last executing test programs:

13.57401897s ago: executing program 0 (id=218):
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000002900)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x2000010, &(0x7f0000000c00)=ANY=[], 0x1, 0x6df, &(0x7f0000000680)="$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")
open(&(0x7f0000000100)='./bus\x00', 0x143142, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x8000, 0x80)
getdents(r0, &(0x7f0000001fc0)=""/184, 0x2000208e)

13.409700381s ago: executing program 3 (id=219):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
fcntl$lock(0xffffffffffffffff, 0x24, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
unshare(0x22020400)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000001c0)=@base={0x12, 0x5, 0x4, 0x2}, 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000180)={{r2}, &(0x7f0000000040), &(0x7f0000000140)=r1}, 0x20)

13.327207141s ago: executing program 0 (id=220):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
setfsgid(0xee01)
r3 = syz_open_procfs(0x0, &(0x7f0000000100)='task\x00')
fchdir(r3)
mount(0x0, &(0x7f0000000080)='.\x00', &(0x7f0000000000)='proc\x00', 0x800000, 0x0)
r4 = syz_clone(0x20100000, 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = syz_open_procfs(r4, &(0x7f0000000240)='wchan\x00')
pread64(r5, &(0x7f0000000100)=""/45, 0x2d, 0x40000000009)

13.209243356s ago: executing program 3 (id=222):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="0000000000004a641c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff0000000001000000000000d7", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800a000100767863616e0000000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x4)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000340)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c00000010001fff000000008000000000000000", @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB="240012800b00010062726964676500"], 0x4c}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r7)
getsockname$packet(r7, &(0x7f0000000680)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r8, @ANYBLOB="01"], 0x3c}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x1, 0x803, 0x0)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r11}, @IFLA_MASTER={0x8, 0xa, r11}]}, 0x4c}}, 0x884)

12.272539355s ago: executing program 0 (id=227):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4f22}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
setsockopt$TIPC_GROUP_JOIN(0xffffffffffffffff, 0x10f, 0x87, &(0x7f0000000040)={0x42, 0x3}, 0x10)
socket$tipc(0x1e, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x16, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0x79, 0x10, 0x90}, [@ldst={0x3, 0x0, 0xb}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @flow_dissector}, 0x48)

12.200104935s ago: executing program 3 (id=228):
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x3e, &(0x7f0000001180)={@local, @random="9dffc4ab6675", @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x8, 0x0, 0xff, @ipv4={'\x00', '\xff\xff', @empty}, @mcast2, {[@routing={0x84, 0x0, 0x2}]}}}}}, 0x0)

11.944164641s ago: executing program 3 (id=230):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x2002, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CAP_X86_DISABLE_EXITS(r1, 0x4068aea3, &(0x7f0000000080)={0x8f, 0x0, 0x8})
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)

10.964406549s ago: executing program 0 (id=232):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x404, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRES8, @ANYRES8], 0x1, 0x122e, &(0x7f0000002580)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000700)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000540)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f0000000480), 0x400034f, 0x2, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0)
fcntl$setlease(r2, 0x400, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0x24b9)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'nr0\x00', 0x6132})
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
shutdown(r4, 0x1)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000540)='./file5\x00', 0x482c0, 0x0)
r6 = fanotify_init(0xf00, 0x0)
fanotify_mark(r6, 0x105, 0x5000003a, r5, 0x0)

10.285662506s ago: executing program 3 (id=234):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x3, &(0x7f0000000340)=ANY=[], &(0x7f0000000100)='syzkaller\x00'}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000100)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x40f00, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x94)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSETD(r3, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r3, 0x400455c8, 0x400000009)
ioctl$TIOCVHANGUP(r3, 0x5437, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000cc0)={0x0, 0x0, &(0x7f0000000ac0)={&(0x7f0000000bc0)=ANY=[@ANYBLOB="14000000100001f500000000000000000100000a14000000020a497f75241d"], 0x3c}, 0x1, 0x0, 0x0, 0x2004c040}, 0xc050)
setsockopt$inet_IP_IPSEC_POLICY(0xffffffffffffffff, 0x0, 0x10, 0x0, 0x26)

9.061372651s ago: executing program 1 (id=237):
sendmmsg(0xffffffffffffffff, &(0x7f0000005240)=[{{0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000001c0)="981773659371552ee4393b915c935c3314f22543e1c3a6857207258736d3b994d4b1d1f5e442aea532409f9491f570a51415ca15740cf2eb6f511a86dac27e02262b93", 0x43}], 0x1}}], 0x1, 0x40000)
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f00000001c0)={'syztnl0\x00', &(0x7f0000000080)={'ip6tnl0\x00', 0x0, 0x29, 0xf, 0xfa, 0x70, 0x5a, @remote, @empty, 0x40, 0x80, 0xff, 0x146c}})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000300)=[@text16={0x10, 0x0}], 0x1, 0x31, 0x0, 0x0)
r3 = dup(r2)
ioctl$KVM_SET_VCPU_EVENTS(r3, 0x4400ae8f, &(0x7f0000000000)=@x86={0x3, 0x1, 0xfb, 0x0, 0x10002, 0x5, 0x3, 0xd4, 0x7, 0x2, 0x4, 0x1, 0x0, 0x7, 0x3, 0xd6, 0x5, 0x9, 0x6, '\x00', 0x8, 0x1})
ioctl$KVM_SET_VAPIC_ADDR(r3, 0x4008ae93, &(0x7f00000002c0)=0x10000)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

7.681370116s ago: executing program 1 (id=240):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
setsockopt$SO_BINDTODEVICE(0xffffffffffffffff, 0x1, 0x19, 0x0, 0x0)
mkdirat$cgroup(r0, &(0x7f0000000080)='syz0\x00', 0x1ff)
r1 = openat$cgroup_type(0xffffffffffffffff, &(0x7f0000000040), 0x2, 0x0)
write$cgroup_type(r1, &(0x7f00000000c0), 0x9)

7.477518665s ago: executing program 1 (id=241):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0xfa, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr', 0x3)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000600)=0xdfa, 0x4)
sendmmsg$inet(r0, &(0x7f0000004240)=[{{0x0, 0x0, &(0x7f00000019c0)=[{&(0x7f0000001800)="e9d7b200bf6ecf325e1a9c0dccd8c357998ad687717f392aab546e2ad010fb16c3120d5c20a62654dfa7da737faea449d323a40f6b39ce3ccea07331a90678979abfde57efde701f4c14b7897b8ef0530b2eecee7536d3c0186c646980b6c78eaf6f4d9d55d211f1d5a38fe9f95f95e72127a07b02bd5f5b3bcb265680ae107e6cf387fb56fca7ecd4e7257f1dc5a9ac14a40036a3f8675e691f6f6e9067617ffa6045157cf5b7562f68838b5e13843d24469663f76355633256edfdebaeee1320c3303b3d", 0xc5}], 0x1}}, {{0x0, 0x0, &(0x7f0000001d00)}}, {{0x0, 0x0, &(0x7f0000004180)=[{&(0x7f0000002f00)="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", 0x4ea}], 0x1}}], 0x3, 0x40000)

7.329944897s ago: executing program 1 (id=242):
socket$packet(0x11, 0x2, 0x300)
syz_emit_ethernet(0x3e, &(0x7f0000001180)={@local, @random="9dffc4ab6675", @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "6410a6", 0x8, 0x0, 0xff, @ipv4={'\x00', '\xff\xff', @empty}, @mcast2, {[@routing={0x84, 0x0, 0x2}]}}}}}, 0x0)

7.015594517s ago: executing program 1 (id=244):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket$kcm(0xa, 0x2, 0x0)
r5 = socket(0x2, 0x80805, 0x0)
r6 = socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r6, 0x0, 0x482, &(0x7f0000000040)={0x84, @multicast1, 0x4e22, 0x3, 'wrr\x00', 0x9, 0x80005, 0x6f}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, &(0x7f0000000000)={{0x84, @private=0xa010102, 0x4e21, 0x3, 'lc\x00', 0x5, 0x8, 0x77}, {@remote, 0x4e20, 0x2, 0xcd}}, 0x44)
sendmsg$sock(r4, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b4000000000000007910480000000000610400000000000095000000"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x48)
close(r7)
r8 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$IEEE802154_LIST_IFACE(r8, &(0x7f0000000240)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1024000}, 0xc, &(0x7f00000001c0)={&(0x7f0000000380)={0x44, r9, 0x4, 0x70bd26, 0x25dfdbfc, {}, [@IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan3\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan4\x00'}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan0\x00'}]}, 0x44}, 0x1, 0x0, 0x0, 0x80}, 0x44001)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r10=>0xffffffffffffffff, <r11=>0xffffffffffffffff})
r12 = bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000540)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_skb, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x366, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
r13 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xf, 0x4, 0x4, 0x12}, 0x50)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000780)=ANY=[@ANYRES32=r13, @ANYRES32=r12, @ANYBLOB='&'], 0x10)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000000c0)={{r13}, &(0x7f0000000000), &(0x7f0000000080)=r7}, 0x20)
recvmsg$unix(r10, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f00000006c0)=""/184, 0xb8}], 0x1}, 0x0)
sendmsg$inet(r11, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000001740)=[{&(0x7f0000000280)='>', 0x33fe0}], 0x1}, 0x0)
setsockopt$IP_VS_SO_SET_FLUSH(r6, 0x0, 0x485, 0x0, 0x0)
writev(r3, &(0x7f0000000180)=[{&(0x7f0000000080)="390000001300034700bb65e1c3c6ffff01000000010000005600000025000000190004000400000047fd17e5ffff0800040000000000000000", 0x39}], 0x1)
ioctl$KVM_GET_CPUID2(r2, 0xc008ae91, &(0x7f00000000c0))

6.67359979s ago: executing program 4 (id=245):
syz_mount_image$exfat(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x2008802, &(0x7f00000001c0)=ANY=[@ANYBLOB='allow_utime=00000000000000000006605,errors=remount-ro,uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c696f636861727365743d69736f383835392d1e2c6e616d65636173653d312c6b6565705f6c6173745f646f74732c6769643d", @ANYRESHEX=0xee01, @ANYBLOB=',dmask=00000000000000000000001,errors=remount-ro,iocharset=cp1255,\x00'], 0x1, 0x1532, &(0x7f0000000940)="$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")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x8, 0x1)

6.100128517s ago: executing program 4 (id=246):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000180), 0x482, 0x0)
msgctl$IPC_STAT(0x0, 0x2, 0x0)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(0xffffffffffffffff, 0x0, 0x40000)
unshare(0x40020000)

6.072741768s ago: executing program 1 (id=247):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000200)=0xd9e, 0x4)
bind$inet(r0, &(0x7f00000001c0)={0x2, 0x0, @local}, 0x10)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast1}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
setsockopt$SO_J1939_SEND_PRIO(0xffffffffffffffff, 0x6b, 0x3, 0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000040), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)

