last executing test programs:

24m11.159268805s ago: executing program 32 (id=17):
add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x2d)
r4 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r4, 0x1, &(0x7f0000000000)='source', &(0x7f0000000040)='c:::\x00\xfdM\xab\x89\xff\xda\xc7dw2\xa1\xb2\xabuQQ\x14\x97\xc9\xfae\xc7\xa1U\xe2\xbe\"\xb9t\xa0\x0e\xfa\xdb\xf1\xa5.\xd87\xc3p\xa5l\xf8vC\xe2\xe8 \xd5-<#\x186\xe1\xbd\xc0\xc3\xb5N(vj\xa7+<:\xc4\xe00\x01\xdd \x82\x83\xed\x0e\xc4\x1d\xac\xef7\b\xd3Z5\\A\'\x18\xa2\xc3\xab\xc7`\xc3\v\xf3L\x9d[Q\x9e\x11@=\xa1\x9b\xdc\xb1\xef\xc3k<\x97L\xa0\xab\xa6\x1ce\xcd\x99\xb3m\xef\x87\xc5i^N\xbd@\x01\xc0\xb2\x88\xc3\xe2\x96T\xa3\xa5\xeb\x0f\xf2f\xb9$\xd2\x14<L\x19K\xbf\xf7\x9c\xe7 \x12+4.\xa9\xa7\xdc[\xd2\xec\xbe\x1a\xa1\x04\xd3\x9e\x92\x8a\xf7\xdb\xe7f\xdeo\xc1\xa5\xb6T\r)\x1c\xbe\x12\xd1\xef\xc2S\xcci\xc8\x0e\x00]\xe6|\xccK\xc7\r\xfa \x02\xe8\x1b\xc1\x93\xce\x02%\x86\xcb\x94K\v\xe7x\xe3\x06[/\xf9\xa8\x82\x9b\xeeF\x88\xc0f\x82\xb7T\r\x04\xbb\x10\x1d3\xa6', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
r5 = gettid()
tkill(r5, 0xb)
r6 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r6, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r6, 0x117, 0x1, &(0x7f0000c18000), 0x0)
sendmmsg$alg(0xffffffffffffffff, &(0x7f0000000040), 0x0, 0x20000045)
r7 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r7, &(0x7f0000000200)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r7, &(0x7f0000000000)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0x2}}, 0x10)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$tipc(&(0x7f0000000180), r8)
sendmsg$TIPC_CMD_SHOW_PORTS(r8, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000002c0)={0x1c, r9, 0xe01, 0x70bd2d, 0x25dfdbfc}, 0x1c}}, 0x24048800)

23m8.178993469s ago: executing program 33 (id=82):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x24040832}, 0xc094)
socket$inet_udplite(0x2, 0x2, 0x88)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000600)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mknod$loop(0x0, 0x6000, 0x0)
r3 = dup2(0xffffffffffffffff, 0xffffffffffffffff)
ioctl$BLKTRACESETUP(r3, 0xc0481273, &(0x7f0000000240)={'\x00', 0x40, 0xa, 0x1, 0x40000000, 0x10})
ioctl$BLKTRACESTART(0xffffffffffffffff, 0x1274, 0x0)
ioctl$BLKTRACETEARDOWN(r3, 0x1276, 0x0)
r4 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r4, &(0x7f0000000180)=ANY=[@ANYBLOB="5245434c45560a50484f4e454f55540a535045414b455220274344272030303030303030303030303030303030303030300a4449474954414c32202706b86e6520436170745572652720"], 0xb8)
r5 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0)
dup3(r5, r4, 0x0)

22m45.881879554s ago: executing program 34 (id=102):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
syz_open_procfs(0x0, 0x0)
r3 = syz_clone(0xa50c7b80, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$pokeuser(0x6, r3, 0x358, 0x0)
r4 = syz_open_dev$cec(&(0x7f00000003c0), 0x0, 0x0)
mkdir(&(0x7f0000000040)='./file0\x00', 0x0)
chdir(&(0x7f00000001c0)='./bus\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x141842, 0x0)
ftruncate(r5, 0x2007ffb)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x100)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000001c0)='./file0/file1\x00', 0xb0058, 0x0, 0x1, 0x0, 0x0)
capset(&(0x7f0000000500)={0x20080522}, &(0x7f0000000200)={0x200002, 0x200003, 0x801, 0x4, 0x7})
setxattr$security_capability(&(0x7f0000000240)='./file0/file1\x00', &(0x7f0000000280), 0x0, 0x0, 0x0)
ioctl$CEC_ADAP_S_LOG_ADDRS(r4, 0xc05c6104, &(0x7f0000004180)={"2370491d", 0x0, 0x5, 0x2, 0x8, 0x5, "000064640000001503fe00", "037ec42b", '\x00', "64bdac32", ["e86621f22a5200", "3549ffff40bcffffff010800", "2fc7977386a7a0236a9cc1f0", "cf6cce2296b3f853e224c4e0"]})
ioctl$CEC_TRANSMIT(r4, 0xc0386105, &(0x7f0000000100)={0x9, 0x0, 0x9, 0xffffffff, 0x0, 0x4, "0ff8000000000000c5c6ff0717c3a86d", 0x4, 0x2, 0x5, 0xff, 0x0, 0x1, 0xff})

6m28.988049674s ago: executing program 35 (id=1768):
lseek(0xffffffffffffffff, 0xfffffffffffffffc, 0x1)
syz_usb_connect(0x5, 0x24, &(0x7f0000000140)={{0x12, 0x1, 0x110, 0x9, 0x28, 0xfc, 0x10, 0x5ac, 0x291, 0x4325, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x40, 0x0, [{{0x9, 0x4, 0x84, 0x0, 0x0, 0x3, 0xe1, 0x2}}]}}]}}, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x401, 0x8241)
close_range(r0, r0, 0x0)

6m23.584828509s ago: executing program 36 (id=1781):
r0 = openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000340), 0x1, 0x0)
write$binfmt_register(r0, &(0x7f0000000200)={0x3a, 'syz3', 0x3a, 'M', 0x3a, 0xaa, 0x3a, '\x02', 0x3a, ']', 0x3a, './file0/file0'}, 0x2f)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000700), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r1, &(0x7f00000021c0)={0x2020, 0x0, <r2=>0x0, 0x0, <r3=>0x0}, 0x2020)
acct(&(0x7f00000005c0)='./file0/file0\x00')
write$FUSE_INIT(r1, &(0x7f00000002c0)={0x50, 0x0, r2, {0x7, 0x29, 0x0, 0x5090880b, 0x0, 0x10, 0xd, 0x40, 0x0, 0x0, 0x2f, 0x1}}, 0x50)
syz_fuse_handle_req(r1, &(0x7f0000008400)="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", 0x2000, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x80, {0x1fffffffffffffc, 0x2, 0x5, 0xfffffffffffffffe, 0xa003, 0x1ff, {0x8, 0x9, 0x6, 0x80, 0x2, 0x3f42, 0xc05, 0x6, 0xfffffffe, 0x2000, 0x0, 0x0, r3, 0xe70, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0})

6m13.239768854s ago: executing program 37 (id=1771):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
getsockopt$EBT_SO_GET_ENTRIES(0xffffffffffffffff, 0x0, 0x81, &(0x7f0000000580)={'filter\x00', 0x0, 0x3, 0x0, [0x5bc5, 0x6, 0x2, 0x7, 0x8, 0xfffffffffffffffb], 0x0, 0x0, 0x0}, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000140)={<r2=>0xffffffffffffffff}, 0x2, 0x6}}, 0x20)
write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r1, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {r2, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x0, @empty}, @in={0x2, 0x0, @empty}}}, 0x118)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(0xffffffffffffffff, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(0xffffffffffffffff, 0x0, 0x0)
r3 = socket$nl_rdma(0x10, 0x3, 0x14)
syz_usb_connect$cdc_ncm(0x2, 0x0, 0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000100)={0x18, 0x1404, 0x1, 0x70bd2d, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}, 0x1, 0x0, 0x0, 0x671ec167a4b72164}, 0x0)

5m40.191692544s ago: executing program 38 (id=1986):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000006c0)=ANY=[@ANYBLOB="240000003f000701feffffff00000000037c"], 0x24}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)

3m48.345384013s ago: executing program 39 (id=2319):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680), 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1f00c00e}, 0x0)

3m45.145611758s ago: executing program 3 (id=2330):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x3, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000000000000000000000008500000061000000850000000f000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0x18000000000002a0, 0x28, 0x0, &(0x7f0000000400)="b9fdef306844268cb89614f086dd", 0x0, 0x9, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

3m44.958632771s ago: executing program 3 (id=2332):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x60, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x18, 0x1, 0x0, 0x1, @osf={{0x8}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_OSF_DREG={0x8, 0x1, 0x1, 0x0, 0x4}]}}}, {0x24, 0x1, 0x0, 0x1, @meta={{0x9}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_META_KEY={0x8, 0x2, 0x1, 0x0, 0x13}, @NFTA_META_SREG={0x8, 0x3, 0x1, 0x0, 0x17}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x88}}, 0x0)

3m44.635271514s ago: executing program 40 (id=2331):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000b40)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a98000000060a0b040000000000000000020000000900020073797a32000000006c000480680001800b000100746172676574000058000280400003009b6a37b458a8056dd9a87f963d140d7a9d3ac869f3a860917523679abf4579f9cd656422f3d541a38161051d0000000000000000010000"], 0xc0}, 0x1, 0x0, 0x0, 0x20040000}, 0x0)

3m44.620642412s ago: executing program 3 (id=2335):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x300)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f0000009780)={0x2020}, 0x2020)
r3 = syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
read$FUSE(r3, &(0x7f0000000980)={0x2020}, 0x2020)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000003400)={0x30, 0x3f, 0x107, 0xfffffffe, 0x0, {0x1, 0x7c}, [@nested={0x4, 0x142}, @nested={0xc, 0x1, 0x0, 0x1, [@typed={0x6, 0x6, 0x0, 0x0, @str='\x80\n'}]}, @nested={0xc, 0x2, 0x0, 0x1, [@nested={0x8, 0x14, 0x0, 0x1, [@nested={0x4, 0x6}]}]}]}, 0x30}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
socket$inet6_sctp(0xa, 0x801, 0x84)
socket$nl_netfilter(0x10, 0x3, 0xc)

3m43.332186551s ago: executing program 3 (id=2337):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
write(0xffffffffffffffff, &(0x7f0000000180)="7e7226ce9b4d692092ffa2b579f0ff5793012c9738a9be19ff3e69a683a0a1bbace0dc3853c661a4e1019e7a1f3af60350126cb99c5f3ace6f5616c00e0fb30b2832398fed6233b8632a001dd0a846cbb8a5d77e3208db486b055edb6ae7917f07ccf4b6811be57047aa17799359e733ec395940d1feb7a9ec2ddadb1ff61070c9c00f9db8e47f74a5271fa77b6e692e6ac97aaae883e5522f8e86c2403aec0ff8dee1cba5d40f0969470b9a2a95f6f22f9d4250809400ea8403a6540948", 0xfffffec6)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200)

3m42.021677855s ago: executing program 3 (id=2338):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000200)={0xa, 0x0, 0x2, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000001c0), 0xd4)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000000140)=@ccm_128={{0x304}, "e110894e2a871628", "c1ea3ef0371e580d05713d4d0ac1e793", "ba04fd14", "16f7100d430eadb3"}, 0x28)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x1, &(0x7f0000001700)=@ccm_128={{0x304, 0x33}, "f6f4d4adcd4326eb", "18cdd8abb70eb2c3a6eb94c3084d955c", "d6132297", "66847745c1ffd980"}, 0x28)

3m40.830936923s ago: executing program 3 (id=2340):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={0x154, r3, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}, @NL80211_ATTR_FRAME={0x12f, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @initial, {0xf, 0x5}}, 0xffffffffffffffff, @default, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @val={0x6, 0x2, 0x1fc}, @val={0x5, 0xb9, {0x5, 0x97, 0x5, "c5a8e7fff5b75b95587e33d3be9079cedfc8e279a1c252f16a2588dd1d7f1d207df30a9cfb5e99efe78f16157f86fb3465c507bde1e2a7fdb8a2199de836d92d6d8a0735bffa4732ce7fb203952315b32136b200c846704d4b92731866ba2f28abb8faab93d1134b3fbbc577b08200efeac23c1ec5723483b2bfda35f12efa1e2b3656be49889be5e752a9d64461e8572cf39a22c88762258b7c4be866681141772f9951a3b63217b2b143ac71c3a2727f274d5c984f"}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @val={0x72, 0x6}, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0xffffffffffffffff, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}, [{0xdd, 0x6, "a9b8e8b2e881"}]}}]}, 0x154}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

3m40.525859275s ago: executing program 41 (id=2340):
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_CHANNEL_SWITCH(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010008020000001800006600000008000300", @ANYBLOB="08002600940900000800b70099"], 0x2c}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000280), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)={0x154, r3, 0x1, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_CSA_C_OFFSETS_TX={0x6, 0xcd, [0x0]}, @NL80211_ATTR_FRAME={0x12f, 0x33, @beacon={{{0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {0x9}, @device_b, @device_a, @initial, {0xf, 0x5}}, 0xffffffffffffffff, @default, 0x1000, @val={0x0, 0x6, @default_ibss_ssid}, @void, @void, @void, @val={0x6, 0x2, 0x1fc}, @val={0x5, 0xb9, {0x5, 0x97, 0x5, "c5a8e7fff5b75b95587e33d3be9079cedfc8e279a1c252f16a2588dd1d7f1d207df30a9cfb5e99efe78f16157f86fb3465c507bde1e2a7fdb8a2199de836d92d6d8a0735bffa4732ce7fb203952315b32136b200c846704d4b92731866ba2f28abb8faab93d1134b3fbbc577b08200efeac23c1ec5723483b2bfda35f12efa1e2b3656be49889be5e752a9d64461e8572cf39a22c88762258b7c4be866681141772f9951a3b63217b2b143ac71c3a2727f274d5c984f"}}, @void, @val={0x2a, 0x1, {0x0, 0x0, 0x1}}, @void, @val={0x2d, 0x1a, {0x400, 0x2, 0x5, 0x0, {0x2, 0xb7b, 0x0, 0x347, 0x0, 0x1, 0x0, 0x0, 0x1}, 0x0, 0x100, 0x1}}, @val={0x72, 0x6}, @val={0x71, 0x7, {0x69, 0x0, 0x1, 0xffffffffffffffff, 0x1, 0x7, 0x20}}, @val={0x76, 0x6, {0x3, 0x0, 0x2f, 0x6}}, [{0xdd, 0x6, "a9b8e8b2e881"}]}}]}, 0x154}, 0x1, 0x0, 0x0, 0xc0}, 0x0)

3m21.931929226s ago: executing program 5 (id=2304):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x38, 0x1410, 0x8b7fbbc5948fecd9, 0x70bd29, 0x25dfd9fc, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}, @RDMA_NLDEV_ATTR_STAT_RES={0x8}, @RDMA_NLDEV_ATTR_STAT_MODE={0x8}, @RDMA_NLDEV_ATTR_RES_LQPN={0x8, 0x15, 0x3}, @RDMA_NLDEV_ATTR_STAT_COUNTER_ID={0x8, 0x4f, 0x1}]}, 0x38}, 0x1, 0x0, 0x0, 0x20004085}, 0x4004080)

3m20.604774842s ago: executing program 5 (id=2410):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x49)
sendmsg$kcm(r0, &(0x7f00000001c0)={&(0x7f0000000100)=@phonet={0x23, 0x0, 0x3, 0xd}, 0x80, &(0x7f0000000040)=[{&(0x7f0000000180)="27050200420014000600002fb96dbcf706e10500070088a800008100", 0x1c}, {&(0x7f0000000440), 0x18}], 0x2}, 0x0)

3m20.249555806s ago: executing program 5 (id=2412):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000380)='./cgroup.cpu/cgroup.procs\x00', 0x0, 0x0)
r1 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r2 = syz_usb_connect(0x0, 0x3f, &(0x7f00000000c0)=ANY=[@ANYBLOB="11010000733336088dee1edb23610000000109022d0101100000000904000003fe03010009cd8d1f0002000000090505020000fcffff09058b1e20"], 0x0)
syz_usb_control_io$printer(r2, 0x0, &(0x7f0000000480)={0x53, &(0x7f00000001c0)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_usb_disconnect(r2)
read$char_usb(r3, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x143102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r5 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r5, 0x0, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=@newtaction={0x18, 0x30, 0xf5df, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x4}]}, 0x18}}, 0x0)
ioctl$PIO_UNIMAP(r0, 0x4b67, &(0x7f0000000280)={0x0, 0x0})
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$wireguard(&(0x7f0000000040), 0xffffffffffffffff)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
finit_module(r0, &(0x7f0000000180)='/dev/snd/midiC#D#\x00', 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f000000c2c0)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NFT_BATCH(r7, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x0)
connect$inet6(r5, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
r8 = io_uring_setup(0x51d2, &(0x7f0000000100)={0x0, 0xa0f7, 0x800, 0x3, 0x108})
io_uring_register$IORING_REGISTER_FILES_UPDATE(r8, 0x6, 0x0, 0xffffffffffffff5c)
r9 = openat$cgroup_type(r1, &(0x7f00000003c0), 0x2, 0x0)
mmap(&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x1000001, 0x810, r9, 0x1a160000)

3m14.423149017s ago: executing program 5 (id=2430):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r0, 0x0, 0x0)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r2, &(0x7f0000000280)='./file0\x00', 0x200)

3m12.930144941s ago: executing program 5 (id=2437):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002dc0)={0x11, 0x3, &(0x7f0000002cc0)=ANY=[@ANYRESHEX], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20400, 0x38)
getdents64(r3, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000400)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
r5 = syz_open_procfs(0x0, &(0x7f0000000000)='net/ip6_tables_targets\x00')
syz_fuse_handle_req(r5, &(0x7f0000000cc0)="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", 0x2000, &(0x7f0000003ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000001f108b28a55a2fc7000095000000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
read$FUSE(r5, &(0x7f0000000240)={0x2020}, 0x2020)
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)

3m11.97127869s ago: executing program 5 (id=2446):
socket$kcm(0x10, 0x2, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x7a22, 0xc000, 0x7, 0x337})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, 0x0}, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
sendmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='9', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

3m10.421552566s ago: executing program 42 (id=2446):
socket$kcm(0x10, 0x2, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffd000/0x1000)=nil, &(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0x7a22, 0xc000, 0x7, 0x337})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, 0x0}, 0x0)
r1 = socket$inet(0x2, 0x80001, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000300)=0x8)
sendmsg(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)='9', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x4000845)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

