last executing test programs:

29m33.769592522s ago: executing program 1 (id=125):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x9, 0x5, 0x1000}, 0x50)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x8, 0x10, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000002000000850000008600000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000fcffffff7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x1, 0x10, &(0x7f0000000180)=ANY=[], &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000000c0)=r4, 0x4)
sendmsg$unix(r1, &(0x7f00000006c0)={0x0, 0xfffffffffffffe96, 0x0, 0x0, 0x0, 0x0, 0x20000001}, 0x40000)

29m33.548301225s ago: executing program 1 (id=126):
r0 = gettid()
timer_create(0x0, &(0x7f0000000140)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r2, 0x0, r3, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r3, &(0x7f00000000c0)="f01b2b620702d1e39d5832a6c97d6187d6a677a16f2f5e265951cb0ee4c99e0d519964a5", 0x24)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r3, &(0x7f0000000180)={0x0, 0x18, 0xfa00, {0x4, 0x0, 0x2, 0xa}}, 0x20)

29m32.570244442s ago: executing program 1 (id=133):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200000, &(0x7f0000000140)={[{@errors_remount}, {@inode_readahead_blks}, {@lazytime}, {@oldalloc}]}, 0x1, 0x50d, &(0x7f0000001bc0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x6e)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x3)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f0000000280)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000100)=ANY=[], 0xfe37, 0x0)

29m31.335322485s ago: executing program 1 (id=137):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x402, &(0x7f0000000480)={[{@iocharset={'iocharset', 0x3d, 'cp869'}}, {@errors_continue}, {@umask={'umask', 0x3d, 0x5}}, {@errors_remount}, {@errors_remount}, {@discard}, {@allow_utime={'allow_utime', 0x3d, 0x8}}, {}, {@time_offset={'time_offset', 0x3d, 0x4}}, {}]}, 0x1, 0x1519, &(0x7f0000001e80)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000080)='./file0/file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

29m30.39139352s ago: executing program 1 (id=143):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000340)=@newqdisc={0x5c, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9, 0x1}, {0x4, 0xfff2}, {0xe, 0xd}}, [@TCA_EGRESS_BLOCK={0x8, 0xe, 0x401}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x491, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}, @TCA_INGRESS_BLOCK={0x8}]}, 0x5c}, 0x1, 0x0, 0x0, 0x90}, 0x4000c00)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000006c0)=@newqdisc={0x34, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x4}}, [@qdisc_kind_options=@q_pfifo_fast={0xf}]}, 0x34}, 0x1, 0x0, 0x0, 0x4000000}, 0x20040084)

29m28.570548507s ago: executing program 1 (id=158):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0x40, 0x4)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001540)=[{{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000000680)="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", 0x241}], 0x1}}, {{&(0x7f0000000240)={0xa, 0x4e23, 0x9, @mcast1, 0x5}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000001f80)="1554ce94da410113b67cef4d592106b9ace859bf232630cfb2c0ab6d6070203e38540c36ee81c53c3cb0dd810d003c5f608cee31d24c6d16527c041ddfcb1256a2986a47cd370dcd00662c714b03fe6914f3139f13420a22da7cf9a98adddcf3d30dbb3cd17f6d470bfbcaba7a4d12fc3dc5052cea6110e404862a854958cfeeae936ca862fc031aee1e2f4686c6f7ea997acc28ad9b7e71eca18dde34f53fc586ab03685571d78341958a05abcef1c5f0caca84ce1475e5b60024ad4bc51ff918b83519129d22d76f55032c1a4856a617bc99fb72977c1d243038f4ae824b78dee9b46af3df901ee241806edc8d146ef2a70813752a9e6a4f2d3639de3d087d09761b7bbe8e03b8ea716cd2c8a0361a56b452fd98445eafff4c1c10835d46f0e3e9a5d4b7baa7fd006f89003ebb891116a495e644958745637e5e8064215d59d18c0f0aa65025e636790682150947d5d6451e761557c2a3bc686127f79e1db0c3f03a7c3c60f9086516addbb7e5e4aa787d1cddd91882aa93a5b9e3e82159f3d47bf858ba9c3e373cb95a72bf996fc807c1cc63152d865379f72ccfbb0458c3f9139ab38b350c668395724992bd5076f164c016f07f05ded2c4b1913d1b3457c6de841137941a3e0bd765587f06f253948e7166143c9428f610c49ae0a65216539c485d8bb6181e1359652b014b57bce16e46a091e3e9423911559648db6d5d7bc559f67bb773da6913d5a94b07fe281e1c7a04fa1dd42a755636d240e4e01c2cb57def8d848cf5c693cd1612dd7be8453cd537b2844d55fde8a8ab01550e9003fc253306d4729e3c0e75bda5edeeb5c768d54699af1ceeea568f5a885a075d2aa4d9f9b8176b7820acb6ba49fd57ca981daf5da26d30acc910840e4cd7231cfe84b40a5f9f54bf5b7026c7e32480b97fc2adcba427b391b341d73a3ed1f011617208999b23fa87baa56877d3ba6d6cb60cb2aef59657e7e27c3efc266eb02383ada192965dc610d99c7e2bdf4f17721dcc0a6f7347791fc4355dafb04ff5a1e70037d4621856824726574b61d790ec901fc4f5f8092704c0a03899204010dd67e4d69c1169672ad8c417006439a15d284649270bf09d29da8ec1216f6a0017e054358da11df543807983501a968af8d9c5b1f08709a2b126fe887b995e565ad2faa7c81643a330967d56853916c301380b109b5da53ec1cc724754faae6af72ce3e494d49d670760572857fbbe755d117ca2713e16c76bc53cbd3a188fed3bb43ef167174a6a301b5210c3c9d6e93ac1936bf8a0e6e4b73db9f18be8417d52458ecc541cc90eea0bbac3ec4385a6c65680e81ef15dc6b7ef1bcd5f16f06a315df089ef0eee9fbcfe8f57f6e20b1929a1a08b7aab180859b5937f664d3843ecee1624c40bb17fb6d91fa81c491f18fc63b3644d01e86cd07a74f6124fb99b89ff2bd34f2a0570aa9a32eaca5671b7024228fbc61b164839ee8955541b9990683cac5881bc252fa80140e6402862be95a551ba4ac93546ec53451364f76caddd9421233ca7a027b60a8b2989c7f11a37c8199a38ab0086dc42eb139e61a6743fc691028c53d07fa8d5a21c935bf9d68914a6e7deb2a8c7dd5e9629693bdcdaa213", 0x481}], 0x1}}], 0x2, 0x4000001)
r1 = dup(r0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r1)

29m28.371740079s ago: executing program 32 (id=158):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000000000)=0x1, 0x4)
bind$inet6(r0, &(0x7f0000000280)={0xa, 0x4e22, 0x9, @loopback, 0x6}, 0x1c)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000080)=0x40, 0x4)
connect$inet6(r0, &(0x7f0000000140)={0xa, 0x4e22, 0x23, @loopback, 0x23}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001540)=[{{0x0, 0x0, &(0x7f0000003640)=[{&(0x7f0000000680)="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", 0x241}], 0x1}}, {{&(0x7f0000000240)={0xa, 0x4e23, 0x9, @mcast1, 0x5}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000001f80)="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", 0x481}], 0x1}}], 0x2, 0x4000001)
r1 = dup(r0)
syz_genetlink_get_family_id$tipc2(&(0x7f0000000100), r1)

29m11.442417782s ago: executing program 4 (id=264):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000100000000000000ac1e000100000000000000000000000000000000000000000a0060"], 0xb8}}, 0x0)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0x2, 0x0, 0x25dfdbfe, {{@in6=@private0, @in=@remote, 0x0, 0x400, 0x0, 0x0, 0xa, 0x60, 0x0, 0x3b, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, {}, 0x9}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9"], 0xb8}}, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=@updpolicy={0xb8, 0x13, 0xcb23c9c9931e99e9, 0x0, 0x25dfdbfe, {{@in6=@private0, @in=@remote, 0x0, 0xe9d8, 0x1, 0xc4, 0xa, 0x60, 0x0, 0x0, 0x0, 0xee01}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, 0x80000001}}, 0xb8}, 0x1, 0x0, 0x0, 0x80}, 0x0)
sendmsg$nl_xfrm(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="b80000001300e9990000000000000000fc000000000000000000000048000000ac1e000100000000000000000000000000000000000000000a0040"], 0xb8}}, 0x4000)

29m11.320540319s ago: executing program 4 (id=266):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
mmap(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x300000a, 0x12, r0, 0x852ac000)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0xb, &(0x7f0000000040)=0x9, 0x4)
bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
recvmmsg(r1, &(0x7f0000006340)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000001800)=""/254, 0xfe}, 0x5}], 0x1, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x46, 0x0, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x42, &(0x7f0000000100)=0x5, 0x4)
sendto$inet6(r1, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

29m11.172886717s ago: executing program 4 (id=268):
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x6, 0x3, &(0x7f0000000340)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x201}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x26, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000080), 0x41, 0x0)
write$binfmt_aout(r0, &(0x7f00000001c0)=ANY=[], 0xff2e)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="b400000000000000791028000000000061000400000000009500000000000000db74589d4b38cc306ac390649f72dea0e50e2317db042855d6c74ff3493c7e31e3f6c643155a8e2e01d50bc3347475750472719cc516fa14b769e7f385ba72c60242263c05ddab05e37efe81b8bffc35cdf2ac0d93263ff755d611c4cca1684b1470af6a83366aa430ad2d700b186da622d6fba70000000000000000000000000200"/173], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x5, '\x00', 0x0, @sk_msg}, 0x48)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x0, 0x0, 0x0, 0xfe, "003809630400"})
r1 = syz_open_pts(r0, 0x80500)
r2 = dup3(r1, r0, 0x80000)
read(r2, &(0x7f00000000c0)=""/226, 0xe2)
read$watch_queue(r2, &(0x7f0000001d40)=""/4095, 0xfff)

29m10.213373264s ago: executing program 4 (id=272):
ioctl$EXT4_IOC_MOVE_EXT(0xffffffffffffffff, 0x8004587d, 0x0)
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$eJzs3V1oXOl5B/DnnSOtRto00WYTb9Jm04GUxCi18VdsBZcgZxW1AccbIit0r6LRh51h5ZGR5MabtkFtSQu9Cd2b0psimi4t5KJX3V5WabaQUAol5CK9KAiaLHvRC10ECi0bhXPmHWlky7ayXlvS7u+3zP7PnHnO+P0YnzkCvzoBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAER89nOXTp1OB90KAOBxujL5pVNnff8DwLvKVT//AwAAAAAAAAAAAADAYZeiiGORYujVzTRdPe+oX261b92eGp/Y+7DBFClqUVT15aN++szZc586f2G0m/c//u324Xh+8uqlxnOLN24uzS8vz881ptqt2cW5+X2/w8Mef6eRagAaN168NXft2nLjzMmzu16+Pfz6wJPHhi9eOHF+tFs7NT4xMdlT09f/lv/0u9xrhccTUUQzUrw5/EZqRkQtHn4sHvDZedQGq06MVJ2YGp+oOrLQarZXyhdTLVfVIho9B411x+gxzMVDGYtYLZtfNnik7N7kzeZSc2ZhvvHF5tJKa6W12E61TmvL/jSiFqMpYi0iNgbufrv+KOKjkeLlU5tpJiKK7jh8sloY/OD21B5BH/ehbGejP2KtdgTm7BAbiCKuRIqfvXY8Zssxy4/4eMQXynw14pUyPxORyg/GuYif7vE54mjqiyL+PVIsps00V50PuueVy19ufL59bbGntnteOfLfD4/TIT831aOImeqMv5ne+sUOAAAAAAAAAAAAAAAAAG+3wSji25HiT579vWpdcVTr0t93cfQ9L/x275rxZx7wPmXtyYhYre1vTW5/XjqcauV/j6Bj7Es9ivhGXv/3RwfdGAAAAAAAAAAAAAAAAAAAgHe1Il6IFF85cTytRe89xVvt642rzZmFzl1hu/f+7d4zfWtra6uROjmWczrnas61nOs5N3JGLR+fcyzndM7VnGs513Nu5IwiH59zLOd0ztWcaznXc27kjL58fM6xnNM5V3Ou5VzPuZEzDsm9ewEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3klqUcTPI8W3vraZIkXEWMR0dHJ94KBbBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACU6qmIk5Fi/YV69XytFnE1In6+tbXVfUTEZpkP66D7CgAAAAAAAAAAAAAAAAAAAIdWKuJjkeLp/9tMjYi4Pfz6wJPHhi9eOHF+tIgiUlnSW//85NVLjecWb9xcml9enp9rTLVbs4tz8/v94+qXW+1bt6fGJx5JZx5o8BG3f7D+3OLNl5Za17+6sufrQ/VLM8srS83ZvV+OwahFTPfuGakaPDU+UTV6odVsV4em2j0aWIsY229nAAAAAAAAAAAAAAAAAAAAODSGUhGfixQ/+a9zqbtuvK+z5v9XOs+K7dpX/mDndwEs3JFdvb8/YD/bab8NHakW3jemxicmJnt29/XfXVq2KaUinokUn3j5Q9V6+BRDe66NL+veW9bdOJfrhn+trFvdVVUfmRqfaFxZbJ+4tLCwONtcac4szDcmbzZn9/2LAwAAAAAAAAAAAAAAAAAAAOA+hlIRP4oU//P3/5G6953P6//7Os961v//VrWEvlJPu3Nbtbb/vdXa/s72+y6ODn302XvtfxTr/8s2pVTENyPF2R99qLqffnf9//QdtWXdn0WKN579SK6rPVHWNbvd6bzjtdbC/Kmy9q8jxa+/2a2NqvZ6rn16p/Z0WTsYKf5yc3ftV3PtB3Zqz5S1xyPF9/5779oP7tSeLWt/Ein+6e8a3dqhsvb3c+2xndqTs4sLcw8a1nL+vxMp/vbK76Run+85/z2//2H1jtx215zff/vtmv/hnn2reV7/NM9/8wHzfz5SfKf+kVzXGfuZ/PpT1f935v8TkeI//2137bVc+/6d2tP77dZBK+f/25Hiu3/14+0+5/nPI7szQ73z/6t9u3P7U3JA8/9Uz77h3K7ZX3Is3o2WX/r6i82FhfklGzZs2NjeOOgzE49D+f3/55Hi/48VqXsdk7//39N5tnP997/f2Pn+v3hHbjug7//39+y7mK9a+vsi6is3bvY/E1FffunrJ1o3mtfnr8+3z5w+9elPnz996vT5/ie6F3c7W/seu3eCcv5/ECl++A8/3P45Zvf1397X/0N35LYDmv+ne/u067pm30PxrlTO/99Eiqc+++Ptnzfvd/3f/fn/+Md25/bfvwOa/w/07BvO7Wr9kmMBAAAAAAAAAABwlAylIv4iUvzuH/9m6q4h2s+//5u7I7cd0L//Otazb+4xrWvY9yADABwi5fXfByPFP299f3st9+7rv/iNbm3v9d+9HIb7/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFGXoog/jBRDr26m9YHyeUf9cqt96/bU+MTehw2mSFGLoqovH/XTZ86e+9T5C6PdvP/xb7cPx/OTVy81nlu8cXNpfnl5fq4x1W7NLs7N7/sdHvb4O41UA9C48eKtuWvXlhtnTp7d9fLt4dcHnjw2fPHCifOj3dqp8YmJyZ6avv63/KffJd1j/xNRxPcjxZvDb6TvDkTU4uHH4gGfnUdtsOrESNWJqfGJqiMLrWZ7pXwx1XJVLaLRc9BYd4wew1w8lLGI1bL5ZYNHyu5N3mwuNWcW5htfbC6ttFZai+1U67S27E8jajGaItYiYmPg7rfrjyK+GSlePrWZ/mUgouiOwyevTH7p1NkHt6f2CPq4D2U7G/0Ra7UjMGeH2EAU8Y+R4mevHY/vDUT0RecRH4/4QpmvRrxS5mciUvnBOBfx0z0+RxxNfVHEuUixmDbTawPl+aB7Xrn85cbn29cWe2q755Uj//3wOB3yc1M9ivhBdcbfTP/q7zUAAAAAAAAAAAAAAADAIVLEWqT4yonjqVofvL2muNW+3rjanFnoLOvrrv3rrpne2traaqROjuWczrmacy3nes6NnFHLx+ccyzmdczXnWs71nBs5o8jH5xzLOZ1zNedazvWcGzmjLx+fcyzndM7VnGs513Nu5IxDsnYPAAAAAAAAAAAAAAAAAAB4Z6lFUd3F/Vtf20xbA537S09HJ9fdD/Qd7xcBAAD//0kCdPc=")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x81105a, 0x0)
mount$bind(&(0x7f0000000880)='./file0/../file0\x00', &(0x7f0000000440)='./file0/file0\x00', 0x0, 0x1adc11, 0x0)
mount$bind(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x887008, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='mountinfo\x00')
read$FUSE(r0, &(0x7f0000006b40)={0x2020}, 0x2020)

29m9.94068583s ago: executing program 4 (id=273):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
splice(r2, 0x0, r4, 0x0, 0xf3a, 0x0)
write$binfmt_misc(r4, &(0x7f0000000980), 0xfdef)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
read$FUSE(r3, &(0x7f0000000980)={0x2020}, 0x2020)

29m8.788384477s ago: executing program 4 (id=279):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000400)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r1, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x5, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x6, 0x2}}}}]}, 0x79}}, 0x800)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@newtfilter={0x17c, 0x28, 0xd27, 0x1004001, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xffff, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x14c, 0x2, [@TCA_CGROUP_ACT={0x5b}]}}]}, 0x17c}, 0x1, 0x0, 0x0, 0x8810}, 0x404c0c0)

29m8.511216344s ago: executing program 33 (id=279):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x4076cbba9945d516, &(0x7f0000000340)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000400)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="400000001000390400"/20, @ANYRES32=r1, @ANYBLOB="01980000000000002000128008000100677265001400028008000100", @ANYRES32=r1], 0x40}, 0x1, 0x0, 0x0, 0x4014}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route_sched(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newqdisc={0x44, 0x24, 0x5820a61ca228659, 0x0, 0xfffffffe, {0x0, 0x0, 0x0, r4, {0x0, 0x9}, {0xffff, 0xffff}, {0x5, 0x7}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_USC={0x10, 0x3, {0x6, 0x2}}}}]}, 0x79}}, 0x800)
sendmsg$nl_route_sched(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=@newtfilter={0x17c, 0x28, 0xd27, 0x1004001, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0xffff, 0x9}, {}, {0x2, 0xb}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x14c, 0x2, [@TCA_CGROUP_ACT={0x5b}]}}]}, 0x17c}, 0x1, 0x0, 0x0, 0x8810}, 0x404c0c0)

23m2.834154476s ago: executing program 0 (id=3847):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(0xffffffffffffffff, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0), 0x0, 0x0})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(0xffffffffffffffff, 0xc00c64d2, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text16={0x10, 0x0}], 0x1, 0x41, 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000640)="d8df0f23b3b9ce000000b807000000ba000000000f301b8154fea900c1210680320000c4e28ddc8dcd000000c182fd3f0000c8b950020000b801000400b9a6080000b80000010066b8377a000000d80f300f300fc79d53bf00000f0057000f01c3", 0x61}], 0x1, 0x14, 0x0, 0x0)
ioctl$KVM_SET_LAPIC(r2, 0x4400ae8f, &(0x7f00000006c0)={"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"})
syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000700)=ANY=[@ANYBLOB="1201000000000010711e09200000000000010902240001000000000904000901030001000921050000"], 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

23m0.854546685s ago: executing program 0 (id=3855):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000002c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000800)=""/85})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000ac0)={0x1, 0x0, [{0x1, 0xffb, &(0x7f0000001d80)=""/4091}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000340)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(r0, 0xc400941d, &(0x7f0000000380)={0x0, 0x3ff, 0x5})

23m0.852290224s ago: executing program 0 (id=3856):
openat$fuse(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
r2 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, &(0x7f0000000080)={0x0, "5d9bc136c963254c661fb620148b6f72ca6ae2a44829bfa79ec13499f8ec9077d85d879711d98bb1687ad36dfe5f14a7b0ce15c1e6be0e7ecabfdfde0dfa00b1"}, 0x48, 0xffffffffffffffff)
r3 = add_key$keyring(&(0x7f0000000300), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, 0x0)
keyctl$link(0x8, r3, r2)
setns(r1, 0x24020000)
r4 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
mount(0x0, &(0x7f0000000700)='.\x00', 0x0, 0x8dd0a4, 0x0)

22m59.788370938s ago: executing program 0 (id=3863):
socket(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x1)
getsockopt$bt_l2cap_L2CAP_OPTIONS(0xffffffffffffffff, 0x6, 0x1, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x58, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}, {0x0, 0xfff1}}, [@qdisc_kind_options=@q_sfb={{0x8}, {0x2c, 0x2, @TCA_SFB_PARMS={0x28, 0x1, {0x1a3, 0x655c, 0x4, 0x40, 0x7fffffff, 0x7fffffff, 0x80, 0xffffffff, 0x1}}}}]}, 0x58}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)=@newtfilter={0xa4, 0x2c, 0xd27, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x8, 0x9}}, [@filter_kind_options=@f_u32={{0x8}, {0x78, 0x2, [@TCA_U32_SEL={0x74, 0x5, {0xd, 0x1, 0x6, 0x80, 0x0, 0x6, 0xfffb, 0x2, [{0xca, 0xe, 0xf}, {0xfff, 0x4, 0x7, 0x7}, {0xb, 0x5, 0x8c18}, {0xfffffffa, 0xa678, 0x4}, {0x5, 0x2, 0x9, 0x1}, {0x1, 0x8c1c, 0x907, 0x8001}]}}]}}]}, 0xa4}, 0x1, 0x0, 0x0, 0x4004080}, 0x4000)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

22m59.678222815s ago: executing program 0 (id=3866):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001800dd8d000000ba7e9698ed1fbfa80e000000000002"], 0x3c}}, 0x0)
socket(0x18, 0x0, 0x2)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
bind$bt_hci(r0, &(0x7f0000000000)={0x27}, 0x62)
listen(r0, 0x0)
syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1)
pipe(&(0x7f0000000040))
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
unshare(0x20000400)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0xfffffffffffffffc, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff, 0x6ec}, 0x0, 0x0)

22m58.693426534s ago: executing program 0 (id=3869):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
syz_clone(0x48002000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12)

22m43.0140139s ago: executing program 34 (id=3869):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_type(r0, &(0x7f0000000100), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f0000000280), 0x9)
r2 = openat$cgroup_procs(r0, &(0x7f00000002c0)='cgroup.threads\x00', 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_pid(r2, &(0x7f0000000c40), 0x12)
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0)
syz_clone(0x48002000, 0x0, 0x0, 0x0, 0x0, 0x0)
write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12)