5.649673797s ago: executing program 2 (id=248):
syz_genetlink_get_family_id$l2tp(0x0, 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000200)=0x632a, 0x4)
r1 = socket$kcm(0xa, 0x1, 0x0)
r2 = socket$kcm(0x2, 0xa, 0x2)
ioctl$sock_SIOCETHTOOL(r2, 0x89f1, &(0x7f00000002c0)={'ip6gre0\x00', &(0x7f0000000000)=@ethtool_rxnfc={0x0, 0x2, 0x6, {0x3, @usr_ip6_spec={@empty, @dev={0xfe, 0x80, '\x00', 0x24}, 0xfffffff8, 0x3d, 0xe}, {0x0, @remote, 0xe, 0x4, [0x7, 0x6]}, @ah_ip4_spec={@multicast1, @private=0xa010101, 0x0, 0x5}, {0x0, @empty, 0x6, 0x5, [0x6, 0x9]}, 0xff, 0x3}}})
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x8916, &(0x7f0000000000))
r3 = socket$kcm(0xa, 0x5, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x8916, &(0x7f0000000000)={r3})
ioctl$sock_kcm_SIOCKCMCLONE(r1, 0x8936, &(0x7f0000000000)={r3})

4.535235433s ago: executing program 2 (id=249):
setsockopt$ALG_SET_KEY(0xffffffffffffffff, 0x117, 0x1, 0x0, 0x0)
ioctl$VHOST_SET_OWNER(0xffffffffffffffff, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000001500)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/65, 0x0, 0xeeef0000})
ioctl$VHOST_SET_MEM_TABLE(0xffffffffffffffff, 0x4008af03, &(0x7f0000001900))
ioctl$VHOST_SET_VRING_ADDR(0xffffffffffffffff, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000001780)=""/191, 0x0, 0x80a0000})
ioctl$VHOST_VSOCK_SET_RUNNING(0xffffffffffffffff, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(0xffffffffffffffff, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0xe9ac0000)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)
connect$vsock_stream(r0, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)

4.241598042s ago: executing program 4 (id=250):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x404, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRES8, @ANYRES8], 0x1, 0x122e, &(0x7f0000002580)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000700)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000540)='./file5\x00', 0x482c0, 0x0)
r2 = fanotify_init(0xf00, 0x0)
fanotify_mark(r2, 0x105, 0x5000003a, r1, 0x0)

3.576576694s ago: executing program 4 (id=251):
socket$nl_netfilter(0x10, 0x3, 0xc)
creat(&(0x7f00000000c0)='./file0\x00', 0x0)
pipe(&(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x6)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
splice(r2, 0x0, r1, 0x0, 0xf3a, 0x0)
fcntl$setpipe(r0, 0x407, 0x9)
r6 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r6, 0x107, 0x12, 0x0, 0x0)
setsockopt$packet_int(r6, 0x107, 0xa, &(0x7f00000003c0)=0x2, 0x4)
setsockopt$packet_rx_ring(r6, 0x107, 0x5, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000540)={0x6, 0x3, &(0x7f0000000780)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x48}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000940)={0x6, 0x3, &(0x7f0000000780)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
dup3(r0, r1, 0x0)
signalfd4(0xffffffffffffffff, 0x0, 0x0, 0x0)
syz_clone3(0x0, 0x0)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r0, 0x40505412, 0x0)
io_setup(0x8, 0x0)
syz_open_procfs(0x0, 0x0)

2.484208415s ago: executing program 4 (id=252):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902240001000000000904000001030100000921000000012201000905810308"], 0x0)
syz_usb_control_io$hid(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000180)={0x24, 0x0, 0x0, &(0x7f0000000d80)=ANY=[@ANYBLOB="002205"], 0x0}, 0x0)
syz_usb_ep_write(r0, 0x81, 0xf8, &(0x7f00000002c0)="b9425b44651dd23241963599000000110000004a16941ff5f4b4f1f0add7fcf2b877fceafffffffffff1ffdf4cd9f5d3969890522c77157d88010000003a5bd5531d459dffff03000000000091ff000000e8f5b3371da3635b8b4fa637135800001f65e4b436aa9e50bc0f19b7d3372ff9ebcede1fb5e9428f54d5d1f0cc752cf246a5d2da34a5aa97dc14a469c3dd3e26b41c356484e46fd66e3f2c7807e8773eed7b94fa099ab84feadec2ea95f65bba452eae5b0900f98a979a88c517a2dc360a00237723e2f467af706ea17226296b3a10a351cb47aba2c6b836c90679b4dd859ddc9e4800448aab0000000000000d75f34bb50d8d70")

2.085610778s ago: executing program 2 (id=253):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000080)={0x0, 0x0})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="1a00000007"], 0x50)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
writev(0xffffffffffffffff, &(0x7f0000000100)=[{&(0x7f0000000000)='4', 0x1}], 0x1)
write$binfmt_misc(r0, &(0x7f0000000000), 0xd)

1.873531938s ago: executing program 2 (id=254):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000400)={0x18, 0x10, 0x0, 0x0, 0x3}, 0x94)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0xfffffffffffffffc, &(0x7f00000003c0))
ptrace$getregset(0x4205, r0, 0x2, &(0x7f0000000080)={0x0})

1.478181121s ago: executing program 2 (id=255):
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x18, 0xe, &(0x7f0000000200)=ANY=[@ANYBLOB="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"], 0x0}, 0x94)
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x8000}, 0x4)
bind$alg(0xffffffffffffffff, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000640)}, {&(0x7f00000006c0)="ac5bf07dfbe37df362733fa6e33fcfe007a76905029bf5f167a7418ebe47895ee8a38f7c4ae25d6ae91633bc0b5bcd5572d067fa7af73dfb4605ec2b21cbe0ca844c8033fe927cd5f154695e5c65c966e80d4a08ff27a975d2ae54226a99", 0x5e}], 0x2, &(0x7f0000002400)=[{0x10, 0x1, 0x8}], 0x10}, 0x40000)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f00000004c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-camellia-asm\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r1, 0x117, 0x1, &(0x7f0000000280)="ad56b6c5820fae9d6dcd3292ea54c7beef915d564c90c200", 0x18)
sendmsg$IPVS_CMD_GET_DEST(r0, &(0x7f0000000600)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x10805}, 0x44049)
r2 = accept4(r1, 0x0, 0x0, 0x800)
sendmmsg$alg(r2, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048"}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r2, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

1.374162906s ago: executing program 0 (id=256):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000100))
r2 = dup(r1)
ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af30, &(0x7f0000000040)={0x0, r2})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0)

1.108094336s ago: executing program 2 (id=257):
bind$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(0xffffffffffffffff, 0x0, 0x2a, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
write$6lowpan_enable(0xffffffffffffffff, 0x0, 0x0)
fcntl$lock(0xffffffffffffffff, 0x6, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x9)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)

287.285334ms ago: executing program 4 (id=258):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r1, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="0000000000004a641c0012000c000100626f6e64000000000c0002000800010006"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010001fff0000000001000000000000d7", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800a000100767863616e0000000400028008000a00", @ANYRES32=r2], 0x3c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
r4 = socket(0x10, 0x803, 0x4)
sendmsg$IPVS_CMD_SET_INFO(r4, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r4, &(0x7f0000000340)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)=ANY=[@ANYBLOB="4c00000010001fff000000008000000000000000", @ANYRES32=0x0, @ANYRES32=r5, @ANYBLOB="240012800b00010062726964676500"], 0x4c}, 0x1, 0x0, 0x0, 0x2000c0c1}, 0x40000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket(0x10, 0x803, 0x2)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r7)
getsockname$packet(r7, &(0x7f0000000680)={0x11, 0x0, <r8=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000003c0)=0x14)
sendmsg$nl_route(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000040)=ANY=[@ANYBLOB="3c0000001000010400eeffff11ffffffff000000", @ANYRES32=r8, @ANYBLOB="01"], 0x3c}}, 0x0)
r9 = socket$nl_route(0x10, 0x3, 0x0)
r10 = socket(0x1, 0x803, 0x0)
getsockname$packet(r10, &(0x7f0000000100)={0x11, 0x0, <r11=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r9, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000380)=@newlink={0x4c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x300}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @macvlan={{0xc}, {0xc, 0x2, 0x0, 0x1, [@IFLA_MACVLAN_MODE={0x8, 0x1, 0x8}]}}}, @IFLA_LINK={0x8, 0x5, r11}, @IFLA_MASTER={0x8, 0xa, r11}]}, 0x4c}}, 0x884)

1.754747ms ago: executing program 0 (id=259):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, &(0x7f0000000280)="1a00000002000000", 0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
setsockopt(r1, 0x84, 0x80, &(0x7f0000000000)="1400000009000000", 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @ipv4={'\x00', '\xff\xff', @empty}}], 0x1c)
sendmsg$inet(r1, &(0x7f00000000c0)={&(0x7f0000000040)={0x2, 0x4e23, @loopback}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000100)="ff", 0x1}], 0x1}, 0x815)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f00000001c0)={0x0, @in={{0x2, 0x4e23, @loopback}}}, 0x84)

