last executing test programs:

3m22.447561995s ago: executing program 3 (id=55):
pipe(&(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = open(&(0x7f0000000000)='./bus\x00', 0x141b42, 0x8)
pipe(&(0x7f0000000080)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
r5 = creat(&(0x7f0000000580)='./file1\x00', 0x20)
r6 = fanotify_init(0xf00, 0x0)
fanotify_mark(r6, 0x105, 0x48009975, r5, 0x0)
splice(r3, 0x0, r2, 0x0, 0x1000, 0x4)
splice(r0, 0x0, r4, 0x0, 0x80, 0x0)
write$binfmt_misc(r1, &(0x7f0000000100)='F', 0x1)

3m22.161129509s ago: executing program 3 (id=57):
r0 = openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffffff, 0x0, 0x275a, 0x0)
sendmsg$BATADV_CMD_GET_NEIGHBORS(r0, 0x0, 0x4044040)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
rseq(&(0x7f0000001080)={0x0, 0x0, 0x0, 0x1}, 0x20, 0x0, 0x0)
ioctl$UFFDIO_WRITEPROTECT(r0, 0xc018aa06, &(0x7f0000000200)={{&(0x7f0000000000/0x2000)=nil, 0x2000}, 0x583b21c860052abe})
ioctl$BTRFS_IOC_GET_FEATURES(0xffffffffffffffff, 0x80189439, 0x0)
r1 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
wait4(r1, 0x0, 0x80000000, &(0x7f0000000000))

3m21.560557883s ago: executing program 3 (id=59):
r0 = socket(0x10, 0x803, 0x0)
sendmsg$IPVS_CMD_SET_INFO(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f0000000ac0)={0x0, 0x14}}, 0x0)
getsockname$packet(r0, &(0x7f0000000100)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
r2 = socket$nl_route(0x10, 0x3, 0x0)
r3 = socket(0x1, 0x803, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000140)=@newlink={0x34, 0x10, 0x401, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r1, 0x209a8}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bond={{0x9}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x20000044}, 0x4000040)
getsockname$packet(r3, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="2c0000001000010400000000fedbdf2500000000", @ANYRES32=r5, @ANYBLOB="00030000800000000a0001"], 0x2c}}, 0x884)

3m21.423387396s ago: executing program 3 (id=60):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x218}}, 0x0)
getsockname$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r3, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="34000000100081eee80000040020000010000000", @ANYRES32=r4, @ANYBLOB="ddfffffdff000000140012000c000100627269646765"], 0x34}}, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000006c0)=ANY=[@ANYBLOB="3c0000001800010000000000000000000a00000000000000000000000c00090008000080", @ANYRES32=r4, @ANYBLOB="14000500fe80"], 0x3c}}, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000010c0)=ANY=[@ANYBLOB="3c0000001800010000000000000000000a00000000000000000000000c00090008000000", @ANYRES32=r4, @ANYBLOB="14000500fe80917a"], 0x3c}}, 0x0)

3m20.905579235s ago: executing program 3 (id=63):
mkdir(&(0x7f0000000380)='./file1\x00', 0xa)
mount$fuse(0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f0000000240)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
r0 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = openat$autofs(0xffffffffffffff9c, &(0x7f0000000180), 0x28800, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(r1, 0xc018937b, &(0x7f0000000140)={{0x1, 0x1, 0xb8, r0}, './file0\x00'})

3m20.696037555s ago: executing program 3 (id=65):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
fstat(r3, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setreuid(0x0, r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000002c0)="0fa20f3566b842000f00d8b805000000f706270000000f01c13e0f070fde460b660f38822c81670f53ccf2360f217a0f07", 0x31}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

3m5.666043839s ago: executing program 32 (id=65):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff})
fstat(r3, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, <r4=>0x0})
setreuid(0x0, r4)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r2, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000100)=[@text32={0x20, &(0x7f00000002c0)="0fa20f3566b842000f00d8b805000000f706270000000f01c13e0f070fde460b660f38822c81670f53ccf2360f217a0f07", 0x31}], 0x1, 0x11, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r1, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000180)=[@text64={0x40, 0x0}], 0x1, 0x18, 0x0, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m11.048646547s ago: executing program 1 (id=855):
r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$KVM_SET_MSRS(0xffffffffffffffff, 0xc008ae88, &(0x7f0000000000)={0x1, 0x0, [{0xf88e470f, 0xed}]})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
rt_sigprocmask(0x2, &(0x7f00000000c0)={[0x8001]}, 0x0, 0x8)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_SET_REGS(r2, 0x4090ae82, &(0x7f0000000200)={[0x2, 0x9, 0xfffffffffffffffd, 0x2, 0x2, 0x0, 0x4002004c4, 0x7f, 0x8000000000000000, 0xc595, 0x0, 0x1, 0xffffffffffffffff, 0xfff, 0xb3, 0x39da], 0x30000, 0x2010d3})
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m10.811566261s ago: executing program 1 (id=858):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$BTRFS_IOC_ENCODED_READ(0xffffffffffffffff, 0x80809440, &(0x7f0000000880)={&(0x7f00000007c0)=[{&(0x7f0000000380)="7f", 0x1}], 0x1, 0x9, 0x0, 0x8, 0xeb, 0x5, 0x7, 0x7})
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(r1, r2, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000100)=[@text64={0x40, &(0x7f0000000200)="f7790066baa00066b86b4266ef66ba420066b8e20066ef0f29902cbb0000c4e2b1ba8c88d9000000666666440f38826b410f7842280f07b8010000000f01d9c4033921820f47a753fd", 0x49}], 0x1, 0x43, 0x0, 0x0)
ioctl$KVM_SET_VAPIC_ADDR(r2, 0x4008ae93, &(0x7f0000000040)=0x1000)
ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)={0x1, 0x0, [{0x40000073, 0x0, 0x81}]})
ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4400ae8f, &(0x7f0000000140)=@x86={0x40, 0x1, 0xc, 0x0, 0x75, 0x0, 0x10, 0x0, 0x0, 0x80, 0x9, 0x0, 0x0, 0x8, 0xfffffff8, 0x8, 0xff, 0xff})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1m10.398239111s ago: executing program 1 (id=861):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r0, 0x25, &(0x7f0000000000)={0x1})
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x26, &(0x7f0000000040)={0x0, 0x0, 0x10, 0x3})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r2, 0x7, &(0x7f0000000180)={0x1, 0x0, 0x12, 0x10})
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r3, 0x7, &(0x7f0000000180)={0x1, 0x0, 0x12, 0x10})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
close_range(r4, 0xffffffffffffffff, 0x0)

1m10.036413971s ago: executing program 1 (id=864):
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x4, 0x0, 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f00000001c0)='./file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000400)='./file0\x00', &(0x7f0000000100)='./file0/file0\x00', 0x0, 0x219d88b, 0x0)
mount$bind(&(0x7f0000000140)='./file0/file0\x00', &(0x7f0000000040)='./file0\x00', 0x0, 0x10a78c0, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
umount2(&(0x7f0000000080)='./file0/file0\x00', 0x1)

1m9.777626511s ago: executing program 1 (id=868):
socket$netlink(0x10, 0x3, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff1000/0x3000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ff6000/0x3000)=nil, &(0x7f0000ff2000/0x1000)=nil, &(0x7f0000ff8000/0x8000)=nil, &(0x7f0000ffc000/0x2000)=nil, &(0x7f0000ffa000/0x2000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffa000/0x4000)=nil, &(0x7f0000ffa000/0x3000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r0 = io_uring_setup(0x1b7b, &(0x7f0000000040)={0x0, 0xc89c, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {}, {0x0, 0xfff0}, {0xe, 0xffff}}}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1m8.487271011s ago: executing program 1 (id=877):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0xa4, 0x4)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8dc, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1m8.210145927s ago: executing program 33 (id=877):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
setsockopt$sock_int(r0, 0x1, 0x2e, &(0x7f0000000100)=0xa4, 0x4)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
r1 = io_uring_setup(0x4fee, &(0x7f0000000040)={0x0, 0xc8dc, 0xc000, 0xa, 0x20002f7})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0xd}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x3, &(0x7f0000000000)=0x6, 0x4)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)

28.489562489s ago: executing program 0 (id=1030):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000300))
r1 = inotify_init()
readv(r1, &(0x7f0000000140)=[{&(0x7f0000000340)=""/263, 0x107}], 0x1)
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
fcntl$setstatus(r1, 0x4, 0x42800)
getpid()
syz_usb_connect$cdc_ecm(0x4, 0x0, 0x0, 0x0)
syz_usb_connect(0x5, 0x2d, &(0x7f0000000040)=ANY=[@ANYBLOB="12011001581c2908570b2885396d0102030109021b00010001000b0904c80201030102030905b5af66"], 0x0)
pidfd_getfd(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)

25.881679713s ago: executing program 0 (id=1044):
socket(0x10, 0x803, 0x0)
r0 = socket$rxrpc(0x21, 0x2, 0xa)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r1 = io_uring_setup(0x24d2, &(0x7f0000000040)={0x0, 0xc8e2, 0xc000, 0x0, 0x20002f5})
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000093c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@deltfilter={0x24, 0x2d, 0x10, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x1}, {0x1}, {0xe, 0x5}}}, 0x24}, 0x1, 0x0, 0x0, 0x40005}, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x2f, &(0x7f0000000000)=0x6, 0x4)
r2 = socket$inet_sctp(0x2, 0x1, 0x84)
getsockopt$inet_sctp_SCTP_MAX_BURST(r2, 0x84, 0x14, &(0x7f0000000000)=@assoc_value, &(0x7f0000000040)=0x8)
io_uring_enter(r1, 0x2219, 0x7721, 0x16, 0x0, 0x0)
setsockopt$sock_int(r0, 0x1, 0x7, &(0x7f0000000200), 0x4)

25.61023151s ago: executing program 0 (id=1047):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000040)=0x200000000)
r1 = syz_io_uring_setup(0x4ed, &(0x7f0000000300)={0x0, 0xfec9, 0x0, 0xff7ffffc, 0x274}, &(0x7f00000001c0)=<r2=>0x0, &(0x7f0000000280)=<r3=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r2, r3, &(0x7f00000002c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
io_uring_enter(r1, 0xdb4, 0xd070, 0x0, 0x0, 0x0)
r4 = dup2(r0, r0)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f0000000000)=0x6)
read$FUSE(r4, &(0x7f00000016c0)={0x2020}, 0x2020)

24.309043027s ago: executing program 0 (id=1053):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000340)={0x1, &(0x7f0000000000)=[{0x6, 0xf, 0x0, 0x7fff8000}]})
fspick(0xffffffffffffffff, 0x0, 0x0)
r0 = socket(0x10, 0x803, 0x0)
r1 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'team_slave_1\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xffe0, 0xffff}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x1}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000005900)=@newtfilter={0x64, 0x2c, 0xd2b, 0x70bd29, 0x35dfdbfb, {0x0, 0x0, 0x0, r2, {0xf}, {}, {0x7, 0xfff3}}, [@filter_kind_options=@f_flow={{0x9}, {0x34, 0x2, [@TCA_FLOW_XOR={0x8, 0x7, 0x22a4}, @TCA_FLOW_ADDEND={0x8, 0x5, 0x9}, @TCA_FLOW_KEYS={0x8, 0x1, 0xba37}, @TCA_FLOW_DIVISOR={0x8, 0x8, 0xffffffd2}, @TCA_FLOW_BASECLASS={0x8, 0x3, {0xd, 0xb}}, @TCA_FLOW_MODE={0x8, 0x2, 0x1}]}}]}, 0x64}}, 0x24040084)
r3 = syz_mount_image$fuse(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101020, &(0x7f00000000c0)={{}, 0x2c, {'rootmode', 0x3d, 0x8000}, 0x2c, {'user_id', 0x3d, 0xee01}, 0x2c, {'group_id', 0x3d, 0xffffffffffffffff}, 0x2c, {[{}, {@allow_other}, {@max_read={'max_read', 0x3d, 0x7fff}}, {@default_permissions}, {@blksize={'blksize', 0x3d, 0x200}}, {@allow_other}, {@default_permissions}, {@max_read={'max_read', 0x3d, 0xfffffffffffffffb}}], [{@obj_role}, {@uid_lt={'uid<', 0xffffffffffffffff}}, {@smackfstransmute={'smackfstransmute', 0x3d, '!'}}, {@hash}, {@obj_user={'obj_user', 0x3d, ']/[[-'}}, {@dont_hash}]}}, 0x0, 0x0, &(0x7f0000000380)="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")
mkdirat(r3, 0x0, 0x14)
syz_mount_image$fuse(0x0, 0x0, 0x3000009, 0x0, 0x1, 0x0, 0x0)
setxattr$security_capability(0x0, 0x0, 0x0, 0x0, 0x0)

24.074412962s ago: executing program 0 (id=1056):
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x101)
mount$fuse(0x0, 0x0, 0x0, 0x2b38094, &(0x7f0000000400)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=0x0])
mount(0x0, &(0x7f00000001c0)='./file1\x00', &(0x7f0000000040)='autofs\x00', 0x0, &(0x7f0000000400))
chdir(&(0x7f0000000080)='./file1\x00')
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000240), 0x42, 0x0)
r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r1, @ANYBLOB=',rootmode=0000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000840)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x12d)
ioctl$AUTOFS_IOC_PROTOSUBVER(r2, 0x40049366, 0x0)

23.902112909s ago: executing program 0 (id=1057):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000180100002020692500000000002060207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r0}, 0xc)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x30)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r3, 0x402, 0x40000029)
fcntl$notify(r2, 0x402, 0x1c)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r4, 0x402, 0x1a)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r0}, 0xc)

9.856158523s ago: executing program 2 (id=1115):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000002180)='blkio.bfq.io_merged\x00', 0x275a, 0x0)
r1 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
r2 = open$dir(&(0x7f0000000080)='./file0\x00', 0x0, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x12, r2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000fe020010850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
writev(r1, &(0x7f0000000100)=[{&(0x7f0000000300)="d88b9593204eeb", 0x7}], 0x1)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000005c0)={r3, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000004c0)=[0x6], 0x0, 0x0, 0x1}}, 0x40)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x12, r0, 0x0)
ftruncate(r0, 0xc17a)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000080)=0x9, 0x8, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x0)

9.63725888s ago: executing program 2 (id=1117):
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newtfilter={0x48, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x0, 0x9}, {}, {0xd, 0xfff1}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x18, 0x2, [@TCA_CGROUP_EMATCHES={0x14, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0x10, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0xc, 0x1, 0x0, 0x0, {{0x3, 0x9, 0x80}}}]}]}]}}]}, 0x48}}, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$NL80211_CMD_CRIT_PROTOCOL_START(r1, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={0x0, 0x1c}}, 0x0)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r2, @ANYBLOB="f5ff0f00252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)
sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="4000000010000305000000000007000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000100000180012800e0001007769726567756172640000000400028008000a00", @ANYRES32=r2], 0x40}, 0x1, 0x0, 0x0, 0x800}, 0xc0b0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000000)={0x0}}, 0x0)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000880)=ANY=[], 0x1c}}, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)

8.91551825s ago: executing program 2 (id=1120):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000000)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_clone(0x1000000, 0x0, 0xfffffd11, 0x0, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)

8.729130734s ago: executing program 34 (id=1057):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000a8000000180100002020692500000000002060207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r0}, 0xc)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r1, 0x402, 0x30)
r2 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
r3 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r3, 0x402, 0x40000029)
fcntl$notify(r2, 0x402, 0x1c)
r4 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x40000, 0x0)
fcntl$notify(r4, 0x402, 0x1a)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000380)={r0}, 0xc)

7.910978885s ago: executing program 4 (id=1125):
timer_create(0x0, &(0x7f0000000200)={0x0, 0x21, 0x2, @tid=0xffffffffffffffff}, &(0x7f0000000300))
fcntl$lock(0xffffffffffffffff, 0x25, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0x5dd93000)
r0 = userfaultfd(0x80001)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000000c0)={0xaa, 0x27c})
r1 = epoll_create(0x80)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000140)={0x20002002})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f00000003c0)={{&(0x7f0000157000/0x2000)=nil, 0x2000}, 0x1})
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x4)

6.23402591s ago: executing program 5 (id=1127):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fcntl$notify(r0, 0x402, 0x80000020)
unshare(0x24020400)
mknod(&(0x7f0000000000)='./bus\x00', 0x1000, 0x0)
mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r1, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x5603d}], 0x1)
open(&(0x7f00000002c0)='./bus\x00', 0x60102, 0x0)
r2 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
r3 = creat(&(0x7f0000000000)='./bus\x00', 0x100)
tee(r2, r3, 0x3, 0x0)

6.160794545s ago: executing program 2 (id=1128):
syz_mount_image$nilfs2(&(0x7f000000a000), &(0x7f0000000400)='./file0\x00', 0x94, &(0x7f000000a380)=ANY=[@ANYBLOB="0001def4774774366f0b8a20db13db64e85fc9322c3fe018b91ff1291b4f4c56de7e4543f49818e1307d98d09daa1e2a7dbf88003e9401dc73aad0b7dbb5685565c7825ba8340621faeae92abed19c524ab06c4303258d253722e159642af447aeb096c6a26d345d82f2925163331b0e9157441a9c61dd1051d3b970f9ac12f5975cf1ad4e45acef1a54921c492a77bcb1858b68758ed339608b8e43c733219f1f9e0b867840f821e03bc0e8a497c4d5dde436000090a397637dedb2f3"], 0x1, 0xd99, &(0x7f0000006900)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x125141, 0xd)
pwrite64(r0, &(0x7f0000000140)='2', 0xfdef, 0xe7c)
fallocate(0xffffffffffffffff, 0x20, 0x0, 0x8000)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r0, 0x0, 0x0)
syz_mount_image$btrfs(&(0x7f0000005100), &(0x7f0000000040)='./file1\x00', 0x800810, &(0x7f0000000140)={[{@nossd_spread}, {@nodatasum}, {@compress_force}, {@compress_algo={'compress', 0x3d, 'lzo'}}, {@flushoncommit}, {@autodefrag}, {@max_inline={'max_inline', 0x3d, [0x30, 0x37, 0x65]}}, {@nodiscard}]}, 0xfb, 0x510a, &(0x7f000000d000)="$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")
r1 = open(0x0, 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r1, 0x40086602, &(0x7f00000001c0)=0x4)
io_uring_register$IORING_REGISTER_BUFFERS2(0xffffffffffffffff, 0xf, 0x0, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x109342, 0x0)

