][T13462] netlink: 'syz.3.2651': attribute type 10 has an invalid length.
[  410.011760][T13462] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  410.026462][T13468] loop2: detected capacity change from 0 to 128
[  410.083479][T13468] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  410.282604][   T49] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  410.478396][T13481] bridge0: vlan filtering disabled, automatically disabling multicast vlan snooping
[  410.528238][ T5834] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  410.545273][T13483] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  410.594324][T13485] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2662'.
[  410.721520][T13489] binder: 13488:13489 ioctl c0306201 2000000003c0 returned -14
[  410.749227][ T5834] usb 4-1: Using ep0 maxpacket: 8
[  410.765105][ T5834] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[  410.785350][ T5834] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  410.796926][ T5834] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  410.812866][ T5834] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  410.825578][ T5834] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  410.840896][T13491] netlink: 'syz.1.2665': attribute type 10 has an invalid length.
[  410.860419][T13491] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  410.868147][ T5834] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[  410.886422][ T5834] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  411.138209][ T5834] usb 4-1: GET_CAPABILITIES returned 0
[  411.144348][ T5834] usbtmc 4-1:16.0: can't read capabilities
[  411.343634][  T786] usb 4-1: USB disconnect, device number 3
[  411.407231][T13509] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2672'.
[  411.538807][ T5834] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  411.738765][ T5834] usb 3-1: too many configurations: 9, using maximum allowed: 8
[  411.761148][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  411.778001][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  411.807916][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  411.817940][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  411.838159][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  411.867985][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  411.878105][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  411.897972][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  411.938425][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  411.954029][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  411.985109][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  412.030188][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  412.050096][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  412.061374][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  412.073788][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  412.082744][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  412.107164][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  412.149482][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  412.162068][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  412.178481][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  412.204937][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  412.248513][ T5834] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 9
[  412.289857][ T5834] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  412.306289][ T5834] usb 3-1: config 0 interface 0 has no altsetting 0
[  412.319009][ T5834] usb 3-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  412.337937][ T5834] usb 3-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  412.370462][ T5834] usb 3-1: Product: syz
[  412.375118][ T5834] usb 3-1: Manufacturer: syz
[  412.401790][ T5834] usb 3-1: SerialNumber: syz
[  412.435551][ T5834] usb 3-1: config 0 descriptor??
[  412.455875][ T5834] yurex 3-1:0.0: USB YUREX device now attached to Yurex #0
[  412.653622][T13531] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2682'.
[  412.780902][  T786] usb 3-1: USB disconnect, device number 5
[  412.791442][  T786] yurex 3-1:0.0: USB YUREX #0 now disconnected
[  413.200238][T13545] overlayfs: missing 'lowerdir'
[  413.250718][T13547] xt_AUDIT: Audit type out of range (valid range: 0..2)
[  413.266789][T13547] xt_hashlimit: overflow, rate too high: 0
[  413.329740][T13550] tmpfs: Unknown parameter 'mpl'
[  413.473183][T13554] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2692'.
[  414.399676][T13569] overlayfs: missing 'lowerdir'
[  414.738096][ T5781] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  414.738659][ T5776] Bluetooth: hci3: command 0x1003 tx timeout
[  415.038551][T13576] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  415.110608][   T28] audit: type=1326 audit(2000000057.570:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.135320][    C0] vkms_vblank_simulate: vblank timer overrun
[  415.163003][T13578] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2702'.
[  415.177546][   T28] audit: type=1326 audit(2000000057.580:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.202122][    C0] vkms_vblank_simulate: vblank timer overrun
[  415.209621][   T28] audit: type=1326 audit(2000000057.580:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.234231][    C0] vkms_vblank_simulate: vblank timer overrun
[  415.288787][   T28] audit: type=1326 audit(2000000057.580:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.386403][   T28] audit: type=1326 audit(2000000057.580:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.459754][   T28] audit: type=1326 audit(2000000057.580:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.484418][    C0] vkms_vblank_simulate: vblank timer overrun
[  415.542121][   T28] audit: type=1326 audit(2000000057.610:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.566749][    C0] vkms_vblank_simulate: vblank timer overrun
[  415.625465][   T28] audit: type=1326 audit(2000000057.610:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.666017][   T28] audit: type=1326 audit(2000000057.610:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  415.746790][T13592] overlayfs: missing 'lowerdir'
[  415.764465][   T28] audit: type=1326 audit(2000000057.610:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13575 comm="syz.1.2701" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f008ad9c799 code=0x7ffc0000
[  416.143555][T13604] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2712'.