13m16.732360202s ago: executing program 3 (id=6280):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x4)
syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
fsopen(0x0, 0x0)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000480)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000840)=@updpolicy={0xfc, 0x19, 0x1, 0x0, 0x0, {{@in, @in6=@ipv4={'\x00', '\xff\xff', @multicast1}, 0x0, 0x0, 0x0, 0x0, 0x2}, {0x0, 0x7, 0x0, 0x7fffffff, 0x0, 0x2}, {0xfffffffffffffffe, 0xffffffffffffffff}, 0x0, 0x0, 0x1, 0x0, 0x0, 0x3}, [@tmpl={0x44, 0x5, [{{@in6=@rand_addr=' \x01\x00', 0x2, 0x2b}, 0xa, @in6=@private1, 0x0, 0x4, 0x2, 0x0, 0x0, 0x0, 0x4000}]}]}, 0xfc}}, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r3, &(0x7f0000000380)={0x2, 0x0, @remote}, 0x10)
sendmmsg(r3, &(0x7f0000007fc0), 0x800001d, 0x810)

13m15.989892246s ago: executing program 3 (id=6286):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x9}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000380)={{}, &(0x7f0000000300), &(0x7f0000000340)=r0, 0x1000000}, 0x20)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
getsockopt(r1, 0x1, 0x2, &(0x7f0000000580)=""/205, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x800)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
socket$inet6(0xa, 0x2, 0x0)
socket$netlink(0x10, 0x3, 0x8000000004)
close(0x3)
setsockopt$inet_tcp_TCP_CONGESTION(0xffffffffffffffff, 0x6, 0xd, &(0x7f0000000280)='lp', 0x2)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r3, 0x89f1, &(0x7f0000000440)={'sit0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0xffff, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @loopback, @empty}}}})
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r2, 0x89f4, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000140)})

13m14.833384425s ago: executing program 3 (id=6293):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket(0x400000000010, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
pipe2$9p(&(0x7f0000000300), 0x80)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080))
r0 = syz_io_uring_setup(0x462, &(0x7f0000000280)={0x0, 0x40000020, 0x10, 0x2, 0x34f}, &(0x7f00000000c0)=<r1=>0x0, &(0x7f0000000000)=<r2=>0x0)
syz_io_uring_submit(0x0, 0x0, &(0x7f0000000200)=@IORING_OP_WRITE_FIXED={0x5, 0x43, 0x0, @fd, 0x11e, 0x5, 0x0, 0x5, 0x0, {0x3}})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r1, r2, &(0x7f0000000200)=@IORING_OP_ACCEPT={0xd, 0x2, 0x4, r3, 0x0, 0x0, 0x0, 0x80000, 0x1})
io_uring_enter(r0, 0x47bc, 0x0, 0x0, 0x0, 0x0)

13m12.207768502s ago: executing program 3 (id=6298):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x40042, 0x1)
r1 = socket$inet6(0xa, 0x2, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000b40)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000700)={0x20, 0x15, 0xa, 0x201, 0x0, 0x0, {}, [@NFTA_OBJ_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x24040810}, 0x24040808)
sendmmsg$inet6(r1, &(0x7f0000007240)=[{{&(0x7f0000000100)={0xa, 0x4e22, 0x6, @mcast2, 0x7}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000001380)=[{&(0x7f00000012c0)="1ce02c7a", 0xfe60}], 0x1}}, {{0x0, 0x0, &(0x7f0000000000), 0x1}}], 0x3, 0x1c000)
recvmsg(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000a40)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x5}, 0x40000100)
ioctl$KVM_X86_SETUP_MCE(r0, 0x4008ae9c, &(0x7f0000000000)={0xc, 0x4, 0x43})
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r3 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r3, 0x8b2a, &(0x7f0000000040))
mount$9p_fd(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000480), 0x84, &(0x7f0000000140)=ANY=[@ANYBLOB="7472616e733d66642c7266646e6f3d198f86f8620ea19440c0869bf49d9b3928c532f8d42e25923ec1f0c5459373e4f207150b77632ae3d6578293727a72278a4744902a0911299c4c9948ea0f6514f38ecc88df1d185e2c09b1f5242e11026a75494470420189ba9980214b1bcb17ec55fe77ef9976f8cb192128dc16649eb1bdf7df23900f2cebf8492053ff050db2a7d56fc990", @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1, @ANYBLOB=',\x00'])
ioctl$KVM_GET_MSRS_sys(r0, 0xc008ae88, &(0x7f0000000080)={0x4, 0x0, [{0xa2b, 0x0, 0x5}, {0x2ff, 0x0, 0x4}, {0x175, 0x0, 0x800}, {0x81c, 0x0, 0xb1d}]})

13m8.830939634s ago: executing program 3 (id=6309):
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x80)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
getsockopt$PNPIPE_IFINDEX(0xffffffffffffffff, 0x113, 0x2, &(0x7f0000000080), &(0x7f0000000000)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$sock_ifreq(0xffffffffffffffff, 0x0, &(0x7f0000000080)={'virt_wifi0\x00', @ifru_flags})
ioctl$sock_proto_private(r3, 0x8b35, &(0x7f0000000080))

13m6.161104113s ago: executing program 3 (id=6311):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x2, 0x300}, {0x6e, 0x0, 0xd}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfff0}, {0x5, 0x0, 0xc, 0x9, 0x0, 0x0, 0x20000f19}, {0x3, 0x0, 0x6, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

12m50.4677268s ago: executing program 35 (id=6311):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x48)
r4 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x7, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r4}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3, 0x9, 0x0, 0x2, 0x300}, {0x6e, 0x0, 0xd}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfff0}, {0x5, 0x0, 0xc, 0x9, 0x0, 0x0, 0x20000f19}, {0x3, 0x0, 0x6, 0xa, 0xa}, {0x7, 0x1, 0xb, 0x6, 0x8}, {0x7, 0x0, 0x0, 0x8}, {}, {}, {}, {0x18, 0x2, 0x2, 0x0, r3}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5m1.131178185s ago: executing program 2 (id=7545):
openat$fb0(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r0 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000740), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r0, 0x7a7, &(0x7f0000000080)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r0, 0x7a0, &(0x7f0000000000)={@my=0x0})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f0000000180)={{@my=0x0}, 0x1, 0x1})
ioctl$IOCTL_VMCI_NOTIFY_RESOURCE(r0, 0x7a5, &(0x7f00000000c0)={{@my=0x0}, 0x1})
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x200000b, 0x204031, 0xffffffffffffffff, 0xffffd000)
socket$inet6(0xa, 0x2, 0x0)
r1 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000040), 0x101800, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x400, 0x1, 0x40000333}, &(0x7f00000006c0)=<r3=>0x0, &(0x7f00000001c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd_index=0x4, 0x0, &(0x7f0000000600)=[{0x0}], 0x1})
io_uring_enter(r2, 0x847ba, 0x0, 0xf, 0x0, 0x0)
r5 = syz_open_dev$dri(&(0x7f0000000000), 0x1, 0x0)
ioctl$DRM_IOCTL_MODE_GET_LEASE(r5, 0xc01064c8, &(0x7f00000000c0)={0x2, 0x0, &(0x7f0000000080)=[0x0, <r6=>0x0]})
ioctl$DRM_IOCTL_MODE_GETPROPERTY(r5, 0xc04064aa, 0x0)
ioctl$DRM_IOCTL_MODE_GETENCODER(r1, 0xc01464a6, &(0x7f00000000c0)={r6})
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x400000000003, 0x7ffff, &(0x7f0000006680))

4m58.014579148s ago: executing program 2 (id=7554):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
process_madvise(0xffffffffffffffff, 0x0, 0x0, 0x19, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001000)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_QUERY(0x10, &(0x7f00000004c0)={@map=0x1, 0x3, 0x0, 0x1, &(0x7f0000000340)=[0x0, 0x0, 0x0, 0x0], 0x4, 0x0, &(0x7f0000000400)=[0x0, 0x0, 0x0, 0x0, 0x0], 0x0, &(0x7f0000000480)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}, 0x40)
r3 = userfaultfd(0x801)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_WRITEPROTECT(r3, 0xc018aa06, &(0x7f00000000c0)={{&(0x7f000040a000/0x800000)=nil, 0x800000}, 0x1})
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
bind$inet(r4, &(0x7f0000000080)={0x2, 0x4e24, @multicast2}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0}, 0x2)
ioctl$UFFDIO_CONTINUE(r3, 0xc020aa07, 0x0)
connect$inet(r4, &(0x7f0000000140)={0x2, 0x4e24, @dev={0xac, 0x14, 0x14, 0x1f}}, 0x10)
shutdown(r4, 0x1)

4m57.207006525s ago: executing program 2 (id=7557):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_icmp_ICMP_FILTER(0xffffffffffffffff, 0x1, 0x1, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
r3 = landlock_create_ruleset(&(0x7f00000000c0)={0x100}, 0x18, 0x0)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x200000, 0x0)
tee(r2, r4, 0xc, 0x9)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(r3, 0x1, &(0x7f0000000140)={0x100, r4}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
getpid()
preadv(0xffffffffffffffff, 0x0, 0x0, 0xffff, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
write(0xffffffffffffffff, &(0x7f0000000040), 0x0)

4m56.147211687s ago: executing program 2 (id=7560):
r0 = syz_open_dev$loop(&(0x7f0000000040), 0x1bd, 0x101000)
ioctl$BLKRRPART(r0, 0x125f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000640)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
close(r4)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000380)='./file1\x00', &(0x7f0000000100)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f00000000c0)='./file1\x00')
symlinkat(&(0x7f0000000400)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00')
r5 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
setpgid(r5, r5)
setpgid(0x0, r5)
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x441, 0x104)

4m54.394094281s ago: executing program 2 (id=7561):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$KVM_SET_SREGS(0xffffffffffffffff, 0x4138ae84, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc4c85512, 0x0)
r1 = syz_open_dev$evdev(&(0x7f00000000c0), 0x0, 0x822b01)
write$char_usb(r1, &(0x7f0000000040), 0x0)
ioctl$EVIOCGKEY(r1, 0x80404518, &(0x7f0000000340)=""/81)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000002c0)={'bridge_slave_0\x00', <r2=>0x0})
r3 = socket(0x10, 0x80002, 0x0)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000180)={@mcast1, 0x8000000, 0x0, 0x2, 0x1, 0x0, 0x8}, 0x20)
close(r4)
sendmsg$nl_route(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[@ANYRES32=r0, @ANYRES32=r2, @ANYBLOB, @ANYRES16=r3, @ANYRES32=r3, @ANYRESOCT=r4], 0x44}}, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r5, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CONNECT(r5, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)={0x30, r6, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r7}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_BG_SCAN_PERIOD={0x6, 0x98, 0x6}]}, 0x30}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
syz_mount_image$iso9660(&(0x7f0000000000), &(0x7f0000000800)='./file0\x00', 0x2000801, &(0x7f0000000040)=ANY=[], 0x0, 0x69f, &(0x7f0000000840)="$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")

4m53.527025552s ago: executing program 2 (id=7564):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[], 0x3, 0x151b, &(0x7f0000001b40)="$eJzs3AvYTdX2MPAx5pyLl6SdI/c55ljs5DJJklwSEkmSJEluCUmSJCHxklsSkiT3JPeQ3EJyv99yT5IjSZKQkGR+j06OOp3z73++c77Pec47fs+zHnPstcfYc+7h2Xuv9a69v24/sHLdKhVrMzP8S/Av/6QCQAoA9AGAqwAgAoASWUpkARwCGTSm/msPIv697p98uWcgLifpf9om/U/bpP9pm/Q/bZP+p23S/7RN+p+2Sf+FSMs2T8l5tWxpd/v/d/4f5Pz/fxiU9///JgeLjPx8bZFrOvwTKdL/tE36n7ZJ/9M26X/aJv1Pi/CvI+n/f7kIoML/sFv6n7ZJ/4VIyy73+ef/rk0DwOWewz+3Xe7/f0IIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQggh0oYz4RIDABfHv7pL+ss4PSGEEEIIIYQQQvwbBDm6F0IIIYQQQggh0gAEBRoMRJAO0kMKZICMcAVkgishM1wFCbgassCfICtcA9kgO+SAnJALckMesEDggCGGvCkXa10HBaAgFILC4KEIFIXroRjcAMXhRigBN0FJuBlKQWkoA2XhFigHt0J5qAAV4TaoBLdDZagCd0BVuBOqwV1QHe6GGnAP1IR7oRbcB7XhfqgDD0BdeBDqwUNQHxpAQ2gEjX+dn+7iPP4o/znoDM9DF+gKqdANusML0AN6Qi/oDX3gRegLL0E/eBn6wwAYCK/AIHgVBsNrMAReh6HwBgyD4TACRsIoGA1j4E0YC2/BOHgbxsMEmAiTYDJMganwDkyD6TAD3oWZ8B7MgtkwB+bCPHgf5sMCWAgfwCL4EBbDElgKy2A5rICVsApWwxpYC+tgPWyAjbAJNsNHsAW2wjbYDjtgJ+yCj2E3fAJ74FPYC5/9k/mn/ya/AwICKlRo0GA6TIcpmIIZMSNmwkyYGTNjAhOYBbNgVsyK2TAb5sAcmAtzYR7Mg4SEjIx5MS8mMYn5MT8WwAJYCAuhR49FsSgWwxuwOBbHElgCS2JJLIWlsTSWxbJYDstheSyPFbEiVsJKWBkr4x14B96J1bAaVsfqWANrYE2sibWwFtbG2lgH62BdrIv1sB7Wx/rYEBtiY2yMTbAJNsWm2BybYwtsgS2xJbbCVtgaW2MbbINtsS22w3bYHttjB+yIHfE5fA6fx+exK1ZS3bA7dsce2AN7YW/sjS9iX3wJX8KXsT8OwIH4Cr6Cr+JgPIVD8HUcikOxnBqOI3AkshqNY3AMjsWxOA4z43icgBNwEk7GKTgVp+I0nI7T8V2cie/hezgbZ+NcnIfzcD4uwIW4EBfhaVyMS3ApLsPluAKX4ypcjatwLa7DtbgBN+Am3IQf4Ue4FbfidtyOO3Enfowf4yf4CfbHvbgX9+E+3I/78QAewIN4EA/hITyMh/EIHsGjeBSP4XE8gcfxJJ7EU3gaz+AZPItn8Rw+k+vLOjsLrukP6gKjjEqn0qkUlaIyqowqk8qkMqvMKqESKovKorKqrCqbyqZyqBwql8ql8qg8ihQpVrHKq/KqpEqq/Cq/KqAKqEKqkPLKq6KqqCqmiqniqrgqoW5SJdXNqpQqrZr5sqqsKqea+/KqgqqoKqpK6nZVWVVRVVRVVVVVU9VUdVVd1VA1VE11r6qlumEvvF9d6ExdNQDrqYFYXzVQDVUj9So+rJqowdhUNVPN1aPqdRyCLVUT30o9oVqrEdhGPaVG4tOqnRqN7dWzqoPqqDqp51Rn1dR3ufh6oSZhD9VT9VK91TS8XV3oWGX1suqvBqiB6hU1F19Vg9Vraoh6XQ1Vb6hhargaoUaqUWq0GqPeVGPVW2qceluNVxPURDVJTVZT1FT1jpqmpqsZ6l01U72nZqnZao6aq+ap99V8tUAtVB+oRepDtVgtUUvVMrVcrVAr1Sq1Wq1Ra9U6tV5tUBvVJrVZfaS2qK1qm9qudqidapf6WO1Wn6g96lO1V32m9qk/q/3qc3VAfaEOqi/VIfWVOqy+VkfUN+qo+lYdU8fVCfWdOqm+V6fUaXVG/aDOqh/VOfWTOq+CAo1aaa2NjnQ6nV6n6Aw6o75CZ9JX6sz6Kp3QV+ssZfRfniedXefQOXUunVvn0VaTdpp1rPPqfDqpr9X59XW6gC6oC+nC2usiuqi+XhfTN+ji+kZdQt+kS+qbdSldWpfRZfUtupy+VZfXFXRFfZuupG/XlXUVfYeuqu/U1fRdurq+W9fQ9+ia+l5dS9+na+v7dR39gK6rH9T19EO6vm6gG+pGurF+WDfRj+imuplurh/VLfRjuqV+XLfST+jW+kndRj+l2+qndTv9jG6vn9UddEfdSf+kz+ugu+iuOlV30931C7qH7ql76d66j35R99Uv6X76Zd1fD9AD9St6kH5VD9av6SH6dT1Uv6GH6eF6hB6pR+nReox+U4/Vb+lx+m09Xk/QE/UkPVlP0b1+qTTjf5H/1t/J7/fzo2/Sm/VHeoveqrfp7XqH3ql36V16t96t9+g9eq/eq/fpfXq/3q8P6AP6oD6oD+lD+rA+rI/oI/qoPqqP6eP6B/2dPqm/16f0aX1a/6DP6rP63C/PARg0ymhjTGTSmfQmxWQwGc0VJpO50mQ2V5mEudpkMZgKcI3JZrKbHCanyWVymzzGGjLOsIlNXpPPJM21Jr+5zhQwBU0hU9h4U8QUNdf/kv8nk9X83+X/0fwam8amiWlimpqmprlpblqYFqalaWlamVamtWlt2pg2pq1pa9qZdqa9aW86mA6mk+lkOpvOpovpYlJNquluXjA9TE/Ty/Q2fcyLpq/pa/qZfqa/6W8GmoFmkBlkBpvBZogZYoaaoWaYGWZGmBFmlBllxpgxZqwZa8aZcWa8GW8mmolmsplsppqpZpqZZmaYGWammWlmmVlmjplj5pl5Zr6ZbxaahWaRWWQWmyVmiVlmlpkVZoVZZVaZNWaNWWfWmQ1mg1lsNpvNZovZYraZbWaH2WF2mV1mt9lt9pg9Zq/Za/aZfWa/2W8OmAPmoDloDplD5rA5bI6YI+aoOWqOmWPmhDlhTpqT5pQ5Zc6YM+asOWvOmXPmvDl/4WNfpCIVmchE6aJ0UUqUEmWMMkaZokxR5ihzlIgSUZYoS5Q1uibKFmWPckQ5o1xR7igVbESRiziKo7xRvigZXRvlj66LCkQFo0JR4chHRaKi0fVRseiGqHh0Y1QiuikqGd0clYpKR2WistEtUbno1qh8VCGqGN0WVYpujypHVaI7oqrRnVG16K6oenR3VCO6J6oZ3RvViu6Lakf3R3WiB6K60YNRveihqH7UIGoYNYoa/8v1vwWAi/VDOJX9Ed/FdrWptpvtbl+wPWxP28v2tn3si7avfcn2sy/b/naAHWhfsYPsqxevk7VD7Rt2mB1uR9iRdpQdbcfYN+1Y+5YdZ9+24+0EO9FOspPtFDvVvmOn2el2hn3XzrTv2Vl2tp1j59p59n073y6wC+0HdpH90C62S+xSu8wutyvsSrvKrrZr7Fq7zq63G+xGu8luth/ZLXar3Wa32x12p91lP7a77Sd2j/3U7rWf2X32z3a//dwesF/Yg/ZLe8h+ZQ/br+0R+409ar+1x+xxe8J+Z0/a7+0pe9qesT/Ys/ZHe87+ZM/bcOHD/YW3dzJkKB2loxRKoYyUkTJRJspMmSlBCcpCWSgrZaVslI1yUA7KRbkoD+WhC5iY8lJeSlKS8lN+KkAFqBAVIk+eilJRKkbFqDgVpxJUgtJTSSpFpagMlaFb6Ba6lW6lClSBbqPb6Ha6napQFapKVakaVaPqVJ1qUA2qSTWpFtWi2lSb6lAdqkt1qR7Vo/pUnxpSQ2pMjakJNaGm1JSaU3NqQS2oJbWkVtSKWlNrakNtqC21pXbUjtpTe+pAHagTdaLO1Jm6UBdKpVTqTt2pB/WgXtSL+lAf6kt9qR/1o/7UnwbSQBpEg2gwDaYh9DoNpTdoGA2nETSSRtFoGkNjaCyNpXE0jsbTeJpIE2kyTaapNJWm0TSaQTNoJs2kWTSL5tAcmkfzaD7Np4W0kBbRIlpMi2kpLaXltJxW0kpaTatpLa2l9bSeNtJG2kybaQttoW20jXbQDtpFu2g37aY9tIf20l7aR/toP+2nA3SADtJBOkSH6DAdpiN0hI7SUTpGx+gEnaCTdJJO0Sk6Q2foLP1I5+gnOk8/Xwp+gcvkrnSZ3VUuxWVwGd0VLgKAC3EOl9PlcrldHmddNpf9NzE55wq4gq6QK+y8K+KKuut/F5dypV0ZV9bd4sq5W13538VV3Z2umrvLVXd3uyrujt/ENdw9rqZ70NVyD7naroGr4xq5uu5BV8895Oq7Bq6ha+RauMdcS/e4a+WecK3dk7+L57sFbrVb49a6dW63+8SdcT+4w+5rd9b96Lq4rq6Pe9H1dS+5fu5l198N+F081L3hhrnhboQb6Ua50b+LJ7pJbrKb4qa6d9w0N/138Tz3vpvpFrpZbrab4+b+HF+Y00L3gVvkPnSL3RK31C1zy90Kt9Kt+utcl7kNbqPb5Ha5j90Wt9Vtc9vdDrfz5/jCOva4T91e95k75L5y+93n7oA74g66L3+OL6zviPvGHXXfumPuuDvhvnMn3ffulDv98/ovrP0795M774IDRlas2XDE6Tg9p3AGzshXcCa+kjPzVZzgqzkL/4mz8jWcjbNzDs7JuTg352HLxI6ZY87L+TjJ13J+vo4LcEEuxIXZcxEuytdzMb6Bi/ONXIJv4pJ8M5fi0lyGy/ItXI5v5fJcgSvybVwpBK7MFy9RqMZ3cXW+m2vwPVyT7+VafB/X5vu5Dj/AdflBrscPcX1uwA25ETfmh7kJP8JNuRk350e5BT/GLflxbsVPcGt+ktvwU9yWn+Z2/Ay352e5A3fkTvwcd+bnuQt35VTuxt35Be7BPbkX9+Y+/CL35Ze4H7/M/XkAD+RXeBC/yoP5NR7Cr/NQfoOH8XAewSN5FI/mMfwmj+W3eBy/zeN5Ak/kSTyZp/BUfoen8XSewe/yTH6PZ/FsnsNzeR6/z/N5AS/kD3gRf8iLeQkv5WW8nFfwSl7Fq3kNr+V1vJ438EbexJv5I97CW3kbb+cdvJN38ce8mz/hPfwp7+XPeB//mffz53yAv+CD/CUf4q/4MH/NR/gbPsrf8jE+zif4Oz7J3/MpPs1n+Ac+yz/yOf6Jz3NgiDFWsY5NHMXp4vRxSpzh4smVOHN8VZyIr46zxH+Ks8bXxNni7HGOOGecK84d54ltTLGLOY7jvHG+OBlfG+ePr4sLxAXjQnHh2MdF4qLx9XGx+Ia4eHxjXCK+KS4Z3xyXikvHD95dNr4lLhffGpePK8QV49viSvHtceW4SnxHXDW+M64W3xVXj++Oi8f3xDXje+Na8X1x7fj+uE78QFw3fjCuFz8U148bxA3jRnHj+OG4SfxI3DRuFjePH41bxI/FLePH41bxE3Hr+Mk/3J8ad4u7xy/EL8Qh3KXnJOcm5yXfT85PLkguTH6QXJT8MLk4uSS5NLksuTy5IrkyuSq5OrkmuTa5Lrk+uSG5MbkpGUKV9ODRK6+98ZFP59P7FJ/BZ/RX+Ez+Sp/ZX+UT/uqQHsBn9df4bD67z+Fz+lw+t8/jrSfvPPvY5/X5fNJf6/P763wBX9AX8oW990V8Ud/IN/aNfRP/iG/qm/nm/lH/qH/MP+Yf94/7J3xr/6Rv45/ybf3Tvp1/xj/jn/UdfEffyT/nO/vnfRff1af6VN/dX3ix7+F7+V6+j+/j+/q+vp/v5/v7/n6gH+gH+UF+sB/sh/ghfqgf6of5YX6EH+FH+VF+jB/jx/qxfpwf58f78X6in+gn+8l+qp/qp/lpfoaf4WcWmOln+Vl+jp/j5/l5fr6f7xf6hX6RX+QX+8V+qV/ql/vlfqVf6Vf71X6tX+vX+/V+o9/oN/vNfovf4rf5bX6H3+F3+V1+t9/t9/g9fq/f6/f5fX6/3+8P+C/8Qf+lP+S/8of91/6I/8Yf9d/6Y/64P+G/8yf99/6UP+3P+B/8Wf+jP+d/8ud98GMSbybGJt5KjEu8nRifmJCYmJiUmJyYkpiaeCcxLTE9MSPxbmJm4r3ErMTsxJzE3MS8xPuJ+YkFiYWJDxKLEh8mFieWJJYmliWWJ1YkQsi9JQ55Q76QDNeG/OG6UCAUDIVC4eBDkVA0XB+KhRtC8XBjKBFuCiXDzaFUKB3KhIdC/dDgr5dhNQmPhKahWWgeHg0twmOhZXg8tApPhNbhydAmPBXahqdDu/BMaB+eDR1Cx9ApPBc6h+dDl9A1pIZuoXt4IfQIPUOv0Dv0CS+GvuGl0C+8HPqHAWFgeCUMCq+GweG1MCS8HhAAhoXhYUQYGUaF0WFMeDOMDW+FceHtMD5MCBPDpDA5TAlTwzthWpgeZoR3w8zwXpgVZoc5YW6YF94P88OCsDB8EBaFD8PisCQsDcvC8rAirAyrwuqwJqwN68L6sCFsDJvC5vBR2BK2hm1he9gRdoZd4eOwO3wS9oRPw97wWdgX/hz2h8/DgfBFOBi+DIfCV+Fw+DocCd+Eo+HbcCwcDyfCd+Fk+D6cCqfDmfBDOBt+DOfCT+H8b7+zJoQQQggh/gH9B/u7/Z3b0gGA+mXcHQCu3Jrz4N/WXJ/tL+OeKleLBAA80bX9/Re3SpVSU1N/ue9iDVG+2QCQ+G39i/ESaA6PQStoBsV+M4eLJ6h6qo5n+Q/qJ28CyPir3BS4FF+qf8PfXX9P9fCjQ+eXjM9k+R/qzwYokO9SzoUj5YvxpfrF/0H97E3+YP4ZPh8D0PRXOZngUnypflF4BJ6EVr+5pxBCCCGEEEII8Rc9VQR/e/z5xa/2Xzw+z2Uu3ZYeLsX/6PhcCCGEEEIIIYQQ/zme7tjp8YdbtWrW9n83wF/+Lv3PZcngv2Wg/zOmIYP/94PL/cokhBBCCCGE+He79KH/cs9ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYRIu375/n8KAPz+Z8AM/Ft+Tuxyr1EIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYS43P5PAAAA///klyMF")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffd)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
ptrace$poke(0x5, r1, &(0x7f0000000040), 0x4f97)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x275a, 0x0)
ftruncate(r4, 0xc17a)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x1a, &(0x7f0000000000)=0x6, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYBLOB, @ANYRESDEC=r5], 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000700)={r6, 0xffff0000, 0xb, 0x0, &(0x7f00000006c0)="2b206d074843b397737ea4", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newlink={0x38, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x46}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8, 0x2, @udp6=r5}]}}}]}, 0x38}, 0x1, 0xba01}, 0x0)
close_range(r5, r5, 0x0)

