last executing test programs:

1m7.422544544s ago: executing program 3 (id=515):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f0000000140)=""/117, 0x75}, {&(0x7f0000000900)=""/249, 0xf9}, {&(0x7f0000000340)=""/8, 0x8}, {&(0x7f00000000c0)=""/19, 0x13}, {&(0x7f0000000240)=""/249, 0xf9}, {&(0x7f00000014c0)=""/200, 0xc8}, {&(0x7f00000011c0)=""/172, 0xac}], 0x7}, 0x40012100)

1m7.057097316s ago: executing program 3 (id=518):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

1m6.813454444s ago: executing program 3 (id=520):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r3)
preadv2(0xffffffffffffffff, &(0x7f00000002c0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xa404e, &(0x7f00000004c0), 0x3, 0x451, &(0x7f0000000f80)="$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")
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000000d0a0103"], 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x288, 0x1, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x1}, [@CTA_NAT_DST={0xdc, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @loopback}, @CTA_NAT_PROTO={0x1c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}]}, @CTA_NAT_PROTO={0x34, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @private1}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2}]}, @CTA_MARK={0x8}, @CTA_NAT_SRC={0x58, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @rand_addr=0x64010102}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_PROTO={0x24, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @broadcast}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}]}, @CTA_FILTER={0x2c, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xaae}, @CTA_FILTER_ORIG_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x280}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x21}]}, @CTA_NAT_SRC={0x8c, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @empty}, @CTA_NAT_PROTO={0x34, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V4_MINIP={0x8, 0x1, @remote}]}, @CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}]}, @CTA_TUPLE_MASTER={0x64, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010100}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x4}]}, 0x288}, 0x1, 0x0, 0x0, 0x20000401}, 0x4000080)

1m4.033277145s ago: executing program 3 (id=530):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, 0x0)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r3)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r3, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

1m3.408208165s ago: executing program 3 (id=533):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000000c0)={0x1b, 0x0, 0x0, 0x9a, 0x0, 0xffffffffffffffff, 0xb7, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x3}, 0x50)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000001680)='./cgroup.cpu/syz1\x00', 0x200002, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000001500)={{}, &(0x7f0000001480), &(0x7f00000014c0)}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB], 0x48)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r1, &(0x7f0000000c40), 0x12)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
r2 = syz_clone(0x1022000, 0x0, 0xfffffffffffffc76, 0x0, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_ro(r4, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
write$cgroup_int(r5, &(0x7f0000000200)=0x1, 0x12)
r6 = openat$cgroup_procs(r3, &(0x7f0000000180)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r6, &(0x7f0000000080)=r2, 0x12)

1m3.094358916s ago: executing program 3 (id=535):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

47.831815855s ago: executing program 32 (id=535):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-twofish-3way\x00'}, 0x45)
r1 = accept4(r0, 0x0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000200)="ad00"/16, 0x10)
recvmmsg(r1, &(0x7f0000002440), 0x3ffffffffffff67, 0x0, 0x0)

8.685863195s ago: executing program 0 (id=768):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x3c, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}]}, 0x3c}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

8.22069093s ago: executing program 0 (id=772):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xe)
ioctl$XFS_IOC_OPEN_BY_HANDLE(r0, 0xc038586b, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x2080, &(0x7f0000000140)={@align=0x5, {0x1, 0x4, 0x4, 0x6}}, 0x8000, 0x0, 0x0})
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000080)={0x2c, @rand_addr=0x64010100, 0x4e22, 0x2, 'rr\x00', 0x10, 0xe1, 0x56}, 0x2c)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timerfd_settime(0xffffffffffffffff, 0x1, 0x0, 0x0)
timerfd_gettime(0xffffffffffffffff, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000240)={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000140)=ANY=[@ANYBLOB="e0000001ac1414aa00000000"], 0x1c)
r3 = openat$cgroup_freezer_state(r1, &(0x7f0000000300), 0x2, 0x0)
write$cgroup_freezer_state(r3, &(0x7f00000000c0)='FROZEN\x00', 0x7)

7.815629814s ago: executing program 0 (id=774):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f1880adf0cb1507d", 0x37}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x2, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed88", 0x3a}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

6.371851321s ago: executing program 2 (id=780):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x1, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, 0x0}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

6.124021039s ago: executing program 0 (id=783):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x30, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

5.015985505s ago: executing program 0 (id=786):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xe)
ioctl$XFS_IOC_OPEN_BY_HANDLE(r0, 0xc038586b, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x2080, &(0x7f0000000140)={@align=0x5, {0x1, 0x4, 0x4, 0x6}}, 0x8000, 0x0, 0x0})
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000080)={0x2c, @rand_addr=0x64010100, 0x4e22, 0x2, 'rr\x00', 0x10, 0xe1, 0x56}, 0x2c)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
timerfd_settime(0xffffffffffffffff, 0x1, 0x0, 0x0)
timerfd_gettime(0xffffffffffffffff, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000240)={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000140)=ANY=[@ANYBLOB="e0000001ac1414aa00000000"], 0x1c)
r3 = openat$cgroup_freezer_state(r1, &(0x7f0000000300), 0x2, 0x0)
write$cgroup_freezer_state(r3, &(0x7f00000000c0)='FROZEN\x00', 0x7)

4.969787347s ago: executing program 2 (id=788):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r3)
preadv2(0xffffffffffffffff, &(0x7f00000002c0)=[{0x0}, {0x0}], 0x2, 0x0, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xa404e, &(0x7f00000004c0), 0x3, 0x451, &(0x7f0000000f80)="$eJzs3M2PU1UbAPDn3k6HlxdwRsQPPtRRNE78mGEAlYULNZq4wMREF7qczAwEKYxhxkQIUTAGV8aYuDcu/Rdc6cYYVyZudW9IiGEDuKq57b1MW9rCdFqq098vuXDOvedyztNzT3vuPS0BjKyp7I8kYntE/B4RE/Vsc4Gp+l/Xr55fuHH1/EIS1erbfyW1cteunl8oihbnbcsz02lE+lkSe9vUu3L23Mn5SmXpTJ6fXT31wezK2XPPnTg1f3zp+NLpg0eOHD409+ILB5/vS5xZm67t+Xh53+433vvqzaNfNMXfEkefTHU7+GS12ufqhmtHQzoZG2JDWJdSRGTdVa6N/4koxVrnTcTrnw61ccBAVavV6rbOhy9UgU0siea8IQ+jovigz+5/i611EvDy4KYfQ3fllfoNUBb39XyrHxmLNC9Tbrm/7aepiHj3wt/fZFsM5jkEAECTH7L5z7Pt5n9pPNBQ7p58bWgyIu6NiJ0RcV9E7IqI+yNqZR+MiIfWWX/rIsmt85/0ck+B3aFs/vdSvrbVPP8rZn8xWcpzO2rxl5NjJypLB/LXZDrKW7L8XJc6fnztty87HWuc/2VbVn8xF8zbcXlsS/M5i/Or8xuJudGVixF7xtrFn9xcCUgiYndE7OmxjhNPf7ev07Hbx99FH9aZqt9GPFXv/wvREn8h6b4+Ofu/qCwdmC2uilv98uultzrVv6H4+yDr//+3vf5vxj+ZNK7Xrqy/jkt/fN7xnqbX6388eaeWHs/3fTS/unpmLmI8OVpvdOP+g2vnFvmifBb/9P72439nrL0SeyMiu4gfjohHIuLRvO2PRcTjEbG/S/w/v/rE+73HP1hZ/Ivr6v+1xHi07mmfKJ386fumSidvif9G9/4/XEtN53vu5P3vTtrV29UMAAAA/z1pRGyPJJ25mU7TmZn69+V3RaSV5ZXVZ44tf3h6sf4bgckop8WTromG56Fz+W19PX8xIupfLSiOH8qfG39d2lrLzywsVxaHHTyMuG0dxn/mz9KwWwcMnN9rwegy/mF0Gf8wuox/GF1txv/WYbQDuPvaff5/MoR2AHdfy/i37AcjxP0/jK6O438z/88/QI3PfxhJK1vj9j+S75oo/qUeT9+0iSj/K5qx8UQ1adu5kQ67YRKDTAz3fQkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBf/gkAAP//qmHgTw==")
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000000d0a0103"], 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x288, 0x1, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x1}, [@CTA_NAT_DST={0xdc, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @loopback}, @CTA_NAT_PROTO={0x1c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}]}, @CTA_NAT_PROTO={0x34, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @private1}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2}]}, @CTA_MARK={0x8}, @CTA_NAT_SRC={0x58, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @rand_addr=0x64010102}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_PROTO={0x24, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @broadcast}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}]}, @CTA_FILTER={0x2c, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xaae}, @CTA_FILTER_ORIG_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x280}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x21}]}, @CTA_NAT_SRC={0x8c, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @empty}, @CTA_NAT_PROTO={0x34, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V4_MINIP={0x8, 0x1, @remote}]}, @CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}]}, @CTA_TUPLE_MASTER={0x64, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010100}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x4}]}, 0x288}, 0x1, 0x0, 0x0, 0x20000401}, 0x4000080)

4.743708924s ago: executing program 0 (id=790):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080), 0x2, 0x6}}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r3)
ptrace$getregset(0x4205, r3, 0x1, &(0x7f00000000c0)={&(0x7f0000000000)=""/120, 0x78})

4.303818989s ago: executing program 1 (id=792):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {0x0}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {0x0}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

4.214731602s ago: executing program 5 (id=793):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x2, &(0x7f0000000080), 0x2, 0x6}}, 0x20)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
madvise(&(0x7f0000bdc000/0x4000)=nil, 0x4000, 0x17)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace$setregs(0xd, r3, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4205, r3, 0x1, &(0x7f00000000c0)={&(0x7f0000000000)=""/120, 0x78})
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000380)={'syztnl2\x00', 0x0})
setsockopt$inet_IP_XFRM_POLICY(0xffffffffffffffff, 0x0, 0x11, 0x0, 0x0)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(0xffffffffffffffff, 0x10e, 0xb, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f00000002c0)='./file0\x00', 0x1008205, &(0x7f0000000000)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@jqfmt_vfsv1}]}, 0x81, 0x63e, &(0x7f00000004c0)="$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")

3.974145049s ago: executing program 2 (id=794):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f1880adf0cb1507d", 0x37}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x2, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed88", 0x3a}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

3.04592179s ago: executing program 5 (id=795):
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x9e00000000000]}, 0x8, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
rmdir(0x0)
fsmount(0xffffffffffffffff, 0x0, 0xc)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="2d7069647320a49efd027ac8b848ed734f6803efb465a5c16d7d475c6bdb8f1c01cfd9f27f5f1efb7a9f7b47a651f7520f0505638421a3d7f3c62b45860efd32fed3a818458d2950a846bc9428152545edad375c"], 0x1f)
getpid()
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000e00)=@newtaction={0x488, 0x30, 0x12f, 0x3c, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x0, 0xb, 0x4, 0x0, 0x8d, 0x0, 0x7ff, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xa4f, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1000, 0x10, 0xfffffffd, 0x3, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x1, 0x8000000, 0x0, 0x0, 0x11, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffff8, 0x0, 0x0, 0x3, 0xb2e4, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x100, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x934, 0x7, 0x0, 0x7, 0x0, 0x0, 0x0, 0x9, 0x0, 0x10000000, 0x0, 0x7, 0x0, 0x81, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2000, 0x0, 0x0, 0x7, 0x3, 0x8, 0xfffffffe, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffff3bac, 0xd, 0x2, 0x2000, 0x3, 0x0, 0x0, 0xfffffffe, 0xffffffd1, 0x480000, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a3, 0x0, 0x6, 0x7ff, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x713b, 0x0, 0x0, 0x0, 0xffff, 0x1000000, 0xffffffff, 0x2, 0xfffffffd, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xce2, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x2000000, 0xfffffff9, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x10000000, 0x7, 0xff, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x1, 0x0, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x3, 0xbed}, {0x0, 0xf6c5d7a4e5a498ca, 0x1000, 0x8}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x0, 0x3}}}}]}]}, 0x488}, 0x1, 0x0, 0x0, 0x4044840}, 0x44004)

3.010623021s ago: executing program 4 (id=796):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x1000d, 0x0, 0x0, 0x41100}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
ioctl(r1, 0x8b1a, &(0x7f0000000040))
r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r5, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
close(0xffffffffffffffff)
r6 = socket$kcm(0x10, 0x3, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

2.938143594s ago: executing program 2 (id=797):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f188", 0x31}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x2, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, 0x0}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb09587", 0x4b}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2.937224523s ago: executing program 1 (id=798):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x1, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, 0x0}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

2.714332401s ago: executing program 4 (id=799):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x30, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

1.938838456s ago: executing program 4 (id=800):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x74, &(0x7f0000000100)=[{&(0x7f00000001c0)="5c00000012006bab9a3fe3d86e17aa0a046b876c1d0048007ea60864160af36504001a0038001d001931a0e69ee517d34460bc06000000a705251e6182949a3651f60a84c9f4d4938037e70e4509c5bb", 0x33fe0}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000025c0)=[{&(0x7f0000000140)=""/117, 0x75}, {&(0x7f0000000900)=""/249, 0xf9}, {&(0x7f0000000340)=""/8, 0x8}, {&(0x7f00000000c0)=""/19, 0x13}, {&(0x7f00000014c0)=""/200, 0xc8}, {&(0x7f00000011c0)=""/172, 0xac}, {&(0x7f00000036c0)=""/4117, 0x1015}], 0x7}, 0x40012100)

1.926986537s ago: executing program 5 (id=801):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_CTHELPER_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000084c5d574919ce9020948981b"], 0x18}, 0x1, 0x0, 0x0, 0x4008000}, 0x40)
unshare(0x26020480)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000000), 0xffffffffffffffff)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r4, 0x400448c9, &(0x7f00000006c0))
sendmsg$MPTCP_PM_CMD_SET_FLAGS(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000600)=ANY=[@ANYBLOB='(\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010029bd7000fcdbdf25070000001400018006000100020000000800030000000000bb121db643f8cef5efd9f3ad7a0307ecbdf82ca9bfd405bc550b6e30db218839d76a559bc58b5f74d2ab01b4c409f0eec83b88d1a6856301f4b58eab8c137fb0e13067653cce40797a381d7846805c6f10fd2bbcb0ee0a39f915bd21638744ab9c441bad32ea556b42b45e1730e13554eb8ad7b142269001c8b48b4dde70c8b268b30326726b0a269825b77751c6ad282ff463fc5ab732df9d95e6576d8a012d0bf380379acdff6bf0dcbce6a081a93bc6ff95666bb630"], 0x28}, 0x1, 0x0, 0x0, 0x11}, 0x40)
r5 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000540)=[{&(0x7f0000000300)="d8000000180081064e81f782db4cb904021d0800fe067c05e8fe55a10a0005000140020003600e41b0000900ac0006fc11000000167c0500014002000000035c3b61c1d67f6f94007174cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001b14d6d930dfe1d9d322fe7c4650b5b9bd6ee6f63f5aeb4edbb57a5025ccca9e00360db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b4ff010000000000000dd6e4edef3d93452a09004b", 0xc7}], 0x1}, 0x24004000)
setsockopt$IP_VS_SO_SET_ADDDEST(r1, 0x0, 0x487, &(0x7f0000000000)={{0x84, @rand_addr=0x64010100, 0x4e24, 0x3, 'lc\x00', 0x8, 0x323b, 0x55}, {@broadcast, 0x4e23, 0x10000, 0x0, 0x12d5c, 0x12d5c}}, 0x44)
socket$rds(0x15, 0x5, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000000940)={'syztnl1\x00', &(0x7f00000008c0)={'syztnl2\x00', 0x0, 0x4, 0x8, 0x8, 0x6, 0x40, @initdev={0xfe, 0x88, '\x00', 0x5, 0x0}, @private2={0xfc, 0x2, '\x00', 0x1}, 0x7, 0x8, 0x3}})
r6 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r1, &(0x7f0000000200)={0x2, 0x0, @dev={0xac, 0x14, 0x14, 0x17}}, 0x10)
listen(r6, 0x8)
r7 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0xa, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000a9fd687f3f13d7ea0000001811", @ANYRES32=r7, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
ioctl$ifreq_SIOCGIFINDEX_team(0xffffffffffffffff, 0x8933, &(0x7f0000000040))
setsockopt$inet6_IPV6_PKTINFO(0xffffffffffffffff, 0x29, 0x32, 0x0, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x15, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r8, 0x2000000, 0xe, 0x0, &(0x7f0000000300)="63ecedda41c3903803ed69d8d41f", 0x0, 0x0, 0xfffff000, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50)
r9 = accept4(r6, 0x0, 0x0, 0x0)
write(r9, &(0x7f0000000000)="ca", 0x1)
sendmmsg$alg(r9, &(0x7f0000000340)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000440)="95", 0x1}], 0x1, 0x0, 0x0, 0x400401c}], 0x1, 0x8000)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r9, 0x84, 0x7b, &(0x7f0000000040)={0x0, 0x2}, 0x8)
close(r9)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(0xffffffffffffffff, 0x89f0, &(0x7f0000000c40)={'ip_vti0\x00', &(0x7f0000000b40)={'gretap0\x00', 0x0, 0x8, 0xb812994c65c6d7a9, 0x10001, 0x4, {{0x2b, 0x4, 0x1, 0x3b, 0xac, 0x66, 0x0, 0x9, 0x4, 0x0, @dev={0xac, 0x14, 0x14, 0x37}, @broadcast, {[@timestamp={0x44, 0x8, 0xa3, 0x0, 0x4, [0xff]}, @lsrr={0x83, 0x1f, 0x55, [@multicast1, @rand_addr=0x64010100, @broadcast, @dev={0xac, 0x14, 0x14, 0x1c}, @empty, @remote, @private=0xa010101]}, @cipso={0x86, 0x70, 0x2, [{0x7, 0x6, "97434332"}, {0x1, 0x12, "b616a2caf8b282cf366a66760989a1fe"}, {0x6, 0x10, "fa30073514000000000000008100"}, {0x0, 0xc, "5b4c7b653a89e8a10473"}, {0x1, 0x8, "6d1176e5a1f4"}, {0x5, 0xc, "7f13007b2cef936903c0"}, {0x5, 0x10, "2ac0698ee2466ad24b6c78d627b9"}, {0x2, 0x12, "3959799a4688216d1c9200c8cc7bc209"}]}]}}}}})

1.912455327s ago: executing program 1 (id=802):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f1880adf0cb1507d", 0x37}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x2, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {0x0}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, 0x0)
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.799770421s ago: executing program 2 (id=803):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
clock_gettime(0x2, &(0x7f0000000040))
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f00000193c0)='net/igmp6\x00')
pread64(r3, &(0x7f0000019400)=""/102344, 0xfffffcbb, 0x1c2a)

1.739099483s ago: executing program 5 (id=804):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0xe)
ioctl$XFS_IOC_OPEN_BY_HANDLE(r0, 0xc038586b, &(0x7f0000000200)={0xffffffffffffffff, 0x0, 0x2080, &(0x7f0000000140)={@align=0x5, {0x1, 0x4, 0x4, 0x6}}, 0x8000, 0x0, 0x0})
r2 = socket$inet(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ZERO(r2, 0x0, 0x48f, &(0x7f0000000080)={0x2c, @rand_addr=0x64010100, 0x4e22, 0x2, 'rr\x00', 0x10, 0xe1, 0x56}, 0x2c)
r3 = timerfd_create(0x9, 0x800)
timerfd_settime(r3, 0x1, 0x0, 0x0)
timerfd_gettime(r3, 0x0)
setsockopt$inet_mreqn(r2, 0x0, 0x27, &(0x7f0000000240)={@multicast1, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0xc)
setsockopt$inet_msfilter(r2, 0x0, 0x29, &(0x7f0000000140)=ANY=[@ANYBLOB="e0000001ac1414aa00000000"], 0x1c)
r4 = openat$cgroup_freezer_state(r1, &(0x7f0000000300), 0x2, 0x0)
write$cgroup_freezer_state(r4, &(0x7f00000000c0)='FROZEN\x00', 0x7)