0s ago: executing program 3 (id=260):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x3, 0xe, &(0x7f0000000f40)=ANY=[@ANYBLOB="b702000014000000bfa30000000000000703000000feffff7a0af0ff0100000079a4f0ff00000000b7060000ffffffff2d6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe0000000085000000c0000000b70000000000000095000000000000005ecefab8f2e85c6c1ca711fcd0cdfa146ec561750379585e5a076d839240d29c03406910927c6b0b55b67dafe6c8dc3d5d78c07fa1f7e655ce34e4d5b3185fec0e07004e60c08dc8b8dbf11e6e94d75938321a3aa502cd2424a66e6d2ef831ab7ea0c34f17e3946ef3bb622003b538dfe79578e51bc53099e90f4580d760551b5b342f7cbdb9cd38bdb2209c676b2ac2deca8eeb9c15ab3a14817ac61e4dd11183a13477bf7e860e3670ef0e789f65f132020000002cbe7bc04b82d2789cb1b2b8667c2147661df28d9961b63e1a9cf6c2a660a1fe3c184b751c51160fb20b1c581e7be6ba0dc001c41146dfebd38608b3280080005d9a9500000000000000334d83239dd27080851dcac3c12233f9a1fb9c2aec61ce63a38d2fd50117b89a42b359b4eea0c6e95767d42b4e54861d0227dbfd2e6d7f715a7f3deadd7130856f756436303767d2e24f29e5dad9796edb697aeea0182babd18cac1bd4f4390af9a9ceafd0002cab154ad029a1090000002780c70014f51c3c975d5aec84222fff0d7216fdb0d3a0ec4be3e506d1387b63112f0b39501aafe234870072858dc06e7c337642d3e5a815232f5e16c1b30c3a6a71bc85018e5ff2c91018afc9ffc2cc788bee1b47683db01a469398685211dfbbae3e2ed0a50e7313bff5d4c391ddece08ac772dd6b4d4de2a41990f05ca3bdfc92c88c5b8dcd36e7487afa447e2ef0ae4f390a8337841cef386e22cc22ee17476d738952229682e24b92533ac2a9f5a699593f084419cae0b4532bcc97d3ae486aca54183fb01c73f979ca9857399537f5dc2a3f8b6e74ce23877a6b24db0e067345560942fa629fbef2461c96a088a22e8b15c3e233db7ab22e30d46a9d24d37cef099bdae7ed04935c2c90d3add8eebc8619d73415cda2130f5011e48455b5a8b90dfae158b94f50adeb988dd8e12baf5cc9398fff00404d5d99f82e20ee6a8c88e18c2977aab37d9ac4cfc1c7b400000000000007ffa3c39495c826b956ba859ac8e3c177b91bd7d5e41ff868f7ca1664fe4a3ced846891180604b6dd2499d16d7d9158ffffff069dc42749a89f854797f29d0000002d8c38a967c1bbe09315c29877a331bcc87dc3addb0814040000007874b2f663ddeef0005b3d96c7aabf4df517d90bdc01e73835d5a3e1a90800c66ee2b1ad76dff9f9000071414c99d4894ee7f8249dbae3428d2129ecfce1b85af6eb2eea0d0df414b315f651c8412392191fa83ee830548f11e1036a8debd64cbe359454a3f2239cfe35f81b7a490f167e6d5c1109000000000000000042b8ff8c21ad702ccacad5b39eef213d1ca296c6a298c8ce2a305c0c7d35cf4b22549a4bd92052188bd1f285f653b621491dc6aaee0200e2ff08644fb94c06006eff1be2f633c1d987591ec3db58a7bb3042ec3f771f050000000000000026049fe86e09623524f390bf79b441b75fc790c58e273cd905deb28c13c1ed1c0d9cae846b03008cce7b893e578af7dc7d5e87d44ff828de453f34c2b18660b080efc707e676e1fb4d5825c0ca177a4c7fbb4e62b445c00f576b2b5cc7f819abd0f885cc48f97496079654f5a2d38708194cd6f496e5dee734fe7da3770845cf442d488afdc0e17000000000000000000000000000000000000000000000000000005205000000dc1c56d59f35d367632952a93466ae595c6a8cda690d192a070886df42b27098773b45198b4a34ac977ebd4450e121d01342703f5bf030e935878a6d169c80aa4252d4ea6b8f6216ff202b5b5a182cb5e838b307632d03a7ca6f6d0339f9953c3093c3690d10ecb65dc5b4749c28eb5167e9936ed327fb237a56224e49d9ea956d1798571b3ccd35364600000000000000000000000000000000000000000000000000000000000026ded4dd6fe1518cc7802043ecf743f1213bf8179ecd9e5a225d67521dc728eac7d80a5656ac2cbde21d3ebfbf69ff861f4394836ddf128d6d19079e64336e7c676505c78ad67548f4b192be182724d95cf107753cb0a6a979d3db0c407081c6281e2d8429a863903ca75f4c7df3ea8fc2018d07af1491ef060cd0403a099f32468f1561f058960d12969bc982ff5d8e9b986c0c6c747d9a1cc500bb892c3a16ff10feea20bdac0000000000000000ca06f256c8028e0f9b656dc0e32384f037b21f3289f86a6826c69fa35ba5cbc3f2db1516ffc5c6e3fa618b24a6ce16d6c7010bbe3e8ef76f57a2d0e69115d33394e86e4b83c0f3c2a34635f3eee4746e92dea6c5d1d33d84d96b50fb000000ae07c65b71088dd7d5d1e1bab9000000000000000000000000b5ace293bec833c13e3229432ad71d646218b5229dd88137fc7c59aa242af3bb4efb82055a3b61227ad40f52c9f2500579aca11033ec14bb9cc16bd83a00840e31d828ec78e116ae46c4897e2795b6ff92e9a1e24b0b855c02f2b7add58ffb25f339297729a7a51810134d3dfbf71f6516737be55c06d9cd082027c641ec4355eb4acff90756d1a1ecf9f58afd3c19b5c4558ba9af6b7333c894a1fb29ade9ad75c9c022e8cc3fe28bc3586844f5fecb92aa771dbfe80745fe89ad349ffaad76ff9dd643796caffdf67af5dd476c37e7e9a84e2e5da2696e285a5906002fb0e16d8262c080c159ce40c14089c82759106f422582b42e3e8484ea5a6ad9aa52106eafe0e0caea1ad4cb23f3c2b8a0f455ba69ea284c268d54b43158a8b1d128ab794c9ac57a2a7332f4d8764c302ccd5aac114482b619fc575aa0dd2777e881e29a854380e2f1e49db5a1517ec40bb3fa44f9959bad67ccaba76408da35c9f1534c8bd48bbd61627a2e0afd9ae134400f70b5e6aefb7eee403502732df858a2ea033b6c91c673b6079e65d7295eed164ca63e4ea26dce0fb3ce0f6591d80ffb8f386bb79f5589829b6b0679b5d65a00000000000000e6ff00000000000000000000faff0000bab50bc8508a9644d3e7c328b0ff22035c8073f8c1f0e3da7339fc81d4ab3ef2857ef70a81d8a1628da28c942571880e22df7cabae56d5ff5e483c9c1f5a258b8f1f34cc300312f76a374a6e9b3f9dbd7f538a80b00f97e47895b3201c5126feca0888956a7d768198d9c2109ac508a47ebb99c539ef45af7d87b308117a9e321a3861bc42cf41942c31268a4020221d7b1622585094eddd83c7f4acdd7f5c23d8b730bf03118261edada8b8487a3b1b7548a4687a91f12bf70bb1df3bfe7d4b92ad6fcbf401efd6eb004cf20016ad8d1dad136dd856ffca238b39482811f9c8524bf182f1956a3d044423927df28880bbd11c06407220df8e1d1d483d947d990dc175803d765ca14a915a0040b641959ad3e776b4bb4852fea12983dc18b7404914a6137dc4a78f1e0d331c60a9019c21698cd18753491df962f496f2395563e9c3d7b1228d0e488cf7e50a29541aa757f2e2ee9ff4433d65db0de5a123d569e39dce481156cbec584c9a32a8e3b032fa003192c891d83119bc950abac9147b9fcb0acd9a207b5ceb7e8ed1d91c000000000000000000000000000000141258373281153fa27e586ea82650f070d8851ac9e7ac07b37a6479d4017b5b5af3ff4c91235df4f657d77e386a329aec4d766369c86b62b01ceb028c6fcf206883633cb143016b9f5351a45a8cb4ea110ba700000000000000883416b6eff6a793c71deb7d780c4f51d86ece127c0714144916f397d398ad2fe72b710b932c15c2369cb5d2d2f6ae420672c4a626195a891ac51825077fbc286aa3866bbf18a4a8b836ea8c90af0d5f0aff55b50bc18c27875ed2628b91224b7fa9fd10ccd7c1b1a92bac529df981a6d30100e68555553625c0e91a51000000000000000000fe030f85b294f3ea1fce314a9dcefbe3b64e83c35c5e95734786ca78315793cc0e6e776d2ec07c55cd89541ec25e074e840287011cab538d79e1569df321282071d49a4dc5fb2d7da1d05249d0e153fd04aca2", @ANYRES8], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x16, 0x0, 0xffffffffffffffff, 0xffffffffffffffc9}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r2, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000100)="06ff03076844babeb89e14f00813", 0x0, 0xfe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe7000/0x18000)=nil, &(0x7f0000000000)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
sendmsg(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000080)='\x00', 0x1}], 0x1, 0x0, 0x0, 0x2c}, 0x44004)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.117' (ED25519) to the list of known hosts.
[   74.767873][ T5827] cgroup: Unknown subsys name 'net'
[   74.897854][ T5827] cgroup: Unknown subsys name 'cpuset'
[   74.907377][ T5827] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   76.508533][ T5827] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   78.842600][ T5847] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   78.853022][ T5851] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   78.862069][ T5851] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   78.873485][ T5851] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   78.883846][ T5851] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   78.891835][ T5851] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   78.908771][ T5859] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   78.916900][ T5851] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   78.924252][ T5851] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   78.932370][ T5859] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   78.942031][ T5851] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   78.949724][ T5859] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   78.957776][ T5851] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   78.961103][ T5856] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   78.968376][ T5859] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   78.973832][ T5856] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   78.987645][ T5862] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   78.996566][ T5861] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   79.000654][ T5856] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   79.009411][ T5861] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   79.017446][ T5856] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   79.022234][ T5861] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   79.025190][   T51] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   79.038848][ T5862] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   79.048219][ T5850] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   79.722584][ T5839] chnl_net:caif_netlink_parms(): no params data found
[   79.752729][ T5840] chnl_net:caif_netlink_parms(): no params data found
[   79.812964][ T5841] chnl_net:caif_netlink_parms(): no params data found
[   79.838769][ T5845] chnl_net:caif_netlink_parms(): no params data found
[   80.005254][ T5849] chnl_net:caif_netlink_parms(): no params data found
[   80.165332][ T5840] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.173358][ T5840] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.180952][ T5840] bridge_slave_0: entered allmulticast mode
[   80.188762][ T5840] bridge_slave_0: entered promiscuous mode
[   80.210269][ T5839] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.217542][ T5839] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.224846][ T5839] bridge_slave_0: entered allmulticast mode
[   80.232373][ T5839] bridge_slave_0: entered promiscuous mode
[   80.258925][ T5840] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.266342][ T5840] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.273519][ T5840] bridge_slave_1: entered allmulticast mode
[   80.281449][ T5840] bridge_slave_1: entered promiscuous mode
[   80.289779][ T5841] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.297067][ T5841] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.304727][ T5841] bridge_slave_0: entered allmulticast mode
[   80.312450][ T5841] bridge_slave_0: entered promiscuous mode
[   80.321256][ T5839] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.328527][ T5839] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.335824][ T5839] bridge_slave_1: entered allmulticast mode
[   80.343370][ T5839] bridge_slave_1: entered promiscuous mode
[   80.357795][ T5845] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.365227][ T5845] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.372432][ T5845] bridge_slave_0: entered allmulticast mode
[   80.380355][ T5845] bridge_slave_0: entered promiscuous mode
[   80.400871][ T5841] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.408710][ T5841] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.416292][ T5841] bridge_slave_1: entered allmulticast mode
[   80.423945][ T5841] bridge_slave_1: entered promiscuous mode
[   80.448252][ T5845] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.455651][ T5845] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.462858][ T5845] bridge_slave_1: entered allmulticast mode
[   80.470768][ T5845] bridge_slave_1: entered promiscuous mode
[   80.555808][ T5840] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.583060][ T5839] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.609856][ T5845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.623139][ T5840] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.637698][ T5841] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.650589][ T5839] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.660187][ T5849] bridge0: port 1(bridge_slave_0) entered blocking state
[   80.667842][ T5849] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.675342][ T5849] bridge_slave_0: entered allmulticast mode
[   80.682946][ T5849] bridge_slave_0: entered promiscuous mode
