last executing test programs:

2m6.075407842s ago: executing program 1 (id=1057):
r0 = fsopen(&(0x7f0000000080)='mqueue\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000400)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x11i\xdd\xd9\xc6\x87\xde\xbf_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\bLTrw\x88\x9e0\t\xc6\xe2\x9c\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\x01\x00\x00\x00a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\xef:Q\x1b\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\x00\x17\xc0\xa3\xd5\xf9\xaa\x98/\xa4v\xe4)I\xf3+[e\x95\x89\x99\xca\x8e\xc5\xd3\\T\xf0\x1a|5\xfff\xff\x99\xa4\xbb\x9e#oR\xa4\xf1\xba\x04c\xb3-\xf7R\xb85\xb5\xdb\xe9?\xfa/\xdf\xb4R\xbfx=\v_j\x8e\xb0\'\xf4\xe5\xff!\xe1\xbf\x82e\xb1\x9b\x8d\xf3L\t\xd21\x9cbwV\xc8\xcc\xe4\x96M_w\xbc\xdf9\b\r\xf6\x95\xae\xb5,\x92\x8c\xc0DQm\x80\xd1w\xa2\x1a\x12Z\xe5\xf4H\xf7D\n\x96J\x93\xfb\xf0$\x9f\xf7\xa2\xae$O\xa3\xb6\xf5\x98\xd3\v\x00\x86\xa5\x8b\x81\x04\xaf\x03s\xe5\x86>\x0e\xa6\xe6\x1aV\x17\x8b\xed\xa7\'\xd0\r_\xe8,XVR\x13\xe5%\xb9\x88\xb8W@D\'\x17A\xc8\x80\x02J\xd4V\x00wH(\xc5v\f\xc9\xb6\xdf..$\xe6P(_\xf1\'\xc1:\xa3\xcb\xd9\xd1\xc7\x13\x99Md\x1dc\xf1\'j\x03!\x13\xd1\xb8\xbf\xe6\xb2M\b/\rp\xa5\x00\x00\x00\x00', 0x40, 0x9, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
mq_open(&(0x7f0000000b40)='eth0\x00\xdd\xad4=2k\xf1\x05\x9b\x91y\xe1;F\xa2\x8df\xe9\x04\x00\x00\x00\x00\x0078z=\x8f\xd5F\xa4AR\xc7\x9f.\xdc\xdb\"A\x16\xd8\x19\xf1lZ\xc8\x93\xda\xf2\xc9\xe8h[u8\xc6\xfa\x9ep\xbe\a\xe2\xf5\xa3Y\x9f\xe1\x04gM\x99K$\r\xf1G\xee\xe1\xbd\x1e\xdf\xe1\x9c\x19\xda\xd3\x94EL\xca\x88\x85Q\x02\xd9L\x90\xeb%/\xb1\xeb\x11uP7\x1f\xd9b\xebF\xf8\x88\xf0\xac.\x94\xfc\v\xb1W\xef~+n\xb1\x9b\x02n]xr\xb3\x80\xbc>\xe8XX\xe6\x12\xf3\xc9\xd5\xf8\xd1\x8d\xcb9\xbf\xb0(<\xeb\x92\x8a\x16\xb7\x11^\xb6\xb7n\xd5\xb5\x00[\xdf\x94\x00\r\x95\x17\xa1h\xf8\x00\x00\x00\"\xa0\x05\xcc^\x90c\xc9}\xb8\ny\xf4\xe1\xb4.\xa4\a\x05\xbb}\x91\xf4C\xf5O\xf1a\x12\b\x86\xa16\xbb}C\xc9\x1d\\\xedD\x14\xb1w\x1e\xa0\xc1E\xb5\xf8\xab\xfb\xd9\x93\xb8vJ\x85p\xb5n\x1b\xe4\xd5g\xae\xe4\xeb\xcaR4\xd4\xd4\x04\xfc\x04Zb\xf6\xba\xf8B\xf6YU\xcd\xf2\xdb\xb5\xa2\xda\xdf\x8dD\xef`\x13\x15$\xceq\xd7j\xd7\xe3V\xf2\xa2\x95\xcf\x18T\xf1\xb0\xf3\xf8O\x00\x00\x00\x00\x00\x00\x00\x00\x00', 0x1, 0x0, 0x0)
r3 = fsmount(r0, 0x0, 0x0)
fchdir(r3)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0)
getdents64(r4, 0x0, 0x0)

2m4.239917393s ago: executing program 1 (id=1067):
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000040), 0x80006f, 0x81501)
r1 = socket(0x400000000010, 0x3, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x40000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x3)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000001a40)=""/102392, 0x18ff8)
ioctl$PIO_UNIMAP(0xffffffffffffffff, 0x4b67, &(0x7f0000000100)={0x0, 0x0})
write(r1, &(0x7f0000000040)="3a03000018002551075c0165ff0ffc02802000030004000500e1000c0420070080000900", 0x33a)
ioctl$USBDEVFS_SUBMITURB(r0, 0x8038550a, &(0x7f0000000240)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x4b5a9da54893e123, 0x3, 0x5, 0xffff}, 0x8, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0})

2m3.531222927s ago: executing program 1 (id=1080):
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000001c0)={&(0x7f0000000680)=ANY=[@ANYBLOB="9feb01001800000000000000180000001800000004000000020000000000000700000000000000000000000d0100000000002e"], 0x0, 0x34}, 0x20)
sendmsg$NFNL_MSG_CTHELPER_NEW(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000140)={0x0}, 0x1, 0x0, 0x0, 0x801}, 0x2000000)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000440)={@map, 0x26, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
r1 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_buf(r1, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r1, &(0x7f0000001940)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x9}, 0x1c)
sendmmsg$inet6(r1, &(0x7f0000002200)=[{{0x0, 0x0, 0x0}}], 0x40000000000027f, 0x0)
setsockopt$inet6_IPV6_DSTOPTS(r1, 0x29, 0x3b, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)={0x2, 0x4, 0x8, 0x1, 0x80, r0, 0x6, '\x00', 0x0, 0xffffffffffffffff, 0x1, 0x5}, 0x50)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=ANY=[@ANYBLOB="3400000040000701fcffffff00000100017c0000040042800c00018006000600800e0000100002800c0017"], 0x34}, 0x1, 0x0, 0x0, 0x4048011}, 0x8800)

2m1.540071605s ago: executing program 1 (id=1076):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
setxattr(&(0x7f0000000000)='./file0\x00', &(0x7f0000000080)=@known='trusted.overlay.impure\x00', 0x0, 0x0, 0x1)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]})
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
ioctl$KVM_GET_STATS_FD_cpu(0xffffffffffffffff, 0xaece)
alarm(0x100000001)
mkdir(0x0, 0x18b)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f00000003c0)='./file0\x00', 0x0, 0x2a05004, 0x0)
mount$bpf(0x200000000000, &(0x7f0000000000)='./file0/../file0\x00', 0x0, 0x989046, 0x0)
mount$bpf(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x84000, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000080)='./bus\x00', 0x4000000, &(0x7f0000000140)=ANY=[], 0x1, 0x54d, &(0x7f00000015c0)="$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")

2m1.411740741s ago: executing program 0 (id=1079):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000005c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1e, 0x1c, &(0x7f0000000040)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x3000000, 0x0, 0x0, 0x0, 0x2}, {{0x18, 0x1, 0x1, 0x0, r4}, {0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x1c}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x3, 0xa, 0x2}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x0, 0x6, 0xa, 0xa, 0xfff8, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x4, 0x0, 0xc}, {0x18, 0x2, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x4, '\x00', 0x0, @sk_lookup=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

2m1.243503s ago: executing program 1 (id=1083):
socket$inet_smc(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = syz_open_dev$evdev(&(0x7f00000001c0), 0x0, 0x0)
ioctl$EVIOCSKEYCODE_V2(r3, 0x80104592, 0x0)

2m0.873282768s ago: executing program 0 (id=1084):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000080)=[@in6={0xa, 0x4e24, 0xf1, @loopback, 0x19f49a9}], 0x1c)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
r2 = dup(r1)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(r2, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x22}}], 0x10)
sendmsg$inet6(r1, &(0x7f0000000800)={&(0x7f0000000080)={0xa, 0x4e24, 0x8, @loopback, 0x4}, 0x1c, &(0x7f0000000180)=[{&(0x7f00000004c0)="99", 0x1}], 0x1}, 0x4048043)
r3 = socket(0xa, 0x5, 0x0)
r4 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r4, 0x84, 0x64, &(0x7f0000000000)=[@in={0x2, 0x4e24, @remote}], 0x10)
sendto$inet6(r4, &(0x7f00000001c0)='\x00', 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0x10000c5f}, 0x1c)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r3, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @local}], 0x10)
sendto$inet6(r3, &(0x7f0000000040)='\x00', 0x1, 0x44004, &(0x7f0000000100)={0xa, 0x4e24, 0xb, @loopback, 0xc5f}, 0x1c)
sendmsg$inet_sctp(r0, &(0x7f00000000c0)={&(0x7f0000000000)=@in6={0xa, 0x4e24, 0xff, @loopback, 0x5}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000100)="e6", 0x1}], 0x1, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000008400000007000000ac1414aa00000000200000000000000084000000080000002001000000000044931382470f8db40020"], 0x58, 0x4855}, 0x24000052)

2m0.055513038s ago: executing program 1 (id=1095):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000002ac0)=@raw={'raw\x00', 0x3c1, 0x3, 0x310, 0x0, 0x12, 0x60a, 0x1f8, 0x202, 0x300, 0x2e8, 0x2e8, 0x300, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @mcast2, [0x4000000], [0x4000000, 0x0, 0xff000000], 'veth1_to_bond\x00', 'xfrm0\x00', {}, {}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xf0, 0x138, 0x0, {}, [@common=@dst={{0x48}, {0x101, 0x4, 0x1, [0x0, 0x2, 0x673, 0x7, 0x800, 0x7, 0xf, 0x1, 0x4, 0x3, 0xa4b, 0x1, 0x4, 0x80, 0x80, 0x80]}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x12e, 0x8, 0x4, '\x00', {0x7}}}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty, [], 0x0, 0x0, 0x0, 0x0, 0xffff5664, 0x0, 0x0, 0x0, 0x800}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x370)
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0x14, @loopback}], 0x1c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="1c0000000306010200000000000000000700000a0500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40814)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="580000000206030000000000000000000300000705000100070000000900020073797a31000000000c00078008001240000000050500050002000000050004000100000011000300686173683a69702c706f727400"], 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070088000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90)

1m59.981139791s ago: executing program 32 (id=1095):
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, &(0x7f0000002ac0)=@raw={'raw\x00', 0x3c1, 0x3, 0x310, 0x0, 0x12, 0x60a, 0x1f8, 0x202, 0x300, 0x2e8, 0x2e8, 0x300, 0x2c0, 0x4, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @initdev={0xac, 0x1e, 0x1, 0x0}}, @mcast2, [0x4000000], [0x4000000, 0x0, 0xff000000], 'veth1_to_bond\x00', 'xfrm0\x00', {}, {}, 0x0, 0x0, 0x0, 0x2}, 0x0, 0xf0, 0x138, 0x0, {}, [@common=@dst={{0x48}, {0x101, 0x4, 0x1, [0x0, 0x2, 0x673, 0x7, 0x800, 0x7, 0xf, 0x1, 0x4, 0x3, 0xa4b, 0x1, 0x4, 0x80, 0x80, 0x80]}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x1, 0x12e, 0x8, 0x4, '\x00', {0x7}}}}, {{@uncond, 0x0, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv4=@empty, [], 0x0, 0x0, 0x0, 0x0, 0xffff5664, 0x0, 0x0, 0x0, 0x800}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x370)
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000100)=[@in6={0xa, 0x4e24, 0x14, @loopback}], 0x1c)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000007c0)=ANY=[@ANYBLOB="1c0000000306010200000000000000000700000a0500010007"], 0x1c}, 0x1, 0x0, 0x0, 0x4000000}, 0x40814)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000780)=ANY=[@ANYBLOB="580000000206030000000000000000000300000705000100070000000900020073797a31000000000c00078008001240000000050500050002000000050004000100000011000300686173683a69702c706f727400"], 0x58}, 0x1, 0x0, 0x0, 0x4000}, 0x20004000)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r3, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000300)=ANY=[@ANYBLOB="50000000090601020000000000000000020000840900020073797a31000000000500010007000000280007800c00018008000140fffffff70500070088000000060004404e22000006000540"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0x90)

1m59.0091375s ago: executing program 0 (id=1091):
r0 = socket(0x10, 0x3, 0x0)
syz_clone(0xaa081180, 0x0, 0x0, 0x0, 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000009b40)={0x0, 0x0, &(0x7f0000009b00)={&(0x7f0000000100)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWSET={0x34, 0x9, 0xa, 0x401, 0x0, 0x0, {0xa, 0x0, 0x4}, [@NFTA_SET_TABLE={0x9, 0x1, 'syz1\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x1}}}, 0x5c}, 0x1, 0x0, 0x0, 0x4000850}, 0x4040)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="4800e80010000d0428bd7000fcdbff2500008000", @ANYRES32=r0, @ANYBLOB="1000000000000000280012800b00010062726964676500001800028005001900840000000c001e"], 0x48}}, 0x4084)
r1 = mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x2000007, 0x401d031, 0xffffffffffffffff, 0x0)
r2 = userfaultfd(0x1)
ioctl$UFFDIO_API(r2, 0xc018aa3f, &(0x7f0000000000))
ioctl$UFFDIO_REGISTER(r2, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x1})
read(r2, &(0x7f0000001600)=""/233, 0xe9)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x110, &(0x7f0000000080)=0x80000001, 0x0, 0x4)
ioctl$UFFDIO_COPY(r2, 0xc028aa03, &(0x7f0000000400)={&(0x7f000092b000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, 0x1000})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=ANY=[@ANYBLOB="500000001000010425bbe5ad600027842cf52300", @ANYRES32=0x0, @ANYBLOB="0300000000000000280012800a00010076786c616e00"], 0x50}, 0x1, 0x0, 0x0, 0x13d33d22cca65c15}, 0x4008840)
sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0)

1m55.631894336s ago: executing program 0 (id=1099):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000080)='./file0\x00', 0x800000, &(0x7f0000000200)=ANY=[@ANYBLOB="616c6c6f775f7574696d653d30303030303030303030303030303136323134372c756e695f786c6174653d302c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e6e742c696f636861727365743d6d61637475726b6973682c6e6f6e756d7461696c3d302c696f636861727365743d6b6f69382d72752c756e695f786c6174653d302c696f636861727365743d757466382c6572726f72733d636f6e74696e75652c73686f72746e616d653d6d697865642c73686f72746e616d653d77696e39352c7379735f696d6d757461626c652c757466383d302c0074c3fc52ac6365d676e1"], 0x1, 0x3b6, &(0x7f00000006c0)="$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")
chdir(0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x7fffffffffffffff, 0x8005, 0x0, 0x0, 0x12, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x204]})
r1 = socket$inet6(0xa, 0x3, 0x6)
ioctl$EXT4_IOC_PRECACHE_EXTENTS(r1, 0x6612)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x80800, 0x0)
mount$9p_fd(0x0, &(0x7f0000000200)='./file1\x00', 0x0, 0x10, &(0x7f00000004c0)=ANY=[])
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)

1m54.071800282s ago: executing program 0 (id=1107):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r1, &(0x7f0000000300)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
setsockopt$sock_timeval(r3, 0x1, 0x15, &(0x7f0000000080)={0x77359400}, 0x10)
connect$unix(r2, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r3, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
connect$unix(r0, &(0x7f0000000280)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r1, 0x802)
r4 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo/4\x00')
read$FUSE(r4, &(0x7f0000000a00)={0x2020}, 0x2020)

1m51.829708412s ago: executing program 0 (id=1117):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat$sndseq(0xffffff9c, &(0x7f0000000180), 0x40)
readv(r1, &(0x7f00000013c0)=[{&(0x7f0000000280)=""/186, 0xba}], 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0x4}, 'port0\x00', 0x786520dbf34c80ff, 0x20a03, 0x122, 0x0, 0x0, 0xc, 0x400, 0x0, 0x0, 0x87})
openat$sequencer2(0xffffff9c, &(0x7f0000000040), 0x123482, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, &(0x7f0000000040))
syz_emit_ethernet(0x93, &(0x7f0000000500)={@local, @empty, @val={@val={0x88a8, 0x6, 0x0, 0x3}, {0x8100, 0x0, 0x0, 0x3}}, {@ipv6={0x86dd, @generic={0xf, 0x6, "c74e6f", 0x55, 0x32, 0xff, @dev={0xfe, 0x80, '\x00', 0x38}, @mcast2, {[@srh={0x2b, 0x2, 0x4, 0x1, 0x5, 0x0, 0xa3, [@remote]}, @srh={0x73, 0x2, 0x4, 0x1, 0x3, 0x0, 0x0, [@loopback]}], "fa37c10773bd20bea3d4ea7a0a663d13f372bc2be105a5d840e991b5eb422ee2a3a367ba69"}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000340)=ANY=[], 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

1m51.47211492s ago: executing program 33 (id=1117):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
r1 = openat$sndseq(0xffffff9c, &(0x7f0000000180), 0x40)
readv(r1, &(0x7f00000013c0)=[{&(0x7f0000000280)=""/186, 0xba}], 0x1)
ioctl$SNDRV_SEQ_IOCTL_CREATE_PORT(r1, 0xc0a45320, &(0x7f00000000c0)={{0x80, 0x4}, 'port0\x00', 0x786520dbf34c80ff, 0x20a03, 0x122, 0x0, 0x0, 0xc, 0x400, 0x0, 0x0, 0x87})
openat$sequencer2(0xffffff9c, &(0x7f0000000040), 0x123482, 0x0)
getsockopt$inet6_tcp_TCP_REPAIR_WINDOW(0xffffffffffffffff, 0x6, 0x1d, 0x0, &(0x7f0000000040))
syz_emit_ethernet(0x93, &(0x7f0000000500)={@local, @empty, @val={@val={0x88a8, 0x6, 0x0, 0x3}, {0x8100, 0x0, 0x0, 0x3}}, {@ipv6={0x86dd, @generic={0xf, 0x6, "c74e6f", 0x55, 0x32, 0xff, @dev={0xfe, 0x80, '\x00', 0x38}, @mcast2, {[@srh={0x2b, 0x2, 0x4, 0x1, 0x5, 0x0, 0xa3, [@remote]}, @srh={0x73, 0x2, 0x4, 0x1, 0x3, 0x0, 0x0, [@loopback]}], "fa37c10773bd20bea3d4ea7a0a663d13f372bc2be105a5d840e991b5eb422ee2a3a367ba69"}}}}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000340)=ANY=[], 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)

10.140745912s ago: executing program 2 (id=1440):
r0 = socket$netlink(0x10, 0x3, 0x4)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x40840)
sendmsg$NFT_MSG_GETSETELEM(r0, 0x0, 0x20044084)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r1, 0x3000000, 0x22, 0x0, &(0x7f0000000140)="3d6ee2e04b91ab10143d9abe86dd", 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
write(0xffffffffffffffff, &(0x7f00000002c0)="09f8000001", 0x5)
r2 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000000c0)={'bridge0\x00', <r3=>0x0})
sendmsg$nl_route(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=ANY=[@ANYBLOB="480000001c00110c0000001400000f0007000000", @ANYRES32=r3, @ANYBLOB="800202000a000200577f0000aabb000020000e80050001008f000000050001000100000004000200050001"], 0x48}}, 0x0)
r4 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[], 0x48}}, 0x0)
sendmmsg$alg(r4, &(0x7f00000000c0), 0x492492492492627, 0x0)