4m37.274560346s ago: executing program 36 (id=7564):
r0 = socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$exfat(&(0x7f00000005c0), &(0x7f0000000240)='./file1\x00', 0x0, &(0x7f0000000140)=ANY=[], 0x3, 0x151b, &(0x7f0000001b40)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0xfffffffffffffffd)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
ptrace$poke(0x5, r1, &(0x7f0000000040), 0x4f97)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x275a, 0x0)
ftruncate(r4, 0xc17a)
r5 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r5, 0x29, 0x1a, &(0x7f0000000000)=0x6, 0x4)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000380)=ANY=[@ANYRES32, @ANYBLOB, @ANYRESDEC=r5], 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000700)={r6, 0xffff0000, 0xb, 0x0, &(0x7f00000006c0)="2b206d074843b397737ea4", 0x0, 0xf000, 0x720e, 0x0, 0x0, 0x0, 0x0}, 0x50)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000100)=@newlink={0x38, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x46}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @gtp={{0x8}, {0xc, 0x2, 0x0, 0x1, [@IFLA_GTP_FD1={0x8, 0x2, @udp6=r5}]}}}]}, 0x38}, 0x1, 0xba01}, 0x0)
close_range(r5, r5, 0x0)

40.499700601s ago: executing program 9 (id=8176):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$TOKEN_CREATE(0x24, &(0x7f0000000000), 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x17, 0xc, 0x0, 0x0, 0x4000002, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xfffffffd}, 0x94)
socket$nl_generic(0x10, 0x3, 0x10)
socket$l2tp6(0xa, 0x2, 0x73)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x9b}, [@ldst={0x6}]}, &(0x7f0000003ff6)='GPL\x00', 0x5}, 0x94)
r3 = socket$inet(0x2, 0x2, 0x0)
setsockopt$inet_mreqn(r3, 0x0, 0x23, &(0x7f0000000740)={@multicast2, @loopback}, 0x40)
setsockopt$inet_msfilter(r3, 0x0, 0x29, &(0x7f0000000040)=ANY=[@ANYBLOB="e00000027f0000010000000003"], 0x1c)
r4 = socket$netlink(0x10, 0x3, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
writev(r4, &(0x7f00000003c0)=[{&(0x7f0000000280)="390000001300034700bb65e1c3e4ffff01000000010000005600000025000000190004000400000007fd17e5ffff0800040000000000000000", 0x39}], 0x1)

36.09859671s ago: executing program 9 (id=8178):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
madvise(&(0x7f00002e5000/0x400000)=nil, 0x400000, 0xf)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800002, 0xe)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r3 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)=ANY=[@ANYBLOB], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r3}, &(0x7f0000000540), &(0x7f0000000580)}, 0x20)
bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000007c0)={r3, 0x0}, 0x20)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$VT_RESIZE(r6, 0x5609, &(0x7f0000000180)={0x65f5, 0x0, 0xff})
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000040)={'sit0\x00', <r7=>0x0})
ioctl$sock_inet6_SIOCSIFDSTADDR(r5, 0x8918, &(0x7f0000000080)={@loopback={0x0, 0x3fc}, 0x0, r7})

33.504974122s ago: executing program 9 (id=8186):
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$getregset(0x4204, r0, 0x201, &(0x7f0000000000)={0x0})
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
clock_nanosleep(0xffffffffffffffff, 0x0, &(0x7f0000000040), 0x0)
ioctl$USBDEVFS_REAPURB(r2, 0x4008550c, 0x0)
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000000080)={0x68, 0x0, &(0x7f00000003c0)=[@register_looper, @free_buffer, @dead_binder_done, @reply_sg={0x40486312, {0x2, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x50, 0x18, &(0x7f0000000440)={@flat=@weak_binder={0x77622a85, 0x300}, @fda={0x66646185, 0x9, 0x2, 0x8}, @fd={0x66642a85, 0x0, r1}}, &(0x7f0000000140)={0x0, 0x18, 0x34}}}], 0x0, 0x0, 0x0})
mmap$binder(&(0x7f0000ffd000/0x2000)=nil, 0x2000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
r3 = socket(0x10, 0x80002, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="1c0000005e00679a3601ffc4910700004f78d4c1a0731cccff"], 0x1c}}, 0x8000)
recvmmsg$unix(r3, &(0x7f0000002380)=[{{0x0, 0x0, &(0x7f0000001340)=[{0x0}], 0x1}}], 0x1, 0x0, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0x6, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000100), 0xfffffd9d)
sendfile(r4, r5, 0x0, 0x8000002b)

29.600259522s ago: executing program 9 (id=8194):
bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xc2d00, 0x0, '\x00', 0x0, @netfilter=0x2d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
prlimit64(0x0, 0xe, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_procfs(0x0, 0x0)
bind$inet6(r0, &(0x7f0000000080)={0xa, 0x2, 0x200, @loopback, 0x7}, 0x1c)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000026c0)=ANY=[@ANYBLOB="4000000012000501000000000000000005001900ff00000028001a000a0101"], 0x40}, 0x1, 0x0, 0x0, 0x40000c0}, 0x20040810)
sendto$inet6(r0, 0x0, 0x0, 0x20000045, &(0x7f00000001c0)={0xa, 0x2, 0xffff, @loopback, 0x3}, 0x1c)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000000)='veno', 0x4)
shutdown(r0, 0x1)
r5 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r5, 0x84, 0x6d, &(0x7f0000000000)=""/4102, 0x0)

27.836461125s ago: executing program 9 (id=8198):
ioperm(0x0, 0x2, 0x7e)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
socketpair(0x25, 0x2, 0x1, &(0x7f0000000080)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
kcmp$KCMP_EPOLL_TFD(r0, r1, 0x7, r2, &(0x7f0000000140)={0xffffffffffffffff, 0xffffffffffffffff, 0x6d})
getrlimit(0x1, &(0x7f0000000180))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCGPTPEER(r5, 0x5441, 0xfffffffffffffff0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
clock_adjtime(0x0, &(0x7f0000000380)={0x3ff, 0x8, 0x4101, 0x4000000000000b, 0x0, 0x9, 0x400000400, 0x80000000000a, 0x6, 0x100, 0x7, 0x0, 0xffffffffffffffff, 0x81, 0x20000000000009f, 0x2, 0xfffffffffffffffc, 0x6, 0x6, 0x9, 0x8001, 0x3, 0x0, 0x3, 0x72a3, 0xe})
clock_adjtime(0x0, 0x0)
write$binfmt_misc(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$sysfs(0xffffff9c, &(0x7f0000000000)='/sys/kernel/notes', 0x0, 0x10)
r7 = openat$binfmt_format(0xffffff9c, &(0x7f0000000040)='/proc/sys/fs/binfmt_misc/syz0\x00', 0x2, 0x0)
write$binfmt_format(r7, &(0x7f0000000100)='-1\x00', 0x2)
close(r7)
finit_module(r6, 0x0, 0x7)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000f40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x94)

26.159108123s ago: executing program 9 (id=8202):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@updsa={0x104, 0x1a, 0x1, 0x0, 0x25dfdbfe, {{@in=@multicast2, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {@in6=@local, 0x0, 0x3c}, @in=@multicast1, {}, {}, {}, 0x0, 0x0, 0xa}, [@coaddr={0x14}]}, 0x104}}, 0x0)
mkdir(&(0x7f00000003c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
mount(0x0, &(0x7f0000000300)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000340)='smb3\x00', 0x10000, &(0x7f0000000380)='nocase')

14.103539931s ago: executing program 8 (id=8224):
socket$inet6_sctp(0xa, 0x1, 0x84)
close(0x3)
socket$inet_sctp(0x2, 0x1, 0x84)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(r0, 0x1, &(0x7f0000000180)=0x3)
r3 = userfaultfd(0x80801)
r4 = socket$inet(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r4, 0x8916, &(0x7f0000000000)={'veth1_to_bond\x00', {0x2, 0x4e26, @rand_addr=0xdffffc13}})
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x3000002, 0x5d031, r3, 0x0)
ioctl$UFFDIO_API(r3, 0xc018aa3f, &(0x7f0000000080)={0xaa, 0x100})
write$UHID_CREATE2(0xffffffffffffffff, 0x0, 0x0)
mount_setattr(0xffffffffffffffff, 0x0, 0x300, 0x0, 0x0)
ioctl$UFFDIO_REGISTER(r3, 0xc020aa00, &(0x7f0000000040)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x4})
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
ioctl$UFFDIO_COPY(r3, 0xc028aa03, &(0x7f0000000000)={&(0x7f0000800000/0x800000)=nil, &(0x7f00006c0000/0x1000)=nil, 0x800000})
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r5, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
setsockopt(r5, 0x84, 0x80, &(0x7f0000000000)="1400000009000000", 0x8)

12.457864938s ago: executing program 7 (id=8227):
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
getpgid(0xffffffffffffffff)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
msgctl$MSG_INFO(0x0, 0xc, &(0x7f00000000c0)=""/153)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6_udplite(0xa, 0x2, 0x88)
r3 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r3, &(0x7f00000002c0)="f9", 0x1, 0x0, &(0x7f0000000040)={0xa, 0x0, 0x0, @private0}, 0x1c)
sendto$inet6(r3, &(0x7f0000000300), 0x0, 0x801, 0x0, 0x0)
shutdown(r3, 0x1)
getsockopt$inet_sctp6_SCTP_PR_ASSOC_STATUS(r3, 0x84, 0x74, &(0x7f0000000200)={0x0, 0x0, 0x10}, &(0x7f0000000240)=0x18)
r4 = openat$kvm(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$KVM_CREATE_VM(r4, 0xae01, 0x0)
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
socket$unix(0x1, 0x5, 0x0)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r5, 0x400448ca, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
pipe2$9p(&(0x7f0000000240), 0x0)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x2004000, 0x0)

10.902584819s ago: executing program 7 (id=8229):
prctl$PR_GET_NO_NEW_PRIVS(0x27)
chdir(&(0x7f0000000480)='./cgroup\x00')
lseek(0xffffffffffffffff, 0x1, 0x0)
getdents(0xffffffffffffffff, 0x0, 0x58)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0)
r0 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r0, 0x29, 0x39, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = openat$sysfs(0xffffffffffffff9c, 0x0, 0x141282, 0x100)
read$FUSE(r1, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080))
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000180), 0x244, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[], 0x18)
r5 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r5, 0x6, 0x0, 0x0, 0x0)
r6 = fsmount(r5, 0x0, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000580)='cgroup.max.descendants\x00', 0x2, 0x0)
write$cgroup_subtree(r7, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRESOCT=0x0], 0x27)

9.634862204s ago: executing program 37 (id=8202):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './cgroup\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = ioctl$KVM_CREATE_VCPU(0xffffffffffffffff, 0xae41, 0x2)
ioctl$KVM_SET_CPUID(r3, 0x4008ae8a, 0x0)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=@updsa={0x104, 0x1a, 0x1, 0x0, 0x25dfdbfe, {{@in=@multicast2, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, {@in6=@local, 0x0, 0x3c}, @in=@multicast1, {}, {}, {}, 0x0, 0x0, 0xa}, [@coaddr={0x14}]}, 0x104}}, 0x0)
mkdir(&(0x7f00000003c0)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0x0)
mount(0x0, &(0x7f0000000300)='\xe9\x1fq\x89Y\x1e\x923aK\x00', &(0x7f0000000340)='smb3\x00', 0x10000, &(0x7f0000000380)='nocase')

9.537318559s ago: executing program 7 (id=8232):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x84}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x36, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r5, 0x58, &(0x7f0000000180)}, 0x10)
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x33b, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x8, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x6, 0x2a, 0x40}}}}}]}}]}}, 0x0)

9.537063989s ago: executing program 6 (id=8233):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180), 0x1890a0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4c800}, 0x0)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000005d00))
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000500)={0x578, 0xf0, 0xa0, 0x400, 0x0, 0x0, 0x8, 0x1, {0x0, 0x80000000, 0x2}, {0x2, 0x7ffffeff}, {0x3, 0x0, 0xffffffff}, {0xb, 0x0, 0x1}, 0x6, 0x1, 0x4, 0x155, 0x1, 0xc, 0x0, 0xfffffffd, 0x6, 0x0, 0xff, 0x40000002, 0x0, 0x9f06360662c05544, 0x2, 0x9})
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r3, &(0x7f0000000040)='memory.events.local\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1f1)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780))
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x14e174135c0b87af)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$xdp(0x2c, 0x3, 0x0)
bind$xdp(r4, 0x0, 0x0)

9.294518784s ago: executing program 6 (id=8234):
r0 = socket(0x2, 0x3, 0xff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sndpcmc(0x0, 0x3, 0x288501)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000180)=0xac6c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010400000000000000000100000a74000000060a0b04000000000000000002000008400004803c000180080001006c6f670030000280060004400001000008000340fffffffa0a0002407d5def2e21000000080003400000000806000140000100000900010073797a30000000000900020073797a320000000008000b400000000314000000"], 0x9c}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x48)
mremap(&(0x7f0000fa4000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000fa2000/0x1000)=nil)
close(r5)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000300))
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)

8.454515143s ago: executing program 6 (id=8235):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200400, &(0x7f0000000140)={[{@dioread_nolock}, {@jqfmt_vfsv0}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x4a}, 0x28)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000580)=@newtaction={0x6c, 0x12, 0xbf68af9d17701211, 0x0, 0x0, {0x7}, [{0x4}, {0x54, 0x1, [@m_xt={0x50, 0x0, 0x0, 0x0, {{0x7}, {0x28, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'raw\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x7}}}}]}]}, 0x6c}}, 0x0)
mkdir(0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000007000000040000000000000c040000000000"], 0x0, 0x4f}, 0x28)

8.266555674s ago: executing program 5 (id=8236):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x14, &(0x7f0000002240)=@framed={{0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0xfffffc01}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x4, 0x0, 0x0, 0xb5111132c32e4187}}, @printk={@ld, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x101}, {0x85, 0x0, 0x0, 0x2d}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
r2 = openat$ttyprintk(0xffffffffffffff9c, &(0x7f0000000040), 0x800, 0x0)
ioctl$KDFONTOP_GET(r2, 0x4b72, &(0x7f0000000080)={0x1, 0x0, 0x13, 0x2, 0x125, &(0x7f0000000940)})
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
mprotect(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)
mbind(&(0x7f00005b4000/0x4000)=nil, 0x100000000004000, 0x0, 0x0, 0x0, 0x2)
kexec_load(0xff0e, 0x1, &(0x7f0000000900)=[{0x0, 0x0, 0x7ffe0000, 0x3e0000}], 0x0)
openat2$dir(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup\x00', &(0x7f00000000c0)={0x0, 0x0, 0x5}, 0x18)
r3 = syz_open_dev$video(&(0x7f0000000140), 0x8, 0x140)
ioctl$VIDIOC_S_SELECTION(r3, 0xc040565f, &(0x7f0000000080)={0xa, 0x0, 0x1, {0xe7ff, 0x1, 0x406, 0x870}})
ioctl$SIOCX25SCAUSEDIAG(r3, 0x89ec, &(0x7f0000000000)={0x0, 0x8a})
openat$dir(0xffffffffffffff9c, 0x0, 0x8000, 0x1f7)
fanotify_init(0x200, 0x0)
r4 = syz_open_procfs(0x0, &(0x7f0000000280)='fdinfo/4\x00')
preadv(r4, &(0x7f0000000300)=[{&(0x7f00000001c0)=""/51, 0x33}], 0x1, 0x0, 0x0)
r5 = openat$incfs(0xffffffffffffffff, &(0x7f0000000040)='.log\x00', 0x400, 0x84)
ioctl$DRM_IOCTL_GEM_FLINK(r5, 0xc008640a, 0x0)

8.071680806s ago: executing program 5 (id=8237):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_route(0x10, 0x3, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r4, 0x6, 0x10000000013, 0x0, 0x0)
ptrace$ARCH_SHSTK_LOCK(0x1e, r1, 0x0, 0x5003)
setsockopt$inet_opts(r4, 0x0, 0x4, 0x0, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r4, 0x6, 0x13, 0x0, 0x0)
r5 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
getsockopt$inet6_int(r5, 0x29, 0xca, 0x0, 0x0)
prctl$PR_SET_MM(0x23, 0x4, &(0x7f0000ffd000/0x2000)=nil)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000000140)=[{{0x0, 0x0, 0x0}, 0xf5ffffff}], 0x1, 0x0)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00', @in=@local, 0x0, 0x5, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa9, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xa00, 0x40800000000000, 0x800000000000000}}}, 0xb8}}, 0x0)
r6 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=ANY=[], 0x1b0}, 0x1, 0x0, 0x0, 0x800}, 0x0)

6.882436205s ago: executing program 6 (id=8238):
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$qrtrtun(0xffffffffffffff9c, 0x0, 0x101002)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
r4 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x1}, 0x1c)
listen(r4, 0x0)
r5 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r5, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r6 = gettid()
timer_create(0x7, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r6}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r7 = accept(r3, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r7, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=ANY=[], 0xfffffdef}}, 0x1)
recvfrom(r5, &(0x7f0000000180)=""/60, 0xfffffffffffffecb, 0x4100, 0x0, 0x0)

6.880791975s ago: executing program 5 (id=8239):
prlimit64(0x0, 0xe, &(0x7f0000000180)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000340)='./file1\x00', 0x0, &(0x7f0000000000)={[{@space_cache_v1}, {@clear_cache}, {@compress_algo={'compress', 0x3d, 'zstd'}}]}, 0xff, 0x50d4, &(0x7f00000051c0)="$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")
fanotify_init(0x0, 0x400)
truncate(0x0, 0x7f0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='memory.swap.current\x00', 0x275a, 0x0)
ftruncate(r2, 0x3)
r3 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f0000000280)={0x84, @dev={0xac, 0x14, 0x14, 0xb}, 0x5, 0x3, 'sh\x00', 0x1, 0x4, 0x72}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(0xffffffffffffffff, 0x0, 0x487, 0x0, 0x0)
fallocate(r2, 0x0, 0x2dc2, 0xfffb)

