last executing test programs:

2m20.760206241s ago: executing program 0 (id=168):
r0 = socket(0x10, 0x803, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'veth0_to_team\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000100)=ANY=[@ANYBLOB="340000001400b59500000000000000000a000000", @ANYRES32=r1, @ANYBLOB="0800080018010000140002"], 0x34}}, 0x0)

2m17.020815114s ago: executing program 0 (id=177):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/rcu_expedited', 0x101a02, 0x0)
unshare(0x22020400)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x0)
bpf$BPF_PROG_DETACH(0x8, 0x0, 0x10)
socketpair$unix(0x1, 0x1, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x20000054)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x1c79, &(0x7f0000000040)={0x0, 0xc8a1, 0xc000, 0x8, 0xc1})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x17, 0x3, 0x0, 0x0, 0x8000000, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @fallback=0x2f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_enter(r0, 0x221b, 0x7721, 0x16, 0x0, 0x0)

2m16.944288804s ago: executing program 0 (id=178):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000080)={0x1, &(0x7f00000000c0)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000ef3e95405c0a1fbd1a5301020301090212"], 0x0)

2m14.338975231s ago: executing program 0 (id=189):
socket$netlink(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000240)='./file0/file0\x00', &(0x7f00000007c0)='./file0/file0\x00', 0x0, 0x1101886, 0x0)
mount$bind(0x0, &(0x7f00000002c0)='./file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000440)='./file0\x00', &(0x7f0000000000)='./file0/file0\x00', 0x0, 0x10a5840, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000380)='./file0\x00', r0, &(0x7f0000000640)='./file0/file0\x00', 0x272)

2m14.1111395s ago: executing program 0 (id=193):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={0x34, r1, 0x7, 0x0, 0xfffffffe, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x8, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x4}]}]}, 0x34}}, 0x0)

2m13.036111179s ago: executing program 0 (id=201):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000080)={[{@errors_remount}, {@oldalloc}, {@resuid}, {@nobarrier}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x447, &(0x7f0000000380)="$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")
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x3, 0x4100, 0x8000c62)

2m12.736528228s ago: executing program 32 (id=201):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000080)={[{@errors_remount}, {@oldalloc}, {@resuid}, {@nobarrier}, {@block_validity}, {@jqfmt_vfsv1}]}, 0x3, 0x447, &(0x7f0000000380)="$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")
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
fallocate(r0, 0x3, 0x4100, 0x8000c62)

1m47.100147013s ago: executing program 2 (id=271):
syz_mount_image$erofs(&(0x7f00000000c0), &(0x7f0000000340)='./file2\x00', 0x2010000, &(0x7f00000004c0)=ANY=[], 0x41, 0x235, &(0x7f0000000100)="$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")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x120)
getdents(r0, &(0x7f0000000440)=""/4090, 0xffa)

1m46.375543466s ago: executing program 2 (id=276):
socket(0x10, 0x803, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x1ff)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2, 0x5031, 0xffffffffffffffff, 0xc2dcc000)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f000008d000/0x1000)=nil, &(0x7f00005e1000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f000068c000/0xc000)=nil, &(0x7f0000817000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x40)
r0 = io_uring_setup(0x7, &(0x7f0000000040)={0x0, 0xcefb, 0xc000, 0x4000002, 0x1000c1})
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="0208000004"], 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="16"], 0x50)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

1m46.071225986s ago: executing program 2 (id=279):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/netlink\x00')
fanotify_mark(r0, 0x1, 0x40001019, r0, 0x0)
pread64(r0, 0x0, 0x0, 0x3)

1m45.798340941s ago: executing program 2 (id=280):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='noadinicb,nostrict,mode=00000000000000000000004,uid=forget,noadinicb,umask=00000000000000040002000,lastblock=00000000000000000013,undelete,partition=00000000000000000005,\x00'], 0x43, 0xc11, &(0x7f0000000d00)="$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")
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./bus\x00', 0x151a43, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000780)='./bus\x00', 0x4c07e, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000380)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r5}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
clock_settime(0xfffffffb, 0x0)
io_setup(0x7d, &(0x7f0000000600)=<r6=>0x0)
io_submit(r6, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000)="96", 0xfffffe3b, 0x0, 0x0, 0x0, r1}, &(0x7f0000000740)={0x0, 0x0, 0x41, 0x3, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff}])
renameat2(r0, &(0x7f0000000140)='./file1\x00', r0, &(0x7f0000000980)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0)

1m40.578423436s ago: executing program 2 (id=284):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_HOPOPTS(r0, 0x29, 0x48, &(0x7f0000000000)={0x8}, 0x8)

1m39.911939952s ago: executing program 2 (id=290):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r1, <r2=>r1}, &(0x7f0000000600), &(0x7f0000000640)=r0}, 0x1c)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000140), &(0x7f0000000280)=r0}, 0x20)

1m39.505308954s ago: executing program 33 (id=290):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x3, &(0x7f0000000100)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000005c0)={{r1, <r2=>r1}, &(0x7f0000000600), &(0x7f0000000640)=r0}, 0x1c)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r2}, &(0x7f0000000140), &(0x7f0000000280)=r0}, 0x20)

10.031280272s ago: executing program 4 (id=577):
r0 = fsopen(&(0x7f00000001c0)='binder\x00', 0x1)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={<r1=>0xffffffffffffffff})
r2 = getpgrp(0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
syz_open_dev$sndctrl(0x0, 0x0, 0x0)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0xa, 0x0, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r4 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r4, 0x1, 0x0)
r5 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r5, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$SIOCSIFHWADDR(r1, 0x8b26, &(0x7f0000000000)={'wlan1\x00', @random="00280ee0ec00"})
r6 = dup(r0)
read$alg(r6, &(0x7f0000000000)=""/136, 0x88)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
fsmount(r0, 0x0, 0xf)

8.360202248s ago: executing program 4 (id=578):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xb, 0x31, 0xffffffffffffffff, 0x0)
r0 = userfaultfd(0x801)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000280)={0xaa, 0x258})
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000140)={{&(0x7f0000400000/0xc00000)=nil, 0xc00000}, 0x3})
r1 = userfaultfd(0x801)
ioctl$UFFDIO_API(r1, 0xc018aa3f, &(0x7f0000000000)={0xaa, 0x280})
ioctl$UFFDIO_REGISTER(r1, 0xc020aa00, &(0x7f0000000100)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})

8.19681496s ago: executing program 5 (id=580):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000080)={[{@i_version}, {@nogrpid}, {@bh}]}, 0x1, 0x51d, &(0x7f0000000200)="$eJzs3c9vHFcdAPDvTLK2k7h1WnoABG1oCwFFWceb1qp6gHJCCFVC9AhSauyNZXnXa3nXpTaRcM9ckajECY78AZx74s4FwY1LOSDxwwLVSBwGzezY2di79uaHvZb385FG89688X7fizPvzbxd7wtgbN2IiJ2ImIiI9yNipjyelFu8093y8z7bfbC4t/tgMYkse++fSVGeH4uen8ldK19zKiJ+8J2IHydH47a3tlcXGo36Rpmf7TTXZ9tb27dXmgvL9eX6Wq02Pzd/5627b9YeozVTx5a+0pwoU1/+9A873/hpXq3p8khvO56lbtMrB3FylyPie6cRbAQule2ZGHVFeCJpRLwYEa8W1/9MXCp+mwDARZZlM5HN9OYBgIsuLebAkrRazgVMR5pWq905vJfiatpotTu37rc215a6c2XXo5LeX2nU75RzhdejkuT5uSL9MF87lL8bES9ExC8mrxT56mKrsTTKGx8AGGPXDo3//5nsjv8AwAV3/MdmAICLyPgPAOPH+A8A48f4DwDjpzv+X3ncH8uy7GenUR0A4Ax4/geA8WP8B4Cx8v133823bK/8/uulD7Y2V1sf3F6qt1erzc3F6mJrY7263GotF9/Z0zzp9Rqt1vrcG7H54fVvrrc7s+2t7XvN1uZa517xvd736pXirJ0zaBkAMMgLr3zy5yQfkd++UmzRs5ZDZaQ1A05bOuoKACNzadQVAEbGal8wvh4+4z/2hwBMD8AF0WeJ3kdM9fsDoSzLstOrEnDKbn7B/D+Mq575f58ChjFz0vx/sTawNwnhQjL/D+Mry5Jh1/yPYU8EAM63Y+b4r5/lfQgwOgPe/3+x3P+2fHPgR0uHz/j4NGsFAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA59v++r/Vcpnf6UjTajXiuWIBoEpyf6VRvxMRz0fEnyYrk3l+bsR1BgCeVvq3pFz/6+bM69OPFL187SA5ERE/+dV7v/xwodPZ+GPERPKvyf3jnY/L47UTg02dRgsAgOPtj9PFvudB/rPdB4v721nW5+/f7t4V5HH3didi7yD+5bhc7KeiEhFX/52U+a6kZ+7iaex8FBGf79f+JKaLOZDuLcvh+Hns5840fvpI/LRcoDkt/y0+9wzqAuPmk7z/eaff9ZfGjWLf//qfKnqop1f2f/lLLe4VfeDD+Pv936UB/d+NYWO88fvvdlNXjpZ9FPHFyxH7sfd6+p/9+MmA+K8PGf8vX3r51UFl2a8jbkb/+L2xZjvN9dn21vbtlebCcn25vlarzc/N33nr7pu12WKOenbwaPCPt289P6gsb//VAfGnTmj/V4ds/2/+9/4Pv3JM/K+/1i9+Gi8dEz8fE782ZPyFq78b+Nydx1862v5kmN//rSHjf/rX7SPLhgMAo9Pe2l5daDTqGxIS5z+R/5c9B9Xom/jWWcWaiP5FP3+te00fKsqyJ4o1qMd4FrNuwHlwcNFHxH9HXRkAAAAAAAAAAAAAAKCvs/iLpVG3EQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIvr/wEAAP//Rb3T2A==")
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x182)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x181242, 0x148)
pwrite64(r1, &(0x7f0000000100)="a6", 0x1, 0xfecc)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x0)
pwritev2(r2, &(0x7f0000003d00)=[{&(0x7f0000000840)="89e19bdf6d4e59ab6700f6337407abe07299bd", 0x13}, {0x0}], 0x2, 0x5412, 0x0, 0x0)
fallocate(r0, 0x0, 0xbf5, 0x2000402)
ioctl$EXT4_IOC_MOVE_EXT(r1, 0xc028660f, &(0x7f0000000040)={0xc, r0, 0x0, 0x0, 0x0, 0xfffffffffdffffff})

6.808864299s ago: executing program 5 (id=586):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
unshare(0x60600)

6.41619998s ago: executing program 1 (id=588):
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0xffffffffffffbffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000100)=0x5)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000007c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102384, 0x18ff0)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={0xffffffffffffffff, 0x0, 0xa, 0x0, &(0x7f0000000040)="09e4d449d7f81999de07", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x8}, 0x50)
r1 = socket$key(0xf, 0x3, 0x2)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r2, 0x0, 0x0)
r3 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r3, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000002c0)=@allocspi={0xf8, 0x16, 0x1, 0x70bd2b, 0x25dfdbfe, {{{@in=@private=0xa010101, @in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x4e23, 0x0, 0x4e24, 0x0, 0xa, 0x80, 0x20, 0x1d}, {@in6=@local, 0x4d5, 0x33}, @in=@dev={0xac, 0x14, 0x14, 0x10}, {0x8, 0x7b5, 0x0, 0x6, 0x9, 0xfffffffffffffffa, 0xffffffff, 0x3}, {0x2, 0x3, 0x1, 0xfffffffffffffffa}, {0x0, 0x10001, 0xfffffff9}, 0x70bd2a, 0x0, 0x0, 0x2, 0x6, 0x1}, 0x8, 0x74f}}, 0xf8}, 0x1, 0x0, 0x0, 0x10}, 0x400c8c0)
sendmsg$key(r1, &(0x7f0000000440)={0x900, 0x0, &(0x7f0000000400)={&(0x7f0000000040)={0x2, 0xa, 0xfc, 0x0, 0x7, 0x0, 0x70bd28, 0x25dfdbfe, [@sadb_x_filter={0x5, 0x1a, @in=@empty, @in=@rand_addr=0x64010100, 0x2c, 0x30}]}, 0x38}}, 0x40408c0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x0, 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000850000002a000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000000085000000"], 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x0)

6.312481283s ago: executing program 4 (id=589):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x20044e, &(0x7f0000000340)={[{@minixdf}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x1ff}}, {@grpquota}, {@noblock_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x8}}]}, 0x3, 0x451, &(0x7f0000000f80)="$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")
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
sendmsg$nl_xfrm(r0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000240)={0x1, &(0x7f0000000000)=[{0x6, 0x5, 0x7, 0x7ffc0001}]})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
msgsnd(0x0, &(0x7f0000000340)=ANY=[], 0x2000, 0x0)
msgrcv(0x0, &(0x7f0000001080)={0x0, ""/1}, 0x9, 0x2, 0x3000)
msgctl$IPC_SET(0x0, 0x1, 0x0)

6.079026474s ago: executing program 3 (id=590):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0}, 0x50)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x6, 0x1c, &(0x7f0000000d80)=@ringbuf={{0x18, 0x8, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x1}, {{0x18, 0x1, 0x1, 0x0, r1}, {}, {}, {0x85, 0x0, 0x0, 0x5}, {0x4, 0x1, 0xb, 0x9, 0xa}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x5, 0x0, 0xb, 0x9, 0x0, 0x2, 0x2}, {0x3, 0x2, 0x3, 0xa, 0x9, 0xfe00}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x0, 0x4}, {0x3, 0x0, 0x6, 0xa, 0x9, 0xfe04, 0xe1}, {0x7, 0x1, 0xb, 0x7, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0xa, 0x20}, {}, {}, {0x18, 0x2, 0x2, 0x0, r0}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2a, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

