last executing test programs:

14.863873468s ago: executing program 1 (id=512):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2a, 0xa9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000412ff8)="63429860415b7ac7", 0x8)
r4 = accept(r3, 0x0, 0x0)
sendmmsg$alg(r4, &(0x7f0000000740)=[{0x0, 0x0, &(0x7f00000002c0), 0x0, &(0x7f0000000480)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r6, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000080)=ANY=[@ANYBLOB="3800000002010700ffff00000000000002e9206d44fbed4a91000002180001801400018008000100ac1414bb09000006000000"], 0x38}, 0x1, 0x0, 0x0, 0x10050}, 0x4)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000003280)={0x73622a85, 0x1100, 0x1})
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$inet6(0xa, 0x5, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000040c0)={0x2020}, 0x2020)
socket(0x10, 0x3, 0x0)

13.056258882s ago: executing program 1 (id=515):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vlan1\x00'})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

12.752541928s ago: executing program 0 (id=516):
timer_create(0x0, &(0x7f0000000080)={0x0, 0x11, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000000))
timer_settime(0x0, 0x0, &(0x7f0000000240)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
pread64(0xffffffffffffffff, 0x0, 0x0, 0x0)
socket(0x10, 0x3, 0x0)
r0 = syz_open_dev$radio(&(0x7f00000003c0), 0x2, 0x2)
read(r0, &(0x7f0000000080)=""/116, 0xfffffeb2)
read(r0, &(0x7f0000000280)=""/96, 0x60)

12.376119397s ago: executing program 4 (id=518):
timer_create(0x3, 0x0, 0x0)
timer_settime(0x0, 0xffffffffffffffff, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYINDEX(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0x0, 0x0, 0x44844}, 0x40)
fchmod(0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x50, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7f, 0x61}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x37}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x18}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x38}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x26}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}]}, 0x50}}, 0x80)
r1 = syz_usb_connect(0x2, 0x24, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000340)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0})

12.081487093s ago: executing program 1 (id=521):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x13, &(0x7f00000005c0)=0x9, 0x4)
r0 = socket$inet6(0xa, 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x14013, &(0x7f0000000480)={[{@gid}, {@codepage={'codepage', 0x3d, 'cp860'}}, {@creator={'creator', 0x3d, "a426dba3"}}]}, 0x4, 0x339, &(0x7f0000000140)="$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")
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='.\x00', 0x322020, &(0x7f0000000140)=ANY=[], 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x208c822, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x20040600)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000009840)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r3, &(0x7f0000000100)={0x10000000})
ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000580)=0x2000)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a}, 0x94)
ioctl$KVM_GET_STATS_FD_cpu(r3, 0xaece)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x6a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x61}}, &(0x7f0000000480)='syzkaller\x00'}, 0x94)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000040)={0xb, 0xa, 0x100, "3258c5c0d651aa231b00280000000000000000000000ed00", 0x32435750})
setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[@ANYBLOB="00020401"], 0x18)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x6e23, 0x2, @mcast1, 0x9}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001840), 0x3b, 0x0)

11.231319677s ago: executing program 4 (id=522):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, r0, 0x71096000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000300), 0x382, 0x0)
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000040), 0x6)
ioctl$sock_bt_hci(r4, 0x800448d7, 0x0)
socket$inet6(0xa, 0x5, 0x0)
ioctl$SOUND_MIXER_READ_RECSRC(0xffffffffffffffff, 0x80044dff, &(0x7f0000000200))
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f0000000580), 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)

9.451207869s ago: executing program 4 (id=524):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './bus\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r1, 0x9)
r2 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r2, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r3, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x2, 0x0)

8.176338655s ago: executing program 0 (id=526):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
r1 = socket$kcm(0xa, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f00000022c0)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x840, &(0x7f0000000000), 0x1, 0x53b, &(0x7f0000000780)="$eJzs3e9rJGcdAPDvTLJ3ubvU5FTkLNgWW7kreruXxrZRpK0g6puCWt+fMdkL4TbZI7upl1A0xT9AEFFB3/tG8A8QSsF/QISCvhcVReSqL/VGZmdW82M3u5fuZe82nw9M5nl2fny/z5CdnV88E8CZ9UxEvFaWn4+IubKclsPNvLJXzPf+vbdW8iGJLHvjH0kk5WfddeX16Yi4VCwSMxHxja9EfDs5Gre1s3t7udGob5X1WnvjTq21s3t9fWN5rb5W31xcXHhp6eWlF5duZKVixr2TtXM+Il750l9+/INffPmVdz7znT/e/Nu17+ZpfeFjRd4RsXKyNR+vWHelsy268m209TCCjUnensrUuLMAAGAY+TH+hyPik53j/7mY6hzNAQAAAJMke3U2/p1EZA/u8kkWAgAAAE5fGhGzkaTV8lmA2UjTarV4hvejcTFtNFvtT99qbm+u5tMi5qOS3lpv1G9ExPminuT1hfIZ2279hUP1xYi4HBE/mrvQqVdXmo3VcV/8AAAAgDPi0tMHz///NZfm5fPjzgsAAAAYsfm+FQAAAGBSOOUHAACAyef8HwAAACba115/PR+y7nu8V9/c2b7dfPP6ar11u7qxvVJdaW7dqa41m2udPvs2Bq2v0Wze+Wxsbt+tteutdq21s3tzo7m92b65fuAV2AAAAMApuvz0u39IImLv8xc6Q5T9APZw7nQzAx4pfx53AsAoTY07AWBspsedADA2lYFz2EPApEsGTD/68E5xrTB++3DyAQAARu/qx4/e/+/e6B98bQB4nPV51gcAmGDu7sHZVTnpE4BXRp0JMC4fKkbn+03v23lHn/v/P99XLq4xZNmJkwMAAEZitjMkabU8Tp+NNK1WI57ovBagktxab9RvlOcHv5+rnM/rC50lk4HPDAMAAAAAAAAAAAAAAAAAAAAAAAAAhSxLIhtsqjMrAAAA8FiKSP+adHrzj7g699zswasDh9769bM3fnJ3ud3eWog499XirV7nIqL90/LzFzKvBAAAAIBHQHGeXo4Xxp0NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJPm/XtvrXSH04z79y9GxHyv+NMx0xnPRCUiLv4ziel9yyURMTWC+HtvR8SVXvGTuJ9l2XyZRa/4Fx5y/PnOpukdP42ISyOID2fZu/n+57Ve3780numMe3//psvhg+q//0v/t/+b6rP/eeJQvZ8n3/tVrW/8tyOenO69/+nGT4r4B0LklWeHbOO3vrm723PCvlX2ir8/Vq29cafW2tm9vr6xvFZfq28uLi68tPTy0otLN2q31hv18m/PMD/8xK/vH9f+i33izx9s/5Ht/9xQrc/iP+/dvfeRolLpFf/as71/f6/0iZ+Wv32fKsv59Kvd8l5R3u+pX/7uqePav9qn/TMD2n9tqPbH557/+vf/1HPKka0BAJyG1s7u7eVGo751TGFmiHlOufDqo5HGCAvxaKQxrkL2veL/8YGWup8d+uTBFh9cyD7I4tMxgjTOHfmeTsVJV5hE7OXrGvIfEgAAmDD/P+g/7g4SAAAAAAAAAAAAAAAAAAAA8DAN0XnYO7+JI12OzUTE0H2PHY65N56mAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAc678BAAD//7ebzJw=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000180)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ptrace$peekuser(0x3, r2, 0x1)
mount(0x0, 0x0, &(0x7f0000000080)='xfs\x00', 0x2208004, 0x0)
keyctl$setperm(0x5, 0x0, 0x40808)
r5 = socket(0x2, 0x80805, 0x0)
setsockopt$IP_VS_SO_SET_ADD(r5, 0x0, 0x482, &(0x7f0000000040)={0x84, @rand_addr=0x64010101, 0x4e22, 0x3, 'dh\x00', 0x1, 0x80005, 0x6f}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r5, 0x0, 0x487, 0x0, 0x0)
sendmsg$sock(r1, &(0x7f0000000400)={&(0x7f0000000580)=@in6={0x2, 0x4e22, 0x0, @dev}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x3}}], 0x18}, 0x0)
ioctl$sock_netdev_private(r0, 0x89fc, &(0x7f0000000440)="6732fd77967d749e06a7fe25e46f39b74033d30473d36d5f6d6564b5dd042caedb27665ed40bf567704a5765844836a889d7e82567fc4efa23d91d0dcd4f8ddf81d075a977bbce9dc5d1d18297058fe9be0abfd430e907fd225a5434d9c11570b50b5cbba0535a83a8ef0a37b3a8a28b83ae9f1639d0aadd5d53c9a8da849bed1895e7d50eacc5f9bf249ad4f19a21efd9")

7.615863585s ago: executing program 4 (id=527):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
openat$ttynull(0xffffffffffffff9c, &(0x7f0000000140), 0x82084, 0x0)

5.648509426s ago: executing program 2 (id=528):
socket$nl_generic(0x10, 0x3, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
getrlimit(0xc, &(0x7f0000000300))
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$9p_virtio(&(0x7f0000000000), &(0x7f0000000480)='./file0\x00', &(0x7f00000004c0), 0x8002, 0x0)
chdir(&(0x7f0000000300)='./file0\x00')
rename(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
chdir(0x0)
pipe2$9p(&(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x0)
r2 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
splice(r1, 0x0, r2, 0x0, 0x10000000000016, 0x0)

4.862614348s ago: executing program 1 (id=531):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vlan1\x00'})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

4.330333855s ago: executing program 0 (id=532):
timer_create(0x3, 0x0, 0x0)
timer_settime(0x0, 0xffffffffffffffff, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYINDEX(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x1c, 0xf, 0x6, 0x5, 0x0, 0x0, {0x5, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44844}, 0x40)
fchmod(0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x50, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7f, 0x61}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x37}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x18}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x38}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x26}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}]}, 0x50}}, 0x80)
r1 = syz_usb_connect(0x2, 0x24, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000340)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0})

4.086658428s ago: executing program 2 (id=533):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f00000003c0))
bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@bloom_filter={0x1e, 0xffff6c6b, 0xfffffffd, 0x7, 0x2, 0x1, 0x1, '\x00', 0x0, 0xffffffffffffffff, 0x4, 0x1, 0x1, 0xa}, 0x50)
openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000200)=0x5)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x8081)
r2 = syz_create_resource$binfmt(0x0)
openat$binfmt(0xffffffffffffff9c, r2, 0x42, 0x1ff)
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002040), 0x2, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
mount$fuse(0x0, 0x0, &(0x7f00000020c0), 0x0, &(0x7f0000000580)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {}, 0x2c, {}, 0x2c, {[{@max_read={'max_read', 0x3d, 0x10001}}]}})
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$uhid(0xffffffffffffff9c, &(0x7f0000000040), 0x802, 0x0)
syz_open_dev$hidraw(&(0x7f00000004c0), 0x0, 0x14a042)
mq_open(&(0x7f0000000240)='ba\x01adv_slave_1\x00', 0x8c2, 0x30, 0x0)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x20000000000, 0xffffffffffffffff, 0x0, 0xfffffffffffffffd, 0x1000001000, 0x46}, 0x0, &(0x7f0000000000)={0x3ff, 0x7, 0xff00, 0x9, 0x0, 0xf, 0x80000002}, 0x0, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000022c0)={0x3e4, 0x3e, 0x107, 0x70bd2b, 0x0, {0x1, 0x7c}, [@nested={0x11, 0xfc, 0x0, 0x1, [@generic="92583654c4318f9f1d814b2e98"]}, @nested={0x3bc, 0x1, 0x0, 0x1, [@nested={0x3b5, 0x56, 0x0, 0x1, [@generic="8178eb47e5391f1486d6735b235ffd1e388f63683f81616dd3ae9e32b151fb42d8889381e871ddbf3e939fd8b31dfb49820f5c1d46d26f83e2eb404ace99fb8d1049a2486d2e5de652551b0ffd9d86a287a97a69654671955a46ed926dc26401e7bd8d125dfbd177009e78ef01b50e840c573df65478d35bd2e31fd44ab1b3c40f43357b3cc0d5f3", @typed={0x8, 0x74, 0x0, 0x0, @ipv4=@local}, @nested={0x247, 0x48, 0x0, 0x1, [@generic="149697a35ceb27173fc1c2e7a42cea25813715f9828d515f24ef34ae67e90a509aac15b1fb0dc7e4d44f67ee11bb9b3a2ed5c9d9689fb933239056b57deca12599c3", @generic, @generic="335a18d9bef132cd341899918e4d67df8a75fdd76576940f3fa6f541df0de249a7be9c66d8c4156f43befa825de00376a5d4b5b773f215b2c56186a5d693bf2d6cb72726d6bad6d3383d9eb865cb042b681be384d2e3ea545d3e684edc0e57ce92d24e858bccbff2c21c06d852cc9aaf563606b6c90b01a01444d18c8942c6135ad58c2d40f09cab59e05288924472beec506f9cc529a21716db0df2614c4829a150aaa781e8fd923207de", @generic="9de340688aacf04d3e02bcc7088cc04a191a572e529c4d89885440d836807a11e2442a47d9f25b6f184e552ab6acd1ce5593ed2ccc897ee2055fd46c466cf0eec5f8f511ae370faf2cb2d521be24917325a848b3e67c240481c755832b08070b2f408cfd1fad97fc77ebc6c7a460042342404f7f2ee9d7663129615ec1c474a80f92e64a9c38d9fe49ac5fcb688350880205130557508f417e97ecc19ac9cb295abd7ec206a0", @typed={0xa0, 0xe8, 0x0, 0x0, @binary="325daea48232ab574a6bcde29ae9811862fb987d57da3c268720941601a5aa1b9a427e3c904b48e2dc15a04b8233624e69f713969dbf32c8ba7f84802b309fdda6f08fe035f69307c8352673bc7adf9453650126785c0d86b2d8b6ff3cf329e2b2c9f8826c93c02f87981b37fd6dc0bc1e3ef889a25d38a3560f166053bcac053ede3f8ce1afe0169d37415522896a4672417f08f3e558b4e9801a54"}, @typed={0x8, 0x39, 0x0, 0x0, @pid}, @nested={0x4, 0x121}, @nested={0x4, 0xf8}]}, @typed={0x8, 0xe8, 0x0, 0x0, @u32=0xfc}, @generic="225ae6ad24822cd9b35d9800560062dd932e8f6a7ceb224149d570826309f0dc81feeeb9b2c105b971aa106201bc633b54c7d8b8adac9ffd4cec2645247fc1a5edce1d624d554796b8361cd35d068e75da93befda5ac2108d6f8cfb8779e3248ae79515801dd6492ca726265c714c4c06f222d881e74b57c", @generic="5de5022b903e3f0dd6ea9d5f44bf87c2263621d97ee1e104fbbb2da20000d5fd308a3e1c924b63a87fb64c5f772a5fcb5a5fb513a8923505206b90a9c66865582f96cef82c7f70b70934c27ac69aea1005aae9a6420ecdc2b8"]}]}]}, 0x3e4}, 0x1, 0x0, 0x0, 0xc000}, 0x4040)
mount(&(0x7f0000000040)=@nullb, &(0x7f0000000100)='.\x00', &(0x7f0000002280)='vxfs\x00', 0x1000080, 0x0)
openat2(0xffffffffffffffff, 0x0, &(0x7f0000000000)={0x4400, 0x0, 0x13}, 0x18)
mount_setattr(0xffffffffffffffff, &(0x7f0000000000)='./file0\x00', 0x900, &(0x7f00000000c0)={0x0, 0x80, 0x180000}, 0x20)

