last executing test programs:

16m50.094970046s ago: executing program 32 (id=135):
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000000c0)=ANY=[@ANYBLOB="ac00000000010505000000faff0000000a0000003c0002802c00018014000300ff01000000000000000000000000000114000400ff02000000000000009d0000000000010c00028005000100000000003c0001800c"], 0xac}}, 0x0)
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r1, 0x400452c8, &(0x7f0000000100))
ioctl$FS_IOC_GETFSLABEL(r0, 0x400452c9, &(0x7f0000000100))

16m4.756269687s ago: executing program 33 (id=428):
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xfff7e002, {0x0, 0x0, 0x0, r2, {0x0, 0x4}, {0xffff, 0xffff}, {0x6, 0xe}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000041}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000840)=@newtfilter={0x5c, 0x2c, 0xd2b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x3}, {}, {0x4, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x30, 0x2, [@TCA_U32_CLASSID={0x8}, @TCA_U32_SEL={0x24, 0x5, {0xc, 0x6, 0x1, 0x3d3f, 0x0, 0xfff, 0x3, 0x58f, [{0xebd, 0x1, 0x206, 0x7}]}}]}}]}, 0x5c}}, 0x24040084)

15m31.487236323s ago: executing program 34 (id=667):
r0 = socket$netlink(0x10, 0x3, 0x0)
bind$netlink(r0, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@newtaction={0x60, 0x30, 0x727, 0x7ffffd, 0x0, {}, [{0x4c, 0x1, [@m_gact={0x48, 0x1, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_GACT_PARMS={0x18, 0x2, {0x3, 0x10000, 0x10000000, 0x7}}]}, {0x4}, {0xc, 0x7, {0x1, 0x1}}, {0xc}}}]}]}, 0x60}, 0x1, 0x0, 0x0, 0x4004}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=ANY=[], 0x70}}, 0x0)

15m19.641361453s ago: executing program 35 (id=723):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f00000000c0)={0x2, 0x4e20, @broadcast}, 0x10)
sendto$inet(r0, &(0x7f0000000140)="ed", 0x1, 0x20008005, &(0x7f0000000100)={0x2, 0x4e20}, 0x10)
sendto(r0, &(0x7f0000000000)="144c1079", 0x4, 0x40, 0x0, 0x0)
sendto(r0, &(0x7f00000007c0)='[', 0x1, 0x8001, 0x0, 0x0)

14m5.666523406s ago: executing program 36 (id=1235):
r0 = socket$kcm(0x2a, 0x2, 0x0)
r1 = socket$kcm(0x2a, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000001f80)={&(0x7f0000001d00)=@qipcrtr={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0x80, 0x0}, 0x0)
recvmsg(r1, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x40010120)
ioctl$sock_kcm_SIOCKCMATTACH(r1, 0x8918, 0x0)
sendmsg$kcm(r0, &(0x7f0000001540)={&(0x7f0000000040)=@qipcrtr={0x2a, 0x1, 0x4000}, 0x80, 0x0}, 0x0)

13m6.350452867s ago: executing program 37 (id=1484):
creat(&(0x7f00000004c0)='./bus\x00', 0x20)
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r1, &(0x7f0000000200)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0)
renameat2(r1, &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000180)='./file1\x00', 0x4)
renameat2(r0, &(0x7f0000000300)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r0, &(0x7f0000000380)='./bus\x00', 0x2)

9m37.026474059s ago: executing program 7 (id=3118):
bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=ANY=[@ANYBLOB="12000000020000000800000002"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000580)={0x11, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000480)={0x3, 0x4}, 0x8, 0x10, 0x0, 0x0, 0x0, 0x0, 0x14, 0x0, 0x0, 0x10, 0x3ff}, 0x94)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
write$cgroup_subtree(r0, &(0x7f0000000100)=ANY=[], 0x32600)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000380)={@map, 0x5, 0x0, 0x100, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)

9m36.786685364s ago: executing program 7 (id=3121):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f0000000740)=ANY=[@ANYBLOB="fc0000001900010031bd700000000000ac1e00010000000000000000000000006401010200000000000000000000000000000000000000000a00000000000e99", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000c00000000000000000000000000000000000000000000000000000000000000ffffffffffffffff000000000000000000000000000000000000000000000000000a000000000000feffffffff7f40000200000000000008ffffffff00000000010006000000000044000500ffffffff000000000000000000000000000000013c"], 0xfc}, 0x1, 0x0, 0x0, 0x4008000}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r2, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000580)="b9ff0300600d698cff9e13f008004de7f9c76436ffffff8800135433f6e31e17128c", 0x0, 0xfffffffe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

9m35.142462339s ago: executing program 7 (id=3126):
syz_init_net_socket$nfc_llcp(0x27, 0x3, 0x1)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000004"], 0x50)
io_uring_enter(r0, 0x2219, 0x7721, 0x33, 0x0, 0x0)

9m34.426814488s ago: executing program 7 (id=3130):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x16, &(0x7f0000000140)={[{@resuid}, {@noauto_da_alloc}, {@auto_da_alloc_val}, {@stripe={'stripe', 0x3d, 0x4}}, {@bsdgroups}, {@noblock_validity}, {@minixdf}, {@nouid32}, {@dioread_lock}, {@nolazytime}, {@oldalloc}, {@usrquota}]}, 0x0, 0x515, &(0x7f0000000c40)="$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")
syz_mount_image$fuse(0x0, 0x0, 0x208000, 0x0, 0x38, 0x0, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$fuseblk(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x24000, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)

9m33.120679821s ago: executing program 7 (id=3138):
r0 = syz_open_dev$vim2m(&(0x7f0000000700), 0x3, 0x2)
ioctl$vim2m_VIDIOC_REQBUFS(r0, 0xc0145608, &(0x7f0000000040)={0x8, 0x1, 0x1})
ioctl$vim2m_VIDIOC_QBUF(r0, 0xc058560f, &(0x7f00000001c0)=@mmap={0x0, 0x1, 0x4, 0x20, 0x0, {0x77359400}, {0x4, 0x0, 0x1, 0x1, 0x0, 0x1}, 0x291d})
ioctl$vim2m_VIDIOC_STREAMOFF(r0, 0x40045612, &(0x7f0000000100)=0x1)
r1 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000480)=[{0x6, 0xfc, 0x1, 0x7fff8000}]})
close_range(r1, 0xffffffffffffffff, 0x0)

9m31.619715552s ago: executing program 7 (id=3147):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x2000, 0x9)

9m30.755865202s ago: executing program 38 (id=3147):
pipe(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
r2 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r2}, 0x2c, {'rootmode', 0x3d, 0x4000}})
write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x2000, 0x9)

5m20.511203155s ago: executing program 9 (id=5183):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x10)
ptrace(0x10, r1)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xee776000)
ptrace$PTRACE_GETSIGMASK(0x420a, r1, 0x8, &(0x7f0000000180))

5m20.284294182s ago: executing program 9 (id=5186):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x42, 0x0)
write$dsp(r0, &(0x7f0000000200)='m', 0x1)
r1 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x801)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000100))
r2 = syz_open_dev$sndpcmp(&(0x7f0000001200), 0x0, 0xa2c65)
write$snddsp(r2, &(0x7f0000000200)="a3", 0x1)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT64(r2, 0xc0984124, &(0x7f0000000640)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2})
ioctl$SNDRV_PCM_IOCTL_REWIND(r2, 0x40084146, &(0x7f0000000140)=0x68)

5m19.66643708s ago: executing program 9 (id=5191):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x2c)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x6, 0x1b, &(0x7f0000001800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000000000008500000017000000180100002020690000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000006000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x31, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000004c0)={r1, r3, 0x25, 0x0, @val=@tcx}, 0x1c)
syz_emit_ethernet(0x2e, &(0x7f00000001c0)=ANY=[], 0x0)
syz_emit_ethernet(0x66, &(0x7f0000000000)={@random="0f539af20094", @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "1200b0", 0x30, 0x3a, 0x0, @dev={0xfe, 0x80, '\x00', 0x22}, @mcast2, {[], @dest_unreach={0x4, 0x6, 0x0, 0x1, '\x00', {0x0, 0x6, '\x00', 0x0, 0x2c, 0x0, @private1, @rand_addr=' \x01\x00'}}}}}}}, 0x0)

5m19.430927374s ago: executing program 9 (id=5194):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f0000000000)='./bus\x00', 0x810, &(0x7f0000000180)={[{@discard}, {@compress_algo={'compress', 0x3d, 'zstd'}}, {@discard_async}, {@usebackuproot}, {@skip_balance}, {@autodefrag}, {@commit={'commit', 0x3d, 0x9}}, {@acl}]}, 0xff, 0x5122, &(0x7f0000006440)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x101142, 0xeaff)
write$binfmt_register(r0, &(0x7f0000000700)={0x3a, 'syz2', 0x3a, 'M', 0x3a, 0x5, 0x3a, 'compress', 0x3a, 'i\xb2\xf6\xed\xee\xe7 \xcc\xe0Wy7\xeb\x8agQ', 0x3a, 'mnt/encrypted_dir'}, 0x49)
r1 = syz_clone3(&(0x7f0000000480)={0x280000, 0x0, &(0x7f0000000240), &(0x7f0000000280), {0x2}, 0x0, 0x0, 0x0, 0x0, 0x0, {r0}}, 0x58)
write$binfmt_aout(r0, &(0x7f0000000200)=ANY=[@ANYRES32, @ANYRES64, @ANYRESHEX=r0, @ANYRES16=r1], 0x29f)
ioctl$FICLONERANGE(r0, 0x4020940d, &(0x7f00000000c0)={{r0}, 0x0, 0x0, 0x100000})

5m17.881807263s ago: executing program 9 (id=5204):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f00000000c0)=ANY=[@ANYBLOB="e00000027fa80a010100000004"], 0x57)
r1 = socket$netlink(0x10, 0x3, 0x0)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000380)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fdd411efc40800040000000000000000", 0x39}], 0x1)
writev(r1, &(0x7f00000001c0)=[{&(0x7f0000001400)="390000001300034700bb5be1c3e4feff06000000010000004500000025000000190004000400ad000200f9ffffff0006040000000000f93132", 0x39}], 0x1)
setsockopt$inet_mreqsrc(r0, 0x0, 0x28, &(0x7f0000000440)={@multicast2, @loopback, @empty}, 0xc)

5m16.546351081s ago: executing program 9 (id=5215):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000340)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x100000a, 0x204031, 0xffffffffffffffff, 0xec776000)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000200)={[{@creator={'creator', 0x3d, "91b6afda"}}, {@nls={'nls', 0x3d, 'cp866'}}, {@gid}, {@type={'type', 0x3d, "abe89a7a"}}, {@nobarrier}]}, 0x1, 0x5d9, &(0x7f0000000cc0)="$eJzs3U1rXNcdB+DfHY9lywVbSezELQGLGNqmovaMxk3dbuqWUrQIJVDoKgSEPY6Ex0qQJkUJpVXft/0I6UJfoLvsAukiq3bdlbah0L12LvfOHWlsKYoUK5pR/Txw5pxzzz3nnvu/LzN3hJgAz6yFuTQ3UmRh7vX1sr612eltbXYeDstJziVpJM1BlmIlKT5J7mSQ8vVyYT1c8XnbefWzSx9de+vTNwe1Zp2q9RsH9TucjTplNsmZOj+u8e4+9XjFY3t4fRg4GLdHe2wcpftTXrfAJCgG75t7zCQXkpyvPwekvjs0TnZ2x+9IdzkAAAA4pS5tZzvruTjueQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMBpUv/+f1GnxrA8m2L4+/9T9bLU5VPt43FPAAAAAAAAAACOwbXtbGc9F4f1R0X1N/9Xqsrl6vVreS9r6WY1N7KexfTTz2raSWZGBppaX+z3V9uH6Dm/b8/5k9lfAAAAAAAAAPg/9fss7P79HwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJkGRnBlkVbo8LM+k0UxyPslUud5G8q9h+TT7eNwTAAAAgBNwaTvbWc/FYf1RUT3zv1g995/Pe1lJP8vpp5du7lXfBQye+htbm53e1mbnYZn2jvvj/x5pGtWIGXz3sP+Wr1ZrTOd+lqslN3I376SXe2lUPUtXh/PZf16/K+dU/Kh2yJndq/Nyz/9a55NhporI2Z2ItOq5ldF47uBIHPHoPLmldho73/xc/gpifqHOy/3580THfH7k7Hvx4Egk3/vlv5eWeisPlu6vzU3OLn1JT0aiMxKJl56pSLSqSFzZqS/kZ/lF5jKbN7Ka5fwqi+mnm9n8tCot1udz+TpzcKTuPFZ744tmMlUfl8Fd9GhzeqXqezHL+Xneyb10czs/yK3czu3cynxaaY0c4SuHuOobR7vqr3+7Lkwn+UudT4Yyrs+NxHX0njtTtY0u2Y3S88d/b2x+oy6U2/hDnU+GJyPRHonECwdH4m+Pyte13sqD1aXFdw+5vW/VeXkd/Wmi3iXK8+X58mBVtcfPjrLthX3b2lXb5Z22xp62KzttX3SlTtWf4faONF+1vbRvW6dquzrStt/nLQAm3oXvXJia/s/0P6c/nP7j9NL06+d/cu72uZencvYfZ3/YbJ35ZuPl4u/5ML/Zff4HAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC+vLX3P3iw2Ot1VxUUFJ7Jwm/3bRr3nQn4qt3sP3z35tr7H3x3+eHi2923uyudW+3Oa7far3W+f/P+cq/bGrzudpga52yB47T7pj/umQAAAAAAAAAAAACHdRL/YDDufQQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABOt4W5NDdSpN260SrrW5udXpmG5d01m0kaSYpfJ8UnyZ0MUmZGhis+bzuvfnbpo2tvffrm7ljN4fqNg/odzkadMpvkTJ0f13h3n3q8YmcPy4BdHwYOxu1/AQAA//96kwu1")
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents(r1, &(0x7f0000000040)=""/61, 0x3d)

5m16.08398805s ago: executing program 39 (id=5215):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000340)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x100000a, 0x204031, 0xffffffffffffffff, 0xec776000)
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x0, &(0x7f0000000200)={[{@creator={'creator', 0x3d, "91b6afda"}}, {@nls={'nls', 0x3d, 'cp866'}}, {@gid}, {@type={'type', 0x3d, "abe89a7a"}}, {@nobarrier}]}, 0x1, 0x5d9, &(0x7f0000000cc0)="$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")
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x90)
getdents(r1, &(0x7f0000000040)=""/61, 0x3d)

5m2.716994537s ago: executing program 5 (id=5352):
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(0xffffffffffffffff, 0x28, 0x8, &(0x7f0000000040)=0xffffffffffffffff, 0x57)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000180)={0x0, 0x1, 0x0, &(0x7f0000000200)=""/81, 0x0, 0x10000})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, 0x0, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$BTRFS_IOC_SUBVOL_GETFLAGS(r0, 0x4008af04, &(0x7f0000000040))

5m2.336878119s ago: executing program 5 (id=5354):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)
r1 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000140)={0xaa, 0x77c})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x7, &(0x7f0000580000/0x4000)=nil)
mremap(&(0x7f0000580000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00007ff000/0x2000)=nil)
close_range(r0, 0xffffffffffffffff, 0x0)

4m58.355461932s ago: executing program 5 (id=5383):
r0 = socket(0x11, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f00000005c0)={'gre0\x00', <r2=>0x0})
bind$packet(r0, &(0x7f0000000180)={0x11, 0x0, r2, 0x1, 0x0, 0x6, @dev={'\xaa\xaa\xaa\xaa\xaa', 0x3a}}, 0x14)
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000080)='v1\x00ul\x00\x00\x00\x00\x00loc\x8d\x8b#\xe0\xb9\xbd\"\xeb.\xc7]\xa67\x97 \xc9\xfc|\x85o7Z\xdc}U\x8c\xdd\n\xaa?4\xafq\x1d\xf6(\xe6\x9em_\x1a\xbfDi\x15\x81\xd47\x8e\x86\xa2u~FC\x9c\xe3\x98\x87\x98\xf7\xa2\xb5\x12\x8cv\xe4_\x91\xa8G!mm\f\xcf\xfb[\xd5Qf\x15\xfe\xc80\xad\xaa\xe9', 0x0)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000240)=0xe9, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f00000003c0)=0x6121, 0x4)
sendmsg$netlink(r0, &(0x7f0000002ac0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000000040)=ANY=[@ANYBLOB="020108dd012918000e3580009f0001140000002f0600ac1414b0e0000003808a8972bdc933091ce132d73006"], 0xdd12}], 0x1, 0x0, 0x0, 0x20040090}, 0x54)

4m58.046416155s ago: executing program 5 (id=5386):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], 0x0, 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x63)
write$FUSE_INIT(r0, &(0x7f0000000280)={0x50, 0x0, 0x0, {0x7, 0x2d, 0x3, 0x4000, 0x4, 0x100, 0x607f0beb, 0x9, 0x0, 0x0, 0x80, 0x800}}, 0x50)
write$cgroup_devices(r0, 0x0, 0xa)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000001c0)=[0x0], 0x0, 0x0, 0x1, 0x1}}, 0x40)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1, 0x10012, r0, 0x0)
syz_mount_image$vfat(&(0x7f0000000240), &(0x7f0000000040)='./file0\x00', 0x1800c8, &(0x7f0000000800)=ANY=[@ANYBLOB="73686f72746e616d653d6c6f7765722c757466383d312c696f636861727365743d63703836392c756e695f786c6174653d312c6e6f6e756d7461696c3d302c040061736b3d30303030303030303030303030303030303030303030302c73686f72746e616d653d6d697865d82c696f636861727365743d69736f383835392d322c726f6469722c73686f77657865632c757466383d302c757466383d302c696f636861727365743d6d616363656e746575726f2c636f6465706167653d313235302c696f636861727365743d63703836342c757466383d312c756e695f786c6174653d312c636865636b3d6e6f726d616c2c00"], 0x0, 0x2c5, &(0x7f0000000400)="$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")

4m57.402376287s ago: executing program 5 (id=5390):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)

4m56.661815916s ago: executing program 5 (id=5393):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
prctl$PR_GET_NAME(0x59616d61, 0x0)
msgget$private(0x0, 0x1)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x2000, 0x0)
msgrcv(0x0, 0x0, 0x0, 0xffffff7f00000000, 0x3000)

4m41.515379441s ago: executing program 40 (id=5393):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x21, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
prctl$PR_GET_NAME(0x59616d61, 0x0)
msgget$private(0x0, 0x1)
msgsnd(0x0, &(0x7f0000000180)=ANY=[], 0x2000, 0x0)
msgrcv(0x0, 0x0, 0x0, 0xffffff7f00000000, 0x3000)

2m14.78408954s ago: executing program 3 (id=6560):
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000000)='./bus\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="61636c2c757365725f78617474722c6e6f61636c2c63616368655f73747261746567793d64697361626c65642c6e6f757365725f78617474722c6e6f61636c2c00d4a87b439fa421753f060fe37a330d2dfca47c4e52e78d71fc65b972e2bb306bb4a29b1fe3019842462c5fee84a2e6eb90d57b8725e3a2eff0b0b471dac5c01bee53cd8d"], 0xfe, 0x17d, &(0x7f0000000340)="$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")
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r0, 0x29, 0xcf, 0x0, 0x0)
ioctl$FS_IOC_GET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x400c6615, 0x0)
openat(0xffffffffffffffff, 0x0, 0x102, 0x97)
sendmsg$NL80211_CMD_DEAUTHENTICATE(0xffffffffffffffff, 0x0, 0x40000)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000080)=ANY=[@ANYBLOB="80000000", @ANYRES16=r2, @ANYBLOB="010028bd7000fedbdf253b00000008000300", @ANYRES32=r3, @ANYBLOB="610033008000e100ffffffffffff0802110000005050503e5050002003000008000000000100010001014803010c06020400070b051a02000cffffffffffffffff340005000f1e71603704060000000800"], 0x80}, 0x1, 0x0, 0x0, 0x4000000}, 0x20000080)
sendmsg$NL80211_CMD_GET_INTERFACE(0xffffffffffffffff, 0x0, 0x810)

2m13.63340445s ago: executing program 3 (id=6568):
socket$nl_generic(0x10, 0x3, 0x10)
socket$l2tp6(0xa, 0x2, 0x73)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x1bc2, &(0x7f0000000040)={0x0, 0xc89f, 0xc000, 0x7, 0x20002f9})
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={0xffffffffffffffff, 0x18000000000002a0, 0x0, 0x0, &(0x7f0000000240), 0x0, 0x501, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x4}, 0x50)
r1 = socket$inet(0x2, 0x80001, 0x84)
sendmsg$netlink(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000000)=[{0x0, 0x10}], 0x1, 0x0, 0x33}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
sendmsg(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000740)=[{&(0x7f0000000000)='8', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4008845)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