5.41150935s ago: executing program 5 (id=592):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0x8, 0x8}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f00000004c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018150000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001d00000095"], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r1, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="5a6e41dea43e63a3f70cff11c72b", 0x0, 0x2f00, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

5.364172936s ago: executing program 3 (id=593):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt$sock_buf(r0, 0x1, 0x13, &(0x7f00000000c0)=""/19, &(0x7f0000000140)=0x13)

4.956173889s ago: executing program 1 (id=594):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="0200000004000000080000000100000080000000", @ANYRES32=0x0, @ANYBLOB="000000000000fbffff8bffffff080200000000006b31d7abc95f8a8aea1e2c8cdd8d2eccdd4891ee84fde5ba6d3dea388ab91b5f33480c875a883a9df27236660a7be83b5e1a2db35346250a07530060f1a4a56e3f7526cbc302c6695baa1d5e4bf802b5090e61344defce111a1616a26da39df156e1d94748ab16631ab80c76fd568a88156a9a1a08fe0adb2508ccc710b1460320b23594b98394ff563cd52c9ef41c4992b1b0e0b62378c867af3c1b91f7fa8102c811f7c9f85af5b3e1420437cc7dbd44dbbd96c161d2dc0f94221fbfa206432a2ee51fdafb8e8660b7d620394f0e413db369db0452f6d09542fbd3409436eae61bb071c0e05ed1ea2ff3f9dba2587dd3b638b187", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00'/28], 0x50)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
ioctl$UI_SET_KEYBIT(r0, 0x40045565, 0x137)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x10, 0x1c, &(0x7f0000000580)=ANY=[@ANYBLOB="1808000000100000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000b7020000000000007b9a00fe00000000b5090800000000007baaf0ff00000000be98000000000000040800", @ANYRES32=r4, @ANYBLOB="0000000000000000b7050000080000004600000076000000bf9100000000000076080000020000008500000084000000b7000000000000009500000000000000cdbccf29d4312e4d43ef7d30bea4dec086a9f3ea398b6b2628ef30b4a916965dbb7e0b62d9ec2ede89f1ad6ce18bda9ebd34e8b44bf631c063b9de545fc0ee27ec155e9cfdb8a5f926d3465d26b1fd72917ee6ed2b7cde98fa07b43533f3f9723eb855ac9a9fbfb641859c966aa04199ce1cee62c26f9b45863e612aff6fbc831180989a9d9bdd9d727e75e7bd840d0f38398d705308fbcc6fe1a27538b4abafab5051bac7654326e7fea2d81ed5b946fb43db1ac4ae5e"], &(0x7f0000000080)='GPL\x00', 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

4.935304802s ago: executing program 5 (id=595):
r0 = openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000340)='freezer.self_freezing\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x63b2e4c70fac878, 0x10012, r0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_icmp_raw(0x2, 0x3, 0x1)
r5 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r5, 0x29, 0x2a, &(0x7f0000000200)={0x0, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}, 0x4}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
r6 = socket(0x80000000000000a, 0x2, 0x0)
setsockopt$inet6_group_source_req(r6, 0x29, 0x2a, &(0x7f0000000080)={0x20, {{0xa, 0x0, 0x0, @mcast1={0xff, 0x7}}}, {{0xa, 0x0, 0x0, @remote}}}, 0x108)
close(r5)
signalfd(r6, 0x0, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = add_key$keyring(&(0x7f00000000c0), &(0x7f0000000400)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
add_key(&(0x7f0000000440)='asymmetric\x00', 0x0, &(0x7f0000000000), 0x0, r7)
syz_fuse_handle_req(0xffffffffffffffff, &(0x7f000000c0c0)="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", 0x2000, &(0x7f0000001e40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r8 = syz_open_procfs(0x0, 0x0)
getdents(r8, 0x0, 0x51)

4.852327392s ago: executing program 3 (id=596):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = socket$nl_sock_diag(0x10, 0x3, 0x4)
getsockopt$sock_buf(r1, 0x1, 0x3b, 0x0, &(0x7f00000023c0))
r2 = getpid()
sched_setscheduler(r2, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
recvmmsg(r4, &(0x7f00000076c0)=[{{&(0x7f0000000000), 0x80, &(0x7f00000004c0)=[{&(0x7f0000000280)=""/94, 0x5e}, {&(0x7f0000000340)=""/131, 0x83}, {&(0x7f0000000400)=""/157, 0x9d}, {&(0x7f0000000100)=""/62, 0x3e}], 0x4, &(0x7f0000000500)=""/49, 0x31}, 0x3}, {{&(0x7f0000000540)=@pptp={0x18, 0x2, {0x0, @broadcast}}, 0x80, &(0x7f0000000880)=[{&(0x7f00000005c0)=""/19, 0x13}, {&(0x7f0000000600)}, {&(0x7f0000000640)=""/125, 0x7d}, {&(0x7f00000006c0)=""/174, 0xae}, {&(0x7f0000000780)=""/246, 0xf6}], 0x5, &(0x7f0000000900)=""/136, 0x88}, 0x1ff}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000030c0)=""/251, 0xfb}, 0x2}, {{&(0x7f00000031c0)=@l2={0x1f, 0x0, @fixed}, 0x80, &(0x7f0000003380)=[{&(0x7f0000003240)=""/225, 0xe1}, {&(0x7f0000003340)}], 0x2, &(0x7f00000033c0)=""/73, 0x49}, 0xffffffff}, {{&(0x7f0000003440)=@l2={0x1f, 0x0, @none}, 0x80, &(0x7f0000004640), 0x0, &(0x7f0000004680)=""/129, 0x81}, 0x5}, {{&(0x7f0000004740)=@pppol2tpin6={0x18, 0x1, {0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, {0xa, 0x0, 0x0, @loopback}}}, 0x80, &(0x7f0000004880)=[{&(0x7f00000047c0)=""/169, 0xa9}], 0x1}, 0x7f}, {{&(0x7f00000048c0)=@generic, 0x80, &(0x7f0000005c00)=[{&(0x7f0000004940)=""/42, 0x2a}, {&(0x7f0000004980)=""/4096, 0x1000}, {&(0x7f0000005980)=""/245, 0xf5}, {&(0x7f0000005a80)=""/255, 0xff}, {&(0x7f0000007980)=""/91, 0x5b}], 0x5}, 0xfffffff0}, {{&(0x7f0000005c80)=@generic, 0x80, &(0x7f0000005fc0)=[{&(0x7f0000005d00)=""/195, 0xc3}, {&(0x7f0000005e00)=""/159, 0x9f}, {&(0x7f0000005ec0)=""/41, 0x29}, {&(0x7f0000005f00)=""/152, 0x98}], 0x4, &(0x7f0000006000)=""/4096, 0x1000}, 0x8}, {{&(0x7f0000007000)=@nfc, 0x80, &(0x7f0000007480)}, 0x8001}, {{0x0, 0x0, &(0x7f0000007600)=[{&(0x7f0000007500)=""/195, 0xc3}], 0x1, &(0x7f0000007640)=""/112, 0x70}, 0x7}], 0xa, 0x40000000, &(0x7f0000007940))
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5)
timerfd_create(0x8, 0x0)
r5 = syz_open_pts(r0, 0x2000)
r6 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r6, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c)
listen(r6, 0x7c2)
syz_emit_ethernet(0x4a, &(0x7f0000000740)={@local, @broadcast, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x26, 0x3c, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x4e23, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xa, 0x10, 0x0, 0x0, 0x0, {[@nop, @exp_fastopen={0xfe, 0x3b, 0xf989, "7b0000000000001833c6a231"}]}}}}}}}, 0x0)
close_range(r0, r5, 0x0)
gettid()
r7 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r7, &(0x7f0000000080)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r8 = accept$alg(r7, 0x0, 0x0)
sendmsg$nl_route(r8, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={0x0, 0x1c}}, 0x20008800)
close(r8)

3.728261447s ago: executing program 1 (id=597):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, 0x0, 0x1b9)
r4 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r4, &(0x7f0000000400)={0x28, 0x0, 0x2710, @my=0x1}, 0x10)

3.512471195s ago: executing program 3 (id=598):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./bus\x00', 0x4d9e, &(0x7f0000000180), 0x1, 0x451, &(0x7f0000000780)="$eJzs289vFFUcAPDvTFug/LAV8Qc/1CoaG3+0tKBy8KLRxIMmJl7wWNtCkIUaWhMhRNEYPBoS78ajiX+BJ70Y9WTiVe+GhBguoqc1szvD/mC3tMu2g+znkwx9b+YN7333zdt9M283gIE1kf2TROyMiN8jYqyebS0wUf9z/dqF+X+uXZhPolp9+6+kVu7vaxfmi6LFeTvyzGQakX6WxP4O9S6fO39qrlJZPJvnp1dOvz+9fO78cydPz51YPLF4Zvbo0SOHZ158Yfb5vsR5b9bWfR8tHdj7+juX35w/dvndn78dKuJvi6NPJlY7+GS12ufqyrWrKZ0Ml9gQ1iUbA1l3jdTG/1gMRaPzxuK1T0ttHLChqrkuhy9WgbtYEmW3AChH8UGf3f8W2+bNPsp39eX6DVAW9/V8qx8ZjjQvM9J2f9tPExFx7OK/X2VbbMxzCACAFt9n859nO83/0nigqdw9+drQeL6Wsjsi7ouIPRFxf0St7IMR8dA6629fJLl5/pNe6SmwNcrmfy/la1ut879i9hfjQ3luVy3+keT4ycriofw1mYyRrVl+ZpU6fnj1ty+6HWue/2VbVn8xF8zbcWV4a+s5C3Mrc7cTc7Orn0TsG+4Uf3JjJSCJiL0Rsa/HOk4+/c2BbsduHf8q+rDOVP064ql6/1+MtvgLyerrk9PborJ4aLq4Km72y6+X3upW/23F3wdZ/2/veP3fiH88aV6vXV5/HZf++LzrPc1UT9d/Y8eW/O+HcysrZ2citiRv1BvdvH+2cW6RL8pn8U8e7Dz+d0fjldgfEdlF/HBEPBIRj+Z991hEPB4RB9viar6//umVJ97rFv+d0P8Lbf0/3lqkrf8biS3RvqdzYujUj9+1/o+N5Nre/47UUpP5nrW8/62lXb1dzQAAAPD/k0bEzkjSqRvp0XRqqv4d/j2xPa0sLa88c3zpgzML9d8IjMdIWjzpGmt6HjqT39YX+dm2/OH8ufGXQ6O1/NT8UmWh7OBhwO24afyntfGf+XOo7NYBG87vtWBwNY3/pMx2AJvP5z8MLuMfBleH8T9aRjuAzdfp8//jEtoBbL628W/ZDwaI+38YXMY/DK7m8e8LADAwlkfj1j+S75TYFr2cJXHXJCK9I5rRn0TS4yhYa2Jn2QGuP1H2OxMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEB//BcAAP//pgHvrg==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x0)
open_by_handle_at(r0, &(0x7f0000000240)=@reiserfs_2={0x8, 0x2, {0x11}}, 0x2b2300)

2.534229632s ago: executing program 1 (id=599):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0x0, 0x0)
syz_usb_disconnect(r0)
syz_usb_connect$printer(0x4, 0x2d, &(0x7f0000000080)={{0x12, 0x1, 0x530, 0x0, 0x0, 0x0, 0x8, 0x525, 0xa4a8, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x1, 0xc, 0x0, 0x3, [{{0x9, 0x4, 0x0, 0x8, 0x2, 0x7, 0x1, 0x1, 0x51, "", {{{0x9, 0x5, 0x1, 0x2, 0x40, 0xdd, 0x62, 0xf}}}}}]}}]}}, 0x0)
ioctl$EVIOCRMFF(r0, 0x5509, &(0x7f00000000c0)=0x18)

2.362742024s ago: executing program 3 (id=601):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x9}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_START_AP(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000380)={0x64, r1, 0x5, 0x70bd26, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@beacon=[@NL80211_ATTR_BEACON_HEAD={0x33, 0xe, {{{}, {}, @broadcast, @device_a, @from_mac=@broadcast}, 0x0, @default, 0x1, @void, @void, @val={0x3, 0x1}, @void, @void, @void, @void, @void, @void, @void, @void, @void, @val={0x76, 0x6, {0x3, 0xe8, 0x24, 0x401}}}}], @NL80211_ATTR_BEACON_INTERVAL={0x8}, @NL80211_ATTR_DTIM_PERIOD={0x8}, @beacon=[@NL80211_ATTR_PROBE_RESP={0x4}]]}, 0x64}, 0x1, 0x0, 0x0, 0x2400c004}, 0x20000014)

2.266890196s ago: executing program 6 (id=602):
r0 = syz_open_procfs(0x0, &(0x7f0000000380)='fdinfo\x00')
getdents(r0, &(0x7f00000000c0)=""/35, 0x23)
getdents64(r0, &(0x7f00000003c0)=""/138, 0x8a)