4.086014488s ago: executing program 1 (id=534):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000412ff8)="63429860415b7ac7", 0x8)
r1 = accept(r0, 0x0, 0x0)
sendmmsg$alg(r1, &(0x7f0000000740), 0x0, 0x0)
recvmsg(r1, &(0x7f000000b680)={0x0, 0xffffffffffffffc3, &(0x7f000000b600)=[{&(0x7f000000b4c0)=""/5, 0x4}, {&(0x7f000000b500)=""/153, 0xfb59}], 0x2}, 0x0)

3.383110345s ago: executing program 0 (id=537):
syz_emit_ethernet(0x72, &(0x7f0000000400)={@broadcast, @random="17043a73dbde", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x8, 0x64, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x5, 0x0, 0x0, 0xe0, 0x0, 0xe000, {0x12, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, 0x0, @empty=0xac1414aa, @rand_addr, {[@lsrr={0x83, 0x3}, @rr={0x7, 0x3}, @timestamp_prespec={0x44, 0x2c, 0x0, 0x3, 0x0, [{@private=0xa010102, 0x10000}, {@private}, {@local}, {@private}, {@remote}]}]}}}}}}}, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeeb, 0x8031, 0xffffffffffffffff, 0xc36e5000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r1 = syz_open_dev$sg(&(0x7f00000000c0), 0x6f5e, 0x2)
ioctl$FIBMAP(r1, 0x1, &(0x7f0000000040)=0x85)

3.192738804s ago: executing program 2 (id=538):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000140)={0x28, r1, 0x1, 0x2, 0x25dfdbfe, {0x3}, [@TIPC_NLA_BEARER={0x14, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_NAME={0xd, 0x1, @udp='udp:syz2\x00'}]}]}, 0x28}}, 0x40000000)

3.100582249s ago: executing program 2 (id=539):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_open_procfs(0x0, &(0x7f0000000040)='smaps\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x180)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYBLOB=',group_i'])
read$FUSE(r1, &(0x7f0000002140)={0x2020, 0x0, <r2=>0x0}, 0x2020)
write$FUSE_INIT(r1, &(0x7f0000000440)={0x50, 0x0, r2, {0x7, 0x29, 0x0, 0x0, 0x0, 0x2, 0xfffffffd, 0x2, 0x0, 0x0, 0x0, 0x1}}, 0x50)
openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x3)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000000)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmmsg$unix(r4, &(0x7f00000001c0)=[{{0x0, 0x0, &(0x7f0000000380)=[{0x0}], 0x1, 0x0, 0x0, 0x48044}}], 0x1, 0x20000000)
pipe(&(0x7f0000000080)={0xffffffffffffffff, <r5=>0xffffffffffffffff})
write$binfmt_elf64(r4, &(0x7f0000000500)=ANY=[], 0x78)
splice(r3, 0x0, r5, 0x0, 0x39000, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0)
r6 = openat(0xffffffffffffffff, &(0x7f0000000a80)='./file0\x00', 0x0, 0x3)
ioctl$TIOCGPTPEER(r6, 0x932, 0x200000000005)
creat(&(0x7f0000000280)='./file0\x00', 0xecf86c37d53049cc)
close(0x3)

2.88812867s ago: executing program 3 (id=540):
syz_fuse_handle_req(0xffffffffffffffff, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x61, 0x10, 0xa4}, [@ldst={0x7, 0x3, 0x0, 0x1c10a1}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd}, 0x48)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c2)
mknodat(0xffffffffffffff9c, &(0x7f0000000180)='./file0/file1\x00', 0x8000, 0x5)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0xc0802, 0x0)
ioctl$PPPIOCSFLAGS1(r3, 0x40047459, &(0x7f0000000100)=0x2000004)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f00000001c0)={0x0, 0x0, 0x0, &(0x7f0000001280), 0x2, 0xffffffffffffffff, 0x0, 0x8000000}, 0x38)

2.88740366s ago: executing program 1 (id=541):
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x13, &(0x7f00000005c0)=0x9, 0x4)
r0 = socket$inet6(0xa, 0x802, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
syz_mount_image$hfs(&(0x7f0000000000), &(0x7f00000007c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x14013, &(0x7f0000000480)={[{@gid}, {@codepage={'codepage', 0x3d, 'cp860'}}, {@creator={'creator', 0x3d, "a426dba3"}}]}, 0x4, 0x339, &(0x7f0000000140)="$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")
syz_mount_image$fuse(&(0x7f00000001c0), &(0x7f00000002c0)='.\x00', 0x322020, &(0x7f0000000140)=ANY=[], 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x208c822, 0x0)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file1/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
unshare(0x20040600)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000009840)='cpuset.memory_pressure_enabled\x00', 0x275a, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r3, &(0x7f0000000100)={0x10000000})
ioctl$VIDIOC_S_STD(r3, 0x40085618, &(0x7f0000000580)=0x2000)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x4, 0x16, &(0x7f0000000780)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a}, 0x94)
ioctl$KVM_GET_STATS_FD_cpu(r3, 0xaece)
bpf$PROG_BIND_MAP(0xa, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000000))
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0x3, &(0x7f0000000000)=@framed={{0x6a, 0xa, 0x0, 0xff00, 0x0, 0x71, 0x10, 0x61}}, &(0x7f0000000480)='syzkaller\x00'}, 0x94)
setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
r4 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000080), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FMT(r4, 0xc0405602, &(0x7f0000000040)={0xb, 0xa, 0x100, "3258c5c0d651aa231b00280000000000000000000000ed00", 0x32435750})
setsockopt$inet6_opts(r0, 0x29, 0x37, &(0x7f0000000000)=ANY=[@ANYBLOB="00020401"], 0x18)
connect$inet6(r0, &(0x7f0000000240)={0xa, 0x6e23, 0x2, @mcast1, 0x9}, 0x1c)
sendmmsg$inet6(r0, &(0x7f0000001840), 0x3b, 0x0)

2.212143745s ago: executing program 0 (id=542):
r0 = socket$nl_route(0x10, 0x3, 0x0)
connect$vsock_stream(0xffffffffffffffff, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
dup2(r0, r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000100)={0x0, 'veth0_to_batadv\x00', {0x1}, 0x2a})

2.178475367s ago: executing program 2 (id=543):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, 0x0, 0x0)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r3)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r3, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r3, 0x9)
r4 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r4, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r5, 0xffffffffffffffff, 0x0)
socket$inet6(0xa, 0x2, 0x0)

1.348695s ago: executing program 3 (id=544):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x40241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r1 = socket$kcm(0x2, 0x3, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000080)={'syzkaller1\x00', @broadcast})
ioctl$sock_inet_SIOCADDRT(0xffffffffffffffff, 0x890b, &(0x7f00000003c0)={0x0, {0x2, 0x4e20, @rand_addr=0x64010100}, {0x2, 0x4a24, @remote}, {0x2, 0x4e25, @private=0xa010101}, 0x204, 0x0, 0x0, 0x0, 0x2008, 0x0, 0x200003, 0x2, 0x2})
write$tun(r0, &(0x7f00000003c0)=ANY=[@ANYBLOB="080000fa"], 0xdc)

1.024066687s ago: executing program 3 (id=545):
sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x20000044)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000200)={'vlan1\x00'})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0xc1842, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000380)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-cast5-avx\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f00000004c0)="2c385a7af3be", 0x6)
r1 = accept4(r0, 0x0, 0x0, 0x800)
sendmmsg$alg(r1, &(0x7f0000000040)=[{0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe3f}, {&(0x7f0000000140)="ebe3a0e9796cfd1647e299f4e376fdba128280b372219d205e81f4a7f71c1926aae1efd7e0054a863f3d5cfe6cb55b5bb9fa6935849e6098ed884e7cb51726b360fbb37b4fe035bbb095873048", 0xff31}, {&(0x7f00000003c0)="e8700e444d50a969ff67347cff6127e6ef12ee3819271482a4975a52c1ab9b8b4db3945d1032005eabe97b4dc33a47d3a158da988456d30026b433186f53cdcdb93a4722bf306a10470d50f5cb1ece9ead3459bab1cf1538cd0b157653c5e892962c80f158c443e9c6ad7d2a8103ef2f4b93766b9a21501f94c1568b13756b66f74f46cf801704d2da8b96c34070b233af0afcc436712e58ed25e721193af05a045ad3fdc928f02f3dbad19d3e66eebda2e63f3f46ef4511cee26d7b48241847bf9e343ef4674c45e2a085060f11"}], 0x1, &(0x7f0000000380)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}], 0x1, 0x40800)
recvmsg(r1, &(0x7f00000005c0)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f00000000c0)=""/81, 0x7ffff000}, {&(0x7f0000000200)=""/83, 0x20000253}], 0x2}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_FRAME(r2, &(0x7f0000001380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000dc0)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d50633008000009effffffffffff080211000001"], 0x6f4}}, 0x0)

878.724244ms ago: executing program 3 (id=546):
syz_usb_connect$uac2(0x3, 0x0, 0x0, 0x0)
syz_usb_control_io$uac3(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000400), 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}, 0x1, 0x0, 0x0, 0x44081}, 0x0)
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x2, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000340)={&(0x7f00000005c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0x10}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x3, 0x7, 0x6361, 0x5, 0xffffffff, 0xfffffff5}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x240080c1}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=@newqdisc={0x48, 0x24, 0x4ee4e6a52ff56541, 0x70bd2b, 0x80000, {0x0, 0x0, 0x0, r7, {0x0, 0x6}, {0x2, 0xb}, {0xffe0, 0xb}}, [@qdisc_kind_options=@q_cbs={{0x8}, {0x1c, 0x2, @TCA_CBS_PARMS={0x18, 0x1, {0x0, '\x00', 0xb, 0x5, 0xcac, 0xc}}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x2404c0f1}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

821.299677ms ago: executing program 4 (id=547):
timer_create(0x3, 0x0, 0x0)
timer_settime(0x0, 0xffffffffffffffff, 0x0, 0x0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_GET_BYINDEX(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000180)={0x1c, 0xf, 0x6, 0x5, 0x0, 0x0, {0x5, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}, 0x1, 0x0, 0x0, 0x44844}, 0x40)
fchmod(0xffffffffffffffff, 0x8)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_DISCONNECT(0xffffffffffffffff, &(0x7f0000000340)={&(0x7f00000000c0)={0x10, 0x0, 0x0, 0x40000}, 0xc, &(0x7f0000000300)={&(0x7f0000000280)={0x50, 0x0, 0x100, 0x70bd2a, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x7f, 0x61}}}}, [@NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x37}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x1f}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x18}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x38}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x26}, @NL80211_ATTR_REASON_CODE={0x6, 0x36, 0x9}]}, 0x50}}, 0x80)
r1 = syz_usb_connect(0x2, 0x24, 0x0, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, 0x0, 0x0)
syz_usb_control_io$hid(r1, 0x0, &(0x7f0000000340)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0})

419.815478ms ago: executing program 0 (id=548):
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
ioprio_set$pid(0x2, 0xffffffffffffffff, 0x2004)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_inet_SIOCSIFADDR(0xffffffffffffffff, 0x8916, 0x0)
mount(0x0, 0x0, &(0x7f00000000c0)='tracefs\x00', 0x1214040, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000000400)=""/4096, 0xc00)

206.487509ms ago: executing program 4 (id=549):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0xe, &(0x7f0000000580)={[{@journal_ioprio={'journal_ioprio', 0x3d, 0x1}}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0xeb0}}, {@nolazytime}, {@lazytime}, {@nombcache}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x4000000}}, {@usrjquota}]}, 0x1, 0x440, &(0x7f0000000780)="$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")
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
chdir(&(0x7f0000000140)='./bus\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sendmsg$NLBL_UNLABEL_C_ACCEPT(0xffffffffffffffff, 0x0, 0x804d)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x3, 0x7)
symlink(&(0x7f0000000540)='./file0/file0/file0\x00', &(0x7f0000000640)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