2m12.297174561s ago: executing program 3 (id=6571):
r0 = fsopen(&(0x7f0000000180)='ramfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x1, 0x0)
fchdir(r1)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ftruncate(r2, 0x8008976)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x13, r2, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r3, &(0x7f0000000000), 0x208e24b)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x1, 0x0, 0x0, 0x3)

2m10.131262435s ago: executing program 3 (id=6586):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f00000001c0)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/90})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000001cc0)={0x2, 0x0, [{0x0, 0x14, &(0x7f0000000000)=""/20}, {0x41000, 0xffb, &(0x7f0000001d80)=""/4091}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})

2m9.83684008s ago: executing program 3 (id=6591):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0xfc5cd7921c2c19c4, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='./file0\x00', 0x40000, 0x120)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='rpc_pipefs\x00', 0x10, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000000), 0x888000, 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='autofs\x00', 0x0, &(0x7f0000000100))
ioctl$AUTOFS_DEV_IOCTL_EXPIRE(r1, 0xc018937c, &(0x7f00000000c0)={{0x1, 0x1, 0x18, r0, {0x1}}, './file0\x00'})

2m9.318393999s ago: executing program 3 (id=6597):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000027c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x2d, 0x20040040)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x37)
r3 = epoll_create(0x4)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000640)={0x40000006})
connect$unix(r0, &(0x7f0000000440)=@abs={0x0, 0x0, 0x4e20}, 0x6e)

1m53.810320805s ago: executing program 41 (id=6597):
r0 = socket$unix(0x1, 0x2, 0x0)
bind$unix(r0, &(0x7f0000000080)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
r1 = socket$unix(0x1, 0x2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000027c0)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x2d, 0x20040040)
connect$unix(r1, &(0x7f0000000180)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x37)
r3 = epoll_create(0x4)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000640)={0x40000006})
connect$unix(r0, &(0x7f0000000440)=@abs={0x0, 0x0, 0x4e20}, 0x6e)

13.660556568s ago: executing program 6 (id=7018):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(r0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
r3 = socket(0x40000000015, 0x805, 0x0)
getsockopt(r3, 0x114, 0x2718, 0x0, &(0x7f00000000c0))

12.052527566s ago: executing program 6 (id=7020):
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(0x4)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0x3c, &(0x7f0000000040)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000000c0)=0x1, 0x4)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f00000001c0)=0xffffffffffffffff, 0x4)
sendmmsg$inet(r1, &(0x7f0000002bc0)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000340)='\x00', 0x1}, {&(0x7f0000000440)='\'', 0x1}, {&(0x7f0000000400)="b5", 0x1}, {&(0x7f0000000580)="ff", 0x1}, {&(0x7f0000000380)="e3", 0x1}, {&(0x7f0000000180)="0f", 0x1}, {&(0x7f0000000240)='d', 0x1}, {&(0x7f0000000540)='*', 0x1}, {&(0x7f0000000140)="b5", 0x1}], 0x9}}], 0x1, 0x4000000)
setsockopt$sock_int(r1, 0x1, 0x20, &(0x7f0000000000)=0x7fffffff, 0x4)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f00000001c0)=@gcm_256={{0x304}, "6ae04425ace3f60c", "acba84f0a6731f234db1cc7f3f382ad796bd667cb12ea99509873931d2873103", "0f9dafb4", "ec3fff9afd96e6c0"}, 0x38)
writev(r0, &(0x7f0000000080)=[{&(0x7f00000002c0)="ec", 0xfdef}], 0x1)

11.806640582s ago: executing program 1 (id=7023):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
r0 = syz_io_uring_setup(0x208e, &(0x7f0000000200)={0x0, 0xcb14, 0x10, 0x3, 0x4001bf}, &(0x7f0000000040), &(0x7f0000000000), &(0x7f0000000000))
r1 = syz_open_dev$loop(&(0x7f0000000140), 0x75f, 0xa382)
ioctl$LOOP_SET_STATUS(r1, 0x4c02, &(0x7f0000000280)={0x0, {}, 0x0, {}, 0x8, 0x0, 0xffffffff, 0x1d, "28f5c9ea1f0197000011ab18d2da69bde58cd7af40fd150b70aac11c2e16bd5bba99634793ddd7aae07ef35f17bf01933bdb6fd7ecdd91b531e67603c26b0c30", "07a9400978042a8bfe1406584ae7df4af14e1df82d00", [0x7a, 0xd]})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f0000000580)=[{&(0x7f0000000380)=""/113, 0x71}], 0x1)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000180)='./file1\x00', 0x2004de, &(0x7f0000000100), 0x3, 0x451, &(0x7f0000000f80)="$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")
syz_clone(0x20008400, 0x0, 0x0, 0x0, 0x0, 0x0)
r2 = open(&(0x7f0000000080)='./bus\x00', 0x44c00, 0xe898d2275f586997)
preadv2(r2, &(0x7f0000000980), 0x0, 0x8000, 0x9, 0x1b)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)

10.167212085s ago: executing program 4 (id=7026):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r1 = socket$tipc(0x1e, 0x1, 0x0)
bind$tipc(r1, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x41}}, 0x10)
listen(r1, 0x0)
r2 = socket$tipc(0x1e, 0x5, 0x0)
sendmsg$tipc(r2, &(0x7f0000000240)={&(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x41}}}, 0x10, &(0x7f0000000340)=[{&(0x7f0000000380)="2feebe8d881590f656d01482831f4b036a7bb40c6782cbb5dafe72ea85766575551d40e3", 0x24}], 0x1, 0x0, 0x0, 0x40010}, 0x0)
recvmsg(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/35, 0x23}], 0x1}, 0x10040)
close_range(r0, 0xffffffffffffffff, 0x0)

9.957207737s ago: executing program 1 (id=7029):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x36, &(0x7f0000000500)=ANY=[], 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000000c0)=0x3)
sched_setaffinity(0x0, 0xfffffffffffffd7a, &(0x7f0000000580)=0x8000000002)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000400), 0x0, 0x0)
read$msr(r1, &(0x7f000001aa40)=""/102392, 0x18ff8)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000))
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b26, &(0x7f0000000000)={'wlan1\x00'})
getsockopt$inet6_opts(r0, 0x29, 0x36, 0xffffffffffffffff, &(0x7f00000000c0)=0xffe1)

9.671277921s ago: executing program 4 (id=7031):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
syz_open_procfs(0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x1, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe2(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff}, 0x80000)
splice(r2, 0x0, r4, 0x0, 0x38f9, 0x0)
splice(r3, 0x0, r2, 0x0, 0x7fffffffffffffff, 0x1)
fcntl$setstatus(r3, 0x4, 0x42c00)
write(r1, &(0x7f0000000040), 0xffffff4a)

9.59827557s ago: executing program 1 (id=7032):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000040)={'bridge0\x00'})
r3 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r4=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000480)=ANY=[@ANYBLOB="6c0000001000010400d201000072f60000020000", @ANYRES32=r4, @ANYBLOB="05"], 0x6c}, 0x1, 0x0, 0x0, 0x10004000}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x15, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000000c0)={0x0}, 0x9}, 0x0)
sendmsg$L2TP_CMD_SESSION_MODIFY(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000340)={0x14, 0x0, 0x100, 0x70bd2d, 0x25dfdbfd}, 0x14}, 0x1, 0x0, 0x0, 0x40085}, 0x8440)

9.380053475s ago: executing program 0 (id=7033):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000140)={0x2, &(0x7f0000000000)=[{0x30, 0x0, 0xfd, 0x5ae9}, {0x6, 0x0, 0x7, 0x2}]}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000060c0)=[{{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000002880)=""/60, 0x62}, {0x0, 0x3c}], 0x2}, 0x2}], 0x1, 0x10000, 0x0)
sendmmsg$inet(r0, &(0x7f0000002c40)=[{{0x0, 0x0, &(0x7f0000000e80)=[{&(0x7f0000000a80)="2a73ed35", 0x732a}], 0x1}}], 0x400000000000292, 0x0)

9.231186263s ago: executing program 1 (id=7035):
sendmsg$ETHTOOL_MSG_DEBUG_GET(0xffffffffffffffff, &(0x7f0000000d40)={0x0, 0x0, &(0x7f0000000c80)={0x0, 0x17c}, 0x1, 0x0, 0x0, 0x4008004}, 0x20000080)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000008c0)=ANY=[], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x8044)

8.134869295s ago: executing program 4 (id=7038):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_init_net_socket$bt_l2cap(0x1f, 0x5, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000380)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700)
pwritev(r1, &(0x7f0000000100)=[{&(0x7f0000000000)="8e", 0x1}], 0x1, 0x8001, 0x80)
close(r1)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r2, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r2, &(0x7f0000000480)={0x2, 0x4e22, @multicast1}, 0x10)
sendmmsg(r2, &(0x7f0000007fc0), 0x800001d, 0x0)
sendfile(r1, r0, 0x0, 0xf03a0005)

7.999246088s ago: executing program 1 (id=7039):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000200)=0x10002000005)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x7, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x400000000001, 0x0, 0x1, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f000001a400)=""/102384, 0x18ff0)
r3 = openat$full(0xffffffffffffff9c, &(0x7f0000000080), 0x40, 0x0)
read$FUSE(r3, &(0x7f0000000540)={0x2020}, 0xfffffccf)

7.982418603s ago: executing program 0 (id=7040):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20}, 0x1c)
sendto$inet6(r0, 0x0, 0x0, 0x2409c8c1, &(0x7f0000000240)={0xa, 0x4e20, 0x6, @mcast1}, 0x1c)
sendto$inet6(r0, &(0x7f0000000e80)="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", 0x575, 0x6d91fb6102d8910c, 0x0, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x40000, 0x0, 0x0)
r1 = syz_open_dev$sndpcmc(0x0, 0x80000001, 0x400040)
ioctl$SNDRV_PCM_IOCTL_CHANNEL_INFO(r1, 0x80184132, 0x0)
recvfrom(r0, &(0x7f0000001a80)=""/4043, 0xfcb, 0x22, 0x0, 0x0)
capset(0x0, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xfffffffb, 0xfffffffc})
writev(r0, &(0x7f0000000100), 0x0)
syz_usb_connect(0x0, 0x3e, &(0x7f0000001100)=ANY=[@ANYBLOB="1201000020dafb2099041010f50a0102030109022c00010000000009040000016f2bae000824020100000000092402020000000000090585da"], 0x0)
r2 = syz_open_dev$sndctrl(&(0x7f0000000080), 0x2, 0x88880)
ioctl$SNDRV_CTL_IOCTL_RAWMIDI_NEXT_DEVICE(r2, 0xc0045540, &(0x7f0000000000)=0xffffffff)

7.936703432s ago: executing program 2 (id=7041):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000018c0)=ANY=[@ANYBLOB="0a000000d2cf00003d36000002"], 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000140), 0x9, r3}, 0x38)
bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000380)={r3, &(0x7f0000001940), &(0x7f00000002c0)=""/187}, 0x20)

6.287244857s ago: executing program 1 (id=7042):
r0 = socket$inet6(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', 0x347, 0x1, 0x3, 0x1, 0x40}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f000009df00)={@dev={0xfe, 0x80, '\x00', 0x1b}, 0x800, 0x2, 0x1, 0x4, 0xfffe, 0x1}, 0x20)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x8b)
syz_clone3(&(0x7f00000003c0)={0x204000000, 0x0, 0x0, 0x0, {0x2a}, 0x0, 0x0, 0x0, 0x0, 0x0, {r2}}, 0x58)
syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000001c0)='fd/3\x00')
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r3, 0x541b, 0x0)
r4 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000500)=ANY=[@ANYBLOB="12010000000018105e04da0700000000000109022400010000000009040000090300000009210000000122220009058103"], 0x0)
syz_usb_control_io$hid(r4, 0x0, 0x0)
syz_usb_control_io$hid(r4, &(0x7f0000000000)={0x24, 0x0, 0x0, &(0x7f0000000080)=ANY=[@ANYBLOB="00222200000096010006010083040000002a90a0751bb3"], 0x0}, 0x0)

6.073547517s ago: executing program 8 (id=7043):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r0, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r1 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r1, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000340)={{{@in6=@dev={0xfe, 0x80, '\x00', 0x1e}, @in6=@loopback, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0xfffffffffffffffe, 0x0, 0x0, 0x0, 0x4, 0x2}, {}, 0x0, 0x6e6bb9, 0x1}, {{@in=@broadcast, 0xfffffffc, 0x32}, 0x0, @in=@empty, 0x0, 0x0, 0x2, 0x7, 0x200}}, 0xe8)
sendmmsg(r1, &(0x7f0000000480), 0x2e9, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000600)=@newsa={0xfc, 0x16, 0x633, 0x0, 0x80000000, {{@in6=@mcast1, @in=@loopback, 0x4, 0x0, 0x0, 0x0, 0xa}, {@in=@broadcast, 0x4d2, 0x32}, @in6=@loopback, {0x0, 0x1ffffffffffffff}, {0x5, 0xffffffffffffffff, 0x0, 0x5}, {0x4, 0x2}, 0x6, 0x2, 0xa, 0x4, 0x18, 0x19}, [@mark={0xc, 0x15, {0x35075c, 0x1}}]}, 0xfc}}, 0x0)

5.601079958s ago: executing program 6 (id=7044):
r0 = socket$nl_route(0x10, 0x3, 0x0)
mmap(&(0x7f0000000000/0xa000)=nil, 0xa000, 0xd3283d0368e269b3, 0x8031, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xd, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sock_ops}, 0x94)
mmap(&(0x7f0000048000/0x1000)=nil, 0x1000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0x9, &(0x7f0000000000)={0xfffffffffffffffb, 0xfffffffffffffffb}, 0x0)
ioctl$XFS_IOC_SWAPEXT(r0, 0xc0c0586d, 0x0)
prctl$PR_MCE_KILL(0x23, 0x2, 0x7fffffffeffe)
mremap(&(0x7f000016c000/0x4000)=nil, 0x4000, 0x40000000, 0x3, &(0x7f000063c000/0x3000)=nil)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x3)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000000080), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040)={0x77359400}, &(0x7f0000048000), 0x0)
sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={0x0}}, 0x0)

4.96514276s ago: executing program 2 (id=7045):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6(0xa, 0x1, 0x84)
setsockopt$inet6_int(r3, 0x29, 0x1a, &(0x7f0000000080)=0x2, 0x4)
sendto$inet6(r3, &(0x7f00000002c0)='\x00', 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
getsockopt$bt_hci(r3, 0x84, 0x6d, &(0x7f0000002280)=""/4090, &(0x7f0000000040)=0xffa)

4.495000984s ago: executing program 0 (id=7046):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r3, &(0x7f0000000840)={0x2, 0x4, @loopback}, 0x10)
sendmsg$rds(r3, &(0x7f0000000100)={&(0x7f0000000040)={0x2, 0x4e24, @private=0xa010102}, 0x10, 0x0, 0x0, &(0x7f0000000540)=[@cswp={0x58, 0x114, 0x7, {{0x8c, 0x800}, &(0x7f00000000c0)=0x3b3, 0x0, 0xfffd, 0x8002, 0x1, 0x4, 0x21, 0x9}}], 0x58, 0x8004}, 0x0)

3.290151341s ago: executing program 8 (id=7047):
epoll_create1(0x0)
r0 = socket$unix(0x1, 0x1, 0x0)
close(r0)
socket(0x1d, 0x2, 0x6)
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000040)=0x10009, 0x4)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffc000/0x2000)=nil, 0x0, 0xfffffd64}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x64a, &(0x7f0000000040)={0x0, 0x8835c, 0xc000, 0x20000a, 0x33c})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x8, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0x4}, {0xe, 0xe}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

3.004316783s ago: executing program 0 (id=7048):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
r1 = syz_open_dev$usbmon(&(0x7f0000000300), 0x7, 0x0)
read$usbmon(r1, 0x0, 0x0)
ioctl$MON_IOCH_MFLUSH(r1, 0x9208, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=ANY=[@ANYBLOB="1200000003000000080000000200000000000000", @ANYRES32, @ANYBLOB='\a\x00'/20, @ANYRES32=0x0, @ANYRES64=0x0, @ANYBLOB="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"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYRESHEX=r0], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
quotactl_fd$Q_GETINFO(0xffffffffffffffff, 0xffffffff80000502, 0x0, 0x0)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000000)={r2, 0x0, 0x0, 0x4}, 0x20)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000001780)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x0, 0x250, &(0x7f0000001880)="$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")
prctl$PR_MCE_KILL(0x21, 0x0, 0x2)

2.738246829s ago: executing program 6 (id=7049):
r0 = io_uring_setup(0x650b, &(0x7f0000000180)={0x0, 0x2c3f, 0x0, 0x21, 0xab})
r1 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r1)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040)={0x28, 0x0, 0x0, @local}, 0x10)
listen(r3, 0x4)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="0f00000004000000040000001200"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r4}, &(0x7f0000000000), &(0x7f0000000080)=r1}, 0x20)
recvfrom$inet_nvme(r2, 0x0, 0x0, 0x40000002, 0x0, 0x0)
accept$inet(r2, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

2.734979199s ago: executing program 4 (id=7050):
r0 = socket(0xa, 0x3, 0xff)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4e21, 0x10000002, @ipv4={'\x00', '\xff\xff', @empty}, 0x800100}, 0x1c)
setsockopt$inet6_opts(r0, 0x29, 0x39, &(0x7f0000000240)=ANY=[@ANYBLOB="611404"], 0xa8)
openat$pfkey(0xffffffffffffff9c, &(0x7f0000000000), 0x458003, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newsa={0x13c, 0x10, 0x713, 0x800, 0x0, {{@in6=@ipv4={'\x00', '\xff\xff', @loopback}, @in6=@mcast1, 0x4, 0x0, 0x4e23, 0x80, 0x0, 0x0, 0x0, 0x1d}, {@in=@remote, 0x0, 0x32}, @in6=@mcast1, {0x0, 0x4, 0x800, 0x8000000000000000}, {}, {0x0, 0x4}, 0x0, 0x0, 0x2, 0x0, 0x3}, [@algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}, 0x0, 0x180}}]}, 0x13c}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
futex(&(0x7f000000cffc)=0x4, 0x80000000000b, 0x4, 0x0, &(0x7f0000048000)=0x1, 0x0)
futex(&(0x7f000000cffc)=0x5, 0xb, 0x4000300, 0x0, 0x0, 0x1000004)
setsockopt$inet6_IPV6_RTHDRDSTOPTS(r0, 0x29, 0x37, &(0x7f0000000100)=ANY=[@ANYBLOB="21000201000000"], 0x8)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r2, 0x0, 0x0)
getsockopt$inet_mptcp_buf(r2, 0x11c, 0x2, &(0x7f0000000040)=""/185, &(0x7f0000000140)=0xb9)
sendmsg$NL80211_CMD_CONNECT(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000001380)={0x0, 0x28}, 0x1, 0x0, 0x0, 0x20000080}, 0x4000000)

2.651162114s ago: executing program 8 (id=7051):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
ftruncate(r0, 0xc17a)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r1, &(0x7f0000006380)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000340)={0x50, 0x0, r2, {0x7, 0x1f, 0x0, 0x34808521, 0x4, 0x2, 0x3, 0x0, 0x0, 0x0, 0x0, 0x8}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x20, 0x0, 0x0, {0x0, 0x11}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x8)
io_setup(0x202, &(0x7f0000000200)=<r4=>0x0)
io_submit(r4, 0x2, &(0x7f0000000780)=[&(0x7f0000000440)={0xfffffffe, 0x20011020, 0x4, 0x1, 0x0, r3, &(0x7f00000000c0)='!', 0xffffff49, 0x3000000000000500}])
dup3(r3, r1, 0x0)

2.644916633s ago: executing program 2 (id=7052):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x40102, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x1, 0x0, &(0x7f0000001600)=""/118, 0x0, 0x3332f000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000640))
r2 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000180)={0x0, r2})
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r3)
read$fb(r2, 0x0, 0x0)
syz_genetlink_get_family_id$tipc(0x0, 0xffffffffffffffff)
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})