1.631973896s ago: executing program 4 (id=805):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r3)
preadv2(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_int(0xffffffffffffffff, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xa404e, &(0x7f00000004c0), 0x3, 0x451, &(0x7f0000000f80)="$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")
sendmsg$NFT_MSG_GETSETELEM(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="2c0000000d0a0103"], 0x2c}, 0x1, 0x0, 0x0, 0x24000801}, 0x8000)
sendmsg$IPCTNL_MSG_CT_GET(0xffffffffffffffff, &(0x7f00000000c0)={&(0x7f0000000000), 0xc, &(0x7f0000000080)={&(0x7f0000000300)={0x288, 0x1, 0x1, 0x301, 0x0, 0x0, {0x2, 0x0, 0x1}, [@CTA_NAT_DST={0xdc, 0xd, 0x0, 0x1, [@CTA_NAT_V6_MAXIP={0x14, 0x5, @loopback}, @CTA_NAT_PROTO={0x1c, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}]}, @CTA_NAT_PROTO={0x34, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @empty}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @empty}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @private1}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @private2}]}, @CTA_MARK={0x8}, @CTA_NAT_SRC={0x58, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MAXIP={0x8, 0x2, @rand_addr=0x64010102}, @CTA_NAT_V4_MINIP={0x8, 0x1, @local}, @CTA_NAT_PROTO={0x24, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e20}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e23}]}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @broadcast}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @initdev={0xac, 0x1e, 0x1, 0x0}}, @CTA_NAT_V4_MINIP={0x8, 0x1, @multicast1}]}, @CTA_FILTER={0x2c, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0xaae}, @CTA_FILTER_ORIG_FLAGS={0x8}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x280}, @CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x21}]}, @CTA_NAT_SRC={0x8c, 0x6, 0x0, 0x1, [@CTA_NAT_V4_MINIP={0x8, 0x1, @empty}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}, @CTA_NAT_V4_MAXIP={0x8, 0x2, @empty}, @CTA_NAT_PROTO={0x34, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e23}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MIN={0x6, 0x1, 0x4e21}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e24}, @CTA_PROTONAT_PORT_MAX={0x6, 0x2, 0x4e22}]}, @CTA_NAT_V6_MAXIP={0x14, 0x5, @local}, @CTA_NAT_V6_MINIP={0x14, 0x4, @mcast1}, @CTA_NAT_V4_MINIP={0x8, 0x1, @remote}]}, @CTA_SEQ_ADJ_ORIG={0x14, 0xf, 0x0, 0x1, [@CTA_SEQADJ_CORRECTION_POS={0x8, 0x1, 0x1, 0x0, 0x9}, @CTA_SEQADJ_OFFSET_BEFORE={0x8, 0x2, 0x1, 0x0, 0x6}]}, @CTA_TUPLE_MASTER={0x64, 0xe, 0x0, 0x1, [@CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x3a}}, @CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @private=0xa010100}, {0x8, 0x2, @multicast2}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5, 0x1, 0x11}}, @CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @private1={0xfc, 0x1, '\x00', 0x1}}, {0x14, 0x4, @mcast2}}}, @CTA_TUPLE_ZONE={0x6}]}, @CTA_ZONE={0x6, 0x12, 0x1, 0x0, 0x4}]}, 0x288}, 0x1, 0x0, 0x0, 0x20000401}, 0x4000080)

1.497217791s ago: executing program 1 (id=806):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {0x0}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f1880adf0cb1507d", 0x37}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x2, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c389", 0x87}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, 0x0}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1.440343303s ago: executing program 5 (id=807):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f1880adf0cb1507d", 0x37}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x2, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{0x0, 0x0, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {&(0x7f00000006c0)="58b327f21946add0e0c31b173119ac7b4ceda64bbfbc8159462a8686f4303aeee1d7c9b54c4bd660fe192582950eb09a8bae632fb4e7313e3828773c09fec9b010373ca7be0ccc91233fffcfe03f287a50f2b4a970278097aed06e61a0f2da47b0bd02fcb45bf35e78c15cc4c5d6d163a6eaf921d8afc7d8376e847f403535371a24ce2a19c3898aca95be", 0x8b}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed88", 0x3a}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

667.919558ms ago: executing program 2 (id=808):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, &(0x7f0000000f00)=[{&(0x7f0000000880)="562f2edb8e8c8229195820c788783ff270fb0f06936fe49376e5519e3fa8f998387d7011fc5d8c9f5fc8e0e1663c9f6919128a8941ae935aaba3f683642630f5a74535b0e1f886ea2807f04d3a68ff4285f2bf581674a033cb5ecf8c756e8df3968c959df5326ed67c09d8b72eceeb87023f6188e15cb258cd8c85be3eddaac311ee4cb17a08ef47157753606ce7996162ea4b18214763730e2b944b468575927829842ee7f6f8a3603a7a522025c55284c9ca0ab899626f86c9336ead2278445733db5e643e10fa93339be48ff1592bc6bcf2b68b4536951c600a0e6d1b5d5b0cdbdf85122560b431", 0xe9}, {&(0x7f0000000540)}, {0x0}, {0x0}, {0x0}, {0x0}], 0x6}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x51}, {0x0}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

506.742843ms ago: executing program 4 (id=809):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
socket$unix(0x1, 0x2, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000040)={0x5, 0x0, 0x0, &(0x7f0000000100)='syzkaller\x00', 0x1000d, 0x0, 0x0, 0x41100}, 0x94)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r2, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r3, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r4}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
ioctl(r1, 0x8b1a, &(0x7f0000000040))
r5 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x44, r5, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'syzkaller0\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x44}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
close(0xffffffffffffffff)
r6 = socket$kcm(0x10, 0x3, 0x0)
sendmsg$kcm(r6, &(0x7f0000000600)={0x0, 0xc, &(0x7f0000000000)=[{&(0x7f0000000080)="2e00000010008188e6b62aa73772cc9f1ba1f848480000005e140602000000000e000a000f000000028000001294", 0x2e}], 0x1}, 0x0)

403.670916ms ago: executing program 1 (id=810):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$unix(0x1, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
sendmsg$NL80211_CMD_SET_INTERFACE(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, 0x0, 0x5, 0x0, 0x0, {{}, {@val={0x8}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000100)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_NEW_INTERFACE(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000240)={0x30, r2, 0x1, 0x70bd28, 0x25dfdbfd, {{}, {@void, @val={0x8, 0x3, r3}, @val={0xc, 0x99, {0x7ff, 0x70}}}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x81}, 0x24044884)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r4)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r4, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})

299.84602ms ago: executing program 4 (id=811):
signalfd4(0xffffffffffffffff, &(0x7f0000000080)={[0x9e00000000000]}, 0x8, 0x800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
rmdir(0x0)
fsmount(0xffffffffffffffff, 0x0, 0xc)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000180)=ANY=[@ANYBLOB="2d7069647320a49efd027ac8b848ed734f6803efb465a5c16d7d475c6bdb8f1c01cfd9f27f5f1efb7a9f7b47a651f7520f0505638421a3d7f3c62b45860efd32fed3a818458d2950a846bc9428152545edad375c"], 0x1f)
getpid()
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000000e00)=@newtaction={0x488, 0x30, 0x12f, 0x3c, 0x0, {}, [{0x474, 0x1, [@m_police={0x470, 0x1, 0x0, 0x0, {{0xb}, {0x444, 0x2, 0x0, 0x1, [[@TCA_POLICE_RATE={0x404, 0x2, [0x1, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0xffffffff, 0x0, 0x0, 0x4, 0x0, 0xb, 0x4, 0x0, 0x8d, 0x0, 0x7ff, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0xa4f, 0x0, 0x0, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x1000, 0x10, 0xfffffffd, 0x3, 0x3, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0xb4, 0x0, 0x0, 0x1, 0x8000000, 0x0, 0x0, 0x11, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0xfffffff8, 0x0, 0x0, 0x3, 0xb2e4, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x100, 0x0, 0x3, 0x1, 0x0, 0x0, 0x0, 0x0, 0x934, 0x7, 0x0, 0x7, 0x0, 0x0, 0x0, 0x9, 0x0, 0x10000000, 0x0, 0x7, 0x0, 0x81, 0x10000, 0x0, 0x0, 0x0, 0x0, 0x1, 0x2000, 0x0, 0x0, 0x7, 0x3, 0x8, 0xfffffffe, 0x20000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0xffff3bac, 0xd, 0x2, 0x2000, 0x3, 0x0, 0x0, 0xfffffffe, 0xffffffd1, 0x480000, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9a3, 0x0, 0x6, 0x7ff, 0x4, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0xfff, 0x0, 0x0, 0x0, 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x713b, 0x0, 0x0, 0x0, 0xffff, 0x1000000, 0xffffffff, 0x2, 0xfffffffd, 0xfffffffc, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0xce2, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x2000000, 0xfffffff9, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10002, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x10000000, 0x7, 0xff, 0x0, 0x7]}, @TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x1, 0x0, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x3, 0xbed}, {0x0, 0xf6c5d7a4e5a498ca, 0x1000, 0x8}}}]]}, {0x4}, {0xc, 0xb}, {0xc, 0xa, {0x0, 0x3}}}}]}]}, 0x488}, 0x1, 0x0, 0x0, 0x4044840}, 0x44004)

135.096515ms ago: executing program 5 (id=812):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)=[{0x0}, {0x0}, {&(0x7f00000005c0)="f2", 0x1}], 0x3}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x1, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, 0x0}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0x4d}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

0s ago: executing program 1 (id=813):
openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x800, 0x0)
sendmmsg$sock(0xffffffffffffffff, &(0x7f0000001500)=[{{0x0, 0x0, &(0x7f0000000300)}}, {{&(0x7f0000000600)=@can, 0x80, &(0x7f0000000680)=[{&(0x7f0000000580)="49a6cc7e52cf0644e1fb10e13cb6893bd19afc65f2af20dd1746a881eb4dabcaf163ce54133d2499c296320937b805f188", 0x31}, {&(0x7f0000000a80)="190e431aa3b287c28be2f5404c8034cc87b917c381ccff6f8d431e872be3", 0x1e}], 0x2, &(0x7f0000000b40)=[@timestamping={{0x14, 0x1, 0x25, 0x101}}, @timestamping={{0x14, 0x1, 0x25, 0x7}}, @timestamping={{0x14, 0x1, 0x25, 0xc}}], 0x48}}], 0x2, 0x0)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000000f80)=[{{&(0x7f0000000340)={0xa, 0x4e20, 0x80000000, @empty, 0x7}, 0x1c, 0x0}}], 0x1, 0x0)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r3 = accept4(r2, 0x0, 0x0, 0x800)
sendmmsg$alg(r3, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0x10}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb0958730", 0x4c}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11", 0xce}], 0x3, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r3, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000840)={0x1fe, 0x2, 0x3000, 0x2000, &(0x7f0000003000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r4, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000000c0)="650f340f3566b842000f00d8b805000000b9a00000000f01c13e0f070fde460b0f0130670f01c2f2360f217a0f07", 0x2e}], 0x1, 0x11, 0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000b00)=[{&(0x7f0000001880)="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", 0xf91}], 0x1, 0x1, 0x2)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r4, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