99.916314ms ago: executing program 3 (id=550):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x400, 0x0)
ioctl$COMEDI_BUFCONFIG(r0, 0x8020640d, &(0x7f0000000100)={0x1, 0x34a, 0x5, 0x8})

58.251707ms ago: executing program 2 (id=551):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0)
syz_usb_connect$cdc_ecm(0x6, 0x4d, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="043ef50d"], 0xf8)

0s ago: executing program 3 (id=552):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x2a, 0xa9}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r3, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'pcbc(fcrypt)\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r3, 0x117, 0x1, &(0x7f0000412ff8)="63429860415b7ac7", 0x8)
r4 = accept(r3, 0x0, 0x0)
recvmsg(r4, &(0x7f000000b680)={0x0, 0xffffffffffffffc3, &(0x7f000000b600)=[{&(0x7f000000b4c0)=""/5, 0x4}, {&(0x7f000000b500)=""/153, 0xfb59}], 0x2}, 0x0)
r5 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_DELETE(r6, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000080)=ANY=[@ANYBLOB="3800000002010700ffff00000000000002e9206d44fbed4a91000002180001801400018008000100ac1414bb09000006000000"], 0x38}, 0x1, 0x0, 0x0, 0x10050}, 0x4)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r5, 0x4018620d, &(0x7f0000003280)={0x73622a85, 0x1100, 0x1})
r7 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r7, 0xc0306201, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
socket$inet6(0xa, 0x5, 0x0)
read$FUSE(0xffffffffffffffff, &(0x7f00000040c0)={0x2020}, 0x2020)
socket(0x10, 0x3, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.206' (ED25519) to the list of known hosts.
syzkaller login: [   54.252775][ T4171] cgroup: Unknown subsys name 'net'
[   54.426114][ T4171] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   55.857181][ T4171] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   57.217721][ T4188] chnl_net:caif_netlink_parms(): no params data found
[   57.306510][ T4184] chnl_net:caif_netlink_parms(): no params data found
[   57.369455][ T4187] chnl_net:caif_netlink_parms(): no params data found
[   57.414137][ T4186] chnl_net:caif_netlink_parms(): no params data found
[   57.429265][ T4188] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.436612][ T4188] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.445234][ T4188] device bridge_slave_0 entered promiscuous mode
[   57.459348][ T4188] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.466624][ T4188] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.474504][ T4188] device bridge_slave_1 entered promiscuous mode
[   57.528630][ T4185] chnl_net:caif_netlink_parms(): no params data found
[   57.537716][ T4184] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.545742][ T4184] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.554125][ T4184] device bridge_slave_0 entered promiscuous mode
[   57.569188][ T4188] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.584126][ T4184] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.591354][ T4184] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.599275][ T4184] device bridge_slave_1 entered promiscuous mode
[   57.619520][ T4188] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.679403][ T4186] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.686580][ T4186] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.694528][ T4186] device bridge_slave_0 entered promiscuous mode
[   57.713870][ T4184] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.730505][ T4186] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.737658][ T4186] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.746360][ T4186] device bridge_slave_1 entered promiscuous mode
[   57.755589][ T4188] team0: Port device team_slave_0 added
[   57.768239][ T4184] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.777931][ T4187] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.785242][ T4187] bridge0: port 1(bridge_slave_0) entered disabled state
[   57.793215][ T4187] device bridge_slave_0 entered promiscuous mode
[   57.809035][ T4188] team0: Port device team_slave_1 added
[   57.832417][ T4187] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.839614][ T4187] bridge0: port 2(bridge_slave_1) entered disabled state
[   57.848324][ T4187] device bridge_slave_1 entered promiscuous mode
[   57.862186][ T4186] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.878701][ T4186] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   57.935253][ T4184] team0: Port device team_slave_0 added
[   57.944870][ T4187] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   57.954689][ T4188] batman_adv: batadv0: Adding interface: batadv_slave_0
[   57.961886][ T4188] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   57.988130][ T4188] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.002683][ T4186] team0: Port device team_slave_0 added
[   58.009100][ T4188] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.017613][ T4188] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.043862][ T4188] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.055382][ T4185] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.062659][ T4185] bridge0: port 1(bridge_slave_0) entered disabled state
[   58.070471][ T4185] device bridge_slave_0 entered promiscuous mode
[   58.079222][ T4184] team0: Port device team_slave_1 added
[   58.086513][ T4187] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.103269][ T4186] team0: Port device team_slave_1 added
[   58.118100][ T4185] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.125761][ T4185] bridge0: port 2(bridge_slave_1) entered disabled state
[   58.134073][ T4185] device bridge_slave_1 entered promiscuous mode
[   58.155970][ T4187] team0: Port device team_slave_0 added
[   58.164378][ T4187] team0: Port device team_slave_1 added
[   58.222960][ T4184] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.230142][ T4184] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.256864][ T4184] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.268560][ T4186] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.276049][ T4186] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.302873][ T4186] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.320897][ T4186] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.327880][ T4186] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.355611][ T4186] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.369941][ T4185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   58.379715][ T4187] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.387101][ T4187] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.413532][ T4187] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.425089][ T4184] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.432435][ T4184] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.458621][ T4184] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.476156][ T4188] device hsr_slave_0 entered promiscuous mode
[   58.482863][ T4188] device hsr_slave_1 entered promiscuous mode
[   58.495843][ T4185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   58.505667][ T4187] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.512749][ T4187] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.539155][ T4187] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.578464][ T4184] device hsr_slave_0 entered promiscuous mode
[   58.585591][ T4184] device hsr_slave_1 entered promiscuous mode
[   58.592984][ T4184] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.600946][ T4184] Cannot create hsr debugfs directory
[   58.636369][ T4185] team0: Port device team_slave_0 added
[   58.652116][ T4185] team0: Port device team_slave_1 added
[   58.697540][ T4187] device hsr_slave_0 entered promiscuous mode
[   58.705587][ T4187] device hsr_slave_1 entered promiscuous mode
[   58.712489][ T4187] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.720157][ T4187] Cannot create hsr debugfs directory
[   58.728986][ T4186] device hsr_slave_0 entered promiscuous mode
[   58.736489][ T4186] device hsr_slave_1 entered promiscuous mode
[   58.743124][ T4186] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   58.751282][ T4186] Cannot create hsr debugfs directory
[   58.769839][ T4185] batman_adv: batadv0: Adding interface: batadv_slave_0
[   58.776943][ T4185] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.803082][ T4185] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   58.838794][ T4185] batman_adv: batadv0: Adding interface: batadv_slave_1
[   58.845858][ T4185] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   58.873235][ T4185] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   58.971418][    T7] Bluetooth: hci4: command 0x0409 tx timeout
[   58.971513][   T23] Bluetooth: hci0: command 0x0409 tx timeout
[   58.991628][   T23] Bluetooth: hci3: command 0x0409 tx timeout
[   59.000499][   T23] Bluetooth: hci2: command 0x0409 tx timeout
[   59.023559][   T23] Bluetooth: hci1: command 0x0409 tx timeout
[   59.047029][ T4185] device hsr_slave_0 entered promiscuous mode
[   59.054503][ T4185] device hsr_slave_1 entered promiscuous mode
[   59.061815][ T4185] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   59.069747][ T4185] Cannot create hsr debugfs directory
[   59.236899][ T4188] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   59.254594][ T4188] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   59.264458][ T4188] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   59.275701][ T4188] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   59.317190][ T4187] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   59.329575][ T4187] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   59.340094][ T4187] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   59.357869][ T4187] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   59.448709][ T4186] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   59.459533][ T4186] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   59.475331][ T4188] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.483047][ T4186] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   59.496226][ T4186] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   59.522206][ T4188] 8021q: adding VLAN 0 to HW filter on device team0
[   59.530968][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   59.540033][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   59.580929][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   59.590152][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   59.605415][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.612786][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.622391][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   59.633431][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   59.642133][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   59.649175][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   59.657423][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   59.684654][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   59.693477][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   59.703345][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   59.712736][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   59.721324][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   59.733771][ T4187] 8021q: adding VLAN 0 to HW filter on device bond0
[   59.741716][ T4184] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   59.752031][ T4184] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   59.767081][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   59.776831][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   59.785839][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   59.795245][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   59.819461][ T4187] 8021q: adding VLAN 0 to HW filter on device team0
[   59.827958][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   59.837907][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   59.846241][ T4184] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   59.873361][ T4184] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   59.896145][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   59.905560][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   59.915013][  T154] bridge0: port 1(bridge_slave_0) entered blocking state
[   59.922130][  T154] bridge0: port 1(bridge_slave_0) entered forwarding state
[   59.931240][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   59.946017][ T4188] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   59.958132][ T4188] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   59.983833][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   59.993541][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   60.002368][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.009734][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.019840][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   60.030113][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   60.065987][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.076298][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   60.085926][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   60.097767][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   60.107908][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   60.117077][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   60.129807][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   60.142559][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   60.151966][ T4185] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   60.163361][ T4185] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   60.174559][ T4185] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   60.185891][ T4185] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   60.198319][ T4187] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   60.210089][ T4187] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   60.229460][ T4188] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.238294][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   60.247716][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   60.256916][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   60.266071][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   60.273878][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   60.303315][ T4186] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.358530][ T4186] 8021q: adding VLAN 0 to HW filter on device team0
[   60.377646][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   60.387354][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   60.395490][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   60.405877][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   60.439489][ T4184] 8021q: adding VLAN 0 to HW filter on device bond0
[   60.458396][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   60.468560][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   60.484365][ T1280] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.491517][ T1280] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.501730][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   60.511169][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   60.519788][ T1280] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.526878][ T1280] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.535640][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.544855][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   60.558525][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   60.578538][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   60.588636][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   60.602929][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   60.612174][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   60.629859][ T4188] device veth0_vlan entered promiscuous mode
[   60.637660][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   60.646174][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   60.654648][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   60.664251][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   60.672385][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   60.681510][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   60.692466][ T4184] 8021q: adding VLAN 0 to HW filter on device team0