[  416.670938][ T5811] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  416.793094][T13619] overlayfs: missing 'lowerdir'
[  416.872511][ T5811] usb 6-1: Using ep0 maxpacket: 16
[  416.890235][ T5811] usb 6-1: config 0 has an invalid interface number: 8 but max is 0
[  416.908053][ T5811] usb 6-1: config 0 has no interface number 0
[  416.922942][ T5811] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[  416.968026][ T5811] usb 6-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[  416.998152][ T5811] usb 6-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[  417.027728][ T5811] usb 6-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[  417.061261][ T5811] usb 6-1: Product: syz
[  417.065928][ T5811] usb 6-1: SerialNumber: syz
[  417.091655][ T5811] usb 6-1: config 0 descriptor??
[  417.133407][ T5811] cm109 6-1:0.8: invalid payload size 0, expected 4
[  417.153646][ T5811] input: CM109 USB driver as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.8/input/input6
[  417.388207][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.400167][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.408173][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.417939][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.425873][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.433782][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.441729][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.449673][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.457708][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.467953][    C1] cm109 6-1:0.8: cm109_urb_ctl_callback: urb status -71
[  417.488403][ T5810] usb 6-1: USB disconnect, device number 4
[  417.494921][    C1] cm109 6-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19
[  417.523258][ T5810] cm109 6-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[  417.774582][T13647] overlayfs: missing 'lowerdir'
[  417.926121][T13649] ------------[ cut here ]------------
[  417.932645][T13649] memcpy: detected field-spanning write (size 32) of single field "&new->sel" at net/sched/cls_u32.c:855 (size 16)
[  417.962700][T13649] WARNING: CPU: 0 PID: 13649 at net/sched/cls_u32.c:855 u32_change+0x1c5a/0x24f0
[  417.973233][T13649] Modules linked in:
[  417.977591][T13649] CPU: 0 PID: 13649 Comm: syz.3.2731 Not tainted syzkaller #0
[  417.986129][T13649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  417.997457][T13649] RIP: 0010:u32_change+0x1c5a/0x24f0
[  418.003533][T13649] Code: f8 eb 59 e8 78 4f d9 f8 c6 05 51 c9 c7 05 01 b9 10 00 00 00 48 c7 c7 40 4f c7 8b 4c 89 f6 48 c7 c2 c0 4f c7 8b e8 96 09 a3 f8 <0f> 0b e9 86 f0 ff ff e8 4a 4f d9 f8 eb 24 e8 43 4f d9 f8 c6 05 f4
[  418.026932][T13649] RSP: 0018:ffffc9000cac6d40 EFLAGS: 00010246
[  418.033953][T13649] RAX: d824eaa554283600 RBX: ffff88802f57ac00 RCX: 0000000000080000
[  418.043293][T13649] RDX: ffffc9000ddbc000 RSI: 000000000000458c RDI: 000000000000458d
[  418.052634][T13649] RBP: ffffc9000cac6ef8 R08: ffffc9000cac6947 R09: 1ffff92001958d28
[  418.061806][T13649] R10: dffffc0000000000 R11: fffff52001958d29 R12: ffff88802f579800
[  418.070934][T13649] R13: ffff88802f5798e8 R14: 0000000000000020 R15: ffff88807dd61dc0