2.08411222s ago: executing program 6 (id=603):
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='new default user:syz 000000096'], 0x2a, 0xfffffffffffffff9)
r0 = add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r0, 0x0, &(0x7f0000000040)=@secondary)
keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='update default user::'], 0x1d, 0xfffffffffffffffd)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, 0x0, 0x0)
sendmsg$TIPC_NL_PEER_REMOVE(0xffffffffffffffff, 0x0, 0x0)
sendmsg$TIPC_NL_BEARER_SET(r1, 0x0, 0x20040840)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
socket$vsock_stream(0x28, 0x1, 0x0)
listen(r4, 0x200)
r5 = dup(r3)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{}, 0x0, &(0x7f0000000080)=r5}, 0x20)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000001010102000000000000000002000000240002800c000280040001003a00000014000180080001cd4bde2a0192000000000000000c001980080002"], 0x44}, 0x1, 0x0, 0x0, 0x40080}, 0x0)
add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe)
openat(r5, &(0x7f0000000200)='./file0\x00', 0x2, 0x12e)

2.013905019s ago: executing program 4 (id=604):
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, 0x0, 0x0, 0x2, 0x0)
close(0xffffffffffffffff)
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, 0x0, 0x0)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r3, 0x4b67, &(0x7f0000000040)={0x3ffffffffffffe96, &(0x7f0000000000)=[{0x2000, 0x5}]})

1.952683617s ago: executing program 3 (id=605):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, 0x0, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6(0xa, 0x80002, 0x0)
connect$inet6(r3, &(0x7f0000000000)={0xa, 0x4e22, 0x0, @dev, 0x1}, 0x1c)
sendmmsg$inet6(r3, &(0x7f0000003cc0)=[{{0x0, 0x97, &(0x7f0000003980), 0x171}}], 0x400000000000172, 0x4000000)

1.608328962s ago: executing program 6 (id=606):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f00000001c0)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
fremovexattr(r0, &(0x7f00000000c0)=@random={'user.', 'hfsplus\x00'})

1.608034852s ago: executing program 4 (id=607):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_usb_connect(0x1, 0xfffffffffffffd22, 0x0, 0x0)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x2, @void}, 0x10)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
bind$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000380)={0xffffffffffffffff, &(0x7f0000000300), 0x0}, 0x20)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000700)={0x1, 0x0, [{0x11000, 0x89, &(0x7f0000000580)=""/137}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
unshare(0x64000600)

1.573550336s ago: executing program 1 (id=608):
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
syz_open_dev$usbfs(&(0x7f00000004c0), 0x800000001fe, 0x82)
r2 = openat$zero(0xffffffffffffff9c, &(0x7f0000001640), 0x0, 0x0)
io_setup(0x2, &(0x7f00000001c0)=<r3=>0x0)
io_submit(r3, 0x1, &(0x7f0000000240)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x80, r2, &(0x7f0000000040)="eed2", 0x2, 0x95, 0x0, 0x2, r2}])
r4 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000040), 0xa1001)
ioctl$SNDRV_TIMER_IOCTL_SELECT(r4, 0x40345410, &(0x7f0000000300)={{0x0, 0x2}})
r5 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000600), 0x183c81)
unshare(0x22020400)
bpf$MAP_CREATE(0x0, &(0x7f0000001480)=@base={0x12, 0x22, 0x4, 0x6}, 0x48)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r5, 0xc08c5332, &(0x7f00000003c0)={0x9c9, 0x0, 0x0, 'queue1\x00', 0x200000})
ioctl$SNDRV_TIMER_IOCTL_CONTINUE(r4, 0x54a2)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(r4, 0x40505412, &(0x7f00000000c0)={0x6, 0xffff81a4, 0x40, 0x0, 0xf})

1.347468675s ago: executing program 6 (id=609):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
r4 = socket(0x28, 0x5, 0x0)
connect$vsock_stream(r4, &(0x7f0000000180)={0x28, 0x0, 0x0, @local}, 0x10)
connect$vsock_stream(r4, &(0x7f0000000400)={0x28, 0x0, 0x2710, @my=0x1}, 0x10)

1.244268228s ago: executing program 5 (id=610):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000440)=@newlink={0x24, 0x10, 0x1, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, 0x14318}, [@IFLA_XDP={0x4}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000884}, 0x0)

260.413566ms ago: executing program 6 (id=611):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
symlink(&(0x7f0000000040)='.\x00', 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000180)='./file1\x00', 0x1800011, &(0x7f0000000a00)=ANY=[@ANYRES16=0x0, @ANYBLOB="1982715f049a64c709c11c0339a37dab5521c27cf1bf05234733c6a45454e349d787abc1642dff6c12ee1b15d1334d4680a659d864c8c4b3978400000000", @ANYRESDEC, @ANYRESOCT, @ANYBLOB="e34fef60310d8cf8b38314a774f0fa06a4f1e0a0d12f3e17794e0670c41c48144163ab7c06110af0ccfe0a945c94e8c446b483c1261b2d1c60bb4c50ee09185715da09b32c95c220be58f921de50529f5ef243c442050f3b0c826e2829f13898c1d3a783dfa7f74798240321a2c203e6b890db4dcbe78c9cf00677c16a9f051ffd869e950f5bc3e5b41fc465cf1e57ddc678583b3f7a123595c246ffe8da4f82090167708b60b99adb182cf5c389b47bb77748350d2b98d429d4f0af73bf4976000000000000000000", @ANYRES16, @ANYRES32], 0x0, 0x32b, &(0x7f0000000340)="$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")
chmod(0x0, 0x23f)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000040))

147.8767ms ago: executing program 6 (id=612):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @multicast1}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x20020084, &(0x7f00000018c0)={0x2, 0x4e20}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="0f000000040000000400000012"], 0x50)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000100)={r1, &(0x7f0000000340), &(0x7f0000000040)=@tcp=r0}, 0x20)
recvmmsg(r0, &(0x7f0000001140)=[{{0x0, 0x0, &(0x7f0000000ac0)=[{&(0x7f0000000940)=""/249, 0xf9}], 0x1}, 0x2}], 0x1, 0x2, 0x0)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x9)
connect$inet(r0, &(0x7f0000002240)={0x2, 0x4e21, @multicast2}, 0x10)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, 0x0, 0x0)

12.220728ms ago: executing program 4 (id=613):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x800}}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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")
socket$inet6(0xa, 0x3, 0x5)
r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0d83)
fchown(r0, 0xffffffffffffffff, 0xee01)

11.953588ms ago: executing program 1 (id=614):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000100)={0x19, 0x3, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @cgroup_sockopt=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0)
r2 = fsmount(r1, 0x0, 0x88)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r0, r2, 0x16, 0x0, @void}, 0x10)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_opts(r3, 0x0, 0x80000000000008, &(0x7f0000000600)='u', 0x1)

0s ago: executing program 5 (id=615):
syz_socket_connect_nvme_tcp()
r0 = gettid()
r1 = getpgrp(0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000080), 0x0)
request_key(0x0, 0x0, 0x0, 0x0)
socket$inet6(0xa, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
r4 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x1040, 0x1)
close(r5)
r6 = socket$inet6(0xa, 0x2, 0x0)
sendmmsg$inet6(r6, &(0x7f0000007240)=[{{&(0x7f0000000100)={0xa, 0x4e22, 0x6, @mcast2, 0x7}, 0x1c, 0x0}}, {{0x0, 0x0, &(0x7f0000001380)=[{&(0x7f00000012c0)="1ce02c7a", 0xfe60}], 0x1}}, {{0x0, 0x0, &(0x7f0000000000), 0x1}}], 0x3, 0x1c000)
write$uinput_user_dev(r5, 0x0, 0x0)
r7 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2082)
read(r7, &(0x7f0000000100)=""/140, 0xde)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, 0x0, &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xfffffffc}, 0x94)
ioctl$SNDRV_SEQ_IOCTL_GET_QUEUE_TIMER(r7, 0xc0605345, 0x0)
tkill(r0, 0x7)

kernel console output (not intermixed with test programs):

