last executing test programs:

5m50.389553819s ago: executing program 1 (id=771):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
close(r0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000580)='.\x00', 0xa880, 0x97)
execveat(r1, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)
r2 = syz_mount_image$msdos(&(0x7f0000000f40), &(0x7f0000000f00)='.\x00', 0x1a5a438, &(0x7f0000001600)=ANY=[@ANYRES32=0x0, @ANYRESHEX=0x0, @ANYRES32, @ANYRESHEX, @ANYRESHEX, @ANYBLOB="0d9435a8af712ba22db08aad61bf52901d77aded910bc7949acdf1a626f568d38938f8ec34f72c1e0b3e6540dc1e44beac32958b12631708d0a5635580b2f9fef13a977211e5d519ab9531321cfb53a9b413ea91f290924482d4007a70a19759dd63f9fc81f2c63fe27bce5e7dddf01fa5c3f09ef226ee04045b0cf0661e3d5a67446c4d93db12c2ac7a15f0265fd7eade1a72cbd696413a03174375c955f8c82a9774c2c8ac5046d59c86dbd5165e6e447586", @ANYBLOB="4c07f18b4a72a428cdf1fcc6a889d51c7d395bfc15396c272d41b4a79dba0739c1c7461ae19481932aa4c03054c8b2442a4c1e4311032bebb0cb70495acfcf1f08735df868c705", @ANYBLOB="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", @ANYRES16, @ANYRES32, @ANYBLOB="ac2d5b5b8945d57e7869648ebe10b8d2719763b4bf3f6667bf8f722606d2b3593f26218e9a5fba2e7d4166787da71737b380045fb0a682e2915271f214c0112961b73c4638e7ba68deb34826d7682ace7549c83bf52bd9142b6c5adebf82155270d33204c09c07ed4ca2fc932af48646c9624e3e3544d68f61a2b073fb85332599b299a4f441a8e2f74c57aa38b5b596238280c1693bba97ff258679ab84485970b60f81093dda6501baba18a7790ca3e6fcfa12898b9fff3faf613d71f9d64dbd5c2edad8e774fb0da39e532d92164e2d34aff7cae32f3cd7aa9aace000f136323e4808d0c66c0828942def38deb2e1d847555fe0d5ba8084babb3169f9f06246ecd5327758448c9c7e4591da12ff1b084e757d05af4f0f0444ecfcc0c4d2067a98d49fe52412218380bb75e21cd23724e0390b116b9a1c1e3350b3e6f17c5bd1f1adb4ce1d03d5b30eb0690340708f06dfca5c9d74a7c140cabddd0f37d8bcf15e578dde85d7c28ccb1c9633ceeb54bb278d5a097220ca53a2ea4781aca2b70189199938afba9a700a610225311fe8316794ca0ae139a50dbd34d572d6165eaaa94844620045e615d51f5e19c29aadad3539490961135851f15bbfd0604f3926877583d85c45a04c6f155ad6e1966d2004ab6ab51f9beb82dbcdcaaab886564cbf81b581da397eba4fc8fe430ef93ed613cd588e399669b9f4b63481163e6c2b74112538192be9551ca400bc2b947a535fccbc567a68a3ab94554385bb1f2a0e2146310113102a9ffbcbbf44d30e076d363d6201faecf8bbbbc9d7fcd38195860bbc85ee3f5f9b2c990164abc3a7674ab2a631147d708585f52694a46b681cbc623b53a272f21f2aa5597beec8094954541316cc45ec9751fef12369e7272b7bdcb527bac4a19e0bba1b68ef98e3563705e9ca40bb914cece2fd75c2375b81a06dadcdb1c54a175855e30c3d9ca58ca873e43d703b1471526fb3dfe12e140b81df3afae6104e5ffa4e8585b456a7199c75c5abc7afeca743fce310df09062f20b9a99fac5d019338d98606805f4faad9cc81ebf03b7239a340c973828b676af4e594d796689f9823730c5ead8dba256925869ab0d7196a99b75a15f9927852d7813aa5a4cb76764749e882d59c094c5ebd1911153150e8d53aa8abbf360a4045b63e0e296d03158de8aa02b5aeb459dcdc6b9d5aa8c0e455e7cb6a5d9b26ee5420e41d89590a0c04ca8701a6a386716a32e04102f281f66317a21940c0cf83e128f4f83bdf6770170d74d43f3b1f4c0bb5e8c69254e0bfd15c6d02596bf3b547e5b9b8e84390455a9c4b00b633c661616aca4a4158868be21633f343155996eaff00c2c347fea03c6f06e7adcd83cf320e3a446d07dba202e5960632560da8a3b60efe5a814a5cb2a4ff0842fff23897b583b381e5030e506caef8dc97bef9532111e3eb3621870ec39fe2351d3814a02d2f9e38aac1f0897f32ddbffdc6e0acdea95ff7f67865daae1130f68f00985682ecefc43fb6f8521514923b5cf3560be0739aeb4eb00b389d39ebb9b974e054120fcd48c0d6bc09441c2c19f41bdfceed01a3b686921500fae88795f216794d21dd3a98f2fdb5a1590e0cbdc5cd9593b164e255131c21f22ed7e7ed4ec83db91f8bf5f327d7222be1e470a7c0d0a657c73ad606f2ef0c59d3c118c601d23d67ee16ce3658c9153b8131f06c1e4f83c49dbe6dbc3478b1313b9221bc4c5eadebfd16cd07afde509f2e926fcfd5f8feabe836f4080ea5e65c1e4d859f16ac45ad8c804eb9ecce363faf19c1409d8192a644823578ccfd5b643478eb948223676d375f811fffa874f7c2a281104a28baf4da2716ae870abb3e0f05e63466176356728a700fe39ebb62bdbff139fdbf21520022984dc6d3eed1d81b94f28a07cc238ccb64d65e87534c0111bb76212368c6e8e9a536e758fa2f16a2cab9d31984055488b27bcff12bcc5a0fe21a0e44edfb87c681060e6944ff89dce4a9c7122c53acc27913a5fbf15c9ada971df88f0df3f82eb563f63c640ad6e39a1f5c1aad83c364957ec6d645f4243d1fb4ecef275d4c0ca0284064cde0c282d793f290bab5a4dec15f3e2adcc9d455d2e28bd040d6e0f651ac6f20f55d1303d2aaef2104b393afc849e9cd7743ca20a6f092cbf42a67446892493128d38bb0d0f507ffe3fd718ec48eff58df729728bc01ee180d676dfa22c81da0e4e3fda94f4f94195bc82e1f941d8a290ca0d416373d420eba196470e4f25940506061c601f12b3656d6d6b3a47e50d5235b7fd0f82bb0835aee3470b69bf7e59616ece447d9af36c396f687214ff7d7e27961f461c780b4c563aeb47fa9f335cbdade8a06711ba79b6fe8778ac1bc06bb59131c17409c1d1d0cc746aec8c3b1348f9585945192d8e32002c676753ab246a92702fc8e3a3ce89b84661b1b10dcd73fddacd311ca663d483b87a59225f60627eecf409d6188236b198633d47c5f1c0ba0bb4321aac88a6061d5e97883914cd74284ab937b9579ccee6ab5bb39f6274a04e3e7a8c3d033e340357bc15c5f6daa047b1cee448ac380bbde4bf806b0891a04b9e408609b040b7d3a02d2a76d4013756d79244792c543fe2327a3c371852bed5ab54de987bc4699b32ad1c08f7fff7a23069e72bddc9a590b2c707bac3957d46b657a4e17f1914db58fb6436bdd58b86df491016a2b9ebe0c35a859b216f17f4828c8dee30a38ed1fc36347af978999d0c404313cf99c9281c45194abd79475a80ea1486840aad72b1c0c4f17fe35a150fcb574fa9fcc09a7fc5dcd34e15d4bf1bccfa8bf423d2437e2eb0d3ca9324fbfc7e256b862c50ebc8db3fb69f69003d37807af8ddccf2d929ad9d06ebbb7e538d93bb0b7bc828e1639e0b5e89c22badca307ad28183c3083e87c917feb4c882397d397ea2e7ff0e05ebb252940302cdc0f0f7efe40685f7c3e8923e3795d70d69c70d9a071e401cee771f29dcb5316471768464c4659f2c76d11713ab44f4c944a4819deb1248b02457403e9630aaf4a180e9e55bb4d291e9a2bc85a1ed17f906d54935c7e5e8b707ead56284fda0208bd88ab5c3259bd5329c0d26653eb07b6856ad799fd6fa8d2111da3970ff8509bc2ef3a8813d04f36001526b70757646ed4bf25a256751b8ec714f2e62dea19e82aacec389195532bf7f335afae4351adb93c846e22f1f2a3e0d620d81688bd5530e389f2284b3c997d4abab7c30aac1b141425cd9aa315dc5a5e8b04fd503d79896b1494d8be48048c7392fc92c325b76bde4496c49da34c9ff95969bec8f95c356239d5336907957383b12c512fff6d797097a26a5aee9251bae940ef1a19b3f746396300d3baeb476b023f740ed7c1da92fdbf1834c3a882a6079885b933333d0e194cc1f25a06c3a2d370936886cb385d9861d6762c7416a1db5275228b6499cdef9767fb998d43251b963bc4477b2c051b70a0317de5f6ec3158914145bd036ff194df9722d2a3d2ac2397891b573a34ad16236cdc7ca77bc15f0fdbc3cae923d61633a42bab450a80cf3ee6580e792b1617d74fa189d450a64ca12d8c797698208ea61010b6072885b762af598159621f838ebacc00ea11f5924b39b2bbbc5c7d667871ce32e9aa75893a9fa13a2ffe66b360e266446259a8745addb4e186139d86d4e8d48537ac35029b0d87c03e8c1a9b9a422594496feda8bc5502777428fe737198ed896c2128a4f7d552f2eea8fef6e68feaf3cbfd549e622eea7bc988bb16fc49b7ab241426f2e40edcca07d4f947ccb1d3b8c2e9cb14a0c04495dbb75bd9c935f36bfe398455b0e5f927d5726e617c69ca81fe36c3e6ea510c5fe4735161c992f9ebf66727e5a7ded590061d4da3b86b996846a6bb102e47d33465d88a68644c8a76a770d5e0318e6c301e7c7f5575bf15a9589b32cfaa41ee15972488497195a2cb49a6b6f937a8e311e34d311dfd4fe222d3abc095b0b24a1b7193eb3353def0cc1511c8fce9b0a7867ae2fed4db93009646dc91a3745387cbe61b37f749b40d5d38970856b7ab8b6e1e0b81c078c68cb55c57854b8b5863b7a4c87f42e6d6dca2de0326b1b26970168c99f59816877448e7f72626f5354fdb5e033cd6b42e9476665efae66287e656590d1f80b3a09557a57d7de4bade6a122d40a92db1d347463b74151d44a02dbe067259c633b8c84425e77a736fca99f06d0fd66e35365511ec017537f4c212e7f2e23369958c3a7b92feffad9edb12139f1f690f9512725c0a1a164e78b4130c91fd3961df91c1a11783c24b03bcf305fd0e14e6510f4d58cf73326e94f2bc1b1ab295297bee7a98b77afe483a7d66e780d5e111b4202285f580ce571ecc0985501faa0e9f2f5b9848d770d8d8ad7b90a951f83279073e45a0c7abcf89cd6200f7fc320e46ea3de2addee3a984432501063f9928d0897d93dde20fe8fbe4dabc1ac34b0efdb3d7c7b4d49571ea64252d7209ff6d0ae5b95ef35d8160c5976f7ed9c4b69db81a73f6d00fd254c417696d6af694f3688826cc04db8019f2419fa99e47dc436fd76890b5291cd2724717a1e604e6cb5e214235664e8c7148c2bd87996c05bcfe1f29200f40a0d766df3ddc6faef82fb34d385f90b8f0e4bb7ba519e7986735c169cb3546d62fb70fbd49eec4edd70397d2fcbfdb9cd87331fce3c9786b7090501b904c8f925a1dbfa151a18e6c145ebb74da7100de60a627100d6c04ce789a7d4e88692cb090fd9ff2006e5ddb870f5b2aa502081eb7a26744de9a0d29a66ef18eb097e1d396561078e3f9258046a3a3e9b5878964d71b526755084f385d9777b2ab503f9d77c09a46004b5005f69eedee80edd87dd17f2292eba00f71dedb010b7b003a8400f6b44d63559a10bc0052c678ac8ed9658aff4f858778ebb60cbaf53d82248a260c7255f943711e8ac31a4b7a4694dcdace3be25ea43bdc9dfd52d369292d8d7581a6979d1b8ad543baeb9296907e0926025f4c3597e98e2eacd048a5dedd0e9dabc3268ed35a91c6180908af07a95bf374573c7b4f611eb30bbb5f1721a6550f483dcaed51d84fdaa5c6a52d7c4d04ca4edfd2884483c2d5aaebf6f06c6fff8bff813923ac8c6edd0eadefab938442ff09b1b3ff926c963d67a01cccbd86cb69bb5e5a4adca82110f87d3ee7800b14412b48cd94feacbaa9c1921e816d0287ad1198b94fd6de314912b79938a0d00ef5968ca4cb506afa1496ce4886c8c44955a92c9d2395f108a357e240511cc7e6548ac4174e5b52cc1f03ea8fa8268a7283e9cd25518cc71114869537891b64337222f04c111407bc2c8777f1132e1b294ec533610fd1ae3b4aa7e20c315d87aeed3a19151677e04173fbd55e88669f515dea19c8b99f8d7e829734f615a9b95e278fec62cf2d1a37d535ef71996530c62e65bb6fde625447e9122cfd947d7032c7580bfa5286bdde0bd9c4f0c63cbceddc302e1daef7f27bf289f72456802560e4477b27520b45f3a39e787824f169b3fa0ec7fba1c37f4499d43a9cdca7595f3e9ab74223c34819b260130d8a7613653101cc9a6e236ac01965356c90814c632ed421a62654a457ccc66040026451610b94898d13292cf2096fc1744b8fe67cebbcee0a3830be987694e593d732f05e3c6503a71173dc9870c3eca017318b628dd651232ea1c424a98b394188c8b8dbf30d69f1976219fd5b1975f8deebabeca970581f011f428c164bb35e0d6be187a5a2887d6bb0889c41c5c24d0b173f05db5d3a9e50318b448b3c8c", @ANYRESDEC, @ANYRESHEX, @ANYRES8], 0xb, 0x0, &(0x7f0000000000))
r3 = openat(0xffffffffffffff9c, &(0x7f0000000300)='.\x00', 0x100, 0x62)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r3, 0x40086610, &(0x7f00000004c0)={@desc={0x1, 0x0, @desc1}})
r4 = socket$nl_generic(0x10, 0x3, 0x10)
pwrite64(r2, &(0x7f00000028c0)="60b616dc567a40a7afd6bdb8c00858558c5ba700bcdcc1e5fd037b1d3c138cee7b5eb7048312fc725e0093924f62978e03e5e5e33246866c174f7603b3aae3a8bb0739555a2444524a2e334905df55b7c8963f48ec0bc141a50496c562c275b0efd050d5271d937f568f8d3fc7f61ce1e9600d19adf21230c986287a1c649ff08a827a678b68cc1d944a8d989d9ebebbc7bd987842c693d893ff2b7b942f9edc00ed788cdada10698df276e3c3de72c6e8bea738e075d183daec574fc578436bf62e9c06d0b583e5df748c3f5ec9817455c038340003cb0d9c598725d3e8dc60e3e65590baa03a5ba8b739a4f365df69185b0d8f6ee9e2dc380a50b1d371161b73b017aa0df28d6ea4f4bdf32ed318cfbf910251f489fb7e1f8c4396265eae74765e3d79c391b555dca1c1d186559a122c05550b0293145670622fc33b9117d87c90f1d4dd6766d764c38324329962a6e5aacbc7d8695fffdc050ab0f609525f5ee0e25d351799c6e4a9ab439c3b9404f746487aa85c26bced621e58bd9d85541f0e4337e359a0e68c7a4f0656a0b50902ffd00e75b9240e1d6f3bfc80d596d3ded684e583954f761bb55cb193322c0d150cc9a4bc3247e8540b5c8eee91ef49a791579088de93d0a0f8ed93cd202df8674c02904bff8888e69225aea026df45ea955b2b72aae301ce56bcd2fa81222aa108c38ac10f5744540dd4fd66f58208191ad4cae140e90d2763f496b005edd5ff7a6a164aaa2f370ead0c2ec1f83b2e68a17f8884019d1f9cbc380bcdd5e80f38f04c34dfaed49f72550a985c433f7ee3b0c14040df5b6e023b744f20b6f48693a54f52c0decadee0d3eb352f4c6cc35dfb86214119100fd699bdcbb84f5edfba05e09f39f7fc96c960c6e75628290f63af4bcb8ca5cf85bc80f56ebb542b893904f1767e6ac6b736037d03b13a4971103b542b32ba0c6e3d50b940dcd58d5f6a1e1f71f145d7f47ab27abe7408e31bdd66e2f0c150b29e78e24a23850b72d8a9b5aa04829b0f5d56c8720af76c10b87be1b48ef8171c1cd2732ac34c5fe1a703820d9df206837700fad25002995e22171a949e64d178e437caf197dcd9bb6ac7c153b440b3c3c4fa7fb2b90ef370e3039c813bcbcd8f0eab9bec6bf7436d90efa0d67f8b500e397924e10bf3aa35ccf68e8006d5190a7c57acfafefe3bac57daf03f2f2a23bc947953ed47c137d26736ab505d454d4c6fd29dc61a09471c2b54604d7aaa3c97309b192fe42a67c4d53df77ea330ef4cd9388b324d3df13a5515b9ba4d5fa0fc40e7eb433000d22ca8192ad9cfdde4412a7bb927b09d13e02e1bdc022d9492b9e8734701b0492f35eb3f4c7b54888b0bbc9e25f516fa080dda6225e08b4de80c9f00973b08c10a5f92e6eced8d5e23829bd7a6cfc9abad7613b74bef29481c26398c0d70aa98e333c07d87689033417c9f2c5dab65822ea6732fe0be51d1acbacdef9359df29cc2262fb1e51db93d48363bce81280da3cebd730062ccd3a545675a1d0498d91d78957254acc49296f51dd9035f7db8d16d4d7d4ba1942162c5e5e8a2ba961f48044c672afbb206f1430e3f76ee99d4dae0cd1e2a1c19a0774845a1cdfcb8812447684cdd3e9d27b485c34ecd424fdb91277fcc5892c5e52048fbf2e43238e907c701e06d6fafb2dbb0ffe7c5b3b64e7f559c04e687d9aada8c222fd66ef56fc0ad63e2aa1fd4446a5a190823113ba00a80eeff020ebb54b8421d51d650d4c3f23177089aef16c301d6dc81ff506f75ded949997d8626bf724dab89f55aa8003f41e874e0c7722e3558b648a464e4c8025429dde9cf95ad60b36f752a71c1f6d664a84da12d180a1834a33b03ab7dfeb9ca4cb18a622d477a231d92c2ff20aecebf467b9e49525e5577128e9cb9495ec727e8cda32e8be4fade652d76286fa75ec39ebf168587d138f1195297bc3863aafeb0c88c564fcd433d82b62a928f790bd920f6d64dd8d6897832ff5084ac3cb80d46525a45275228a81d558cee018a7efde6e8b469001775d81e66b294221ca3dd44a0f4505241eea4f895269a3fc9bb95d906c9ec5c3e7fa1795bfc480f99e18362b9f781ba881ded53da9b2153d22c47d4ce76fc41ca4985d5a604fb24a3d7a792c2a44fc510d2c5d54b3632606ca8995adc471a7404f394e5672c6054794e4233a6351390bb49d3dfeab8cf7977cb51082e959f181e5e1c7d41c48be16277a40adaaba9d1e68ad224bcaec4379ea4b2f8bb8053480f7f93e087ffbf89db763feacb2a80ede420b90fd3659762c791f33fc1443c31b00cb4d13b082c709281b6069cbafba292ace5d0128835bec525d12e72adaa1f7d057979513742a02347c95c316993118e1be0d24003f96db9a54d8fab0f1ed7ce47367110a50aa6e2f7bc6b228a488a72ed5bb0b12158a36a10f0346f9ca6675394fcd46f73b07f0aba78a40312e39cd376c5434748b4c933d149d04fe884a97f0dd12c211ceafcf4f99c142d613cd162134578c9d83de43c7ad997f03243f2a0c1d2bdaafeec80efc234ae316410b55e8125b4cbc611d02516b234edb619580b1562ebf30be47f7408ba501a3d50e3d0607b6e43a2a94fe3a3febca5b9b26ce3cd5754241d0e3a0667ee4c7641a702ca4d2b1dd5d297cfb92d6ea4db82acbf233cd6f1b4484a6f752bbbc11980d9d992736c29fbacca2356f739f3a7b9c2f5bad75010e3ce0624789f7282a8d4dae199a0130c3c4067e17ee29e34ea7acbe166f52e6f6f094d4824e19e1b22d98b03c2acbc63e74904a1f5a6866b71b81229c373f6ae587d59bc4e58d1b8b0c5ec63aa8117a2ff0203398ae3db7f7a40ebba165bb9c4a3cbe4f1714127ac2a851fd6d2172b26b91f1e757bf2e084c8967154574a21bc3b5dfa4a8809cf8a8c508495e145ba67d4453ea63c759b3b782dc04f34f00a71b103d5abc1b8896c2c6f709175f8793d87145fc69bbbdd78c7067f2b3d564611634ec75d178b46c160e58ed34fa9a2928a568d7ad29fb2ca8380c5ac066f32824a4627111dfb6104d9ef2367f9071cc1ba83b1c22ad633ea66a8a8f837bee0bdfe778e3cab0b02049f419bb9708d0c0ccfa7f594c92b883e12fc2cea612d809b0bfbda3367aecd596f7b68a012200501d4f67c14ea28116f5f5f0b4b00877de76c03c9a723abad13267d5ab4c6a94419368e2c1ee21f8744665ae55969240a68ea41a2367144400ce91d5279d5f72e09d8ad39ae96cec0c2ab495cde2e08883bcbb3b6016d385e130f0110e431a2fae2dd8401546b783e3f2732c7e82aee2a19eb94b43950b5299e5e5bba93c5fa4341ca65dd198d1b88c954b118ff9f47149a5a721154b037d00aea03d7e14e82df0fe9a122f3d7f12346f3a4e82f9512674d9176e76d4d074df42ea436143d3c240e586c264c37c0204ecae3472e7d6be31fcdaef325cad5364e17c79c7958a32d3450a7c761d099c7a7ce51be7f86d7e13029dde1fc0ca7680e7fba0ee7379c4b667da3cb8360d64398dc0c2a8bdce921b95a2f55f13095f92ae02938adbe7cb179943637109e5daf44dcf963158c16ca37d74ca294be64a22029314c7ef98c2046b9423311190f893a87a50ec96f04668d1325f55e8034d9f3ac264d2f7aea7c6f84d065bba7f393dfdb213ad4583851435027404fbd3d30fef5039672794281292bfece3f2d3c3493ef4a15d0ef8fcef71daf575e5ab4b7a34e6487eb16ca6dddb978e78d47a0bc98915b583f2b703f0a6de3fbaafd977baf97884ad9754f8a4b82d02d13d2e842b621eee36b1437bdd5023e17e804b13c5cbe4b74cd16e6996a242d658ee1a85dfd5496e2d9df9eb4807327f4eefd176b289d4d24fe29297a7b96a758b49bbf61eb8f356615566a2e85ac94b4d98ed1db1d880f642382f9aadc4d0bf170d774805fd39921605caf3abfe12262d22b90623e9668b2e392982389dfcce16bb046a2b52c462bbdac8a273c3283859acfe658f8a5e05510e964064b839f3adf86a1942942a7714db6e8d1d8734e7799674516ca4d35d5f17dac4197d18c46326f34819759da5d0f9673bb7b6ace253f836d492db141b3ebd81d999794474dfe1d2b8752ecab32b5f39f0639916f7a54b5a5b3cba9a24f89d226530c9e6f3867233bc692d26f6065b79f6965d047098dd8fc769111ec82b9656779784aef5794f38d7a810dd74b14043b80e3dc457225c6b1a338013c78215cbeaeae31a61bccd0105e5edd857cba1080671be27e0495cbd9b3909fc55993417a6886f1d2e0fca9bf20a600df3de18f7609787b3031cc560dc2a82770127a1389e38b57b894437be338209044d839bb73c84d57b1b8ee132845227f2b3d5349e7e094d00e16e661038f3504d07c31fa0b2d506ae9807b657fdc84528b552fba6862660eba5f15f70699e3c3a04b621837d428e47420f4a71154aad8a659569bc6ba64bd9def3e4f1c97d0c2b00b12e04eaaacbd8995de32f71f238939cabda0700e8b19f72b124859759eecd47697c23369b333eebef594643acb9678d1d9b848b885649e7636ba1d9065db27bd7249245e8727a23da249ab30c8f595c251de72193a6cc3d2c9c6735a3483596ba3919bc90c822d4119644bcff5d7186ee2099acbf9ec0f81e77e0e8fd58f83206ddaff4f7ab509baf5bdd61beef1859c54d828e03d95e0cf2364a40b173f1a49f208d81a66b34c97815ad71bd57db542f15325ff5ee4a07644ad8513c467e54083bd787d9d3994d7a5b84c21074479040f2ba4e76a6c6c6a57eff5dfa02d73fbb1cef5184398718c8aa65945204c7693edfa3bc1b3e5c5efe13b49d680f0f453f5d0b2f2fcf83338af14a8054db117c0f486f68a2e3be8592c7fd72061cafa7771a6724881c9919082676f23b2c4b2d5f44403db4b4f7a112e2a260b94a5f388684d63b4235389de09a4033b51a78f13858fd2bbf2de65a05addc10e2d64285bb5f0d4bbbaa9d718986f8a4ef3e6c2d34dc9f4a8677bca8474452aee9255478e168173009c30f58d6ae3f49fa1b2023c95c544679a6a0c9eae73386719b63ca9a090591cbc73180685e507dc0c53b74b96a0a7764c0ccf1967a1b925e95aea7f5371ca31d1ccf946322e6115a389b17881fe25ff6f602a917154e8f231e6725a8375251d629aae28b055a29df7103ffe0f3ba270600c2cb4f86dee79d56524b04f61b2892975aeb3f319706c55bc3e57adddb147c2fb0f2999b293ed0a2e3d59cb0fa456f507cc63ce9c4c6b82ed202a31ea08e8573c28a78798f142e7630014fe3c283cbfbf606eb84f8ec0d43aff4a142f07d861c142c81d163bd40e01b291f3c43a7f798c6443d351ece497573ed5fc260f6fc5b1c4f960e1d5192bd86d6aa58133b7dc463ac028d88fe6751b3711466f4a08652ab72c4778845a6ac97f8485ba23db8f3ca7bee859b3f15caf789e8812a993798045e1dd093f4c6f55cf5add3279b408795de87db371bf0d01b9dc88fe4db41de15ee0b440be469526ba2f43714da0b4791b104f5760c7f3b772c722bc6552a34359c18d5460c9dd016a21f6d7460933bc93be1fcf89b3f79aa816137551117dd9fbf351882d44c43afcb215165b5e7167d2a4e1e5d3ab2173223c757fe70eb351621443c46bfc8906e8d1f927024c70c8c8a34dd0de119f6df6ee1f3a0dec1285af51aa02261fc1d89ee51ad72204c0a4f9e1ecb52b899525d2a718fa5e58bb61d580c3ba824ebf91deb08c6e7e812967424750c01597ddeebe51bea95c7ef7465768fa4ee4148c6", 0x1000, 0x4)
r5 = syz_genetlink_get_family_id$tipc(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$TIPC_CMD_RESET_LINK_STATS(r4, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000180)={0x30, r5, 0x1, 0x0, 0x0, {{}, {}, {0x3, 0x14, 'broadcast-link\x00'}}}, 0x30}}, 0x0)
sendmsg$TIPC_CMD_ENABLE_BEARER(r3, &(0x7f0000000340)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x1000000}, 0xc, &(0x7f00000002c0)={&(0x7f0000000200)={0x38, r5, 0x800, 0x70bd29, 0x25dfdbfb, {{}, {}, {0x1c, 0x17, {0x1d, 0x8, @l2={'ib', 0x3a, 'veth1_to_hsr\x00'}}}}, ["", ""]}, 0x38}, 0x1, 0x0, 0x0, 0x80}, 0x10)