6.040541562s ago: executing program 5 (id=1129):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbee2, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e21}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000440)={0xd, 0xb, &(0x7f0000000280)=@framed={{0x18, 0x0, 0x0, 0x0, 0x64, 0x0, 0x0, 0x0, 0x1}, [@printk={@d, {}, {}, {0x7, 0x0, 0x0, 0x1, 0x0, 0x0, 0xfffffff6}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x2084}, {0x85, 0x0, 0x0, 0x72}}]}, &(0x7f0000000300)='GPL\x00', 0x6, 0x5, &(0x7f0000000340)=""/5}, 0x94)

4.985301487s ago: executing program 5 (id=1130):
socket$nl_route(0x10, 0x3, 0x0)
openat$fuse(0xffffffffffffff9c, &(0x7f0000008300), 0x2, 0x0)
syz_io_uring_setup(0x279, &(0x7f0000000400)={0x0, 0x37a9, 0x40, 0x1}, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x10001, 0x9, 0x1}, 0x48)
r0 = syz_io_uring_setup(0x1ed3, &(0x7f0000000240)={0x0, 0x0, 0x10100, 0x5, 0x279}, &(0x7f00000002c0)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
sendmsg$IPSET_CMD_TYPE(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB='('], 0x38}}, 0x0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000003c0)='pids.current\x00', 0x275a, 0x0)
write$UHID_CREATE2(r3, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r3, 0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000000)=@IORING_OP_TEE={0x21, 0x4, 0x0, @fd_index=0x8, 0x0, 0x0, 0x9, 0x7, 0x1})
io_uring_enter(r0, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

4.692892301s ago: executing program 5 (id=1131):
r0 = getpid()
r1 = syz_pidfd_open(r0, 0x0)
setns(r1, 0x24020000)
r2 = syz_clone(0xb21e0000, 0x0, 0x0, 0x0, 0x0, 0x0)
r3 = syz_pidfd_open(r2, 0x0)
setns(r3, 0x24020000)
move_mount(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='\x00', 0x274)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2000003, 0x8031, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x2000)=nil, 0x8000000, 0x19)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000400)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})

3.260641393s ago: executing program 4 (id=1132):
prlimit64(0x0, 0xe, &(0x7f0000000600)={0x9, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x19)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

2.605072436s ago: executing program 4 (id=1133):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

2.350776386s ago: executing program 5 (id=1134):
gettid()
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = openat$cgroup_procs(r0, &(0x7f0000000080)='tasks\x00', 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x29, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000004c0)={r2, r0, 0x16, 0x0, @void}, 0x10)
write$cgroup_pid(r1, &(0x7f00000001c0), 0x12)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r3, 0x29, 0x1b, &(0x7f00000000c0)={@ipv4={'\x00', '\xff\xff', @rand_addr=0x64010102}, 0x1, 0x0, 0xff, 0x2}, 0x20)

1.410381894s ago: executing program 4 (id=1135):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$BATADV_CMD_GET_MESH(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={0x0, 0x32}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000540)=ANY=[@ANYBLOB="3800000010000507000000000004000000000000", @ANYRES32=r2, @ANYBLOB="0000000a010000001800120008000100736974000c0002000800030036"], 0x38}}, 0x0)
r3 = socket(0x10, 0x803, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
sendmsg$nl_route(r3, &(0x7f00000001c0)={0x0, 0x5, &(0x7f0000000300)={&(0x7f0000000340)=@ipv6_newaddr={0x2c, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}]}, 0x2c}, 0x1, 0x0, 0x0, 0xc800}, 0x0)
r6 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000580)=@ipv6_newaddr={0x34, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x40, 0x4, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_RT_PRIORITY={0x8, 0x9, 0x9014}]}, 0x34}, 0x1, 0x0, 0x0, 0x4}, 0x0)

1.293030341s ago: executing program 5 (id=1136):
socketpair$unix(0x1, 0x3, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
r2 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539})
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mremap(&(0x7f00003eb000/0x2000)=nil, 0x2000, 0x1000, 0x3, &(0x7f0000003000/0x1000)=nil)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000002700)=""/4096, 0x2200}], 0x0, 0xa}, 0x20)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0xc4}, 0x0)

1.206120214s ago: executing program 2 (id=1137):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x18)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x3, 0x16, &(0x7f0000000140)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xffffffffffffffd2}, 0x48)

1.159504285s ago: executing program 4 (id=1138):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
close(0x3)
r1 = socket(0x2, 0x5, 0x0)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
shutdown(r2, 0x0)
close(0x3)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000200)={<r3=>0x0, 0x10, &(0x7f00000001c0)=[@in={0x2, 0x4e23, @rand_addr=0x64010100}]}, &(0x7f0000000140)=0x10)
getsockopt$inet_sctp6_SCTP_PRIMARY_ADDR(r2, 0x84, 0x7a, &(0x7f0000000340)={r3, @in6={{0xa, 0x3, 0x4, @dev={0xfe, 0x80, '\x00', 0xf}, 0x8}}}, &(0x7f0000000040)=0x84)
sendmmsg$inet_sctp(r1, &(0x7f00000032c0)=[{0x0, 0x0, 0x0, 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="30000000000000008400000001000000000000017c"], 0x30}], 0x1, 0x0)
setsockopt(r0, 0x84, 0x80, &(0x7f0000000000)="1400000009000000", 0x8)
setsockopt$inet_sctp6_SCTP_SET_PEER_PRIMARY_ADDR(r0, 0x84, 0x5, &(0x7f0000000100)={0x0, @in={{0x2, 0x4f23, @broadcast}}}, 0x84)

816.345169ms ago: executing program 4 (id=1139):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xc, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
fcntl$lock(r1, 0x6, &(0x7f0000000000)={0x0, 0x0, 0x8})
fcntl$lock(r1, 0x26, &(0x7f0000000280)={0x1, 0x0, 0x9, 0x9})
unshare(0x22020400)
fcntl$lock(r1, 0x7, 0x0)

0s ago: executing program 2 (id=1140):
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000340)=<r0=>0x0)
fcntl$lock(0xffffffffffffffff, 0x5, &(0x7f0000000040)={0x0, 0x0, 0x10001, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
madvise(&(0x7f0000c00000/0x400000)=nil, 0x400000, 0xe)
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f00000000c0))
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
syz_io_uring_setup(0x867, &(0x7f0000000140)={0x0, 0x9164, 0x1000, 0x1, 0x359}, &(0x7f00000002c0), &(0x7f0000ff4000))
close_range(r1, r1, 0x0)

kernel console output (not intermixed with test programs):