dy
[   89.418680][ T4186] 8021q: adding VLAN 0 to HW filter on device batadv0
[   89.446497][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   89.459501][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   89.483070][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   89.498313][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   89.509154][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.522778][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[   89.565291][ T4184] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   89.604126][ T4194] device veth0_vlan entered promiscuous mode
[   89.620058][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   89.631928][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   89.643244][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   89.656170][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   89.671086][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   89.691328][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   89.704217][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   89.718809][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   89.767312][ T4194] device veth1_vlan entered promiscuous mode
[   89.812095][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   89.829481][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   89.854598][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   89.872767][   T21] Bluetooth: hci1: command 0x040f tx timeout
[   89.881984][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   89.898965][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   89.912443][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   89.924589][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   89.936153][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   89.956096][ T4241] Bluetooth: hci2: command 0x040f tx timeout
[   89.965006][ T4241] Bluetooth: hci0: command 0x040f tx timeout
[   89.983876][ T4197] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   89.998636][ T4197] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   90.011370][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   90.027440][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   90.037580][ T4241] Bluetooth: hci3: command 0x040f tx timeout
[   90.042089][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   90.048415][ T4241] Bluetooth: hci4: command 0x040f tx timeout
[   90.075266][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   90.091443][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   90.142901][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   90.152493][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   90.200722][ T4194] device veth0_macvtap entered promiscuous mode
[   90.219943][ T4186] device veth0_vlan entered promiscuous mode
[   90.242216][ T4198] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.252010][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   90.265622][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   90.275880][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   90.287138][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   90.299246][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   90.308012][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   90.319993][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   90.350472][ T4194] device veth1_macvtap entered promiscuous mode
[   90.378229][ T4186] device veth1_vlan entered promiscuous mode
[   90.392982][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   90.402313][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   90.421227][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   90.439654][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   90.483510][ T4184] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.500184][ T4194] batman_adv: batadv0: Interface activated: batadv_slave_0
[   90.533015][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   90.545427][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   90.558692][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   90.575169][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   90.587139][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   90.605500][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   90.626246][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   90.635797][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   90.650012][ T4186] device veth0_macvtap entered promiscuous mode
[   90.674486][ T4186] device veth1_macvtap entered promiscuous mode
[   90.690562][ T4197] 8021q: adding VLAN 0 to HW filter on device batadv0
[   90.715152][ T4194] batman_adv: batadv0: Interface activated: batadv_slave_1
[   90.739181][ T4198] device veth0_vlan entered promiscuous mode
[   90.769381][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   90.781615][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   90.792442][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   90.803912][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   90.816777][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   90.827241][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   90.840376][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   90.851415][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   90.862437][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   90.872515][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   90.888446][ T4194] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   90.900765][ T4194] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   90.911378][ T4194] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   90.921692][ T4194] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   90.941171][ T4198] device veth1_vlan entered promiscuous mode
[   90.969290][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   90.983873][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.001390][ T4186] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.035067][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   91.054194][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   91.070659][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   91.089988][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   91.120100][ T4198] device veth0_macvtap entered promiscuous mode
[   91.132302][ T4186] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.145228][ T4186] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.161942][ T4186] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.182221][ T4184] device veth0_vlan entered promiscuous mode
[   91.205459][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   91.228359][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   91.248247][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   91.261615][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   91.276285][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   91.292026][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   91.305351][ T4198] device veth1_macvtap entered promiscuous mode
[   91.318470][ T4186] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.330306][ T4186] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.341870][ T4186] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.355048][ T4186] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.400932][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   91.417323][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   91.435012][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   91.449624][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   91.497957][ T4184] device veth1_vlan entered promiscuous mode
[   91.559171][ T4198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.572296][ T4198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.586504][ T4198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   91.600151][ T4198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.615102][ T4198] batman_adv: batadv0: Interface activated: batadv_slave_0
[   91.631066][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   91.644892][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   91.657096][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   91.670106][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   91.694455][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.697414][ T4198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.721412][ T4198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.726579][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.739117][ T4198] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   91.756033][ T4198] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   91.770746][ T4198] batman_adv: batadv0: Interface activated: batadv_slave_1
[   91.824804][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   91.838347][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   91.859337][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   91.879932][ T4198] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   91.894445][ T4198] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   91.908906][ T4198] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   91.921183][ T4198] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   91.946996][ T4230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.953297][ T2239] Bluetooth: hci1: command 0x0419 tx timeout
[   91.985273][ T4230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.991477][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   92.008447][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   92.020617][ T4197] device veth0_vlan entered promiscuous mode
[   92.033656][ T4234] Bluetooth: hci0: command 0x0419 tx timeout
[   92.041365][ T4234] Bluetooth: hci2: command 0x0419 tx timeout
[   92.062964][ T4230] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.070626][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   92.085131][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   92.094451][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   92.095158][ T4230] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.107431][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   92.123451][   T25] Bluetooth: hci4: command 0x0419 tx timeout
[   92.133820][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   92.143146][   T25] Bluetooth: hci3: command 0x0419 tx timeout
[   92.155911][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   92.175064][ T4184] device veth0_macvtap entered promiscuous mode
[   92.191170][ T4184] device veth1_macvtap entered promiscuous mode
[   92.226617][ T1275] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.237382][ T4197] device veth1_vlan entered promiscuous mode
[   92.249816][ T1275] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.301005][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   92.311325][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   92.334682][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   92.345881][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   92.411993][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.430913][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.444744][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.457997][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.473071][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   92.488892][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.505249][ T4184] batman_adv: batadv0: Interface activated: batadv_slave_0
[   92.523417][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   92.551714][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   92.564264][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   92.606779][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.638219][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.658013][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.672838][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.687041][ T4184] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   92.700865][ T4184] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   92.714457][ T4184] batman_adv: batadv0: Interface activated: batadv_slave_1
[   92.734068][ T4230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   92.769471][ T4197] device veth0_macvtap entered promiscuous mode
[   92.783764][ T4230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   92.812586][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   92.835583][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   92.873672][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   92.900234][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   92.913854][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   92.931990][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   92.959917][ T4184] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   92.978093][ T4184] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   92.991416][ T4184] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.025015][ T4184] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.071243][ T4197] device veth1_macvtap entered promiscuous mode
[   93.242796][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #1c2!!!
[   93.254533][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #40!!!
[   93.271212][ T4308] loop2: detected capacity change from 0 to 8
[   93.281297][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #02!!!
[   93.292288][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   93.303566][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   93.313475][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   93.324084][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   93.333697][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #82!!!
[   93.344204][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[   93.353777][    T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #182!!!
[   94.844520][ T4307] sched: RT throttling activated
[   94.866787][ T4230] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   95.484820][ T4310] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   95.515793][ T4308] SQUASHFS error: Failed to read block 0xe000000000001ea: -5
[   95.527078][ T4308] unable to read xattr id index table
[   95.583906][ T4307] netlink: 'syz.2.3': attribute type 1 has an invalid length.
[   95.594413][ T4307] netlink: 212400 bytes leftover after parsing attributes in process `syz.2.3'.
[   95.611287][ T4310] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.652558][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   95.742306][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.809393][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   95.822199][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   95.976372][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   95.990410][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   96.002642][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   96.018577][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   96.039628][ T4197] batman_adv: batadv0: Interface activated: batadv_slave_0
[   96.052681][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   96.098848][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   96.136713][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   96.441061][ T4317] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   96.501391][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   96.552722][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   96.589030][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   96.602771][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   96.630625][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   96.675234][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   96.696239][ T4197] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   96.708988][ T4197] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   96.724153][ T4197] batman_adv: batadv0: Interface activated: batadv_slave_1
[   96.809036][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   96.824637][ T1275] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   97.032300][ T4333] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   97.170580][ T4331] loop1: detected capacity change from 0 to 4096
[   97.197081][ T4197] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   97.213673][ T4197] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   97.225377][ T4197] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   97.269459][ T4197] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   97.327614][ T1275] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.366411][ T4331] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[   97.392913][ T1275] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.484077][ T4315] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   97.512312][  T155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.575776][ T4331] ntfs3: loop1: Failed to load $Extend.
[   97.592461][  T155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.616073][ T1275] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.665671][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   97.682891][ T1275] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.727221][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   97.787392][  T155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   97.822783][  T155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   97.892438][ T4344] device syzkaller0 entered promiscuous mode
[   97.925499][ T4310] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   97.977633][ T4349] netlink: 'syz.0.1': attribute type 2 has an invalid length.
[   98.115622][ T1107] cfg80211: failed to load regulatory.db
[   98.617869][ T4361] loop2: detected capacity change from 0 to 512
[   98.726099][ T4361] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   98.809218][ T4361] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   98.964290][ T4361] EXT4-fs (loop2): 1 truncate cleaned up
[   99.021806][ T4361] EXT4-fs (loop2): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000fff,barrier=0x0000000000000000,stripe=0x0000000000004000,errors=remount-ro,i_version,. Quota mode: none.
[   99.076961][ T4375] loop3: detected capacity change from 0 to 1024
[   99.151480][ T4361] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2229: inode #15: comm syz.2.18: corrupted in-inode xattr
[   99.195623][ T4375] EXT4-fs (loop3): Ignoring removed oldalloc option
[   99.268426][ T4375] EXT4-fs (loop3): mounted filesystem without journal. Opts: stripe=0x0000000000000001,noauto_da_alloc,jqfmt=vfsold,data_err=ignore,noauto_da_alloc,delalloc,resuid=0x0000000000000000,oldalloc,jqfmt=vfsv1,,errors=continue. Quota mode: none.