5m50.023023188s ago: executing program 1 (id=772):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x37, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000440)=@dellink={0x28, 0x11, 0x1, 0x70bd27, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x22920, 0x2300}, [@IFLA_GROUP={0x8, 0x1b, 0x8}]}, 0x28}, 0x1, 0x0, 0x0, 0x94}, 0xc040)

5m48.939048508s ago: executing program 1 (id=773):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x100000000001, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
timer_create(0x0, &(0x7f0000000240)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0xfd8b, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xffffd000)
futex_waitv(&(0x7f0000000e40)=[{0x0, &(0x7f0000000000), 0x2}], 0x1, 0x0, 0x0, 0x0)

5m47.877489412s ago: executing program 1 (id=774):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000006840)=@raw={'raw\x00', 0x3c1, 0x3, 0x340, 0x0, 0x111, 0x4b4, 0x110, 0x700, 0x270, 0x278, 0x278, 0x270, 0x278, 0x3, 0x0, {[{{@ipv6={@loopback, @empty, [], [], 'macvlan0\x00', 'team_slave_0\x00', {}, {}, 0x0, 0x0, 0x0, 0x48}, 0x0, 0xa8, 0x110}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x138, 0x160, 0x0, {}, [@common=@srh1={{0x90}, {0x0, 0x0, 0x0, 0x0, 0x0, @private2, @mcast1, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}}}]}, @common=@unspec=@STANDARD={0x28, '\x00', 0x0, 0xffffffffffffffff}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x3a0)
r1 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZEX(r1, 0x560a, &(0x7f0000000040)={0x8000, 0xffff, 0xfffd, 0x20})
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x60, 0x60, 0x7, [@float={0x6, 0x0, 0x0, 0x10, 0x4}, @func_proto={0x0, 0x6, 0x0, 0xd, 0x0, [{0x4, 0x3}, {0xd, 0x3}, {0xa}, {0x40d, 0x8003}, {0x1, 0x45}, {0x6, 0x2}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x1, 0x3, 0x4}}]}, {0x0, [0x5f, 0x2e, 0x61, 0x61, 0x30]}}, &(0x7f0000000180)=""/14, 0x7f, 0xe, 0x1, 0x4}, 0x28)
syz_mount_image$ext4(&(0x7f0000001d40)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000a40)={[{@auto_da_alloc}, {@barrier}, {@noblock_validity}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@delalloc}, {@auto_da_alloc}]}, 0x1, 0x490, &(0x7f0000000580)="$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")
r2 = open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r3 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r3, 0x4c04, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x3, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c67808cf335263bd9bffbcc2542ded71038259ca171ce1a311ef07ec3ad71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x9]})
pwritev2(r2, &(0x7f0000000000)=[{&(0x7f0000000340)='\b', 0x1}], 0x1, 0x7, 0x0, 0x0)
syz_usb_connect(0x2, 0x24, &(0x7f00000000c0)=ANY=[@ANYBLOB="1201000006fe5e40cf1b400b3d550000000109021200014300a00009ac89a779981c5f69ae8704a600000e010000b18beebab4057565a9f628e745d0f81c32b2aa46dc1ef09562673f433c236783701f38d44d398938eefe56fabeb98028f3b96d0ddbb2671db5"], 0x0)

5m43.991733408s ago: executing program 1 (id=785):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x18, &(0x7f0000000580)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x3}}, {}, {@bh}, {@oldalloc}, {@data_err_ignore}, {@nouid32}, {@nobh}, {@user_xattr}, {@nouid32}, {@dioread_nolock}]}, 0x1, 0x55e, &(0x7f0000001bc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./bus\x00', 0x20240, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x1c1182, 0x9b)
creat(0x0, 0xecf86c37d53049cc)
inotify_add_watch(0xffffffffffffffff, 0x0, 0x20000040)
socketpair(0x4, 0x80807, 0x11, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r2, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
write$binfmt_aout(r1, &(0x7f0000000d00)=ANY=[], 0x720)
sendfile(r1, r0, 0x0, 0x7ffff000)

5m43.483711279s ago: executing program 1 (id=788):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f00003e7000/0x2000)=nil)
io_uring_setup(0x7da, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

5m42.30047316s ago: executing program 32 (id=788):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x2000, 0x3, &(0x7f00003e7000/0x2000)=nil)
io_uring_setup(0x7da, 0x0)
ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x22040, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r2, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x74, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

13.023304266s ago: executing program 3 (id=1582):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f0000640000/0x2000)=nil, 0x2000, 0x0, 0xfffffffffffffffd, 0x20000)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)

12.297259815s ago: executing program 3 (id=1584):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
sendmsg$NL80211_CMD_SET_COALESCE(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x91}, 0x4000000)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000100)=ANY=[], 0x9)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000000040)={0x50, 0x0, 0x0, {0x7, 0x1f, 0x0, 0x34014c40, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10}}, 0x50)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
write$binfmt_script(r2, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0)
preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(r2, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

9.531729579s ago: executing program 0 (id=1588):
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$batadv(0x0, 0xffffffffffffffff)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
socket$inet6_tcp(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sendto$inet6(r0, &(0x7f0000000140)='\x00', 0x1, 0x0, &(0x7f000005ffe4)={0xa, 0x4e23, 0x6, @loopback={0xfec0ffffffffffff, 0x1c9ae7fffe9a6f34}}, 0x1c)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x88, 0x1, 0x0, 0x3}, 0xe)
ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f0000000080))
socket(0x10, 0x803, 0x0)
shutdown(r0, 0x1)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x405e, 0x4)
recvmmsg(r0, &(0x7f0000000840)=[{{0x0, 0x41, 0x0}}], 0x414, 0x406, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

9.344807703s ago: executing program 4 (id=1589):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
unshare(0x26020480)
r3 = inotify_init1(0x0)
r4 = inotify_add_watch(r3, &(0x7f00000002c0)='.\x00', 0x20000000)
r5 = dup(r3)
inotify_rm_watch(r5, r4)

8.448473329s ago: executing program 2 (id=1590):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000340)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000180)={0x26, 'rng\x00', 0x0, 0x0, 'stdrng\x00'}, 0x58)
r4 = syz_io_uring_setup(0x10f, &(0x7f00000000c0)={0x0, 0x211a, 0x0, 0x4, 0x306}, &(0x7f0000000340)=<r5=>0x0, &(0x7f0000000280)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000040)=0xffefffdc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f00000002c0)=@IORING_OP_ACCEPT={0xd, 0x0, 0x1, r3, 0x0})
io_uring_enter(r4, 0x3516, 0xc2de, 0x8, 0x0, 0x0)

8.220953314s ago: executing program 4 (id=1591):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x22483, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$kcm(0x11, 0x3, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x103000, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000380)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000022c0)=@newtfilter={0x94, 0x2c, 0xd27, 0x170bd2b, 0x2, {0x0, 0x0, 0x0, r4, {0x0, 0x10}, {}, {0x8, 0x4}}, [@filter_kind_options=@f_flow={{0x9}, {0x64, 0x2, [@TCA_FLOW_MODE={0x8, 0x2, 0x1}, @TCA_FLOW_KEYS={0x8, 0x1, 0x1e3a9}, @TCA_FLOW_ACT={0x50, 0x9, 0x0, 0x1, [@m_csum={0x4c, 0x1, 0x0, 0x0, {{0x9}, {0x20, 0x2, 0x0, 0x1, [@TCA_CSUM_PARMS={0x1c, 0x1, {{0x3d1, 0x3, 0xffffffffffffffff, 0x6, 0x6}, 0x57}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x3}}}}]}]}}]}, 0x94}, 0x1, 0x0, 0x0, 0xc804}, 0x2)
close(r2)
socket$unix(0x1, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
setsockopt$sock_attach_bpf(r1, 0x107, 0xf, &(0x7f0000000600), 0x56)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$kcm(r1, &(0x7f0000000280)={&(0x7f0000000380)=@xdp={0x2c, 0x0, r6, 0x42}, 0x80, &(0x7f00000000c0)=[{&(0x7f0000000200)="27030200000314000e00003c031500000000ff8800000000000000000000000000000000000085dc9d9839dc1336", 0x2e}], 0x1}, 0x4005)

8.108873573s ago: executing program 0 (id=1592):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_io_uring_setup(0x95, &(0x7f0000000140)={0x0, 0x201, 0x0, 0x0, 0x3}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000100)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = io_uring_register$IORING_REGISTER_PERSONALITY(r3, 0x9, 0x0, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_OPENAT2={0x1c, 0x0, 0x0, 0xffffffffffffff9c, &(0x7f00000004c0)={0x20102, 0x0, 0x28}, &(0x7f0000000500)='./file0\x00', 0x18, 0x0, 0x0, {0x0, r6}})
setreuid(0x0, 0x0)
io_uring_enter(r3, 0x4536, 0x6aaf, 0x0, 0x0, 0x0)

8.073132836s ago: executing program 3 (id=1593):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
getsockopt$IP_VS_SO_GET_TIMEOUT(r3, 0x0, 0x486, &(0x7f0000000040), &(0x7f00000000c0)=0xc)
setsockopt$inet6_int(r3, 0x29, 0x31, 0x0, 0x0)
openat$comedi(0xffffffffffffff9c, &(0x7f0000000140)='/dev/comedi4\x00', 0x2, 0x0)

7.073552012s ago: executing program 0 (id=1594):
r0 = socket(0x10, 0x80002, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r2, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r4)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r5, @ANYBLOB="01000000010000001c0012000c000100627269646765"], 0x3c}}, 0x0)
getsockname$packet(r2, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x3c, 0x10, 0xffffff1f, 0x0, 0x1, {}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @veth={{0x9}, {0x4, 0x2, 0x0, 0x1, @void}}}, @IFLA_MASTER={0x8, 0xa, r6}]}, 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000480)=ANY=[@ANYBLOB="3c0000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="a4280400000000001400350076657468305f746f5f626f6e6400000008000a00", @ANYRES32=r6], 0x3c}, 0x1, 0x0, 0x0, 0x4008800}, 0x8000)
sendmmsg$alg(r0, &(0x7f00000000c0), 0x492492492492627, 0x0)

7.071766562s ago: executing program 2 (id=1595):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
ustat(0x801, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(0xffffffffffffffff, 0xc0285700, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0xc)
keyctl$clear(0x11, 0xfffffffffffffffd)

6.769603483s ago: executing program 4 (id=1596):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
openat$cgroup_int(0xffffffffffffffff, 0x0, 0x2, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, 0x0, 0x0)
r4 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r4, &(0x7f0000000440)={0x900, 0x0, &(0x7f0000000400)={&(0x7f00000000c0)={0x2, 0xa, 0xfc, 0x0, 0x7, 0x0, 0x70bd28, 0x25dfdbfe, [@sadb_x_filter={0x5, 0x1a, @in=@empty, @in=@rand_addr=0x64010100, 0x2c, 0x30}]}, 0x38}}, 0x40408c0)

6.294434201s ago: executing program 3 (id=1597):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x1, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket$unix(0x1, 0x1, 0x0)
r2 = socket$kcm(0x11, 0x3, 0x0)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xfffffffd, {0x0, 0x0, 0x0, r5, {0x0, 0x1}, {0xffff, 0xffff}, {0xffe0, 0x9}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x8810}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000400)=@newtfilter={0x58, 0x2c, 0xf3f, 0x30bd29, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xb, 0x4}, {}, {0x7, 0x300}}, [@filter_kind_options=@f_basic={{0xa}, {0x28, 0x2, [@TCA_BASIC_EMATCHES={0x24, 0x2, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x1}}, @TCA_EMATCH_TREE_LIST={0x18, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x1, 0x0, 0x0, {{0xceb, 0x7, 0x2}, {{0x0, 0x0, 0x1, 0x1}, {0x0, 0x0, 0x1}}}}]}]}]}}]}, 0x58}, 0x1, 0x0, 0x0, 0x20041090}, 0x0)
r6 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r6)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$SIOCSIFHWADDR(r6, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$kcm(r2, &(0x7f00000000c0)={&(0x7f0000000380)=@xdp={0x2c, 0x7, r7, 0x3e}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000180)='\'', 0x5dc}], 0x1}, 0x4)