8.293455403s ago: executing program 4 (id=1443):
r0 = syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x0, &(0x7f00000000c0), 0x2, 0xbd1, &(0x7f0000001340)="$eJzs3M1rHOcZAPBnRquVbKtduZRS91KVUmwoXUsuMrUp1C4uvfRQaK8Fq/LKCK0/kFRcyTqskn8gX+dALoEkJiGH+OxLQnLNJbGvCTkETFCsBEJIFGY/pI2lleR4V6PIvx+8mvedd7TP8+ywO/PC7gbwxBrJ/qQRxyLiYhJRau5PI6JY7w1G1BrHra4sTX65sjSZxNravz5LIomIBytLk63HSprbI83BYES8/9ckfvb05rhzC4szE9VqZbY5Pjl/5frJuYXFP0xfmbhcuVy5Onb6T+Onxk+PnhnvWq1ffXTu9he/+fsnta9f/ebW58+/nMS5GGrOtdfRLSMxsv6ctCtExES3g+Wkr1lPe51JYYd/SnucFAAAHaVt93C/iFL0xcbNWyne/iDX5AAAAICuWOuLWAMAAAAOuMT6HwAAAA641ucAHqwsTbZavp9I2Fv3z0fEcKP+1WZrzBSiVt8ORn9EHH6QRPvXWpPGvz22kYj4+N6ZN7IWPfoe8nZqyxHxy63Of1Kvf7j+Le7N9acRMdqF+CMPjX9M9Z/rQvy86wfgyXTnfONCtvn6l67f/8QW17/CFteuHyLv61/r/m910/3fRv19He7//rnLGDdfefFGp7ms/j/f/tvrrZbFz7aPVdQjuL8c8avCVvUn6/UnHeq/uMsYpW9vVDrN5V3/2ksRx2Pr+luS7X+f6OTUdLUy2vi7ZYzl98Zf6xQ/7/qz83+4Q/2t33/qdP6v7zLGfy5ceHPTznsb3e3rTz8tJv+u94rNPf+fmJ+fHYsoJv/YvP/U9rm0jmk9Rlb/id9u//rfqv7sPaHWfB6ytcByc5uNn3oo5l9u3XyrUz6t9V+e5/9Sh/PfXv+7hc3n/5ldxvjdO8+d6DTXvv7NWha/tRYGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJY0IoYiScvr/TQtlyOORMTP43BavTY3//upa/+7eimbixiO/nRquloZjYhSY5xk47F6f2N86qHxHyPiaES8UDpUH5cnr1Uv5V08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA645ExFAkaTki0ohYLaVpuZx3VgAAAEDXDeedAAAAANBz1v8AAABw8Fn/AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA0GNHf33nbhIRtbOH6i1TbM7155oZ0Gtp3gkAuenLOwEgN4W8EwBy84hrfLcLcAAlO8wPdpwZ6HouAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOxfx4/duZtERO3soXrLFJtz/blmBvRa2tZPcswD2Ht9200W9i4PYO95icOTyxof2GntP7hxTO37MwM9ywkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/Weo3pK0HBHF5r5yOeInETEc/cnUdLUyGhE/jYgPS/0D2Xgs55wBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADovrmFxZmJarUym3XSaHbW9/Sg09eM3MMQvekkjbxr+yWfg90ZeHanY/4bjxmiGPui0n3ayfNdCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAvMwtLM5MVKuV2bm8MwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADyNrewODNRrVZme9jJu0YAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPLzXQAAAP//jAsGRw==")
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_mount_image$ext4(&(0x7f0000000580)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x1208002, &(0x7f0000000280)={[{@grpquota}, {@delalloc}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x6}}, {@grpid}, {@dioread_nolock}, {}, {@debug}, {@noauto_da_alloc}]}, 0x1, 0x5f2, &(0x7f0000000bc0)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x1, 0x0)
pwrite64(r1, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x15)
ioctl$EXT4_IOC_SWAP_BOOT(r2, 0x6611)
setsockopt$inet6_tcp_TCP_ULP(r2, 0x6, 0x1f, &(0x7f0000000000), 0x3)
bpf$OBJ_PIN_PROG(0x6, &(0x7f0000000180)=@o_path={&(0x7f0000000100)='./file1\x00', r1, 0x4000, r0}, 0x18)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000780)='./file0\x00', 0x0, &(0x7f0000000080)={[{@lazytime}, {@nobh}, {@i_version}, {@init_itable_val={'init_itable', 0x3d, 0xfff}}, {@jqfmt_vfsv0}, {@usrquota}]}, 0x1, 0x756, &(0x7f0000000d00)="$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")
munlockall()
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)

8.292491853s ago: executing program 5 (id=1454):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000580)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x50)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000000c0)={{r3, <r4=>0xffffffffffffffff}, &(0x7f0000000040), &(0x7f0000000080)='%pB    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000100)={r4}, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x10, &(0x7f0000000640)=@framed={{}, [@snprintf={{}, {}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x54}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r3}}]}, &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r5, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0xa00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

7.377407878s ago: executing program 6 (id=1444):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = socket$packet(0x11, 0x2, 0x300)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
dup(r3)
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, &(0x7f0000000080)="c4417d290ddada01ca48b8a9884315c2c245040f23c00f21f835000002000f23f8c4a2e0f3db0f07d2c74424001e09000000442402e4000000654c0fc72ef3410fc777d365420fc7700066b8502466ef", 0x6e}], 0x1, 0x11, 0x0, 0x0)
bpf$PROG_LOAD(0x2, &(0x7f00000004c0)={0x3, 0x3, &(0x7f0000000740)=ANY=[], &(0x7f0000000780)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r1, 0x1, 0x32, &(0x7f0000000180)=r2, 0x4)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002500)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r5, 0x18000000000002a0, 0xfe, 0x60000000, &(0x7f0000000100)="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", 0x0, 0xfe, 0x60000000}, 0x2c)

7.293133342s ago: executing program 5 (id=1445):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380))
socket$inet6_sctp(0xa, 0x1, 0x84)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x10, 0x803, 0x0)
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000240), 0xa2003, 0x0)
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000100)={0x0, 0x18, 0xfa00, {0x3, &(0x7f00000000c0), 0x111, 0x6}}, 0x20)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000940), 0x2, 0x0)
r2 = socket$unix(0x1, 0x2, 0x0)
ppoll(&(0x7f0000000300)=[{r2, 0x4236}], 0x1, 0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000300), 0x2, 0x4}}, 0x20)
writev(r1, &(0x7f0000000040)=[{&(0x7f0000000100), 0x86}], 0x2)

7.216053456s ago: executing program 3 (id=1446):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
r0 = socket$inet(0x2, 0x2, 0x0)
bind$inet(r0, &(0x7f0000000200)={0x2, 0x4e20, @empty}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x4}, 0x94)
pipe(&(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = socket$inet_udp(0x2, 0x2, 0x0)
close(r3)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r3, &(0x7f0000000140)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000500)=[{{&(0x7f0000000080)={0x2, 0x4e20, @multicast1}, 0x10, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='p'], 0x70}}], 0x1, 0x2000c044)
write$binfmt_misc(r2, &(0x7f0000000000), 0xfffffecc)
readv(r0, &(0x7f0000000480)=[{&(0x7f0000000940)=""/4096, 0x7151}], 0x1)
splice(r1, 0x0, r3, 0x0, 0x71d1, 0x2)

7.149854819s ago: executing program 2 (id=1447):
inotify_init()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="61128c000000000061134c0000000000bf20000000000000070000000f0000003d030100000000009500ffb1000000006926000000000000bf6700000000000036000b000fff52004507faff15300000d60600000ee60000bf050000000000003d63000000000000650700000200000007070000fbffffff1f75000000000000bf54000000000000070000000410f900bd430100000000009500000000000000050000000000000095000000000000001c15a3ce747c693a74b62fd0758b15f09429c09074bc4b2bd2dc480dd7a064b8673e2060162cc43bcba1060999eef9d60bb39d0af449deaa27ea949e8f9000d885deea2783835e29eba8546fc020c1966f8b5f32b095f566edf66b7751828da9dbd5b996b9e8d897e461c01c697671d100000000400036c17fb01dde179c1f26cac1c7b21bde7d1a55d6ebe700b3be005e47ef55e0dd81244b18590e000000000000356d82e43407a6d7fa94b21002f06cd247b126b6349ab62d7b07ba0a71a72145edade9941f49f300a8c8913e0e4ea9e4c77740ab3312edee62a4dc2fc85755d387d8a1bc8eb71fbe11b2216cc8d1f0160c237d929b49d828724b95555b459f4763c6222175c974be2f76fb5f330b015a68587a75c013000000000000000000000003000000000000d6ddc46e58eff8f4fbadfc6a3af8123b7f4240713a4c0cdc9d7820c4eb67cc0f8b5fe9258eeacb5776aebbab3d5c55020000006082778366dadfc36029633e0514cbcee1f3928970bde148c940434f33acd377cbad17673b2d30b6339255c98eba97efb4e9ac1f11be815dd6045592edcbee7f253ec74c7c1313505bd7ff8fd58b3a6569c91dbdef1df585aeaea7346a2a65caee5c85f9eddeeeee3c8a2e523c864ac430eb47cb4d0c8767b9d4125661b5a1a170c04b64da3a99ddb93bf14fae3ca2d1e882375b8dbac83978e136c34f90b33cc0eeb57debcfe26589efc08125d5d62a7e593c9738a50171adf051ea4f07e7e7e770c2016eeacbe8511afffffbea75759a1ea5404f5453c0b5c46c9700808c096cf8cf5223f341cbea3841b5cd224c1b381d56afebe9f99a00e3cd94dc0bb7af9e8709db487cc4d9b3b96723d69d512ddd57b0dee9b9f6ae80a502cce352098603e77f9ecced07fa25e99e9e415414c91f8bfd1c150570512f26c4ee34a64c131dce3800000000000000006c86287945bd8d258442870e000000000000000000000000f7e6a10de4bf7369b0d5b5373829b09bf5b7b34099b27ac7770fca449d4c4ca15f88b588b2429af2e1d1a4e1fa44cb80fcfae6e50d7e5b4675d7e0be706224f34e6eed553b40e2b897e73752fc7d1e4b0f4c5967eefd7448d5fde5841fa464a67267c631052bd7333769a4b8d19d4794357edce762e8136ab9d7ed34a72baffd849b90579b96b3"], &(0x7f0000000100)='GPL\x00'}, 0x48)

7.148838279s ago: executing program 5 (id=1459):
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000005700000095"], 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="17000000000000000400000003"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r1, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x3800, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000059"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x28}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x1, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000040)={{r5}, &(0x7f0000000280), &(0x7f0000000240)=r2}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000bc0)=ANY=[@ANYBLOB="1808000000000000000000000000000018120000", @ANYRES32=r5, @ANYBLOB="0000000000000000b703000000000000850000000c000000b7000000000000001801000000082c2500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000700000095"], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
setsockopt$sock_attach_bpf(r3, 0x1, 0x32, &(0x7f00000000c0)=r6, 0x4)
sendmsg$inet(r4, &(0x7f0000000140)={0x0, 0x0, 0x0}, 0x0)

7.085414472s ago: executing program 6 (id=1448):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000140)=@newqdisc={0x24, 0x24, 0x0, 0x0, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, {}, {}, {0x6}}}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000014c0)=@newtfilter={0xc4, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0xfff1}}, [@filter_kind_options=@f_u32={{0x8}, {0x98, 0x2, [@TCA_U32_SEL={0x94, 0x5, {0x7, 0x2, 0x8, 0x80, 0xd59, 0x20, 0xb, 0x1, [{0x3, 0xfffffffb, 0xfffffff9, 0x1dfe}, {0x800, 0xc63a, 0x7, 0x4}, {0x6, 0x14, 0x10000, 0x4}, {0x7fffffff, 0x1, 0x7, 0x81}, {0xfff, 0x82, 0x5, 0x1}, {0x2, 0x4, 0x4, 0x7}, {0x3ff, 0x3, 0x4, 0x8}, {0x2, 0x5, 0x4000, 0xc82}]}}]}}]}, 0xc4}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000040)={'lo\x00', <r5=>0x0})
r6 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r6, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@gettfilter={0x24, 0x2e, 0x301, 0x0, 0x0, {0x0, 0x0, 0x0, r5}}, 0x24}}, 0x0)

6.836224904s ago: executing program 5 (id=1449):
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_PARAMS(r0, 0x84, 0x9, &(0x7f0000000380)={<r1=>0x0, @in6={{0xa, 0x4e22, 0x9, @empty, 0x8}}, 0x5, 0x9, 0x0, 0x0, 0x20, 0x4, 0x1}, &(0x7f0000000040)=0x9c)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000080)={r1, 0x7}, 0x8)
r2 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r2, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x170, 0xffffffff, 0xffffffff, 0x170, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r3 = socket(0x10, 0x3, 0x4)
sendmsg$nl_route_sched(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newqdisc={0x74, 0x14, 0xf0b, 0x4, 0x0, {0x2, 0x0, 0x0, 0x0, {0x4}, {0xb, 0x1}, {0x1}}, [@TCA_STAB={0x50, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x0, 0xfc, 0x200, 0x7, 0x0, 0x1, 0x7e, 0x6}}, {0x10, 0x2, [0x9, 0x3, 0x7, 0x4, 0xda, 0x12]}}, {{0x1c, 0x1, {0x0, 0xc, 0x18, 0xd, 0x1, 0x1ff, 0x2}}, {0x4}}]}]}, 0x74}}, 0x20000000)
r4 = socket$l2tp(0x2, 0x2, 0x73)
bind$inet(r4, &(0x7f00000002c0)={0x2, 0x4e20, @empty}, 0x10)
connect$inet(r4, &(0x7f0000000200)={0x2, 0x0, @local}, 0x10)
sendmmsg$inet(r4, &(0x7f0000000940)=[{{0x0, 0x0, &(0x7f0000000680)=[{0x0}, {&(0x7f0000000000)="80ac", 0x2}], 0x2}}, {{&(0x7f00000001c0)={0x2, 0x4e23, @empty}, 0x10, &(0x7f0000000580)=[{&(0x7f0000000800)="dab002a8", 0x4}], 0x1}}], 0x2, 0x0)
setsockopt$inet6_group_source_req(r0, 0x29, 0x2f, &(0x7f00000001c0)={0xff, {{0xa, 0x4e22, 0x5, @private2, 0x8}}, {{0xa, 0x4e21, 0x4, @private1, 0x9}}}, 0x108)
sendmsg(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)=[{0x0}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)

6.832746364s ago: executing program 6 (id=1462):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x20000000)
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = socket$inet6(0xa, 0x2, 0x0)
close(0x3)
setsockopt$inet6_int(r1, 0x29, 0x1000000000021, 0x0, 0x0)
socket$alg(0x26, 0x5, 0x0)
r2 = socket$inet6(0xa, 0x2, 0x0)
r3 = socket(0x10, 0x803, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000240), r3)
getsockname$packet(r3, &(0x7f0000000180)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000300)=@newlink={0x54, 0x10, 0x437, 0x0, 0x0, {0x0, 0x0, 0x0, r4, 0x71583}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_TTL={0x5, 0x8, 0x12}, @IFLA_GRE_REMOTE={0x14, 0x7, @private1={0xfc, 0x1, '\x00', 0x1}}, @IFLA_GRE_COLLECT_METADATA={0x4}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
sendmmsg$inet(r2, &(0x7f0000000880)=[{{&(0x7f0000000040)={0x2, 0x4e1c, @multicast1}, 0x10, 0x0, 0x0, &(0x7f0000000000)=[@ip_pktinfo={{0x1c, 0x0, 0x8, {r4, @empty, @multicast1}}}], 0x20}}], 0x1, 0x4880)
sendmsg$kcm(r0, 0x0, 0x0)

5.721442549s ago: executing program 2 (id=1451):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = openat$vcs(0xffffffffffffff9c, &(0x7f0000000040), 0x80441, 0x0)
write$RDMA_USER_CM_CMD_CONNECT(r3, &(0x7f000000a700)={0x6, 0x118, 0xfa00, {{0x47, 0x7, "f8786f99efa0b14c9d656121a9de61b16b2596ebfdc2e5b978d53e935fb72868309ec39edcfb243ee351c636a60d3787e7021148d5cf40f2a3f4bd98d5f999085978784a4c422bab5fcdb091e8e8733e4a2338f418a176de232b4fa17ef695fd2d71836110afc49796db2136bee6b51e6eb24133caf06fd0123ee24290d0b241c58aed079948719cdb63e515d68a881319e803bc2fc949ae880631ae81522ac07f441a6d54efbc29e73c8f70d43a9f1ffa2065e75bc0193bbc8a6c33d137b998ecf7b75074d6b4ed34bd08382ea5de60638aade9afb510ae3c0679e6e3dddc7768072be3d5751dba98b8623028812f70e03b9ccd712075403d00846fc55f117c", 0xfd, 0x8, 0x51, 0x28, 0x40, 0x1, 0x9}}}, 0x120)
msgctl$MSG_INFO(0x0, 0xc, 0x0)

5.70040139s ago: executing program 3 (id=1452):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='.\x00', 0x0, &(0x7f0000002c40)=ANY=[@ANYRESDEC, @ANYRES16, @ANYRES8], 0x1, 0x380, &(0x7f0000002e40)="$eJzs3c+LG2UYwPEnu7PZZEs3OYiiIPugF70Mu6tnJUgL4oJlbcRWEKbdWQ0Zk2UmRCLiriev4s1/QLD0WPBQUG9e3Iu3evHiyb0IghYRR+bHm03SyY9NU5K23w+0eZL3fTLvm0zC84bNm5N3vviwvh/Y+05LlgoqORGRuyJlWRIjl1zkJcORvHjuzzvP5q9cfaOys3NhV/Vi5fJL26q6vvHdR58UraTb7VU5Lr93IoXfjp88fvrkv8sf1AKtBdpottTRa81fW841z9W9WlC3VS95rhO4WmsErp+0N5P2fa95cNBRp7F3fu3Ad4NAnUZH625HW01t+R113ndqDbVtW8+vZQ33EVaYIqd6Y3fXqUx5wOtT5mHW/gnDcESz71ecZRG7eE9L9cYDHRcAAFhIA/X/V6ZGKMtSt6DMpWuBfBz3LwOi+t/E3ZbT+v/mcz+0zr19az2t/2/n0/p/WWpSNvX/y78kaX31f3T0mdf/3wxcv7cieugdnqXzfdX/WAwb/a/I309X7Kmo/o9eDd0V/Wfv3tyMA+p/AAAAAAAAAAAAAAAAAAAAAAAeBnfDsBSGYclcmn+nXyFIr5tr6ReNV+czXMzYkOe/+92v7vmAR9JbV65KId64w1oX8T5vV9vV5DJtNx03pST/xudDKtlw4ihu1EhZvvcO29WVNGE5/r8iouKJK1tSknJffhxffH3nwpYmkvz4+Iftas5ai/L3pRbnb0tJnsjO387Mz8sLz/fk21KSn69LUzzZS9/HTP6nW6qvvbkzkF+M+2V59cE+JQAAAAAAzJytWkiXz+X+9W+yfrdt1ax2+Sm9A7O+Tj4f+FEy1uebmetzq/SMNdepAwAAAADw2AjyH9cdz3P9oDM0KMq4PuavgQaaLBlzz1FgTdCnL7gTByuj+iz3zLD/luFZ+fQXNCYdhh90ZOIxm+CvVcl8MM0WrtEtZlNirzB2zKMCM/8JOhfO+hT4wdLZ5+76wUY0Hp1qOj1B/LFRzpJhfeRSFJiH9P6OlQRm59xxnZ/68uu/pztELt21t7fplVvmDBiZnhu45WjMSftHGI4dz0r2u8W30/zIDAAAAIAFYYr+YjDvkQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8Piaxe5o44J5zxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABYFP8HAAD//wlD6JQ=")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000480)=""/74, 0x0})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300, 0xfc}, 0x1c)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000400))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=""/57, 0x0, &(0x7f0000000500)=""/4092})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