3 netdevsim3: renamed from eth3
[   69.680722][ T5763] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.721153][ T5765] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   69.731388][ T5765] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   69.742104][ T5765] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   69.751857][ T5765] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   69.810737][ T5763] 8021q: adding VLAN 0 to HW filter on device team0
[   69.844249][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   69.851631][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   69.881642][ T2961] bridge0: port 2(bridge_slave_1) entered blocking state
[   69.888828][ T2961] bridge0: port 2(bridge_slave_1) entered forwarding state
[   69.960803][ T5768] 8021q: adding VLAN 0 to HW filter on device bond0
[   69.993774][ T5767] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.013372][ T5765] 8021q: adding VLAN 0 to HW filter on device bond0
[   70.066434][ T5765] 8021q: adding VLAN 0 to HW filter on device team0
[   70.079397][ T5767] 8021q: adding VLAN 0 to HW filter on device team0
[   70.090373][ T5768] 8021q: adding VLAN 0 to HW filter on device team0
[   70.107953][ T2961] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.115110][ T2961] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.142404][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.149608][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.160251][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.167394][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.184832][  T988] bridge0: port 1(bridge_slave_0) entered blocking state
[   70.191975][  T988] bridge0: port 1(bridge_slave_0) entered forwarding state
[   70.225635][  T988] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.233182][  T988] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.269052][  T988] bridge0: port 2(bridge_slave_1) entered blocking state
[   70.276235][  T988] bridge0: port 2(bridge_slave_1) entered forwarding state
[   70.434955][ T5767] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   70.534241][ T5763] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.659608][ T5763] veth0_vlan: entered promiscuous mode
[   70.684606][ T5763] veth1_vlan: entered promiscuous mode
[   70.762929][ T5763] veth0_macvtap: entered promiscuous mode
[   70.782467][ T5763] veth1_macvtap: entered promiscuous mode
[   70.845134][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.863873][ T5763] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.876039][ T5763] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.886945][ T5763] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.895678][ T5763] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.905046][ T5763] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.931409][ T5765] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.972409][ T5768] 8021q: adding VLAN 0 to HW filter on device batadv0
[   70.994766][ T5767] 8021q: adding VLAN 0 to HW filter on device batadv0
[   71.066926][ T5770] Bluetooth: hci0: command tx timeout
[   71.094350][ T5765] veth0_vlan: entered promiscuous mode
[   71.113791][ T5768] veth0_vlan: entered promiscuous mode
[   71.150596][ T5770] Bluetooth: hci1: command tx timeout
[   71.156153][ T5770] Bluetooth: hci2: command tx timeout
[   71.162349][ T5775] Bluetooth: hci3: command tx timeout
[   71.169829][ T5767] veth0_vlan: entered promiscuous mode
[   71.195408][ T5767] veth1_vlan: entered promiscuous mode
[   71.210510][ T5768] veth1_vlan: entered promiscuous mode
[   71.222025][ T2961] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.245907][ T2961] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.252100][ T5765] veth1_vlan: entered promiscuous mode
[   71.307000][  T988] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.314907][  T988] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.339872][ T5767] veth0_macvtap: entered promiscuous mode
[   71.378585][ T5767] veth1_macvtap: entered promiscuous mode
[   71.410796][ T5765] veth0_macvtap: entered promiscuous mode
[   71.421667][ T5765] veth1_macvtap: entered promiscuous mode
[   71.474157][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.495034][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.508889][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.520481][ T5768] veth0_macvtap: entered promiscuous mode
[   71.535313][ T5765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.547541][ T5765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.558054][ T5765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.568982][ T5765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.581574][ T5765] batman_adv: batadv0: Interface activated: batadv_slave_0
[   71.600855][ T5767] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.612452][ T5767] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.628473][ T5767] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.633727][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[   71.642412][ T5768] veth1_macvtap: entered promiscuous mode
[   71.642531][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[   71.652271][ T5765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.679838][ T5765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.707868][ T5765] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   71.725522][ T5765] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.744041][ T5765] batman_adv: batadv0: Interface activated: batadv_slave_1
[   71.790081][ T5767] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.805064][ T5767] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.814292][ T5767] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.823836][ T5767] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.847815][ T5765] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   71.861723][ T5765] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   71.872357][ T5765] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   71.886421][ T5765] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   71.911182][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.923524][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.933911][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.945883][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.956768][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   71.967751][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   71.980231][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_0
[   72.005745][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.017553][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.029986][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.040963][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.051135][ T5768] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   72.062007][ T5768] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   72.073765][ T5768] batman_adv: batadv0: Interface activated: batadv_slave_1
[   72.129496][ T5768] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   72.146579][ T5768] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   72.156859][ T5768] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   72.173334][ T5768] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   72.296890][ T3479] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.304994][ T3479] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.483098][ T3479] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.518350][ T3479] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.564736][ T3479] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.574338][ T3479] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.625796][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.645397][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.701510][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.734197][ T2961] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   72.749952][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   72.759950][ T2961] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   73.147432][ T5770] Bluetooth: hci0: command tx timeout
[   73.231915][ T5775] Bluetooth: hci1: command tx timeout
[   73.231932][ T5766] Bluetooth: hci3: command tx timeout
[   73.237496][ T5770] Bluetooth: hci2: command tx timeout
[   73.822655][ T5866] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   74.277249][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   74.450143][ T5878] syz.3.16[5878]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[   74.464306][ T5872] bridge0: port 2(bridge_slave_1) entered disabled state
[   74.472243][ T5872] bridge0: port 1(bridge_slave_0) entered disabled state
[   74.571250][ T5875] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   74.660232][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   75.226666][ T5766] Bluetooth: hci0: command tx timeout
[   75.309437][ T5766] Bluetooth: hci1: command tx timeout
[   75.310137][ T5775] Bluetooth: hci3: command tx timeout
[   75.314980][ T5766] Bluetooth: hci2: command tx timeout
[   75.431983][ T5872] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   75.683275][ T5878] loop3: detected capacity change from 0 to 40427
[   75.697205][ T5872] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   75.725263][ T5878] F2FS-fs (loop3): build fault injection attr: rate: 771, type: 0x7ffff
[   75.809449][ T5878] F2FS-fs (loop3): invalid crc value
[   75.845116][ T5878] F2FS-fs (loop3): Found nat_bits in checkpoint
[   75.954894][ T5878] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[   76.106853][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   76.216781][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   76.225102][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   76.234723][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   76.288545][ T5768] syz-executor: attempt to access beyond end of device
[   76.288545][ T5768] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[   76.335386][ T5768] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   76.353347][ T5768] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[   77.068825][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   77.133393][ T5872] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.161861][ T5872] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.216543][ T5872] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.226220][ T5872] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   77.623080][ T5872] syz.1.14 (5872) used greatest stack depth: 20296 bytes left
[   77.833626][ T5898] netlink: 14 bytes leftover after parsing attributes in process `syz.2.21'.
[   78.037410][ T5898] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   78.071713][ T5898] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   78.093944][ T5898] bond0 (unregistering): Released all slaves
[   78.289291][ T5891] netlink: 20 bytes leftover after parsing attributes in process `syz.3.18'.
[   78.537502][ T5911] loop2: detected capacity change from 0 to 1024
[   78.608276][ T5911] =======================================================
[   78.608276][ T5911] WARNING: The mand mount option has been deprecated and
[   78.608276][ T5911]          and is ignored by this kernel. Remove the mand
[   78.608276][ T5911]          option from the mount to silence this warning.
[   78.608276][ T5911] =======================================================
[   78.721822][ T5916] loop1: detected capacity change from 0 to 512
[   78.752783][ T5923] syz.0.28(5923): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[   78.767290][ T5916] EXT4-fs: Ignoring removed mblk_io_submit option
[   78.781818][ T5911] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   78.810574][ T5916] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   78.833520][ T5916] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[   78.870975][ T5911] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:4045: comm syz.2.25: Allocating blocks 497-513 which overlap fs metadata
[   78.958463][ T5916] EXT4-fs error (device loop1): ext4_orphan_get:1424: comm syz.1.26: bad orphan inode 16
[   78.982418][ T5916] ext4_test_bit(bit=15, block=4) = 0
[   79.006603][ T5916] EXT4-fs (loop1): 1 orphan inode deleted
[   79.013550][ T5916] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   79.093359][ T5916] EXT4-fs error (device loop1): __ext4_new_inode:1075: comm syz.1.26: reserved inode found cleared - inode=9
[   79.106826][ T5763] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.121051][ T5936] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   79.184025][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   79.457344][ T5946] netlink: 'syz.2.34': attribute type 1 has an invalid length.
[   79.483509][ T5946] geneve2: entered promiscuous mode
[   79.490062][ T5946] geneve2: entered allmulticast mode
[   80.715896][ T5962] loop3: detected capacity change from 0 to 32768
[   80.841875][ T5962] JBD2: Ignoring recovery information on journal
[   80.971476][ T5962] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[   81.046890][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   81.056328][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   81.065027][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   81.123308][   T28] audit: type=1326 audit(1773326663.573:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5984 comm="syz.2.43" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x0
[   81.177716][ T5824] IPVS: starting estimator thread 0...
[   81.239832][ T5768] ocfs2: Unmounting device (7,3) on (node local)
[   81.276789][ T5987] IPVS: using max 35 ests per chain, 84000 per kthread
[   81.875217][    T8] cfg80211: failed to load regulatory.db
[   82.205927][ T6007] loop0: detected capacity change from 0 to 1024
[   82.219820][ T6007] EXT4-fs: inline encryption not supported
[   82.274328][ T6007] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   82.426955][ T6007] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #3: block 1: comm syz.0.51: lblock 1 mapped to illegal pblock 1 (length 1)
[   82.464021][ T6007] EXT4-fs (loop0): Remounting filesystem read-only
[   82.522585][ T6003] ptrace attach of "./syz-executor exec"[6005] was attempted by "./syz-executor exec"[6003]
[   82.544017][ T6007] Quota error (device loop0): write_blk: dquota write failed
[   82.604390][ T6007] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[   82.629647][ T6007] EXT4-fs (loop0): 1 orphan inode deleted
[   82.640723][ T6007] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.681184][ T6017] loop2: detected capacity change from 0 to 4096
[   83.828785][ T6034] netlink: 4 bytes leftover after parsing attributes in process `syz.3.60'.
[   83.832930][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   83.877067][ T6034] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   83.884781][ T6034] IPv6: NLM_F_CREATE should be set when creating new route
[   83.944852][ T6036] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   83.952180][ T6036] IPv6: NLM_F_CREATE should be set when creating new route
[   83.965495][ T6022] loop1: detected capacity change from 0 to 32768
[   84.055073][ T6022] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.56 (6022)
[   84.317706][ T6022] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   84.371065][ T6022] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[   84.434935][ T6022] BTRFS info (device loop1): using free space tree
[   84.448118][ T6045] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=4294967295 (34359738360 ns) > initial count (16672 ns). Using initial count to start timer.
[   84.766423][ T6022] BTRFS info (device loop1): enabling ssd optimizations
[   84.774822][ T6022] BTRFS info (device loop1): auto enabling async discard
[   87.190334][ T6088] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   87.199226][ T5767] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[   87.281128][ T6079] lo: entered promiscuous mode
[   87.286069][ T6079] lo: entered allmulticast mode
[   87.609814][ T6091] capability: warning: `syz.0.75' uses 32-bit capabilities (legacy support in use)
[   89.764687][ T6125] netlink: 4 bytes leftover after parsing attributes in process `syz.0.84'.
[   89.779283][ T6125] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   89.786581][ T6125] IPv6: NLM_F_CREATE should be set when creating new route
[   89.799294][ T6125] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[   89.806592][ T6125] IPv6: NLM_F_CREATE should be set when creating new route
[   90.051516][ T6127] netlink: 72 bytes leftover after parsing attributes in process `syz.0.85'.
[   90.085302][ T6127] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.093581][ T6127] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.148624][ T6130] netlink: 76 bytes leftover after parsing attributes in process `syz.0.85'.
[   90.166769][ T6130] bridge0: port 2(bridge_slave_1) entered blocking state
[   90.174003][ T6130] bridge0: port 2(bridge_slave_1) entered forwarding state
[   90.182682][ T6130] bridge0: port 1(bridge_slave_0) entered blocking state
[   90.190001][ T6130] bridge0: port 1(bridge_slave_0) entered forwarding state
[   90.205223][ T6130] netlink: 72 bytes leftover after parsing attributes in process `syz.0.85'.
[   90.214768][ T6130] bridge0: port 2(bridge_slave_1) entered disabled state
[   90.222053][ T6130] bridge0: port 1(bridge_slave_0) entered disabled state
[   90.547723][ T6145] netlink: 4 bytes leftover after parsing attributes in process `syz.0.92'.
[   90.775595][ T6149] loop0: detected capacity change from 0 to 1024
[   90.866162][ T6149] syz.0.94: attempt to access beyond end of device
[   90.866162][ T6149] loop0: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   90.882900][ T6149] Buffer I/O error on dev loop0, logical block 2889, async page read
[   90.891410][ T6149] syz.0.94: attempt to access beyond end of device
[   90.891410][ T6149] loop0: rw=0, sector=393216, nr_sectors = 2 limit=1024
[   90.907532][ T6149] Buffer I/O error on dev loop0, logical block 196608, async page read
[   90.915901][ T6149] syz.0.94: attempt to access beyond end of device
[   90.915901][ T6149] loop0: rw=0, sector=393218, nr_sectors = 2 limit=1024
[   90.931630][ T6149] Buffer I/O error on dev loop0, logical block 196609, async page read
[   90.945342][ T6149] syz.0.94: attempt to access beyond end of device
[   90.945342][ T6149] loop0: rw=0, sector=393220, nr_sectors = 2 limit=1024
[   90.971683][ T6149] Buffer I/O error on dev loop0, logical block 196610, async page read
[   90.993718][ T6150] syz.0.94: attempt to access beyond end of device
[   90.993718][ T6150] loop0: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   90.996118][ T6149] syz.0.94: attempt to access beyond end of device
[   90.996118][ T6149] loop0: rw=0, sector=393222, nr_sectors = 2 limit=1024
[   91.015298][ T6148] syz.0.94: attempt to access beyond end of device
[   91.015298][ T6148] loop0: rw=0, sector=5778, nr_sectors = 2 limit=1024
[   91.021693][ T6149] Buffer I/O error on dev loop0, logical block 196611, async page read
[   91.038731][ T6148] Buffer I/O error on dev loop0, logical block 2889, async page read
[   91.042823][ T6149] syz.0.94: attempt to access beyond end of device
[   91.042823][ T6149] loop0: rw=0, sector=393224, nr_sectors = 2 limit=1024
[   91.068643][ T6149] Buffer I/O error on dev loop0, logical block 196612, async page read
[   91.077237][ T6149] syz.0.94: attempt to access beyond end of device
[   91.077237][ T6149] loop0: rw=0, sector=393226, nr_sectors = 2 limit=1024
[   91.090858][ T6148] syz.0.94: attempt to access beyond end of device
[   91.090858][ T6148] loop0: rw=0, sector=393216, nr_sectors = 2 limit=1024
[   91.105350][ T6149] Buffer I/O error on dev loop0, logical block 196613, async page read
[   91.113741][ T6148] Buffer I/O error on dev loop0, logical block 196608, async page read
[   91.122056][ T6149] Buffer I/O error on dev loop0, logical block 196614, async page read
[   92.596044][ T6174] loop1: detected capacity change from 0 to 1024
[   92.610350][ T6174] EXT4-fs: Ignoring removed bh option
[   92.617014][ T6174] EXT4-fs: Ignoring removed nobh option
[   92.624729][ T6174] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[   92.661219][ T6174] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   93.124625][ T6174] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:4045: comm syz.1.103: Allocating blocks 497-513 which overlap fs metadata
[   93.158746][ T6174] EXT4-fs (loop1): pa ffff888078de2828: logic 256, phys. 385, len 8
[   93.167365][ T6174] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:5386: group 0, free 0, pa_free 1
[   93.428449][ T6171] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   93.468640][ T6171] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   93.562740][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   93.813114][ T6198] netlink: 8 bytes leftover after parsing attributes in process `syz.2.111'.
[   94.069315][ T6171] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.080619][ T6171] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.100722][ T6171] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   94.122185][ T6171] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.848757][ T6237] Illegal XDP return value 4292411392 on prog  (id 25) dev syz_tun, expect packet loss!
[   96.042674][ T6229] cgroup: fork rejected by pids controller in /syz1
[   96.765825][ T6281] loop1: detected capacity change from 0 to 40427