[   80.694730][ T5845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.720355][ T5841] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   80.742673][ T5849] bridge0: port 2(bridge_slave_1) entered blocking state
[   80.750167][ T5849] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.758012][ T5849] bridge_slave_1: entered allmulticast mode
[   80.765717][ T5849] bridge_slave_1: entered promiscuous mode
[   80.825693][ T5839] team0: Port device team_slave_0 added
[   80.857928][ T5840] team0: Port device team_slave_0 added
[   80.878995][ T5839] team0: Port device team_slave_1 added
[   80.900539][ T5845] team0: Port device team_slave_0 added
[   80.909316][ T5840] team0: Port device team_slave_1 added
[   80.918250][ T5841] team0: Port device team_slave_0 added
[   80.940594][ T5849] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   80.952910][ T5845] team0: Port device team_slave_1 added
[   80.990240][ T5841] team0: Port device team_slave_1 added
[   81.013192][ T5849] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   81.036465][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.043411][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.069696][ T5840] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.094555][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.101605][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.126882][ T5861] Bluetooth: hci3: command tx timeout
[   81.127817][ T5850] Bluetooth: hci2: command tx timeout
[   81.133722][ T5861] Bluetooth: hci1: command tx timeout
[   81.139303][ T5161] Bluetooth: hci0: command tx timeout
[   81.145335][ T5856] Bluetooth: hci4: command tx timeout
[   81.152994][ T5839] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.194603][ T5840] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.201690][ T5840] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.228187][ T5840] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.252998][ T5839] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.260021][ T5839] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.286064][ T5839] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.311796][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.318978][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.345388][ T5845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.366335][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.373275][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.399579][ T5841] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.420594][ T5849] team0: Port device team_slave_0 added
[   81.427624][ T5845] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.434896][ T5845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.461129][ T5845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.485372][ T5841] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.492355][ T5841] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.518710][ T5841] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.533938][ T5849] team0: Port device team_slave_1 added
[   81.570306][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_0
[   81.577573][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.603577][ T5849] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   81.646872][ T5849] batman_adv: batadv0: Adding interface: batadv_slave_1
[   81.653899][ T5849] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   81.680323][ T5849] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   81.787592][ T5841] hsr_slave_0: entered promiscuous mode
[   81.795286][ T5841] hsr_slave_1: entered promiscuous mode
[   81.822115][ T5845] hsr_slave_0: entered promiscuous mode
[   81.829401][ T5845] hsr_slave_1: entered promiscuous mode
[   81.836509][ T5845] debugfs: 'hsr0' already exists in 'hsr'
[   81.842314][ T5845] Cannot create hsr debugfs directory
[   81.854579][ T5840] hsr_slave_0: entered promiscuous mode
[   81.861730][ T5840] hsr_slave_1: entered promiscuous mode
[   81.868684][ T5840] debugfs: 'hsr0' already exists in 'hsr'
[   81.874841][ T5840] Cannot create hsr debugfs directory
[   81.889410][ T5839] hsr_slave_0: entered promiscuous mode
[   81.896422][ T5839] hsr_slave_1: entered promiscuous mode
[   81.903120][ T5839] debugfs: 'hsr0' already exists in 'hsr'
[   81.909008][ T5839] Cannot create hsr debugfs directory
[   81.989615][ T5849] hsr_slave_0: entered promiscuous mode
[   81.996943][ T5849] hsr_slave_1: entered promiscuous mode
[   82.003875][ T5849] debugfs: 'hsr0' already exists in 'hsr'
[   82.014016][ T5849] Cannot create hsr debugfs directory
[   82.676911][ T5839] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   82.692204][ T5839] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   82.704403][ T5839] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   82.716975][ T5839] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   82.799747][ T5845] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   82.815649][ T5845] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   82.828567][ T5845] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   82.846218][ T5845] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   82.952312][ T5840] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   82.977254][ T5840] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   82.991045][ T5840] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   83.003106][ T5840] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   83.141484][ T5841] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   83.161469][ T5841] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   83.174989][ T5841] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   83.187717][ T5841] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   83.205108][ T5856] Bluetooth: hci4: command tx timeout
[   83.205239][ T5844] Bluetooth: hci0: command tx timeout
[   83.210739][ T5161] Bluetooth: hci2: command tx timeout
[   83.218425][ T5861] Bluetooth: hci1: command tx timeout
[   83.222136][ T5850] Bluetooth: hci3: command tx timeout
[   83.267776][ T5839] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.363188][ T5845] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.413640][ T5839] 8021q: adding VLAN 0 to HW filter on device team0
[   83.422218][ T5849] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   83.442726][ T5849] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   83.453946][ T5849] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   83.479712][ T5845] 8021q: adding VLAN 0 to HW filter on device team0
[   83.486709][ T5849] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   83.508081][ T1170] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.515666][ T1170] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.539379][ T1170] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.546541][ T1170] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.588520][ T1170] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.595656][ T1170] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.623157][ T1170] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.630391][ T1170] bridge0: port 2(bridge_slave_1) entered forwarding state
[   83.708985][ T5840] 8021q: adding VLAN 0 to HW filter on device bond0
[   83.765717][ T5839] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   83.864282][ T5840] 8021q: adding VLAN 0 to HW filter on device team0
[   83.923510][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.930737][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   83.980875][ T5841] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.002672][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.009923][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.127250][ T5849] 8021q: adding VLAN 0 to HW filter on device bond0
[   84.146919][ T5841] 8021q: adding VLAN 0 to HW filter on device team0
[   84.180774][ T1170] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.187976][ T1170] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.243598][ T1170] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.250786][ T1170] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.273547][ T5839] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.295193][ T5849] 8021q: adding VLAN 0 to HW filter on device team0
[   84.340318][ T1037] bridge0: port 1(bridge_slave_0) entered blocking state
[   84.347500][ T1037] bridge0: port 1(bridge_slave_0) entered forwarding state
[   84.385392][ T1170] bridge0: port 2(bridge_slave_1) entered blocking state
[   84.392690][ T1170] bridge0: port 2(bridge_slave_1) entered forwarding state
[   84.431042][ T5845] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.643319][ T5839] veth0_vlan: entered promiscuous mode
[   84.735828][ T5839] veth1_vlan: entered promiscuous mode
[   84.771751][ T5840] 8021q: adding VLAN 0 to HW filter on device batadv0
[   84.780894][ T5845] veth0_vlan: entered promiscuous mode
[   84.878942][ T5845] veth1_vlan: entered promiscuous mode
[   84.953056][ T5839] veth0_macvtap: entered promiscuous mode
[   84.980670][ T5839] veth1_macvtap: entered promiscuous mode
[   85.090710][ T5841] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.103068][ T5845] veth0_macvtap: entered promiscuous mode
[   85.133648][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.160287][ T5845] veth1_macvtap: entered promiscuous mode
[   85.190911][ T5839] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.249003][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_0
[   85.262404][ T1037] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.271841][ T1037] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.285539][ T5850] Bluetooth: hci0: command tx timeout
[   85.291176][ T5161] Bluetooth: hci4: command tx timeout
[   85.291239][ T5844] Bluetooth: hci2: command tx timeout
[   85.296855][ T5856] Bluetooth: hci1: command tx timeout
[   85.302772][ T5861] Bluetooth: hci3: command tx timeout
[   85.319657][ T1037] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.329138][  T325] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.354408][ T5849] 8021q: adding VLAN 0 to HW filter on device batadv0
[   85.364882][ T5845] batman_adv: batadv0: Interface activated: batadv_slave_1
[   85.441433][  T325] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   85.453192][  T325] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   85.486841][  T325] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   85.522592][  T325] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   85.591224][  T325] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.607550][ T5841] veth0_vlan: entered promiscuous mode
[   85.615957][  T325] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.637773][ T5840] veth0_vlan: entered promiscuous mode
[   85.709592][ T5841] veth1_vlan: entered promiscuous mode
[   85.718550][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.727454][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.755776][ T5840] veth1_vlan: entered promiscuous mode
[   85.768374][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.792867][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   85.802881][ T5849] veth0_vlan: entered promiscuous mode
[   85.873844][ T5839] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   85.903994][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   85.912864][ T5849] veth1_vlan: entered promiscuous mode
[   85.921541][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.041464][ T5841] veth0_macvtap: entered promiscuous mode
[   86.061723][ T5840] veth0_macvtap: entered promiscuous mode
[   86.115993][ T5841] veth1_macvtap: entered promiscuous mode
[   86.130896][ T5840] veth1_macvtap: entered promiscuous mode
[   86.179974][ T5849] veth0_macvtap: entered promiscuous mode
[   86.233810][ T5849] veth1_macvtap: entered promiscuous mode
[   86.278295][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.419451][ T5849] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.480054][ T5970] GUP no longer grows the stack in syz.0.6 (5970): 200000002000-200000005000 (200000001000)