3m10.413952555s ago: executing program 7 (id=2448):
openat$sysfs(0xffffff9c, &(0x7f00000003c0)='/sys/power/pm_trace_dev_match', 0x20800, 0x2)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
syz_emit_ethernet(0x56, &(0x7f0000002280)=ANY=[@ANYBLOB="aaaaaaaaaaaaffffffffffff000d040000a017000000eb1e3a2f228982f893281b41cabf7a91a4df06ee6e7c4495ea00848a47bf1c379c23517a58b700c9799afe5a00"/86], 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f0000000240), 0x2, 0x40102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2f)
pipe(&(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
read$FUSE(r1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0100000007000000060000000c"], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1, 0xd, &(0x7f0000000f80)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000085000000a000000095"], &(0x7f0000000340)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
setsockopt$sock_attach_bpf(0xffffffffffffffff, 0x1, 0x32, &(0x7f0000000040)=r4, 0x4)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x4800)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$VIDIOC_S_HW_FREQ_SEEK(0xffffffffffffffff, 0x40305652, &(0x7f0000004340)={0xe681, 0x4, 0x80000000, 0x7, 0x200, 0x6, 0x9})
r5 = openat$dsp1(0xffffffffffffff9c, &(0x7f0000000000), 0x20080, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r5, 0xc004500a, &(0x7f0000000080)=0x80000003)
socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_rx_ring(r2, 0x107, 0x5, &(0x7f0000000040)=@req3={0xffe, 0x3, 0x1000, 0x3a, 0x0, 0x0, 0x7}, 0x75)
r6 = dup2(r5, r5)
read$FUSE(r1, &(0x7f0000002300)={0x2020}, 0x2020)
syz_fuse_handle_req(r6, &(0x7f0000000280)="0d1c409c14b8ddbbe2423ac75d732f3d0e9cd37b375b9673cb39c6b35cbb85c4ba83de9d23bbcdd53a9f0d7c92b66f6d872096b32f4bdac32a6136c86365cfd42c3b0a25fac76123b6d700d3ba70cc138bc435d3b1fcee2545c3a421119087bddbbfd0418488219343819cf0a6780d54166d2769a719b207136357ff3f505fc1d6144239ba630b15e7f8aeef7be5cb8c9e738faec0d1ab79d34b994e098323b94d32926bc3b0fd88c13cc781a0fc3da7c4d83fbaf3288fabe01685a3422570fa4cba7e840bd0a01e995c91c5aba51ca15461dc1916bde9e70c66f3aae48475e95aea1f8e6c6f10104d64f767b7f9b7909f5caa5fd61ec7bc7392bfb7fe4f1d1d0528601a87f9248693f31a0f2ea07a0f33e670bad3ba0c648266195c6d9a76cd973a9da6016d1f5e0d49122f64da8933cfcf6a970d11767279a9e8e37a30a007e6ea473e146069e72894fcd378e17d4fa761999c128492a0321c3153edf7b28d0cddd78758f5192a924fbe2e8c594cf35aeffc635b14903d134fc5f7857218f99266c64be16e5f4ad76a8b5f6d39ca2451afcdcb0cf42322a5166becc90621f99f28e42bb2cb610039c45e54cc4bb8e8210e612a3f1ac93366b7bd77410af8b4b3eb03085354c9f8d12cc62da82eff96a006dab656c10e1bf210124b0ed6841158ec70981a399ba7c406f3014bf77553be6197d79dc1d31ac4c598bdbd007578d50f00ce85810e0759e91505549c70005a5f923aba20d8e05d0b764680b9ea259c8fa71f1ee36b71da662b825019c07aade7db363662103887079dea43ca30c32e4f0d9ff043720541633157a3ff1dc055ac1db5b25765b7ef2e338c104db28b6be7fdae54f04075e26ce38ec71d35c029df580ee3ef68e46359031aea121d0776398d1f1e28e9cbdc20cb58adf5dfa01a2819f697bb3189ac0d32eec43c0ef75f5bd4c7926d18daf9a6e9265c961aadbed4fb9627a1f0a6c3dde66fe5530993a7f150e5b361ad0db403a864ef4f5e0f21db55aa22055bdc5b282b057d07efd6abe23f941a62d6f613a1ff8d31da632284e89a3069c6b26ef35e55fc846fb1c28651cc5a879a4994568c4639b9fba8395014c9f4f6152cee1ddf8d582bc496bcbad8e39e0a5a3e713deed021eb9d5b3f8679a8bddc08ca77d7cd101006c5021b65cc7648a646735d9d7f6e54e4fb5bcf1fd9aee4beb700e597011a2fa6c01d22e9b6c7a5afd7def8ab0a3e612d8a5ce571dba2d0696155c3dbfcc851293eebccfac6855a7b024d762e768867f57446ecd6e1d09a31959a6374c50445884dfcc68a62662e5701a25a1da8e0abd0428bb558f9f7e74c250d4af62afad71e0f23268a955c548b41cc83f6810c72c832476383a355abfa449fc05c7afa2ed70849f175e826361882503246e688983f472c418578ae4c893d847c0c7f8ec99352d3024a69134dfccbc6ec3351b321483c57d2d1e77c0c7551cdaf4c14038844b1b05c25541d1d48bf0dfd1ae40c35872a5b37c2958e3a60187531814f3adff870aeb42cf611c3f777b08f7dcacf5c087b19c17dfca413097a603823363c2c55597330de20a73465ccbe5acfad066fcb17c177827cf081c588b73c042150bf1a18aff97518fbc1b4d5d22f29077e186ae9b998b4d6fdbcbc8c3bd57dcc61cc322537743ce480c1dea39adcc6a51da745a60e5272a7181986bcb992895035f0f882cdf79c56a84cd88c9bf0b7dab9c1f453cf4c05e2a33f43f4252fdcf99cf785e639bd9d11c374d4e3107ce128d2a823b6a8631a8fdebdf14a0bfc3f79d44cd54d3e8b9c5a3f41b9a1187e23f5a5eb5fadff92d746ff3befec7189ca19c1987551d0fec321cc306d235f82b3f479f3d7a3c1d2377afe3f22a49c682646e9893d7700061a0229a99d360f89d281dc6bb95b92329cc7277b89a9e6a3edd3c753cbb93e9f1249572bae520fb7c46970f527fd93c445a8159d4992badc395c05313462d37c4f651afbdb04f9f42ad4433c5c765735731ed6d8c97e4ca9fd3a1885de6c051e652a1ea40230e9d854ec2145c78ef5574deac83e78df8932dde1d5c46862c9f808394dc7f064b5649cc7b2627a55683ed33f2712ad2d4f77ec7f2be200e01fca138b3d1f42916a54a66561916bcbd3109f6eacf5096e478442e56e5af61f7c32c681bd35bf94a429a52024a48f6002978594418b66c6eb0fa91dccc4fa83d48927349b8a7cbb70670bd78b8acbbcb554a219cdc6740de4bbfcad2250fc219436ba5db017c172d6e24eaedf29d169b8867fc84eb2e721b31b08604a6fbd8d5edd9bb0152346509619f4a0f41090228b10868f56cd7d7c025cccc8f2b4a7d85ab91862c65d5d578fd5c046928c5c8f999611dea07a1451357b4365b33bac0a2a842b84e2cd4f790dca74cc962000f72d821b093e271e63680c0e9019769f3abed377f51f2e0a373958dfe351a1db29da4b74f9ba1250a8a0b985ed86cd7a2a4ede57ce00dbe77f5c797e6b9896ccb978d3a01047f9ac7d66e820073193b6a3400ff41f2f8a98a44a0d2a608db3000571efdade9a44f278272e7ada101d275c589fed2ee0191801b7a2ea62dec117c9cfd96ccb73de7fa2eb4d60a7ce1170047a5266668da1aa8489c6e4ce564607a485afc6991ba262cd6f155c23fbb47610f555e0be090854ffa0d610ae4baa1dbd1f36249beb0510b8d96132b6396a6261214f3153bfc4f0dcfeb55046bcca5868aa913316a2e802f9bfb51caacfd0045d96b3983b883db123da07fc20d06c973e3dc74c53006c77361cfa9d3b2062da3f9740cc7335ec792d1b2c767e86417433fe047c8d9368c0c51373b5e5158503afa52ab08ef49616499ccb8dc829e343d25fc1fc2ea6c95933295ab397f07703d1d8defebeb44a2a9556bbd5414cf921abfa8df9bc5ea76922d728ef0024f516c9fd7a2927a68ba9a7dcc4f52c3d8b72909b2bde14408e476778a3221644dfa13794e365a9ebb670eaf691b3c2393adc441519c1125b960ff109ccab52294c6584d74b3084cfda3707f7153681c88a1578a77be9224a70ce400f4af3dd72452df147476abf2668c1801fe538be40042717b6c468fe1a33d1d597fb637396b8ebed9f64eee42e645bd8dc0e63fbd3a139bce3157ce7ed6f5f643ee26847908efaf61cd977627647bc0e4f119b924bb185664f1dcf2240b2697c89e8f569332d19ceec176642ebf0bf509bd3b9477272159d45b708510908e74cc5e0304104d5ed6e578b46dffcf64367fe9d274ab8f16f3154f3e83ce6d3ae92a2644ceeb8ec33e07f728319eb69dfa37bb70b40a1001ff0157173e33af633496062b17cfab8b5c06ef2fadfef280da4e1f70fbbac10981a0b35f3ada39733d7d31798e455f0dd1c530939f09df43b5aff342c39052a51d773b22acbc8c1525f3572ef469eefe66d1895a9ca3c637286e3f9acd29e890ffccbb313dd9da50aacce808d06d0b109a16a1c2bf69fc4b85b9b7cc9b9ba9e5d709c65fd0a879032caee38315eb049b12f11c4d485ef426fff3a4f91b4f1ad4c192c4074636787ff966f82c8d4fcad13a7b581718ee7318f6731da2eb1338c95c35f1f2e082bedea7f05b87d891876cfab51ddf2908ebb2bc153c20001ae9c142b35a3de474b732c5f629bd948ac9230067120671d296001cabe19e3d2302c1f32e4fcff1681ab2ef216309c21c6a5afc51ac500687a5140d015ee2bda5f3d8a15826a21a0a9495b36fe958fff32afe270f809f3a8f8cd2d8992a859e5de779bd8aa4dc6979807171282ef34502f1bf34f529cdad15671692f232a9f2dd2107f8198f7a9ea5883cbeb2a060ff1b13fc1a4df315dff940e8f013e8142c640acf51ebb2b2f878dafb6c12747cef3061f2235bccceacce4bf9829df24b9f9e9c5c259aafbe61ff6be827e492e2c03fa1e9f936196ff9acb28081f7ca74109d823c5c96b1e808bc2b8072763954ec5691f7935284e045c6d86c5c68d69b4502a5132b3c1cdc5e000ed1f6aa4bc0a9090a8923004ac05558e08827c71fd2e24f931f880244143a8d092dc8bb2b48317ff49fa0b494b3fea0741fbcac6cf780f93db42f47d23170a70619d06b0462f2fb04dabe2a0c94a1d97ecb159d426df47f0a1e13764e045d97ba75fd0eede9711d112581b4a2e66b10077aa92c98e30d6504f0c08c0c68015c88abbc991d5a799e588d1ee7492d699126627ace339c1bb024a59ccd9d3df0197c8e56219d76698b61ec94927f41ccc7bc80ab6f65380d31d58f796e7e697b28e371ecd9ccf6b58e9cf32daee54c5228268446677f600ca8d091b6a4774749d40d6d4d6a009ae12bae1c530e6961420507a13a2a32c4f0863c790159a26588bed9f50b4ffbfc8649adc8144779653b4226fed5ab93570fb3edcc1be70780f6ddc8d9ef1ff39d22bd20cd8ae0195d02ada60fa0d65e065b7a3950d5a2b77546ad8f1c1018344589085638793d26fb4a5c59c23f1c9b148ddcbc478e1867e109590c44c14f5ad6e8cda21a75358cbfe6f397c711eead2b1c73df1453d184a44e85c2f6ac0c266b0f67b001426cec02efb66085bd1b8bcaf06d6709d545895337fe36e9d26417238f36be5ba51d5cd7cd7cec452780b72bc441052f67496ed8bb4d393db8da52aa3b0ef10a74a33c2b7ee24f76642f83bfc3e686951cbd1983f1ea54d536f6c86e8b20a4eaefb9ca57308abcfd81357e3d0eebeb0ff805c151ea1d0063c3bea7120562886fc4ce284f33d4a85c830d8b9b9b1295c352c3f5db54973a5ed3788e5396a1add7022546f13db95e4ad1a994142aa4f98d644cd822192e3e1875da3b4a6cfd61cca36a82fd4c1f09db84f6b379483e2b81749609750b493e406c8add341d8855ef47d8e8cd49e9d1340be1223d268bed3a2cc949b74cf01160723d26de9b11138fd8e8957354c2a58fa30903b7544d2bdf49249e5ca9f5d030f0c17e7ec605482523d1da3b3ca6c94c8724c20b929954c1c1f321ba7f77e2e954056a2838e57696e40a2fc9f8c2b7e25a41cd500f4fffb196810b3d77f79dfc1f7179fd4e2c63957c65da8325185cdfa37a82d42ebfc631a87ce7ba60ad09132f1eabe7b870c88fa277578e19a6adabd328e6b453dae201ce4327a378174695264ff4411a3815c362480058038b1b70b652e89b0c7743548b897c80c53b16aba4d244753fd8c14c8bcdbe2a2710df7842a8af2bd0a966632655c01bbc2604151b80e349b2f5f63fc8fdfb34c7223803fc0fd1dcf7fb5471c65f59ef9b02c3c0440f7e44fa4759782a46165c64e2ffc246d0438248c461e932806ddc20d3eeb597d74e9cbfba85951c601fd8b903c80f5d8bd5fc5b824cd63d9bc2d38438eb8a8bd1fbbad944b3ca074eb318ae074ef4d7f12076ac1809ca6868be7e5fcbb953ee70bcccb7cf51422e8293faf3e88d4b179b4c7a6ab53638eb05c902715c023f33ba9e121aed0b7b5f0544b5275cf22093e64a7038cda03fc9014002cb52d4568625d321b344e566b50a7e9695c79daab4aa0fc82790cd32708bdc0242686052677eb163cba152231e45d0ad1b8238a7d1230f43612ae8b9525d1f98372774a326e9baa48e69093b215ea503e054729722a71c7e6c58b958f3cec95fdbf1811b7c8a53787e95d266a70d408798e94d9579e813a8e9e3d4bdb4f2682f7aa30b659c722aa07faa911543c57db9fb3abf73ac5b4096cadb4bfa2b25e51b11e754348a2abff384a16194af26590ccd657cf76bae1f1246b67ee0834105f008cf77b1320ecfcb87bfa7d2b2fdec1330f54b6c6cf2280119e39e9a66ccef3df0c4297e1c861a027fa2ea5a1ab530f5b94a98895405c620bb6faecd7e80bfb42d1a4646360e0e8355af548439f8db48d583352ea84385e271b3067bf7b047e69e23c3bd2c3ea74df48b3649985b0ef12a9f3803ccfa52e01381d30a9005f0415a149557b67d0ac7c439ba8b20a9eb293ee4d357cc1d9e1e7f707ad77e58f22d2b26f9a8e726e826b6722c2b910416dcdaf772476e55256fefb1fa5de0139e15c2bf84e267be5d5381bb30607b731c8f305a1b4e1e4bae0b59e61dc77b13d129dfff4fdaf48f95038cc11b14e8266aac4d59fb40346c07a7fee92327e40905e40f8135b0f6e9e31969902e9926a99d7ae30891be917581189ff998ea5310da0cf72faae333ab8ee7cb9f78bb0a8695a841b8d37709e2826594cc8927f5dd98c53ea4c5246b5fc09f756f29b61c21996dcb6c0f1e476674aa9b6f69ccfcf8672b048ee723af55104da1c2f5250e8bbb3bdf2b7edb4878a902032ab4115f516d804d2cde7bce6b0c6dcd1f0d321fe4bb279e4c45294df0fd33956469839c70bcb68c033b597daf3f515354e72fd1ecff87e4b8d1ae52e6ef0fc773a49ca76d0659454b59e9c62fc8e10131e50893c0c0a997fb5766157701ce8e6a6482bd8b0b53a6b4fd4227d8e02c6453114f161017b18e52867282010df15c361a0ed3b17636adce6567ca97d4864dc15fca353490aecd5d26af991a92dcfd3e4dd38b8ed9181dee7e2e20cc2600c3211eecafd0dac537a693573e843259c30789a3d0ef91b78f95ed5da1c9e61716f651284e4eea663aab9c30d28a620745e44fbcf71221a23d332d411d17220c5a43321cbae90ba8104ffb4415d7563a21406d6be1fdc9abfff8998b51628b28b4ed84ded6804726cae5b62281949bb7cd7bec7bb2dfa8d831d4928b274c7452d2e9f8a37c67c98239b121d3acf381a10469d0dee019d38dbba865fdecfa34e39b0dcd4cf7a66e30f87d4f26d4190fdc62d44c850e94121ace3d531de3204ed5f838f5953c98b44a387a0cc95fc5e76facdf3a9f98183d32d887fb7d997a37b4737861bb12ea8e412e1015d3cceff7b448381f3fedd35a535e524f9e6df67e14882d9ec956a81e1972392c8c79cec77fe6d0f88a00710aaab4878187d6c387cf1ade1c61ca3b9bef117ad621c9a971d4f04a2e45314422f9f7606c932ab593db97747d7666948d04aacee1ceb6ae2fb205f32d953d94e5f2c7cb332eefa4bf11c999fb67e287960b64c36fa37de3c81fe53e057abc6f5575cb900a117242340126f721f8ad4c3d744440f2d9e1abf71fb24ca6f5abd392ce1110d4d138cd312373f99eef5a9b55a2a92a73be76860c380e5f2f1c9e5526ab5dc6f91d81d086dcfb70165c69b9bba0670366910ed053d43a61bc8215e95f304d73d38a689f174ac4940f1c7c87a011fbaa364e54887a0f38281509282943c38c77f9dbf385d0f8f62d30b300ae7ce24eb5b855057fc4fc8efcb05c4451fbc4de6f8b545559fb2bd2f8200eaa2822990d4afa0398e4c4d40534ece023306239bd86e2a0b9ae2fbfa640046379c1e2f0471e0005bdbd929119e54808f53fbc9ae318fd128aecaee2e314efcd76085a1da95b1261a321fe8229434dcc57844f15914221116d53faef06466643b996d5802167c0dcabe44979e576b4290aceee7aa771820fe113b85162e45961dea78ba31e0c54faa89ef75263d15580dd144745ab42b5d510f1beb115832df59ce57be19113f97aa21d984448e7fbc92c1291fd84f98e9ddd832336be330528e9df7b88f17f47708dfa401ba49562ef3650155bca61a81348896c151d05651caf865a3c40dbaecde5036233dd42a23f5712c93b2fa1c3ab754445bd258491fcf508ac344eeb38db1a4cb9980b1d97b826d76b0b10f8b8937dd0a9385c66ffffdab1819049c35aaf90b15267f7c58ff236c425414286bc7dfc3bd22abea8aeaeb113592ed41fa566d1426c85c3db9ef04e70b31ea52ae2f9352ae1195035b517f7e36350906773fabaef38fb29348b9797ec90cce08e0afb923fcfe0fe62ed2abd97d39949993048ae10c5be54808986f6c4aa437e413b449f57b0b0fc6f393808631fac191af623b8e90193ef2b0dda64f26b4771ab256bccd61ebf4b7ad099156986d64e77d37039d4a2e5836528a10c8c9d9ca9c640804dbf2db4154384cd8a8c02ce863e102ea944c17a643c120361d631b7f349f920ae6bd06db3e3af1bf902c3204e8632d27bd928701ee206a7d64448f9a81265a17a31878e3c1a2a044fc6f956b557471d1bf7dfe160716028191e851e18439f4e3561aa589528889090a3b673f70aebc1edb12861277f04f300acd8278e5f640ac0dc7e4f8df3ea39186119b0599f3e7bedfa0ee65e4d25d8586a2d10e773182d98ea9eef3b3d9805697adce7daf083b8a934c0d9c6467be25a6a22b6b246abcb355d03b8c3345dff9f40e253ae80a2de668dd9da044a2b90bc5788b0fe3a2c6387b3c817ea456eb7713a728caf4287d15006500435ff93eb6803e42e57c087c483e23605d9dcd6f758883fbb990eb0f91f351191956ac451e1c1d1ae113c03311057f5e70d8231bef8edb7c2cbecc4ab3e46b02945afbcdb2e8b005819dd141055af1fd6a3240af08751cd3a78ff92e39bba4d3c23aef960646512b3b86d6a8fa6880cfce6d58e1fbe734ac5f9b7018451a7a5879b3767dfb359eee615bab65116237e5de5b96bf9fbacd11702c73a8e478a64895d15ac0110737c3ab91222bc4c87326b5d5e3cf089da0a76d43222a8eeeb5286a4cb2fced98ebc2f6e876e8ff48b6f8f8264e52cf5b38906d657bd8d0d91e2d7846224ac60526f878e8189d80957a73a0fb95223842fb819286234d742c0aee14c75ed069411f7631aaa3e2a011fe75e67131a51733b9d2dc7981935d559a08a965363cdbc02dbadfcc4435040cff61df0cea2dcc5017deab9076fcc1a11ebe5020b6c96a16425397df15881815cf60b942648c234a5614ecffd4d5de50884934bdbd5177d24ee76f0c97fd0a2b97e527fa86c73ec672398f1d88c03d467f2712908d8fff5e02b4e1fe2d7bff02205597b3a5360e2767a3d7c488d222a3ea39d3fec61423e349689297868a4bfcf08a0938729fbc819ca2181f03f4ea42c7892dccd76560f1ef812ba7380681a8943e7bf2d6bb0729002a33a4a595c411cec870e8757e5d9cddb17563a627e598bd170cb6eab4d0d8a02c926bd0d67d2084df5873591ba8da1309f9c309fcdb1e1afea2ed48b467170f9d2539e62e75ed1e9ad94e2f574bba5e25f7473534e82e91263cef442f31e9e568a3eafa2b9de2a99fa681c6f6f245db26c24d56ae77fe239c63a70c2edd113f0d48bf5c2a887e1512bfb2801a0c628d3b91f57b1d1401b0e5e6012d32dafacd08775b1b28f15c44b03cd340a4e45be0534c4f5099c5bda5ef0035ab7d1ddbdb2e73ad49e15f6a04b5b09280581ebe2ce940a8058e2d14a0556c14adce8a40b6f0f78cc6bf46f0d0b2c4f9ce79e60eadd828eec8fd5c6b1196f685add24c959d4f1c9cbf7d21fb010df2f26fd1f1a5186186de0ab6f7fbf7ac2406a815382aad4edde90c8aa08ce053e86777fcbb089b4cbeb596949ff04739b53c4262b84881814c1cee97eb9147854b54ea354d53d906869c21e5772be517c127a0feb3844acb8b721f060e065b096d5f390b3557e25d50bb887ac018564a9b3ca3fe38eec76dace59bcadb81ed3764c177766ffc8770b7eca1fd3c87f3fc84f157974dc6356ab41388d973ae0a5a4a1d3d08f207b4add5bb902034f0be23bd27010cf5fb3a8ce4c34b123be47bf50fb6ff1593602e720d893561f72fcabdf7141ea4a274d319e9157ee4deb55dd412296525a1d82726fc8e8ad1ebddd6f7ac4ac10d3f59473cf5b0ae0644db9224268415ad314e4a7f4e4a17be80425198c097287ef95948ef260eb02d59e235caabeb1bcbf8829240e5637358879016ea8b5b06337d58aab36bc1a981d7667974068ca1a353a8caad2885236f407fcfc277210ff15f4d7d0caa2b31e5f745f455ff36a5fd9a9036c02f319a049ecb1d67c057130ae3d68374c82191059b44f8aebdf4574cd84cf7c031b6e177e8f5808f25ac76df8d7f9aada99e1a16ea5b22cc4bb349a352aceb2cb1ea47710704d446498f4d6ff2d8705797cfe62e03de9064a5831df451d021fcd93a71c3105f81df9d1ce5dc27d26d77326ab4bedf0c428a70772f2b0630b0640f643292e68e9b44d53f5c401f6ee09f8217b77b2d308e13cbedefa56920ad948b464a74c3e9ca9259d10132880d7dbd2c972c772985f7022a41ef473c254289982b9cde41f937a1de59b9a50caf728accac23ba485842dae35ad4ed412a31d2a134bf05ede9fc70fab45fee38f1f7e749e803446b418cc1b5e7f2019777ae03eab5e129e1eef2195ca84cde2848df14a93bbc3a917f1e06ce3753cf127f2241295fb630f6e27eadeaff570f955ace44dd204dcc082f7bcbe310e2c33267852049cb839142d072e3f3ebb1fc289c78769fd0f05578630e42a5829b82c6d535c012204aa74659282ba0498156e2183ecee174054d45fd97e5a0159255d8af432563d367f045d209c67cc70f7cf13b9a6578983ea640f0e8e66113484f48d41cb65b1338eb6cec534b3acdf9e5a1a3ac9157d75986583edfda4958e79593b6808b4762f823a6f442ee1749e592bc103f2b9e16107b939ece49cb447e5a7d34d66f18567d0e981f4fef25a467144689662783503a03e1800d22f40f61903d8270453161a68386bdd94d59dd66eb5ae067d4129be23a0b17b89d0478734460bb88c5771d9444caa769aa62d56bd128bc328e03d2e18d966f5784398ca2aab86007f7ca00908d4bd7f2f3ecf3024110b073304c7bb17bd73725721a99e94c8d5e5da7a839d58f2196cace99b98d7f584a49fee2a426e6ec3f08e520f7965aa2dad97084c2ebed43c58dbc9116f420d4735decc47dea514b689f5479c56b6128dd684c4fbf0945aa15363276af833b27b82cb48541413bc9fc51f9ce57c14bb6c39f86cbc99b69e5d91e7cf72f340f67012eb2f5fb21d830e97eb3664674ecc36c754f90d1a8f6092fe3a48827849ec95ed35887cfd2ab3f26331bdc154ad034f31ef26ecec5feedac1367f4f642e99ebb409ddd5dd8d0087ebf048e4924a2119c69ff00af79233443b897f7bd1d80f4d34555719bd8dd9c0d824d0437c2adfc598fd4c2c2d8cf7693e05238987bdb9bb04751dfcd44fbced899a7dadef499b9bfb45ee52ea59369c950821a667712946c7207e36473660f3f9c9906ed889ffe7a8c735e98d41cc96aecf3e577072cb4711eb690d28ff41dbe9070cd73da26875994a7b8480f2d21bd4b92402bc293fea154071c401581a9b858dcb4113149105d793fd4d0e98894f228f24250ada364f49180fbd116e0677cbfbe928a840dbfab2791865cec67ab39affa7b76c266285ed2ede7ce77e9e6f21545b8d177cc73e5142e6bbfbb3e9793716de8d6faeb74e18475cac7541e3ccd875cc0dc8bd5a01e468700d5817fc44b6dd64d74dbe0b351c80815102a0dc2038c83dc75189bb4ca425eabeeaa70fcebfda8f16c4b083762811325fdc6b94f84b6d4629929b85d0cf678b28651cab8a825f28440ca4e7a2193c6f9c769b0aa226754fa8eabd7cd1d31ea2478a83e0d79eaff6f72bfb05c31098f4640256b8c21ef25808821c08cbc68e8b6205fdbcb10b17d63cfb5ead7fb8ae1", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_connect(0x1, 0x2d, 0x0, 0x0)
syz_open_procfs(0x0, &(0x7f0000000380)='clear_refs\x00')
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x28}}, 0x0)

3m5.941347547s ago: executing program 7 (id=2454):
r0 = openat$audio(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r0, 0xc0045006, &(0x7f0000000080)=0x83)

3m5.649517691s ago: executing program 7 (id=2458):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002dc0)={0x11, 0x3, &(0x7f0000002cc0)=ANY=[@ANYRESHEX], &(0x7f0000000300)='syzkaller\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x3b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000200)='configfs\x00', 0x16, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20400, 0x38)
getdents64(r3, 0x0, 0x0)
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000400)=[{0x6, 0x72, 0x0, 0x7fff0000}]})
close_range(r4, 0xffffffffffffffff, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
mount$9p_virtio(&(0x7f00000001c0), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8c, 0x0)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f0000000cc0)="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", 0x2000, &(0x7f0000003ec0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

3m2.874130592s ago: executing program 7 (id=2464):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff)
write(r0, 0x0, 0x0)
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(&(0x7f0000000080)='./file0\x00', 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r2, &(0x7f0000000280)='./file0\x00', 0x200)

3m2.335926118s ago: executing program 7 (id=2469):
r0 = socket$netlink(0x10, 0x3, 0x4)
write(r0, &(0x7f0000000040)="2700000014000707030e0000120f0a0011000100f5fe009d2fb112ff000000008a151f75080039", 0x27)

2m58.428613146s ago: executing program 7 (id=2483):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f00000000c0)=""/39, 0x27)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00'}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

2m57.515663211s ago: executing program 43 (id=2483):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
getdents(0xffffffffffffffff, &(0x7f00000000c0)=""/39, 0x27)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000680)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='mmap_lock_acquire_returned\x00'}, 0x10)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1700000007"], 0x50)
socket$inet6_tcp(0xa, 0x1, 0x0)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

2m25.307743089s ago: executing program 8 (id=2560):
getsockname$packet(0xffffffffffffffff, &(0x7f0000000000)={0x11, 0x0, 0x0, 0x1, 0x0, 0x6, @remote}, 0x0)
socket(0xa, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = dup(0xffffffffffffffff)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000032680)=""/102400, 0x19000)
ioctl$EVIOCSCLOCKID(r0, 0x400445a0, &(0x7f0000000280))
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
r3 = msgget$private(0x0, 0xa0)
msgctl$IPC_INFO(r3, 0x3, &(0x7f00000003c0)=""/67)

2m21.922489503s ago: executing program 8 (id=2568):
r0 = io_uring_setup(0x3e48, &(0x7f00000001c0)={0x0, 0xffffffff, 0x0, 0x0, 0x302})
io_uring_register$IORING_REGISTER_MEM_REGION(r0, 0x22, 0x0, 0x1)

2m21.611365507s ago: executing program 8 (id=2574):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x1f, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000850000000500000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1f, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xd8}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000340)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000400)={@ifindex, 0xffffffffffffffff, 0x2f, 0x0, 0x0, @void, @value=r0}, 0x20)

2m21.285947033s ago: executing program 8 (id=2576):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x800714, &(0x7f0000000000), 0xff, 0x4a7, &(0x7f0000000280)="$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")
creat(&(0x7f0000000380)='./bus\x00', 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
mkdir(0x0, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x40, 0x0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x400, 0x0, 0x0, 0x1, 0x0, "ef35af413bb901527fe4d0ce5d29c3ee5e5c3676345a41499db7aac63a01000000000000004faa2ae2c084a0ea0000000000000000000c00002000", "036c47c67808200400000000000000335263bdbcef549ba197fce47ddfdd753abd950100002a00ffffffffffffffff00000000e8f20000000200", "b7326736181c208220000000b9000000000000000000f0fffffffff2ff00", [0x4]})
r1 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
unlinkat(r1, &(0x7f0000000280)='./file0\x00', 0x200)

2m17.280272575s ago: executing program 8 (id=2580):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000300)={0x1c, 0x1, 0x4, 0x5, 0x0, 0x0, {0xa}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}]}, 0x1c}}, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000000)={{0xba, 0x5c17, 0x0, 0x80}, 'syz1\x00', 0x55})
r3 = socket$inet(0x2, 0x2, 0x0)
getsockopt$bt_sco_SCO_CONNINFO(0xffffffffffffffff, 0x11, 0x2, &(0x7f0000000080)=""/132, &(0x7f0000000140)=0x84)
setsockopt$sock_int(r3, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x258, 0x3a8, 0x3a8, 0x258, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x118, 0x160, 0x700, {}, [@inet=@rpfilter={{0x28}, {0x4}}, @common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x400, 0x1c, 0xfffffff9, 'syz1\x00', {0x80}}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x7, 0xffff}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)