 invalid segment: Checksum error in segment payload
[   83.234386][ T4342] NILFS (loop3): trying rollback from an earlier position
[   83.249453][ T4345] NILFS (loop1): invalid segment: Checksum error in segment payload
[   83.284013][ T4345] NILFS (loop1): trying rollback from an earlier position
[   83.351932][ T4352] loop4: detected capacity change from 0 to 4096
[   83.400017][ T4342] NILFS (loop3): recovery complete
[   83.408585][ T4345] NILFS (loop1): recovery complete
[   83.441174][ T4359] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   83.467420][ T4360] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   83.551719][ T4352] NILFS (loop4): invalid segment: Checksum error in segment payload
[   83.604903][ T4352] NILFS (loop4): trying rollback from an earlier position
[   83.731964][ T4352] NILFS (loop4): recovery complete
[   83.796858][ T4369] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   84.047986][   T26] audit: type=1800 audit(1774890562.009:3): pid=4345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.14" name="file1" dev="loop1" ino=17 res=0 errno=0
[   84.346764][ T4313] BTRFS error (device loop2): open_ctree failed: -22
[   84.382384][ T4320] loop0: detected capacity change from 0 to 32768
[   84.480668][   T26] audit: type=1800 audit(1774890562.429:5): pid=4342 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.16" name="file1" dev="loop3" ino=15 res=0 errno=0
[   84.529534][ T4320] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.13 (4320)
[   84.612619][ T4320] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[   84.626115][ T4381] =======================================================
[   84.626115][ T4381] WARNING: The mand mount option has been deprecated and
[   84.626115][ T4381]          and is ignored by this kernel. Remove the mand
[   84.626115][ T4381]          option from the mount to silence this warning.
[   84.626115][ T4381] =======================================================
[   84.651586][   T26] audit: type=1800 audit(1774890562.429:4): pid=4352 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.17" name="file1" dev="loop4" ino=15 res=0 errno=0
[   84.684697][ T4320] BTRFS info (device loop0): setting nodatasum
[   84.695393][ T4320] BTRFS info (device loop0): force zlib compression, level 3
[   84.726983][ T4320] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8)
[   84.784098][ T4320] BTRFS info (device loop0): use lzo compression, level 0
[   84.791577][ T4320] BTRFS info (device loop0): turning on flush-on-commit
[   84.846431][ T4320] BTRFS info (device loop0): enabling auto defrag
[   84.853410][ T4320] BTRFS info (device loop0): max_inline at 4096
[   84.955708][ T4320] BTRFS info (device loop0): using free space tree
[   84.983977][ T4320] BTRFS info (device loop0): has skinny extents
[   85.142105][ T4397] device syzkaller0 entered promiscuous mode
[   85.251652][ T4384] loop1: detected capacity change from 0 to 4096
[   85.313481][ T4320] BTRFS error (device loop0): open_ctree failed: -12
[   85.422380][ T4384] NILFS (loop1): invalid segment: Checksum error in segment payload
[   85.525737][ T4384] NILFS (loop1): trying rollback from an earlier position
[   85.716464][ T4384] NILFS (loop1): recovery complete
[   85.826733][ T4408] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   86.105115][ T4413] loop4: detected capacity change from 0 to 1024
[   86.193752][ T4405] loop0: detected capacity change from 0 to 4096
[   86.295431][ T4413] EXT4-fs (loop4): Quota format mount options ignored when QUOTA feature is enabled
[   86.307997][ T4413] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[   86.452079][ T4413] EXT4-fs (loop4): revision level too high, forcing read-only mode
[   86.467526][ T4413] EXT4-fs (loop4): orphan cleanup on readonly fs
[   86.480354][ T4413] EXT4-fs error (device loop4): ext4_read_inode_bitmap:168: comm syz.4.20: Inode bitmap for bg 0 marked uninitialized
[   86.498772][ T4413] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[   86.765354][ T4405] NILFS (loop0): invalid segment: Checksum error in segment payload
[   86.844954][ T4405] NILFS (loop0): trying rollback from an earlier position
[   86.861402][ T4412] loop2: detected capacity change from 0 to 4096
[   86.954040][ T4405] NILFS (loop0): recovery complete
[   86.994220][ T4412] NILFS (loop2): invalid segment: Checksum error in segment payload
[   87.006941][ T4420] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   87.078978][ T4412] NILFS (loop2): trying rollback from an earlier position
[   87.211856][ T4412] NILFS (loop2): recovery complete
[   87.265585][ T4421] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   87.399333][   T26] audit: type=1800 audit(1774890565.349:6): pid=4384 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.19" name="file1" dev="loop1" ino=15 res=0 errno=0
[   87.896540][   T26] audit: type=1800 audit(1774890565.849:7): pid=4405 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.21" name="file1" dev="loop0" ino=17 res=0 errno=0
[   88.034782][   T26] audit: type=1800 audit(1774890565.949:8): pid=4412 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.23" name="file1" dev="loop2" ino=17 res=0 errno=0
[   88.067047][ T4417] loop3: detected capacity change from 0 to 32768
[   88.107607][ T4417] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.22 (4417)
[   88.224790][ T4417] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[   88.270040][ T4417] BTRFS info (device loop3): setting nodatasum
[   88.299411][ T4417] BTRFS info (device loop3): force zlib compression, level 3
[   88.350447][ T4417] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_LZO (0x8)
[   88.415436][ T4417] BTRFS info (device loop3): use lzo compression, level 0
[   88.423077][ T4417] BTRFS info (device loop3): turning on flush-on-commit
[   88.450831][ T4419] loop4: detected capacity change from 0 to 32768
[   88.459688][ T4417] BTRFS info (device loop3): enabling auto defrag
[   88.487427][ T4417] BTRFS info (device loop3): max_inline at 4096
[   88.493763][ T4417] BTRFS info (device loop3): using free space tree
[   88.509059][ T4419] BTRFS warning: duplicate device /dev/loop4 devid 1 generation 8 scanned by syz.4.24 (4419)
[   88.583960][ T4417] BTRFS info (device loop3): has skinny extents
[   88.736090][ T4361] BTRFS warning: duplicate device /dev/loop4 devid 1 generation 8 scanned by udevd (4361)
[   88.789168][ T4427] loop0: detected capacity change from 0 to 4096
[   88.959314][ T4427] NILFS (loop0): invalid segment: Checksum error in segment payload
[   89.027818][ T4427] NILFS (loop0): trying rollback from an earlier position
[   89.165620][ T4427] NILFS (loop0): recovery complete
[   89.173032][ T4417] BTRFS error (device loop3): open_ctree failed: -12
[   89.217283][ T4448] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   89.864335][   T26] audit: type=1800 audit(1774890567.819:9): pid=4427 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.25" name="file1" dev="loop0" ino=16 res=0 errno=0
[   90.034843][ T4432] loop1: detected capacity change from 0 to 32768
[   90.069858][ T4432] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.26 (4432)
[   90.138936][ T4432] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[   90.182795][ T4447] loop2: detected capacity change from 0 to 32768
[   90.193490][ T4432] BTRFS info (device loop1): setting nodatasum
[   90.245551][ T4432] BTRFS info (device loop1): force zlib compression, level 3
[   90.253107][ T4432] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8)
[   90.282403][ T4447] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz.2.27 (4447)
[   90.330039][ T4432] BTRFS info (device loop1): use lzo compression, level 0
[   90.357236][ T4432] BTRFS info (device loop1): turning on flush-on-commit
[   90.407486][ T4432] BTRFS info (device loop1): enabling auto defrag
[   90.435800][ T4432] BTRFS info (device loop1): max_inline at 4096
[   90.442333][ T4432] BTRFS info (device loop1): using free space tree
[   90.479986][ T4432] BTRFS info (device loop1): has skinny extents
[   90.536853][ T4178] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by udevd (4178)
[   90.793685][ T4450] loop3: detected capacity change from 0 to 32768
[   90.800802][ T4432] BTRFS info (device loop1): enabling ssd optimizations
[   90.826388][ T4450] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz.3.28 (4450)
[   91.119955][ T4361] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by udevd (4361)
[   91.282444][ T4450] loop3: detected capacity change from 0 to 4096
[   91.304412][ T4447] loop2: detected capacity change from 0 to 32768
[   91.343610][ T4447] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz.2.27 (4447)
[   91.461784][ T4450] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[   91.671081][ T4179] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by udevd (4179)
[   91.779948][ T4454] loop4: detected capacity change from 0 to 32768
[   91.844891][ T4463] loop0: detected capacity change from 0 to 32768
[   91.896413][ T4454] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[   91.908228][ T4454] BTRFS info (device loop4): setting nodatasum
[   91.914960][ T4454] BTRFS info (device loop4): force zlib compression, level 3
[   91.983491][ T4463] BTRFS warning: duplicate device /dev/loop0 devid 1 generation 8 scanned by syz.0.30 (4463)
[   91.994917][ T4454] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[   92.061556][ T4454] BTRFS info (device loop4): use lzo compression, level 0
[   92.120182][ T4454] BTRFS info (device loop4): turning on flush-on-commit
[   92.129651][ T1337] cfg80211: failed to load regulatory.db
[   92.173628][ T4454] BTRFS info (device loop4): enabling auto defrag
[   92.214591][ T4454] BTRFS info (device loop4): max_inline at 4096
[   92.225055][ T4454] BTRFS info (device loop4): using free space tree
[   92.231621][ T4454] BTRFS info (device loop4): has skinny extents
[   92.326246][ T4177] BTRFS warning: duplicate device /dev/loop0 devid 1 generation 8 scanned by udevd (4177)
[   93.367054][ T4454] BTRFS info (device loop4): enabling ssd optimizations
[   93.614733][ T4463] loop0: detected capacity change from 0 to 32768
[   93.623586][ T4517] loop2: detected capacity change from 0 to 4096
[   93.723245][ T4517] NILFS (loop2): invalid segment: Checksum error in segment payload
[   93.755067][ T4517] NILFS (loop2): trying rollback from an earlier position
[   93.904181][ T4517] NILFS (loop2): recovery complete
[   93.971142][ T4518] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   94.185292][ T4499] loop1: detected capacity change from 0 to 32768
[   94.226932][ T4499] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.31 (4499)
[   94.300658][ T4499] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[   94.324660][ T4490] loop3: detected capacity change from 0 to 32768
[   94.361338][ T4499] BTRFS info (device loop1): setting nodatasum
[   94.369603][ T4520] Zero length message leads to an empty skb
[   94.383057][ T4520] netlink: 12 bytes leftover after parsing attributes in process `syz.0.36'.
[   94.394953][ T4499] BTRFS info (device loop1): force zlib compression, level 3
[   94.402707][ T4499] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8)
[   94.434899][ T4499] BTRFS info (device loop1): use lzo compression, level 0
[   94.435236][ T4490] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz.3.32 (4490)
[   94.442266][ T4499] BTRFS info (device loop1): turning on flush-on-commit
[   94.442311][ T4499] BTRFS info (device loop1): enabling auto defrag
[   94.595908][ T4499] BTRFS info (device loop1): max_inline at 4096
[   94.602370][ T4499] BTRFS info (device loop1): using free space tree
[   94.659460][ T4487] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by udevd (4487)
[   94.700701][ T4499] BTRFS info (device loop1): has skinny extents
[   94.707289][   T26] audit: type=1800 audit(1774890572.649:10): pid=4517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.34" name="file1" dev="loop2" ino=15 res=0 errno=0
[   94.788345][ T4525] loop4: detected capacity change from 0 to 4096
[   94.945332][ T4525] NILFS (loop4): invalid segment: Checksum error in segment payload
[   95.020110][ T4525] NILFS (loop4): trying rollback from an earlier position
[   95.079554][ T4525] NILFS (loop4): recovery complete
[   95.119643][ T4540] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   95.340644][ T4499] BTRFS info (device loop1): enabling ssd optimizations
[   95.417123][ T4521] ODEBUG: Out of memory. ODEBUG disabled
[   95.837190][   T26] audit: type=1800 audit(1774890573.789:11): pid=4525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.35" name="file1" dev="loop4" ino=16 res=0 errno=0
[   96.108104][ T4552] loop0: detected capacity change from 0 to 4096
[   96.136614][ T4554] netlink: 12 bytes leftover after parsing attributes in process `syz.3.40'.
[   96.285017][ T4552] NILFS (loop0): invalid segment: Checksum error in segment payload
[   96.304377][ T4552] NILFS (loop0): trying rollback from an earlier position
[   96.385839][ T4552] NILFS (loop0): recovery complete
[   96.473808][ T4557] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   96.704777][ T4550] loop2: detected capacity change from 0 to 32768
[   96.729267][ T4560] loop4: detected capacity change from 0 to 4096
[   96.786595][ T4550] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.37 (4550)
[   96.849555][ T4560] NILFS (loop4): invalid segment: Checksum error in segment payload
[   96.860238][   T26] audit: type=1800 audit(1774890574.809:12): pid=4552 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.38" name="file1" dev="loop0" ino=15 res=0 errno=0
[   96.902666][ T4560] NILFS (loop4): trying rollback from an earlier position
[   96.960493][ T4550] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[   97.022235][ T4560] NILFS (loop4): recovery complete
[   97.025619][ T4550] BTRFS info (device loop2): setting nodatasum
[   97.054082][ T4550] BTRFS info (device loop2): force zlib compression, level 3
[   97.065219][ T4550] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[   97.086461][ T4565] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   97.111235][ T4550] BTRFS info (device loop2): use lzo compression, level 0
[   97.143980][ T4550] BTRFS info (device loop2): turning on flush-on-commit
[   97.181749][ T4550] BTRFS info (device loop2): enabling auto defrag
[   97.205946][ T4550] BTRFS info (device loop2): max_inline at 4096
[   97.226443][ T4550] BTRFS info (device loop2): using free space tree
[   97.254068][ T4550] BTRFS info (device loop2): has skinny extents
[   97.666663][ T4571] loop3: detected capacity change from 0 to 32768
[   97.762748][ T4571] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by syz.3.42 (4571)
[   97.804884][   T26] audit: type=1800 audit(1774890575.759:13): pid=4560 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.41" name="file1" dev="loop4" ino=16 res=0 errno=0
[   97.904458][ T4562] loop1: detected capacity change from 0 to 32768
[   97.928600][ T4550] BTRFS info (device loop2): enabling ssd optimizations
[   97.961346][ T4585] netlink: 12 bytes leftover after parsing attributes in process `syz.0.43'.
[   97.974151][ T4562] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by syz.1.39 (4562)
[   98.085406][ T4178] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 8 scanned by udevd (4178)
[   98.221641][ T4487] BTRFS warning: duplicate device /dev/loop1 devid 1 generation 8 scanned by udevd (4487)
[   98.313765][ T4590] NILFS (loop3): invalid segment: Checksum error in segment payload
[   98.346686][ T4590] NILFS (loop3): trying rollback from an earlier position
[   98.460455][ T4590] NILFS (loop3): recovery complete
[   98.494113][ T4596] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   98.547710][ T4595] NILFS (loop1): invalid segment: Checksum error in segment payload
[   98.608961][ T4595] NILFS (loop1): trying rollback from an earlier position
[   98.704090][ T4595] NILFS (loop1): recovery complete
[   98.742740][ T4597] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   99.035124][ T4601] device syzkaller0 entered promiscuous mode
[   99.065417][   T26] audit: type=1800 audit(1774890577.019:14): pid=4590 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.44" name="file1" dev="loop3" ino=15 res=0 errno=0
[   99.137202][ T4599] set_capacity_and_notify: 2 callbacks suppressed
[   99.137219][ T4599] loop2: detected capacity change from 0 to 4096
[   99.239654][ T4599] NILFS (loop2): invalid segment: Checksum error in segment payload
[   99.284480][ T4599] NILFS (loop2): trying rollback from an earlier position
[   99.362631][ T4607] loop0: detected capacity change from 0 to 512
[   99.370538][ T4607] netlink: 24 bytes leftover after parsing attributes in process `syz.0.48'.
[   99.399983][ T4599] NILFS (loop2): recovery complete
[   99.472122][ T4606] netlink: 12 bytes leftover after parsing attributes in process `syz.4.49'.
[   99.481600][ T4608] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   99.748041][   T26] audit: type=1800 audit(1774890577.689:15): pid=4595 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.45" name="file1" dev="loop1" ino=15 res=0 errno=0
[  100.054063][ T4617] netlink: 12 bytes leftover after parsing attributes in process `syz.3.52'.
[  100.073811][ T4615] loop0: detected capacity change from 0 to 4096
[  100.164659][ T4615] NILFS (loop0): invalid segment: Checksum error in segment payload
[  100.256920][ T4615] NILFS (loop0): trying rollback from an earlier position
[  100.320705][ T4615] NILFS (loop0): recovery complete
[  100.347257][ T4621] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  100.740881][   T26] audit: type=1800 audit(1774890578.689:16): pid=4615 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.51" name="file1" dev="loop0" ino=15 res=0 errno=0
[  100.785586][ T4627] device syzkaller0 entered promiscuous mode
[  101.519077][ T4636] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[  101.949165][ T4634] loop2: detected capacity change from 0 to 32768
[  101.984304][ T4647] loop4: detected capacity change from 0 to 4096
[  101.984706][ T4634] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.57 (4634)
[  102.100855][ T4650] loop1: detected capacity change from 0 to 512
[  102.213801][ T4652] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  102.262974][ T4647] NILFS (loop4): invalid segment: Checksum error in segment payload
[  102.287337][ T4650] netlink: 24 bytes leftover after parsing attributes in process `syz.1.61'.
[  102.345949][ T4647] NILFS (loop4): trying rollback from an earlier position
[  102.528717][ T4634] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[  102.539147][ T4647] NILFS (loop4): recovery complete
[  102.552704][ T4634] BTRFS info (device loop2): setting nodatasum
[  102.580729][ T4634] BTRFS info (device loop2): force zlib compression, level 3
[  102.623181][ T4659] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  102.656096][ T4634] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[  102.674414][ T4634] BTRFS info (device loop2): use lzo compression, level 0
[  102.682201][ T4634] BTRFS info (device loop2): turning on flush-on-commit
[  102.744811][ T4634] BTRFS info (device loop2): enabling auto defrag
[  102.777105][   T26] audit: type=1800 audit(1774890580.729:17): pid=4647 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.60" name="file1" dev="loop4" ino=14 res=0 errno=0
[  102.819510][ T4634] BTRFS info (device loop2): max_inline at 4096
[  102.871718][ T4666] netlink: 12 bytes leftover after parsing attributes in process `syz.0.64'.
[  102.877850][ T4634] BTRFS info (device loop2): using free space tree
[  102.905875][ T4661] loop1: detected capacity change from 0 to 4096
[  102.934923][ T4634] BTRFS info (device loop2): has skinny extents
[  102.999405][ T4661] NILFS (loop1): invalid segment: Checksum error in segment payload
[  103.063681][ T4661] NILFS (loop1): trying rollback from an earlier position
[  103.126746][ T4661] NILFS (loop1): recovery complete
[  103.190063][ T4683] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  103.226914][ T4673] device syzkaller0 entered promiscuous mode
[  103.294257][   T26] audit: type=1800 audit(1774890581.249:18): pid=4661 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.63" name="file1" dev="loop1" ino=16 res=0 errno=0
[  103.361253][ T4634] BTRFS info (device loop2): enabling ssd optimizations
[  103.425295][   T26] audit: type=1800 audit(1774890581.379:19): pid=4634 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.57" name="file1" dev="loop2" ino=260 res=0 errno=0
[  103.681748][ T4698] loop1: detected capacity change from 0 to 4096
[  103.716657][ T4701] device syzkaller0 entered promiscuous mode
[  103.753101][ T4699] syz.2.57 (4699) used greatest stack depth: 20592 bytes left
[  103.775583][ T4698] NILFS (loop1): invalid segment: Checksum error in segment payload
[  103.783657][ T4698] NILFS (loop1): trying rollback from an earlier position
[  103.903129][ T4698] NILFS (loop1): recovery complete
[  103.953456][ T4706] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  104.045156][ T4703] loop3: detected capacity change from 0 to 4096
[  104.254620][ T4708] device syzkaller0 entered promiscuous mode
[  104.420042][   T26] audit: type=1800 audit(1774890582.369:20): pid=4698 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.68" name="file1" dev="loop1" ino=15 res=0 errno=0
[  104.472172][ T4703] NILFS (loop3): invalid segment: Checksum error in segment payload
[  104.516469][ T4710] loop2: detected capacity change from 0 to 4096
[  104.573996][ T4703] NILFS (loop3): trying rollback from an earlier position
[  104.653674][ T4710] NILFS (loop2): invalid segment: Checksum error in segment payload
[  104.711740][ T4703] NILFS (loop3): recovery complete
[  104.722674][ T4718] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  104.737977][ T4710] NILFS (loop2): trying rollback from an earlier position
[  104.848907][ T4710] NILFS (loop2): recovery complete
[  104.904950][ T4721] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  104.941253][ T4722] loop0: detected capacity change from 0 to 512