[  418.079922][T13649] FS:  00007f7ae7f1c6c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[  418.089857][T13649] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  418.097174][T13649] CR2: 0000001b34323ffc CR3: 000000007574a000 CR4: 00000000003526f0
[  418.106215][T13649] DR0: 00000000000000b3 DR1: 0000200000001000 DR2: 0000000100000004
[  418.115075][T13649] DR3: 0000000000000165 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  418.124049][T13649] Call Trace:
[  418.127733][T13649]  <TASK>
[  418.131062][T13649]  ? tc_new_tfilter+0x8c6/0x1640
[  418.136686][T13649]  ? u32_get+0x370/0x370
[  418.141486][T13649]  tc_new_tfilter+0xe4f/0x1640
[  418.147213][T13649]  ? tcf_proto_signal_destroying+0x240/0x240
[  418.154429][T13649]  ? rcu_read_unlock+0x8c/0xa0
[  418.159817][T13649]  ? tcf_proto_signal_destroying+0x240/0x240
[  418.166468][T13649]  ? rtnetlink_rcv_msg+0x221/0xfa0
[  418.172223][T13649]  ? tcf_proto_signal_destroying+0x240/0x240
[  418.179311][T13649]  rtnetlink_rcv_msg+0x8b8/0xfa0
[  418.185003][T13649]  ? lockdep_hardirqs_on+0x98/0x150
[  418.190858][T13649]  ? rtnetlink_bind+0x80/0x80
[  418.196094][T13649]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  418.202795][T13649]  ? lock_chain_count+0x20/0x20
[  418.208266][T13649]  ? __local_bh_enable_ip+0x13a/0x1c0
[  418.214232][T13649]  ? lockdep_hardirqs_on+0x98/0x150
[  418.220061][T13649]  ? __local_bh_enable_ip+0x13a/0x1c0
[  418.226163][T13649]  ? _local_bh_enable+0xa0/0xa0
[  418.231710][T13649]  ? __dev_queue_xmit+0x265/0x3660
[  418.237393][T13649]  ? __dev_queue_xmit+0x265/0x3660
[  418.243143][T13649]  ? __dev_queue_xmit+0x1b2c/0x3660
[  418.249384][T13649]  ? __dev_queue_xmit+0x265/0x3660
[  418.255113][T13649]  ? ref_tracker_free+0x690/0x840
[  418.261112][T13649]  netlink_rcv_skb+0x241/0x4d0
[  418.266438][T13649]  ? rtnetlink_bind+0x80/0x80
[  418.271700][T13649]  ? netlink_ack+0x1180/0x1180
[  418.277028][T13649]  ? __lock_acquire+0x7d40/0x7d40
[  418.282692][T13649]  ? netlink_deliver_tap+0x2e/0x1b0
[  418.288550][T13649]  netlink_unicast+0x751/0x8d0
[  418.293888][T13649]  netlink_sendmsg+0x8d0/0xbf0
[  418.299581][T13649]  ? netlink_getsockopt+0x590/0x590
[  418.305415][T13649]  ? aa_sock_msg_perm+0x94/0x150
[  418.311107][T13649]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  418.316986][T13649]  ? security_socket_sendmsg+0x80/0xa0
[  418.323168][T13649]  ? netlink_getsockopt+0x590/0x590
[  418.329011][T13649]  ____sys_sendmsg+0x5ba/0x960
[  418.334351][T13649]  ? __asan_memset+0x22/0x40
[  418.339737][T13649]  ? __sys_sendmsg_sock+0x30/0x30
[  418.345319][T13649]  ? __import_iovec+0x5f2/0x850
[  418.351186][T13649]  ? import_iovec+0x73/0xa0
[  418.356215][T13649]  ___sys_sendmsg+0x2a6/0x360
[  418.361733][T13649]  ? __sys_sendmsg+0x2a0/0x2a0
[  418.367105][T13649]  __sys_sendmmsg+0x2ca/0x510
[  418.372371][T13649]  ? __ia32_sys_sendmsg+0x90/0x90
[  418.378210][T13649]  ? __ia32_sys_get_robust_list+0x110/0x110
[  418.384765][T13649]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  418.391451][T13649]  ? lock_chain_count+0x20/0x20
[  418.396849][T13649]  __x64_sys_sendmmsg+0xa0/0xb0