2m16.60446357s ago: executing program 8 (id=2583):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
r1 = socket$kcm(0x10, 0x2, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f0000000100)=r2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)="48000000150081fb7059ae08060c04000aff0f11000000040011018701546fabca1b4e7d06a6bd7c493872f750375ed08a562af5745e17b8c119418f0f000000d6e74703c48f", 0x46}], 0x1}, 0x4)

2m15.764833963s ago: executing program 44 (id=2583):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
r1 = socket$kcm(0x10, 0x2, 0x4)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='memory.stat\x00', 0x26e1, 0x0)
setsockopt$sock_attach_bpf(r0, 0x1, 0x3e, &(0x7f0000000100)=r2, 0x4)
sendmsg$kcm(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)=[{&(0x7f0000000080)="48000000150081fb7059ae08060c04000aff0f11000000040011018701546fabca1b4e7d06a6bd7c493872f750375ed08a562af5745e17b8c119418f0f000000d6e74703c48f", 0x46}], 0x1}, 0x4)

9.295117255s ago: executing program 2 (id=2951):
r0 = syz_usb_connect(0x2, 0x24, &(0x7f00000007c0)=ANY=[@ANYBLOB="12010000ed3ec908cd0cb300ea2d010203010902120001000000000904"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000000)={0x1c, &(0x7f0000000080)=ANY=[], 0x0, 0x0})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000003c0)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$printer(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000040)={0x84, &(0x7f0000000100)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.282020331s ago: executing program 4 (id=2978):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000300)={0x1c, 0x1, 0x4, 0x5, 0x0, 0x0, {0xa}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}]}, 0x1c}}, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000000)={{0xba, 0x5c17, 0x0, 0x80}, 'syz1\x00', 0x55})
r1 = socket$inet(0x2, 0x2, 0x0)
getsockopt$bt_sco_SCO_CONNINFO(0xffffffffffffffff, 0x11, 0x2, &(0x7f0000000080)=""/132, &(0x7f0000000140)=0x84)
setsockopt$sock_int(r1, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x258, 0x3a8, 0x3a8, 0x258, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x118, 0x160, 0x700, {}, [@inet=@rpfilter={{0x28}, {0x4}}, @common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x400, 0x1c, 0xfffffff9, 'syz1\x00', {0x80}}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x7, 0xffff}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)

5.927372956s ago: executing program 2 (id=2980):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB, @ANYRES16=r1, @ANYBLOB="cf0400000000ffdbdf251200000408000300", @ANYRES32=r2, @ANYBLOB="0a00060008021100000100001c0011"], 0x44}}, 0x0)

5.770401702s ago: executing program 4 (id=2981):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[@ANYBLOB="18000000240001030000000000000000010000000400ae"], 0x18}, 0x1, 0x0, 0x0, 0x8001}, 0x4000)
recvmmsg(r0, &(0x7f00000018c0)=[{{0x0, 0x0, 0x0}, 0x104}, {{0x0, 0x0, 0x0}, 0x80000001}, {{0x0, 0x0, 0x0}, 0x8001}, {{0x0, 0x0, &(0x7f0000000240)=[{0x0}, {&(0x7f00000028c0)=""/236, 0xec}, {&(0x7f0000002b80)=""/4100, 0x1004}, {&(0x7f0000000640)=""/68, 0x44}, {&(0x7f00000000c0)=""/252, 0xfc}, {&(0x7f0000000740)=""/251, 0xfb}], 0x6}, 0xb}], 0x4, 0x4022, 0x0)

5.706333271s ago: executing program 2 (id=2982):
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x1832b, 0x0)
r0 = syz_usb_connect(0x0, 0x24, &(0x7f00000001c0)=ANY=[@ANYBLOB="120100009dea7840b418fbff7bdc01020301090212000100000000090401"], 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f00000008c0)={0x1c, &(0x7f0000000100)=ANY=[@ANYBLOB="00000100000001"], 0x0, 0x0})
r1 = syz_open_dev$I2C(&(0x7f0000000000), 0x1, 0x402)
ioctl$I2C_RDWR(r1, 0x707, &(0x7f0000000200)={&(0x7f00000000c0)=[{0x4, 0x5201, 0x1, &(0x7f0000000300)='/'}, {0xfffc, 0xd010, 0x0, 0x0}], 0x2})
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)

5.478600903s ago: executing program 4 (id=2984):
ioctl$TCSETSF2(0xffffffffffffffff, 0x402c542d, &(0x7f0000000040)={0x82, 0x3, 0x0, 0x717e387b, 0x3d, "1a004e0078768000", 0x4, 0x2})
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x60081, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000000)=0x15)
ioctl$TCSETS(r0, 0x404c4701, &(0x7f0000000040)={0x1, 0x0, 0x0, 0x400000, 0x14, "3eccd8000000000000000010000000040100"})
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000000c0)=0xf9)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000140)=0xff)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f00000001c0)=0x28)
ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000100)=0x1)

4.846552074s ago: executing program 1 (id=2991):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$inet6_udp_int(r0, 0x11, 0x68, &(0x7f0000000080)=0xa40, 0x4)
ioctl$TUNSETTXFILTER(0xffffffffffffffff, 0x400454d1, &(0x7f0000000380)={0x0, 0x1, [@random="30daadd40925"]})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000002c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000180)={'syzkaller1\x00', @multicast})
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f0000000040)=0x2, 0x4)
write$tun(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="0a000000bbbbbbbbbbbbaaaaaaaaaabb86dd6d002000001311ff00000000000000000000000000000000ff0200000003000000000000e9ffff004f194e20"], 0x4b)

4.530970743s ago: executing program 4 (id=2994):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000300)={0x1c, 0x1, 0x4, 0x5, 0x0, 0x0, {0xa}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}]}, 0x1c}}, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000000)={{0xba, 0x5c17, 0x0, 0x80}, 'syz1\x00', 0x55})
r1 = socket$inet(0x2, 0x2, 0x0)
getsockopt$bt_sco_SCO_CONNINFO(0xffffffffffffffff, 0x11, 0x2, &(0x7f0000000080)=""/132, &(0x7f0000000140)=0x84)
setsockopt$sock_int(r1, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4)
r2 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x258, 0x3a8, 0x3a8, 0x258, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x118, 0x160, 0x700, {}, [@inet=@rpfilter={{0x28}, {0x4}}, @common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x400, 0x1c, 0xfffffff9, 'syz1\x00', {0x80}}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x7, 0xffff}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)

4.163353036s ago: executing program 1 (id=2998):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
eventfd(0xfffffffd)

3.993713757s ago: executing program 4 (id=2999):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TEST(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={0x0, 0x38}, 0x1, 0x0, 0x0, 0x10000000}, 0x4880)

3.788234505s ago: executing program 1 (id=3003):
syz_usb_connect(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x17, 0x70, 0xbf, 0x20, 0x86ba, 0x3fa1, 0x3961, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0xca, 0x2, 0x2, 0x8, 0x2, 0x0, 0x0, [], [{{0x9, 0x5, 0xb, 0x2, 0x200, 0x3}}, {{0x9, 0x5, 0x82, 0x2, 0x20, 0xfc}}]}}]}}]}}, 0x0)

3.749894963s ago: executing program 4 (id=3004):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_disconnect(r0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000000)=ANY=[@ANYBLOB="120100009ac0b620110f2110"], 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
read$char_usb(r1, &(0x7f0000000100)=""/178, 0xb2)
syz_usb_ep_write(r0, 0x81, 0x1, &(0x7f00000000c0)="ad")

3.486987694s ago: executing program 2 (id=3007):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000100)={0x2, 0x5, 0xc, 0x8, 0x9, 0x2, 0xfe, 0x99, 0x80, 0x4, 0xf0, 0x1, 0x80, 0x5f}, 0xe)
pipe2$9p(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r3, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0xfff, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

2.819739916s ago: executing program 9 (id=3008):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0xaaca4, &(0x7f0000000200)={[{@max={'max', 0x3d, 0xffffffffffffffff}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', 0x80, 0x141)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x134, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0x6}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x134}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000640)={{{@in6=@initdev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0}}, {{@in=@remote}, 0x0, @in=@private}}, &(0x7f0000000480)=0xe4)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newsa={0x134, 0x1c, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a, r5, r6}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x6, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc, 0x400}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x134}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, 0x0)
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r7, &(0x7f00000034c0)={0x2020}, 0xcac)
r8 = openat$comedi(0xffffff9c, &(0x7f0000001a80)='/dev/comedi3\x00', 0x181000, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r7)
ioctl$COMEDI_INSNLIST(r8, 0x8008640b, &(0x7f0000113800)={0x1, &(0x7f0000001040)=[{0x6000004, 0xfffffdc1, 0x0, 0x1, 0xac2}]})
syz_emit_vhci(&(0x7f0000002680)=ANY=[@ANYBLOB="04040aaaaaaa38236e41dbaa"], 0xd)

2.767252593s ago: executing program 0 (id=3009):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)

2.694461412s ago: executing program 2 (id=3010):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x4075}, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
r3 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101}}, @sadb_lifetime={0x4, 0x4}]}, 0xc0}}, 0x0)

2.49457049s ago: executing program 0 (id=3012):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000880)={&(0x7f0000000300)={0x1c, 0x1, 0x4, 0x5, 0x0, 0x0, {0xa}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}]}, 0x1c}}, 0x0)
ioctl$UI_DEV_SETUP(0xffffffffffffffff, 0x405c5503, &(0x7f0000000000)={{0xba, 0x5c17, 0x0, 0x80}, 'syz1\x00', 0x55})
r3 = socket$inet(0x2, 0x2, 0x0)
getsockopt$bt_sco_SCO_CONNINFO(0xffffffffffffffff, 0x11, 0x2, &(0x7f0000000080)=""/132, &(0x7f0000000140)=0x84)
setsockopt$sock_int(r3, 0x1, 0x2e, &(0x7f0000000180)=0x7b, 0x4)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000540)=@raw={'raw\x00', 0x3c1, 0x3, 0x328, 0x0, 0x2b8, 0xb0000010, 0x0, 0x5c8f0200, 0x258, 0x3a8, 0x3a8, 0x258, 0x3a8, 0x3, 0x0, {[{{@ipv6={@private1, @local, [], [], 'vlan1\x00', 'veth0_to_team\x00'}, 0x0, 0x118, 0x160, 0x700, {}, [@inet=@rpfilter={{0x28}, {0x4}}, @common=@unspec=@limit={{0x48}, {0x0, 0x3}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x400, 0x1c, 0xfffffff9, 'syz1\x00', {0x80}}}}, {{@uncond, 0x0, 0xd0, 0xf8, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x7, 0xffff}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x388)

2.49427935s ago: executing program 6 (id=3013):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_NEW_STATION(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000480)=ANY=[@ANYBLOB='D\x00', @ANYRES16=r1, @ANYBLOB="cf0400000000ffdbdf251200000408000300", @ANYRES32=r2, @ANYBLOB="0a00060008021100000100001c0011"], 0x44}}, 0x0)

2.107055419s ago: executing program 2 (id=3014):
openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec29, 0x800, 0x1, 0x40000337}, &(0x7f0000000dc0)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x847ba, 0x0, 0xe, 0x0, 0x0)

2.003677184s ago: executing program 6 (id=3015):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
mknod$loop(&(0x7f00000001c0)='./file0\x00', 0x6000, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={0x0, r0}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0xe, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="850000002e0c000016400000000000005c00000000"], 0x0, 0x4, 0x0, 0xffffffffffffffff, 0x0, 0x0, '\x00', 0x0, @sk_skb}, 0x94)
close(0xffffffffffffffff)
socket$kcm(0x10, 0x2, 0x0)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8b28, &(0x7f0000000000)={'wlan1\x00', @random="1f00"})

1.825952614s ago: executing program 9 (id=3016):
syz_open_procfs$namespace(0x0, &(0x7f00000000c0)='ns/net\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xb, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000180000002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000000085000000700000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0x1c, &(0x7f00000004c0)={r0, 0x3, 0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x44)
bpf$LINK_GET_NEXT_ID(0x1f, &(0x7f0000000d00)={0x0, <r1=>0x0}, 0x8)
r2 = bpf$LINK_GET_FD_BY_ID(0x1e, &(0x7f00000002c0)=r1, 0x4)
bpf$LINK_DETACH(0x22, &(0x7f0000000340)=r2, 0x4)

1.767112097s ago: executing program 6 (id=3017):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x18)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0xe0000000, 0x564b043a, 0x83, 0xffff, 0x5, 0x2, 0x0, 0x0, 0x80, 0x80000001}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f000000e3c0)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000d838aae8c05dd22d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_fuse_handle_req(r0, &(0x7f0000004200)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000340)={0x78, 0x0, 0x80, {0xc, 0x3, 0x0, {0xfffffffffffffffd, 0xffffffffffffffff, 0xfffffffffffffffc, 0x0, 0x8, 0xffffffff, 0xfffffffe, 0x0, 0x80000, 0x6000, 0x0, 0x0, r2, 0xfffffffd, 0x3}}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x20c01, 0x0)
writev(r3, &(0x7f0000000200)=[{&(0x7f00000003c0)='n', 0xfdef}], 0x1)
write$P9_RAUTH(r3, 0x0, 0x0)

1.422920645s ago: executing program 0 (id=3018):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x200a})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000180)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000280)=[@increfs], 0x0, 0x0, 0x0})
r2 = socket$kcm(0x10, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0x149802, 0x0)
r5 = dup(r4)
read$FUSE(r5, &(0x7f0000001900)={0x2020}, 0x2020)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r6, 0x8933, &(0x7f0000000140)={'batadv0\x00', <r7=>0x0})
r8 = syz_genetlink_get_family_id$batadv(&(0x7f0000000200), 0xffffffffffffffff)
sendmsg$BATADV_CMD_SET_MESH(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000340)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r8, @ANYBLOB="0100feffffff02dcdf250f00000008000300", @ANYRES32=r7, @ANYBLOB="459b96319a8ac596d71c1badbdb7"], 0x24}, 0x1, 0x0, 0x0, 0x48000}, 0x0)
sendfile(r4, r5, 0x0, 0x80006)
r9 = syz_genetlink_get_family_id$batadv(&(0x7f0000000400), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r3, 0x8933, &(0x7f0000000440)={'batadv0\x00', <r10=>0x0})
sendmsg$BATADV_CMD_SET_MESH(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r9, @ANYBLOB="010028bd7000010000000f00000008000300", @ANYRES32=r10, @ANYBLOB="050033000100d0"], 0x34}}, 0x80)
sendmsg$kcm(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848290000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x80)

1.290591464s ago: executing program 6 (id=3019):
syz_emit_vhci(&(0x7f0000000440)=ANY=[@ANYBLOB="02c93012000e0005"], 0x17)

992.9252ms ago: executing program 6 (id=3020):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$packet(0x11, 0x2, 0x300)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc)=<r2=>0x0)
pipe(&(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$RDMA_USER_CM_CMD_BIND_IP(r4, &(0x7f0000000500)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e21, 0x8, @mcast2, 0x2}}}, 0x30)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
splice(r5, 0x0, r6, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r6, &(0x7f0000000980), 0xfdef)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@struct={0x0, 0x2, 0x0, 0x4, 0x0, 0xffffffff, [{0x0, 0x3, 0xffffffff}, {0x0, 0x1}]}]}}, 0x0, 0x3e}, 0x28)
sendmsg$NFT_BATCH(r0, &(0x7f0000000440)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000400)={&(0x7f0000000540)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWCHAIN={0x28, 0x3, 0xa, 0x101, 0x0, 0x0, {0x7, 0x0, 0x7}, [@NFTA_CHAIN_FLAGS={0x8, 0xa, 0x1, 0x0, 0x2}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELSET={0x174, 0xb, 0xa, 0x201, 0x0, 0x0, {0x3, 0x0, 0x4}, [@NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x4}, @NFTA_SET_HANDLE={0xc, 0x10, 0x1, 0x0, 0x4}, @NFTA_SET_DESC={0x134, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0xb0, 0x2, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x10001}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1cb5}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffff}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xfffffe00}]}, {0x14, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x3}]}, {0x2c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xe}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x24}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}]}, {0x3c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xffff2220}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xb4e}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}]}]}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x9}, @NFTA_SET_DESC_SIZE={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_DESC_CONCAT={0x70, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1ff}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x1}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x4000000}]}, {0x1c, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x7}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x2}, @NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0x5}]}, {0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8, 0x1, 0x1, 0x0, 0xc1}]}]}]}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @notrack={{0xc}, @void}}, @NFTA_SET_GC_INTERVAL={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x2}}}, 0x1c4}}, 0x40000)
splice(r3, 0x0, r6, 0x0, 0x80, 0x4)
timer_settime(r2, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x2001, 0x0)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(r0, &(0x7f0000000280)={&(0x7f0000000140)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB="54010000030801040000000000000000140000080c00048008000240ff19fff906000240375b010d51deb2d242bdb644a737f100090000050003f48300000005000300060000000600020073797a300000000006004611afe506024088640000940e7f2d953fefa481b24c7259baa38f7a757a0e30886830400243880ab1684a4d34d2b65ba39434b66a844a65379f7d013c4fc2a2047b817be68d06535feb0f6b5fed24d1052b5f3374d99beb499859a02a925072813b5ec5dc5b65eee07cf492e0ecc87d37324e5f10735411e9dc5da6ec94d7515c85d5f27a9e5a313e4c3141aea951410038f2d997820d4327f4f9dc3416631a3ee9c481dd22889e800c399cb87b0c835f747b5bbe8e54bb4607783bfd989e73792dcae66c6d8b04ce2e06d459109f241648562745e6647f01"], 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x4)
sendmsg$NFT_BATCH(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWFLOWTABLE={0x40, 0x16, 0xa, 0x1, 0x0, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x14, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_NUM={0x8}, @NFTA_FLOWTABLE_HOOK_PRIORITY={0x8}]}]}, @NFT_MSG_DELFLOWTABLE={0x5c, 0x16, 0xa, 0x101, 0xb00, 0x0, {0x1}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_FLOWTABLE_NAME={0x9, 0x2, 'syz0\x00'}, @NFTA_FLOWTABLE_HOOK={0x30, 0x3, 0x0, 0x1, [@NFTA_FLOWTABLE_HOOK_DEVS={0x2c, 0x3, 0x0, 0x1, [{0x14, 0x1, 'rose0\x00'}, {0x14, 0x1, 'vcan0\x00'}]}]}]}], {0x14, 0x10}}, 0xe4}, 0x1, 0x0, 0x0, 0x20040841}, 0x0)

923.315025ms ago: executing program 9 (id=3021):
socket$inet_tcp(0x2, 0x1, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000700)=ANY=[@ANYBLOB], &(0x7f0000000080)='GPL\x00', 0x9, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x94)
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet_mptcp(0x2, 0x1, 0x106)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = syz_io_uring_setup(0x94c, &(0x7f0000000240)={0x0, 0x2c82, 0x10100, 0x11fffffc, 0x40000001}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000001c0)=@IORING_OP_TEE={0x21, 0x0, 0x0, @fd_index=0x8, 0x0, 0x0, 0x0, 0xb})
socketpair$unix(0x1, 0x0, 0x0, &(0x7f00000001c0))
write$UHID_CREATE2(r3, &(0x7f00000001c0)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_RECVMSG={0xa, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x1, {0xfffd}})
io_uring_enter(r0, 0x1a27, 0x0, 0x0, 0x0, 0x0)

759.221269ms ago: executing program 0 (id=3022):
r0 = syz_init_net_socket$802154_dgram(0x24, 0x2, 0x0)
sendmmsg$inet(r0, &(0x7f0000003b00)=[{{&(0x7f0000000040)={0x2, 0x0, @empty}, 0x10, 0x0}}], 0x1, 0x4000004)

727.548021ms ago: executing program 9 (id=3023):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
r1 = dup(0xffffffffffffffff)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000040)=[@in6={0xa, 0x4e24, 0x6, @loopback, 0x3}], 0x1c)
sendmsg$inet6(0xffffffffffffffff, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000380)=[{&(0x7f00000000c0)="88", 0x1}], 0x1}, 0x4048043)
setsockopt$inet_sctp6_SCTP_EVENTS(0xffffffffffffffff, 0x84, 0xb, &(0x7f0000000100)={0x2, 0x5, 0xc, 0x8, 0x9, 0x2, 0xfe, 0x99, 0x80, 0x4, 0xf0, 0x1, 0x80, 0x5f}, 0xe)
pipe2$9p(&(0x7f0000000080)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
write$P9_RSETATTR(r3, &(0x7f0000000000)={0x7, 0x1b, 0x2}, 0xffffff9a)
splice(r2, 0x0, 0xffffffffffffffff, 0x0, 0xfff, 0x2)
close_range(r0, 0xffffffffffffffff, 0x0)

492.899558ms ago: executing program 0 (id=3024):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={{0x14}, [@NFT_MSG_NEWRULE={0x4c, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x20, 0x4, 0x0, 0x1, [{0x1c, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0xc, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x74}}, 0x0)

423.295995ms ago: executing program 1 (id=3025):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000180)=0x800001, 0x4)
bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r1, 0x1, 0xf, &(0x7f00000003c0)=0x800001, 0x4)
bind$inet6(r1, &(0x7f0000000380)={0xa, 0x4e22, 0x0, @empty, 0x7}, 0x1c)
listen(r1, 0x0)
listen(r0, 0x0)

303.638869ms ago: executing program 9 (id=3026):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7b, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000035c0)={0x0, 0x0, &(0x7f0000003580)={&(0x7f0000000500)=ANY=[], 0x180}, 0x1, 0x0, 0x0, 0x4075}, 0x4880)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x18, 0x3, &(0x7f0000000380)=ANY=[@ANYRESDEC, @ANYRESDEC, @ANYRES8], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41000, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
chdir(&(0x7f00000000c0)='./file0\x00')
r5 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r5, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)={0x2, 0xd, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x4, 0x0, @private1}}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @empty}}, @sadb_x_policy={0x8, 0x12, 0x2, 0x2, 0x0, 0x0, 0x0, {0x6, 0x32, 0x0, 0x0, 0x0, 0x0, 0x0, @in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in=@private=0xa010101}}, @sadb_lifetime={0x4, 0x4}]}, 0xc0}}, 0x0)

299.977671ms ago: executing program 1 (id=3027):
ioctl$KDFONTOP_SET(0xffffffffffffffff, 0x4b72, &(0x7f0000000000)={0x4, 0x1f, 0x10, 0x80, 0x100, &(0x7f0000000040)="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"})

194.986468ms ago: executing program 0 (id=3028):
r0 = syz_usb_connect(0x0, 0x1cb, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000122f0d4071040403dfe4000000010902b901010000003f0904"], 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)
syz_usb_control_io$uac1(r0, 0x0, 0x0)
kexec_load(0x502, 0x0, 0x0, 0x320000)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)
syz_usb_control_io$rtl8150(r0, 0x0, 0x0)
syz_usb_control_io$sierra_net(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$cdc_ecm(r0, 0x0, 0x0)
syz_usb_control_io$lan78xx(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000001000)={0x84, &(0x7f0000000bc0)=ANY=[@ANYBLOB="008308"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

92.060061ms ago: executing program 9 (id=3029):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mkdir(0x0, 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000080)='devpts\x00', 0x0, 0x0)
mount$binder(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0xaaca4, &(0x7f0000000200)={[{@max={'max', 0x3d, 0xffffffffffffffff}}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r0}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mount(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000200)='debugfs\x00', 0x0, 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000340)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@xino_on}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000380)='./bus\x00', 0x80, 0x141)
getdents64(r1, &(0x7f0000000f80)=""/4096, 0x1000)
r2 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newsa={0x134, 0x10, 0x1, 0xfffffffe, 0x100, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x714, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@loopback, {0x0, 0x192, 0x6, 0xffff, 0x8251c, 0x2, 0xfffffffffffffff8}, {0xffffffffffffffff, 0x0, 0x1f, 0x6}, {0x2, 0xfffffffc}, 0x70bd2a, 0x3504, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x134}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
getsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, &(0x7f0000000640)={{{@in6=@initdev, @in=@dev, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r5=>0x0, <r6=>0x0}}, {{@in=@remote}, 0x0, @in=@private}}, &(0x7f0000000480)=0xe4)
sendmsg$nl_xfrm(r4, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000740)=@newsa={0x134, 0x1c, 0x1, 0xfffffffe, 0x100, {{@in6=@ipv4={'\x00', '\xff\xff', @multicast2}, @in6=@private1={0xfc, 0x1, '\x00', 0x1}, 0x1, 0x71c, 0x4e23, 0x5, 0x0, 0x0, 0x0, 0x3a, r5, r6}, {@in6=@mcast2, 0x4d4, 0x6c}, @in=@dev={0xac, 0x14, 0x14, 0x25}, {0x0, 0x192, 0x9ba3, 0xffff, 0x8251c, 0x6, 0xfffffffffffffffc}, {0xffffffffffffffff, 0x0, 0x1f, 0xfffffffffffffffe}, {0xfffffffa, 0xfffffffc, 0x400}, 0x80, 0x3500, 0x2, 0x1, 0x0, 0x20}, [@algo_comp={0x48, 0x3, {{'deflate\x00'}}}]}, 0x134}, 0x1, 0x0, 0x0, 0x8801}, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r2, 0x4018620d, 0x0)
r7 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000140)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r7, &(0x7f00000034c0)={0x2020}, 0xcac)
r8 = openat$comedi(0xffffff9c, &(0x7f0000001a80)='/dev/comedi3\x00', 0x181000, 0x0)
sendmsg$NL80211_CMD_ASSOCIATE(r7, &(0x7f00000002c0)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x10000000}, 0xc, &(0x7f0000000280)={&(0x7f00000003c0)={0x94, 0x0, 0x200, 0x70bd2c, 0x25dfdbfc, {{}, {@void, @val={0xc, 0x99, {0x8001, 0x68}}}}, [@NL80211_ATTR_FILS_KEK={0x42, 0xf2, "59721aa57c5b0e7b35d49d8682092f2f9ae11a8a09eb56a451e1f56c23bc358144415435b58652f6dc0b564f5a9a60b3f4ae751bb41660c1c3d95d65f49e"}, @crypto_settings=[@NL80211_ATTR_CIPHER_SUITE_GROUP={0x8, 0x4a, 0xfac0b}, @NL80211_ATTR_CONTROL_PORT_NO_ENCRYPT={0x4}], @NL80211_ATTR_FILS_NONCES={0x24, 0xf3, [0x0, 0x4, 0x3, 0x2, 0x9, 0x1, 0x0, 0x40, 0x1, 0x5, 0xff80, 0x3, 0x6, 0xdf, 0x9, 0x7f]}]}, 0x94}, 0x1, 0x0, 0x0, 0x20044000}, 0x10)
ioctl$COMEDI_INSNLIST(r8, 0x8008640b, &(0x7f0000113800)={0x1, &(0x7f0000001040)=[{0x6000004, 0xfffffdc1, 0x0, 0x1, 0xac2}]})
syz_emit_vhci(&(0x7f0000002680)=ANY=[@ANYBLOB="04040aaaaaaa38236e41dbaa"], 0xd)