[   99.294451][ T4347] loop0: detected capacity change from 0 to 32768
[   99.305706][ T4361] EXT4-fs (loop2): Remounting filesystem read-only
[   99.368598][ T4361] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1761: inode #15: comm syz.2.18: unable to update i_inline_off
[   99.410169][ T4347] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop0 scanned by syz.0.1 (4347)
[   99.442753][ T4361] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2826: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   99.540923][ T4347] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[   99.579721][ T4347] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8)
[   99.614783][ T4347] BTRFS info (device loop0): use lzo compression, level 0
[   99.661451][ T4347] BTRFS error (device loop0): unrecognized mount option 'fragment=data'
[   99.711488][ T4347] BTRFS error (device loop0): open_ctree failed: -22
[  101.592201][ T4388] loop4: detected capacity change from 0 to 512
[  101.788304][ T4388] EXT4-fs (loop4): mounted filesystem without journal. Opts: lazytime,nodelalloc,,errors=continue. Quota mode: writeback.
[  101.863105][ T4388] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  102.061489][ T4388] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:476: comm syz.4.25: Invalid block bitmap block 0 in block_group 0
[  102.102269][ T4388] EXT4-fs error (device loop4): ext4_discard_preallocations:5126: comm syz.4.25: Error -117 reading block bitmap for 0
[  102.141097][ T4388] EXT4-fs error (device loop4): ext4_free_blocks:6218: comm syz.4.25: Freeing blocks not in datazone - block = 20, count = 1
[  102.170516][ T4388] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5850: Corrupt filesystem
[  102.190358][   T26] audit: type=1800 audit(1768544563.744:2): pid=4401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.27" name="/" dev="fuse" ino=1 res=0 errno=0
[  102.233209][ T4388] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #15: comm syz.4.25: mark_inode_dirty error
[  102.291330][ T4401] loop2: detected capacity change from 0 to 764
[  102.320012][ T4388] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5850: Corrupt filesystem
[  102.363486][ T4401] =======================================================
[  102.363486][ T4401] WARNING: The mand mount option has been deprecated and
[  102.363486][ T4401]          and is ignored by this kernel. Remove the mand
[  102.363486][ T4401]          option from the mount to silence this warning.
[  102.363486][ T4401] =======================================================
[  102.424086][ T4388] EXT4-fs error (device loop4): ext4_punch_hole:4119: inode #15: comm syz.4.25: mark_inode_dirty error
[  102.482879][ T1107] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  102.608016][ T4197] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5850: Corrupt filesystem
[  102.653481][ T4197] EXT4-fs error (device loop4): ext4_quota_off:6515: inode #4: comm syz-executor: mark_inode_dirty error
[  102.873031][ T1107] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  102.914772][ T1107] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3
[  102.981031][ T4409] loop3: detected capacity change from 0 to 8
[  103.033134][ T1107] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[  103.082722][ T1107] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  103.124059][   T26] audit: type=1800 audit(1768544564.684:3): pid=4409 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.33" name="file1" dev="loop3" ino=5 res=0 errno=0
[  103.149159][ T1107] usb 1-1: SerialNumber: syz
[  103.167950][ T4409] SQUASHFS error: Failed to read block 0x6e6: -5
[  103.209695][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.245315][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.280042][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.329022][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.366889][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.396013][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.420679][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.436700][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.467475][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.489610][ T1107] usb 1-1: 0:2 : does not exist
[  103.556504][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.606964][ T4414] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.616401][ T4414] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.629158][ T1107] usb 1-1: USB disconnect, device number 2
[  103.653293][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.653904][ T4414] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.699013][ T4414] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.748381][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.748826][ T4414] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.769619][ T4298] udevd[4298]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  103.793559][ T4414] SQUASHFS error: read_indexes: reading block [6e4:0]
[  103.805356][ T4414] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  103.895816][ T4414] SQUASHFS error: read_indexes: reading block [6e4:0]
[  104.050291][ T4423] loop4: detected capacity change from 0 to 128
[  104.175569][   T26] audit: type=1800 audit(1768544565.734:4): pid=4423 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.35" name="file1" dev="loop4" ino=1048590 res=0 errno=0
[  104.554063][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  104.587310][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  104.631085][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  104.655882][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  104.704721][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  104.772839][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  104.792979][ T4439] binder: 4438:4439 ioctl c00c620f 0 returned -14
[  104.810257][ T4409] SQUASHFS error: Unable to read metadata cache entry [6e4]
[  104.850142][ T4409] SQUASHFS error: read_indexes: reading block [6e4:0]
[  104.920787][ T4440] loop1: detected capacity change from 0 to 128
[  105.040996][ T4440] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  105.070801][ T4440] ext4 filesystem being mounted at /5/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  108.209543][ T4464] loop0: detected capacity change from 0 to 1024
[  109.032958][ T4464] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[  109.428301][ T4464] EXT4-fs (loop0): mounted filesystem without journal. Opts: barrier,nodioread_nolock,noquota,mblk_io_submit,auto_da_alloc,nodioread_nolock,,errors=continue. Quota mode: none.
[  109.453006][ T4464] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  110.492777][ T2239] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  110.668640][ T4502] capability: warning: `syz.3.61' uses deprecated v2 capabilities in a way that may be insecure
[  110.894363][ T2239] usb 2-1: Using ep0 maxpacket: 16
[  111.093640][ T2239] usb 2-1: config 0 has an invalid interface number: 85 but max is 0
[  113.170162][ T2239] usb 2-1: config 0 has no interface number 0
[  113.184812][ T4507] loop3: detected capacity change from 0 to 512
[  113.237285][ T2239] usb 2-1: config 0 interface 85 has no altsetting 0
[  113.342874][ T2239] usb 2-1: string descriptor 0 read error: -71
[  113.435302][ T4507] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  113.464224][ T2239] usb 2-1: New USB device found, idVendor=0b05, idProduct=17ba, bcdDevice=9d.75
[  113.593575][ T2239] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  114.199225][ T2239] usb 2-1: config 0 descriptor??
[  114.208521][ T4507] EXT4-fs (loop3): 1 truncate cleaned up
[  114.232770][ T4507] EXT4-fs (loop3): mounted filesystem without journal. Opts: journal_ioprio=0x0000000000000001,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000068,lazytime,nombcache,noload,,errors=continue. Quota mode: none.
[  114.302864][ T2239] usb 2-1: can't set config #0, error -71
[  114.330877][ T2239] usb 2-1: USB disconnect, device number 2
[  114.339625][   T25] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  114.716316][ T4530] Zero length message leads to an empty skb
[  114.773128][   T25] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  114.801133][   T25] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  114.857444][   T25] usb 1-1: config 0 descriptor??
[  114.859724][ T4534] loop1: detected capacity change from 0 to 128
[  114.924356][   T25] cp210x 1-1:0.0: cp210x converter detected
[  115.052086][ T4542] loop4: detected capacity change from 0 to 2048
[  115.154488][   T25] usb 1-1: cp210x converter now attached to ttyUSB0
[  115.190019][ T4542] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  115.316929][ T4545] loop2: detected capacity change from 0 to 512
[  115.431721][ T4549] loop1: detected capacity change from 0 to 1024
[  115.597642][ T4549] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  115.644139][ T4545] EXT4-fs (loop2): Test dummy encryption mode enabled
[  115.654269][ T4545] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  115.681415][ T4545] EXT4-fs error (device loop2): ext4_orphan_get:1427: comm syz.2.75: bad orphan inode 131083
[  115.770626][ T4545] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,init_itable,noload,,errors=continue. Quota mode: none.
[  115.829386][ T4549] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,norecovery,min_batch_time=0x0000000000000001,nojournal_checksum,debug_want_extra_isize=0x0000000000000004,nodelalloc,errors=remount-ro,acl,auto_da_alloc=0x0000000000000343,jqfmt=vfsold,barrier=0x00000000000000. Quota mode: none.
[  115.866535][ T4560] loop3: detected capacity change from 0 to 512
[  115.968881][ T4545] fscrypt: AES-256-XTS using implementation "xts-aes-aesni"
[  115.984902][ T4560] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  117.048410][   T26] audit: type=1326 audit(1768544577.844:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  117.117091][ T4560] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.78: invalid indirect mapped block 4294967295 (level 1)
[  117.161012][   T26] audit: type=1326 audit(1768544578.404:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=302 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  117.196251][ T4560] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.78: invalid indirect mapped block 4294967295 (level 1)
[  117.227699][   T13] usb 1-1: USB disconnect, device number 3
[  117.242520][   T13] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  117.254488][   T13] cp210x 1-1:0.0: device disconnected
[  117.276404][ T4566] EXT4-fs error (device loop1): __ext4_get_inode_loc:4327: comm syz.1.76: Invalid inode table block 10918378861586546688 in block_group 0
[  118.934649][ T4519] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:476: comm ext4lazyinit: Invalid block bitmap block 10167649704456704855 in block_group 0
[  118.973602][ T4566] EXT4-fs (loop1): Remounting filesystem read-only
[  118.982829][   T26] audit: type=1326 audit(1768544578.404:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  119.014546][ T4560] EXT4-fs (loop3): 2 truncates cleaned up
[  119.022398][ T4573] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  119.044101][ T4560] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpjquota=,init_itable=0x0000000000000007,dioread_nolock,auto_da_alloc=0x000000007fffffff,,errors=continue. Quota mode: writeback.
[  119.084105][ T4519] EXT4-fs (loop1): Remounting filesystem read-only
[  119.144850][   T26] audit: type=1326 audit(1768544578.404:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  119.247935][   T26] audit: type=1326 audit(1768544578.404:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  119.433119][   T26] audit: type=1326 audit(1768544578.404:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  119.488244][   T26] audit: type=1326 audit(1768544578.404:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  119.516196][   T26] audit: type=1326 audit(1768544578.404:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  119.549509][   T26] audit: type=1326 audit(1768544578.404:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  119.634901][   T26] audit: type=1326 audit(1768544578.404:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4565 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7fc00000
[  122.988736][ T4605] loop2: detected capacity change from 0 to 4096
[  123.139686][ T4605] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  123.165085][ T4588] bridge0: port 2(bridge_slave_1) entered disabled state
[  123.175210][ T4588] bridge0: port 1(bridge_slave_0) entered disabled state
[  123.220939][ T4605] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,nomblk_io_submit,,errors=continue. Quota mode: writeback.
[  123.454442][   T25] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  125.423027][   T25] usb 4-1: unable to get BOS descriptor or descriptor too short
[  125.472930][   T25] usb 4-1: not running at top speed; connect to a high speed hub
[  125.573015][   T25] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid maxpacket 1023, setting to 64
[  125.637057][   T25] usb 4-1: language id specifier not provided by device, defaulting to English
[  125.763133][   T25] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  125.792979][   T25] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  125.828736][   T25] usb 4-1: Product: syz
[  125.834444][   T25] usb 4-1: SerialNumber: syz
[  126.012745][ T4588] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  126.176387][ T4588] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  126.203162][   T25] cdc_ncm 4-1:1.0: bind() failure
[  126.243940][   T25] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  126.260024][   T25] cdc_ncm 4-1:1.1: bind() failure
[  126.299136][   T25] usb 4-1: USB disconnect, device number 2
[  126.801934][ T4626] loop3: detected capacity change from 0 to 128
[  126.862074][ T4626] EXT4-fs (loop3): mounted filesystem without journal. Opts: noquota,errors=remount-ro,barrier=0x0000000000000009,norecovery,. Quota mode: none.
[  126.882149][ T4626] ext4 filesystem being mounted at /26/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.926120][ T4626] EXT4-fs error (device loop3): htree_dirblock_to_tree:1112: inode #2: block 4: comm syz.3.95: bad entry in directory: rec_len is smaller than minimal - offset=1012, inode=128, rec_len=9, size=1024 fake=0
[  126.972865][ T4626] EXT4-fs (loop3): Remounting filesystem read-only
[  127.986924][ T4588] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  127.999638][ T4588] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  128.017294][ T4588] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  128.029822][ T4588] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  128.121055][ T4607] kthread_run failed with err -4
[  128.153084][ T4623] netlink: 60 bytes leftover after parsing attributes in process `syz.2.93'.
[  128.168217][ T4623] netlink: 60 bytes leftover after parsing attributes in process `syz.2.93'.
[  128.178493][ T4623] netlink: 25 bytes leftover after parsing attributes in process `syz.2.93'.
[  128.228617][ T4588] syz.0.85 (4588) used greatest stack depth: 21128 bytes left
[  128.573562][ T4665] loop1: detected capacity change from 0 to 1024
[  129.689008][ T4681] loop0: detected capacity change from 0 to 1024
[  130.081926][ T4687] hfsplus: bad catalog folder thread
[  130.089438][ T4681] hfsplus: xattr searching failed
[  133.352934][ T4248] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  133.628177][ T4727] loop2: detected capacity change from 0 to 128
[  133.655985][ T4248] usb 2-1: Using ep0 maxpacket: 16
[  133.720030][ T4725] loop3: detected capacity change from 0 to 8192
[  133.834367][ T4248] usb 2-1: unable to get BOS descriptor or descriptor too short
[  133.923036][ T4248] usb 2-1: config 1 has an invalid interface number: 206 but max is 0
[  133.944641][ T4248] usb 2-1: config 1 has no interface number 0
[  134.243353][ T4248] usb 2-1: string descriptor 0 read error: -22
[  134.263460][ T4248] usb 2-1: New USB device found, idVendor=152d, idProduct=0310, bcdDevice=3b.0a
[  134.341725][ T4749] loop3: detected capacity change from 0 to 4096
[  134.369132][ T4248] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  134.390988][ T4749] EXT4-fs (loop3): Test dummy encryption mode enabled
[  134.513516][ T4749] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  134.619998][ T4749] System zones: 0-5
[  134.645679][ T4754] netlink: 16 bytes leftover after parsing attributes in process `syz.0.134'.
[  134.670784][ T4749] EXT4-fs (loop3): mounted filesystem without journal. Opts: debug,delalloc,journal_ioprio=0x0000000000000000,test_dummy_encryption,nodiscard,data_err=ignore,acl,debug_want_extra_isize=0x0000000000000040,,errors=continue. Quota mode: writeback.
[  134.678514][ T4754] netlink: 'syz.0.134': attribute type 1 has an invalid length.
[  134.715524][ T4248] usb 2-1: USB disconnect, device number 3
[  136.263205][ T4754] netlink: 'syz.0.134': attribute type 2 has an invalid length.
[  136.311403][ T4754] netlink: 28 bytes leftover after parsing attributes in process `syz.0.134'.
[  137.349905][ T4763] loop1: detected capacity change from 0 to 1024
[  137.471428][ T4772] loop0: detected capacity change from 0 to 512
[  137.482935][ T4233] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[  137.498603][ T4773] loop2: detected capacity change from 0 to 512
[  137.506436][ T4233] Bluetooth: hci1: Injecting HCI hardware error event
[  137.513940][ T4192] Bluetooth: hci1: hardware error 0x00
[  137.553279][ T4763] EXT4-fs (loop1): inline encryption not supported
[  137.747735][ T4772] EXT4-fs (loop0): Unsupported blocksize for fs-verity
[  137.793436][ T4773] EXT4-fs (loop2): Ignoring removed bh option
[  137.857171][ T4773] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  138.473750][ T4773] EXT4-fs (loop2): 1 truncate cleaned up
[  138.572949][ T4773] EXT4-fs (loop2): mounted filesystem without journal. Opts: noload,max_dir_size_kb=0x0000000000000001,bh,noload,data_err=ignore,usrjquota=,,errors=continue. Quota mode: none.
[  139.198168][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  139.212205][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  139.278190][ T4186] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294901760 (level 0)
[  139.945334][ T4186] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 4294967295 (level 1)
[  140.000650][ T4186] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz-executor: invalid indirect mapped block 65535 (level 2)
[  140.028035][ T4801] loop3: detected capacity change from 0 to 8