[  105.108545][ T4722] netlink: 24 bytes leftover after parsing attributes in process `syz.0.73'.
[  105.452393][   T26] audit: type=1800 audit(1774890583.399:21): pid=4710 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.71" name="file1" dev="loop2" ino=16 res=0 errno=0
[  105.611625][ T4724] loop1: detected capacity change from 0 to 4096
[  105.728504][ T4724] NILFS (loop1): invalid segment: Checksum error in segment payload
[  105.740644][   T26] audit: type=1800 audit(1774890583.699:22): pid=4703 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.70" name="file1" dev="loop3" ino=16 res=0 errno=0
[  105.793997][ T4724] NILFS (loop1): trying rollback from an earlier position
[  105.911842][ T4724] NILFS (loop1): recovery complete
[  106.031072][ T4730] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  106.430460][   T26] audit: type=1800 audit(1774890584.379:23): pid=4724 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.75" name="file1" dev="loop1" ino=15 res=0 errno=0
[  106.976123][ T4736] loop4: detected capacity change from 0 to 4096
[  107.056867][ T4736] NILFS (loop4): invalid segment: Checksum error in segment payload
[  107.103416][ T4736] NILFS (loop4): trying rollback from an earlier position
[  107.174688][ T4736] NILFS (loop4): recovery complete
[  107.221715][ T4745] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  107.354641][   T26] audit: type=1800 audit(1774890585.309:24): pid=4736 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.78" name="file1" dev="loop4" ino=16 res=0 errno=0
[  107.705573][ T4761] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  107.918161][ T4766] loop3: detected capacity change from 0 to 4096
[  108.025392][ T4766] NILFS (loop3): invalid segment: Checksum error in segment payload
[  108.111693][ T4766] NILFS (loop3): trying rollback from an earlier position
[  108.233818][ T4766] NILFS (loop3): recovery complete
[  108.274466][ T4769] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  108.717435][ T4756] loop4: detected capacity change from 0 to 32768
[  108.772408][ T4756] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.84 (4756)
[  108.838366][ T4756] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  108.848752][ T4776] device syzkaller0 entered promiscuous mode
[  108.869469][ T4756] BTRFS info (device loop4): setting nodatasum
[  108.914020][ T4756] BTRFS info (device loop4): force zlib compression, level 3
[  108.921578][ T4756] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[  108.973585][ T4756] BTRFS info (device loop4): use lzo compression, level 0
[  109.001552][ T4756] BTRFS info (device loop4): turning on flush-on-commit
[  109.023980][ T4756] BTRFS info (device loop4): enabling auto defrag
[  109.064137][ T4756] BTRFS info (device loop4): max_inline at 4096
[  109.108281][ T4756] BTRFS info (device loop4): using free space tree
[  109.214048][ T4756] BTRFS info (device loop4): has skinny extents
[  109.335348][ T4788] device syzkaller0 entered promiscuous mode
[  109.362742][ T4786] loop1: detected capacity change from 0 to 4096
[  109.386600][   T26] audit: type=1800 audit(1774890587.339:25): pid=4766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.87" name="file1" dev="loop3" ino=16 res=0 errno=0
[  109.510962][ T4786] NILFS (loop1): invalid segment: Checksum error in segment payload
[  109.522361][ T4786] NILFS (loop1): trying rollback from an earlier position
[  109.647021][ T4756] BTRFS info (device loop4): enabling ssd optimizations
[  109.684396][ T4786] NILFS (loop1): recovery complete
[  109.738949][   T26] audit: type=1800 audit(1774890587.689:26): pid=4756 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.84" name="file1" dev="loop4" ino=260 res=0 errno=0
[  109.776531][ T4808] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  109.890017][   T26] audit: type=1800 audit(1774890587.839:27): pid=4786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.93" name="file1" dev="loop1" ino=12 res=0 errno=0
[  110.020044][ T4811] device syzkaller0 entered promiscuous mode
[  110.595283][ T4821] tipc: Started in network mode
[  110.600455][ T4821] tipc: Node identity 6ac87bcd6d24, cluster identity 4711
[  110.645498][ T4819] loop1: detected capacity change from 0 to 4096
[  110.663801][ T4821] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  110.698160][ T4824] tipc: Resetting bearer <eth:syzkaller0>
[  110.746525][ T4820] tipc: Disabling bearer <eth:syzkaller0>
[  110.807721][ T4819] NILFS (loop1): invalid segment: Checksum error in segment payload
[  110.834175][ T4819] NILFS (loop1): trying rollback from an earlier position
[  111.044285][ T4819] NILFS (loop1): recovery complete
[  111.294384][ T4840] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  111.951189][ T4847] device syzkaller0 entered promiscuous mode
[  112.065793][ T4850] device syzkaller0 entered promiscuous mode
[  112.209252][ T4857] syz.2.110 uses obsolete (PF_INET,SOCK_PACKET)
[  112.262872][ T4857] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  112.423179][ T4848] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  112.587046][ T4848] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  112.595945][ T4848] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  113.291964][ T4877] netlink: 12 bytes leftover after parsing attributes in process `syz.2.113'.
[  115.667911][ T4900] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  115.830292][ T4908] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  115.895592][ T4911] netlink: 12 bytes leftover after parsing attributes in process `syz.4.122'.
[  117.093317][ T4927] device syzkaller0 entered promiscuous mode
[  117.123993][ T4486] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  117.158058][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[  117.382027][ T4931] device syzkaller0 entered promiscuous mode
[  117.404076][ T4486] usb 1-1: Using ep0 maxpacket: 16
[  117.554226][ T4486] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  117.784051][ T4486] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  117.802468][ T4486] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  117.957435][ T4486] usb 1-1: Product: syz
[  117.975414][ T4486] usb 1-1: Manufacturer: syz
[  117.983023][ T4486] usb 1-1: SerialNumber: syz
[  118.017056][ T4486] usb 1-1: config 0 descriptor??
[  118.124004][ T1107] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  118.188199][ T4944] loop1: detected capacity change from 0 to 512
[  118.393950][ T1107] usb 3-1: Using ep0 maxpacket: 16
[  118.464487][ T4944] netlink: 24 bytes leftover after parsing attributes in process `syz.1.131'.
[  118.524138][ T1107] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  118.572355][ T4486] usb 1-1: USB disconnect, device number 2
[  118.754147][ T1107] usb 3-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  118.898984][ T1107] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  118.917560][ T1107] usb 3-1: Product: syz
[  118.924168][ T1107] usb 3-1: Manufacturer: syz
[  120.020799][ T4949] sched: RT throttling activated
[  120.048104][ T1107] usb 3-1: SerialNumber: syz
[  120.083813][ T1107] usb 3-1: config 0 descriptor??
[  120.319383][ T4950] loop3: detected capacity change from 0 to 1024
[  120.640058][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[  120.789172][ T4339] usb 3-1: USB disconnect, device number 2
[  120.839774][ T4950] EXT4-fs (loop3): Quota format mount options ignored when QUOTA feature is enabled
[  120.850549][ T4950] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  120.904251][ T4950] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  120.914047][ T4950] EXT4-fs (loop3): orphan cleanup on readonly fs
[  120.928319][ T4950] EXT4-fs error (device loop3): ext4_read_inode_bitmap:168: comm syz.3.132: Inode bitmap for bg 0 marked uninitialized
[  120.956622][ T4950] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  121.275683][ T4956] netlink: 12 bytes leftover after parsing attributes in process `syz.0.133'.
[  121.316116][ T4960] binder: BINDER_SET_CONTEXT_MGR already set
[  121.322509][ T4960] binder: 4959:4960 ioctl 4018620d 200000000040 returned -16
[  122.284217][ T4976] netlink: 12 bytes leftover after parsing attributes in process `syz.3.138'.
[  122.302317][ T4978] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  122.497492][ T4988] netlink: 12 bytes leftover after parsing attributes in process `syz.1.142'.
[  122.851532][ T4998] device syzkaller0 entered promiscuous mode
[  123.175770][ T5001] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  123.721181][ T5009] loop3: detected capacity change from 0 to 512
[  123.865678][ T5009] netlink: 24 bytes leftover after parsing attributes in process `syz.3.147'.
[  123.913508][ T5014] device syzkaller0 entered promiscuous mode
[  124.326112][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[  125.197587][ T4371] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  125.413343][ T5029] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  125.464034][ T4371] usb 5-1: Using ep0 maxpacket: 16
[  125.574615][ T5031] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  125.585336][ T4371] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  125.834161][ T4371] usb 5-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  125.861282][ T4371] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.918370][ T4371] usb 5-1: Product: syz
[  125.933992][ T4371] usb 5-1: Manufacturer: syz
[  125.934016][ T4371] usb 5-1: SerialNumber: syz
[  125.962044][ T4371] usb 5-1: config 0 descriptor??
[  126.050055][ T5040] loop3: detected capacity change from 0 to 4096
[  126.141136][ T5040] NILFS (loop3): invalid segment: Checksum error in segment payload
[  126.164102][ T5040] NILFS (loop3): trying rollback from an earlier position
[  126.466143][ T5040] NILFS (loop3): recovery complete
[  126.531318][ T5043] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  126.537407][ T1107] usb 5-1: USB disconnect, device number 2
[  126.658233][   T26] audit: type=1800 audit(1774890604.609:28): pid=5040 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.157" name="file1" dev="loop3" ino=13 res=0 errno=0
[  126.743179][ T5045] device syzkaller0 entered promiscuous mode
[  126.786853][ T5047] loop1: detected capacity change from 0 to 4096
[  126.863728][ T5047] NILFS (loop1): invalid segment: Checksum error in segment payload
[  126.883502][ T5047] NILFS (loop1): trying rollback from an earlier position
[  126.956745][ T5047] NILFS (loop1): recovery complete
[  126.982637][ T5051] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  127.032380][   T26] audit: type=1800 audit(1774890604.979:29): pid=5047 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.160" name="file1" dev="loop1" ino=15 res=0 errno=0
[  127.099265][ T5052] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  128.084983][ T5071] device syzkaller0 entered promiscuous mode
[  128.113931][ T4371] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  128.384202][ T4371] usb 1-1: Using ep0 maxpacket: 16
[  128.479198][ T5077] device syzkaller0 entered promiscuous mode
[  128.504249][ T4371] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  128.694268][ T4371] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  128.721780][ T4371] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  128.756723][ T4371] usb 1-1: Product: syz
[  128.771227][ T4371] usb 1-1: Manufacturer: syz
[  128.791481][ T4371] usb 1-1: SerialNumber: syz
[  128.824638][ T4371] usb 1-1: config 0 descriptor??
[  128.838520][ T5085] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  128.936448][ T5092] netlink: 16 bytes leftover after parsing attributes in process `syz.4.172'.
[  128.959626][ T5092] netlink: 32 bytes leftover after parsing attributes in process `syz.4.172'.
[  128.991173][ T5092] device gretap1 entered promiscuous mode
[  129.040687][ T5094] binder_alloc: 5093: binder_alloc_buf, no vma
[  129.169225][ T4371] usb 1-1: USB disconnect, device number 3
[  129.221052][ T5097] loop3: detected capacity change from 0 to 4096
[  129.267781][ T5097] NILFS (loop3): invalid segment: Checksum error in segment payload
[  129.283379][ T5102] device syzkaller0 entered promiscuous mode
[  129.289723][ T5097] NILFS (loop3): trying rollback from an earlier position
[  129.341836][ T5097] NILFS (loop3): recovery complete
[  129.402366][ T5106] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  129.472757][   T26] audit: type=1800 audit(1774890607.419:30): pid=5097 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.174" name="file1" dev="loop3" ino=13 res=0 errno=0
[  129.974939][ T5122] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  130.144332][ T5125] netlink: 12 bytes leftover after parsing attributes in process `syz.2.182'.
[  130.970302][ T5149] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  131.534090][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #202!!!
[  131.563871][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[  132.287659][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[  132.390430][ T5157] netlink: 12 bytes leftover after parsing attributes in process `syz.0.188'.
[  132.662110][ T5164] device syzkaller0 entered promiscuous mode
[  132.840413][ T5166] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  133.088689][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  133.095160][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  133.114643][ T5172] device syzkaller0 entered promiscuous mode
[  133.313762][ T5177] loop1: detected capacity change from 0 to 4096
[  133.435148][ T5177] NILFS (loop1): invalid segment: Checksum error in segment payload
[  133.475788][ T5177] NILFS (loop1): trying rollback from an earlier position
[  133.553964][ T5177] NILFS (loop1): recovery complete
[  133.574331][ T5184] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  133.662315][   T26] audit: type=1800 audit(1774890611.609:31): pid=5177 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.195" name="file1" dev="loop1" ino=13 res=0 errno=0
[  134.143238][ T5194] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  134.520873][ T5197] device syzkaller0 entered promiscuous mode
[  134.844585][ T5200] device syzkaller0 entered promiscuous mode
[  134.892155][ T5201] device syzkaller0 entered promiscuous mode
[  135.139996][ T5205] loop2: detected capacity change from 0 to 4096
[  135.358198][ T5205] NILFS (loop2): invalid segment: Checksum error in segment payload
[  135.423002][ T5205] NILFS (loop2): trying rollback from an earlier position
[  135.635726][ T5218] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  135.675003][ T5205] NILFS (loop2): recovery complete
[  135.747186][ T5222] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  136.002704][   T26] audit: type=1800 audit(1774890613.949:32): pid=5205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.203" name="file1" dev="loop2" ino=13 res=0 errno=0
[  136.100097][ T5226] device syzkaller0 entered promiscuous mode
[  136.426438][ T5233] loop4: detected capacity change from 0 to 4096
[  136.491387][ T5233] NILFS (loop4): invalid segment: Checksum error in segment payload
[  136.601834][ T5233] NILFS (loop4): trying rollback from an earlier position
[  136.726254][ T5233] NILFS (loop4): recovery complete
[  136.778058][ T5235] netlink: 4 bytes leftover after parsing attributes in process `syz.1.213'.
[  136.871957][ T5235] device erspan0 entered promiscuous mode
[  136.884425][ T5236] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  136.937893][ T5235] device macvtap1 entered promiscuous mode
[  136.978593][ T5237] netlink: 4 bytes leftover after parsing attributes in process `syz.1.213'.
[  137.003220][   T26] audit: type=1800 audit(1774890614.949:33): pid=5240 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.211" name="file1" dev="loop4" ino=13 res=0 errno=0
[  137.104729][ T5237] device erspan0 left promiscuous mode
[  137.130523][ T5237] device macvtap1 left promiscuous mode
[  138.108809][ T5251] device syzkaller0 entered promiscuous mode
[  138.816829][ T5262] loop2: detected capacity change from 0 to 512
[  138.893008][ T5261] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  138.950880][ T5261] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  138.987886][ T5261] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  139.043783][ T5262] netlink: 24 bytes leftover after parsing attributes in process `syz.2.212'.
[  139.694196][ T5271] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  140.588810][ T5274] device syzkaller0 entered promiscuous mode
[  141.713960][ T1107] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  141.750469][ T5291] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  141.927196][ T5289] loop3: detected capacity change from 0 to 4096
[  142.004058][ T1107] usb 1-1: Using ep0 maxpacket: 16
[  142.079510][ T5289] NILFS (loop3): invalid segment: Checksum error in segment payload
[  142.198139][ T5289] NILFS (loop3): trying rollback from an earlier position
[  142.314164][ T1107] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  142.503573][ T5289] NILFS (loop3): recovery complete
[  142.549860][ T1107] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  142.562994][ T1107] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.601279][ T5296] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  142.613014][ T1107] usb 1-1: Product: syz
[  142.628845][ T1107] usb 1-1: Manufacturer: syz
[  142.645107][ T1107] usb 1-1: SerialNumber: syz
[  142.672090][ T1107] usb 1-1: config 0 descriptor??
[  142.782887][   T26] audit: type=1800 audit(1774890620.729:34): pid=5289 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.226" name="file1" dev="loop3" ino=13 res=0 errno=0
[  143.595052][ T5312] loop1: detected capacity change from 0 to 1024
[  143.754237][ T5312] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  143.768011][ T5312] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  143.921027][ T5312] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  143.936797][ T5312] EXT4-fs (loop1): orphan cleanup on readonly fs
[  143.949889][ T5312] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.231: Inode bitmap for bg 0 marked uninitialized
[  143.971817][ T5312] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  144.330805][ T4486] usb 1-1: USB disconnect, device number 4
[  144.590860][ T5323] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  144.969837][ T5332] netlink: 12 bytes leftover after parsing attributes in process `syz.2.237'.
[  145.077133][ T5336] netlink: 12 bytes leftover after parsing attributes in process `syz.1.238'.
[  145.117600][ T5335] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  145.223236][ T5335] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  145.253538][ T5335] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  145.365152][ T5342] device syzkaller0 entered promiscuous mode
[  146.667895][ T5361] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  146.870776][ T5366] loop2: detected capacity change from 0 to 4096
[  146.950349][ T5366] NILFS (loop2): invalid segment: Checksum error in segment payload
[  146.979347][ T5366] NILFS (loop2): trying rollback from an earlier position
[  147.083604][ T5366] NILFS (loop2): recovery complete
[  147.123973][ T5372] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  147.335495][ T5375] loop0: detected capacity change from 0 to 512
[  147.626861][ T5377] loop1: detected capacity change from 0 to 1024
[  148.246609][ T5377] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  148.257084][ T5377] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  148.284188][ T5369] netlink: 24 bytes leftover after parsing attributes in process `syz.0.241'.
[  148.331323][ T5377] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  148.341429][ T5377] EXT4-fs (loop1): orphan cleanup on readonly fs
[  148.349473][ T5377] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.245: Inode bitmap for bg 0 marked uninitialized
[  148.364674][ T5377] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  148.727615][ T5386] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  150.310275][ T5402] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  150.394965][ T5408] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  150.424035][ T4339] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  150.664115][ T4339] usb 2-1: Using ep0 maxpacket: 16
[  150.715053][ T5415] tipc: Started in network mode
[  150.785008][ T4339] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  150.801995][ T5419] fuse: root generation should be zero
[  150.815589][ T5415] tipc: Node identity 1681415927a3, cluster identity 4711
[  150.894962][ T5415] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  150.927617][ T5420] device syzkaller0 entered promiscuous mode
[  150.984099][ T4339] usb 2-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  151.050248][ T4339] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  151.061379][ T5423] tipc: Resetting bearer <eth:syzkaller0>
[  151.072492][ T4339] usb 2-1: Product: syz
[  151.084028][ T4339] usb 2-1: Manufacturer: syz
[  151.088994][ T4339] usb 2-1: SerialNumber: syz
[  151.125211][ T4339] usb 2-1: config 0 descriptor??
[  151.259088][ T5411] tipc: Resetting bearer <eth:syzkaller0>
[  151.447457][ T5411] tipc: Disabling bearer <eth:syzkaller0>
[  151.461046][ T5429] netlink: 12 bytes leftover after parsing attributes in process `syz.3.258'.
[  151.505141][ T4486] usb 2-1: USB disconnect, device number 2
[  152.674515][ T5443] netlink: 'syz.4.260': attribute type 4 has an invalid length.
[  152.682357][ T5443] netlink: 17 bytes leftover after parsing attributes in process `syz.4.260'.
[  153.983069][ T5455] loop1: detected capacity change from 0 to 512
[  154.103009][ T5455] netlink: 24 bytes leftover after parsing attributes in process `syz.1.262'.
[  154.835518][ T5460] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  155.128023][ T5464] loop2: detected capacity change from 0 to 4096
[  155.451719][ T5470] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  155.491368][ T5464] NILFS (loop2): invalid segment: Checksum error in segment payload
[  155.536144][ T5470] device syzkaller0 entered promiscuous mode