2.394835287s ago: executing program 2 (id=7053):
openat$binderfs(0xffffffffffffff9c, 0x0, 0x802, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r1, 0x6, 0x13, &(0x7f0000000080)=0x1, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r1, 0x6, 0x14, &(0x7f0000000100)=0x2, 0x4)
connect$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @dev={0xac, 0x14, 0x14, 0x58}}, 0x10)
sendto(r1, &(0x7f0000000140)='A', 0xfffff, 0x40008c1, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000d00)=[{{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000001d40)=""/4096, 0x1000}], 0x1}, 0x1}], 0x256, 0x10022, 0x0)

2.393452974s ago: executing program 0 (id=7054):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000080)={&(0x7f0000000100)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0xa}, {0x0, [0x30, 0x30, 0x2e, 0x30, 0x30, 0x61, 0x0, 0x2e]}}, 0x0, 0x22}, 0x28)
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x3000001, 0x31, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x1, 0x0)
setsockopt$inet_sctp6_SCTP_ADAPTATION_LAYER(r1, 0x84, 0x7, &(0x7f00000001c0)={0x400}, 0x4)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x4, 0x2)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed5000410"], 0x11)
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
dup(0xffffffffffffffff)

2.169677901s ago: executing program 2 (id=7055):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
openat$tun(0xffffffffffffff9c, &(0x7f0000000500), 0x40, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r2)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
sendmsg$NFT_BATCH(r3, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000480)=ANY=[@ANYBLOB="140000001000010000000000006000000500000a3c000000090a010400000000000000000a0000040900010073797a310000000008000540000000020900020073797a310000000008000a40fffffffc4c0000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000020000380100000800c00018006000100d10300000c000080080003400000000214000000110001"], 0xb0}, 0x1, 0x0, 0x0, 0x14}, 0x40)
sendmsg$NFT_BATCH(r2, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000000)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a400000000c0a010100000000000000000a0000060900020073797a31000000000900010073797a310000000014000380100000800c000180060001000000000014000000110005"], 0x68}, 0x1, 0x0, 0x0, 0x4008010}, 0x40)
close_range(r1, 0xffffffffffffffff, 0x0)

2.03589102s ago: executing program 2 (id=7056):
syz_usb_connect$uac3(0x0, 0x80, &(0x7f0000000100)={{0x12, 0x1, 0x110, 0x0, 0x0, 0x0, 0x10, 0x41e, 0x3048, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x6e, 0x3, 0x1, 0x5, 0xc0, 0x10, {0x8, 0xb, 0x0, 0x1, 0x1, 0x1, 0x30, 0x7}, {{{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x30, 0x0, {{0xa, 0x24, 0x1, 0x8, 0xa, 0x7}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x20, 0x40, 0xd4, 0x84, {0xa, 0x25, 0x25, 0x0, 0x1, 0x9}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x30, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x210, 0xfa, 0xa, 0x2, {0xa, 0x25, 0x25, 0x80000000, 0x5, 0x9}}}}}}}}]}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'batadv_slave_1\x00', <r1=>0x0})
io_setup(0xb, &(0x7f0000000080)=<r2=>0x0)
io_submit(r2, 0x1a, &(0x7f0000000080))
mount$tmpfs(0x0, &(0x7f0000000080)='.\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="6e725f696e6f6465733d2c342c3979205965816c61c2ba7042c0bd1282bb8ae4d6d7e72780d19fa6c13fa5d62996bf892c"])
syz_emit_ethernet(0x6e, &(0x7f0000000640)={@multicast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x38, 0x3a, 0x0, @remote, @mcast2, {[], @param_prob={0x4, 0x0, 0x0, 0x0, {0x0, 0x6, '%\x00', 0x0, 0x33, 0x0, @private2, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, [@hopopts={0x3b}]}}}}}}}, 0x0)
madvise(&(0x7f0000ffc000/0x4000)=nil, 0xffffffffdf003fff, 0x8)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000200)=@newqdisc={0x68, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r5, {}, {0xffff, 0xffff}, {0x0, 0x1}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x38, 0x2, {{0x0, 0x0, 0x57f2}, [@TCA_NETEM_REORDER={0xc, 0x3, {0xdc, 0x3}}, @TCA_NETEM_CORR={0x10, 0x1, {0xc7, 0x5, 0x4}}]}}}]}, 0x68}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000200)={0x0, 0x18, &(0x7f00000001c0)={&(0x7f0000000180)=@getchain={0x24, 0x11, 0x1, 0x2000000, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xfff1}, {0xfff3}}}, 0x24}}, 0x800)

1.906683139s ago: executing program 8 (id=7057):
pipe(&(0x7f0000000500)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = fsopen(&(0x7f0000000080)='autofs\x00', 0x0)
fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000005c0)='fd', 0x0, r0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x2)
fchdir(r2)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
chdir(&(0x7f0000000080)='./file1\x00')
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x1d7)
setpgid(r3, 0x0)
setpgid(0x0, r3)
open$dir(&(0x7f0000000200)='./bus\x00', 0x0, 0x0)

1.857337516s ago: executing program 6 (id=7058):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x9)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
recvmsg(r1, &(0x7f0000000440)={0x0, 0x0, 0x0}, 0x40000100)
bind$inet(r1, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
syz_emit_ethernet(0xbe, &(0x7f0000000000)={@dev={'\xaa\xaa\xaa\xaa\xaa', 0xf}, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0xb0, 0x4000, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x4e24, 0x4e20, 0x9c, 0x0, @wg=@initiation={0x1, 0x0, "7b4b143b7461fd777b1c012bd14efb9f49fcdb8f080c26a04883ad5c8c82b8af", "584cbf2649a50f2dbc43efa845942824251d7d17b5191584bcd4fbe40a23424d00", "bcfd56f1375461caaa2f19935e6996c7096ffeeb0300000000000064", {"9a3bfbc1f39cb307b3472eb9cdb042d2", "643fcbb2c5a57df67d544af6e8dafe09"}}}}}}}, 0x0)
recvmmsg(r1, &(0x7f0000006000)=[{{0x0, 0x0, 0x0}, 0x7fffffff}], 0x1, 0x102, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80, &(0x7f0000000080)={0xa, 0x4e21, 0x10, @private1}, 0x1c)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0, 0x3}, 0x94)
r2 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x7}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x5, 0xb68, 0x0, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)

1.653396779s ago: executing program 8 (id=7059):
ioctl$ifreq_SIOCGIFINDEX_vcan(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x51)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f00000000c0)={0x26, 'aead\x00', 0x0, 0x0, 'aegis128\x00'}, 0x58)
setsockopt$ALG_SET_AEAD_AUTHSIZE(r3, 0x117, 0x5, 0x0, 0x7)

332.76762ms ago: executing program 4 (id=7060):
r0 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r0, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x6, 0x104}}, 0x10)
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r2, &(0x7f0000000080)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r3 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r3, &(0x7f0000000180)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x3, 0x4}}, 0x10)
bind$tipc(r3, &(0x7f0000000140)=@name={0x1e, 0x2, 0x0, {{0x42, 0x2}}}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r3, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x1}, 0x10)
r4 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r4, &(0x7f0000000040)=@name={0x1e, 0x2, 0x0, {{0x42, 0x3}}}, 0x10)
bind$tipc(r4, 0x0, 0x0)

270.123608ms ago: executing program 6 (id=7061):
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', 0x0, 0x0, 0x2125099, 0x0)
open_tree(0xffffffffffffff9c, 0x0, 0x89901)
r0 = socket$packet(0x11, 0x3, 0x300)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_int(r2, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000140)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x7ff, 0xf83, 0x3}, 0x1c)
r3 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r3, &(0x7f0000000140)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000240)=@newlink={0x38, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x69801}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gre={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x8, 0x7, @dev}]}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)
sendto$packet(r0, &(0x7f00000003c0)="11eb53", 0x3, 0x2404c081, &(0x7f0000000200)={0x11, 0x88a8, r4, 0x1, 0x4, 0x6, @local}, 0x14)

268.636223ms ago: executing program 8 (id=7062):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xa, &(0x7f0000000080)=0x1, 0x4)
setsockopt$packet_rx_ring(r0, 0x107, 0x5, &(0x7f0000000040)=@req3={0x1000, 0x3a, 0x1000, 0x3a, 0x2}, 0x1c)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_ipv6_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, 0x0)
clock_settime(0x0, &(0x7f0000000240)={0x77359400})
clock_adjtime(0x0, &(0x7f00000003c0)={0x7, 0x9, 0x37fffd, 0x6794, 0x7fffffff, 0xffffffffffbffff7, 0x9, 0x0, 0x1, 0x6, 0x20000007, 0x4, 0xfffffffffffff04f, 0x3, 0x200000080000000, 0xfffffffffffffff8, 0xfffffffffffffffe, 0x200000005, 0x1, 0x100, 0x6, 0x2, 0x5, 0x3, 0x34, 0x8})
r2 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'veth0_to_bridge\x00', <r3=>0x0})
sendto$packet(r2, 0x0, 0x0, 0xc190, &(0x7f0000000200)={0x11, 0x8100, r3, 0x1, 0xe0, 0x6, @multicast}, 0x14)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000300)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f00000002c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c00000020000f0000f901000000000002"], 0x1c}, 0x1, 0x0, 0x0, 0x4000080}, 0x40000)

78.266802ms ago: executing program 0 (id=7063):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeeb, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt$IPT_SO_GET_REVISION_TARGET(r3, 0x0, 0x43, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER(0x1, 0x2, &(0x7f0000000040)={0x2, &(0x7f0000000080)=[{0x3c, 0x3, 0x0, 0x100000}, {0x6, 0x0, 0x0, 0x1ff}]})

0s ago: executing program 4 (id=7064):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$sock_inet6_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
write$dsp(0xffffffffffffffff, 0x0, 0x0)
r1 = syz_open_dev$sndctrl(0x0, 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_PCM_PREFER_SUBDEVICE(r1, 0x40045532, &(0x7f0000000040))
r2 = syz_open_dev$sndpcmp(0x0, 0x0, 0xe2c66)
ioctl$SNDRV_PCM_IOCTL_STATUS_EXT32(r2, 0xc06c4124, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b}, 0x42)

kernel console output (not intermixed with test programs):