[  418.402420][T13649]  do_syscall_64+0x55/0xa0
[  418.407341][T13649]  ? clear_bhb_loop+0x40/0x90
[  418.412582][T13649]  ? clear_bhb_loop+0x40/0x90
[  418.417790][T13649]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  418.424416][T13649] RIP: 0033:0x7f7ae6f9c799
[  418.429380][T13649] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  418.451076][T13649] RSP: 002b:00007f7ae7f1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  418.460916][T13649] RAX: ffffffffffffffda RBX: 00007f7ae7215fa0 RCX: 00007f7ae6f9c799
[  418.470035][T13649] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000006
[  418.478914][T13649] RBP: 00007f7ae7032bd9 R08: 0000000000000000 R09: 0000000000000000
[  418.487879][T13649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  418.496697][T13649] R13: 00007f7ae7216038 R14: 00007f7ae7215fa0 R15: 00007fff0fe377f8
[  418.505785][T13649]  </TASK>
[  418.509242][T13649] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  418.517281][T13649] CPU: 0 PID: 13649 Comm: syz.3.2731 Not tainted syzkaller #0
[  418.525523][T13649] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  418.536625][T13649] Call Trace:
[  418.540271][T13649]  <TASK>
[  418.543528][T13649]  dump_stack_lvl+0x18c/0x250
[  418.548729][T13649]  ? show_regs_print_info+0x20/0x20
[  418.554497][T13649]  ? load_image+0x400/0x400
[  418.559515][T13649]  panic+0x2dc/0x730
[  418.563946][T13649]  ? bpf_jit_dump+0xd0/0xd0
[  418.568962][T13649]  __warn+0x2e0/0x470
[  418.573388][T13649]  ? u32_change+0x1c5a/0x24f0
[  418.578595][T13649]  ? u32_change+0x1c5a/0x24f0
[  418.583803][T13649]  report_bug+0x2be/0x4f0
[  418.588618][T13649]  ? u32_change+0x1c5a/0x24f0
[  418.593819][T13649]  ? u32_change+0x1c5a/0x24f0
[  418.599113][T13649]  ? u32_change+0x1c5c/0x24f0
[  418.604355][T13649]  handle_bug+0xcf/0x120
[  418.609188][T13649]  exc_invalid_op+0x1a/0x50
[  418.614201][T13649]  asm_exc_invalid_op+0x1a/0x20
[  418.619577][T13649] RIP: 0010:u32_change+0x1c5a/0x24f0
[  418.625501][T13649] Code: f8 eb 59 e8 78 4f d9 f8 c6 05 51 c9 c7 05 01 b9 10 00 00 00 48 c7 c7 40 4f c7 8b 4c 89 f6 48 c7 c2 c0 4f c7 8b e8 96 09 a3 f8 <0f> 0b e9 86 f0 ff ff e8 4a 4f d9 f8 eb 24 e8 43 4f d9 f8 c6 05 f4
[  418.647131][T13649] RSP: 0018:ffffc9000cac6d40 EFLAGS: 00010246
[  418.653856][T13649] RAX: d824eaa554283600 RBX: ffff88802f57ac00 RCX: 0000000000080000
[  418.662779][T13649] RDX: ffffc9000ddbc000 RSI: 000000000000458c RDI: 000000000000458d
[  418.671601][T13649] RBP: ffffc9000cac6ef8 R08: ffffc9000cac6947 R09: 1ffff92001958d28
[  418.680419][T13649] R10: dffffc0000000000 R11: fffff52001958d29 R12: ffff88802f579800
[  418.689234][T13649] R13: ffff88802f5798e8 R14: 0000000000000020 R15: ffff88807dd61dc0
[  418.698076][T13649]  ? tc_new_tfilter+0x8c6/0x1640
[  418.703681][T13649]  ? u32_get+0x370/0x370
[  418.708437][T13649]  tc_new_tfilter+0xe4f/0x1640
[  418.713786][T13649]  ? tcf_proto_signal_destroying+0x240/0x240
[  418.720463][T13649]  ? rcu_read_unlock+0x8c/0xa0
[  418.725831][T13649]  ? tcf_proto_signal_destroying+0x240/0x240
[  418.732484][T13649]  ? rtnetlink_rcv_msg+0x221/0xfa0
[  418.738166][T13649]  ? tcf_proto_signal_destroying+0x240/0x240