[   87.498284][ T5970] CPU: 0 UID: 0 PID: 5970 Comm: syz.0.6 Not tainted syzkaller #0 PREEMPT(full) 
[   87.498311][ T5970] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[   87.498333][ T5970] Call Trace:
[   87.498347][ T5970]  <TASK>
[   87.498356][ T5970]  dump_stack_lvl+0xe8/0x150
[   87.498394][ T5970]  __get_user_pages+0x2378/0x2720
[   87.498444][ T5970]  ? __gup_longterm_locked+0x306/0x1630
[   87.498472][ T5970]  ? down_read_killable+0x1bb/0x340
[   87.498507][ T5970]  __gup_longterm_locked+0x3db/0x1630
[   87.498560][ T5970]  gup_fast_fallback+0x1d84/0x20d0
[   87.498738][ T5970]  ? __pfx_gup_fast_fallback+0x10/0x10
[   87.498778][ T5970]  ? __kvmalloc_node_noprof+0x545/0x8a0
[   87.498800][ T5970]  ? is_valid_gup_args+0x11f/0x200
[   87.498831][ T5970]  ? pin_user_pages_fast+0x4d/0xb0
[   87.498862][ T5970]  get_vaddr_frames+0x86/0x210
[   87.498890][ T5970]  vb2_create_framevec+0x58/0xd0
[   87.498921][ T5970]  vb2_vmalloc_get_userptr+0x108/0x450
[   87.498956][ T5970]  ? __pfx_vb2_vmalloc_get_userptr+0x10/0x10
[   87.498992][ T5970]  __buf_prepare+0xe90/0x4a20
[   87.499043][ T5970]  ? __pfx___buf_prepare+0x10/0x10
[   87.499078][ T5970]  ? is_bpf_text_address+0x26/0x2b0
[   87.499113][ T5970]  ? is_bpf_text_address+0x292/0x2b0
[   87.499142][ T5970]  ? is_bpf_text_address+0x26/0x2b0
[   87.499175][ T5970]  ? kernel_text_address+0xa5/0xe0
[   87.499212][ T5970]  ? __kernel_text_address+0xd/0x30
[   87.499239][ T5970]  ? unwind_get_return_address+0x4d/0x90
[   87.499262][ T5970]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   87.499290][ T5970]  ? arch_stack_walk+0xfb/0x150
[   87.499314][ T5970]  ? lockdep_unlock+0x5d/0xd0
[   87.499342][ T5970]  ? __lock_acquire+0x146e/0x2cf0
[   87.499381][ T5970]  ? stack_trace_save+0xa9/0x100
[   87.499408][ T5970]  ? __pfx_stack_trace_save+0x10/0x10
[   87.499432][ T5970]  ? kasan_save_free_info+0x46/0x50
[   87.499532][ T5970]  vb2_core_prepare_buf+0xad/0x2c0
[   87.499567][ T5970]  v4l2_m2m_ioctl_prepare_buf+0x15d/0x450
[   87.499601][ T5970]  ? v4l_prepare_buf+0x71/0xd0
[   87.499642][ T5970]  __video_do_ioctl+0xadb/0xca0
[   87.499674][ T5970]  ? __pfx___video_do_ioctl+0x10/0x10
[   87.499710][ T5970]  video_usercopy+0x876/0x14b0
[   87.499738][ T5970]  ? __pfx___video_do_ioctl+0x10/0x10
[   87.499767][ T5970]  ? __pfx_video_usercopy+0x10/0x10
[   87.499800][ T5970]  ? __fget_files+0x2a/0x420
[   87.499832][ T5970]  ? __fget_files+0x2a/0x420
[   87.499859][ T5970]  ? __fget_files+0x3a0/0x420
[   87.499891][ T5970]  v4l2_ioctl+0x18d/0x1e0
[   87.499923][ T5970]  ? __pfx_v4l2_ioctl+0x10/0x10
[   87.499954][ T5970]  __se_sys_ioctl+0xfc/0x170
[   87.499980][ T5970]  do_syscall_64+0x14d/0xf80
[   87.500006][ T5970]  ? trace_irq_disable+0x3b/0x150
[   87.500031][ T5970]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.500052][ T5970]  ? clear_bhb_loop+0x40/0x90
[   87.500078][ T5970]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   87.500099][ T5970] RIP: 0033:0x7ff16eb9c799
[   87.500134][ T5970] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[   87.500152][ T5970] RSP: 002b:00007ff16fabb028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   87.500175][ T5970] RAX: ffffffffffffffda RBX: 00007ff16ee16180 RCX: 00007ff16eb9c799
[   87.500190][ T5970] RDX: 0000200000002dc0 RSI: 00000000c058565d RDI: 0000000000000005
[   87.500203][ T5970] RBP: 00007ff16ec32c99 R08: 0000000000000000 R09: 0000000000000000
[   87.500216][ T5970] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   87.500229][ T5970] R13: 00007ff16ee16218 R14: 00007ff16ee16180 R15: 00007ffda514e568
[   87.500262][ T5970]  </TASK>
[   87.500430][ T5861] Bluetooth: hci3: command tx timeout
[   89.338306][ T5856] Bluetooth: hci1: command tx timeout
[   89.338331][ T5161] Bluetooth: hci4: command tx timeout
[   89.343805][ T5856] Bluetooth: hci0: command tx timeout
[   89.361771][ T5844] Bluetooth: hci2: command tx timeout
[   89.953713][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.015619][ T5841] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.044451][ T5975] loop0: detected capacity change from 0 to 1024
[   90.071285][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.121001][ T1037] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.143328][ T1037] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.179512][ T1037] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.209594][ T1037] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.245304][ T5975] hfsplus: found bad thread record in catalog
[   90.256911][ T5975] hfsplus: found bad thread record in catalog
[   90.272863][ T5840] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.313207][ T1037] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.339245][   T13] hfsplus: found bad thread record in catalog
[   90.339629][ T1037] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.355039][   T13] hfsplus: found bad thread record in catalog
[   90.432392][ T1037] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.456540][ T1037] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.520759][ T1037] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.552910][ T5977] loop0: detected capacity change from 0 to 128
[   90.585545][ T5977] =======================================================
[   90.585545][ T5977] WARNING: The mand mount option has been deprecated and
[   90.585545][ T5977]          and is ignored by this kernel. Remove the mand
[   90.585545][ T5977]          option from the mount to silence this warning.
[   90.585545][ T5977] =======================================================
[   90.665000][ T1037] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.705085][ T5977] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[   90.718558][ T1037] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.746213][ T5977] hpfs: filesystem error: improperly stopped
[   90.762011][ T1037] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.776565][ T5977] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[   90.791978][ T5977] hpfs: You really don't want any checks? You are crazy...
[   90.824949][ T5977] hpfs: Code page index out of array
[   90.830756][ T5977] hpfs: code page support is disabled
[   90.841498][ T5977] hpfs: hpfs_map_4sectors(): unaligned read
[   90.848053][ T5977] hpfs: hpfs_map_4sectors(): unaligned read
[   90.854257][ T5977] hpfs: filesystem error: unable to find root dir
[   90.966434][ T1170] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   90.986358][ T1170] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.404138][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.523736][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.036705][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.082490][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.145654][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.191701][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.222203][   T10] cfg80211: failed to load regulatory.db
[   92.337754][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.383869][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.550102][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.608208][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.947494][ T5895] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   93.133063][ T5991] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   93.190835][ T5895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 33437, setting to 64
[   93.238564][ T5895] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 64334, setting to 64
[   93.290522][ T5895] usb 2-1: New USB device found, idVendor=054c, idProduct=06c1, bcdDevice=d2.87
[   93.312752][ T5895] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.333678][ T5895] usb 2-1: Product: syz
[   93.340468][ T5895] usb 2-1: Manufacturer: syz
[   93.351606][ T5895] usb 2-1: SerialNumber: syz
[   93.397804][ T5895] usb 2-1: config 0 descriptor??
[   93.435356][ T5987] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   93.444481][ T5987] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[   93.491613][ T6000] loop0: detected capacity change from 0 to 512
[   93.516432][    C1] port100 2-1:0.0: NFC: Urb failure (status -71)
[   93.532744][    C1] port100 2-1:0.0: NFC: Urb failure (status -71)
[   93.562496][ T5895] port100 2-1:0.0: NFC: Could not get supported command types
[   93.730396][ T6000] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.12: inode has both inline data and extents flags
[   93.796272][   T10] usb 2-1: USB disconnect, device number 2
[   93.819444][ T6000] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[   93.821745][ T6000] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.12: couldn't read orphan inode 15 (err -117)
[   93.831254][    C1] EXT4-fs (loop0): error count since last fsck: 1
[   93.831316][    C1] EXT4-fs (loop0): initial error at time 1773946785: ext4_orphan_get:1391: inode 15
[   93.831352][    C1] EXT4-fs (loop0): last error at time 1773946785: ext4_orphan_get:1391: inode 15
[   93.920588][ T6000] loop0: lost filesystem error report for type 5 error -117
[   93.937478][ T6000] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   94.486148][ T6012] Zero length message leads to an empty skb
[   95.333148][ T5995] loop4: detected capacity change from 0 to 32768
[   95.353398][ T5839] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.389824][ T5995] BTRFS: device label  devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.5 (5995)
[   95.562571][ T6006] udevd[6006]: incorrect btrfs checksum on /dev/loop4
[   95.664445][ T5995] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   95.711772][ T5995] BTRFS info (device loop4): using crc32c checksum algorithm
[   95.731538][ T5995] BTRFS error (device loop4): superblock checksum mismatch
[   95.745298][ T5995] BTRFS error (device loop4): open_ctree failed: -22
[   95.951083][ T6028] loop0: detected capacity change from 0 to 64
[   95.971350][ T6028] hfs: get root inode failed
[   97.221175][ T6032] loop3: detected capacity change from 0 to 512
[   97.247244][ T6032] EXT4-fs: Ignoring removed nomblk_io_submit option
[   97.262422][ T6032] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[   97.287664][ T6032] EXT4-fs (loop3): 1 truncate cleaned up
[   97.306423][ T6032] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   97.461028][ T6023] loop2: detected capacity change from 0 to 32768
[   97.742679][ T6023] XFS (loop2): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   98.352061][ T6023] XFS (loop2): Ending clean mount
[   98.359736][ T5998] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   98.441500][ T6023] XFS (loop2): Quotacheck needed: Please wait.
[   98.511077][ T5845] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   98.594059][ T5998] usb 5-1: Using ep0 maxpacket: 16
[   98.607160][ T5998] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0
[   98.938804][ T6056] loop3: detected capacity change from 0 to 1024
[   98.948794][ T6056] hfsplus: Unknown parameter 'nīdecomp{se'
[   99.050039][ T5998] usb 5-1: config 0 interface 0 altsetting 1 endpoint 0x89 has an invalid bInterval 64, changing to 10
[   99.064051][ T5998] usb 5-1: config 0 interface 0 has no altsetting 0
[   99.076346][ T5998] usb 5-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[   99.091256][ T5998] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   99.099433][ T5998] usb 5-1: Product: syz
[   99.103668][ T5998] usb 5-1: Manufacturer: syz
[   99.108333][ T5998] usb 5-1: SerialNumber: syz
[   99.133090][ T5998] usb 5-1: config 0 descriptor??
[   99.172379][ T6023] XFS (loop2): Quotacheck: Done.
[   99.454331][ T5841] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[   99.763586][ T6063] loop3: detected capacity change from 0 to 128
[   99.780578][ T6063] EXT4-fs: Ignoring removed nomblk_io_submit option
[   99.884433][ T6063] EXT4-fs (loop3): Test dummy encryption mode enabled