p5): enabling auto defrag
[  737.808262][T20870] BTRFS info (device loop5): trying to use backup root at mount time
[  737.817593][T20870] BTRFS info (device loop5): use zlib compression, level 3
[  737.963571][T11279] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  738.647474][T20919] fuse: fd is not a fuse device
[  739.267497][T20930] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  739.453884][T20936] fuse: fd is not a fuse device
[  739.597186][T20942] netlink: 'syz.6.4646': attribute type 4 has an invalid length.
[  739.608190][T20941] l2tp_ppp: sess 2/0: no socket in recv
[  740.127913][ T5809] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[  740.212218][T20958] loop9: detected capacity change from 0 to 128
[  740.369831][T20959] netlink: 2028 bytes leftover after parsing attributes in process `syz.5.4655'.
[  740.379191][T20959] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4655'.
[  740.432792][T20958] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  740.528872][T20958] ext4 filesystem being mounted at /586/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  740.818712][ T5809] usb 5-1: Using ep0 maxpacket: 16
[  741.078082][ T8362] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  741.201669][T20978] fuse: fd is not a fuse device
[  741.621257][   T30] audit: type=1326 audit(1780489091.120:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  741.710747][   T30] audit: type=1326 audit(1780489091.120:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  741.776937][   T30] audit: type=1326 audit(1780489091.120:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  741.860421][   T30] audit: type=1326 audit(1780489091.190:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  741.910884][   T30] audit: type=1326 audit(1780489091.190:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  741.977465][   T30] audit: type=1326 audit(1780489091.190:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.030997][   T30] audit: type=1326 audit(1780489091.190:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.105574][   T30] audit: type=1326 audit(1780489091.190:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.216927][   T30] audit: type=1326 audit(1780489091.190:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.322675][   T30] audit: type=1326 audit(1780489091.190:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.347599][   T30] audit: type=1326 audit(1780489091.190:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.392709][ T5809] usb 5-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  742.401809][ T5809] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  742.409818][ T5809] usb 5-1: Product: syz
[  742.413986][ T5809] usb 5-1: Manufacturer: syz
[  742.418590][ T5809] usb 5-1: SerialNumber: syz
[  742.441506][ T5809] usb 5-1: config 0 descriptor??
[  742.446747][   T30] audit: type=1326 audit(1780489091.190:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.472426][   T30] audit: type=1326 audit(1780489091.190:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.586490][   T30] audit: type=1326 audit(1780489091.190:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.670133][   T30] audit: type=1326 audit(1780489091.190:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20993 comm="syz.1.4672" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  742.879952][ T5809] dvb_usb_dtv5100 5-1:0.0: probe with driver dvb_usb_dtv5100 failed with error -71
[  742.915511][ T5809] usb 5-1: USB disconnect, device number 35
[  743.051368][T21024] loop4: detected capacity change from 0 to 4096
[  743.170272][T21029] syz_tun: entered allmulticast mode
[  743.219835][T21031] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4684'.
[  743.239417][T21024] ntfs3(loop4): Different NTFS sector size (1024) and media sector size (512).
[  743.469721][T21029] syz_tun: left allmulticast mode
[  745.227969][T21068] loop9: detected capacity change from 0 to 32768
[  745.286639][T21068] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  745.295063][T21068] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  745.495407][T21068] gfs2: fsid=syz:syz.0: journal 0 mapped with 1 extents in 0ms
[  745.511649][ T5764] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[  745.526314][ T5764] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[  745.569509][T21084] fuse: fd is not a fuse device
[  745.684888][ T5764] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 158ms
[  745.698747][ T5764] gfs2: fsid=syz:syz.0: jid=0: Done
[  745.704121][T21068] gfs2: fsid=syz:syz.0: first mount done, others may mount
[  746.378186][T21099] ptrace attach of "ci-upstream-kasan-gce-root/syz-executor exec"[8144] was attempted by "\x22                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                 
[  746.796502][T21112] loop9: detected capacity change from 0 to 256
[  747.142678][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[  747.595436][T21130] loop5: detected capacity change from 0 to 32768
[  747.603140][T21130] btrfs: Deprecated parameter 'usebackuproot'
[  747.609233][T21130] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  747.619334][T21130] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.4719 (21130)
[  747.637148][T21130] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  747.647457][T21130] BTRFS info (device loop5): using crc32c checksum algorithm
[  747.801633][T19026] BTRFS warning (device loop5): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  747.900054][T21130] BTRFS error (device loop5): failed to load root extent
[  747.910809][T21130] BTRFS warning (device loop5): try to load backup roots slot 1
[  747.919485][T19026] BTRFS warning (device loop5): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  747.948304][T21130] BTRFS warning (device loop5): couldn't read tree root
[  747.955433][T21130] BTRFS warning (device loop5): try to load backup roots slot 2
[  747.973053][T19026] BTRFS error (device loop5): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  747.983846][T21130] BTRFS warning (device loop5): couldn't read tree root
[  747.990865][T21130] BTRFS warning (device loop5): try to load backup roots slot 3
[  748.027929][T21130] BTRFS info (device loop5): rebuilding free space tree
[  748.073325][T21160] netlink: 8 bytes leftover after parsing attributes in process `syz.6.4730'.
[  748.112646][T21130] BTRFS info (device loop5): checking UUID tree
[  748.122184][T21130] BTRFS info (device loop5): enabling ssd optimizations
[  748.129202][T21130] BTRFS info (device loop5): turning on async discard
[  748.136042][T21130] BTRFS info (device loop5): enabling free space tree
[  748.142858][T21130] BTRFS info (device loop5): force clearing of disk cache
[  748.149973][T21130] BTRFS info (device loop5): enabling auto defrag
[  748.156470][T21130] BTRFS info (device loop5): trying to use backup root at mount time
[  748.164654][T21130] BTRFS info (device loop5): use zstd compression, level 3
[  748.381846][T11279] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  748.487950][T21173] loop9: detected capacity change from 0 to 128
[  748.559041][T21173] EXT4-fs (loop9): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback.
[  748.708265][T21173] ext4 filesystem being mounted at /600/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  748.967464][ T8362] EXT4-fs (loop9): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  750.048308][T20395] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[  750.738513][T20395] usb 6-1: Using ep0 maxpacket: 16
[  751.404435][T20395] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  751.415357][T20395] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  751.425124][T20395] usb 6-1: New USB device found, idVendor=1b1c, idProduct=1b02, bcdDevice= 0.00
[  751.434181][T20395] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  751.482852][T20395] usb 6-1: config 0 descriptor??
[  752.770467][T20395] usbhid 6-1:0.0: can't add hid device: -71
[  752.776533][T20395] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  752.844890][T20395] usb 6-1: USB disconnect, device number 24
[  753.007310][T21277] netlink: 55631 bytes leftover after parsing attributes in process `syz.1.4776'.
[  753.852355][T21311] overlayfs: failed to clone upperpath
[  754.064120][T21319] overlayfs: failed to clone upperpath
[  754.285261][T21327] fuse: fd is not a fuse device
[  754.543525][T21337] xt_hashlimit: size too large, truncated to 1048576
[  754.777995][T21344] fuse: fd is not a fuse device
[  754.869814][T21340] netlink: 'syz.6.4802': attribute type 4 has an invalid length.
[  754.886475][T21340] netlink: 'syz.6.4802': attribute type 4 has an invalid length.
[  755.102274][T21354] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4805'.
[  756.231142][T21378] netlink: 4 bytes leftover after parsing attributes in process `syz.1.4814'.
[  757.361267][T21394] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4819'.
[  757.488261][T21396] fuse: Bad value for 'fd'
[  757.922727][T21398] netlink: 24 bytes leftover after parsing attributes in process `syz.1.4819'.
[  758.102558][T21403] loop5: detected capacity change from 0 to 4096
[  758.146366][T21403] EXT4-fs: Ignoring removed mblk_io_submit option
[  758.272704][T21403] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  758.341254][T21403] tipc: Started in network mode
[  758.423722][T21403] tipc: Node identity -ck_vali, cluster identity 4711
[  758.939329][T11279] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  759.301965][T21431] fuse: fd is not a fuse device
[  760.375593][T21429] loop9: detected capacity change from 0 to 131072
[  760.407115][T21429] F2FS-fs (loop9): invalid crc value
[  760.563403][T21429] F2FS-fs (loop9): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  760.607410][T21429] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e4
[  760.770172][T21429] F2FS-fs (loop9): truncate node fail, ino:7, nid:256, offset[0]:927, offset[1]:0, nofs:1022
[  762.060460][T21471] fuse: fd is not a fuse device
[  762.258926][ T5782] IPVS: starting estimator thread 0...
[  762.451646][T21477] IPVS: using max 25 ests per chain, 60000 per kthread
[  762.471635][T21482] fuse: fd is not a fuse device
[  762.637948][ T5764] usb 6-1: new high-speed USB device number 25 using dummy_hcd
[  762.685238][T21488] netlink: 'syz.4.4855': attribute type 11 has an invalid length.
[  762.920389][ T5764] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xA1, changing to 0x81
[  762.954030][ T5764] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 217
[  762.978377][T21494] fuse: fd is not a fuse device
[  763.001039][ T5764] usb 6-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[  763.035282][ T5764] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  763.093696][ T5764] usb 6-1: config 0 descriptor??
[  763.122873][T21466] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  763.783412][ T5764] ath6kl: Failed to submit usb control message: -71
[  763.921049][ T5764] ath6kl: unable to send the bmi data to the device: -71
[  763.943890][ T5764] ath6kl: Unable to send get target info: -71
[  763.989765][ T5764] ath6kl: Failed to init ath6kl core: -71
[  764.042301][ T5764] ath6kl_usb 6-1:0.0: probe with driver ath6kl_usb failed with error -71
[  764.082286][ T5764] usb 6-1: USB disconnect, device number 25
[  766.579013][T21585] netlink: 4 bytes leftover after parsing attributes in process `syz.5.4890'.
[  766.802900][T21585] team0: Port device team_slave_0 removed
[  767.793040][T21609] 9p: Bad value for 'rfdno'
[  768.147605][T21619] netlink: 'syz.9.4903': attribute type 3 has an invalid length.
[  768.166253][T21619] netlink: 'syz.9.4903': attribute type 3 has an invalid length.
[  768.191981][T21619] netlink: 'syz.9.4903': attribute type 10 has an invalid length.
[  768.247673][T21619] 8021q: adding VLAN 0 to HW filter on device team0
[  768.311966][T21619] bond0: (slave team0): Enslaving as an active interface with an up link
[  768.381121][T21626] fuse: fd is not a fuse device
[  768.586143][ T5782] kernel write not supported for file /input/mice (pid: 5782 comm: kworker/1:6)
[  769.619546][T21654] fuse: fd is not a fuse device
[  770.309165][T21669] fuse: fd is not a fuse device
[  770.343528][T21670] netlink: 4 bytes leftover after parsing attributes in process `syz.9.4919'.
[  771.014450][T17049] IPVS: starting estimator thread 0...
[  771.252012][T21683] IPVS: using max 25 ests per chain, 60000 per kthread
[  771.582850][T21703] netlink: 4 bytes leftover after parsing attributes in process `syz.8.4934'.
[  772.074725][T21721] netlink: 'syz.8.4940': attribute type 10 has an invalid length.
[  772.101593][T21721] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  772.140438][T21721] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[  772.149746][T21721] team0: Failed to send options change via netlink (err -105)
[  772.187752][T21721] team0: Port device netdevsim1 added
[  774.687218][T21807] sch_tbf: peakrate 3 is lower than or equals to rate 183 !
[  774.906824][T21809] bridge0: port 2(bridge_slave_1) entered blocking state
[  774.914123][T21809] bridge0: port 2(bridge_slave_1) entered listening state
[  775.217160][T21809] A link change request failed with some changes committed already. Interface syzkaller0 may have been left with an inconsistent configuration, please check.
[  775.917921][T21835] netlink: 2036 bytes leftover after parsing attributes in process `syz.5.4984'.
[  775.978213][T21835] netlink: 24 bytes leftover after parsing attributes in process `syz.5.4984'.
[  776.106013][T21843] fuse: fd is not a fuse device
[  776.859355][T21852] fuse: fd is not a fuse device
[  776.895775][T21854] loop5: detected capacity change from 0 to 128
[  776.985160][T21854] FAT-fs (loop5): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  777.160235][T21854] FAT-fs (loop5): error, invalid FAT chain (i_pos 548, last_block 8)
[  777.168356][T21854] FAT-fs (loop5): Filesystem has been set read-only
[  777.175077][T21854] FAT-fs (loop5): error, corrupted file size (i_pos 548, 522)
[  777.258308][T21856] fuse: fd is not a fuse device
[  778.359012][T21830] team0: Port device netdevsim1 removed
[  779.798406][T21909] fuse: fd is not a fuse device
[  781.373535][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.400763][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.408583][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.416341][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.451374][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.471526][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.491588][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.513812][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.562635][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  781.679015][T21940] netlink: 'syz.9.5029': attribute type 3 has an invalid length.
[  782.351067][T21949] overlayfs: failed to clone upperpath
[  782.569740][T21955] netlink: 24 bytes leftover after parsing attributes in process `syz.6.5036'.
[  783.085621][T21967] loop5: detected capacity change from 0 to 16
[  783.128700][T21967] erofs (device loop5): mounted with root inode @ nid 36.
[  783.198422][T21967] syz.5.5040: attempt to access beyond end of device
[  783.198422][T21967] loop5: rw=524288, sector=8, nr_sectors = 24 limit=16
[  783.513018][T21967] erofs (device loop5): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 4096
[  783.745995][T21967] erofs (device loop5): read error -117 @ 0 of nid 89
[  783.897386][   T30] kauditd_printk_skb: 30 callbacks suppressed
[  783.897412][   T30] audit: type=1800 audit(1780489133.249:638): pid=21967 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.5040" name="file2" dev="loop5" ino=89 res=0 errno=0
[  787.115198][T17394] usb 10-1: new high-speed USB device number 22 using dummy_hcd
[  787.270210][T22045] fuse: fd is not a fuse device
[  788.434149][T17394] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  788.445157][T17394] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  788.459110][T17394] usb 10-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  788.500578][T17394] usb 10-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  788.510109][T17394] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  788.523407][T22065] bridge0: port 2(bridge_slave_1) entered disabled state
[  788.531361][T22064] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5074'.
[  788.551340][T22065] bridge0: port 1(bridge_slave_0) entered disabled state
[  788.603714][T17394] usb 10-1: config 0 descriptor??
[  789.259387][T17394] plantronics 0003:047F:FFFF.0024: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.9-1/input0
[  789.714568][T17394] usb 10-1: USB disconnect, device number 22
[  789.727840][T22085] fido_id[22085]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/10-1/10-1:0.0/0003:047F:FFFF.0024/report_descriptor': No such file or directory
[  789.968785][    C1] bridge0: port 2(bridge_slave_1) entered learning state
[  791.831153][T22144] loop5: detected capacity change from 0 to 128
[  791.871316][T22144] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  791.962992][T22144] ext4 filesystem being mounted at /492/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  792.184646][T22150] netlink: 4 bytes leftover after parsing attributes in process `syz.4.5102'.
[  792.221531][T11279] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  792.637726][T22165] netlink: 16 bytes leftover after parsing attributes in process `syz.4.5108'.
[  792.638232][T22160] sd 0:0:1:0: PR command failed: 1026
[  792.665856][T22160] sd 0:0:1:0: Sense Key : Illegal Request [current] 
[  792.688159][T22160] sd 0:0:1:0: Add. Sense: Invalid command operation code
[  793.669100][T22181] loop5: detected capacity change from 0 to 40427
[  793.677361][T22181] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  793.685345][T22181] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  793.807211][T22181] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  793.842616][T22181] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  793.849750][T22181] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  793.932545][   T30] audit: type=1804 audit(1780489143.448:639): pid=22181 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.5116" name="/newroot/496/file0/bus" dev="loop5" ino=10 res=1 errno=0
[  793.936592][T22181] syz.5.5116: attempt to access beyond end of device
[  793.936592][T22181] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  793.997036][T22181] syz.5.5116: attempt to access beyond end of device
[  793.997036][T22181] loop5: rw=2049, sector=45104, nr_sectors = 104 limit=40427
[  794.016675][T22181] syz.5.5116: attempt to access beyond end of device
[  794.016675][T22181] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  795.127945][   T30] audit: type=1804 audit(1780489144.608:640): pid=22205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.5125" name="file0" dev="tmpfs" ino=4445 res=1 errno=0
[  796.265793][T22238] sock: sock_set_timeout: `syz.6.5137' (pid 22238) tries to set negative timeout
[  796.377526][T17049] usb 6-1: new high-speed USB device number 26 using dummy_hcd
[  796.540888][T22250] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5143'.
[  796.575937][T19007] netdevsim netdevsim8 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  796.603264][T22250] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5143'.
[  796.612140][T19007] netdevsim netdevsim8 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  796.620387][T19007] netdevsim netdevsim8 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  796.628572][T19007] netdevsim netdevsim8 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  796.640578][T22254] fuse: fd is not a fuse device
[  797.055184][T17049] usb 6-1: Using ep0 maxpacket: 8
[  797.721028][T17049] usb 6-1: config 3 has an invalid interface number: 45 but max is 0
[  797.729164][T17049] usb 6-1: config 3 contains an unexpected descriptor of type 0x1, skipping
[  797.737863][T17049] usb 6-1: config 3 has no interface number 0
[  797.744257][T17049] usb 6-1: config 3 interface 45 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  797.757135][T17049] usb 6-1: config 3 interface 45 has no altsetting 0
[  798.623585][T17049] usb 6-1: New USB device found, idVendor=0582, idProduct=e6ca, bcdDevice=d3.0b
[  798.632669][T17049] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  798.640659][T17049] usb 6-1: Product: syz
[  798.644819][T17049] usb 6-1: Manufacturer: syz
[  798.673422][T17049] usb 6-1: SerialNumber: syz
[  799.417238][T22356] netlink: 16186 bytes leftover after parsing attributes in process `syz.8.5184'.
[  799.566948][T22361] fuse: Bad value for 'fd'
[  799.821674][T17049] usb 6-1: USB disconnect, device number 26
[  799.920998][ T5746] udevd[5746]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:3.45/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  800.142082][T22369] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  800.192938][T22369] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  800.563757][T22374] loop9: detected capacity change from 0 to 32768
[  800.571094][T22374] btrfs: Deprecated parameter 'usebackuproot'
[  800.577397][T22374] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  800.592832][T22374] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop9 (7:9) scanned by syz.9.5194 (22374)
[  800.632658][T22374] BTRFS info (device loop9): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  800.642885][T22374] BTRFS info (device loop9): using crc32c checksum algorithm
[  800.818525][T19035] BTRFS warning (device loop9): checksum verify failed on logical 5337088 mirror 1 wanted 0xe63dbdda found 0xc926492d level 0
[  800.883045][T22374] BTRFS error (device loop9): failed to load root extent
[  800.890479][T22374] BTRFS warning (device loop9): try to load backup roots slot 1
[  800.898946][T10374] BTRFS warning (device loop9): checksum verify failed on logical 5324800 mirror 1 wanted 0x9f73850b found 0x80379423 level 0
[  800.956405][T22374] BTRFS warning (device loop9): couldn't read tree root
[  800.963672][T22374] BTRFS warning (device loop9): try to load backup roots slot 2
[  800.972315][T19035] BTRFS error (device loop9): level verify failed on logical 5255168 mirror 1 wanted 0 found 1
[  801.004717][T22374] BTRFS warning (device loop9): couldn't read tree root
[  801.011832][T22374] BTRFS warning (device loop9): try to load backup roots slot 3
[  801.049561][T22374] BTRFS info (device loop9): rebuilding free space tree
[  801.132068][T22374] BTRFS info (device loop9): checking UUID tree
[  801.150432][T22374] BTRFS info (device loop9): enabling ssd optimizations
[  801.157528][T22374] BTRFS info (device loop9): turning on async discard
[  801.164401][T22374] BTRFS info (device loop9): enabling free space tree
[  801.171256][T22374] BTRFS info (device loop9): force clearing of disk cache
[  801.178445][T22374] BTRFS info (device loop9): enabling auto defrag
[  801.184941][T22374] BTRFS info (device loop9): trying to use backup root at mount time
[  801.193152][T22374] BTRFS info (device loop9): use zstd compression, level 3
[  801.911258][T22412] xt_hashlimit: size too large, truncated to 1048576
[  802.124778][T22410] syz.9.5194 (22410) used greatest stack depth: 16832 bytes left
[  802.258744][T22421] binder: 22416:22421 ioctl c0306201 200000000000 returned -14
[  802.272338][T22355] BTRFS info (device loop9): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  802.422599][T22424] netlink: 104 bytes leftover after parsing attributes in process `syz.1.5207'.
[  802.927953][T22436] overlayfs: failed to clone upperpath
[  803.011111][T22439] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5214'.
[  804.329823][T22455] fuse: Bad value for 'fd'
[  804.733413][T16426] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  804.837822][T16426] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  804.861640][T16426] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  804.869939][T16426] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  804.912960][T16426] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  804.966129][T22471] fuse: Bad value for 'fd'
[  805.312721][    C1] bridge0: port 2(bridge_slave_1) entered forwarding state
[  805.320063][    C1] bridge0: topology change detected, propagating
[  806.292911][T22518] overlayfs: failed to clone upperpath
[  806.390405][T22522] xt_hashlimit: size too large, truncated to 1048576
[  806.828012][T22538] xt_hashlimit: size too large, truncated to 1048576
[  806.835033][T22538] xt_hashlimit: max too large, truncated to 1048576
[  807.073052][ T4940] Bluetooth: hci3: command tx timeout
[  807.232456][T22461] bridge0: port 1(bridge_slave_0) entered blocking state