[   60.709677][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   60.717719][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   60.726908][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   60.736858][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   60.743985][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   60.752924][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   60.762172][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   60.770469][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   60.778877][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   60.787058][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   60.807232][ T4187] 8021q: adding VLAN 0 to HW filter on device batadv0
[   60.816425][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   60.826068][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   60.856811][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   60.867110][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   60.876349][  T154] bridge0: port 2(bridge_slave_1) entered blocking state
[   60.883590][  T154] bridge0: port 2(bridge_slave_1) entered forwarding state
[   60.894329][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   60.903595][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   60.915793][ T4188] device veth1_vlan entered promiscuous mode
[   60.930808][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   60.938883][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   60.949080][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   60.958696][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   60.968378][ T4186] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   61.021817][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   61.030164][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   61.039556][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   61.050894][ T4232] Bluetooth: hci1: command 0x041b tx timeout
[   61.055703][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   61.057032][ T4232] Bluetooth: hci2: command 0x041b tx timeout
[   61.065259][   T13] Bluetooth: hci4: command 0x041b tx timeout
[   61.079749][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.093326][ T4232] Bluetooth: hci3: command 0x041b tx timeout
[   61.098477][ T4188] device veth0_macvtap entered promiscuous mode
[   61.099644][ T4232] Bluetooth: hci0: command 0x041b tx timeout
[   61.122126][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   61.132535][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   61.145196][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   61.158330][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   61.179643][ T4188] device veth1_macvtap entered promiscuous mode
[   61.195767][ T4185] 8021q: adding VLAN 0 to HW filter on device bond0
[   61.205073][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   61.214757][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   61.225645][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   61.234665][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   61.249499][ T4187] device veth0_vlan entered promiscuous mode
[   61.267662][ T4188] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.279478][ T4188] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.287474][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   61.295970][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   61.306231][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   61.315112][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   61.324340][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   61.333638][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   61.348048][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   61.356728][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   61.380356][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   61.389529][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   61.407727][ T4185] 8021q: adding VLAN 0 to HW filter on device team0
[   61.416895][ T4187] device veth1_vlan entered promiscuous mode
[   61.428237][ T4186] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.444747][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   61.469051][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   61.486001][ T4188] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.496538][ T4188] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.505702][ T4188] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.514547][ T4188] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   61.555165][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   61.571315][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   61.581426][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[   61.588520][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[   61.597535][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   61.606452][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   61.616240][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   61.623367][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   61.677023][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   61.685256][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   61.696153][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   61.706936][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   61.717874][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   61.726491][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   61.734216][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   61.742144][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   61.752670][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   61.762090][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   61.775470][ T4184] 8021q: adding VLAN 0 to HW filter on device batadv0
[   61.803359][ T4187] device veth0_macvtap entered promiscuous mode
[   61.813248][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   61.826282][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   61.838281][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   61.887298][ T4185] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   61.901552][ T4185] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   61.914293][ T4187] device veth1_macvtap entered promiscuous mode
[   61.928950][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   61.938208][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   61.946952][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   61.956711][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   61.965589][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   61.974578][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   62.014878][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   62.024774][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   62.067505][ T4187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   62.082217][ T1280] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.090331][ T1280] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.104164][ T4187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.117303][ T4187] batman_adv: batadv0: Interface activated: batadv_slave_0
[   62.126701][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   62.135936][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   62.144841][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   62.153341][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   62.162270][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   62.196949][ T4187] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.219647][ T4187] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.236485][ T4187] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.261717][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   62.270088][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   62.284979][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   62.294304][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   62.304090][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   62.312299][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   62.323597][ T4184] device veth0_vlan entered promiscuous mode
[   62.341119][ T4187] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   62.349946][ T4187] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   62.361661][ T4187] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   62.370501][ T4187] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.389503][ T4186] device veth0_vlan entered promiscuous mode
[   62.402712][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   62.412316][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   62.431016][  T405] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.433299][ T4184] device veth1_vlan entered promiscuous mode
[   62.438962][  T405] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.457735][ T4186] device veth1_vlan entered promiscuous mode
[   62.473543][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   62.482369][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   62.490475][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   62.506297][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   62.515333][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   62.523189][ T4255] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   62.547696][ T4185] 8021q: adding VLAN 0 to HW filter on device batadv0
[   62.618767][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   62.629020][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   62.638503][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   62.650321][ T4186] device veth0_macvtap entered promiscuous mode
[   62.666188][ T4184] device veth0_macvtap entered promiscuous mode
[   62.703514][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   62.714093][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   62.724701][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   62.735944][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   62.746117][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   62.758578][ T4186] device veth1_macvtap entered promiscuous mode
[   62.777304][ T4184] device veth1_macvtap entered promiscuous mode
[   62.816996][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   62.833929][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   62.846781][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   62.868629][ T1280] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.890269][ T1280] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.939978][ T1280] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   62.949347][ T1280] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   62.999208][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.011468][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.021795][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.032356][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.044262][ T4186] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.057380][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   63.072056][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   63.087931][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   63.104170][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   63.129763][ T4266] netlink: 36 bytes leftover after parsing attributes in process `syz.2.3'.
[   63.699615][ T2302] Bluetooth: hci0: command 0x040f tx timeout
[   63.769356][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.790100][ T2302] Bluetooth: hci3: command 0x040f tx timeout
[   63.796708][ T2302] Bluetooth: hci2: command 0x040f tx timeout
[   63.802945][ T2302] Bluetooth: hci4: command 0x040f tx timeout
[   63.809056][ T2302] Bluetooth: hci1: command 0x040f tx timeout
[   63.821262][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.832360][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.843661][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.855796][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   63.867084][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.878946][ T4184] batman_adv: batadv0: Interface activated: batadv_slave_0
[   63.895592][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.914801][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.930570][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   63.949987][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   63.962359][ T4186] batman_adv: batadv0: Interface activated: batadv_slave_1
[   64.039624][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   64.061663][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   64.071521][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   64.080302][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   64.890326][ T4276] loop3: detected capacity change from 0 to 512
[   65.066714][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   65.741812][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   65.800819][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   65.808753][ T4267] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   65.831321][ T4282] loop2: detected capacity change from 0 to 22
[   65.850967][ T2302] Bluetooth: hci1: command 0x0419 tx timeout
[   65.855094][ T4185] device veth0_vlan entered promiscuous mode
[   65.859414][ T2302] Bluetooth: hci4: command 0x0419 tx timeout
[   65.892704][ T4186] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   65.910903][ T2302] Bluetooth: hci2: command 0x0419 tx timeout
[   65.935316][ T2302] Bluetooth: hci3: command 0x0419 tx timeout
[   65.948902][ T2302] Bluetooth: hci0: command 0x0419 tx timeout
[   65.968943][ T4186] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   65.978523][ T4186] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   65.994251][ T4186] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   66.051118][ T4282] MTD: Attempt to mount non-MTD device "/dev/loop2"
[   66.072957][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.087391][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.098537][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.109308][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.120666][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   66.136545][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   66.141452][ T4282] romfs: Mounting image 'rom 637cf1fa' through the block layer
[   66.150392][ T4184] batman_adv: batadv0: Interface activated: batadv_slave_1
[   66.505244][ T4185] device veth1_vlan entered promiscuous mode
[   67.065728][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   67.075142][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   69.185049][ T4184] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.313136][ T4184] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.446807][ T4184] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.535173][ T4294] sctp: failed to load transform for md5: -2
[   69.582522][ T4184] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.677758][ T4296] IPv6: NLM_F_REPLACE set, but no existing node found!
[   69.738662][ T4307] input: syz0 as /devices/virtual/input/input5
[   69.797711][ T4185] device veth0_macvtap entered promiscuous mode
[   69.808093][ T4185] device veth1_macvtap entered promiscuous mode
[   69.825753][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.884087][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.894287][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.905206][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.915886][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.926666][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.938206][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.949831][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.967678][   T26] audit: type=1326 audit(1777068883.577:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4308 comm="syz.3.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e66abadd9 code=0x7ffc0000
[   70.002629][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.005269][   T26] audit: type=1326 audit(1777068883.597:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4308 comm="syz.3.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e66abadd9 code=0x7ffc0000