5.223565633s ago: executing program 2 (id=1598):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000040)={0x84, @dev={0xac, 0x14, 0x14, 0xb}, 0x15, 0x3, 'sh\x00', 0x1, 0x4, 0x72}, 0x2c)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r4, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e1f, 0x3, 'lc\x00', 0x4, 0x81, 0x5}, {@rand_addr=0x64010102, 0x4e26, 0x0, 0xcb, 0x12d60, 0x9}}, 0x44)
setsockopt$IP_VS_SO_SET_EDITDEST(r3, 0x0, 0x489, &(0x7f0000000380)={{0x84, @multicast1, 0x4e20, 0x3, 'sh\x00', 0x0, 0x60000000, 0xc}, {@rand_addr=0x64010102, 0x4e26, 0x12002, 0x3, 0x8001, 0x1}}, 0x44)

5.202636479s ago: executing program 4 (id=1599):
socket$kcm(0x2, 0x200000000000001, 0x106)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f00000000c0)={&(0x7f0000000340)=ANY=[], 0x10}, 0x1, 0x400000000000000}, 0x0)
syz_io_uring_setup(0x6aa5, &(0x7f0000000200)={0x0, 0x86f7, 0x1, 0x3, 0x3c2}, 0x0, 0x0)
syz_io_uring_submit(0x0, 0x0, 0x0)
connect$inet6(0xffffffffffffffff, &(0x7f0000000480)={0xa, 0xfffe, 0x3, @mcast1, 0x5}, 0x1c)
r1 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
socket(0x2b, 0x1, 0x1)
sendmmsg$unix(r1, &(0x7f0000008380), 0x400000000000174, 0x4008890)
r2 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000080)='/sys/kernel/debug/binder/transaction_log\x00', 0x0, 0x0)
lseek(r2, 0x851, 0x0)
sendmsg$NL80211_CMD_ASSOCIATE(r2, 0x0, 0x20008041)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0)

4.17394387s ago: executing program 2 (id=1600):
socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x10, 0x3, 0x0)
pipe2$9p(&(0x7f0000001900), 0x0)
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
dup(r0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000240))
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180))
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x1f, 0x10, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000005000000000000008000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000000000000850000008600000018010000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000050000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000200000085000000a600000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x11}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)

4.005967597s ago: executing program 4 (id=1601):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000003b80)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, &(0x7f00000003c0)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x4)
writev(r4, &(0x7f0000000080)=[{&(0x7f0000000200)="a10100001500add427323b470c45b4560a067fffffff81004e22000d00ff0028925aa80020007b00090080000efffeffe809000000ff0000f03ac7100003ffffffffffffffffffffffe7ee00000000000000000200000000", 0x1a1}], 0x1)

3.935397044s ago: executing program 0 (id=1602):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100"/13], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000300)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_emit_ethernet(0x66, &(0x7f0000000040)={@link_local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "f53a04", 0x30, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x2, 0x0, 0x0, 0x503, {0x0, 0x6, "508359", 0x0, 0x0, 0x0, @private1, @mcast1}}}}}}}, 0x0)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=ANY=[@ANYBLOB="4800000010001fff0000056800080000faff0000", @ANYRES32=0x0, @ANYBLOB="c30c424700000000280012800a00010076786c616e00000018000280140010", @ANYRES8=0x0], 0x48}}, 0x0)
sendmmsg$alg(r3, &(0x7f00000000c0), 0x492492492492627, 0x0)

3.894330295s ago: executing program 3 (id=1603):
fcntl$lock(0xffffffffffffffff, 0x7, &(0x7f0000000040)={0x0, 0x0, 0x8000, 0x3ff})
socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f04ebbeea, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$tipc(&(0x7f0000001ec0), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r3, &(0x7f0000001f80)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000001f00)={0x30, r4, 0x1, 0x20000000, 0x0, {{}, {}, {0x14, 0x19, {0x80000000, 0x0, 0x8, 0x5}}}}, 0x30}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)

3.873321951s ago: executing program 2 (id=1604):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket(0x28, 0x801, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000000)=@mangle={'mangle\x00', 0x64, 0x6, 0x7e0, 0x628, 0x3f8, 0x3f8, 0x0, 0x628, 0x710, 0x710, 0x710, 0x710, 0x710, 0x6, 0x0, {[{{@ipv6={@rand_addr=' \x01\x00', @mcast1, [], [], 'veth1\x00', 'syz_tun\x00'}, 0x11e, 0xa8, 0x1d0, 0x1f000000, {0x0, 0x7}}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0x0, 'unconfined\x00'}}}, {{@uncond, 0x0, 0x1e0, 0x228, 0x7400, {}, [@common=@rt={{0x138}, {0x0, [], 0x0, 0x0, 0x0, [@dev, @empty, @remote, @private2, @private1, @dev, @loopback, @mcast2, @local, @loopback, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', @mcast2, @loopback, @local, @private1, @dev]}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv4=@remote, 'nr0\x00'}}}, {{@ipv6={@empty, @private0, [], [], 'sit0\x00', 'sit0\x00'}, 0x0, 0xf0, 0x118, 0x0, {}, [@common=@dst={{0x48}}]}, @unspec=@CHECKSUM={0x28, 'CHECKSUM\x00', 0x0, {0x68}}}, {{@uncond, 0x0, 0xd0, 0x118, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @DNPT={0x48, 'DNPT\x00', 0x0, {@ipv4=@private, @ipv4=@initdev={0xac, 0x1e, 0x0, 0x0}}}}, {{@uncond, 0x0, 0xa8, 0xe8}, @inet=@TPROXY1={0x40, 'TPROXY\x00', 0x1, {0x0, 0x0, @ipv6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x840)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000100), 0x0, 0x24, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.487687309s ago: executing program 0 (id=1605):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = syz_io_uring_setup(0x114, &(0x7f0000000380)={0x0, 0x10, 0x0, 0x5, 0x80}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
io_uring_register$IORING_REGISTER_FILES(r3, 0x2, &(0x7f0000000300)=[0xffffffffffffffff], 0x1)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
r6 = socket$nl_route(0x10, 0x3, 0x0)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_FILES_UPDATE={0x14, 0x0, 0x0, 0x0, 0xffffffffffffffff, &(0x7f0000000000)=[r6], 0x1})
io_uring_enter(r3, 0x47f6, 0x0, 0x0, 0x0, 0x0)

193.253108ms ago: executing program 2 (id=1606):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102392, 0x18ff8)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000480)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x4000000}, 0x50)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000340)={0x1b, 0x0, 0x0, 0x40000, 0x0, r4, 0xfff}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x15, 0x1c, &(0x7f0000000100)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0xbda}, {{0x18, 0x1, 0x1, 0x0, r5}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x2}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x6, 0x1, 0xa, 0x9, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x8}, {}, {0x7, 0x0, 0xc}, {0x18, 0x6, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_reuseport=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

85.159887ms ago: executing program 4 (id=1607):
socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$MRT_INIT(0xffffffffffffffff, 0x0, 0xc8, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=ANY=[@ANYBLOB="180000001600010a000000e65d"], 0x78}}, 0x0)
recvmmsg$unix(r3, &(0x7f0000006b40)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0}}], 0x2, 0x2, 0x0)

84.234407ms ago: executing program 3 (id=1608):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x200000089}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x6, 0x0)
bind$inet6(r3, &(0x7f00000000c0)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
r4 = socket$inet_dccp(0x2, 0x6, 0x0)
listen(r3, 0x5)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e20, @local}, 0x10)

0s ago: executing program 0 (id=1609):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
close(r0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r2=>0x0, <r3=>0x0})
close(r2)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x0, 0xb}, 0x48)
setsockopt$sock_attach_bpf(r3, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, <r4=>0x0})
close(r0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@bloom_filter={0x1e, 0x9, 0x3, 0x9, 0x1, 0xffffffffffffffff, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x3, 0x4, 0xc}, 0x48)
setsockopt$sock_attach_bpf(r4, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x80005, 0x0, &(0x7f0000000000)={<r5=>0x0, <r6=>0x0})
close(r5)
setsockopt$sock_attach_bpf(r6, 0x10f, 0x87, &(0x7f0000000180), 0x127)
close(r4)

kernel console output (not intermixed with test programs):