[   96.775842][ T6281] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[   96.788640][ T6281] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[   96.807573][ T6281] F2FS-fs (loop1): invalid crc value
[   96.849673][ T6281] F2FS-fs (loop1): Found nat_bits in checkpoint
[   96.919105][ T6293] netlink: 24 bytes leftover after parsing attributes in process `syz.2.135'.
[   96.921698][ T6281] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[   96.935244][ T6281] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   97.030397][   T28] audit: type=1804 audit(1773326679.473:3): pid=6281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.131" name="/newroot/33/bus/bus" dev="loop1" ino=10 res=1 errno=0
[   97.078132][ T6296] netlink: 4 bytes leftover after parsing attributes in process `syz.2.135'.
[   97.211634][ T6281] bio_check_eod: 5139 callbacks suppressed
[   97.211935][ T6281] syz.1.131: attempt to access beyond end of device
[   97.211935][ T6281] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427
[   97.378339][ T6281] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[   98.546701][ T6315] process 'syz.1.138' launched './file0' with NULL argv: empty string added
[   99.047658][ T6317] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[   99.332134][   T28] audit: type=1800 audit(1773326681.783:4): pid=6315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.138" name="/" dev="fuse" ino=4 res=0 errno=0
[   99.940654][ T5775] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   99.952767][ T5775] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   99.971088][ T5775] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   99.983322][ T5775] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   99.991193][ T5775] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   99.999077][ T5775] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  100.752102][ T6355] netlink: 'syz.1.155': attribute type 4 has an invalid length.
[  100.856312][ T3479] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.902247][ T6357] netlink: 'syz.1.155': attribute type 4 has an invalid length.
[  101.018890][ T3479] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.094868][ T6334] chnl_net:caif_netlink_parms(): no params data found
[  101.176872][ T3479] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.438920][ T3479] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.555857][ T6334] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.591125][ T6334] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.608685][ T6334] bridge_slave_0: entered allmulticast mode
[  101.616110][ T6334] bridge_slave_0: entered promiscuous mode
[  101.632322][ T6334] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.646358][ T6334] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.655283][ T6334] bridge_slave_1: entered allmulticast mode
[  101.662814][ T6334] bridge_slave_1: entered promiscuous mode
[  101.713188][ T6334] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  101.732383][ T6334] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  101.808053][ T6334] team0: Port device team_slave_0 added
[  101.826088][ T6334] team0: Port device team_slave_1 added
[  101.876631][ T6334] batman_adv: batadv0: Adding interface: batadv_slave_0
[  101.883777][ T6334] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.915572][ T6334] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  101.934114][ T6334] batman_adv: batadv0: Adding interface: batadv_slave_1
[  101.941614][ T6334] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  101.974819][ T6334] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  102.036827][ T5775] Bluetooth: hci2: command tx timeout
[  102.148133][ T6334] hsr_slave_0: entered promiscuous mode
[  102.170767][ T6334] hsr_slave_1: entered promiscuous mode
[  102.185500][ T6334] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  102.201606][ T6334] Cannot create hsr debugfs directory
[  102.624397][ T6394] mac80211_hwsim hwsim4 wlan0: entered promiscuous mode
[  102.665001][ T6398] kernel profiling enabled (shift: 63)
[  102.708161][ T6398] profiling shift: 63 too large
[  103.635761][ T6334] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  103.786211][ T6334] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  103.870826][ T6430] bond1: entered promiscuous mode
[  104.018076][ T6334] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  104.049949][ T6334] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  104.106870][ T5775] Bluetooth: hci2: command tx timeout
[  104.284263][ T3479] hsr_slave_0: left promiscuous mode
[  104.304561][ T3479] hsr_slave_1: left promiscuous mode
[  104.337689][ T3479] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  104.357326][ T3479] batman_adv: batadv0: Removing interface: batadv_slave_0
[  104.382959][ T3479] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  104.397041][ T3479] batman_adv: batadv0: Removing interface: batadv_slave_1
[  104.415977][ T3479] bridge_slave_1: left allmulticast mode
[  104.422087][ T3479] bridge_slave_1: left promiscuous mode
[  104.444006][ T3479] bridge0: port 2(bridge_slave_1) entered disabled state
[  104.470393][ T3479] bridge_slave_0: left allmulticast mode
[  104.476184][ T3479] bridge_slave_0: left promiscuous mode
[  104.482472][ T3479] bridge0: port 1(bridge_slave_0) entered disabled state
[  104.524720][ T3479] veth1_macvtap: left promiscuous mode
[  104.530960][ T3479] veth0_macvtap: left promiscuous mode
[  104.537141][ T3479] veth1_vlan: left promiscuous mode
[  104.543417][ T3479] veth0_vlan: left promiscuous mode
[  106.121233][ T6492] kvm: pic: level sensitive irq not supported
[  106.122456][ T6492] kvm: pic: level sensitive irq not supported
[  106.187996][ T5775] Bluetooth: hci2: command tx timeout
[  106.246566][ T6498] overlayfs: failed to create directory ./bus/work (errno: 22); mounting read-only
[  106.356106][ T3479] team0 (unregistering): Port device team_slave_1 removed
[  106.465392][ T3479] team0 (unregistering): Port device team_slave_0 removed
[  106.594803][ T3479] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  106.678330][ T3479] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  107.527384][ T5803] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  107.757511][ T5803] usb 2-1: Using ep0 maxpacket: 16
[  107.774425][ T5803] usb 2-1: config 0 has no interfaces?
[  107.783803][ T5803] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  107.813817][ T5803] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  107.841389][ T5803] usb 2-1: config 0 descriptor??
[  108.068928][ T3479] bond0 (unregistering): Released all slaves
[  108.130353][ T5887] usb 2-1: USB disconnect, device number 2
[  108.281506][ T5775] Bluetooth: hci2: command tx timeout
[  108.468211][ T6334] 8021q: adding VLAN 0 to HW filter on device bond0
[  108.552494][ T6334] 8021q: adding VLAN 0 to HW filter on device team0
[  108.598971][ T2972] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.606134][ T2972] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.638831][ T2972] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.646041][ T2972] bridge0: port 2(bridge_slave_1) entered forwarding state
[  108.827233][ T3479] IPVS: stop unused estimator thread 0...
[  108.851545][ T6529] block device autoloading is deprecated and will be removed.
[  109.339670][ T6334] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.823408][ T6334] veth0_vlan: entered promiscuous mode
[  109.926224][ T6334] veth1_vlan: entered promiscuous mode
[  110.095530][ T6334] veth0_macvtap: entered promiscuous mode
[  110.134066][ T6334] veth1_macvtap: entered promiscuous mode
[  110.180183][ T6334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  110.226550][ T6334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  110.261351][ T6334] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.282152][ T6334] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  110.315048][ T6334] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  110.332111][ T6334] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.374034][ T6334] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.403766][ T6334] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.424283][ T6334] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.437408][ T6334] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.603816][  T136] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.631914][  T136] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.686964][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.700268][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.347097][ T6593] Zero length message leads to an empty skb
[  111.971919][ T6616] loop1: detected capacity change from 0 to 128
[  112.039331][ T6616] FAT-fs (loop1): bogus number of reserved sectors
[  112.067199][ T6616] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[  112.110201][ T6616] FAT-fs (loop1): Can't find a valid FAT filesystem
[  112.403032][   T28] audit: type=1326 audit(1773326950.861:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.2.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7fc00000
[  112.471827][   T28] audit: type=1326 audit(1773326950.861:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6623 comm="syz.2.219" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f75a219c799 code=0x7fc00000
[  113.233223][   T28] audit: type=1326 audit(1773326951.641:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6637 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc3e0b9c799 code=0x7fc00000
[  113.299606][   T28] audit: type=1326 audit(1773326951.641:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6637 comm="syz.0.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fc3e0b9c799 code=0x7fc00000
[  114.452211][ T6675] netlink: 12 bytes leftover after parsing attributes in process `syz.0.229'.
[  114.670479][ T6683] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  115.735778][ T6704] loop2: detected capacity change from 0 to 1024
[  115.851054][ T6704] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  116.241122][ T5763] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  116.749114][ T6751] netlink: 'syz.0.246': attribute type 16 has an invalid length.
[  116.772354][ T6751] netlink: 'syz.0.246': attribute type 17 has an invalid length.
[  116.893934][ T6751] 8021q: adding VLAN 0 to HW filter on device bond0
[  116.930066][ T6751] 8021q: adding VLAN 0 to HW filter on device team0
[  117.527664][ T6751] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  117.765631][   T28] audit: type=1326 audit(1773326956.181:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  117.787637][    C1] vkms_vblank_simulate: vblank timer overrun
[  117.848553][   T28] audit: type=1326 audit(1773326956.181:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  117.870642][    C1] vkms_vblank_simulate: vblank timer overrun
[  117.944986][   T28] audit: type=1326 audit(1773326956.191:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  117.967025][    C1] vkms_vblank_simulate: vblank timer overrun
[  117.987880][ T6772] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  118.017600][   T28] audit: type=1326 audit(1773326956.191:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  118.088312][   T28] audit: type=1326 audit(1773326956.191:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  118.181206][   T28] audit: type=1326 audit(1773326956.191:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  118.203330][    C1] vkms_vblank_simulate: vblank timer overrun
[  118.235888][   T28] audit: type=1326 audit(1773326956.191:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  118.301101][   T28] audit: type=1326 audit(1773326956.191:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  118.348137][   T28] audit: type=1326 audit(1773326956.191:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  118.370239][    C1] vkms_vblank_simulate: vblank timer overrun
[  118.419509][   T28] audit: type=1326 audit(1773326956.191:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6762 comm="syz.4.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  119.053679][ T6799] netlink: 1 bytes leftover after parsing attributes in process `syz.2.257'.
[  122.248707][ T6877] netlink: 8 bytes leftover after parsing attributes in process `syz.0.268'.
[  122.472024][ T6887] loop1: detected capacity change from 0 to 256
[  124.061251][ T5886] libceph: connect (1)[c::]:6789 error -22
[  124.085411][ T5886] libceph: mon0 (1)[c::]:6789 connect error
[  124.148904][ T6901] ceph: No mds server is up or the cluster is laggy
[  124.886005][ T6914] tipc: Started in network mode
[  124.906563][ T6914] tipc: Node identity ac1414aa, cluster identity 4711
[  124.915108][ T6914] tipc: Enabled bearer <udp:syz2>, priority 10
[  124.961440][ T6918] tipc: Enabled bearer <eth:veth0_macvtap>, priority 0
[  125.514240][ T6927] netlink: 12 bytes leftover after parsing attributes in process `syz.0.282'.
[  125.860837][ T6926] netlink: 32 bytes leftover after parsing attributes in process `syz.2.283'.
[  125.870828][ T6926] netlink: 32 bytes leftover after parsing attributes in process `syz.2.283'.
[  126.030259][    T8] tipc: Node number set to 2886997162
[  126.318560][ T6941] netlink: 798 bytes leftover after parsing attributes in process `syz.2.286'.
[  127.934144][ T6969] netlink: 8 bytes leftover after parsing attributes in process `syz.2.293'.
[  128.036465][    C1] sched: RT throttling activated
[  130.618686][ T7004] loop4: detected capacity change from 0 to 40427
[  130.641034][ T7004] F2FS-fs (loop4): Wrong NAT boundary, start(2560) end(3584) blocks(83968)
[  130.656379][ T7004] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  130.669319][ T7004] F2FS-fs (loop4): Fix alignment : done, start(4096) end(16896) block(12288)
[  130.690160][ T7004] F2FS-fs (loop4): invalid crc value
[  130.701856][ T7004] F2FS-fs (loop4): Found nat_bits in checkpoint
[  130.938743][ T7004] F2FS-fs (loop4): Start checkpoint disabled!
[  130.987938][ T7004] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  131.007901][ T7004] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  131.243881][ T7001] capability: warning: `syz.4.301' uses deprecated v2 capabilities in a way that may be insecure
[  131.566720][ T5887] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  131.766865][ T5887] usb 5-1: device descriptor read/64, error -71
[  131.846761][ T7051] loop1: detected capacity change from 0 to 512
[  131.863754][ T7051] EXT4-fs: Ignoring removed bh option
[  131.923545][ T7051] EXT4-fs (loop1): orphan cleanup on readonly fs
[  131.964308][ T7051] EXT4-fs error (device loop1): ext4_map_blocks:608: inode #11: block 1: comm syz.1.311: lblock 0 mapped to illegal pblock 1 (length 1)
[  131.982215][ T7051] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  131.996213][ T7051] EXT4-fs error (device loop1): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.1.311: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[  132.016247][ T7051] EXT4-fs warning (device loop1): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.1.311: ea_inode dec ref err=-117
[  132.054612][ T5887] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  132.065843][ T7051] EXT4-fs (loop1): 1 orphan inode deleted
[  132.107697][ T7051] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  132.260310][ T5887] usb 5-1: device descriptor read/64, error -71
[  132.398485][ T5887] usb usb5-port1: attempt power cycle
[  132.435969][ T5767] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  132.634045][ T3479] kworker/u4:10: attempt to access beyond end of device
[  132.634045][ T3479] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  132.659660][ T3479] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  132.672224][ T3479] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  132.826188][ T7066] veth0_to_team: entered promiscuous mode
[  132.866973][ T7066] veth0_to_team: entered allmulticast mode
[  132.935860][ T7068] netlink: 'syz.1.317': attribute type 29 has an invalid length.
[  133.070495][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  133.078398][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  133.086547][ T7068] netlink: 'syz.1.317': attribute type 29 has an invalid length.
[  134.068172][ T7077] netlink: 20 bytes leftover after parsing attributes in process `syz.0.328'.
[  134.123334][ T7077] ip6gre1: entered promiscuous mode
[  134.134832][ T7073] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  134.144236][ T7077] ip6gre1: entered allmulticast mode
[  134.279847][ T7077] netlink: 'syz.0.328': attribute type 6 has an invalid length.
[  134.310808][ T7077] netlink: 72 bytes leftover after parsing attributes in process `syz.0.328'.
[  134.729640][ T7097] netlink: 798 bytes leftover after parsing attributes in process `syz.1.323'.
[  135.061219][ T7101] netlink: 12 bytes leftover after parsing attributes in process `syz.2.325'.
[  135.116955][ T7100] loop0: detected capacity change from 0 to 512
[  135.210332][ T7100] FAT-fs (loop0): Directory bread(block 199916) failed
[  135.244664][ T7100] FAT-fs (loop0): Directory bread(block 199917) failed
[  135.274047][ T7100] FAT-fs (loop0): Directory bread(block 199918) failed
[  135.313914][ T7100] FAT-fs (loop0): Directory bread(block 199919) failed
[  135.326093][ T7100] FAT-fs (loop0): Directory bread(block 199920) failed
[  135.367337][ T7100] FAT-fs (loop0): Directory bread(block 199921) failed
[  135.374260][ T7100] FAT-fs (loop0): Directory bread(block 199922) failed
[  135.436795][ T7100] FAT-fs (loop0): Directory bread(block 199923) failed
[  135.553400][   T28] kauditd_printk_skb: 12 callbacks suppressed
[  135.553412][   T28] audit: type=1326 audit(1773326974.001:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  135.617016][ T7109] loop1: detected capacity change from 0 to 40427
[  135.625045][   T28] audit: type=1326 audit(1773326974.011:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  135.651231][   T28] audit: type=1326 audit(1773326974.011:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  135.673762][   T28] audit: type=1326 audit(1773326974.011:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  135.740396][ T5776] I/O error, dev loop1, sector 40192 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  135.772266][   T28] audit: type=1326 audit(1773326974.041:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  135.918172][   T28] audit: type=1326 audit(1773326974.041:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  136.006912][ T7109] netlink: 'syz.1.327': attribute type 10 has an invalid length.
[  136.024461][ T7109] team0: Port device dummy0 added
[  136.043780][ T7118] FAT-fs (loop0): FAT read failed (blocknr 128)
[  136.063474][   T28] audit: type=1326 audit(1773326974.041:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  136.107233][ T7109] syz.1.327 (7109) used greatest stack depth: 19400 bytes left
[  136.152884][   T28] audit: type=1326 audit(1773326974.051:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  136.210087][   T28] audit: type=1326 audit(1773326974.051:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  136.265363][ T7130] bridge_slave_0: left allmulticast mode
[  136.271973][ T7130] bridge_slave_0: left promiscuous mode
[  136.296282][ T7130] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.311399][   T28] audit: type=1326 audit(1773326974.051:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.2.329" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f75a219c799 code=0x7ffc0000
[  136.347128][ T7130] bridge_slave_1: left allmulticast mode
[  136.352825][ T7130] bridge_slave_1: left promiscuous mode
[  136.362702][ T7130] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.411309][ T7130] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  136.431470][ T7130] team0: Port device team_slave_0 removed
[  136.458429][ T7130] team0: Failed to send options change via netlink (err -105)
[  136.472519][ T7130] team0: Failed to send port change of device team_slave_1 via netlink (err -105)
[  136.482611][ T7130] team0: Port device team_slave_1 removed
[  136.493151][ T7130] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  136.501201][ T7130] batman_adv: batadv0: Removing interface: batadv_slave_0
[  136.514362][ T7130] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  136.531298][ T7130] batman_adv: batadv0: Removing interface: batadv_slave_1
[  136.567974][ T7135] team0: Failed to send options change via netlink (err -105)
[  136.596044][ T7135] team0: Mode changed to "activebackup"
[  136.621410][ T7136] netlink: 4 bytes leftover after parsing attributes in process `syz.0.333'.
[  137.277577][ T5805] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  137.478752][ T5805] usb 2-1: Using ep0 maxpacket: 32
[  137.498449][ T5805] usb 2-1: config 0 has an invalid interface number: 188 but max is 0
[  137.518206][ T5805] usb 2-1: config 0 has no interface number 0
[  137.529661][ T5805] usb 2-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  137.549140][ T5805] usb 2-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  137.571753][ T5805] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  137.582495][ T5805] usb 2-1: Product: syz
[  137.589425][ T5805] usb 2-1: Manufacturer: syz
[  137.594241][ T5805] usb 2-1: SerialNumber: syz
[  137.608256][ T5805] usb 2-1: config 0 descriptor??
[  137.621576][ T7153] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  137.856340][ T7153] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  138.158403][ T7205] netlink: 'syz.4.344': attribute type 12 has an invalid length.