[   70.045903][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.060574][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.073864][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.084971][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.085092][   T26] audit: type=1326 audit(1777068883.617:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4308 comm="syz.3.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4e66abadd9 code=0x7ffc0000
[   70.117240][    C1] vkms_vblank_simulate: vblank timer overrun
[   70.117306][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.117656][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.127200][ T4312] loop2: detected capacity change from 0 to 1024
[   70.140641][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.165160][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.175798][ T4312] EXT4-fs (loop2): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[   70.196733][ T4312] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (38281!=20869)
[   70.197310][   T26] audit: type=1326 audit(1777068883.807:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4308 comm="syz.3.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e66abadd9 code=0x7ffc0000
[   70.238816][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.240695][ T4312] EXT4-fs error (device loop2): ext4_get_journal_inode:5187: comm syz.2.12: inode #63: comm syz.2.12: iget: illegal inode #
[   70.257309][   T26] audit: type=1326 audit(1777068883.827:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4308 comm="syz.3.11" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4e66abadd9 code=0x7ffc0000
[   70.300640][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   70.301046][ T1280] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.309226][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   70.341315][ T4312] EXT4-fs (loop2): no journal found
[   70.351272][ T1280] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.357656][ T4312] EXT4-fs (loop2): can't get journal size
[   70.360389][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   70.373800][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   70.377944][ T4312] EXT4-fs (loop2): failed to initialize system zone (-22)
[   70.383166][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   70.394827][ T4312] EXT4-fs (loop2): mount failed
[   70.398948][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   70.414247][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   70.424039][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   70.434357][  T405] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   70.462651][ T4185] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.472472][ T4185] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.481756][ T4185] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.491672][ T4185] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.521042][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.535294][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.558281][ T4288] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   70.677061][  T405] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.697085][  T405] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.743902][  T405] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.752720][  T405] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.780292][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   70.813300][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   70.837568][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.846475][ T4235] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[   70.907868][ T4316] netlink: 164 bytes leftover after parsing attributes in process `syz.2.12'.
[   70.940876][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.990461][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   71.045354][  T144] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.087256][  T144] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.117353][ T4318] Invalid option length (1046792) for dns_resolver key
[   71.119973][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   71.490573][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!!
[   71.510573][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   71.520559][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   71.530569][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   71.540567][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   71.550554][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   71.560591][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   71.570566][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   71.580562][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[   71.590561][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[   72.841484][ T1428] ieee802154 phy0 wpan0: encryption failed: -22
[   72.848124][ T1428] ieee802154 phy1 wpan1: encryption failed: -22
[   73.110724][ T4235] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[   73.210650][ T4235] usb 4-1: config 4 has 0 interfaces, different from the descriptor's value: 1
[   73.597599][ T4235] usb 4-1: New USB device found, idVendor=1044, idProduct=7001, bcdDevice= 5.20
[   73.652033][ T4235] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   73.765089][ T4235] usb 4-1: can't set config #4, error -71
[   74.408416][ T4235] usb 4-1: USB disconnect, device number 2
[   74.492744][ T4404] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   74.706105][ T4406] loop2: detected capacity change from 0 to 4096
[   74.747922][ T4406] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[   74.779855][ T4406] ntfs3: loop2: Failed to load $Bitmap.
[   74.806543][ T4410] netlink: 28 bytes leftover after parsing attributes in process `syz.3.21'.
[   74.859287][ T4410] netlink: 8 bytes leftover after parsing attributes in process `syz.3.21'.
[   75.086540][ T4412] loop0: detected capacity change from 0 to 512
[   75.603862][ T4412] =======================================================
[   75.603862][ T4412] WARNING: The mand mount option has been deprecated and
[   75.603862][ T4412]          and is ignored by this kernel. Remove the mand
[   75.603862][ T4412]          option from the mount to silence this warning.
[   75.603862][ T4412] =======================================================
[   76.620882][ T4412] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   77.790520][    C0] sched: RT throttling activated
[   77.964660][ T4412] EXT4-fs warning (device loop0): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop0.
[   78.030972][ T4438] loop3: detected capacity change from 0 to 256
[   78.100609][ T4439] Set syz1 is full, maxelem 0 reached
[   78.114846][   T26] audit: type=1326 audit(1777068891.727:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   78.213294][ T4438] exfat: Deprecated parameter 'utf8'
[   78.235220][ T4438] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[   78.340310][ T4444] loop1: detected capacity change from 0 to 64
[   78.382348][   T26] audit: type=1326 audit(1777068891.777:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   78.415514][   T26] audit: type=1326 audit(1777068891.777:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   78.630190][   T26] audit: type=1326 audit(1777068891.777:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   78.654458][ T4449] loop4: detected capacity change from 0 to 256
[   78.701294][   T26] audit: type=1326 audit(1777068891.777:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=273 compat=0 ip=0x7f1e132de22c code=0x7ffc0000
[   78.711519][ T4449] exfat: Deprecated parameter 'utf8'
[   79.309089][ T4449] exfat: Deprecated parameter 'utf8'
[   79.658799][   T26] audit: type=1326 audit(1777068891.777:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   80.414686][   T26] audit: type=1326 audit(1777068891.777:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   80.459914][ T4449] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xffade8b4, utbl_chksum : 0xe619d30d)
[   80.547909][   T26] audit: type=1326 audit(1777068891.777:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   80.654377][   T26] audit: type=1326 audit(1777068891.777:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   83.960711][   T26] audit: type=1326 audit(1777068891.777:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=14 compat=0 ip=0x7f1e132de28e code=0x7ffc0000
[   84.020595][ T1111] cfg80211: failed to load regulatory.db
[   84.035768][   T26] audit: type=1326 audit(1777068891.777:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f1e13321a6b code=0x7ffc0000
[   84.088713][   T26] audit: type=1326 audit(1777068891.787:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f1e13323647 code=0x7ffc0000
[   84.332688][   T26] audit: type=1326 audit(1777068891.787:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f1e132e260e code=0x7ffc0000
[   84.379208][ T4473] Zero length message leads to an empty skb
[   84.515223][   T26] audit: type=1326 audit(1777068891.787:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1e132e260e code=0x7ffc0000
[   84.546429][ T4473] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[   84.837964][ T4485] netlink: 36 bytes leftover after parsing attributes in process `syz.3.41'.
[   85.728983][   T26] audit: type=1326 audit(1777068891.787:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f1e132e260e code=0x7ffc0000
[   85.772263][ T4491] loop1: detected capacity change from 0 to 512
[   85.858067][   T26] audit: type=1326 audit(1777068891.787:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   85.878533][ T4496] loop4: detected capacity change from 0 to 64
[   85.882911][   T26] audit: type=1326 audit(1777068891.787:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   86.950720][   T26] audit: type=1326 audit(1777068891.787:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1e13321dd9 code=0x7ffc0000
[   87.057067][ T4508] loop3: detected capacity change from 0 to 4096
[   87.460108][ T4491] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.44: bg 0: block 473: padding at end of block bitmap is not set
[   87.571468][ T4506] loop0: detected capacity change from 0 to 4096
[   87.578809][   T26] audit: type=1326 audit(1777068891.787:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4436 comm="syz.4.29" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f1e132e260e code=0x7ffc0000
[   87.611488][ T4491] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6191: Corrupt filesystem
[   87.651240][ T4491] EXT4-fs (loop1): 1 orphan inode deleted
[   87.680778][ T4491] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   87.764000][ T4508] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512)
[   87.773790][ T4506] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[   87.821207][ T4491] ext4 filesystem being mounted at /7/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   87.867728][ T4508] ntfs3: loop3: Failed to load $Bitmap.
[   88.180635][   T23] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[   88.540666][   T23] usb 5-1: Using ep0 maxpacket: 8
[   89.519169][   T23] usb 5-1: config 0 has an invalid interface number: 31 but max is 0
[   89.534847][   T23] usb 5-1: config 0 has no interface number 0
[   89.649544][ T4530] netlink: 36 bytes leftover after parsing attributes in process `syz.3.53'.
[   90.480801][   T23] usb 5-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[   90.495055][   T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   90.503174][   T23] usb 5-1: Product: syz
[   90.507553][   T23] usb 5-1: Manufacturer: syz
[   90.512267][   T23] usb 5-1: SerialNumber: syz
[   90.698777][   T23] usb 5-1: config 0 descriptor??
[   90.812458][ T4535] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[   90.877720][   T23] usb 5-1: USB disconnect, device number 2
[   90.941817][ T4537] tipc: Started in network mode
[   90.947109][ T4537] tipc: Node identity 164a6aade96c, cluster identity 4711
[   90.968970][ T4537] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[   91.014321][ T4537] device syzkaller0 entered promiscuous mode
[   91.304693][ T4537] tipc: Resetting bearer <eth:syzkaller0>
[   91.980104][ T4536] tipc: Resetting bearer <eth:syzkaller0>
[   92.064998][ T4536] tipc: Disabling bearer <eth:syzkaller0>
[   92.347000][ T4546] loop4: detected capacity change from 0 to 256
[   92.601979][ T4546] exfat: Deprecated parameter 'utf8'
[   92.625819][ T4546] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[   93.165964][ T4558] loop0: detected capacity change from 0 to 512
[   93.216710][ T4560] loop2: detected capacity change from 0 to 128
[   94.152406][ T4567] loop1: detected capacity change from 0 to 4096
[   94.224838][ T4560] loop2: detected capacity change from 0 to 64
[   94.277521][ T4558] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpjquota=,max_dir_size_kb=0x0000000000000a32,acl,,errors=continue. Quota mode: writeback.
[   94.321154][ T4558] ext4 filesystem being mounted at /12/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   94.960856][ T4576] loop1: detected capacity change from 0 to 128
[   94.987379][ T4560]  nullb0: [POWERTEC] p1 p2 p3
[   95.008184][ T4560] nullb0: p1 start 1768304430 is beyond EOD, truncated
[   95.039977][ T4576] FAT-fs (loop1): bread failed, FSINFO block (sector = 65535)
[   95.111719][ T4560] nullb0: p2 start 1006851136 is beyond EOD, truncated
[   95.159203][ T4579] loop0: detected capacity change from 0 to 512
[   95.262983][ T4560] nullb0: p3 start 1997718846 is beyond EOD, truncated
[   95.355758][ T4579] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   95.492100][ T4579] EXT4-fs (loop0): 1 truncate cleaned up
[   95.518636][ T4579] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,auto_da_alloc=0x0000000000000eb0,nolazytime,lazytime,nombcache,inode_readahead_blks=0x0000000004000000,usrjquota=,,errors=continue. Quota mode: none.
[   96.425013][ T4575] loop1: detected capacity change from 0 to 32768
[   96.774903][ T4585] loop3: detected capacity change from 0 to 512
[   96.861321][ T4575] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.67 (4575)
[   96.996751][ T4585] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.69: bg 0: block 473: padding at end of block bitmap is not set
[   97.465832][ T4575] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[   97.474871][ T4575] BTRFS info (device loop1): using free space tree
[   97.481925][ T4575] BTRFS info (device loop1): has skinny extents
[   97.567743][ T4585] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6191: Corrupt filesystem
[   97.581830][ T4585] EXT4-fs (loop3): 1 orphan inode deleted
[   97.588602][ T4585] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   97.600767][ T4585] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.069316][ T4575] BTRFS error (device loop1): open_ctree failed: -12
[   98.080986][ T4178] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by udevd (4178)
[   98.360242][ T4629] loop2: detected capacity change from 0 to 256
[   98.701468][ T4629] exfat: Deprecated parameter 'utf8'
[   98.728635][ T4629] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[   99.113051][ T4637] loop4: detected capacity change from 0 to 512
[   99.878183][ T4653] loop2: detected capacity change from 0 to 128
[   99.918999][ T4655] input: syz0 as /devices/virtual/input/input6
[   99.940692][ T4227] usb 2-1: new full-speed USB device number 2 using dummy_hcd
[   99.972174][ T4637] EXT4-fs (loop4): Test dummy encryption mode enabled
[   99.997670][ T4637] EXT4-fs error (device loop4): ext4_orphan_get:1406: inode #15: comm syz.4.76: inode has both inline data and extents flags
[  100.023516][ T4637] EXT4-fs error (device loop4): ext4_orphan_get:1411: comm syz.4.76: couldn't read orphan inode 15 (err -117)
[  100.062487][ T4653] loop2: detected capacity change from 0 to 64
[  100.079493][ T4637] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  101.231143][ T4227] usb 2-1: config 5 has an invalid descriptor of length 0, skipping remainder of the config
[  101.248441][ T4668] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  101.830819][ T4227] usb 2-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[  101.858505][ T4637] fscrypt (loop4): Missing crypto API support for AES-256-XTS (API name: "xts(aes)")
[  101.861446][ T4227] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  101.957254][ T4678] loop3: detected capacity change from 0 to 512