D_EXEC or MFD_NOEXEC_SEAL set
[  101.833280][ T5944] loop1: detected capacity change from 0 to 40427
[  101.906061][ T5782] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  102.165656][ T5944] netlink: 'syz.1.38': attribute type 10 has an invalid length.
[  102.187469][ T5944] team0: Port device dummy0 added
[  102.489321][ T5951] trusted_key: syz.1.41 sent an empty control message without MSG_MORE.
[  102.495626][ T5950] netlink: 4 bytes leftover after parsing attributes in process `syz.0.40'.
[  103.322713][ T5958] loop2: detected capacity change from 0 to 736
[  103.498384][ T5782] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  103.802516][ T5967] netlink: 'syz.2.47': attribute type 4 has an invalid length.
[  103.913696][ T5970] netlink: 'syz.2.47': attribute type 4 has an invalid length.
[  104.789674][ T5982] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  105.917000][ T5992] netlink: 12 bytes leftover after parsing attributes in process `syz.3.54'.
[  106.027103][ T5992] 8021q: adding VLAN 0 to HW filter on device bond1
[  106.247783][ T5992] macvlan0: entered promiscuous mode
[  106.281697][ T5992] veth0_to_bond: entered promiscuous mode
[  106.308461][ T5992] bond1: (slave macvlan0): Enslaving as an active interface with an up link
[  106.815767][ T6014] syz.0.60 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  107.707626][    T0] NOHZ tick-stop error: local softirq work is pending, handler #48!!!
[  109.432290][ T6014] loop0: detected capacity change from 0 to 40427
[  109.498563][ T6014] F2FS-fs (loop0): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  109.582108][ T6014] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  109.603530][ T6014] F2FS-fs (loop0): Unrecognized mount option "(" or missing value
[  109.995217][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  110.136130][   T23] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  110.300250][ T6056] team0: Port device team_slave_0 removed
[  110.368278][   T23] usb 3-1: Using ep0 maxpacket: 16
[  110.399793][   T23] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  110.420225][   T23] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  110.432007][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  110.454069][   T23] usb 3-1: config 0 descriptor??
[  110.492412][   T23] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  110.624243][ T6066] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1556275543/1556275545
[  110.646262][ T6066] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1556275543/1556275545
[  110.661296][ T6066] tipc: Failed to remove unknown binding: 66,1,1/2886997007:1556275543/1556275545
[  110.760739][   T23] usb 3-1: USB disconnect, device number 2
[  110.855626][ T6073] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  111.163937][ T6078] netlink: 4 bytes leftover after parsing attributes in process `syz.3.82'.
[  111.174503][ T6078] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  111.350059][ T6078] batman_adv: batadv0: Removing interface: batadv_slave_1
[  111.935342][ T6097] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  111.990168][ T6098] netlink: 4 bytes leftover after parsing attributes in process `syz.2.89'.
[  113.938527][ T6109] syz.3.88 (6109): drop_caches: 2
[  115.315218][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  115.345164][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  115.515275][ T6138] netlink: 12 bytes leftover after parsing attributes in process `syz.0.102'.
[  115.562346][ T6144] loop3: detected capacity change from 0 to 512
[  115.585845][ T6144] =======================================================
[  115.585845][ T6144] WARNING: The mand mount option has been deprecated and
[  115.585845][ T6144]          and is ignored by this kernel. Remove the mand
[  115.585845][ T6144]          option from the mount to silence this warning.
[  115.585845][ T6144] =======================================================
[  115.760213][ T6144] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  115.827836][ T6144] ext4 filesystem being mounted at /31/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  116.068405][ T6144] EXT4-fs error (device loop3): ext4_do_update_inode:5248: inode #2: comm syz.3.104: corrupted inode contents
[  116.143820][ T6159] io-wq is not configured for unbound workers
[  116.169997][ T6144] EXT4-fs error (device loop3): ext4_dirty_inode:6124: inode #2: comm syz.3.104: mark_inode_dirty error
[  116.286960][ T6144] EXT4-fs warning (device loop3): ext4_read_block_bitmap_nowait:487: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 1194124586
[  116.332656][ T6144] EXT4-fs warning (device loop3): ext4_read_block_bitmap_nowait:487: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 1194124586
[  116.378190][ T6144] EXT4-fs warning (device loop3): ext4_read_block_bitmap_nowait:487: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 1194124586
[  116.410416][ T6144] EXT4-fs warning (device loop3): ext4_read_block_bitmap_nowait:487: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 1194124586
[  116.455129][ T6144] EXT4-fs warning (device loop3): ext4_read_block_bitmap_nowait:487: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 1194124586
[  116.508274][ T6144] EXT4-fs warning (device loop3): ext4_read_block_bitmap_nowait:487: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 1194124586
[  116.559630][ T6144] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Out of memory
[  116.576344][ T6167] netlink: 12 bytes leftover after parsing attributes in process `syz.2.111'.
[  116.590588][ T6144] EXT4-fs error (device loop3): ext4_dirty_inode:6124: inode #2: comm syz.3.104: mark_inode_dirty error
[  116.615521][ T6144] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Out of memory
[  116.643949][ T6144] EXT4-fs error (device loop3): ext4_add_nondir:2855: inode #18: comm syz.3.104: mark_inode_dirty error
[  116.666695][ T6144] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Out of memory
[  116.683238][ T6144] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #18: comm syz.3.104: mark_inode_dirty error
[  116.731779][ T6144] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -12)
[  116.745127][ T1190] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  116.757878][ T6167] Zero length message leads to an empty skb
[  116.766234][ T6160] EXT4-fs warning (device loop3): ext4_read_inode_bitmap:149: Cannot read inode bitmap - block_group = 0, inode_bitmap = 2858806877
[  116.887957][ T5775] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.931598][ T5775] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5920: Out of memory
[  116.949421][ T5775] EXT4-fs error (device loop3): ext4_quota_off:7233: inode #3: comm syz-executor: mark_inode_dirty error
[  116.976952][ T1190] usb 1-1: config 0 has no interfaces?
[  117.048755][ T1190] usb 1-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  117.094970][ T1190] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.130388][ T1190] usb 1-1: Product: syz
[  117.150727][ T1190] usb 1-1: Manufacturer: syz
[  117.162943][ T1190] usb 1-1: SerialNumber: syz
[  117.186488][ T1190] usb 1-1: config 0 descriptor??
[  117.739879][ T6164] veth0_vlan: left promiscuous mode
[  117.777427][ T6164] veth0_vlan: entered promiscuous mode
[  118.282768][  T787] usb 1-1: USB disconnect, device number 2
[  118.769933][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[  118.938498][ T6164] syz.0.110 (6164) used greatest stack depth: 19784 bytes left
[  119.076814][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  120.594129][ T6218] netlink: 24 bytes leftover after parsing attributes in process `syz.0.126'.
[  121.922967][ T6240] netlink: 8 bytes leftover after parsing attributes in process `syz.3.132'.
[  122.663408][ T6260] (null): rxe_set_mtu: Set mtu to 1024
[  123.074826][ T6269] netlink: 24 bytes leftover after parsing attributes in process `syz.3.141'.
[  123.083902][ T6260] ip6_vti0 speed is unknown, defaulting to 1000
[  123.158658][ T6275] netlink: 4 bytes leftover after parsing attributes in process `syz.3.141'.
[  123.293588][ T6260] ip6_vti0 speed is unknown, defaulting to 1000
[  123.312858][ T6260] ip6_vti0 speed is unknown, defaulting to 1000
[  123.607492][ T5834] kernel read not supported for file inotify (pid: 5834 comm: kworker/1:6)
[  123.683745][ T6260] infiniband syz2: set down
[  123.691982][ T5834] ip6_vti0 speed is unknown, defaulting to 1000
[  123.700408][ T6260] infiniband syz2: added ip6_vti0
[  123.716578][ T6260] syz2: rxe_create_cq: returned err = -12
[  123.723342][ T6260] infiniband syz2: Couldn't create ib_mad CQ
[  123.730129][ T6260] infiniband syz2: Couldn't open port 1
[  123.833083][ T6260] RDS/IB: syz2: added
[  123.844776][ T6260] smc: adding ib device syz2 with port count 1
[  123.853210][ T6292] Illegal XDP return value 4294967294 on prog  (id 24) dev syz_tun, expect packet loss!
[  123.858054][ T6260] smc:    ib device syz2 port 1 has pnetid 
[  123.879569][  T787] ip6_vti0 speed is unknown, defaulting to 1000
[  123.896095][ T6260] ip6_vti0 speed is unknown, defaulting to 1000
[  124.160368][ T6299] netlink: 52 bytes leftover after parsing attributes in process `syz.1.151'.
[  124.210763][ T6299] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.220540][ T6299] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.286241][ T6302] netlink: 76 bytes leftover after parsing attributes in process `syz.1.151'.
[  124.324675][ T6302] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.333619][ T6302] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.341298][ T6302] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.348539][ T6302] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.414973][ T6302] netlink: 52 bytes leftover after parsing attributes in process `syz.1.151'.
[  124.440560][ T6302] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.448843][ T6302] bridge0: port 1(bridge_slave_0) entered disabled state
[  124.517606][ T6260] ip6_vti0 speed is unknown, defaulting to 1000
[  124.919053][ T6316] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  124.970574][ T6260] ip6_vti0 speed is unknown, defaulting to 1000
[  125.151568][ T6320] warning: `syz.3.159' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  125.458015][ T6260] ip6_vti0 speed is unknown, defaulting to 1000
[  126.209680][ T6341] bond2: entered allmulticast mode
[  126.309910][ T6343] ip6gretap1: entered promiscuous mode
[  126.367772][ T6343] bond2: (slave ip6gretap1): making interface the new active one
[  126.445385][ T6343] ip6gretap1: entered allmulticast mode
[  126.470762][ T6343] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  127.812124][ T6364] (null): rxe_set_mtu: Set mtu to 1024
[  128.224730][ T6364] infiniband syz1: set active
[  128.238303][ T6364] infiniband syz1: added syz_tun
[  128.419853][ T6364] RDS/IB: syz1: added
[  128.444599][ T6364] smc: adding ib device syz1 with port count 1
[  128.464428][ T6364] smc:    ib device syz1 port 1 has pnetid 
[  130.827960][ T6408] ip6_vti0 speed is unknown, defaulting to 1000
[  133.187976][ T5878] libceph: connect (1)[c::]:6789 error -101
[  133.208583][ T5878] libceph: mon0 (1)[c::]:6789 connect error
[  133.274965][ T6427] ceph: No mds server is up or the cluster is laggy
[  133.314512][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  133.325508][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  133.496736][ T5878] libceph: connect (1)[c::]:6789 error -101
[  133.506090][ T5878] libceph: mon0 (1)[c::]:6789 connect error
[  134.197086][ T6433] loop0: detected capacity change from 0 to 32768
[  134.288030][ T6433] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.189 (6433)
[  134.401718][ T6433] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  134.432420][ T6433] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  134.458369][ T6433] BTRFS info (device loop0): using free space tree
[  134.807566][ T6433] BTRFS info (device loop0): enabling ssd optimizations
[  134.854906][ T6433] BTRFS info (device loop0): auto enabling async discard
[  135.590300][ T5773] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  138.274896][    C1] sched: RT throttling activated
[  138.709648][ T6492] Invalid argument reading file caps for ./file0
[  139.566523][ T6512] ip6_vti0 speed is unknown, defaulting to 1000
[  141.389903][ T6525] infiniband syz1: set down
[  142.172708][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  142.240538][ T6525] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  142.980172][ T6525] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  142.999782][ T6525] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.019050][ T6525] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.029129][ T6525] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  143.201020][ T6544] netlink: 24 bytes leftover after parsing attributes in process `syz.2.221'.
[  143.265744][ T6556] netlink: 'syz.0.225': attribute type 1 has an invalid length.
[  143.392954][ T6557] 8021q: adding VLAN 0 to HW filter on device bond2
[  143.409541][ T6557] bond1: (slave bond2): making interface the new active one
[  143.421570][ T6557] bond1: (slave bond2): Enslaving as an active interface with an up link
[  143.498271][ T6558] bond1: (slave gretap1): Enslaving as a backup interface with an up link
[  143.585022][ T6559] netlink: 28 bytes leftover after parsing attributes in process `syz.0.225'.
[  143.613294][ T6559] 8021q: adding VLAN 0 to HW filter on device bond1
[  143.631168][ T6571] netlink: 36 bytes leftover after parsing attributes in process `syz.1.228'.
[  143.872027][ T6577] loop1: detected capacity change from 0 to 512
[  143.895416][ T6575] netlink: 'syz.2.230': attribute type 1 has an invalid length.
[  143.913352][ T6577] FAT-fs (loop1): Directory bread(block 199916) failed
[  144.066463][ T6577] FAT-fs (loop1): Directory bread(block 199917) failed
[  144.082544][ T6577] FAT-fs (loop1): Directory bread(block 199918) failed
[  144.090165][ T6577] FAT-fs (loop1): Directory bread(block 199919) failed
[  144.109923][ T6577] FAT-fs (loop1): Directory bread(block 199920) failed
[  144.134687][ T6577] FAT-fs (loop1): Directory bread(block 199921) failed
[  144.157591][ T6577] FAT-fs (loop1): Directory bread(block 199922) failed
[  144.192798][ T6577] FAT-fs (loop1): Directory bread(block 199923) failed
[  144.416797][ T6582] bond1: entered promiscuous mode
[  144.425297][ T6582] bond1: entered allmulticast mode
[  144.449357][ T6582] 8021q: adding VLAN 0 to HW filter on device bond1
[  144.608473][ T6577] FAT-fs (loop1): FAT read failed (blocknr 128)
[  145.838587][ T6538] libceph: connect (1)[c::]:6789 error -101
[  145.852760][ T6538] libceph: mon0 (1)[c::]:6789 connect error
[  145.983952][ T6610] ceph: No mds server is up or the cluster is laggy
[  146.266679][ T6621] xt_socket: unknown flags 0x4c
[  148.480032][ T6639] (null): rxe_set_mtu: Set mtu to 1024
[  148.500605][ T6639] rdma_rxe: rxe_newlink: failed to add ip6_vti0
[  149.000545][ T5834] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  149.195024][ T5834] usb 4-1: Using ep0 maxpacket: 16
[  149.210060][ T5834] usb 4-1: unable to get BOS descriptor or descriptor too short
[  149.236389][ T5834] usb 4-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  149.268873][ T5834] usb 4-1: config 8 has 0 interfaces, different from the descriptor's value: 1
[  149.293802][ T5834] usb 4-1: New USB device found, idVendor=0424, idProduct=c001, bcdDevice=e2.0c
[  149.333966][ T5834] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  149.342505][ T5834] usb 4-1: Product: syz
[  149.352463][ T5834] usb 4-1: Manufacturer: syz
[  149.363652][ T5834] usb 4-1: SerialNumber: syz
[  149.600542][ T5834] usb 4-1: USB disconnect, device number 2
[  149.748099][ T6652] netlink: 24 bytes leftover after parsing attributes in process `syz.2.257'.
[  149.786418][ T5777] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  149.796087][ T5777] Bluetooth: hci0: Injecting HCI hardware error event
[  149.805475][ T5777] Bluetooth: hci0: hardware error 0x00
[  149.880358][ T6654] fuse: Bad value for 'fd'
[  150.713913][ T6665] overlayfs: failed to resolve './file2': -2
[  151.954595][ T5777] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  153.377071][ T6689] netlink: 8 bytes leftover after parsing attributes in process `syz.3.268'.
[  153.665041][ T6691] netlink: 'syz.2.270': attribute type 10 has an invalid length.
[  153.756806][ T6691] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  155.447429][ T6721] ip_vti0: Master is either lo or non-ether device
[  155.768875][ T6727] IPVS: Scheduler module ip_vs_ not found
[  162.703590][ T6803] loop0: detected capacity change from 0 to 4096
[  162.720831][ T6803] EXT4-fs: Ignoring removed oldalloc option
[  162.752296][ T6803] EXT4-fs: inline encryption not supported
[  162.766679][ T6807] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  162.793596][ T6803] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=8842c018, mo2=0003]
[  162.837520][ T6807] overlayfs: failed to look up (tracing) for ino (-66)
[  162.862672][ T6803] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.192982][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.294973][ T6820] bridge1: entered promiscuous mode
[  163.316552][ T6820] bridge1: entered allmulticast mode
[  163.352120][ T6820] team0: Port device bridge1 added
[  163.407400][ T6827] netlink: 'syz.0.314': attribute type 1 has an invalid length.
[  163.581548][ T6827] bond3: entered promiscuous mode
[  163.599368][ T6827] bond3: entered allmulticast mode
[  163.654944][ T6825] bridge0: port 3(team0) entered blocking state
[  163.689598][ T6825] bridge0: port 3(team0) entered disabled state
[  163.723402][ T6825] team0: entered allmulticast mode
[  163.737511][ T6825] team_slave_1: entered allmulticast mode
[  163.762292][ T6825] team0: entered promiscuous mode
[  163.776148][ T6825] team_slave_1: entered promiscuous mode
[  163.798880][ T6825] bridge0: port 3(team0) entered blocking state
[  163.805719][ T6825] bridge0: port 3(team0) entered forwarding state
[  163.830329][ T6830] netlink: 8 bytes leftover after parsing attributes in process `syz.0.314'.
[  163.860004][ T6830] bridge1: the hash_elasticity option has been deprecated and is always 16
[  163.875409][ T6830] bond3: (slave bridge1): making interface the new active one
[  163.883108][ T6830] bridge1: entered promiscuous mode
[  163.889163][ T6830] bridge1: entered allmulticast mode
[  163.918710][ T6830] bond3: (slave bridge1): Enslaving as an active interface with an up link
[  163.971961][ T6820] geneve2: entered promiscuous mode
[  163.991490][ T6820] geneve2: entered allmulticast mode
[  164.105530][ T6832] netlink: 28 bytes leftover after parsing attributes in process `syz.0.314'.
[  164.123539][ T6832] bond3: left promiscuous mode
[  164.130990][ T6832] bridge1: left promiscuous mode
[  164.142186][ T6832] bond3: left allmulticast mode
[  164.147614][ T6832] bridge1: left allmulticast mode
[  164.154226][ T6832] 8021q: adding VLAN 0 to HW filter on device bond3
[  164.464775][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  164.464793][   T28] audit: type=1326 audit(2000000010.780:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.554141][   T28] audit: type=1326 audit(2000000010.780:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.601930][   T28] audit: type=1326 audit(2000000010.780:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.670812][   T28] audit: type=1326 audit(2000000010.830:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.734930][   T28] audit: type=1326 audit(2000000010.830:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.794926][   T28] audit: type=1326 audit(2000000010.830:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.871879][   T28] audit: type=1326 audit(2000000010.830:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.945667][   T28] audit: type=1326 audit(2000000010.830:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  164.991605][   T28] audit: type=1326 audit(2000000010.830:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=128 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  165.104938][   T28] audit: type=1326 audit(2000000010.900:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6844 comm="syz.2.319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  167.528231][ T6877] loop0: detected capacity change from 0 to 1024
[  167.556433][ T6877] EXT4-fs: inline encryption not supported
[  167.593860][ T6877] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  167.763793][ T6877] EXT4-fs error (device loop0): ext4_free_blocks:6690: comm syz.0.330: Freeing blocks not in datazone - block = 0, count = 4096
[  168.114021][ T6877] EXT4-fs (loop0): Remounting filesystem read-only
[  168.127841][ T6877] EXT4-fs (loop0): 1 orphan inode deleted
[  168.139065][ T6877] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  168.589482][ T2994] EXT4-fs (loop0): Quota write (off=2048, len=1024) cancelled because transaction is not started
[  168.630872][ T2994] EXT4-fs (loop0): Quota write (off=2048, len=1024) cancelled because transaction is not started
[  168.836304][ T2994] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  168.936899][ T6877] mmap: syz.0.330 (6877): VmData 49156096 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  169.035780][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.899457][ T6883] mmap: syz.2.332 (6883) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  169.954213][ T6903] netlink: 24 bytes leftover after parsing attributes in process `syz.0.336'.
[  170.668332][ T6909] netlink: 'syz.0.338': attribute type 12 has an invalid length.
[  170.982695][ T6912] netlink: 'syz.1.335': attribute type 1 has an invalid length.
[  171.182108][ T6912] bond1: entered promiscuous mode
[  171.195469][ T6912] bond1: entered allmulticast mode
[  171.226076][ T6914] netlink: 8 bytes leftover after parsing attributes in process `syz.1.335'.
[  171.302155][ T6914] bridge1: the hash_elasticity option has been deprecated and is always 16
[  171.348169][ T6914] bond1: (slave bridge1): making interface the new active one
[  171.404944][ T6914] bridge1: entered promiscuous mode
[  171.441987][ T6914] bridge1: entered allmulticast mode
[  171.494705][ T6914] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  171.587230][ T6915] netlink: 28 bytes leftover after parsing attributes in process `syz.1.335'.
[  171.694959][ T6915] bond1: left promiscuous mode
[  171.742457][ T6915] bridge1: left promiscuous mode
[  171.774739][ T6920] overlayfs: failed to clone lowerpath
[  171.797023][ T6915] bond1: left allmulticast mode
[  171.843942][ T6915] bridge1: left allmulticast mode
[  171.925375][ T6915] 8021q: adding VLAN 0 to HW filter on device bond1
[  177.154669][ T6987] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -11243, delta: 1
[  177.175624][ T6987] ref_ctr increment failed for inode: 0x19d offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888031c92600
[  177.223106][ T6985] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -11243, delta: -1
[  177.244237][ T6985] ref_ctr decrement failed for inode: 0x19d offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff888031c92600
[  178.215490][ T7002] netlink: 24 bytes leftover after parsing attributes in process `syz.1.365'.
[  183.040652][ T7070] loop0: detected capacity change from 0 to 128
[  183.207450][ T7070] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  183.227815][ T7070] ext4 filesystem being mounted at /98/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  183.522895][ T5773] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  183.992781][ T7085] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[  186.217862][ T7109] loop1: detected capacity change from 0 to 512
[  186.348632][ T7109] EXT4-fs (loop1): ext4_check_descriptors: Inode table for group 0 not in group (block 0)!