[  155.564236][ T5464] NILFS (loop2): trying rollback from an earlier position
[  155.654854][ T5473] tipc: Resetting bearer <eth:syzkaller0>
[  155.666978][ T5464] NILFS (loop2): recovery complete
[  155.702639][ T5469] tipc: Resetting bearer <eth:syzkaller0>
[  155.722228][ T5475] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  155.791308][ T5469] tipc: Disabling bearer <eth:syzkaller0>
[  155.993413][   T26] audit: type=1800 audit(1774890633.939:35): pid=5478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.266" name="file1" dev="loop2" ino=13 res=0 errno=0
[  156.416481][ T5483] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  156.733896][    T7] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  156.886454][ T5490] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  157.844171][    T7] usb 2-1: Using ep0 maxpacket: 16
[  158.000329][    T7] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  158.196155][ T5506] loop2: detected capacity change from 0 to 4096
[  158.214222][    T7] usb 2-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  158.239177][    T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  158.277423][    T7] usb 2-1: Product: syz
[  158.289850][    T7] usb 2-1: Manufacturer: syz
[  158.303930][    T7] usb 2-1: SerialNumber: syz
[  158.328560][    T7] usb 2-1: config 0 descriptor??
[  158.352597][ T5506] NILFS (loop2): invalid segment: Checksum error in segment payload
[  158.418841][ T5506] NILFS (loop2): trying rollback from an earlier position
[  158.523799][ T5506] NILFS (loop2): recovery complete
[  158.577942][ T5508] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  158.699666][   T26] audit: type=1800 audit(1774890636.649:36): pid=5506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.277" name="file1" dev="loop2" ino=14 res=0 errno=0
[  158.778122][ T4486] usb 2-1: USB disconnect, device number 3
[  159.608162][ T5519] device syzkaller0 entered promiscuous mode
[  159.686716][ T5520] device syzkaller0 entered promiscuous mode
[  160.432220][ T5525] loop2: detected capacity change from 0 to 4096
[  160.637659][ T5525] NILFS (loop2): invalid segment: Checksum error in segment payload
[  160.678253][ T5525] NILFS (loop2): trying rollback from an earlier position
[  161.164431][ T5525] NILFS (loop2): recovery complete
[  161.186035][ T5534] loop1: detected capacity change from 0 to 512
[  161.214037][ T5535] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  161.335574][ T5534] netlink: 24 bytes leftover after parsing attributes in process `syz.1.282'.
[  161.494726][   T26] audit: type=1800 audit(1774890639.449:37): pid=5525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.283" name="file1" dev="loop2" ino=13 res=0 errno=0
[  162.386757][ T5555] netlink: 12 bytes leftover after parsing attributes in process `syz.0.289'.
[  162.653454][ T5566] netlink: 16 bytes leftover after parsing attributes in process `syz.4.290'.
[  162.719065][ T5566] netlink: 32 bytes leftover after parsing attributes in process `syz.4.290'.
[  162.777040][ T5565] loop3: detected capacity change from 0 to 4096
[  162.862554][ T5565] NILFS (loop3): invalid segment: Checksum error in segment payload
[  162.912231][ T5565] NILFS (loop3): trying rollback from an earlier position
[  162.981417][ T5565] NILFS (loop3): recovery complete
[  163.009627][ T5569] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  163.094389][   T26] audit: type=1800 audit(1774890641.049:38): pid=5565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.291" name="file1" dev="loop3" ino=14 res=0 errno=0
[  163.410445][ T5574] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  163.527800][ T5579] device syzkaller0 entered promiscuous mode
[  163.558697][ T5578] device syzkaller0 entered promiscuous mode
[  163.605019][ T5574] tipc: Resetting bearer <eth:syzkaller0>
[  163.729637][ T5572] tipc: Resetting bearer <eth:syzkaller0>
[  163.828575][ T5572] tipc: Disabling bearer <eth:syzkaller0>
[  163.974320][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[  163.983775][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!!
[  163.993025][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #0a!!!
[  164.600849][ T5594] device syzkaller0 entered promiscuous mode
[  164.723879][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #202!!!
[  165.091543][ T5601] loop2: detected capacity change from 0 to 4096
[  165.269463][ T5606] device syzkaller0 entered promiscuous mode
[  165.280962][ T5601] NILFS (loop2): invalid segment: Checksum error in segment payload
[  165.354048][ T5601] NILFS (loop2): trying rollback from an earlier position
[  165.537970][ T5601] NILFS (loop2): recovery complete
[  165.614052][ T5608] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  165.798607][   T26] audit: type=1800 audit(1774890643.749:39): pid=5609 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.299" name="file1" dev="loop2" ino=13 res=0 errno=0
[  166.004676][ T5611] tipc: Started in network mode
[  166.038359][ T5611] tipc: Node identity 96465a814f67, cluster identity 4711
[  166.119783][ T5611] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  166.235835][ T5612] device syzkaller0 entered promiscuous mode
[  166.436114][ T5614] tipc: Resetting bearer <eth:syzkaller0>
[  166.513781][ T5614] tipc: Disabling bearer <eth:syzkaller0>
[  166.559996][ T5618] device syzkaller0 entered promiscuous mode
[  168.071930][ T5633] tipc: Started in network mode
[  168.090354][ T5636] loop1: detected capacity change from 0 to 512
[  168.145989][ T5633] tipc: Node identity b21bffae0e53, cluster identity 4711
[  168.164453][ T5633] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  168.208288][ T5637] device syzkaller0 entered promiscuous mode
[  168.265384][ T5633] tipc: Resetting bearer <eth:syzkaller0>
[  168.395939][ T5631] tipc: Resetting bearer <eth:syzkaller0>
[  168.417311][ T5631] tipc: Disabling bearer <eth:syzkaller0>
[  168.491665][ T5636] netlink: 24 bytes leftover after parsing attributes in process `syz.1.306'.
[  168.701538][ T5643] device syzkaller0 entered promiscuous mode
[  169.199055][ T5652] netlink: 12 bytes leftover after parsing attributes in process `syz.3.313'.
[  170.101955][ T5657] loop4: detected capacity change from 0 to 4096
[  170.227254][ T5657] NILFS (loop4): invalid segment: Checksum error in segment payload
[  170.285077][ T5657] NILFS (loop4): trying rollback from an earlier position
[  170.384383][ T5657] NILFS (loop4): recovery complete
[  170.392887][ T5659] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  170.435739][ T5661] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  170.458086][ T5662] device syzkaller0 entered promiscuous mode
[  170.573453][   T26] audit: type=1800 audit(1774890648.519:40): pid=5657 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.314" name="file1" dev="loop4" ino=13 res=0 errno=0
[  170.619778][ T5659] tipc: Resetting bearer <eth:syzkaller0>
[  170.687510][ T5658] tipc: Resetting bearer <eth:syzkaller0>
[  170.765502][ T5658] tipc: Disabling bearer <eth:syzkaller0>
[  170.878732][ T5665] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  170.916066][ T5665] device syzkaller0 entered promiscuous mode
[  170.943768][ T5668] device syzkaller0 entered promiscuous mode
[  170.997143][ T5665] tipc: Resetting bearer <eth:syzkaller0>
[  171.180686][ T5664] tipc: Resetting bearer <eth:syzkaller0>
[  171.210991][ T5664] tipc: Disabling bearer <eth:syzkaller0>
[  171.440356][ T5681] tipc: Started in network mode
[  171.448859][ T5681] tipc: Node identity d23194635a1d, cluster identity 4711
[  171.462556][ T5681] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  171.489284][ T5681] device syzkaller0 entered promiscuous mode
[  171.546499][ T5681] tipc: Resetting bearer <eth:syzkaller0>
[  171.599746][ T5679] tipc: Resetting bearer <eth:syzkaller0>
[  171.675405][ T5679] tipc: Disabling bearer <eth:syzkaller0>
[  172.202838][ T5700] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  172.293019][ T5700] device syzkaller0 entered promiscuous mode
[  172.392999][ T5700] tipc: Resetting bearer <eth:syzkaller0>
[  172.493677][ T5699] tipc: Resetting bearer <eth:syzkaller0>
[  172.544471][ T5699] tipc: Disabling bearer <eth:syzkaller0>
[  173.053134][ T5708] loop4: detected capacity change from 0 to 4096
[  173.148385][ T5708] NILFS (loop4): invalid segment: Checksum error in segment payload
[  173.173964][ T5708] NILFS (loop4): trying rollback from an earlier position
[  173.278085][ T5708] NILFS (loop4): recovery complete
[  173.351947][ T5716] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  173.439131][   T26] audit: type=1800 audit(1774890651.389:41): pid=5719 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.329" name="file1" dev="loop4" ino=13 res=0 errno=0
[  173.472607][ T5718] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  174.446724][ T5737] loop1: detected capacity change from 0 to 512
[  174.622818][ T5737] netlink: 24 bytes leftover after parsing attributes in process `syz.1.330'.
[  175.330296][ T5744] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  175.366187][ T5744] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  175.505302][ T5744] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  176.550432][ T5747] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  176.785362][ T5753] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  176.805248][ T5753] device syzkaller0 entered promiscuous mode
[  176.873549][ T5753] tipc: Resetting bearer <eth:syzkaller0>
[  176.910739][ T5752] tipc: Resetting bearer <eth:syzkaller0>
[  176.949707][ T5752] tipc: Disabling bearer <eth:syzkaller0>
[  177.793590][ T5767] loop1: detected capacity change from 0 to 4096
[  177.905000][ T5767] NILFS (loop1): invalid segment: Checksum error in segment payload
[  177.939936][ T5764] loop4: detected capacity change from 0 to 4096
[  177.949024][ T5767] NILFS (loop1): trying rollback from an earlier position
[  178.042254][ T5767] NILFS (loop1): recovery complete
[  178.097457][ T5769] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  178.153992][ T5764] NILFS (loop4): invalid segment: Checksum error in segment payload
[  178.203556][ T5764] NILFS (loop4): trying rollback from an earlier position
[  178.221258][   T26] audit: type=1800 audit(1774890656.169:42): pid=5773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.344" name="file1" dev="loop1" ino=13 res=0 errno=0
[  178.305662][ T5764] NILFS (loop4): recovery complete
[  178.356190][ T5774] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  178.415338][   T26] audit: type=1800 audit(1774890656.369:43): pid=5764 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.343" name="file1" dev="loop4" ino=13 res=0 errno=0
[  178.514052][ T4373] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  178.784043][ T4373] usb 1-1: Using ep0 maxpacket: 16
[  178.904149][ T4373] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.920542][ T5782] device syzkaller0 entered promiscuous mode
[  179.041795][ T5787] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  179.094096][ T4373] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  179.111358][ T4373] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.121911][ T5789] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  179.169587][ T5789] netlink: 16 bytes leftover after parsing attributes in process `syz.4.349'.
[  179.184137][ T4373] usb 1-1: Product: syz
[  179.201618][ T5789] netlink: 32 bytes leftover after parsing attributes in process `syz.4.349'.
[  179.204547][ T4373] usb 1-1: Manufacturer: syz
[  179.244825][ T4486] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  179.253684][ T4373] usb 1-1: SerialNumber: syz
[  179.292349][ T4373] usb 1-1: config 0 descriptor??
[  179.524026][ T4486] usb 3-1: Using ep0 maxpacket: 16
[  179.549434][ T5795] netlink: 12 bytes leftover after parsing attributes in process `syz.3.352'.
[  179.633259][ T4373] usb 1-1: USB disconnect, device number 5
[  179.664782][ T4486] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.854200][ T4486] usb 3-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  179.863614][ T4486] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.887554][ T4486] usb 3-1: Product: syz
[  179.891877][ T4486] usb 3-1: Manufacturer: syz
[  179.907534][ T4486] usb 3-1: SerialNumber: syz
[  179.931693][ T4486] usb 3-1: config 0 descriptor??
[  179.979005][    T7] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  180.273948][    T7] usb 2-1: Using ep0 maxpacket: 16
[  180.407313][ T4486] usb 3-1: USB disconnect, device number 3
[  180.421007][    T7] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  180.642566][ T5812] loop0: detected capacity change from 0 to 512
[  181.414232][    T7] usb 2-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  181.434044][    T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.443761][    T7] usb 2-1: Product: syz
[  181.466646][    T7] usb 2-1: Manufacturer: syz
[  181.471925][    T7] usb 2-1: SerialNumber: syz
[  181.508960][    T7] usb 2-1: config 0 descriptor??
[  181.619736][ T5822] loop2: detected capacity change from 0 to 4096
[  181.701397][ T5822] NILFS (loop2): invalid segment: Checksum error in segment payload
[  181.717444][ T5822] NILFS (loop2): trying rollback from an earlier position
[  181.798204][ T5822] NILFS (loop2): recovery complete
[  181.828395][ T5824] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  181.885468][   T26] audit: type=1800 audit(1774890659.839:44): pid=5822 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.358" name="file1" dev="loop2" ino=13 res=0 errno=0
[  181.945099][ T5825] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  181.961064][ T4373] usb 2-1: USB disconnect, device number 4
[  181.995059][ T5825] device syzkaller0 entered promiscuous mode
[  182.025137][ T5823] tipc: Resetting bearer <eth:syzkaller0>
[  182.067085][ T5823] tipc: Disabling bearer <eth:syzkaller0>
[  182.295445][ T5828] loop3: detected capacity change from 0 to 4096
[  182.391602][ T5828] NILFS (loop3): invalid segment: Checksum error in segment payload
[  182.420532][ T5828] NILFS (loop3): trying rollback from an earlier position
[  182.513017][ T5828] NILFS (loop3): recovery complete
[  182.581350][ T5833] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  182.688161][   T26] audit: type=1800 audit(1774890660.639:45): pid=5838 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.360" name="file1" dev="loop3" ino=13 res=0 errno=0
[  182.904001][ T4376] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  183.084226][    T7] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  183.284015][ T4376] usb 1-1: config 8 has an invalid interface number: 177 but max is 0
[  183.315527][ T4376] usb 1-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  183.371529][ T4376] usb 1-1: config 8 has no interface number 0
[  183.399027][ T4376] usb 1-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  183.467871][ T5849] device syzkaller0 entered promiscuous mode
[  183.484887][ T4376] usb 1-1: config 8 interface 177 has no altsetting 0
[  183.504167][    T7] usb 2-1: config 8 has an invalid interface number: 177 but max is 0
[  183.522466][    T7] usb 2-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  183.537004][ T4376] usb 1-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  183.573384][    T7] usb 2-1: config 8 has no interface number 0
[  183.587983][ T4376] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  183.610942][    T7] usb 2-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  183.676163][ T4376] ir_toy 1-1:8.177: required endpoints not found
[  183.694774][    T7] usb 2-1: config 8 interface 177 has no altsetting 0
[  183.739052][    T7] usb 2-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  183.791032][    T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.126598][    T7] ir_toy 2-1:8.177: required endpoints not found
[  184.174048][ T5857] mmap: syz.4.367 (5857) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  186.399948][ T5868] loop2: detected capacity change from 0 to 512
[  187.747956][ T5874] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  187.760954][ T5874] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  187.798283][ T5874] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  188.021994][ T4376] usb 2-1: USB disconnect, device number 5
[  188.292988][ T1107] usb 1-1: USB disconnect, device number 6
[  188.331364][ T5882] loop3: detected capacity change from 0 to 4096
[  188.448956][ T5882] NILFS (loop3): invalid segment: Checksum error in segment payload
[  188.526198][ T5882] NILFS (loop3): trying rollback from an earlier position
[  188.607261][ T5882] NILFS (loop3): recovery complete
[  188.642812][ T5888] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  188.761879][   T26] audit: type=1800 audit(1774890666.709:46): pid=5882 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.373" name="file1" dev="loop3" ino=13 res=0 errno=0
[  189.905985][ T5894] loop4: detected capacity change from 0 to 4096
[  190.033414][ T5894] NILFS (loop4): invalid segment: Checksum error in segment payload
[  190.053937][ T5894] NILFS (loop4): trying rollback from an earlier position
[  190.110054][ T5894] NILFS (loop4): recovery complete
[  190.204141][ T5899] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  190.247746][   T26] audit: type=1800 audit(1774890668.199:47): pid=5894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.376" name="file1" dev="loop4" ino=13 res=0 errno=0
[  190.310044][ T5898] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  190.329976][ T5898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  190.407034][ T5898] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  190.628981][ T5905] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  190.757258][ T5908] fuse: Bad value for 'fd'
[  191.044000][ T4486] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  191.060793][ T5915] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  191.104994][ T5915] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  191.133175][ T5915] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  191.303985][ T4486] usb 3-1: Using ep0 maxpacket: 16
[  191.440537][ T4486] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  191.494202][ T4373] Bluetooth: hci0: command 0x0406 tx timeout
[  191.521044][ T4373] Bluetooth: hci2: command 0x0406 tx timeout
[  191.539802][ T4373] Bluetooth: hci3: command 0x0406 tx timeout
[  191.553951][ T4373] Bluetooth: hci1: command 0x0406 tx timeout
[  191.804118][ T5921] loop0: detected capacity change from 0 to 512
[  191.854310][ T4486] usb 3-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  192.063730][ T4486] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  192.152505][ T4486] usb 3-1: Product: syz
[  192.543909][ T4373] Bluetooth: hci4: command 0x0406 tx timeout
[  192.613582][ T4486] usb 3-1: Manufacturer: syz
[  192.629795][ T4486] usb 3-1: SerialNumber: syz
[  192.666688][ T5923] binder: BINDER_SET_CONTEXT_MGR already set
[  192.672837][ T5923] binder: 5922:5923 ioctl 4018620d 200000000040 returned -16
[  192.745813][ T4486] usb 3-1: config 0 descriptor??
[  192.982859][ T5929] device syzkaller0 entered promiscuous mode
[  192.997372][ T5930] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  193.097129][    T7] usb 3-1: USB disconnect, device number 4
[  193.105689][ T5932] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  193.147935][ T5932] netlink: 16 bytes leftover after parsing attributes in process `syz.4.384'.
[  193.173993][ T5932] netlink: 32 bytes leftover after parsing attributes in process `syz.4.384'.
[  193.403261][ T5934] loop1: detected capacity change from 0 to 4096
[  193.431101][ T5936] fuse: Bad value for 'fd'
[  193.476502][ T5934] NILFS (loop1): invalid segment: Checksum error in segment payload
[  193.491071][ T5934] NILFS (loop1): trying rollback from an earlier position
[  193.517343][ T5934] NILFS (loop1): recovery complete
[  193.552411][ T5938] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  193.589482][   T26] audit: type=1800 audit(1774890671.539:48): pid=5934 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.386" name="file1" dev="loop1" ino=13 res=0 errno=0
[  193.713954][    T7] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  193.751668][ T5941] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  193.798642][ T5941] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  193.807405][ T5941] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  193.955245][    T7] usb 4-1: Using ep0 maxpacket: 16
[  194.075577][    T7] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  194.119600][ T5950] loop2: detected capacity change from 0 to 4096
[  194.206066][ T5950] NILFS (loop2): invalid segment: Checksum error in segment payload
[  194.222257][ T5950] NILFS (loop2): trying rollback from an earlier position
[  194.264245][    T7] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  194.282574][    T7] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  194.295286][    T7] usb 4-1: Product: syz
[  194.300136][    T7] usb 4-1: Manufacturer: syz
[  194.313967][ T5950] NILFS (loop2): recovery complete
[  194.324111][    T7] usb 4-1: SerialNumber: syz
[  194.344493][    T7] usb 4-1: config 0 descriptor??
[  194.366470][ T5951] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  194.409465][   T26] audit: type=1800 audit(1774890672.359:49): pid=5950 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.391" name="file1" dev="loop2" ino=13 res=0 errno=0
[  194.531499][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  194.538521][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  194.666286][ T4486] usb 4-1: USB disconnect, device number 2
[  196.252729][ T5973] loop0: detected capacity change from 0 to 512
[  196.433946][ T1107] usb 3-1: new full-speed USB device number 5 using dummy_hcd
[  196.522650][ T5975] netlink: 4 bytes leftover after parsing attributes in process `syz.4.398'.
[  196.545152][ T5975] device bridge_slave_1 left promiscuous mode
[  196.554370][ T5975] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.583770][ T5976] loop5: detected capacity change from 0 to 7