[  138.931693][ T7219] binder: 7218:7219 ioctl c0306201 2000000003c0 returned -14
[  139.514239][ T7227] netlink: 36 bytes leftover after parsing attributes in process `syz.4.351'.
[  139.584544][ T7231] Set syz0 is full, maxelem 0 reached
[  139.728112][ T5805] asix 2-1:0.188 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  139.745287][ T5805] asix 2-1:0.188 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0088: ffffffb9
[  139.770713][ T7237] syz.4.354: attempt to access beyond end of device
[  139.770713][ T7237] loop9: rw=0, sector=64, nr_sectors = 2 limit=0
[  139.786700][ T5805] asix: probe of 2-1:0.188 failed with error -71
[  139.787198][ T7237] isofs_fill_super: bread failed, dev=loop9, iso_blknum=16, block=32
[  139.812580][ T5805] usb 2-1: USB disconnect, device number 3
[  140.412518][ T7239] netlink: 'syz.1.355': attribute type 12 has an invalid length.
[  140.796166][ T7242] netlink: 'syz.4.356': attribute type 10 has an invalid length.
[  140.816686][ T7242] netlink: 55 bytes leftover after parsing attributes in process `syz.4.356'.
[  141.029434][   T28] kauditd_printk_skb: 83 callbacks suppressed
[  141.031247][   T28] audit: type=1326 audit(1773326979.491:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.085671][   T28] audit: type=1326 audit(1773326979.491:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.152847][   T28] audit: type=1326 audit(1773326979.521:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.229452][   T28] audit: type=1326 audit(1773326979.521:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.304888][   T28] audit: type=1326 audit(1773326979.521:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.377670][   T28] audit: type=1326 audit(1773326979.521:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.427071][   T28] audit: type=1326 audit(1773326979.521:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.515547][   T28] audit: type=1326 audit(1773326979.531:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.568811][   T28] audit: type=1326 audit(1773326979.531:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.615099][   T28] audit: type=1326 audit(1773326979.531:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7246 comm="syz.1.358" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7f76bc39c799 code=0x7ffc0000
[  141.650481][ T7262] loop0: detected capacity change from 0 to 736
[  141.765928][ T5776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  142.094569][ T7270] team0: Port device dummy0 removed
[  142.127671][ T7270] bridge_slave_0: left allmulticast mode
[  142.133382][ T7270] bridge_slave_0: left promiscuous mode
[  142.196983][ T7270] bridge0: port 1(bridge_slave_0) entered disabled state
[  142.235325][ T7270] bridge_slave_1: left allmulticast mode
[  142.246685][    T8] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  142.248444][ T7270] bridge_slave_1: left promiscuous mode
[  142.282955][ T7270] bridge0: port 2(bridge_slave_1) entered disabled state
[  142.307602][ T7270] bond0: (slave bond_slave_0): Releasing backup interface
[  142.324279][ T7270] bond0: (slave bond_slave_1): Releasing backup interface
[  142.349747][ T7270] team0: Failed to send options change via netlink (err -105)
[  142.364228][ T7270] team0: Failed to send port change of device team_slave_0 via netlink (err -105)
[  142.374860][ T7270] team0: Port device team_slave_0 removed
[  142.388589][ T7270] team0: Failed to send options change via netlink (err -105)
[  142.406639][ T7270] team0: Failed to send port change of device team_slave_1 via netlink (err -105)
[  142.417572][ T7270] team0: Port device team_slave_1 removed
[  142.423717][ T7270] batman_adv: batadv0: Removing interface: batadv_slave_0
[  142.447988][ T7270] batman_adv: batadv0: Removing interface: batadv_slave_1
[  142.459224][    T8] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  142.473036][ T7274] team0: Failed to send options change via netlink (err -105)
[  142.494506][    T8] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  142.517597][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  142.540682][ T5887] usb 5-1: new full-speed USB device number 5 using dummy_hcd
[  142.560420][    T8] usb 3-1: config 0 descriptor??
[  142.561231][ T7274] team0: Mode changed to "activebackup"
[  142.593160][    T8] pwc: Askey VC010 type 2 USB webcam detected.
[  142.759728][ T5887] usb 5-1: config 0 has an invalid interface number: 41 but max is 0
[  142.794672][ T5887] usb 5-1: config 0 has no interface number 0
[  142.805542][ T5887] usb 5-1: config 0 interface 41 has no altsetting 0
[  142.814931][ T7291] netlink: 4 bytes leftover after parsing attributes in process `syz.1.370'.
[  142.843935][ T5887] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  142.864134][ T5887] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  142.875107][ T5887] usb 5-1: Product: syz
[  142.884020][ T5887] usb 5-1: Manufacturer: syz
[  142.889923][ T5887] usb 5-1: SerialNumber: syz
[  142.905875][ T5887] usb 5-1: config 0 descriptor??
[  142.980053][    T8] pwc: recv_control_msg error -32 req 02 val 2b00
[  142.998830][    T8] pwc: recv_control_msg error -32 req 02 val 2700
[  143.016393][    T8] pwc: recv_control_msg error -32 req 02 val 2c00
[  143.034450][    T8] pwc: recv_control_msg error -32 req 04 val 1000
[  143.044716][    T8] pwc: recv_control_msg error -32 req 04 val 1300
[  143.064892][    T8] pwc: recv_control_msg error -32 req 04 val 1400
[  143.096288][    T8] pwc: recv_control_msg error -32 req 02 val 2000
[  143.312038][    T8] pwc: recv_control_msg error -71 req 04 val 1500
[  143.342593][    T8] pwc: recv_control_msg error -71 req 02 val 2500
[  143.376635][    T8] pwc: recv_control_msg error -71 req 02 val 2400
[  143.402574][    T8] pwc: recv_control_msg error -71 req 02 val 2600
[  143.438186][    T8] pwc: recv_control_msg error -71 req 02 val 2900
[  143.452634][    T8] pwc: recv_control_msg error -71 req 02 val 2800
[  143.460899][    T8] pwc: recv_control_msg error -71 req 04 val 1100
[  143.476054][    T8] pwc: recv_control_msg error -71 req 04 val 1200
[  143.510468][    T8] pwc: Registered as video103.
[  143.553480][    T8] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input5
[  143.627320][    T8] usb 3-1: USB disconnect, device number 2
[  143.769303][ T5887] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[  144.829408][ T5804] libceph: connect (1)[c::]:6789 error -22
[  144.835420][ T5804] libceph: mon0 (1)[c::]:6789 connect error
[  144.924049][ T7315] netlink: 28 bytes leftover after parsing attributes in process `syz.2.375'.
[  144.941164][ T7315] lo: entered promiscuous mode
[  144.956193][ T7332] ceph: No mds server is up or the cluster is laggy
[  144.966773][ T7315] lo: entered allmulticast mode
[  145.140758][ T5887] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): Error reading RX_CTL register:ffffffb9
[  145.184096][ T5887] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0000:ffffffb9
[  145.214929][ T5887] CoreChips: probe of 5-1:0.41 failed with error -71
[  145.263712][ T5887] usb 5-1: USB disconnect, device number 5
[  145.542882][ T5775] Bluetooth: hci2: link tx timeout
[  145.548949][ T5775] Bluetooth: hci2: killing stalled connection 11:aa:aa:aa:aa:aa
[  145.617737][ T7365] bond0: entered allmulticast mode
[  145.658952][ T7365] bridge2: entered promiscuous mode
[  145.664209][ T7365] bridge2: entered allmulticast mode
[  145.673710][ T7365] bond0: (slave bridge2): Enslaving as an active interface with an up link
[  145.916782][ T7373] netlink: 'syz.0.386': attribute type 1 has an invalid length.
[  146.014557][ T5804] libceph: connect (1)[c::]:6789 error -101
[  146.056007][ T5804] libceph: mon0 (1)[c::]:6789 connect error
[  146.088189][ T7379] bond1: (slave veth3): Enslaving as an active interface with a down link
[  146.142534][ T7381] ceph: No mds server is up or the cluster is laggy
[  146.259198][ T7384] bond1: entered promiscuous mode
[  146.264387][ T7384] bond1: entered allmulticast mode
[  146.331661][ T7384] 8021q: adding VLAN 0 to HW filter on device bond1
[  146.341527][ T7391] IPv6: NLM_F_REPLACE set, but no existing node found!
[  147.406962][ T7426] netlink: 12 bytes leftover after parsing attributes in process `syz.4.402'.
[  147.566050][ T7435] loop2: detected capacity change from 0 to 1024
[  147.626797][ T5766] Bluetooth: hci2: command 0x0406 tx timeout
[  147.679092][ T7435] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  147.869276][ T7435] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5920: Out of memory
[  147.892615][ T7446] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  147.920886][ T7435] EXT4-fs error (device loop2): __ext4_unlink:3328: inode #2: comm syz.2.404: mark_inode_dirty error
[  147.980225][ T7446] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[  148.014641][ T5763] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.577534][ T7465] loop0: detected capacity change from 0 to 32768
[  148.609377][ T7465] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.410 (7465)
[  148.628816][ T7465] BTRFS info (device loop0): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  148.639198][ T7465] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  148.648020][ T7465] BTRFS info (device loop0): setting nodatacow, compression disabled
[  148.656129][ T7465] BTRFS info (device loop0): force clearing of disk cache
[  148.663418][ T7465] BTRFS info (device loop0): turning off barriers
[  148.669965][ T7465] BTRFS info (device loop0): use no compression
[  148.676231][ T7465] BTRFS info (device loop0): disabling free space tree
[  148.683188][ T7465] BTRFS info (device loop0): enabling ssd optimizations
[  148.690221][ T7465] BTRFS info (device loop0): using spread ssd allocation scheme
[  148.698110][ T7465] BTRFS info (device loop0): not using ssd optimizations
[  148.705125][ T7465] BTRFS info (device loop0): not using spread ssd allocation scheme
[  148.863208][ T7465] BTRFS info (device loop0): rebuilding free space tree
[  148.890356][ T7465] BTRFS info (device loop0): disabling free space tree
[  148.898027][ T7465] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  148.908183][ T7465] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  148.942858][ T7465] BTRFS info (device loop0): checking UUID tree
[  149.229056][ T5775] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  149.237737][ T5775] Bluetooth: hci1: Injecting HCI hardware error event
[  149.246635][ T5775] Bluetooth: hci1: hardware error 0x00
[  149.500553][ T7489] loop4: detected capacity change from 0 to 1024
[  150.069887][ T5765] BTRFS info (device loop0): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  150.448596][ T7515] sch_tbf: burst 32855 is lower than device lo mtu (65550) !
[  151.172070][ T7528] netlink: 8 bytes leftover after parsing attributes in process `syz.4.429'.
[  151.226840][ T5887] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  151.425655][ T5887] usb 2-1: too many endpoints for config 0 interface 0 altsetting 254: 253, using maximum allowed: 30
[  151.437246][ T5887] usb 2-1: config 0 interface 0 altsetting 254 endpoint 0x81 has an invalid bInterval 0, changing to 10
[  151.448617][ T5887] usb 2-1: config 0 interface 0 altsetting 254 endpoint 0x81 has invalid wMaxPacketSize 0
[  151.458732][ T5887] usb 2-1: config 0 interface 0 altsetting 254 has 1 endpoint descriptor, different from the interface descriptor's value: 253
[  151.468488][ T7540] syz.2.432 uses obsolete (PF_INET,SOCK_PACKET)
[  151.487228][ T5775] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[  151.490003][ T5887] usb 2-1: config 0 interface 0 has no altsetting 0
[  151.524364][ T5887] usb 2-1: New USB device found, idVendor=044e, idProduct=120c, bcdDevice= 0.00
[  151.549198][ T5887] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  151.570052][ T5887] usb 2-1: config 0 descriptor??
[  151.637550][ T7544] IPv6: NLM_F_CREATE should be specified when creating new route
[  151.773587][ T7549] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  151.834456][ T7551] netlink: 'syz.0.439': attribute type 1 has an invalid length.
[  151.870175][ T7551] bond2: entered promiscuous mode
[  151.875421][ T7551] bond2: entered allmulticast mode
[  151.881862][ T7551] 8021q: adding VLAN 0 to HW filter on device bond2
[  151.899243][ T7551] bridge3: entered promiscuous mode
[  151.904625][ T7551] bridge3: entered allmulticast mode
[  151.910894][ T7551] bond2: (slave bridge3): Enslaving as a backup interface with an up link
[  151.978356][   T12] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  152.029619][ T5887] hid-alps 0003:044E:120C.0001: unbalanced delimiter at end of report description
[  152.039788][ T5887] hid-alps 0003:044E:120C.0001: parse failed
[  152.045935][ T5887] hid-alps: probe of 0003:044E:120C.0001 failed with error -22
[  152.107262][   T12] bond2: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  152.232194][    T8] usb 2-1: USB disconnect, device number 4
[  152.593790][ T7566] netlink: 12 bytes leftover after parsing attributes in process `syz.2.444'.
[  152.619383][ T7566] 8021q: adding VLAN 0 to HW filter on device bond1
[  152.659467][ T7566] macvlan2: entered promiscuous mode
[  152.665894][ T7566] veth0_to_bond: entered promiscuous mode
[  152.677007][ T7566] bond1: (slave macvlan2): Enslaving as an active interface with an up link
[  152.757166][ T5887] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  153.094374][ T7580] netlink: 'syz.1.449': attribute type 1 has an invalid length.
[  153.136630][ T5887] usb 5-1: Using ep0 maxpacket: 32
[  153.289457][ T5887] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  153.397096][ T5887] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  153.527442][ T5887] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  153.762564][ T5887] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  153.772638][ T5887] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  153.782697][ T5887] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  153.796596][ T5887] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  153.806120][ T5887] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  153.839955][ T7584] bond2: (slave veth3): Enslaving as an active interface with a down link
[  153.888932][ T5887] usb 5-1: config 0 descriptor??
[  153.895190][ T7587] bond2: entered promiscuous mode
[  153.934736][ T7587] bond2: entered allmulticast mode
[  153.947056][ T7587] 8021q: adding VLAN 0 to HW filter on device bond2
[  154.117261][ T5887] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 6 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  154.171486][ T5887] usb 5-1: USB disconnect, device number 6
[  154.185444][ T5887] usblp0: removed
[  154.709363][ T5887] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  154.936558][ T5887] usb 5-1: Using ep0 maxpacket: 32
[  154.956117][ T5887] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  154.972708][ T5887] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  154.981947][ T5887] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  154.994445][   T28] kauditd_printk_skb: 24 callbacks suppressed
[  154.994458][   T28] audit: type=1326 audit(1773326993.451:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.1.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f76bc39c799 code=0x7fc00000
[  155.023510][ T5887] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  155.056293][ T5887] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  155.093245][ T5887] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  155.148028][ T5887] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  155.186561][ T5887] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  155.206888][ T5887] usb 5-1: config 0 descriptor??
[  155.366151][ T7619] netlink: 'syz.2.462': attribute type 1 has an invalid length.
[  155.422834][ T5887] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  155.440082][ T7626] bond2: (slave veth3): Enslaving as an active interface with a down link
[  155.534578][ T7619] bond2: entered promiscuous mode
[  155.539990][ T7619] bond2: entered allmulticast mode
[  155.547723][ T7619] 8021q: adding VLAN 0 to HW filter on device bond2
[  155.670991][ T5887] usb 5-1: USB disconnect, device number 7
[  155.693028][ T5887] usblp0: removed
[  155.907980][ T5886] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  156.130162][ T5886] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  156.139693][ T5886] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.156304][ T5886] usb 1-1: config 0 descriptor??
[  156.163627][ T5886] cp210x 1-1:0.0: cp210x converter detected
[  156.571804][ T5886] cp210x 1-1:0.0: failed to get vendor val 0x000e size 3: -32
[  156.626153][ T5886] usb 1-1: cp210x converter now attached to ttyUSB0
[  156.812447][ T5803] usb 1-1: USB disconnect, device number 2
[  156.826974][ T5803] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  156.847686][ T5803] cp210x 1-1:0.0: device disconnected
[  156.986799][ T5886] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  156.998343][ T7652] netlink: 'syz.4.474': attribute type 1 has an invalid length.
[  157.094369][ T7652] bond2: (slave veth3): Enslaving as an active interface with a down link
[  157.145417][ T7652] bond2: entered promiscuous mode
[  157.156018][ T7652] bond2: entered allmulticast mode
[  157.164014][ T7652] 8021q: adding VLAN 0 to HW filter on device bond2
[  157.186523][ T5886] usb 3-1: Using ep0 maxpacket: 32
[  157.203744][ T5886] usb 3-1: config 0 has an invalid interface number: 188 but max is 0
[  157.212152][ T5886] usb 3-1: config 0 has no interface number 0
[  157.218335][ T5886] usb 3-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32
[  157.238129][ T5886] usb 3-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36
[  157.256568][ T5886] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.273612][ T5886] usb 3-1: Product: syz
[  157.277996][ T5886] usb 3-1: Manufacturer: syz
[  157.282604][ T5886] usb 3-1: SerialNumber: syz
[  157.304277][ T5886] usb 3-1: config 0 descriptor??
[  157.313798][ T7650] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  157.315281][ T7658] netlink: 24 bytes leftover after parsing attributes in process `syz.4.475'.
[  157.459104][ T7658] netlink: 4 bytes leftover after parsing attributes in process `syz.4.475'.
[  157.543721][ T7650] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  158.599213][ T7676] 9pnet: Found fid 0 not clunked
[  159.044890][ T7693] xt_socket: unknown flags 0x4c
[  159.133132][    T8] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  159.318374][    T8] usb 2-1: config 0 has no interfaces?
[  159.326076][    T8] usb 2-1: New USB device found, idVendor=18b4, idProduct=fffb, bcdDevice=dc.7b
[  159.335406][    T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  159.343568][    T8] usb 2-1: Product: syz
[  159.348247][    T8] usb 2-1: Manufacturer: syz
[  159.352859][    T8] usb 2-1: SerialNumber: syz
[  159.359903][    T8] usb 2-1: config 0 descriptor??
[  159.422090][ T5886] asix 3-1:0.188 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  159.459290][ T5886] asix 3-1:0.188 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  159.478002][ T5886] asix: probe of 3-1:0.188 failed with error -71
[  159.490110][ T5886] usb 3-1: USB disconnect, device number 3
[  159.741670][ T7684] veth0_vlan: left promiscuous mode
[  159.747755][ T7684] veth0_vlan: entered promiscuous mode
[  159.964322][    T8] usb 2-1: USB disconnect, device number 5
[  161.707098][ T7716] loop4: detected capacity change from 0 to 1024
[  161.714237][ T7716] EXT4-fs: Ignoring removed orlov option
[  161.719998][ T7716] EXT4-fs: inline encryption not supported
[  161.725982][ T7716] ext3: Unknown parameter 'hash'
[  161.978785][ T5776] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  162.303921][ T7731] loop2: detected capacity change from 0 to 512
[  162.343570][ T7731] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  162.498472][ T7731] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.559151][ T7731] ext4 filesystem being mounted at /153/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  162.623802][ T5776] udevd[5776]: incorrect ext4 checksum on /dev/loop2
[  162.628004][ T7731] EXT4-fs error (device loop2): ext4_dx_csum_verify:502: inode #2: comm syz.2.503: dir seems corrupt?  Run e2fsck -D.
[  162.656577][ T7736] EXT4-fs error (device loop2): ext4_validate_block_bitmap:421: comm ext4lazyinit: bg 0: bad block bitmap checksum
[  162.718880][ T7731] EXT4-fs (loop2): Remounting filesystem read-only
[  162.718897][ T7736] EXT4-fs (loop2): Remounting filesystem read-only
[  162.872984][ T5776] udevd[5776]: incorrect ext4 checksum on /dev/loop2
[  162.902806][ T5763] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.220813][ T7787] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  165.324444][ T7798] 9pnet: p9_errstr2errno: server reported unknown error �0x0000000000000009
[  166.338710][ T7810] loop4: detected capacity change from 0 to 2048
[  166.457189][ T7810]  loop4: p1 p3 p4
[  166.489398][ T7810] loop4: p4 size 589824 extends beyond EOD, truncated
[  167.251127][ T5776] udevd[5776]: inotify_add_watch(7, /dev/loop4p3, 10) failed: No such file or directory
[  167.764483][ T7791] syz.0.519 (7791): drop_caches: 2
[  169.832684][ T7855] binder: 7854:7855 ioctl c0306201 2000000003c0 returned -14
[  169.835066][ T7848] mmap: syz.0.542 (7848) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  170.380305][ T7870] netlink: 52 bytes leftover after parsing attributes in process `syz.2.549'.