[  186.443833][ T7109] EXT4-fs (loop1): group descriptors corrupted!
[  187.556631][ T7143] netlink: 24 bytes leftover after parsing attributes in process `syz.3.403'.
[  188.992729][ T7171] netlink: 36 bytes leftover after parsing attributes in process `syz.0.419'.
[  190.047741][ T7176] loop0: detected capacity change from 0 to 256
[  190.977543][ T7176] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d)
[  191.057572][   T28] kauditd_printk_skb: 54 callbacks suppressed
[  191.057584][   T28] audit: type=1800 audit(2000000037.380:83): pid=7176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.414" name="file1" dev="loop0" ino=1048592 res=0 errno=0
[  192.023809][ T7189] netlink: 'syz.2.418': attribute type 1 has an invalid length.
[  192.175963][ T7189] 8021q: adding VLAN 0 to HW filter on device bond2
[  192.208606][ T7191] bond2: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms
[  192.287287][ T7191] bond2: entered allmulticast mode
[  192.373291][ T7194] bond2: (slave ip6gretap1): Enslaving as an active interface with an up link
[  194.513413][ T7228] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.521452][ T7228] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.818613][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  194.826052][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  197.309019][ T7228] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  197.423311][ T7228] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  197.545970][ T7261] loop1: detected capacity change from 0 to 1024
[  197.695448][   T28] audit: type=1800 audit(2000000044.020:84): pid=7261 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.439" name="bus" dev="loop1" ino=26 res=0 errno=0
[  197.782912][  T139] hfsplus: b-tree write err: -5, ino 25
[  197.802594][  T139] hfsplus: b-tree write err: -5, ino 4
[  197.820850][  T139] hfsplus: b-tree write err: -5, ino 2
[  197.840775][  T139] hfsplus: b-tree write err: -5, ino 26
[  197.978868][ T7269] syz.1.439: attempt to access beyond end of device
[  197.978868][ T7269] loop1: rw=34817, sector=996, nr_sectors = 40 limit=1024
[  198.044444][ T1101] hfsplus: b-tree write err: -5, ino 26
[  198.067992][ T1101] hfsplus: b-tree write err: -5, ino 27
[  198.073883][ T1101] hfsplus: b-tree write err: -5, ino 4
[  198.093217][ T1101] hfsplus: b-tree write err: -5, ino 2
[  198.114456][ T1101] hfsplus: b-tree write err: -5, ino 26
[  198.203889][ T7228] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.213251][ T7228] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.224609][ T7228] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.234945][ T7228] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  198.581152][ T7257] ip6_vti0 speed is unknown, defaulting to 1000
[  200.373324][ T7302] netlink: 'syz.2.450': attribute type 39 has an invalid length.
[  201.327597][ T7317] netlink: 4 bytes leftover after parsing attributes in process `syz.3.457'.
[  201.566603][ T7323] vlan0: entered promiscuous mode
[  201.586061][ T7323] bridge0: entered promiscuous mode
[  201.620775][ T7325] netlink: 4 bytes leftover after parsing attributes in process `syz.0.458'.
[  201.631853][ T7323] vlan0: entered allmulticast mode
[  201.642205][ T7323] bridge0: entered allmulticast mode
[  201.807219][ T7323] bridge_slave_0: left allmulticast mode
[  201.812986][ T7323] bridge_slave_0: left promiscuous mode
[  201.821500][ T7323] bridge0: port 1(bridge_slave_0) entered disabled state
[  201.868198][ T7323] bridge_slave_1: left allmulticast mode
[  201.874081][ T7323] bridge_slave_1: left promiscuous mode
[  201.881941][ T7323] bridge0: port 2(bridge_slave_1) entered disabled state
[  201.908516][ T7323] bond0: (slave bond_slave_0): Releasing backup interface
[  201.933589][ T7323] bond0: (slave bond_slave_1): Releasing backup interface
[  202.086710][ T7323] team0: Port device team_slave_0 removed
[  202.133407][ T7323] team0: Port device team_slave_1 removed
[  202.164517][ T7323] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  202.184993][ T7323] batman_adv: batadv0: Removing interface: batadv_slave_0
[  202.214035][ T7323] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  202.233060][ T7323] batman_adv: batadv0: Removing interface: batadv_slave_1
[  202.274660][ T7323] bond1: (slave bond2): Releasing backup interface
[  202.281891][ T7323] bond1: (slave bond2): the permanent HWaddr of slave - de:6d:92:73:cf:0a - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  202.305851][ T7323] bond1: (slave gretap1): making interface the new active one
[  202.339362][ T7323] bond1: (slave gretap1): Releasing backup interface
[  202.381348][ T7323] bond3: (slave bridge1): Releasing active interface
[  202.469420][ T7321] ip6_vti0 speed is unknown, defaulting to 1000
[  203.719639][ T7331] netlink: 4 bytes leftover after parsing attributes in process `syz.2.461'.
[  203.772246][ T7331] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  203.782203][ T7331] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  203.791385][ T7331] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  203.800195][ T7331] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  203.821147][ T7331] netlink: 4 bytes leftover after parsing attributes in process `syz.2.461'.
[  203.832133][ T7323] syz.0.458 (7323) used greatest stack depth: 17456 bytes left
[  204.368881][ T7342] x_tables: duplicate underflow at hook 2
[  205.367080][ T7351] netlink: 8 bytes leftover after parsing attributes in process `syz.1.467'.
[  206.994150][ T7377] netlink: 4 bytes leftover after parsing attributes in process `syz.3.478'.
[  207.020669][ T7377] netlink: 12 bytes leftover after parsing attributes in process `syz.3.478'.
[  207.091007][ T7381] syz_tun: entered allmulticast mode
[  207.105699][ T7381] netlink: 4 bytes leftover after parsing attributes in process `syz.0.480'.
[  207.167028][ T7381] syz_tun (unregistering): left allmulticast mode
[  208.997584][ T7411] syz_tun: entered allmulticast mode
[  209.027118][ T7411] netlink: 4 bytes leftover after parsing attributes in process `syz.1.491'.
[  209.066785][ T7411] syz_tun (unregistering): left allmulticast mode
[  209.075110][    T9] syz1: rxe_query_port: returned err = -19
[  209.099826][   T59] smc: removing ib device syz1
[  212.206512][ T5768] Bluetooth: hci3: command 0x0406 tx timeout
[  212.212909][ T5780] Bluetooth: hci1: command 0x0406 tx timeout
[  212.219327][ T5768] Bluetooth: hci2: command 0x0406 tx timeout
[  213.576149][ T7469] ip6_vti0 speed is unknown, defaulting to 1000
[  217.484313][ T7515] xt_TCPMSS: Only works on TCP SYN packets
[  219.301858][ T5807] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  219.484951][ T5807] usb 1-1: Using ep0 maxpacket: 16
[  219.496918][ T5807] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  219.525042][ T5807] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  219.557071][ T5807] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  219.574859][ T5807] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.594845][ T5807] usb 1-1: Product: syz
[  219.599097][ T5807] usb 1-1: Manufacturer: syz
[  219.603796][ T5807] usb 1-1: SerialNumber: syz
[  219.975197][ T7533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.526'.
[  220.000373][ T7533] netlink: 8 bytes leftover after parsing attributes in process `syz.0.526'.
[  220.728898][ T5807] usb 1-1: skipping empty audio interface (v1)
[  220.788966][ T5807] snd-usb-audio: probe of 1-1:1.0 failed with error -22
[  220.800158][ T5807] usb 1-1: USB disconnect, device number 3
[  220.838277][ T5782] udevd[5782]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  222.442800][ T7584] netlink: 8 bytes leftover after parsing attributes in process `syz.2.545'.
[  222.850520][ T7592] netlink: 'syz.2.549': attribute type 1 has an invalid length.
[  222.964700][ T7592] bond3: (slave vxcan3): The slave device specified does not support setting the MAC address
[  222.977828][ T7592] bond3: (slave vxcan3): Setting fail_over_mac to active for active-backup mode
[  222.993823][ T7592] bond3: (slave vxcan3): making interface the new active one
[  223.003604][ T7592] bond3: (slave vxcan3): Enslaving as an active interface with an up link
[  223.023706][ T7600] netlink: 4 bytes leftover after parsing attributes in process `syz.2.549'.
[  223.048959][ T7600] bond3 (unregistering): (slave vxcan3): Releasing backup interface
[  223.081062][ T7600] bond3 (unregistering): Released all slaves
[  223.365970][ T7609] capability: warning: `syz.2.554' uses deprecated v2 capabilities in a way that may be insecure
[  224.039721][ T7625] netlink: 12 bytes leftover after parsing attributes in process `syz.0.558'.
[  224.422342][ T7631] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  227.827154][   T28] audit: type=1804 audit(2000000074.140:85): pid=7657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.570" name="file0" dev="ramfs" ino=13465 res=1 errno=0
[  228.306417][ T7665] loop0: detected capacity change from 0 to 2048
[  229.011304][ T7685] syzkaller0: entered promiscuous mode
[  229.027593][ T7685] syzkaller0: entered allmulticast mode
[  229.654908][    T9] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  229.844934][    T9] usb 1-1: Using ep0 maxpacket: 32
[  229.863130][    T9] usb 1-1: config 0 has an invalid interface number: 184 but max is 0
[  230.042175][    T9] usb 1-1: config 0 has no interface number 0
[  230.070052][    T9] usb 1-1: config 0 interface 184 has no altsetting 0
[  230.122881][    T9] usb 1-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  230.168701][    T9] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  230.202940][    T9] usb 1-1: Product: syz
[  230.220921][    T9] usb 1-1: Manufacturer: syz
[  230.240735][    T9] usb 1-1: SerialNumber: syz
[  230.286733][    T9] usb 1-1: config 0 descriptor??
[  230.368517][ T7700] ip6_vti0 speed is unknown, defaulting to 1000
[  230.396148][    T9] smsc75xx v1.0.0
[  231.009876][    T9] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -32
[  231.036129][    T9] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  231.212866][   T28] audit: type=1326 audit(2000000077.530:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7723 comm="syz.3.595" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb9b7f9c799 code=0x0
[  234.240107][    T9] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000118: -71
[  234.251709][    T9] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to write RX_ADDRH: -71
[  234.262273][    T9] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): Failed to set mac address
[  234.272866][    T9] smsc75xx 1-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[  234.283720][    T9] smsc75xx: probe of 1-1:0.184 failed with error -71
[  234.296936][    T9] usb 1-1: USB disconnect, device number 4
[  235.626541][ T7768] batadv_slave_0: entered promiscuous mode
[  235.639382][ T7768] netlink: 4 bytes leftover after parsing attributes in process `syz.3.610'.
[  235.668545][ T7768] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  235.912077][ T7768] batadv_slave_0 (unregistering): left promiscuous mode
[  235.930867][ T7768] batman_adv: batadv0: Removing interface: batadv_slave_0
[  237.758950][ T7786] loop0: detected capacity change from 0 to 128
[  237.825115][ T7786] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  238.061415][ T7786] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  238.078429][ T7786] ext2 filesystem being mounted at /151/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.332477][ T5773] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  238.645319][ T7800] loop1: detected capacity change from 0 to 128
[  239.623571][   T48] kworker/u4:3: attempt to access beyond end of device
[  239.623571][   T48] loop1: rw=1, sector=145, nr_sectors = 896 limit=128
[  240.444947][ T5770] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  240.892958][ T5770] usb 2-1: Using ep0 maxpacket: 16
[  240.903014][ T5770] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  240.913867][ T5770] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  240.928938][ T5770] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  240.939182][ T5770] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  241.769732][ T7831] ip6_vti0 speed is unknown, defaulting to 1000
[  243.406716][ T5770] usb 2-1: config 0 descriptor??
[  243.516225][ T5770] usb 2-1: can't set config #0, error -71
[  243.575970][ T5770] usb 2-1: USB disconnect, device number 2
[  243.968727][ T7848] netlink: 'syz.1.638': attribute type 1 has an invalid length.
[  244.065108][ T6537] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  244.080236][ T7848] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 20004 - 0
[  244.096349][ T7848] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 20004 - 0
[  244.111549][ T7848] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 20004 - 0
[  244.121128][ T7848] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 20004 - 0
[  244.133380][ T7848] bond2: (slave geneve2): making interface the new active one
[  244.142371][ T7848] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  244.262780][ T6537] usb 1-1: config 0 has no interfaces?
[  244.271454][ T6537] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  244.300760][ T6537] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  244.388379][ T7856] Invalid ELF header magic: != ELF
[  244.405610][ T7851] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.639'.
[  244.528630][ T6537] usb 1-1: config 0 descriptor??
[  244.781409][ T6181] usb 1-1: USB disconnect, device number 5
[  246.303991][ T7869] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  250.338673][ T7874] syz.0.644: vmalloc error: size 16777216, failed to allocated page array size 32768, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=syz0,mems_allowed=0-1
[  250.358501][ T7874] CPU: 0 PID: 7874 Comm: syz.0.644 Not tainted syzkaller #0
[  250.365861][ T7874] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  250.376165][ T7874] Call Trace:
[  250.379505][ T7874]  <TASK>
[  250.382475][ T7874]  dump_stack_lvl+0x18c/0x250
[  250.387358][ T7874]  ? show_regs_print_info+0x20/0x20
[  250.392634][ T7874]  ? load_image+0x400/0x400
[  250.397683][ T7874]  ? cpuset_print_current_mems_allowed+0x1f/0x360
[  250.404163][ T7874]  ? cpuset_print_current_mems_allowed+0x2e7/0x360
[  250.410828][ T7874]  warn_alloc+0x246/0x340
[  250.415335][ T7874]  ? zone_watermark_ok_safe+0x230/0x230
[  250.420976][ T7874]  ? _raw_spin_unlock+0x28/0x40
[  250.425923][ T7874]  __vmalloc_node_range+0x662/0x1330
[  250.431319][ T7874]  ? zone_statistics+0x170/0x170
[  250.436360][ T7874]  ? free_vm_area+0x50/0x50
[  250.441471][ T7874]  ? packet_set_ring+0x720/0x23f0
[  250.447264][ T7874]  vzalloc+0x79/0x90
[  250.451247][ T7874]  ? packet_set_ring+0x720/0x23f0
[  250.456829][ T7874]  packet_set_ring+0x720/0x23f0
[  250.461800][ T7874]  ? packet_mmap+0x510/0x510
[  250.466562][ T7874]  ? __lock_acquire+0x7d40/0x7d40
[  250.471922][ T7874]  ? __might_fault+0xaa/0x120
[  250.476999][ T7874]  ? __might_fault+0xc6/0x120
[  250.481732][ T7874]  ? __might_fault+0xaa/0x120
[  250.486738][ T7874]  ? _copy_from_user+0xa5/0xe0
[  250.491643][ T7874]  packet_setsockopt+0xdb0/0x1500
[  250.496775][ T7874]  ? packet_ioctl+0x340/0x340
[  250.501526][ T7874]  ? aa_sk_perm+0x83c/0x970
[  250.506374][ T7874]  ? __fget_files+0x28/0x4b0
[  250.511519][ T7874]  ? aa_af_perm+0x330/0x330
[  250.516459][ T7874]  ? __fget_files+0x28/0x4b0
[  250.521350][ T7874]  ? __fget_files+0x28/0x4b0
[  250.526707][ T7874]  ? aa_sock_opt_perm+0x74/0x100
[  250.531899][ T7874]  ? bpf_lsm_socket_setsockopt+0x9/0x10
[  250.537524][ T7874]  ? security_socket_setsockopt+0x7e/0xa0
[  250.543322][ T7874]  ? packet_ioctl+0x340/0x340
[  250.548286][ T7874]  do_sock_setsockopt+0x175/0x1a0
[  250.553374][ T7874]  ? __fdget+0x180/0x210
[  250.557767][ T7874]  __x64_sys_setsockopt+0x182/0x200
[  250.563019][ T7874]  do_syscall_64+0x55/0xa0
[  250.567796][ T7874]  ? clear_bhb_loop+0x40/0x90
[  250.572527][ T7874]  ? clear_bhb_loop+0x40/0x90
[  250.577269][ T7874]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  250.583569][ T7874] RIP: 0033:0x7fc21679c799
[  250.588042][ T7874] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  250.607813][ T7874] RSP: 002b:00007fc2149f6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[  250.616311][ T7874] RAX: ffffffffffffffda RBX: 00007fc216a16180 RCX: 00007fc21679c799
[  250.624430][ T7874] RDX: 0000000000000005 RSI: 0000000000000107 RDI: 0000000000000005
[  250.632446][ T7874] RBP: 00007fc216832bd9 R08: 000000000000001c R09: 0000000000000000
[  250.640503][ T7874] R10: 00002000000000c0 R11: 0000000000000246 R12: 0000000000000000
[  250.648885][ T7874] R13: 00007fc216a16218 R14: 00007fc216a16180 R15: 00007ffd176a3538
[  250.657033][ T7874]  </TASK>
[  250.660851][ T7874] Mem-Info:
[  250.664867][ T7874] active_anon:25190 inactive_anon:0 isolated_anon:0
[  250.664867][ T7874]  active_file:15344 inactive_file:40313 isolated_file:0
[  250.664867][ T7874]  unevictable:20596 dirty:273 writeback:0
[  250.664867][ T7874]  slab_reclaimable:10665 slab_unreclaimable:94529
[  250.664867][ T7874]  mapped:28541 shmem:21206 pagetables:631
[  250.664867][ T7874]  sec_pagetables:0 bounce:0
[  250.664867][ T7874]  kernel_misc_reclaimable:0
[  250.664867][ T7874]  free:1306553 free_pcp:8695 free_cma:0
[  250.711767][ T7874] Node 0 active_anon:100760kB inactive_anon:0kB active_file:61352kB inactive_file:161040kB unevictable:80848kB isolated(anon):0kB isolated(file):0kB mapped:114128kB dirty:1088kB writeback:0kB shmem:83288kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11352kB pagetables:2524kB sec_pagetables:0kB all_unreclaimable? no
[  250.745048][ T7874] Node 1 active_anon:0kB inactive_anon:0kB active_file:24kB inactive_file:212kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:36kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  250.775939][ T7874] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  250.803640][ T7874] lowmem_reserve[]: 0 2521 2522 2522 2522
[  250.809780][ T7874] Node 0 DMA32 free:1314312kB boost:0kB min:34644kB low:43304kB high:51964kB reserved_highatomic:0KB active_anon:100720kB inactive_anon:0kB active_file:61352kB inactive_file:160216kB unevictable:80848kB writepending:1088kB present:3129332kB managed:2586964kB mlocked:0kB bounce:0kB free_pcp:15388kB local_pcp:7148kB free_cma:0kB
[  250.841551][ T7874] lowmem_reserve[]: 0 0 0 0 0
[  250.846375][ T7874] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:824kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  250.873422][ T7874] lowmem_reserve[]: 0 0 0 0 0
[  250.878276][ T7874] Node 1 Normal free:3896532kB boost:0kB min:55244kB low:69052kB high:82860kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:24kB inactive_file:212kB unevictable:1536kB writepending:4kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:19392kB local_pcp:9312kB free_cma:0kB
[  250.908059][ T7874] lowmem_reserve[]: 0 0 0 0 0
[  250.912931][ T7874] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  250.925849][ T7874] Node 0 DMA32: 798*4kB (UM) 456*8kB (UM) 347*16kB (UME) 97*32kB (UME) 62*64kB (UME) 38*128kB (UME) 41*256kB (UME) 23*512kB (UM) 18*1024kB (UME) 8*2048kB (M) 301*4096kB (UM) = 1314312kB
[  250.944526][ T7874] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  250.956965][ T7874] Node 1 Normal: 5*4kB (ME) 24*8kB (UME) 20*16kB (UME) 110*32kB (UME) 30*64kB (UME) 9*128kB (UME) 3*256kB (UM) 5*512kB (UME) 1*1024kB (E) 3*2048kB (UME) 947*4096kB (M) = 3896532kB
[  250.975599][ T7874] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  250.985303][ T7874] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  250.994728][ T7874] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  251.004530][ T7874] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[  251.013964][ T7874] 96690 total pagecache pages
[  251.018786][ T7874] 0 pages in swap cache
[  251.023075][ T7874] Free swap  = 124400kB
[  251.027411][ T7874] Total swap = 124996kB
[  251.031617][ T7874] 2097051 pages RAM
[  251.035554][ T7874] 0 pages HighMem/MovableOnly
[  251.040280][ T7874] 416924 pages reserved
[  251.044472][ T7874] 0 pages cma reserved
[  253.443139][ T7910] netlink: 41 bytes leftover after parsing attributes in process `syz.3.655'.
[  253.509482][ T7915] netlink: 12 bytes leftover after parsing attributes in process `syz.2.656'.
[  254.131179][ T7915] bridge2: port 1(veth9) entered blocking state
[  254.221801][ T7915] bridge2: port 1(veth9) entered disabled state
[  254.306116][ T7915] veth9: entered allmulticast mode
[  254.406658][ T7915] veth9: entered promiscuous mode
[  254.549828][ T6181] IPVS: starting estimator thread 0...
[  254.572383][ T7926] IPVS: rr: FWM 3 0x00000003 - no destination available
[  254.580906][ T7921] bridge2: port 2(veth11) entered blocking state
[  254.644276][ T7921] bridge2: port 2(veth11) entered disabled state
[  254.665605][ T7928] IPVS: using max 19 ests per chain, 45600 per kthread
[  254.680868][ T7921] veth11: entered allmulticast mode
[  254.701539][ T7921] veth11: entered promiscuous mode
[  254.904651][ T7931] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.199603][ T7931] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.747318][ T7931] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  256.215730][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  256.222439][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  256.308506][ T7931] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  257.057360][ T7956] UBIFS error (pid: 7956): cannot open "ubifs", error -22
[  257.532497][ T7931] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  257.596914][ T7931] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  257.640021][ T7931] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  257.657044][ T7960] netlink: 'syz.0.668': attribute type 3 has an invalid length.
[  257.707955][ T7960] netlink: 'syz.0.668': attribute type 3 has an invalid length.
[  257.850921][ T7931] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  257.918576][ T7965] netlink: 12 bytes leftover after parsing attributes in process `syz.2.669'.
[  258.039363][ T7965] netlink: 'syz.2.669': attribute type 5 has an invalid length.
[  258.055535][ T7965] netlink: 4 bytes leftover after parsing attributes in process `syz.2.669'.
[  258.354206][ T7973] netlink: 20 bytes leftover after parsing attributes in process `syz.2.673'.
[  258.472348][ T7973] netlink: 16 bytes leftover after parsing attributes in process `syz.2.673'.
[  261.484681][ T7997] netlink: 4 bytes leftover after parsing attributes in process `syz.3.680'.
[  261.824347][ T7999] netlink: 12 bytes leftover after parsing attributes in process `syz.0.681'.
[  261.986472][ T7999] bond4: (slave vcan1): refused to change device type
[  262.984032][ T8011] bond5: entered allmulticast mode
[  263.000204][ T8012] netlink: 4 bytes leftover after parsing attributes in process `syz.0.685'.
[  263.053744][ T8012] bridge0: entered allmulticast mode
[  263.072331][ T8012] bond5: (slave bridge0): Enslaving as an active interface with an up link
[  263.099699][ T8008] netlink: 4 bytes leftover after parsing attributes in process `syz.2.684'.
[  263.156894][ T8008] batman_adv: batadv0: Removing interface: batadv_slave_1
[  263.217056][ T8015] netlink: 4 bytes leftover after parsing attributes in process `syz.0.685'.
[  263.240267][ T8015] bridge2: entered allmulticast mode
[  263.247408][ T8015] bond5: (slave bridge2): Enslaving as an active interface with a down link
[  264.358497][ T8024] ip6_vti0 speed is unknown, defaulting to 1000
[  267.250249][ T8048] vxcan2: entered allmulticast mode
[  267.565063][ T8054] netlink: 20 bytes leftover after parsing attributes in process `syz.0.694'.
[  269.152276][ T8065] 9pnet: p9_errstr2errno: server reported unknown error aaaaaaaaa