2.104157ms ago: executing program 1 (id=3030):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000040)={0x3, 0x6576, 0xd})
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x4, 0x11, r0, 0x100000000)

0s ago: executing program 6 (id=3031):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e21, @local}, 0x47)
setsockopt$inet_tcp_int(r0, 0x6, 0x210000000013, &(0x7f00000000c0)=0x100000001, 0x4)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000100)=0x2002, 0x4)
setsockopt$inet_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000140)=0x2, 0x4)
connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000340)=[@sack_perm, @mss={0x2, 0x3d}, @timestamp, @timestamp, @sack_perm, @window={0x3, 0x2}, @sack_perm], 0x7)
sendto$inet(r0, &(0x7f0000000380)="25d7", 0x2, 0x4000041, 0x0, 0x0)
sendto$inet(r0, &(0x7f00000001c0)="7cfedfb0f9b7e2b22c064f2e5bc9009853d0", 0x12, 0x91, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r0, 0x6, 0x13, &(0x7f0000000000), 0x4)
sendto$inet(r0, &(0x7f0000000300)='<', 0x1, 0x805, 0x0, 0x0)

kernel console output (not intermixed with test programs):

336.809694][T15915] fuse: Bad value for 'fd'
[ 1337.023540][T15918] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1337.345418][   T30] audit: type=1107 audit(1760562498.703:46): pid=15917 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='£µ��÷¬ÌÄ 4d¬+: ×¹%|y}w¢NÝä:ÑQ)%…56ëT;¥"×=:†'
[ 1338.292417][T15923] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2219'.
[ 1338.785043][T15926] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2221'.
[ 1338.845190][T15927] netlink: 44 bytes leftover after parsing attributes in process `syz.5.2220'.
[ 1338.885445][T15776] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1339.019393][T15776] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1339.041791][T15776] bridge_slave_0: entered allmulticast mode
[ 1339.083890][T15776] bridge_slave_0: entered promiscuous mode
[ 1339.123396][T15776] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1339.168348][T15776] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1339.200741][T15776] bridge_slave_1: entered allmulticast mode
[ 1339.248370][T15776] bridge_slave_1: entered promiscuous mode
[ 1339.994087][T15776] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1340.089757][T15776] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1341.176980][T15966] ptrace attach of ""[15974] was attempted by "./syz-executor exec"[15966]
[ 1344.623182][ T5192] udevd[5192]: worker [15928] terminated by signal 33 (Unknown signal 33)
[ 1345.148373][T15776] team0: Port device team_slave_0 added
[ 1345.399849][T15776] team0: Port device team_slave_1 added
[ 1345.466062][ T1141] IPVS: stop unused estimator thread 0...
[ 1345.601197][T15982] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2235'.
[ 1345.660382][T15776] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1345.728539][T15982] IPVS: lblc: FWM 3 0x00000003 - no destination available
[ 1345.739763][T15776] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1345.847475][T15776] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1345.904371][T15776] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1345.947503][T15776] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1346.052337][T15776] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1346.067739][T15989] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2239'.
[ 1346.519002][T15776] hsr_slave_0: entered promiscuous mode
[ 1346.552427][T15776] hsr_slave_1: entered promiscuous mode
[ 1346.631380][T16000] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2242'.
[ 1346.643282][T15776] debugfs: 'hsr0' already exists in 'hsr'
[ 1346.657841][T15776] Cannot create hsr debugfs directory
[ 1346.674649][T15994] lo speed is unknown, defaulting to 1000
[ 1346.826166][T15994] lo speed is unknown, defaulting to 1000
[ 1347.273186][   T30] audit: type=1326 audit(1760562508.653:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=16008 comm="syz.5.2247" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fc98ef8eec9 code=0x0
[ 1347.820384][ T5845] Bluetooth: hci6: command 0x0406 tx timeout
[ 1349.979032][T16025] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2249'.
[ 1350.034794][T16028] IPVS: lblc: FWM 3 0x00000003 - no destination available
[ 1352.178663][T16057] overlayfs: failed to clone lowerpath
[ 1353.199408][T15776] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1353.598382][T16057] 9pnet_virtio: no channels available for device syz
[ 1354.706103][T15776] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1354.805657][T15776] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1354.945850][T15776] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1354.993004][T16068] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2266'.
[ 1355.134540][T16070] IPVS: lblc: FWM 3 0x00000003 - no destination available
[ 1355.180940][T16073] netlink: 20 bytes leftover after parsing attributes in process `syz.3.2268'.
[ 1355.412266][T15776] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1355.437017][T15776] 8021q: adding VLAN 0 to HW filter on device team0
[ 1355.545716][T15776] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1355.568863][T15776] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1355.793153][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1355.800461][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1355.911469][   T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1355.918729][   T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1356.058560][T16087] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1357.170514][T16107] netlink: 'syz.4.2278': attribute type 29 has an invalid length.
[ 1357.203934][T16107] netlink: 'syz.4.2278': attribute type 29 has an invalid length.
[ 1357.249262][T16107] netlink: 'syz.4.2278': attribute type 29 has an invalid length.
[ 1357.370791][T16111] 9pnet_virtio: no channels available for device syz
[ 1358.186057][T15776] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1358.248215][T16118] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2282'.
[ 1358.390969][T15776] veth0_vlan: entered promiscuous mode
[ 1358.426328][T15776] veth1_vlan: entered promiscuous mode
[ 1358.523745][T16124] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2285'.
[ 1358.585964][T15776] veth0_macvtap: entered promiscuous mode
[ 1358.615638][T15776] veth1_macvtap: entered promiscuous mode
[ 1358.682654][T15776] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1358.741529][T15776] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1358.857649][T13459] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1358.889705][T13459] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1359.419399][   T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1360.421570][ T6302] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1361.398681][T16148] overlayfs: failed to clone lowerpath
[ 1361.476288][T16149] 9pnet_virtio: no channels available for device syz
[ 1363.638782][T13459] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1363.834998][T16161] 9pnet_virtio: no channels available for device syz
[ 1364.470684][T13459] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1364.618735][T12726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1364.626603][T12726] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1364.732351][T16166] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2299'.
[ 1365.055151][T16174] loop0: detected capacity change from 0 to 512
[ 1365.092961][T16173] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2302'.
[ 1365.128039][T16174] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.2164: inode has both inline data and extents flags
[ 1365.163133][T16174] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.2164: couldn't read orphan inode 15 (err -117)
[ 1365.249915][T16174] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1365.458902][T16174] loop0: detected capacity change from 512 to 0
[ 1365.467552][    C0] I/O error, dev loop0, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[ 1365.502855][T16184] EXT4-fs error (device loop0): __ext4_find_entry:1613: inode #2: comm syz.0.2164: reading directory lblock 0
[ 1365.611184][T16184] buffer_io_error: 7 callbacks suppressed
[ 1365.611208][T16184] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[ 1365.652003][T16184] EXT4-fs (loop0): I/O error while writing superblock
[ 1365.892545][T15776] EXT4-fs warning (device loop0): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[ 1365.975941][T16192] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1366.054853][T16192] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1366.088990][   T12] EXT4-fs error (device loop0): __ext4_get_inode_loc_noinmem:4954: inode #2: block 5: comm kworker/u8:0: unable to read itable block
[ 1366.111291][T16195] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2309'.
[ 1366.162919][T16192] netlink: 288 bytes leftover after parsing attributes in process `syz.4.2309'.
[ 1366.167607][   T12] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[ 1366.200887][   T12] EXT4-fs (loop0): I/O error while writing superblock
[ 1366.213272][T16195] binder: 16189:16195 ioctl 4018620d 0 returned -22
[ 1366.255026][T15776] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1366.278212][ T5142] Bluetooth: hci2: connection err: -111
[ 1366.321611][T15776] Buffer I/O error on dev loop0, logical block 1, lost sync page write
[ 1366.331954][T16197] netlink: 20 bytes leftover after parsing attributes in process `syz.1.2313'.
[ 1366.354656][T15776] EXT4-fs (loop0): I/O error while writing superblock
[ 1366.725350][ T5845] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1366.736850][ T5845] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1366.751753][ T5845] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1366.776054][ T5845] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1366.785845][T16202] overlayfs: failed to clone lowerpath
[ 1366.791667][ T5845] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1366.860949][T12727] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1367.155965][T12727] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1367.200530][T16205] lo speed is unknown, defaulting to 1000
[ 1367.216494][T16205] lo speed is unknown, defaulting to 1000
[ 1367.316139][T12727] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1367.536257][T12727] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1367.806988][T16221] loop1: detected capacity change from 0 to 512
[ 1367.863942][T16219] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2323'.
[ 1367.907580][T16221] EXT4-fs error (device loop1): ext4_orphan_get:1392: inode #15: comm syz.1.2324: inode has both inline data and extents flags
[ 1367.929197][T16221] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.2324: couldn't read orphan inode 15 (err -117)
[ 1368.091940][T16221] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1368.702832][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1368.716251][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1368.724646][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1368.734377][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1368.768915][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1368.789588][T16221] loop1: detected capacity change from 512 to 0
[ 1368.827749][    C1] I/O error, dev loop1, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[ 1368.837378][T16226] EXT4-fs error (device loop1): __ext4_find_entry:1613: inode #2: comm syz.1.2324: reading directory lblock 0
[ 1368.838323][ T5845] Bluetooth: hci0: command tx timeout
[ 1368.909115][T16226] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[ 1368.919488][T16226] EXT4-fs (loop1): I/O error while writing superblock
[ 1369.027385][T14473] EXT4-fs warning (device loop1): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[ 1369.049954][T12727] bridge_slave_1: left allmulticast mode
[ 1369.055762][T12727] bridge_slave_1: left promiscuous mode
[ 1369.077297][T12727] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1369.180072][T12727] bridge_slave_0: left allmulticast mode
[ 1369.184217][T16236] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2326'.
[ 1369.196535][T12727] bridge_slave_0: left promiscuous mode
[ 1369.206870][ T6049] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4954: inode #2: block 5: comm kworker/u8:11: unable to read itable block
[ 1369.217213][T12727] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1369.227224][ T6049] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[ 1369.282355][ T6049] EXT4-fs (loop1): I/O error while writing superblock
[ 1369.304370][T14473] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1369.329789][T14473] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[ 1369.353899][T14473] EXT4-fs (loop1): I/O error while writing superblock
[ 1370.398639][T12727] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1370.411426][T12727] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1370.423045][T12727] bond0 (unregistering): Released all slaves
[ 1370.454817][T16227] lo speed is unknown, defaulting to 1000
[ 1370.557908][T16205] chnl_net:caif_netlink_parms(): no params data found
[ 1370.739973][T16241] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2329'.
[ 1370.758928][T16227] lo speed is unknown, defaulting to 1000
[ 1370.838261][ T5845] Bluetooth: hci3: command tx timeout
[ 1370.925730][ T5845] Bluetooth: hci0: command tx timeout
[ 1371.246421][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1371.253035][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1371.679277][T16258] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1372.917814][ T5845] Bluetooth: hci3: command tx timeout
[ 1373.002867][ T5845] Bluetooth: hci0: command tx timeout
[ 1373.192774][T12727] hsr_slave_0: left promiscuous mode
[ 1373.257758][T12727] hsr_slave_1: left promiscuous mode
[ 1373.284367][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1373.326198][T16265] loop3: detected capacity change from 0 to 512
[ 1373.329815][T12727] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1373.365580][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1373.387157][T12727] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1373.407932][T16265] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.2337: inode has both inline data and extents flags
[ 1373.443048][T12727] veth1_macvtap: left promiscuous mode
[ 1373.447856][T16265] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.2337: couldn't read orphan inode 15 (err -117)
[ 1373.459480][T12727] veth1_vlan: left promiscuous mode
[ 1373.483199][T12727] veth0_vlan: left promiscuous mode
[ 1373.500270][T16265] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1373.527091][ T5142] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1373.536754][ T5142] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1373.544921][ T5142] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1373.553283][ T5142] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1373.561598][ T5142] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1373.628816][T16265] loop3: detected capacity change from 512 to 0
[ 1373.636815][T16265] EXT4-fs error (device loop3): __ext4_find_entry:1613: inode #2: comm syz.3.2337: reading directory lblock 0
[ 1373.662701][T16265] Buffer I/O error on dev loop3, logical block 1, lost sync page write
[ 1373.682936][T16265] EXT4-fs (loop3): I/O error while writing superblock
[ 1373.758885][T15289] EXT4-fs warning (device loop3): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[ 1373.811209][ T6302] EXT4-fs error (device loop3): __ext4_get_inode_loc_noinmem:4954: inode #2: block 5: comm kworker/u8:14: unable to read itable block
[ 1373.838062][ T6302] Buffer I/O error on dev loop3, logical block 1, lost sync page write
[ 1373.857961][ T6302] EXT4-fs (loop3): I/O error while writing superblock
[ 1373.884253][T15289] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1373.911110][T15289] Buffer I/O error on dev loop3, logical block 1, lost sync page write
[ 1373.937086][T15289] EXT4-fs (loop3): I/O error while writing superblock
[ 1374.326146][T12727] team0 (unregistering): Port device team_slave_1 removed
[ 1374.376550][T12727] team0 (unregistering): Port device team_slave_0 removed
[ 1374.734324][T16205] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1374.747808][T16205] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1374.758412][T16205] bridge_slave_0: entered allmulticast mode
[ 1374.771891][T16205] bridge_slave_0: entered promiscuous mode
[ 1374.832764][T16268] lo speed is unknown, defaulting to 1000
[ 1374.941020][    T9] lo speed is unknown, defaulting to 1000
[ 1374.947139][    T9] infiniband syz2: ib_query_port failed (-19)
[ 1374.948876][T16205] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1374.997564][ T5142] Bluetooth: hci3: command tx timeout
[ 1374.997848][T16205] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1375.061725][T16205] bridge_slave_1: entered allmulticast mode
[ 1375.079290][ T5142] Bluetooth: hci0: command tx timeout
[ 1375.083098][T16205] bridge_slave_1: entered promiscuous mode
[ 1375.325866][T16205] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1375.371395][T16205] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1375.375288][T16279] netlink: 20 bytes leftover after parsing attributes in process `syz.6.2344'.
[ 1375.541089][T16205] team0: Port device team_slave_0 added
[ 1375.616337][T16205] team0: Port device team_slave_1 added
[ 1375.638183][ T5845] Bluetooth: hci5: command tx timeout
[ 1375.648372][T12727] IPVS: stop unused estimator thread 0...
[ 1375.891875][ T5142] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[ 1375.897694][T16205] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1375.909515][ T5142] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[ 1375.922479][ T5142] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[ 1375.928144][T16205] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1375.981406][ T5142] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[ 1375.987477][T16205] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1376.000313][ T5142] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[ 1376.075913][T16205] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1376.095530][T16205] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1376.152089][T16205] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1376.221864][T16302] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2352'.
[ 1376.345734][T12727] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1376.385203][T16268] chnl_net:caif_netlink_parms(): no params data found
[ 1376.403697][T16307] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1376.509288][T12727] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1376.533885][T16205] hsr_slave_0: entered promiscuous mode
[ 1376.540947][T16205] hsr_slave_1: entered promiscuous mode
[ 1376.547408][T16205] debugfs: 'hsr0' already exists in 'hsr'
[ 1376.554623][T16205] Cannot create hsr debugfs directory
[ 1376.575456][T16291] lo speed is unknown, defaulting to 1000
[ 1376.591816][T16227] chnl_net:caif_netlink_parms(): no params data found
[ 1376.617993][T16311] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2355'.
[ 1376.705388][T12727] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1376.840287][T12727] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1377.077560][ T5845] Bluetooth: hci3: command tx timeout
[ 1377.156349][T16268] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1377.177872][T16268] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1377.185140][T16268] bridge_slave_0: entered allmulticast mode
[ 1377.200457][T16268] bridge_slave_0: entered promiscuous mode
[ 1377.284556][T16227] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1377.292562][T16227] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1377.300135][T16227] bridge_slave_0: entered allmulticast mode
[ 1377.311056][T16334] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1377.320398][T16227] bridge_slave_0: entered promiscuous mode
[ 1377.360291][T16329] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2361'.
[ 1377.378216][T16268] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1377.417179][T16268] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1377.428955][T16268] bridge_slave_1: entered allmulticast mode
[ 1377.437132][T16268] bridge_slave_1: entered promiscuous mode
[ 1377.515884][T16227] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1377.523578][T16227] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1377.531543][T16227] bridge_slave_1: entered allmulticast mode
[ 1377.547869][T16227] bridge_slave_1: entered promiscuous mode
[ 1377.599649][T16341] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2365'.
[ 1377.667185][T16268] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1377.685517][T16227] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1377.703220][T16227] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1377.717902][ T5845] Bluetooth: hci5: command tx timeout
[ 1377.760554][T16268] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1377.896597][T16227] team0: Port device team_slave_0 added
[ 1377.933523][T16268] team0: Port device team_slave_0 added
[ 1377.944383][T16227] team0: Port device team_slave_1 added
[ 1378.039973][ T5845] Bluetooth: hci4: command tx timeout
[ 1378.041349][T12727] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1378.068277][T16268] team0: Port device team_slave_1 added
[ 1378.093777][T16227] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1378.100832][T16227] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1378.127656][T16227] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1378.142696][T16227] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1378.152049][T16227] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1378.179479][T16227] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1378.226518][T16268] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1378.235705][T16268] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1378.262145][T16268] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1378.287896][ T5836] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[ 1378.298681][T12727] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1378.352312][T16268] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1378.369914][T16268] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1378.428670][T16268] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1378.470683][ T5836] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1378.479522][ T5836] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1378.492935][ T5836] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1378.503594][ T5836] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1378.517016][ T5836] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1378.528186][ T5836] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1378.540059][ T5836] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1378.557731][ T5836] usb 5-1: Product: syz
[ 1378.567538][ T5836] usb 5-1: Manufacturer: syz
[ 1378.578046][ T5836] usb 5-1: SerialNumber: syz
[ 1378.595917][ T5836] usb 5-1: config 0 descriptor??
[ 1378.633694][ T5836] ldusb 5-1:0.0: Interrupt in endpoint not found
[ 1378.683226][T12727] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1378.806706][T16291] chnl_net:caif_netlink_parms(): no params data found
[ 1378.859374][T12727] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1378.895427][T16227] hsr_slave_0: entered promiscuous mode
[ 1378.903494][T16227] hsr_slave_1: entered promiscuous mode
[ 1378.913437][T16227] debugfs: 'hsr0' already exists in 'hsr'
[ 1378.925273][T16227] Cannot create hsr debugfs directory
[ 1379.794448][T16268] hsr_slave_0: entered promiscuous mode
[ 1379.808085][ T5845] Bluetooth: hci5: command tx timeout
[ 1379.820452][T16268] hsr_slave_1: entered promiscuous mode
[ 1379.832370][T16360] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1379.840990][T16268] debugfs: 'hsr0' already exists in 'hsr'
[ 1379.887536][T16268] Cannot create hsr debugfs directory
[ 1380.128666][ T5845] Bluetooth: hci4: command tx timeout
[ 1380.291659][T16205] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1380.319721][T16367] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2374'.
[ 1380.482499][T16205] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1380.703949][T16205] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1380.977159][T16205] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1381.012350][   T24] usb 5-1: USB disconnect, device number 2
[ 1381.023707][T16291] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1381.044842][T16291] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1381.056039][T16291] bridge_slave_0: entered allmulticast mode
[ 1381.064513][T16291] bridge_slave_0: entered promiscuous mode
[ 1381.077216][T16291] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1381.086283][T16291] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1381.094308][T16291] bridge_slave_1: entered allmulticast mode
[ 1381.109235][T16291] bridge_slave_1: entered promiscuous mode
[ 1381.255513][T12727] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.286610][T16291] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1381.334451][T16291] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1381.386421][T12727] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.434298][T16291] team0: Port device team_slave_0 added
[ 1381.460614][T16291] team0: Port device team_slave_1 added
[ 1381.485110][T12727] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.675250][T12727] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1381.748764][T16291] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1381.755858][T16291] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1381.782254][T16291] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1381.812371][T16291] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1381.822014][T16291] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1381.850896][T16291] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1381.891070][ T5142] Bluetooth: hci5: command tx timeout
[ 1382.057980][T16291] hsr_slave_0: entered promiscuous mode
[ 1382.148293][T16291] hsr_slave_1: entered promiscuous mode
[ 1382.167585][T16291] debugfs: 'hsr0' already exists in 'hsr'
[ 1382.268735][T16291] Cannot create hsr debugfs directory
[ 1382.282673][ T5142] Bluetooth: hci4: command tx timeout
[ 1382.579351][T12727] bridge_slave_1: left allmulticast mode
[ 1382.595880][T12727] bridge_slave_1: left promiscuous mode
[ 1382.613923][T12727] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1382.631707][T12727] bridge_slave_0: left allmulticast mode
[ 1382.645691][T12727] bridge_slave_0: left promiscuous mode
[ 1382.658544][T12727] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1382.692178][T12727] bridge_slave_1: left allmulticast mode
[ 1382.702365][T12727] bridge_slave_1: left promiscuous mode
[ 1382.717511][T12727] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1382.739615][T16399] overlayfs: failed to clone lowerpath
[ 1382.779452][T12727] bridge_slave_0: left allmulticast mode
[ 1382.785175][T12727] bridge_slave_0: left promiscuous mode
[ 1382.801527][T16399] 9pnet_virtio: no channels available for device syz
[ 1383.135274][T12727] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1383.251942][T12727] bridge_slave_1: left allmulticast mode
[ 1383.268891][T12727] bridge_slave_1: left promiscuous mode
[ 1383.488168][T12727] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1383.501322][T12727] bridge_slave_0: left allmulticast mode
[ 1383.538250][T12727] bridge_slave_0: left promiscuous mode
[ 1383.544107][T12727] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1383.557542][ T5142] Bluetooth: hci2: command 0x0406 tx timeout
[ 1384.357807][ T5845] Bluetooth: hci4: command tx timeout
[ 1384.651938][T12727] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1384.665177][T12727] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1384.676220][T12727] bond0 (unregistering): Released all slaves
[ 1384.887874][ T5921] usb 5-1: new full-speed USB device number 3 using dummy_hcd
[ 1385.042113][T12727] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1385.059015][T12727] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1385.068136][ T5921] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1385.076544][ T5921] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1385.087746][ T5921] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1385.088705][T12727] bond0 (unregistering): Released all slaves