6.11582992s ago: executing program 7 (id=8240):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200400, &(0x7f0000000140)={[{@dioread_nolock}, {@jqfmt_vfsv0}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSFUCdEjSG1I3CiKHUexU5rQQ3rmikQlTnDkD+DcE3cuCG5cygGJHxGoQeLg1YwnqZvaTdQkdhR/PtJo3ps39fe9pvNe/U3iF8DQuhoRuxExFhF3I2I6u57LjvisfST3Pdt7uLS/93ApF63W7X/l0vbkWnT8mcSV7DWLEfGj70X8NPdy3Mb2ztpitVrZzOqzzdrGbGN758ZqbXGlslJZL5cX5hfmPrn5cfnMxvpebSwrffXpH3e/9fOkW1PZlc5xnKX20AuHcRKjEfGD8wg2ACPZeMYG3RFeSz4i3o6I99PnfzpG0q8mAHCZtVrT0ZrurAMAl10+zYHl8qUsFzAV+Xyp1M7hvROT+Wq90bx+r761vtzOlc1EIX9vtVqZy3KFM1HIJfX5tPy8Xj5SvxkRb0XEL8cn0nppqV5dHuR/fABgiF05sv7/d7y9/gMAl1xx0B0AAPrO+g8Aw8f6DwDDx/oPAMOnvf5PDLobAEAfef8PAMPH+g8AQ+WHt24lR2s/+/zr5fvbW2v1+zeWK421Um1rqbRU39wordTrK+ln9tSOe71qvb4x/1FsPZj59kajOdvY3rlTq2+tN++kn+t9p1JI79rtw8gAgF7eeu/JX3LJivzpRHpEx14OhYH2DDhv+UF3ABiYkUF3ABgYu33B8DrFe3zpAbgkumzR+4Jit18QarVarfPrEnDOrn1J/h+GVUf+308Bw5CR/4fhJf8Pw6vVyp10z/846Y0AwMUmxw/0+P7/29n5d9k3B36yfPSOx+fZKwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYDvb/LWV7gU9FPl8qRbwRETNRyN1brVbmIuLNiPjzeGE8qc8PuM8AwGnl/57L9v+6Nv3h1AtN7145LI5FxM9+fftXDxabzc0/RYzl/j1+cL35OLte7n/vAYDjHazT6bnjjfyzvYdLB0c/+/OP70ZEsR1/f28s9g/jj8Zoei5GISIm/5PL6m25jtzFaew+iogvdht/LqbSHEh759Oj8ZPYb/Q1fv6F+Pm0rX1O/i6+cAZ9gWHzJJl/Puv2/OXjanru/vwX0xnq9LL5L3mppf10Dnwe/2D+G+kx/109aYyP/vD9dmni5bZHEV8ejTiIvd8x/xzEz/WI/+EJ4//1K+++36ut9ZuIa9E9fmes2WZtY7axvXNjtba4UlmprJfLC/MLc5/c/Lg8m+aoZ3uvBv/89PqbvdqS8U/2iF88ZvxfP+H4f/v/uz/+2ivif/ODbvHz8c4r4idr4jdOGH9x8vfFXm1J/OUe4z/u63/9hPGf/m3npW3DAYDBaWzvrC1Wq5VNBYWLX0j+yV6AbnQtfKdfscaie9MvPmg/00eaWq3XitVrxjiLrBtwERw+9BHxv0F3BgAAAAAAAAAAAAAA6Kofv7E06DECAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABweX0eAAD//19xzyM=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x4a}, 0x28)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000580)=@newtaction={0x6c, 0x12, 0xbf68af9d17701211, 0x0, 0x0, {0x7}, [{0x4}, {0x54, 0x1, [@m_xt={0x50, 0x0, 0x0, 0x0, {{0x7}, {0x28, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'raw\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x7}}}}]}]}, 0x6c}}, 0x0)
mkdir(0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000007000000040000000000000c040000000000"], 0x0, 0x4f}, 0x28)

6.081584062s ago: executing program 6 (id=8241):
r0 = openat$nvme_fabrics(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
ioctl$sock_SIOCGIFVLAN_SET_VLAN_EGRESS_PRIORITY_CMD(r0, 0x8982, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000100)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f00000000c0)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(r1, 0x1, &(0x7f0000000180)=0x3)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000002080)={0xfc, {"a2e3ad09ed0d09f91b5e071887f70e09d038e7ff7fc6e5539b0d500a8b089b3f383363030890e0879b0a71c6e70a9b334a959b669a242f0a0af3988f7ef319520100ffe8d178708c523c921b1b5b31070d0773090acd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b2f38f0106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b68d787d9a7a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f330000000000000003d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb1575912d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9870af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0xa75}}, 0x1006)
ftruncate(0xffffffffffffffff, 0xffff)
fcntl$addseals(0xffffffffffffffff, 0x409, 0x7)
ioctl$UDMABUF_CREATE(0xffffffffffffffff, 0x40187542, 0x0)
syz_usb_connect(0x0, 0x5f, 0x0, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r4, &(0x7f0000000080)={0x10, 0x0, 0x0, 0xfffffffffffffffd}, 0xc)
r5 = socket$inet6(0xa, 0x3, 0x26)
connect$inet6(r5, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r5, 0x29, 0x23, &(0x7f0000000340)={{{@in=@dev={0xac, 0x14, 0x14, 0x15}, @in6=@private1, 0x4e20, 0x0, 0x4e22, 0x0, 0xa}, {0x9, 0x0, 0x0, 0x800000, 0x0, 0x0, 0x0, 0x24}, {0x0, 0x4}, 0x0, 0x0, 0x1, 0x0, 0x5, 0x3}, {{@in=@empty, 0x800, 0x33}, 0xa, @in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x0, 0x0, 0x4, 0xfffffffc, 0x4, 0x401}}, 0xe8)
sendmmsg(r5, &(0x7f0000000480), 0x2e9, 0x0)
r6 = socket$igmp(0x2, 0x3, 0x2)
bind$inet(r6, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)

4.691544474s ago: executing program 8 (id=8242):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0xc020f509, &(0x7f0000000500)={r1, 0x7, 0x80000000, 0x4})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r6, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)={{0x14}, [@NFT_MSG_NEWSET={0x3c, 0x12, 0xa, 0x9, 0x0, 0x0, {0x2}, [@NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_KEY_TYPE={0x8, 0x4, 0x1, 0x0, 0x8000000}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_FLAGS={0x8, 0x3, 0x1, 0x0, 0x1}]}], {0x14}}, 0x64}, 0x1, 0x0, 0x0, 0x814}, 0x0)
sendmsg$NFT_MSG_GETOBJ(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000400)=ANY=[@ANYBLOB="34000000150a03000000000000000000020000000900020073797a310000000008000340000000010900010073797a30"], 0x34}}, 0x0)
syz_genetlink_get_family_id$batadv(&(0x7f0000000340), r2)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r5, 0x8933, &(0x7f0000000380))
sendmsg$BATADV_CMD_SET_MESH(r0, 0x0, 0x4000010)
r7 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
poll(&(0x7f00000000c0)=[{r7, 0xe7d4c009da6c1985}], 0x1, 0x4)
close_range(r0, 0xffffffffffffffff, 0x0)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NLBL_CIPSOV4_C_ADD(r8, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)={0x2c, 0x0, 0x1, 0x4, 0x25dfdbfd, {}, [@NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xffffffffffffffff}]}, 0x2c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)

4.490302206s ago: executing program 7 (id=8243):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180), 0x1890a0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4c800}, 0x0)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000005d00))
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000500)={0x578, 0xf0, 0xa0, 0x400, 0x0, 0x0, 0x8, 0x1, {0x0, 0x80000000, 0x2}, {0x2, 0x7ffffeff}, {0x3, 0x0, 0xffffffff}, {0xb, 0x0, 0x1}, 0x6, 0x1, 0x4, 0x155, 0x1, 0xc, 0x0, 0xfffffffd, 0x6, 0x0, 0xff, 0x40000002, 0x0, 0x9f06360662c05544, 0x2, 0x9})
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r3, &(0x7f0000000040)='memory.events.local\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1f1)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780))
umount2(&(0x7f00000002c0)='./file0\x00', 0x9)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$xdp(0x2c, 0x3, 0x0)
bind$xdp(r4, 0x0, 0x0)

3.618742697s ago: executing program 7 (id=8244):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
socket$xdp(0x2c, 0x3, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="1b000000000000000000000000800000000000003a", @ANYRES32, @ANYBLOB, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, 0x0, 0xc044)
r3 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000040)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x32, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bind$netlink(0xffffffffffffffff, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r5 = openat$cgroup_subtree(r4, &(0x7f0000000200), 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000001a00)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRESDEC=r1], 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, r3, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = fsopen(&(0x7f0000000080)='devtmpfs\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
write$cgroup_subtree(r5, &(0x7f0000000180)=ANY=[@ANYBLOB="2d70696473202b63707520b6ab6a86e8"], 0xb)
syz_clone(0x41200100, 0x0, 0x0, 0x0, 0x0, 0x0)

3.605241228s ago: executing program 8 (id=8253):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180), 0x1890a0, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000000c0)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x4c800}, 0x0)
r2 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_TIOCOUTQ(r2, 0x5411, &(0x7f0000005d00))
ioctl$FBIOPAN_DISPLAY(r0, 0x4606, &(0x7f0000000500)={0x578, 0xf0, 0xa0, 0x400, 0x0, 0x0, 0x8, 0x1, {0x0, 0x80000000, 0x2}, {0x2, 0x7ffffeff}, {0x3, 0x0, 0xffffffff}, {0xb, 0x0, 0x1}, 0x6, 0x1, 0x4, 0x155, 0x1, 0xc, 0x0, 0xfffffffd, 0x6, 0x0, 0xff, 0x40000002, 0x0, 0x9f06360662c05544, 0x2, 0x9})
r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x200002, 0x0)
openat$cgroup_ro(r3, &(0x7f0000000040)='memory.events.local\x00', 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1f1)
mkdirat(0xffffffffffffff9c, 0x0, 0x0)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r4 = socket$xdp(0x2c, 0x3, 0x0)
bind$xdp(r4, 0x0, 0x0)

2.032656s ago: executing program 5 (id=8245):
r0 = socket(0x2, 0x3, 0xff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$sndpcmc(0x0, 0x3, 0x288501)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
syz_open_dev$vim2m(&(0x7f0000000580), 0x0, 0x2)
sched_setscheduler(r1, 0x1, &(0x7f0000000180)=0xac6c)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010400000000000000000100000a74000000060a0b04000000000000000002000008400004803c000180080001006c6f670030000280060004400001000008000340fffffffa0a0002407d5def2e21000000080003400000000806000140000100000900010073797a30000000000900020073797a320000000008000b400000000314000000"], 0x9c}, 0x1, 0x0, 0x0, 0x20000010}, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x2, 0x4, 0x1, 0xbf27, 0x500}, 0x48)
mremap(&(0x7f0000fa4000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000fa2000/0x1000)=nil)
close(r5)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), r4)
ioctl$sock_SIOCGIFINDEX_80211(r4, 0x8933, &(0x7f00000000c0)={'wlan0\x00'})
ioctl$ifreq_SIOCGIFINDEX_team(r3, 0x8933, &(0x7f0000000300))
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
socket$nl_rdma(0x10, 0x3, 0x14)

2.03240439s ago: executing program 8 (id=8246):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
fcntl$getflags(0xffffffffffffffff, 0x401)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
getgroups(0x0, 0x0)
fsopen(0x0, 0x0)
r3 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000040), 0xa0201, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r3, 0xc004500a, 0x0)
r4 = socket$vsock_stream(0x28, 0x1, 0x0)
getsockopt(r4, 0x28, 0x0, 0x0, &(0x7f0000000080)=0xfffffffffffffe34)
r5 = openat$dsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)
read$dsp(r5, 0x0, 0x0)
write$dsp(r3, &(0x7f00000012c0), 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x40}, 0x0)
r7 = syz_io_uring_setup(0xbdc, &(0x7f0000000640)={0x0, 0xec25, 0x8, 0x7, 0x15f}, &(0x7f00000006c0)=<r8=>0x0, 0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r8, 0x4, 0x0, 0x0, 0x4)
io_uring_enter(r7, 0x847ba, 0x0, 0xe, 0x0, 0x0)
r9 = syz_open_dev$dmmidi(&(0x7f00000000c0), 0x2, 0x0)
ioctl$SNDRV_RAWMIDI_IOCTL_STATUS64(r9, 0xc0245720, &(0x7f0000000040)={0x1})

2.03211239s ago: executing program 6 (id=8247):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x200400, &(0x7f0000000140)={[{@dioread_nolock}, {@jqfmt_vfsv0}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={0x0, 0x0, 0x4a}, 0x28)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_open_procfs(0x0, &(0x7f0000000700)='mounts\x00')
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000580)=@newtaction={0x6c, 0x12, 0xbf68af9d17701211, 0x0, 0x0, {0x7}, [{0x4}, {0x54, 0x1, [@m_xt={0x50, 0x0, 0x0, 0x0, {{0x7}, {0x28, 0x2, 0x0, 0x1, [@TCA_IPT_TABLE={0x24, 0x1, 'raw\x00'}]}, {0x4}, {0xc}, {0xc, 0x8, {0x7}}}}]}]}, 0x6c}}, 0x0)
mkdir(0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000640)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb01001800000000000000300000003000000007000000040000000000000c040000000000"], 0x0, 0x4f}, 0x28)

1.00537523s ago: executing program 8 (id=8248):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
fstatfs(r3, &(0x7f0000000440)=""/174)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket(0x40000000015, 0x5, 0x0)
bind$inet6(r4, &(0x7f0000000080)={0xa, 0x0, 0x400000, @local, 0x80000}, 0x1c)
r5 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x200000, 0x3}, 0x10)
r6 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000180)={0x42, 0x2, 0x1}, 0x10)
r7 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r7, 0xc0d05605, &(0x7f00000002c0)={0x2, @vbi={0x4, 0x5, 0x5, 0x47504a4d, [0x200, 0x7], [0x4f, 0x6], 0x1}})
dup3(r5, r6, 0x0)
sendto$inet6(r4, 0x0, 0x0, 0x0, &(0x7f0000000040)={0xa, 0x1, 0xfffffffc, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01', 0xe79}, 0x1c)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000880)='/sys/kernel/notes', 0x80240, 0xd4)
add_key$fscrypt_provisioning(&(0x7f00000000c0), 0x0, 0x0, 0x29, 0xfffffffffffffff9)

851.88961ms ago: executing program 5 (id=8249):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
ioctl$SIOCAX25ADDUID(r0, 0x89e1, 0x0)
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
semctl$IPC_RMID(0x0, 0x0, 0x10)
add_key$keyring(&(0x7f0000000080), &(0x7f0000001100)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
openat$dir(0xffffffffffffff9c, 0x0, 0x51f180, 0x100)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f00000000c0)=0x80000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000100)={@host})
getpeername$inet(0xffffffffffffffff, &(0x7f0000000000)={0x2, 0x0, @empty}, 0x0)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6c07a9d47564656661756c7420757365723a"], 0x2a, 0x0)
munmap(&(0x7f0000002000/0x1000)=nil, 0x1000)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000000)=ANY=[@ANYBLOB="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"], &(0x7f0000000300)='GPL\x00', 0x2, 0xfed, &(0x7f0000001e00)=""/4077}, 0x70)
r5 = add_key(&(0x7f0000000000)='keyring\x00', &(0x7f0000000040)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
pipe2$watch_queue(&(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x80)
keyctl$KEYCTL_WATCH_KEY(0x20, r5, r7, 0x0)
keyctl$KEYCTL_WATCH_KEY(0x20, r5, r6, 0xffffffffffffffff)

1.856179ms ago: executing program 5 (id=8250):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x84}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000580), 0x100}, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, 0x0, 0x128}, 0x0)
recvmsg$unix(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
sendmsg$inet(0xffffffffffffffff, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
r5 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r6, &(0x7f0000000000)={0x0, 0x36, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000080)={r5, 0x58, &(0x7f0000000180)}, 0x10)
syz_usb_disconnect(0xffffffffffffffff)
syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x33b, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x8, 0x1, {0x22, 0x7}}, {{{0x9, 0x5, 0x81, 0x3, 0x0, 0x6, 0x2a, 0x40}}}}}]}}]}}, 0x0)

0s ago: executing program 8 (id=8251):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x0, 0x0, &(0x7f00000001c0)='GPL\x00', 0xe1a}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200))
sched_setscheduler(r0, 0x2, &(0x7f0000000080)=0x9)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000180)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bind$bt_l2cap(0xffffffffffffffff, &(0x7f0000000000)={0x1f, 0x0, @any, 0x0, 0x1}, 0xe)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="440000000206030000000000000000000d0000000c000300686173683a69700005000400000000000900020073797a310000000005000500020000000500010006000000b0104b4ea122693f55d9084376898317fd61eee3a7a9fb38bcd40cb22e7dd17ef40873085a637f468b4c5dd34b7db6949de0d94c069f3c6b396db96c59e332aadefbae555e1e37c83ae46113"], 0x44}}, 0x0)
sendmsg$IPSET_CMD_ADD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x10000082}, 0x80)
sendmsg$IPSET_CMD_LIST(r4, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000100)={0x1c, 0x7, 0x6, 0x801, 0x0, 0x0, {0x5, 0x0, 0x2}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x24000840}, 0x4800)
sendmmsg(0xffffffffffffffff, &(0x7f00000002c0), 0x40000000000009f, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r5 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x2042, 0x0)
ioctl$AUTOFS_IOC_FAIL(r5, 0x4c80, 0xfffff)
socket(0x26, 0x80000, 0xb)
getpid()

kernel console output (not intermixed with test programs):