[  269.496121][ T8073] netlink: 12 bytes leftover after parsing attributes in process `syz.3.699'.
[  270.102095][ T8081] netlink: 'syz.3.699': attribute type 5 has an invalid length.
[  270.163677][ T8081] netlink: 4 bytes leftover after parsing attributes in process `syz.3.699'.
[  271.034152][ T8095] netlink: 'syz.3.708': attribute type 10 has an invalid length.
[  271.408441][ T8095] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  271.898653][ T8036] Set syz1 is full, maxelem 65536 reached
[  273.105595][ T5152] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  273.734876][ T5152] usb 1-1: Using ep0 maxpacket: 16
[  273.756398][ T5152] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  273.793217][ T5152] usb 1-1: config 0 interface 0 has no altsetting 0
[  274.529429][ T5152] usb 1-1: New USB device found, idVendor=15c2, idProduct=0041, bcdDevice=1f.20
[  274.549118][ T5152] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  274.579379][ T5152] usb 1-1: Product: syz
[  274.583863][ T5152] usb 1-1: Manufacturer: syz
[  274.609104][ T5152] usb 1-1: SerialNumber: syz
[  274.662104][ T8116] bond3: entered allmulticast mode
[  274.670454][ T5152] usb 1-1: config 0 descriptor??
[  274.699914][ T8119] netlink: 4 bytes leftover after parsing attributes in process `syz.1.714'.
[  275.043505][ T8119] bridge2: entered allmulticast mode
[  275.117138][ T8119] bond3: (slave bridge2): Enslaving as an active interface with an up link
[  275.141641][ T8121] netlink: 4 bytes leftover after parsing attributes in process `syz.1.714'.
[  275.201772][ T8121] bridge3: entered allmulticast mode
[  275.224578][ T8121] bond3: (slave bridge3): Enslaving as an active interface with a down link
[  275.305489][ T5152] usb 1-1: can't set config #0, error -71
[  276.488954][ T5152] usb 1-1: USB disconnect, device number 6
[  280.178657][ T8173] openvswitch: netlink: Message has 4 unknown bytes.
[  280.699094][ T8178] netlink: 24 bytes leftover after parsing attributes in process `syz.1.729'.
[  282.453485][ T8207] netlink: 'syz.2.743': attribute type 1 has an invalid length.
[  282.761335][ T8207] 8021q: adding VLAN 0 to HW filter on device bond3
[  283.162730][ T8209] bond3: (slave gretap1): making interface the new active one
[  283.413301][ T8209] bond3: (slave gretap1): Enslaving as an active interface with an up link
[  286.895037][ T8250] netlink: 24 bytes leftover after parsing attributes in process `syz.3.748'.
[  287.046989][ T8252] tipc: Started in network mode
[  287.065657][ T8252] tipc: Node identity ac1414aa, cluster identity 4711
[  287.073566][ T8252] tipc: Enabled bearer <udp:syz2>, priority 10
[  287.168151][ T8252] tipc: Enabled bearer <eth:team0>, priority 0
[  288.015194][   T28] audit: type=1800 audit(2000000134.320:87): pid=8254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.750" name="bus" dev="ramfs" ino=14554 res=0 errno=0
[  288.186533][ T5770] tipc: Node number set to 2886997162
[  290.753948][ T8287] ip6_vti0 speed is unknown, defaulting to 1000
[  290.818862][ T8289] netlink: 44 bytes leftover after parsing attributes in process `syz.0.759'.
[  290.835028][ T8289] netlink: 8 bytes leftover after parsing attributes in process `syz.0.759'.
[  290.852397][ T8289] netlink: 16 bytes leftover after parsing attributes in process `syz.0.759'.
[  291.584091][ T8301] sch_fq: defrate 0 ignored.
[  291.600301][ T8304] loop1: detected capacity change from 0 to 256
[  291.632604][ T8304] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6e00961, utbl_chksum : 0xe619d30d)
[  291.725645][ T8304] netlink: 12 bytes leftover after parsing attributes in process `syz.1.764'.
[  293.801710][ T8327] netlink: 12 bytes leftover after parsing attributes in process `syz.2.770'.
[  296.178950][ T8339] xt_CT: You must specify a L4 protocol and not use inversions on it
[  296.221278][ T8339] loop1: detected capacity change from 0 to 512
[  296.400615][ T8339] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  296.423212][ T8339] ext4 filesystem being mounted at /180/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  296.665609][ T8339] loop1: detected capacity change from 512 to 64
[  296.672623][ T8346] syz.1.774: attempt to access beyond end of device
[  296.672623][ T8346] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  296.739772][ T8346] EXT4-fs error (device loop1): ext4_get_inode_loc:4627: inode #18: block 34: comm syz.1.774: unable to read itable block
[  296.810336][ T8346] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: IO failure
[  296.875470][ T5152] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  296.894367][ T8346] EXT4-fs error (device loop1): ext4_dirty_inode:6124: inode #18: comm syz.1.774: mark_inode_dirty error
[  296.963678][ T8346] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  297.002476][ T8346] EXT4-fs error (device loop1): ext4_write_dquot:6929: comm syz.1.774: Failed to commit dquot type 0
[  297.049082][ T8346] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  297.084892][ T8346] EXT4-fs error (device loop1): ext4_write_dquot:6929: comm syz.1.774: Failed to commit dquot type 1
[  297.107131][ T5152] usb 2-1: config 67 has 0 interfaces, different from the descriptor's value: 1
[  297.130564][ T5152] usb 2-1: New USB device found, idVendor=1bcf, idProduct=0b40, bcdDevice=55.3d
[  297.137021][ T8346] syz.1.774: attempt to access beyond end of device
[  297.137021][ T8346] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  297.164912][ T5152] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  297.179706][ T8346] EXT4-fs error (device loop1): ext4_get_inode_loc:4627: inode #18: block 34: comm syz.1.774: unable to read itable block
[  297.268214][ T8346] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: IO failure
[  297.313583][ T8346] EXT4-fs error (device loop1): ext4_dirty_inode:6124: inode #18: comm syz.1.774: mark_inode_dirty error
[  297.354415][ T8346] syz.1.774: attempt to access beyond end of device
[  297.354415][ T8346] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  297.397666][ T8346] EXT4-fs error (device loop1): ext4_get_inode_loc:4627: inode #18: block 34: comm syz.1.774: unable to read itable block
[  297.448886][ T8346] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5920: IO failure
[  297.572031][ T8346] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  297.595406][ T8346] Quota error (device loop1): qtree_write_dquot: dquota write failed
[  297.707527][ T8346] syz.1.774: attempt to access beyond end of device
[  297.707527][ T8346] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  298.629700][ T8346] syz.1.774: attempt to access beyond end of device
[  298.629700][ T8346] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  299.489585][ T8346] syz.1.774: attempt to access beyond end of device
[  299.489585][ T8346] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  299.653265][ T5811] usb 2-1: USB disconnect, device number 3
[  299.733503][ T5769] syz-executor: attempt to access beyond end of device
[  299.733503][ T5769] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  299.881208][ T5769] syz-executor: attempt to access beyond end of device
[  299.881208][ T5769] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  299.915139][ T5769] syz-executor: attempt to access beyond end of device
[  299.915139][ T5769] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  300.062931][ T2994] kworker/u4:9: attempt to access beyond end of device
[  300.062931][ T2994] loop1: rw=12288, sector=272, nr_sectors = 8 limit=64
[  300.128058][ T5769] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  300.174249][ T8342] Buffer I/O error on dev loop1, logical block 8, lost sync page write
[  300.190795][ T1123] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  300.979325][ T1123] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  301.270304][ T1123] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  301.392882][ T1123] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  303.016144][ T5082] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  303.031256][ T5082] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  303.051774][ T5082] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  303.064174][ T5082] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  303.085712][ T5082] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  303.111099][ T5082] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  303.285616][ T8408] ip6_vti0 speed is unknown, defaulting to 1000
[  303.989868][ T8408] chnl_net:caif_netlink_parms(): no params data found
[  304.278081][ T1123] hsr_slave_0: left promiscuous mode
[  304.284665][ T1123] hsr_slave_1: left promiscuous mode
[  304.291113][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_0
[  304.310141][ T1123] batman_adv: batadv0: Removing interface: batadv_slave_1
[  304.325610][ T1123] bridge_slave_1: left allmulticast mode
[  304.331328][ T1123] bridge_slave_1: left promiscuous mode
[  304.345683][ T1123] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.362797][ T1123] bridge_slave_0: left allmulticast mode
[  304.368755][ T1123] bridge_slave_0: left promiscuous mode
[  304.374649][ T1123] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.457363][ T1123] bond3 (unregistering): (slave bridge3): Releasing backup interface
[  304.471361][ T1123] bridge3 (unregistering): left allmulticast mode
[  304.537759][ T1123] bond3 (unregistering): (slave bridge2): Releasing backup interface
[  304.551694][ T1123] bridge2 (unregistering): left allmulticast mode
[  304.622174][ T1123] bond3 (unregistering): Released all slaves
[  304.648073][ T1123] bond2 (unregistering): (slave geneve2): Releasing active interface
[  304.663500][ T1123] bond2 (unregistering): Released all slaves
[  304.713388][ T1123] bond1 (unregistering): (slave bridge1): Releasing active interface
[  304.892041][ T1123] bond1 (unregistering): Released all slaves
[  305.226832][ T5777] Bluetooth: hci1: command tx timeout
[  305.474094][ T1123] team0 (unregistering): Port device team_slave_1 removed
[  305.531553][ T1123] team0 (unregistering): Port device team_slave_0 removed
[  305.581901][ T1123] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  305.641151][ T1123] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  305.987418][ T1123] team0 (unregistering): Port device dummy0 removed
[  306.066381][ T1123] bond0 (unregistering): Released all slaves
[  306.240396][ T8408] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.260418][ T8408] bridge0: port 1(bridge_slave_0) entered disabled state
[  306.272914][ T8408] bridge_slave_0: entered allmulticast mode
[  306.282034][ T8408] bridge_slave_0: entered promiscuous mode
[  306.295206][ T8408] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.303039][ T8408] bridge0: port 2(bridge_slave_1) entered disabled state
[  306.315012][ T8408] bridge_slave_1: entered allmulticast mode
[  306.323671][ T8408] bridge_slave_1: entered promiscuous mode
[  306.369141][ T8408] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  306.399386][ T8408] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  306.475634][ T8408] team0: Port device team_slave_0 added
[  306.499947][ T8408] team0: Port device team_slave_1 added
[  306.577449][ T8408] batman_adv: batadv0: Adding interface: batadv_slave_0
[  306.584479][ T8408] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.613331][ T8408] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  306.645677][ T8408] batman_adv: batadv0: Adding interface: batadv_slave_1
[  306.652738][ T8408] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.680611][ T8408] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  306.731318][ T1123] IPVS: stop unused estimator thread 0...
[  306.801099][ T8408] hsr_slave_0: entered promiscuous mode
[  306.827780][ T8408] hsr_slave_1: entered promiscuous mode
[  306.834320][ T8408] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  306.854805][ T8408] Cannot create hsr debugfs directory
[  307.306407][ T5777] Bluetooth: hci1: command tx timeout
[  307.383879][ T8408] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  307.408976][ T8408] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  307.423483][ T8408] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  307.433985][ T8408] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  307.551999][ T8408] 8021q: adding VLAN 0 to HW filter on device bond0
[  307.583231][ T8408] 8021q: adding VLAN 0 to HW filter on device team0
[  307.603196][ T1123] bridge0: port 1(bridge_slave_0) entered blocking state
[  307.610461][ T1123] bridge0: port 1(bridge_slave_0) entered forwarding state
[  307.650194][ T1123] bridge0: port 2(bridge_slave_1) entered blocking state
[  307.657484][ T1123] bridge0: port 2(bridge_slave_1) entered forwarding state
[  308.019873][ T8408] 8021q: adding VLAN 0 to HW filter on device batadv0
[  308.390487][ T8408] veth0_vlan: entered promiscuous mode
[  308.413059][ T8408] veth1_vlan: entered promiscuous mode
[  308.470511][ T8408] veth0_macvtap: entered promiscuous mode
[  308.493742][ T8408] veth1_macvtap: entered promiscuous mode
[  308.531662][ T8408] batman_adv: batadv0: Interface activated: batadv_slave_0
[  308.548106][ T8408] batman_adv: batadv0: Interface activated: batadv_slave_1
[  308.568605][ T8408] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  308.577944][ T8408] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  308.594356][ T8408] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  308.603609][ T8408] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  308.732904][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  308.767880][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  308.815968][   T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  308.824507][   T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  309.100103][ T8495] tipc: Resetting bearer <eth:team0>
[  309.435052][ T5777] Bluetooth: hci1: command tx timeout
[  310.244438][ T8495] bond5: (slave bridge0): Releasing backup interface
[  310.254597][ T8495] bond5: (slave bridge0): the permanent HWaddr of slave - ba:26:f5:0f:7a:48 - is still in use by bond - set the HWaddr of slave to a different address to avoid conflicts
[  310.320699][ T8495] bridge0: left allmulticast mode
[  310.349779][ T8495] bond5: (slave bridge2): Releasing backup interface
[  310.368138][ T8495] bridge2: left allmulticast mode
[  310.412369][ T8503] team0: Mode changed to "loadbalance"
[  311.320287][ T8526] netlink: 12 bytes leftover after parsing attributes in process `syz.3.792'.
[  311.480734][ T5777] Bluetooth: hci1: command tx timeout
[  314.390087][ T8562] netlink: 24 bytes leftover after parsing attributes in process `syz.4.804'.
[  315.212339][ T8572] netlink: 'syz.4.806': attribute type 1 has an invalid length.
[  315.290950][ T8575] 8021q: VLANs not supported on caif0
[  317.630444][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  317.672859][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  321.990003][ T8643] netlink: 'syz.2.829': attribute type 1 has an invalid length.
[  322.215783][ T8643] 8021q: adding VLAN 0 to HW filter on device bond4
[  323.046079][ T8649] 8021q: adding VLAN 0 to HW filter on device bond4
[  323.053332][ T8649] bond4: (slave vti0): The slave device specified does not support setting the MAC address
[  323.068705][ T8649] bond4: (slave vti0): Error -95 calling set_mac_address
[  323.180514][ T8643] bond4: (slave gretap2): making interface the new active one
[  323.245897][ T8643] bond4: (slave gretap2): Enslaving as an active interface with an up link
[  323.279185][ T8665] netlink: 4 bytes leftover after parsing attributes in process `syz.0.824'.
[  323.315336][ T8665] veth0_macvtap: left promiscuous mode
[  323.884098][ T8676] ip6_vti0 speed is unknown, defaulting to 1000
[  324.305230][ T8686] tipc: Resetting bearer <eth:team0>
[  324.312339][ T8686] tipc: Resetting bearer <eth:team0>
[  324.509470][    T9] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  324.831441][    T9] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  324.882593][    T9] usb 5-1: config 0 has no interfaces?
[  324.923124][    T9] usb 5-1: New USB device found, idVendor=05d8, idProduct=810a, bcdDevice=92.b8
[  324.985011][    T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  325.049915][    T9] usb 5-1: config 0 descriptor??
[  325.463212][ T5878] usb 5-1: USB disconnect, device number 2
[  326.724091][ T8710] netlink: 8 bytes leftover after parsing attributes in process `syz.4.834'.
[  326.915668][ T8714] netlink: 8 bytes leftover after parsing attributes in process `syz.4.834'.
[  328.940979][ T8728] netlink: 8 bytes leftover after parsing attributes in process `syz.4.838'.
[  331.424009][   T28] audit: type=1326 audit(2000000177.740:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  331.543238][   T28] audit: type=1326 audit(2000000177.740:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  331.629205][   T28] audit: type=1326 audit(2000000177.740:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  331.741438][   T28] audit: type=1326 audit(2000000177.740:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  331.859404][   T28] audit: type=1326 audit(2000000177.780:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  332.024811][   T28] audit: type=1326 audit(2000000177.780:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  332.106076][   T28] audit: type=1326 audit(2000000177.780:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  332.228683][   T28] audit: type=1326 audit(2000000177.780:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7fd1a7d9c799 code=0x7ffc0000
[  332.271133][   T28] audit: type=1326 audit(2000000177.780:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7fd1a7d9c502 code=0x7ffc0000
[  332.314840][   T28] audit: type=1326 audit(2000000177.790:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8744 comm="syz.2.842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7fd1a7d5cfce code=0x7ffc0000
[  333.063419][ T8776] netlink: 4 bytes leftover after parsing attributes in process `syz.0.855'.
[  333.140386][ T8781] xt_TCPMSS: Only works on TCP SYN packets
[  333.700041][ T8776] bond0 (unregistering): Released all slaves
[  340.648315][ T8856] netlink: 12 bytes leftover after parsing attributes in process `syz.0.870'.
[  340.923639][ T8862] bridge3: port 1(veth7) entered blocking state
[  340.959399][ T8862] bridge3: port 1(veth7) entered disabled state
[  340.992829][ T8862] veth7: entered allmulticast mode
[  341.024263][ T8862] veth7: entered promiscuous mode
[  341.054335][ T8862] bridge3: port 1(veth7) entered blocking state
[  341.060901][ T8862] bridge3: port 1(veth7) entered forwarding state
[  341.109576][ T8337] bridge3: port 1(veth7) entered disabled state
[  341.155272][ T8856] bridge3: port 2(veth9) entered blocking state
[  341.161924][ T8856] bridge3: port 2(veth9) entered disabled state
[  341.174918][ T8856] veth9: entered allmulticast mode
[  341.185150][ T8856] veth9: entered promiscuous mode
[  341.191633][ T8856] bridge3: port 2(veth9) entered blocking state
[  341.198129][ T8856] bridge3: port 2(veth9) entered forwarding state
[  341.215817][   T42] bridge3: port 2(veth9) entered disabled state
[  342.371493][ T8881] xt_nat: multiple ranges no longer supported
[  343.179305][ T8890] netlink: 4 bytes leftover after parsing attributes in process `syz.4.878'.
[  343.892422][ T8909] VFS: Mount too revealing
[  344.226126][ T8923] netlink: 12 bytes leftover after parsing attributes in process `syz.4.882'.
[  344.523205][ T8923] bridge1: port 1(veth3) entered blocking state
[  344.610509][ T8933] openvswitch: netlink: Key 22 has unexpected len 2 expected 4
[  344.671767][ T8923] bridge1: port 1(veth3) entered disabled state
[  345.079177][ T8923] veth3: entered allmulticast mode
[  345.327391][ T8923] veth3: entered promiscuous mode
[  345.333895][ T8923] bridge1: port 1(veth3) entered blocking state
[  345.340504][ T8923] bridge1: port 1(veth3) entered forwarding state
[  345.406693][ T8941] fuse: Bad value for 'fd'
[  345.452141][ T8929] bridge1: port 2(veth5) entered blocking state
[  345.462666][ T8929] bridge1: port 2(veth5) entered disabled state
[  345.473215][ T8929] veth5: entered allmulticast mode
[  345.481785][ T8929] veth5: entered promiscuous mode
[  345.489068][ T8929] bridge1: port 2(veth5) entered blocking state
[  345.495565][ T8929] bridge1: port 2(veth5) entered forwarding state
[  345.547137][ T8337] bridge1: port 1(veth3) entered disabled state
[  345.596138][ T8337] bridge1: port 2(veth5) entered disabled state
[  346.048858][ T8961] Cannot find add_set index 0 as target
[  347.811194][ T8979] loop0: detected capacity change from 0 to 2048
[  347.933721][ T8979] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  348.327117][ T8977] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1229: group 0, block bitmap and bg descriptor inconsistent: 25 vs 281 free clusters
[  348.409818][ T8977] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 3 with error 28
[  348.505149][ T8977] EXT4-fs (loop0): This should not happen!! Data will be lost
[  348.505149][ T8977] 
[  348.534803][ T8977] EXT4-fs (loop0): Total free blocks count 0
[  348.541061][ T8977] EXT4-fs (loop0): Free/Dirty block details
[  348.600498][ T8977] EXT4-fs (loop0): free_blocks=4096
[  348.616748][ T8977] EXT4-fs (loop0): dirty_blocks=16
[  348.652471][ T8977] EXT4-fs (loop0): Block reservation details
[  348.673238][ T8977] EXT4-fs (loop0): i_reserved_data_blocks=1
[  348.948871][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.065038][ T8997] netlink: 12 bytes leftover after parsing attributes in process `syz.2.899'.
[  349.220027][ T9001] mac80211_hwsim hwsim2 wlan0: entered allmulticast mode
[  349.269689][ T9001] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[  349.321982][ T8997] bridge6: port 1(veth13) entered blocking state
[  349.330466][ T8997] bridge6: port 1(veth13) entered disabled state
[  350.374996][ T8997] veth13: entered allmulticast mode
[  350.396455][ T8997] veth13: entered promiscuous mode
[  350.403670][ T8997] bridge6: port 1(veth13) entered blocking state
[  350.410343][ T8997] bridge6: port 1(veth13) entered forwarding state
[  350.652615][ T9011] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000000
[  350.875992][ T9004] bridge6: port 2(veth15) entered blocking state
[  351.202137][ T9004] bridge6: port 2(veth15) entered disabled state
[  351.685110][ T9004] veth15: entered allmulticast mode
[  351.692289][ T9004] veth15: entered promiscuous mode
[  351.717019][ T9004] bridge6: port 2(veth15) entered blocking state
[  351.723582][ T9004] bridge6: port 2(veth15) entered forwarding state
[  351.787431][ T9024] syz.4.904 uses obsolete (PF_INET,SOCK_PACKET)
[  351.815953][ T1123] bridge6: port 1(veth13) entered disabled state
[  351.872207][ T1123] bridge6: port 2(veth15) entered disabled state
[  353.416171][ T9045] xt_socket: unknown flags 0x50
[  356.846596][ T9071] netlink: 12 bytes leftover after parsing attributes in process `syz.4.913'.
[  357.404391][ T9078] bond1: (slave gretap0): Enslaving as an active interface with an up link
[  358.144641][ T9071] bond1 (unregistering): (slave gretap0): Releasing backup interface
[  358.181967][ T9071] bond1 (unregistering): Released all slaves
[  360.140053][   T28] kauditd_printk_skb: 19 callbacks suppressed
[  360.140069][   T28] audit: type=1326 audit(2000000206.460:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  360.218634][   T28] audit: type=1326 audit(2000000206.460:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  360.261600][   T28] audit: type=1326 audit(2000000206.460:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  361.136973][   T28] audit: type=1326 audit(2000000206.470:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  361.284775][   T28] audit: type=1326 audit(2000000206.470:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  361.347980][   T28] audit: type=1326 audit(2000000206.470:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd43d75cfce code=0x7ffc0000