5.456432132s ago: executing program 3 (id=1453):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x6)
add_key(&(0x7f0000000000)='dns_resolver\x00', &(0x7f0000000040)={'syz', 0x0}, &(0x7f0000000100)='[', 0xfeed, 0xffffffffffffffff)
r3 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_CREATE_LEASE(r3, 0xc01864c6, &(0x7f0000000200)={&(0x7f0000000180)=[0x0], 0x1, 0x800})

5.454284803s ago: executing program 6 (id=1455):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setuid(0xee00)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1e}, 0x48)

4.475476881s ago: executing program 2 (id=1456):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305-generic\x00'}, 0x58)
r4 = accept4(r3, 0x0, 0x0, 0x0)
sendmsg$alg(r4, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008cc0)=[{&(0x7f0000008a40)="7c72bf03f7d9c0fd0826786ffcfb99e55c1272594d5be5c7f1de9562bbf652", 0x1f}, {&(0x7f0000008c80)="9d", 0x7fffefe1}], 0x2}, 0x0)

4.383938415s ago: executing program 6 (id=1457):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000400)=@base={0xe, 0x4, 0x4, 0x3}, 0x50)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, r3, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x18, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {{0x18, 0x1, 0x1, 0x0, r3}, {}, {}, {0x85, 0x0, 0x0, 0x5}}, {{0x5, 0x0, 0x3}, {0x95, 0x0, 0x0, 0x700}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x3, 0xa, 0x9, 0xfe00}, {0x6, 0x0, 0x6, 0x9, 0x0, 0x0, 0x3}, {0x3, 0x3, 0x6, 0xa, 0xa, 0xfff0, 0xf1}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {0x7, 0x0, 0x6, 0x0}, {0x18, 0x9, 0x2, 0x0, r4}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x6, 0x1, 0x5, 0x2}, {0x6, 0x0, 0x5, 0x8, 0x0, 0x0, 0x1}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xd, '\x00', 0x0, @fallback=0xd, 0x0, 0xf00, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4.139869697s ago: executing program 5 (id=1458):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_buf(r0, 0x0, 0x8008000000010, &(0x7f0000005e40)="17000000020001000003d68c5ee17688a2003208020300ecff3f0000000300000a000000009afc5ad9485bbb6a880000d6c8db0000dba67e06018000020000f10607bdff59100ac45761407a681f009cee4a5acb3da400001fb700674f19b44e09f9315033bf79ac2dff060115003901000000000000ea000000000000000009ffff02dfccebf6ba0008400200000000e90554062a80e605007f71174aa951f3c63e5c83f1ba2112ce68bf17a6e000"/184, 0xb8)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={0x0, 0xffffff33}, 0x1, 0x0, 0x0, 0x80}, 0x20040894)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x5}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000001300)=@newtfilter={0xa4, 0x2c, 0xd2b, 0x70bd2b, 0x35dfdbfb, {0x0, 0x0, 0x0, r4, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_u32={{0x8}, {0x78, 0x2, [@TCA_U32_SEL={0x74, 0x5, {0x10, 0x9, 0x6, 0x10da, 0xa760, 0x0, 0x10, 0x102, [{0x1000, 0xe, 0xfffff000, 0x9f6}, {0xdeb2, 0x3, 0x6, 0x3}, {0x1, 0xfffffffb, 0x100, 0x3ff}, {0x200, 0x3ff, 0x3, 0x4}, {0x7, 0xe22, 0x9, 0x5cf4}, {0x3ff, 0xb, 0x3, 0xa6d}]}}]}}]}, 0xa4}}, 0x24040084)
getsockname$packet(r1, &(0x7f0000000140)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000240)=ANY=[@ANYBLOB="4c000000100039042abd70000000000000000000", @ANYRES32=r5, @ANYBLOB="01180200031100002c0012800e00010069703665727370616e0000001800028008001500a8bc0d00040012"], 0x4c}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000002c0)=@newlink={0x4c, 0x10, 0x401, 0x70bd28, 0x3, {0x0, 0x0, 0x0, r5, 0x0, 0x1c05}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6erspan={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_TTL={0x5, 0x8, 0x2}, @IFLA_GRE_LINK={0x8, 0x1, r5}]}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x10}, 0x12)

2.812852142s ago: executing program 6 (id=1460):
r0 = socket$alg(0x26, 0x5, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bind$alg(r0, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
r2 = accept4(r0, 0x0, 0x0, 0x80800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {0x0}], 0x2, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}], 0x1}, 0x0)

2.801756533s ago: executing program 2 (id=1461):
r0 = fsopen(&(0x7f0000000040)='binder\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x9}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
close(r0)

2.786452623s ago: executing program 4 (id=1463):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet(r0, &(0x7f0000000300)=[{{&(0x7f0000000000)={0x2, 0x0, @initdev={0xac, 0x1e, 0x4, 0x0}}, 0x10, 0x0}}], 0x1, 0x4000000)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
close(0x3)
r2 = socket(0x2, 0x80805, 0x0)
r3 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r3, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000200)={<r4=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e21, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r3, 0x84, 0x7a, &(0x7f0000000340)={r4, @in6={{0xa, 0x3, 0x4, @mcast1}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r2, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30, 0x180}], 0x1, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xd, &(0x7f0000000000)=@assoc_value={<r5=>0x0}, &(0x7f0000000040)=0x8)
setsockopt$inet_sctp_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f00000008c0)=@assoc_value={r5, 0x1}, 0x8)

2.082435409s ago: executing program 4 (id=1464):
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'aead\x00', 0x0, 0x0, 'morus640\x00'}, 0x58)
r0 = accept4(0xffffffffffffffff, 0x0, 0x0, 0x80000)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendmmsg$inet6(r1, &(0x7f0000003b80)=[{{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000440)='&', 0x1}], 0x1}, 0xff03}], 0x1, 0x8000)
recvfrom$packet(r1, 0x0, 0x0, 0x42541ae965b631ba, 0x0, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000009c0)=ANY=[@ANYBLOB="2400000001040102000000c9fd0000000000000008000340000100000500010001"], 0x24}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r3, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x20, 0x1, 0x4, 0x5, 0x0, 0x0, {0x7}, [@NFULA_CFG_MODE={0xa, 0x2, {0x8, 0x1}}]}, 0x20}, 0x1, 0x0, 0x0, 0x8000}, 0x2000004)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0xa}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_DELTABLE={0x14, 0x2, 0xa, 0x101, 0x0, 0x0, {0x0, 0x0, 0x1}}], {0x14}}, 0x5c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0xa}}, [@NFT_MSG_NEWRULE={0x6c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x40, 0x4, 0x0, 0x1, [{0x3c, 0x1, 0x0, 0x1, @match={{0xa}, @val={0x2c, 0x2, 0x0, 0x1, [@NFTA_MATCH_INFO={0x14, 0x3, "f4f03b0200000000030007116b61979e"}, @NFTA_MATCH_NAME={0x9, 0x1, 'l2tp\x00'}, @NFTA_MATCH_REV={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x94}, 0x1, 0x0, 0x0, 0x4000000}, 0x0)

2.080775298s ago: executing program 5 (id=1474):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, 0x0, 0x24000080)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
arch_prctl$ARCH_MAP_VDSO_32(0x2002, 0x5)

1.717349746s ago: executing program 4 (id=1465):
inotify_init()
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)

1.716508016s ago: executing program 2 (id=1476):
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
sendmsg$FOU_CMD_ADD(r3, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000280)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="0902000000000000000001000000050002000a00000014000700ff00000000000000000000000000000108000b00dee2"], 0x38}}, 0x0)

1.716087746s ago: executing program 3 (id=1466):
socket$nl_netfilter(0x10, 0x3, 0xc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
set_mempolicy(0x3, &(0x7f0000000080)=0x7, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x3, 0x6, &(0x7f0000000000)=@framed={{0x5, 0x0, 0x0, 0x0, 0x0, 0x7b, 0x11, 0x98}, [@func={0x85, 0x0, 0x1, 0x0, 0x2}, @call={0x85, 0x0, 0x0, 0x5}, @exit={0x95, 0x0, 0x33}], {0x95, 0x0, 0x5a5}}, &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x6, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0xb8000000}, 0x70)

218.50894ms ago: executing program 4 (id=1467):
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='.\x00', 0x0, &(0x7f0000002c40)=ANY=[@ANYRESDEC, @ANYRES16, @ANYRES8], 0x1, 0x380, &(0x7f0000002e40)="$eJzs3c+LG2UYwPEnu7PZZEs3OYiiIPugF70Mu6tnJUgL4oJlbcRWEKbdWQ0Zk2UmRCLiriev4s1/QLD0WPBQUG9e3Iu3evHiyb0IghYRR+bHm03SyY9NU5K23w+0eZL3fTLvm0zC84bNm5N3vviwvh/Y+05LlgoqORGRuyJlWRIjl1zkJcORvHjuzzvP5q9cfaOys3NhV/Vi5fJL26q6vvHdR58UraTb7VU5Lr93IoXfjp88fvrkv8sf1AKtBdpottTRa81fW841z9W9WlC3VS95rhO4WmsErp+0N5P2fa95cNBRp7F3fu3Ad4NAnUZH625HW01t+R113ndqDbVtW8+vZQ33EVaYIqd6Y3fXqUx5wOtT5mHW/gnDcESz71ecZRG7eE9L9cYDHRcAAFhIA/X/V6ZGKMtSt6DMpWuBfBz3LwOi+t/E3ZbT+v/mcz+0zr19az2t/2/n0/p/WWpSNvX/y78kaX31f3T0mdf/3wxcv7cieugdnqXzfdX/WAwb/a/I309X7Kmo/o9eDd0V/Wfv3tyMA+p/AAAAAAAAAAAAAAAAAAAAAAAeBnfDsBSGYclcmn+nXyFIr5tr6ReNV+czXMzYkOe/+92v7vmAR9JbV65KId64w1oX8T5vV9vV5DJtNx03pST/xudDKtlw4ihu1EhZvvcO29WVNGE5/r8iouKJK1tSknJffhxffH3nwpYmkvz4+Iftas5ai/L3pRbnb0tJnsjO387Mz8sLz/fk21KSn69LUzzZS9/HTP6nW6qvvbkzkF+M+2V59cE+JQAAAAAAzJytWkiXz+X+9W+yfrdt1ax2+Sm9A7O+Tj4f+FEy1uebmetzq/SMNdepAwAAAADw2AjyH9cdz3P9oDM0KMq4PuavgQaaLBlzz1FgTdCnL7gTByuj+iz3zLD/luFZ+fQXNCYdhh90ZOIxm+CvVcl8MM0WrtEtZlNirzB2zKMCM/8JOhfO+hT4wdLZ5+76wUY0Hp1qOj1B/LFRzpJhfeRSFJiH9P6OlQRm59xxnZ/68uu/pztELt21t7fplVvmDBiZnhu45WjMSftHGI4dz0r2u8W30/zIDAAAAIAFYYr+YjDvkQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8Piaxe5o44J5zxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABYFP8HAAD//wlD6JQ=")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000000480)=""/74, 0x0})
setsockopt$packet_tx_ring(0xffffffffffffffff, 0x107, 0x5, &(0x7f0000000080)=@req3={0x8000, 0x6, 0x300, 0xfc}, 0x1c)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000400))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0xffffffff, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=""/57, 0x0, &(0x7f0000000500)=""/4092})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

217.77531ms ago: executing program 3 (id=1479):
setreuid(0xffffffffffffffff, 0xee01)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = getpgid(0x0)
fcntl$setownex(r1, 0xf, &(0x7f0000000140)={0x2, r2})
sendmmsg$unix(r0, &(0x7f0000006c40)=[{{0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000300)="11", 0x1}], 0x1}}], 0x1, 0x4040011)
clock_adjtime(0xa, &(0x7f00000001c0)={0xb676, 0x10, 0x9037, 0x6, 0x572, 0x80000000, 0x2, 0xade, 0x9b, 0xffffffffffffffff, 0x3, 0x7, 0x1, 0x9, 0x100, 0x5, 0x8, 0x8000000000000001, 0x5, 0x401, 0x9, 0x3, 0x8, 0x9, 0x6, 0x8000})
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r3 = open$dir(&(0x7f0000000140)='./file0\x00', 0x2, 0x0)
r4 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r4, 0x1, r3, &(0x7f00000000c0)={0x30000009})
set_mempolicy(0x8006, &(0x7f0000000040)=0xfff, 0x5)
sendto$unix(r1, &(0x7f0000000000)="44a66a54f72d75412250c454", 0xc, 0x10, 0x0, 0x0)
openat$uhid(0xffffffffffffff9c, 0x0, 0x802, 0x0)

96.332106ms ago: executing program 4 (id=1468):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000003c0)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_MCAST_RATE(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000080)={0x24, r4, 0x1, 0x70bd2a, 0x65dfdbfb, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_MCAST_RATE={0x8, 0x6b, 0xa}]}, 0x24}, 0x1, 0x0, 0x0, 0x44001}, 0xc800)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0xc, &(0x7f0000000040)=@assoc_value={<r6=>0x0}, 0x0)
getsockopt$inet_sctp_SCTP_GET_LOCAL_ADDRS(r1, 0x84, 0x6d, 0x0, &(0x7f00000000c0))
getsockopt$inet_sctp_SCTP_PEER_ADDR_PARAMS(r1, 0x84, 0x9, 0x0, &(0x7f0000000080))
ioctl$sock_SIOCGIFVLAN_DEL_VLAN_CMD(r2, 0x8982, &(0x7f00000001c0)={0x1, 'ipvlan1\x00', {}, 0x4})
setsockopt$inet_sctp6_SCTP_DELAYED_SACK(r0, 0x84, 0x10, &(0x7f0000000040)=@sack_info={r6, 0x2, 0x10001}, 0xc)

0s ago: executing program 3 (id=1469):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$rfkill(0xffffffffffffff9c, 0x0, 0x801, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x15)
writev(r3, &(0x7f00000000c0)=[{&(0x7f0000000180)="39000000130003470fbb65e1c3e4ffff060060001600000056000000250000001900b3c0b6d20300070a0000000084db26b9e4e20000000000", 0x39}], 0x1)

kernel console output (not intermixed with test programs):