[  807.252073][T22461] bridge0: port 1(bridge_slave_0) entered disabled state
[  807.268107][T22461] bridge_slave_0: entered allmulticast mode
[  807.277043][T22461] bridge_slave_0: entered promiscuous mode
[  807.286762][T22461] bridge0: port 2(bridge_slave_1) entered blocking state
[  807.294327][T22461] bridge0: port 2(bridge_slave_1) entered disabled state
[  807.301868][T22461] bridge_slave_1: entered allmulticast mode
[  807.334471][T22461] bridge_slave_1: entered promiscuous mode
[  807.530388][T22461] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  807.586217][T22461] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  807.755079][T22461] team0: Port device team_slave_0 added
[  807.781119][T22461] team0: Port device team_slave_1 added
[  807.834069][T22569] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5263'.
[  807.864558][ T4940] Bluetooth: hci4: unexpected event for opcode 0x2023
[  807.912459][T22461] batman_adv: batadv0: Adding interface: batadv_slave_0
[  807.926821][T22461] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  807.962694][T22572] netlink: 220 bytes leftover after parsing attributes in process `syz.1.5264'.
[  807.972111][T22572] unsupported nlmsg_type 40
[  807.983387][T22461] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  808.014161][T22461] batman_adv: batadv0: Adding interface: batadv_slave_1
[  808.026281][T22461] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  808.053452][T22461] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  808.184997][T22581] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5268'.
[  808.215510][T22581] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5268'.
[  808.230774][T22461] hsr_slave_0: entered promiscuous mode
[  808.241958][T22461] hsr_slave_1: entered promiscuous mode
[  808.254735][T22461] debugfs: 'hsr0' already exists in 'hsr'
[  808.271069][T22461] Cannot create hsr debugfs directory
[  808.502297][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[  809.163116][ T4940] Bluetooth: hci3: command tx timeout
[  809.797016][T22637] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5290'.
[  810.206840][T22647] batadv_slave_0: entered promiscuous mode
[  810.225567][T22651] validate_nla: 40 callbacks suppressed
[  810.225588][T22651] netlink: 'syz.8.5293': attribute type 2 has an invalid length.
[  810.233471][T22647] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5292'.
[  810.688593][T22646] batadv_slave_0: left promiscuous mode
[  810.696064][T22661] 9pnet: p9_errstr2errno: server reported unknown error 0x0000000
[  810.865783][T22678] netlink: 28 bytes leftover after parsing attributes in process `syz.1.5301'.
[  810.885271][T22678] netlink: 'syz.1.5301': attribute type 7 has an invalid length.
[  810.910789][T22678] netlink: 'syz.1.5301': attribute type 8 has an invalid length.
[  810.927914][T22678] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5301'.
[  811.223126][ T4940] Bluetooth: hci3: command tx timeout
[  811.497696][T22688] netlink: 6 bytes leftover after parsing attributes in process `syz.8.5305'.
[  811.530078][T22688] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  811.867481][T22697] fuse: fd is not a fuse device
[  811.891519][T22697] overlayfs: failed to clone upperpath
[  812.051814][T22673] loop5: detected capacity change from 0 to 131072
[  812.073528][T22673] F2FS-fs (loop5): invalid crc value
[  812.223352][T22673] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  812.259336][T22673] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  812.460706][T22461] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  812.555369][T22461] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  812.599355][T22461] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  812.685183][T22461] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  812.717808][T22461] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  812.732430][T22461] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  812.742935][T22461] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  812.745537][T22727] fuse: fd is not a fuse device
[  812.828224][T22461] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  813.130270][T22461] 8021q: adding VLAN 0 to HW filter on device bond0
[  813.258935][T22461] 8021q: adding VLAN 0 to HW filter on device team0
[  813.336888][ T4940] Bluetooth: hci3: command tx timeout
[  813.348000][T19023] bridge0: port 1(bridge_slave_0) entered blocking state
[  813.355231][T19023] bridge0: port 1(bridge_slave_0) entered forwarding state
[  813.419507][T19023] bridge0: port 2(bridge_slave_1) entered blocking state
[  813.426731][T19023] bridge0: port 2(bridge_slave_1) entered forwarding state
[  814.174348][T22775] fuse: fd is not a fuse device
[  814.618909][T22782] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5331'.
[  814.952836][T22796] netlink: 'syz.8.5335': attribute type 3 has an invalid length.
[  814.960868][T22796] netlink: 'syz.8.5335': attribute type 3 has an invalid length.
[  815.184638][T22800] fuse: fd is not a fuse device
[  815.347863][T22461] 8021q: adding VLAN 0 to HW filter on device batadv0
[  815.616418][T22461] veth0_vlan: entered promiscuous mode
[  815.676729][T22461] veth1_vlan: entered promiscuous mode
[  815.792006][T22461] veth0_macvtap: entered promiscuous mode
[  815.867068][T22461] veth1_macvtap: entered promiscuous mode
[  815.970500][T22461] batman_adv: batadv0: Interface activated: batadv_slave_0
[  816.050067][T22461] batman_adv: batadv0: Interface activated: batadv_slave_1
[  816.107346][T19007] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  816.428007][T10374] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  816.551109][T10374] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  816.615997][T22834] ref_ctr_offset mismatch. inode: 0xb16 offset: 0x0 ref_ctr_offset(old): 0x2000000000c0 ref_ctr_offset(new): 0x1000000008
[  816.738612][T10374] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  816.999585][T19050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  817.041778][T19050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  817.174006][T19023] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  817.181866][T19023] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  817.229333][T22863] netlink: 'syz.8.5353': attribute type 4 has an invalid length.
[  817.326198][T22863] netlink: 'syz.8.5353': attribute type 4 has an invalid length.
[  818.263441][   T30] audit: type=1326 audit(1780489167.768:641): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  818.370085][   T30] audit: type=1326 audit(1780489167.768:642): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  818.470370][   T30] audit: type=1326 audit(1780489167.768:643): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  818.538289][T22907] netlink: 'syz.1.5365': attribute type 10 has an invalid length.
[  818.547734][T22907] bridge0: port 2(bridge_slave_1) entered blocking state
[  818.550729][   T30] audit: type=1326 audit(1780489167.768:644): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  818.555144][T22907] bridge0: port 2(bridge_slave_1) entered listening state
[  818.586961][T22907] bridge0: port 1(bridge_slave_0) entered blocking state
[  818.594150][T22907] bridge0: port 1(bridge_slave_0) entered listening state
[  818.656801][   T30] audit: type=1326 audit(1780489168.118:645): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff663f5d68e code=0x7ffc0000
[  818.827624][   T30] audit: type=1326 audit(1780489168.118:646): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7ff663f5d68e code=0x7ffc0000
[  819.012284][   T30] audit: type=1326 audit(1780489168.118:647): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  819.071581][T22907] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  819.153766][   T30] audit: type=1326 audit(1780489168.118:648): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  819.271175][   T30] audit: type=1326 audit(1780489168.158:649): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  819.373708][   T30] audit: type=1326 audit(1780489168.158:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22894 comm="syz.3.5361" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff663f9ce59 code=0x7ffc0000
[  819.483947][ T5782] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[  819.758920][ T5782] usb 4-1: Using ep0 maxpacket: 16
[  819.808968][ T5782] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b1, bcdDevice= 0.40
[  819.862380][ T5782] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  819.920399][ T5782] usb 4-1: Product: syz
[  819.949696][ T5782] usb 4-1: Manufacturer: syz
[  819.974199][ T5782] usb 4-1: SerialNumber: syz
[  820.268166][ T5782] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -71
[  820.347275][ T5782] usb 4-1: USB disconnect, device number 8
[  821.813514][T17394] kernel write not supported for file bpf-prog (pid: 17394 comm: kworker/0:6)
[  821.921245][T22981] fuse: fd is not a fuse device
[  822.041025][ T5809] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  822.055160][T22979] loop5: detected capacity change from 0 to 256
[  822.834309][T23002] overlayfs: failed to clone lowerpath
[  823.593757][T23020] fuse: fd is not a fuse device
[  823.611607][ T5809] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  823.622526][ T5809] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  823.632282][ T5809] usb 4-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.80
[  823.641328][ T5809] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  823.676830][ T5809] usb 4-1: config 0 descriptor??
[  823.679121][T23023] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  824.530030][ T5809] cp2112 0003:10C4:EA90.0025: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.3-1/input0
[  824.974912][ T5809] cp2112 0003:10C4:EA90.0025: error requesting version
[  825.128891][ T5809] cp2112 0003:10C4:EA90.0025: probe with driver cp2112 failed with error -32
[  825.277108][T23063] fuse: fd is not a fuse device
[  825.469740][T23066] fuse: fd is not a fuse device
[  825.548739][T20390] usb 4-1: USB disconnect, device number 9
[  826.395081][T23090] fuse: fd is not a fuse device
[  826.651394][T23104] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5422'.
[  826.696189][T23104] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5422'.
[  827.614258][ T5782] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  827.912078][ T5782] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  827.956699][ T5782] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3
[  827.987466][ T5782] usb 4-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  828.009784][ T5782] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  828.058600][ T5782] usb 4-1: SerialNumber: syz
[  828.330952][ T5782] usb 4-1: 0:2 : does not exist
[  828.474471][ T5782] usb 4-1: USB disconnect, device number 10
[  828.979453][T23174] fuse: fd is not a fuse device
[  829.351578][T23184] netlink: 'syz.8.5443': attribute type 10 has an invalid length.
[  829.389923][T23184] syz_tun: entered promiscuous mode
[  830.857797][T23227] netlink: 'syz.6.5459': attribute type 12 has an invalid length.
[  831.130734][T23236] loop3: detected capacity change from 0 to 256
[  831.138754][T23236] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  831.248075][T23236] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  832.090072][T23263] fuse: fd is not a fuse device
[  832.204907][T23262] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  832.284303][T23269] bond0: (slave syz_tun): Releasing backup interface
[  832.790933][T23293] fuse: fd is not a fuse device
[  833.268835][T23306] fuse: fd is not a fuse device
[  833.806535][T23320] x_tables: duplicate underflow at hook 2
[  833.872329][T23324] fuse: fd is not a fuse device
[  834.014575][T23333] syz_tun: entered allmulticast mode
[  834.114369][T23340] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5498'.
[  835.154889][T23368] fuse: fd is not a fuse device
[  837.026767][T23424] netlink: 'syz.3.5532': attribute type 11 has an invalid length.
[  838.801854][T16426] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  838.818157][T16426] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  838.829126][T16426] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  838.844106][T16426] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  838.874384][T16426] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  839.537215][T23466] overlayfs: failed to clone lowerpath
[  840.745678][T23488] Invalid ELF header len 7
[  840.755681][T23488] Invalid ELF header len 7
[  840.995578][T16426] Bluetooth: hci5: command tx timeout
[  841.724895][T23454] bridge0: port 1(bridge_slave_0) entered blocking state
[  841.732200][T23454] bridge0: port 1(bridge_slave_0) entered disabled state
[  841.742661][T23454] bridge_slave_0: entered allmulticast mode
[  841.755136][T23454] bridge_slave_0: entered promiscuous mode
[  841.764195][T23454] bridge0: port 2(bridge_slave_1) entered blocking state
[  841.771499][T23454] bridge0: port 2(bridge_slave_1) entered disabled state
[  841.779073][T23454] bridge_slave_1: entered allmulticast mode
[  841.789364][T23454] bridge_slave_1: entered promiscuous mode
[  841.832782][T23454] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  841.846334][T23454] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  842.037233][T23454] team0: Port device team_slave_0 added
[  842.079447][T23454] team0: Port device team_slave_1 added
[  842.229936][T23454] batman_adv: batadv0: Adding interface: batadv_slave_0
[  842.254586][T23454] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  842.297136][T23454] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  842.315849][T23454] batman_adv: batadv0: Adding interface: batadv_slave_1
[  842.331423][T23454] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  842.389941][T23454] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  842.622458][T23454] hsr_slave_0: entered promiscuous mode
[  842.633894][T23454] hsr_slave_1: entered promiscuous mode
[  842.640997][T23454] debugfs: 'hsr0' already exists in 'hsr'
[  842.647817][T23454] Cannot create hsr debugfs directory
[  843.127017][T16426] Bluetooth: hci5: command tx timeout
[  844.101192][   T30] audit: type=1326 audit(1780489193.587:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23563 comm="syz.8.5578" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fdd5739ce59 code=0x0
[  844.669126][T23578] fuse: fd is not a fuse device
[  845.266981][T16426] Bluetooth: hci5: command tx timeout
[  845.652933][T23454] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  845.793994][T23454] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[  845.815281][T23454] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  845.946617][T23454] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  845.963266][T23454] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  846.039124][T23454] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[  846.162227][T23454] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  846.333744][T23454] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[  847.293570][T16426] Bluetooth: hci5: command tx timeout
[  847.517392][T23454] 8021q: adding VLAN 0 to HW filter on device bond0
[  847.661088][T23653] bridge_slave_0 (unregistering): left allmulticast mode
[  847.854980][T23653] bridge_slave_0 (unregistering): left promiscuous mode
[  847.862360][T23653] bridge0: port 1(bridge_slave_0) entered disabled state
[  848.831302][    C0] bridge0: port 1(bridge_slave_0) entered learning state
[  848.838524][    C0] bridge0: port 2(bridge_slave_1) entered learning state
[  848.915101][T23454] 8021q: adding VLAN 0 to HW filter on device team0
[  848.973216][T19007] bridge0: port 1(bridge_slave_0) entered blocking state
[  848.980403][T19007] bridge0: port 1(bridge_slave_0) entered forwarding state
[  849.087573][T10374] bridge0: port 2(bridge_slave_1) entered blocking state
[  849.094967][T10374] bridge0: port 2(bridge_slave_1) entered forwarding state
[  849.319305][T23685] 9p: Bad value for 'wfdno'
[  849.906734][T23701] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5606'.
[  849.967605][T23701] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5606'.
[  850.276997][T23717] fuse: fd is not a fuse device
[  850.610128][   T30] audit: type=1804 audit(1780489200.107:652): pid=23726 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.5614" name="bus" dev="ramfs" ino=60326 res=1 errno=0
[  850.812064][T23454] 8021q: adding VLAN 0 to HW filter on device batadv0
[  851.001268][T23454] veth0_vlan: entered promiscuous mode
[  851.074985][T23454] veth1_vlan: entered promiscuous mode
[  851.497662][T23454] veth0_macvtap: entered promiscuous mode
[  851.516757][T23454] veth1_macvtap: entered promiscuous mode
[  851.623143][T23454] batman_adv: batadv0: Interface activated: batadv_slave_0
[  851.635070][T23454] batman_adv: batadv0: Interface activated: batadv_slave_1
[  851.715890][T10374] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  851.745704][T10374] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  851.819748][T23757] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5621'.
[  851.833939][T19052] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  851.842940][T19052] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  851.886136][T23757] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5621'.
[  852.040065][T23759] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5621'.
[  852.059562][T23764] netlink: 8 bytes leftover after parsing attributes in process `syz.8.5623'.
[  852.088899][T23759] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5621'.
[  852.552898][T19031] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  852.597732][T19031] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  852.920701][T19031] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  852.928669][T19031] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  853.666785][T23803] loop2: detected capacity change from 0 to 512
[  853.868282][T23803] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  853.881042][T23803] ext4 filesystem being mounted at /0/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  853.984931][T23803] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000d40000 ro.
[  854.113853][T23814] netlink: 20 bytes leftover after parsing attributes in process `syz.1.5638'.
[  854.125955][T23803] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  854.302332][T23820] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5639'.
[  855.792747][T23866] team_slave_1: Caught tx_queue_len zero misconfig
[  855.952249][T23872] netlink: 'syz.8.5649': attribute type 1 has an invalid length.
[  856.335713][T23872] bond2: (slave dummy0): making interface the new active one
[  856.410643][T23872] bond2: (slave dummy0): Enslaving as an active interface with an up link
[  856.461769][T23885] bond2: entered promiscuous mode
[  856.474469][T23885] dummy0: entered promiscuous mode
[  857.775529][T23871] bond2: left promiscuous mode
[  857.903442][T23871] dummy0: left promiscuous mode
[  858.159052][T23890] workqueue: Failed to create a rescuer kthread for wq "ceph-watch-notify": -EINTR
[  858.231359][T23898] xt_hashlimit: size too large, truncated to 1048576
[  859.073097][T23917] fuse: fd is not a fuse device
[  859.386807][T23922] fuse: fd is not a fuse device
[  859.956987][T23929] uprobe: syz.4.5665:23929 failed to unregister, leaking uprobe
[  860.204871][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806a28c000: rx timeout, send abort
[  860.653409][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806a28f000: rx timeout, send abort
[  860.766162][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806a28c000: abort rx timeout. Force session deactivation
[  861.210907][    C0] vcan0: j1939_tp_rxtimer: 0xffff88806a28f000: abort rx timeout. Force session deactivation
[  861.950602][T23978] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5678'.
[  862.048088][T23978] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5678'.
[  862.131591][T10368] netdevsim netdevsim5 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  862.219944][T10368] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  862.480573][T23985] batman_adv: batadv0: Adding interface: dummy0
[  862.486847][T23985] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  862.602473][T23985] batman_adv: batadv0: Interface activated: dummy0
[  862.704060][T23990] batadv0: mtu less than device minimum
[  862.791900][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.806872][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.818770][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.830698][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.842574][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.854482][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.866345][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.881063][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  862.892991][T23990] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  863.100919][    C0] Unknown status report in ack skb
[  863.458803][   T30] audit: type=1326 audit(1780489212.967:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  863.496532][T10368] netdevsim netdevsim5 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  863.514185][T10368] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  863.548822][   T30] audit: type=1326 audit(1780489212.967:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  863.582275][T24022] Bluetooth: received HCILL_WAKE_UP_IND in state 2
[  863.621244][T19052] Bluetooth: hci6: Frame reassembly failed (-84)
[  863.672050][   T30] audit: type=1326 audit(1780489212.967:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  863.696976][   T30] audit: type=1326 audit(1780489212.967:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  863.722780][   T30] audit: type=1326 audit(1780489212.967:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  863.747854][   T30] audit: type=1326 audit(1780489212.967:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  863.901905][   T30] audit: type=1326 audit(1780489212.967:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  863.991852][   T30] audit: type=1326 audit(1780489212.967:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  864.023170][T10368] netdevsim netdevsim5 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  864.055398][T10368] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  864.094249][   T30] audit: type=1326 audit(1780489212.967:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  864.136298][T24037] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5697'.
[  864.160216][   T30] audit: type=1326 audit(1780489212.967:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24014 comm="syz.2.5689" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  864.365797][T24037] bond0: entered promiscuous mode
[  864.373823][T24037] bond_slave_0: entered promiscuous mode
[  864.386586][T24037] bond_slave_1: entered promiscuous mode
[  864.399464][T24037] bridge0: entered promiscuous mode
[  864.413163][T24037] bridge1: port 1(bond0) entered blocking state
[  864.440203][T24037] bridge1: port 1(bond0) entered disabled state
[  864.469059][T24037] bond0: entered allmulticast mode
[  864.487476][T24037] bond_slave_0: entered allmulticast mode
[  864.544671][T24037] bond_slave_1: entered allmulticast mode
[  864.564215][T24037] bridge0: entered allmulticast mode
[  864.674342][T24042] lo: Caught tx_queue_len zero misconfig
[  865.007951][T10368] netdevsim netdevsim5 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  865.019518][T10368] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  865.620100][T24024] Bluetooth: hci6: command 0x1003 tx timeout
[  865.627883][T16426] Bluetooth: hci6: Opcode 0x1003 failed: -110
[  866.296587][T10368] bridge_slave_1: left allmulticast mode
[  866.302382][T10368] bridge_slave_1: left promiscuous mode
[  866.308165][T10368] bridge0: port 2(bridge_slave_1) entered disabled state
[  867.460455][T24110] loop3: detected capacity change from 0 to 136
[  867.592516][T10368] bond2 (unregistering): (slave geneve3): Releasing active interface
[  867.834483][T10368] bond1 (unregistering): (slave geneve2): Releasing active interface
[  868.835549][T24110] loop3: detected capacity change from 0 to 32768
[  868.971389][T24110] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.5718 (24110)
[  869.012473][T10368] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  869.069228][T10368] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  869.118806][T24110] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  869.128938][T24110] BTRFS info (device loop3): using crc32c checksum algorithm
[  869.142046][T10368] bond0 (unregistering): Released all slaves