[  196.598226][ T5976] Dev loop5: unable to read RDB block 7
[  196.614310][ T5976]  loop5: AHDI p1 p2 p3
[  196.654249][ T5976] loop5: partition table partially beyond EOD, truncated
[  196.676169][ T5975] device bridge_slave_0 left promiscuous mode
[  196.704769][ T5975] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.747322][ T5976] loop5: p1 start 1818582900 is beyond EOD, truncated
[  196.798333][ T5976] loop5: p3 start 335544320 is beyond EOD, truncated
[  196.825803][ T1107] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  196.850925][ T1107] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  196.880726][ T1107] usb 3-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  196.912769][ T1107] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.937506][ T1107] usb 3-1: config 0 descriptor??
[  197.384106][ T4486] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  197.420430][ T1107] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  197.531676][ T5986] device syzkaller0 entered promiscuous mode
[  197.544486][ T1107] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  197.571402][ T1107] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  197.585727][ T1107] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  197.602485][ T1107] elan 0003:04F3:0755.0001: unknown main item tag 0x0
[  197.635505][ T1107] elan 0003:04F3:0755.0001: failed to start in urb: -90
[  197.653920][ T4486] usb 4-1: Using ep0 maxpacket: 16
[  197.701554][ T1107] elan 0003:04F3:0755.0001: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.2-1/input0
[  197.804099][ T4486] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  197.832074][ T1107] usb 3-1: USB disconnect, device number 5
[  197.953584][ T5993] loop5: detected capacity change from 0 to 7
[  198.006318][ T4487] Dev loop5: unable to read RDB block 7
[  198.018464][ T4487]  loop5: unable to read partition table
[  198.031595][ T5990] loop0: detected capacity change from 0 to 4096
[  198.039321][ T4486] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  198.060626][ T4487] loop5: partition table beyond EOD, truncated
[  198.065155][ T4486] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.120698][ T5990] NILFS (loop0): invalid segment: Checksum error in segment payload
[  198.144421][ T4486] usb 4-1: Product: syz
[  198.155050][ T5990] NILFS (loop0): trying rollback from an earlier position
[  198.182510][ T4486] usb 4-1: Manufacturer: syz
[  198.196471][ T5992] fido_id[5992]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory
[  198.235009][ T4486] usb 4-1: SerialNumber: syz
[  198.273454][ T4486] usb 4-1: config 0 descriptor??
[  198.281074][ T5990] NILFS (loop0): recovery complete
[  198.303157][ T5993] Dev loop5: unable to read RDB block 7
[  198.331276][ T5993]  loop5: unable to read partition table
[  198.338085][ T5996] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  198.434096][ T5993] loop5: partition table beyond EOD, truncated
[  198.496287][   T26] audit: type=1800 audit(1774890676.449:50): pid=5990 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.403" name="file1" dev="loop0" ino=13 res=0 errno=0
[  198.524130][ T5993] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  198.575999][ T5995] loop2: detected capacity change from 0 to 4096
[  198.668688][ T4486] usb 4-1: USB disconnect, device number 3
[  198.715031][ T5995] NILFS (loop2): invalid segment: Checksum error in segment payload
[  198.723454][ T5995] NILFS (loop2): trying rollback from an earlier position
[  198.916880][ T5995] NILFS (loop2): recovery complete
[  198.929773][ T6000] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  199.028518][   T26] audit: type=1800 audit(1774890676.979:51): pid=5995 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.405" name="file1" dev="loop2" ino=13 res=0 errno=0
[  199.153923][ T1107] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  199.544440][ T1107] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  199.574110][ T1107] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  199.774141][ T4257] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  199.794063][ T1107] usb 2-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  199.826954][ T1107] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.890855][ T1107] usb 2-1: Product: syz
[  199.912725][ T1107] usb 2-1: Manufacturer: syz
[  199.932898][ T1107] usb 2-1: SerialNumber: syz
[  199.973677][ T1107] usb 2-1: config 0 descriptor??
[  200.176055][ T4257] usb 4-1: config 8 has an invalid interface number: 177 but max is 0
[  200.201125][ T4257] usb 4-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  200.268117][ T4257] usb 4-1: config 8 has no interface number 0
[  200.309499][ T4257] usb 4-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  200.356112][ T4257] usb 4-1: config 8 interface 177 has no altsetting 0
[  200.380054][ T4257] usb 4-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  200.392937][ T6016] loop5: detected capacity change from 0 to 7
[  200.413977][ T4179] Dev loop5: unable to read RDB block 7
[  200.419694][ T4179]  loop5: unable to read partition table
[  200.427590][ T4257] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.442967][ T4179] loop5: partition table beyond EOD, truncated
[  200.464722][ T1107] usb 2-1: USB disconnect, device number 6
[  200.522296][ T6016] Dev loop5: unable to read RDB block 7
[  200.536516][ T6016]  loop5: unable to read partition table
[  200.569955][ T6016] loop5: partition table beyond EOD, truncated
[  200.604281][ T6016] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  200.626490][ T4257] ir_toy 4-1:8.177: required endpoints not found
[  201.554042][ T1107] usb 2-1: new full-speed USB device number 7 using dummy_hcd
[  201.905972][ T6034] loop2: detected capacity change from 0 to 512
[  201.974000][ T1107] usb 2-1: config 8 has an invalid interface number: 177 but max is 0
[  202.008421][ T1107] usb 2-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  202.060399][ T1107] usb 2-1: config 8 has no interface number 0
[  202.101025][ T1107] usb 2-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  202.176245][ T1107] usb 2-1: config 8 interface 177 has no altsetting 0
[  202.234691][ T1107] usb 2-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  202.274069][ T1107] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.343297][ T4476] usb 4-1: USB disconnect, device number 4
[  202.403017][ T6038] loop3: detected capacity change from 0 to 256
[  202.411965][ T1107] ir_toy 2-1:8.177: required endpoints not found
[  202.549484][   T26] audit: type=1800 audit(1774890680.499:52): pid=6038 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.418" name="file1" dev="loop3" ino=1048591 res=0 errno=0
[  202.733903][ T4376] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  202.951602][ T6041] netlink: 4 bytes leftover after parsing attributes in process `syz.3.419'.
[  203.032848][ T6041] device bridge_slave_1 left promiscuous mode
[  203.117243][ T6041] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.136031][ T4376] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  203.155722][ T6041] device bridge_slave_0 left promiscuous mode
[  203.164137][ T4376] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  203.212543][ T6041] bridge0: port 1(bridge_slave_0) entered disabled state
[  203.364316][ T4376] usb 5-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  203.393953][ T4376] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  203.430877][ T4376] usb 5-1: Product: syz
[  203.457904][ T4376] usb 5-1: Manufacturer: syz
[  203.496117][ T4376] usb 5-1: SerialNumber: syz
[  203.560347][ T4376] usb 5-1: config 0 descriptor??
[  203.879398][ T4476] usb 5-1: USB disconnect, device number 3
[  203.962935][ T6045] loop3: detected capacity change from 0 to 4096
[  204.113727][ T6045] NILFS (loop3): invalid segment: Checksum error in segment payload
[  204.149898][ T6045] NILFS (loop3): trying rollback from an earlier position
[  204.240721][ T6045] NILFS (loop3): recovery complete
[  204.279946][ T6048] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  204.337465][   T26] audit: type=1800 audit(1774890682.289:53): pid=6045 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.420" name="file1" dev="loop3" ino=13 res=0 errno=0
[  204.656382][ T6059] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  204.725146][ T6059] netlink: 16 bytes leftover after parsing attributes in process `syz.2.423'.
[  204.772290][ T4257] usb 2-1: USB disconnect, device number 7
[  204.831212][ T6059] netlink: 32 bytes leftover after parsing attributes in process `syz.2.423'.
[  204.935203][ T6059] device gretap1 entered promiscuous mode
[  205.150639][ T6071] netlink: 16 bytes leftover after parsing attributes in process `syz.2.427'.
[  205.271478][ T6073] netlink: 12 bytes leftover after parsing attributes in process `syz.2.428'.
[  205.414000][ T4257] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  205.537308][ T6079] loop0: detected capacity change from 0 to 256
[  205.620952][   T26] audit: type=1800 audit(1774890683.569:54): pid=6079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.430" name="file1" dev="loop0" ino=1048593 res=0 errno=0
[  205.704412][ T4257] usb 4-1: Using ep0 maxpacket: 16
[  205.834209][ T4257] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  205.835231][ T6083] netlink: 8 bytes leftover after parsing attributes in process `syz.0.432'.
[  205.883362][ T6083] netlink: 4 bytes leftover after parsing attributes in process `syz.0.432'.
[  205.973977][ T4371] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  206.045198][ T4257] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  206.114241][ T4257] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.123314][ T4257] usb 4-1: Product: syz
[  206.168995][ T4257] usb 4-1: Manufacturer: syz
[  206.183910][ T4257] usb 4-1: SerialNumber: syz
[  206.213313][ T4257] usb 4-1: config 0 descriptor??
[  206.223913][ T4371] usb 5-1: Using ep0 maxpacket: 32
[  206.350007][ T4371] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  206.430004][   T23] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[  206.448575][ T6094] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  206.475133][ T6094] netlink: 16 bytes leftover after parsing attributes in process `syz.2.435'.
[  206.504076][ T6094] netlink: 32 bytes leftover after parsing attributes in process `syz.2.435'.
[  206.534239][ T4371] usb 5-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  206.561450][ T4371] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  206.572445][    T7] usb 4-1: USB disconnect, device number 5
[  206.601098][ T4371] usb 5-1: Product: syz
[  206.611279][ T4371] usb 5-1: Manufacturer: syz
[  206.622132][ T4371] usb 5-1: SerialNumber: syz
[  206.652174][ T4371] usb 5-1: config 0 descriptor??
[  206.694098][   T23] usb 1-1: Using ep0 maxpacket: 16
[  206.778265][ T6096] loop1: detected capacity change from 0 to 512
[  206.814174][   T23] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  206.918488][    T7] usb 5-1: USB disconnect, device number 4
[  207.026727][   T23] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  207.046854][   T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  207.091079][   T23] usb 1-1: Product: syz
[  207.111521][   T23] usb 1-1: Manufacturer: syz
[  207.122311][   T23] usb 1-1: SerialNumber: syz
[  207.153682][   T23] usb 1-1: config 0 descriptor??
[  207.276070][ T6098] loop3: detected capacity change from 0 to 4096
[  207.338322][ T6098] NILFS (loop3): invalid segment: Checksum error in segment payload
[  207.387678][ T6098] NILFS (loop3): trying rollback from an earlier position
[  207.510281][ T6098] NILFS (loop3): recovery complete
[  207.519467][ T6101] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  207.525524][ T4257] usb 1-1: USB disconnect, device number 7
[  207.756039][ T6108] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  208.187491][ T6120] netlink: 'syz.0.442': attribute type 29 has an invalid length.
[  208.227370][ T6120] netlink: 'syz.0.442': attribute type 29 has an invalid length.
[  208.264940][ T6122] netlink: 'syz.0.442': attribute type 29 has an invalid length.
[  208.398299][ T6124] device syzkaller0 entered promiscuous mode
[  208.849111][ T6134] loop1: detected capacity change from 0 to 256
[  208.958427][   T26] audit: type=1800 audit(1774890686.909:55): pid=6134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.446" name="file1" dev="loop1" ino=1048595 res=0 errno=0
[  209.078669][ T6118] loop4: detected capacity change from 0 to 32768
[  209.121891][ T6118] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.441 (6118)
[  209.140051][ T6136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.447'.
[  209.177697][ T6136] netlink: 4 bytes leftover after parsing attributes in process `syz.3.447'.
[  209.245405][ T6118] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  209.315974][ T6118] BTRFS info (device loop4): setting nodatasum
[  209.356631][ T6118] BTRFS info (device loop4): force zlib compression, level 3
[  209.387128][ T6118] BTRFS info (device loop4): setting incompat feature flag for COMPRESS_LZO (0x8)
[  209.463914][ T6118] BTRFS info (device loop4): use lzo compression, level 0
[  209.503937][ T6118] BTRFS info (device loop4): turning on flush-on-commit
[  209.510959][ T6118] BTRFS info (device loop4): enabling auto defrag
[  209.563910][ T6118] BTRFS info (device loop4): max_inline at 4096
[  209.570792][ T6118] BTRFS info (device loop4): using free space tree
[  209.608394][ T6143] loop1: detected capacity change from 0 to 4096
[  209.643458][ T6118] BTRFS info (device loop4): has skinny extents
[  209.677028][ T6143] NILFS (loop1): invalid segment: Checksum error in segment payload
[  209.719105][ T6150] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  209.757195][ T6143] NILFS (loop1): trying rollback from an earlier position
[  209.785870][ T6150] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  209.889481][ T6143] NILFS (loop1): recovery complete
[  209.984576][ T6150] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  210.013959][   T23] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  210.027896][ T6169] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  210.253936][ T6118] BTRFS info (device loop4): enabling ssd optimizations
[  210.334533][ T6181] netlink: 'syz.1.454': attribute type 29 has an invalid length.
[  210.384268][   T23] usb 3-1: config 8 has an invalid interface number: 177 but max is 0
[  210.401594][   T23] usb 3-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  210.492811][   T23] usb 3-1: config 8 has no interface number 0
[  210.540752][   T23] usb 3-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  210.609266][   T23] usb 3-1: config 8 interface 177 has no altsetting 0
[  210.645762][   T23] usb 3-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  210.693380][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.796810][   T23] ir_toy 3-1:8.177: required endpoints not found
[  210.812584][ T6181] netlink: 'syz.1.454': attribute type 29 has an invalid length.
[  210.862060][ T6182] netlink: 'syz.1.454': attribute type 29 has an invalid length.
[  211.084509][ T6189] device syzkaller0 entered promiscuous mode
[  211.974438][ T6201] loop1: detected capacity change from 0 to 512
[  212.385849][ T6202] netlink: 4 bytes leftover after parsing attributes in process `syz.0.460'.
[  212.424076][ T6202] device bridge_slave_1 left promiscuous mode
[  212.460960][ T6202] bridge0: port 2(bridge_slave_1) entered disabled state
[  212.751586][ T6202] device bridge_slave_0 left promiscuous mode
[  212.762080][ T6202] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.116672][ T4375] usb 3-1: USB disconnect, device number 6
[  213.347933][ T6217] loop0: detected capacity change from 0 to 4096
[  213.400949][ T6222] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  213.428716][ T6224] netlink: 'syz.2.467': attribute type 29 has an invalid length.
[  213.453999][ T6219] loop4: detected capacity change from 0 to 4096
[  213.461366][ T6217] NILFS (loop0): invalid segment: Checksum error in segment payload
[  213.486401][ T6222] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  213.509160][ T6222] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  213.518053][ T6217] NILFS (loop0): trying rollback from an earlier position
[  213.577368][ T6217] NILFS (loop0): recovery complete
[  213.607322][ T6219] NILFS (loop4): invalid segment: Checksum error in segment payload
[  213.641579][ T6227] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  213.671205][ T6219] NILFS (loop4): trying rollback from an earlier position
[  213.748317][ T6224] netlink: 'syz.2.467': attribute type 29 has an invalid length.
[  213.778772][ T6226] netlink: 'syz.2.467': attribute type 29 has an invalid length.
[  213.801079][ T6219] NILFS (loop4): recovery complete
[  213.834138][ T6230] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  213.938303][   T26] audit: type=1800 audit(1774890691.889:56): pid=6219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.459" name="file1" dev="loop4" ino=13 res=0 errno=0
[  214.141458][ T6241] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  214.182615][ T6241] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  214.196258][ T6241] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  215.093969][ T4375] usb 2-1: new full-speed USB device number 8 using dummy_hcd
[  215.314828][ T6267] loop3: detected capacity change from 0 to 512
[  215.554077][ T4375] usb 2-1: config 8 has an invalid interface number: 177 but max is 0
[  215.590643][ T4375] usb 2-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  215.667030][ T4375] usb 2-1: config 8 has no interface number 0
[  215.695760][ T4375] usb 2-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  215.826869][ T4375] usb 2-1: config 8 interface 177 has no altsetting 0
[  215.876128][ T4375] usb 2-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  215.927275][ T4375] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  216.056826][ T4375] ir_toy 2-1:8.177: required endpoints not found
[  216.831896][ T6277] netlink: 'syz.4.480': attribute type 29 has an invalid length.
[  216.904345][ T6277] netlink: 'syz.4.480': attribute type 29 has an invalid length.
[  216.955023][ T6278] netlink: 'syz.4.480': attribute type 29 has an invalid length.
[  217.459789][ T6282] loop0: detected capacity change from 0 to 4096
[  217.622605][ T6287] loop4: detected capacity change from 0 to 4096
[  217.643638][ T6282] NILFS (loop0): invalid segment: Checksum error in segment payload
[  217.673053][ T6282] NILFS (loop0): trying rollback from an earlier position
[  217.721082][ T6287] NILFS (loop4): invalid segment: Checksum error in segment payload
[  217.784036][ T6287] NILFS (loop4): trying rollback from an earlier position
[  217.810774][ T6282] NILFS (loop0): recovery complete
[  217.884894][ T6290] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  217.907612][ T6287] NILFS (loop4): recovery complete
[  217.948283][ T6292] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  218.004257][   T26] audit: type=1800 audit(1774890695.959:57): pid=6282 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.482" name="file1" dev="loop0" ino=13 res=0 errno=0
[  218.156595][   T26] audit: type=1800 audit(1774890695.999:58): pid=6287 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.483" name="file1" dev="loop4" ino=14 res=0 errno=0
[  218.367722][ T6300] netlink: 4 bytes leftover after parsing attributes in process `syz.4.487'.
[  218.382985][   T21] usb 2-1: USB disconnect, device number 8
[  218.442210][ T6300] loop5: detected capacity change from 0 to 7
[  218.455004][ T4179] Dev loop5: unable to read RDB block 7
[  218.460778][ T4179]  loop5: unable to read partition table
[  218.468077][ T4179] loop5: partition table beyond EOD, truncated
[  218.474823][ T4375] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[  218.504039][ T6300] Dev loop5: unable to read RDB block 7
[  218.542973][ T6300]  loop5: unable to read partition table
[  218.587390][ T6300] loop5: partition table beyond EOD, truncated
[  218.633947][ T6300] loop_reread_partitions: partition scan of loop5 (þ被xü—ŸÑà– ) failed (rc=-5)
[  218.874338][ T4375] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  218.898598][ T4375] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  218.921383][ T6318] netlink: 'syz.4.492': attribute type 29 has an invalid length.
[  218.994825][ T6318] netlink: 'syz.4.492': attribute type 29 has an invalid length.
[  219.023728][ T6320] netlink: 'syz.4.492': attribute type 29 has an invalid length.
[  219.074103][ T4375] usb 3-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac
[  219.097333][ T4375] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  219.133985][ T4375] usb 3-1: Product: syz
[  219.149041][ T4375] usb 3-1: Manufacturer: syz
[  219.164530][ T4375] usb 3-1: SerialNumber: syz
[  219.231458][ T4375] usb 3-1: config 0 descriptor??
[  219.339558][ T6325] device syzkaller0 entered promiscuous mode
[  219.570453][ T4225] usb 3-1: USB disconnect, device number 7
[  219.975746][ T6331] loop0: detected capacity change from 0 to 4096
[  220.072431][ T6331] NILFS (loop0): invalid segment: Checksum error in segment payload
[  220.154153][ T6331] NILFS (loop0): trying rollback from an earlier position
[  220.290994][ T6337] netlink: 4 bytes leftover after parsing attributes in process `syz.4.499'.
[  220.311925][ T6331] NILFS (loop0): recovery complete
[  220.342792][ T6337] loop5: detected capacity change from 0 to 7
[  220.393957][ T6342] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  220.423245][ T4487] Dev loop5: unable to read RDB block 7
[  220.436265][ T4487]  loop5: AHDI p1 p2 p3
[  220.451072][ T4487] loop5: partition table partially beyond EOD, truncated
[  220.471598][   T26] audit: type=1800 audit(1774890698.419:59): pid=6331 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.497" name="file1" dev="loop0" ino=14 res=0 errno=0
[  220.526374][ T4487] loop5: p1 start 1818582900 is beyond EOD, truncated
[  220.573506][ T4487] loop5: p3 start 335544320 is beyond EOD, truncated