[   72.918161][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   72.927478][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   72.940775][ T4188] device veth0_macvtap entered promiscuous mode
[   72.959061][ T4183] device veth1_macvtap entered promiscuous mode
[   72.967293][ T4184] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.977346][ T4184] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.995256][ T4184] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.004367][ T4184] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.017925][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   73.027299][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   73.036191][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   73.055506][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.080221][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.098335][ T4183] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.108985][ T4188] device veth1_macvtap entered promiscuous mode
[   73.125387][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   73.136243][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   73.154524][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.172171][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.184159][ T4183] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.213531][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   73.224759][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   73.238542][ T4183] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.249591][ T4183] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.258449][ T4183] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.267838][ T4183] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.281543][ T4188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.292578][ T4188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.309699][ T4188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   73.320936][ T4188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.333359][ T4188] batman_adv: batadv0: Interface activated: batadv_slave_0
[   73.367718][ T4192] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.381272][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   73.390251][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   73.405143][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   73.412884][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   73.420819][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   73.431024][ T4237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   73.443364][ T4188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.455684][ T4188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.466690][ T4188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   73.479814][ T4188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   73.491663][ T4188] batman_adv: batadv0: Interface activated: batadv_slave_1
[   73.517940][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   73.530225][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   73.539028][ T4230] Bluetooth: hci0: command 0x040f tx timeout
[   73.546122][ T4230] Bluetooth: hci1: command 0x040f tx timeout
[   73.560733][ T4188] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   73.571917][ T4188] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   73.583023][ T4188] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   73.592117][ T4188] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   73.619759][ T4226] Bluetooth: hci4: command 0x040f tx timeout
[   73.626209][ T4226] Bluetooth: hci3: command 0x040f tx timeout
[   73.632870][ T4226] Bluetooth: hci2: command 0x040f tx timeout
[   73.646912][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   73.657039][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   73.679848][ T4191] device veth0_vlan entered promiscuous mode
[   73.743087][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   73.752818][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   73.761901][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   73.770657][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   73.799753][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.807847][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.826709][ T4192] device veth0_vlan entered promiscuous mode
[   73.843847][ T4191] device veth1_vlan entered promiscuous mode
[   73.852693][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   73.862353][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   73.870957][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   73.879876][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   73.888508][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   73.896920][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   73.919757][ T4192] device veth1_vlan entered promiscuous mode
[   73.949017][ T4223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   73.964849][ T4223] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.010404][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.018293][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.050225][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   74.061664][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   74.071193][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   74.079630][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   74.089529][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   74.098340][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.118093][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.125803][ T4191] device veth0_macvtap entered promiscuous mode
[   74.146777][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   74.156334][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   74.167230][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   74.192320][ T4191] device veth1_macvtap entered promiscuous mode
[   74.208894][  T154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.216755][  T154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.249576][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   74.267955][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   74.277116][ T4223] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   74.310033][ T4191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.324052][ T4191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.335053][ T4191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.347682][ T4191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.358599][ T4191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.369598][ T4191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.381340][ T4191] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.389056][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   74.398072][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   74.408412][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   74.418012][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   74.430711][ T4192] device veth0_macvtap entered promiscuous mode
[   74.455262][  T154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.455422][ T4191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.504957][  T154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.509905][ T4191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.542321][ T4191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.555162][ T4269] 9pnet: Insufficient options for proto=fd
[   74.573228][ T4191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.585947][ T4191] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.605584][ T4191] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.618686][ T4191] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.637277][ T4192] device veth1_macvtap entered promiscuous mode
[   74.674120][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   74.695274][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   74.873169][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   74.897547][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   74.927558][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   74.963204][ T4191] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   74.987025][ T4191] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.017951][ T4191] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.034669][ T4191] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.097713][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.164061][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.196554][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.212474][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   75.228917][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   75.688794][    C1] sched: RT throttling activated
[   75.697542][ T4227] Bluetooth: hci1: command 0x0419 tx timeout
[   75.704376][ T4227] Bluetooth: hci0: command 0x0419 tx timeout
[   75.711066][ T4227] Bluetooth: hci2: command 0x0419 tx timeout
[   75.808394][ T4224] Bluetooth: hci3: command 0x0419 tx timeout
[   76.106557][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.126749][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   76.148144][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.166308][ T4192] batman_adv: batadv0: Interface activated: batadv_slave_0
[   76.226971][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   76.238826][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #142!!!
[   76.248228][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[   76.303340][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   76.387962][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.462682][ T4224] Bluetooth: hci4: command 0x0419 tx timeout
[   76.482179][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.509724][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.549646][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.584099][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.598762][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.617111][ T4192] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   76.636655][ T4192] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   76.657882][ T4192] batman_adv: batadv0: Interface activated: batadv_slave_1
[   76.688657][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   76.747042][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   76.786447][ T4192] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   76.797129][ T4192] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   76.806621][ T4192] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   76.815652][ T4192] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   76.875139][ T4288] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4'.
[   77.090364][ T4235] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.098352][ T4235] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.124735][ T4295] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   77.217779][ T4223] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.233276][ T4235] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   77.242113][ T4292] loop1: detected capacity change from 0 to 2048
[   77.249816][ T4223] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.308982][ T1159] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   77.317235][ T4237] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.339268][ T1159] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   77.351957][ T4292] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[   77.368896][ T1159] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.377509][ T4237] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   77.399940][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   77.419946][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   77.433005][ T4295] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[   77.463913][ T4295] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[   77.800502][ T4300] netlink: 52 bytes leftover after parsing attributes in process `syz.4.5'.
[   77.847980][ T4300] bridge0: port 2(bridge_slave_1) entered disabled state
[   77.856384][ T4300] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.714693][ T4300] syz.4.5 (4300) used greatest stack depth: 20496 bytes left
[   78.849231][ T4316] process 'syz.4.16' launched '/dev/fd/4' with NULL argv: empty string added
[   79.140678][ T4326] kvm: pic: non byte read
[   79.145551][ T4326] kvm: pic: non byte read
[   79.162756][ T4334] syz.3.21 uses obsolete (PF_INET,SOCK_PACKET)
[   79.169340][ T4326] kvm: pic: non byte read
[   79.174001][ T4326] kvm: pic: non byte read
[   79.178669][ T4326] kvm: pic: non byte read
[   79.198972][ T4334] device syzkaller1 entered promiscuous mode
[   79.229683][ T4326] kvm: pic: non byte read
[   79.235917][ T4326] kvm: pic: non byte read
[   79.241434][ T4326] kvm: pic: non byte read
[   79.246131][ T4326] kvm: pic: non byte read
[   79.251275][ T4326] kvm: pic: non byte read
[   79.257378][ T4326] kvm: pic: level sensitive irq not supported
[   79.260197][ T4326] kvm: pic: single mode not supported
[   79.268095][ T4326] kvm: pic: single mode not supported
[   79.294165][ T4326] kvm: pic: level sensitive irq not supported
[   79.304592][ T4326] kvm: pic: single mode not supported
[   79.486780][ T4342] sock: sock_set_timeout: `syz.4.25' (pid 4342) tries to set negative timeout
[   79.514793][ T4348] netlink: 'syz.1.27': attribute type 21 has an invalid length.
[   79.542956][ T4348] netlink: 'syz.1.27': attribute type 6 has an invalid length.
[   79.563657][ T4348] netlink: 132 bytes leftover after parsing attributes in process `syz.1.27'.
[   79.983442][ T4363] device syzkaller0 entered promiscuous mode
[   80.200832][ T4366] loop4: detected capacity change from 0 to 512
[   80.239579][ T4366] =======================================================
[   80.239579][ T4366] WARNING: The mand mount option has been deprecated and
[   80.239579][ T4366]          and is ignored by this kernel. Remove the mand
[   80.239579][ T4366]          option from the mount to silence this warning.
[   80.239579][ T4366] =======================================================
[   80.349166][ T4366] EXT4-fs (loop4): Ignoring removed nobh option
[   80.363764][ T4366] EXT4-fs (loop4): Ignoring removed nobh option
[   80.395640][ T4366] EXT4-fs (loop4): Ignoring removed orlov option
[   80.537923][   T26] audit: type=1326 audit(1773749670.817:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   80.649005][   T26] audit: type=1326 audit(1773749670.827:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   80.672771][   T26] audit: type=1326 audit(1773749670.827:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   80.700991][   T26] audit: type=1326 audit(1773749670.827:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   80.723589][ T4225] usb 3-1: new low-speed USB device number 2 using dummy_hcd
[   81.855594][ T4384] input: syz1 as /devices/virtual/input/input5
[   81.863187][   T26] audit: type=1326 audit(1773749670.827:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   81.886276][ T4380] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   81.928911][   T26] audit: type=1326 audit(1773749670.837:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   81.940019][ T4225] usb 3-1: config 0 has an invalid interface number: 1 but max is 0
[   81.981175][ T4225] usb 3-1: config 0 has no interface number 0
[   81.987326][ T4225] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[   82.029481][ T4225] usb 3-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[   82.065175][   T26] audit: type=1326 audit(1773749670.837:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   82.081691][ T4225] usb 3-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[   82.104249][ T4225] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   82.117706][ T4225] usb 3-1: config 0 descriptor??
[   82.139015][   T26] audit: type=1326 audit(1773749670.837:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   82.170613][ T4368] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[   82.216042][ T4225] iowarrior 3-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[   82.280628][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[   82.290156][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[   82.334723][   T26] audit: type=1326 audit(1773749670.837:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   82.358724][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[   82.382953][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #140!!!
[   82.579030][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[   82.588046][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #108!!!
[   82.597919][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[   82.608892][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #80!!!
[   82.863245][   T26] audit: type=1326 audit(1773749670.837:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4371 comm="syz.0.37" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[   83.183592][ T4404] Zero length message leads to an empty skb
[   83.252669][ T4265] usb 3-1: USB disconnect, device number 2
[   87.068595][ T4417] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   87.163415][   T21] cfg80211: failed to load regulatory.db
[   87.333801][ T4426] loop2: detected capacity change from 0 to 128
[   88.263576][ T4433] netlink: 8 bytes leftover after parsing attributes in process `syz.1.54'.
[   90.512284][ T4458] loop4: detected capacity change from 0 to 4096
[   90.590340][ T4458] ntfs3: loop4: Failed to load $LogFile.
[   91.159984][ T4483] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.208202][ T4483] device batadv_slave_0 entered promiscuous mode
[   91.805634][ T4458] loop4: detected capacity change from 0 to 32768
[   91.826408][ T4503] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.834018][ T4503] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.877870][ T4503] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.885344][ T4503] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.894091][ T4503] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.901257][ T4503] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.919782][ T4458] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.61 (4458)
[   92.004640][ T4503] team0: Port device bridge0 added
[   92.018703][ T4458] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[   92.058966][ T4458] BTRFS info (device loop4): using free space tree
[   92.079782][ T4458] BTRFS info (device loop4): has skinny extents
[   92.105907][ T4504] bridge0: port 1(bridge_slave_0) entered disabled state
[   92.118816][ T4504] bridge0: port 2(bridge_slave_1) entered disabled state
[   92.168101][ T4504] device batadv_slave_0 left promiscuous mode
[   92.310375][ T4458] BTRFS info (device loop4): enabling ssd optimizations
[   92.333911][ T4500] loop1: detected capacity change from 0 to 40427
[   92.385059][ T4500] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x1ffff
[   92.404746][ T4500] F2FS-fs (loop1): inline encryption not supported
[   92.574823][ T4500] F2FS-fs (loop1): invalid crc value
[   92.604031][ T4528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.78'.
[   92.655980][ T4500] F2FS-fs (loop1): Found nat_bits in checkpoint
[   93.389686][ T4500] F2FS-fs (loop1): Start checkpoint disabled!
[   93.439975][ T4500] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[   93.682178][ T4500] F2FS-fs (loop1) : inject dquot initialize in f2fs_dquot_initialize of f2fs_create+0x131/0x14f0
[   94.872839][ T4398] attempt to access beyond end of device
[   94.872839][ T4398] loop1: rw=2049, want=40976, limit=40427
[   96.165737][ T4596] device syzkaller0 entered promiscuous mode
[   96.505709][ T4602] pit: kvm: requested 135771 ns i8254 timer period limited to 200000 ns
[   96.537775][ T4602] pit: kvm: requested 17600 ns i8254 timer period limited to 200000 ns
[   96.567557][ T4602] pit: kvm: requested 29333 ns i8254 timer period limited to 200000 ns
[   96.627957][ T4602] pit: kvm: requested 103923 ns i8254 timer period limited to 200000 ns
[   96.755661][ T4602] pit: kvm: requested 44419 ns i8254 timer period limited to 200000 ns
[   96.775495][ T4602] pit: kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[   96.846043][ T4602] pit: kvm: requested 3352 ns i8254 timer period limited to 200000 ns
[   96.941080][ T4602] pit: kvm: requested 89676 ns i8254 timer period limited to 200000 ns
[   97.803631][ T4593] loop3: detected capacity change from 0 to 32768
[   97.815374][ T4602] pit: kvm: requested 166781 ns i8254 timer period limited to 200000 ns
[   97.921433][ T4593] (syz.3.97,4593,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   97.977812][ T4593] (syz.3.97,4593,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[   98.819419][ T4631] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[   99.616916][ T4593] JBD2: Ignoring recovery information on journal
[   99.787876][ T4593] JBD2: recovery failed
[   99.833775][ T4593] (syz.3.97,4593,0):ocfs2_journal_load:1105 ERROR: Failed to load journal!
[   99.847712][ T4593] (syz.3.97,4593,0):ocfs2_check_volume:2437 ERROR: ocfs2 journal load failed! -5
[   99.880114][ T4593] (syz.3.97,4593,0):ocfs2_check_volume:2493 ERROR: status = -5
[   99.908867][ T4593] (syz.3.97,4593,1):ocfs2_mount_volume:1824 ERROR: status = -5
[   99.958200][ T4593] (syz.3.97,4593,1):ocfs2_fill_super:1177 ERROR: status = -5
[  100.072088][    T7] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  100.214106][ T4647] netlink: 'syz.4.108': attribute type 10 has an invalid length.
[  101.327721][ T4647] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  101.339257][    T7] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x4 has an invalid bInterval 0, changing to 7
[  101.359253][    T7] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[  101.579190][    T7] usb 1-1: New USB device found, idVendor=1b5c, idProduct=0105, bcdDevice= 1.f1
[  101.589964][    T7] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.609003][    T7] usb 1-1: Product: syz
[  101.628968][    T7] usb 1-1: Manufacturer: syz
[  101.636023][    T7] usb 1-1: SerialNumber: syz
[  101.658511][ T4646] loop1: detected capacity change from 0 to 32768
[  101.672309][    T7] usb 1-1: config 0 descriptor??
[  101.741366][    T7] ftdi_sio 1-1:0.0: FTDI USB Serial Device converter detected
[  101.776034][    T7] usb 1-1: Detected SIO
[  101.794248][    T7] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 4
[  101.816320][    T7] ftdi_sio ttyUSB0: Overriding wMaxPacketSize on endpoint 7
[  101.852061][    T7] usb 1-1: FTDI USB Serial Device converter now attached to ttyUSB0
[  101.862534][ T4646] XFS (loop1): Mounting V5 Filesystem
[  102.041737][    T7] usb 1-1: USB disconnect, device number 2
[  102.090200][    T7] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[  102.133001][    T7] ftdi_sio 1-1:0.0: device disconnected
[  102.182637][ T4646] XFS (loop1): Ending clean mount
[  102.237384][ T4646] XFS (loop1): Quotacheck needed: Please wait.
[  102.366999][ T4646] XFS (loop1): Quotacheck: Done.
[  102.686672][ T4184] XFS (loop1): Unmounting Filesystem
[  103.215248][ T4695] netlink: 4 bytes leftover after parsing attributes in process `syz.0.122'.
[  103.710699][ T4711] loop1: detected capacity change from 0 to 512
[  103.798574][ T4711] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  104.112734][ T4402] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1)
[  105.417493][ T4733] APIC base relocation is unsupported by KVM
[  105.611984][ T4739] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  105.701099][ T4739] device bridge_slave_0 left promiscuous mode
[  105.738452][ T4739] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.811742][ T4739] device bridge_slave_1 left promiscuous mode