[  140.173283][ T4808] loop4: detected capacity change from 0 to 128
[  140.266557][ T4808] EXT4-fs (loop4): mounted filesystem without journal. Opts: norecovery,nouid32,,errors=continue. Quota mode: none.
[  140.343881][ T4817] loop2: detected capacity change from 0 to 256
[  140.345140][ T4808] ext4 filesystem being mounted at /23/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.413836][ T4817] exfat: Unknown parameter 'sys_tz'
[  140.471502][ T4820] loop3: detected capacity change from 0 to 512
[  140.491069][ T4820] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  140.493072][   T26] kauditd_printk_skb: 56 callbacks suppressed
[  140.493117][   T26] audit: type=1800 audit(1768544602.044:71): pid=4808 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.139" name="file1" dev="loop4" ino=12 res=0 errno=0
[  140.551910][ T4817] loop2: detected capacity change from 0 to 512
[  141.730683][ T4832] loop3: detected capacity change from 0 to 128
[  141.826322][ T4835] loop2: detected capacity change from 0 to 1024
[  141.841664][ T4832] EXT4-fs (loop3): Ignoring removed nobh option
[  141.886762][ T4838] loop0: detected capacity change from 0 to 4096
[  141.941650][ T4832] EXT4-fs (loop3): mounted filesystem without journal. Opts: nobh,max_dir_size_kb=0x0000000000000002,,errors=continue. Quota mode: none.
[  142.004149][ T4838] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  142.027457][ T4838] EXT4-fs (loop0): re-mounted. Opts: (null). Quota mode: writeback.
[  142.038259][ T4832] ext4 filesystem being mounted at /43/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  142.280130][ T4835] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  142.305185][ T4844] loop4: detected capacity change from 0 to 2048
[  142.754359][ T4844] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  143.093675][   T26] audit: type=1800 audit(1768544604.654:72): pid=4844 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.164" name="bus" dev="loop4" ino=1436 res=0 errno=0
[  144.694631][ T4865] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  145.023788][ T4870] ptrace attach of "./syz-executor exec"[4194] was attempted by ""[4870]
[  145.947439][ T4878] device bridge1 entered promiscuous mode
[  146.993316][ T4314] wlan1: Trigger new scan to find an IBSS to join
[  147.051098][   T26] audit: type=1326 audit(1768544608.604:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a9ed54749 code=0x7ffc0000
[  147.130812][   T26] audit: type=1326 audit(1768544608.634:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a9ed54749 code=0x7ffc0000
[  147.181081][   T26] audit: type=1326 audit(1768544608.634:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8a9ed54749 code=0x7ffc0000
[  147.290770][   T26] audit: type=1326 audit(1768544608.634:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f8a9ed52f90 code=0x7ffc0000
[  147.352724][ T4277] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  147.499422][   T26] audit: type=1326 audit(1768544608.644:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a9ed5434b code=0x7ffc0000
[  147.562723][ T4234] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  147.686156][   T26] audit: type=1326 audit(1768544608.644:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a9ed5434b code=0x7ffc0000
[  147.723195][ T4277] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.768939][ T4277] usb 1-1: config 0 has no interfaces?
[  147.844819][   T26] audit: type=1326 audit(1768544608.644:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a9ed5434b code=0x7ffc0000
[  147.923024][ T4234] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  147.942420][   T26] audit: type=1326 audit(1768544608.644:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a9ed5434b code=0x7ffc0000
[  147.947860][ T4234] usb 5-1: New USB device found, idVendor=050d, idProduct=011b, bcdDevice=6f.a4
[  147.983236][ T4277] usb 1-1: New USB device found, idVendor=0a5c, idProduct=bd1f, bcdDevice=53.1a
[  148.009489][   T26] audit: type=1326 audit(1768544608.944:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a9ed5434b code=0x7ffc0000
[  148.013499][ T4277] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  148.058117][ T4234] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  148.067548][ T4277] usb 1-1: Product: syz
[  148.072191][ T4277] usb 1-1: Manufacturer: syz
[  148.085413][ T4234] usb 5-1: config 0 descriptor??
[  148.091275][ T4277] usb 1-1: SerialNumber: syz
[  148.104549][ T4277] usb 1-1: config 0 descriptor??
[  148.111562][   T26] audit: type=1326 audit(1768544608.964:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4886 comm="syz.0.178" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f8a9ed5434b code=0x7ffc0000
[  148.143795][ T4234] usb 5-1: bad CDC descriptors
[  148.155540][ T4234] usb 5-1: bad CDC descriptors
[  148.345518][ T4234] usb 5-1: USB disconnect, device number 2
[  148.382202][ T4277] usb 1-1: USB disconnect, device number 4
[  148.596626][ T4908] loop1: detected capacity change from 0 to 512
[  148.680846][ T4906] xt_hashlimit: max too large, truncated to 1048576
[  150.635111][ T4942] loop1: detected capacity change from 0 to 128
[  150.687101][ T4947] loop3: detected capacity change from 0 to 512
[  150.750918][ T4947] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  150.782115][ T4942] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  150.820629][ T4947] EXT4-fs error (device loop3): ext4_orphan_get:1427: comm syz.3.200: bad orphan inode 131083
[  150.840642][ T4942] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  150.863752][ T4947] EXT4-fs (loop3): mounted filesystem without journal. Opts: stripe=0x000000000000003d,init_itable,mb_optimize_scan=0x0000000000000001,,errors=continue. Quota mode: none.
[  151.855677][  T154] EXT4-fs error (device loop3): __ext4_get_inode_loc:4327: comm kworker/u4:2: Invalid inode table block 2322219158 in block_group 0
[  152.744662][ T4963] chnl_net:caif_netlink_parms(): no params data found
[  152.752897][ T1275] wlan1: Trigger new scan to find an IBSS to join
[  152.992980][ T4230] wlan1: Trigger new scan to find an IBSS to join
[  153.240389][ T4991] loop4: detected capacity change from 0 to 1024
[  153.553680][ T4645] Bluetooth: hci0: command 0x0409 tx timeout
[  154.068415][ T5007] loop1: detected capacity change from 0 to 128
[  154.213899][ T5004] overlayfs: missing 'lowerdir'
[  154.315372][ T4521] wlan1: Creating new IBSS network, BSSID 7a:15:8d:fd:d7:e0
[  154.392248][ T4963] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.417960][ T4963] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.449791][ T4963] device bridge_slave_0 entered promiscuous mode
[  154.480208][ T4963] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.507711][ T4963] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.539488][ T4963] device bridge_slave_1 entered promiscuous mode
[  154.683431][ T4963] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.728350][ T4963] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.797635][ T5017] loop3: detected capacity change from 0 to 256
[  154.936365][ T5020] loop2: detected capacity change from 0 to 256
[  154.958624][ T4963] team0: Port device team_slave_0 added
[  154.978452][ T4963] team0: Port device team_slave_1 added
[  155.068170][ T4963] batman_adv: batadv0: Adding interface: batadv_slave_0
[  155.090635][ T4963] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.169230][ T4963] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  155.213409][ T4963] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.256980][ T4963] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.356377][ T4963] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.613397][ T5017] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  155.627992][ T5020] exFAT-fs (loop2): failed to load upcase table (idx : 0x00011d5f, chksum : 0x09863542, utbl_chksum : 0x000cd30d)
[  155.723067][ T4645] Bluetooth: hci0: command 0x041b tx timeout
[  155.907615][ T4963] device hsr_slave_0 entered promiscuous mode
[  155.951007][ T5020] exFAT-fs (loop2): hint_cluster is invalid (1)
[  155.978183][ T4963] device hsr_slave_1 entered promiscuous mode
[  156.019008][ T5037] loop1: detected capacity change from 0 to 128
[  156.023433][ T4963] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  156.054342][ T5020] exFAT-fs (loop2): error, invalid access to exfat cache (entry 0x00000000)
[  156.073627][ T4963] Cannot create hsr debugfs directory
[  156.096095][ T5020] exFAT-fs (loop2): Filesystem has been set read-only
[  156.123046][ T5020] exFAT-fs (loop2): error, failed to bmap (inode : ffff8880524314e0 iblock : 9, err : -5)
[  156.140762][ T5037] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[  156.235673][ T5037] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  156.238418][ T5045] loop3: detected capacity change from 0 to 164
[  156.262647][ T5020] exFAT-fs (loop2): error, tried to truncate zeroed cluster.
[  156.270473][ T5020] exFAT-fs (loop2): error, tried to truncate zeroed cluster.
[  156.564455][ T4234] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  156.720893][ T5050] loop2: detected capacity change from 0 to 1024
[  156.776060][ T5052] loop3: detected capacity change from 0 to 256
[  156.852661][ T4234] usb 2-1: Using ep0 maxpacket: 16
[  156.863698][ T5052] exfat: Deprecated parameter 'utf8'
[  156.887837][ T5052] exfat: Deprecated parameter 'namecase'
[  156.910538][   T26] kauditd_printk_skb: 27 callbacks suppressed
[  156.910554][   T26] audit: type=1800 audit(1768544618.464:110): pid=5050 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.224" name="file1" dev="loop2" ino=20 res=0 errno=0
[  156.946142][ T5052] exfat: Deprecated parameter 'utf8'
[  157.024239][ T4775] wlan1: Trigger new scan to find an IBSS to join
[  157.111723][ T5052] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d)
[  157.149571][ T4234] usb 2-1: config 0 has an invalid interface number: 105 but max is 0
[  157.168888][ T4234] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  157.180354][ T4234] usb 2-1: config 0 has no interface number 0
[  157.285936][ T5055] attempt to access beyond end of device
[  157.285936][ T5055] loop2: rw=16812033, want=2560, limit=1024
[  157.580680][ T4192] Bluetooth: hci2: unknown advertising packet type: 0x65
[  157.816545][ T4277] Bluetooth: hci0: command 0x040f tx timeout
[  157.934465][ T4234] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[  157.952760][ T4234] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.969148][ T4234] usb 2-1: Product: syz
[  157.974565][ T4234] usb 2-1: Manufacturer: syz
[  157.979388][ T4234] usb 2-1: SerialNumber: syz
[  157.986475][ T4234] usb 2-1: config 0 descriptor??
[  158.014578][ T4521] wlan1: Creating new IBSS network, BSSID ea:08:12:bf:9e:1f
[  158.025134][ T4234] usb 2-1: Found UVC 0.00 device syz (046d:08f3)
[  158.032054][ T4234] usb 2-1: No valid video chain found.
[  158.227941][ T4277] usb 2-1: USB disconnect, device number 4
[  158.246211][ T4963] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  158.300380][ T4963] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  158.300661][ T5073] capability: warning: `syz.3.229' uses 32-bit capabilities (legacy support in use)
[  158.361264][ T4963] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  158.491398][ T4963] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  158.621512][ T5086] loop3: detected capacity change from 0 to 2048
[  158.814219][ T5086] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  160.009768][ T4299] Bluetooth: hci0: command 0x0419 tx timeout
[  160.019442][ T5106] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1147: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  160.063156][ T5106] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 16 with max blocks 152 with error 28
[  161.535544][ T5106] EXT4-fs (loop3): This should not happen!! Data will be lost
[  161.535544][ T5106] 
[  161.582908][ T5106] EXT4-fs (loop3): Total free blocks count 0
[  161.590306][ T5106] EXT4-fs (loop3): Free/Dirty block details
[  161.598754][ T5106] EXT4-fs (loop3): free_blocks=2415919104
[  161.605586][ T5106] EXT4-fs (loop3): dirty_blocks=272
[  161.611339][ T5106] EXT4-fs (loop3): Block reservation details
[  161.622331][ T5106] EXT4-fs (loop3): i_reserved_data_blocks=17
[  161.653748][ T4314] device hsr_slave_0 left promiscuous mode
[  161.692858][ T4314] device hsr_slave_1 left promiscuous mode
[  161.799750][ T4775] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 16 with error 28
[  161.816798][ T4775] EXT4-fs (loop3): This should not happen!! Data will be lost
[  161.816798][ T4775] 
[  161.830039][ T4314] batman_adv: batadv0: Removing interface: batadv_slave_0
[  161.870401][ T4314] batman_adv: batadv0: Removing interface: batadv_slave_1
[  161.922372][ T4314] device bridge_slave_1 left promiscuous mode
[  161.967779][ T4314] bridge0: port 2(bridge_slave_1) entered disabled state
[  162.248414][ T4314] device bridge_slave_0 left promiscuous mode
[  162.260004][ T4314] bridge0: port 1(bridge_slave_0) entered disabled state
[  162.846705][ T4314] team0 (unregistering): Port device team_slave_1 removed
[  162.896442][ T4314] team0 (unregistering): Port device team_slave_0 removed
[  162.946173][ T4314] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  162.988365][ T4314] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  163.059714][   T26] audit: type=1326 audit(1768544624.614:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  163.146972][   T26] audit: type=1326 audit(1768544624.654:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  163.265071][   T26] audit: type=1326 audit(1768544624.654:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  163.297262][ T4314] bond0 (unregistering): Released all slaves
[  163.316808][   T26] audit: type=1326 audit(1768544624.654:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  163.341625][   T26] audit: type=1326 audit(1768544624.654:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  163.366953][   T26] audit: type=1326 audit(1768544624.654:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  163.405486][ T5130] loop1: detected capacity change from 0 to 1024
[  163.427156][   T26] audit: type=1326 audit(1768544624.654:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  163.510573][ T5130] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  163.729407][ T4963] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.749237][   T26] audit: type=1326 audit(1768544624.654:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  164.747479][ T5142] loop2: detected capacity change from 0 to 256
[  164.758734][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  164.773360][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  164.782478][   T26] audit: type=1326 audit(1768544624.654:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5124 comm="syz.2.242" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f8d19ba0749 code=0x7ffc0000
[  164.834493][ T4963] 8021q: adding VLAN 0 to HW filter on device team0
[  164.880613][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  164.931318][ T5142] FAT-fs (loop2): Directory bread(block 64) failed
[  164.970551][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  164.986468][ T5142] FAT-fs (loop2): Directory bread(block 65) failed
[  165.012134][ T5142] FAT-fs (loop2): Directory bread(block 66) failed
[  165.025891][ T4471] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.033800][ T4471] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.052334][ T5142] FAT-fs (loop2): Directory bread(block 67) failed
[  165.083991][ T5142] FAT-fs (loop2): Directory bread(block 68) failed
[  165.091424][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  165.122651][ T5142] FAT-fs (loop2): Directory bread(block 69) failed
[  165.164620][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  165.174041][ T5142] FAT-fs (loop2): Directory bread(block 70) failed
[  165.180983][ T5142] FAT-fs (loop2): Directory bread(block 71) failed
[  166.668029][ T5142] FAT-fs (loop2): Directory bread(block 72) failed
[  166.678542][ T4248] kernel write not supported for file /vcs (pid: 4248 comm: kworker/0:4)
[  166.693439][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  166.711443][ T5142] FAT-fs (loop2): Directory bread(block 73) failed
[  166.776668][ T4471] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.783973][ T4471] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.832907][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  166.869653][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  166.903145][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  166.928905][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  166.978028][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  167.055371][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  167.096528][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  167.133642][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  167.173580][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  167.216220][ T4963] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  167.273726][ T4963] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  167.312695][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  167.322356][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  167.816314][ T5166] kvm: pic: non byte read
[  167.821309][ T5166] kvm: pic: level sensitive irq not supported
[  167.821393][ T5166] kvm: pic: non byte read
[  167.920122][ T5166] kvm: pic: level sensitive irq not supported
[  167.920178][ T5166] kvm: pic: non byte read
[  167.962751][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  167.970458][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  167.987352][ T5166] kvm: pic: level sensitive irq not supported
[  167.987403][ T5166] kvm: pic: non byte read
[  168.032520][ T4963] 8021q: adding VLAN 0 to HW filter on device batadv0
[  168.100969][ T5166] kvm: pic: level sensitive irq not supported
[  168.101026][ T5166] kvm: pic: non byte read
[  168.197644][ T5166] kvm: pic: level sensitive irq not supported
[  168.197699][ T5166] kvm: pic: non byte read
[  168.256784][ T5166] kvm: pic: level sensitive irq not supported
[  168.256841][ T5166] kvm: pic: non byte read
[  168.416331][ T5177] loop4: detected capacity change from 0 to 512
[  168.521315][ T5182] loop3: detected capacity change from 0 to 16
[  168.602232][ T5177] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz.4.250: inode #1: comm syz.4.250: iget: illegal inode #
[  168.626608][ T5177] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.250: error while reading EA inode 1 err=-117