[  869.303334][T10368] bond1 (unregistering): Released all slaves
[  869.443335][T24110] BTRFS info (device loop3): enabling ssd optimizations
[  869.505268][T24110] BTRFS info (device loop3): turning on flush-on-commit
[  869.512256][T24110] BTRFS info (device loop3): enabling free space tree
[  869.519021][T24110] BTRFS info (device loop3): enabling auto defrag
[  869.525456][T24110] BTRFS info (device loop3): use lzo compression, level 1
[  869.533256][T24110] BTRFS info (device loop3): max_inline set to 4096
[  869.577475][T10368] bond2 (unregistering): Released all slaves
[  869.712608][T24171] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5728'.
[  869.956923][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[  870.357914][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!!
[  870.571073][T10368] tipc: Left network mode
[  870.724834][T22461] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  870.770748][T24185] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5732'.
[  870.782106][T24186] netlink: 'syz.4.5730': attribute type 10 has an invalid length.
[  870.791187][T24185] netlink: 8 bytes leftover after parsing attributes in process `syz.2.5732'.
[  870.859990][T24187] fuse: fd is not a fuse device
[  871.106194][T24182] bond1: (slave lo): Releasing backup interface
[  871.112564][T24195] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5736'.
[  871.166554][T24182] bond1: (slave lo): last VLAN challenged slave left bond - VLAN blocking is removed
[  871.479549][T24182] bond0: (slave bridge0): Releasing backup interface
[  871.535559][T24213] raw_sendmsg: syz.8.5737 forgot to set AF_INET. Fix it!
[  871.580309][T24212] netlink: 'syz.1.5740': attribute type 1 has an invalid length.
[  871.580765][T24182] bridge0: left promiscuous mode
[  871.686310][T24182] bridge0: left allmulticast mode
[  871.776349][T24182] bond0: left allmulticast mode
[  871.797786][T24182] bond_slave_0: left allmulticast mode
[  871.821815][T24182] bond_slave_1: left allmulticast mode
[  871.841115][T24182] bridge1: port 1(bond0) entered disabled state
[  871.901610][T24221] netlink: 'syz.1.5740': attribute type 10 has an invalid length.
[  871.909468][T24221] netlink: 40 bytes leftover after parsing attributes in process `syz.1.5740'.
[  871.923571][T24182] batman_adv: batadv0: Interface deactivated: dummy0
[  871.935366][T24182] batman_adv: batadv0: Removing interface: dummy0
[  871.959291][   T30] kauditd_printk_skb: 28 callbacks suppressed
[  871.959315][   T30] audit: type=1326 audit(1780489221.477:691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24220 comm="syz.8.5742" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdd5739ce59 code=0x0
[  872.068808][T24182] bridge_slave_1: left allmulticast mode
[  872.074587][T24182] bridge_slave_1: left promiscuous mode
[  872.080395][T24182] bridge0: port 2(bridge_slave_1) entered disabled state
[  872.192226][T24182] bond2: (slave veth0_to_bond): Releasing backup interface
[  872.261560][T24182] bond0: (slave bond_slave_0): Releasing backup interface
[  872.293645][T24182] bond_slave_0: left promiscuous mode
[  872.301396][T24182] bond0: (slave bond_slave_1): Releasing backup interface
[  872.314243][T24182] bond_slave_1: left promiscuous mode
[  872.323181][T24182] team0: Port device team_slave_0 removed
[  872.331548][T24182] team0: Port device team_slave_1 removed
[  872.350637][T24182] batman_adv: batadv0: Removing interface: batadv_slave_0
[  872.359015][T24182] batman_adv: batadv0: Removing interface: batadv_slave_1
[  872.367731][T24182] net_ratelimit: 10 callbacks suppressed
[  872.367750][T24182] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  872.392675][T24186] bond0: left promiscuous mode
[  872.399831][T24186] 8021q: adding VLAN 0 to HW filter on device bond0
[  872.409905][T24186] team0: Port device bond0 added
[  872.428056][T24212] workqueue: Failed to create a rescuer kthread for wq "bond6": -EINTR
[  872.544770][T24221] dummy0: entered promiscuous mode
[  872.956141][T24249] fuse: fd is not a fuse device
[  873.387109][T24270] overlayfs: failed to clone lowerpath
[  873.407242][T24256] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  873.997617][T10368] hsr_slave_0: left promiscuous mode
[  874.016871][T10368] hsr_slave_1: left promiscuous mode
[  874.023778][T10368] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  874.031218][T10368] batman_adv: batadv0: Removing interface: batadv_slave_0
[  874.080045][T10368] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  874.087473][T10368] batman_adv: batadv0: Removing interface: batadv_slave_1
[  874.244365][T10368] veth1_macvtap: left promiscuous mode
[  874.249973][T10368] veth0_macvtap: left promiscuous mode
[  874.255563][T10368] veth1_vlan: left promiscuous mode
[  874.260848][T10368] veth0_vlan: left promiscuous mode
[  875.309390][T10368] team0 (unregistering): Port device team_slave_1 removed
[  875.731860][ T5286] 8021q: adding VLAN 0 to HW filter on device eth9
[  876.084683][T24337] netlink: 8 bytes leftover after parsing attributes in process `syz.1.5779'.
[  876.134109][T24347] netlink: 'syz.8.5783': attribute type 2 has an invalid length.
[  876.847303][T24366] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5788'.
[  876.919498][T19023] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  876.934253][T24366] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5788'.
[  876.950990][T19023] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  876.979499][T19023] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  877.080265][T19023] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  877.163794][T10368] IPVS: stop unused estimator thread 0...
[  877.599959][T24377] netlink: 36 bytes leftover after parsing attributes in process `syz.1.5792'.
[  877.918416][T24375] 9pnet: p9_errstr2errno: server reported unknown error 000000000
[  878.507743][T24391] netlink: 'syz.8.5797': attribute type 10 has an invalid length.
[  878.534013][T24391] 8021q: adding VLAN 0 to HW filter on device team0
[  878.911014][    C0] bridge0: port 2(bridge_slave_1) entered forwarding state
[  878.918249][    C0] bridge0: topology change detected, propagating
[  878.924828][    C0] bridge0: port 1(bridge_slave_0) entered forwarding state
[  878.932014][    C0] bridge0: topology change detected, propagating
[  879.216273][ T5286] 8021q: adding VLAN 0 to HW filter on device eth10
[  880.983003][T24454] netlink: 4 bytes leftover after parsing attributes in process `syz.1.5811'.
[  881.123770][T24457] netlink: 12 bytes leftover after parsing attributes in process `syz.1.5811'.
[  881.544078][ T5286] 8021q: adding VLAN 0 to HW filter on device eth11
[  881.770748][T24468] netlink: 12 bytes leftover after parsing attributes in process `syz.4.5816'.
[  882.024556][T24478] VFS: Mount too revealing
[  882.588049][T24506] syz_tun: entered allmulticast mode
[  882.643839][T24504] syz_tun: left allmulticast mode
[  882.696754][T24509] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5824'.
[  882.760472][T24505] xt_hashlimit: size too large, truncated to 1048576
[  883.249900][T24524] netlink: 'syz.3.5831': attribute type 10 has an invalid length.
[  883.415246][T24524] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[  883.459210][T24524] team0: Failed to send port change of device netdevsim1 via netlink (err -105)
[  883.489496][T24524] team0: Failed to send options change via netlink (err -105)
[  883.513489][T24524] team0: Port device netdevsim1 added
[  883.515942][T24530] fuse: fd is not a fuse device
[  883.553859][ T5286] 8021q: adding VLAN 0 to HW filter on device eth12
[  884.340101][T24552] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5841'.
[  884.759051][   T30] audit: type=1800 audit(1780489234.257:692): pid=24558 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.5855" name="bus" dev="tmpfs" ino=198 res=0 errno=0
[  885.140601][T24565] loop3: detected capacity change from 0 to 512
[  885.220716][T24565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  885.308219][T24565] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  885.577784][T22461] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  886.782476][T24612] overlayfs: failed to clone lowerpath
[  887.192664][T24617] loop3: detected capacity change from 0 to 40427
[  887.225614][T24617] F2FS-fs (loop3): invalid crc value
[  887.300866][T24617] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  887.317680][T24617] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  887.468530][   T30] audit: type=1800 audit(1780489236.907:693): pid=24617 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.5862" name="file1" dev="loop3" ino=10 res=0 errno=0
[  887.505921][T24617] syz.3.5862: attempt to access beyond end of device
[  887.505921][T24617] loop3: rw=34817, sector=77824, nr_sectors = 8 limit=40427
[  887.633192][T22461] syz-executor: attempt to access beyond end of device
[  887.633192][T22461] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  887.651386][T22461] CPU: 0 UID: 0 PID: 22461 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[  887.651427][T22461] Tainted: [L]=SOFTLOCKUP
[  887.651437][T22461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  887.651453][T22461] Call Trace:
[  887.651464][T22461]  <TASK>
[  887.651475][T22461]  dump_stack_lvl+0xe8/0x150
[  887.651512][T22461]  f2fs_stop_checkpoint+0x3c7/0x590
[  887.651555][T22461]  f2fs_write_end_io+0x1274/0x1740
[  887.651625][T22461]  __submit_merged_bio+0x256/0x6a0
[  887.651668][T22461]  __submit_merged_write_cond+0x3c9/0x4e0
[  887.651715][T22461]  ? __pfx___submit_merged_write_cond+0x10/0x10
[  887.651770][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.651821][T22461]  f2fs_write_data_pages+0x287e/0x34f0
[  887.651858][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.651942][T22461]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  887.651977][T22461]  ? is_bpf_text_address+0x26/0x2b0
[  887.652023][T22461]  ? arch_stack_walk+0xfb/0x150
[  887.652101][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652131][T22461]  ? add_lock_to_list+0xc7/0x100
[  887.652171][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652202][T22461]  ? __lock_acquire+0x146e/0x2cf0
[  887.652272][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652302][T22461]  ? do_raw_spin_lock+0x12b/0x2f0
[  887.652351][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652388][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652418][T22461]  ? do_raw_spin_unlock+0xf5/0x210
[  887.652458][T22461]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  887.652497][T22461]  do_writepages+0x32e/0x550
[  887.652530][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652564][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652600][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652630][T22461]  ? do_raw_spin_unlock+0xf5/0x210
[  887.652676][T22461]  filemap_fdatawrite+0x1e9/0x2f0
[  887.652713][T22461]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  887.652805][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652839][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.652877][T22461]  ? do_raw_spin_unlock+0xf5/0x210
[  887.652924][T22461]  f2fs_sync_dirty_inodes+0x30e/0x830
[  887.652988][T22461]  f2fs_write_checkpoint+0x9df/0x26a0
[  887.653027][T22461]  ? __lock_acquire+0x6b5/0x2cf0
[  887.653104][T22461]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  887.653142][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.653255][T22461]  kill_f2fs_super+0x314/0x730
[  887.653303][T22461]  ? __pfx_kill_f2fs_super+0x10/0x10
[  887.653362][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.653393][T22461]  ? lockdep_hardirqs_on+0x7a/0x110
[  887.653420][T22461]  ? srso_alias_return_thunk+0x5/0xfbef5
[  887.653471][T22461]  deactivate_locked_super+0xbc/0x130
[  887.653513][T22461]  cleanup_mnt+0x437/0x4d0
[  887.653552][T22461]  ? _raw_spin_unlock_irq+0x23/0x50
[  887.653601][T22461]  task_work_run+0x1d9/0x270
[  887.653645][T22461]  ? __pfx_task_work_run+0x10/0x10
[  887.653700][T22461]  exit_to_user_mode_loop+0x193/0x680
[  887.653725][T22461]  ? rcu_is_watching+0x15/0xb0
[  887.653761][T22461]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  887.653792][T22461]  do_syscall_64+0x353/0x580
[  887.653825][T22461]  ? trace_irq_disable+0x3b/0x140
[  887.653874][T22461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  887.653901][T22461] RIP: 0033:0x7ff663f9e097
[  887.653926][T22461] Code: a2 c7 05 5c 06 25 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  887.653946][T22461] RSP: 002b:00007ffdaad39208 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  887.653973][T22461] RAX: 0000000000000000 RBX: 00007ff6640321ca RCX: 00007ff663f9e097
[  887.653991][T22461] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdaad392c0
[  887.654008][T22461] RBP: 00007ffdaad392c0 R08: 00007ffdaad3a2c0 R09: 00000000ffffffff
[  887.654026][T22461] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdaad3a350
[  887.654043][T22461] R13: 00007ff6640321ca R14: 00000000000d88c3 R15: 00007ffdaad3a390
[  887.654091][T22461]  </TASK>
[  887.654102][T22461] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  888.224869][   T30] audit: type=1326 audit(1780489237.717:694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  888.250027][   T30] audit: type=1326 audit(1780489237.777:695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  888.337881][   T30] audit: type=1326 audit(1780489237.777:696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  888.417785][   T30] audit: type=1326 audit(1780489237.777:697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  888.442557][   T30] audit: type=1326 audit(1780489237.777:698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  888.467268][   T30] audit: type=1326 audit(1780489237.827:699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  888.581439][   T30] audit: type=1326 audit(1780489237.827:700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  888.607809][   T30] audit: type=1326 audit(1780489237.827:701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24633 comm="syz.4.5866" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f085419ce59 code=0x7ffc0000
[  889.623310][T24671] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  889.974582][T24682] fuse: fd is not a fuse device
[  890.019789][T24687] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5882'.
[  890.028705][T24687] netlink: 8 bytes leftover after parsing attributes in process `syz.6.5882'.
[  890.191680][T24692] loop3: detected capacity change from 0 to 1024
[  890.226083][T24692] EXT4-fs: Ignoring removed bh option
[  890.433368][T24692] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  890.522587][T24706] netlink: 'syz.1.5888': attribute type 4 has an invalid length.
[  890.608409][T24707] netlink: 'syz.1.5888': attribute type 4 has an invalid length.
[  891.760911][T22461] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  891.848901][T24737] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.5896'.
[  892.234639][T24756] overlayfs: failed to clone upperpath
[  892.827950][T24772] xt_hashlimit: size too large, truncated to 1048576
[  893.379333][T24781] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  893.386989][T24781] batadv_slave_1: entered promiscuous mode
[  893.716228][T24796] netlink: 'syz.3.5920': attribute type 4 has an invalid length.
[  893.769245][T24797] netlink: 'syz.3.5920': attribute type 4 has an invalid length.
[  894.053014][   T30] kauditd_printk_skb: 17 callbacks suppressed
[  894.053032][   T30] audit: type=1326 audit(1780489243.517:719): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  894.083848][   T30] audit: type=1326 audit(1780489243.517:720): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  894.194400][   T30] audit: type=1326 audit(1780489243.517:721): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  894.219586][   T30] audit: type=1326 audit(1780489243.517:722): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  894.423611][   T30] audit: type=1326 audit(1780489243.657:723): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  894.537059][   T30] audit: type=1326 audit(1780489243.707:724): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  894.781973][   T30] audit: type=1326 audit(1780489243.707:725): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  894.806815][   T30] audit: type=1326 audit(1780489243.707:726): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  895.019549][   T30] audit: type=1326 audit(1780489243.707:727): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  895.092359][   T30] audit: type=1326 audit(1780489243.707:728): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24798 comm="syz.1.5922" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x7ffc0000
[  895.787352][T24834] syz_tun: entered allmulticast mode
[  896.094457][T24841] netlink: 'syz.6.5936': attribute type 1 has an invalid length.
[  896.206387][T24841] 8021q: adding VLAN 0 to HW filter on device bond3
[  896.374649][T24841] bond3: (slave geneve2): making interface the new active one
[  896.428909][T24841] bond3: (slave geneve2): Enslaving as an active interface with an up link
[  897.429492][T24878] netlink: 'syz.6.5946': attribute type 4 has an invalid length.
[  897.465929][T24878] netlink: 'syz.6.5946': attribute type 4 has an invalid length.
[  898.984944][T24908] fuse: fd is not a fuse device
[  899.851645][T24938] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[  900.277146][T24958] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5965'.
[  900.286061][T24958] netlink: 8 bytes leftover after parsing attributes in process `syz.4.5965'.
[  902.240544][T24984] netlink: 12 bytes leftover after parsing attributes in process `syz.8.5972'.
[  902.449493][T17049] IPVS: starting estimator thread 0...
[  902.707429][T24991] IPVS: using max 26 ests per chain, 62400 per kthread
[  903.634638][T25016] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5982'.
[  903.762488][T25021] syz_tun: entered allmulticast mode
[  904.457010][T25017] syz_tun: left allmulticast mode
[  904.808318][T25029] can-isotp: isotp_sendmsg: can_send_ret -ENETDOWN
[  905.068838][T16426] Bluetooth: hci4: unexpected event 0x03 length: 1 < 11
[  905.277059][T25051] netlink: 4 bytes leftover after parsing attributes in process `syz.8.5996'.
[  905.693103][T25064] fuse: fd is not a fuse device
[  907.721982][T25095] fuse: fd is not a fuse device
[  907.875817][   T30] kauditd_printk_skb: 6 callbacks suppressed
[  907.875840][   T30] audit: type=1326 audit(1780489258.379:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25096 comm="syz.3.6012" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff663f9ce59 code=0x7fc00000
[  907.935702][   T30] audit: type=1326 audit(1780489258.379:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25096 comm="syz.3.6012" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff663f9ce59 code=0x7fc00000
[  907.960680][   T30] audit: type=1326 audit(1780489258.449:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25096 comm="syz.3.6012" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7ff663f96bd7 code=0x7fc00000
[  908.076811][   T30] audit: type=1326 audit(1780489258.449:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25096 comm="syz.3.6012" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7ff663f3e1d9 code=0x7fc00000
[  908.117441][   T30] audit: type=1326 audit(1780489258.449:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25096 comm="syz.3.6012" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=13 compat=0 ip=0x7ff663f3e29d code=0x7fc00000
[  908.188041][   T30] audit: type=1326 audit(1780489258.449:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25096 comm="syz.3.6012" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff663f9ce59 code=0x7fc00000
[  908.316886][T25107] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6017'.
[  909.151128][ T5782] kernel read not supported for file [fscontext] (pid: 5782 comm: kworker/1:6)
[  909.175011][ T5777] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  909.324732][T25143] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6028'.
[  909.397924][ T5777] usb 4-1: config 0 interface 0 altsetting 251 has an endpoint descriptor with address 0x3B, changing to 0xB
[  909.422394][ T5777] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0xB has invalid maxpacket 32454, setting to 64
[  909.435634][T25143] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  909.451486][ T5777] usb 4-1: config 0 interface 0 has no altsetting 0
[  909.475538][ T5777] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  909.487960][T25143] batman_adv: batadv0: Removing interface: batadv_slave_1
[  909.502914][ T5777] usb 4-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  909.531340][ T5777] usb 4-1: Product: syz
[  909.539405][ T5777] usb 4-1: Manufacturer: syz
[  909.549238][ T5777] usb 4-1: SerialNumber: syz
[  909.669560][ T5777] usb 4-1: config 0 descriptor??
[  909.687344][T25129] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  909.713455][ T5777] usb 4-1: selecting invalid altsetting 0
[  910.078000][T25129] usb 4-1: cannot submit urb 0, error -2: endpoint not enabled
[  910.086714][T25129] usb 4-1: cannot submit urb 0, error -2: endpoint not enabled
[  910.094803][T25129] usb 4-1: cannot submit urb 0, error -2: endpoint not enabled
[  910.102798][T25129] usb 4-1: cannot submit urb 0, error -2: endpoint not enabled
[  910.116443][T25129] usb 4-1: cannot submit urb 0, error -2: endpoint not enabled
[  910.166706][T25129] usb 4-1: cannot submit urb 0, error -2: endpoint not enabled
[  910.226898][T25129] usb 4-1: cannot submit urb 0, error -2: endpoint not enabled
[  910.261864][T20390] usb 4-1: USB disconnect, device number 11
[  912.211888][T25183] netlink: 'syz.1.6040': attribute type 1 has an invalid length.
[  912.322082][T25187] fuse: fd is not a fuse device
[  914.332153][   T30] audit: type=1326 audit(1780489264.829:741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdd5739ce59 code=0x0
[  914.487927][   T30] audit: type=1326 audit(1780489265.009:742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd5739ce59 code=0x7ffc0000
[  914.512791][   T30] audit: type=1326 audit(1780489265.009:743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd5739ce59 code=0x7ffc0000
[  914.537594][   T30] audit: type=1326 audit(1780489265.019:744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd5739ce59 code=0x7ffc0000
[  914.562321][   T30] audit: type=1326 audit(1780489265.019:745): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd5739ce59 code=0x7ffc0000
[  914.648531][   T30] audit: type=1326 audit(1780489265.019:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd5739ce59 code=0x7ffc0000
[  914.675945][   T30] audit: type=1326 audit(1780489265.019:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=426 compat=0 ip=0x7fdd5739ce59 code=0x7ffc0000
[  914.844310][   T30] audit: type=1326 audit(1780489265.079:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdd5735d68e code=0x7ffc0000
[  914.885915][   T30] audit: type=1326 audit(1780489265.119:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdd5735d68e code=0x7ffc0000
[  914.953031][   T30] audit: type=1326 audit(1780489265.129:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25237 comm="syz.8.6058" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdd5735d68e code=0x7ffc0000
[  915.563983][T25259] uprobe: syz.3.6065:25259 failed to unregister, leaking uprobe
[  916.027271][T25267] loop3: detected capacity change from 0 to 2048
[  916.062980][T25267] udf: Bad value for 'lastblock'
[  916.169937][T25271] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  916.306799][T25279] overlayfs: failed to clone upperpath
[  916.321394][T25275] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6072'.
[  916.446960][T25284] bridge2: port 1(veth0_to_bond) entered blocking state
[  916.475406][T25284] bridge2: port 1(veth0_to_bond) entered disabled state
[  916.503596][T25284] veth0_to_bond: entered allmulticast mode
[  916.528177][T25284] veth0_to_bond: entered promiscuous mode
[  918.109972][T25343] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  918.214611][T25343] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  918.302837][T25343] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  919.387660][T25369] netlink: 'syz.3.6104': attribute type 1 has an invalid length.
[  919.404305][T25369] netlink: 63735 bytes leftover after parsing attributes in process `syz.3.6104'.
[  920.175390][T25388] syz_tun: entered allmulticast mode
[  920.183914][T25388] syz_tun: left allmulticast mode
[  923.100500][T25447] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6124'.
[  923.109503][T25447] netlink: 'syz.1.6124': attribute type 3 has an invalid length.