[  105.847027][ T4739] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.893265][ T4744] mmap: syz.4.129 (4744) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  105.945256][ T4739] bond0: (slave bond_slave_0): Releasing backup interface
[  106.003461][ T4739] bond0: (slave bond_slave_1): Releasing backup interface
[  106.143203][ T4739] team0: Port device team_slave_0 removed
[  106.243259][ T4739] team0: Port device team_slave_1 removed
[  106.281517][ T4739] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  106.318931][ T4739] batman_adv: batadv0: Removing interface: batadv_slave_0
[  106.361052][ T4739] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  106.368523][ T4739] batman_adv: batadv0: Removing interface: batadv_slave_1
[  106.448507][ T4742] team0: Mode changed to "broadcast"
[  106.496360][ T4743] netlink: 4 bytes leftover after parsing attributes in process `syz.0.136'.
[  107.232113][ T4759] netlink: 16 bytes leftover after parsing attributes in process `syz.3.142'.
[  108.587787][ T4769] netlink: 8 bytes leftover after parsing attributes in process `syz.4.145'.
[  108.709810][ T4771] A link change request failed with some changes committed already. Interface ipvlan0 may have been left with an inconsistent configuration, please check.
[  109.194618][ T4785] overlayfs: failed to clone upperpath
[  109.271567][ T4787] netlink: 8 bytes leftover after parsing attributes in process `syz.3.154'.
[  109.367046][ T4787] netlink: 8 bytes leftover after parsing attributes in process `syz.3.154'.
[  110.539558][ T4794] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  111.583688][ T4813] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  111.606192][ T4812] sctp: [Deprecated]: syz.0.161 (pid 4812) Use of struct sctp_assoc_value in delayed_ack socket option.
[  111.606192][ T4812] Use struct sctp_sack_info instead
[  113.159355][ T4554] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  113.495413][ T4848] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  113.529694][ T4554] usb 1-1: config 0 has no interfaces?
[  113.634990][ T4856] Illegal XDP return value 680387088, expect packet loss!
[  113.687042][ T4554] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  113.701995][ T4554] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  113.723009][ T4554] usb 1-1: Product: syz
[  113.727319][ T4554] usb 1-1: Manufacturer: syz
[  113.770807][ T4554] usb 1-1: config 0 descriptor??
[  114.710646][    T7] usb 1-1: USB disconnect, device number 3
[  114.745414][ T4864] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  114.753302][ T4864] IPv6: NLM_F_CREATE should be set when creating new route
[  114.804263][ T4869] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  114.817159][ T4869] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  114.826585][ T4869] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  114.838151][ T4869] device bridge_slave_0 left promiscuous mode
[  114.848464][ T4869] bridge0: port 1(bridge_slave_0) entered disabled state
[  114.887730][ T4869] device bridge_slave_1 left promiscuous mode
[  114.897059][ T4869] bridge0: port 2(bridge_slave_1) entered disabled state
[  114.924833][ T4869] bond0: (slave bond_slave_0): Releasing backup interface
[  114.947712][ T4869] bond0: (slave bond_slave_1): Releasing backup interface
[  114.985318][ T4869] team0: Failed to send options change via netlink (err -105)
[  115.007975][ T4869] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  115.019472][ T4869] team0: Port device team_slave_0 removed
[  115.052400][ T4869] team0: Failed to send options change via netlink (err -105)
[  115.071208][ T4869] team0: Failed to send port change of device team_slave_1 via netlink (err -105)
[  115.082582][ T4869] team0: Port device team_slave_1 removed
[  115.090999][ T4869] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  115.098544][ T4869] batman_adv: batadv0: Removing interface: batadv_slave_0
[  115.131082][ T4869] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  115.152882][ T4869] batman_adv: batadv0: Removing interface: batadv_slave_1
[  118.150869][ T4864] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  118.712842][ T4864] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  118.722178][ T4864] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  118.731567][ T4864] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  118.750571][ T4864] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  118.910741][ T4872] team0: Mode changed to "loadbalance"
[  119.052361][   T26] kauditd_printk_skb: 17 callbacks suppressed
[  119.052377][   T26] audit: type=1326 audit(1773749709.417:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4910 comm="syz.2.196" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa4a961d799 code=0x0
[  120.277342][ T4930] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  120.310453][ T4935] overlayfs: failed to clone upperpath
[  120.340900][ T4930] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[  120.356485][   T26] audit: type=1326 audit(1773749710.717:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fcd5870f799 code=0x0
[  120.653822][   T26] audit: type=1326 audit(1773749710.997:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  120.678324][   T26] audit: type=1326 audit(1773749710.997:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  120.706047][   T26] audit: type=1326 audit(1773749710.997:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  121.650357][ T4963] loop4: detected capacity change from 0 to 8
[  121.693423][   T26] audit: type=1326 audit(1773749710.997:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  121.736404][   T26] audit: type=1326 audit(1773749710.997:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  121.762279][   T26] audit: type=1326 audit(1773749710.997:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  121.815742][   T26] audit: type=1326 audit(1773749710.997:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  121.855695][   T26] audit: type=1326 audit(1773749710.997:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4936 comm="syz.0.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=10 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  122.032126][ T4224] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  122.976933][ T4978] netlink: 1319 bytes leftover after parsing attributes in process `syz.3.215'.
[  123.128951][ T4224] usb 2-1: Using ep0 maxpacket: 32
[  123.259170][ T4224] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  123.274140][ T4224] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  123.295033][ T4224] usb 2-1: New USB device found, idVendor=0458, idProduct=706e, bcdDevice=35.64
[  123.314999][ T4224] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  123.339302][ T4224] usb 2-1: config 0 descriptor??
[  124.393246][ T4224] usb 2-1: USB disconnect, device number 2
[  126.728710][ T5018] bond1: (slave ip6gretap1): no link monitoring support
[  127.311727][ T5018] bond1: (slave ip6gretap1): MII and ETHTOOL support not available for slave, and arp_interval/arp_ip_target module parameters not specified, thus bonding will not detect link failures! see bonding.txt for details
[  127.369777][ T5018] bond1: (slave ip6gretap1): Enslaving as an active interface with an up link
[  129.546003][ T5089] netlink: 12 bytes leftover after parsing attributes in process `syz.4.251'.
[  129.658959][ T4224] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  129.938906][ T4224] usb 2-1: Using ep0 maxpacket: 32
[  130.839391][ T4224] usb 2-1: config 0 has no interfaces?
[  132.029514][ T4224] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  132.055453][ T4224] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  132.068097][ T4224] usb 2-1: Product: syz
[  132.089950][ T4224] usb 2-1: Manufacturer: syz
[  132.113795][ T4224] usb 2-1: SerialNumber: syz
[  132.146807][ T4224] usb 2-1: config 0 descriptor??
[  132.284883][ T5109] loop4: detected capacity change from 0 to 4096
[  132.374217][ T4224] usb 2-1: USB disconnect, device number 3
[  132.824636][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  132.832755][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  133.526013][ T4191] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22.
[  133.545570][ T4191] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  133.812415][ T5135] loop0: detected capacity change from 0 to 512
[  135.906035][ T5160] netlink: 20 bytes leftover after parsing attributes in process `syz.3.273'.
[  135.950152][ T5160] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  135.959467][ T5160] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  135.968208][ T5160] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  135.977113][ T5160] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  135.994922][ T5160] netlink: 20 bytes leftover after parsing attributes in process `syz.3.273'.
[  136.051566][ T5160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.273'.
[  136.315723][ T5160] netlink: 4 bytes leftover after parsing attributes in process `syz.3.273'.
[  137.808754][ T5175] sctp: failed to load transform for md5: -2
[  138.038270][ T5193] overlayfs: failed to clone upperpath
[  138.156433][ T5197] netlink: 104 bytes leftover after parsing attributes in process `syz.1.284'.
[  139.256824][ T5214] sock: sock_set_timeout: `syz.2.291' (pid 5214) tries to set negative timeout
[  139.633978][ T5225] loop1: detected capacity change from 0 to 4096
[  140.170607][ T5218] sctp: failed to load transform for md5: -2
[  140.886675][ T4184] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[  140.908956][ T4184] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  140.931171][ T5239] loop4: detected capacity change from 0 to 128
[  141.000543][ T5239] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256
[  141.001855][ T5241] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  141.070154][ T5243] netlink: 12 bytes leftover after parsing attributes in process `syz.1.298'.
[  141.158452][ T5236] netlink: 52 bytes leftover after parsing attributes in process `syz.4.297'.
[  141.173088][ T5236] netlink: 8 bytes leftover after parsing attributes in process `syz.4.297'.
[  141.299280][ T5246] netlink: 104 bytes leftover after parsing attributes in process `syz.0.300'.
[  141.477762][ T5261] netlink: 'syz.4.307': attribute type 1 has an invalid length.
[  141.486372][ T5257] netlink: 104 bytes leftover after parsing attributes in process `syz.2.316'.
[  141.512643][ T5260] sock: sock_set_timeout: `syz.3.306' (pid 5260) tries to set negative timeout
[  141.583353][ T5265] fuse: Bad value for 'fd'
[  142.034053][ T5286] netlink: 89 bytes leftover after parsing attributes in process `syz.3.318'.
[  142.158853][ T5273] ODEBUG: Out of memory. ODEBUG disabled
[  143.138659][ T5299] overlayfs: failed to clone upperpath
[  143.219964][ T5302] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  145.126220][ T5331] netlink: 12 bytes leftover after parsing attributes in process `syz.2.331'.
[  145.689078][ T4266] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  145.815474][ T5346] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  145.901017][ T5349] loop1: detected capacity change from 0 to 2048
[  145.975208][ T5349] Alternate GPT is invalid, using primary GPT.
[  145.982527][ T5349]  loop1: p2 p3 p7
[  146.079420][ T4266] usb 5-1: config 0 has an invalid interface number: 1 but max is 0
[  146.096482][ T4266] usb 5-1: config 0 has no interface number 0
[  146.123335][ T4266] usb 5-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  146.145029][ T4266] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.166768][ T4266] usb 5-1: config 0 descriptor??
[  146.215224][ T4266] usb 5-1: selecting invalid altsetting 1
[  146.224229][ T4266] dvb_ttusb_budget: ttusb_init_controller: error
[  146.234926][ T4266] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  146.306601][ T4266] DVB: Unable to find symbol cx22700_attach()
[  146.356860][ T4266] DVB: Unable to find symbol tda10046_attach()
[  146.366033][ T4266] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  146.402357][ T5356] netlink: 8 bytes leftover after parsing attributes in process `syz.3.339'.
[  146.477494][ T4266] usb 5-1: USB disconnect, device number 2
[  147.973704][ T4492] udevd[4492]: inotify_add_watch(7, /dev/loop1p2, 10) failed: No such file or directory
[  148.056438][ T4267] udevd[4267]: inotify_add_watch(7, /dev/loop1p3, 10) failed: No such file or directory
[  149.199575][ T5379] sctp: failed to load transform for md5: -2
[  149.620953][ T5405] pit: kvm: requested 156723 ns i8254 timer period limited to 200000 ns
[  149.731069][ T5405] pit: kvm: requested 129066 ns i8254 timer period limited to 200000 ns
[  149.748554][ T5405] pit: kvm: requested 130742 ns i8254 timer period limited to 200000 ns
[  149.757623][ T5405] pit: kvm: requested 113981 ns i8254 timer period limited to 200000 ns
[  149.801066][ T5419] loop0: detected capacity change from 0 to 2048
[  150.008885][ T4266] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  150.205441][ T5419] Alternate GPT is invalid, using primary GPT.
[  150.217214][ T5419]  loop0: p2 p3 p7
[  150.589424][ T4266] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  150.606386][ T4266] usb 2-1: config 0 has no interface number 0
[  151.271283][ T4266] usb 2-1: New USB device found, idVendor=0b48, idProduct=1005, bcdDevice=8c.1e
[  151.311047][ T4266] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.360795][ T4266] usb 2-1: config 0 descriptor??
[  151.403684][ T4266] usb 2-1: selecting invalid altsetting 1
[  151.430843][ T4266] dvb_ttusb_budget: ttusb_init_controller: error
[  151.458992][ T4266] dvbdev: DVB: registering new adapter (Technotrend/Hauppauge Nova-USB)
[  151.581139][ T4266] DVB: Unable to find symbol cx22700_attach()
[  151.744639][ T4266] DVB: Unable to find symbol tda10046_attach()
[  151.761170][ T4266] dvb_ttusb_budget: no frontend driver found for device [0b48:1005]
[  151.801960][ T4266] usb 2-1: USB disconnect, device number 4
[  153.626118][ T5409] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.635756][ T5409] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.645764][ T5409] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.655612][ T5409] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  153.865529][ T3559] Alternate GPT is invalid, using primary GPT.
[  153.878587][ T3559]  loop0: p2 p3 p7
[  153.893049][ T5436] netlink: 12 bytes leftover after parsing attributes in process `syz.1.370'.
[  153.906831][ T5436] netlink: 12 bytes leftover after parsing attributes in process `syz.1.370'.
[  154.092267][ T5447] netlink: 'syz.0.365': attribute type 8 has an invalid length.
[  154.207627][ T4391] udevd[4391]: inotify_add_watch(7, /dev/loop0p7, 10) failed: No such file or directory
[  154.688777][ T4492] udevd[4492]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory
[  154.765646][ T4267] udevd[4267]: inotify_add_watch(7, /dev/loop0p3, 10) failed: No such file or directory
[  155.046799][ T5463] netlink: 'syz.3.371': attribute type 1 has an invalid length.
[  155.152100][ T5463] 8021q: adding VLAN 0 to HW filter on device bond1
[  155.180758][ T5465] device veth3 entered promiscuous mode
[  155.192690][ T5465] bond1: (slave veth3): Enslaving as an active interface with a down link
[  155.214277][ T5463] bond1: (slave erspan0): making interface the new active one
[  155.224652][ T5463] device erspan0 entered promiscuous mode
[  155.231794][ T5463] bond1: (slave erspan0): Enslaving as an active interface with an up link
[  155.241495][ T4398] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  155.303168][ T5463] syz.3.371 (5463) used greatest stack depth: 19792 bytes left
[  155.325477][ T4266] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  155.351967][ T5473] netlink: 182 bytes leftover after parsing attributes in process `syz.2.374'.
[  155.417103][ T5478] 8021q: adding VLAN 0 to HW filter on device bond1
[  155.443780][ T5478] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  155.453581][ T5478] bond1: (slave macvlan2): making interface the new active one
[  155.465744][ T5478] bond1: (slave macvlan2): Enslaving as an active interface with an up link
[  155.475712][ T4398] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[  155.639292][ T4266] usb 5-1: Using ep0 maxpacket: 32
[  155.788961][ T4266] usb 5-1: config 0 has an invalid interface number: 83 but max is 0
[  155.806240][ T4266] usb 5-1: config 0 has no interface number 0
[  155.818805][ T4266] usb 5-1: config 0 interface 83 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[  155.979329][ T4266] usb 5-1: New USB device found, idVendor=112a, idProduct=0001, bcdDevice=d8.11
[  155.988455][ T4266] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  155.996981][ T4266] usb 5-1: Product: syz
[  156.001692][ T4266] usb 5-1: Manufacturer: syz
[  156.006321][ T4266] usb 5-1: SerialNumber: syz
[  156.014470][ T4266] usb 5-1: config 0 descriptor??
[  156.053736][ T5498] syz.2.384 (5498): attempted to duplicate a private mapping with mremap.  This is not supported.
[  156.069055][ T4266] redrat3 5-1:0.83: Couldn't find all endpoints
[  156.326136][ T5457] udc-core: couldn't find an available UDC or it's busy
[  156.334753][ T5457] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  157.125789][ T4265] usb 5-1: USB disconnect, device number 3
[  157.490292][ T4266] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  157.600197][ T5519] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  159.108954][ T4266] usb 1-1: Using ep0 maxpacket: 8
[  159.188981][ T4266] usb 1-1: device descriptor read/all, error -71
[  162.279739][ T5558] loop0: detected capacity change from 0 to 1024
[  162.371132][ T5555] netlink: 'syz.2.401': attribute type 4 has an invalid length.
[  162.464253][ T5558] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  162.746505][ T5558] EXT4-fs warning (device loop0): ext4_read_block_bitmap_nowait:485: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 48142
[  162.857459][ T5558] EXT4-fs warning (device loop0): ext4_read_block_bitmap_nowait:485: Cannot get buffer for block bitmap - block_group = 0, block_bitmap = 48142
[  166.496625][ T5613] overlayfs: failed to clone upperpath
[  167.059362][ T4226] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  167.309362][ T4226] usb 5-1: Using ep0 maxpacket: 8
[  167.554704][ T4226] usb 5-1: unable to get BOS descriptor or descriptor too short
[  167.644781][ T4226] usb 5-1: unable to read config index 0 descriptor/start: -71
[  167.669392][ T4226] usb 5-1: can't read configurations, error -71
[  167.708454][ T5643] tipc: Failed to remove unknown binding: 66,0,0/0:3847472411/3847472413
[  167.718363][ T5643] tipc: Failed to remove unknown binding: 66,0,0/0:3847472411/3847472412
[  167.756059][ T5643] tipc: Failed to remove unknown binding: 66,0,0/0:3847472411/3847472413
[  167.774928][ T5643] tipc: Failed to remove unknown binding: 66,0,0/0:3847472411/3847472412
[  167.875098][ T5650] netlink: 4 bytes leftover after parsing attributes in process `syz.1.434'.
[  170.280655][ T5679] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=none:owns=io+mem
[  170.366034][ T5679] loop1: detected capacity change from 0 to 8
[  170.491884][ T5679] SQUASHFS error: zlib decompression failed, data probably corrupt
[  170.538804][ T5679] SQUASHFS error: Failed to read block 0x9b: -5
[  170.545232][ T5679] SQUASHFS error: Unable to read metadata cache entry [99]
[  170.609091][ T5679] SQUASHFS error: Unable to read inode 0x127
[  171.663656][ T5700] netlink: 32 bytes leftover after parsing attributes in process `syz.2.451'.
[  171.715383][ T5702] netlink: 32 bytes leftover after parsing attributes in process `syz.2.451'.
[  171.737995][ T5703] tipc: Failed to remove unknown binding: 66,0,0/0:3305527519/3305527521
[  171.758966][ T5703] tipc: Failed to remove unknown binding: 66,0,0/0:3305527519/3305527520
[  171.949726][ T5708] tipc: Failed to remove unknown binding: 66,0,0/0:3305527519/3305527521
[  172.006154][ T5708] tipc: Failed to remove unknown binding: 66,0,0/0:3305527519/3305527520
[  174.450523][  T144] device erspan0 left promiscuous mode
[  176.156493][ T5764] tipc: Failed to remove unknown binding: 66,0,0/0:1564641776/1564641778
[  176.169055][ T5764] tipc: Failed to remove unknown binding: 66,0,0/0:1564641776/1564641777
[  176.198197][ T5771] binder: 5770:5771 ioctl c0306201 200000000680 returned -14
[  176.220891][ T5764] tipc: Failed to remove unknown binding: 66,0,0/0:1564641776/1564641778
[  176.289520][ T5764] tipc: Failed to remove unknown binding: 66,0,0/0:1564641776/1564641777
[  176.632199][ T4266] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  177.640843][ T5801] netlink: 24 bytes leftover after parsing attributes in process `syz.3.490'.
[  177.650412][   T13] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  177.829300][ T4266] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  177.845153][ T4266] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  177.866254][ T4266] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.891899][ T4266] usb 5-1: config 0 descriptor??
[  177.929186][   T13] usb 2-1: Using ep0 maxpacket: 32
[  177.955272][ T4266] pwc: Askey VC010 type 2 USB webcam detected.
[  178.059348][   T13] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  178.075104][   T13] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  178.085719][   T13] usb 2-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  178.100522][   T13] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  178.123839][   T13] usb 2-1: config 0 descriptor??
[  178.176329][ T5820] netlink: 40 bytes leftover after parsing attributes in process `syz.2.496'.
[  178.206937][ T5820] (unnamed net_device) (uninitialized): peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  178.263024][ T5824] netlink: 40 bytes leftover after parsing attributes in process `syz.2.496'.
[  178.273099][ T5824] bond2: peer notification delay (2365) is not a multiple of miimon (4), value rounded to 2364 ms
[  178.399421][ T4266] pwc: recv_control_msg error -32 req 02 val 2b00
[  178.598543][ T4266] pwc: recv_control_msg error -32 req 02 val 2700
[  178.659240][ T4266] pwc: recv_control_msg error -32 req 02 val 2c00
[  178.675671][   T13] ft260 0003:0403:6030.0001: unknown main item tag 0x0
[  178.684780][   T13] ft260 0003:0403:6030.0001: unknown main item tag 0x0
[  178.708994][ T4266] pwc: recv_control_msg error -32 req 04 val 1000
[  178.893982][   T13] ft260 0003:0403:6030.0001: hidraw0: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.1-1/input0
[  178.939516][ T4266] pwc: recv_control_msg error -32 req 04 val 1300
[  179.970277][ T4266] pwc: recv_control_msg error -32 req 04 val 1400
[  180.640454][ T5850] netlink: 'syz.2.505': attribute type 4 has an invalid length.
[  180.712881][ T5850] netlink: 'syz.2.505': attribute type 4 has an invalid length.
[  180.909428][   T13] ft260 0003:0403:6030.0001: failed to retrieve chip version
[  180.918832][ T4266] pwc: recv_control_msg error -71 req 02 val 2000
[  180.932277][   T13] ft260: probe of 0003:0403:6030.0001 failed with error -71
[  180.942631][ T4266] pwc: recv_control_msg error -71 req 02 val 2100
[  180.950696][ T5864] capability: warning: `syz.2.509' uses 32-bit capabilities (legacy support in use)
[  180.979177][ T4266] pwc: recv_control_msg error -71 req 04 val 1500
[  180.990133][   T13] usb 2-1: USB disconnect, device number 5
[  181.174511][ T4266] pwc: recv_control_msg error -71 req 02 val 2500
[  181.192770][ T4195] Bluetooth: Wrong link type (-71)
[  181.197981][ T5870] netlink: 20 bytes leftover after parsing attributes in process `syz.4.511'.
[  181.208107][ T4266] pwc: recv_control_msg error -71 req 02 val 2400
[  181.229184][ T4266] pwc: recv_control_msg error -71 req 02 val 2600
[  181.323566][ T4266] pwc: recv_control_msg error -71 req 02 val 2900
[  181.609469][ T4266] pwc: recv_control_msg error -71 req 02 val 2800
[  181.930005][ T4266] pwc: recv_control_msg error -71 req 04 val 1100