[  102.014539][ T4227] usb 2-1: Product: syz
[  102.018951][ T4227] usb 2-1: Manufacturer: syz
[  102.045184][ T4227] usb 2-1: SerialNumber: syz
[  102.072000][ T4653]  nullb0: [POWERTEC] p1 p2 p3
[  102.111800][ T4653] nullb0: p1 start 1768304430 is beyond EOD, truncated
[  102.141059][ T4227] usb 2-1: can't set config #5, error -71
[  102.155012][ T4678] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.83: bg 0: block 473: padding at end of block bitmap is not set
[  102.164169][ T4227] usb 2-1: USB disconnect, device number 2
[  102.240055][ T4653] nullb0: p2 start 1006851136 is beyond EOD, truncated
[  102.273859][ T4653] nullb0: p3 start 1997718846 is beyond EOD, truncated
[  102.281350][ T4678] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  102.513937][ T4699] capability: warning: `syz.4.89' uses 32-bit capabilities (legacy support in use)
[  102.528689][ T4678] EXT4-fs (loop3): 1 orphan inode deleted
[  102.560885][ T4698] netlink: 36 bytes leftover after parsing attributes in process `syz.1.88'.
[  102.593185][ T4678] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  102.645150][ T4699] program syz.4.89 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  102.764642][ T4678] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.836408][ T4702] program syz.2.90 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  102.879272][ T4704] program syz.0.91 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  103.200135][ T4713] loop1: detected capacity change from 0 to 512
[  103.383439][   T26] kauditd_printk_skb: 33 callbacks suppressed
[  103.383457][   T26] audit: type=1326 audit(1777069172.949:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4717 comm="syz.2.96" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8e9da53dd9 code=0xffff0000
[  104.300967][ T4713] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  104.397205][ T4713] EXT4-fs (loop1): 1 truncate cleaned up
[  104.403163][ T4713] EXT4-fs (loop1): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,auto_da_alloc=0x0000000000000eb0,nolazytime,lazytime,nombcache,inode_readahead_blks=0x0000000004000000,usrjquota=,,errors=continue. Quota mode: none.
[  104.441686][ T4722] loop0: detected capacity change from 0 to 64
[  105.608220][ T4729] ICMPv6: NA: aa:aa:aa:aa:aa:bb advertised our address fe80::aa on syz_tun!
[  106.730327][ T4742] process 'syz.1.104' launched '/dev/fd/3' with NULL argv: empty string added
[  107.088044][ T4746] program syz.3.106 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  107.120358][ T4753] loop1: detected capacity change from 0 to 64
[  109.066877][ T4760] loop2: detected capacity change from 0 to 512
[  109.178874][ T4763] loop3: detected capacity change from 0 to 64
[  109.428611][ T4760] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.107: bg 0: block 473: padding at end of block bitmap is not set
[  109.525835][ T4760] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  109.604347][ T4760] EXT4-fs (loop2): 1 orphan inode deleted
[  109.662326][ T4760] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  109.746230][ T4760] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.433672][ T4795] program syz.0.123 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  112.059965][ T4828] loop3: detected capacity change from 0 to 512
[  112.092701][ T4831] loop0: detected capacity change from 0 to 1024
[  113.861505][ T4831] EXT4-fs error (device loop0): ext4_map_blocks:741: inode #3: block 5: comm syz.0.136: lblock 5 mapped to illegal pblock 5 (length 1)
[  113.861589][ T4828] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.135: bg 0: block 473: padding at end of block bitmap is not set
[  113.862655][ T4828] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  113.918467][ T4831] Quota error (device loop0): write_blk: dquota write failed
[  113.926265][ T4831] Quota error (device loop0): find_free_dqentry: Can't write quota data block 5
[  113.935947][ T4831] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  113.946107][ T4831] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.136: Failed to acquire dquot type 0
[  114.122259][ T4831] EXT4-fs error (device loop0): ext4_map_blocks:631: inode #3: block 5: comm syz.0.136: lblock 5 mapped to illegal pblock 5 (length 1)
[  114.138937][ T4831] Quota error (device loop0): do_insert_tree: Can't read tree quota block 5
[  114.148012][ T4831] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  114.158028][ T4831] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.136: Failed to acquire dquot type 0
[  114.178904][ T4831] EXT4-fs error (device loop0): ext4_free_blocks:6231: comm syz.0.136: Freeing blocks not in datazone - block = 0, count = 4096
[  114.198084][ T4831] EXT4-fs error (device loop0): ext4_map_blocks:631: inode #3: block 5: comm syz.0.136: lblock 5 mapped to illegal pblock 5 (length 1)
[  114.219315][ T4831] Quota error (device loop0): do_insert_tree: Can't read tree quota block 5
[  114.228369][ T4831] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  114.238411][ T4831] EXT4-fs error (device loop0): ext4_acquire_dquot:6236: comm syz.0.136: Failed to acquire dquot type 0
[  114.261398][ T4831] EXT4-fs (loop0): 1 orphan inode deleted
[  114.267342][ T4831] EXT4-fs (loop0): mounted filesystem without journal. Opts: nobarrier,grpid,,errors=continue. Quota mode: writeback.
[  114.557162][ T4828] EXT4-fs (loop3): 1 orphan inode deleted
[  114.861972][ T4828] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  114.874266][ T4828] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  115.507461][ T4892] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 10: padding at end of block bitmap is not set
[  119.115292][ T4948] program syz.2.141 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  120.426672][ T4988] loop1: detected capacity change from 0 to 512
[  120.536388][ T4988] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.157: bg 0: block 473: padding at end of block bitmap is not set
[  120.731498][ T4988] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  120.765411][ T4988] EXT4-fs (loop1): 1 orphan inode deleted
[  120.777825][ T4988] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  120.795479][ T4988] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  122.690922][ T5030] netlink: 8 bytes leftover after parsing attributes in process `syz.0.168'.
[  122.914402][ T5029] program syz.4.169 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  124.853832][ T5057] ODEBUG: Out of memory. ODEBUG disabled
[  125.878775][ T5113] syz.0.179 uses obsolete (PF_INET,SOCK_PACKET)
[  126.208505][ T5114] loop2: detected capacity change from 0 to 2048
[  126.476922][ T5117] program syz.4.182 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  126.511500][ T5114] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  126.578353][ T5114] mip6: mip6_destopt_init_state: spi is not 0: 2
[  126.903756][ T5129] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  132.941025][ T1428] ieee802154 phy0 wpan0: encryption failed: -22
[  132.947695][ T1428] ieee802154 phy1 wpan1: encryption failed: -22
[  133.286616][ T5223] loop0: detected capacity change from 0 to 128
[  133.347201][ T5223] EXT4-fs (loop0): Test dummy encryption mode enabled
[  133.461837][ T5223] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  133.529587][ T5223] System zones: 1-3, 19-19, 35-36
[  134.005433][ T5230] program syz.3.203 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  134.016202][ T5223] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  134.213440][ T5223] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.362395][ T5237] netlink: 4 bytes leftover after parsing attributes in process `syz.4.192'.
[  135.408513][ T5237] netlink: 80 bytes leftover after parsing attributes in process `syz.4.192'.
[  136.897051][ T5261] netlink: 1020 bytes leftover after parsing attributes in process `syz.4.212'.
[  136.925690][ T5261] vxfs: WRONG superblock magic 00000000 at 1
[  136.937063][ T5261] vxfs: WRONG superblock magic 00000000 at 8
[  136.945074][ T5261] vxfs: can't find superblock.
[  137.252718][ T5264] program syz.2.214 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  137.277703][ T5266] loop1: detected capacity change from 0 to 64
[  139.595852][ T5298] netlink: 1020 bytes leftover after parsing attributes in process `syz.2.227'.
[  139.858241][ T5298] vxfs: WRONG superblock magic 00000000 at 1
[  139.881788][ T5298] vxfs: WRONG superblock magic 00000000 at 8
[  139.890881][ T5298] vxfs: can't find superblock.
[  140.145316][ T5313] fuse: Bad value for 'user_id'
[  140.901968][ T5318] loop1: detected capacity change from 0 to 128
[  140.944047][ T5317] loop4: detected capacity change from 0 to 64
[  141.033983][ T5318] EXT4-fs (loop1): Test dummy encryption mode enabled
[  141.112948][ T5318] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  141.160636][ T5318] System zones: 1-3, 19-19, 35-36
[  141.631606][ T5318] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  142.430748][ T5318] ext4 filesystem being mounted at /49/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.335015][ T5349] loop0: detected capacity change from 0 to 512
[  143.816049][ T5349] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.249: bg 0: block 473: padding at end of block bitmap is not set
[  143.852239][ T5349] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  143.868960][ T5349] EXT4-fs (loop0): 1 orphan inode deleted
[  143.876323][ T5349] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  143.891073][ T5349] ext4 filesystem being mounted at /61/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  145.132108][ T5372] loop4: detected capacity change from 0 to 64
[  145.341990][ T5381] loop1: detected capacity change from 0 to 128
[  145.430972][ T5381] EXT4-fs (loop1): Test dummy encryption mode enabled
[  145.926922][ T5381] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  146.028725][ T5381] System zones: 1-3, 19-19, 35-36
[  146.101563][ T5381] EXT4-fs (loop1): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  146.209048][ T5393] loop0: detected capacity change from 0 to 64
[  146.221523][ T5381] ext4 filesystem being mounted at /52/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.572949][ T5399] netlink: 12 bytes leftover after parsing attributes in process `syz.4.263'.
[  146.651208][ T5401] netlink: 12 bytes leftover after parsing attributes in process `syz.4.263'.
[  147.077299][ T5408] loop1: detected capacity change from 0 to 512
[  147.173000][ T5408] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.266: bg 0: block 473: padding at end of block bitmap is not set
[  147.288426][ T5408] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  147.363768][ T5408] EXT4-fs (loop1): 1 orphan inode deleted
[  147.369577][ T5408] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  147.410774][ T5408] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  148.930801][ T5437] binder: 5436:5437 unknown command 0
[  148.936553][ T5437] binder: 5436:5437 ioctl c0306201 200000000080 returned -22
[  148.986977][ T5437] binder: BINDER_SET_CONTEXT_MGR already set
[  149.035699][ T5437] binder: 5436:5437 ioctl 4018620d 200000000040 returned -16
[  149.198384][ T5445] loop0: detected capacity change from 0 to 128
[  149.291072][ T5445] EXT4-fs (loop0): Test dummy encryption mode enabled
[  149.351600][ T5447] tipc: Started in network mode
[  149.369345][ T5447] tipc: Node identity fa7eb1b5c845, cluster identity 4711
[  149.408701][ T5447] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  149.428169][ T5445] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  149.442638][ T5445] System zones: 1-3, 19-19, 35-36
[  149.470329][ T5450] device syzkaller0 entered promiscuous mode
[  149.486299][ T5445] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  149.511096][ T5445] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  149.582971][ T5447] tipc: Resetting bearer <eth:syzkaller0>
[  149.592049][ T5453] loop4: detected capacity change from 0 to 64
[  149.680943][ T5446] tipc: Resetting bearer <eth:syzkaller0>
[  149.799828][ T5446] tipc: Disabling bearer <eth:syzkaller0>
[  150.534609][ T4625] tipc: Node number set to 842772917
[  150.801370][ T5467] netlink: 1024 bytes leftover after parsing attributes in process `syz.0.280'.
[  150.817327][ T5467] vxfs: WRONG superblock magic 00000000 at 1
[  150.826225][ T5467] vxfs: WRONG superblock magic 00000000 at 8
[  150.836242][ T5467] vxfs: can't find superblock.
[  151.519491][ T5481] loop1: detected capacity change from 0 to 512
[  151.748986][ T1280] Bluetooth: hci5: Frame reassembly failed (-84)
[  151.815491][ T5481] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.284: bg 0: block 473: padding at end of block bitmap is not set
[  151.850941][ T5481] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  151.865393][ T5481] EXT4-fs (loop1): 1 orphan inode deleted
[  151.879973][ T5481] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  151.913642][ T5481] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.669665][ T5494] netlink: 12 bytes leftover after parsing attributes in process `syz.0.287'.
[  152.852850][ T5495] device macvlan2 entered promiscuous mode
[  152.899961][ T5495] bond1: (slave macvlan2): Opening slave failed
[  153.130241][ T5502] loop0: detected capacity change from 0 to 128
[  153.162463][ T5502] EXT4-fs (loop0): Test dummy encryption mode enabled
[  153.196454][ T5504] netlink: 76 bytes leftover after parsing attributes in process `syz.4.291'.
[  153.207439][ T5502] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  153.216104][ T5502] System zones: 1-3, 19-19, 35-36
[  153.225779][ T5504] device syzkaller0 entered promiscuous mode
[  153.236167][ T5502] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  153.275616][ T5502] ext4 filesystem being mounted at /72/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.770607][ T4228] Bluetooth: hci5: command 0x1003 tx timeout
[  153.779188][ T4201] Bluetooth: hci5: sending frame failed (-49)
[  154.455883][ T5518] program syz.4.296 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  156.175939][ T4231] Bluetooth: hci5: command 0x1001 tx timeout
[  156.195485][ T4201] Bluetooth: hci5: sending frame failed (-49)
[  156.278980][ T5530] netlink: 36 bytes leftover after parsing attributes in process `syz.4.299'.
[  156.877220][ T5542] kvm: vcpu 0: requested 3328 ns lapic timer period limited to 200000 ns
[  156.979904][ T5547] kvm: pic: non byte write
[  157.114853][ T5554] loop0: detected capacity change from 0 to 128
[  157.143543][ T5556] tipc: Started in network mode
[  157.148585][ T5556] tipc: Node identity e29d64a10c67, cluster identity 4711
[  157.168113][ T5556] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  157.182325][ T5556] device syzkaller0 entered promiscuous mode
[  157.219539][ T5556] tipc: Resetting bearer <eth:syzkaller0>
[  157.246018][ T5554] EXT4-fs (loop0): Test dummy encryption mode enabled
[  157.305916][ T5555] tipc: Resetting bearer <eth:syzkaller0>
[  157.321416][ T5554] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  157.339888][ T5554] System zones: 1-3, 19-19, 35-36
[  158.592790][ T5554] EXT4-fs (loop0): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  158.637425][ T5554] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.782182][ T1111] Bluetooth: hci5: command 0x1009 tx timeout
[  160.766304][ T5555] tipc: Disabling bearer <eth:syzkaller0>
[  160.964017][   T21] tipc: Node number set to 4009387169
[  163.424656][ T5597] KVM: KVM_SET_CPUID{,2} after KVM_RUN may cause guest instability
[  163.442420][ T5597] KVM: KVM_SET_CPUID{,2} will fail after KVM_RUN starting with Linux 5.16
[  163.584536][ T5605] loop2: detected capacity change from 0 to 128
[  164.342354][ T5605] EXT4-fs (loop2): Test dummy encryption mode enabled
[  164.442123][ T5611] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  164.476899][ T5614] loop1: detected capacity change from 0 to 128
[  164.497006][ T5611] device syzkaller0 entered promiscuous mode
[  164.511978][ T5605] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  164.527269][ T5605] System zones: 1-3, 19-19, 35-36
[  164.546892][ T5611] tipc: Resetting bearer <eth:syzkaller0>
[  164.627821][ T5605] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  164.651282][ T5609] tipc: Resetting bearer <eth:syzkaller0>