[  361.417587][   T28] audit: type=1326 audit(2000000206.500:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  361.519226][   T28] audit: type=1326 audit(2000000206.500:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  361.587002][   T28] audit: type=1326 audit(2000000206.500:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  361.651071][   T28] audit: type=1326 audit(2000000206.500:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9107 comm="syz.4.924" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fd43d79c799 code=0x7ffc0000
[  362.030860][ T9141] overlayfs: failed to clone upperpath
[  362.115154][ T9146] overlayfs: failed to resolve './file1': -2
[  362.580461][ T9157] xt_ecn: cannot match TCP bits for non-tcp packets
[  365.525478][ T9186] ptrace attach of "./syz-executor exec"[9188] was attempted by "./syz-executor exec"[9186]
[  366.545058][ T9200] loop0: detected capacity change from 0 to 512
[  366.702220][ T9200] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  367.974241][ T9213] netlink: 'syz.0.951': attribute type 1 has an invalid length.
[  368.010254][ T9213] 8021q: adding VLAN 0 to HW filter on device bond0
[  368.076293][ T9213] netlink: 28 bytes leftover after parsing attributes in process `syz.0.951'.
[  368.085480][ T9213] bond0: entered promiscuous mode
[  368.090720][ T9213] bond0: entered allmulticast mode
[  368.154341][ T9213] bond0: (slave dummy0): making interface the new active one
[  368.187069][ T9213] dummy0: entered promiscuous mode
[  368.205209][ T9213] dummy0: entered allmulticast mode
[  368.236669][ T9213] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  371.178207][ T9232] loop4: detected capacity change from 0 to 4096
[  371.216655][ T9232] EXT4-fs: Ignoring removed mblk_io_submit option
[  371.268532][ T9232] EXT4-fs (loop4): Test dummy encryption mode enabled
[  371.555843][ T9232] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  372.804531][ T9259] loop0: detected capacity change from 0 to 512
[  372.812527][ T9259] EXT4-fs: Ignoring removed i_version option
[  373.139057][ T9259] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2853: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  373.153673][ T9259] EXT4-fs (loop0): 1 truncate cleaned up
[  373.160957][ T9259] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  374.277572][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.313778][ T9232] fscrypt (loop4): Error allocating 'cts(cbc(aes))' transform: -4
[  374.958452][ T8408] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  379.044539][ T9307] netlink: 'syz.3.974': attribute type 21 has an invalid length.
[  379.090412][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  379.105070][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  380.295833][ T9320] libceph: resolve '4..' (ret=-3): failed
[  382.660241][ T9349] syz2: rxe_set_mtu: Set mtu to 4096
[  383.086675][ T9360] netlink: 'syz.0.984': attribute type 27 has an invalid length.
[  383.347484][ T9360] tipc: Resetting bearer <eth:team0>
[  384.930871][ T9360] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  384.940198][ T9360] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  384.950782][ T9360] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  384.959855][ T9360] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  385.263284][ T9360] bond5: left allmulticast mode
[  385.395386][ T9360] bond0: left promiscuous mode
[  385.405662][ T9360] dummy0: left promiscuous mode
[  385.410976][ T9360] bond0: left allmulticast mode
[  385.416559][ T9360] dummy0: left allmulticast mode
[  385.436095][ T9361] netlink: 24 bytes leftover after parsing attributes in process `syz.4.986'.
[  386.146269][ T9386] netlink: 'syz.0.990': attribute type 16 has an invalid length.
[  386.154247][ T9386] netlink: 'syz.0.990': attribute type 17 has an invalid length.
[  386.250670][ T9383] x_tables: duplicate entry at hook 3
[  387.832568][ T9386] 8021q: adding VLAN 0 to HW filter on device team0
[  387.942231][ T9386] tipc: Resetting bearer <eth:team0>
[  388.136817][ T9386] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  388.354765][ T9394] netlink: 132 bytes leftover after parsing attributes in process `syz.4.994'.
[  391.642352][ T9422] bad cache= option: no%e
[  391.642352][ T9422] 
[  391.649507][ T9422] CIFS: VFS: bad cache= option: no%e
[  392.469076][ T9424] netlink: 'syz.4.1003': attribute type 9 has an invalid length.
[  393.030600][ T9431] loop4: detected capacity change from 0 to 16
[  393.174499][ T9431] erofs: (device loop4): mounted with root inode @ nid 36.
[  393.386077][ T9434] ip6_vti0 speed is unknown, defaulting to 1000
[  393.998457][ T9436] kvm: emulating exchange as write
[  399.668433][ T9478] UBIFS error (pid: 9478): cannot open "./file0", error -22
[  403.447887][ T9516] tipc: Resetting bearer <eth:team0>
[  403.588011][ T9516] bond_slave_1: entered promiscuous mode
[  404.122314][ T9516] bond_slave_1: left promiscuous mode
[  405.846529][ T9541] loop0: detected capacity change from 0 to 512
[  406.032922][ T9538] FAT-fs (loop0): error, invalid FAT chain (i_pos 51, last_block 64)
[  407.760314][ T9557] UBIFS error (pid: 9557): cannot open "./file0", error -22
[  408.680960][ T9562] netlink: 'syz.0.1040': attribute type 10 has an invalid length.
[  408.731650][ T9562] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1040'.
[  408.771131][ T9562] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  408.791328][ T9562] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  408.800324][ T9562] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  408.814133][ T9562] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  408.863439][ T9562] team0: Failed to send options change via netlink (err -105)
[  408.926316][ T9562] team0: Port device geneve0 added
[  408.949131][ T9566] debugfs: Directory 'netdev:nicvf0' with parent 'phy7' already present!
[  410.775410][ T9585] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1046'.
[  410.978280][ T6181] IPVS: starting estimator thread 0...
[  410.986555][ T9585] netlink: 63 bytes leftover after parsing attributes in process `syz.4.1046'.
[  411.088297][ T9594] IPVS: using max 18 ests per chain, 43200 per kthread
[  411.192769][ T9598] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  413.228596][ T9612] Cannot find add_set index 0 as target
[  413.256189][ T5777] Bluetooth: hci1: command 0x0405 tx timeout
[  415.289891][ T9632] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1059'.
[  415.380670][ T9632] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1059'.
[  415.409356][ T9632] veth9: entered promiscuous mode
[  415.430868][ T9632] veth9: entered allmulticast mode
[  416.069551][ T9640] netlink: zone id is out of range
[  416.078714][ T9640] netlink: zone id is out of range
[  416.084070][ T9640] netlink: zone id is out of range
[  416.091203][ T9640] netlink: zone id is out of range
[  416.111726][ T9640] netlink: zone id is out of range
[  416.143279][ T9640] netlink: zone id is out of range
[  416.266079][ T9640] netlink: zone id is out of range
[  416.271386][ T9640] netlink: zone id is out of range
[  416.279004][ T9640] netlink: zone id is out of range
[  416.306949][ T9640] netlink: zone id is out of range
[  421.037857][ T9688] loop0: detected capacity change from 0 to 4096
[  421.046580][ T9688] ext4: Unknown parameter 'hash'
[  423.280549][ T9710] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1078'.
[  424.524322][ T9723] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1083'.
[  427.856786][ T5777] Bluetooth: hci1: command 0x0405 tx timeout
[  428.358456][ T9769] loop0: detected capacity change from 0 to 128
[  428.428515][ T9769] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  428.472170][ T9769] ext4 filesystem being mounted at /274/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  428.517281][ T9775] netlink: 'syz.2.1099': attribute type 1 has an invalid length.
[  429.044687][   T12] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.503596][   T12] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.531324][ T5773] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  429.694988][   T12] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  429.720892][ T9784] netlink: 'syz.2.1103': attribute type 16 has an invalid length.
[  429.731582][ T9784] netlink: 'syz.2.1103': attribute type 17 has an invalid length.
[  429.961083][ T9790] xt_TCPMSS: Only works on TCP SYN packets
[  430.994298][   T12] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.662643][ T5777] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  433.449277][ T5777] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  434.332872][ T5777] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  434.478420][ T5777] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  434.504054][ T5777] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  434.512218][ T5777] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  434.883276][ T9816] ip6_vti0 speed is unknown, defaulting to 1000
[  436.587879][ T5777] Bluetooth: hci1: command tx timeout
[  438.362630][ T9816] chnl_net:caif_netlink_parms(): no params data found
[  438.685101][ T5777] Bluetooth: hci1: command tx timeout
[  440.596543][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  440.602931][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  440.804959][ T5777] Bluetooth: hci1: command tx timeout
[  442.446907][ T9816] bridge0: port 1(bridge_slave_0) entered blocking state
[  442.490553][ T9816] bridge0: port 1(bridge_slave_0) entered disabled state
[  442.516842][ T9816] bridge_slave_0: entered allmulticast mode
[  442.645819][ T9816] bridge_slave_0: entered promiscuous mode
[  442.824031][ T9816] bridge0: port 2(bridge_slave_1) entered blocking state
[  442.847074][ T5777] Bluetooth: hci1: command tx timeout
[  442.862145][ T9816] bridge0: port 2(bridge_slave_1) entered disabled state
[  442.906650][ T9816] bridge_slave_1: entered allmulticast mode
[  442.927169][ T9816] bridge_slave_1: entered promiscuous mode
[  442.961426][ T9915] geneve0: entered promiscuous mode
[  442.967793][ T9915] vlan0: entered promiscuous mode
[  442.973006][ T9915] team0: entered promiscuous mode
[  443.048400][   T12] veth5: left allmulticast mode
[  443.053741][   T12] veth5: left promiscuous mode
[  443.069310][   T12] bridge1: port 2(veth5) entered disabled state
[  443.099209][   T12] veth3: left allmulticast mode
[  443.104251][   T12] veth3: left promiscuous mode
[  443.113868][   T12] bridge1: port 1(veth3) entered disabled state
[  443.138036][   T12] hsr_slave_0: left promiscuous mode
[  443.144607][   T12] hsr_slave_1: left promiscuous mode
[  443.158626][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  443.168873][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  443.183429][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  443.193969][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  443.220691][   T12] bridge_slave_1: left allmulticast mode
[  443.238398][   T12] bridge_slave_1: left promiscuous mode
[  443.256582][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  443.301015][   T12] bridge_slave_0: left allmulticast mode
[  443.330100][   T12] bridge_slave_0: left promiscuous mode
[  443.342609][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  443.407758][   T12] veth1_macvtap: left promiscuous mode
[  443.414049][   T12] veth0_macvtap: left promiscuous mode
[  443.424385][   T12] veth1_vlan: left promiscuous mode
[  443.432665][   T12] veth0_vlan: left promiscuous mode
[  443.644012][   T12] bond1 (unregistering): Released all slaves
[  445.350935][   T12] team0 (unregistering): Port device team_slave_1 removed
[  445.437394][   T12] team0 (unregistering): Port device team_slave_0 removed
[  445.493981][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  445.586956][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  446.039280][   T12] bond0 (unregistering): Released all slaves
[  446.144179][ T9917] netlink: 'syz.2.1127': attribute type 2 has an invalid length.
[  446.159252][ T9921] netlink: 'syz.2.1127': attribute type 2 has an invalid length.
[  446.174512][ T9816] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  446.207415][ T9816] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  446.336943][ T9816] team0: Port device team_slave_0 added
[  446.369038][ T9816] team0: Port device team_slave_1 added
[  446.457847][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_0
[  446.487569][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  446.644704][ T9816] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  446.690054][ T9816] batman_adv: batadv0: Adding interface: batadv_slave_1
[  446.719353][ T9816] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  447.070421][ T9816] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  447.630627][ T9816] hsr_slave_0: entered promiscuous mode
[  447.947884][ T9816] hsr_slave_1: entered promiscuous mode
[  447.990290][ T9816] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  448.008440][ T9816] Cannot create hsr debugfs directory
[  450.023190][T10000] netlink: 'syz.0.1145': attribute type 1 has an invalid length.
[  450.084835][T10000] 8021q: adding VLAN 0 to HW filter on device bond6
[  450.178510][T10003] bond6: (slave geneve2): making interface the new active one
[  450.191568][T10003] bond6: (slave geneve2): Enslaving as an active interface with an up link
[  450.473862][ T9816] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  450.520559][ T9816] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  450.560390][ T9816] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  450.587857][ T9816] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  450.881902][ T9816] 8021q: adding VLAN 0 to HW filter on device bond0
[  451.783382][ T9816] 8021q: adding VLAN 0 to HW filter on device team0
[  451.854387][ T8337] bridge0: port 1(bridge_slave_0) entered blocking state
[  451.861764][ T8337] bridge0: port 1(bridge_slave_0) entered forwarding state
[  451.922548][ T8337] bridge0: port 2(bridge_slave_1) entered blocking state
[  451.930318][ T8337] bridge0: port 2(bridge_slave_1) entered forwarding state
[  453.227808][ T9816] 8021q: adding VLAN 0 to HW filter on device batadv0
[  454.542162][T10059] batadv_slave_0: entered promiscuous mode
[  454.855324][T10066] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1156'.
[  454.965204][T10066] sch_tbf: burst 88 is lower than device veth19 mtu (1514) !
[  455.067591][ T9816] veth0_vlan: entered promiscuous mode
[  455.099453][ T9816] veth1_vlan: entered promiscuous mode
[  455.190484][ T9816] veth0_macvtap: entered promiscuous mode
[  455.211920][ T9816] veth1_macvtap: entered promiscuous mode
[  455.261837][ T9816] batman_adv: batadv0: Interface activated: batadv_slave_0
[  455.293738][ T9816] batman_adv: batadv0: Interface activated: batadv_slave_1
[  455.321158][ T9816] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  455.338667][ T9816] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  455.364789][ T9816] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  455.373652][ T9816] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  455.509735][ T5807] IPVS: starting estimator thread 0...
[  455.625414][T10087] IPVS: using max 17 ests per chain, 40800 per kthread
[  455.649105][ T1123] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  455.694386][ T1123] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  455.796417][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  455.807333][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  459.147673][T10132] loop4: detected capacity change from 0 to 16
[  459.200111][T10132] erofs: (device loop4): mounted with root inode @ nid 36.
[  459.280265][T10135] bridge8: entered allmulticast mode
[  459.353247][T10141] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1171'.
[  459.448749][T10143] loop0: detected capacity change from 0 to 128
[  459.464394][T10143] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  459.530727][T10143] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  459.559802][T10143] ext2 filesystem being mounted at /295/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  459.607022][T10149] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1173'.
[  459.700125][T10149] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1173'.
[  459.724721][T10149] bridge_slave_1: left allmulticast mode
[  459.733719][T10149] bridge_slave_1: left promiscuous mode
[  459.748874][T10149] bridge0: port 2(bridge_slave_1) entered disabled state
[  459.778822][T10149] bridge_slave_0: left allmulticast mode
[  459.795124][T10149] bridge_slave_0: left promiscuous mode
[  459.805114][T10149] bridge0: port 1(bridge_slave_0) entered disabled state
[  459.822407][ T5773] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  460.120588][T10152] sch_fq: defrate 0 ignored.
[  460.200166][T10166] net_ratelimit: 23 callbacks suppressed
[  460.200185][T10166] A link change request failed with some changes committed already. Interface veth0_to_team may have been left with an inconsistent configuration, please check.
[  460.311793][T10159] A link change request failed with some changes committed already. Interface veth0_to_team may have been left with an inconsistent configuration, please check.
[  462.333107][T10212] (null): rxe_set_mtu: Set mtu to 256
[  462.344579][T10212] rdma_rxe: rxe_newlink: failed to add vxcan1
[  463.423179][T10219] bond7: (slave ip6gretap1): making interface the new active one
[  464.027895][T10219] bond7: (slave ip6gretap1): Enslaving as an active interface with an up link
[  464.292812][T10228] ip6_vti0 speed is unknown, defaulting to 1000
[  464.674468][T10236] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1195'.
[  465.053786][T10236] 8021q: adding VLAN 0 to HW filter on device bond8
[  465.268764][T10240] bond8: entered promiscuous mode
[  465.385251][T10236] bond0: (slave dummy0): Releasing active interface
[  465.414066][T10236] dummy0: entered promiscuous mode
[  465.423557][T10236] bond8: (slave dummy0): Enslaving as an active interface with an up link
[  465.458067][T10240] bond8: left promiscuous mode
[  465.463410][T10240] dummy0: left promiscuous mode
[  467.674754][T10259] (null): rxe_set_mtu: Set mtu to 256
[  467.682485][T10259] rdma_rxe: rxe_newlink: failed to add vxcan1
[  468.021976][T10265] netlink: 'syz.3.1201': attribute type 5 has an invalid length.
[  473.835007][T10317] ip6_vti0 speed is unknown, defaulting to 1000
[  476.778117][T10338] netlink: 'syz.3.1221': attribute type 1 has an invalid length.
[  476.810570][T10338] 8021q: adding VLAN 0 to HW filter on device bond3
[  476.861149][T10338] bond3: entered allmulticast mode
[  476.889371][T10338] bond3: (slave ip6gretap2): making interface the new active one
[  476.897422][T10338] ip6gretap2: entered allmulticast mode
[  476.904500][T10338] bond3: (slave ip6gretap2): Enslaving as an active interface with an up link
[  477.920843][T10350] bond7: option mode: unable to set because the bond device has slaves
[  478.046493][T10350] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  478.077070][T10350] bond7: (slave macvlan0): Enslaving as an active interface with a down link
[  478.636585][T10362] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  478.926603][T10364] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  478.954986][T10363] loop0: detected capacity change from 0 to 1024
[  479.002259][T10363] hfsplus: invalid file type 0177777 for inode 2
[  479.010187][T10363] hfsplus: failed to load root directory
[  479.582157][T10376] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1228'.
[  482.019877][T10396] loop0: detected capacity change from 0 to 1024
[  482.268113][T10394] hfsplus: found bad thread record in catalog
[  482.448691][   T48] hfsplus: b-tree write err: -5, ino 25
[  482.467381][   T48] hfsplus: b-tree write err: -5, ino 4
[  482.481081][   T48] hfsplus: b-tree write err: -5, ino 2
[  482.626759][T10402] syzkaller0: entered promiscuous mode
[  482.632677][T10402] syzkaller0: entered allmulticast mode
[  485.019421][   T28] kauditd_printk_skb: 54 callbacks suppressed
[  485.019437][   T28] audit: type=1326 audit(2000000331.340:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  485.631639][   T28] audit: type=1326 audit(2000000331.340:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  485.905025][   T28] audit: type=1326 audit(2000000331.340:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  485.954359][   T28] audit: type=1326 audit(2000000331.840:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  485.992546][   T28] audit: type=1326 audit(2000000331.840:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  486.060048][   T28] audit: type=1326 audit(2000000331.840:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  486.099102][   T28] audit: type=1326 audit(2000000331.850:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  487.333290][   T28] audit: type=1326 audit(2000000331.850:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  487.409859][   T28] audit: type=1326 audit(2000000331.850:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  487.466613][   T28] audit: type=1326 audit(2000000331.870:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10427 comm="syz.4.1244" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7fca8bb9c799 code=0x7ffc0000
[  489.236867][T10476] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.1254'.
[  490.345261][T10472] x_tables: ip6_tables: sctp match: only valid for protocol 132
[  493.098987][T10499] loop0: detected capacity change from 0 to 2048
[  493.500864][T10499] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  493.731340][ T5773] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  494.098930][T10507] netlink: 2 bytes leftover after parsing attributes in process `syz.4.1263'.
[  494.663238][T10517] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  498.586610][ T5777] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  498.597145][ T5777] Bluetooth: hci1: Injecting HCI hardware error event
[  498.607912][ T5082] Bluetooth: hci1: hardware error 0x00
[  501.310724][ T5082] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  501.570667][T10605] netlink: 'syz.4.1290': attribute type 1 has an invalid length.
[  501.700796][T10609] netdevsim netdevsim4 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[  501.849779][T10609] netdevsim netdevsim4 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[  501.949851][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  501.958162][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  502.004777][T10609] netdevsim netdevsim4 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[  502.044025][T10609] netdevsim netdevsim4 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[  502.093414][T10609] bond1: (slave geneve2): making interface the new active one
[  502.131517][T10609] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  502.180265][T10605] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1290'.
[  502.239860][T10605] 8021q: adding VLAN 0 to HW filter on device bond1
[  507.293013][T10658] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1301'.
[  508.721889][T10672] loop0: detected capacity change from 0 to 2048
[  508.747628][T10672] UDF-fs: bad mount option "nmæ¨äõÄÆÙ" or missing value
[  508.771509][T10675] tipc: Enabling of bearer <udp:syz2> rejected, already enabled
[  508.807550][T10675] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1306'.
[  508.839926][T10675] tipc: New replicast peer: fe80:0000:0000:0000:0000:0000:0000:00bb
[  508.859310][T10675] tipc: Enabled bearer <udp:syz0>, priority 10
[  509.437604][T10685] xt_SECMARK: only valid in 'mangle' or 'security' table, not 'filter'