[  181.970161][ T4266] pwc: recv_control_msg error -71 req 04 val 1200
[  182.055794][ T5866] fido_id[5866]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  182.131915][ T4266] pwc: Registered as video103.
[  182.192798][ T4266] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input6
[  183.235488][ T4266] usb 5-1: USB disconnect, device number 6
[  184.700263][ T5985] device syzkaller0 entered promiscuous mode
[  184.802849][   T26] kauditd_printk_skb: 63 callbacks suppressed
[  184.802864][   T26] audit: type=1326 audit(1773749775.167:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5986 comm="syz.1.535" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faf93303799 code=0x0
[  184.944679][ T5993] device syzkaller0 entered promiscuous mode
[  186.162274][ T4227] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  186.394966][ T6020] binder: 6018:6020 ioctl c0306201 200000000180 returned -14
[  186.549553][ T4227] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  186.649342][ T4227] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  187.600838][ T4227] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  187.665712][ T4227] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  187.705176][ T4227] usb 1-1: SerialNumber: syz
[  187.833948][ T6046] netlink: 'syz.2.553': attribute type 16 has an invalid length.
[  187.848183][ T6046] netlink: 'syz.2.553': attribute type 17 has an invalid length.
[  187.888432][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  187.900601][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  187.938503][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  187.978227][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  187.988589][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  187.998380][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  188.018657][ T4227] usb 1-1: 0:2 : does not exist
[  188.055799][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): sit0: link becomes ready
[  188.077367][ T4227] usb 1-1: USB disconnect, device number 6
[  188.088582][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): ip6tnl0: link becomes ready
[  188.116558][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): ip6gre0: link becomes ready
[  188.152737][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): syz_tun: link becomes ready
[  188.167692][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): ip6gretap0: link becomes ready
[  188.187025][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  188.197168][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  188.213852][ T6046] 8021q: adding VLAN 0 to HW filter on device bond0
[  188.226250][ T6046] 8021q: adding VLAN 0 to HW filter on device team0
[  188.243220][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  188.256147][ T6046] IPv6: ADDRCONF(NETDEV_CHANGE): nlmon0: link becomes ready
[  188.275529][ T6046] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  188.320460][ T6053] 8021q: adding VLAN 0 to HW filter on device bond2
[  188.361671][ T4492] udevd[4492]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  188.982410][    C0] vcan0: j1939_tp_rxtimer: 0xffff888020cc1800: rx timeout, send abort
[  189.750200][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888020cc1800: 0x20000: (3) A timeout occurred and this is the connection abort to close the session.
[  191.579603][ T1110] Bluetooth: hci1: command 0x0406 tx timeout
[  191.585967][ T1110] Bluetooth: hci2: command 0x0406 tx timeout
[  191.633824][ T1110] Bluetooth: hci0: command 0x0406 tx timeout
[  191.714246][ T1110] Bluetooth: hci3: command 0x0406 tx timeout
[  191.734149][ T6103] loop4: detected capacity change from 0 to 256
[  191.741315][ T1110] Bluetooth: hci4: command 0x0406 tx timeout
[  194.974935][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  194.990988][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  195.309488][ T6133] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  196.600927][ T6140] device bond_slave_0 entered promiscuous mode
[  196.607704][ T6140] device bond_slave_1 entered promiscuous mode
[  196.614095][ T6140] device wlan1 entered promiscuous mode
[  196.702044][ T6140] device vlan2 entered promiscuous mode
[  196.729794][ T6140] device bond0 entered promiscuous mode
[  197.082902][ T6166] capability: warning: `syz.0.589' uses deprecated v2 capabilities in a way that may be insecure
[  197.272093][ T6168] device syzkaller0 entered promiscuous mode
[  197.620817][ T6173] loop1: detected capacity change from 0 to 1024
[  197.756350][ T6173] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  198.672789][ T6179] loop0: detected capacity change from 0 to 1024
[  198.890372][ T6173] cgroup: fork rejected by pids controller in /syz1
[  200.295038][ T6179] hfsplus: invalid btree flag
[  200.300614][ T6179] hfsplus: failed to load extents file
[  200.888149][ T6179] x_tables: ip6_tables: policy.0 match: invalid size 312 (kernel) != (user) 0
[  202.283159][ T9822] 9p filesystem being mounted at /143/file0 supports timestamps until 2106-02-07 (0xffffffff)
[  202.989654][ T9829] netlink: 'syz.0.598': attribute type 16 has an invalid length.
[  203.123415][ T9829] netlink: 'syz.0.598': attribute type 17 has an invalid length.
[  203.670724][ T9829] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  203.819644][ T9829] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  203.873605][ T9829] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  203.979465][ T9842] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[  204.013540][ T9846] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[  204.080159][ T9846] sch_tbf: burst 2 is lower than device lo mtu (65550) !
[  205.130376][ T9847] 8021q: adding VLAN 0 to HW filter on device bond2
[  206.803967][ T9889] overlayfs: upperdir is in-use as upperdir/workdir of another mount, mount with '-o index=off' to override exclusive upperdir protection.
[  207.577014][ T9900] loop4: detected capacity change from 0 to 512
[  208.823666][    C1] vcan0: j1939_tp_rxtimer: 0xffff888023c2e400: rx timeout, send abort
[  209.155308][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff888023c2e400: 0x20000: (3) A timeout occurred and this is the connection abort to close the session.
[  209.897533][ T9907] netlink: 16 bytes leftover after parsing attributes in process `syz.2.626'.
[  209.988996][ T9900] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  210.060950][ T9900] ext4 filesystem being mounted at /101/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  210.072839][ T9919] device batadv_slave_0 entered promiscuous mode
[  211.448693][ T9927] device syzkaller0 entered promiscuous mode
[  211.623578][ T9933] netlink: 'syz.1.632': attribute type 1 has an invalid length.
[  211.768940][ T9933] netlink: 146340 bytes leftover after parsing attributes in process `syz.1.632'.
[  219.668514][T10024] netlink: 20 bytes leftover after parsing attributes in process `syz.2.657'.
[  219.710201][T10024] device ip6gre1 entered promiscuous mode
[  219.717637][T10021] netlink: 'syz.3.659': attribute type 3 has an invalid length.
[  219.740702][T10021] netlink: 'syz.3.659': attribute type 10 has an invalid length.
[  219.757604][T10021] 8021q: adding VLAN 0 to HW filter on device team0
[  219.775391][T10021] bond0: (slave team0): Enslaving as an active interface with an up link
[  221.870777][T10047] xt_policy: output policy not valid in PREROUTING and INPUT
[  222.552909][T10049] netlink: 'syz.3.666': attribute type 27 has an invalid length.
[  223.829161][T10043] loop1: detected capacity change from 0 to 4096
[  224.065359][T10049] DRBG: could not allocate CTR cipher TFM handle: ctr(aes)
[  224.292098][T10073] netlink: 16 bytes leftover after parsing attributes in process `syz.1.671'.
[  226.233664][T10092] tipc: Started in network mode
[  226.274568][T10092] tipc: Node identity 4, cluster identity 4711
[  226.333929][T10092] tipc: Node number set to 4
[  227.837083][T10112] loop4: detected capacity change from 0 to 1024
[  228.159388][T10112] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  229.402906][T10112] cgroup: fork rejected by pids controller in /syz4
[  229.691173][T10265] sctp: [Deprecated]: syz.0.701 (pid 10265) Use of int in max_burst socket option.
[  229.691173][T10265] Use struct sctp_assoc_value instead
[  230.848406][T10273] loop1: detected capacity change from 0 to 2048
[  231.231619][T10273] EXT4-fs (loop1): mounted filesystem without journal. Opts: delalloc,noload,acl,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  231.595206][T10290] bond3: (slave ip6gretap1): Enslaving as an active interface with an up link
[  231.638931][T10294] bond3 (unregistering): (slave ip6gretap1): Releasing backup interface
[  231.744092][T10294] bond3 (unregistering): Released all slaves
[  232.847764][T10297] loop0: detected capacity change from 0 to 8192
[  232.887645][T10295] netlink: 14 bytes leftover after parsing attributes in process `syz.0.696'.
[  232.923606][T10287] bond0 speed is unknown, defaulting to 1000
[  232.943170][ T5927] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1161: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  233.010704][ T5927] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  233.025521][ T5927] EXT4-fs (loop1): This should not happen!! Data will be lost
[  233.025521][ T5927] 
[  233.042583][T10297]  loop0: AHDI p1 p4
[  233.052702][ T5927] EXT4-fs (loop1): Total free blocks count 0
[  233.079939][ T5927] EXT4-fs (loop1): Free/Dirty block details
[  233.086612][T10297] loop0: p4 size 16776960 extends beyond EOD, truncated
[  233.096174][ T5927] EXT4-fs (loop1): free_blocks=2415919504
[  233.104862][ T5927] EXT4-fs (loop1): dirty_blocks=3776
[  233.127238][ T5927] EXT4-fs (loop1): Block reservation details
[  233.137205][ T3559]  loop0: AHDI p1 p4
[  233.145604][ T3559] loop0: p4 size 16776960 extends beyond EOD, truncated
[  233.162082][ T5927] EXT4-fs (loop1): i_reserved_data_blocks=236
[  233.215353][T10295] bond0 (unregistering): Released all slaves
[  233.252125][T10287] bond0 speed is unknown, defaulting to 1000
[  233.269429][ T5935] EXT4-fs (loop1): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1712 with error 28
[  233.327044][T10287] infiniband syz1: Couldn't register device with driver model
[  233.348542][T10287] siw: device registration error -19
[  233.358079][ T5935] EXT4-fs (loop1): This should not happen!! Data will be lost
[  233.358079][ T5935] 
[  233.680977][T10313] netlink: 52 bytes leftover after parsing attributes in process `syz.2.700'.
[  233.906546][T10311] cgroup: fork rejected by pids controller in /syz3
[  234.180297][T10426] fuse: Unknown parameter '4'
[  234.197793][T10426] sctp: [Deprecated]: syz.4.705 (pid 10426) Use of int in max_burst socket option deprecated.
[  234.197793][T10426] Use struct sctp_assoc_value instead
[  234.296660][T10430] xt_policy: output policy not valid in PREROUTING and INPUT
[  237.855131][T10452] TCP: TCP_TX_DELAY enabled
[  237.879521][T10452] netlink: 8 bytes leftover after parsing attributes in process `syz.0.708'.
[  238.167830][T10467] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  238.257683][T10467] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  238.406110][T10472] netlink: 14 bytes leftover after parsing attributes in process `syz.4.719'.
[  238.483894][T10476] xt_policy: output policy not valid in PREROUTING and INPUT
[  239.829289][T10472] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  239.871902][T10474] loop4: detected capacity change from 0 to 8192
[  239.929224][T10472] device bond_slave_0 left promiscuous mode
[  240.177668][T10472] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  240.193738][T10472] device bond_slave_1 left promiscuous mode
[  240.264924][T10472] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  240.287724][T10468] cgroup: fork rejected by pids controller in /syz2
[  240.308550][T10474]  loop4: AHDI p1 p4
[  240.323587][T10474] loop4: p4 size 16776960 extends beyond EOD, truncated
[  240.344577][ T1110] infiniband syz1: ib_query_port failed (-19)
[  240.353953][T10472] device wlan1 left promiscuous mode
[  240.393339][T10472] bond0 (unregistering): Released all slaves
[  240.420836][   T13] bond0 speed is unknown, defaulting to 1000
[  240.435598][T10467] bond0 speed is unknown, defaulting to 1000
[  240.538198][T10467] siw: device registration error -19
[  241.808281][T10532] netlink: 'syz.4.725': attribute type 3 has an invalid length.
[  241.939680][T10532] netlink: 'syz.4.725': attribute type 10 has an invalid length.
[  243.462034][ T4267] udevd[4267]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  243.501054][ T4492] udevd[4492]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  246.406181][T10569] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  246.413542][T10569] IPv6: NLM_F_CREATE should be set when creating new route
[  247.158248][T10577] loop4: detected capacity change from 0 to 2048
[  247.268320][T10577] EXT4-fs (loop4): mounted filesystem without journal. Opts: delalloc,noload,acl,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  248.711308][T10588] xt_hashlimit: size too large, truncated to 1048576
[  248.718643][T10588] xt_hashlimit: invalid rate
[  248.754859][ T5916] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1161: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  248.803473][ T5916] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28
[  248.823366][ T5916] EXT4-fs (loop4): This should not happen!! Data will be lost
[  248.823366][ T5916] 
[  248.865175][ T5916] EXT4-fs (loop4): Total free blocks count 0
[  248.889553][ T5916] EXT4-fs (loop4): Free/Dirty block details
[  248.899698][ T5916] EXT4-fs (loop4): free_blocks=2415919504
[  248.905475][ T5916] EXT4-fs (loop4): dirty_blocks=3392
[  248.917358][ T5916] EXT4-fs (loop4): Block reservation details
[  248.942055][ T5916] EXT4-fs (loop4): i_reserved_data_blocks=212
[  248.995347][ T5916] EXT4-fs (loop4): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 1342 with error 28
[  249.008232][ T5916] EXT4-fs (loop4): This should not happen!! Data will be lost
[  249.008232][ T5916] 
[  249.106160][T10589] netlink: 'syz.1.745': attribute type 3 has an invalid length.
[  249.121181][T10591] netlink: 'syz.1.745': attribute type 10 has an invalid length.
[  249.170733][T10591] 8021q: adding VLAN 0 to HW filter on device team0
[  249.197660][T10591] bond0: (slave team0): Enslaving as an active interface with an up link
[  250.303119][T10605] loop1: detected capacity change from 0 to 512
[  250.394153][T10605] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  250.438149][T10605] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  254.607773][T10653] loop0: detected capacity change from 0 to 128
[  254.650392][T10654] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  254.690291][T10663] netlink: 14 bytes leftover after parsing attributes in process `syz.1.773'.
[  254.774775][T10653] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  254.806804][T10653] ext4 filesystem being mounted at /137/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  254.848158][T10663] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  254.887736][T10663] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  254.958205][T10663] bond0 (unregistering): (slave team0): Releasing backup interface
[  254.974559][T10665] loop1: detected capacity change from 0 to 8192
[  255.007100][T10663] bond0 (unregistering): Released all slaves
[  255.026916][T10665]  loop1: AHDI p1 p4
[  255.054150][T10659] netlink: 28 bytes leftover after parsing attributes in process `syz.2.766'.
[  255.069104][T10665] loop1: p4 size 16776960 extends beyond EOD, truncated
[  255.086598][T10659] netlink: 'syz.2.766': attribute type 7 has an invalid length.
[  255.120239][T10659] netlink: 4 bytes leftover after parsing attributes in process `syz.2.766'.
[  255.173844][T10659] device ip6gretap0 entered promiscuous mode
[  255.183432][T10659] device syz_tun entered promiscuous mode
[  255.196230][T10659] hsr1: Slave A (ip6gretap0) is not up; please bring it up to get a fully working HSR network
[  255.231371][T10659] hsr1: Slave B (syz_tun) is not up; please bring it up to get a fully working HSR network
[  255.251222][ T1110] bond0 speed is unknown, defaulting to 1000
[  255.257404][T10654] siw: device registration error -19
[  256.179346][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  256.198249][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  256.299184][T10692] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0040 with DS=0x7
[  257.038881][ T4241] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  257.330038][ T4241] usb 5-1: Using ep0 maxpacket: 32
[  257.595119][T10717] IPv6: Can't replace route, no match found
[  257.776724][T10723] program syz.1.784 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  257.905858][T10726] netlink: 'syz.2.786': attribute type 10 has an invalid length.
[  257.925645][T10728] program syz.1.784 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  257.993612][T10726] team0: Port device dummy0 added
[  258.034462][T10727] netlink: 'syz.2.786': attribute type 10 has an invalid length.
[  258.061909][T10730] loop0: detected capacity change from 0 to 2048
[  258.204435][ T4241] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  258.214713][ T4241] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  258.260474][T10727] team0: Port device dummy0 removed
[  258.273439][T10727] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  258.283053][ T4227] usb 2-1: new full-speed USB device number 6 using dummy_hcd
[  258.318120][T10732] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  258.389045][ T4241] usb 5-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  258.398437][ T4241] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  258.447050][ T4241] usb 5-1: Product: syz
[  258.453804][ T4241] usb 5-1: Manufacturer: syz
[  258.458492][ T4241] usb 5-1: SerialNumber: syz
[  258.482359][ T4241] usb 5-1: config 0 descriptor??
[  258.889535][ T4227] usb 2-1: unable to get BOS descriptor or descriptor too short
[  259.000887][ T4227] usb 2-1: not running at top speed; connect to a high speed hub
[  259.232437][ T4227] usb 2-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config
[  259.335111][ T4227] usb 2-1: config 3 has 0 interfaces, different from the descriptor's value: 1
[  259.841230][T10746] af_packet: tpacket_rcv: packet too big, clamped from 56 to 4294967272. macoff=96
[  259.893624][ T1110] usb 5-1: USB disconnect, device number 7
[  259.999657][ T4227] usb 2-1: New USB device found, idVendor=04dd, idProduct=9031, bcdDevice=56.ea
[  260.012451][T10749] netlink: 'syz.3.792': attribute type 1 has an invalid length.
[  260.021563][ T4227] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  260.063809][ T4227] usb 2-1: Product: syz
[  260.068052][ T4227] usb 2-1: Manufacturer: syz
[  260.075052][ T4227] usb 2-1: SerialNumber: syz
[  260.182759][T10749] 8021q: adding VLAN 0 to HW filter on device bond3
[  260.268440][T10758] loop0: detected capacity change from 0 to 1024
[  260.370660][ T4227] usb 2-1: USB disconnect, device number 6
[  260.387966][T10758] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  260.508632][T10758] EXT4-fs (loop0): mounted filesystem without journal. Opts: auto_da_alloc,mblk_io_submit,,errors=continue. Quota mode: none.
[  260.591211][T10766] bond0 speed is unknown, defaulting to 1000
[  260.606742][T10766] bond0 speed is unknown, defaulting to 1000
[  260.655777][T10766] bond0 speed is unknown, defaulting to 1000
[  260.680193][T10767] netlink: 14 bytes leftover after parsing attributes in process `syz.3.795'.
[  260.965553][T10766] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  261.537318][T10767] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  261.719686][T10767] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  261.773370][T10767] bond0 (unregistering): (slave team0): Releasing backup interface
[  261.776770][T10766] siw: device registration error -19
[  261.814181][T10767] bond0 (unregistering): Released all slaves
[  263.102372][T10795] overlayfs: failed to clone upperpath
[  263.259482][T10799] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0040 with DS=0x7
[  263.261883][T10797] loop0: detected capacity change from 0 to 512
[  263.285340][T10805] loop1: detected capacity change from 0 to 256
[  263.296993][T10797] FAT-fs (loop0): Unrecognized mount option "uid=+1" or missing value
[  263.369421][T10805] exfat: Bad value for 'umask'
[  263.489856][T10809] netlink: 24 bytes leftover after parsing attributes in process `syz.0.813'.
[  263.657533][T10803] syz.2.808 (10803) used greatest stack depth: 18512 bytes left
[  264.664616][   T26] audit: type=1804 audit(3921234527.027:103): pid=10821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.815" name="bus" dev="ramfs" ino=40794 res=1 errno=0
[  264.767280][   T26] audit: type=1804 audit(3921234527.067:104): pid=10821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.815" name="bus" dev="ramfs" ino=40794 res=1 errno=0
[  265.822591][T10827] overlayfs: failed to clone upperpath
[  266.149169][T10834] bond0 speed is unknown, defaulting to 1000
[  266.325545][T10834] bond0 speed is unknown, defaulting to 1000
[  266.764219][T10834] bond0 speed is unknown, defaulting to 1000
[  266.796013][T10838] netlink: 14 bytes leftover after parsing attributes in process `syz.2.822'.
[  266.885393][T10834] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  266.964016][T10846] ip6_tunnel: non-ECT from fc00:0000:0000:0000:0000:0000:0000:0040 with DS=0x7
[  267.226663][T10838] bond1: (slave macvlan2): Releasing backup interface
[  268.162275][T10834] siw: device registration error -19
[  268.190133][T10838] bond0 (unregistering): (slave dummy0): Releasing backup interface
[  268.208663][T10838] bond0 (unregistering): Released all slaves
[  268.218404][T10841] netlink: 'syz.3.823': attribute type 10 has an invalid length.
[  268.230331][T10841] team0: Port device dummy0 added
[  268.235736][T10842] netlink: 'syz.3.823': attribute type 10 has an invalid length.
[  268.316068][T10842] team0: Port device dummy0 removed
[  269.064500][T10864] loop0: detected capacity change from 0 to 256
[  269.201007][T10864] exfat: Bad value for 'umask'
[  277.643373][T10866] netlink: 52 bytes leftover after parsing attributes in process `syz.1.830'.
[  277.681796][T10866] device bridge_slave_1 left promiscuous mode
[  277.714756][T10866] bridge0: port 2(bridge_slave_1) entered disabled state
[  277.959271][T10866] device bridge_slave_0 left promiscuous mode
[  277.965775][T10866] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.998383][T10893] netlink: 16 bytes leftover after parsing attributes in process `syz.2.837'.
[  279.877437][T10876] bridge0: port 3(syz_tun) entered blocking state
[  279.888952][T10876] bridge0: port 3(syz_tun) entered disabled state
[  279.904066][T10876] device syz_tun entered promiscuous mode
[  279.914712][T10880] bridge0: port 3(syz_tun) entered blocking state
[  279.921302][T10880] bridge0: port 3(syz_tun) entered listening state
[  279.927961][T10880] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.935092][T10880] bridge0: port 2(bridge_slave_1) entered listening state
[  279.942470][T10880] bridge0: port 1(bridge_slave_0) entered blocking state
[  279.949635][T10880] bridge0: port 1(bridge_slave_0) entered listening state
[  279.968248][T10880] device bridge0 entered promiscuous mode
[  279.975999][T10886] netlink: 12 bytes leftover after parsing attributes in process `syz.3.836'.
[  283.460135][T10933] netlink: 52 bytes leftover after parsing attributes in process `syz.0.849'.
[  283.549268][T10936] netlink: 76 bytes leftover after parsing attributes in process `syz.0.849'.
[  283.570338][T10936] netlink: 52 bytes leftover after parsing attributes in process `syz.0.849'.