[  170.422424][ T7870] netlink: 76 bytes leftover after parsing attributes in process `syz.2.549'.
[  170.442785][ T7870] netlink: 52 bytes leftover after parsing attributes in process `syz.2.549'.
[  172.830075][ T7878] syz.4.550 (7878): drop_caches: 2
[  173.051306][ T7899] loop4: detected capacity change from 0 to 256
[  173.072229][ T7899] exfat: Deprecated parameter 'utf8'
[  173.096263][ T7899] exfat: Deprecated parameter 'utf8'
[  173.107408][ T7899] exfat: Deprecated parameter 'utf8'
[  173.168486][ T7899] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  174.103043][ T7933] kvm: kvm [7932]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc2) = 0x9d00
[  174.112446][ T7933] kvm: kvm [7932]: vcpu0, guest rIP: 0x9114 Unhandled WRMSR(0xc1) = 0x9d00
[  178.177298][ T8021] io-wq is not configured for unbound workers
[  179.436636][ T5804] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  179.646705][ T5804] usb 3-1: Using ep0 maxpacket: 16
[  179.659788][ T5804] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  179.672718][ T5804] usb 3-1: config 0 has no interfaces?
[  179.685331][ T8044] netlink: 12 bytes leftover after parsing attributes in process `syz.1.591'.
[  179.687742][ T5804] usb 3-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  179.706613][ T5804] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  179.714845][ T5804] usb 3-1: Product: syz
[  179.729984][ T5804] usb 3-1: Manufacturer: syz
[  179.756648][ T5804] usb 3-1: SerialNumber: syz
[  179.771051][ T5804] usb 3-1: config 0 descriptor??
[  180.074794][  T788] usb 3-1: USB disconnect, device number 4
[  180.399227][ T8060] netlink: 'syz.1.597': attribute type 4 has an invalid length.
[  180.459774][ T8060] netlink: 'syz.1.597': attribute type 4 has an invalid length.
[  180.636411][ T8068] netlink: 24 bytes leftover after parsing attributes in process `syz.0.601'.
[  180.768636][ T8074] tmpfs: Bad value for 'mpol'
[  180.787945][ T8074] mmap: syz.4.603 (8074): VmData 175874048 exceed data ulimit 1129. Update limits or use boot option ignore_rlimit_data.
[  181.866731][ T8082] loop4: detected capacity change from 0 to 512
[  181.921496][ T8082] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  181.992516][ T8082] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2853: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  182.017423][ T8082] EXT4-fs (loop4): 1 truncate cleaned up
[  182.024421][ T8082] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.389068][ T6334] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.481970][ T8099] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  182.647179][    T8] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  182.856993][    T8] usb 1-1: Using ep0 maxpacket: 16
[  182.869376][    T8] usb 1-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  182.888016][ T8105] kvm: pic: non byte write
[  182.892635][    T8] usb 1-1: config 1 has no interface number 1
[  182.899810][    T8] usb 1-1: config 1 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping
[  182.911323][    T8] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  182.924533][    T8] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  182.939033][    T8] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  182.948361][    T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  182.953301][ T8070] tipc: Resetting bearer <eth:veth0_macvtap>
[  182.956945][    T8] usb 1-1: Product: syz
[  182.967027][    T8] usb 1-1: Manufacturer: syz
[  182.971708][    T8] usb 1-1: SerialNumber: syz
[  183.074514][ T8070] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.083559][ T8070] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.092593][ T8070] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.101813][ T8070] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  183.427210][    T8] usb 1-1: 2:1 : format type 0 is detected, processed as PCM
[  183.469022][ T8113] batadv_slave_0: entered promiscuous mode
[  183.489481][ T8112] batadv_slave_0: left promiscuous mode
[  183.663208][ T8116] 8021q: adding VLAN 0 to HW filter on device bond3
[  183.690170][ T8120] bond3: (slave ip6gretap1): Enslaving as a backup interface with an up link
[  183.778123][ T7986] bond3: Warning: No 802.3ad response from the link partner for any adapters in the bond
[  183.846098][ T8097] netlink: 340 bytes leftover after parsing attributes in process `syz.0.610'.
[  184.003188][ T8125] loop2: detected capacity change from 0 to 512
[  184.036956][ T8125] ext3: Unknown parameter 'context'
[  184.068494][    T8] usb 1-1: 2:1: cannot set freq 9338507 to ep 0x82
[  184.157763][    T8] usb 1-1: USB disconnect, device number 3
[  184.327295][ T1205] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  184.529456][ T1205] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  184.546524][ T1205] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 1024
[  184.566509][ T1205] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has an invalid bInterval 233, changing to 11
[  184.601647][ T1205] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid maxpacket 33751, setting to 1024
[  184.626432][ T1205] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  184.635605][ T1205] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  184.656535][ T1205] usb 3-1: Product: syz
[  184.660740][ T1205] usb 3-1: Manufacturer: syz
[  184.679979][ T1205] usb 3-1: SerialNumber: syz
[  184.700926][ T1205] cdc_mbim 3-1:1.0: skipping garbage
[  184.937104][ T8125] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  185.053959][ T8141] netlink: 24 bytes leftover after parsing attributes in process `syz.0.634'.
[  185.259472][ T8146] loop0: detected capacity change from 0 to 512
[  185.310386][ T8146] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  185.350232][ T8146] EXT4-fs error (device loop0): ext4_orphan_get:1398: inode #15: comm syz.0.629: iget: bad i_size value: 38620345925642
[  185.375096][ T8146] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.629: couldn't read orphan inode 15 (err -117)
[  185.393937][ T8146] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  185.589029][ T8125] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[  185.651475][ T8146] EXT4-fs error (device loop0): ext4_validate_block_bitmap:430: comm syz.0.629: bg 0: block 5: invalid block bitmap
[  185.688123][ T8146] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 104 with error 28
[  185.742741][ T8146] EXT4-fs (loop0): This should not happen!! Data will be lost
[  185.742741][ T8146] 
[  185.783032][ T8146] EXT4-fs (loop0): Total free blocks count 0
[  185.801846][ T8146] EXT4-fs (loop0): Free/Dirty block details
[  185.812005][ T1205] cdc_mbim 3-1:1.0: bind() failure
[  185.837996][ T1205] cdc_ncm: probe of 3-1:1.1 failed with error -71
[  185.851379][ T8146] EXT4-fs (loop0): free_blocks=0
[  185.856365][ T8146] EXT4-fs (loop0): dirty_blocks=108
[  185.865754][ T1205] cdc_mbim: probe of 3-1:1.1 failed with error -71
[  185.876967][ T8146] EXT4-fs (loop0): Block reservation details
[  185.890102][ T8146] EXT4-fs (loop0): i_reserved_data_blocks=108
[  185.897756][ T1205] usbtest: probe of 3-1:1.1 failed with error -71
[  185.936682][ T1205] usb 3-1: USB disconnect, device number 5
[  186.191382][ T8147] syz.1.626 (8147): drop_caches: 2
[  186.204628][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  186.936644][ T5886] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  187.136891][ T5886] usb 5-1: Using ep0 maxpacket: 16
[  187.161878][ T5886] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  187.213685][ T5886] usb 5-1: config 0 has no interfaces?
[  187.234258][ T5886] usb 5-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[  187.254746][ T5886] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  187.272663][ T5886] usb 5-1: Product: syz
[  187.284357][ T5886] usb 5-1: Manufacturer: syz
[  187.292269][ T5886] usb 5-1: SerialNumber: syz
[  187.308016][ T5886] usb 5-1: config 0 descriptor??
[  188.052028][    T8] usb 5-1: USB disconnect, device number 8
[  188.425718][ T8212] loop0: detected capacity change from 0 to 256
[  188.436268][ T8212] exfat: Deprecated parameter 'utf8'
[  188.448014][ T8212] exfat: Deprecated parameter 'utf8'
[  188.453600][ T8212] exfat: Deprecated parameter 'utf8'
[  188.476724][ T8212] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  188.974377][ T8217] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  190.502911][ T8257] sctp: [Deprecated]: syz.0.666 (pid 8257) Use of struct sctp_assoc_value in delayed_ack socket option.
[  190.502911][ T8257] Use struct sctp_sack_info instead
[  191.350028][    C0] dccp_check_seqno: Step 6 failed for CLOSE packet, (LSWL(128780347907386) <= P.seqno(128780347907385) <= S.SWH(128780347907460)) and (P.ackno exists or LAWL(279864429261886) <= P.ackno(279864429261886) <= S.AWH(279864429261886), sending SYNC...
[  191.472186][ T5775] Bluetooth: hci3: command 0x0406 tx timeout
[  191.473247][   T51] Bluetooth: hci0: command 0x0406 tx timeout
[  192.977140][ T8310] binder: 8309:8310 ioctl c0306201 2000000003c0 returned -14
[  192.989761][ T8310] binder_alloc: 8309: pid 8309 spamming oneway? 1 buffers allocated for a total size of 5264
[  193.507772][ T8318] netlink: 'syz.4.691': attribute type 1 has an invalid length.
[  193.568531][ T8318] bond4: entered promiscuous mode
[  193.574202][ T8318] 8021q: adding VLAN 0 to HW filter on device bond4
[  193.819721][ T8318] bond4: (slave veth5): making interface the new active one
[  193.829725][ T8318] veth5: entered promiscuous mode
[  193.835726][ T8318] bond4: (slave veth5): Enslaving as an active interface with an up link
[  194.159008][ T8335] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  194.365310][ T8339] syz.0.697: attempt to access beyond end of device
[  194.365310][ T8339] loop0: rw=0, sector=0, nr_sectors = 8 limit=0
[  194.383827][ T8339] F2FS-fs (loop0): Unable to read 1th superblock
[  194.414644][ T8339] syz.0.697: attempt to access beyond end of device
[  194.414644][ T8339] loop0: rw=0, sector=8, nr_sectors = 8 limit=0
[  194.434937][ T8339] F2FS-fs (loop0): Unable to read 2th superblock
[  194.515688][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  194.522264][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  194.890753][   T28] audit: type=1326 audit(1773327033.351:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  194.976540][   T28] audit: type=1326 audit(1773327033.371:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.022240][   T28] audit: type=1326 audit(1773327033.381:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=148 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.055425][   T28] audit: type=1326 audit(1773327033.381:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.094720][   T28] audit: type=1326 audit(1773327033.381:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.187178][   T28] audit: type=1326 audit(1773327033.381:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.229531][   T28] audit: type=1326 audit(1773327033.381:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.297695][   T28] audit: type=1326 audit(1773327033.391:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=65 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.326023][   T28] audit: type=1326 audit(1773327033.391:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.354048][   T28] audit: type=1326 audit(1773327033.391:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8341 comm="syz.4.698" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  195.927441][ T8370] kvm: pic: non byte write
[  196.234613][ T8379] ref_ctr increment failed for inode: 0x3e1 offset: 0x5 ref_ctr_offset: 0x1000 of mm: 0xffff888031858980
[  196.379594][ T8382] loop4: detected capacity change from 0 to 512
[  196.389662][ T8382] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  196.440321][ T8382] EXT4-fs error (device loop4): ext4_orphan_get:1398: inode #15: comm syz.4.711: inode has both inline data and extents flags
[  196.454001][ T8382] EXT4-fs error (device loop4): ext4_orphan_get:1403: comm syz.4.711: couldn't read orphan inode 15 (err -117)
[  196.467016][ T8382] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.538722][ T6334] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.607253][ T8390] netlink: 4 bytes leftover after parsing attributes in process `syz.0.721'.
[  196.616113][ T8390] bridge_slave_1: left allmulticast mode
[  196.652218][ T8390] bridge_slave_1: left promiscuous mode
[  196.680226][ T8390] bridge0: port 2(bridge_slave_1) entered disabled state
[  196.696507][ T8393] netlink: 156 bytes leftover after parsing attributes in process `syz.1.714'.
[  196.723730][ T8390] bridge_slave_0: left allmulticast mode
[  196.731482][ T8390] bridge_slave_0: left promiscuous mode
[  196.737880][ T8390] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.751388][ T8398] netlink: 156 bytes leftover after parsing attributes in process `syz.1.714'.
[  196.814287][ T8402] netlink: 12 bytes leftover after parsing attributes in process `syz.1.714'.
[  196.919286][ T8401] kvm: requested 74590 ns i8254 timer period limited to 200000 ns
[  196.937424][ T8401] kvm: requested 150019 ns i8254 timer period limited to 200000 ns
[  196.961976][ T8401] kvm: requested 79619 ns i8254 timer period limited to 200000 ns
[  196.974718][ T8401] kvm: requested 46095 ns i8254 timer period limited to 200000 ns
[  196.983844][ T8401] kvm: requested 124876 ns i8254 timer period limited to 200000 ns
[  197.017034][ T8401] kvm: requested 57828 ns i8254 timer period limited to 200000 ns
[  197.037087][ T8401] kvm: requested 181866 ns i8254 timer period limited to 200000 ns
[  197.089823][ T8401] kvm: requested 79619 ns i8254 timer period limited to 200000 ns
[  197.116983][ T8401] kvm: requested 198628 ns i8254 timer period limited to 200000 ns
[  197.138527][ T8401] kvm: requested 9219 ns i8254 timer period limited to 200000 ns
[  198.908161][ T8441] loop1: detected capacity change from 0 to 2048
[  199.010985][ T8441] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  199.528923][ T8454] loop2: detected capacity change from 0 to 256
[  200.046362][ T8459] bridge0: port 2(bridge_slave_1) entered disabled state
[  200.054087][ T8459] bridge0: port 1(bridge_slave_0) entered disabled state
[  200.576676][ T5803] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  200.630585][ T8459] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  200.668622][ T8459] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  200.768469][ T5803] usb 2-1: config 0 has no interfaces?
[  200.776011][ T5803] usb 2-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  200.790727][ T5803] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  200.815262][ T5803] usb 2-1: config 0 descriptor??
[  200.899240][ T8459] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.908926][ T8459] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.918557][ T8459] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  200.928194][ T8459] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  201.044837][  T788] usb 2-1: USB disconnect, device number 6
[  201.532999][ T8496] loop4: detected capacity change from 0 to 1024
[  202.487849][   T28] kauditd_printk_skb: 40 callbacks suppressed
[  202.487864][   T28] audit: type=1804 audit(1773327040.951:209): pid=8519 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.761" name="file1" dev="ramfs" ino=18078 res=1 errno=0
[  202.716660][    T8] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  202.874531][ T8531] netlink: 28 bytes leftover after parsing attributes in process `syz.1.766'.
[  202.894199][ T8531] netlink: 28 bytes leftover after parsing attributes in process `syz.1.766'.
[  202.919550][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  202.931757][ T8531] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  202.939224][    T8] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  202.948811][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  202.958176][ T8531] gretap0: entered promiscuous mode
[  202.966423][    T8] usb 5-1: config 0 descriptor??
[  202.973189][ T8531] hsr1: Slave A (netdevsim0) is not up; please bring it up to get a fully working HSR network
[  202.991123][ T8531] hsr1: Slave B (gretap0) is not up; please bring it up to get a fully working HSR network
[  203.214737][    T8] usbhid 5-1:0.0: can't add hid device: -71
[  203.224253][    T8] usbhid: probe of 5-1:0.0 failed with error -71
[  203.245178][    T8] usb 5-1: USB disconnect, device number 9
[  203.413002][ T8546] vivid-002: =================  START STATUS  =================
[  203.425220][ T8546] vivid-002: Radio HW Seek Mode: Bounded
[  203.434640][ T8546] vivid-002: Radio Programmable HW Seek: false
[  203.450402][ T8546] vivid-002: RDS Rx I/O Mode: Block I/O
[  203.456215][ T8546] vivid-002: Generate RBDS Instead of RDS: false
[  203.477860][ T8546] vivid-002: RDS Reception: true
[  203.482863][ T8546] vivid-002: RDS Program Type: 0 inactive
[  203.502727][ T8546] vivid-002: RDS PS Name:  inactive
[  203.515799][ T8546] vivid-002: RDS Radio Text:  inactive
[  203.534492][ T8546] vivid-002: RDS Traffic Announcement: false inactive
[  203.552155][ T8546] vivid-002: RDS Traffic Program: false inactive
[  203.559663][ T8546] vivid-002: RDS Music: false inactive
[  203.565329][ T8546] vivid-002: ==================  END STATUS  ==================
[  203.810747][    T8] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  204.009376][    T8] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  204.041049][    T8] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  204.066627][    T8] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  204.085575][    T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.117710][    T8] usb 5-1: config 0 descriptor??
[  204.160702][ T8572] loop0: detected capacity change from 0 to 256
[  204.200934][ T8572] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xa05bf55d, utbl_chksum : 0xe619d30d)
[  204.569941][    T8] plantronics 0003:047F:FFFF.0002: No inputs registered, leaving
[  204.664658][    T8] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0
[  205.000091][    C1] plantronics 0003:047F:FFFF.0002: hid_field_extract() called with n (132) > 32! (kworker/u4:11)
[  205.226410][ T5886] usb 5-1: USB disconnect, device number 10
[  207.053967][ T8630] trusted_key: syz.1.799 sent an empty control message without MSG_MORE.
[  207.303555][ T8635] bond5: entered allmulticast mode
[  207.379415][ T8635] ip6gretap1: entered promiscuous mode
[  207.390284][ T8635] bond5: (slave ip6gretap1): no link monitoring support
[  207.402324][ T8635] bond5: (slave ip6gretap1): MII and ETHTOOL support not available for slave, and arp_interval/arp_ip_target module parameters not specified, thus bonding will not detect link failures! see bonding.txt for details
[  207.432695][ T8635] ip6gretap1: entered allmulticast mode
[  207.441546][ T8635] bond5: (slave ip6gretap1): Enslaving as an active interface with an up link
[  207.712977][ T8641] xt_hashlimit: max too large, truncated to 1048576
[  207.881496][ T8640] netlink: 12 bytes leftover after parsing attributes in process `syz.4.803'.
[  208.908701][ T8664] netlink: 12 bytes leftover after parsing attributes in process `syz.2.810'.
[  209.599957][ T8674] syz.2.814[8674] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.600180][ T8674] syz.2.814[8674] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  209.851880][ T8679] netlink: 12 bytes leftover after parsing attributes in process `syz.2.816'.
[  210.545624][ T8699] sctp: [Deprecated]: syz.1.825 (pid 8699) Use of struct sctp_assoc_value in delayed_ack socket option.
[  210.545624][ T8699] Use struct sctp_sack_info instead
[  210.895772][ T8710] xt_hashlimit: max too large, truncated to 1048576
[  211.151999][ T8722] pimreg: entered allmulticast mode
[  211.173048][ T8722] pimreg: left allmulticast mode
[  211.348962][ T8731] sctp: [Deprecated]: syz.0.835 (pid 8731) Use of struct sctp_assoc_value in delayed_ack socket option.
[  211.348962][ T8731] Use struct sctp_sack_info instead
[  211.544612][ T8739] loop2: detected capacity change from 0 to 256
[  211.719995][ T8745] netlink: 'syz.2.840': attribute type 1 has an invalid length.
[  211.815136][ T8749] 8021q: adding VLAN 0 to HW filter on device bond5
[  211.823890][ T8749] bond4: (slave bond5): making interface the new active one
[  211.834562][ T8749] bond4: (slave bond5): Enslaving as an active interface with an up link
[  211.985964][ T8745] bond4: (slave gretap1): Enslaving as a backup interface with an up link
[  212.017986][ T8745] netlink: 28 bytes leftover after parsing attributes in process `syz.2.840'.
[  212.032819][ T8745] 8021q: adding VLAN 0 to HW filter on device bond4
[  212.585183][ T8769] netlink: 4 bytes leftover after parsing attributes in process `syz.0.848'.
[  212.653876][ T8769] batman_adv: batadv0: Removing interface: batadv_slave_1
[  214.711903][ T8806] syz.0.862 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  214.778965][ T8809] loop4: detected capacity change from 0 to 256
[  214.804292][ T8809] FAT-fs (loop4): Unrecognized mount option "showexe74" or missing value
[  214.859304][ T8809] netlink: 52 bytes leftover after parsing attributes in process `syz.4.863'.
[  214.928045][ T8812] netlink: 12 bytes leftover after parsing attributes in process `syz.4.863'.
[  215.649381][   T28] audit: type=1326 audit(1773327054.111:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8824 comm="syz.4.870" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x0
[  215.742526][ T8806] loop0: detected capacity change from 0 to 40427