[   99.995516][ T6063] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  100.012935][ T6063] ext4 filesystem being mounted at /4/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  100.082486][ T6063] fscrypt: AES-256-CBC-CTS using implementation "cts-cbc-aes-aesni"
[  100.481392][ T5998] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input5
[  100.576679][ T5845] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  100.641472][ T5998] usb 5-1: USB disconnect, device number 2
[  100.647822][    C1] synaptics_usb 5-1:0.0: synusb_irq - usb_submit_urb failed with result: -19
[  100.666109][ T5195] synaptics_usb 5-1:0.0: synusb_open - usb_submit_urb failed, error: -19
[  102.341907][ T6091] netlink: 8 bytes leftover after parsing attributes in process `syz.1.34'.
[  102.410602][ T6091] gtp0: entered promiscuous mode
[  102.415759][ T6091] gtp0: entered allmulticast mode
[  103.651591][ T6102] loop4: detected capacity change from 0 to 512
[  103.718768][ T6102] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.40: inode has both inline data and extents flags
[  103.805764][ T6102] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  103.806172][ T6102] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.40: couldn't read orphan inode 15 (err -117)
[  103.815486][    C0] EXT4-fs (loop4): error count since last fsck: 1
[  103.815508][    C0] EXT4-fs (loop4): initial error at time 1773946795: ext4_orphan_get:1391: inode 15
[  103.815542][    C0] EXT4-fs (loop4): last error at time 1773946795: ext4_orphan_get:1391: inode 15
[  103.874074][ T6102] loop4: lost filesystem error report for type 5 error -117
[  103.885725][ T6102] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  104.140137][ T6106] loop2: detected capacity change from 0 to 1024
[  104.164763][ T6106] hfsplus: Unknown parameter 'nīdecomp{se'
[  104.959093][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  105.073407][ T6113] loop2: detected capacity change from 0 to 128
[  105.082924][ T6113] EXT4-fs: Ignoring removed nomblk_io_submit option
[  105.091474][ T6113] EXT4-fs (loop2): Test dummy encryption mode enabled
[  105.115611][ T6113] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  105.131448][ T6113] ext4 filesystem being mounted at /7/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  105.393576][ T5841] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  105.459158][ T6100] loop1: detected capacity change from 0 to 32768
[  106.394718][ T6136] netlink: 8 bytes leftover after parsing attributes in process `syz.3.50'.
[  106.410952][ T6136] gtp0: entered promiscuous mode
[  106.416084][ T6136] gtp0: entered allmulticast mode
[  107.045932][ T6144] netlink: 'syz.0.52': attribute type 4 has an invalid length.
[  107.054560][ T6140] loop1: detected capacity change from 0 to 512
[  107.069002][ T6143] loop3: detected capacity change from 0 to 128
[  107.125611][ T6140] EXT4-fs error (device loop1): ext4_orphan_get:1391: inode #15: comm syz.1.53: inode has both inline data and extents flags
[  107.149533][ T6143] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  107.168522][ T6140] loop1: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  107.168778][ T6143] hpfs: filesystem error: improperly stopped
[  107.178055][    C0] EXT4-fs (loop1): error count since last fsck: 1
[  107.178078][    C0] EXT4-fs (loop1): initial error at time 1773946798: ext4_orphan_get:1391: inode 15
[  107.178111][    C0] EXT4-fs (loop1): last error at time 1773946798: ext4_orphan_get:1391: inode 15
[  107.216159][ T6143] 
[  107.218645][ T6143] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  107.226863][ T6143] hpfs: You really don't want any checks? You are crazy...
[  107.234385][ T6143] hpfs: Code page index out of array
[  107.239983][ T6143] hpfs: code page support is disabled
[  107.245657][ T6143] hpfs: hpfs_map_4sectors(): unaligned read
[  107.252053][ T6143] hpfs: hpfs_map_4sectors(): unaligned read
[  107.258229][ T6140] EXT4-fs error (device loop1): ext4_orphan_get:1396: comm syz.1.53: couldn't read orphan inode 15 (err -117)
[  107.270799][ T6140] loop1: lost filesystem error report for type 5 error -117
[  107.272425][ T6143] hpfs: filesystem error: unable to find root dir
[  107.305824][ T6140] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.447612][ T6143] hpfs: hpfs_map_4sectors(): unaligned read
[  107.474604][ T6143] hpfs: hpfs_map_4sectors(): unaligned read
[  107.571169][ T6149] loop4: detected capacity change from 0 to 1024
[  107.580263][ T6149] hfsplus: Unknown parameter 'nīdecomp{se'
[  108.546247][ T5849] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.990426][ T6162] futex_wake_op: syz.1.58 tries to shift op by -1; fix this program
[  110.548553][ T6185] netlink: 8 bytes leftover after parsing attributes in process `syz.0.66'.
[  110.616680][ T6185] gtp0: entered promiscuous mode
[  110.621904][ T6185] gtp0: entered allmulticast mode
[  111.184581][ T6188] netlink: 'syz.4.67': attribute type 1 has an invalid length.
[  111.616526][ T6189] netlink: 20 bytes leftover after parsing attributes in process `syz.4.67'.
[  111.672944][ T6192] netlink: 28 bytes leftover after parsing attributes in process `syz.4.67'.
[  112.526882][ T6194] loop1: detected capacity change from 0 to 8192
[  112.592816][ T6194] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  113.053688][ T6209] syz.2.74 uses obsolete (PF_INET,SOCK_PACKET)
[  113.149736][ T6207] loop3: detected capacity change from 0 to 8192
[  113.193198][ T6207] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  115.984812][    T0] NOHZ tick-stop error: local softirq work is pending, handler #1c2!!!
[  116.441454][ T6247] loop4: detected capacity change from 0 to 1024
[  116.480748][ T6247] hfsplus: Unknown parameter 'nīdecomp{se'
[  116.604070][    T0] NOHZ tick-stop error: local softirq work is pending, handler #80!!!
[  117.012745][ T6249] loop4: detected capacity change from 0 to 128
[  117.019752][ T6249] EXT4-fs: Ignoring removed nomblk_io_submit option
[  117.030854][ T6249] EXT4-fs (loop4): Test dummy encryption mode enabled
[  117.055634][ T6249] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  117.068989][ T6249] ext4 filesystem being mounted at /11/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  117.333234][ T5840] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  117.446670][ T5844] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[  117.745185][ T6255] netlink: 'syz.4.83': attribute type 1 has an invalid length.
[  117.946588][ T6260] netlink: 8 bytes leftover after parsing attributes in process `syz.2.84'.
[  118.514444][ T6255] netlink: 20 bytes leftover after parsing attributes in process `syz.4.83'.
[  118.710806][ T6259] netlink: 28 bytes leftover after parsing attributes in process `syz.4.83'.
[  119.618430][ T6277] loop4: detected capacity change from 0 to 128
[  119.677716][ T6277] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  119.689897][ T6277] hpfs: filesystem error: improperly stopped
[  119.696932][ T6277] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  119.706010][ T6277] hpfs: You really don't want any checks? You are crazy...
[  119.713279][ T6277] hpfs: Code page index out of array
[  119.721191][ T6277] hpfs: code page support is disabled
[  119.738893][ T6277] hpfs: hpfs_map_4sectors(): unaligned read
[  119.761679][ T6277] hpfs: hpfs_map_4sectors(): unaligned read
[  119.834482][ T6277] hpfs: filesystem error: unable to find root dir
[  120.199379][ T6277] hpfs: hpfs_map_4sectors(): unaligned read
[  120.428117][ T6283] hpfs: hpfs_map_4sectors(): unaligned read
[  120.692299][ T6287] loop4: detected capacity change from 0 to 1024
[  120.703696][ T6287] hfsplus: Unknown parameter 'nīdecomp{se'
[  120.763522][ T6282] loop1: detected capacity change from 0 to 8192
[  120.832189][ T6282] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  121.010726][ T6287] loop4: detected capacity change from 0 to 32768
[  121.039383][ T6287] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  121.112997][ T6287] XFS (loop4): Ending clean mount
[  121.125843][ T6287] XFS (loop4): Quotacheck needed: Please wait.
[  121.221723][ T6287] XFS (loop4): Quotacheck: Done.
[  121.754152][ T5840] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  122.678553][ T6308] netlink: 8 bytes leftover after parsing attributes in process `syz.2.95'.
[  122.741139][ T6308] gtp0: entered promiscuous mode
[  122.748053][ T6308] gtp0: entered allmulticast mode
[  123.422235][ T6314] netlink: 'syz.0.98': attribute type 1 has an invalid length.
[  123.617670][ T6322] netlink: 20 bytes leftover after parsing attributes in process `syz.0.98'.
[  124.484010][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  124.894532][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  124.983820][ T6325] netlink: 28 bytes leftover after parsing attributes in process `syz.0.98'.
[  125.525678][ T6319] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  125.553234][ T6319] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  125.604122][ T5844] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[  125.738628][ T6333] loop3: detected capacity change from 0 to 128
[  125.747345][ T6325] 8021q: adding VLAN 0 to HW filter on device bond1
[  125.794446][ T6333] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  125.834327][ T6333] hpfs: filesystem error: improperly stopped
[  125.855742][ T6333] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  125.858499][ T6328] macvlan2: entered promiscuous mode
[  125.877088][ T6333] hpfs: You really don't want any checks? You are crazy...
[  125.902447][ T6328] macvlan2: entered allmulticast mode
[  125.912821][ T6333] hpfs: Code page index out of array
[  125.929797][ T6328] bond1: entered promiscuous mode
[  125.941092][ T6333] hpfs: code page support is disabled
[  125.962972][ T6333] hpfs: hpfs_map_4sectors(): unaligned read
[  125.963271][ T6328] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  125.994359][ T6333] hpfs: hpfs_map_4sectors(): unaligned read
[  126.012928][ T6328] bond1: left promiscuous mode
[  126.015867][ T6333] hpfs: filesystem error: unable to find root dir
[  126.067663][ T6333] hpfs: hpfs_map_4sectors(): unaligned read
[  126.096589][ T6333] hpfs: hpfs_map_4sectors(): unaligned read
[  126.360675][ T6335] loop3: detected capacity change from 0 to 1024
[  126.386058][ T6335] hfsplus: Unknown parameter 'nīdecomp{se'
[  127.059557][ T6340] loop3: detected capacity change from 0 to 128
[  127.066839][ T6340] EXT4-fs: Ignoring removed nomblk_io_submit option
[  127.074575][ T6340] EXT4-fs (loop3): Test dummy encryption mode enabled
[  127.096713][ T6340] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  127.109371][ T6340] ext4 filesystem being mounted at /16/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  127.382005][ T5845] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  129.219863][ T6365] loop1: detected capacity change from 0 to 128
[  129.241466][ T6365] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  129.278661][ T6365] hpfs: filesystem error: improperly stopped
[  129.295055][ T6365] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  129.324082][ T6365] hpfs: You really don't want any checks? You are crazy...
[  129.341737][ T6365] hpfs: Code page index out of array
[  129.351893][ T6365] hpfs: code page support is disabled
[  129.365741][ T6365] hpfs: hpfs_map_4sectors(): unaligned read
[  129.380201][ T6365] hpfs: hpfs_map_4sectors(): unaligned read
[  129.405420][ T6365] hpfs: filesystem error: unable to find root dir
[  129.438573][ T6365] hpfs: hpfs_map_4sectors(): unaligned read
[  129.465319][ T6365] hpfs: hpfs_map_4sectors(): unaligned read
[  129.510638][ T6363] loop2: detected capacity change from 0 to 8192
[  129.539504][ T6367] netlink: 'syz.0.115': attribute type 1 has an invalid length.