[ 1385.099224][ T5921] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1385.099301][ T5921] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1385.102325][ T5921] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1385.135261][ T5921] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1385.143812][ T5921] usb 5-1: Product: syz
[ 1385.148264][ T5921] usb 5-1: Manufacturer: syz
[ 1385.152873][ T5921] usb 5-1: SerialNumber: syz
[ 1385.176327][ T5921] usb 5-1: config 0 descriptor??
[ 1385.187376][ T5921] ldusb 5-1:0.0: Interrupt in endpoint not found
[ 1385.639564][T12727] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1385.675420][T12727] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1385.689092][T12727] bond0 (unregistering): Released all slaves
[ 1386.608058][T16205] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1387.120974][T16205] 8021q: adding VLAN 0 to HW filter on device team0
[ 1387.165699][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1387.172977][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1387.224352][ T6265] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1387.231577][ T6265] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1387.516897][T12727] hsr_slave_0: left promiscuous mode
[ 1387.536014][T12727] hsr_slave_1: left promiscuous mode
[ 1387.548383][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1387.558897][T12727] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1387.570999][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1387.579792][T12727] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1387.601690][T12727] hsr_slave_0: left promiscuous mode
[ 1387.609365][T12727] hsr_slave_1: left promiscuous mode
[ 1387.617323][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1387.626565][T12727] batadv0: mtu less than device minimum
[ 1387.634848][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.646966][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.659046][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.671050][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.683541][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.696238][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.708988][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.721434][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.733755][T12727] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1387.762483][T12727] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1387.778355][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1387.815026][T12727] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1387.828428][T12727] batman_adv: batadv0: Interface deactivated: dummy0
[ 1387.835460][T12727] batman_adv: batadv0: Removing interface: dummy0
[ 1387.853941][T12727] hsr_slave_0: left promiscuous mode
[ 1387.863453][T12727] hsr_slave_1: left promiscuous mode
[ 1387.871623][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1387.886411][T12727] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1387.895231][T12727] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1387.904413][T12727] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1388.007237][T12727] veth1_macvtap: left promiscuous mode
[ 1388.013041][T12727] veth0_macvtap: left promiscuous mode
[ 1388.019146][T12727] veth1_vlan: left promiscuous mode
[ 1388.024484][T12727] veth0_vlan: left promiscuous mode
[ 1388.031692][T12727] veth1_macvtap: left promiscuous mode
[ 1388.037271][T12727] veth0_macvtap: left promiscuous mode
[ 1388.043617][T12727] veth1_vlan: left promiscuous mode
[ 1388.049161][T12727] veth0_vlan: left promiscuous mode
[ 1388.055739][T12727] veth1_macvtap: left promiscuous mode
[ 1388.061402][T12727] veth0_macvtap: left promiscuous mode
[ 1388.067168][T12727] veth1_vlan: left promiscuous mode
[ 1388.072817][T12727] veth0_vlan: left promiscuous mode
[ 1388.705773][T12727] team0 (unregistering): Port device team_slave_1 removed
[ 1388.747187][T12727] team0 (unregistering): Port device team_slave_0 removed
[ 1389.376853][T12727] team0 (unregistering): Port device team_slave_1 removed
[ 1389.413632][T12727] team0 (unregistering): Port device team_slave_0 removed
[ 1390.061243][T12727] team0 (unregistering): Port device team_slave_1 removed
[ 1390.102893][T12727] team0 (unregistering): Port device team_slave_0 removed
[ 1390.478768][T14789] usb 5-1: USB disconnect, device number 3
[ 1390.507772][T16227] netdevsim netdevsim7 netdevsim0: renamed from eth0
[ 1390.545099][T16227] netdevsim netdevsim7 netdevsim1: renamed from eth1
[ 1390.598683][T16227] netdevsim netdevsim7 netdevsim2: renamed from eth2
[ 1390.628395][T16227] netdevsim netdevsim7 netdevsim3: renamed from eth3
[ 1391.060786][T16227] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1391.105317][T16205] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1391.202682][T16227] 8021q: adding VLAN 0 to HW filter on device team0
[ 1391.306674][   T60] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1391.314225][   T60] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1391.372900][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1391.380142][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1391.404006][T16268] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1391.435743][T16268] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1391.472902][T16455] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2401'.
[ 1391.484030][T16268] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1391.518137][T16268] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1391.957108][T16291] netdevsim netdevsim2 netdevsim0: renamed from eth0
[ 1391.968486][T12727] IPVS: stop unused estimator thread 0...
[ 1392.046017][T16291] netdevsim netdevsim2 netdevsim1: renamed from eth1
[ 1392.065024][T16291] netdevsim netdevsim2 netdevsim2: renamed from eth2
[ 1392.088420][T16291] netdevsim netdevsim2 netdevsim3: renamed from eth3
[ 1392.206229][T16205] veth0_vlan: entered promiscuous mode
[ 1392.235519][T16268] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1392.289998][T16205] veth1_vlan: entered promiscuous mode
[ 1392.297715][ T5921] usb 5-1: new full-speed USB device number 4 using dummy_hcd
[ 1392.317382][T16268] 8021q: adding VLAN 0 to HW filter on device team0
[ 1392.333052][T16227] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1392.368947][T12727] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1392.376219][T12727] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1392.411051][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1392.418326][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1392.466948][T16291] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1392.481214][ T5921] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1392.492991][ T5921] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1392.507851][ T5921] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1392.524081][T16205] veth0_macvtap: entered promiscuous mode
[ 1392.540284][ T5921] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1392.554840][ T5921] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1392.579463][ T5921] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1392.589014][T16205] veth1_macvtap: entered promiscuous mode
[ 1392.596792][ T5921] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1392.625110][T16291] 8021q: adding VLAN 0 to HW filter on device team0
[ 1392.627271][ T5921] usb 5-1: Product: syz
[ 1392.638530][ T5921] usb 5-1: Manufacturer: syz
[ 1392.643149][ T5921] usb 5-1: SerialNumber: syz
[ 1392.664876][ T6265] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1392.665005][ T5921] usb 5-1: config 0 descriptor??
[ 1392.672105][ T6265] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1392.715542][T16205] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1392.720685][ T5921] ldusb 5-1:0.0: Interrupt in endpoint not found
[ 1392.739702][   T60] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1392.746922][   T60] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1392.770948][T16205] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1392.816199][ T6302] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1392.829948][ T6302] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1392.859114][ T6302] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1392.899200][ T6302] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1393.350738][   T60] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1393.376468][   T60] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1393.533246][ T6265] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1393.546276][ T6265] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1393.577362][T16227] veth0_vlan: entered promiscuous mode
[ 1393.750508][T16227] veth1_vlan: entered promiscuous mode
[ 1393.772873][T16268] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1394.066499][T16227] veth0_macvtap: entered promiscuous mode
[ 1394.162087][T16507] net_ratelimit: 30 callbacks suppressed
[ 1394.162151][T16507] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1394.901881][T16227] veth1_macvtap: entered promiscuous mode
[ 1395.064614][T16227] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1395.133767][T16227] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1395.184875][ T6265] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1395.227045][T16291] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1395.245342][ T6265] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1395.286781][ T6265] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1395.323944][ T6265] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1395.654907][T16291] veth0_vlan: entered promiscuous mode
[ 1395.661835][T12727] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1395.693957][T12727] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1395.814118][T12727] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1395.830775][T16291] veth1_vlan: entered promiscuous mode
[ 1395.844555][T12727] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1395.943307][T16291] veth0_macvtap: entered promiscuous mode
[ 1395.982268][T16291] veth1_macvtap: entered promiscuous mode
[ 1396.017589][T11318] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[ 1396.057272][T16291] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1396.106275][T16291] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1396.143779][T13459] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.161117][T13459] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.193188][T13459] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.203196][T13459] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1396.389196][T11318] usb 6-1: Using ep0 maxpacket: 8
[ 1396.401260][T11318] usb 6-1: config index 0 descriptor too short (expected 301, got 45)
[ 1396.410860][T11318] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1396.520463][T16532] 9pnet_virtio: no channels available for device syz
[ 1397.361699][T11318] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1397.374103][ T8622] usb 5-1: USB disconnect, device number 4
[ 1397.384106][T11318] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1397.418807][T16268] veth0_vlan: entered promiscuous mode
[ 1397.421026][T11318] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1397.438139][T11318] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1397.447195][T11318] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1397.564228][T16268] veth1_vlan: entered promiscuous mode
[ 1397.663598][T11318] usb 6-1: GET_CAPABILITIES returned 0
[ 1397.677027][T13459] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1397.685510][T11318] usbtmc 6-1:16.0: can't read capabilities
[ 1397.706325][T13459] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1397.774134][T16268] veth0_macvtap: entered promiscuous mode
[ 1397.843726][T16268] veth1_macvtap: entered promiscuous mode
[ 1397.870519][T12727] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1397.882297][T11318] usb 6-1: USB disconnect, device number 2
[ 1397.905712][T12727] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1397.933161][T16268] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1397.996783][T16268] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1398.031004][T13459] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1398.062451][T13459] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1398.090566][T13459] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1400.371704][T13459] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1400.715111][ T6302] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1400.735418][ T6302] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1401.216408][T16565] 9pnet_virtio: no channels available for device syz
[ 1401.300083][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1401.345337][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1401.505014][T16572] loop5: detected capacity change from 0 to 512
[ 1401.544878][T16572] EXT4-fs error (device loop5): ext4_orphan_get:1392: inode #15: comm syz.5.2430: inode has both inline data and extents flags
[ 1401.561535][T16572] EXT4-fs error (device loop5): ext4_orphan_get:1395: comm syz.5.2430: couldn't read orphan inode 15 (err -117)
[ 1401.597098][T16572] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1401.845828][T16582] netlink: 40 bytes leftover after parsing attributes in process `syz.2.2434'.
[ 1401.956808][T16585] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2432'.
[ 1401.978988][T16572] loop5: detected capacity change from 512 to 0
[ 1401.987010][    C1] I/O error, dev loop5, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[ 1401.996615][T16587] EXT4-fs error (device loop5): __ext4_find_entry:1613: inode #2: comm syz.5.2430: reading directory lblock 0
[ 1402.048205][T16587] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[ 1402.080910][T16587] EXT4-fs (loop5): I/O error while writing superblock
[ 1402.888490][T16205] EXT4-fs warning (device loop5): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[ 1403.072169][ T6049] EXT4-fs error (device loop5): __ext4_get_inode_loc_noinmem:4954: inode #2: block 5: comm kworker/u8:11: unable to read itable block
[ 1403.137915][ T6049] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[ 1403.194988][ T6049] EXT4-fs (loop5): I/O error while writing superblock
[ 1403.213997][T16205] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1403.244728][T16205] Buffer I/O error on dev loop5, logical block 1, lost sync page write
[ 1403.276755][T16205] EXT4-fs (loop5): I/O error while writing superblock
[ 1403.327418][T16601] netlink: 'syz.2.2441': attribute type 29 has an invalid length.
[ 1403.337896][T16601] netlink: 'syz.2.2441': attribute type 29 has an invalid length.
[ 1403.348102][T16601] netlink: 'syz.2.2441': attribute type 29 has an invalid length.
[ 1403.356410][T16601] netlink: 'syz.2.2441': attribute type 29 has an invalid length.
[ 1403.817620][ T5836] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[ 1403.987906][ T5836] usb 5-1: Using ep0 maxpacket: 8
[ 1403.995483][ T6265] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1404.025211][ T5836] usb 5-1: config index 0 descriptor too short (expected 301, got 45)
[ 1404.043305][ T5836] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1404.098127][ T5836] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1404.195122][T16613] 9pnet_virtio: no channels available for device syz
[ 1404.861285][ T5836] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1404.871336][ T5836] usb 5-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1404.884420][ T5836] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1405.008751][ T5836] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1405.074384][ T6265] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1405.192132][ T6265] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1405.235021][ T5836] usb 5-1: GET_CAPABILITIES returned 0
[ 1405.248127][ T5836] usbtmc 5-1:16.0: can't read capabilities
[ 1405.313360][ T6265] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1405.439263][ T5836] usb 5-1: USB disconnect, device number 5
[ 1405.474287][T16616] loop2: detected capacity change from 0 to 512
[ 1405.527714][T16616] EXT4-fs error (device loop2): ext4_orphan_get:1392: inode #15: comm syz.2.2450: inode has both inline data and extents flags
[ 1405.604500][T16616] EXT4-fs error (device loop2): ext4_orphan_get:1395: comm syz.2.2450: couldn't read orphan inode 15 (err -117)
[ 1408.974801][T16616] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1409.844781][T16291] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1409.870143][ T6265] bridge_slave_1: left allmulticast mode
[ 1409.907589][ T6265] bridge_slave_1: left promiscuous mode
[ 1409.937795][ T6265] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1410.079364][ T6265] bridge_slave_0: left allmulticast mode
[ 1410.085080][ T6265] bridge_slave_0: left promiscuous mode
[ 1410.105539][ T6265] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1410.940890][T16650] 9pnet_virtio: no channels available for device syz
[ 1412.130986][ T5142] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1412.140500][ T5142] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1412.155155][ T5142] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1412.164549][ T5142] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1412.176369][ T5142] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1412.955430][T16668] loop7: detected capacity change from 0 to 512
[ 1413.006531][T16668] EXT4-fs error (device loop7): ext4_orphan_get:1392: inode #15: comm syz.7.2464: inode has both inline data and extents flags
[ 1413.053097][T16668] EXT4-fs error (device loop7): ext4_orphan_get:1395: comm syz.7.2464: couldn't read orphan inode 15 (err -117)
[ 1413.081601][T16668] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1413.220948][T16668] loop7: detected capacity change from 512 to 0
[ 1413.227484][    C0] I/O error, dev loop7, sector 72 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[ 1413.237094][T16674] EXT4-fs error (device loop7): __ext4_find_entry:1613: inode #2: comm syz.7.2464: reading directory lblock 0
[ 1413.257749][ T6265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1413.266738][T16674] Buffer I/O error on dev loop7, logical block 1, lost sync page write
[ 1413.275954][T16674] EXT4-fs (loop7): I/O error while writing superblock
[ 1413.289346][ T6265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1413.334336][ T6265] bond0 (unregistering): Released all slaves
[ 1413.389053][T16636] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2453'.
[ 1413.403165][T16641] netlink: 'syz.4.2456': attribute type 29 has an invalid length.
[ 1413.446831][T16227] EXT4-fs warning (device loop7): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[ 1413.522606][T16656] lo speed is unknown, defaulting to 1000
[ 1413.691697][T16678] Bluetooth: MGMT ver 1.23
[ 1413.743730][T12726] EXT4-fs error (device loop7): __ext4_get_inode_loc_noinmem:4954: inode #2: block 5: comm kworker/u8:2: unable to read itable block
[ 1413.816856][T12726] Buffer I/O error on dev loop7, logical block 1, lost sync page write
[ 1413.829516][T12726] EXT4-fs (loop7): I/O error while writing superblock
[ 1413.849627][T16227] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1413.904774][T16227] Buffer I/O error on dev loop7, logical block 1, lost sync page write
[ 1413.947656][T16227] EXT4-fs (loop7): I/O error while writing superblock
[ 1414.278755][ T5845] Bluetooth: hci0: command tx timeout
[ 1414.322606][T16656] chnl_net:caif_netlink_parms(): no params data found
[ 1414.921235][T16706] 9pnet_virtio: no channels available for device syz
[ 1416.900414][ T5845] Bluetooth: hci0: command tx timeout
[ 1417.109515][T16714] 9pnet_virtio: no channels available for device syz
[ 1417.697696][ T6265] hsr_slave_0: left promiscuous mode
[ 1417.746500][ T6265] hsr_slave_1: left promiscuous mode
[ 1417.775988][ T6265] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1417.816187][ T6265] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1417.853875][ T6265] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1417.886007][ T6265] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1417.961267][ T6265] veth1_macvtap: left promiscuous mode
[ 1417.981992][ T6265] veth0_macvtap: left promiscuous mode
[ 1417.995589][ T6265] veth1_vlan: left promiscuous mode
[ 1418.007904][ T6265] veth0_vlan: left promiscuous mode
[ 1418.919789][ T5142] Bluetooth: hci0: command tx timeout
[ 1420.024391][T16742] 9pnet_virtio: no channels available for device syz
[ 1421.381247][ T5142] Bluetooth: hci0: command tx timeout
[ 1422.975773][T16748] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1423.058646][ T5845] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[ 1423.067781][ T5845] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[ 1423.080052][ T5845] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[ 1423.104261][ T5845] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[ 1423.326180][ T5845] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[ 1424.272547][ T6265] team0 (unregistering): Port device team_slave_1 removed
[ 1424.472297][ T6265] team0 (unregistering): Port device team_slave_0 removed
[ 1425.480146][ T5845] Bluetooth: hci3: command tx timeout
[ 1426.637582][T16718] netlink: 'syz.8.2482': attribute type 29 has an invalid length.
[ 1426.670306][T16767] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2501'.
[ 1426.843198][T16749] lo speed is unknown, defaulting to 1000
[ 1426.844356][T16656] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1426.857958][T16656] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1426.865203][T16656] bridge_slave_0: entered allmulticast mode
[ 1426.875968][T16656] bridge_slave_0: entered promiscuous mode
[ 1426.897854][T16656] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1426.914994][T16656] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1426.924591][T16656] bridge_slave_1: entered allmulticast mode
[ 1426.935739][T16656] bridge_slave_1: entered promiscuous mode
[ 1427.184359][T16656] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1427.448362][T16656] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1427.559655][ T5845] Bluetooth: hci3: command tx timeout
[ 1428.637604][T16656] team0: Port device team_slave_0 added
[ 1428.673102][T16656] team0: Port device team_slave_1 added
[ 1428.863441][T16656] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1428.914786][T16656] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1429.028903][T16656] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1429.086860][T16804] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2515'.
[ 1429.129778][T16656] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1429.136842][T16656] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1430.298645][ T5845] Bluetooth: hci3: command tx timeout
[ 1431.202808][T16656] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1431.362628][ T6265] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1431.514059][T16656] hsr_slave_0: entered promiscuous mode
[ 1431.723322][T16656] hsr_slave_1: entered promiscuous mode
[ 1431.730073][T16656] debugfs: 'hsr0' already exists in 'hsr'
[ 1431.735891][T16656] Cannot create hsr debugfs directory
[ 1431.858292][ T6265] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1432.127337][T16825] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2523'.
[ 1432.357597][ T5845] Bluetooth: hci3: command tx timeout
[ 1432.390857][T16823] netlink: 64 bytes leftover after parsing attributes in process `syz.2.2520'.
[ 1432.427592][T16823] netlink: 80 bytes leftover after parsing attributes in process `syz.2.2520'.
[ 1432.565729][ T6265] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1432.685654][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1432.692099][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1433.226070][ T6265] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1433.700246][T16749] chnl_net:caif_netlink_parms(): no params data found
[ 1433.903508][ T6265] bridge_slave_1: left allmulticast mode
[ 1433.914375][ T6265] bridge_slave_1: left promiscuous mode
[ 1433.925902][ T6265] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1433.957609][ T6265] bridge_slave_0: left allmulticast mode
[ 1433.968766][ T6265] bridge_slave_0: left promiscuous mode
[ 1433.974993][ T6265] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1434.002023][T16840] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2528'.
[ 1434.542531][T16627] usb 9-1: new full-speed USB device number 2 using dummy_hcd
[ 1434.751032][T16627] usb 9-1: config index 0 descriptor too short (expected 156, got 27)
[ 1434.777620][T16627] usb 9-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1434.807560][T16627] usb 9-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1434.853377][T16627] usb 9-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1434.927527][T16627] usb 9-1: config 0 interface 0 has no altsetting 0
[ 1434.940880][T16627] usb 9-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1434.968715][T16627] usb 9-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1435.004736][T16627] usb 9-1: Product: syz
[ 1435.017614][T16627] usb 9-1: Manufacturer: syz
[ 1435.022248][T16627] usb 9-1: SerialNumber: syz
[ 1435.172614][T16627] usb 9-1: config 0 descriptor??
[ 1435.182176][T16627] ldusb 9-1:0.0: Interrupt in endpoint not found
[ 1436.759041][ T6265] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1436.826774][ T6265] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1436.861054][ T6265] bond0 (unregistering): Released all slaves
[ 1437.114569][T16862] loop4: detected capacity change from 0 to 2560
[ 1437.262900][T16864] Buffer I/O error on dev loop4, logical block 0, lost async page write
[ 1437.278825][T16862] Buffer I/O error on dev loop4, logical block 256, lost async page write
[ 1437.290360][T16862] Buffer I/O error on dev loop4, logical block 257, lost async page write
[ 1437.336130][T16862] Buffer I/O error on dev loop4, logical block 258, lost async page write
[ 1437.345055][T16864] Buffer I/O error on dev loop4, logical block 1, lost async page write
[ 1437.345182][T16864] Buffer I/O error on dev loop4, logical block 2, lost async page write
[ 1437.362516][T16862] Buffer I/O error on dev loop4, logical block 259, lost async page write
[ 1437.424684][T16864] Buffer I/O error on dev loop4, logical block 3, lost async page write
[ 1437.439828][T16864] Buffer I/O error on dev loop4, logical block 4, lost async page write
[ 1437.449812][T16864] Buffer I/O error on dev loop4, logical block 5, lost async page write
[ 1437.610151][T16869] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2537'.
[ 1437.973525][T16749] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1437.990689][T16749] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1438.014391][T16749] bridge_slave_0: entered allmulticast mode
[ 1438.041936][T16749] bridge_slave_0: entered promiscuous mode
[ 1438.168005][T16627] usb 9-1: USB disconnect, device number 2
[ 1438.174765][T16749] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1438.201724][T16749] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1438.210433][T16749] bridge_slave_1: entered allmulticast mode
[ 1438.221520][T16749] bridge_slave_1: entered promiscuous mode
[ 1438.244269][T16876] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2540'.
[ 1438.291868][ T6265] hsr_slave_0: left promiscuous mode
[ 1438.347575][ T6265] hsr_slave_1: left promiscuous mode
[ 1438.353855][ T6265] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1438.373530][ T6265] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1438.389180][ T6265] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1438.409118][ T6265] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1438.467793][ T6265] veth1_macvtap: left promiscuous mode
[ 1438.477595][ T6265] veth0_macvtap: left promiscuous mode
[ 1438.483321][ T6265] veth1_vlan: left promiscuous mode
[ 1438.497756][ T6265] veth0_vlan: left promiscuous mode
[ 1441.846924][T16891] 9pnet_virtio: no channels available for device syz
[ 1445.511255][T16905] netlink: 24 bytes leftover after parsing attributes in process `syz.6.2549'.
[ 1448.364049][ T6265] team0 (unregistering): Port device team_slave_1 removed
[ 1448.553156][ T6265] team0 (unregistering): Port device team_slave_0 removed
[ 1449.659438][T16749] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1449.674535][T16749] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1449.865873][T16749] team0: Port device team_slave_0 added