[  220.619031][ T6337] Dev loop5: unable to read RDB block 7
[  220.673010][ T6337]  loop5: AHDI p1 p2 p3
[  220.700447][ T6337] loop5: partition table partially beyond EOD, truncated
[  220.719477][ T6337] loop5: p1 start 1818582900 is beyond EOD, truncated
[  220.770957][ T6337] loop5: p3 start 335544320 is beyond EOD, truncated
[  220.944370][ T6349] loop0: detected capacity change from 0 to 4096
[  221.050993][ T6349] NILFS (loop0): invalid segment: Checksum error in segment payload
[  221.059494][ T6356] netlink: 'syz.4.504': attribute type 29 has an invalid length.
[  221.119708][ T6349] NILFS (loop0): trying rollback from an earlier position
[  221.142052][ T6356] netlink: 'syz.4.504': attribute type 29 has an invalid length.
[  221.191864][ T6349] NILFS (loop0): recovery complete
[  221.202571][ T6357] netlink: 'syz.4.504': attribute type 29 has an invalid length.
[  221.225194][ T6358] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  221.314020][   T26] audit: type=1800 audit(1774890699.259:60): pid=6349 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.502" name="file1" dev="loop0" ino=13 res=0 errno=0
[  221.400538][ T6360] loop1: detected capacity change from 0 to 512
[  222.922477][ T6382] IPv6: ADDRCONF(NETDEV_CHANGE): bpq0: link becomes ready
[  222.986400][ T6384] loop5: detected capacity change from 0 to 7
[  223.061482][ T4179] Dev loop5: unable to read RDB block 7
[  223.092945][ T4179]  loop5: AHDI p1 p2 p3
[  223.176374][ T4179] loop5: partition table partially beyond EOD, truncated
[  223.263025][ T4179] loop5: p1 start 1818582900 is beyond EOD, truncated
[  223.316130][ T4179] loop5: p3 start 335544320 is beyond EOD, truncated
[  223.372847][ T6384] Dev loop5: unable to read RDB block 7
[  223.387955][ T6384]  loop5: AHDI p1 p2 p3
[  223.395742][ T6384] loop5: partition table partially beyond EOD, truncated
[  223.450907][ T6384] loop5: p1 start 1818582900 is beyond EOD, truncated
[  223.476587][ T6384] loop5: p3 start 335544320 is beyond EOD, truncated
[  223.648017][ T6390] loop2: detected capacity change from 0 to 4096
[  223.770407][ T6390] NILFS (loop2): invalid segment: Checksum error in segment payload
[  223.775066][ T6397] netlink: 'syz.3.515': attribute type 29 has an invalid length.
[  223.814017][ T6390] NILFS (loop2): trying rollback from an earlier position
[  223.857763][ T6397] netlink: 'syz.3.515': attribute type 29 has an invalid length.
[  223.904381][ T6400] netlink: 'syz.3.515': attribute type 29 has an invalid length.
[  223.926642][ T6390] NILFS (loop2): recovery complete
[  223.961470][ T6402] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  224.086376][   T26] audit: type=1800 audit(1774890702.039:61): pid=6390 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.512" name="file1" dev="loop2" ino=14 res=0 errno=0
[  224.648637][ T6414] loop2: detected capacity change from 0 to 256
[  224.680341][ T6418] loop3: detected capacity change from 0 to 512
[  224.756951][   T26] audit: type=1800 audit(1774890702.709:62): pid=6414 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.519" name="file1" dev="loop2" ino=1048596 res=0 errno=0
[  226.423941][ T4225] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  226.448627][ T6442] netlink: 'syz.2.528': attribute type 29 has an invalid length.
[  226.480007][ T6442] netlink: 'syz.2.528': attribute type 29 has an invalid length.
[  226.508030][ T6443] netlink: 'syz.2.528': attribute type 29 has an invalid length.
[  226.705269][ T6445] loop2: detected capacity change from 0 to 4096
[  226.789792][ T6445] NILFS (loop2): invalid segment: Checksum error in segment payload
[  226.832456][ T6445] NILFS (loop2): trying rollback from an earlier position
[  226.894221][ T4225] usb 1-1: config 8 has an invalid interface number: 177 but max is 0
[  226.941453][ T4225] usb 1-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config
[  226.969422][ T6445] NILFS (loop2): recovery complete
[  227.005619][ T4225] usb 1-1: config 8 has no interface number 0
[  227.060033][ T4225] usb 1-1: config 8 interface 177 altsetting 9 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[  227.103495][ T6448] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  227.144170][ T4225] usb 1-1: config 8 interface 177 has no altsetting 0
[  227.172153][ T4225] usb 1-1: New USB device found, idVendor=04d8, idProduct=fd08, bcdDevice=59.b1
[  227.216817][ T4225] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.323476][   T26] audit: type=1800 audit(1774890705.269:63): pid=6452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.529" name="file1" dev="loop2" ino=14 res=0 errno=0
[  227.354242][ T4225] ir_toy 1-1:8.177: required endpoints not found
[  227.477345][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  227.523696][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  227.584290][ T6454] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  227.901551][ T6464] loop2: detected capacity change from 0 to 4096
[  228.004321][ T6464] NILFS (loop2): invalid segment: Checksum error in segment payload
[  228.067764][ T6464] NILFS (loop2): trying rollback from an earlier position
[  228.167735][ T6464] NILFS (loop2): recovery complete
[  228.246550][ T6468] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  228.321578][   T26] audit: type=1800 audit(1774890706.269:64): pid=6464 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.534" name="file1" dev="loop2" ino=12 res=0 errno=0
[  228.988635][ T6481] IPVS: wrr: UDP 224.0.0.2:0 - no destination available
[  229.016164][ T6480] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  229.549815][ T6489] netlink: 12 bytes leftover after parsing attributes in process `syz.4.543'.
[  230.012911][ T6493] loop2: detected capacity change from 0 to 4096
[  230.112572][ T6493] NILFS (loop2): invalid segment: Checksum error in segment payload
[  230.193930][ T6493] NILFS (loop2): trying rollback from an earlier position
[  230.270519][ T6493] NILFS (loop2): recovery complete
[  230.282277][ T1107] usb 1-1: USB disconnect, device number 8
[  230.343229][ T6496] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  230.842885][   T26] audit: type=1800 audit(1774890708.789:65): pid=6493 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.544" name="file1" dev="loop2" ino=16 res=0 errno=0
[  231.256306][ T6505] netlink: 'syz.1.545': attribute type 10 has an invalid length.
[  231.381408][ T6505] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  231.485156][ T6509] netlink: 'syz.0.549': attribute type 29 has an invalid length.
[  231.493603][ T6509] netlink: 'syz.0.549': attribute type 29 has an invalid length.
[  231.528977][ T6512] netlink: 'syz.0.549': attribute type 29 has an invalid length.
[  231.805447][ T6521] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  231.989418][ T6527] loop1: detected capacity change from 0 to 512
[  232.156229][ T6531] loop0: detected capacity change from 0 to 4096
[  232.239823][ T6531] NILFS (loop0): invalid segment: Checksum error in segment payload
[  232.316533][ T6531] NILFS (loop0): trying rollback from an earlier position
[  232.463990][ T6531] NILFS (loop0): recovery complete
[  232.509254][ T6534] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  232.589125][   T26] audit: type=1800 audit(1774890710.539:66): pid=6531 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.556" name="file1" dev="loop0" ino=12 res=0 errno=0
[  233.851578][ T6554] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  234.128901][ T5391] wlan1: Trigger new scan to find an IBSS to join
[  236.923895][ T6576] binder_alloc: 6575: binder_alloc_buf, no vma
[  238.205580][ T6604] netlink: 'syz.1.573': attribute type 10 has an invalid length.
[  238.438332][ T6609] netlink: 'syz.1.576': attribute type 29 has an invalid length.
[  238.488555][ T6609] netlink: 'syz.1.576': attribute type 29 has an invalid length.
[  238.524414][ T6611] netlink: 'syz.1.576': attribute type 29 has an invalid length.
[  240.170894][ T6630] loop1: detected capacity change from 0 to 512
[  241.025349][ T6643] netlink: 'syz.2.586': attribute type 10 has an invalid length.
[  241.148472][ T6643] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  242.498791][ T6659] netlink: 'syz.2.591': attribute type 29 has an invalid length.
[  242.550453][ T6663] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  242.557782][ T6659] netlink: 'syz.2.591': attribute type 29 has an invalid length.
[  242.594171][ T6664] netlink: 'syz.2.591': attribute type 29 has an invalid length.
[  243.213244][ T4292] wlan1: Trigger new scan to find an IBSS to join
[  244.032551][ T6690] netlink: 'syz.4.600': attribute type 10 has an invalid length.
[  244.522499][ T6690] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  245.197133][ T6705] netlink: 'syz.2.605': attribute type 29 has an invalid length.
[  245.249949][ T6705] netlink: 'syz.2.605': attribute type 29 has an invalid length.
[  245.287999][ T6706] netlink: 'syz.2.605': attribute type 29 has an invalid length.
[  245.568594][ T6687] chnl_net:caif_netlink_parms(): no params data found
[  245.896510][ T6714] loop4: detected capacity change from 0 to 512
[  245.963885][   T21] Bluetooth: hci5: command 0x0409 tx timeout
[  246.187448][ T6687] bridge0: port 1(bridge_slave_0) entered blocking state
[  246.256214][ T6687] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.288547][ T6687] device bridge_slave_0 entered promiscuous mode
[  246.344934][ T6687] bridge0: port 2(bridge_slave_1) entered blocking state
[  246.387965][ T6687] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.429557][ T6687] device bridge_slave_1 entered promiscuous mode
[  246.494261][ T1267] wlan1: Trigger new scan to find an IBSS to join
[  246.494259][ T4275] wlan1: Trigger new scan to find an IBSS to join
[  246.565438][ T6687] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  246.601782][ T6687] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  246.737408][ T6687] team0: Port device team_slave_0 added
[  246.771000][ T6687] team0: Port device team_slave_1 added
[  246.879781][ T6687] batman_adv: batadv0: Adding interface: batadv_slave_0
[  246.909281][ T6687] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  246.997914][ T6687] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  247.098813][ T6687] batman_adv: batadv0: Adding interface: batadv_slave_1
[  247.136494][ T6687] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  247.164850][ T6732] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  247.285219][ T6687] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  247.558965][ T6687] device hsr_slave_0 entered promiscuous mode
[  247.855917][ T6687] device hsr_slave_1 entered promiscuous mode
[  247.992622][ T6687] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  248.043450][ T6687] Cannot create hsr debugfs directory
[  248.049104][ T4371] Bluetooth: hci5: command 0x041b tx timeout
[  248.175309][ T6740] netlink: 'syz.4.615': attribute type 10 has an invalid length.
[  248.235174][ T6746] netlink: 'syz.2.617': attribute type 29 has an invalid length.
[  248.242256][ T4275] wlan1: Creating new IBSS network, BSSID 76:30:3f:c1:6c:f3
[  248.327401][ T6746] netlink: 'syz.2.617': attribute type 29 has an invalid length.
[  248.385347][ T6750] netlink: 'syz.2.617': attribute type 29 has an invalid length.
[  248.478774][ T6687] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  248.522603][ T6687] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  248.576109][ T6687] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  248.801669][ T6687] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  249.050891][ T6765] loop2: detected capacity change from 0 to 512
[  249.123220][ T6687] 8021q: adding VLAN 0 to HW filter on device bond0
[  249.143492][ T6687] 8021q: adding VLAN 0 to HW filter on device team0
[  249.162727][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  249.179270][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  249.222024][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  249.267321][ T6772] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  249.294706][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  249.351125][ T1267] bridge0: port 1(bridge_slave_0) entered blocking state
[  249.358448][ T1267] bridge0: port 1(bridge_slave_0) entered forwarding state
[  249.423158][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  249.444902][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  249.500987][ T1267] bridge0: port 2(bridge_slave_1) entered blocking state
[  249.508208][ T1267] bridge0: port 2(bridge_slave_1) entered forwarding state
[  249.548258][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  249.595324][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  249.677208][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  249.920399][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  249.941429][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  249.955242][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  250.075277][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  250.124903][ T4225] Bluetooth: hci5: command 0x040f tx timeout
[  250.193091][ T6687] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  250.221333][ T6687] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  250.285694][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  250.305270][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  250.330660][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  250.348131][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  250.368972][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  250.490716][ T1267] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  250.542573][ T6793] netlink: 'syz.0.628': attribute type 10 has an invalid length.
[  250.590161][ T6793] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  250.673661][ T6796] netlink: 'syz.1.631': attribute type 29 has an invalid length.
[  250.719046][ T6796] netlink: 'syz.1.631': attribute type 29 has an invalid length.
[  250.787160][ T6800] netlink: 'syz.1.631': attribute type 29 has an invalid length.
[  251.175679][ T4273] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  251.184072][ T6813] loop1: detected capacity change from 0 to 512
[  251.200261][ T4273] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  251.214758][ T6687] 8021q: adding VLAN 0 to HW filter on device batadv0
[  251.873605][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  251.905322][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  251.920778][ T6829] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  251.994814][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  252.014188][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  252.087889][ T6687] device veth0_vlan entered promiscuous mode
[  252.104133][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  252.123172][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  252.138820][ T6687] device veth1_vlan entered promiscuous mode
[  252.196023][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  252.203942][ T4225] Bluetooth: hci5: command 0x0419 tx timeout
[  252.216481][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  252.240317][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  252.260109][ T5391] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  252.289960][ T6687] device veth0_macvtap entered promiscuous mode
[  252.334587][ T6687] device veth1_macvtap entered promiscuous mode
[  252.403086][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.464133][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.490258][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.515899][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.536139][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.552791][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.573587][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.613387][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.663986][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  252.708695][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  252.782842][ T6687] batman_adv: batadv0: Interface activated: batadv_slave_0
[  252.889209][ T6841] netlink: 'syz.1.642': attribute type 10 has an invalid length.
[  253.164247][ T5391] wlan1: Trigger new scan to find an IBSS to join
[  253.397146][ T5316] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  253.415289][ T5316] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  253.454306][ T5316] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  253.484697][ T5316] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  253.512369][ T6849] netlink: 'syz.0.644': attribute type 29 has an invalid length.
[  253.544360][ T6849] netlink: 'syz.0.644': attribute type 29 has an invalid length.
[  253.613036][ T6849] netlink: 'syz.0.644': attribute type 29 has an invalid length.
[  253.656328][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.677682][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.692891][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.704254][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.715046][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.726145][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.737850][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.757372][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.801680][ T6687] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  253.925477][ T6687] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  253.989913][ T6687] batman_adv: batadv0: Interface activated: batadv_slave_1
[  254.012750][ T6687] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  254.035608][ T6687] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  254.058787][ T6862] loop4: detected capacity change from 0 to 512
[  254.110619][ T6687] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  254.159635][ T6687] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  254.407149][ T4273] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  254.477701][ T4273] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  254.572572][ T6874] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  254.731454][ T5316] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  254.749324][ T5316] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  254.861258][ T4273] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  254.893180][ T5316] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  254.908459][ T5316] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  254.943530][ T5316] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  255.002616][ T6884] netlink: 'syz.0.654': attribute type 10 has an invalid length.
[  255.969440][ T1424] ieee802154 phy0 wpan0: encryption failed: -22
[  255.991955][ T1424] ieee802154 phy1 wpan1: encryption failed: -22
[  256.797664][ T6920] loop0: detected capacity change from 0 to 512
[  256.826118][ T6919] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  258.246217][ T6931] netlink: 'syz.5.667': attribute type 10 has an invalid length.
[  258.306867][ T6940] netlink: 'syz.2.669': attribute type 29 has an invalid length.
[  258.325636][ T6931] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  258.481097][ T6940] netlink: 'syz.2.669': attribute type 29 has an invalid length.
[  258.519714][ T6941] netlink: 'syz.2.669': attribute type 29 has an invalid length.
[  259.608257][ T6973] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  259.766405][ T6977] netlink: 'syz.2.680': attribute type 10 has an invalid length.
[  260.074540][ T6983] loop0: detected capacity change from 0 to 512
[  260.461287][ T6985] netlink: 'syz.2.682': attribute type 29 has an invalid length.
[  260.524354][ T6985] netlink: 'syz.2.682': attribute type 29 has an invalid length.
[  260.654291][ T6985] netlink: 'syz.2.682': attribute type 29 has an invalid length.
[  261.468584][ T4292] wlan1: Trigger new scan to find an IBSS to join
[  261.932891][ T7011] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  262.211742][ T7020] netlink: 'syz.2.693': attribute type 10 has an invalid length.
[  262.983339][ T7037] netlink: 'syz.4.697': attribute type 29 has an invalid length.
[  263.461534][ T7047] loop1: detected capacity change from 0 to 512
[  263.578974][ T7050] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  264.566506][ T7063] validate_nla: 2 callbacks suppressed
[  264.566524][ T7063] netlink: 'syz.5.706': attribute type 10 has an invalid length.
[  265.437932][ T7071] netlink: 'syz.4.708': attribute type 29 has an invalid length.
[  265.482726][ T7071] netlink: 'syz.4.708': attribute type 29 has an invalid length.
[  265.907775][ T7074] netlink: 'syz.4.708': attribute type 29 has an invalid length.
[  266.576317][ T7089] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  266.741431][ T7091] loop1: detected capacity change from 0 to 512
[  267.667174][ T7109] netlink: 'syz.1.719': attribute type 10 has an invalid length.
[  268.484984][ T7116] netlink: 'syz.0.722': attribute type 29 has an invalid length.
[  268.524301][ T7116] netlink: 'syz.0.722': attribute type 29 has an invalid length.
[  268.559390][ T7121] netlink: 'syz.0.722': attribute type 29 has an invalid length.
[  268.698772][ T7125] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  269.805398][ T7146] loop4: detected capacity change from 0 to 512
[  270.672147][ T7149] netlink: 'syz.4.731': attribute type 10 has an invalid length.
[  271.811526][ T7169] netlink: 'syz.0.736': attribute type 29 has an invalid length.
[  271.865104][ T7169] netlink: 'syz.0.736': attribute type 29 has an invalid length.
[  271.875388][ T7170] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  271.892071][ T7171] netlink: 'syz.0.736': attribute type 29 has an invalid length.
[  272.377686][ T7185] loop0: detected capacity change from 0 to 512
[  274.116429][ T7201] netlink: 12 bytes leftover after parsing attributes in process `syz.2.747'.
[  274.162418][ T7200] netlink: 12 bytes leftover after parsing attributes in process `syz.4.746'.
[  274.983907][ T4476] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  275.273958][ T4476] usb 1-1: Using ep0 maxpacket: 16