[  215.750441][ T8806] F2FS-fs (loop0): Wrong SIT boundary, start(1536) end(50334208) blocks(1024)
[  215.764728][ T8806] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  215.782647][ T8806] F2FS-fs (loop0): Unrecognized mount option "K" or missing value
[  216.059072][ T8831] pimreg: entered allmulticast mode
[  216.117816][ T8831] pimreg: left allmulticast mode
[  216.589820][   T28] audit: type=1800 audit(1773327055.051:211): pid=8843 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.878" name="bus" dev="overlay" ino=855 res=0 errno=0
[  217.176775][ T5805] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[  217.420285][ T5805] usb 5-1: config 0 has an invalid interface number: 67 but max is 0
[  217.445498][ T5805] usb 5-1: config 0 has no interface number 0
[  217.462609][ T2961] netdevsim netdevsim1 netdevsim0 (unregistering): left promiscuous mode
[  217.471680][ T5805] usb 5-1: config 0 interface 67 altsetting 0 endpoint 0x2 has invalid maxpacket 512, setting to 64
[  217.489943][ T5770] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  217.504063][ T5805] usb 5-1: config 0 interface 67 altsetting 0 endpoint 0x82 has invalid maxpacket 512, setting to 64
[  217.515242][ T5770] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  217.524583][ T5770] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  217.534100][ T5770] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  217.542846][ T5805] usb 5-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[  217.552185][ T5805] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  217.560511][ T5805] usb 5-1: Product: syz
[  217.564774][ T5770] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  217.574011][ T5770] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  217.581181][ T5805] usb 5-1: Manufacturer: syz
[  217.585925][ T5805] usb 5-1: SerialNumber: syz
[  217.615469][ T5805] usb 5-1: config 0 descriptor??
[  217.624172][ T8850] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  217.637054][ T8850] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  217.646652][ T5805] smsc95xx v2.0.0
[  217.848509][ T8853] loop0: detected capacity change from 0 to 32768
[  217.922103][ T8850] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  217.952414][ T8850] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  217.992190][ T8853] JBD2: Ignoring recovery information on journal
[  218.193834][ T8853] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  218.205995][ T5805] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[  218.221093][ T5805] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[  218.572098][ T8854] chnl_net:caif_netlink_parms(): no params data found
[  218.945683][ T8853] syz.0.882 (8853) used greatest stack depth: 18768 bytes left
[  219.038795][ T2961] gretap0 (unregistering): left promiscuous mode
[  219.093057][ T8854] bridge0: port 1(bridge_slave_0) entered blocking state
[  219.101978][ T8854] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.109808][ T8854] bridge_slave_0: entered allmulticast mode
[  219.127871][ T8854] bridge_slave_0: entered promiscuous mode
[  219.138435][ T8854] bridge0: port 2(bridge_slave_1) entered blocking state
[  219.146316][ T5765] ocfs2: Unmounting device (7,0) on (node local)
[  219.146767][ T8854] bridge0: port 2(bridge_slave_1) entered disabled state
[  219.195308][ T8854] bridge_slave_1: entered allmulticast mode
[  219.205977][ T8854] bridge_slave_1: entered promiscuous mode
[  219.353185][ T8854] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  219.469700][ T8854] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  219.591245][ T8854] team0: Port device team_slave_0 added
[  219.600632][ T8895] veth0_to_team: left promiscuous mode
[  219.606175][ T8895] veth0_to_team: left allmulticast mode
[  219.614126][ T8895] ip6gre1: left promiscuous mode
[  219.627340][ T5770] Bluetooth: hci1: command tx timeout
[  219.634886][ T8895] ip6gre1: left allmulticast mode
[  219.640724][ T8895] bond1: left promiscuous mode
[  219.645718][ T8895] bond1: left allmulticast mode
[  219.651633][ T8895] bond2: left promiscuous mode
[  219.658982][ T8895] bridge3: left promiscuous mode
[  219.667067][ T5805] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000038: -71
[  219.667861][ T8895] bond2: left allmulticast mode
[  219.678181][ T5805] smsc95xx: probe of 5-1:0.67 failed with error -71
[  219.694154][ T5805] usb 5-1: USB disconnect, device number 11
[  219.700465][ T8895] bridge3: left allmulticast mode
[  219.708303][ T8854] team0: Port device team_slave_1 added
[  219.806896][ T2961] hsr_slave_0: left promiscuous mode
[  219.813026][ T2961] hsr_slave_1: left promiscuous mode
[  219.970807][ T2961] bond2 (unregistering): (slave veth3): Releasing active interface
[  220.114396][ T2961] bond2 (unregistering): Released all slaves
[  220.127101][ T2961] bond1 (unregistering): Released all slaves
[  220.630945][   T28] audit: type=1326 audit(1773327059.081:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.653715][   T28] audit: type=1326 audit(1773327059.081:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.705698][   T28] audit: type=1326 audit(1773327059.081:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.743712][   T28] audit: type=1326 audit(1773327059.081:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.782463][   T28] audit: type=1326 audit(1773327059.081:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.821944][   T28] audit: type=1326 audit(1773327059.081:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.852628][   T28] audit: type=1326 audit(1773327059.081:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.880866][   T28] audit: type=1326 audit(1773327059.081:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.911747][   T28] audit: type=1326 audit(1773327059.081:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.951486][   T28] audit: type=1326 audit(1773327059.081:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  220.980964][   T28] audit: type=1326 audit(1773327059.081:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  221.013214][   T28] audit: type=1326 audit(1773327059.081:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8913 comm="syz.4.890" exe="/root/syz-executor" sig=0 arch=c000003e syscall=289 compat=0 ip=0x7f794079c799 code=0x7ffc0000
[  221.571484][ T8933] IPVS: Scheduler module ip_vs_ not found
[  221.706631][ T5770] Bluetooth: hci1: command tx timeout
[  221.971056][ T2961] bond0 (unregistering): Released all slaves
[  222.044838][ T8854] batman_adv: batadv0: Adding interface: batadv_slave_0
[  222.052315][ T8854] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.079833][ T8854] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  222.131340][ T8854] batman_adv: batadv0: Adding interface: batadv_slave_1
[  222.143971][ T8854] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  222.229885][ T8854] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  222.412187][ T8854] hsr_slave_0: entered promiscuous mode
[  222.465188][ T8854] hsr_slave_1: entered promiscuous mode
[  222.503247][ T8854] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  222.516233][ T8854] Cannot create hsr debugfs directory
[  222.621232][ T8960] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  222.853684][ T8967] batadv_slave_0: entered promiscuous mode
[  222.886908][ T8967] netlink: 4 bytes leftover after parsing attributes in process `syz.2.908'.
[  222.929484][ T8967] batadv_slave_0 (unregistering): left promiscuous mode
[  223.152750][ T8854] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  223.187531][ T8854] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  223.256697][ T8854] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  223.270210][ T8854] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  223.503808][ T8854] 8021q: adding VLAN 0 to HW filter on device bond0
[  223.585493][ T8854] 8021q: adding VLAN 0 to HW filter on device team0
[  223.601946][ T7995] bridge0: port 1(bridge_slave_0) entered blocking state
[  223.609193][ T7995] bridge0: port 1(bridge_slave_0) entered forwarding state
[  223.632805][ T7984] bridge0: port 2(bridge_slave_1) entered blocking state
[  223.640108][ T7984] bridge0: port 2(bridge_slave_1) entered forwarding state
[  223.793804][ T5770] Bluetooth: hci1: command tx timeout
[  224.953962][ T8854] 8021q: adding VLAN 0 to HW filter on device batadv0
[  225.133561][ T9026] netlink: 8 bytes leftover after parsing attributes in process `syz.2.920'.
[  225.171045][ T9021] loop0: detected capacity change from 0 to 256
[  225.212699][ T5776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  225.291232][ T9021] loop0: detected capacity change from 0 to 512
[  225.298713][ T5776] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  225.369985][ T9021] EXT4-fs (loop0): 1 truncate cleaned up
[  225.398297][ T9021] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  225.595609][ T8854] veth0_vlan: entered promiscuous mode
[  225.616422][ T8854] veth1_vlan: entered promiscuous mode
[  225.620104][ T5765] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.693410][ T8854] veth0_macvtap: entered promiscuous mode
[  225.734537][ T8854] veth1_macvtap: entered promiscuous mode
[  225.800510][ T8854] batman_adv: batadv0: Interface activated: batadv_slave_0
[  225.843335][ T8854] batman_adv: batadv0: Interface activated: batadv_slave_1
[  225.867288][ T5770] Bluetooth: hci1: command tx timeout
[  225.868844][ T8854] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  225.887910][ T8854] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  225.897198][ T8854] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  225.905950][ T8854] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.185106][ T2961] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  226.199560][ T2961] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  226.376718][ T1086] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  226.420423][ T1086] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  226.746937][    T8] usb 3-1: new full-speed USB device number 6 using dummy_hcd
[  226.967093][    T8] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  227.023465][    T8] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2c24, bcdDevice= 0.00
[  227.060602][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  227.110932][    T8] usb 3-1: config 0 descriptor??
[  227.156266][    T8] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  228.498796][ T9057] Set syz1 is full, maxelem 65536 reached
[  229.036640][ T5886] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  229.046040][ T9093] xt_CT: You must specify a L4 protocol and not use inversions on it
[  229.216868][ T5886] usb 5-1: Using ep0 maxpacket: 32
[  229.228882][ T5886] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  229.250127][ T5886] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  229.270517][ T5886] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00
[  229.292438][ T5886] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.328382][ T5886] usb 5-1: config 0 descriptor??
[  229.852508][ T5886] savu 0003:1E7D:2D5A.0003: hiddev0,hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.4-1/input0
[  230.134793][ T5886] usb 3-1: USB disconnect, device number 6
[  230.192867][ T1205] usb 5-1: USB disconnect, device number 12
[  231.754809][ T9178] bond0: left allmulticast mode
[  231.766690][ T9178] bridge2: left promiscuous mode
[  231.774644][ T9178] bridge2: left allmulticast mode
[  231.781009][ T9178] macvlan2: left promiscuous mode
[  231.786143][ T9178] bond2: left promiscuous mode
[  231.795497][ T9178] bond2: left allmulticast mode
[  233.314580][ T9202] netlink: 8 bytes leftover after parsing attributes in process `syz.2.952'.
[  236.462256][ T9248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.965'.
[  236.499570][ T9248] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  236.508987][ T9248] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  236.517966][ T9248] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  236.526900][ T9248] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  236.548726][ T9248] netlink: 4 bytes leftover after parsing attributes in process `syz.0.965'.
[  236.900912][ T9263] netlink: 'syz.4.970': attribute type 12 has an invalid length.
[  237.374388][ T9269] netlink: 16186 bytes leftover after parsing attributes in process `syz.2.973'.
[  237.811842][ T9262] loop0: detected capacity change from 0 to 40427
[  237.878308][ T9262] F2FS-fs (loop0): Found nat_bits in checkpoint
[  238.592991][ T9262] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  238.822326][ T9296] loop4: detected capacity change from 0 to 2048
[  238.866953][ T9296] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  238.889580][ T9296] ext4 filesystem being mounted at /184/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  239.054953][ T9296] fs-verity: sha512 using implementation "sha512-avx2"
[  239.208138][ T6334] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.360852][ T9310] tipc: Failed to remove unknown binding: 66,0,0/0:22977221/22977223
[  239.396763][ T9310] tipc: Failed to remove unknown binding: 66,0,0/0:22977221/22977222
[  239.430243][ T9310] tipc: Failed to remove unknown binding: 66,0,0/0:22977221/22977223
[  239.430361][ T9310] tipc: Failed to remove unknown binding: 66,0,0/0:22977221/22977222
[  240.464409][ T9320] loop5: detected capacity change from 0 to 32768
[  240.505977][ T9320] XFS: noikeep mount option is deprecated.
[  240.529101][ T9346] netlink: 24 bytes leftover after parsing attributes in process `syz.4.988'.
[  240.881175][ T9358] CIFS: No dialect specified on mount. Default has changed to a more secure dialect, SMB2.1 or later (e.g. SMB3.1.1), from CIFS (SMB1). To use the less secure SMB1 dialect to access old servers which do not support SMB3.1.1 (or even SMB3 or SMB2.1) specify vers=1.0 on mount.
[  240.907577][ T9358] CIFS mount error: No usable UNC path provided in device string!
[  240.907577][ T9358] 
[  240.918394][ T9358] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[  241.261270][ T9320] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  241.697520][ T9365] 8021q: adding VLAN 0 to HW filter on device bond0
[  241.751397][ T9365] bond0: (slave rose0): Enslaving as an active interface with an up link
[  241.924536][ T9320] XFS (loop5): Ending clean mount
[  242.014624][ T9320] XFS (loop5): Quotacheck needed: Please wait.
[  242.192396][ T9320] XFS (loop5): Quotacheck: Done.
[  243.541225][ T8854] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  243.971079][ T9413] netlink: 1319 bytes leftover after parsing attributes in process `syz.0.998'.
[  252.009729][   T28] kauditd_printk_skb: 68 callbacks suppressed
[  252.009744][   T28] audit: type=1804 audit(1773327090.471:292): pid=9465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.1010" name="bus" dev="ramfs" ino=22913 res=1 errno=0
[  252.076048][   T28] audit: type=1804 audit(1773327090.511:293): pid=9465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.1010" name="bus" dev="ramfs" ino=22913 res=1 errno=0
[  252.734067][ T9483] loop0: detected capacity change from 0 to 2048
[  252.821392][ T9483] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found
[  252.856613][ T9483] UDF-fs: Scanning with blocksize 512 failed
[  252.916049][ T9483] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  253.018998][ T9483] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  255.957799][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  255.964305][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  256.547126][ T9550] netlink: 'syz.2.1028': attribute type 1 has an invalid length.
[  256.819897][ T9550] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 20004 - 0
[  256.839409][ T9550] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 20004 - 0
[  256.857028][ T9550] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 20004 - 0
[  256.881209][ T9550] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 20004 - 0
[  256.918724][ T9550] bond6: (slave geneve2): making interface the new active one
[  256.964356][ T9550] bond6: (slave geneve2): Enslaving as an active interface with an up link
[  256.987129][ T5804] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  257.197377][ T5804] usb 1-1: Using ep0 maxpacket: 8
[  257.228651][ T5804] usb 1-1: config 0 has an invalid interface number: 200 but max is 0
[  257.251397][ T9590] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1033'.
[  257.254886][ T5804] usb 1-1: config 0 has no interface number 0
[  257.296745][ T5804] usb 1-1: config 0 interface 200 altsetting 2 has an invalid endpoint with address 0xB5, skipping
[  257.324839][ T5804] usb 1-1: config 0 interface 200 has no altsetting 0
[  257.347739][ T5804] usb 1-1: New USB device found, idVendor=0b57, idProduct=8528, bcdDevice=6d.39
[  257.362666][ T9590] bridge2: port 1(veth0_to_bond) entered blocking state
[  257.368164][ T5804] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  257.385289][ T9590] bridge2: port 1(veth0_to_bond) entered disabled state
[  257.389159][ T5804] usb 1-1: Product: syz
[  257.405519][ T5804] usb 1-1: Manufacturer: syz
[  257.416275][ T5804] usb 1-1: SerialNumber: syz
[  257.421422][ T9590] veth0_to_bond: entered allmulticast mode
[  257.434290][ T5804] usb 1-1: config 0 descriptor??
[  257.444373][ T9590] veth0_to_bond: entered promiscuous mode
[  257.679219][ T5804] usbhid 1-1:0.200: couldn't find an input interrupt endpoint
[  257.712790][ T5804] usb 1-1: USB disconnect, device number 4
[  257.866958][ T9612] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  257.877573][ T9612] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  261.687409][ T9689] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1059'.
[  261.753393][ T9689] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1059'.
[  263.637186][ T9737] netlink: 'syz.2.1068': attribute type 39 has an invalid length.
[  263.676902][ T5770] Bluetooth: hci2: link tx timeout
[  263.682073][ T5770] Bluetooth: hci2: killing stalled connection 10:aa:aa:aa:aa:aa
[  265.611108][ T9764] loop2: detected capacity change from 0 to 40427
[  265.627149][ T9764] F2FS-fs (loop2): build fault injection attr: rate: 771, type: 0x7ffff
[  265.656390][ T9764] F2FS-fs (loop2): invalid crc value
[  265.678953][ T9764] F2FS-fs (loop2): Found nat_bits in checkpoint
[  265.706978][ T5766] Bluetooth: hci2: command 0x0406 tx timeout
[  266.027210][ T9764] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  268.028205][ T5763] syz-executor: attempt to access beyond end of device
[  268.028205][ T5763] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  268.062932][ T5763] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  268.763495][ T9834] netlink: 'syz.2.1088': attribute type 1 has an invalid length.
[  268.873477][ T9834] 8021q: adding VLAN 0 to HW filter on device bond7
[  268.905407][ T9836] bond7: up delay (35976) is not a multiple of miimon (100), value rounded to 35900 ms
[  269.007725][ T9836] bond7: entered allmulticast mode
[  269.139342][ T9838] bond7: (slave ip6gretap2): Enslaving as an active interface with an up link
[  269.543704][ T9852] loop2: detected capacity change from 0 to 2048
[  269.709397][ T9852] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  271.041373][ T9793] Set syz1 is full, maxelem 65536 reached
[  272.868090][ T9919] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1106'.
[  273.517699][ T9919] team1: entered promiscuous mode
[  273.546745][ T9919] team1: entered allmulticast mode
[  275.446986][ T9977] netlink: 'syz.2.1117': attribute type 1 has an invalid length.
[  275.502692][ T9977] bond8: entered promiscuous mode
[  275.512920][ T9977] 8021q: adding VLAN 0 to HW filter on device bond8
[  275.605830][ T9980] 8021q: adding VLAN 0 to HW filter on device bond8
[  275.636129][ T9980] bond8: (slave wireguard0): The slave device specified does not support setting the MAC address
[  275.682460][ T9980] bond8: (slave wireguard0): Setting fail_over_mac to active for active-backup mode
[  275.729398][ T9980] bond8: (slave wireguard0): making interface the new active one
[  275.738918][ T9980] wireguard0: entered promiscuous mode
[  275.762488][ T9980] bond8: (slave wireguard0): Enslaving as an active interface with an up link
[  275.893738][ T9977] bond8: (slave wireguard1): The slave device specified does not support setting the MAC address
[  275.910048][ T9977] bond8: (slave wireguard1): Enslaving as a backup interface with an up link
[  276.098678][ T9996] overlayfs: failed to clone upperpath
[  276.563736][   T28] audit: type=1804 audit(1773327115.021:294): pid=10009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.1123" name="bus" dev="ramfs" ino=24715 res=1 errno=0
[  276.746934][   T28] audit: type=1804 audit(1773327115.051:295): pid=10009 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1123" name="bus" dev="ramfs" ino=24715 res=1 errno=0
[  277.664081][ T5766] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  277.696131][ T5766] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  277.719090][ T5766] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  277.741787][ T5766] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  277.769951][ T5766] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  277.794386][ T5766] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  278.341295][T10022] chnl_net:caif_netlink_parms(): no params data found
[  278.645085][T10033] gretap0: entered promiscuous mode