[ 1449.891856][T16749] team0: Port device team_slave_1 added
[ 1450.020122][T16923] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2554'.
[ 1450.179130][T16749] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1450.186220][T16749] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1450.287630][T16749] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1450.612644][T16749] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1450.630034][T16749] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1450.657796][T16749] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1450.683809][T16926] netdevsim netdevsim2: Direct firmware load for .
[ 1450.683809][T16926]  failed with error -2
[ 1450.728295][T16937] overlayfs: failed to clone lowerpath
[ 1450.839736][T16938] 9pnet_virtio: no channels available for device syz
[ 1451.718320][T16926] netdevsim netdevsim2: Falling back to sysfs fallback for: .
[ 1451.718320][T16926] 
[ 1451.747889][T16933] orangefs_mount: mount request failed with -4
[ 1452.865125][T16749] hsr_slave_0: entered promiscuous mode
[ 1452.885428][T16749] hsr_slave_1: entered promiscuous mode
[ 1452.914413][T16749] debugfs: 'hsr0' already exists in 'hsr'
[ 1452.927706][T16749] Cannot create hsr debugfs directory
[ 1452.936984][T16656] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1453.060639][T16656] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1453.152306][T16948] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1453.478492][T16656] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1453.644069][T16656] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1453.652428][T16950] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2565'.
[ 1456.787250][T16983] loop8: detected capacity change from 0 to 512
[ 1456.854764][T16983] EXT4-fs error (device loop8): ext4_orphan_get:1392: inode #15: comm syz.8.2576: inode has both inline data and extents flags
[ 1456.913941][T16983] EXT4-fs error (device loop8): ext4_orphan_get:1395: comm syz.8.2576: couldn't read orphan inode 15 (err -117)
[ 1456.996073][T16983] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1457.174330][T16656] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1457.430615][T16983] loop8: detected capacity change from 512 to 0
[ 1457.447033][T16749] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1457.457953][T16983] EXT4-fs error (device loop8): __ext4_find_entry:1613: inode #2: comm syz.8.2576: reading directory lblock 0
[ 1458.328968][T16983] buffer_io_error: 310 callbacks suppressed
[ 1458.328999][T16983] Buffer I/O error on dev loop8, logical block 1, lost sync page write
[ 1458.351724][T16983] EXT4-fs (loop8): I/O error while writing superblock
[ 1458.363438][T16749] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1458.440691][T16749] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1458.471234][T16993] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2578'.
[ 1458.479818][T16749] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1458.500463][T16268] EXT4-fs warning (device loop8): htree_dirblock_to_tree:1051: inode #2: lblock 0: comm syz-executor: error -5 reading directory block
[ 1458.571410][T16656] 8021q: adding VLAN 0 to HW filter on device team0
[ 1458.645135][   T60] EXT4-fs error (device loop8): __ext4_get_inode_loc_noinmem:4954: inode #2: block 5: comm kworker/u8:4: unable to read itable block
[ 1458.674204][   T60] Buffer I/O error on dev loop8, logical block 1, lost sync page write
[ 1458.687269][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1458.694443][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1458.734135][   T60] EXT4-fs (loop8): I/O error while writing superblock
[ 1458.744820][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1458.752120][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1458.780019][T16268] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1458.810226][T16268] Buffer I/O error on dev loop8, logical block 1, lost sync page write
[ 1458.870427][T16268] EXT4-fs (loop8): I/O error while writing superblock
[ 1459.391782][T17010] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2584'.
[ 1459.532473][ T6049] netdevsim netdevsim8 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1459.582218][T17010] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2584'.
[ 1459.859829][ T6049] netdevsim netdevsim8 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1460.140535][ T6049] netdevsim netdevsim8 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1460.263180][T16749] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1460.372496][T16656] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1460.760332][ T6049] netdevsim netdevsim8 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1460.857584][T17029] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1461.655553][ T5142] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[ 1461.665123][ T5142] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[ 1461.680181][ T5142] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[ 1461.699282][ T5142] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[ 1461.707236][ T5142] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[ 1461.774061][T16749] 8021q: adding VLAN 0 to HW filter on device team0
[ 1461.868866][T12727] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1461.876149][T12727] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1461.892265][ T5142] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci4/hci4:201'
[ 1461.902448][ T5142] CPU: 0 UID: 0 PID: 5142 Comm: kworker/u9:1 Not tainted syzkaller #0 PREEMPT(full) 
[ 1461.902494][ T5142] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1461.902518][ T5142] Workqueue: hci4 hci_rx_work
[ 1461.902578][ T5142] Call Trace:
[ 1461.902589][ T5142]  <TASK>
[ 1461.902602][ T5142]  dump_stack_lvl+0x16c/0x1f0
[ 1461.902662][ T5142]  sysfs_warn_dup+0x7f/0xa0
[ 1461.902717][ T5142]  sysfs_create_dir_ns+0x24b/0x2b0
[ 1461.902771][ T5142]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[ 1461.902822][ T5142]  ? find_held_lock+0x2b/0x80
[ 1461.902890][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.902934][ T5142]  ? do_raw_spin_unlock+0x172/0x230
[ 1461.903003][ T5142]  kobject_add_internal+0x2c4/0x9b0
[ 1461.903049][ T5142]  kobject_add+0x16e/0x240
[ 1461.903084][ T5142]  ? __pfx_kobject_add+0x10/0x10
[ 1461.903122][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.903165][ T5142]  ? do_raw_spin_unlock+0x172/0x230
[ 1461.903218][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.903262][ T5142]  ? kobject_put+0xab/0x5a0
[ 1461.903297][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.903351][ T5142]  device_add+0x288/0x1aa0
[ 1461.903412][ T5142]  ? __pfx_dev_set_name+0x10/0x10
[ 1461.903449][ T5142]  ? __pfx_device_add+0x10/0x10
[ 1461.903508][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.903550][ T5142]  ? mgmt_send_event_skb+0x2fb/0x460
[ 1461.903617][ T5142]  hci_conn_add_sysfs+0x17e/0x230
[ 1461.903682][ T5142]  le_conn_complete_evt+0x1260/0x2150
[ 1461.903742][ T5142]  ? __pfx_le_conn_complete_evt+0x10/0x10
[ 1461.903788][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.903836][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.903882][ T5142]  hci_le_conn_complete_evt+0x23c/0x370
[ 1461.903940][ T5142]  hci_le_meta_evt+0x357/0x5e0
[ 1461.904033][ T5142]  ? __pfx_hci_le_conn_complete_evt+0x10/0x10
[ 1461.904088][ T5142]  hci_event_packet+0x685/0x11c0
[ 1461.904136][ T5142]  ? __pfx_hci_le_meta_evt+0x10/0x10
[ 1461.904189][ T5142]  ? __pfx_hci_event_packet+0x10/0x10
[ 1461.904237][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.904279][ T5142]  ? kcov_remote_start+0x3c9/0x6d0
[ 1461.904333][ T5142]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1461.904383][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.904433][ T5142]  hci_rx_work+0x2c5/0x16b0
[ 1461.904486][ T5142]  ? rcu_is_watching+0x12/0xc0
[ 1461.904525][ T5142]  process_one_work+0x9cf/0x1b70
[ 1461.904594][ T5142]  ? __pfx_process_one_work+0x10/0x10
[ 1461.904643][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.904692][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.904731][ T5142]  ? assign_work+0x1a0/0x250
[ 1461.904784][ T5142]  worker_thread+0x6c8/0xf10
[ 1461.904851][ T5142]  ? __pfx_worker_thread+0x10/0x10
[ 1461.904899][ T5142]  kthread+0x3c5/0x780
[ 1461.904956][ T5142]  ? __pfx_kthread+0x10/0x10
[ 1461.905002][ T5142]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1461.905040][ T5142]  ? rcu_is_watching+0x12/0xc0
[ 1461.905072][ T5142]  ? __pfx_kthread+0x10/0x10
[ 1461.905117][ T5142]  ret_from_fork+0x675/0x7d0
[ 1461.905157][ T5142]  ? __pfx_kthread+0x10/0x10
[ 1461.905201][ T5142]  ret_from_fork_asm+0x1a/0x30
[ 1461.905260][ T5142]  </TASK>
[ 1461.905308][ T5142] kobject: kobject_add_internal failed for hci4:201 with -EEXIST, don't try to register things with the same name in the same directory.
[ 1462.239369][ T5142] Bluetooth: hci4: failed to register connection device
[ 1462.269073][T17038] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2591'.
[ 1462.285890][T17038] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2591'.
[ 1462.334128][T17028] lo speed is unknown, defaulting to 1000
[ 1462.376800][T12727] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1462.384023][T12727] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1462.650517][T17046] netlink: 16 bytes leftover after parsing attributes in process `syz.4.2592'.
[ 1462.818913][ T6049] bridge_slave_1: left allmulticast mode
[ 1462.847580][ T6049] bridge_slave_1: left promiscuous mode
[ 1462.853532][ T6049] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1462.934944][ T6049] bridge_slave_0: left allmulticast mode
[ 1462.967532][ T6049] bridge_slave_0: left promiscuous mode
[ 1462.973489][ T6049] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1463.798081][ T5142] Bluetooth: hci5: command tx timeout
[ 1463.834890][T17054] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1465.127703][ T6049] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1465.180016][ T6049] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1465.223238][ T6049] bond0 (unregistering): Released all slaves
[ 1465.314895][T17060] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2597'.
[ 1465.435098][T17061] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2597'.
[ 1465.878434][ T5142] Bluetooth: hci5: command tx timeout
[ 1466.217027][T17066] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2599'.
[ 1466.954127][ T6049] hsr_slave_0: left promiscuous mode
[ 1466.998910][ T6049] hsr_slave_1: left promiscuous mode
[ 1467.024697][ T6049] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1467.056244][ T6049] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1467.092794][ T6049] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1467.117317][ T6049] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1467.240016][ T6049] veth1_macvtap: left promiscuous mode
[ 1467.266507][ T6049] veth0_macvtap: left promiscuous mode
[ 1467.294502][ T6049] veth1_vlan: left promiscuous mode
[ 1467.312617][ T6049] veth0_vlan: left promiscuous mode
[ 1467.665231][T12595] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1467.679732][T12595] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1467.692180][T12595] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1467.701339][T12595] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1467.709367][T12595] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1467.959353][T12595] Bluetooth: hci5: command tx timeout
[ 1468.437983][ T5845] Bluetooth: hci4: command 0x0406 tx timeout
[ 1469.808084][T12595] Bluetooth: hci0: command tx timeout
[ 1470.047626][T12595] Bluetooth: hci5: command tx timeout
[ 1471.555077][ T6049] team0 (unregistering): Port device team_slave_1 removed
[ 1471.579431][T17100] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1471.689206][ T6049] team0 (unregistering): Port device team_slave_0 removed
[ 1471.884325][T12595] Bluetooth: hci0: command tx timeout
[ 1472.508156][T17028] chnl_net:caif_netlink_parms(): no params data found
[ 1472.677399][T17028] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1472.694649][T17028] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1472.761270][T17028] bridge_slave_0: entered allmulticast mode
[ 1472.772484][T17028] bridge_slave_0: entered promiscuous mode
[ 1472.791405][T17105] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2610'.
[ 1472.810141][T17028] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1472.820251][T17028] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1472.831599][T17028] bridge_slave_1: entered allmulticast mode
[ 1472.880207][T17111] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1473.587609][T17028] bridge_slave_1: entered promiscuous mode
[ 1473.831854][T17028] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1473.882948][T17028] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1473.900055][T17080] lo speed is unknown, defaulting to 1000
[ 1473.904626][T16749] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1473.957774][T12595] Bluetooth: hci0: command tx timeout
[ 1475.116005][T17028] team0: Port device team_slave_0 added
[ 1475.158481][T17028] team0: Port device team_slave_1 added
[ 1475.373586][T17028] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1475.388413][T17028] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1475.430332][T17028] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1475.485662][T17028] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1475.499895][T17028] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1475.563288][T17028] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1475.583588][T16749] veth0_vlan: entered promiscuous mode
[ 1475.698052][T17137] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2622'.
[ 1475.860982][T17141] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1476.128116][T12595] Bluetooth: hci0: command tx timeout
[ 1476.784636][T17145] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2624'.
[ 1476.978328][T17150] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1477.022455][T17028] hsr_slave_0: entered promiscuous mode
[ 1477.036837][T17028] hsr_slave_1: entered promiscuous mode
[ 1477.047877][T17028] debugfs: 'hsr0' already exists in 'hsr'
[ 1477.054765][T17028] Cannot create hsr debugfs directory
[ 1477.238820][T16749] veth1_vlan: entered promiscuous mode
[ 1477.788800][ T5929] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[ 1477.977529][ T5929] usb 3-1: Using ep0 maxpacket: 8
[ 1477.984945][ T5929] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[ 1478.028953][ T5929] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1478.057599][ T5929] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1478.068167][ T5929] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1478.087742][ T5929] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1478.102549][ T5929] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1478.112643][ T5929] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1478.131291][T16749] veth0_macvtap: entered promiscuous mode
[ 1478.209053][T16749] veth1_macvtap: entered promiscuous mode
[ 1478.231537][T17080] chnl_net:caif_netlink_parms(): no params data found
[ 1478.355470][ T5929] usb 3-1: GET_CAPABILITIES returned 0
[ 1478.372094][ T5929] usbtmc 3-1:16.0: can't read capabilities
[ 1478.662825][T11318] usb 3-1: USB disconnect, device number 2
[ 1479.230246][ T5845] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[ 1479.258158][ T5845] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[ 1479.301390][ T5845] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[ 1479.340131][ T5845] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[ 1479.372418][ T5845] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[ 1480.686915][T17080] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1480.716970][T17080] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1480.751200][T17080] bridge_slave_0: entered allmulticast mode
[ 1480.793416][T17080] bridge_slave_0: entered promiscuous mode
[ 1481.037364][T17080] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1481.055820][T17080] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1481.064158][T17080] bridge_slave_1: entered allmulticast mode
[ 1481.073311][T17080] bridge_slave_1: entered promiscuous mode
[ 1481.330208][ T6049] bridge_slave_1: left allmulticast mode
[ 1481.335910][ T6049] bridge_slave_1: left promiscuous mode
[ 1481.345805][ T6049] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1481.361412][ T6049] bridge_slave_0: left allmulticast mode
[ 1481.367084][ T6049] bridge_slave_0: left promiscuous mode
[ 1481.437511][T17182] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1481.499399][ T5845] Bluetooth: hci6: command tx timeout
[ 1482.189114][ T6049] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1482.259766][T17184] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[ 1482.266695][T17184] vhci_hcd vhci_hcd.0: devid(0) speed(6) speed_str(super-speed-plus)
[ 1482.318017][T17184] vhci_hcd vhci_hcd.0: Device attached
[ 1482.387379][T17183] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2634'.
[ 1482.506263][T17185] vhci_hcd: connection closed
[ 1482.513201][T12726] vhci_hcd: stop threads
[ 1482.524757][T12726] vhci_hcd: release socket
[ 1482.531957][T12726] vhci_hcd: disconnect device
[ 1482.829391][ T6049] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1482.850199][ T6049] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1482.863356][ T6049] bond0 (unregistering): Released all slaves
[ 1482.985105][T17171] lo speed is unknown, defaulting to 1000
[ 1482.987100][T17189] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2635'.
[ 1483.150192][T17080] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1483.209953][T17080] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1483.268305][ T6049] hsr_slave_0: left promiscuous mode
[ 1483.347786][ T6049] hsr_slave_1: left promiscuous mode
[ 1483.356276][ T6049] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1483.389019][ T6049] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1483.557611][ T5845] Bluetooth: hci6: command tx timeout
[ 1485.637799][ T5845] Bluetooth: hci6: command tx timeout
[ 1486.503326][ T6049] team0 (unregistering): Port device team_slave_1 removed
[ 1486.575003][ T6049] team0 (unregistering): Port device team_slave_0 removed
[ 1487.407155][T17203] veth0_to_bridge: entered promiscuous mode
[ 1487.418646][T17204] veth0_to_bridge: left promiscuous mode
[ 1487.678132][T17080] team0: Port device team_slave_0 added
[ 1487.718879][ T5845] Bluetooth: hci6: command tx timeout
[ 1487.805402][T17080] team0: Port device team_slave_1 added
[ 1488.078488][T17080] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1488.085620][T17080] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1488.116266][T17080] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1488.220371][T17080] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1488.227359][T17080] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1488.333422][T17080] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1488.461444][T17028] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 1488.485047][T17028] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 1488.554083][T17227] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2648'.
[ 1488.627026][T17028] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 1488.997115][T17235] overlayfs: failed to clone lowerpath
[ 1489.925813][T17028] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 1491.025146][T17242] netlink: 44 bytes leftover after parsing attributes in process `syz.6.2651'.
[ 1491.611487][T17171] chnl_net:caif_netlink_parms(): no params data found
[ 1491.654484][T17080] hsr_slave_0: entered promiscuous mode
[ 1491.730242][T17080] hsr_slave_1: entered promiscuous mode
[ 1491.736683][T17080] debugfs: 'hsr0' already exists in 'hsr'
[ 1491.767666][T17080] Cannot create hsr debugfs directory
[ 1491.872085][T17249] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2653'.
[ 1493.074859][T17264] netlink: 'syz.6.2656': attribute type 29 has an invalid length.
[ 1493.095152][T17171] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1493.103489][T17171] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1493.114467][T17171] bridge_slave_0: entered allmulticast mode
[ 1493.133032][T17171] bridge_slave_0: entered promiscuous mode
[ 1493.143481][T17266] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2657'.
[ 1493.154843][T17268] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2657'.
[ 1493.166267][T17267] netlink: 'syz.6.2656': attribute type 29 has an invalid length.
[ 1493.176979][T17269] netlink: 'syz.6.2656': attribute type 29 has an invalid length.
[ 1493.187321][T17171] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1493.201389][T17171] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1493.209086][T17171] bridge_slave_1: entered allmulticast mode
[ 1493.217920][T17171] bridge_slave_1: entered promiscuous mode
[ 1493.241536][T17270] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2657'.
[ 1493.251364][T17269] netlink: 'syz.6.2656': attribute type 29 has an invalid length.
[ 1493.875590][T17171] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1493.899368][T17171] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1494.042877][T17171] team0: Port device team_slave_0 added
[ 1494.084354][T17171] team0: Port device team_slave_1 added
[ 1494.133525][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1494.140417][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1494.437337][T17281] overlayfs: failed to clone lowerpath
[ 1495.094359][T17171] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1495.108327][T17171] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1495.157524][T17171] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1495.345555][T17171] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1495.363586][T17171] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 1495.423466][T17286] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2662'.
[ 1495.451409][T17171] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1495.567028][ T6049] bridge_slave_1: left allmulticast mode
[ 1495.588519][ T6049] bridge_slave_1: left promiscuous mode
[ 1495.610718][ T6049] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1495.660443][ T6049] bridge_slave_0: left allmulticast mode
[ 1495.666183][ T6049] bridge_slave_0: left promiscuous mode
[ 1495.682044][ T6049] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1495.747895][T17293] netlink: 14 bytes leftover after parsing attributes in process `syz.4.2664'.
[ 1496.521714][T17296] netlink: 40 bytes leftover after parsing attributes in process `syz.6.2666'.
[ 1497.040615][ T6049] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1497.054596][ T6049] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1497.066832][ T6049] bond0 (unregistering): Released all slaves
[ 1497.204923][T17290] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1497.242272][T17290] bond0: (slave bond1): Enslaving as an active interface with an up link
[ 1497.391586][T17293] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1497.415463][T17293] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1497.436293][T17293] bond0 (unregistering): (slave bond1): Releasing backup interface
[ 1497.463888][T17293] bond0 (unregistering): Released all slaves
[ 1497.530886][T17080] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1497.544798][T17080] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1497.648849][T17171] hsr_slave_0: entered promiscuous mode
[ 1497.655985][T17171] hsr_slave_1: entered promiscuous mode
[ 1497.677314][T17171] debugfs: 'hsr0' already exists in 'hsr'
[ 1497.689144][T17171] Cannot create hsr debugfs directory
[ 1497.706244][T17080] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1497.743815][ T6049] hsr_slave_0: left promiscuous mode
[ 1497.757408][ T6049] hsr_slave_1: left promiscuous mode
[ 1497.771114][ T6049] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1497.779452][ T6049] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1497.804688][ T6049] veth1_macvtap: left promiscuous mode
[ 1497.810730][ T6049] veth0_macvtap: left promiscuous mode
[ 1497.817930][ T6049] veth1_vlan: left promiscuous mode
[ 1497.824141][ T6049] veth0_vlan: left promiscuous mode
[ 1500.828225][ T6049] team0 (unregistering): Port device team_slave_1 removed
[ 1501.406392][T12595] Bluetooth: hci4: command 0x0406 tx timeout
[ 1501.440674][T17323] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2674'.
[ 1501.456603][ T6049] team0 (unregistering): Port device team_slave_0 removed
[ 1501.836522][T17331] overlayfs: failed to clone lowerpath
[ 1502.767938][T17080] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1502.785876][T17307] netlink: 'syz.2.2668': attribute type 29 has an invalid length.
[ 1502.968609][T17028] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1502.993592][T17028] 8021q: adding VLAN 0 to HW filter on device team0
[ 1503.050636][T17028] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1503.063455][T17028] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1503.336379][T17028] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1503.394787][T17028] veth0_vlan: entered promiscuous mode
[ 1503.410619][T17028] veth1_vlan: entered promiscuous mode
[ 1503.455420][T17028] veth0_macvtap: entered promiscuous mode
[ 1503.469677][T17028] veth1_macvtap: entered promiscuous mode
[ 1503.493749][T17028] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1503.506814][T17028] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1503.705579][ T6265] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1503.712828][ T6265] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1503.750388][ T6265] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1503.757630][ T6265] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1503.805951][   T50] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1503.847121][   T50] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1503.928274][   T50] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1504.030891][   T50] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1504.115755][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1504.143037][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1504.422161][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1504.433925][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1508.928727][T17378] ubi31: attaching mtd0
[ 1508.961129][T17378] ubi31: scanning is finished
[ 1508.965895][T17378] ubi31: empty MTD device detected
[ 1509.109159][T17080] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1509.853766][T17389] 9pnet_virtio: no channels available for device syz
[ 1511.639528][T17080] 8021q: adding VLAN 0 to HW filter on device team0
[ 1511.774680][ T6265] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1511.781922][ T6265] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1511.809326][T17378] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[ 1511.931949][ T6265] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1511.939159][ T6265] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1511.970445][T17171] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 1512.059141][T17171] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 1512.131844][T17171] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 1512.199517][T17171] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 1512.286826][T17396] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2694'.
[ 1512.338009][T17397] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2694'.
[ 1512.448779][T17398] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2694'.
[ 1512.948218][T17414] netlink: 48 bytes leftover after parsing attributes in process `syz.4.2707'.
[ 1512.991256][T17171] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1513.100323][T17171] 8021q: adding VLAN 0 to HW filter on device team0
[ 1513.168466][T12726] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1513.175711][T12726] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1513.371289][T12726] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1513.378552][T12726] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1513.642283][T17080] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1514.259368][T17438] overlayfs: failed to clone lowerpath
[ 1514.375803][T17439] 9pnet_virtio: no channels available for device syz
[ 1516.648744][T17451] 9pnet_virtio: no channels available for device syz