ing attributes in process `syz.5.4781'.
[  669.986917][T18532] xt_hashlimit: size too large, truncated to 1048576
[  670.035748][T18532] xt_hashlimit: invalid rate
[  670.142170][T18545] loop7: detected capacity change from 0 to 256
[  670.211160][T18545] exFAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  670.260595][T18545] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010364, chksum : 0x43f9f21b, utbl_chksum : 0xe619d30d)
[  673.481939][T18590] 9pnet: Insufficient options for proto=fd
[  676.207202][T18621] set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  676.297724][T18619] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  676.317601][T18619] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  676.518659][T18632] netlink: 'syz.5.4819': attribute type 1 has an invalid length.
[  677.764051][T18632] 8021q: adding VLAN 0 to HW filter on device bond6
[  677.892770][T18635] bond6: (slave vlan0): Opening slave failed
[  680.991036][T18672] netlink: 24 bytes leftover after parsing attributes in process `syz.2.4828'.
[  681.108821][T18672] device sit3 entered promiscuous mode
[  681.377836][T18699] netlink: 8 bytes leftover after parsing attributes in process `syz.7.4838'.
[  681.567541][T18692] bond0: (slave wlan1): Releasing backup interface
[  686.566218][T18767] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4860'.
[  686.578660][ T7656] Process accounting resumed
[  686.586685][T18767] netlink: 75 bytes leftover after parsing attributes in process `syz.2.4860'.
[  686.725445][T18777] netlink: 12 bytes leftover after parsing attributes in process `syz.6.4865'.
[  686.747901][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  686.754374][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  687.147363][   T26] audit: type=1326 audit(4147485100.393:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.227271][   T26] audit: type=1326 audit(4147485100.393:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.360666][   T26] audit: type=1326 audit(4147485100.422:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.384217][T18795] device syzkaller0 entered promiscuous mode
[  687.445835][   T26] audit: type=1326 audit(4147485100.422:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.512665][   T26] audit: type=1326 audit(4147485100.422:482): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.599456][   T26] audit: type=1326 audit(4147485100.422:483): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.683062][   T26] audit: type=1326 audit(4147485100.422:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.769892][T18803] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  687.810940][   T26] audit: type=1326 audit(4147485100.422:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.882492][   T26] audit: type=1326 audit(4147485100.422:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  687.946133][   T26] audit: type=1326 audit(4147485100.422:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=18788 comm="syz.7.4870" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[  690.359858][T18839] loop7: detected capacity change from 0 to 40427
[  690.437743][T18839] F2FS-fs (loop7): invalid crc value
[  690.456149][T18839] F2FS-fs (loop7): Found nat_bits in checkpoint
[  690.504830][T18839] F2FS-fs (loop7): Start checkpoint disabled!
[  690.556055][T18839] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e6
[  691.745827][T18866] device vlan1 entered promiscuous mode
[  691.893886][T18871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.4894'.
[  693.550294][T18895] netlink: 12 bytes leftover after parsing attributes in process `syz.7.4900'.
[  698.049772][T18961] netlink: 12 bytes leftover after parsing attributes in process `syz.3.4916'.
[  698.751167][T18981] device bridge9 entered promiscuous mode
[  699.389196][T18981] team0: Port device bridge9 added
[  699.399839][T18987] bridge0: port 1(team0) entered blocking state
[  699.443696][T18987] bridge0: port 1(team0) entered disabled state
[  699.516199][T18986] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  700.979250][T19021] netlink: 'syz.3.4935': attribute type 1 has an invalid length.
[  701.060588][T19021] 8021q: adding VLAN 0 to HW filter on device bond8
[  701.937412][T19041] overlayfs: failed to clone upperpath
[  702.551285][T19054] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4943'.
[  702.602107][T19054] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4943'.
[  702.932810][T19068] netlink: 'syz.2.4951': attribute type 1 has an invalid length.
[  703.815222][T19068] 8021q: adding VLAN 0 to HW filter on device bond5
[  703.908864][T19070] bond5: (slave vlan0): Opening slave failed
[  708.705635][   T26] kauditd_printk_skb: 16 callbacks suppressed
[  708.705650][   T26] audit: type=1326 audit(4147485121.942:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  708.755122][   T26] audit: type=1326 audit(4147485121.952:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  708.786784][   T26] audit: type=1326 audit(4147485121.952:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  708.823442][   T26] audit: type=1326 audit(4147485121.972:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  708.872974][   T26] audit: type=1326 audit(4147485121.972:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  709.015877][   T26] audit: type=1326 audit(4147485121.972:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  709.131197][   T26] audit: type=1326 audit(4147485121.972:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  709.248117][   T26] audit: type=1326 audit(4147485121.972:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  709.357947][   T26] audit: type=1326 audit(4147485121.972:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  709.468619][   T26] audit: type=1326 audit(4147485121.972:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=19147 comm="syz.3.4978" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[  709.833731][T19093] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  709.921675][T19093] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  715.655562][T19093] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  715.664597][T19093] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  715.682111][T19093] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  715.691393][T19093] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  715.823311][T19114] device vlan0 entered promiscuous mode
[  715.832538][T19114] device bond0 entered promiscuous mode
[  715.850877][T19119] netlink: 'syz.6.4966': attribute type 1 has an invalid length.
[  716.198649][T19208] overlayfs: failed to clone upperpath
[  716.207027][T19208] overlayfs: failed to clone upperpath
[  717.330347][T19229] loop7: detected capacity change from 0 to 128
[  717.412133][T19229] vfat filesystem being mounted at /172/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  717.528136][T19211] netlink: 12 bytes leftover after parsing attributes in process `syz.2.4994'.
[  717.572868][T19229] attempt to access beyond end of device
[  717.572868][T19229] loop7: rw=2049, want=1041, limit=128
[  717.648888][T19229] attempt to access beyond end of device
[  717.648888][T19229] loop7: rw=524288, want=369, limit=128
[  717.679848][T19229] attempt to access beyond end of device
[  717.679848][T19229] loop7: rw=0, want=153, limit=128
[  717.705004][T19229] attempt to access beyond end of device
[  717.705004][T19229] loop7: rw=0, want=153, limit=128
[  717.724947][T19229] attempt to access beyond end of device
[  717.724947][T19229] loop7: rw=0, want=153, limit=128
[  717.763916][T19229] attempt to access beyond end of device
[  717.763916][T19229] loop7: rw=0, want=153, limit=128
[  717.783878][T19229] attempt to access beyond end of device
[  717.783878][T19229] loop7: rw=0, want=153, limit=128
[  717.801886][T19229] attempt to access beyond end of device
[  717.801886][T19229] loop7: rw=0, want=153, limit=128
[  717.833300][T19229] attempt to access beyond end of device
[  717.833300][T19229] loop7: rw=0, want=153, limit=128
[  717.852162][T19229] attempt to access beyond end of device
[  717.852162][T19229] loop7: rw=0, want=153, limit=128
[  717.944635][T19256] netlink: 'syz.5.5004': attribute type 10 has an invalid length.
[  719.197259][T19280] netlink: 'syz.5.5014': attribute type 1 has an invalid length.
[  719.254446][T19280] bond7: (slave vxcan1): The slave device specified does not support setting the MAC address
[  719.268360][T19280] bond7: (slave vxcan1): Error -22 calling dev_set_mtu
[  719.305716][T19286] bond7: (slave gretap3): making interface the new active one
[  721.396745][T19286] bond7: (slave gretap3): Enslaving as an active interface with an up link
[  723.059672][T19320] bridge0: port 1(netdevsim0) entered blocking state
[  723.707852][T19320] bridge0: port 1(netdevsim0) entered disabled state
[  724.088209][T19320] device netdevsim0 entered promiscuous mode
[  724.164896][T19339] overlayfs: failed to clone upperpath
[  726.890829][T19370] bond4: option mode: unable to set because the bond device has slaves
[  727.010972][T19378] 9p filesystem being mounted at /1084/file0 supports timestamps until 2106-02-07 (0xffffffff)
[  729.132552][T19418] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5057'.
[  731.348804][T19449] bond4: (slave gretap2): Releasing active interface
[  734.984748][T19484] netlink: 'syz.2.5077': attribute type 21 has an invalid length.
[  734.992945][T19484] netlink: 132 bytes leftover after parsing attributes in process `syz.2.5077'.
[  735.023631][T19484] netlink: 'syz.2.5077': attribute type 1 has an invalid length.
[  735.141423][T19484] netlink: 12 bytes leftover after parsing attributes in process `syz.2.5077'.
[  735.175541][T19484] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  737.908957][T19516] netlink: 40 bytes leftover after parsing attributes in process `syz.7.5084'.
[  737.925485][T19516] netlink: 40 bytes leftover after parsing attributes in process `syz.7.5084'.
[  737.935143][T19516] netlink: 40 bytes leftover after parsing attributes in process `syz.7.5084'.
[  737.952593][T19516] A link change request failed with some changes committed already. Interface ip6gre0 may have been left with an inconsistent configuration, please check.
[  739.727480][T19539] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  743.635864][T19582] loop7: detected capacity change from 0 to 8
[  743.733122][T19582] unable to read id index table
[  744.012441][T19610] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5116'.
[  744.221123][T19622] netlink: 'syz.3.5120': attribute type 27 has an invalid length.
[  745.932166][T19635] loop7: detected capacity change from 0 to 512
[  746.496032][T19635] EXT4-fs (loop7): orphan cleanup on readonly fs
[  746.525627][T19635] EXT4-fs error (device loop7): ext4_do_update_inode:5222: inode #15: comm syz.7.5121: corrupted inode contents
[  746.558172][T19635] EXT4-fs (loop7): Remounting filesystem read-only
[  746.565572][T19635] EXT4-fs error (device loop7) in ext4_orphan_del:303: Corrupt filesystem
[  746.582095][T19635] EXT4-fs (loop7): Remounting filesystem read-only
[  746.589675][T19635] EXT4-fs error (device loop7): ext4_do_update_inode:5222: inode #15: comm syz.7.5121: corrupted inode contents
[  746.605632][T19635] EXT4-fs (loop7): Remounting filesystem read-only
[  746.613409][T19635] EXT4-fs error (device loop7): ext4_evict_inode:330: inode #15: comm syz.7.5121: mark_inode_dirty error
[  746.627793][T19635] EXT4-fs (loop7): Remounting filesystem read-only
[  746.636765][T19635] EXT4-fs (loop7): 1 orphan inode deleted
[  746.644364][T19635] EXT4-fs (loop7): mounted filesystem without journal. Opts: nodioread_nolock,journal_dev=0x0000000000010000,errors=remount-ro,nouid32,resgid=0x0000000000000000,acl,init_itable=0x0000000000008d55,. Quota mode: none.
[  747.239280][T19639] netlink: 24 bytes leftover after parsing attributes in process `syz.5.5123'.
[  748.204874][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  748.211495][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  748.288492][T19661] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5129'.
[  749.935039][T19684] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5134'.
[  752.096879][T19724] lo speed is unknown, defaulting to 1000
[  752.123925][T19731] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5146'.
[  754.154435][T19795] netlink: 16 bytes leftover after parsing attributes in process `syz.7.5170'.
[  754.252837][T19795] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  754.261680][T19795] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  754.270772][T19795] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  754.279739][T19795] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  756.560346][T19822] MPTCP: kernel_bind error, err=-99
[  757.520484][T19841] sock: sock_set_timeout: `syz.2.5184' (pid 19841) tries to set negative timeout
[  759.005238][T19864] batman_adv: batadv0: Adding interface: dummy0
[  759.013699][T19864] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  759.681991][T19864] batman_adv: batadv0: Interface activated: dummy0
[  759.943373][T19870] batadv0: mtu less than device minimum
[  759.979248][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  759.993258][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  760.006582][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  760.019870][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  760.032583][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  760.045420][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  760.058773][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  760.071532][T19870] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  761.188002][T19886] netlink: 'syz.3.5195': attribute type 16 has an invalid length.
[  761.235535][T19886] netlink: 'syz.3.5195': attribute type 17 has an invalid length.
[  761.286241][T19886] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  761.550239][T19903] netlink: 84 bytes leftover after parsing attributes in process `syz.2.5199'.
[  764.512291][T19952] device vxcan1 entered promiscuous mode
[  765.750752][T19966] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5221'.
[  767.195834][T19984] lo speed is unknown, defaulting to 1000
[  768.355280][T20015] kvm: pic: non byte write
[  770.499104][T20030] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5237'.
[  771.951511][T20049] netlink: 'syz.2.5244': attribute type 27 has an invalid length.
[  772.045956][T20049] device sit3 left promiscuous mode
[  772.639412][T20051] netlink: 20 bytes leftover after parsing attributes in process `syz.2.5244'.
[  772.700819][T20053] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  772.807821][T20053] device gretap0 left promiscuous mode
[  772.881507][T20053] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  772.901068][T20053] 8021q: adding VLAN 0 to HW filter on device bond0
[  772.937267][T20053] net_ratelimit: 11 callbacks suppressed
[  772.937279][T20053] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  773.029465][ T4870] lo speed is unknown, defaulting to 1000
[  773.074277][ T4870] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  773.265350][ T4870] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  773.484455][ T7658] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  776.208983][ T4870] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  776.219528][ T4870] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  776.700847][ T7658] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  777.075524][ T7658] usb 8-1: new high-speed USB device number 7 using dummy_hcd
[  777.896779][ T7658] usb 8-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  777.971259][ T7658] usb 8-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  778.139882][ T7658] usb 8-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  778.255907][ T7658] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  778.487415][T20132] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5269'.
[  778.518290][ T7658] usb 8-1: config 0 descriptor??
[  778.702182][ T7658] usbhid 8-1:0.0: couldn't find an input interrupt endpoint
[  778.751206][T20140] netlink: 12 bytes leftover after parsing attributes in process `syz.3.5273'.
[  779.706186][T20140] 8021q: adding VLAN 0 to HW filter on device bond9
[  779.783497][T20144] netlink: 8 bytes leftover after parsing attributes in process `syz.3.5273'.
[  779.826825][T20144] device macvlan1 entered promiscuous mode
[  779.905405][T20159] bond6: (slave wireguard0): Releasing backup interface
[  779.933012][T20159] bridge0: port 1(team0) entered disabled state
[  779.956612][T20159] bond7: (slave gretap2): Releasing active interface
[  780.042126][T20159] team0: Port device bridge9 removed
[  780.061096][T20161] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5279'.
[  780.077052][T20161] batman_adv: batadv0: Interface deactivated: virt_wifi0
[  780.094936][T20161] batman_adv: batadv0: Removing interface: virt_wifi0
[  780.160371][T20165] device ip6gre1 entered promiscuous mode
[  780.179052][T20165] team0: Port device ip6gre1 added
[  780.467234][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  780.794436][T20170] ptrace attach of ""[20171] was attempted by "./syz-executor exec"[20170]
[  781.560549][ T5133] usb 8-1: USB disconnect, device number 7
[  781.725081][T20208] netlink: 5 bytes leftover after parsing attributes in process `syz.5.5282'.
[  781.925123][T20214] netlink: 'syz.3.5295': attribute type 1 has an invalid length.
[  781.967197][T20214] 8021q: adding VLAN 0 to HW filter on device bond10
[  781.994360][T20218] bond10: (slave gretap2): making interface the new active one
[  782.025659][T20218] bond10: (slave gretap2): Enslaving as an active interface with an up link
[  782.044996][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): bond10: link becomes ready
[  783.676222][T20240] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  784.710869][T20225] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  786.201730][T20258] Cannot find del_set index 4 as target
[  787.507147][T20263] IPVS: Unknown mcast interface: bond_slave_0
[  787.699255][T20274] overlayfs: failed to clone upperpath
[  787.763510][T20279] loop7: detected capacity change from 0 to 512
[  787.878210][T20279] EXT4-fs (loop7): mounted filesystem without journal. Opts: nodioread_nolock,sb=0x0000000000000001,,errors=continue. Quota mode: writeback.
[  787.896830][T20282] netlink: 84 bytes leftover after parsing attributes in process `syz.5.5318'.
[  788.041380][T20279] ext4 filesystem being mounted at /223/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  788.872681][T20293] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[  788.950497][T20309] Cannot find del_set index 4 as target
[  788.989738][   T26] kauditd_printk_skb: 66 callbacks suppressed
[  788.989878][   T26] audit: type=1326 audit(2000000035.367:580): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  789.192033][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  789.966539][T20312] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5324'.
[  790.063546][T20312] batman_adv: batadv0: Interface deactivated: dummy0
[  790.082056][   T26] audit: type=1326 audit(2000000035.767:581): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=191 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  790.127943][T20312] batman_adv: batadv0: Removing interface: dummy0
[  790.159592][T20312] batman_adv: batadv0: Removing interface: batadv_slave_0
[  790.264426][T20312] batman_adv: batadv0: Removing interface: batadv_slave_1
[  790.281113][   T26] audit: type=1326 audit(2000000035.817:582): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  791.059982][   T26] audit: type=1326 audit(2000000035.857:583): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  791.303284][   T26] audit: type=1326 audit(2000000036.387:584): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  791.331968][   T26] audit: type=1326 audit(2000000036.387:585): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  791.425758][   T26] audit: type=1326 audit(2000000036.387:586): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  792.213743][   T26] audit: type=1326 audit(2000000036.387:587): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  792.243207][   T26] audit: type=1326 audit(2000000036.387:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  792.313100][   T26] audit: type=1326 audit(2000000036.387:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  792.723230][T20359] xt_TPROXY: Can be used only with -p tcp or -p udp
[  792.929018][T20361] Cannot find del_set index 4 as target
[  794.222458][   T26] audit: type=1326 audit(2000000036.387:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  794.274668][   T26] audit: type=1326 audit(2000000036.387:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  794.328993][   T26] audit: type=1326 audit(2000000036.387:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  795.271890][   T26] audit: type=1326 audit(2000000036.427:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  795.510127][   T26] audit: type=1326 audit(2000000036.437:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  798.887401][   T26] audit: type=1326 audit(2000000036.437:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  798.926544][   T26] audit: type=1326 audit(2000000036.437:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f70f085bd97 code=0x7ffc0000
[  799.126240][T20404] input: syz1 as /devices/virtual/input/input6
[  800.021722][   T26] audit: type=1326 audit(2000000036.437:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  800.083362][   T26] audit: type=1326 audit(2000000036.437:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=20305 comm="syz.2.5322" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f70f085ceb9 code=0x7ffc0000
[  800.107367][   T26] audit: type=1800 audit(2000000036.497:599): pid=20267 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.5312" name="bus" dev="ramfs" ino=85988 res=0 errno=0
[  800.355543][T20408] netlink: 4 bytes leftover after parsing attributes in process `syz.2.5347'.
[  800.457193][T20272] udevd[20272]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[  804.890339][T20451] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5360'.
[  804.943202][T20454] overlayfs: failed to clone upperpath
[  804.973400][T20457] netlink: 'syz.7.5364': attribute type 27 has an invalid length.
[  805.023805][T20457] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  805.033445][T20457] netdevsim netdevsim7 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  805.043226][T20457] netdevsim netdevsim7 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  805.052591][T20457] netdevsim netdevsim7 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  805.189574][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  806.493246][T20457] 8021q: adding VLAN 0 to HW filter on device bond0
[  806.614328][T20457] 8021q: adding VLAN 0 to HW filter on device team0
[  806.687590][T20457] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  806.778415][T20457] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  807.340524][T20460] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5364'.
[  807.365001][T20483] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  809.816544][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  809.823046][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  812.182691][T20552] netlink: 'syz.7.5390': attribute type 16 has an invalid length.
[  812.197824][T20554] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  812.206234][T20552] netlink: 'syz.7.5390': attribute type 17 has an invalid length.
[  812.330899][T20552] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  812.371929][T20552] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[  813.519045][T20572] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5397'.
[  813.543746][T20572] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5397'.
[  813.552828][T20572] netlink: 40 bytes leftover after parsing attributes in process `syz.5.5397'.
[  813.740049][T20584] netlink: 'syz.3.5412': attribute type 10 has an invalid length.
[  813.934219][T20584] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  813.953955][T20591] netlink: 14 bytes leftover after parsing attributes in process `syz.3.5412'.
[  814.726408][T20591] bond6: (slave macvlan0): Releasing backup interface
[  814.866052][T20591] bond0 (unregistering): (slave wlan1): Releasing backup interface
[  815.567795][T20591] bond0 (unregistering): Released all slaves
[  817.102785][T20624] 9pnet: Insufficient options for proto=fd
[  818.242805][T20633] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5414'.
[  818.416378][T20633] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5414'.
[  818.484820][T20641] sctp: [Deprecated]: syz.2.5411 (pid 20641) Use of int in max_burst socket option.
[  818.484820][T20641] Use struct sctp_assoc_value instead
[  818.746685][T20633] netlink: 40 bytes leftover after parsing attributes in process `syz.6.5414'.
[  818.879561][T20640] netlink: 'syz.3.5413': attribute type 13 has an invalid length.
[  825.166021][   T26] audit: type=1800 audit(2000000071.589:600): pid=20683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.5425" name="SYSV00000000" dev="hugetlbfs" ino=6 res=0 errno=0
[  825.959705][T20706] netlink: 'syz.2.5435': attribute type 10 has an invalid length.
[  825.984602][T20706] device wlan1 entered promiscuous mode
[  827.234406][T20706] bond0: (slave wlan1): Enslaving as an active interface with an up link
[  827.321029][ T1276] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[  829.107971][T20750] overlayfs: failed to clone upperpath
[  831.669531][T20782] netlink: 'syz.3.5457': attribute type 4 has an invalid length.
[  833.762081][T20821] netlink: zone id is out of range
[  833.806495][T20821] netlink: zone id is out of range
[  833.857291][T20821] netlink: zone id is out of range
[  833.893219][T20821] netlink: zone id is out of range
[  833.899021][T20821] netlink: zone id is out of range
[  833.904417][T20821] netlink: zone id is out of range
[  833.909758][T20821] netlink: zone id is out of range
[  833.927488][T20821] netlink: zone id is out of range
[  833.943913][T20821] netlink: zone id is out of range
[  833.963914][T20821] netlink: zone id is out of range
[  834.262312][T20840] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5474'.
[  835.263431][T20857] netlink: 'syz.5.5475': attribute type 2 has an invalid length.
[  835.271328][T20857] netlink: 'syz.5.5475': attribute type 8 has an invalid length.
[  835.279267][T20857] netlink: 132 bytes leftover after parsing attributes in process `syz.5.5475'.
[  837.205665][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  837.267273][T20889] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  841.567437][T20962] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5507'.
[  841.687990][T20962] device hsr_slave_0 left promiscuous mode
[  843.955393][T20986] overlayfs: failed to clone upperpath
[  844.192492][T20990] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5519'.
[  847.448526][   T26] audit: type=1326 audit(2000000093.858:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21018 comm="syz.6.5525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf78686eb9 code=0x7fc00000
[  847.703902][T21047] loop7: detected capacity change from 0 to 4096
[  847.730177][T21047] EXT4-fs (loop7): Test dummy encryption mode enabled
[  847.807629][T21047] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c019, mo2=0002]
[  847.831215][T21047] System zones: 0-5
[  847.861339][T21047] EXT4-fs (loop7): mounted filesystem without journal. Opts: debug,auto_da_alloc,nombcache,test_dummy_encryption,nodiscard,min_batch_time=0x0000000000000000,commit=0x0000000000000000,nodiscard,,errors=continue. Quota mode: writeback.
[  848.132208][T21070] netlink: 'syz.6.5539': attribute type 27 has an invalid length.
[  853.450465][   T26] audit: type=1326 audit(2000000099.865:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf78686eb9 code=0x7ffc0000
[  853.503944][   T26] audit: type=1326 audit(2000000099.915:603): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbf78680cd7 code=0x7ffc0000
[  853.528156][   T26] audit: type=1326 audit(2000000099.915:604): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fbf786282d9 code=0x7ffc0000
[  853.552269][   T26] audit: type=1326 audit(2000000099.915:605): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=71 compat=0 ip=0x7fbf78686eb9 code=0x7ffc0000