[  283.893274][   T26] audit: type=1804 audit(3921234546.257:105): pid=10943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.853" name="file0" dev="hugetlbfs" ino=41509 res=1 errno=0
[  283.950627][   T26] audit: type=1804 audit(3921234546.297:106): pid=10943 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.853" name="file0" dev="hugetlbfs" ino=41509 res=1 errno=0
[  284.144906][T10949] netlink: 8 bytes leftover after parsing attributes in process `syz.1.855'.
[  285.553684][T10967] hub 8-0:1.0: USB hub found
[  285.561123][T10967] hub 8-0:1.0: 1 port detected
[  287.208287][T10983] VFS: Mount too revealing
[  290.247996][T11004] netlink: 12 bytes leftover after parsing attributes in process `syz.1.873'.
[  290.305550][T11007] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'.
[  290.333800][T11004] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'.
[  290.405783][T11007] netlink: 4 bytes leftover after parsing attributes in process `syz.1.873'.
[  290.679334][T11013] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[  293.778815][T11041] netlink: 'syz.4.884': attribute type 7 has an invalid length.
[  294.382152][T11045] device ipip0 entered promiscuous mode
[  294.541483][T11049] netlink: 4 bytes leftover after parsing attributes in process `syz.3.887'.
[  294.582874][T11049] (unnamed net_device) (uninitialized): Invalid ad_actor_system MAC address.
[  294.605348][T11053] loop4: detected capacity change from 0 to 512
[  294.627273][T11049] (unnamed net_device) (uninitialized): option ad_actor_system: invalid value (68719607821)
[  294.716325][T11053] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.889: Invalid inode bitmap blk 4 in block_group 0
[  294.776181][T11053] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,resuid=0x0000000000000000,grpquota,noload,nobarrier,usrquota,,errors=continue. Quota mode: writeback.
[  294.908930][T11061] netlink: 8 bytes leftover after parsing attributes in process `syz.2.891'.
[  295.380185][    C1] bridge0: port 1(bridge_slave_0) entered learning state
[  295.387815][    C1] bridge0: port 2(bridge_slave_1) entered learning state
[  295.395076][    C1] bridge0: port 3(syz_tun) entered learning state
[  296.180762][T11074] netlink: 28 bytes leftover after parsing attributes in process `syz.0.895'.
[  297.618824][T11057] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 13: invalid block bitmap
[  298.377375][T11108] loop0: detected capacity change from 0 to 512
[  299.480396][T11108] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  299.571655][T11108] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  299.646628][T11108] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ee02c, mo2=0002]
[  299.862809][T11108] System zones: 1-12
[  300.027735][T11108] EXT4-fs (loop0): orphan cleanup on readonly fs
[  300.261290][T11108] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.900: invalid indirect mapped block 2 (level 2)
[  300.968810][T11108] EXT4-fs (loop0): Remounting filesystem read-only
[  300.976488][T11108] EXT4-fs (loop0): 1 truncate cleaned up
[  301.092998][T11108] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,max_batch_time=0x0000000000000006,usrquota,errors=remount-ro,i_version. Quota mode: writeback.
[  303.294773][T11167] device bridge0 entered promiscuous mode
[  306.045560][    C1] dccp_v4_rcv: dropped packet with invalid checksum
[  309.764439][T11219] netlink: 12 bytes leftover after parsing attributes in process `syz.4.928'.
[  309.817188][T11219] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  309.826006][T11219] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  309.834920][T11219] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  309.843729][T11219] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  309.919634][   T26] audit: type=1800 audit(3921234572.277:107): pid=11214 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.927" name="bus" dev="ramfs" ino=41883 res=0 errno=0
[  310.000904][T11223] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  310.096105][T11223] team0: Port device team_slave_0 removed
[  310.139348][T11223] team0: Port device team_slave_1 removed
[  310.151235][T11223] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  310.166853][T11223] batman_adv: batadv0: Removing interface: batadv_slave_0
[  310.177007][T11223] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  310.193115][T11223] batman_adv: batadv0: Removing interface: batadv_slave_1
[  310.233551][T11219] netlink: 12 bytes leftover after parsing attributes in process `syz.4.928'.
[  310.251261][T11225] tap0: tun_chr_ioctl cmd 2148553947
[  310.492982][T11243] 8021q: adding VLAN 0 to HW filter on device bond0
[  310.544727][T11243] bond0 speed is unknown, defaulting to 1000
[  310.571083][T11243] bond0 speed is unknown, defaulting to 1000
[  310.577797][T11243] bond0 speed is unknown, defaulting to 1000
[  310.739212][    C1] bridge0: port 3(syz_tun) entered forwarding state
[  310.746005][    C1] bridge0: topology change detected, propagating
[  310.753304][    C1] bridge0: port 2(bridge_slave_1) entered forwarding state
[  310.760573][    C1] bridge0: topology change detected, propagating
[  310.767068][    C1] bridge0: port 1(bridge_slave_0) entered forwarding state
[  310.774310][    C1] bridge0: topology change detected, propagating
[  310.803646][ T4241] bond0 speed is unknown, defaulting to 1000
[  310.813371][T11243] infiniband syz0: set down
[  310.833612][T11243] infiniband syz0: added bond0
[  310.912463][  T154] infiniband syz0: set down
[  310.926148][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  310.949455][ T4241] bond0 speed is unknown, defaulting to 1000
[  311.632313][T11243] RDS/IB: syz0: added
[  311.676039][T11243] smc: adding ib device syz0 with port count 1
[  311.708184][T11243] smc:    ib device syz0 port 1 has pnetid 
[  311.737323][ T4241] bond0 speed is unknown, defaulting to 1000
[  311.750087][T11243] bond0 speed is unknown, defaulting to 1000
[  311.809878][T11267] loop1: detected capacity change from 0 to 22
[  311.856167][   T26] audit: type=1804 audit(3921234574.217:108): pid=11269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.944" name="bus" dev="ramfs" ino=43041 res=1 errno=0
[  311.870849][T11267] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  311.915118][   T26] audit: type=1804 audit(3921234574.257:109): pid=11269 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.944" name="bus" dev="ramfs" ino=43041 res=1 errno=0
[  312.021318][T11267] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  312.124347][T11243] bond0 speed is unknown, defaulting to 1000
[  312.629731][T11279] loop0: detected capacity change from 0 to 256
[  313.619060][T11279] vfat filesystem being mounted at /173/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  313.795952][T11243] bond0 speed is unknown, defaulting to 1000
[  314.054027][T11285] netlink: 8 bytes leftover after parsing attributes in process `syz.0.949'.
[  314.237780][T11243] bond0 speed is unknown, defaulting to 1000
[  314.445206][T11295] device syzkaller0 entered promiscuous mode
[  315.386414][T11283] loop1: detected capacity change from 0 to 40427
[  316.715282][T11321] netlink: 48 bytes leftover after parsing attributes in process `syz.1.962'.
[  317.485202][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  317.491719][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  319.766897][T11243] bond0 speed is unknown, defaulting to 1000
[  319.773490][T11311] netlink: 4 bytes leftover after parsing attributes in process `syz.3.958'.
[  321.726125][T11372] netdevsim netdevsim0: loading /lib/firmware/. failed with error -22
[  321.735584][T11372] netdevsim netdevsim0: Direct firmware load for . failed with error -22
[  321.744944][T11372] netdevsim netdevsim0: Falling back to sysfs fallback for: .
[  325.057134][T11393] loop1: detected capacity change from 0 to 4096
[  327.298035][T11435] device gretap0 entered promiscuous mode
[  327.327275][T11435] device vlan2 entered promiscuous mode
[  328.452531][T11443] overlayfs: failed to get inode (-116)
[  328.488880][T11443] overlayfs: failed to get inode (-116)
[  328.828257][T11450] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  328.835596][T11450] IPv6: NLM_F_CREATE should be set when creating new route
[  334.035877][T11489] 9p filesystem being mounted at /240/file0 supports timestamps until 2106-02-07 (0xffffffff)
[  334.215331][   T26] audit: type=1804 audit(3921234596.578:110): pid=11498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1014" name="bus" dev="ramfs" ino=43353 res=1 errno=0
[  334.267381][   T26] audit: type=1804 audit(3921234596.608:111): pid=11498 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.1014" name="bus" dev="ramfs" ino=43353 res=1 errno=0
[  334.579136][T11460] bridge0: port 3(syz_tun) entered disabled state
[  335.290744][T11460] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.298017][T11460] bridge0: port 1(bridge_slave_0) entered disabled state
[  337.749891][T11542] O§Xà€
[  339.339016][   T26] audit: type=1804 audit(3921234601.618:112): pid=11564 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1033" name="bus" dev="ramfs" ino=42612 res=1 errno=0
[  339.489584][   T26] audit: type=1804 audit(3921234601.638:113): pid=11564 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1033" name="bus" dev="ramfs" ino=42612 res=1 errno=0
[  339.873430][T11460] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  340.661063][T11460] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  341.975863][T11460] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  341.987196][T11460] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  342.003993][T11460] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  342.015510][T11460] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  342.254817][T11460] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  342.264044][T11460] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  342.273155][T11460] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  342.282355][T11460] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  342.310471][T11460] rdma_rxe: ignoring netdev event = 10 for bond0
[  342.335859][T11460] infiniband syz0: set down
[  342.527782][T11571] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1035'.
[  342.614492][T11572] netlink: 76 bytes leftover after parsing attributes in process `syz.3.1035'.
[  342.665174][T11572] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1035'.
[  342.756435][ T4230] bond0 speed is unknown, defaulting to 1000
[  343.998776][T11619] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1048'.
[  349.903028][T11672] vhci_hcd vhci_hcd.0: pdev(4) rhport(0) sockfd(5)
[  349.910119][T11672] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  349.920505][T11672] vhci_hcd vhci_hcd.0: Device attached
[  350.036841][T11670] IPVS: ovf: FWM 3 0x00000003 - no destination available
[  350.199406][ T4230] usb 41-1: new low-speed USB device number 2 using vhci_hcd
[  350.712473][T11673] vhci_hcd: connection reset by peer
[  350.770757][ T4396] vhci_hcd: stop threads
[  350.786205][ T4396] vhci_hcd: release socket
[  350.905220][ T4396] vhci_hcd: disconnect device
[  351.321130][T11680] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1062'.
[  351.396922][   T26] audit: type=1326 audit(3921234613.758:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.661908][   T26] audit: type=1326 audit(3921234613.758:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.687009][   T26] audit: type=1326 audit(3921234613.758:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.764987][   T26] audit: type=1326 audit(3921234613.758:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.790762][   T26] audit: type=1326 audit(3921234613.758:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.801048][T11685] netlink: 798 bytes leftover after parsing attributes in process `syz.1.1067'.
[  351.841844][   T26] audit: type=1326 audit(3921234613.758:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.895431][   T26] audit: type=1326 audit(3921234613.758:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.920246][   T26] audit: type=1326 audit(3921234613.758:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  351.975146][   T26] audit: type=1326 audit(3921234613.758:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  352.006944][   T26] audit: type=1326 audit(3921234613.758:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11686 comm="syz.0.1064" exe="/root/syz-executor" sig=0 arch=c000003e syscall=223 compat=0 ip=0x7fcd5870f799 code=0x7ffc0000
[  353.628983][T11716] netlink: 'syz.0.1074': attribute type 4 has an invalid length.
[  355.509313][ T4230] vhci_hcd: vhci_device speed not set
[  356.617432][T11761] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  356.783374][T11757] bond0 speed is unknown, defaulting to 1000
[  356.792651][T11762] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1091'.
[  356.840733][T11762] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  356.850140][T11762] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  356.859688][T11762] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  356.868433][T11762] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  356.906347][T11769] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1092'.
[  357.058326][T11786] overlayfs: failed to clone upperpath
[  358.742608][ T4230] Bluetooth: hci1: command 0x0409 tx timeout
[  360.045290][T11799] loop0: detected capacity change from 0 to 512
[  360.291299][T11799] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  360.911523][ T4230] Bluetooth: hci1: command 0x041b tx timeout
[  360.935359][T11799] vfat filesystem being mounted at /206/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  361.202533][T11757] chnl_net:caif_netlink_parms(): no params data found
[  361.282426][T11799] loop_set_status: loop0 () has still dirty pages (nrpages=1)
[  361.297012][T11757] bridge0: port 1(bridge_slave_0) entered blocking state
[  361.323313][T11757] bridge0: port 1(bridge_slave_0) entered disabled state
[  361.355892][T11757] device bridge_slave_0 entered promiscuous mode
[  361.384534][T11757] bridge0: port 2(bridge_slave_1) entered blocking state
[  361.392853][T11757] bridge0: port 2(bridge_slave_1) entered disabled state
[  361.402008][T11757] device bridge_slave_1 entered promiscuous mode
[  361.436929][T11757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  361.462053][T11757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  361.505155][ T4183] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[  361.526863][ T4183] FAT-fs (loop0): error, fat_get_cluster: invalid start cluster (i_pos 0, start 22000003)
[  361.551740][T11757] team0: Port device team_slave_0 added
[  361.591681][T11825] netdevsim netdevsim3 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  361.601429][T11825] netdevsim netdevsim3 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  361.611022][T11825] netdevsim netdevsim3 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  361.620562][T11825] netdevsim netdevsim3 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  362.612088][T11757] team0: Port device team_slave_1 added
[  362.618135][T11827] netlink: 'syz.4.1108': attribute type 1 has an invalid length.
[  362.937802][T11757] batman_adv: batadv0: Adding interface: batadv_slave_0
[  362.945505][T11757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  363.042501][T11757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  363.360703][ T4230] Bluetooth: hci1: command 0x040f tx timeout
[  363.469408][T11757] batman_adv: batadv0: Adding interface: batadv_slave_1
[  363.528216][T11757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  363.571615][T11757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  363.613841][T11757] device hsr_slave_0 entered promiscuous mode
[  363.621245][T11757] device hsr_slave_1 entered promiscuous mode
[  363.628033][T11757] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  363.676935][T11757] Cannot create hsr debugfs directory
[  363.844715][ T4651] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  363.907806][ T4651] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.114992][ T4651] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  364.219326][ T4651] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.473388][ T4651] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  364.487162][T11867] Invalid option length (57448) for dns_resolver key
[  364.750426][ T4651] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.156086][T11865] bond0 speed is unknown, defaulting to 1000
[  365.249928][ T4651] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  365.280828][ T4651] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.379394][ T4554] Bluetooth: hci1: command 0x0419 tx timeout
[  365.829304][T11757] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  365.875335][T11757] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  365.902446][T11757] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  366.036149][T11757] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  366.094068][T11865] chnl_net:caif_netlink_parms(): no params data found
[  366.377716][T11865] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.386074][T11865] bridge0: port 1(bridge_slave_0) entered disabled state
[  366.395868][T11865] device bridge_slave_0 entered promiscuous mode
[  366.418805][ T4224] Bluetooth: hci0: command 0x0409 tx timeout
[  366.428508][T11865] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.436864][T11865] bridge0: port 2(bridge_slave_1) entered disabled state
[  366.446548][T11865] device bridge_slave_1 entered promiscuous mode
[  366.483666][T11865] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.495881][T11757] 8021q: adding VLAN 0 to HW filter on device bond0
[  366.513636][T11865] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.537766][T11757] 8021q: adding VLAN 0 to HW filter on device team0
[  366.547994][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  366.556920][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  366.604311][T11865] team0: Port device team_slave_0 added
[  366.619045][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  366.628013][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  366.645801][ T5919] bridge0: port 1(bridge_slave_0) entered blocking state
[  366.653058][ T5919] bridge0: port 1(bridge_slave_0) entered forwarding state
[  366.675752][T11865] team0: Port device team_slave_1 added
[  366.713205][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  366.722816][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  366.733352][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  366.745311][ T5919] bridge0: port 2(bridge_slave_1) entered blocking state
[  366.752473][ T5919] bridge0: port 2(bridge_slave_1) entered forwarding state
[  366.770318][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  366.804856][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  366.835989][T11865] batman_adv: batadv0: Adding interface: batadv_slave_0
[  366.844417][T11865] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.874158][T11865] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  366.898610][T11865] batman_adv: batadv0: Adding interface: batadv_slave_1
[  366.917364][T11865] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.953809][T11865] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  366.975417][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  366.987167][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  367.075925][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  367.084758][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  367.094477][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  367.104370][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  367.113481][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  367.166745][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  367.176478][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  367.186870][T11757] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  367.209543][T11865] device hsr_slave_0 entered promiscuous mode
[  367.216508][T11865] device hsr_slave_1 entered promiscuous mode
[  367.224364][T11865] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  367.233008][T11865] Cannot create hsr debugfs directory
[  367.477115][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  367.493884][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  367.513877][T11757] 8021q: adding VLAN 0 to HW filter on device batadv0
[  367.595653][T11865] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  367.632805][T11865] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  367.662405][T11865] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  367.701095][T11865] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  367.816997][ T4651] device hsr_slave_0 left promiscuous mode
[  367.834897][ T4651] device hsr_slave_1 left promiscuous mode
[  367.853868][ T4651] device veth1_macvtap left promiscuous mode
[  367.870796][ T4651] device veth0_macvtap left promiscuous mode
[  367.876909][ T4651] device veth1_vlan left promiscuous mode
[  367.884632][ T4651] device veth0_vlan left promiscuous mode
[  368.328859][T11865] 8021q: adding VLAN 0 to HW filter on device bond0
[  368.355895][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  368.370616][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  368.404406][T11865] 8021q: adding VLAN 0 to HW filter on device team0
[  368.437274][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  368.457381][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  368.468569][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  368.479803][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  368.489535][ T5914] bridge0: port 1(bridge_slave_0) entered blocking state
[  368.496670][ T5914] bridge0: port 1(bridge_slave_0) entered forwarding state
[  368.506410][ T4554] Bluetooth: hci0: command 0x041b tx timeout
[  368.521774][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  368.559036][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  368.569775][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  368.578513][ T5919] bridge0: port 2(bridge_slave_1) entered blocking state
[  368.585675][ T5919] bridge0: port 2(bridge_slave_1) entered forwarding state
[  368.597986][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  368.624913][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  368.638024][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  368.657563][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  368.667688][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  368.676432][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  368.690590][T11757] device veth0_vlan entered promiscuous mode
[  368.702747][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  368.720987][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  368.742668][T11757] device veth1_vlan entered promiscuous mode
[  368.766552][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  368.777286][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  368.814013][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  368.825039][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  368.834503][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  368.843782][ T5914] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  368.857914][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  368.867349][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  368.880811][T11865] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  368.928104][T11757] device veth0_macvtap entered promiscuous mode
[  368.945455][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  368.964861][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  368.977650][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  368.997853][ T4396] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  369.020622][T11757] device veth1_macvtap entered promiscuous mode