[  129.553409][ T6363] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  129.759957][ T6370] netlink: 28 bytes leftover after parsing attributes in process `syz.0.115'.
[  130.100104][ T6369] bond2: (slave vxcan3): The slave device specified does not support setting the MAC address
[  130.138954][ T6369] bond2: (slave vxcan3): Error -95 calling set_mac_address
[  130.188664][ T6377] loop1: detected capacity change from 0 to 1024
[  130.225920][ T6377] hfsplus: Unknown parameter 'nīdecomp{se'
[  130.225939][ T6370] 8021q: adding VLAN 0 to HW filter on device bond2
[  130.325413][ T6371] macvlan2: entered promiscuous mode
[  130.358482][ T6371] macvlan2: entered allmulticast mode
[  130.432642][ T6371] bond2: entered promiscuous mode
[  130.464087][ T6371] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  130.696196][ T6371] bond2: left promiscuous mode
[  131.065500][ T6382] loop1: detected capacity change from 0 to 128
[  131.077703][ T6382] EXT4-fs: Ignoring removed nomblk_io_submit option
[  131.096238][ T6382] EXT4-fs (loop1): Test dummy encryption mode enabled
[  131.204849][ T6382] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  131.231592][ T6382] ext4 filesystem being mounted at /22/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  131.715366][ T5849] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  132.813535][ T1315] ieee802154 phy0 wpan0: encryption failed: -22
[  132.823444][ T1315] ieee802154 phy1 wpan1: encryption failed: -22
[  134.106661][ T6413] netlink: 'syz.0.127': attribute type 4 has an invalid length.
[  134.115166][ T6413] netlink: 152 bytes leftover after parsing attributes in process `syz.0.127'.
[  134.129387][ T6413] .`: renamed from bond0 (while UP)
[  134.180763][ T6408] loop4: detected capacity change from 0 to 8192
[  134.216199][ T6408] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  134.517946][ T6420] loop3: detected capacity change from 0 to 1024
[  134.547708][ T6420] hfsplus: Unknown parameter 'nīdecomp{se'
[  134.864563][ T6420] loop3: detected capacity change from 0 to 32768
[  134.899851][ T6420] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  134.966464][ T6420] XFS (loop3): Ending clean mount
[  134.984782][ T6420] XFS (loop3): Quotacheck needed: Please wait.
[  135.118969][ T6420] XFS (loop3): Quotacheck: Done.
[  135.898684][ T5845] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  137.894568][ T6457] loop4: detected capacity change from 0 to 128
[  137.960790][ T6457] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  138.014388][ T6457] hpfs: filesystem error: improperly stopped
[  138.043001][ T6457] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  138.653624][ T6457] hpfs: You really don't want any checks? You are crazy...
[  138.688400][ T6457] hpfs: Code page index out of array
[  138.713193][ T6457] hpfs: code page support is disabled
[  138.750019][ T6457] hpfs: hpfs_map_4sectors(): unaligned read
[  138.787303][ T6457] hpfs: hpfs_map_4sectors(): unaligned read
[  138.826493][ T6457] hpfs: filesystem error: unable to find root dir
[  138.867614][ T6457] hpfs: hpfs_map_4sectors(): unaligned read
[  138.884791][ T6457] hpfs: hpfs_map_4sectors(): unaligned read
[  139.112084][ T6466] loop2: detected capacity change from 0 to 1024
[  139.141163][ T6466] hfsplus: Unknown parameter 'nīdecomp{se'
[  139.467417][ T6466] loop2: detected capacity change from 0 to 32768
[  140.256298][ T6466] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  140.322395][ T6466] XFS (loop2): Ending clean mount
[  140.333912][ T6466] XFS (loop2): Quotacheck needed: Please wait.
[  140.428156][ T6466] XFS (loop2): Quotacheck: Done.
[  141.244974][ T5841] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  142.253398][ T6199] Bluetooth: hci5: Frame reassembly failed (-84)
[  142.478313][ T6510] loop1: detected capacity change from 0 to 128
[  142.520708][ T6510] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  142.589518][ T6510] hpfs: filesystem error: improperly stopped
[  143.247518][ T6510] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  143.266941][ T6510] hpfs: You really don't want any checks? You are crazy...
[  143.274399][ T6510] hpfs: Code page index out of array
[  143.337945][ T6510] hpfs: code page support is disabled
[  143.368829][ T6510] hpfs: hpfs_map_4sectors(): unaligned read
[  143.375877][ T6510] hpfs: hpfs_map_4sectors(): unaligned read
[  143.381862][ T6510] hpfs: filesystem error: unable to find root dir
[  144.324780][ T5856] Bluetooth: hci5: command 0xfc11 tx timeout
[  144.345322][ T5844] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[  144.796592][ T6527] loop1: detected capacity change from 0 to 1024
[  144.836591][ T6527] hfsplus: Unknown parameter 'nīdecomp{se'
[  145.643830][ T6532] loop1: detected capacity change from 0 to 128
[  145.656410][ T6532] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.675041][ T6532] EXT4-fs (loop1): Test dummy encryption mode enabled
[  145.855563][ T6532] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  145.870465][ T6532] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  146.319297][ T5849] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  148.161232][ T6553] loop4: detected capacity change from 0 to 128
[  148.191186][ T6553] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  148.235446][ T6553] hpfs: filesystem error: improperly stopped
[  148.261779][ T6553] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  148.290243][ T6553] hpfs: You really don't want any checks? You are crazy...
[  148.309202][ T6553] hpfs: Code page index out of array
[  148.325719][ T6553] hpfs: code page support is disabled
[  148.334120][  T809] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  148.354175][ T6553] hpfs: hpfs_map_4sectors(): unaligned read
[  148.361133][ T6553] hpfs: hpfs_map_4sectors(): unaligned read
[  148.374011][ T6553] hpfs: filesystem error: unable to find root dir
[  148.524034][  T809] usb 3-1: Using ep0 maxpacket: 8
[  150.632408][ T6569] loop2: detected capacity change from 0 to 1024
[  150.732247][ T6569] hfsplus: Unknown parameter 'nīdecomp{se'
[  151.961806][ T6570] loop2: detected capacity change from 0 to 128
[  151.969150][ T6570] EXT4-fs: Ignoring removed nomblk_io_submit option
[  152.014203][ T6570] EXT4-fs (loop2): Test dummy encryption mode enabled
[  152.042233][ T6570] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  152.054883][ T6570] ext4 filesystem being mounted at /39/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  152.644568][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[  153.633972][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  153.743966][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  153.773976][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  153.873964][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[  154.296331][  T809] usb 3-1: unable to get BOS descriptor or descriptor too short
[  154.320093][ T5841] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  154.384738][    T0] NOHZ tick-stop error: local softirq work is pending, handler #142!!!
[  154.834143][  T809] usb 3-1: unable to read config index 0 descriptor/start: -32
[  154.878026][  T809] usb 3-1: chopping to 0 config(s)
[  154.899273][  T809] usb 3-1: can't read configurations, error -32
[  155.114532][  T809] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  155.190583][ T6588] loop1: detected capacity change from 0 to 128
[  155.251587][ T6588] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  155.294184][  T809] usb 3-1: device descriptor read/64, error -32
[  155.296236][ T6588] hpfs: filesystem error: improperly stopped
[  155.336638][ T6588] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  155.379924][ T6588] hpfs: You really don't want any checks? You are crazy...
[  155.411191][ T6592] bridge0: entered promiscuous mode
[  155.419937][ T6588] hpfs: Code page index out of array
[  155.435858][  T809] usb usb3-port1: attempt power cycle
[  155.441185][ T6588] hpfs: code page support is disabled
[  155.466084][ T6588] hpfs: hpfs_map_4sectors(): unaligned read
[  155.490654][ T6588] hpfs: hpfs_map_4sectors(): unaligned read
[  155.516964][ T6588] hpfs: filesystem error: unable to find root dir
[  155.686330][ T6601] netlink: 'syz.3.182': attribute type 10 has an invalid length.
[  155.756254][ T6601] team0: Device vxcan1 is of different type
[  155.807869][  T809] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  155.855778][  T809] usb 3-1: device descriptor read/8, error -32
[  156.064234][ T6608] loop4: detected capacity change from 0 to 1024
[  156.089378][ T6608] hfsplus: Unknown parameter 'nīdecomp{se'
[  156.116459][  T809] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  156.128891][ T6604] loop1: detected capacity change from 0 to 8192
[  156.178870][  T809] usb 3-1: device descriptor read/8, error -32
[  156.205781][ T6604] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  156.458909][  T809] usb usb3-port1: unable to enumerate USB device
[  156.901139][ T6617] loop4: detected capacity change from 0 to 128
[  156.913086][ T6617] EXT4-fs: Ignoring removed nomblk_io_submit option
[  157.033614][ T6617] EXT4-fs (loop4): Test dummy encryption mode enabled
[  157.461512][ T6617] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  157.477100][ T6617] ext4 filesystem being mounted at /34/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  157.759835][ T5840] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  158.001337][ T6623] loop4: detected capacity change from 0 to 512
[  158.073079][ T6623] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.189: inode has both inline data and extents flags
[  158.155964][ T6623] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  158.156876][ T6623] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.189: couldn't read orphan inode 15 (err -117)
[  158.166239][    C0] EXT4-fs (loop4): error count since last fsck: 1
[  158.166264][    C0] EXT4-fs (loop4): initial error at time 1773946849: ext4_orphan_get:1391: inode 15
[  158.166302][    C0] EXT4-fs (loop4): last error at time 1773946849: ext4_orphan_get:1391: inode 15
[  158.287902][ T6623] loop4: lost filesystem error report for type 5 error -117
[  158.290080][ T6623] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.330047][ T5840] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.588296][ T6642] loop4: detected capacity change from 0 to 128
[  159.618337][ T6642] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  159.663388][ T6642] hpfs: filesystem error: improperly stopped
[  159.690737][ T6642] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  159.719068][ T6642] hpfs: You really don't want any checks? You are crazy...
[  159.763332][ T6642] hpfs: Code page index out of array
[  159.809488][ T6642] hpfs: code page support is disabled
[  159.848674][ T6642] hpfs: hpfs_map_4sectors(): unaligned read
[  159.864507][ T6642] hpfs: hpfs_map_4sectors(): unaligned read
[  159.900713][ T6642] hpfs: filesystem error: unable to find root dir
[  160.782909][ T6647] netlink: 12 bytes leftover after parsing attributes in process `syz.0.195'.
[  161.445915][ T5856] Bluetooth: hci5: command 0xfc11 tx timeout
[  161.487746][ T5844] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[  161.780778][ T6664] loop3: detected capacity change from 0 to 512
[  161.843182][ T6664] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.203: inode has both inline data and extents flags
[  161.874999][ T6664] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  161.884008][    C0] EXT4-fs (loop3): error count since last fsck: 1
[  161.901119][    C0] EXT4-fs (loop3): initial error at time 1773946853: ext4_orphan_get:1391: inode 15
[  161.910613][    C0] EXT4-fs (loop3): last error at time 1773946853: ext4_orphan_get:1391: inode 15
[  161.920803][ T6664] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.203: couldn't read orphan inode 15 (err -117)
[  161.934172][ T6664] loop3: lost filesystem error report for type 5 error -117