[  853.678704][   T26] audit: type=1326 audit(2000000099.915:606): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf78686eb9 code=0x7ffc0000
[  853.920045][   T26] audit: type=1326 audit(2000000099.915:607): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fbf78686eb9 code=0x7ffc0000
[  853.954627][   T26] audit: type=1326 audit(2000000099.915:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf78686eb9 code=0x7ffc0000
[  853.996182][   T26] audit: type=1326 audit(2000000099.915:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fbf78686eb9 code=0x7ffc0000
[  854.087682][   T26] audit: type=1326 audit(2000000099.915:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf78686eb9 code=0x7ffc0000
[  854.178887][   T26] audit: type=1326 audit(2000000099.945:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=21110 comm="syz.6.5551" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fbf78680cd7 code=0x7ffc0000
[  855.365783][T21134] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5553'.
[  857.777646][T21155] netlink: 16 bytes leftover after parsing attributes in process `syz.3.5560'.
[  859.190979][T21181] netlink: 104 bytes leftover after parsing attributes in process `syz.2.5569'.
[  860.517240][T21217] netlink: 16 bytes leftover after parsing attributes in process `syz.5.5579'.
[  870.944966][T21303] MPTCP: kernel_bind error, err=-99
[  870.982645][T21308] fuse: Bad value for 'fd'
[  871.229766][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  871.236234][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  871.279248][T21316] overlayfs: failed to clone upperpath
[  873.615472][T21347] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5627'.
[  875.185843][T21366] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  875.241581][T21366] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready
[  875.253735][T21366] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready
[  875.269816][T21366] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready
[  875.515218][T21366] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready
[  875.910886][T21366] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready
[  876.146639][T21366] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready
[  876.252807][T21366] bond4: (slave ip6gretap2): Releasing active interface
[  878.426721][T21366] bond5: (slave gretap2): Releasing active interface
[  878.477268][T21366] bond7: (slave gretap3): Releasing active interface
[  878.507432][T21397] netlink: 36 bytes leftover after parsing attributes in process `syz.7.5630'.
[  878.585813][T21402] 9pnet: Insufficient options for proto=fd
[  884.087487][T21443] netlink: 4 bytes leftover after parsing attributes in process `syz.7.5646'.
[  886.643663][T21464] lo speed is unknown, defaulting to 1000
[  887.026332][T21481] tipc: Cannot configure node identity twice
[  892.631490][T21526] netlink: 'syz.2.5671': attribute type 1 has an invalid length.
[  892.708023][T21526] 8021q: adding VLAN 0 to HW filter on device bond6
[  892.836925][T21530] bond6: (slave veth15): Enslaving as an active interface with a down link
[  892.904307][T21526] bond6: (slave vlan0): Opening slave failed
[  894.195406][T21557] netlink: 24 bytes leftover after parsing attributes in process `syz.2.5679'.
[  895.362502][T21571] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  895.362502][T21571] The task syz.5.5680 (21571) triggered the difference, watch for misbehavior.
[  901.877998][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[  906.621130][T21657] netlink: 'syz.2.5708': attribute type 11 has an invalid length.
[  907.017267][T21655] tipc: Failed to remove unknown binding: 66,1,1/4:297737695/297737697
[  907.050466][T21655] tipc: Failed to remove unknown binding: 66,1,1/4:297737695/297737697
[  907.355001][T21675] netlink: 20 bytes leftover after parsing attributes in process `syz.7.5713'.
[  908.151947][T21687] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  909.047982][T21695] 9pnet: p9_errstr2errno: server reported unknown error 0x000000000000
[  910.550922][T21731] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  910.610858][T21733] netlink: 16 bytes leftover after parsing attributes in process `syz.6.5733'.
[  911.148134][T21734] Invalid option length (1047662) for dns_resolver key
[  914.251437][T21782] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5747'.
[  915.307464][T21795] netlink: 28 bytes leftover after parsing attributes in process `syz.3.5764'.
[  915.333480][T21795] netlink: 'syz.3.5764': attribute type 7 has an invalid length.
[  915.360344][T21795] netlink: 4 bytes leftover after parsing attributes in process `syz.3.5764'.
[  919.306341][T21839] 9pnet: Insufficient options for proto=fd
[  925.650834][T21909] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5786'.
[  926.967033][T21926] netlink: 4 bytes leftover after parsing attributes in process `syz.5.5786'.
[  926.991159][T21925] netlink: 88 bytes leftover after parsing attributes in process `syz.3.5790'.
[  927.271326][T21930] netlink: 24 bytes leftover after parsing attributes in process `syz.7.5792'.
[  929.639773][T21965] netlink: 8 bytes leftover after parsing attributes in process `syz.7.5803'.
[  930.196733][T21965] netdevsim netdevsim7 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  930.205581][T21965] netdevsim netdevsim7 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  930.214402][T21965] netdevsim netdevsim7 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  930.224106][T21965] netdevsim netdevsim7 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  933.052441][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  933.060245][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  933.214516][T22008] netlink: 'syz.7.5814': attribute type 4 has an invalid length.
[  933.343954][T22023] netlink: 'syz.6.5819': attribute type 1 has an invalid length.
[  933.599505][T22031] bond8: (slave bridge11): making interface the new active one
[  933.611469][T22031] bond8: (slave bridge11): Enslaving as an active interface with an up link
[  933.673483][T22023] device macvlan0 entered promiscuous mode
[  933.685250][T22023] device bond8 entered promiscuous mode
[  933.864217][T22023] device bridge11 entered promiscuous mode
[  933.884003][T22023] 8021q: adding VLAN 0 to HW filter on device macvlan0
[  933.957408][T22023] bond8: (slave macvlan0): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  934.973647][T22023] device bond8 left promiscuous mode
[  934.979734][T22023] device bridge11 left promiscuous mode
[  936.328939][T22065] sctp: [Deprecated]: syz.2.5831 (pid 22065) Use of struct sctp_assoc_value in delayed_ack socket option.
[  936.328939][T22065] Use struct sctp_sack_info instead
[  936.514791][T22072] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5832'.
[  936.689777][T22072] netlink: 4 bytes leftover after parsing attributes in process `syz.6.5832'.
[  936.770903][T22076] gfs2: gfs2 mount does not exist
[  940.426564][T22114] netlink: 12 bytes leftover after parsing attributes in process `syz.6.5843'.
[  946.101506][T22184] netlink: 'syz.6.5864': attribute type 10 has an invalid length.
[  953.285436][T22270] xt_policy: output policy not valid in PREROUTING and INPUT
[  954.697188][T22282] netlink: 'syz.7.5889': attribute type 1 has an invalid length.
[  955.754141][T22282] 8021q: adding VLAN 0 to HW filter on device bond2
[  956.010330][T22290] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  956.035134][T22290] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  956.053621][T22290] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  956.063819][T22290] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  956.085234][T22290] bond2: (slave geneve2): making interface the new active one
[  956.112628][T22290] bond2: (slave geneve2): Enslaving as an active interface with an up link
[  956.125026][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): bond2: link becomes ready
[  956.200141][T22307] netlink: 'syz.7.5897': attribute type 1 has an invalid length.
[  956.259641][T22307] bond3: (slave bridge1): making interface the new active one
[  956.269001][T22307] bond3: (slave bridge1): Enslaving as an active interface with an up link
[  956.334335][T22307] device macvlan2 entered promiscuous mode
[  956.350471][T22307] device bond3 entered promiscuous mode
[  956.360462][T22307] device bridge1 entered promiscuous mode
[  956.368786][T22307] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  956.377550][T22307] bond3: (slave macvlan2): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  956.396236][T22307] device bond3 left promiscuous mode
[  956.401923][T22307] device bridge1 left promiscuous mode
[  957.190014][T22334] netlink: 12 bytes leftover after parsing attributes in process `syz.7.5905'.
[  957.279687][T22330] HTB: quantum of class 4000A is big. Consider r2q change.
[  958.303243][T22330] HTB: quantum of class 4000A is big. Consider r2q change.
[  959.146207][T22353] gfs2: gfs2 mount does not exist
[  960.003426][T22359] netlink: 'syz.2.5914': attribute type 1 has an invalid length.
[  960.149432][T22359] bond7: (slave bridge7): making interface the new active one
[  960.197394][T22359] bond7: (slave bridge7): Enslaving as an active interface with an up link
[  960.218434][T22359] device macvlan1 entered promiscuous mode
[  960.225178][T22359] device bond7 entered promiscuous mode
[  960.231017][T22359] device bridge7 entered promiscuous mode
[  960.237700][T22359] 8021q: adding VLAN 0 to HW filter on device macvlan1
[  960.245861][T22359] bond7: (slave macvlan1): the slave hw address is in use by the bond; couldn't find a slave with a free hw address to give it (this should not have happened)
[  960.272377][T22359] device bond7 left promiscuous mode
[  960.280382][T22359] device bridge7 left promiscuous mode
[  962.319021][T22369] ceph: No mds server is up or the cluster is laggy
[  969.037057][T22458] netlink: 'syz.5.5937': attribute type 10 has an invalid length.
[  973.214426][T22537] UBIFS error (pid: 22537): cannot open "ubifs", error -22
[  986.935849][T22712] device vlan2 entered promiscuous mode
[  986.998722][T22712] device syz_tun entered promiscuous mode
[  988.157960][T22735] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6020'.
[  991.866604][T22801] overlayfs: failed to clone lowerpath
[  992.462556][T22808] team0: Device gtp0 is of different type
[  994.298395][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[  994.304783][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[  995.480947][ T7658] libceph: connect (1)[c::]:6789 error -22
[  995.487275][ T7658] libceph: mon0 (1)[c::]:6789 connect error
[  995.755226][ T7658] libceph: connect (1)[c::]:6789 error -22
[  995.778808][ T7658] libceph: mon0 (1)[c::]:6789 connect error
[  996.398628][ T7658] libceph: connect (1)[c::]:6789 error -22
[  996.555397][T22845] ceph: No mds server is up or the cluster is laggy
[  996.572740][ T7658] libceph: mon0 (1)[c::]:6789 connect error
[ 1003.604550][T22939] netlink: 'syz.2.6072': attribute type 1 has an invalid length.
[ 1004.084367][ T5133] libceph: connect (1)[c::]:6789 error -22
[ 1004.090860][ T5133] libceph: mon0 (1)[c::]:6789 connect error
[ 1004.748528][T22950] ceph: No mds server is up or the cluster is laggy
[ 1004.756434][ T5133] libceph: connect (1)[c::]:6789 error -22
[ 1004.763036][ T5133] libceph: mon0 (1)[c::]:6789 connect error
[ 1004.794045][T22939] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1004.835365][T22947] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.922515][T22947] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.936737][T22947] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.987291][T22947] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1004.998808][T22947] bond8: (slave geneve2): making interface the new active one
[ 1005.010622][T22947] bond8: (slave geneve2): Enslaving as an active interface with an up link
[ 1005.029514][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): bond8: link becomes ready
[ 1008.843020][T23006] netlink: 'syz.5.6090': attribute type 1 has an invalid length.
[ 1009.094382][T23006] 8021q: adding VLAN 0 to HW filter on device bond8
[ 1009.200020][T23014] overlayfs: failed to clone upperpath
[ 1009.328271][T23013] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.508727][T23013] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.751707][T23013] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.770224][T23013] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1009.782354][T23013] bond8: (slave geneve2): making interface the new active one
[ 1009.792976][T23013] bond8: (slave geneve2): Enslaving as an active interface with an up link
[ 1009.803730][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bond8: link becomes ready
[ 1014.944929][T23095] netlink: 24 bytes leftover after parsing attributes in process `syz.7.6113'.
[ 1017.561208][T23070] netdevsim netdevsim5 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1017.574040][T23070] netdevsim netdevsim5 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1017.590424][T23070] netdevsim netdevsim5 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1017.604544][T23070] netdevsim netdevsim5 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1017.739502][T23122] netlink: 80 bytes leftover after parsing attributes in process `syz.5.6120'.
[ 1017.755035][T23122] netlink: 'syz.5.6120': attribute type 12 has an invalid length.
[ 1017.770428][T23124] netlink: 72 bytes leftover after parsing attributes in process `syz.3.6122'.
[ 1020.492880][T23145] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6128'.
[ 1022.645714][T23189] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[ 1023.013448][T23189] bond6: (slave batadv_slave_1): Releasing backup interface
[ 1023.029492][T23189] bond10: (slave gretap2): Releasing active interface
[ 1023.688027][T23204] MPTCP: kernel_bind error, err=-99
[ 1024.001715][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.020287][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.032979][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.064651][T23204] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1024.115410][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.151705][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.158842][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.165870][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.173051][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.190028][T23204] wlan0 speed is unknown, defaulting to 1000
[ 1024.255316][T23219] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[ 1024.819449][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 1026.281855][T23239] netlink: 'syz.3.6154': attribute type 10 has an invalid length.
[ 1026.367197][T23239] netlink: 40 bytes leftover after parsing attributes in process `syz.3.6154'.
[ 1027.350842][T23239] net_ratelimit: 23 callbacks suppressed
[ 1027.350864][T23239] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[ 1027.470604][T23249] bond3: (slave veth7): Enslaving as an active interface with a down link
[ 1028.345547][T23255] bond3: (slave ip6gretap2): making interface the new active one
[ 1028.354801][T23255] bond3: (slave ip6gretap2): Enslaving as an active interface with an up link
[ 1028.555250][T23266] netlink: 12 bytes leftover after parsing attributes in process `syz.6.6162'.
[ 1028.568104][T23266] netdevsim netdevsim6 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[ 1028.577104][T23266] netdevsim netdevsim6 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[ 1028.585943][T23266] netdevsim netdevsim6 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[ 1028.594755][T23266] netdevsim netdevsim6 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[ 1028.642511][T23268] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6162'.
[ 1029.420856][T23268] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6162'.
[ 1029.473861][T23266] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6162'.
[ 1029.753155][T23278] netlink: 201392 bytes leftover after parsing attributes in process `syz.3.6164'.
[ 1034.988006][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1035.007028][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1035.038207][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1035.104581][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1035.113969][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1035.122788][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1035.131952][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1035.140802][T23317] netlink: 'syz.3.6174': attribute type 29 has an invalid length.
[ 1036.146256][T23342] netlink: 'syz.7.6184': attribute type 1 has an invalid length.
[ 1037.284254][T23347] bond4: (slave gretap1): making interface the new active one
[ 1037.298027][T23347] bond4: (slave gretap1): Enslaving as an active interface with an up link
[ 1037.480164][T23355] netlink: 44 bytes leftover after parsing attributes in process `syz.7.6184'.
[ 1038.884007][T23355] device bond4 entered promiscuous mode
[ 1038.914584][T23355] device gretap1 entered promiscuous mode
[ 1039.118494][T23355] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1039.149867][   T26] kauditd_printk_skb: 56 callbacks suppressed
[ 1039.149887][   T26] audit: type=1326 audit(2000000541.439:668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1039.860920][   T26] audit: type=1326 audit(2000000541.439:669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1040.186317][   T26] audit: type=1326 audit(2000000541.439:670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1040.503359][T23398] netlink: 124 bytes leftover after parsing attributes in process `syz.5.6192'.
[ 1040.513507][T23398] netlink: 40 bytes leftover after parsing attributes in process `syz.5.6192'.
[ 1040.864999][   T26] audit: type=1326 audit(2000000541.449:671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1041.351743][T23414] ptrace attach of "./syz-executor exec"[4185] was attempted by ""[23414]
[ 1042.106229][   T26] audit: type=1326 audit(2000000541.449:672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1042.308162][   T26] audit: type=1326 audit(2000000541.459:673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1043.901705][   T26] audit: type=1326 audit(2000000541.459:674): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1043.945663][   T26] audit: type=1326 audit(2000000541.459:675): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23373 comm="syz.3.6189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0cccf65eb9 code=0x7ffc0000
[ 1044.589332][T23431] netlink: 'syz.5.6202': attribute type 4 has an invalid length.
[ 1044.597876][T23431] netlink: 128124 bytes leftover after parsing attributes in process `syz.5.6202'.
[ 1046.044211][T23464] bridge0: the hash_elasticity option has been deprecated and is always 16
[ 1056.050398][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1056.056993][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1058.957480][T23609] netlink: 16 bytes leftover after parsing attributes in process `syz.7.6252'.
[ 1059.849408][T23614] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1062.061764][T23640] netlink: 'syz.2.6264': attribute type 10 has an invalid length.
[ 1065.135787][   T26] audit: type=1326 audit(2000000567.459:676): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1065.864624][   T26] audit: type=1326 audit(2000000567.609:677): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1065.893398][   T26] audit: type=1326 audit(2000000568.219:678): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1066.111233][   T26] audit: type=1326 audit(2000000568.219:679): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1067.171108][   T26] audit: type=1326 audit(2000000568.219:680): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1067.669842][   T26] audit: type=1326 audit(2000000568.309:681): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=242 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1067.914872][   T26] audit: type=1326 audit(2000000568.309:682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1068.718084][   T26] audit: type=1326 audit(2000000568.309:683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1068.761848][T23721] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6287'.
[ 1068.787269][   T26] audit: type=1326 audit(2000000568.309:684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1068.851563][   T26] audit: type=1326 audit(2000000568.309:685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23676 comm="syz.5.6275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x7ffc0000
[ 1069.023388][T23730] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6290'.
[ 1071.940126][T23760] netlink: 28 bytes leftover after parsing attributes in process `syz.2.6299'.
[ 1071.949442][T23764] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6298'.
[ 1072.034124][T23767] ptrace attach of "./syz-executor exec"[5356] was attempted by "                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                                              
[ 1072.114751][T23764] 9pnet: Insufficient options for proto=fd
[ 1076.629866][T23797] sctp: [Deprecated]: syz.2.6308 (pid 23797) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1076.629866][T23797] Use struct sctp_sack_info instead
[ 1078.876407][T23824] bridge0: failed insert local address into bridge forwarding table
[ 1089.963886][T23908] netlink: 4 bytes leftover after parsing attributes in process `syz.7.6335'.
[ 1095.964496][T23954] lo speed is unknown, defaulting to 1000
[ 1096.057460][T23954] wlan0 speed is unknown, defaulting to 1000
[ 1097.620104][ T5137] Bluetooth: hci1: command 0x0409 tx timeout
[ 1097.695915][T23954] chnl_net:caif_netlink_parms(): no params data found
[ 1099.419712][T23954] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1099.458551][T23954] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1099.503006][T23954] device bridge_slave_0 entered promiscuous mode
[ 1099.588546][T23954] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1099.640714][T23954] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1099.675469][T23954] device bridge_slave_1 entered promiscuous mode
[ 1099.700062][ T5137] Bluetooth: hci1: command 0x041b tx timeout
[ 1099.826228][T23954] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1099.915036][T23954] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1100.115719][T23954] team0: Port device team_slave_0 added
[ 1100.212098][T23954] team0: Port device team_slave_1 added
[ 1101.101622][T24023] overlayfs: failed to clone upperpath
[ 1101.180189][T23954] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1101.782722][ T5136] Bluetooth: hci1: command 0x040f tx timeout
[ 1101.849576][T23954] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1101.939818][T23954] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1102.006629][T23954] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1102.021043][T23954] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1102.070619][T23954] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1102.706109][T23954] device hsr_slave_0 entered promiscuous mode
[ 1102.721578][T23954] device hsr_slave_1 entered promiscuous mode
[ 1102.731124][T23954] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1102.748977][T23954] Cannot create hsr debugfs directory
[ 1102.774946][T22661] tipc: Left network mode
[ 1103.292663][T24066] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6370'.
[ 1103.869982][ T5136] Bluetooth: hci1: command 0x0419 tx timeout
[ 1104.341786][T23954] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1104.468893][T23954] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1104.506013][T23954] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1104.535152][T23954] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1107.088241][T23954] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1107.630093][T23954] 8021q: adding VLAN 0 to HW filter on device team0
[ 1107.861381][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1107.989712][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1108.151210][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1108.160829][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1108.169507][T20599] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1108.177003][T20599] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1108.256174][T24124] netlink: 'syz.5.6380': attribute type 21 has an invalid length.
[ 1108.264253][T24124] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6380'.
[ 1109.030481][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1109.039495][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1109.048676][T20599] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1109.055845][T20599] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1109.110411][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1109.142625][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1109.257969][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1109.288110][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1109.306272][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1109.328355][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1109.353062][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1109.370203][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1109.404452][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1109.418972][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1109.491982][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1109.516681][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1109.624232][T23954] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1109.977670][T24145] print_req_error: 25 callbacks suppressed
[ 1109.977721][T24145] blk_update_request: I/O error, dev loop13, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1109.996345][T24145] F2FS-fs (loop13): Unable to read 1th superblock
[ 1110.008598][T24145] blk_update_request: I/O error, dev loop13, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1110.020830][T24145] F2FS-fs (loop13): Unable to read 2th superblock
[ 1111.282944][T24152] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1112.524036][T22661] device hsr_slave_0 left promiscuous mode
[ 1115.249389][T22661] bond10 (unregistering): Released all slaves
[ 1115.296945][T22661] bond9 (unregistering): Released all slaves
[ 1115.325591][T22661] bond8 (unregistering): Released all slaves
[ 1115.386423][T24180] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6392'.
[ 1115.612795][T22661] bond7 (unregistering): Released all slaves
[ 1116.363092][T22661] bond6 (unregistering): Released all slaves
[ 1116.785328][T22661] bond5 (unregistering): Released all slaves
[ 1117.010481][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1117.017459][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1117.450521][T22661] bond4 (unregistering): Released all slaves
[ 1117.696873][T22661] bond3 (unregistering): Released all slaves
[ 1117.716163][T22661] bond2 (unregistering): Released all slaves
[ 1117.727585][T22661] bond1 (unregistering): Released all slaves
[ 1117.876902][T24194] netlink: 4 bytes leftover after parsing attributes in process `syz.5.6395'.
[ 1117.890676][T24194] chnl_net:caif_netlink_parms(): no params data found
[ 1117.951723][T23954] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1117.974332][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1117.991748][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1118.726726][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1118.810273][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1119.013844][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1119.997873][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1120.236035][T23954] device veth0_vlan entered promiscuous mode
[ 1120.248453][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1120.848442][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1120.920487][T23954] device veth1_vlan entered promiscuous mode
[ 1121.808775][T23954] device veth0_macvtap entered promiscuous mode
[ 1121.851234][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1121.886944][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1121.928795][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1121.961423][T23954] device veth1_macvtap entered promiscuous mode