[  369.077016][T11757] batman_adv: batadv0: Interface activated: batadv_slave_0
[  369.089332][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  369.101979][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  369.111912][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  369.127293][T11757] batman_adv: batadv0: Interface activated: batadv_slave_1
[  369.148402][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  369.167765][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  369.207110][T11757] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  369.229659][T11757] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  369.238424][T11757] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  369.269420][T11757] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  369.380123][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  369.387665][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  369.424399][T11865] 8021q: adding VLAN 0 to HW filter on device batadv0
[  369.437119][ T5914] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  369.468691][ T5914] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  369.499459][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  369.539564][ T5919] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  369.547445][ T5919] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  369.579001][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  370.984767][ T4230] Bluetooth: hci0: command 0x040f tx timeout
[  371.640129][T11865] device veth0_vlan entered promiscuous mode
[  371.653623][T11865] device veth1_vlan entered promiscuous mode
[  371.663615][T12008] netlink: 'syz.2.1128': attribute type 1 has an invalid length.
[  373.059359][ T4230] Bluetooth: hci0: command 0x0419 tx timeout
[  373.083635][T12010] bond0: (slave veth3): Enslaving as an active interface with a down link
[  373.112182][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  373.130041][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  373.150150][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  373.161870][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  373.188130][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  373.230096][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  373.239920][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  373.268435][T12014] bond0: (slave dummy0): making interface the new active one
[  373.290443][T12014] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  373.368873][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  373.390948][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  373.432316][T11865] device veth0_macvtap entered promiscuous mode
[  373.470194][T11865] device veth1_macvtap entered promiscuous mode
[  374.222503][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  374.369575][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  374.471764][T11865] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  374.482975][T11865] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.510770][T11865] batman_adv: batadv0: Interface activated: batadv_slave_0
[  374.519733][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  374.545296][ T5919] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  374.573634][T11865] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  374.632682][T11865] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  374.686324][T11865] batman_adv: batadv0: Interface activated: batadv_slave_1
[  374.705497][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  374.724744][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  374.775783][T11865] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  374.795868][T11865] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  374.827318][T11865] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  374.846456][T11865] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  375.081104][ T4401] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  375.104778][ T4401] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  375.145866][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  375.214329][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  375.229453][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  375.265519][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  376.930298][T12085] netlink: 24 bytes leftover after parsing attributes in process `syz.5.1148'.
[  377.828173][T12102] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1148'.
[  377.967371][T12102] device wg1 entered promiscuous mode
[  378.904678][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  378.911066][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  382.024823][T12169] loop6: detected capacity change from 0 to 128
[  382.949768][T12169] FAT-fs (loop6): Unrecognized mount option "18446744073709551615ÿÿÿ" or missing value
[  384.816879][T12191] loop6: detected capacity change from 0 to 2048
[  384.856856][T12191] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  396.737261][T12293] device syzkaller0 entered promiscuous mode
[  400.187161][T12325] netlink: 168 bytes leftover after parsing attributes in process `syz.4.1213'.
[  402.650228][T12346] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1216'.
[  402.761872][T12346] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1216'.
[  402.929733][   T26] kauditd_printk_skb: 115 callbacks suppressed
[  402.929918][   T26] audit: type=1107 audit(3921234665.268:239): pid=12352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa
[  403.277319][T12364] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1221'.
[  403.749986][T12369] netlink: 'syz.3.1223': attribute type 1 has an invalid length.
[  405.965678][T12378] bond0: (slave vxcan1): The slave device specified does not support setting the MAC address
[  406.041956][T12378] bond0: (slave vxcan1): Error -22 calling dev_set_mtu
[  406.146694][T12369] bond0: (slave gretap1): making interface the new active one
[  406.176275][T12369] bond0: (slave gretap1): Enslaving as an active interface with an up link
[  406.243212][T12397] loop6: detected capacity change from 0 to 64
[  406.260443][T12398] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  406.269256][T12398] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  406.278346][T12398] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  406.287260][T12398] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  406.301431][T12398] netdevsim netdevsim4 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  406.310557][T12398] netdevsim netdevsim4 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  406.319470][T12398] netdevsim netdevsim4 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  406.328461][T12398] netdevsim netdevsim4 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  409.355547][T12438] netlink: 28 bytes leftover after parsing attributes in process `syz.3.1241'.
[  409.370909][T12441] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1242'.
[  409.432908][T12441] device team1 entered promiscuous mode
[  409.466249][T12439] device syzkaller0 entered promiscuous mode
[  409.483536][T12441] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1242'.
[  409.504093][T12441] team2 (uninitialized): Failed to send options change via netlink (err -105)
[  409.660403][T12441] device team2 entered promiscuous mode
[  412.079466][T12476] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1251'.
[  412.202524][T12476] device hsr_slave_0 left promiscuous mode
[  416.829531][ T4226] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  417.546633][ T4226] usb 6-1: Using ep0 maxpacket: 16
[  417.839453][ T4226] usb 6-1: New USB device found, idVendor=06be, idProduct=a232, bcdDevice=33.f3
[  417.870848][ T4226] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  417.926789][ T4226] usb 6-1: Product: syz
[  417.950047][ T4226] usb 6-1: Manufacturer: syz
[  417.954703][ T4226] usb 6-1: SerialNumber: syz
[  418.030821][ T4226] usb 6-1: config 0 descriptor??
[  418.174598][T12553] device bridge1 entered promiscuous mode
[  418.224901][T12553] team0: Port device bridge1 added
[  418.271517][T12556] bridge0: port 3(team0) entered blocking state
[  418.337287][T12556] bridge0: port 3(team0) entered disabled state
[  418.383405][T12556] device team0 entered promiscuous mode
[  418.399334][T12556] device team_slave_0 entered promiscuous mode
[  418.425140][T12556] device team_slave_1 entered promiscuous mode
[  418.472887][T12556] bridge0: port 3(team0) entered blocking state
[  418.479669][T12556] bridge0: port 3(team0) entered forwarding state
[  418.509641][ T4226] dvb-usb: found a 'AME DTV-5100 USB2.0 DVB-T' in warm state.
[  418.545481][ T4226] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  418.589457][ T4226] dvbdev: DVB: registering new adapter (AME DTV-5100 USB2.0 DVB-T)
[  418.597436][ T4226] usb 6-1: media controller created
[  418.652699][ T4226] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  419.551425][T12569] gfs2: gfs2 mount does not exist
[  420.559434][ T4226] zl10353_read_register: readreg error (reg=127, ret==0)
[  420.566559][ T4226] dvb-usb: no frontend was attached by 'AME DTV-5100 USB2.0 DVB-T'
[  420.619579][ T4226] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully initialized and connected.
[  420.639327][ T4226] usb 6-1: USB disconnect, device number 2
[  421.116429][ T4226] dvb-usb: AME DTV-5100 USB2.0 DVB-T successfully deinitialized and disconnected.
[  421.185308][T12592] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1280'.
[  424.020199][ T1110] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  425.072900][ T4226] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  426.807524][ T4226] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  426.909278][   T13] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  427.861714][ T4226] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  428.995563][    T7] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  429.050134][ T4241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  429.132940][ T4226] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  430.179982][ T1110] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  430.283759][T12713] IPv6: NLM_F_CREATE should be specified when creating new route
[  430.524154][T12719] loop6: detected capacity change from 0 to 8192
[  430.692479][T12719] vfat filesystem being mounted at /34/file2 supports timestamps until 2107-12-31 (0x10391447e)
[  431.479269][ T1110] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  431.651761][   T26] audit: type=1326 audit(2000000000.130:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12728 comm="syz.4.1316" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fb3a6bb2799 code=0x0
[  431.680383][T12735] tipc: Failed to remove unknown binding: 66,0,0/0:898437597/898437599
[  431.734947][T12729] tipc: Failed to remove unknown binding: 66,0,0/0:3711080122/3711080123
[  431.848727][T12729] tipc: Failed to remove unknown binding: 66,0,0/0:3711080122/3711080123
[  432.051004][T12744] trusted_key: encrypted_key: master key parameter 'šÙ|™{E' is invalid
[  432.339303][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.726413][ T4241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.740358][ T4226] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  432.769594][T12740] netlink: 'syz.6.1317': attribute type 10 has an invalid length.
[  433.779537][ T4230] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.019220][T12757] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  434.964693][ T1110] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  436.202067][ T4241] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  436.236311][ T1110] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  436.439757][T12780] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  436.684043][T12780] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  436.693839][    C1] GRED: Unable to relocate VQ 0x0 after dequeue, screwing up backlog
[  437.788107][T12784] gretap0: refused to change device tx_queue_len
[  437.798751][T12784] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[  438.169693][ T4401] IPv6: ADDRCONF(NETDEV_CHANGE): syzkaller0: link becomes ready
[  438.192559][T12811] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  439.491060][T12836] netlink: zone id is out of range
[  439.761053][T12836] netlink: zone id is out of range
[  439.924309][T12836] netlink: zone id is out of range
[  439.990823][T12836] netlink: zone id is out of range
[  440.492319][ T1421] ieee802154 phy0 wpan0: encryption failed: -22
[  440.499971][ T1421] ieee802154 phy1 wpan1: encryption failed: -22
[  440.540509][T12836] netlink: zone id is out of range
[  440.545843][T12836] netlink: zone id is out of range
[  440.562370][T12842] 9pnet: Insufficient options for proto=fd
[  440.640812][T12836] netlink: zone id is out of range
[  440.680537][T12836] netlink: zone id is out of range
[  440.707457][T12836] netlink: zone id is out of range
[  440.757121][T12836] netlink: zone id is out of range
[  440.781970][T12836] netlink: zone id is out of range
[  440.826298][T12836] netlink: zone id is out of range
[  440.847942][T12836] netlink: zone id is out of range
[  440.889452][T12854] netlink: 12 bytes leftover after parsing attributes in process `syz.6.1340'.
[  440.947721][T12865] netlink: 32 bytes leftover after parsing attributes in process `syz.2.1345'.
[  445.633457][    C0] vcan0: j1939_tp_rxtimer: 0xffff888061012800: rx timeout, send abort
[  446.765987][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807d100400: rx timeout, send abort
[  446.774309][    C0] vcan0: j1939_tp_rxtimer: 0xffff888061012800: abort rx timeout. Force session deactivation
[  447.274319][    C0] vcan0: j1939_tp_rxtimer: 0xffff88807d100400: abort rx timeout. Force session deactivation
[  448.462625][   T26] audit: type=1800 audit(2000000016.940:241): pid=12953 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.1368" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0
[  449.916232][T12978] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1375'.
[  450.911633][T12978] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1375'.
[  451.081922][T12982] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1376'.
[  453.985152][T13046] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1394'.
[  455.339056][T13081] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1404'.
[  455.584877][T13081] netlink: 14 bytes leftover after parsing attributes in process `syz.2.1404'.
[  456.089705][T13090] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  456.089705][T13090] The task syz.3.1399 (13090) triggered the difference, watch for misbehavior.
[  460.937285][T13155] loop6: detected capacity change from 0 to 256
[  469.888269][T13251] device ip6gre1 entered promiscuous mode
[  472.905941][T13282] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1458'.
[  472.929470][T13281] sctp: [Deprecated]: syz.4.1463 (pid 13281) Use of struct sctp_assoc_value in delayed_ack socket option.
[  472.929470][T13281] Use struct sctp_sack_info instead
[  475.681523][T13311] ------------[ cut here ]------------
[  475.687657][T13311] wlan0: Failed check-sdata-in-driver check, flags: 0x4
[  475.804156][T13311] WARNING: CPU: 1 PID: 13311 at net/mac80211/driver-ops.h:172 ieee80211_bss_info_change_notify+0x37b/0x550
[  476.569905][T13311] Modules linked in:
[  476.573912][T13311] CPU: 0 PID: 13311 Comm: syz.4.1468 Not tainted syzkaller #0
[  476.600440][T13311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  476.648715][T13311] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  476.687764][T13311] Code: 39 7e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 20 20 39 8b 4c 89 e6 89 ea e8 05 86 71 00 <0f> 0b e9 07 fd ff ff e8 a9 2d 39 f8 0f 0b e9 b1 fe ff ff e8 9d 2d
[  476.788319][T13311] RSP: 0018:ffffc9000359f3a0 EFLAGS: 00010246
[  476.802963][T13311] RAX: d2941bb027587200 RBX: 0000000002000000 RCX: 0000000000080000
[  476.817920][T13311] RDX: ffffc900058a9000 RSI: 00000000000039a7 RDI: 00000000000039a8
[  476.834326][T13311] RBP: 0000000000000004 R08: ffff8880b9133d7f R09: 1ffff110172267af
[  476.848214][T13311] R10: dffffc0000000000 R11: ffffed10172267b0 R12: ffff888023f8c000
[  476.862177][T13311] R13: ffff888023f8d290 R14: ffff888075488e40 R15: ffff888023f8e268
[  476.875964][T13311] FS:  00007fb3a4e0c6c0(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  476.891975][T13311] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  476.904429][T13311] CR2: 0000557e92da9cd8 CR3: 00000000258d1000 CR4: 00000000003506f0
[  476.918301][T13311] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  476.933650][T13311] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  476.946250][T13311] Call Trace:
[  476.957280][T13311]  <TASK>
[  476.963009][T13311]  ieee80211_set_mcast_rate+0x3b/0x50
[  476.968628][T13311]  ? ieee80211_leave_ibss+0x20/0x20
[  476.973909][T13311]  nl80211_set_mcast_rate+0x346/0x530
[  476.993404][T13311]  ? nl80211_nan_change_config+0x6b0/0x6b0
[  477.010392][T13311]  genl_rcv_msg+0xcea/0xf90
[  477.015108][T13311]  ? genl_bind+0x380/0x380
[  477.028011][T13311]  ? verify_lock_unused+0x140/0x140
[  477.034565][T13311]  ? verify_lock_unused+0x140/0x140
[  477.042255][T13311]  ? nl80211_nan_change_config+0x6b0/0x6b0
[  477.048149][T13311]  netlink_rcv_skb+0x1f5/0x440
[  477.053623][T13311]  ? genl_bind+0x380/0x380
[  477.058093][T13311]  ? netlink_ack+0xb50/0xb50
[  477.063375][T13311]  ? __lock_acquire+0x7d10/0x7d10
[  477.068475][T13311]  ? down_read+0x1aa/0x2e0
[  477.073567][T13311]  genl_rcv+0x24/0x40
[  477.077595][T13311]  netlink_unicast+0x774/0x920
[  477.083053][T13311]  netlink_sendmsg+0x8ba/0xbe0
[  477.087895][T13311]  ? netlink_getsockopt+0x570/0x570
[  477.093705][T13311]  ? aa_sock_msg_perm+0x94/0x150
[  477.099221][T13311]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  477.104557][T13311]  ? security_socket_sendmsg+0x7c/0xa0
[  477.119142][T13311]  ? netlink_getsockopt+0x570/0x570
[  477.124526][T13311]  ____sys_sendmsg+0x5b7/0x8f0
[  477.130037][T13311]  ? __sys_sendmsg_sock+0x30/0x30
[  477.139260][T13311]  ? import_iovec+0x6f/0xa0
[  477.143921][T13311]  ___sys_sendmsg+0x236/0x2e0
[  477.158596][T13311]  ? __sys_sendmsg+0x2a0/0x2a0
[  477.163483][T13311]  __se_sys_sendmsg+0x1af/0x290
[  477.168489][T13311]  ? __x64_sys_sendmsg+0x80/0x80
[  477.173895][T13311]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  477.189209][T13311]  ? lockdep_hardirqs_on+0x94/0x140
[  477.194469][T13311]  do_syscall_64+0x4c/0xa0
[  477.199687][T13311]  ? clear_bhb_loop+0x30/0x80
[  477.204419][T13311]  ? clear_bhb_loop+0x30/0x80
[  477.219192][T13311]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  477.225147][T13311] RIP: 0033:0x7fb3a6bb2799
[  477.230405][T13311] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  477.260378][T13311] RSP: 002b:00007fb3a4e0c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  477.270739][T13311] RAX: ffffffffffffffda RBX: 00007fb3a6e2bfa0 RCX: 00007fb3a6bb2799
[  477.289092][T13311] RDX: 000000000000c800 RSI: 00002000000007c0 RDI: 0000000000000005
[  477.297141][T13311] RBP: 00007fb3a6c48c99 R08: 0000000000000000 R09: 0000000000000000
[  477.306007][T13311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  477.319172][T13311] R13: 00007fb3a6e2c038 R14: 00007fb3a6e2bfa0 R15: 00007ffe608bdf78
[  477.327223][T13311]  </TASK>
[  477.339839][T13311] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  477.347167][T13311] CPU: 1 PID: 13311 Comm: syz.4.1468 Not tainted syzkaller #0
[  477.354679][T13311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  477.364786][T13311] Call Trace:
[  477.368090][T13311]  <TASK>
[  477.371043][T13311]  dump_stack_lvl+0x188/0x250
[  477.375751][T13311]  ? show_regs_print_info+0x20/0x20
[  477.381018][T13311]  ? load_image+0x400/0x400
[  477.385588][T13311]  panic+0x2e5/0x810
[  477.389719][T13311]  ? bpf_jit_dump+0xd0/0xd0
[  477.394274][T13311]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  477.400727][T13311]  __warn+0x248/0x2b0
[  477.404749][T13311]  ? ieee80211_bss_info_change_notify+0x37b/0x550
[  477.411201][T13311]  report_bug+0x1b7/0x2e0
[  477.415576][T13311]  handle_bug+0x3a/0x70
[  477.419781][T13311]  exc_invalid_op+0x16/0x40
[  477.424333][T13311]  asm_exc_invalid_op+0x16/0x20
[  477.429218][T13311] RIP: 0010:ieee80211_bss_info_change_notify+0x37b/0x550
[  477.436392][T13311] Code: 39 7e f8 49 8b 84 24 00 06 00 00 49 81 c4 20 06 00 00 48 85 c0 4c 0f 45 e0 48 c7 c7 20 20 39 8b 4c 89 e6 89 ea e8 05 86 71 00 <0f> 0b e9 07 fd ff ff e8 a9 2d 39 f8 0f 0b e9 b1 fe ff ff e8 9d 2d
[  477.456118][T13311] RSP: 0018:ffffc9000359f3a0 EFLAGS: 00010246
[  477.462244][T13311] RAX: d2941bb027587200 RBX: 0000000002000000 RCX: 0000000000080000
[  477.470251][T13311] RDX: ffffc900058a9000 RSI: 00000000000039a7 RDI: 00000000000039a8
[  477.478257][T13311] RBP: 0000000000000004 R08: ffff8880b9133d7f R09: 1ffff110172267af
[  477.486482][T13311] R10: dffffc0000000000 R11: ffffed10172267b0 R12: ffff888023f8c000
[  477.494501][T13311] R13: ffff888023f8d290 R14: ffff888075488e40 R15: ffff888023f8e268
[  477.502528][T13311]  ieee80211_set_mcast_rate+0x3b/0x50
[  477.507949][T13311]  ? ieee80211_leave_ibss+0x20/0x20
[  477.513197][T13311]  nl80211_set_mcast_rate+0x346/0x530
[  477.518606][T13311]  ? nl80211_nan_change_config+0x6b0/0x6b0
[  477.524546][T13311]  genl_rcv_msg+0xcea/0xf90
[  477.529102][T13311]  ? genl_bind+0x380/0x380
[  477.533566][T13311]  ? verify_lock_unused+0x140/0x140
[  477.538804][T13311]  ? verify_lock_unused+0x140/0x140
[  477.544064][T13311]  ? nl80211_nan_change_config+0x6b0/0x6b0
[  477.549929][T13311]  netlink_rcv_skb+0x1f5/0x440
[  477.554721][T13311]  ? genl_bind+0x380/0x380
[  477.559195][T13311]  ? netlink_ack+0xb50/0xb50
[  477.563832][T13311]  ? __lock_acquire+0x7d10/0x7d10
[  477.568922][T13311]  ? down_read+0x1aa/0x2e0
[  477.573391][T13311]  genl_rcv+0x24/0x40
[  477.577396][T13311]  netlink_unicast+0x774/0x920
[  477.582292][T13311]  netlink_sendmsg+0x8ba/0xbe0
[  477.587091][T13311]  ? netlink_getsockopt+0x570/0x570
[  477.592318][T13311]  ? aa_sock_msg_perm+0x94/0x150
[  477.597300][T13311]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  477.602625][T13311]  ? security_socket_sendmsg+0x7c/0xa0
[  477.608147][T13311]  ? netlink_getsockopt+0x570/0x570
[  477.613380][T13311]  ____sys_sendmsg+0x5b7/0x8f0
[  477.618281][T13311]  ? __sys_sendmsg_sock+0x30/0x30
[  477.623397][T13311]  ? import_iovec+0x6f/0xa0
[  477.627988][T13311]  ___sys_sendmsg+0x236/0x2e0
[  477.632712][T13311]  ? __sys_sendmsg+0x2a0/0x2a0
[  477.637551][T13311]  __se_sys_sendmsg+0x1af/0x290
[  477.642451][T13311]  ? __x64_sys_sendmsg+0x80/0x80
[  477.647430][T13311]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  477.653463][T13311]  ? lockdep_hardirqs_on+0x94/0x140
[  477.658712][T13311]  do_syscall_64+0x4c/0xa0
[  477.663174][T13311]  ? clear_bhb_loop+0x30/0x80
[  477.667889][T13311]  ? clear_bhb_loop+0x30/0x80
[  477.672609][T13311]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  477.678530][T13311] RIP: 0033:0x7fb3a6bb2799
[  477.682992][T13311] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  477.702634][T13311] RSP: 002b:00007fb3a4e0c028 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  477.711090][T13311] RAX: ffffffffffffffda RBX: 00007fb3a6e2bfa0 RCX: 00007fb3a6bb2799
[  477.719100][T13311] RDX: 000000000000c800 RSI: 00002000000007c0 RDI: 0000000000000005
[  477.727106][T13311] RBP: 00007fb3a6c48c99 R08: 0000000000000000 R09: 0000000000000000
[  477.735115][T13311] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  477.743119][T13311] R13: 00007fb3a6e2c038 R14: 00007fb3a6e2bfa0 R15: 00007ffe608bdf78
[  477.751143][T13311]  </TASK>
[  477.754497][T13311] Kernel Offset: disabled
[  477.769148][T13311] Rebooting in 86400 seconds..