[  418.744919][T13649]  rtnetlink_rcv_msg+0x8b8/0xfa0
[  418.750421][T13649]  ? lockdep_hardirqs_on+0x98/0x150
[  418.756201][T13649]  ? rtnetlink_bind+0x80/0x80
[  418.761513][T13649]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  418.768151][T13649]  ? lock_chain_count+0x20/0x20
[  418.773550][T13649]  ? __local_bh_enable_ip+0x13a/0x1c0
[  418.779507][T13649]  ? lockdep_hardirqs_on+0x98/0x150
[  418.785287][T13649]  ? __local_bh_enable_ip+0x13a/0x1c0
[  418.791255][T13649]  ? _local_bh_enable+0xa0/0xa0
[  418.796659][T13649]  ? __dev_queue_xmit+0x265/0x3660
[  418.802356][T13649]  ? __dev_queue_xmit+0x265/0x3660
[  418.808044][T13649]  ? __dev_queue_xmit+0x1b2c/0x3660
[  418.813844][T13649]  ? __dev_queue_xmit+0x265/0x3660
[  418.819536][T13649]  ? ref_tracker_free+0x690/0x840
[  418.825143][T13649]  netlink_rcv_skb+0x241/0x4d0
[  418.830452][T13649]  ? rtnetlink_bind+0x80/0x80
[  418.835656][T13649]  ? netlink_ack+0x1180/0x1180
[  418.841003][T13649]  ? __lock_acquire+0x7d40/0x7d40
[  418.846594][T13649]  ? netlink_deliver_tap+0x2e/0x1b0
[  418.852387][T13649]  netlink_unicast+0x751/0x8d0
[  418.857705][T13649]  netlink_sendmsg+0x8d0/0xbf0
[  418.863020][T13649]  ? netlink_getsockopt+0x590/0x590
[  418.868842][T13649]  ? aa_sock_msg_perm+0x94/0x150
[  418.874348][T13649]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  418.880227][T13649]  ? security_socket_sendmsg+0x80/0xa0
[  418.886287][T13649]  ? netlink_getsockopt+0x590/0x590
[  418.892079][T13649]  ____sys_sendmsg+0x5ba/0x960
[  418.897364][T13649]  ? __asan_memset+0x22/0x40
[  418.902452][T13649]  ? __sys_sendmsg_sock+0x30/0x30
[  418.908010][T13649]  ? __import_iovec+0x5f2/0x850
[  418.913391][T13649]  ? import_iovec+0x73/0xa0
[  418.918369][T13649]  ___sys_sendmsg+0x2a6/0x360
[  418.923535][T13649]  ? __sys_sendmsg+0x2a0/0x2a0
[  418.928841][T13649]  __sys_sendmmsg+0x2ca/0x510
[  418.934011][T13649]  ? __ia32_sys_sendmsg+0x90/0x90
[  418.939566][T13649]  ? __ia32_sys_get_robust_list+0x110/0x110
[  418.946172][T13649]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  418.952777][T13649]  ? lock_chain_count+0x20/0x20
[  418.958156][T13649]  __x64_sys_sendmmsg+0xa0/0xb0
[  418.963522][T13649]  do_syscall_64+0x55/0xa0
[  418.968409][T13649]  ? clear_bhb_loop+0x40/0x90
[  418.973586][T13649]  ? clear_bhb_loop+0x40/0x90
[  418.978783][T13649]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  418.985295][T13649] RIP: 0033:0x7f7ae6f9c799
[  418.990177][T13649] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  419.011804][T13649] RSP: 002b:00007f7ae7f1c028 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  419.021083][T13649] RAX: ffffffffffffffda RBX: 00007f7ae7215fa0 RCX: 00007f7ae6f9c799
[  419.029887][T13649] RDX: 04000000000001f2 RSI: 0000200000000000 RDI: 0000000000000006
[  419.038673][T13649] RBP: 00007f7ae7032bd9 R08: 0000000000000000 R09: 0000000000000000
[  419.047463][T13649] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  419.056256][T13649] R13: 00007f7ae7216038 R14: 00007f7ae7215fa0 R15: 00007fff0fe377f8
[  419.065253][T13649]  </TASK>
[  419.069814][T13649] Kernel Offset: disabled
[  419.074577][T13649] Rebooting in 86400 seconds..