[  923.117235][T25447] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6124'.
[  923.126540][T25447] netlink: 'syz.1.6124': attribute type 3 has an invalid length.
[  923.658128][ T5782] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  923.934831][ T5782] usb 4-1: Using ep0 maxpacket: 16
[  923.958019][ T5782] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  924.000874][ T5782] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  924.041728][ T5782] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  924.074637][ T5782] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  924.104215][ T5782] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  924.146688][ T5782] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  924.164928][ T5782] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  924.181363][ T5782] usb 4-1: Manufacturer: syz
[  924.217826][ T5782] usb 4-1: config 0 descriptor??
[  924.506614][ T5782] rc_core: IR keymap rc-hauppauge not found
[  924.524989][ T5782] Registered IR keymap rc-empty
[  924.530542][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  924.571743][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  924.617458][ T5782] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  924.677162][ T5782] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input34
[  924.755963][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  924.843077][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  924.899930][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  924.944988][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  925.015457][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  925.067649][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  925.124822][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  925.174866][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  925.231324][T25492] trusted_key: encrypted_key: keyword 'new' not allowed when called from .update method
[  925.294658][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  925.396037][ T5782] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  925.474803][ T5782] mceusb 4-1:0.0: Registered 424242424242 with mce emulator interface version 1
[  925.534345][ T5782] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  925.561423][ T5782] usb 4-1: USB disconnect, device number 12
[  926.428771][T25522] bridge0: port 3(vlan2) entered blocking state
[  926.459249][T25522] bridge0: port 3(vlan2) entered disabled state
[  926.475673][T25522] vlan2: entered allmulticast mode
[  926.493788][T25522] vlan2: entered promiscuous mode
[  926.549622][T25527] bridge0: port 1(bridge_slave_0) entered disabled state
[  926.602390][T25527] bridge_slave_1: left allmulticast mode
[  926.611634][T25527] bridge_slave_1: left promiscuous mode
[  926.629727][T25527] bridge0: port 2(bridge_slave_1) entered disabled state
[  926.725877][T25527] bond0: (slave bond_slave_0): Releasing backup interface
[  926.791232][T25527] bond0: (slave bond_slave_1): Releasing backup interface
[  926.887710][T25527] team0: Port device team_slave_0 removed
[  926.890475][T25534] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6156'.
[  926.920867][T25527] team0: Port device team_slave_1 removed
[  926.939452][T25527] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  926.957779][T25527] batman_adv: batadv0: Removing interface: batadv_slave_0
[  926.970516][T25527] batman_adv: batadv0: Removing interface: batadv_slave_1
[  927.005076][T25527] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  927.081285][T25534] bond4: (slave syz_tun): Releasing active interface
[  928.343149][T16426] Bluetooth: hci3: command 0x0406 tx timeout
[  928.870640][T25574] fuse: fd is not a fuse device
[  930.353859][T24024] Bluetooth: hci4: unexpected event for opcode 0x080f
[  931.314934][T25633] xt_hashlimit: size too large, truncated to 1048576
[  931.320393][T25635] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6198'.
[  931.361925][T25635] netlink: 32 bytes leftover after parsing attributes in process `syz.4.6198'.
[  931.388053][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[  931.748629][T25639] fuse: fd is not a fuse device
[  934.461913][T24024] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  934.474991][T24024] Bluetooth: hci4: Injecting HCI hardware error event
[  934.495069][T16426] Bluetooth: hci4: hardware error 0x00
[  934.983634][T25710] fuse: fd is not a fuse device
[  937.323592][T16426] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  938.045142][T25777] netlink: 52 bytes leftover after parsing attributes in process `syz.8.6241'.
[  938.055488][T25777] netlink: 76 bytes leftover after parsing attributes in process `syz.8.6241'.
[  938.065873][T25777] netlink: 52 bytes leftover after parsing attributes in process `syz.8.6241'.
[  939.048746][ T5809] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  939.766657][ T5809] usb 4-1: Using ep0 maxpacket: 32
[  939.900695][T25825] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6262'.
[  940.001472][T25827] netlink: 24 bytes leftover after parsing attributes in process `syz.8.6261'.
[  940.128120][T25827] netlink: 36 bytes leftover after parsing attributes in process `syz.8.6261'.
[  940.166676][T25830] overlayfs: failed to clone upperpath
[  940.425434][ T5809] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  940.436863][ T5809] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  940.446625][ T5809] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  940.455664][ T5809] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  940.474986][ T5809] usb 4-1: config 0 descriptor??
[  941.337421][ T5809] savu 0003:1E7D:2D5A.0026: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.3-1/input0
[  941.707790][   T30] kauditd_printk_skb: 43 callbacks suppressed
[  941.707814][   T30] audit: type=1800 audit(1780489292.179:794): pid=25836 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.6265" name="bus" dev="ramfs" ino=65007 res=0 errno=0
[  942.230305][T25872] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6275'.
[  942.272958][ T5777] usb 4-1: USB disconnect, device number 13
[  942.336227][T25875] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6279'.
[  942.566135][T25884] netlink: 'syz.1.6282': attribute type 1 has an invalid length.
[  942.706605][T25884] 8021q: adding VLAN 0 to HW filter on device bond7
[  942.721104][T25887] bond7: entered allmulticast mode
[  942.870003][T25884] bond7: (slave ip6gretap2): making interface the new active one
[  942.901866][T25884] ip6gretap2: entered allmulticast mode
[  942.917301][T25884] bond7: (slave ip6gretap2): Enslaving as an active interface with an up link
[  943.656839][T25913] IPVS: Scheduler module ip_vs_sip not found
[  945.444636][T25968] netlink: 'syz.2.6309': attribute type 39 has an invalid length.
[  945.531141][T25969] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  945.698438][T25965] batadv0: entered promiscuous mode
[  945.726459][T25965] 8021q: adding VLAN 0 to HW filter on device macsec1
[  945.753788][T25965] batadv0: left promiscuous mode
[  945.857808][T25975] bond2: entered allmulticast mode
[  945.914863][T25966] bond2: left allmulticast mode
[  946.041663][T25984] netlink: 6068 bytes leftover after parsing attributes in process `syz.8.6314'.
[  946.435404][T25995] netlink: 'syz.1.6318': attribute type 1 has an invalid length.
[  946.594063][T26002] netlink: 'syz.8.6320': attribute type 1 has an invalid length.
[  946.702362][T25995] netlink: 28 bytes leftover after parsing attributes in process `syz.1.6318'.
[  946.783350][T25998] 8021q: adding VLAN 0 to HW filter on device bond9
[  946.796031][T25998] bond8: (slave bond9): making interface the new active one
[  946.805958][T25998] bond8: (slave bond9): Enslaving as an active interface with an up link
[  946.836376][T26004] bond8: (slave gretap2): Enslaving as a backup interface with an up link
[  947.096374][T26002] 8021q: adding VLAN 0 to HW filter on device bond4
[  947.148508][T26008] veth0_virt_wifi: entered promiscuous mode
[  947.292126][T26008] bond4: (slave veth0_virt_wifi): Enslaving as an active interface with a down link
[  947.380164][T25995] 8021q: adding VLAN 0 to HW filter on device bond8
[  947.468663][T26011] bond4: (slave veth0_virt_wifi): Releasing active interface
[  948.861684][T26052] fuse: fd is not a fuse device
[  949.085903][T26054] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6336'.
[  949.208115][T26056] binder: 26055:26056 ioctl c0306201 2000000001c0 returned -14
[  950.698248][T26077] xt_hashlimit: size too large, truncated to 1048576
[  952.233876][T26110] netlink: 8 bytes leftover after parsing attributes in process `syz.3.6356'.
[  952.624285][T26115] ptrace attach of "ci-upstream-kasan-gce-root/syz-executor exec"[23454] was attempted by "ci-upstream-kasan-gce-root/syz-executor exec"[26115]
[  953.341342][T26119] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6360'.
[  953.379853][T26119] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6360'.
[  953.423146][T26119] vlan0: entered promiscuous mode
[  953.515020][T26119] batadv_slave_0: entered promiscuous mode
[  953.669457][ T5764] libceph: connect (1)[c::]:6789 error -101
[  953.681580][ T5764] libceph: mon0 (1)[c::]:6789 connect error
[  953.879563][T26139] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6367'.
[  953.894396][T26139] bond0: option arp_validate: invalid value (18446744073491447808)
[  953.971276][ T5764] libceph: connect (1)[c::]:6789 error -101
[  953.980170][T26126] ceph: No mds server is up or the cluster is laggy
[  954.007058][ T5764] libceph: mon0 (1)[c::]:6789 connect error
[  954.149654][T26146] netlink: 'syz.8.6368': attribute type 13 has an invalid length.
[  954.218576][T26148] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6371'.
[  954.252126][T26148] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6371'.
[  954.278471][T26150] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6370'.
[  954.365924][T26148] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6371'.
[  954.478931][T26157] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6370'.
[  955.637187][T26172] fuse: fd is not a fuse device
[  956.359138][T26193] netlink: 12 bytes leftover after parsing attributes in process `syz.4.6385'.
[  956.584082][T26203] netlink: 'syz.4.6385': attribute type 10 has an invalid length.
[  956.592117][T26203] dummy0: entered promiscuous mode
[  956.768036][T26208] fuse: fd is not a fuse device
[  956.852713][   T30] audit: type=1326 audit(1780489307.329:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26212 comm="syz.6.6393" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff5dcd9ce59 code=0x0
[  960.095640][T26266] netlink: 'syz.8.6410': attribute type 1 has an invalid length.
[  960.292804][T26266] 8021q: adding VLAN 0 to HW filter on device bond5
[  960.397344][T26275] gretap2: entered promiscuous mode
[  960.457099][T26275] bond5: (slave gretap2): making interface the new active one
[  960.466131][T26275] bond5: (slave gretap2): Enslaving as an active interface with an up link
[  960.487830][T26280] Bluetooth: hci0: invalid length 0, exp 2 for type 8
[  960.905052][T26291] netlink: 'syz.6.6418': attribute type 11 has an invalid length.
[  961.060420][T26291] virt_wifi0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  961.124194][T26291] 8021q: adding VLAN 0 to HW filter on device bond1
[  961.349505][T10368] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  961.358278][T10368] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  961.367017][T10368] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  961.375783][T10368] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  963.282993][T26328] fuse: fd is not a fuse device
[  964.339831][T26348] tipc: Failed to remove unknown binding: 66,2,2/0:3344878364/3344878368
[  964.396155][T26353] fuse: fd is not a fuse device
[  964.442616][T24024] Bluetooth: hci5: command 0x0406 tx timeout
[  964.492483][T26349] fuse: fd is not a fuse device
[  966.003770][T26378] ip6t_rpfilter: unknown options
[  966.088870][T26379] fuse: fd is not a fuse device
[  966.694424][T26386] syz_tun: entered allmulticast mode
[  966.885427][T26386] syz_tun (unregistering): left allmulticast mode
[  966.938339][T26396] netlink: 'syz.8.6457': attribute type 27 has an invalid length.
[  968.375718][   T29] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  969.150202][T26425] fuse: fd is not a fuse device
[  969.173693][   T29] usb 4-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47
[  969.190525][   T29] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  969.235835][   T29] usb 4-1: config 0 descriptor??
[  969.250696][   T29] gspca_main: STV06xx-2.14.0 probing 046d:0870
[  970.489189][T26445] kernel read not supported for file / 
œ7³ÏüâW)ës“§Ç!Q�öì¥fsõl{T‡rÒ)r§ÖOš˜õ2:"ôÀT+ÍŸv|�Õ²DvcŽ“ØÖ Å6Òxãc: (pid: 26445 comm: syz.2.6472)
[  970.504261][   T30] audit: type=1800 audit(1780489320.999:796): pid=26445 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.6472" name=20019C1437B3CFFCC3A25729EB7393A7C721518FF6ECA56673F56C7B548772D22972A7D6084F9A98F5323A22F412C0542BCD9F767C8DD5B24476638E93D8D6A0C536D278E3633A dev="mqueue" ino=67624 res=0 errno=0
[  970.774828][T26449] __nla_validate_parse: 1 callbacks suppressed
[  970.774849][T26449] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6476'.
[  971.195157][   T30] audit: type=1326 audit(1780489321.679:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.229334][   T30] audit: type=1326 audit(1780489321.729:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.286294][   T29] gspca_stv06xx: I2C: Read error writing address: -71
[  971.321711][   T29] usb 4-1: USB disconnect, device number 14
[  971.339805][   T30] audit: type=1326 audit(1780489321.729:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.387505][   T30] audit: type=1326 audit(1780489321.729:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.412282][   T30] audit: type=1326 audit(1780489321.729:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.466389][   T30] audit: type=1326 audit(1780489321.729:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.529767][   T30] audit: type=1326 audit(1780489321.729:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.555754][   T30] audit: type=1326 audit(1780489321.729:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.580495][   T30] audit: type=1326 audit(1780489321.729:805): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26460 comm="syz.2.6482" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2be799ce59 code=0x7ffc0000
[  971.644084][T26469] netlink: 14 bytes leftover after parsing attributes in process `syz.4.6485'.
[  971.853019][T26478] xt_hashlimit: size too large, truncated to 1048576
[  972.046771][T26489] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6492'.
[  972.325910][T26495] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6494'.
[  975.398430][T26536] loop3: detected capacity change from 0 to 4096
[  975.447235][T26536] EXT4-fs: Ignoring removed mblk_io_submit option
[  975.548342][T26536] EXT4-fs (loop3): Test dummy encryption mode enabled
[  975.979491][T26545] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6511'.
[  976.174850][ T5764] page_pool_release_retry() stalled pool shutdown: id 202, 1 inflight 60 sec
[  976.236897][T26536] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  976.378750][T16426] Bluetooth: hci3: unexpected event for opcode 0x2088
[  976.510812][T26556] netlink: 68 bytes leftover after parsing attributes in process `syz.1.6514'.
[  976.519592][T26554] netlink: 12 bytes leftover after parsing attributes in process `syz.8.6513'.
[  976.612053][T22461] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  979.304414][T26603] 8021q: adding VLAN 0 to HW filter on device bond1
[  979.411088][T26603] bond1: (slave geneve4): Enslaving as a backup interface with an up link
[  979.518098][T14002] netdevsim netdevsim4 netdevsim0: set [1, 2] type 2 family 0 port 6081 - 0
[  979.521346][T19050] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  979.547635][T14002] netdevsim netdevsim4 netdevsim1: set [1, 2] type 2 family 0 port 6081 - 0
[  979.584108][T26612] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  979.597747][T26612] IPv6: NLM_F_CREATE should be set when creating new route
[  979.628266][T19023] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  980.431711][T26621] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6537'.
[  980.440598][T26621] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6537'.
[  980.521450][T26612] bridge0: port 2(bridge_slave_1) entered disabled state
[  980.529175][T26612] bridge0: port 1(bridge_slave_0) entered disabled state
[  981.810725][T26612] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  981.870751][T26612] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  982.578972][T19052] netdevsim netdevsim4 netdevsim2: set [1, 2] type 2 family 0 port 6081 - 0
[  982.614721][T19052] netdevsim netdevsim4 netdevsim3: set [1, 2] type 2 family 0 port 6081 - 0
[  982.638475][T26638] netlink: 'syz.8.6544': attribute type 6 has an invalid length.
[  982.660165][T19052] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  982.701995][T19052] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  982.746366][T19052] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  982.793908][T19052] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  983.160067][T26657] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6549'.
[  983.267970][T26663] fuse: fd is not a fuse device
[  984.195752][T26675] overlayfs: failed to clone upperpath
[  984.259585][T26678] bridge_slave_0: left allmulticast mode
[  984.265284][T26678] bridge_slave_0: left promiscuous mode
[  984.271094][T26678] bridge0: port 1(bridge_slave_0) entered disabled state
[  984.344053][T26678] bridge_slave_1: left allmulticast mode
[  984.349745][T26678] bridge_slave_1: left promiscuous mode
[  984.362847][T26678] bridge0: port 2(bridge_slave_1) entered disabled state
[  984.434694][T26678] bond0: (slave bond_slave_0): Releasing backup interface
[  984.447211][T26678] bond0: (slave bond_slave_1): Releasing backup interface
[  984.478974][T26678] team0: Port device team_slave_0 removed
[  984.500160][T26678] team0: Port device team_slave_1 removed
[  984.508593][T26678] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  984.517318][T26678] batman_adv: batadv0: Removing interface: batadv_slave_0
[  984.550751][T26678] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check.
[  984.572175][T26668] vlan0: entered promiscuous mode
[  985.803183][T26695] loop3: detected capacity change from 0 to 16
[  985.820569][T26695] erofs (device loop3): mounted with root inode @ nid 36.
[  987.475995][T26729] tipc: Started in network mode
[  987.511900][T26729] tipc: Node identity ac14142f, cluster identity 4711
[  987.554602][T26729] tipc: New replicast peer: 0.0.0.0
[  987.583559][T26729] tipc: Enabled bearer <udp:syz2>, priority 10
[  987.712243][T26743] uprobe: syz.1.6573:26743 failed to unregister, leaking uprobe
[  988.285517][T26738] tipc: New replicast peer: 0000:0000:0000:0000:0000:0000:0000:0000
[  988.618717][T17215] tipc: Node number set to 2886997039
[  989.140839][T26766] veth0_to_team: entered promiscuous mode
[  989.193660][T26766] pimreg: entered allmulticast mode
[  989.222617][T26766] pimreg: left allmulticast mode
[  989.469068][T26770] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6584'.
[  989.478139][T26770] tc_dump_action: action bad kind
[  990.567294][T26799] fuse: fd is not a fuse device
[  993.490779][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[  994.535131][   T30] kauditd_printk_skb: 42 callbacks suppressed
[  994.535154][   T30] audit: type=1800 audit(1780489345.009:848): pid=26833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.6610" name="bus" dev="ramfs" ino=67337 res=0 errno=0
[  995.447504][T26878] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6624'.
[  998.023082][T26924] fuse: fd is not a fuse device
[  998.212925][T26932] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  998.254399][   T30] audit: type=1326 audit(1780489348.779:849): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26922 comm="syz.1.6642" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x0
[  999.555656][T26948] fuse: fd is not a fuse device
[ 1001.166878][T26985] fuse: fd is not a fuse device
[ 1004.677831][T27028] fuse: fd is not a fuse device
[ 1004.907024][T27031] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6680'.
[ 1006.465656][T24024] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1006.491385][T24024] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1006.503947][T24024] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1006.686449][T24024] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1006.694211][T24024] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1008.775397][T16426] Bluetooth: hci6: command tx timeout
[ 1009.605074][T27091] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6699'.
[ 1011.615766][T16426] Bluetooth: hci6: command tx timeout
[ 1012.114247][T27119] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1013.603725][T27136] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1013.655439][T16426] Bluetooth: hci6: command tx timeout
[ 1015.762117][T16426] Bluetooth: hci6: command tx timeout
[ 1016.108413][T27051] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1016.125969][T27051] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1016.133287][T27051] bridge_slave_0: entered allmulticast mode
[ 1016.145542][T27051] bridge_slave_0: entered promiscuous mode
[ 1016.157102][T27051] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1016.186505][T27051] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1016.197040][T27051] bridge_slave_1: entered allmulticast mode
[ 1016.205192][T27051] bridge_slave_1: entered promiscuous mode
[ 1016.250107][T27051] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1016.264026][T27051] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1016.419819][T27051] team0: Port device team_slave_0 added
[ 1016.429062][T27051] team0: Port device team_slave_1 added
[ 1016.466585][T27051] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1016.473578][T27051] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1016.499474][T27051] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1016.667747][T27051] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1016.674942][T27051] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1016.701422][T27051] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1017.395131][T27051] hsr_slave_0: entered promiscuous mode
[ 1017.406176][T27051] hsr_slave_1: entered promiscuous mode
[ 1017.412517][T27051] debugfs: 'hsr0' already exists in 'hsr'
[ 1017.604919][T27051] Cannot create hsr debugfs directory
[ 1017.641707][T27179] fuse: fd is not a fuse device
[ 1019.438534][T27194] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6726'.
[ 1023.932283][T27246] ceph: No mds server is up or the cluster is laggy
[ 1023.942151][T17049] libceph: connect (1)[c::]:6789 error -22
[ 1023.956984][T17049] libceph: mon0 (1)[c::]:6789 connect error
[ 1023.973339][T27243] netlink: 12 bytes leftover after parsing attributes in process `syz.1.6741'.
[ 1024.043966][T27243] tipc: Started in network mode
[ 1024.048858][T27243] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[ 1024.064426][T27243] tipc: Enabled bearer <udp:syz0>, priority 10
[ 1025.094587][T27275] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6749'.
[ 1025.135544][T27275] netlink: 8 bytes leftover after parsing attributes in process `syz.6.6749'.
[ 1025.166799][T17049] tipc: Node number set to 1
[ 1027.663524][   T30] audit: type=1326 audit(1780489378.159:850): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27313 comm="syz.1.6762" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f53bdd9ce59 code=0x0
[ 1027.778100][T27318] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6763'.
[ 1028.115529][T27329] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -2360, delta: 1
[ 1028.125146][T27329] ref_ctr increment failed for inode: 0xce3 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88802ab63d40
[ 1028.135366][   T30] audit: type=1804 audit(1780489378.609:851): pid=27329 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.6.6766" name="file0" dev="tmpfs" ino=3299 res=1 errno=0
[ 1028.176057][T27329] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -2360, delta: -1
[ 1028.189842][T27329] ref_ctr decrement failed for inode: 0xce3 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff88802ab63d40
[ 1028.465276][T27329] uprobe: syz.6.6766:27329 failed to unregister, leaking uprobe
[ 1029.399426][T27350] futex_wake_op: à³OñJ÷N\ìg´é tries to shift op by 144; fix this program