[  164.945321][ T5609] tipc: Disabling bearer <eth:syzkaller0>
[  164.992602][ T5605] ext4 filesystem being mounted at /58/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  165.056175][ T5614] loop1: detected capacity change from 0 to 64
[  166.443151][ T1111] usb 5-1: new low-speed USB device number 3 using dummy_hcd
[  167.116761][ T5663] loop0: detected capacity change from 0 to 2048
[  167.291199][ T5663] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  167.298037][ T5670] loop2: detected capacity change from 0 to 128
[  167.333790][ T5663] mip6: mip6_destopt_init_state: spi is not 0: 2
[  167.403537][ T5670] EXT4-fs (loop2): Test dummy encryption mode enabled
[  167.475403][ T5670] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042]
[  167.519681][ T5670] System zones: 1-3, 19-19, 35-36
[  167.526842][ T5670] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug,nolazytime,dax=inode,jqfmt=vfsv0,dioread_lock,usrjquota=.,test_dummy_encryption,,errors=continue. Quota mode: writeback.
[  167.550821][ T1111] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  167.558415][ T1111] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  167.655106][ T5676] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1176: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[  167.706733][ T5670] ext4 filesystem being mounted at /61/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.807039][ T1111] usb 5-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  168.410970][ T1111] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  168.439446][ T1111] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  168.551359][ T1111] usb 5-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  168.929060][ T1111] usb 5-1: config 168 descriptor has 1 excess byte, ignoring
[  169.015271][ T1111] usb 5-1: config 168 interface 0 altsetting 0 endpoint 0x3 has invalid maxpacket 77, setting to 8
[  169.125547][ T1111] usb 5-1: config 168 interface 0 altsetting 0 has an invalid endpoint with address 0xFF, skipping
[  169.591022][ T1111] usb 5-1: string descriptor 0 read error: -22
[  169.598755][ T1111] usb 5-1: New USB device found, idVendor=0a07, idProduct=0064, bcdDevice=40.6e
[  169.619319][ T1111] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.776168][ T1111] adutux 5-1:168.0: interrupt endpoints not found
[  169.849875][ T5689] loop3: detected capacity change from 0 to 128
[  169.971033][ T4625] usb 5-1: USB disconnect, device number 3
[  170.199777][ T5694] loop2: detected capacity change from 0 to 1024
[  170.240023][ T5689] loop3: detected capacity change from 0 to 4096
[  170.319907][ T5694] EXT4-fs error (device loop2): ext4_map_blocks:741: inode #3: block 5: comm syz.2.348: lblock 5 mapped to illegal pblock 5 (length 1)
[  170.455844][ T5694] Quota error (device loop2): write_blk: dquota write failed
[  170.472421][ T5694] Quota error (device loop2): find_free_dqentry: Can't write quota data block 5
[  170.482318][ T5694] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  170.493379][ T5694] EXT4-fs error (device loop2): ext4_acquire_dquot:6236: comm syz.2.348: Failed to acquire dquot type 0
[  170.505518][ T5694] EXT4-fs error (device loop2): ext4_map_blocks:631: inode #3: block 5: comm syz.2.348: lblock 5 mapped to illegal pblock 5 (length 1)
[  170.526140][ T5694] Quota error (device loop2): do_insert_tree: Can't read tree quota block 5
[  170.770721][ T5694] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  170.831950][ T5694] EXT4-fs error (device loop2): ext4_acquire_dquot:6236: comm syz.2.348: Failed to acquire dquot type 0
[  170.873368][ T5694] EXT4-fs error (device loop2): ext4_free_blocks:6231: comm syz.2.348: Freeing blocks not in datazone - block = 0, count = 4096
[  170.895006][ T5702] loop4: detected capacity change from 0 to 512
[  170.916890][ T5694] EXT4-fs error (device loop2): ext4_map_blocks:631: inode #3: block 5: comm syz.2.348: lblock 5 mapped to illegal pblock 5 (length 1)
[  170.934170][ T5694] Quota error (device loop2): do_insert_tree: Can't read tree quota block 5
[  170.943378][ T5694] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  170.954019][ T5694] EXT4-fs error (device loop2): ext4_acquire_dquot:6236: comm syz.2.348: Failed to acquire dquot type 0
[  170.987985][ T5694] EXT4-fs (loop2): 1 orphan inode deleted
[  170.998848][ T5694] EXT4-fs (loop2): mounted filesystem without journal. Opts: nobarrier,grpid,,errors=continue. Quota mode: writeback.
[  171.070605][ T5668] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 10: padding at end of block bitmap is not set
[  171.112073][ T5708] loop3: detected capacity change from 0 to 256
[  171.151091][ T5708] exfat: Deprecated parameter 'utf8'
[  171.165115][ T5708] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  171.356528][ T5702] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.351: bg 0: block 473: padding at end of block bitmap is not set
[  171.429910][ T5702] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  171.468372][ T5702] EXT4-fs (loop4): 1 orphan inode deleted
[  171.531083][ T5702] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  171.636817][ T5702] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  172.550096][ T5723] program syz.0.356 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  173.034015][ T5735] loop4: detected capacity change from 0 to 128
[  175.566995][ T5735] loop4: detected capacity change from 0 to 64
[  176.723539][ T5761] netlink: 4 bytes leftover after parsing attributes in process `syz.0.367'.
[  178.259637][ T5780] loop3: detected capacity change from 0 to 1024
[  178.340871][ T5780] EXT4-fs error (device loop3): ext4_map_blocks:741: inode #3: block 5: comm syz.3.372: lblock 5 mapped to illegal pblock 5 (length 1)
[  178.519109][ T5780] Quota error (device loop3): write_blk: dquota write failed
[  178.538542][ T5780] Quota error (device loop3): find_free_dqentry: Can't write quota data block 5
[  178.892288][ T5789] device syzkaller0 entered promiscuous mode
[  178.922863][ T5780] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  178.964309][ T5780] EXT4-fs error (device loop3): ext4_acquire_dquot:6236: comm syz.3.372: Failed to acquire dquot type 0
[  179.001823][ T5780] EXT4-fs error (device loop3): ext4_map_blocks:631: inode #3: block 5: comm syz.3.372: lblock 5 mapped to illegal pblock 5 (length 1)
[  179.024471][ T5780] Quota error (device loop3): do_insert_tree: Can't read tree quota block 5
[  179.037414][ T5780] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  179.064551][ T5780] EXT4-fs error (device loop3): ext4_acquire_dquot:6236: comm syz.3.372: Failed to acquire dquot type 0
[  179.089660][ T5780] EXT4-fs error (device loop3): ext4_free_blocks:6231: comm syz.3.372: Freeing blocks not in datazone - block = 0, count = 4096
[  179.126931][ T5780] EXT4-fs error (device loop3): ext4_map_blocks:631: inode #3: block 5: comm syz.3.372: lblock 5 mapped to illegal pblock 5 (length 1)
[  179.194708][ T5780] Quota error (device loop3): do_insert_tree: Can't read tree quota block 5
[  179.255274][ T5780] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  179.305570][ T5780] EXT4-fs error (device loop3): ext4_acquire_dquot:6236: comm syz.3.372: Failed to acquire dquot type 0
[  179.348095][ T5780] EXT4-fs (loop3): 1 orphan inode deleted
[  179.359110][ T5780] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobarrier,grpid,,errors=continue. Quota mode: writeback.
[  179.521414][ T5799] program syz.4.379 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  179.820141][ T5809] loop0: detected capacity change from 0 to 64
[  181.831622][ T4231] Bluetooth: hci2: command 0x0406 tx timeout
[  181.950642][ T4231] Bluetooth: hci1: command 0x0406 tx timeout
[  182.120008][ T4231] Bluetooth: hci3: command 0x0406 tx timeout
[  182.189973][ T4231] Bluetooth: hci4: command 0x0406 tx timeout
[  182.193085][ T5867] 9pnet_virtio: no channels available for device syz
[  182.516182][ T5870] loop0: detected capacity change from 0 to 512
[  182.608405][ T5870] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.388: bg 0: block 473: padding at end of block bitmap is not set
[  182.640867][ T5870] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  182.701164][ T5870] EXT4-fs (loop0): 1 orphan inode deleted
[  182.738557][ T5870] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  182.817267][ T5870] ext4 filesystem being mounted at /97/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  184.113739][ T5889] program syz.1.393 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  184.975723][ T5894] netlink: 800 bytes leftover after parsing attributes in process `syz.2.395'.
[  185.250670][ T5894] vxfs: WRONG superblock magic 00000000 at 1
[  185.277252][ T5904] loop4: detected capacity change from 0 to 64
[  185.298832][ T5894] vxfs: WRONG superblock magic 00000000 at 8
[  185.305327][ T5894] vxfs: can't find superblock.
[  185.356761][ T5906] loop1: detected capacity change from 0 to 1024
[  186.064028][ T5906] EXT4-fs error (device loop1): ext4_map_blocks:741: inode #3: block 5: comm syz.1.399: lblock 5 mapped to illegal pblock 5 (length 1)
[  186.078578][ T5906] Quota error (device loop1): write_blk: dquota write failed
[  186.086321][ T5906] Quota error (device loop1): find_free_dqentry: Can't write quota data block 5
[  186.096079][ T5906] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  186.106165][ T5906] EXT4-fs error (device loop1): ext4_acquire_dquot:6236: comm syz.1.399: Failed to acquire dquot type 0
[  186.117928][ T5906] EXT4-fs error (device loop1): ext4_map_blocks:631: inode #3: block 5: comm syz.1.399: lblock 5 mapped to illegal pblock 5 (length 1)
[  186.132349][ T5906] Quota error (device loop1): do_insert_tree: Can't read tree quota block 5
[  186.141367][ T5906] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  186.151607][ T5906] EXT4-fs error (device loop1): ext4_acquire_dquot:6236: comm syz.1.399: Failed to acquire dquot type 0
[  186.163999][ T5906] EXT4-fs error (device loop1): ext4_free_blocks:6231: comm syz.1.399: Freeing blocks not in datazone - block = 0, count = 4096
[  186.188183][ T5906] EXT4-fs error (device loop1): ext4_map_blocks:631: inode #3: block 5: comm syz.1.399: lblock 5 mapped to illegal pblock 5 (length 1)
[  186.202621][ T5906] Quota error (device loop1): do_insert_tree: Can't read tree quota block 5
[  186.211423][ T5906] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  186.221699][ T5906] EXT4-fs error (device loop1): ext4_acquire_dquot:6236: comm syz.1.399: Failed to acquire dquot type 0
[  186.291086][ T5906] EXT4-fs (loop1): 1 orphan inode deleted
[  186.296975][ T5906] EXT4-fs (loop1): mounted filesystem without journal. Opts: nobarrier,grpid,,errors=continue. Quota mode: writeback.
[  186.441483][ T5918] tipc: Started in network mode
[  186.479298][ T5918] tipc: Node identity 162134f47af7, cluster identity 4711
[  186.531536][ T5918] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  186.737517][ T5920] device syzkaller0 entered promiscuous mode
[  187.130199][ T5925] tipc: Resetting bearer <eth:syzkaller0>
[  187.304539][ T5925] tipc: Disabling bearer <eth:syzkaller0>
[  187.464199][ T5931] loop1: detected capacity change from 0 to 512
[  187.675297][ T5931] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.404: bg 0: block 473: padding at end of block bitmap is not set
[  188.151542][ T5931] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  188.235843][ T5931] EXT4-fs (loop1): 1 orphan inode deleted
[  188.440589][ T5931] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  188.520637][ T5931] ext4 filesystem being mounted at /81/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  189.781506][ T5952] netlink: 800 bytes leftover after parsing attributes in process `syz.4.411'.
[  190.543468][ T5952] vxfs: WRONG superblock magic 00000000 at 1
[  190.553484][ T5950] loop3: detected capacity change from 0 to 64
[  190.561265][ T5952] vxfs: WRONG superblock magic 00000000 at 8
[  190.567952][ T5952] vxfs: can't find superblock.
[  191.057605][ T5968] tipc: Started in network mode
[  191.070715][ T5968] tipc: Node identity 0658380ee19c, cluster identity 4711
[  191.108549][ T5968] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  191.125767][ T5969] device syzkaller0 entered promiscuous mode
[  191.195942][ T5967] tipc: Resetting bearer <eth:syzkaller0>
[  191.231559][ T5967] tipc: Disabling bearer <eth:syzkaller0>
[  191.244807][ T5975] netlink: 'syz.2.420': attribute type 21 has an invalid length.
[  191.267314][ T5975] netlink: 'syz.2.420': attribute type 6 has an invalid length.
[  191.291199][ T5975] netlink: 132 bytes leftover after parsing attributes in process `syz.2.420'.
[  194.337985][ T1428] ieee802154 phy0 wpan0: encryption failed: -22
[  194.344570][ T1428] ieee802154 phy1 wpan1: encryption failed: -22
[  194.514048][ T6002] loop2: detected capacity change from 0 to 4096
[  194.590669][ T6002] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512)
[  194.606874][ T6002] ntfs3: loop2: Failed to load $Bitmap.
[  195.050645][    T7] usb 2-1: new full-speed USB device number 3 using dummy_hcd
[  195.226642][ T6005] program syz.4.428 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  195.420802][    T7] usb 2-1: config index 0 descriptor too short (expected 29220, got 36)
[  195.433585][    T7] usb 2-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  195.443385][    T7] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 81
[  195.453588][    T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  195.464491][    T7] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  195.477194][    T7] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  195.491272][    T7] usb 2-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  196.309251][    T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  196.332662][    T7] usb 2-1: config 0 descriptor??
[  196.361010][ T6010] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  196.618623][    T7] usblp 2-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  196.817487][    T7] usb 2-1: USB disconnect, device number 3
[  196.945441][    T7] usblp0: removed
[  197.091656][ T6073] loop0: detected capacity change from 0 to 64
[  198.658143][ T6089] netlink: 76 bytes leftover after parsing attributes in process `syz.0.444'.
[  199.046587][    T7] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  199.886686][ T6096] program syz.0.446 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  200.610717][    T7] usb 3-1: Using ep0 maxpacket: 32
[  200.830825][    T7] usb 3-1: unable to get BOS descriptor or descriptor too short
[  200.920897][    T7] usb 3-1: config 8 has an invalid interface number: 188 but max is 0
[  200.930622][    T7] usb 3-1: config 8 has no interface number 0
[  200.962837][    T7] usb 3-1: config 8 interface 188 has no altsetting 0
[  201.121916][ T6123] loop1: detected capacity change from 0 to 64
[  201.223600][    T7] usb 3-1: string descriptor 0 read error: -22
[  201.243801][    T7] usb 3-1: New USB device found, idVendor=0ccd, idProduct=0102, bcdDevice=89.0e
[  201.274078][    T7] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.352247][    T7] dw2102: su3000_identify_state
[  201.360763][    T7] dvb-usb: found a 'Terratec Cinergy S2 USB HD Rev.3' in warm state.
[  201.376388][    T7] dw2102: su3000_power_ctrl: 1, initialized 0
[  201.393573][    T7] dvb-usb: bulk message failed: -22 (2/0)
[  201.421401][    T7] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[  201.461287][    T7] dvbdev: DVB: registering new adapter (Terratec Cinergy S2 USB HD Rev.3)
[  201.490112][    T7] usb 3-1: media controller created
[  201.503666][    T7] dvb-usb: bulk message failed: -22 (6/0)
[  201.512055][    T7] dw2102: i2c transfer failed.
[  201.518124][    T7] dvb-usb: bulk message failed: -22 (6/0)
[  201.528576][    T7] dw2102: i2c transfer failed.
[  201.722480][    T7] dvb-usb: bulk message failed: -22 (6/0)
[  201.738770][    T7] dw2102: i2c transfer failed.
[  201.760967][    T7] dvb-usb: bulk message failed: -22 (6/0)
[  201.770189][    T7] dw2102: i2c transfer failed.
[  201.777843][    T7] dvb-usb: bulk message failed: -22 (6/0)
[  201.787482][    T7] dw2102: i2c transfer failed.
[  201.794931][    T7] dvb-usb: bulk message failed: -22 (6/0)
[  201.819331][    T7] dw2102: i2c transfer failed.
[  201.839552][    T7] dvb-usb: MAC address: 02:02:02:02:02:02