[  278.656387][T10022] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.689811][T10022] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.712019][T10022] bridge_slave_0: entered allmulticast mode
[  278.737937][T10022] bridge_slave_0: entered promiscuous mode
[  278.758644][T10022] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.765865][T10022] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.777189][T10022] bridge_slave_1: entered allmulticast mode
[  278.784466][T10022] bridge_slave_1: entered promiscuous mode
[  278.866377][T10022] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  278.899743][T10022] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  278.973577][T10022] team0: Port device team_slave_0 added
[  279.018272][T10022] team0: Port device team_slave_1 added
[  279.086973][T10022] batman_adv: batadv0: Adding interface: batadv_slave_0
[  279.104193][T10022] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.184835][T10022] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  279.221047][T10022] batman_adv: batadv0: Adding interface: batadv_slave_1
[  279.228114][T10022] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  279.254276][T10022] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  279.881670][ T5770] Bluetooth: hci4: command tx timeout
[  280.012328][T10022] hsr_slave_0: entered promiscuous mode
[  280.062935][T10022] hsr_slave_1: entered promiscuous mode
[  280.082059][T10022] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  280.107189][T10022] Cannot create hsr debugfs directory
[  280.427661][T10043] loop2: detected capacity change from 0 to 4096
[  280.548160][T10048] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  280.714890][T10022] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  280.772544][T10022] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  280.835572][T10022] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  280.853220][T10022] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  281.077392][T10022] 8021q: adding VLAN 0 to HW filter on device bond0
[  281.141181][T10022] 8021q: adding VLAN 0 to HW filter on device team0
[  281.182630][ T7990] bridge0: port 1(bridge_slave_0) entered blocking state
[  281.189851][ T7990] bridge0: port 1(bridge_slave_0) entered forwarding state
[  281.249868][ T2961] bridge0: port 2(bridge_slave_1) entered blocking state
[  281.257079][ T2961] bridge0: port 2(bridge_slave_1) entered forwarding state
[  281.607404][T10054] overlayfs: failed to resolve './file2': -2
[  281.912591][T10022] 8021q: adding VLAN 0 to HW filter on device batadv0
[  282.158195][ T5770] Bluetooth: hci4: command tx timeout
[  284.189069][ T5770] Bluetooth: hci4: command tx timeout
[  389.826476][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  389.833483][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P10088/1:b..l P10047/1:b..l P7984/1:b..l
[  389.844408][    C0] rcu: 	(detected by 0, t=10502 jiffies, g=41301, q=441 ncpus=2)
[  389.852125][    C0] task:kworker/u4:11   state:R  running task     stack:24520 pid:7984  ppid:2      flags:0x00004000
[  389.864386][    C0] Workqueue: bat_events batadv_iv_send_outstanding_bat_ogm_packet
[  389.872244][    C0] Call Trace:
[  389.875522][    C0]  <TASK>
[  389.878449][    C0]  __schedule+0x1553/0x45a0
[  389.882959][    C0]  ? asan.module_dtor+0x20/0x20
[  389.887806][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  389.893004][    C0]  preempt_schedule_irq+0xbf/0x150
[  389.898136][    C0]  ? preempt_schedule_notrace+0x110/0x110
[  389.903850][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  389.909649][    C0]  irqentry_exit+0x67/0x70
[  389.914053][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  389.920044][    C0] RIP: 0010:lock_acquire+0x208/0x420
[  389.925334][    C0] Code: f7 84 24 80 00 00 00 00 02 00 00 43 c6 44 3c 04 f8 0f 85 f0 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 3c 00 00 00 00 43 c7 44 3c 08 00 00 00 00 65 48 8b 04 25
[  389.944984][    C0] RSP: 0018:ffffc900036d78a0 EFLAGS: 00000206
[  389.951072][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: b449c04d17e5b200
[  389.959036][    C0] RDX: 0000000000000000 RSI: ffffffff8acadae0 RDI: ffffffff8b1c85a0
[  389.967023][    C0] RBP: ffffc900036d79a8 R08: dffffc0000000000 R09: 1ffffffff22382a0
[  389.974978][    C0] R10: dffffc0000000000 R11: fffffbfff22382a1 R12: 1ffff920006daf20
[  389.982961][    C0] R13: ffffffff8d132060 R14: 0000000000000246 R15: dffffc0000000000
[  389.991213][    C0]  ? batadv_iv_ogm_schedule+0x3e7/0xf10
[  389.996755][    C0]  ? read_lock_is_recursive+0x20/0x20
[  390.002146][    C0]  batadv_iv_ogm_schedule+0x40b/0xf10
[  390.007520][    C0]  ? batadv_iv_ogm_schedule+0x3e7/0xf10
[  390.013241][    C0]  ? batadv_iv_ogm_schedule+0x3e7/0xf10
[  390.018863][    C0]  ? batadv_iv_send_outstanding_bat_ogm_packet+0x850/0x850
[  390.026050][    C0]  batadv_iv_send_outstanding_bat_ogm_packet+0x733/0x850
[  390.033101][    C0]  ? process_scheduled_works+0x96f/0x15d0
[  390.038824][    C0]  ? process_scheduled_works+0x96f/0x15d0
[  390.044622][    C0]  process_scheduled_works+0xa5d/0x15d0
[  390.050349][    C0]  ? worker_attach_to_pool+0x380/0x380
[  390.055798][    C0]  ? assign_work+0x3d2/0x5d0
[  390.060394][    C0]  worker_thread+0xa55/0xfc0
[  390.065076][    C0]  kthread+0x2fa/0x390
[  390.069131][    C0]  ? pr_cont_work+0x560/0x560
[  390.073797][    C0]  ? kthread_blkcg+0xd0/0xd0
[  390.078386][    C0]  ret_from_fork+0x48/0x80
[  390.082794][    C0]  ? kthread_blkcg+0xd0/0xd0
[  390.087410][    C0]  ret_from_fork_asm+0x11/0x20
[  390.092173][    C0]  </TASK>
[  390.095179][    C0] task:syz.5.1131      state:R  running task     stack:24872 pid:10047 ppid:8854   flags:0x00004002
[  390.105973][    C0] Call Trace:
[  390.109338][    C0]  <TASK>
[  390.112291][    C0]  __schedule+0x1553/0x45a0
[  390.116818][    C0]  ? asan.module_dtor+0x20/0x20
[  390.121665][    C0]  ? mark_lock+0x94/0x320
[  390.125983][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  390.131973][    C0]  ? preempt_schedule_irq+0xb4/0x150
[  390.137266][    C0]  preempt_schedule_irq+0xbf/0x150
[  390.142463][    C0]  ? preempt_schedule_notrace+0x110/0x110
[  390.148181][    C0]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  390.153977][    C0]  irqentry_exit+0x67/0x70
[  390.158385][    C0]  asm_sysvec_reschedule_ipi+0x1a/0x20
[  390.163830][    C0] RIP: 0010:lock_is_held_type+0x13e/0x190
[  390.169537][    C0] Code: 75 40 48 c7 04 24 00 00 00 00 9c 8f 04 24 f7 04 24 00 02 00 00 75 46 41 f7 c5 00 02 00 00 74 01 fb 65 48 8b 04 25 28 00 00 00 <48> 3b 44 24 08 75 3c 89 e8 48 83 c4 10 5b 41 5c 41 5d 41 5e 41 5f
[  390.189140][    C0] RSP: 0018:ffffc90003806f18 EFLAGS: 00000206
[  390.195198][    C0] RAX: b4c7d6e14ad75900 RBX: ffff888023fe8000 RCX: b4c7d6e14ad75900
[  390.203188][    C0] RDX: ffff888023fe8000 RSI: ffffffff8acadae0 RDI: ffffffff8b1c85a0
[  390.211165][    C0] RBP: 0000000000000000 R08: dffffc0000000000 R09: 1ffffffff22382a0
[  390.219133][    C0] R10: dffffc0000000000 R11: fffffbfff22382a1 R12: 0000000000000003
[  390.227114][    C0] R13: 0000000000000246 R14: ffff88807be560a8 R15: ffff888023fe8b58
[  390.235105][    C0]  xas_descend+0x107/0x490
[  390.239526][    C0]  xas_load+0xbe/0x140
[  390.243601][    C0]  ? filemap_get_entry+0xce/0x3f0
[  390.248714][    C0]  filemap_get_entry+0x182/0x3f0
[  390.253649][    C0]  ? page_cache_prev_miss+0x390/0x390
[  390.259012][    C0]  ? seqcount_lockdep_reader_access+0x12b/0x1d0
[  390.265239][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  390.270423][    C0]  ? ktime_get_coarse_real_ts64+0x3a/0x120
[  390.276218][    C0]  ? seqcount_lockdep_reader_access+0x191/0x1d0
[  390.282453][    C0]  __filemap_get_folio+0x7c/0xbb0
[  390.287479][    C0]  simple_write_begin+0x61/0x840
[  390.292417][    C0]  ? fault_in_iov_iter_readable+0x1b9/0x2e0
[  390.298309][    C0]  generic_perform_write+0x2fe/0x5c0
[  390.303589][    C0]  ? generic_file_direct_write+0x3e0/0x3e0
[  390.309386][    C0]  ? __generic_file_write_iter+0xf7/0x230
[  390.315091][    C0]  ? generic_file_write_iter+0x9b/0x2e0
[  390.320626][    C0]  generic_file_write_iter+0xaf/0x2e0
[  390.325988][    C0]  __kernel_write_iter+0x28c/0x690
[  390.331109][    C0]  ? vfs_read+0x970/0x970
[  390.335426][    C0]  ? get_dump_page+0x156/0x200
[  390.340205][    C0]  ? __asan_memset+0x22/0x40
[  390.344784][    C0]  ? iov_iter_bvec+0xd4/0x1b0
[  390.349457][    C0]  dump_user_range+0x420/0x860
[  390.354214][    C0]  ? dump_skip+0x40/0x40
[  390.358459][    C0]  ? dump_emit+0x78/0xe0
[  390.362694][    C0]  ? dump_emit+0xa6/0xe0
[  390.366923][    C0]  ? elf_core_dump+0x2bae/0x3770
[  390.371848][    C0]  elf_core_dump+0x31d0/0x3770
[  390.376628][    C0]  ? load_elf_binary+0x2860/0x2860
[  390.381748][    C0]  ? dump_vma_snapshot+0xbe8/0x1090
[  390.386942][    C0]  ? verify_lock_unused+0x140/0x140
[  390.392133][    C0]  ? mas_next_slot+0x94f/0x980
[  390.396902][    C0]  ? rcu_read_lock_any_held+0xb4/0x140
[  390.402347][    C0]  ? 0xffffffffff600000
[  390.406511][    C0]  do_coredump+0x17cc/0x24d0
[  390.411106][    C0]  ? nfs_stat_to_errno+0x1a0/0x1a0
[  390.416230][    C0]  ? lock_chain_count+0x20/0x20
[  390.421092][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  390.426385][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  390.431625][    C0]  get_signal+0x1133/0x13f0
[  390.436134][    C0]  arch_do_signal_or_restart+0xc2/0x800
[  390.441680][    C0]  ? get_sigframe_size+0x20/0x20
[  390.446612][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  390.452587][    C0]  ? exit_to_user_mode_loop+0x3b/0x110
[  390.458386][    C0]  exit_to_user_mode_loop+0x70/0x110
[  390.463678][    C0]  exit_to_user_mode_prepare+0xee/0x180
[  390.469211][    C0]  irqentry_exit_to_user_mode+0x9/0x30
[  390.474739][    C0]  exc_page_fault+0x8c/0x100
[  390.479338][    C0]  asm_exc_page_fault+0x26/0x30
[  390.484182][    C0] RIP: 0033:0x7f6aa5a52777
[  390.488584][    C0] RSP: 002b:00007f6aa69a8120 EFLAGS: 00010202
[  390.494722][    C0] RAX: 0000000000000000 RBX: 000000000000000b RCX: 00007f6aa5b9c799
[  390.502677][    C0] RDX: 00007f6aa69a8140 RSI: 00007f6aa69a8270 RDI: 000000000000000b
[  390.510670][    C0] RBP: 00007f6aa5c32c99 R08: 0000000000000000 R09: 0000000000000000
[  390.518628][    C0] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[  390.526679][    C0] R13: 00007f6aa5e16038 R14: 00007f6aa5e15fa0 R15: 00007ffd30b759f8
[  390.534649][    C0]  </TASK>
[  390.537658][    C0] task:syz.5.1136      state:R  running task     stack:24520 pid:10088 ppid:8854   flags:0x00004002
[  390.548433][    C0] Call Trace:
[  390.551705][    C0]  <TASK>
[  390.554642][    C0]  __schedule+0x1553/0x45a0
[  390.559144][    C0]  ? native_flush_tlb_multi+0xd0/0xd0
[  390.564525][    C0]  ? flush_tlb_func+0x610/0x610
[  390.569366][    C0]  ? asan.module_dtor+0x20/0x20
[  390.574236][    C0]  ? preempt_schedule+0xc0/0xd0
[  390.579107][    C0]  preempt_schedule_common+0x82/0xc0
[  390.584399][    C0]  preempt_schedule+0xc0/0xd0
[  390.589085][    C0]  ? schedule_preempt_disabled+0x20/0x20
[  390.594815][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  390.599847][    C0]  ? __lock_acquire+0x7d40/0x7d40
[  390.604871][    C0]  ? page_ext_get+0x1e2/0x2b0
[  390.609544][    C0]  preempt_schedule_thunk+0x1a/0x30
[  390.614747][    C0]  _raw_spin_unlock+0x3a/0x40
[  390.619414][    C0]  do_wp_page+0x1f56/0x35f0
[  390.623909][    C0]  ? do_wp_page+0x1659/0x35f0
[  390.628578][    C0]  ? folio_put+0xd0/0xd0
[  390.632892][    C0]  ? do_raw_spin_lock+0x11f/0x2c0
[  390.637907][    C0]  ? __rwlock_init+0x150/0x150
[  390.642733][    C0]  handle_mm_fault+0x135d/0x4c00
[  390.647697][    C0]  ? handle_mm_fault+0xe7/0x4c00
[  390.652659][    C0]  ? numa_migrate_prep+0x350/0x350
[  390.657763][    C0]  ? follow_page_pte+0xc68/0x1ac0
[  390.662787][    C0]  ? pmd_lock+0x60/0x60
[  390.666954][    C0]  __get_user_pages+0x5d0/0x1380
[  390.671917][    C0]  ? populate_vma_page_range+0x380/0x380
[  390.677550][    C0]  ? __gup_longterm_locked+0x38c/0x2b80
[  390.683286][    C0]  ? down_read_killable+0x1d0/0x340
[  390.688489][    C0]  __gup_longterm_locked+0x4de/0x2b80
[  390.693882][    C0]  ? pin_user_pages_remote+0x220/0x220
[  390.699348][    C0]  ? mark_lock+0x94/0x320
[  390.703699][    C0]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[  390.709679][    C0]  ? lock_chain_count+0x20/0x20
[  390.714521][    C0]  ? sanity_check_pinned_pages+0x1348/0x14d0
[  390.720508][    C0]  ? internal_get_user_pages_fast+0x1fc6/0x2760
[  390.726738][    C0]  internal_get_user_pages_fast+0x21bf/0x2760
[  390.732796][    C0]  ? mark_lock+0x94/0x320
[  390.737134][    C0]  ? get_user_pages_fast_only+0xa0/0xa0
[  390.742673][    C0]  ? kvmalloc_node+0x70/0x180
[  390.747351][    C0]  ? rcu_is_watching+0x15/0xb0
[  390.752108][    C0]  ? trace_kmalloc+0x1f/0x90
[  390.756783][    C0]  ? __kmalloc_node+0x157/0x230
[  390.761628][    C0]  ? pin_user_pages_fast+0x89/0xe0
[  390.766818][    C0]  io_pin_pages+0x92/0x170
[  390.771222][    C0]  io_sqe_buffer_register+0x159/0x1910
[  390.776675][    C0]  ? __might_fault+0xaa/0x120
[  390.781338][    C0]  ? __might_fault+0xc6/0x120
[  390.785996][    C0]  ? _copy_from_user+0xa5/0xe0
[  390.790755][    C0]  ? io_copy_iov+0x1f0/0x1f0
[  390.795347][    C0]  ? io_sqe_buffers_unregister+0x100/0x100
[  390.801163][    C0]  ? io_sqe_buffers_register+0x1ab/0x520
[  390.806881][    C0]  ? rcu_is_watching+0x15/0xb0
[  390.811643][    C0]  ? io_sqe_buffers_register+0x1ab/0x520
[  390.817350][    C0]  ? __kmalloc+0xe2/0x230
[  390.821671][    C0]  io_sqe_buffers_register+0x3cb/0x520
[  390.827136][    C0]  ? __se_sys_io_uring_register+0x174/0xc50
[  390.833039][    C0]  ? io_sqe_files_register+0x5e0/0x5e0
[  390.838493][    C0]  ? __fget_files+0x43d/0x4b0
[  390.843167][    C0]  __se_sys_io_uring_register+0x674/0xc50
[  390.848878][    C0]  do_syscall_64+0x55/0xa0
[  390.853399][    C0]  ? clear_bhb_loop+0x40/0x90
[  390.858074][    C0]  ? clear_bhb_loop+0x40/0x90
[  390.862764][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  390.868662][    C0] RIP: 0033:0x7f6aa5b9c799
[  390.873086][    C0] RSP: 002b:00007f6aa6985028 EFLAGS: 00000246 ORIG_RAX: 00000000000001ab
[  390.881519][    C0] RAX: ffffffffffffffda RBX: 00007f6aa5e16180 RCX: 00007f6aa5b9c799
[  390.889516][    C0] RDX: 00002000000002c0 RSI: 0000000000000000 RDI: 0000000000000005
[  390.897491][    C0] RBP: 00007f6aa5c32c99 R08: 0000000000000000 R09: 0000000000000000
[  390.905551][    C0] R10: 100000000000011a R11: 0000000000000246 R12: 0000000000000000
[  390.913515][    C0] R13: 00007f6aa5e16218 R14: 00007f6aa5e16180 R15: 00007ffd30b759f8
[  390.921504][    C0]  </TASK>
[  390.924513][    C0] rcu: rcu_preempt kthread starved for 10385 jiffies! g41301 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  390.935972][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  390.946014][    C0] rcu: RCU grace-period kthread stack dump:
[  390.952248][    C0] task:rcu_preempt     state:R  running task     stack:27312 pid:17    ppid:2      flags:0x00004000
[  390.963175][    C0] Call Trace:
[  390.966465][    C0]  <TASK>
[  390.969397][    C0]  __schedule+0x1553/0x45a0
[  390.973903][    C0]  ? asan.module_dtor+0x20/0x20
[  390.978760][    C0]  ? enqueue_timer+0x4cd/0x550
[  390.983532][    C0]  ? __mod_timer+0x984/0xdb0
[  390.988400][    C0]  schedule+0xbd/0x170
[  390.992524][    C0]  schedule_timeout+0x188/0x2d0
[  390.997395][    C0]  ? console_conditional_schedule+0x40/0x40
[  391.003286][    C0]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[  391.009167][    C0]  ? update_process_times+0x1b0/0x1b0
[  391.014535][    C0]  ? prepare_to_swait_event+0x339/0x360
[  391.020083][    C0]  rcu_gp_fqs_loop+0x313/0x1590
[  391.024926][    C0]  ? dyntick_save_progress_counter+0x2b0/0x2b0
[  391.031122][    C0]  ? rcu_gp_init+0x1560/0x1560
[  391.036041][    C0]  ? rcu_gp_cleanup+0xb41/0xc90
[  391.040879][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  391.046064][    C0]  ? lockdep_hardirqs_on+0x98/0x150
[  391.051253][    C0]  rcu_gp_kthread+0x9d/0x3b0
[  391.055917][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  391.061015][    C0]  ? __kthread_parkme+0x7a/0x1c0
[  391.065942][    C0]  ? __kthread_parkme+0x162/0x1c0
[  391.070970][    C0]  kthread+0x2fa/0x390
[  391.075031][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  391.080128][    C0]  ? kthread_blkcg+0xd0/0xd0
[  391.084763][    C0]  ret_from_fork+0x48/0x80
[  391.089185][    C0]  ? kthread_blkcg+0xd0/0xd0
[  391.093767][    C0]  ret_from_fork_asm+0x11/0x20
[  391.098538][    C0]  </TASK>
[  391.101554][    C0] rcu: Stack dump where RCU GP kthread last ran:
[  391.107906][    C0] Sending NMI from CPU 0 to CPUs 1:
[  391.113127][    C1] NMI backtrace for cpu 1
[  391.113149][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted syzkaller #0
[  391.113163][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[  391.113172][    C1] RIP: 0010:pv_native_safe_halt+0xf/0x10
[  391.113193][    C1] Code: 40 22 02 c3 cc cc cc cc cc cc cc f3 0f 1e fa 0f 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 66 90 0f 00 2d c3 29 43 00 fb f4 <c3> 66 0f 1f 00 55 41 57 41 56 41 54 53 50 8b 2f eb 2e 41 89 de 80
[  391.113206][    C1] RSP: 0018:ffffc90000187de0 EFLAGS: 000002c6
[  391.113220][    C1] RAX: 9b7f570e00ec3a00 RBX: ffffffff8162ac40 RCX: 9b7f570e00ec3a00
[  391.113231][    C1] RDX: 0000000000000001 RSI: ffffffff8acac960 RDI: ffffffff8b1c85a0
[  391.113242][    C1] RBP: ffffc90000187f20 R08: ffff8880b8f36b2b R09: 1ffff110171e6d65
[  391.113252][    C1] R10: dffffc0000000000 R11: ffffed10171e6d66 R12: 1ffff110036cd780
[  391.113263][    C1] R13: 1ffff92000030fc8 R14: 0000000000000001 R15: dffffc0000000000
[  391.113274][    C1] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  391.113287][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  391.113297][    C1] CR2: 00007f1b9d4a76a2 CR3: 000000007af9a000 CR4: 00000000003506e0
[  391.113310][    C1] DR0: ffffffffffffffff DR1: 00000000000001f8 DR2: 0000000000000083
[  391.113320][    C1] DR3: ffffffffefffff15 DR6: 00000000ffff0ff0 DR7: 0000000000000400
[  391.113330][    C1] Call Trace:
[  391.113338][    C1]  <TASK>
[  391.113343][    C1]  default_idle+0x13/0x20
[  391.113360][    C1]  default_idle_call+0x6c/0xa0
[  391.113378][    C1]  do_idle+0x1f0/0x4e0
[  391.113398][    C1]  ? idle_inject_timer_fn+0x60/0x60
[  391.113438][    C1]  ? do_idle+0x4bd/0x4e0
[  391.113455][    C1]  cpu_startup_entry+0x43/0x60
[  391.113472][    C1]  start_secondary+0xee/0xf0
[  391.113488][    C1]  secondary_startup_64_no_verify+0x179/0x17b
[  391.113514][    C1]  </TASK>
[  391.557282][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  391.563591][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  391.567231][ T5770] Bluetooth: hci4: command tx timeout
[  391.590173][ T1289] ieee802154 phy0 wpan0: encryption failed: -22
[  391.620081][ T1289] ieee802154 phy1 wpan1: encryption failed: -22
[  391.957397][ T5766] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  391.983342][ T5766] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  391.994016][ T5766] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
SYZFAIL: failed to send rpc
fd=3 want=192 sent=0 n=-1 (errno 32: Broken pipe)
[  392.106696][ T5766] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  392.316694][ T5766] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  392.336711][ T5766] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  392.921008][ T1086] netdevsim netdevsim0 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  393.279027][ T1086] netdevsim netdevsim0 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  393.636705][ T5766] Bluetooth: hci1: command 0x0406 tx timeout
[  393.656082][ T1086] netdevsim netdevsim0 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  393.921780][ T1086] netdevsim netdevsim0 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  395.645021][ T1086] hsr_slave_0: left promiscuous mode
[  395.659291][ T1086] hsr_slave_1: left promiscuous mode
[  395.665440][ T1086] batman_adv: batadv0: Removing interface: batadv_slave_0
[  395.734944][ T1086] bond2 (unregistering): (slave bridge3): Removing an active aggregator
[  395.747719][ T1086] bond2 (unregistering): (slave bridge3): Releasing backup interface
[  396.029588][ T1086] bond2 (unregistering): Released all slaves
[  396.091580][ T1086] bond1 (unregistering): (slave veth3): Releasing active interface
[  396.265258][ T1086] bond1 (unregistering): Released all slaves
[  396.931425][ T1086] team0 (unregistering): Port device team_slave_1 removed
[  396.998919][ T1086] team0 (unregistering): Port device team_slave_0 removed
[  397.060842][ T1086] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  397.122308][ T1086] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  397.506195][ T1086] bond0 (unregistering): Released all slaves
[  398.395387][ T1086] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  398.490788][ T1086] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  398.565428][ T1086] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  398.652098][ T1086] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 20004 - 0
[  398.910519][ T1086] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.001610][ T1086] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.080728][ T1086] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.136993][ T1086] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  399.710246][ T1086] tipc: Disabling bearer <udp:syz2>
[  399.732286][ T1086] tipc: Disabling bearer <eth:veth0_macvtap>
[  399.753378][ T1086] tipc: Left network mode