[  511.594642][   T28] kauditd_printk_skb: 58 callbacks suppressed
[  511.594661][   T28] audit: type=1326 audit(2000000357.890:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10699 comm="syz.3.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b7f9c799 code=0x7ffc0000
[  511.631906][   T28] audit: type=1326 audit(2000000357.890:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10699 comm="syz.3.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b7f9c799 code=0x7ffc0000
[  511.676854][   T28] audit: type=1326 audit(2000000357.890:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10699 comm="syz.3.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=255 compat=0 ip=0x7fb9b7f9c799 code=0x7ffc0000
[  511.752710][   T28] audit: type=1326 audit(2000000357.890:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10699 comm="syz.3.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b7f9c799 code=0x7ffc0000
[  511.800724][   T28] audit: type=1326 audit(2000000357.890:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10699 comm="syz.3.1312" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb9b7f9c799 code=0x7ffc0000
[  513.065074][T10718] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1322'.
[  513.420218][T10724] netlink: 'syz.3.1318': attribute type 10 has an invalid length.
[  515.153686][   T12] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  515.166151][   T12] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  515.174971][ T6181] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  515.199616][T10729] netlink: 'syz.4.1317': attribute type 1 has an invalid length.
[  515.257803][T10737] netlink: 176 bytes leftover after parsing attributes in process `syz.3.1318'.
[  515.437623][T10741] mac80211_hwsim hwsim13 wlan1: entered allmulticast mode
[  515.859696][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  515.868135][    T8] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  516.467138][T10741] bond0: (slave bond_slave_0): Releasing backup interface
[  516.494074][T10741] bond0: (slave bond_slave_1): Releasing backup interface
[  516.745285][T10741] team0: Port device team_slave_0 removed
[  516.804076][T10741] team0: Port device team_slave_1 removed
[  516.823458][T10741] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  516.901674][T10741] batman_adv: batadv0: Removing interface: batadv_slave_0
[  516.961718][T10741] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  517.073449][T10741] batman_adv: batadv0: Removing interface: batadv_slave_1
[  517.226352][T10741] bond1: (slave geneve2): Releasing active interface
[  517.253362][T10741] netdevsim netdevsim4 netdevsim0: unset [1, 1] type 2 family 0 port 20000 - 0
[  517.280654][T10741] netdevsim netdevsim4 netdevsim1: unset [1, 1] type 2 family 0 port 20000 - 0
[  517.326054][T10741] netdevsim netdevsim4 netdevsim2: unset [1, 1] type 2 family 0 port 20000 - 0
[  517.359626][T10741] netdevsim netdevsim4 netdevsim3: unset [1, 1] type 2 family 0 port 20000 - 0
[  517.452544][T10744] netlink: 'syz.4.1321': attribute type 10 has an invalid length.
[  517.520103][T10744] mac80211_hwsim hwsim13 wlan1: left allmulticast mode
[  517.530375][ T5152] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  517.588942][T10744] 8021q: adding VLAN 0 to HW filter on device bond0
[  517.635070][T10744] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  517.724745][T10749] netlink: 14 bytes leftover after parsing attributes in process `syz.4.1321'.
[  517.814912][ T6181] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  518.020956][T10749] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  518.147976][T10749] bond0 (unregistering): Released all slaves
[  519.005027][T10751] vlan0: entered promiscuous mode
[  519.055595][T10751] vlan0: entered allmulticast mode
[  519.075832][T10751] hsr_slave_1: entered allmulticast mode
[  519.464819][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  521.009706][T10789] ipt_REJECT: ECHOREPLY no longer supported.
[  521.746778][T10794] netlink: 'syz.2.1336': attribute type 1 has an invalid length.
[  521.927861][T10797] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 20000 - 0
[  521.967897][T10797] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 20000 - 0
[  522.035694][T10797] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 20000 - 0
[  522.064726][T10797] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 20000 - 0
[  522.142629][T10797] bond5: (slave geneve2): making interface the new active one
[  522.325375][T10797] bond5: (slave geneve2): Enslaving as an active interface with an up link
[  522.547319][T10795] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  522.663139][T10798] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1336'.
[  522.712993][T10798] 8021q: adding VLAN 0 to HW filter on device bond5
[  528.184783][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  528.591228][T10848] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -30507, delta: 1
[  528.608184][T10848] ref_ctr increment failed for inode: 0x730 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88807bfd3900
[  528.660298][T10848] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -30507, delta: -1
[  528.674738][T10848] ref_ctr decrement failed for inode: 0x730 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88807bfd3900
[  529.610546][T10869] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1352'.
[  529.837267][   T12] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  529.877257][   T27] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  529.890429][   T12] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  529.959875][   T28] audit: type=1107 audit(2000000376.280:254): pid=10873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  530.289805][   T27] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  531.004646][   T27] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  533.545112][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  533.725210][T10900] netlink: 'syz.3.1360': attribute type 1 has an invalid length.
[  533.901047][T10901] netdevsim netdevsim3 eth0: set [1, 1] type 2 family 0 port 20000 - 0
[  534.085100][T10901] netdevsim netdevsim3 eth1: set [1, 1] type 2 family 0 port 20000 - 0
[  534.093870][T10901] netdevsim netdevsim3 eth2: set [1, 1] type 2 family 0 port 20000 - 0
[  534.133496][T10901] netdevsim netdevsim3 eth3: set [1, 1] type 2 family 0 port 20000 - 0
[  534.153861][T10901] bond4: (slave geneve0): making interface the new active one
[  534.914876][T10901] bond4: (slave geneve0): Enslaving as an active interface with an up link
[  534.951696][T10902] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1360'.
[  535.005154][T10902] 8021q: adding VLAN 0 to HW filter on device bond4
[  538.206378][T10933] Bluetooth: MGMT ver 1.22
[  540.984871][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  543.513145][T10980] mac80211_hwsim hwsim9 wlan1: entered allmulticast mode
[  544.400930][T10980] bond8: (slave dummy0): Releasing backup interface
[  544.566950][T10980] geneve0: left promiscuous mode
[  545.022175][T10980] team0: Port device geneve0 removed
[  545.066192][T10980] veth7: left allmulticast mode
[  545.096687][T10980] veth7: left promiscuous mode
[  545.128765][T10980] bridge3: port 1(veth7) entered disabled state
[  545.211950][T10980] veth9: left allmulticast mode
[  545.219034][T10980] veth9: left promiscuous mode
[  545.228158][T10980] bridge3: port 2(veth9) entered disabled state
[  545.291797][T10980] bond6: (slave geneve2): Releasing active interface
[  545.443184][T10980] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  545.474677][T10980] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  545.483809][T10980] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  545.493483][T10980] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  545.545469][T10980] bond7: (slave ip6gretap1): Releasing active interface
[  545.744757][T10980] bond7: (slave macvlan0): Releasing active interface
[  545.773296][   T12] tipc: Resetting bearer <eth:team0>
[  545.783094][T10986] netlink: 14 bytes leftover after parsing attributes in process `syz.0.1380'.
[  546.104784][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  547.170494][T11010] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  556.344769][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  558.926349][T11084] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1411'.
[  563.861607][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  563.868834][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  565.775319][T11128] loop0: detected capacity change from 0 to 164
[  567.456543][T11153] netlink: 4096 bytes leftover after parsing attributes in process `syz.4.1426'.
[  567.467215][T11153] openvswitch: netlink: ct_state flags 00030000 unsupported
[  568.075726][T11157] mac80211_hwsim hwsim6 syzkaller0: entered promiscuous mode
[  568.109010][T11157] mac80211_hwsim hwsim6 syzkaller0: entered allmulticast mode
[  573.594483][T11202] netlink: 'syz.3.1441': attribute type 1 has an invalid length.
[  573.639964][T11202] 8021q: adding VLAN 0 to HW filter on device bond5
[  573.789188][T11202] vlan2: entered promiscuous mode
[  573.794434][T11202] bond5: entered promiscuous mode
[  573.814835][T11202] vlan2: entered allmulticast mode
[  573.820041][T11202] bond5: entered allmulticast mode
[  573.930551][T11202] bond5: (slave bridge5): making interface the new active one
[  573.938571][T11202] bridge5: entered promiscuous mode
[  573.944275][T11202] bridge5: entered allmulticast mode
[  573.952233][T11202] bond5: (slave bridge5): Enslaving as an active interface with an up link
[  575.928809][T11239] atomic_op ffff88807a579198 conn xmit_atomic 0000000000000000
[  577.170164][T11250] netlink: 'syz.3.1456': attribute type 3 has an invalid length.
[  578.091666][T11262] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  581.304805][    C0] ip6_tunnel: ip6gre1 xmit: Local address not yet configured!
[  583.702646][T11309] loop0: detected capacity change from 0 to 128
[  583.755172][T11307] netlink: 'syz.4.1470': attribute type 16 has an invalid length.
[  583.763559][T11307] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1470'.
[  583.783932][T11309] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  583.808823][T11309] ext4 filesystem being mounted at /361/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  584.606628][T11324] overlayfs: failed to clone upperpath
[  584.863007][ T5773] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  586.645590][T11347] xt_cluster: node mask cannot exceed total number of nodes
[  587.705377][    C0] ip6_tunnel: ip6gre2 xmit: Local address not yet configured!
[  589.789804][T11361] SET target dimension over the limit!
[  589.983577][T11365] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1488'.
[  590.260555][T11368] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1489'.
[  590.336599][T11365] bridge6: port 1(veth7) entered blocking state
[  591.342665][T11365] bridge6: port 1(veth7) entered disabled state
[  591.381254][T11365] veth7: entered allmulticast mode
[  591.559384][T11365] veth7: entered promiscuous mode
[  591.609131][T11371] bridge6: port 2(veth0_to_bond) entered blocking state
[  592.391287][T11371] bridge6: port 2(veth0_to_bond) entered disabled state
[  592.458431][T11371] veth0_to_bond: entered allmulticast mode
[  592.502767][T11371] veth0_to_bond: left allmulticast mode
[  592.781313][T11374] bridge6: port 2(veth9) entered blocking state
[  592.837770][T11374] bridge6: port 2(veth9) entered disabled state
[  592.885188][T11374] veth9: entered allmulticast mode
[  592.908353][T11374] veth9: entered promiscuous mode
[  597.552929][T11440] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1503'.
[  597.629624][T11440] bridge4: port 1(veth11) entered blocking state
[  597.644801][T11440] bridge4: port 1(veth11) entered disabled state
[  597.662180][T11440] veth11: entered allmulticast mode
[  597.873752][T11440] veth11: entered promiscuous mode
[  598.424247][T11442] bridge4: port 2(veth0_to_bond) entered blocking state
[  598.443707][T11449] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1505'.
[  598.677536][T11442] bridge4: port 2(veth0_to_bond) entered disabled state
[  598.721854][T11442] veth0_to_bond: entered allmulticast mode
[  598.965682][T11442] veth0_to_bond: entered promiscuous mode
[  599.345259][T11450] printk: syz.2.1506 (11450): Attempt to access syslog with CAP_SYS_ADMIN but no CAP_SYSLOG (deprecated).
[  599.503022][T11445] bridge4: port 3(veth13) entered blocking state
[  599.654902][T11445] bridge4: port 3(veth13) entered disabled state
[  599.661732][T11445] veth13: entered allmulticast mode
[  599.755472][T11445] veth13: entered promiscuous mode
[  602.170169][T11480] loop0: detected capacity change from 0 to 2048
[  602.415115][T11480] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  603.159300][T11483] atomic_op ffff88805a773198 conn xmit_atomic 0000000000000000
[  603.210198][T11484] ip6_vti0 speed is unknown, defaulting to 1000
[  604.909555][T11495] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1517'.
[  604.996292][T11498] bridge9: port 1(veth23) entered blocking state
[  605.003675][T11498] bridge9: port 1(veth23) entered disabled state
[  605.011104][T11498] veth23: entered allmulticast mode
[  605.022673][T11498] veth23: entered promiscuous mode
[  605.401216][T11495] bridge9: port 2(veth0_to_bond) entered blocking state
[  605.471522][T11495] bridge9: port 2(veth0_to_bond) entered disabled state
[  605.544242][T11495] veth0_to_bond: entered allmulticast mode
[  605.850041][T11495] veth0_to_bond: entered promiscuous mode
[  605.906677][T11498] bridge9: port 3(veth25) entered blocking state
[  605.928328][T11498] bridge9: port 3(veth25) entered disabled state
[  605.948950][T11498] veth25: entered allmulticast mode
[  605.984257][T11498] veth25: entered promiscuous mode
[  606.283586][T11509] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1519'.
[  606.320410][T11509] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[  613.975015][T11576] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1541'.
[  614.053442][T11576] bridge0: port 1(veth3) entered blocking state
[  614.060166][T11576] bridge0: port 1(veth3) entered disabled state
[  614.072168][T11576] veth3: entered allmulticast mode
[  614.087664][T11576] veth3: entered promiscuous mode
[  615.119397][T11584] bridge0: port 2(veth0_to_bond) entered blocking state
[  615.206630][T11584] bridge0: port 2(veth0_to_bond) entered disabled state
[  615.213981][T11584] veth0_to_bond: entered allmulticast mode
[  615.238523][T11584] veth0_to_bond: entered promiscuous mode
[  615.336465][T11594] bridge0: port 3(veth5) entered blocking state
[  615.343012][T11594] bridge0: port 3(veth5) entered disabled state
[  615.351271][T11594] veth5: entered allmulticast mode
[  615.376563][T11594] veth5: entered promiscuous mode
[  617.715816][T11602] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1546'.
[  619.650112][T11649] ip6_vti0 speed is unknown, defaulting to 1000
[  620.961880][T11656] netlink: 184 bytes leftover after parsing attributes in process `syz.3.1560'.
[  621.110252][T11656] bond0: entered allmulticast mode
[  621.127124][T11656] bond_slave_0: entered allmulticast mode
[  621.153926][T11656] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  622.567757][T11677] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.1562'.
[  623.193419][T11680] netlink: 'syz.2.1563': attribute type 1 has an invalid length.
[  623.280198][T11680] bond6: entered promiscuous mode
[  623.289269][T11680] 8021q: adding VLAN 0 to HW filter on device bond6
[  623.509601][T11685] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1563'.
[  623.968438][T11685] bond6: entered allmulticast mode
[  624.139760][T11680] bond6: (slave bridge10): making interface the new active one
[  624.161664][T11680] bridge10: entered promiscuous mode
[  624.167551][T11680] bridge10: entered allmulticast mode
[  624.176004][T11680] bond6: (slave bridge10): Enslaving as an active interface with an up link
[  625.320784][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[  625.327466][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[  625.451588][T11705] netlink: 277 bytes leftover after parsing attributes in process `syz.0.1569'.
[  628.316702][T11721] netlink: 'syz.4.1568': attribute type 1 has an invalid length.
[  628.574937][T11721] bond0: (slave ipvlan2): enslaved VLAN challenged slave. Adding VLANs will be blocked as long as it is part of bond.
[  628.632935][T11721] bond0: (slave ipvlan2): The slave device specified does not support setting the MAC address
[  628.643938][T11721] bond0: (slave ipvlan2): Setting fail_over_mac to active for active-backup mode
[  629.521642][T11729] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1568'.
[  629.849551][T11738] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[  629.996519][T11738] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1578'.
[  630.402990][T11747] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1580'.
[  637.400696][T11811] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1594'.
[  637.597423][T11811] bridge5: port 1(veth15) entered blocking state
[  637.604076][T11811] bridge5: port 1(veth15) entered disabled state
[  637.611062][T11811] veth15: entered allmulticast mode
[  637.618299][T11811] veth15: entered promiscuous mode
[  638.547970][T11811] veth0_to_bond: left allmulticast mode
[  638.553792][T11811] veth0_to_bond: left promiscuous mode
[  638.567589][T11811] bridge4: port 2(veth0_to_bond) entered disabled state
[  638.653269][T11811] bridge5: port 2(veth0_to_bond) entered blocking state
[  638.792258][T11811] bridge5: port 2(veth0_to_bond) entered disabled state
[  638.800915][T11811] veth0_to_bond: entered allmulticast mode
[  638.808388][T11811] veth0_to_bond: entered promiscuous mode
[  638.902416][ T5808] IPVS: starting estimator thread 0...
[  639.672462][T11817] bridge5: port 3(veth17) entered blocking state
[  639.695210][T11835] IPVS: using max 17 ests per chain, 40800 per kthread
[  639.715391][T11817] bridge5: port 3(veth17) entered disabled state
[  639.722024][T11817] veth17: entered allmulticast mode
[  639.752272][T11817] veth17: entered promiscuous mode
[  640.363166][T11850] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  640.371995][T11850] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  640.381528][T11850] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  640.390323][T11850] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  641.489163][T11854] xt_CHECKSUM: unsupported CHECKSUM operation 68
[  645.752822][ T1101] ------------[ cut here ]------------
[  645.759087][ T1101] WARNING: CPU: 1 PID: 1101 at io_uring/io_uring.c:3214 io_ring_exit_work+0x3a7/0x820
[  645.768789][ T1101] Modules linked in:
[  645.772748][ T1101] CPU: 1 PID: 1101 Comm: kworker/u4:6 Not tainted syzkaller #0
[  645.780375][ T1101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  645.790527][ T1101] Workqueue: iou_exit io_ring_exit_work
[  645.796283][ T1101] RIP: 0010:io_ring_exit_work+0x3a7/0x820
[  645.802067][ T1101] Code: 78 23 e8 fc 91 0a f7 48 8b 7c 24 30 48 8b 74 24 08 e8 ad f4 10 00 48 85 c0 75 1d e8 e3 91 0a f7 e9 b9 fd ff ff e8 d9 91 0a f7 <0f> 0b b8 70 17 00 00 48 89 44 24 08 eb cf c7 84 24 90 00 00 00 00
[  645.822293][ T1101] RSP: 0018:ffffc900046afa40 EFLAGS: 00010293
[  645.828698][ T1101] RAX: ffffffff8a7c8a87 RBX: ffff88807da0c000 RCX: ffff8880240f0000
[  645.836852][ T1101] RDX: 0000000000000000 RSI: ffffffffffffffd2 RDI: 0000000000000000
[  645.845002][ T1101] RBP: ffffc900046afbb0 R08: ffffc900046af9c7 R09: 1ffff920008d5f38
[  645.853035][ T1101] R10: dffffc0000000000 R11: fffff520008d5f39 R12: dffffc0000000000
[  645.861134][ T1101] R13: ffff88807da0c288 R14: 00000001000085fe R15: 000000010000862c
[  645.869208][ T1101] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  645.878472][ T1101] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  645.885257][ T1101] CR2: 0000001b2d322ff8 CR3: 000000007b071000 CR4: 00000000003506e0
[  645.893289][ T1101] Call Trace:
[  645.896670][ T1101]  <TASK>
[  645.899656][ T1101]  ? io_ring_ctx_wait_and_kill+0x2b0/0x2b0
[  645.905592][ T1101]  ? _raw_spin_unlock_irq+0x23/0x50
[  645.910943][ T1101]  ? process_scheduled_works+0x96f/0x15d0
[  645.916811][ T1101]  ? process_scheduled_works+0x96f/0x15d0
[  645.922593][ T1101]  process_scheduled_works+0xa5d/0x15d0
[  645.928303][ T1101]  ? worker_attach_to_pool+0x380/0x380
[  645.934366][ T1101]  ? assign_work+0x3d2/0x5d0
[  645.939090][ T1101]  worker_thread+0xa55/0xfc0
[  645.943782][ T1101]  kthread+0x2fa/0x390
[  645.948105][ T1101]  ? pr_cont_work+0x560/0x560
[  645.952979][ T1101]  ? kthread_blkcg+0xd0/0xd0
[  645.957748][ T1101]  ret_from_fork+0x48/0x80
[  645.962242][ T1101]  ? kthread_blkcg+0xd0/0xd0
[  645.966953][ T1101]  ret_from_fork_asm+0x11/0x20
[  645.971809][ T1101]  </TASK>
[  645.974938][ T1101] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  645.982261][ T1101] CPU: 1 PID: 1101 Comm: kworker/u4:6 Not tainted syzkaller #0
[  645.989862][ T1101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  646.000179][ T1101] Workqueue: iou_exit io_ring_exit_work
[  646.005812][ T1101] Call Trace:
[  646.009135][ T1101]  <TASK>
[  646.012315][ T1101]  dump_stack_lvl+0x18c/0x250
[  646.017180][ T1101]  ? show_regs_print_info+0x20/0x20
[  646.022624][ T1101]  ? load_image+0x400/0x400
[  646.027268][ T1101]  panic+0x2dc/0x730
[  646.031241][ T1101]  ? bpf_jit_dump+0xd0/0xd0
[  646.035890][ T1101]  ? ret_from_fork_asm+0x11/0x20
[  646.040891][ T1101]  __warn+0x2e0/0x470
[  646.045011][ T1101]  ? io_ring_exit_work+0x3a7/0x820
[  646.050169][ T1101]  ? io_ring_exit_work+0x3a7/0x820
[  646.055314][ T1101]  report_bug+0x2be/0x4f0
[  646.060034][ T1101]  ? io_ring_exit_work+0x3a7/0x820
[  646.065325][ T1101]  ? io_ring_exit_work+0x3a7/0x820
[  646.070494][ T1101]  ? io_ring_exit_work+0x3a9/0x820
[  646.075741][ T1101]  handle_bug+0xcf/0x120
[  646.080037][ T1101]  exc_invalid_op+0x1a/0x50
[  646.084615][ T1101]  asm_exc_invalid_op+0x1a/0x20
[  646.090050][ T1101] RIP: 0010:io_ring_exit_work+0x3a7/0x820
[  646.096006][ T1101] Code: 78 23 e8 fc 91 0a f7 48 8b 7c 24 30 48 8b 74 24 08 e8 ad f4 10 00 48 85 c0 75 1d e8 e3 91 0a f7 e9 b9 fd ff ff e8 d9 91 0a f7 <0f> 0b b8 70 17 00 00 48 89 44 24 08 eb cf c7 84 24 90 00 00 00 00
[  646.115651][ T1101] RSP: 0018:ffffc900046afa40 EFLAGS: 00010293
[  646.121841][ T1101] RAX: ffffffff8a7c8a87 RBX: ffff88807da0c000 RCX: ffff8880240f0000
[  646.129836][ T1101] RDX: 0000000000000000 RSI: ffffffffffffffd2 RDI: 0000000000000000
[  646.137920][ T1101] RBP: ffffc900046afbb0 R08: ffffc900046af9c7 R09: 1ffff920008d5f38
[  646.145914][ T1101] R10: dffffc0000000000 R11: fffff520008d5f39 R12: dffffc0000000000
[  646.153913][ T1101] R13: ffff88807da0c288 R14: 00000001000085fe R15: 000000010000862c
[  646.161918][ T1101]  ? io_ring_exit_work+0x3a7/0x820
[  646.167162][ T1101]  ? io_ring_ctx_wait_and_kill+0x2b0/0x2b0
[  646.173011][ T1101]  ? _raw_spin_unlock_irq+0x23/0x50
[  646.178239][ T1101]  ? process_scheduled_works+0x96f/0x15d0
[  646.184015][ T1101]  ? process_scheduled_works+0x96f/0x15d0
[  646.189861][ T1101]  process_scheduled_works+0xa5d/0x15d0
[  646.195489][ T1101]  ? worker_attach_to_pool+0x380/0x380
[  646.201017][ T1101]  ? assign_work+0x3d2/0x5d0
[  646.205664][ T1101]  worker_thread+0xa55/0xfc0
[  646.210351][ T1101]  kthread+0x2fa/0x390
[  646.214453][ T1101]  ? pr_cont_work+0x560/0x560
[  646.219164][ T1101]  ? kthread_blkcg+0xd0/0xd0
[  646.223890][ T1101]  ret_from_fork+0x48/0x80
[  646.228343][ T1101]  ? kthread_blkcg+0xd0/0xd0
[  646.233060][ T1101]  ret_from_fork_asm+0x11/0x20
[  646.238042][ T1101]  </TASK>
[  646.241668][ T1101] Kernel Offset: disabled
[  646.246124][ T1101] Rebooting in 86400 seconds..