[ 1517.495660][T17171] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1519.431919][T17171] veth0_vlan: entered promiscuous mode
[ 1519.449120][T17456] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2708'.
[ 1519.482459][T17171] veth1_vlan: entered promiscuous mode
[ 1519.508526][T17457] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2708'.
[ 1519.542009][T17459] netlink: 60 bytes leftover after parsing attributes in process `syz.6.2708'.
[ 1519.784263][T17171] veth0_macvtap: entered promiscuous mode
[ 1519.857130][T17171] veth1_macvtap: entered promiscuous mode
[ 1519.858592][T14789] usb 5-1: new full-speed USB device number 6 using dummy_hcd
[ 1519.985704][T17171] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1520.022531][T17464] netlink: 'syz.6.2709': attribute type 29 has an invalid length.
[ 1520.060962][T17171] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1520.079895][T14789] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1520.088416][T14789] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1520.116621][T17464] netlink: 'syz.6.2709': attribute type 29 has an invalid length.
[ 1520.152913][T14789] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1520.165807][ T1141] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1520.185105][ T1141] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1520.185813][T14789] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1520.222412][T17465] netlink: 'syz.6.2709': attribute type 29 has an invalid length.
[ 1520.286433][T17465] netlink: 'syz.6.2709': attribute type 29 has an invalid length.
[ 1520.309951][T14789] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1520.348084][T14789] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1520.377521][T14789] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1520.398845][T14789] usb 5-1: Product: syz
[ 1520.407997][ T6049] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1520.433751][ T6049] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1520.437175][T14789] usb 5-1: Manufacturer: syz
[ 1520.513706][T14789] usb 5-1: SerialNumber: syz
[ 1520.524990][T17080] veth0_vlan: entered promiscuous mode
[ 1520.553922][T14789] usb 5-1: config 0 descriptor??
[ 1520.565864][T17080] veth1_vlan: entered promiscuous mode
[ 1520.591131][T14789] ldusb 5-1:0.0: Interrupt in endpoint not found
[ 1520.911813][ T6049] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1520.957830][ T6049] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1521.143171][T17080] veth0_macvtap: entered promiscuous mode
[ 1521.156979][T12726] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1521.210877][T17080] veth1_macvtap: entered promiscuous mode
[ 1521.216790][T12726] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1521.272544][T17080] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1521.313915][T17080] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1521.369309][ T1141] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1521.390217][   T12] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1521.435608][   T12] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1521.575174][   T12] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1521.999793][   T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1522.029499][T17483] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1522.042669][   T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1522.194072][   T50] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1522.232316][   T50] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1524.520089][T17499] 9pnet_virtio: no channels available for device syz
[ 1526.470431][T17506] netlink: 14 bytes leftover after parsing attributes in process `syz.6.2721'.
[ 1526.598307][T17503] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1526.722360][T17503] bond0: (slave bond1): Enslaving as an active interface with a down link
[ 1527.378208][T17506] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1527.445376][T17506] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1527.528549][T17506] bond0 (unregistering): (slave syz_tun): Releasing backup interface
[ 1527.558108][T17506] bond0 (unregistering): (slave bond1): Releasing backup interface
[ 1527.581808][T17506] bond0 (unregistering): Released all slaves
[ 1528.019542][T17511] netlink: 'syz.2.2723': attribute type 29 has an invalid length.
[ 1528.065641][  T805] usb 5-1: USB disconnect, device number 6
[ 1530.508449][T17526] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1530.568105][T17526] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1530.670311][T17526] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1530.676432][T17526] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1530.687532][ T5845] Bluetooth: hci2: command 0x0406 tx timeout
[ 1530.939351][T17526] Bluetooth: hci4: Opcode 0x0406 failed: -4
[ 1531.043697][T17526] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1531.071931][T17526] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1531.296616][T17526] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1531.580609][T17526] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1531.718630][T17526] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1531.974753][T17526] Bluetooth: hci0: Opcode 0x0406 failed: -4
[ 1532.441113][T17561] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1532.490903][T17526] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1532.572152][T17563] netlink: 'syz.6.2739': attribute type 29 has an invalid length.
[ 1532.665561][T17563] netlink: 'syz.6.2739': attribute type 29 has an invalid length.
[ 1532.674986][T17563] netlink: 'syz.6.2739': attribute type 29 has an invalid length.
[ 1532.683677][T17563] netlink: 'syz.6.2739': attribute type 29 has an invalid length.
[ 1532.767606][ T5845] Bluetooth: hci2: command 0x0406 tx timeout
[ 1532.773873][ T5845] Bluetooth: hci4: command 0x0406 tx timeout
[ 1532.903825][T17526] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1533.282852][T12595] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1533.638348][T12595] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1533.999566][T17526] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1534.478370][T14789] IPVS: starting estimator thread 0...
[ 1534.517600][T12595] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1534.534371][T17580] IPVS: rr: FWM 3 0x00000003 - no destination available
[ 1534.618080][    C1] IPVS: rr: FWM 3 0x00000003 - no destination available
[ 1534.658284][T17578] IPVS: using max 28 ests per chain, 67200 per kthread
[ 1534.904538][T12595] Bluetooth: hci4: command 0x0406 tx timeout
[ 1535.329275][T12595] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1535.724682][T12595] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1536.311657][T17593] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1536.597583][T12595] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1536.917706][T12595] Bluetooth: hci4: command 0x0406 tx timeout
[ 1537.067511][T17620] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1537.089297][ T5929] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[ 1537.477959][T12595] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1537.485965][ T5929] usb 3-1: Using ep0 maxpacket: 8
[ 1537.619163][ T5929] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[ 1537.649609][ T5929] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1537.663758][T17622] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2759'.
[ 1537.707521][ T5929] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1537.765184][ T5929] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1537.801681][T12595] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1537.830517][ T5929] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1537.853911][ T5929] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1537.863427][ T5929] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1538.085916][ T5929] usb 3-1: GET_CAPABILITIES returned 0
[ 1538.103211][ T5929] usbtmc 3-1:16.0: can't read capabilities
[ 1538.367325][ T5929] usb 3-1: USB disconnect, device number 3
[ 1538.757888][T12595] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1538.801338][T17638] trusted_key: encrypted_key: key user:syz not found
[ 1538.804751][T17638] netlink: 16 bytes leftover after parsing attributes in process `syz.6.2757'.
[ 1538.850121][T17635] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1540.917612][T12595] Bluetooth: hci2: command 0x0406 tx timeout
[ 1542.088345][T17635] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1542.094522][T17635] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1542.101131][T17635] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1542.170309][T17635] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1542.326359][T17646] overlayfs: failed to resolve './bus': -2
[ 1544.197828][ T5845] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1544.207598][ T5845] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1544.213660][ T5845] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1544.219795][ T5845] Bluetooth: hci4: command 0x0406 tx timeout
[ 1544.707570][T17669] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1545.615625][T17670] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1546.117897][T17674] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2775'.
[ 1546.979304][T17689] netlink: 60 bytes leftover after parsing attributes in process `syz.9.2781'.
[ 1547.048922][T17689] netlink: 60 bytes leftover after parsing attributes in process `syz.9.2781'.
[ 1547.111002][T17692] netlink: 'syz.1.2782': attribute type 29 has an invalid length.
[ 1547.138038][T17690] netlink: 60 bytes leftover after parsing attributes in process `syz.9.2781'.
[ 1547.160679][T17692] netlink: 'syz.1.2782': attribute type 29 has an invalid length.
[ 1547.188764][T17692] netlink: 'syz.1.2782': attribute type 29 has an invalid length.
[ 1547.204549][T17692] netlink: 'syz.1.2782': attribute type 29 has an invalid length.
[ 1547.532368][T17701] binder: BINDER_SET_CONTEXT_MGR already set
[ 1547.539982][T17701] binder: 17698:17701 ioctl 4018620d 200000004a80 returned -16
[ 1548.024329][T17713] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1549.725918][T17735] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2798'.
[ 1549.738765][T17735] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2798'.
[ 1549.749152][T17735] netlink: 60 bytes leftover after parsing attributes in process `syz.2.2798'.
[ 1549.985378][T17742] netlink: 'syz.0.2799': attribute type 29 has an invalid length.
[ 1550.017673][T17742] netlink: 'syz.0.2799': attribute type 29 has an invalid length.
[ 1550.046898][T17742] netlink: 'syz.0.2799': attribute type 29 has an invalid length.
[ 1550.077937][T17742] netlink: 'syz.0.2799': attribute type 29 has an invalid length.
[ 1550.116144][T17745] netlink: 48 bytes leftover after parsing attributes in process `syz.2.2801'.
[ 1550.847609][  T805] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[ 1551.017596][  T805] usb 2-1: Using ep0 maxpacket: 8
[ 1551.025087][  T805] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1551.037254][  T805] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1551.048013][  T805] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1551.059370][  T805] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1551.070236][  T805] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1551.091576][  T805] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1551.104778][  T805] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1551.375141][  T805] usb 2-1: GET_CAPABILITIES returned 0
[ 1551.380883][  T805] usbtmc 2-1:16.0: can't read capabilities
[ 1551.582129][  T805] usb 2-1: USB disconnect, device number 2
[ 1551.613392][T17780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2815'.
[ 1551.971781][T17785] netlink: 'syz.9.2817': attribute type 29 has an invalid length.
[ 1551.985580][T17785] netlink: 'syz.9.2817': attribute type 29 has an invalid length.
[ 1552.119080][T17787] netlink: 48 bytes leftover after parsing attributes in process `syz.9.2819'.
[ 1553.507690][T17816] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2828'.
[ 1553.907876][T17827] 9pnet_virtio: no channels available for device syz
[ 1555.752795][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1555.759704][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1555.786939][T17830] netlink: 32 bytes leftover after parsing attributes in process `syz.0.2833'.
[ 1557.494533][T17834] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1558.317677][T17834] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1558.324921][T17834] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1558.331222][T17834] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1558.337354][T17834] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1558.597588][T12595] Bluetooth: hci2: command 0x0406 tx timeout
[ 1558.597591][  T805] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 1558.757645][  T805] usb 3-1: Using ep0 maxpacket: 8
[ 1558.799068][  T805] usb 3-1: config index 0 descriptor too short (expected 301, got 45)
[ 1558.826374][T17851] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2840'.
[ 1558.835392][  T805] usb 3-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1558.889456][  T805] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1558.928816][  T805] usb 3-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1558.977662][  T805] usb 3-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1558.988967][T17854] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2840'.
[ 1559.046167][  T805] usb 3-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1559.085934][  T805] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1559.500704][  T805] usb 3-1: can't set config #16, error -71
[ 1559.617562][T12595] Bluetooth: hci4: command 0x0406 tx timeout
[ 1559.661269][  T805] usb 3-1: USB disconnect, device number 4
[ 1560.359233][ T5845] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1560.359247][ T5142] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1560.365452][T12595] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1560.918884][T17875] netlink: 60 bytes leftover after parsing attributes in process `syz.9.2851'.
[ 1561.121022][T17875] netlink: 60 bytes leftover after parsing attributes in process `syz.9.2851'.
[ 1561.141712][T17875] netlink: 60 bytes leftover after parsing attributes in process `syz.9.2851'.
[ 1561.237319][T17878] 9pnet_virtio: no channels available for device syz
[ 1563.365530][T17888] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1563.428104][T16627] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[ 1563.679331][T16627] usb 2-1: Using ep0 maxpacket: 8
[ 1563.685101][T17887] overlayfs: failed to clone upperpath
[ 1563.732987][T17891] netlink: 4 bytes leftover after parsing attributes in process `syz.9.2855'.
[ 1563.768254][T16627] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 1563.782199][T16627] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1563.869933][T16627] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1563.919650][T16627] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1564.047799][T16627] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1564.082737][T16627] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1564.116897][T16627] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1564.651622][T16627] usb 2-1: GET_CAPABILITIES returned 0
[ 1564.657166][T16627] usbtmc 2-1:16.0: can't read capabilities
[ 1564.946831][T16627] usb 2-1: USB disconnect, device number 3
[ 1567.991930][T17912] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1568.687943][T17923] 9pnet_virtio: no channels available for device syz
[ 1569.353722][T17927] validate_nla: 2 callbacks suppressed
[ 1569.353750][T17927] netlink: 'syz.1.2867': attribute type 2 has an invalid length.
[ 1569.442129][T17929] netlink: zone id is out of range
[ 1569.447325][T17929] netlink: zone id is out of range
[ 1569.674586][T17933] netlink: 288 bytes leftover after parsing attributes in process `syz.9.2872'.
[ 1570.009758][T17937] netlink: 28 bytes leftover after parsing attributes in process `syz.6.2874'.
[ 1571.087607][ T5929] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[ 1571.291838][ T5929] usb 1-1: Using ep0 maxpacket: 8
[ 1571.338395][ T5929] usb 1-1: config index 0 descriptor too short (expected 301, got 45)
[ 1571.378395][ T5929] usb 1-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1571.413783][ T5929] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1571.477112][ T5929] usb 1-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 1571.501548][T17954] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1571.523612][ T5929] usb 1-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1571.578203][ T5929] usb 1-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 1571.617559][ T5929] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1571.890790][ T5929] usb 1-1: GET_CAPABILITIES returned 0
[ 1571.900891][ T5929] usbtmc 1-1:16.0: can't read capabilities
[ 1572.124791][ T5929] usb 1-1: USB disconnect, device number 2
[ 1574.787496][T12595] Bluetooth: hci2: command 0x0406 tx timeout
[ 1574.889886][T17969] Bluetooth: hci2: Opcode 0x0c1a failed: -110
[ 1574.896470][T17969] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[ 1574.920545][T17969] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1574.952514][T17969] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[ 1574.980506][T17969] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1575.383370][T17982] netlink: 'syz.4.2889': attribute type 5 has an invalid length.
[ 1575.399286][T17982] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2889'.
[ 1577.017572][T12595] Bluetooth: hci4: command 0x0406 tx timeout
[ 1577.023869][T12595] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1577.030142][T12595] Bluetooth: hci0: command 0x0c1a tx timeout
[ 1577.036286][T12595] Bluetooth: hci5: command 0x0c1a tx timeout
[ 1578.759400][T18024] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1579.536316][T18040] netlink: 'syz.2.2909': attribute type 29 has an invalid length.
[ 1579.592068][T18040] netlink: 'syz.2.2909': attribute type 29 has an invalid length.
[ 1579.624080][T18040] netlink: 'syz.2.2909': attribute type 29 has an invalid length.
[ 1579.665649][T18040] netlink: 'syz.2.2909': attribute type 29 has an invalid length.
[ 1580.815025][T18063] overlayfs: failed to clone lowerpath
[ 1580.933862][T18064] 9pnet_virtio: no channels available for device syz
[ 1583.331716][T18092] 9pnet_virtio: no channels available for device syz
[ 1583.621863][T18095] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1585.027748][   T10] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[ 1585.166517][T18124] binder: 18123:18124 ioctl c0306201 0 returned -14
[ 1585.208585][T18124] binder: 18123:18124 ioctl c0306201 0 returned -14
[ 1585.218214][   T10] usb 1-1: config index 0 descriptor too short (expected 156, got 27)
[ 1585.226552][   T10] usb 1-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1585.274769][   T10] usb 1-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1585.317700][   T10] usb 1-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1585.357689][   T10] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1585.390754][   T10] usb 1-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1585.400287][   T10] usb 1-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1585.427586][   T10] usb 1-1: Product: syz
[ 1585.442166][   T10] usb 1-1: Manufacturer: syz
[ 1585.446907][   T10] usb 1-1: SerialNumber: syz
[ 1585.489997][   T10] usb 1-1: config 0 descriptor??
[ 1585.538127][   T10] ldusb 1-1:0.0: Interrupt in endpoint not found
[ 1586.443386][T18144] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1586.475898][T18144] block device autoloading is deprecated and will be removed.
[ 1586.868518][T18150] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1586.937553][T14789] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[ 1587.105117][T14789] usb 3-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[ 1587.133253][T14789] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1587.157568][T14789] usb 3-1: Product: syz
[ 1587.173198][T14789] usb 3-1: Manufacturer: syz
[ 1587.187678][T14789] usb 3-1: SerialNumber: syz
[ 1587.211371][T14789] usb 3-1: config 0 descriptor??
[ 1587.469592][T14789] usb 3-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[ 1587.475538][T18158] netlink: 'syz.4.2956': attribute type 29 has an invalid length.
[ 1587.532162][T18158] netlink: 'syz.4.2956': attribute type 29 has an invalid length.
[ 1587.571314][T18158] netlink: 'syz.4.2956': attribute type 29 has an invalid length.
[ 1587.631584][T18158] netlink: 'syz.4.2956': attribute type 29 has an invalid length.
[ 1587.660158][ T5921] usb 1-1: USB disconnect, device number 3
[ 1588.297882][T18173] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1589.128710][T14789] dvb_usb_rtl28xxu 3-1:0.0: probe with driver dvb_usb_rtl28xxu failed with error -71
[ 1589.160196][T14789] usb 3-1: USB disconnect, device number 5
[ 1589.299933][T18201] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1589.313472][T18201] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1589.361684][T18201] overlayfs: failed lookup in lower (/, name='tracing', err=-66): unsupported object type
[ 1589.373003][T18201] overlayfs: failed to look up (tracing) for ino (-66)
[ 1589.384955][T18201] netlink: 68 bytes leftover after parsing attributes in process `syz.4.2976'.
[ 1589.396669][T18201] netlink: 288 bytes leftover after parsing attributes in process `syz.4.2976'.
[ 1589.414423][T18201] binder: 18200:18201 ioctl 4018620d 0 returned -22
[ 1589.432524][T12595] Bluetooth: hci2: connection err: -111
[ 1589.497617][ T5929] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 1589.688274][ T5929] usb 1-1: Using ep0 maxpacket: 16
[ 1589.699931][ T5929] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1589.770264][ T5929] usb 1-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00
[ 1589.810951][ T5929] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1589.840053][T18205] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1590.000231][ T5929] usb 1-1: config 0 descriptor??
[ 1590.218746][ T5142] Bluetooth: hci6: unknown advertising packet type: 0x31
[ 1590.218824][ T5142] Bluetooth: hci6: Dropping invalid advertising data
[ 1590.221313][ T5929] usbhid 1-1:0.0: can't add hid device: -71
[ 1590.226498][ T5142] Bluetooth: hci6: unknown advertising packet type: 0x24
[ 1590.240046][ T5142] Bluetooth: hci6: Malformed LE Event: 0x02
[ 1590.258509][ T5929] usbhid 1-1:0.0: probe with driver usbhid failed with error -71
[ 1590.291438][ T5929] usb 1-1: USB disconnect, device number 4
[ 1590.347878][   T10] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[ 1590.519678][   T10] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[ 1590.538227][   T10] usb 3-1: config 0 has no interface number 0
[ 1590.577531][   T10] usb 3-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[ 1590.606825][   T10] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1590.626920][   T10] usb 3-1: Product: syz
[ 1590.650255][   T10] usb 3-1: Manufacturer: syz
[ 1590.655185][   T10] usb 3-1: SerialNumber: syz
[ 1590.682481][   T10] usb 3-1: config 0 descriptor??
[ 1590.918085][   T10] usb 3-1: dvb_usb_v2: found a 'E3C EC168 reference design' in warm state
[ 1590.960662][   T10] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer
[ 1590.990186][   T10] dvbdev: DVB: registering new adapter (E3C EC168 reference design)
[ 1591.011702][   T10] usb 3-1: media controller created
[ 1591.086082][   T10] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1591.096700][T18234] overlayfs: failed to clone upperpath
[ 1591.111589][T18232] syzkaller1: entered promiscuous mode
[ 1591.117236][T18232] syzkaller1: entered allmulticast mode
[ 1591.133927][T18234] netlink: 68 bytes leftover after parsing attributes in process `syz.6.2990'.
[ 1591.173002][T18234] netlink: 288 bytes leftover after parsing attributes in process `syz.6.2990'.
[ 1591.607553][   T10] i2c i2c-1: ec100: i2c rd failed=-71 reg=33
[ 1591.618046][T18242] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1591.676811][   T10] usb 3-1: USB disconnect, device number 6
[ 1591.804404][ T5142] Bluetooth: hci0: ACL packet for unknown connection handle 201
[ 1591.943768][T18252] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1593.154871][T18275] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1593.167581][T16627] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[ 1593.176273][   T10] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[ 1593.188709][T18275] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1593.344372][T16627] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1593.356302][T18275] netlink: 68 bytes leftover after parsing attributes in process `syz.9.3008'.
[ 1593.365761][   T10] usb 2-1: Using ep0 maxpacket: 32
[ 1593.400703][   T10] usb 2-1: config 0 has an invalid interface number: 202 but max is 0
[ 1593.660826][T16627] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 1593.668811][T18275] netlink: 288 bytes leftover after parsing attributes in process `syz.9.3008'.
[ 1593.671846][   T10] usb 2-1: config 0 has no interface number 0
[ 1593.686718][T16627] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1593.695090][   T10] usb 2-1: config 0 interface 202 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 32
[ 1593.723231][T16627] usb 5-1: config 0 descriptor??
[ 1593.723908][T18275] binder: 18274:18275 ioctl 4018620d 0 returned -22
[ 1593.728619][   T10] usb 2-1: config 0 interface 202 has no altsetting 0
[ 1593.787772][ T5142] Bluetooth: hci0: connection err: -111
[ 1593.798830][T18292] xt_NFQUEUE: number of queues (65535) out of range (got 65541)
[ 1594.169004][T16627] usbhid 5-1:0.0: can't add hid device: -71
[ 1594.176877][T16627] usbhid 5-1:0.0: probe with driver usbhid failed with error -71
[ 1594.187696][   T10] usb 2-1: New USB device found, idVendor=86ba, idProduct=3fa1, bcdDevice=39.61
[ 1594.197905][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1594.205988][   T10] usb 2-1: Product: syz
[ 1594.213382][T16627] usb 5-1: USB disconnect, device number 7
[ 1594.224327][   T10] usb 2-1: Manufacturer: syz
[ 1594.232578][   T10] usb 2-1: SerialNumber: syz
[ 1594.383834][   T10] usb 2-1: config 0 descriptor??
[ 1594.418176][T18264] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[ 1594.428275][   T10] usb-storage 2-1:0.202: USB Mass Storage device detected
[ 1594.617365][T18306] netlink: 8 bytes leftover after parsing attributes in process `syz.0.3018'.
[ 1594.684354][T18306] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3018'.
[ 1594.702911][T18306] netlink: 'syz.0.3018': attribute type 10 has an invalid length.
[ 1594.705901][   T10] usb 2-1: USB disconnect, device number 4
[ 1594.722294][T18306] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1594.725248][T16627] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[ 1594.778720][T18306] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1594.841570][T18306] bond0: (slave batadv_slave_0): Enslaving as an active interface with an up link
[ 1594.908458][T16627] usb 5-1: Using ep0 maxpacket: 32
[ 1594.927058][T16627] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1594.969142][T16627] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice= 0.40
[ 1595.003203][T16627] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1595.053907][T16627] usb 5-1: config 0 descriptor??
[ 1595.081078][T16627] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1595.126151][T16627] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1595.519620][   T24] usb 5-1: USB disconnect, device number 8
[ 1595.541976][   T24] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[ 1595.855432][T18332] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[ 1595.898770][T18337] netlink: 68 bytes leftover after parsing attributes in process `syz.9.3029'.
[ 1595.941582][T18336] ==================================================================
[ 1595.949671][T18336] BUG: KASAN: slab-out-of-bounds in __cpa_addr+0x1d3/0x220
[ 1595.956913][T18336] Read of size 8 at addr ffff88804b304af8 by task syz.1.3030/18336
[ 1595.964813][T18336] 
[ 1595.967169][T18336] CPU: 1 UID: 0 PID: 18336 Comm: syz.1.3030 Not tainted syzkaller #0 PREEMPT(full) 
[ 1595.967220][T18336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1595.967248][T18336] Call Trace:
[ 1595.967274][T18336]  <TASK>
[ 1595.967288][T18336]  dump_stack_lvl+0x116/0x1f0