[  161.950638][ T6664] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.027072][ T5845] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.129365][ T6678] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  164.346166][ T6683] loop3: detected capacity change from 0 to 128
[  164.403506][ T6683] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[  164.442837][ T6683] hpfs: filesystem error: improperly stopped
[  164.480812][ T6683] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[  164.506263][ T6683] hpfs: You really don't want any checks? You are crazy...
[  164.547143][ T6683] hpfs: Code page index out of array
[  164.569973][ T6683] hpfs: code page support is disabled
[  164.632713][ T6683] hpfs: hpfs_map_4sectors(): unaligned read
[  164.676148][ T6683] hpfs: hpfs_map_4sectors(): unaligned read
[  164.733145][ T6683] hpfs: filesystem error: unable to find root dir
[  167.814212][ T6719] netlink: 'syz.3.222': attribute type 1 has an invalid length.
[  167.972419][ T6723] netlink: 32 bytes leftover after parsing attributes in process `syz.3.222'.
[  168.045897][ T6719] netlink: 28 bytes leftover after parsing attributes in process `syz.3.222'.
[  168.094219][ T6721] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  168.134928][ T6721] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  168.288754][ T6719] 8021q: adding VLAN 0 to HW filter on device bond1
[  168.348472][ T6727] macvlan2: entered promiscuous mode
[  168.364804][ T6727] macvlan2: entered allmulticast mode
[  168.388505][ T6727] bond1: entered promiscuous mode
[  168.410290][ T6727] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  168.442144][ T6727] bond1: left promiscuous mode
[  169.104933][ T6748] tipc: Can't bind to reserved service type 2
[  170.219687][ T6750] ntfs3(nullb0): Primary boot signature is not NTFS.
[  170.248480][ T6750] ntfs3(nullb0): try to read out of volume at offset 0x3e7ffffe00
[  172.729977][ T6776] netlink: 'syz.2.239': attribute type 1 has an invalid length.
[  172.823806][   T49] Bluetooth: hci5: Frame reassembly failed (-84)
[  172.871998][ T6779] netlink: 32 bytes leftover after parsing attributes in process `syz.2.239'.
[  173.002000][ T6776] netlink: 28 bytes leftover after parsing attributes in process `syz.2.239'.
[  173.136565][ T6778] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  173.175026][ T6778] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  173.242916][ T6776] 8021q: adding VLAN 0 to HW filter on device bond1
[  173.349851][ T6781] macvlan2: entered promiscuous mode
[  173.377246][ T6781] macvlan2: entered allmulticast mode
[  173.409709][ T6781] bond1: entered promiscuous mode
[  173.438864][ T6781] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  173.479473][ T6781] bond1: left promiscuous mode
[  174.191188][ T5998] IPVS: starting estimator thread 0...
[  174.335640][ T6793] IPVS: using max 25 ests per chain, 60000 per kthread
[  174.430115][ T6792] netlink: 'syz.1.244': attribute type 4 has an invalid length.
[  174.441106][ T6796] loop4: detected capacity change from 0 to 256
[  174.489348][ T6796] exfat: Deprecated parameter 'namecase'
[  174.655657][ T6796] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf4419509, utbl_chksum : 0xe619d30d)
[  174.884393][ T5856] Bluetooth: hci5: command 0xfc11 tx timeout
[  174.924863][ T5844] Bluetooth: hci5: Entering manufacturer mode failed (-110)
[  177.019685][ T6810] loop4: detected capacity change from 0 to 8192
[  177.071215][ T6810] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  178.835086][ T5916] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  178.946969][ T6824] Bluetooth: MGMT ver 1.23
[  179.043476][ T5916] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  179.085873][ T5916] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  179.111874][ T5916] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.150520][ T5916] usb 5-1: config 0 descriptor??
[  179.616781][ T5916] keytouch 0003:0926:3333.0001: fixing up Keytouch IEC report descriptor
[  179.686025][ T5916] input: HID 0926:3333 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:0926:3333.0001/input/input6
[  180.002179][ T5916] keytouch 0003:0926:3333.0001: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.4-1/input0
[  180.104343][ T5916] usb 5-1: USB disconnect, device number 3
[  180.230664][ T6836] fido_id[6836]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory
[  180.811948][ T6838] netlink: 'syz.4.258': attribute type 1 has an invalid length.
[  180.978192][ T6844] netlink: 32 bytes leftover after parsing attributes in process `syz.4.258'.
[  180.994192][ T6839] node ffff888050178000 offset 3 parent ffff88802a882ec0 shift 0 count 20 values 19 array ffff88802b5fba80 list ffff888050178018 ffff888050178018 marks 0 0 0
[  181.012473][ T6839] ------------[ cut here ]------------
[  181.018027][ T6839] kernel BUG at ./include/linux/xarray.h:1441!
[  181.024724][ T6839] Oops: invalid opcode: 0000 [#1] SMP KASAN PTI
[  181.031009][ T6839] CPU: 1 UID: 0 PID: 6839 Comm: syz.2.257 Not tainted syzkaller #0 PREEMPT(full) 
[  181.040214][ T6839] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  181.050279][ T6839] RIP: 0010:collapse_scan_file+0x4f98/0x5230
[  181.056280][ T6839] Code: ff 4c 89 e7 48 c7 c6 20 b2 dc 8b e8 72 52 f1 fe 90 0f 0b 48 85 db 0f 84 03 01 00 00 e8 41 e5 8f ff 48 89 df e8 89 90 7b 09 90 <0f> 0b e8 31 e5 8f ff 48 89 df 48 c7 c6 20 b2 dc 8b e8 42 52 f1 fe
[  181.075900][ T6839] RSP: 0018:ffffc9001baeee20 EFLAGS: 00010246
[  181.081978][ T6839] RAX: 0000000000000000 RBX: ffff888050178000 RCX: 517d539488876800
[  181.089959][ T6839] RDX: ffffc9000e633000 RSI: 00000000000071de RDI: 00000000000071df
[  181.097950][ T6839] RBP: ffffc9001baef130 R08: ffffc9001baeeba7 R09: 1ffff9200375dd74
[  181.105937][ T6839] R10: dffffc0000000000 R11: fffff5200375dd75 R12: ffffea0001318070
[  181.113915][ T6839] R13: dffffc0000000000 R14: 00000000000000ec R15: ffffc9001baef010
[  181.121908][ T6839] FS:  00007f59b78f96c0(0000) GS:ffff888125536000(0000) knlGS:0000000000000000
[  181.130846][ T6839] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  181.137439][ T6839] CR2: 00007ff16ec4eddd CR3: 000000007a38c000 CR4: 00000000003526f0
[  181.145421][ T6839] Call Trace:
[  181.148748][ T6839]  <TASK>
[  181.151696][ T6839]  ? collapse_scan_file+0x1c1/0x5230
[  181.156996][ T6839]  ? __pfx___schedule+0x10/0x10
[  181.161852][ T6839]  ? __pfx_collapse_scan_file+0x10/0x10
[  181.167413][ T6839]  ? __lock_acquire+0x6b5/0x2cf0
[  181.172373][ T6839]  ? schedule+0x16e/0x360
[  181.176716][ T6839]  ? __up_read+0x291/0x6b0
[  181.181139][ T6839]  ? __pfx___up_read+0x10/0x10
[  181.185913][ T6839]  collapse_single_pmd+0x22b/0x4510
[  181.191130][ T6839]  ? do_raw_spin_lock+0x12b/0x2f0
[  181.196167][ T6839]  ? __flush_work+0x100/0xc50
[  181.200859][ T6839]  ? __flush_work+0x100/0xc50
[  181.205558][ T6839]  ? __flush_work+0x100/0xc50
[  181.210237][ T6839]  ? __flush_work+0xab9/0xc50
[  181.214920][ T6839]  ? __pfx_collapse_single_pmd+0x10/0x10
[  181.220563][ T6839]  ? __flush_work+0x100/0xc50
[  181.225250][ T6839]  ? madvise_collapse+0x18c/0x820
[  181.230281][ T6839]  ? __mutex_unlock_slowpath+0x1bd/0x7d0
[  181.235926][ T6839]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  181.241929][ T6839]  madvise_collapse+0x34c/0x820
[  181.246788][ T6839]  madvise_vma_behavior+0x1094/0x4460
[  181.252170][ T6839]  ? do_raw_spin_lock+0x12b/0x2f0
[  181.257213][ T6839]  ? __pfx_madvise_vma_behavior+0x10/0x10
[  181.262942][ T6839]  ? do_raw_spin_lock+0x12b/0x2f0
[  181.267981][ T6839]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  181.273373][ T6839]  ? debug_object_assert_init+0x209/0x370
[  181.279114][ T6839]  ? rcu_is_watching+0x15/0xb0
[  181.283889][ T6839]  ? trace_hrtimer_start+0x82/0x230
[  181.289112][ T6839]  ? finish_task_switch+0x41f/0xbe0
[  181.294325][ T6839]  ? lockdep_hardirqs_on+0x7a/0x110
[  181.299538][ T6839]  ? finish_task_switch+0x41f/0xbe0
[  181.304789][ T6839]  ? rcu_is_watching+0x15/0xb0
[  181.309565][ T6839]  ? trace_sched_exit_tp+0x3a/0x150
[  181.314777][ T6839]  ? __schedule+0x167b/0x5590
[  181.319469][ T6839]  ? mas_prev_slot+0xb7b/0xbf0
[  181.324263][ T6839]  ? find_vma_prev+0x123/0x1b0
[  181.329059][ T6839]  ? __pfx_find_vma_prev+0x10/0x10
[  181.334193][ T6839]  ? futex_unqueue+0x22/0x240
[  181.338893][ T6839]  ? __futex_wait+0x371/0x420
[  181.343611][ T6839]  madvise_walk_vmas+0x573/0xae0
[  181.348565][ T6839]  ? __pfx_madvise_walk_vmas+0x10/0x10
[  181.354038][ T6839]  ? blk_start_plug+0x6e/0x1b0
[  181.358821][ T6839]  madvise_do_behavior+0x386/0x540
[  181.363951][ T6839]  ? __pfx_madvise_do_behavior+0x10/0x10
[  181.369604][ T6839]  ? down_read+0x270/0x2e0
[  181.374043][ T6839]  ? madvise_lock+0x146/0x2e0
[  181.378745][ T6839]  do_madvise+0x1fa/0x2e0
[  181.383089][ T6839]  ? __pfx_do_madvise+0x10/0x10
[  181.387959][ T6839]  ? __se_sys_futex+0x3a8/0x450
[  181.392819][ T6839]  ? rcu_is_watching+0x15/0xb0
[  181.397594][ T6839]  __x64_sys_madvise+0xa6/0xc0
[  181.402416][ T6839]  do_syscall_64+0x14d/0xf80
[  181.407025][ T6839]  ? trace_irq_disable+0x3b/0x150
[  181.412056][ T6839]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.418214][ T6839]  ? clear_bhb_loop+0x40/0x90
[  181.422909][ T6839]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  181.428821][ T6839] RIP: 0033:0x7f59b699c799
[  181.433269][ T6839] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  181.452878][ T6839] RSP: 002b:00007f59b78f9028 EFLAGS: 00000246 ORIG_RAX: 000000000000001c
[  181.461304][ T6839] RAX: ffffffffffffffda RBX: 00007f59b6c16090 RCX: 00007f59b699c799
[  181.469286][ T6839] RDX: 0000000000000019 RSI: 0000000008000000 RDI: 0000200000000000
[  181.477277][ T6839] RBP: 00007f59b6a32c99 R08: 0000000000000000 R09: 0000000000000000
[  181.485266][ T6839] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  181.493256][ T6839] R13: 00007f59b6c16128 R14: 00007f59b6c16090 R15: 00007ffdab08aa88
[  181.501239][ T6839]  </TASK>
[  181.504262][ T6839] Modules linked in:
[  181.509160][ T6839] ---[ end trace 0000000000000000 ]---
[  181.525889][ T6846] netlink: 28 bytes leftover after parsing attributes in process `syz.4.258'.
[  181.546811][ T6839] RIP: 0010:collapse_scan_file+0x4f98/0x5230
[  181.560476][ T6839] Code: ff 4c 89 e7 48 c7 c6 20 b2 dc 8b e8 72 52 f1 fe 90 0f 0b 48 85 db 0f 84 03 01 00 00 e8 41 e5 8f ff 48 89 df e8 89 90 7b 09 90 <0f> 0b e8 31 e5 8f ff 48 89 df 48 c7 c6 20 b2 dc 8b e8 42 52 f1 fe
[  181.682581][ T6839] RSP: 0018:ffffc9001baeee20 EFLAGS: 00010246
[  181.693805][ T6841] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  181.714063][ T6839] RAX: 0000000000000000 RBX: ffff888050178000 RCX: 517d539488876800
[  181.735262][ T6841] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  181.776536][ T6839] RDX: ffffc9000e633000 RSI: 00000000000071de RDI: 00000000000071df
[  181.829623][ T6846] 8021q: adding VLAN 0 to HW filter on device bond1
[  181.879606][ T6839] RBP: ffffc9001baef130 R08: ffffc9001baeeba7 R09: 1ffff9200375dd74
[  181.893547][ T6838] macvlan2: entered promiscuous mode
[  181.906787][ T6838] macvlan2: entered allmulticast mode
[  181.915089][ T6838] bond1: entered promiscuous mode
[  181.929315][ T6838] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  181.940868][ T6839] R10: dffffc0000000000 R11: fffff5200375dd75 R12: ffffea0001318070
[  181.949197][ T6838] bond1: left promiscuous mode
[  181.981635][ T6839] R13: dffffc0000000000 R14: 00000000000000ec R15: ffffc9001baef010
[  182.021120][ T6839] FS:  00007f59b78f96c0(0000) GS:ffff888125536000(0000) knlGS:0000000000000000
[  182.057808][ T6839] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  182.084267][ T6839] CR2: 0000200000017038 CR3: 000000007a38c000 CR4: 00000000003526f0
[  182.099494][ T6839] Kernel panic - not syncing: Fatal exception
[  182.106192][ T6839] Kernel Offset: disabled
[  182.110520][ T6839] Rebooting in 86400 seconds..