[ 1121.984029][T23954] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1121.995874][T23954] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1122.006774][T23954] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.015873][T23954] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.025443][T23954] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.044005][T23954] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1122.177159][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1122.201013][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1122.284599][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1122.618505][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1123.278844][T24319] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[ 1123.851726][T24319] bond0: (slave bridge_slave_1): Releasing backup interface
[ 1123.862557][T24319] bond0: (slave bond_slave_0): Releasing backup interface
[ 1123.875067][T24319] bond0: (slave bond_slave_1): Releasing backup interface
[ 1123.896352][T24319] team0: Port device team_slave_0 removed
[ 1123.929119][T24319] team0: Port device team_slave_1 removed
[ 1123.935647][T24319] device netdevsim0 left promiscuous mode
[ 1123.941705][T24319] bridge0: port 1(netdevsim0) entered disabled state
[ 1123.954304][T24319] bond2: (slave geneve2): Releasing active interface
[ 1123.963383][T24319] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1123.972895][T24319] netdevsim netdevsim7 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1123.982306][T24319] netdevsim netdevsim7 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1123.991363][T24319] netdevsim netdevsim7 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1124.107679][T24319] bond3: (slave bridge1): Releasing active interface
[ 1124.158079][T24319] bond4: (slave gretap1): Releasing active interface
[ 1124.165302][T24319] device gretap1 left promiscuous mode
[ 1124.414728][ T7388] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1124.497077][ T7388] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1124.671436][ T7388] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1124.714948][ T7388] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1124.852908][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1124.872666][T20599] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1125.381672][T24259] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1125.910183][T24259] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1126.490054][T24387] netlink: 16 bytes leftover after parsing attributes in process `syz.2.6424'.
[ 1127.151414][T24259] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1127.240146][T24259] usb 9-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1127.263378][T24259] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1127.291945][T24259] usb 9-1: SerialNumber: syz
[ 1127.753217][T24412] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[ 1128.923048][T24259] usb 9-1: 0:2 : does not exist
[ 1129.026515][T24259] usb 9-1: USB disconnect, device number 2
[ 1129.110358][T24321] udevd[24321]: error opening ATTR{/sys/devices/platform/dummy_hcd.8/usb9/9-1/9-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1130.127608][T24428] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6438'.
[ 1137.495797][T24516] blk_update_request: I/O error, dev loop15, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[ 1137.508416][T24516] FAT-fs (loop15): unable to read boot sector
[ 1138.686468][T24524] netlink: 'syz.5.6459': attribute type 1 has an invalid length.
[ 1138.694501][T24524] netlink: 168864 bytes leftover after parsing attributes in process `syz.5.6459'.
[ 1139.397090][T24528] netlink: 'syz.8.6457': attribute type 10 has an invalid length.
[ 1139.405744][T24528] netlink: 40 bytes leftover after parsing attributes in process `syz.8.6457'.
[ 1140.457843][T24528] team0: Port device geneve0 added
[ 1140.478389][T24545] netlink: 'syz.7.6464': attribute type 1 has an invalid length.
[ 1140.700819][T24545] device bond5 entered promiscuous mode
[ 1140.722689][T24545] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1140.831428][T24552] bond2: (slave veth19): Enslaving as an active interface with a down link
[ 1141.429405][T24554] bond2: (slave ip6gretap2): making interface the new active one
[ 1142.208572][T24554] device ip6gretap2 entered promiscuous mode
[ 1142.316341][T24554] bond2: (slave ip6gretap2): Enslaving as an active interface with an up link
[ 1142.477084][T24555] bond5: (slave veth3): Enslaving as an active interface with a down link
[ 1148.553420][T24604] netlink: 'syz.7.6479': attribute type 10 has an invalid length.
[ 1148.580219][T24604] netlink: 40 bytes leftover after parsing attributes in process `syz.7.6479'.
[ 1149.179480][T24604] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1149.307751][T24604] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1149.339284][T24604] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1149.410927][T24604] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1149.437597][T24604] team0: Port device geneve0 added
[ 1149.455252][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1152.200076][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1155.120253][T24673] netlink: 4 bytes leftover after parsing attributes in process `syz.2.6495'.
[ 1165.935680][T24818] netlink: 'syz.2.6526': attribute type 29 has an invalid length.
[ 1166.018524][T24818] netlink: 'syz.2.6526': attribute type 29 has an invalid length.
[ 1167.061119][T24819] netlink: 'syz.2.6526': attribute type 29 has an invalid length.
[ 1173.511990][T24922] netlink: 36 bytes leftover after parsing attributes in process `syz.2.6550'.
[ 1175.359397][T24938] netlink: 24 bytes leftover after parsing attributes in process `syz.8.6555'.
[ 1178.430969][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1178.440177][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1180.225791][T25001] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[ 1183.373819][T25042] xt_NFQUEUE: number of queues (8) out of range (got 65537)
[ 1186.215695][T25066] overlayfs: failed to clone upperpath
[ 1187.871703][T25081] netlink: 'syz.2.6581': attribute type 9 has an invalid length.
[ 1187.879569][T25081] netlink: 126588 bytes leftover after parsing attributes in process `syz.2.6581'.
[ 1196.608957][T25209] overlayfs: failed to clone upperpath
[ 1198.215598][T25250] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1201.219623][T25297] netlink: 24 bytes leftover after parsing attributes in process `syz.2.6628'.
[ 1202.574588][T25305] x_tables: ip6_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[ 1203.277434][T25295] Cannot find add_set index 0 as target
[ 1206.645235][T25349] overlayfs: failed to clone upperpath
[ 1209.186654][T25364] netlink: 24 bytes leftover after parsing attributes in process `syz.7.6644'.
[ 1215.020974][T25459] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1221.833439][T25568] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6687'.
[ 1221.846426][T24359] Bluetooth: hci1: command 0x0406 tx timeout
[ 1227.242046][T25639] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1229.337958][T25665] No such timeout policy "syz1"
[ 1240.299650][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1240.306185][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1254.390484][T25860] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1254.451956][T25860] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[ 1254.484910][T24265] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 1254.524527][T25860] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1254.699022][T25874] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1255.220751][    C0] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 1256.004957][T24265] ip6_tunnel: ip6gretap0 xmit: Local address not yet configured!
[ 1256.772618][T25897] netlink: 8 bytes leftover after parsing attributes in process `syz.8.6771'.
[ 1260.564681][   T26] kauditd_printk_skb: 23 callbacks suppressed
[ 1260.768985][   T26] audit: type=1326 audit(2000000762.879:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1262.444503][   T26] audit: type=1326 audit(2000000762.879:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1262.472735][   T26] audit: type=1326 audit(2000000762.879:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1262.680758][   T26] audit: type=1326 audit(2000000762.889:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1262.738864][   T26] audit: type=1326 audit(2000000762.889:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1262.739072][T25966] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1263.703229][   T26] audit: type=1326 audit(2000000762.889:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=144 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1263.794972][   T26] audit: type=1326 audit(2000000762.889:715): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1264.767390][   T26] audit: type=1326 audit(2000000762.889:716): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1264.804189][   T26] audit: type=1326 audit(2000000762.889:717): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1264.988782][T25993] netlink: 'syz.6.6795': attribute type 1 has an invalid length.
[ 1264.997421][T25983] delete_channel: no stack
[ 1265.018234][   T26] audit: type=1326 audit(2000000762.889:718): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25941 comm="syz.7.6782" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11262caeb9 code=0x7ffc0000
[ 1265.489816][T25993] device bond9 entered promiscuous mode
[ 1265.495675][T25993] 8021q: adding VLAN 0 to HW filter on device bond9
[ 1265.548990][T25993] bond9: (slave bridge13): making interface the new active one
[ 1265.561345][T25993] device bridge13 entered promiscuous mode
[ 1265.572424][T25993] bond9: (slave bridge13): Enslaving as an active interface with an up link
[ 1266.578655][T25998] netlink: 28 bytes leftover after parsing attributes in process `syz.6.6795'.
[ 1266.634621][T22661] IPv6: ADDRCONF(NETDEV_CHANGE): bond9: link becomes ready
[ 1270.534735][T26042] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[ 1271.119039][T26055] fuse: Bad value for 'fd'
[ 1271.435597][T26042] IPv6: ADDRCONF(NETDEV_CHANGE): dummy0: link becomes ready
[ 1271.443951][T26042] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1279.920872][T26127] netlink: 'syz.2.6828': attribute type 5 has an invalid length.
[ 1287.256202][T26170] lo: Caught tx_queue_len zero misconfig
[ 1290.215568][T26187] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6845'.
[ 1293.536939][T26209] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6849'.
[ 1304.119341][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1304.126684][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1306.776693][T26348] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6887'.
[ 1306.786413][T26348] netlink: 8 bytes leftover after parsing attributes in process `syz.2.6887'.
[ 1308.448130][T26358] 8021q: adding VLAN 0 to HW filter on device bond4
[ 1308.461349][T26358] netlink: 52 bytes leftover after parsing attributes in process `syz.5.6890'.
[ 1312.140647][   T26] kauditd_printk_skb: 10 callbacks suppressed
[ 1312.140665][   T26] audit: type=1326 audit(2000000811.118:729): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26402 comm="syz.5.6901" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f87d0fbfeb9 code=0x0
[ 1315.204393][T26435] lo: Caught tx_queue_len zero misconfig
[ 1315.456967][T26438] netlink: 12 bytes leftover after parsing attributes in process `syz.2.6903'.
[ 1315.906782][T26439] batman_adv: batadv0: Adding interface: gretap1
[ 1315.913375][T26439] batman_adv: batadv0: The MTU of interface gretap1 is too small (1462) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1315.938963][T26439] batman_adv: batadv0: Interface activated: gretap1
[ 1318.009945][T26458] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6915'.
[ 1318.384557][T26472] Cannot find del_set index 286 as target
[ 1319.500859][T26479] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6922'.
[ 1320.149533][T26479] netlink: 28 bytes leftover after parsing attributes in process `syz.8.6922'.
[ 1320.771808][T26479] device team0 entered promiscuous mode
[ 1320.796868][T26479] device team_slave_0 entered promiscuous mode
[ 1320.825191][T26479] device team_slave_1 entered promiscuous mode
[ 1320.832726][T26479] device geneve0 entered promiscuous mode
[ 1320.840674][T26479] device bond0 entered promiscuous mode
[ 1320.846883][T26479] device bond_slave_0 entered promiscuous mode
[ 1320.854063][T26479] device bond_slave_1 entered promiscuous mode
[ 1320.862347][T26492] xt_recent: Unsupported userspace flags (000000de)
[ 1320.881617][T26479] debugfs: Directory 'hsr1' with parent 'hsr' already present!
[ 1320.890060][T26479] Cannot create hsr debugfs directory
[ 1320.896394][T26479] 8021q: adding VLAN 0 to HW filter on device hsr1
[ 1320.922091][T26488] netlink: 8 bytes leftover after parsing attributes in process `syz.5.6920'.
[ 1320.948686][T26480] netlink: 28 bytes leftover after parsing attributes in process `syz.5.6920'.
[ 1320.981854][ T4404] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready
[ 1326.466544][T26531] bridge0: failed insert local address into bridge forwarding table
[ 1328.895334][T26816] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[ 1337.276919][T26910] netlink: 4 bytes leftover after parsing attributes in process `syz.6.6965'.
[ 1343.560393][T26976] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 1343.702661][T26976] netlink: 4 bytes leftover after parsing attributes in process `syz.8.6981'.
[ 1355.888295][T27108] SET target dimension over the limit!
[ 1360.933110][T27144] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7025'.
[ 1362.037214][T27163] overlayfs: failed to clone lowerpath
[ 1362.181953][T27160] delete_channel: no stack
[ 1366.497186][T27239] overlayfs: failed to clone lowerpath
[ 1369.915049][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1369.922032][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1372.386733][T27319] team_slave_1: Caught tx_queue_len zero misconfig
[ 1376.378518][T27361] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7074'.
[ 1376.398712][T27362] ERROR: device name not specified.
[ 1376.502373][T27363] overlayfs: failed to clone lowerpath
[ 1381.909996][T27436] overlayfs: failed to clone lowerpath
[ 1383.142757][T27460] netlink: 52 bytes leftover after parsing attributes in process `syz.2.7102'.
[ 1384.783173][T27493] overlayfs: failed to clone lowerpath
[ 1384.968667][T27494] RDS: rds_bind could not find a transport for ::ffff:172.20.20.170, load rds_tcp or rds_rdma?
[ 1387.280789][T27516] overlayfs: failed to clone upperpath
[ 1390.023651][T27533] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[ 1390.219430][T27535] fuse: Bad value for 'fd'
[ 1390.692844][T27549] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[ 1390.719997][T27549] CIFS: Unable to determine destination address
[ 1393.758144][T27578] netlink: 76 bytes leftover after parsing attributes in process `syz.6.7130'.
[ 1394.426870][T27588] netlink: 'syz.7.7131': attribute type 1 has an invalid length.
[ 1400.382971][T27664] kAFS: unable to lookup cell ''
[ 1409.708999][T27734] netlink: 52 bytes leftover after parsing attributes in process `syz.7.7163'.
[ 1418.542423][T27825] CIFS: Unable to determine destination address
[ 1422.530723][T27865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7200'.
[ 1422.542785][T27865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7200'.
[ 1422.552815][T27865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7200'.
[ 1422.563429][T27865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7200'.
[ 1422.575708][T27865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7200'.
[ 1422.585346][T27865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7200'.
[ 1422.682136][T27867] device vlan1 entered promiscuous mode
[ 1422.699045][T27867] netlink: 8 bytes leftover after parsing attributes in process `syz.2.7202'.
[ 1422.790856][T27872] netlink: 4 bytes leftover after parsing attributes in process `syz.2.7202'.
[ 1427.066568][ T5133] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[ 1427.093501][ T5133] Bluetooth: hci4: Injecting HCI hardware error event
[ 1427.128213][T15867] Bluetooth: hci4: hardware error 0x00
[ 1434.358118][T28003] overlayfs: failed to clone upperpath
[ 1435.513399][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1435.519736][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1454.241199][T28198] CIFS: Unable to determine destination address
[ 1454.948489][T28200] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7287'.
[ 1458.615927][T28238] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7297'.
[ 1458.744109][T28238] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7297'.
[ 1458.915210][T28251] CIFS: Unable to determine destination address
[ 1464.944475][T28308] kAFS: unable to lookup cell ''
[ 1465.515882][T28321] xt_cgroup: path and classid specified
[ 1469.259331][T28352] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7322'.
[ 1469.989027][T28369] netdevsim netdevsim7 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[ 1469.998955][T28369] netdevsim netdevsim7 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[ 1470.850369][T28376] netlink: 'syz.7.7332': attribute type 1 has an invalid length.
[ 1472.264813][T28376] 8021q: adding VLAN 0 to HW filter on device bond6
[ 1473.984254][T28381] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7332'.
[ 1479.457754][T28459] netlink: 'syz.8.7352': attribute type 12 has an invalid length.
[ 1481.154706][T28475] netlink: 'syz.7.7355': attribute type 3 has an invalid length.
[ 1481.162590][T28475] netlink: 'syz.7.7355': attribute type 1 has an invalid length.
[ 1488.128121][T28537] hugetlbfs: syz.6.7372 (28537): Using mlock ulimits for SHM_HUGETLB is deprecated
[ 1495.258820][T28629] x_tables: duplicate underflow at hook 1
[ 1496.289330][T28634] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7392'.
[ 1496.545239][T28649] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[ 1496.941727][T28661] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1496.952673][T28661] CIFS mount error: No usable UNC path provided in device string!
[ 1496.952673][T28661] 
[ 1496.963230][T28661] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1498.933514][T28669] infiniband !yz!: set down
[ 1498.938110][T28669] infiniband !yz!: added team_slave_0
[ 1498.950236][T28669] infiniband !yz!: Couldn't open port 1
[ 1499.006103][T28669] RDS/IB: !yz!: added
[ 1499.010192][T28669] smc: adding ib device !yz! with port count 1
[ 1499.016587][T28669] smc:    ib device !yz! port 1 has pnetid 
[ 1499.320660][T28660] cgroup: subsys name conflicts with all
[ 1501.253324][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1501.259764][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1508.659688][T28769] overlayfs: failed to clone lowerpath
[ 1510.299556][T28785] fuse: Unknown parameter '0xffffffffffffffff'
[ 1519.265269][T28853] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[ 1527.704250][T28935] overlayfs: failed to clone lowerpath
[ 1534.660176][T28973] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7480'.
[ 1534.687382][T28973] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7480'.
[ 1544.302516][T29084] overlayfs: failed to clone lowerpath
[ 1544.309802][T29084] overlayfs: failed to clone lowerpath
[ 1552.974665][T29166] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[ 1553.340259][T29170] overlayfs: failed to clone lowerpath
[ 1560.093582][T29221] xt_CONNSECMARK: invalid mode: 0
[ 1560.913527][T29223] overlayfs: failed to clone lowerpath
[ 1562.690019][T29227] overlayfs: failed to clone upperpath
[ 1562.721916][T29241] netlink: 'syz.8.7544': attribute type 1 has an invalid length.
[ 1562.938895][T29241] bond1: (slave ip6gretap1): Enslaving as a backup interface with an up link
[ 1563.928881][T29241] device veth5 entered promiscuous mode
[ 1564.431202][T29241] bond1: (slave veth5): Enslaving as a backup interface with a down link
[ 1564.439878][T29246] netlink: 28 bytes leftover after parsing attributes in process `syz.8.7544'.
[ 1564.472321][ T7389] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1564.495099][T29246] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1564.528094][ T1276] IPv6: ADDRCONF(NETDEV_CHANGE): bond1: link becomes ready
[ 1564.549912][T29267] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7550'.
[ 1564.915921][T20599] bond1: Warning: No 802.3ad response from the link partner for any adapters in the bond
[ 1565.190370][T29273] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[ 1566.879719][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1566.886114][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1570.257269][T29318] delete_channel: no stack
[ 1570.286153][T29318] delete_channel: no stack
[ 1571.359385][   T26] audit: type=1326 audit(2000001053.611:730): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29326 comm="syz.6.7567" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fbf78686eb9 code=0x0
[ 1589.080217][T29491] netlink: 12 bytes leftover after parsing attributes in process `syz.6.7604'.
[ 1589.321816][T29486] lo speed is unknown, defaulting to 1000
[ 1589.343246][T29486] wlan0 speed is unknown, defaulting to 1000
[ 1590.548743][ T5135] Bluetooth: hci2: command 0x0409 tx timeout
[ 1590.855880][ T1276] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1591.967592][ T1276] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1592.191132][T29524] netlink: 8 bytes leftover after parsing attributes in process `syz.5.7610'.
[ 1592.277601][ T1276] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1592.894501][ T5135] Bluetooth: hci2: command 0x041b tx timeout
[ 1593.019093][ T1276] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1593.776677][T29486] chnl_net:caif_netlink_parms(): no params data found
[ 1594.806136][ T1276] tipc: Disabling bearer <eth:syzkaller0>
[ 1595.080011][ T5133] Bluetooth: hci2: command 0x040f tx timeout
[ 1595.791065][ T1276] tipc: Left network mode
[ 1595.811711][T29486] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1595.819184][T29486] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1595.827530][T29486] device bridge_slave_0 entered promiscuous mode
[ 1595.867559][T29486] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1595.892905][T29486] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1595.901255][T29486] device bridge_slave_1 entered promiscuous mode
[ 1595.985365][T29486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1596.094169][ T1276] bond2: (slave ip6gretap2): Releasing active interface
[ 1596.138452][ T1276] device ip6gretap2 left promiscuous mode
[ 1596.172377][T29486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1596.268788][T29486] team0: Port device team_slave_0 added
[ 1596.294158][ T1276] smc: removing net device ip6tnl0 with user defined pnetid SYZ1
[ 1596.338287][T29486] team0: Port device team_slave_1 added
[ 1596.503971][T29486] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1596.510986][T29486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1596.572524][T29574] netlink: 4 bytes leftover after parsing attributes in process `syz.5.7617'.
[ 1596.690728][T29486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1597.173374][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.182490][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.191576][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.200593][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.209729][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.218709][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.227663][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.236674][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.245876][T29578] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7616'.
[ 1597.275194][T29578] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1597.401385][ T5137] Bluetooth: hci2: command 0x0419 tx timeout
[ 1597.717585][T29486] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1597.736772][T29486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1597.954066][T29486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1598.622616][T29486] device hsr_slave_0 entered promiscuous mode
[ 1598.640972][T29486] device hsr_slave_1 entered promiscuous mode
[ 1598.662725][T29486] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1598.691490][T29486] Cannot create hsr debugfs directory
[ 1600.068677][T29601] overlayfs: failed to clone upperpath
[ 1600.701913][T29486] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1601.844309][T29486] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1601.940112][T29486] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1601.987916][T29486] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1602.422403][ T1276] IPVS: stopping master sync thread 5941 ...
[ 1603.141376][T29486] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1603.205043][ T1276] bond0: (slave wlan1): Releasing backup interface
[ 1603.217915][ T1276] device wlan1 left promiscuous mode
[ 1603.537223][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 1603.545911][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 1603.627218][T29486] 8021q: adding VLAN 0 to HW filter on device team0
[ 1605.587462][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 1605.626537][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 1605.750005][ T7388] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1605.757210][ T7388] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1605.819630][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 1607.028844][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 1607.038278][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 1607.047744][ T7388] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1607.054898][ T7388] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1607.078181][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 1607.098070][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 1607.334029][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 1607.434566][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 1607.447942][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 1608.127904][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 1608.302299][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 1608.766925][T29703] __nla_validate_parse: 93 callbacks suppressed
[ 1608.766942][T29703] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7641'.
[ 1608.799495][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 1608.820371][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 1608.885939][ T1276] device hsr_slave_0 left promiscuous mode
[ 1608.983714][ T1276] bond2 (unregistering): (slave veth19): Releasing active interface
[ 1609.145485][ T1276] bond8 (unregistering): (slave geneve2): Releasing active interface
[ 1609.178641][ T1276] bond8 (unregistering): Released all slaves
[ 1609.215004][ T1276] bond7 (unregistering): (slave bridge7): Releasing active interface
[ 1609.775819][ T1276] bond7 (unregistering): Released all slaves
[ 1609.966799][ T1276] bond6 (unregistering): (slave veth15): Releasing active interface
[ 1610.121223][ T1276] bond6 (unregistering): Released all slaves
[ 1610.358227][ T1276] bond5 (unregistering): Released all slaves
[ 1610.372395][ T1276] bond4 (unregistering): Released all slaves
[ 1610.961158][ T1276] bond3 (unregistering): Released all slaves
[ 1611.309261][ T1276] bond2 (unregistering): Released all slaves
[ 1611.643364][ T1276] bond1 (unregistering): Released all slaves
[ 1611.755620][ T1276] bond0 (unregistering): Released all slaves
[ 1611.774682][T29486] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1611.787343][T29486] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 1611.811916][ T5135] lo speed is unknown, defaulting to 1000
[ 1611.821871][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 1611.830369][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 1612.533083][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 1612.544093][ T7388] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 1612.739353][T29486] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1615.489426][T29809] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7660'.
[ 1621.612152][T26011] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 1622.210975][T26011] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 1622.383043][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 1622.398268][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 1622.687710][T29486] device veth0_vlan entered promiscuous mode
[ 1623.515249][T29486] device veth1_vlan entered promiscuous mode