[ 1595.967361][T18336]  print_report+0xcd/0x630
[ 1595.967416][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.967472][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.967525][T18336]  ? __phys_addr+0xe8/0x180
[ 1595.967575][T18336]  ? __cpa_addr+0x1d3/0x220
[ 1595.967630][T18336]  kasan_report+0xe0/0x110
[ 1595.967686][T18336]  ? __cpa_addr+0x1d3/0x220
[ 1595.967750][T18336]  __cpa_addr+0x1d3/0x220
[ 1595.967802][T18336]  cpa_flush+0x28b/0x8a0
[ 1595.967850][T18336]  ? __pfx_cpa_flush+0x10/0x10
[ 1595.967896][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.967936][T18336]  ? pgprot2cachemode+0x9a/0x130
[ 1595.967970][T18336]  ? __pfx_pgprot2cachemode+0x10/0x10
[ 1595.968004][T18336]  ? drm_gem_get_pages+0x6a0/0xa10
[ 1595.968049][T18336]  change_page_attr_set_clr+0x34e/0x4a0
[ 1595.968103][T18336]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[ 1595.968155][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.968213][T18336]  _set_pages_array+0x1ab/0x2c0
[ 1595.968276][T18336]  drm_gem_shmem_get_pages_locked+0x384/0x490
[ 1595.968312][T18336]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[ 1595.968347][T18336]  ? __pfx___might_resched+0x10/0x10
[ 1595.968409][T18336]  drm_gem_shmem_mmap+0xc9/0x550
[ 1595.968441][T18336]  ? __pfx_drm_gem_shmem_object_mmap+0x10/0x10
[ 1595.968477][T18336]  drm_gem_mmap_obj+0x1b5/0x560
[ 1595.968517][T18336]  drm_gem_mmap+0x40b/0x620
[ 1595.968556][T18336]  ? __pfx_drm_gem_mmap+0x10/0x10
[ 1595.968592][T18336]  ? vm_area_alloc+0x1f/0x160
[ 1595.968646][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.968686][T18336]  ? lockdep_init_map_type+0x5c/0x280
[ 1595.968735][T18336]  __mmap_region+0x1309/0x27a0
[ 1595.968770][T18336]  ? __pfx___mmap_region+0x10/0x10
[ 1595.968800][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.968842][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.968883][T18336]  ? rcu_is_watching+0x12/0xc0
[ 1595.968914][T18336]  ? finish_task_switch.isra.0+0x221/0xc10
[ 1595.968969][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969009][T18336]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1595.969060][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969101][T18336]  ? finish_task_switch.isra.0+0x221/0xc10
[ 1595.969155][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969196][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969299][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969340][T18336]  ? __lock_acquire+0xb8a/0x1c90
[ 1595.969383][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969429][T18336]  mmap_region+0x1ab/0x3f0
[ 1595.969460][T18336]  ? __get_unmapped_area+0x267/0x440
[ 1595.969502][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969546][T18336]  do_mmap+0xa3e/0x1210
[ 1595.969590][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969632][T18336]  ? __pfx_do_mmap+0x10/0x10
[ 1595.969672][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.969714][T18336]  ? __pfx_down_write_killable+0x10/0x10
[ 1595.969756][T18336]  vm_mmap_pgoff+0x29e/0x470
[ 1595.969802][T18336]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1595.969849][T18336]  ? __fget_files+0x20e/0x3c0
[ 1595.969886][T18336]  ? __entry_text_end+0x1020b5/0x1020b9
[ 1595.969931][T18336]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1595.969972][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1595.970016][T18336]  __x64_sys_mmap+0x125/0x190
[ 1595.970062][T18336]  do_syscall_64+0xcd/0xfa0
[ 1595.970116][T18336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1595.970150][T18336] RIP: 0033:0x7f9c2758eec9
[ 1595.970175][T18336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1595.970209][T18336] RSP: 002b:00007f9c28367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1595.970241][T18336] RAX: ffffffffffffffda RBX: 00007f9c277e5fa0 RCX: 00007f9c2758eec9
[ 1595.970275][T18336] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[ 1595.970297][T18336] RBP: 00007f9c27611f91 R08: 0000000000000003 R09: 0000000100000000
[ 1595.970320][T18336] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[ 1595.970342][T18336] R13: 00007f9c277e6038 R14: 00007f9c277e5fa0 R15: 00007ffddaa67428
[ 1595.970378][T18336]  </TASK>
[ 1595.970390][T18336] 
[ 1596.396218][T18336] Allocated by task 18336:
[ 1596.400641][T18336]  kasan_save_stack+0x33/0x60
[ 1596.405427][T18336]  kasan_save_track+0x14/0x30
[ 1596.410200][T18336]  __kasan_kmalloc+0xaa/0xb0
[ 1596.414804][T18336]  __kvmalloc_node_noprof+0x3a3/0x9c0
[ 1596.420189][T18336]  drm_gem_get_pages+0x144/0xa10
[ 1596.425323][T18336]  drm_gem_shmem_get_pages_locked+0x1e6/0x490
[ 1596.431487][T18336]  drm_gem_shmem_mmap+0xc9/0x550
[ 1596.436431][T18336]  drm_gem_mmap_obj+0x1b5/0x560
[ 1596.441288][T18336]  drm_gem_mmap+0x40b/0x620
[ 1596.445802][T18336]  __mmap_region+0x1309/0x27a0
[ 1596.450570][T18336]  mmap_region+0x1ab/0x3f0
[ 1596.454988][T18336]  do_mmap+0xa3e/0x1210
[ 1596.459154][T18336]  vm_mmap_pgoff+0x29e/0x470
[ 1596.463781][T18336]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1596.468570][T18336]  __x64_sys_mmap+0x125/0x190
[ 1596.473470][T18336]  do_syscall_64+0xcd/0xfa0
[ 1596.478068][T18336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1596.484074][T18336] 
[ 1596.486409][T18336] The buggy address belongs to the object at ffff88804b304a00
[ 1596.486409][T18336]  which belongs to the cache kmalloc-256 of size 256
[ 1596.500665][T18336] The buggy address is located 0 bytes to the right of
[ 1596.500665][T18336]  allocated 248-byte region [ffff88804b304a00, ffff88804b304af8)
[ 1596.515779][T18336] 
[ 1596.518117][T18336] The buggy address belongs to the physical page:
[ 1596.524545][T18336] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4b304
[ 1596.533393][T18336] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1596.541899][T18336] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1596.549450][T18336] page_type: f5(slab)
[ 1596.553434][T18336] raw: 00fff00000000040 ffff88813ffa6b40 ffffea0000bcf180 dead000000000004
[ 1596.562112][T18336] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1596.570704][T18336] head: 00fff00000000040 ffff88813ffa6b40 ffffea0000bcf180 dead000000000004
[ 1596.579380][T18336] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1596.588145][T18336] head: 00fff00000000001 ffffea00012cc101 00000000ffffffff 00000000ffffffff
[ 1596.596825][T18336] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 1596.605508][T18336] page dumped because: kasan: bad access detected
[ 1596.611940][T18336] page_owner tracks the page as allocated
[ 1596.617655][T18336] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6002, tgid 5994 (syz.2.8), ts 119057671631, free_ts 118824385700
[ 1596.638087][T18336]  post_alloc_hook+0x1c0/0x230
[ 1596.642897][T18336]  get_page_from_freelist+0x10a3/0x3a30
[ 1596.648558][T18336]  __alloc_frozen_pages_noprof+0x25f/0x2470
[ 1596.654463][T18336]  alloc_pages_mpol+0x1fb/0x550
[ 1596.659330][T18336]  new_slab+0x24a/0x360
[ 1596.663506][T18336]  ___slab_alloc+0xdc4/0x1ae0
[ 1596.668209][T18336]  __slab_alloc.constprop.0+0x63/0x110
[ 1596.673806][T18336]  __kmalloc_noprof+0x501/0x880
[ 1596.678682][T18336]  mempool_init_node+0x2f7/0x6e0
[ 1596.683634][T18336]  mempool_init_noprof+0x3a/0x50
[ 1596.688583][T18336]  do_fanotify_mark+0x2e65/0x39d0
[ 1596.693664][T18336]  __x64_sys_fanotify_mark+0xbd/0x160
[ 1596.699096][T18336]  do_syscall_64+0xcd/0xfa0
[ 1596.703738][T18336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1596.709652][T18336] page last free pid 6000 tgid 5999 stack trace:
[ 1596.715990][T18336]  __free_frozen_pages+0x7df/0x1160
[ 1596.721225][T18336]  qlist_free_all+0x4d/0x120
[ 1596.725847][T18336]  kasan_quarantine_reduce+0x195/0x1e0
[ 1596.731438][T18336]  __kasan_slab_alloc+0x69/0x90
[ 1596.736412][T18336]  kmem_cache_alloc_noprof+0x250/0x6e0
[ 1596.741910][T18336]  ptlock_alloc+0x1f/0x70
[ 1596.746278][T18336]  pte_alloc_one+0x84/0x350
[ 1596.750811][T18336]  do_pte_missing+0x1acf/0x3ba0
[ 1596.755705][T18336]  __handle_mm_fault+0x1556/0x2aa0
[ 1596.760880][T18336]  handle_mm_fault+0x589/0xd10
[ 1596.765768][T18336]  __get_user_pages+0x54e/0x3530
[ 1596.770727][T18336]  populate_vma_page_range+0x267/0x3f0
[ 1596.776231][T18336]  __mm_populate+0x1d8/0x380
[ 1596.780854][T18336]  vm_mmap_pgoff+0x37f/0x470
[ 1596.785465][T18336]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1596.790354][T18336]  __x64_sys_mmap+0x125/0x190
[ 1596.795093][T18336] 
[ 1596.797428][T18336] Memory state around the buggy address:
[ 1596.803242][T18336]  ffff88804b304980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1596.811322][T18336]  ffff88804b304a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1596.819394][T18336] >ffff88804b304a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc
[ 1596.827631][T18336]                                                                 ^
[ 1596.835621][T18336]  ffff88804b304b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1596.843784][T18336]  ffff88804b304b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1596.851851][T18336] ==================================================================
[ 1596.870295][T16627] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[ 1596.890205][T18332] overlayfs: "xino" feature enabled using 2 upper inode bits.
[ 1596.905278][T18336] Disabling lock debugging due to kernel taint
[ 1596.938126][T18332] netlink: 288 bytes leftover after parsing attributes in process `syz.9.3029'.
[ 1596.963941][T18332] binder: 18331:18332 ioctl 4018620d 0 returned -22
[ 1596.994523][ T5142] Bluetooth: hci0: connection err: -111
[ 1597.020701][T18336] ==================================================================
[ 1597.028823][T18336] BUG: KASAN: slab-out-of-bounds in __cpa_addr+0x1d3/0x220
[ 1597.036062][T18336] Read of size 8 at addr ffff88804b304af8 by task syz.1.3030/18336
[ 1597.043962][T18336] 
[ 1597.046311][T18336] CPU: 0 UID: 0 PID: 18336 Comm: syz.1.3030 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[ 1597.046362][T18336] Tainted: [B]=BAD_PAGE
[ 1597.046375][T18336] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1597.046397][T18336] Call Trace:
[ 1597.046412][T18336]  <TASK>
[ 1597.046427][T18336]  dump_stack_lvl+0x116/0x1f0
[ 1597.046485][T18336]  print_report+0xcd/0x630
[ 1597.046528][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.046570][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.046610][T18336]  ? __phys_addr+0xe8/0x180
[ 1597.046647][T18336]  ? __cpa_addr+0x1d3/0x220
[ 1597.046688][T18336]  kasan_report+0xe0/0x110
[ 1597.046731][T18336]  ? __cpa_addr+0x1d3/0x220
[ 1597.046779][T18336]  __cpa_addr+0x1d3/0x220
[ 1597.046822][T18336]  cpa_flush+0x28b/0x8a0
[ 1597.046870][T18336]  ? __pfx_cpa_flush+0x10/0x10
[ 1597.046915][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.046955][T18336]  ? pgprot2cachemode+0x9a/0x130
[ 1597.046996][T18336]  ? __pfx_pgprot2cachemode+0x10/0x10
[ 1597.047030][T18336]  ? drm_gem_get_pages+0x6a0/0xa10
[ 1597.047074][T18336]  change_page_attr_set_clr+0x34e/0x4a0
[ 1597.047127][T18336]  ? __pfx_change_page_attr_set_clr+0x10/0x10
[ 1597.047179][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.047236][T18336]  _set_pages_array+0x20a/0x2c0
[ 1597.047288][T18336]  drm_gem_shmem_get_pages_locked+0x384/0x490
[ 1597.047325][T18336]  ? __pfx_drm_gem_shmem_get_pages_locked+0x10/0x10
[ 1597.047359][T18336]  ? __pfx___might_resched+0x10/0x10
[ 1597.047421][T18336]  drm_gem_shmem_mmap+0xc9/0x550
[ 1597.047454][T18336]  ? __pfx_drm_gem_shmem_object_mmap+0x10/0x10
[ 1597.047492][T18336]  drm_gem_mmap_obj+0x1b5/0x560
[ 1597.047532][T18336]  drm_gem_mmap+0x40b/0x620
[ 1597.047570][T18336]  ? __pfx_drm_gem_mmap+0x10/0x10
[ 1597.047607][T18336]  ? vm_area_alloc+0x1f/0x160
[ 1597.047660][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.047700][T18336]  ? lockdep_init_map_type+0x5c/0x280
[ 1597.047748][T18336]  __mmap_region+0x1309/0x27a0
[ 1597.047783][T18336]  ? __pfx___mmap_region+0x10/0x10
[ 1597.047814][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.047855][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.047895][T18336]  ? rcu_is_watching+0x12/0xc0
[ 1597.047927][T18336]  ? finish_task_switch.isra.0+0x221/0xc10
[ 1597.047987][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048027][T18336]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1597.048078][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048118][T18336]  ? finish_task_switch.isra.0+0x221/0xc10
[ 1597.048172][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048213][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048306][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048345][T18336]  ? __lock_acquire+0xb8a/0x1c90
[ 1597.048388][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048432][T18336]  mmap_region+0x1ab/0x3f0
[ 1597.048464][T18336]  ? __get_unmapped_area+0x267/0x440
[ 1597.048505][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048548][T18336]  do_mmap+0xa3e/0x1210
[ 1597.048593][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048634][T18336]  ? __pfx_do_mmap+0x10/0x10
[ 1597.048674][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.048715][T18336]  ? __pfx_down_write_killable+0x10/0x10
[ 1597.048756][T18336]  vm_mmap_pgoff+0x29e/0x470
[ 1597.048803][T18336]  ? __pfx_vm_mmap_pgoff+0x10/0x10
[ 1597.048849][T18336]  ? __fget_files+0x20e/0x3c0
[ 1597.048885][T18336]  ? __entry_text_end+0x1020b5/0x1020b9
[ 1597.048930][T18336]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1597.048976][T18336]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1597.049020][T18336]  __x64_sys_mmap+0x125/0x190
[ 1597.049067][T18336]  do_syscall_64+0xcd/0xfa0
[ 1597.049120][T18336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1597.049154][T18336] RIP: 0033:0x7f9c2758eec9
[ 1597.049183][T18336] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1597.049217][T18336] RSP: 002b:00007f9c28367038 EFLAGS: 00000246 ORIG_RAX: 0000000000000009
[ 1597.049249][T18336] RAX: ffffffffffffffda RBX: 00007f9c277e5fa0 RCX: 00007f9c2758eec9
[ 1597.049273][T18336] RDX: 0000000000000004 RSI: 0000000000004000 RDI: 0000200000001000
[ 1597.049295][T18336] RBP: 00007f9c27611f91 R08: 0000000000000003 R09: 0000000100000000
[ 1597.049317][T18336] R10: 0000000000000011 R11: 0000000000000246 R12: 0000000000000000
[ 1597.049339][T18336] R13: 00007f9c277e6038 R14: 00007f9c277e5fa0 R15: 00007ffddaa67428
[ 1597.049375][T18336]  </TASK>
[ 1597.049387][T18336] 
[ 1597.484606][T18336] Allocated by task 18336:
[ 1597.489086][T18336]  kasan_save_stack+0x33/0x60
[ 1597.493871][T18336]  kasan_save_track+0x14/0x30
[ 1597.498755][T18336]  __kasan_kmalloc+0xaa/0xb0
[ 1597.503769][T18336]  __kvmalloc_node_noprof+0x3a3/0x9c0
[ 1597.510016][T18336]  drm_gem_get_pages+0x144/0xa10
[ 1597.514998][T18336]  drm_gem_shmem_get_pages_locked+0x1e6/0x490
[ 1597.521089][T18336]  drm_gem_shmem_mmap+0xc9/0x550
[ 1597.526264][T18336]  drm_gem_mmap_obj+0x1b5/0x560
[ 1597.531219][T18336]  drm_gem_mmap+0x40b/0x620
[ 1597.535738][T18336]  __mmap_region+0x1309/0x27a0
[ 1597.540543][T18336]  mmap_region+0x1ab/0x3f0
[ 1597.545017][T18336]  do_mmap+0xa3e/0x1210
[ 1597.549279][T18336]  vm_mmap_pgoff+0x29e/0x470
[ 1597.553886][T18336]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1597.558667][T18336]  __x64_sys_mmap+0x125/0x190
[ 1597.563531][T18336]  do_syscall_64+0xcd/0xfa0
[ 1597.568086][T18336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1597.574005][T18336] 
[ 1597.576446][T18336] The buggy address belongs to the object at ffff88804b304a00
[ 1597.576446][T18336]  which belongs to the cache kmalloc-256 of size 256
[ 1597.590553][T18336] The buggy address is located 0 bytes to the right of
[ 1597.590553][T18336]  allocated 248-byte region [ffff88804b304a00, ffff88804b304af8)
[ 1597.605289][T18336] 
[ 1597.607752][T18336] The buggy address belongs to the physical page:
[ 1597.614448][T18336] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4b304
[ 1597.624018][T18336] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1597.632549][T18336] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1597.640198][T18336] page_type: f5(slab)
[ 1597.644190][T18336] raw: 00fff00000000040 ffff88813ffa6b40 ffffea0000bcf180 dead000000000004
[ 1597.652779][T18336] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1597.661385][T18336] head: 00fff00000000040 ffff88813ffa6b40 ffffea0000bcf180 dead000000000004
[ 1597.670233][T18336] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1597.679011][T18336] head: 00fff00000000001 ffffea00012cc101 00000000ffffffff 00000000ffffffff
[ 1597.687797][T18336] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 1597.696588][T18336] page dumped because: kasan: bad access detected
[ 1597.703085][T18336] page_owner tracks the page as allocated
[ 1597.708821][T18336] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6002, tgid 5994 (syz.2.8), ts 119057671631, free_ts 118824385700
[ 1597.729892][T18336]  post_alloc_hook+0x1c0/0x230
[ 1597.734742][T18336]  get_page_from_freelist+0x10a3/0x3a30
[ 1597.740458][T18336]  __alloc_frozen_pages_noprof+0x25f/0x2470
[ 1597.746407][T18336]  alloc_pages_mpol+0x1fb/0x550
[ 1597.751365][T18336]  new_slab+0x24a/0x360
[ 1597.755648][T18336]  ___slab_alloc+0xdc4/0x1ae0
[ 1597.760443][T18336]  __slab_alloc.constprop.0+0x63/0x110
[ 1597.766125][T18336]  __kmalloc_noprof+0x501/0x880
[ 1597.771195][T18336]  mempool_init_node+0x2f7/0x6e0
[ 1597.776204][T18336]  mempool_init_noprof+0x3a/0x50
[ 1597.781198][T18336]  do_fanotify_mark+0x2e65/0x39d0
[ 1597.786246][T18336]  __x64_sys_fanotify_mark+0xbd/0x160
[ 1597.791627][T18336]  do_syscall_64+0xcd/0xfa0
[ 1597.796188][T18336]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1597.802097][T18336] page last free pid 6000 tgid 5999 stack trace:
[ 1597.808504][T18336]  __free_frozen_pages+0x7df/0x1160
[ 1597.813722][T18336]  qlist_free_all+0x4d/0x120
[ 1597.818335][T18336]  kasan_quarantine_reduce+0x195/0x1e0
[ 1597.823914][T18336]  __kasan_slab_alloc+0x69/0x90
[ 1597.828881][T18336]  kmem_cache_alloc_noprof+0x250/0x6e0
[ 1597.834488][T18336]  ptlock_alloc+0x1f/0x70
[ 1597.838845][T18336]  pte_alloc_one+0x84/0x350
[ 1597.843481][T18336]  do_pte_missing+0x1acf/0x3ba0
[ 1597.848576][T18336]  __handle_mm_fault+0x1556/0x2aa0
[ 1597.853725][T18336]  handle_mm_fault+0x589/0xd10
[ 1597.858512][T18336]  __get_user_pages+0x54e/0x3530
[ 1597.863468][T18336]  populate_vma_page_range+0x267/0x3f0
[ 1597.868942][T18336]  __mm_populate+0x1d8/0x380
[ 1597.873550][T18336]  vm_mmap_pgoff+0x37f/0x470
[ 1597.878209][T18336]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1597.882944][T18336]  __x64_sys_mmap+0x125/0x190
[ 1597.887738][T18336] 
[ 1597.890074][T18336] Memory state around the buggy address:
[ 1597.895852][T18336]  ffff88804b304980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1597.904071][T18336]  ffff88804b304a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1597.912193][T18336] >ffff88804b304a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc
[ 1597.920393][T18336]                                                                 ^
[ 1597.928415][T18336]  ffff88804b304b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1597.936747][T18336]  ffff88804b304b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1597.945020][T18336] ==================================================================
[ 1598.038751][T16627] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1598.049593][T16627] usb 1-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[ 1598.062487][T16627] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1598.075843][T16627] usb 1-1: config 0 descriptor??
[ 1598.087165][T16627] pwc: Askey VC010 type 2 USB webcam detected.
[ 1598.093517][T18333] ==================================================================
[ 1598.101622][T18333] BUG: KASAN: slab-out-of-bounds in __cpa_addr+0x1d3/0x220
[ 1598.108879][T18333] Read of size 8 at addr ffff88804b304af8 by task syz.1.3030/18333
[ 1598.116802][T18333] 
[ 1598.119236][T18333] CPU: 1 UID: 0 PID: 18333 Comm: syz.1.3030 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[ 1598.119288][T18333] Tainted: [B]=BAD_PAGE
[ 1598.119298][T18333] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1598.119316][T18333] Call Trace:
[ 1598.119327][T18333]  <TASK>
[ 1598.119342][T18333]  dump_stack_lvl+0x116/0x1f0
[ 1598.119406][T18333]  print_report+0xcd/0x630
[ 1598.119447][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.119482][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.119525][T18333]  ? __phys_addr+0xe8/0x180
[ 1598.119566][T18333]  ? __cpa_addr+0x1d3/0x220
[ 1598.119603][T18333]  kasan_report+0xe0/0x110
[ 1598.119640][T18333]  ? __cpa_addr+0x1d3/0x220
[ 1598.119693][T18333]  __cpa_addr+0x1d3/0x220
[ 1598.119736][T18333]  cpa_flush+0xec/0x8a0
[ 1598.119776][T18333]  ? __pfx_cpa_flush+0x10/0x10
[ 1598.119825][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.119867][T18333]  ? pgprot2cachemode+0x9a/0x130
[ 1598.119897][T18333]  ? __pfx_pgprot2cachemode+0x10/0x10
[ 1598.119932][T18333]  set_pages_array_wb+0x238/0x280
[ 1598.119993][T18333]  ? __pfx_set_pages_array_wb+0x10/0x10
[ 1598.120047][T18333]  ? __pfx___might_resched+0x10/0x10
[ 1598.120109][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.120157][T18333]  drm_gem_shmem_put_pages_locked+0x27e/0x300
[ 1598.120213][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.120258][T18333]  drm_gem_shmem_vm_close+0x63/0xc0
[ 1598.120315][T18333]  ? __pfx_drm_gem_shmem_vm_close+0x10/0x10
[ 1598.120521][T18333]  remove_vma+0x88/0x160
[ 1598.120571][T18333]  exit_mmap+0x50a/0xb90
[ 1598.120627][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.120696][T18333]  ? __pfx_exit_mmap+0x10/0x10
[ 1598.120734][T18333]  ? lock_release+0x201/0x2f0
[ 1598.120793][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.120835][T18333]  ? arch_uprobe_clear_state+0x16/0x150
[ 1598.120882][T18333]  __mmput+0x12a/0x410
[ 1598.120942][T18333]  mmput+0x62/0x70
[ 1598.121015][T18333]  do_exit+0x7c7/0x2bf0
[ 1598.121047][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.121083][T18333]  ? lock_release+0x201/0x2f0
[ 1598.121130][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.121169][T18333]  ? __pfx_do_exit+0x10/0x10
[ 1598.121199][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.121236][T18333]  ? rcu_is_watching+0x12/0xc0
[ 1598.121272][T18333]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1598.121313][T18333]  ? rcu_is_watching+0x12/0xc0
[ 1598.121343][T18333]  do_group_exit+0xd3/0x2a0
[ 1598.121377][T18333]  __x64_sys_exit_group+0x3e/0x50
[ 1598.121421][T18333]  x64_sys_call+0x150b/0x1730
[ 1598.121457][T18333]  do_syscall_64+0xcd/0xfa0
[ 1598.121504][T18333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1598.121537][T18333] RIP: 0033:0x7f9c2758eec9
[ 1598.121565][T18333] Code: Unable to access opcode bytes at 0x7f9c2758ee9f.
[ 1598.121581][T18333] RSP: 002b:00007ffddaa67788 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 1598.121614][T18333] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9c2758eec9
[ 1598.121633][T18333] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 1598.121650][T18333] RBP: 00007ffddaa677ec R08: 00000003daa6787f R09: 00000000000927c0
[ 1598.121669][T18333] R10: 000000000000022c R11: 0000000000000246 R12: 0000000000000049
[ 1598.121694][T18333] R13: 00000000000927c0 R14: 00000000001858e0 R15: 00007ffddaa67840
[ 1598.121732][T18333]  </TASK>
[ 1598.121744][T18333] 
[ 1598.445778][T18333] Allocated by task 18336:
[ 1598.450307][T18333]  kasan_save_stack+0x33/0x60
[ 1598.455004][T18333]  kasan_save_track+0x14/0x30
[ 1598.460253][T18333]  __kasan_kmalloc+0xaa/0xb0
[ 1598.464853][T18333]  __kvmalloc_node_noprof+0x3a3/0x9c0
[ 1598.470349][T18333]  drm_gem_get_pages+0x144/0xa10
[ 1598.475309][T18333]  drm_gem_shmem_get_pages_locked+0x1e6/0x490
[ 1598.481471][T18333]  drm_gem_shmem_mmap+0xc9/0x550
[ 1598.486427][T18333]  drm_gem_mmap_obj+0x1b5/0x560
[ 1598.491404][T18333]  drm_gem_mmap+0x40b/0x620
[ 1598.495916][T18333]  __mmap_region+0x1309/0x27a0
[ 1598.500691][T18333]  mmap_region+0x1ab/0x3f0
[ 1598.505204][T18333]  do_mmap+0xa3e/0x1210
[ 1598.509462][T18333]  vm_mmap_pgoff+0x29e/0x470
[ 1598.514061][T18333]  ksys_mmap_pgoff+0x32c/0x5c0
[ 1598.519297][T18333]  __x64_sys_mmap+0x125/0x190
[ 1598.524147][T18333]  do_syscall_64+0xcd/0xfa0
[ 1598.528790][T18333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1598.534714][T18333] 
[ 1598.537230][T18333] The buggy address belongs to the object at ffff88804b304a00
[ 1598.537230][T18333]  which belongs to the cache kmalloc-256 of size 256
[ 1598.551338][T18333] The buggy address is located 0 bytes to the right of
[ 1598.551338][T18333]  allocated 248-byte region [ffff88804b304a00, ffff88804b304af8)
[ 1598.565975][T18333] 
[ 1598.568314][T18333] The buggy address belongs to the physical page:
[ 1598.574900][T18333] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x4b304
[ 1598.583874][T18333] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1598.592420][T18333] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1598.599987][T18333] page_type: f5(slab)
[ 1598.604002][T18333] raw: 00fff00000000040 ffff88813ffa6b40 ffffea0000bcf180 dead000000000004
[ 1598.612687][T18333] raw: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1598.621280][T18333] head: 00fff00000000040 ffff88813ffa6b40 ffffea0000bcf180 dead000000000004
[ 1598.630049][T18333] head: 0000000000000000 0000000080100010 00000000f5000000 0000000000000000
[ 1598.638900][T18333] head: 00fff00000000001 ffffea00012cc101 00000000ffffffff 00000000ffffffff
[ 1598.647771][T18333] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 1598.656476][T18333] page dumped because: kasan: bad access detected
[ 1598.662884][T18333] page_owner tracks the page as allocated
[ 1598.668604][T18333] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd2040(__GFP_IO|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 6002, tgid 5994 (syz.2.8), ts 119057671631, free_ts 118824385700
[ 1598.689047][T18333]  post_alloc_hook+0x1c0/0x230
[ 1598.693928][T18333]  get_page_from_freelist+0x10a3/0x3a30
[ 1598.699509][T18333]  __alloc_frozen_pages_noprof+0x25f/0x2470
[ 1598.705670][T18333]  alloc_pages_mpol+0x1fb/0x550
[ 1598.710617][T18333]  new_slab+0x24a/0x360
[ 1598.714804][T18333]  ___slab_alloc+0xdc4/0x1ae0
[ 1598.719504][T18333]  __slab_alloc.constprop.0+0x63/0x110
[ 1598.724996][T18333]  __kmalloc_noprof+0x501/0x880
[ 1598.729882][T18333]  mempool_init_node+0x2f7/0x6e0
[ 1598.734842][T18333]  mempool_init_noprof+0x3a/0x50
[ 1598.739817][T18333]  do_fanotify_mark+0x2e65/0x39d0
[ 1598.744870][T18333]  __x64_sys_fanotify_mark+0xbd/0x160
[ 1598.750359][T18333]  do_syscall_64+0xcd/0xfa0
[ 1598.754988][T18333]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1598.760899][T18333] page last free pid 6000 tgid 5999 stack trace:
[ 1598.767234][T18333]  __free_frozen_pages+0x7df/0x1160
[ 1598.772680][T18333]  qlist_free_all+0x4d/0x120
[ 1598.777324][T18333]  kasan_quarantine_reduce+0x195/0x1e0
[ 1598.783078][T18333]  __kasan_slab_alloc+0x69/0x90
[ 1598.788148][T18333]  kmem_cache_alloc_noprof+0x250/0x6e0
[ 1598.793751][T18333]  ptlock_alloc+0x1f/0x70
[ 1598.798112][T18333]  pte_alloc_one+0x84/0x350
[ 1598.802828][T18333]  do_pte_missing+0x1acf/0x3ba0
[ 1598.807762][T18333]  __handle_mm_fault+0x1556/0x2aa0
[ 1598.812917][T18333]  handle_mm_fault+0x589/0xd10
[ 1598.817799][T18333]  __get_user_pages+0x54e/0x3530
[ 1598.823523][T18333]  populate_vma_page_range+0x267/0x3f0
[ 1598.829058][T18333]  __mm_populate+0x1d8/0x380
[ 1598.833674][T18333]  vm_mmap_pgoff+0x37f/0x470
[ 1598.838407][T18333]  ksys_mmap_pgoff+0x7d/0x5c0
[ 1598.843119][T18333]  __x64_sys_mmap+0x125/0x190
[ 1598.847839][T18333] 
[ 1598.850157][T18333] Memory state around the buggy address:
[ 1598.855798][T18333]  ffff88804b304980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1598.863863][T18333]  ffff88804b304a00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1598.872133][T18333] >ffff88804b304a80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 fc
[ 1598.880239][T18333]                                                                 ^
[ 1598.888338][T18333]  ffff88804b304b00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1598.896410][T18333]  ffff88804b304b80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1598.904474][T18333] ==================================================================
[ 1598.956400][T16627] pwc: send_video_command error -71
[ 1598.961821][T16627] pwc: Failed to set video mode CIF@30 fps; return code = -71
[ 1598.970538][T16627] Philips webcam 1-1:0.0: probe with driver Philips webcam failed with error -71
[ 1598.981367][T16627] usb 1-1: USB disconnect, device number 5