[  275.444108][ T4476] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  275.690142][ T4476] usb 1-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[  275.745602][ T4476] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.782908][ T4476] usb 1-1: Product: syz
[  275.788814][ T4476] usb 1-1: Manufacturer: syz
[  275.793554][ T4476] usb 1-1: SerialNumber: syz
[  275.849074][ T7224] sch_tbf: burst 0 is lower than device syzkaller0 mtu (1514) !
[  275.893709][ T4476] usb 1-1: config 0 descriptor??
[  275.899919][ T7224] device syzkaller0 entered promiscuous mode
[  276.246388][ T4476] usb 1-1: USB disconnect, device number 9
[  276.623231][ T7235] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  276.697536][ T7235] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  276.761976][ T7235] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  278.950172][ T7242] loop1: detected capacity change from 0 to 1024
[  279.174511][ T7242] EXT4-fs (loop1): Quota format mount options ignored when QUOTA feature is enabled
[  279.186400][ T7242] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  279.275546][ T7242] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  279.284824][ T7242] EXT4-fs (loop1): orphan cleanup on readonly fs
[  279.292060][ T7242] EXT4-fs error (device loop1): ext4_read_inode_bitmap:168: comm syz.1.756: Inode bitmap for bg 0 marked uninitialized
[  279.305501][ T7242] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  282.273383][ T7283] netlink: 'syz.4.767': attribute type 10 has an invalid length.
[  282.437015][ T7287] netlink: 'syz.2.769': attribute type 29 has an invalid length.
[  282.623058][ T7287] netlink: 'syz.2.769': attribute type 29 has an invalid length.
[  282.675528][ T7294] loop4: detected capacity change from 0 to 512
[  282.683523][ T7295] netlink: 'syz.2.769': attribute type 29 has an invalid length.
[  282.958067][ T7298] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  283.961638][ T7321] loop2: detected capacity change from 0 to 1024
[  284.168654][ T7321] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  284.183419][ T7321] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  284.328419][ T7321] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  284.344928][ T7321] EXT4-fs (loop2): orphan cleanup on readonly fs
[  284.356379][ T7321] EXT4-fs error (device loop2): ext4_read_inode_bitmap:168: comm syz.2.777: Inode bitmap for bg 0 marked uninitialized
[  284.376863][ T7321] EXT4-fs (loop2): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  285.048285][ T7335] netlink: 'syz.4.782': attribute type 10 has an invalid length.
[  285.843459][ T7343] netlink: 'syz.4.784': attribute type 29 has an invalid length.
[  285.923261][ T7343] netlink: 'syz.4.784': attribute type 29 has an invalid length.
[  285.963048][ T7344] netlink: 'syz.4.784': attribute type 29 has an invalid length.
[  286.170494][ T7354] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  286.398381][ T7359] loop2: detected capacity change from 0 to 512
[  287.309692][ T7375] loop5: detected capacity change from 0 to 1024
[  287.489766][ T7375] EXT4-fs (loop5): Quota format mount options ignored when QUOTA feature is enabled
[  287.500996][ T7375] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[  287.587469][ T7375] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  287.603489][ T7375] EXT4-fs (loop5): orphan cleanup on readonly fs
[  287.614781][ T7375] EXT4-fs error (device loop5): ext4_read_inode_bitmap:168: comm syz.5.793: Inode bitmap for bg 0 marked uninitialized
[  287.631705][ T7375] EXT4-fs (loop5): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000006,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  288.136534][ T7382] netlink: 'syz.4.796': attribute type 10 has an invalid length.
[  289.263221][ T7404] netlink: 'syz.4.800': attribute type 29 has an invalid length.
[  289.291519][ T7404] netlink: 'syz.4.800': attribute type 29 has an invalid length.
[  289.320883][ T7408] netlink: 'syz.4.800': attribute type 29 has an invalid length.
[  289.405081][ T7412] IPVS: set_ctl: invalid protocol: 44 100.1.1.0:20002
[  289.785417][ T7422] loop4: detected capacity change from 0 to 512
[  290.626136][ T7431] netlink: 'syz.4.809': attribute type 10 has an invalid length.
[  291.805495][    C0] ==================================================================
[  291.813979][    C0] BUG: KASAN: use-after-free in rose_timer_expiry+0x470/0x490
[  291.821866][    C0] Read of size 2 at addr ffff88806128842a by task syz.1.813/7447
[  291.829799][    C0] 
[  291.832189][    C0] CPU: 0 PID: 7447 Comm: syz.1.813 Not tainted syzkaller #0
[  291.839607][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  291.849948][    C0] Call Trace:
[  291.853272][    C0]  <IRQ>
[  291.856161][    C0]  dump_stack_lvl+0x188/0x250
[  291.860885][    C0]  ? show_regs_print_info+0x20/0x20
[  291.866280][    C0]  ? _printk+0xda/0x130
[  291.870580][    C0]  ? rose_timer_expiry+0x470/0x490
[  291.875755][    C0]  ? load_image+0x400/0x400
[  291.880457][    C0]  print_address_description+0x60/0x2d0
[  291.886275][    C0]  ? rose_timer_expiry+0x470/0x490
[  291.891574][    C0]  kasan_report+0xdf/0x130
[  291.896164][    C0]  ? rose_timer_expiry+0x470/0x490
[  291.901426][    C0]  rose_timer_expiry+0x470/0x490
[  291.906749][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  291.911922][    C0]  call_timer_fn+0x17b/0x540
[  291.916597][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  291.921675][    C0]  ? __run_timers+0x800/0x800
[  291.926605][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  291.931978][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  291.937245][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  291.942338][    C0]  __run_timers+0x53e/0x800
[  291.946918][    C0]  ? detach_timer+0x2b0/0x2b0
[  291.951728][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  291.957859][    C0]  ? sched_clock_cpu+0x15/0x3c0
[  291.962928][    C0]  ? ktime_get_real_ts64+0x440/0x440
[  291.968372][    C0]  run_timer_softirq+0x63/0xf0
[  291.973279][    C0]  handle_softirqs+0x339/0x830
[  291.978288][    C0]  ? __irq_exit_rcu+0x13b/0x230
[  291.983417][    C0]  ? do_softirq+0x210/0x210
[  291.988088][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  291.993574][    C0]  __irq_exit_rcu+0x13b/0x230
[  291.998575][    C0]  ? irq_exit_rcu+0x20/0x20
[  292.003152][    C0]  irq_exit_rcu+0x5/0x20
[  292.007532][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  292.013469][    C0]  </IRQ>
[  292.016441][    C0]  <TASK>
[  292.019414][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  292.026241][    C0] RIP: 0010:queue_work_on+0x1a0/0x1f0
[  292.031840][    C0] Code: 4d 85 e4 75 16 e8 f0 32 2b 00 eb 15 e8 e9 32 2b 00 e8 a4 7a 6e 08 4d 85 e4 74 ea e8 da 32 2b 00 fb 48 c7 44 24 20 0e 36 e0 45 <48> b8 00 00 00 00 00 fc ff df 49 c7 44 05 00 00 00 00 00 41 c7 44
[  292.052002][    C0] RSP: 0018:ffffc900048e7020 EFLAGS: 00000287
[  292.058729][    C0] RAX: ffffffff814dee36 RBX: 0000000000000000 RCX: 0000000000080000
[  292.067358][    C0] RDX: ffffc90003d71000 RSI: 0000000000008f77 RDI: 0000000000008f78
[  292.075526][    C0] RBP: ffffc900048e70e8 R08: ffffffff901d420f R09: 1ffffffff203a841
[  292.083919][    C0] R10: dffffc0000000000 R11: fffffbfff203a842 R12: 0000000000000200
[  292.092220][    C0] R13: 1ffff9200091ce08 R14: 0000000000000000 R15: dffffc0000000001
[  292.100894][    C0]  ? queue_work_on+0x196/0x1f0
[  292.106021][    C0]  ? wq_worker_last_func+0x40/0x40
[  292.111189][    C0]  put_task_stack+0x97/0x140
[  292.115954][    C0]  finish_task_switch+0x26f/0x640
[  292.121038][    C0]  ? __switch_to_asm+0x34/0x60
[  292.125868][    C0]  __schedule+0x11f7/0x43c0
[  292.130557][    C0]  ? release_firmware_map_entry+0x190/0x190
[  292.136803][    C0]  ? verify_lock_unused+0x140/0x140
[  292.142081][    C0]  schedule+0x11b/0x1e0
[  292.146304][    C0]  schedule_timeout+0xbd/0x2d0
[  292.151313][    C0]  ? console_conditional_schedule+0x40/0x40
[  292.157566][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  292.163840][    C0]  ? lock_chain_count+0x20/0x20
[  292.169022][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  292.174256][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  292.179498][    C0]  do_wait_for_common+0x2a2/0x450
[  292.184558][    C0]  ? console_conditional_schedule+0x40/0x40
[  292.190717][    C0]  ? wait_for_completion_killable_timeout+0x60/0x60
[  292.197532][    C0]  ? _raw_spin_lock_irq+0xb7/0xf0
[  292.202788][    C0]  ? _raw_spin_lock_irqsave+0x100/0x100
[  292.208363][    C0]  wait_for_completion+0x48/0x60
[  292.213412][    C0]  __synchronize_srcu+0x2bb/0x350
[  292.218577][    C0]  ? synchronize_srcu_expedited+0x20/0x20
[  292.224412][    C0]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[  292.230309][    C0]  ? rcu_read_lock_any_held+0x130/0x130
[  292.235918][    C0]  ? __rwlock_init+0x140/0x140
[  292.241033][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  292.246473][    C0]  install_new_memslots+0x2b5/0x430
[  292.251853][    C0]  kvm_set_memslot+0x1292/0x1a10
[  292.256962][    C0]  ? __kvm_memslots+0x1a0/0x1a0
[  292.261863][    C0]  __kvm_set_memory_region+0xb3d/0xdd0
[  292.267381][    C0]  ? kvm_put_kvm_no_destroy+0x80/0x80
[  292.273076][    C0]  ? __might_fault+0xb7/0x110
[  292.277912][    C0]  ? mutex_lock_io_nested+0x60/0x60
[  292.283154][    C0]  ? __might_fault+0xb3/0x110
[  292.287939][    C0]  kvm_vm_ioctl_set_memory_region+0x6f/0xa0
[  292.293951][    C0]  kvm_vm_ioctl+0x8fe/0xb30
[  292.298578][    C0]  ? kvm_device_release+0x1f0/0x1f0
[  292.303895][    C0]  ? tomoyo_path_number_perm+0x5b4/0x660
[  292.309846][    C0]  ? verify_lock_unused+0x140/0x140
[  292.315113][    C0]  ? bpf_lsm_file_ioctl+0x5/0x10
[  292.320154][    C0]  ? security_file_ioctl+0x7c/0xa0
[  292.325478][    C0]  ? kvm_device_release+0x1f0/0x1f0
[  292.330823][    C0]  __se_sys_ioctl+0xfa/0x170
[  292.336094][    C0]  do_syscall_64+0x4c/0xa0
[  292.340919][    C0]  ? clear_bhb_loop+0x30/0x80
[  292.346233][    C0]  ? clear_bhb_loop+0x30/0x80
[  292.350954][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  292.356963][    C0] RIP: 0033:0x7fbc9c5e24ab
[  292.361535][    C0] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  292.381482][    C0] RSP: 002b:00007fbc9a83a450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  292.390026][    C0] RAX: ffffffffffffffda RBX: 0000200000000000 RCX: 00007fbc9c5e24ab
[  292.398204][    C0] RDX: 00007fbc9a83abd0 RSI: 000000004020ae46 RDI: 0000000000000005
[  292.406221][    C0] RBP: 0000000000000005 R08: 0000000000000001 R09: 0000000000000018
[  292.414418][    C0] R10: 0000000000000005 R11: 0000000000000246 R12: 00000000fec00000
[  292.422812][    C0] R13: 00007fbc9a83abd0 R14: 000020000000b000 R15: 000000000000000b
[  292.431100][    C0]  </TASK>
[  292.434256][    C0] 
[  292.436595][    C0] Allocated by task 7159:
[  292.441127][    C0]  __kasan_kmalloc+0xb5/0xf0
[  292.445742][    C0]  __alloc_skb+0x22c/0x750
[  292.450181][    C0]  __netdev_alloc_skb+0x110/0x4c0
[  292.455224][    C0]  __ieee80211_beacon_get+0xaa1/0x2000
[  292.460704][    C0]  ieee80211_beacon_get_tim+0x48/0x840
[  292.466184][    C0]  mac80211_hwsim_beacon_tx+0xf4/0x920
[  292.471702][    C0]  __iterate_interfaces+0x243/0x500
[  292.476941][    C0]  ieee80211_iterate_active_interfaces_atomic+0xb3/0x140
[  292.484170][    C0]  mac80211_hwsim_beacon+0x9b/0x180
[  292.489705][    C0]  __hrtimer_run_queues+0x4f2/0xb70
[  292.494941][    C0]  hrtimer_run_softirq+0x176/0x240
[  292.500081][    C0]  handle_softirqs+0x339/0x830
[  292.504864][    C0]  __irq_exit_rcu+0x13b/0x230
[  292.509778][    C0]  irq_exit_rcu+0x5/0x20
[  292.514131][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  292.520107][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  292.526287][    C0] 
[  292.528719][    C0] The buggy address belongs to the object at ffff888061288400
[  292.528719][    C0]  which belongs to the cache kmalloc-512 of size 512
[  292.543190][    C0] The buggy address is located 42 bytes inside of
[  292.543190][    C0]  512-byte region [ffff888061288400, ffff888061288600)
[  292.556776][    C0] The buggy address belongs to the page:
[  292.562543][    C0] page:ffffea000184a200 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff888061288800 pfn:0x61288
[  292.574815][    C0] head:ffffea000184a200 order:2 compound_mapcount:0 compound_pincount:0
[  292.583449][    C0] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  292.591657][    C0] raw: 00fff00000010200 ffffea0001826408 ffffea00009ad408 ffff888016c41c80
[  292.600483][    C0] raw: ffff888061288800 0000000000100006 00000001ffffffff 0000000000000000
[  292.609175][    C0] page dumped because: kasan: bad access detected
[  292.615625][    C0] page_owner tracks the page as allocated
[  292.621630][    C0] page last allocated via order 2, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4195, ts 70037325071, free_ts 25949044484
[  292.640892][    C0]  get_page_from_freelist+0x1bbd/0x1ca0
[  292.646471][    C0]  __alloc_pages+0x1ee/0x480
[  292.651079][    C0]  new_slab+0xc0/0x4b0
[  292.655169][    C0]  ___slab_alloc+0x80a/0xdd0
[  292.659793][    C0]  __kmalloc+0x1cd/0x330
[  292.664376][    C0]  __register_sysctl_table+0xa1f/0x1230
[  292.670044][    C0]  mpls_dev_sysctl_register+0x1fe/0x2f0
[  292.675883][    C0]  mpls_dev_notify+0x2fa/0x780
[  292.680793][    C0]  raw_notifier_call_chain+0xcb/0x160
[  292.686381][    C0]  register_netdevice+0x12a6/0x1710
[  292.691604][    C0]  veth_newlink+0x8d7/0xe30
[  292.696139][    C0]  rtnl_newlink+0x1359/0x1a50
[  292.700869][    C0]  rtnetlink_rcv_msg+0x844/0xf30
[  292.705932][    C0]  netlink_rcv_skb+0x1f5/0x440
[  292.710916][    C0]  netlink_unicast+0x774/0x920
[  292.715707][    C0]  netlink_sendmsg+0x8ba/0xbe0
[  292.720501][    C0] page last free stack trace:
[  292.725203][    C0]  free_unref_page_prepare+0x637/0x6c0
[  292.730698][    C0]  free_unref_page+0x8f/0x2a0
[  292.735826][    C0]  free_contig_range+0x96/0xf0
[  292.740608][    C0]  destroy_args+0xf0/0xa00
[  292.745172][    C0]  debug_vm_pgtable+0x321/0x380
[  292.750242][    C0]  do_one_initcall+0x272/0x730
[  292.755069][    C0]  do_initcall_level+0x137/0x1f0
[  292.760438][    C0]  do_initcalls+0x4b/0x90
[  292.764977][    C0]  kernel_init_freeable+0x3e9/0x570
[  292.770211][    C0]  kernel_init+0x19/0x1b0
[  292.774803][    C0]  ret_from_fork+0x1f/0x30
[  292.779538][    C0] 
[  292.782011][    C0] Memory state around the buggy address:
[  292.787657][    C0]  ffff888061288300: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  292.796285][    C0]  ffff888061288380: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  292.804764][    C0] >ffff888061288400: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  292.813035][    C0]                                   ^
[  292.818682][    C0]  ffff888061288480: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  292.826852][    C0]  ffff888061288500: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  292.835170][    C0] ==================================================================
[  292.843256][    C0] Disabling lock debugging due to kernel taint
[  292.849628][    C0] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  292.857021][    C0] CPU: 0 PID: 7447 Comm: syz.1.813 Tainted: G    B             syzkaller #0
[  292.865948][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  292.876217][    C0] Call Trace:
[  292.879870][    C0]  <IRQ>
[  292.882781][    C0]  dump_stack_lvl+0x188/0x250
[  292.887509][    C0]  ? show_regs_print_info+0x20/0x20
[  292.892762][    C0]  ? load_image+0x400/0x400
[  292.897406][    C0]  panic+0x2e5/0x810
[  292.901360][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  292.905909][    C0]  ? _raw_spin_unlock_irqrestore+0xbc/0x120
[  292.911884][    C0]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[  292.917834][    C0]  ? _raw_spin_unlock+0x40/0x40
[  292.922882][    C0]  ? print_memory_metadata+0x314/0x400
[  292.928574][    C0]  ? rose_timer_expiry+0x470/0x490
[  292.933776][    C0]  check_panic_on_warn+0x80/0xa0
[  292.938762][    C0]  ? rose_timer_expiry+0x470/0x490
[  292.944439][    C0]  end_report+0x6d/0xf0
[  292.948662][    C0]  kasan_report+0x102/0x130
[  292.953455][    C0]  ? rose_timer_expiry+0x470/0x490
[  292.958605][    C0]  rose_timer_expiry+0x470/0x490
[  292.963633][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  292.968963][    C0]  call_timer_fn+0x17b/0x540
[  292.974125][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  292.979200][    C0]  ? __run_timers+0x800/0x800
[  292.984035][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  292.989278][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  292.994895][    C0]  ? rose_start_t1timer+0xd0/0xd0
[  292.999974][    C0]  __run_timers+0x53e/0x800
[  293.004637][    C0]  ? detach_timer+0x2b0/0x2b0
[  293.009367][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  293.015464][    C0]  ? sched_clock_cpu+0x15/0x3c0
[  293.020457][    C0]  ? ktime_get_real_ts64+0x440/0x440
[  293.025787][    C0]  run_timer_softirq+0x63/0xf0
[  293.030590][    C0]  handle_softirqs+0x339/0x830
[  293.035380][    C0]  ? __irq_exit_rcu+0x13b/0x230
[  293.040267][    C0]  ? do_softirq+0x210/0x210
[  293.044906][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  293.050243][    C0]  __irq_exit_rcu+0x13b/0x230
[  293.055239][    C0]  ? irq_exit_rcu+0x20/0x20
[  293.059872][    C0]  irq_exit_rcu+0x5/0x20
[  293.064272][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  293.070032][    C0]  </IRQ>
[  293.072991][    C0]  <TASK>
[  293.075948][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  293.082059][    C0] RIP: 0010:queue_work_on+0x1a0/0x1f0
[  293.087477][    C0] Code: 4d 85 e4 75 16 e8 f0 32 2b 00 eb 15 e8 e9 32 2b 00 e8 a4 7a 6e 08 4d 85 e4 74 ea e8 da 32 2b 00 fb 48 c7 44 24 20 0e 36 e0 45 <48> b8 00 00 00 00 00 fc ff df 49 c7 44 05 00 00 00 00 00 41 c7 44
[  293.107755][    C0] RSP: 0018:ffffc900048e7020 EFLAGS: 00000287
[  293.114176][    C0] RAX: ffffffff814dee36 RBX: 0000000000000000 RCX: 0000000000080000
[  293.122279][    C0] RDX: ffffc90003d71000 RSI: 0000000000008f77 RDI: 0000000000008f78
[  293.131129][    C0] RBP: ffffc900048e70e8 R08: ffffffff901d420f R09: 1ffffffff203a841
[  293.139680][    C0] R10: dffffc0000000000 R11: fffffbfff203a842 R12: 0000000000000200
[  293.148324][    C0] R13: 1ffff9200091ce08 R14: 0000000000000000 R15: dffffc0000000001
[  293.156513][    C0]  ? queue_work_on+0x196/0x1f0
[  293.161334][    C0]  ? wq_worker_last_func+0x40/0x40
[  293.166584][    C0]  put_task_stack+0x97/0x140
[  293.171224][    C0]  finish_task_switch+0x26f/0x640
[  293.176275][    C0]  ? __switch_to_asm+0x34/0x60
[  293.181084][    C0]  __schedule+0x11f7/0x43c0
[  293.185649][    C0]  ? release_firmware_map_entry+0x190/0x190
[  293.191855][    C0]  ? verify_lock_unused+0x140/0x140
[  293.197091][    C0]  schedule+0x11b/0x1e0
[  293.201582][    C0]  schedule_timeout+0xbd/0x2d0
[  293.206380][    C0]  ? console_conditional_schedule+0x40/0x40
[  293.212406][    C0]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  293.218422][    C0]  ? lock_chain_count+0x20/0x20
[  293.223302][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[  293.228774][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  293.233998][    C0]  do_wait_for_common+0x2a2/0x450
[  293.239052][    C0]  ? console_conditional_schedule+0x40/0x40
[  293.245274][    C0]  ? wait_for_completion_killable_timeout+0x60/0x60
[  293.252029][    C0]  ? _raw_spin_lock_irq+0xb7/0xf0
[  293.257164][    C0]  ? _raw_spin_lock_irqsave+0x100/0x100
[  293.263288][    C0]  wait_for_completion+0x48/0x60
[  293.268398][    C0]  __synchronize_srcu+0x2bb/0x350
[  293.273697][    C0]  ? synchronize_srcu_expedited+0x20/0x20
[  293.279678][    C0]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[  293.285540][    C0]  ? rcu_read_lock_any_held+0x130/0x130
[  293.291126][    C0]  ? __rwlock_init+0x140/0x140
[  293.296094][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  293.301778][    C0]  install_new_memslots+0x2b5/0x430
[  293.307166][    C0]  kvm_set_memslot+0x1292/0x1a10
[  293.312299][    C0]  ? __kvm_memslots+0x1a0/0x1a0
[  293.317436][    C0]  __kvm_set_memory_region+0xb3d/0xdd0
[  293.323205][    C0]  ? kvm_put_kvm_no_destroy+0x80/0x80
[  293.328837][    C0]  ? __might_fault+0xb7/0x110
[  293.333727][    C0]  ? mutex_lock_io_nested+0x60/0x60
[  293.339249][    C0]  ? __might_fault+0xb3/0x110
[  293.344408][    C0]  kvm_vm_ioctl_set_memory_region+0x6f/0xa0
[  293.350533][    C0]  kvm_vm_ioctl+0x8fe/0xb30
[  293.355119][    C0]  ? kvm_device_release+0x1f0/0x1f0
[  293.360484][    C0]  ? tomoyo_path_number_perm+0x5b4/0x660
[  293.366165][    C0]  ? verify_lock_unused+0x140/0x140
[  293.371598][    C0]  ? bpf_lsm_file_ioctl+0x5/0x10
[  293.376833][    C0]  ? security_file_ioctl+0x7c/0xa0
[  293.382077][    C0]  ? kvm_device_release+0x1f0/0x1f0
[  293.387499][    C0]  __se_sys_ioctl+0xfa/0x170
[  293.392219][    C0]  do_syscall_64+0x4c/0xa0
[  293.396785][    C0]  ? clear_bhb_loop+0x30/0x80
[  293.401592][    C0]  ? clear_bhb_loop+0x30/0x80
[  293.406292][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  293.412214][    C0] RIP: 0033:0x7fbc9c5e24ab
[  293.416650][    C0] Code: 00 48 89 44 24 18 31 c0 48 8d 44 24 60 c7 04 24 10 00 00 00 48 89 44 24 08 48 8d 44 24 20 48 89 44 24 10 b8 10 00 00 00 0f 05 <89> c2 3d 00 f0 ff ff 77 1c 48 8b 44 24 18 64 48 2b 04 25 28 00 00
[  293.436665][    C0] RSP: 002b:00007fbc9a83a450 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  293.445115][    C0] RAX: ffffffffffffffda RBX: 0000200000000000 RCX: 00007fbc9c5e24ab
[  293.453279][    C0] RDX: 00007fbc9a83abd0 RSI: 000000004020ae46 RDI: 0000000000000005
[  293.461601][    C0] RBP: 0000000000000005 R08: 0000000000000001 R09: 0000000000000018
[  293.469801][    C0] R10: 0000000000000005 R11: 0000000000000246 R12: 00000000fec00000
[  293.477887][    C0] R13: 00007fbc9a83abd0 R14: 000020000000b000 R15: 000000000000000b
[  293.485938][    C0]  </TASK>
[  293.489379][    C0] Kernel Offset: disabled
[  293.493732][    C0] Rebooting in 86400 seconds..