[ 1623.548311][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 1623.557565][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 1623.579572][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 1623.934778][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 1624.487157][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 1624.517332][T29486] device veth0_macvtap entered promiscuous mode
[ 1624.740662][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 1624.781255][T29486] device veth1_macvtap entered promiscuous mode
[ 1625.702732][T29486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1629.131252][T29486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1629.378460][T29486] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1629.390749][T29486] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1629.401496][T29486] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1629.413437][T29486] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1629.437214][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 1629.470528][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 1629.523876][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 1629.552558][ T7389] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 1629.587883][T29486] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1629.610649][T29486] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1629.637104][T29486] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1629.671236][T29486] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1629.923932][ T7389] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1629.943835][ T7389] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1630.003708][T25133] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 1630.207293][T26011] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1630.219988][T26011] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1630.238672][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 1633.836766][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1633.843255][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1638.896528][T30010] IPVS: length: 528 != 8
[ 1640.810321][T30027] tipc: Failed to remove unknown binding: 66,0,0/0:3794979951/3794979952
[ 1640.926122][T30027] tipc: Failed to remove unknown binding: 66,0,0/0:3794979951/3794979952
[ 1647.131925][T30071] batman_adv: batadv0: Adding interface: dummy0
[ 1647.156189][T30071] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1647.702866][T30071] batman_adv: batadv0: Interface activated: dummy0
[ 1647.722879][T30080] batadv0: mtu less than device minimum
[ 1647.749425][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.761973][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.774574][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.786882][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.799203][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.811640][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.824004][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.836226][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1647.848963][T30080] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[ 1648.709735][T30113] netlink: 60 bytes leftover after parsing attributes in process `syz.9.7722'.
[ 1651.006155][T30106] orangefs_mount: mount request failed with -4
[ 1651.360737][T30129] overlayfs: failed to clone upperpath
[ 1662.322940][T30227] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1662.331551][T30227] CIFS mount error: No usable UNC path provided in device string!
[ 1662.331551][T30227] 
[ 1662.341848][T30227] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1663.297528][T30209] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1663.305692][T30209] CIFS mount error: No usable UNC path provided in device string!
[ 1663.305692][T30209] 
[ 1663.315785][T30209] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1664.291488][T30261] 9pnet: Insufficient options for proto=fd
[ 1664.313266][T30261] netlink: 'syz.7.7750': attribute type 10 has an invalid length.
[ 1664.375948][T30261] 8021q: adding VLAN 0 to HW filter on device team0
[ 1664.404700][T30261] bond0: (slave team0): Enslaving as an active interface with an up link
[ 1666.524681][T30305] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1666.532967][T30305] CIFS mount error: No usable UNC path provided in device string!
[ 1666.532967][T30305] 
[ 1666.543083][T30305] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1668.274067][T30335] loop9: detected capacity change from 0 to 256
[ 1668.458827][T30345] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[ 1670.293093][T30365] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1670.301367][T30365] CIFS mount error: No usable UNC path provided in device string!
[ 1670.301367][T30365] 
[ 1670.311568][T30365] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1670.442111][T30375] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1670.451531][T30375] CIFS mount error: No usable UNC path provided in device string!
[ 1670.451531][T30375] 
[ 1670.462346][T30375] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1671.699886][T30396] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[ 1673.399580][T30428] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1673.407781][T30428] CIFS mount error: No usable UNC path provided in device string!
[ 1673.407781][T30428] 
[ 1673.418128][T30428] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1674.583627][T30450] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[ 1677.013952][T30498] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1677.022214][T30498] CIFS mount error: No usable UNC path provided in device string!
[ 1677.022214][T30498] 
[ 1677.032347][T30498] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1680.175711][T30547] CIFS: Unable to determine destination address
[ 1680.344250][T30551] loop9: detected capacity change from 0 to 164
[ 1680.715480][T30566] netlink: 4 bytes leftover after parsing attributes in process `syz.6.7822'.
[ 1680.744541][T30566] overlayfs: failed to clone upperpath
[ 1682.751020][T30592] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1682.759730][T30592] CIFS mount error: No usable UNC path provided in device string!
[ 1682.759730][T30592] 
[ 1682.770207][T30592] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1686.978515][T30643] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[ 1689.292406][T30680] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[ 1689.656519][T30690] CIFS: Unable to determine destination address
[ 1691.566293][T30710] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1691.577646][T30710] CIFS mount error: No usable UNC path provided in device string!
[ 1691.577646][T30710] 
[ 1691.587787][T30710] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1695.725129][T30770] delete_channel: no stack
[ 1695.730620][T30770] delete_channel: no stack
[ 1695.743316][T30774] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[ 1695.790764][T30783] loop9: detected capacity change from 0 to 164
[ 1696.840741][T30798] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[ 1698.215004][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1698.221369][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1698.383821][T30831] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1698.392313][T30831] CIFS mount error: No usable UNC path provided in device string!
[ 1698.392313][T30831] 
[ 1698.402686][T30831] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1698.624009][T30838] CIFS: Unable to determine destination address
[ 1699.990239][T30847] loop9: detected capacity change from 0 to 164
[ 1700.595191][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1700.602002][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1700.618077][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1700.735986][T30863] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[ 1701.121608][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1701.129619][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1701.136687][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1701.143569][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1701.151187][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1701.158243][T30863] wlan0 speed is unknown, defaulting to 1000
[ 1701.210485][T30864] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[ 1701.354453][T30870] loop9: detected capacity change from 0 to 512
[ 1701.655314][T30870] EXT4-fs (loop9): mounted filesystem without journal. Opts: lazytime,errors=remount-ro,. Quota mode: writeback.
[ 1701.676153][T30870] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1703.113027][T30910] loop9: detected capacity change from 0 to 164
[ 1704.368739][T30935] netlink: 68 bytes leftover after parsing attributes in process `syz.8.7898'.
[ 1704.446514][T30940] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1704.454883][T30940] CIFS mount error: No usable UNC path provided in device string!
[ 1704.454883][T30940] 
[ 1704.465058][T30940] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1706.145978][T30974] CIFS: Unable to determine destination address
[ 1706.983710][T30992] RDS: rds_bind could not find a transport for ::ffff:172.20.20.187, load rds_tcp or rds_rdma?
[ 1708.354091][T31025] 9pnet: Insufficient options for proto=fd
[ 1708.750690][T31028] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1709.466347][T31041] loop9: detected capacity change from 0 to 512
[ 1709.526362][T31041] EXT4-fs (loop9): Quota format mount options ignored when QUOTA feature is enabled
[ 1709.580453][T31041] EXT4-fs (loop9): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1709.666444][T31041] EXT4-fs (loop9): mounted filesystem without journal. Opts: dioread_nolock,jqfmt=vfsv0,quota,,errors=continue. Quota mode: writeback.
[ 1709.719156][T31041] ext4 filesystem being mounted at /39/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1710.431826][T31060] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1710.440052][T31060] CIFS mount error: No usable UNC path provided in device string!
[ 1710.440052][T31060] 
[ 1710.450144][T31060] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1717.190634][T31123] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1717.297343][T31123] CIFS mount error: No usable UNC path provided in device string!
[ 1717.297343][T31123] 
[ 1717.308651][T31123] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1718.366590][T31173] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1718.375607][T31173] CIFS mount error: No usable UNC path provided in device string!
[ 1718.375607][T31173] 
[ 1718.385847][T31173] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1720.311308][T31188] loop9: detected capacity change from 0 to 4096
[ 1720.979309][T31213] device syzkaller0 entered promiscuous mode
[ 1722.528827][T29780] Bluetooth: hci2: command 0x0406 tx timeout
[ 1723.866611][T31249] CIFS: Unable to determine destination address
[ 1724.156844][T31261] netlink: 12 bytes leftover after parsing attributes in process `syz.5.7970'.
[ 1727.464401][T31307] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1729.161964][T31315] loop9: detected capacity change from 0 to 164
[ 1731.004134][T31335] overlayfs: failed to clone upperpath
[ 1732.090165][T31346] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1732.134153][T31346] CIFS mount error: No usable UNC path provided in device string!
[ 1732.134153][T31346] 
[ 1732.194423][T31346] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1732.848748][   T26] audit: type=1326 audit(2000001204.511:731): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1732.877602][   T26] audit: type=1326 audit(2000001204.511:732): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1733.633313][   T26] audit: type=1326 audit(2000001204.521:733): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1733.919677][   T26] audit: type=1326 audit(2000001204.521:734): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1734.369654][T31370] netlink: 'syz.5.7996': attribute type 1 has an invalid length.
[ 1734.431217][   T26] audit: type=1326 audit(2000001204.521:735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1734.454904][   T26] audit: type=1326 audit(2000001204.521:736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1735.276224][   T26] audit: type=1326 audit(2000001204.521:737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1736.632431][   T26] audit: type=1326 audit(2000001204.521:738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1736.655151][   T26] audit: type=1326 audit(2000001204.521:739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1736.687623][   T26] audit: type=1326 audit(2000001204.521:740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31352 comm="syz.9.7995" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3f3dd97eb9 code=0x7ffc0000
[ 1738.039633][T31400] loop9: detected capacity change from 0 to 512
[ 1739.276887][T31400] EXT4-fs (loop9): mounting ext2 file system using the ext4 subsystem
[ 1741.165332][T31400] EXT4-fs: error -4 creating inode table initialization thread
[ 1741.361957][T31400] EXT4-fs (loop9): mount failed
[ 1741.628725][T31420] 9pnet_virtio: no channels available for device syz
[ 1741.762995][T31417] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8013'.
[ 1742.159253][T31427] CIFS: Unable to determine destination address
[ 1745.064808][T31442] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1745.080433][T31442] loop9: detected capacity change from 0 to 1
[ 1745.651848][T31447] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8021'.
[ 1747.857560][T31455] loop9: detected capacity change from 0 to 512
[ 1750.354465][T31476] IPVS: length: 218 != 24
[ 1758.314500][T31511] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1758.330434][T31543] CIFS: Unable to determine destination address
[ 1759.655840][T31554] tunl0: Caught tx_queue_len zero misconfig
[ 1761.842272][T31561] fuse: Unknown parameter '0x000000000000000500000000000000000000'
[ 1765.953923][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1765.960374][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1768.039530][T31601] CIFS: Unable to determine destination address
[ 1768.974225][T31605] loop9: detected capacity change from 0 to 2048
[ 1769.083011][T31605] UDF-fs: bad mount option "ÿÿÿÿÿÿÿÿ" or missing value
[ 1772.209101][T31629] netlink: 24 bytes leftover after parsing attributes in process `syz.9.8062'.
[ 1777.648732][T31660] CIFS: Unable to determine destination address
[ 1779.247757][T31693] loop9: detected capacity change from 0 to 256
[ 1780.343788][T31703] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1782.712577][T31719] netlink: 'syz.7.8081': attribute type 4 has an invalid length.
[ 1785.280186][T31737] loop9: detected capacity change from 0 to 32768
[ 1785.452069][T31737] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop9 scanned by syz.9.8087 (31737)
[ 1785.495956][T31737] BTRFS info (device loop9): using crc32c (crc32c-intel) checksum algorithm
[ 1785.505078][T31737] BTRFS info (device loop9): enabling disk space caching
[ 1785.512340][T31737] BTRFS info (device loop9): force clearing of disk cache
[ 1785.519528][T31737] BTRFS info (device loop9): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1785.528988][T31737] BTRFS info (device loop9): use zstd compression, level 3
[ 1785.536373][T31737] BTRFS info (device loop9): disk space caching is enabled
[ 1785.543601][T31737] BTRFS info (device loop9): has skinny extents
[ 1787.415415][T31737] BTRFS info (device loop9): enabling ssd optimizations
[ 1787.423687][T31737] BTRFS info (device loop9): clearing free space tree
[ 1787.431050][T31737] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1787.440914][T31737] BTRFS info (device loop9): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1790.536324][T31798] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1790.580069][T31798] CIFS mount error: No usable UNC path provided in device string!
[ 1790.580069][T31798] 
[ 1790.755386][T31798] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1792.760092][T29780] usb 10-1: new high-speed USB device number 2 using dummy_hcd
[ 1792.984438][T29780] usb 10-1: device descriptor read/64, error -71
[ 1794.280667][T29780] usb 10-1: new high-speed USB device number 3 using dummy_hcd
[ 1795.430198][T29780] usb 10-1: device descriptor read/64, error -71
[ 1795.927223][T29780] usb usb10-port1: attempt power cycle
[ 1796.465791][T31875] fuse: Bad value for 'fd'
[ 1801.601423][T31927] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1801.634838][T31927] CIFS mount error: No usable UNC path provided in device string!
[ 1801.634838][T31927] 
[ 1801.634863][T31927] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1801.843622][T31938] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[ 1807.151242][T31982] 9pnet: Insufficient options for proto=fd
[ 1807.187644][T31982] netlink: 'syz.8.8137': attribute type 10 has an invalid length.
[ 1808.232861][T31994] netlink: 'syz.8.8141': attribute type 4 has an invalid length.
[ 1815.238358][T32040] tunl0: Caught tx_queue_len zero misconfig
[ 1817.955514][T32061] netlink: 'syz.6.8161': attribute type 4 has an invalid length.
[ 1828.463183][   T26] kauditd_printk_skb: 4 callbacks suppressed
[ 1828.463201][   T26] audit: type=1107 audit(2000001294.104:745): pid=32132 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[ 1830.091860][ T1423] ieee802154 phy0 wpan0: encryption failed: -22
[ 1830.098247][ T1423] ieee802154 phy1 wpan1: encryption failed: -22
[ 1832.591973][T32165] wlan0 speed is unknown, defaulting to 1000
[ 1833.718670][T32178] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1834.191669][T32171] orangefs_mount: mount request failed with -4
[ 1839.159327][T32227] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1839.166630][T32227] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1839.920726][T32241] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[ 1843.163322][T32252] wlan0 speed is unknown, defaulting to 1000
[ 1845.633581][T32266] mip6: mip6_destopt_init_state: state's mode is not 2: 0
[ 1845.641976][T32266] CIFS mount error: No usable UNC path provided in device string!
[ 1845.641976][T32266] 
[ 1845.652391][T32266] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1846.820015][T32272] orangefs_mount: mount request failed with -4
[ 1848.404284][T32312] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[ 1857.829195][T32361] wlan0 speed is unknown, defaulting to 1000
[ 1857.995152][T29780] Bluetooth: hci0: command 0x0409 tx timeout
[ 1859.366032][T26487] netdevsim netdevsim9 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1859.468918][T32395] netlink: 4 bytes leftover after parsing attributes in process `syz.8.8242'.
[ 1859.866241][T26487] netdevsim netdevsim9 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1860.150929][T26487] netdevsim netdevsim9 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1860.196346][T29780] Bluetooth: hci0: command 0x041b tx timeout
[ 1860.289672][T26487] netdevsim netdevsim9 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1861.509213][T32404] wlan0 speed is unknown, defaulting to 1000
[ 1861.519119][T32361] chnl_net:caif_netlink_parms(): no params data found
[ 1861.812576][T32361] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1861.830751][T32361] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1861.854296][T32361] device bridge_slave_0 entered promiscuous mode
[ 1861.891696][T32361] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1861.899434][T32361] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1861.907998][T32361] device bridge_slave_1 entered promiscuous mode
[ 1862.588732][T29780] Bluetooth: hci0: command 0x040f tx timeout
[ 1863.216220][T32437] RDS: rds_bind could not find a transport for fe80::aa, load rds_tcp or rds_rdma?
[ 1863.823126][T32361] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1864.148022][T32361] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1864.869629][T32361] team0: Port device team_slave_0 added
[ 1864.939622][T32361] team0: Port device team_slave_1 added
[ 1865.084515][T32361] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1865.116068][T32361] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1865.234040][T32361] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1865.307391][T32361] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1865.314916][T29786] Bluetooth: hci0: command 0x0419 tx timeout
[ 1865.323448][T32361] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1865.349774][T32361] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1865.385687][T32361] device hsr_slave_0 entered promiscuous mode
[ 1865.392873][T32361] device hsr_slave_1 entered promiscuous mode
[ 1865.399589][T32361] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1865.407285][T32361] Cannot create hsr debugfs directory
[ 1866.574986][T29869] wlan0 speed is unknown, defaulting to 1000
[ 1866.643942][T29869] ==================================================================
[ 1866.653288][T29869] BUG: KASAN: use-after-free in siw_query_port+0x358/0x450
[ 1866.660573][T29869] Read of size 4 at addr ffff888078bb40d8 by task kworker/0:7/29869
[ 1866.668589][T29869] 
[ 1866.670952][T29869] CPU: 0 PID: 29869 Comm: kworker/0:7 Not tainted syzkaller #0
[ 1866.678521][T29869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1866.688610][T29869] Workqueue: infiniband ib_cache_event_task
[ 1866.694558][T29869] Call Trace:
[ 1866.697865][T29869]  <TASK>
[ 1866.700825][T29869]  dump_stack_lvl+0x188/0x250
[ 1866.705579][T29869]  ? show_regs_print_info+0x20/0x20
[ 1866.710813][T29869]  ? _printk+0xda/0x130
[ 1866.715016][T29869]  ? load_image+0x400/0x400
[ 1866.719660][T29869]  ? _raw_spin_lock_irqsave+0xbc/0x100
[ 1866.725228][T29869]  print_address_description+0x60/0x2d0
[ 1866.730808][T29869]  ? siw_query_port+0x358/0x450
[ 1866.735714][T29869]  kasan_report+0xdf/0x130
[ 1866.740166][T29869]  ? siw_query_port+0x358/0x450
[ 1866.745138][T29869]  siw_query_port+0x358/0x450
[ 1866.749857][T29869]  ib_cache_update+0x1bf/0x9c0
[ 1866.754681][T29869]  ? ib_cache_setup_one+0x5d0/0x5d0
[ 1866.759917][T29869]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1866.765938][T29869]  ? read_lock_is_recursive+0x10/0x10
[ 1866.771351][T29869]  ib_cache_event_task+0xd4/0x1c0
[ 1866.776429][T29869]  process_one_work+0x85f/0x1010
[ 1866.781425][T29869]  ? worker_detach_from_pool+0x240/0x240
[ 1866.787087][T29869]  ? lockdep_hardirqs_off+0x70/0x100
[ 1866.792495][T29869]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1866.797551][T29869]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1866.803137][T29869]  ? wq_worker_running+0x97/0x170
[ 1866.808199][T29869]  worker_thread+0xaa6/0x1290
[ 1866.812924][T29869]  ? lockdep_hardirqs_on+0x94/0x140
[ 1866.818152][T29869]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1866.824096][T29869]  kthread+0x436/0x520
[ 1866.828201][T29869]  ? rcu_lock_release+0x20/0x20
[ 1866.833080][T29869]  ? kthread_blkcg+0xd0/0xd0
[ 1866.837708][T29869]  ret_from_fork+0x1f/0x30
[ 1866.842170][T29869]  </TASK>
[ 1866.845219][T29869] 
[ 1866.847566][T29869] The buggy address belongs to the page:
[ 1866.853264][T29869] page:ffffea0001e2ed00 refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x78bb4
[ 1866.863445][T29869] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[ 1866.870595][T29869] raw: 00fff00000000000 ffffea0001424208 ffff8880b90409f0 0000000000000000
[ 1866.879212][T29869] raw: 0000000000000000 0000000000000000 00000000ffffffff 0000000000000000
[ 1866.887818][T29869] page dumped because: kasan: bad access detected
[ 1866.894270][T29869] page_owner tracks the page as freed
[ 1866.899664][T29869] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x546dc0(GFP_USER|__GFP_NOWARN|__GFP_RETRY_MAYFAIL|__GFP_COMP|__GFP_ZERO|__GFP_ACCOUNT), pid 29486, ts 1629868922500, free_ts 1866621473703
[ 1866.919759][T29869]  get_page_from_freelist+0x1bbd/0x1ca0
[ 1866.925353][T29869]  __alloc_pages+0x1ee/0x480
[ 1866.929976][T29869]  kmalloc_large_node+0x7d/0x190
[ 1866.934951][T29869]  __kmalloc_node+0x232/0x3b0
[ 1866.939680][T29869]  kvmalloc_node+0x84/0x130
[ 1866.944215][T29869]  alloc_netdev_mqs+0x84/0xc40
[ 1866.949017][T29869]  ieee80211_if_add+0x11f8/0x1dc0
[ 1866.954165][T29869]  ieee80211_register_hw+0x2bde/0x3af0
[ 1866.959706][T29869]  mac80211_hwsim_new_radio+0x20d3/0x4080
[ 1866.965464][T29869]  hwsim_new_radio_nl+0xa6f/0xc40
[ 1866.970520][T29869]  genl_rcv_msg+0xcea/0xf90
[ 1866.975063][T29869]  netlink_rcv_skb+0x1f5/0x440
[ 1866.980027][T29869]  genl_rcv+0x24/0x40
[ 1866.984036][T29869]  netlink_unicast+0x774/0x920
[ 1866.988830][T29869]  netlink_sendmsg+0x8ba/0xbe0
[ 1866.993621][T29869]  __sys_sendto+0x46d/0x620
[ 1866.998154][T29869] page last free stack trace:
[ 1867.002845][T29869]  free_unref_page_prepare+0x637/0x6c0
[ 1867.008336][T29869]  free_unref_page+0x8f/0x2a0
[ 1867.013038][T29869]  free_nonslab_page+0xe2/0x150
[ 1867.017908][T29869]  device_release+0x92/0x1c0
[ 1867.022539][T29869]  kobject_put+0x21d/0x460
[ 1867.026981][T29869]  netdev_run_todo+0x8f4/0xa70
[ 1867.031770][T29869]  ieee80211_unregister_hw+0x5a/0x220
[ 1867.037256][T29869]  mac80211_hwsim_del_radio+0x282/0x470
[ 1867.042846][T29869]  hwsim_exit_net+0x589/0x650
[ 1867.047585][T29869]  cleanup_net+0x706/0xba0
[ 1867.052033][T29869]  process_one_work+0x85f/0x1010
[ 1867.057015][T29869]  worker_thread+0xaa6/0x1290
[ 1867.061989][T29869]  kthread+0x436/0x520
[ 1867.066094][T29869]  ret_from_fork+0x1f/0x30
[ 1867.070542][T29869] 
[ 1867.072891][T29869] Memory state around the buggy address:
[ 1867.078545][T29869]  ffff888078bb3f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[ 1867.086640][T29869]  ffff888078bb4000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[ 1867.094738][T29869] >ffff888078bb4080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 1867.102823][T29869]                                                     ^
[ 1867.109818][T29869]  ffff888078bb4100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 1867.117908][T29869]  ffff888078bb4180: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[ 1867.126166][T29869] ==================================================================
[ 1867.134252][T29869] Disabling lock debugging due to kernel taint
[ 1867.389779][T29869] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 1867.397152][T29869] CPU: 0 PID: 29869 Comm: kworker/0:7 Tainted: G    B             syzkaller #0
[ 1867.406117][T29869] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1867.416312][T29869] Workqueue: infiniband ib_cache_event_task
[ 1867.422251][T29869] Call Trace:
[ 1867.425570][T29869]  <TASK>
[ 1867.428523][T29869]  dump_stack_lvl+0x188/0x250
[ 1867.433246][T29869]  ? show_regs_print_info+0x20/0x20
[ 1867.438486][T29869]  ? load_image+0x400/0x400
[ 1867.443040][T29869]  panic+0x2e5/0x810
[ 1867.446974][T29869]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 1867.453262][T29869]  ? bpf_jit_dump+0xd0/0xd0
[ 1867.457805][T29869]  ? _raw_spin_unlock_irqrestore+0x10d/0x120
[ 1867.463829][T29869]  ? _raw_spin_unlock+0x40/0x40
[ 1867.468715][T29869]  ? siw_query_port+0x358/0x450
[ 1867.473593][T29869]  check_panic_on_warn+0x80/0xa0
[ 1867.478560][T29869]  ? siw_query_port+0x358/0x450
[ 1867.483439][T29869]  end_report+0x6d/0xf0
[ 1867.487623][T29869]  kasan_report+0x102/0x130
[ 1867.492174][T29869]  ? siw_query_port+0x358/0x450
[ 1867.497051][T29869]  siw_query_port+0x358/0x450
[ 1867.501762][T29869]  ib_cache_update+0x1bf/0x9c0
[ 1867.506559][T29869]  ? ib_cache_setup_one+0x5d0/0x5d0
[ 1867.511786][T29869]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[ 1867.517794][T29869]  ? read_lock_is_recursive+0x10/0x10
[ 1867.523201][T29869]  ib_cache_event_task+0xd4/0x1c0
[ 1867.528265][T29869]  process_one_work+0x85f/0x1010
[ 1867.533241][T29869]  ? worker_detach_from_pool+0x240/0x240
[ 1867.538920][T29869]  ? lockdep_hardirqs_off+0x70/0x100
[ 1867.544244][T29869]  ? _raw_spin_lock_irq+0xb7/0xf0
[ 1867.549310][T29869]  ? _raw_spin_lock_irqsave+0x100/0x100
[ 1867.554906][T29869]  ? wq_worker_running+0x97/0x170
[ 1867.559966][T29869]  worker_thread+0xaa6/0x1290
[ 1867.564691][T29869]  ? lockdep_hardirqs_on+0x94/0x140
[ 1867.569926][T29869]  ? _raw_spin_unlock_irqrestore+0xc1/0x120
[ 1867.575867][T29869]  kthread+0x436/0x520
[ 1867.579970][T29869]  ? rcu_lock_release+0x20/0x20
[ 1867.584876][T29869]  ? kthread_blkcg+0xd0/0xd0
[ 1867.589500][T29869]  ret_from_fork+0x1f/0x30
[ 1867.593947][T29869]  </TASK>
[ 1867.597306][T29869] Kernel Offset: disabled
[ 1867.601671][T29869] Rebooting in 86400 seconds..