[ 1030.291789][T27051] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1030.392982][T27051] 8021q: adding VLAN 0 to HW filter on device netdevsim0
[ 1030.452121][T27051] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1030.561595][T27051] 8021q: adding VLAN 0 to HW filter on device netdevsim1
[ 1031.418885][T27051] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1032.797553][T27051] 8021q: adding VLAN 0 to HW filter on device netdevsim2
[ 1032.805701][T27051] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1032.882427][T27051] 8021q: adding VLAN 0 to HW filter on device netdevsim3
[ 1033.198636][T27051] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1033.222609][T27051] 8021q: adding VLAN 0 to HW filter on device team0
[ 1033.236914][T19052] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1033.244052][T19052] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1033.258860][T19023] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1033.265984][T19023] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1033.381125][T27407] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6785'.
[ 1033.390716][T27407] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6785'.
[ 1033.399897][T27407] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6785'.
[ 1035.625106][T27440] Set syz0 is full, maxelem 0 reached
[ 1037.273618][T27454] netlink: 'syz.8.6794': attribute type 1 has an invalid length.
[ 1037.695491][T27454] netlink: 'syz.8.6794': attribute type 4 has an invalid length.
[ 1037.824897][T27454] netlink: 15334 bytes leftover after parsing attributes in process `syz.8.6794'.
[ 1039.192437][T27476] netlink: 'syz.8.6800': attribute type 1 has an invalid length.
[ 1039.209889][T27476] netlink: 'syz.8.6800': attribute type 4 has an invalid length.
[ 1039.217645][T27476] netlink: 15334 bytes leftover after parsing attributes in process `syz.8.6800'.
[ 1039.796514][T27496] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1042.021475][T27051] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1042.220810][T27521] fuse: fd is not a fuse device
[ 1042.272765][T27051] veth0_vlan: entered promiscuous mode
[ 1043.322494][T27051] veth1_vlan: entered promiscuous mode
[ 1043.435988][T27051] veth0_macvtap: entered promiscuous mode
[ 1043.471952][T27051] veth1_macvtap: entered promiscuous mode
[ 1043.550283][T27051] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1043.584797][T27051] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1043.664060][T19007] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.677476][T19007] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.688410][T19007] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1043.697211][T19007] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1044.153671][T19039] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1044.213150][T19039] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1045.340672][T19023] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1045.432894][T19023] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1047.559345][T27583] (syz.6.6828,27583,0):dlmfs_mkdir:421 ERROR: invalid domain name for directory.
[ 1048.363359][T27600] netlink: 'syz.1.6830': attribute type 3 has an invalid length.
[ 1054.946158][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[ 1055.362195][T27676] fuse: fd is not a fuse device
[ 1063.355725][T27758] netlink: 8 bytes leftover after parsing attributes in process `syz.0.6871'.
[ 1063.426034][ T5777] IPVS: starting estimator thread 0...
[ 1063.522659][T27766] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1063.654909][T27762] IPVS: using max 30 ests per chain, 72000 per kthread
[ 1063.961351][T27782] loop0: detected capacity change from 0 to 512
[ 1065.049708][T27782] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1065.138279][T27782] ext4 filesystem being mounted at /6/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1067.316730][T27051] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1067.888953][T27831] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1069.095349][T27849] netlink: 'syz.8.6895': attribute type 10 has an invalid length.
[ 1069.313327][T27849] 8021q: adding VLAN 0 to HW filter on device team0
[ 1070.003387][T27859] ip6erspan0: entered allmulticast mode
[ 1073.227713][T27914] netlink: 4 bytes leftover after parsing attributes in process `syz.4.6911'.
[ 1074.656019][T27922] netlink: 8 bytes leftover after parsing attributes in process `syz.4.6911'.
[ 1075.116027][T27931] netlink: 24 bytes leftover after parsing attributes in process `syz.1.6916'.
[ 1079.163957][T27979] fuse: fd is not a fuse device
[ 1079.274313][    T0] NOHZ tick-stop error: local softirq work is pending, handler #c2!!!
[ 1079.414564][T27985] syzkaller0: entered promiscuous mode
[ 1079.420081][T27985] syzkaller0: entered allmulticast mode
[ 1080.156482][   T30] audit: type=1326 audit(1780489430.419:852): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27987 comm="syz.6.6930" exe="/root/ci-upstream-kasan-gce-root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff5dcd9ce59 code=0x0
[ 1090.758997][T28105] syzkaller0: entered promiscuous mode
[ 1091.039528][T28105] syzkaller0: entered allmulticast mode
[ 1091.815889][T28126] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6964'.
[ 1094.240489][T28136] loop0: detected capacity change from 0 to 1024
[ 1094.396783][T28148] veth0_macvtap: Caught tx_queue_len zero misconfig
[ 1095.322959][T16426] Bluetooth: hci5: Malformed MSFT vendor event: 0x02
[ 1095.878000][T28179] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1096.577989][T28180] loop0: detected capacity change from 0 to 1024
[ 1096.833416][T28180] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1096.852343][T28188] tipc: Failed to remove unknown binding: 66,0,0/1:227754249/227754250
[ 1096.861612][T28189] tipc: Failed to remove unknown binding: 66,0,0/1:3540990314/3540990316
[ 1096.887570][T28188] tipc: Failed to remove unknown binding: 66,0,0/1:227754249/227754250
[ 1098.135488][T28206] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1098.171819][T28208] fuse: fd is not a fuse device
[ 1099.559600][T28228] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6991'.
[ 1100.541922][T28241] fuse: fd is not a fuse device
[ 1101.110674][T28253] netlink: 16 bytes leftover after parsing attributes in process `syz.6.7000'.
[ 1102.723256][T28274] netlink: 'syz.1.7007': attribute type 10 has an invalid length.
[ 1102.731110][T28274] netlink: 40 bytes leftover after parsing attributes in process `syz.1.7007'.
[ 1103.759799][T28274] team0: Failed to send options change via netlink (err -105)
[ 1103.767436][T28274] team0: Port device geneve1 added
[ 1110.474031][T28355] netlink: 76 bytes leftover after parsing attributes in process `syz.1.7032'.
[ 1115.129181][T28388] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7043'.
[ 1115.606513][T28400] atomic_op ffff888050a8b198 conn xmit_atomic 0000000000000000
[ 1116.775377][ T1309] ieee802154 phy1 wpan1: encryption failed: -22
[ 1117.106835][T28408] loop0: detected capacity change from 0 to 256
[ 1117.115447][T28408] FAT-fs (loop0): bogus sectors per cluster 0
[ 1117.121532][T28408] FAT-fs (loop0): Can't find a valid FAT filesystem
[ 1117.257815][T28411] fuse: fd is not a fuse device
[ 1117.784912][T28427] tmpfs: Bad value for 'nr_inodes'
[ 1117.824033][T28427] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7056'.
[ 1224.718302][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 1224.725296][    C1] rcu: 	0-...!: (1 ticks this GP) idle=91ac/1/0x4000000000000000 softirq=163830/163847 fqs=2
[ 1224.739374][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P5625/1:b..l P28453/3:b..l
[ 1224.748547][    C1] rcu: 	(detected by 1, t=10506 jiffies, g=109105, q=392 ncpus=2)
[ 1224.756354][    C1] Sending NMI from CPU 1 to CPUs 0:
[ 1224.756389][    C0] NMI backtrace for cpu 0
[ 1224.756409][    C0] CPU: 0 UID: 0 PID: 4952 Comm: jbd2/sda1-8 Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1224.756440][    C0] Tainted: [L]=SOFTLOCKUP
[ 1224.756449][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1224.756464][    C0] RIP: 0010:advance_sched+0x38d/0xc20
[ 1224.756494][    C0] Code: 00 00 00 00 48 c7 44 24 20 00 00 00 00 48 85 db 0f 85 c3 fe ff ff e8 d2 ce 0e f8 e9 0b 08 00 00 e8 c8 ce 0e f8 4c 8b 74 24 08 <4c> 89 f8 48 c1 e8 03 80 3c 28 00 74 08 4c 89 ff e8 2e 27 7a f8 49
[ 1224.756514][    C0] RSP: 0018:ffffc90000007d10 EFLAGS: 00000006
[ 1224.756533][    C0] RAX: ffffffff89b6e7d8 RBX: ffff888051cd2940 RCX: ffff888033455d00
[ 1224.756551][    C0] RDX: 0000000000010000 RSI: 0000000000000000 RDI: 18b592be51d71e60
[ 1224.756567][    C0] RBP: dffffc0000000000 R08: 0000000000000003 R09: 0000000000000004
[ 1224.756583][    C0] R10: dffffc0000000000 R11: fffff52000000f90 R12: ffff888033456878
[ 1224.756601][    C0] R13: ffff888069622000 R14: ffff8880530a3800 R15: ffff8880530a3910
[ 1224.756621][    C0] FS:  0000000000000000(0000) GS:ffff88812529c000(0000) knlGS:0000000000000000
[ 1224.756641][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1224.756657][    C0] CR2: 00007f0854f4da08 CR3: 0000000059011000 CR4: 0000000000350ef0
[ 1224.756675][    C0] Call Trace:
[ 1224.756686][    C0]  <IRQ>
[ 1224.756700][    C0]  ? __pfx_advance_sched+0x10/0x10
[ 1224.756730][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.756764][    C0]  ? __pfx_advance_sched+0x10/0x10
[ 1224.756788][    C0]  __hrtimer_run_queues+0x3c0/0xa20
[ 1224.756836][    C0]  hrtimer_interrupt+0x44b/0x950
[ 1224.756890][    C0]  __sysvec_apic_timer_interrupt+0x102/0x430
[ 1224.756924][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[ 1224.756965][    C0]  </IRQ>
[ 1224.756973][    C0]  <TASK>
[ 1224.756983][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 1224.757009][    C0] RIP: 0010:update_io_ticks+0x6f/0x280
[ 1224.757040][    C0] Code: 41 48 c7 44 24 28 4e c8 23 8e 48 c7 44 24 30 70 d4 8e 84 48 8d 5c 24 20 48 c1 eb 03 48 b8 f1 f1 f1 f1 f8 f3 f3 f3 4a 89 04 3b <e8> bc e1 36 fd 48 89 5c 24 18 42 c6 44 3b 04 00 48 c7 44 24 40 00
[ 1224.757059][    C0] RSP: 0018:ffffc90006adf2e0 EFLAGS: 00000216
[ 1224.757078][    C0] RAX: f3f3f3f8f1f1f1f1 RBX: 1ffff92000d5be60 RCX: ffffffff9a43a300
[ 1224.757096][    C0] RDX: 0000000000000000 RSI: 0000000100013f94 RDI: ffff8880266eb980
[ 1224.757111][    C0] RBP: ffffc90006adf3a0 R08: ffffffff90302af7 R09: 1ffffffff206055e
[ 1224.757129][    C0] R10: dffffc0000000000 R11: fffffbfff206055f R12: ffff8880266eb980
[ 1224.757147][    C0] R13: 1ffff110055d3ba8 R14: 0000000100013f94 R15: dffffc0000000000
[ 1224.757179][    C0]  ? ktime_get+0x45/0x220
[ 1224.757216][    C0]  ? __pfx_update_io_ticks+0x10/0x10
[ 1224.757244][    C0]  ? seqcount_lockdep_reader_access+0xa9/0x100
[ 1224.757282][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.757310][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1224.757333][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.757365][    C0]  ? seqcount_lockdep_reader_access+0xea/0x100
[ 1224.757404][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.757432][    C0]  ? ktime_get+0x1f5/0x220
[ 1224.757470][    C0]  blk_account_io_start+0x486/0x7c0
[ 1224.757502][    C0]  blk_mq_submit_bio+0x1a5b/0x29a0
[ 1224.757536][    C0]  ? blk_mq_submit_bio+0x2fa/0x29a0
[ 1224.757574][    C0]  ? __pfx_blk_mq_submit_bio+0x10/0x10
[ 1224.757621][    C0]  __submit_bio+0x1c0/0x580
[ 1224.757657][    C0]  ? __pfx___submit_bio+0x10/0x10
[ 1224.757693][    C0]  ? bio_associate_blkg+0x6d/0x230
[ 1224.757733][    C0]  submit_bio_noacct_nocheck+0x2f4/0xa40
[ 1224.757763][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.757796][    C0]  ? __pfx_submit_bio_noacct_nocheck+0x10/0x10
[ 1224.757827][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.757857][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.757897][    C0]  journal_submit_commit_record+0x670/0x8b0
[ 1224.757937][    C0]  ? __pfx_journal_submit_commit_record+0x10/0x10
[ 1224.757967][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758004][    C0]  jbd2_journal_commit_transaction+0x3504/0x5b00
[ 1224.758035][    C0]  ? trace_hrtimer_start+0x82/0x200
[ 1224.758099][    C0]  ? __pfx_jbd2_journal_commit_transaction+0x10/0x10
[ 1224.758141][    C0]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1224.758175][    C0]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1224.758213][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758246][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758278][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758308][    C0]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1224.758345][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758378][    C0]  ? lockdep_hardirqs_on+0x7a/0x110
[ 1224.758401][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758429][    C0]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1224.758465][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758493][    C0]  ? __timer_delete_sync+0x4a4/0x520
[ 1224.758519][    C0]  kjournald2+0x3e0/0x760
[ 1224.758572][    C0]  ? __pfx_kjournald2+0x10/0x10
[ 1224.758610][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[ 1224.758646][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758675][    C0]  ? __kthread_parkme+0x7a/0x1f0
[ 1224.758702][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758737][    C0]  kthread+0x389/0x470
[ 1224.758769][    C0]  ? __pfx_kjournald2+0x10/0x10
[ 1224.758804][    C0]  ? __pfx_kthread+0x10/0x10
[ 1224.758836][    C0]  ret_from_fork+0x514/0xb70
[ 1224.758864][    C0]  ? __pfx_ret_from_fork+0x10/0x10
[ 1224.758888][    C0]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1224.758917][    C0]  ? __switch_to+0xc79/0x1410
[ 1224.758954][    C0]  ? __pfx_kthread+0x10/0x10
[ 1224.758987][    C0]  ret_from_fork_asm+0x1a/0x30
[ 1224.759030][    C0]  </TASK>
[ 1224.759381][    C1] task:syz-executor    state:R  running task     stack:28152 pid:28453 tgid:28453 ppid:5625   task_flags:0x400040 flags:0x00080000
[ 1225.320735][    C1] Call Trace:
[ 1225.324036][    C1]  <TASK>
[ 1225.326978][    C1]  __schedule+0x1821/0x5740
[ 1225.331538][    C1]  ? lock_acquire+0x106/0x350
[ 1225.336224][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.341869][    C1]  ? __pfx___schedule+0x10/0x10
[ 1225.346744][    C1]  ? page_table_check_set+0x126/0x510
[ 1225.352133][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.357815][    C1]  ? xas_find+0x842/0x990
[ 1225.362153][    C1]  ? preempt_schedule_thunk+0x16/0x30
[ 1225.367545][    C1]  preempt_schedule_common+0x82/0xd0
[ 1225.372859][    C1]  preempt_schedule_thunk+0x16/0x30
[ 1225.378084][    C1]  _raw_spin_unlock+0x3f/0x50
[ 1225.382779][    C1]  filemap_map_pages+0x1a2a/0x2100
[ 1225.387938][    C1]  ? filemap_map_pages+0x1e6/0x2100
[ 1225.393160][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1225.398642][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.404322][    C1]  ? lruvec_stat_mod_folio+0x28b/0x3e0
[ 1225.409832][    C1]  ? __pfx_filemap_map_pages+0x10/0x10
[ 1225.415353][    C1]  ? do_pte_missing+0x125b/0x33f0
[ 1225.420419][    C1]  do_pte_missing+0x1f38/0x33f0
[ 1225.425329][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.431000][    C1]  handle_mm_fault+0x1bf2/0x3170
[ 1225.435969][    C1]  ? handle_mm_fault+0xf1/0x3170
[ 1225.440926][    C1]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1225.446218][    C1]  ? lock_vma_under_rcu+0x45a/0x500
[ 1225.451451][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.457110][    C1]  do_user_addr_fault+0xa73/0x1340
[ 1225.462333][    C1]  ? ret_from_fork+0x4cb/0xb70
[ 1225.467129][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1225.471924][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.477586][    C1]  ? trace_page_fault_user+0x84/0x1e0
[ 1225.482989][    C1]  exc_page_fault+0x6a/0xc0
[ 1225.487495][    C1]  asm_exc_page_fault+0x26/0x30
[ 1225.492348][    C1] RIP: 0033:0x7f08541c58d2
[ 1225.496767][    C1] RSP: 002b:00007ffcb06f8060 EFLAGS: 00010246
[ 1225.502857][    C1] RAX: 0000000000000000 RBX: 00007ffcb06f8060 RCX: 00007f08541c58d2
[ 1225.510841][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1225.518816][    C1] RBP: 00007ffcb06f81ec R08: 0000000000000000 R09: 0000000000000001
[ 1225.526785][    C1] R10: 00005555819a37d0 R11: 0000000000000246 R12: 0000000000000001
[ 1225.534760][    C1] R13: 00000000000927c0 R14: 00000000001113da R15: 00007ffcb06f8240
[ 1225.542767][    C1]  </TASK>
[ 1225.545787][    C1] task:syz-executor    state:R  running task     stack:22184 pid:5625  tgid:5625  ppid:5622   task_flags:0x400140 flags:0x00080000
[ 1225.559311][    C1] Call Trace:
[ 1225.562593][    C1]  <TASK>
[ 1225.565525][    C1]  __schedule+0x1821/0x5740
[ 1225.570079][    C1]  ? lock_acquire+0x106/0x350
[ 1225.575029][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.580931][    C1]  ? __pfx___schedule+0x10/0x10
[ 1225.585798][    C1]  ? lock_acquire+0x106/0x350
[ 1225.590494][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.596143][    C1]  ? preempt_schedule_thunk+0x16/0x30
[ 1225.601552][    C1]  preempt_schedule_common+0x82/0xd0
[ 1225.606877][    C1]  preempt_schedule_thunk+0x16/0x30
[ 1225.612189][    C1]  _raw_spin_unlock+0x3f/0x50
[ 1225.616892][    C1]  do_wp_page+0x3f15/0x4cc0
[ 1225.621407][    C1]  ? do_wp_page+0x37b4/0x4cc0
[ 1225.626281][    C1]  ? __pfx_do_wp_page+0x10/0x10
[ 1225.631136][    C1]  ? do_raw_spin_lock+0x12b/0x2f0
[ 1225.636182][    C1]  ? __pfx_do_raw_spin_lock+0x10/0x10
[ 1225.641564][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.647220][    C1]  handle_mm_fault+0x1698/0x3170
[ 1225.652191][    C1]  ? handle_mm_fault+0xf1/0x3170
[ 1225.657155][    C1]  ? __pfx_handle_mm_fault+0x10/0x10
[ 1225.662444][    C1]  ? lock_vma_under_rcu+0x45a/0x500
[ 1225.667696][    C1]  do_user_addr_fault+0xa73/0x1340
[ 1225.672822][    C1]  ? rcu_is_watching+0x15/0xb0
[ 1225.677600][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.683241][    C1]  ? trace_page_fault_user+0x84/0x1e0
[ 1225.688626][    C1]  exc_page_fault+0x6a/0xc0
[ 1225.693138][    C1]  asm_exc_page_fault+0x26/0x30
[ 1225.697991][    C1] RIP: 0033:0x7f08541b8350
[ 1225.702411][    C1] RSP: 002b:00007ffcb06f8088 EFLAGS: 00010246
[ 1225.708493][    C1] RAX: 0000000000000000 RBX: 0000000000000b62 RCX: 00007f085413e4a7
[ 1225.716469][    C1] RDX: 0000000000000000 RSI: 00007ffcb06f8060 RDI: 0000000000000002
[ 1225.724445][    C1] RBP: 00007ffcb06f81ec R08: 00007f0854f48060 R09: 0000000000000000
[ 1225.732418][    C1] R10: 0000000000000008 R11: 0000000000000246 R12: 0000000000000001
[ 1225.740510][    C1] R13: ffffffffffffffe8 R14: 0000000000000019 R15: 00007ffcb06f8240
[ 1225.748503][    C1]  </TASK>
[ 1225.751527][    C1] rcu: rcu_preempt kthread starved for 10496 jiffies! g109105 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[ 1225.762834][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 1225.772892][    C1] rcu: RCU grace-period kthread stack dump:
[ 1225.778776][    C1] task:rcu_preempt     state:R  running task     stack:27536 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[ 1225.792683][    C1] Call Trace:
[ 1225.795970][    C1]  <TASK>
[ 1225.798906][    C1]  __schedule+0x1821/0x5740
[ 1225.803434][    C1]  ? __lock_acquire+0x6b5/0x2cf0
[ 1225.808422][    C1]  ? __pfx___schedule+0x10/0x10
[ 1225.813308][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.818963][    C1]  ? schedule+0x90/0x360
[ 1225.823243][    C1]  schedule+0x164/0x360
[ 1225.827428][    C1]  schedule_timeout+0x158/0x2c0
[ 1225.832306][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.837958][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[ 1225.843350][    C1]  ? __pfx_process_timeout+0x10/0x10
[ 1225.848659][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.854321][    C1]  ? _raw_spin_unlock_irqrestore+0x4c/0x80
[ 1225.860161][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.865810][    C1]  ? prepare_to_swait_event+0x340/0x370
[ 1225.871391][    C1]  rcu_gp_fqs_loop+0x312/0x11d0
[ 1225.876274][    C1]  ? __pfx_rcu_watching_snap_recheck+0x10/0x10
[ 1225.882447][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[ 1225.887741][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[ 1225.892983][    C1]  rcu_gp_kthread+0x9e/0x2b0
[ 1225.897592][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1225.902797][    C1]  ? _raw_spin_unlock_irqrestore+0x30/0x80
[ 1225.908632][    C1]  ? __kthread_parkme+0x7a/0x1f0
[ 1225.913580][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.919233][    C1]  ? __kthread_parkme+0x19c/0x1f0
[ 1225.924282][    C1]  kthread+0x389/0x470
[ 1225.928369][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[ 1225.933661][    C1]  ? __pfx_kthread+0x10/0x10
[ 1225.938275][    C1]  ret_from_fork+0x514/0xb70
[ 1225.942883][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[ 1225.948007][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1225.953648][    C1]  ? __switch_to+0xc79/0x1410
[ 1225.958351][    C1]  ? __pfx_kthread+0x10/0x10
[ 1225.962969][    C1]  ret_from_fork_asm+0x1a/0x30
[ 1225.967765][    C1]  </TASK>
[ 1225.970784][    C1] rcu: Stack dump where RCU GP kthread last ran:
[ 1225.977200][    C1] CPU: 1 UID: 0 PID: 27051 Comm: syz-executor Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1225.988413][    C1] Tainted: [L]=SOFTLOCKUP
[ 1225.992739][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[ 1226.002803][    C1] RIP: 0010:smp_call_function_many_cond+0xfd4/0x13d0
[ 1226.009513][    C1] Code: 89 ee 83 e6 01 31 ff e8 9a 07 0c 00 41 83 e5 01 49 bd 00 00 00 00 00 fc ff df 75 07 e8 45 03 0c 00 eb 37 f3 90 43 0f b6 04 2c <84> c0 75 10 41 f7 06 01 00 00 00 74 1e e8 2a 03 0c 00 eb e5 44 89
[ 1226.029314][    C1] RSP: 0018:ffffc900038a7560 EFLAGS: 00000293
[ 1226.035410][    C1] RAX: 0000000000000000 RBX: ffff8880b873c188 RCX: ffff88804c95dd00
[ 1226.043487][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[ 1226.051479][    C1] RBP: ffffc900038a7688 R08: ffffffff90302af7 R09: 1ffffffff206055e
[ 1226.059459][    C1] R10: dffffc0000000000 R11: fffffbfff206055f R12: 1ffff110170c8591
[ 1226.067438][    C1] R13: dffffc0000000000 R14: ffff8880b8642c88 R15: 0000000000000000
[ 1226.075417][    C1] FS:  0000555556a74500(0000) GS:ffff88812539c000(0000) knlGS:0000000000000000
[ 1226.084354][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1226.090951][    C1] CR2: 000000110c3e80a0 CR3: 000000003491e000 CR4: 0000000000350ef0
[ 1226.098936][    C1] Call Trace:
[ 1226.102217][    C1]  <TASK>
[ 1226.105157][    C1]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1226.110427][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[ 1226.116776][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.122436][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.128093][    C1]  ? __pfx_flush_tlb_func+0x10/0x10
[ 1226.133436][    C1]  on_each_cpu_cond_mask+0x3f/0x80
[ 1226.138584][    C1]  flush_tlb_mm_range+0x5c3/0x10b0
[ 1226.143726][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.149374][    C1]  ? up_write+0x1ab/0x410
[ 1226.153732][    C1]  dup_mmap+0x17b0/0x1da0
[ 1226.158110][    C1]  ? __pfx_dup_mmap+0x10/0x10
[ 1226.162827][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.168473][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.174125][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.179784][    C1]  copy_mm+0x13b/0x4a0
[ 1226.183909][    C1]  copy_process+0x1f1c/0x4440
[ 1226.188629][    C1]  ? copy_process+0xd87/0x4440
[ 1226.193422][    C1]  ? __pfx_copy_process+0x10/0x10
[ 1226.198737][    C1]  kernel_clone+0x2d7/0x940
[ 1226.203446][    C1]  ? __pfx_kernel_clone+0x10/0x10
[ 1226.208507][    C1]  __x64_sys_clone+0x1b6/0x230
[ 1226.213470][    C1]  ? __pfx___x64_sys_clone+0x10/0x10
[ 1226.218886][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1226.224534][    C1]  ? do_user_addr_fault+0xc6f/0x1340
[ 1226.229867][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1226.235946][    C1]  do_syscall_64+0x174/0x580
[ 1226.240560][    C1]  ? trace_irq_disable+0x3b/0x140
[ 1226.245621][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1226.251527][    C1] RIP: 0033:0x7f50689c58d2
[ 1226.255950][    C1] Code: 89 e7 e8 71 8b f7 ff 45 31 c0 31 d2 31 f6 64 48 8b 04 25 10 00 00 00 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 66 89 c5 85 c0 75 3b 64 48 8b 04 25 10 00 00
[ 1226.275574][    C1] RSP: 002b:00007fff84999ee0 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 1226.284022][    C1] RAX: ffffffffffffffda RBX: 00007fff84999ee0 RCX: 00007f50689c58d2
[ 1226.291996][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 1226.299976][    C1] RBP: 00007fff8499a06c R08: 0000000000000000 R09: 0000000000000001
[ 1226.307955][    C1] R10: 0000555556a747d0 R11: 0000000000000246 R12: 0000000000000001
[ 1226.315939][    C1] R13: 00000000000927c0 R14: 0000000000110d52 R15: 00007fff8499a0c0
[ 1226.323941][    C1]  </TASK>