[  168.684829][ T5182] erofs: (device loop3): erofs_read_superblock: blkszbits 9 isn't supported on this platform
[  168.711940][ T5177] EXT4-fs (loop4): 1 orphan inode deleted
[  168.718838][ T5177] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  168.932901][ T5182] netlink: 276 bytes leftover after parsing attributes in process `syz.3.251'.
[  169.007674][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  169.027835][ T5198] loop1: detected capacity change from 0 to 164
[  169.044686][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  169.147069][ T5198] rock: directory entry would overflow storage
[  169.175398][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  169.200592][ T5198] rock: sig=0x4543, size=28, remaining=18
[  169.208641][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  169.251034][ T5203] loop3: detected capacity change from 0 to 512
[  169.297529][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  169.970652][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  170.014193][ T4963] device veth0_vlan entered promiscuous mode
[  170.140158][ T4963] device veth1_vlan entered promiscuous mode
[  170.195172][ T5203] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  170.292939][ T5204] uffd: Set unprivileged_userfaultfd sysctl knob to 1 if kernel faults must be handled without obtaining CAP_SYS_PTRACE capability
[  171.297176][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  171.325281][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  171.429305][ T4963] device veth0_macvtap entered promiscuous mode
[  171.449802][ T5225] loop3: detected capacity change from 0 to 256
[  171.485419][ T4963] device veth1_macvtap entered promiscuous mode
[  171.501611][ T5225] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  171.566594][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.601520][ T5225] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 196)
[  171.631352][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.682614][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.712974][ T5225] FAT-fs (loop3): Filesystem has been set read-only
[  171.719701][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.770653][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.811642][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.857597][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  171.912257][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.946396][ T5236] loop2: detected capacity change from 0 to 512
[  171.974690][ T4963] batman_adv: batadv0: Interface activated: batadv_slave_0
[  172.023079][ T5236] EXT4-fs (loop2): Ignoring removed orlov option
[  172.029506][ T5236] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  172.043485][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  172.051861][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  172.113481][  T154] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  172.134876][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.165963][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.212328][ T5236] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2229: inode #15: comm syz.2.261: corrupted in-inode xattr
[  172.212825][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.235231][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.250050][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.260608][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.270514][ T4963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  172.281613][ T4963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  172.293292][ T4963] batman_adv: batadv0: Interface activated: batadv_slave_1
[  172.321249][ T4775] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  173.782088][ T5236] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.261: couldn't read orphan inode 15 (err -117)
[  173.813235][ T4775] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  173.831916][ T4963] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  173.890636][ T5236] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,inode_readahead_blks=0x0000000004000000,orlov,noload,delalloc,mblk_io_submit,commit=0x0000000000000000,nodioread_nolock,nogrpid,init_itable=0x0000000000000fff,,errors=continue. Quota mode: none.
[  173.916550][ T4963] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  173.946952][ T4963] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  173.987493][ T4963] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.412256][   T26] audit: type=1800 audit(1768544635.954:120): pid=5256 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.261" name="bus" dev="loop2" ino=18 res=0 errno=0
[  174.803077][ T4775] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.818237][ T4775] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.913629][ T4775] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  174.921817][ T4775] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  174.948514][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  174.963956][ T5259] loop4: detected capacity change from 0 to 256
[  174.973897][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  177.209073][ T5281] loop2: detected capacity change from 0 to 16
[  177.357665][ T5281] erofs: (device loop2): mounted with root inode @ nid 36.
[  177.932710][ T4643] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  178.158103][ T5309] loop2: detected capacity change from 0 to 2048
[  178.312884][ T4643] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  178.432307][ T5309] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  179.202731][ T4643] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[  181.872980][ T4643] usb 6-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[  181.933607][ T4643] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  181.941691][ T4643] usb 6-1: Product: syz
[  182.902703][ T4643] usb 6-1: Manufacturer: syz
[  182.909306][ T4643] usb 6-1: config 0 descriptor??
[  182.943016][ T4643] usb 6-1: can't set config #0, error -71
[  182.950503][ T4643] usb 6-1: USB disconnect, device number 2
[  183.091132][ T5324] kvm: pic: non byte write
[  183.095829][ T5324] kvm: pic: non byte write
[  183.100910][ T5324] kvm: pic: non byte write
[  183.105646][ T5324] kvm: pic: non byte write
[  183.111246][ T5324] kvm: pic: non byte write
[  183.116116][ T5324] kvm: pic: non byte write
[  183.120913][ T5324] kvm: pic: non byte write
[  183.126222][ T5324] kvm: pic: non byte write
[  183.132995][ T5324] kvm: pic: non byte write
[  183.138112][ T5324] kvm: pic: non byte write
[  183.271376][ T4186] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1408) has entry at pos 0 with incorrect tag 0
[  183.302186][ T4186] UDF-fs: error (device loop2): udf_verify_fi: directory (ino 1408) has entry at pos 0 with incorrect tag 0
[  183.616459][ T5333] loop4: detected capacity change from 0 to 512
[  184.052339][ T4314] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.104148][ T5343] netlink: 8 bytes leftover after parsing attributes in process `syz.1.289'.
[  184.209039][ T4314] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.340837][ T4314] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.454890][ T4314] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.765456][ T5369] chnl_net:caif_netlink_parms(): no params data found
[  188.367828][  T155] wlan1: No active IBSS STAs - trying to scan for other IBSS networks with same SSID (merge)
[  188.378873][ T4248] Bluetooth: hci1: command 0x0409 tx timeout
[  188.533725][ T5369] bridge0: port 1(bridge_slave_0) entered blocking state
[  188.550002][ T5369] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.593758][ T5369] device bridge_slave_0 entered promiscuous mode
[  188.653046][ T5369] bridge0: port 2(bridge_slave_1) entered blocking state
[  188.668934][ T5407] loop4: detected capacity change from 0 to 128
[  188.692696][ T5369] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.701213][ T5369] device bridge_slave_1 entered promiscuous mode
[  188.798292][ T5407] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  188.809332][ T5407] ext4 filesystem being mounted at /57/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  188.847634][ T5369] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  188.906106][ T5369] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  189.059232][ T5419] loop1: detected capacity change from 0 to 128
[  189.131332][ T5369] team0: Port device team_slave_0 added
[  189.174723][ T5420] xt_hashlimit: overflow, try lower: 18446744073709551615/255
[  189.482052][ T5369] team0: Port device team_slave_1 added
[  189.928692][ T5369] batman_adv: batadv0: Adding interface: batadv_slave_0
[  189.937229][ T5369] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  189.994698][ T5369] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  190.094335][ T4314] device hsr_slave_0 left promiscuous mode
[  190.111437][ T4314] device hsr_slave_1 left promiscuous mode
[  190.124179][ T4314] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  190.142974][ T4248] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  190.169446][ T4314] batman_adv: batadv0: Removing interface: batadv_slave_0
[  190.199906][ T4314] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  190.215421][ T4314] batman_adv: batadv0: Removing interface: batadv_slave_1
[  190.233378][ T4314] device bridge_slave_1 left promiscuous mode
[  190.247994][ T4314] bridge0: port 2(bridge_slave_1) entered disabled state
[  190.262405][ T4314] device bridge_slave_0 left promiscuous mode
[  190.280731][ T4314] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.377706][ T4314] device veth1_macvtap left promiscuous mode
[  191.801685][ T4299] Bluetooth: hci1: command 0x041b tx timeout
[  191.833978][ T4314] device veth0_macvtap left promiscuous mode
[  191.859700][ T4314] device veth1_vlan left promiscuous mode
[  191.868229][ T4314] device veth0_vlan left promiscuous mode
[  191.955875][ T4248] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  191.979825][ T4248] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.029888][ T4248] usb 5-1: config 0 descriptor??
[  192.074156][ T4248] cp210x 5-1:0.0: cp210x converter detected
[  192.733039][ T4248] cp210x 5-1:0.0: failed to get vendor val 0x370c size 73: -71
[  192.741116][ T4248] cp210x 5-1:0.0: GPIO initialisation failed: -71
[  192.932178][ T4248] usb 5-1: cp210x converter now attached to ttyUSB0
[  192.994280][ T4248] usb 5-1: USB disconnect, device number 3
[  193.053952][ T4248] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[  193.094291][ T4248] cp210x 5-1:0.0: device disconnected
[  193.792958][ T5461] loop4: detected capacity change from 0 to 512
[  193.874011][ T4255] Bluetooth: hci1: command 0x040f tx timeout
[  194.062874][ T5461] EXT4-fs (loop4): mounted filesystem without journal. Opts: errors=remount-ro,grpquota,. Quota mode: writeback.
[  194.116907][ T5461] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.236905][   T26] audit: type=1800 audit(1768544655.794:121): pid=5467 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.318" name="file1" dev="loop4" ino=15 res=0 errno=0
[  194.355520][ T4314] team0 (unregistering): Port device team_slave_1 removed
[  194.415406][ T4314] team0 (unregistering): Port device team_slave_0 removed
[  194.628788][ T4314] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  194.938280][ T5482] loop5: detected capacity change from 0 to 512
[  195.141849][ T4314] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  195.349202][ T5482] EXT4-fs warning (device loop5): ext4_multi_mount_protect:326: fsck is running on the filesystem
[  195.360110][ T5482] EXT4-fs warning (device loop5): ext4_multi_mount_protect:326: MMP failure info: last update time: 1756377954, last update node: nogikhp920.muc.corp.google.com, last update device: loop12
[  195.488668][ T4314] bond0 (unregistering): Released all slaves
[  195.579745][ T5369] batman_adv: batadv0: Adding interface: batadv_slave_1
[  195.586935][ T5369] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  195.640130][ T5369] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  195.893423][ T5369] device hsr_slave_0 entered promiscuous mode
[  195.913191][ T5494] loop4: detected capacity change from 0 to 16
[  195.930870][ T5369] device hsr_slave_1 entered promiscuous mode
[  195.972850][ T5369] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  195.987997][ T5369] Cannot create hsr debugfs directory
[  196.010847][ T5494] erofs: (device loop4): mounted with root inode @ nid 36.
[  196.032253][ T5500] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  196.033569][ T1107] Bluetooth: hci1: command 0x0419 tx timeout
[  196.049266][   T26] audit: type=1800 audit(1768544657.604:122): pid=5494 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.326" name="file1" dev="loop4" ino=86 res=0 errno=0
[  196.093138][ T5500] device batadv_slave_0 entered promiscuous mode
[  196.134321][ T5500] netlink: 20 bytes leftover after parsing attributes in process `syz.5.329'.
[  196.327139][ T5508] loop4: detected capacity change from 0 to 2048
[  196.338390][ T5512] loop1: detected capacity change from 0 to 1024
[  196.370572][ T5508] UDF-fs: bad mount option "longa`" or missing value
[  196.415490][ T5512] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (23577!=28264)
[  196.444668][ T5512] EXT4-fs (loop1): group descriptors corrupted!
[  196.687904][ T5369] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  196.725413][ T5369] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  196.753071][ T4234] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  196.766036][ T5521] loop1: detected capacity change from 0 to 128
[  196.780855][ T5369] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  196.818972][ T5369] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  196.842340][ T5526] netlink: 4 bytes leftover after parsing attributes in process `syz.3.338'.
[  196.868897][ T5521] EXT4-fs (loop1): Ignoring removed oldalloc option
[  196.931903][ T5521] EXT4-fs (loop1): mounted filesystem without journal. Opts: oldalloc,noblock_validity,grpquota,,errors=continue. Quota mode: writeback.
[  196.957714][ T5521] ext4 filesystem being mounted at /70/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  197.032830][ T4234] usb 5-1: Using ep0 maxpacket: 32
[  197.201710][ T4234] usb 5-1: unable to get BOS descriptor or descriptor too short
[  197.301138][ T5369] 8021q: adding VLAN 0 to HW filter on device bond0
[  197.328934][ T4234] usb 5-1: config 128 has an invalid interface number: 127 but max is 3
[  197.353022][ T4234] usb 5-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[  197.388975][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  197.405254][ T4234] usb 5-1: config 128 has 1 interface, different from the descriptor's value: 4
[  197.442303][ T4234] usb 5-1: config 128 has no interface number 0
[  197.444595][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  197.481222][ T4234] usb 5-1: config 128 interface 127 altsetting 14 endpoint 0x5 has an invalid bInterval 0, changing to 7
[  197.496455][ T5369] 8021q: adding VLAN 0 to HW filter on device team0
[  197.530687][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  197.532248][ T4234] usb 5-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[  197.550187][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  197.577918][ T4234] usb 5-1: config 128 interface 127 has no altsetting 0
[  197.588941][  T155] bridge0: port 1(bridge_slave_0) entered blocking state
[  197.596126][  T155] bridge0: port 1(bridge_slave_0) entered forwarding state
[  197.667875][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  197.678260][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  197.702195][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  197.733806][  T155] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.741080][  T155] bridge0: port 2(bridge_slave_1) entered forwarding state
[  197.765628][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  197.798019][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  198.451406][ T4234] usb 5-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[  198.472709][ T4234] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  198.481145][ T4234] usb 5-1: Product: syz
[  198.492613][ T4234] usb 5-1: Manufacturer: syz
[  198.515451][ T1107] Bluetooth: hci1: command 0x0405 tx timeout
[  198.523263][ T4234] usb 5-1: SerialNumber: syz
[  198.581075][ T5559] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  198.685841][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  198.720720][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  198.763650][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  198.789314][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  198.813775][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  198.874638][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  198.907967][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  198.943309][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  200.464816][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  200.504994][ T4234] usb 5-1: USB disconnect, device number 4
[  200.517234][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  200.523728][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  200.795715][ T4524] udevd[4524]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:128.127/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  201.977416][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  201.986379][ T4521] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  202.026900][ T5369] 8021q: adding VLAN 0 to HW filter on device batadv0
[  202.062826][ T1107] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  202.290054][ T5606] loop5: detected capacity change from 0 to 8
[  202.322843][ T1107] usb 5-1: Using ep0 maxpacket: 32
[  202.396121][ T5606] squashfs: Unknown parameter 'G'
[  202.442911][ T1107] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  202.611275][ T1107] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  203.073945][ T1107] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  203.120692][ T1107] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  203.130953][ T1107] usb 5-1: Product: syz
[  203.136401][ T1107] usb 5-1: Manufacturer: syz
[  203.141272][ T1107] usb 5-1: SerialNumber: syz
[  203.152260][ T1107] usb 5-1: config 0 descriptor??
[  203.193555][ T1107] hub 5-1:0.0: bad descriptor, ignoring hub
[  203.200908][ T1107] hub: probe of 5-1:0.0 failed with error -5
[  203.456854][ T5613] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  203.674479][ T5620] netlink: 8 bytes leftover after parsing attributes in process `syz.5.356'.