[  201.922359][    T7] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[  202.073987][    T7] dvb-usb: bulk message failed: -22 (3/0)
[  202.100240][    T7] dw2102: command 0x0e transfer failed.
[  202.143498][    T7] dvb-usb: bulk message failed: -22 (3/0)
[  202.336405][    T7] dw2102: command 0x0e transfer failed.
[  203.690685][    T7] dvb-usb: bulk message failed: -22 (3/0)
[  203.696466][    T7] dw2102: command 0x0e transfer failed.
[  203.809415][    T7] dvb-usb: bulk message failed: -22 (3/0)
[  203.835765][    T7] dw2102: command 0x0e transfer failed.
[  204.254293][    T7] dvb-usb: bulk message failed: -22 (1/0)
[  204.260259][    T7] dw2102: command 0x51 transfer failed.
[  205.281018][ T6168] netlink: 4 bytes leftover after parsing attributes in process `syz.3.468'.
[  205.458289][    T7] DVB: Unable to find symbol ds3000_attach()
[  205.466405][    T7] dvb-usb: no frontend was attached by 'Terratec Cinergy S2 USB HD Rev.3'
[  205.660795][    T7] rc_core: IR keymap rc-su3000 not found
[  205.669829][    T7] Registered IR keymap rc-empty
[  205.680561][ T4232] usb 2-1: new low-speed USB device number 4 using dummy_hcd
[  205.686077][    T7] rc rc0: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0
[  205.734719][    T7] input: Terratec Cinergy S2 USB HD Rev.3 as /devices/platform/dummy_hcd.2/usb3/3-1/rc/rc0/input7
[  205.791725][    T7] dvb-usb: schedule remote query interval to 150 msecs.
[  205.824621][    T7] dw2102: su3000_power_ctrl: 0, initialized 1
[  205.839004][    T7] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully initialized and connected.
[  205.918372][    T7] usb 3-1: USB disconnect, device number 2
[  206.011363][    T7] dvb-usb: Terratec Cinergy S2 USB HD Rev.3 successfully deinitialized and disconnected.
[  206.054298][ T4232] usb 2-1: config 0 has an invalid interface number: 1 but max is 0
[  206.078849][ T4232] usb 2-1: config 0 has no interface number 0
[  206.094165][ T4232] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 10
[  206.115005][ T4232] usb 2-1: config 0 interface 1 altsetting 0 endpoint 0x82 has invalid maxpacket 159, setting to 8
[  206.136164][ T4232] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22
[  206.146331][ T4232] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  206.178904][ T4232] usb 2-1: config 0 descriptor??
[  206.200852][ T6170] raw-gadget.0 gadget: fail, usb_ep_enable returned -22
[  206.225457][ T4232] iowarrior 2-1:0.1: IOWarrior product=0x1512, serial= interface=1 now attached to iowarrior0
[  206.490361][ T4228] usb 2-1: USB disconnect, device number 4
[  206.530550][ T4229] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  206.627004][ T6185] kvm: vcpu 0: requested 3328 ns lapic timer period limited to 200000 ns
[  206.910659][ T4229] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  206.919345][ T4229] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  206.950630][ T4229] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  206.960159][ T4229] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  207.072013][ T6189] loop1: detected capacity change from 0 to 64
[  207.092303][ T4229] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  207.175092][ T4229] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  207.208585][ T4229] usb 5-1: Product: syz
[  207.246398][ T4229] usb 5-1: Manufacturer: syz
[  207.321881][ T4229] cdc_wdm 5-1:1.0: skipping garbage
[  207.339699][ T4229] cdc_wdm 5-1:1.0: skipping garbage
[  207.392906][ T4229] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[  207.415330][ T4229] cdc_wdm 5-1:1.0: Unknown control protocol
[  207.666236][ T4229] usb 5-1: USB disconnect, device number 4
[  212.603917][ T6271] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  212.622609][ T6271] device syzkaller0 entered promiscuous mode
[  212.681473][ T6270] tipc: Resetting bearer <eth:syzkaller0>
[  212.782057][ T6270] tipc: Disabling bearer <eth:syzkaller0>
[  213.321714][ T6277] loop0: detected capacity change from 0 to 256
[  213.435839][ T6277] exfat: Deprecated parameter 'utf8'
[  213.595873][ T6277] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe3865569, utbl_chksum : 0xe619d30d)
[  217.125030][ T6325] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  217.132727][ T6325] device syzkaller0 entered promiscuous mode
[  217.147789][ T6322] tipc: Resetting bearer <eth:syzkaller0>
[  217.178434][ T6322] tipc: Disabling bearer <eth:syzkaller0>
[  217.434453][ T6336] loop0: detected capacity change from 0 to 512
[  218.241791][ T6336] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.507: bg 0: block 473: padding at end of block bitmap is not set
[  218.374680][ T6336] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  218.391426][ T6336] EXT4-fs (loop0): 1 orphan inode deleted
[  218.397732][ T6336] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  218.416739][ T6336] ext4 filesystem being mounted at /121/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  219.343203][ T6358] IPVS: dh: FWM 3 0x00000003 - no destination available
[  219.673467][ T6362] netlink: 36 bytes leftover after parsing attributes in process `syz.1.512'.
[  220.473087][ T6350] sctp: failed to load transform for md5: -2
[  221.556029][ T6390] loop1: detected capacity change from 0 to 64
[  224.406062][ T6403] fuse: Bad value for 'user_id'
[  226.101390][ T6412] netlink: 36 bytes leftover after parsing attributes in process `syz.2.525'.
[  228.074659][ T6419] loop0: detected capacity change from 0 to 512
[  228.341399][ T6420] 9pnet_virtio: no channels available for device syz
[  228.412097][ T6419] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.526: bg 0: block 473: padding at end of block bitmap is not set
[  228.455895][ T6419] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6191: Corrupt filesystem
[  228.473878][ T6419] EXT4-fs (loop0): 1 orphan inode deleted
[  228.479883][ T6419] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  228.503655][ T6419] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.802246][ T6435] IPVS: dh: FWM 3 0x00000003 - no destination available
[  229.573685][ T6448] netlink: 972 bytes leftover after parsing attributes in process `syz.2.533'.
[  229.595456][ T6448] vxfs: WRONG superblock magic 00000000 at 1
[  229.603162][ T6448] vxfs: WRONG superblock magic 00000000 at 8
[  229.609328][ T6448] vxfs: can't find superblock.
[  230.426024][ T6455] tipc: Enabling of bearer <udp:syz2> rejected, failed to enable media
[  230.566885][ T6454] program syz.0.537 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  230.688086][ T6458] fuse: Bad value for 'user_id'
[  231.413715][ T6463] loop1: detected capacity change from 0 to 64
[  232.336664][ T6476] device syzkaller1 entered promiscuous mode
[  232.775783][ T6480] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  232.797807][ T6480] tipc: Resetting bearer <eth:syzkaller0>
[  232.836045][ T6479] tipc: Disabling bearer <eth:syzkaller0>
[  233.428614][ T6486] loop4: detected capacity change from 0 to 512
[  233.556379][ T6486] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  233.662737][ T4196] Bluetooth: hci2: Unknown advertising packet type: 0x4832
[  233.662817][ T4196] Bluetooth: hci2: Unknown advertising packet type: 0x4800
[  233.674148][ T4196] ==================================================================
[  233.689827][ T4196] BUG: KASAN: slab-out-of-bounds in hci_le_meta_evt+0x1324/0x3c90
[  233.697755][ T4196] Read of size 1 at addr ffff88801e446401 by task kworker/u5:3/4196
[  233.706258][ T4196] 
[  233.708693][ T4196] CPU: 1 PID: 4196 Comm: kworker/u5:3 Not tainted syzkaller #0
[  233.716259][ T4196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  233.726429][ T4196] Workqueue: hci2 hci_rx_work
[  233.731154][ T4196] Call Trace:
[  233.734543][ T4196]  <TASK>
[  233.737493][ T4196]  dump_stack_lvl+0x188/0x250
[  233.742247][ T4196]  ? show_regs_print_info+0x20/0x20
[  233.747476][ T4196]  ? load_image+0x400/0x400
[  233.752097][ T4196]  ? _raw_spin_lock_irqsave+0xbc/0x100
[  233.757617][ T4196]  print_address_description+0x60/0x2d0
[  233.763198][ T4196]  ? hci_le_meta_evt+0x1324/0x3c90
[  233.768340][ T4196]  kasan_report+0xdf/0x130
[  233.772984][ T4196]  ? hci_le_meta_evt+0x1324/0x3c90
[  233.778177][ T4196]  hci_le_meta_evt+0x1324/0x3c90
[  233.783169][ T4196]  ? hci_remote_host_features_evt+0x280/0x280
[  233.789270][ T4196]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[  233.795041][ T4196]  ? mark_lock+0x94/0x320
[  233.799397][ T4196]  ? mutex_unlock+0x10/0x10
[  233.804027][ T4196]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  233.810183][ T4196]  ? lock_chain_count+0x20/0x20
[  233.815190][ T4196]  ? __rwlock_init+0x140/0x140
[  233.819999][ T4196]  hci_event_packet+0xe48/0x1370
[  233.825145][ T4196]  ? lockdep_hardirqs_on+0x94/0x140
[  233.829297][ T6486] EXT4-fs (loop4): 1 truncate cleaned up
[  233.830376][ T4196]  ? rcu_lock_release+0x20/0x20
[  233.841026][ T4196]  ? hci_send_to_monitor+0x9c/0x4a0
[  233.844110][ T6486] EXT4-fs (loop4): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,auto_da_alloc=0x0000000000000eb0,nolazytime,lazytime,nombcache,inode_readahead_blks=0x0000000004000000,usrjquota=,,errors=continue. Quota mode: none.
[  233.846351][ T4196]  hci_rx_work+0x255/0xa10
[  233.846396][ T4196]  process_one_work+0x85f/0x1010
[  233.879602][ T4196]  ? worker_detach_from_pool+0x240/0x240
[  233.885358][ T4196]  ? lockdep_hardirqs_off+0x70/0x100
[  233.890811][ T4196]  ? _raw_spin_lock_irq+0xb7/0xf0
[  233.896064][ T4196]  ? _raw_spin_lock_irqsave+0x100/0x100
[  233.901750][ T4196]  ? wq_worker_running+0x97/0x170
[  233.906805][ T4196]  worker_thread+0xaa6/0x1290
[  233.911538][ T4196]  kthread+0x436/0x520
[  233.915635][ T4196]  ? rcu_lock_release+0x20/0x20
[  233.920602][ T4196]  ? kthread_blkcg+0xd0/0xd0
[  233.925315][ T4196]  ret_from_fork+0x1f/0x30
[  233.929877][ T4196]  </TASK>
[  233.933181][ T4196] 
[  233.935651][ T4196] Allocated by task 6490:
[  233.940084][ T4196]  __kasan_kmalloc+0xb5/0xf0
[  233.944712][ T4196]  __alloc_skb+0x22c/0x750
[  233.949175][ T4196]  vhci_write+0xbc/0x450
[  233.953457][ T4196]  vfs_write+0x745/0xd60
[  233.957823][ T4196]  ksys_write+0x152/0x260
[  233.962181][ T4196]  do_syscall_64+0x4c/0xa0
[  233.966624][ T4196]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  233.972544][ T4196] 
[  233.974888][ T4196] The buggy address belongs to the object at ffff88801e446000
[  233.974888][ T4196]  which belongs to the cache kmalloc-1k of size 1024
[  233.989067][ T4196] The buggy address is located 1 bytes to the right of
[  233.989067][ T4196]  1024-byte region [ffff88801e446000, ffff88801e446400)
[  234.002807][ T4196] The buggy address belongs to the page:
[  234.008460][ T4196] page:ffffea0000791000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1e440
[  234.018747][ T4196] head:ffffea0000791000 order:3 compound_mapcount:0 compound_pincount:0
[  234.027521][ T4196] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  234.035643][ T4196] raw: 00fff00000010200 0000000000000000 0000000100000001 ffff888016c41dc0
[  234.044261][ T4196] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000
[  234.053046][ T4196] page dumped because: kasan: bad access detected
[  234.059654][ T4196] page_owner tracks the page as allocated
[  234.065401][ T4196] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 4185, ts 58633182964, free_ts 58474406046
[  234.085077][ T4196]  get_page_from_freelist+0x1bbd/0x1ca0
[  234.090672][ T4196]  __alloc_pages+0x1ee/0x480
[  234.095297][ T4196]  new_slab+0xc0/0x4b0
[  234.099498][ T4196]  ___slab_alloc+0x80a/0xdd0
[  234.104402][ T4196]  __kmalloc+0x1cd/0x330
[  234.108758][ T4196]  __register_sysctl_table+0xe0/0x1230
[  234.114217][ T4196]  neigh_sysctl_register+0x9b0/0xa90
[  234.119500][ T4196]  devinet_sysctl_register+0xa8/0x1f0
[  234.124876][ T4196]  inetdev_init+0x28c/0x4d0
[  234.129727][ T4196]  inetdev_event+0x26f/0x1370
[  234.134428][ T4196]  raw_notifier_call_chain+0xcb/0x160
[  234.139802][ T4196]  register_netdevice+0x12a6/0x1710
[  234.145023][ T4196]  veth_newlink+0x8d7/0xe30
[  234.149559][ T4196]  rtnl_newlink+0x1359/0x1a50
[  234.154545][ T4196]  rtnetlink_rcv_msg+0x844/0xf30
[  234.159686][ T4196]  netlink_rcv_skb+0x1f5/0x440
[  234.164472][ T4196] page last free stack trace:
[  234.169260][ T4196]  free_unref_page_prepare+0x637/0x6c0
[  234.174749][ T4196]  free_unref_page+0x8f/0x2a0
[  234.179534][ T4196]  __unfreeze_partials+0x1a5/0x200
[  234.184913][ T4196]  put_cpu_partial+0x12d/0x190
[  234.189805][ T4196]  qlist_free_all+0x35/0x90
[  234.194694][ T4196]  kasan_quarantine_reduce+0x150/0x160
[  234.200363][ T4196]  __kasan_slab_alloc+0x2f/0xd0
[  234.205528][ T4196]  slab_post_alloc_hook+0x4c/0x380
[  234.210756][ T4196]  kmem_cache_alloc_trace+0x103/0x2a0
[  234.216161][ T4196]  netdevice_event+0x324/0x900
[  234.220945][ T4196]  raw_notifier_call_chain+0xcb/0x160
[  234.226353][ T4196]  register_netdevice+0x12a6/0x1710
[  234.231579][ T4196]  hsr_dev_finalize+0x5f6/0x870
[  234.236542][ T4196]  hsr_newlink+0x637/0x6f0
[  234.241027][ T4196]  rtnl_newlink+0x1359/0x1a50
[  234.245863][ T4196]  rtnetlink_rcv_msg+0x844/0xf30
[  234.250826][ T4196] 
[  234.253169][ T4196] Memory state around the buggy address:
[  234.258812][ T4196]  ffff88801e446300: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  234.266891][ T4196]  ffff88801e446380: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  234.275057][ T4196] >ffff88801e446400: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  234.283218][ T4196]                    ^
[  234.287316][ T4196]  ffff88801e446480: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  234.295488][ T4196]  ffff88801e446500: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  234.303569][ T4196] ==================================================================
[  234.311913][ T4196] Disabling lock debugging due to kernel taint
[  234.372409][ T4196] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  234.379841][ T4196] CPU: 1 PID: 4196 Comm: kworker/u5:3 Tainted: G    B             syzkaller #0
[  234.388899][ T4196] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026
[  234.399269][ T4196] Workqueue: hci2 hci_rx_work
[  234.404068][ T4196] Call Trace:
[  234.407376][ T4196]  <TASK>
[  234.410352][ T4196]  dump_stack_lvl+0x188/0x250
[  234.415063][ T4196]  ? show_regs_print_info+0x20/0x20
[  234.420287][ T4196]  ? load_image+0x400/0x400
[  234.425033][ T4196]  panic+0x2e5/0x810
[  234.428966][ T4196]  ? bpf_jit_dump+0xd0/0xd0
[  234.433545][ T4196]  ? _raw_spin_unlock_irqrestore+0x10d/0x120
[  234.439831][ T4196]  ? _raw_spin_unlock+0x40/0x40
[  234.444699][ T4196]  ? hci_le_meta_evt+0x1324/0x3c90
[  234.449920][ T4196]  check_panic_on_warn+0x80/0xa0
[  234.455068][ T4196]  ? hci_le_meta_evt+0x1324/0x3c90
[  234.460295][ T4196]  end_report+0x6d/0xf0
[  234.464470][ T4196]  kasan_report+0x102/0x130
[  234.469080][ T4196]  ? hci_le_meta_evt+0x1324/0x3c90
[  234.474209][ T4196]  hci_le_meta_evt+0x1324/0x3c90
[  234.479171][ T4196]  ? hci_remote_host_features_evt+0x280/0x280
[  234.485349][ T4196]  ? __mutex_unlock_slowpath+0x1b0/0x6c0
[  234.491199][ T4196]  ? mark_lock+0x94/0x320
[  234.495641][ T4196]  ? mutex_unlock+0x10/0x10
[  234.500250][ T4196]  ? lockdep_hardirqs_on_prepare+0x409/0x770
[  234.506524][ T4196]  ? lock_chain_count+0x20/0x20
[  234.511493][ T4196]  ? __rwlock_init+0x140/0x140
[  234.516281][ T4196]  hci_event_packet+0xe48/0x1370
[  234.521240][ T4196]  ? lockdep_hardirqs_on+0x94/0x140
[  234.526477][ T4196]  ? rcu_lock_release+0x20/0x20
[  234.531363][ T4196]  ? hci_send_to_monitor+0x9c/0x4a0
[  234.536680][ T4196]  hci_rx_work+0x255/0xa10
[  234.541127][ T4196]  process_one_work+0x85f/0x1010
[  234.546145][ T4196]  ? worker_detach_from_pool+0x240/0x240
[  234.552182][ T4196]  ? lockdep_hardirqs_off+0x70/0x100
[  234.557493][ T4196]  ? _raw_spin_lock_irq+0xb7/0xf0
[  234.562641][ T4196]  ? _raw_spin_lock_irqsave+0x100/0x100
[  234.568207][ T4196]  ? wq_worker_running+0x97/0x170
[  234.573259][ T4196]  worker_thread+0xaa6/0x1290
[  234.577964][ T4196]  kthread+0x436/0x520
[  234.582047][ T4196]  ? rcu_lock_release+0x20/0x20
[  234.587005][ T4196]  ? kthread_blkcg+0xd0/0xd0
[  234.591781][ T4196]  ret_from_fork+0x1f/0x30
[  234.596231][ T4196]  </TASK>
[  234.599359][ T4196] Kernel Offset: disabled
[  234.603682][ T4196] Rebooting in 86400 seconds..