[  203.692728][ T1107] usb 5-1: reset high-speed USB device number 5 using dummy_hcd
[  203.892431][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  203.915165][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  203.991422][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  204.010930][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  204.040230][ T5369] device veth0_vlan entered promiscuous mode
[  204.058667][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  204.094510][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  204.146539][ T5369] device veth1_vlan entered promiscuous mode
[  204.238966][ T5369] device veth0_macvtap entered promiscuous mode
[  204.395010][ T5597] udc-core: couldn't find an available UDC or it's busy
[  204.420634][ T5597] misc raw-gadget: fail, usb_gadget_probe_driver returned -16
[  204.449063][ T5369] device veth1_macvtap entered promiscuous mode
[  204.493439][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  204.509953][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  204.547287][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  204.579192][ T1107] usb 5-1: USB disconnect, device number 5
[  204.590023][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  204.625234][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  204.634007][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  204.672591][ T5369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  204.686844][ T5369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.697943][ T5369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  204.709380][ T5369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.719799][ T5369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  204.730990][ T5369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.743666][ T5369] batman_adv: batadv0: Interface activated: batadv_slave_0
[  204.751875][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  204.765346][  T140] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  204.788936][ T5369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  204.832845][ T5369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.902663][ T5369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  204.923328][ T5369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.934044][ T5369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  204.945101][ T5369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  204.964184][ T5369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  204.986754][ T5369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  205.011275][ T5369] batman_adv: batadv0: Interface activated: batadv_slave_1
[  205.078362][ T5643] loop4: detected capacity change from 0 to 512
[  205.106379][ T5369] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  205.222649][ T5369] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  205.236042][ T5649] loop5: detected capacity change from 0 to 512
[  205.257008][ T5369] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  205.276885][ T5369] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  205.310979][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  205.356829][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  205.435322][ T5643] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a80ec01c, mo2=0002]
[  205.454655][ T5643] System zones: 1-3, 19-19, 35-38
[  205.465135][ T5643] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug,i_version,lazytime,quota,grpid,,errors=continue. Quota mode: writeback.
[  205.479883][ T5649] EXT4-fs (loop5): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  205.480044][ T5649] ext4 filesystem being mounted at /21/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  205.572170][   T26] audit: type=1800 audit(1768544667.124:123): pid=5666 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.362" name="file2" dev="loop5" ino=16 res=0 errno=0
[  205.724965][   T26] audit: type=1804 audit(1768544667.194:124): pid=5649 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.5.362" name="/newroot/21/file1/file2" dev="loop5" ino=16 res=1 errno=0
[  205.849647][  T155] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  205.943798][  T155] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  206.085851][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  207.122106][ T4471] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  207.219539][ T4471] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  207.298766][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  207.519800][ T5695] TCP: request_sock_TCPv6: Possible SYN flooding on port 20002. Sending cookies.  Check SNMP counters.
[  209.098393][ T4175] Bluetooth: hci4: command 0x0406 tx timeout
[  209.112724][ T4175] Bluetooth: hci2: command 0x0406 tx timeout
[  209.121943][ T4175] Bluetooth: hci3: command 0x0406 tx timeout
[  209.184910][ T5705] loop5: detected capacity change from 0 to 128
[  209.222811][ T5708] netlink: 368 bytes leftover after parsing attributes in process `syz.6.378'.
[  209.401529][ T5705] EXT4-fs (loop5): mounted filesystem without journal. Opts: usrquota,nodelalloc,,errors=continue. Quota mode: writeback.
[  210.809318][ T5705] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.865623][ T5715] loop6: detected capacity change from 0 to 128
[  214.807046][ T5760] loop1: detected capacity change from 0 to 16
[  214.905324][ T5760] erofs: (device loop1): erofs_read_superblock: blkszbits 9 isn't supported on this platform
[  215.174588][ T5770] loop6: detected capacity change from 0 to 1024
[  215.382957][ T5775] loop1: detected capacity change from 0 to 8
[  215.470085][ T5775] process 'syz.1.391' launched './file1' with NULL argv: empty string added
[  215.492289][ T5775] SQUASHFS error: zstd decompression error: 2
[  215.499030][ T5775] SQUASHFS error: zstd decompression failed, data probably corrupt
[  215.508287][ T5775] SQUASHFS error: Failed to read block 0x60: -5
[  215.587099][ T5775] SQUASHFS error: zstd decompression error: 2
[  215.593316][ T5775] SQUASHFS error: zstd decompression failed, data probably corrupt
[  215.601523][ T5775] SQUASHFS error: Failed to read block 0x60: -5
[  215.728277][ T5770] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  215.903934][ T5769] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1147: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  215.993056][ T5769] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2 with error 28
[  216.028530][ T5783] netlink: 84 bytes leftover after parsing attributes in process `syz.1.392'.
[  216.062746][ T5769] EXT4-fs (loop6): This should not happen!! Data will be lost
[  216.062746][ T5769] 
[  216.072454][ T5769] EXT4-fs (loop6): Total free blocks count 0
[  216.112684][ T5769] EXT4-fs (loop6): Free/Dirty block details
[  216.118651][ T5769] EXT4-fs (loop6): free_blocks=68451041280
[  216.182666][ T5769] EXT4-fs (loop6): dirty_blocks=16
[  216.187856][ T5769] EXT4-fs (loop6): Block reservation details
[  216.232717][ T5769] EXT4-fs (loop6): i_reserved_data_blocks=1
[  216.267977][ T5789] loop1: detected capacity change from 0 to 512
[  216.435454][ T5789] EXT4-fs (loop1): 1 truncate cleaned up
[  216.441181][ T5789] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  216.595315][ T5796] netlink: 32 bytes leftover after parsing attributes in process `syz.6.396'.
[  217.068230][ T5801] sch_tbf: burst 21990 is lower than device lo mtu (65550) !
[  217.597361][ T5820] loop5: detected capacity change from 0 to 512
[  217.683117][ T5822] hub 5-0:1.0: USB hub found
[  217.702909][ T5820] EXT4-fs (loop5): Unrecognized mount option "mask=^MAY_READ" or missing value
[  217.732264][ T5822] hub 5-0:1.0: 1 port detected
[  217.901314][   T26] audit: type=1326 audit(1768544679.454:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  217.929372][ T5820] loop5: detected capacity change from 0 to 512
[  217.988103][ T5832] loop4: detected capacity change from 0 to 512
[  217.995019][   T26] audit: type=1326 audit(1768544679.514:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  218.022821][ T5834] loop6: detected capacity change from 0 to 16
[  218.116195][   T26] audit: type=1326 audit(1768544679.514:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  218.150384][ T5820] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  218.162808][ T5834] erofs: (device loop6): mounted with root inode @ nid 36.
[  218.185840][ T5832] EXT4-fs (loop4): Ignoring removed bh option
[  218.229070][ T5832] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  218.528982][ T5820] EXT4-fs (loop5): 1 orphan inode deleted
[  218.567600][ T5832] EXT4-fs (loop4): 1 truncate cleaned up
[  218.696621][ T5832] EXT4-fs (loop4): mounted filesystem without journal. Opts: debug_want_extra_isize=0x000000000000002e,min_batch_time=0x0000000000000ffd,bh,stripe=0x0000000000004000,noload,max_batch_time=0x0000000000000004,,errors=continue. Quota mode: none.
[  218.785362][ T5820] EXT4-fs (loop5): 1 truncate cleaned up
[  218.791087][ T5820] EXT4-fs (loop5): mounted filesystem without journal. Opts: errors=remount-ro,nodelalloc,debug_want_extra_isize=0x000000000000002e,inode_readahead_blks=0x0000000004000000,jqfmt=vfsv0,quota,. Quota mode: writeback.
[  218.862625][   T26] audit: type=1326 audit(1768544679.514:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  219.004864][ T5820] EXT4-fs (loop5): shut down requested (1)
[  219.037480][ T5820] EXT4-fs warning (device loop5): empty_inline_dir:1870: bad inline directory (dir #12) - inode 13, rec_len 784, name_len 5inline size 60
[  219.069109][   T26] audit: type=1326 audit(1768544679.514:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  219.179566][   T26] audit: type=1326 audit(1768544679.514:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  220.819760][   T26] audit: type=1326 audit(1768544679.514:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  220.852099][   T26] audit: type=1326 audit(1768544679.514:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5826 comm="syz.6.404" exe="/root/syz-executor" sig=0 arch=c000003e syscall=34 compat=0 ip=0x7f450979a749 code=0x7ffc0000
[  220.977680][   T26] audit: type=1800 audit(1768544680.714:133): pid=5854 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.406" name="file1" dev="loop4" ino=15 res=0 errno=0
[  221.247806][   T21] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[  222.382711][   T21] usb 2-1: Using ep0 maxpacket: 16
[  222.467929][  T146] Bluetooth: Wrong link type (-22)
[  223.044908][   T21] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  223.077916][   T21] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  223.112694][   T21] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  223.172700][   T21] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  223.181816][   T21] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  223.235768][   T21] usb 2-1: config 0 descriptor??
[  223.713550][   T21] microsoft 0003:045E:07DA.0001: unknown main item tag 0x0
[  223.743973][   T21] microsoft 0003:045E:07DA.0001: unbalanced collection at end of report description
[  223.768900][   T21] microsoft 0003:045E:07DA.0001: parse failed
[  223.789981][   T21] microsoft: probe of 0003:045E:07DA.0001 failed with error -22
[  224.023720][   T21] usb 2-1: USB disconnect, device number 5
[  224.966365][ T5927] xt_limit: Overflow, try lower: 2147483649/3300
[  225.836310][ T5932] netlink: 'syz.3.429': attribute type 1 has an invalid length.
[  225.859838][   T26] audit: type=1326 audit(1768544687.414:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  225.890129][ T5932] netlink: 8 bytes leftover after parsing attributes in process `syz.3.429'.
[  225.945651][   T26] audit: type=1326 audit(1768544687.454:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  226.062956][   T26] audit: type=1326 audit(1768544687.454:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  226.148893][   T26] audit: type=1326 audit(1768544687.474:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  226.181545][ T5941] loop1: detected capacity change from 0 to 512
[  226.213393][ T5941] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  226.250782][ T5947] loop4: detected capacity change from 0 to 256
[  226.262787][   T26] audit: type=1326 audit(1768544687.474:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  226.350055][ T5941] EXT4-fs (loop1): 1 truncate cleaned up
[  226.356013][ T5941] EXT4-fs (loop1): mounted filesystem without journal. Opts: resuid=0x0000000000000000,max_dir_size_kb=0x00000000000001ff,stripe=0x0000000000000000,noblock_validity,,errors=continue. Quota mode: none.
[  226.387167][   T26] audit: type=1326 audit(1768544687.474:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  226.527195][   T26] audit: type=1326 audit(1768544687.474:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  226.560120][   T26] audit: type=1326 audit(1768544687.474:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5935 comm="syz.1.431" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  227.278962][ T5962] loop4: detected capacity change from 0 to 764
[  227.366802][ T5966] loop1: detected capacity change from 0 to 1024
[  227.636434][ T5966] EXT4-fs (loop1): mounted filesystem without journal. Opts: nouid32,nodioread_nolock,noquota,delalloc,journal_dev=0x0000000000000009,commit=0x0000000000000000,,errors=continue. Quota mode: none.
[  227.767280][ T5966] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  228.449136][ T5980] loop4: detected capacity change from 0 to 1024
[  229.156866][ T5949] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  229.252994][ T6001] loop6: detected capacity change from 0 to 1024
[  229.337513][  T155] EXT4-fs error (device loop1): ext4_map_blocks:739: inode #15: comm kworker/u4:3: lblock 0 mapped to illegal pblock 0 (length 6)
[  229.367013][ T6000] loop4: detected capacity change from 0 to 1024
[  229.528504][ T6000] EXT4-fs (loop4): mounted filesystem without journal. Opts: min_batch_time=0x0000000000000001,errors=remount-ro,. Quota mode: writeback.
[  229.578916][  T155] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 6 with error 117
[  229.591558][  T155] EXT4-fs (loop1): This should not happen!! Data will be lost
[  229.591558][  T155] 
[  229.611963][  T155] EXT4-fs error (device loop1): ext4_map_blocks:739: inode #15: block 8: comm kworker/u4:3: lblock 8 mapped to illegal pblock 8 (length 8)
[  229.772128][  T155] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  230.054387][  T155] EXT4-fs (loop1): This should not happen!! Data will be lost
[  230.054387][  T155] 
[  231.240847][ T6011] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 171: padding at end of block bitmap is not set
[  231.280167][ T6011] EXT4-fs (loop4): Remounting filesystem read-only
[  231.448047][  T155] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2060 with max blocks 820 with error 28
[  231.497226][  T155] EXT4-fs (loop1): This should not happen!! Data will be lost
[  231.497226][  T155] 
[  231.542602][  T155] EXT4-fs (loop1): Total free blocks count 0
[  231.548653][  T155] EXT4-fs (loop1): Free/Dirty block details
[  231.584427][  T155] EXT4-fs (loop1): free_blocks=0
[  231.605527][  T155] EXT4-fs (loop1): dirty_blocks=832
[  231.927828][ T6030] loop4: detected capacity change from 0 to 2048
[  232.590167][ T6042] ptrace attach of "./syz-executor exec"[6041] was attempted by "./syz-executor exec"[6042]
[  233.642747][ T6030] EXT4-fs (loop4): Ignoring removed mblk_io_submit option
[  233.936188][ T6044] mmap: syz.5.457 (6044): VmData 25972736 exceed data ulimit 0. Update limits or use boot option ignore_rlimit_data.
[  235.080898][ T6030] EXT4-fs warning (device loop4): ext4_multi_mount_protect:403: Unable to create kmmpd thread for loop4.
[  235.457115][ T6051] loop4: detected capacity change from 0 to 4096
[  235.554918][ T4645] Bluetooth: hci2: command 0x0401 tx timeout
[  235.612936][ T6051] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,acl,journal_dev=0x0000000000000009,,errors=continue. Quota mode: writeback.
[  236.124569][ T6069] loop4: detected capacity change from 0 to 2048
[  236.386684][ T6069] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  236.508000][ T6069] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  237.967983][ T6095] loop1: detected capacity change from 0 to 1024
[  238.049907][ T6095] EXT4-fs (loop1): Ignoring removed oldalloc option
[  238.098733][ T6097] loop5: detected capacity change from 0 to 512
[  238.115528][ T6095] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_lock,oldalloc,usrquota,barrier,journal_ioprio=0x0000000000000002,grpquota,,errors=continue. Quota mode: writeback.
[  238.153403][ T6095] ext4 filesystem being mounted at /95/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  238.188103][ T6097] EXT4-fs warning (device loop5): read_mmp_block:115: Error -74 while reading MMP block 13
[  238.881832][ T6102] netlink: 'syz.5.458': attribute type 72 has an invalid length.
[  240.869594][ T6125] loop1: detected capacity change from 0 to 512
[  241.040255][ T6125] EXT4-fs (loop1): 1 truncate cleaned up
[  241.119761][ T6125] EXT4-fs (loop1): mounted filesystem without journal. Opts: bsddf,,errors=continue. Quota mode: none.
[  241.281660][ T6125] xt_CT: You must specify a L4 protocol and not use inversions on it
[  241.298282][ T6125] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  245.429018][ T6062] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm ext4lazyinit: bg 0: block 465: padding at end of block bitmap is not set
[  245.430688][ T6140] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.470: bg 0: block 465: padding at end of block bitmap is not set
[  245.481481][ T6140] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 2048 with error 117
[  245.494881][ T6140] EXT4-fs (loop1): This should not happen!! Data will be lost
[  245.494881][ T6140] 
[  245.635661][ T4473] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 2052 with max blocks 40 with error 28
[  245.692463][ T4473] EXT4-fs (loop1): This should not happen!! Data will be lost
[  245.692463][ T4473] 
[  245.719031][ T4473] EXT4-fs (loop1): Total free blocks count 0
[  245.745837][ T4473] EXT4-fs (loop1): Free/Dirty block details
[  245.751810][ T4473] EXT4-fs (loop1): free_blocks=0
[  245.797680][ T4473] EXT4-fs (loop1): dirty_blocks=43
[  245.812637][ T4473] EXT4-fs (loop1): Block reservation details
[  245.829420][ T4473] EXT4-fs (loop1): i_reserved_data_blocks=43
[  250.357617][ T6166] bridge0: port 2(bridge_slave_1) entered disabled state
[  250.365223][ T6166] bridge0: port 1(bridge_slave_0) entered disabled state
[  251.073260][ T6189] syz.4.486 uses obsolete (PF_INET,SOCK_PACKET)
[  251.892115][ T6208] netlink: 28 bytes leftover after parsing attributes in process `syz.1.480'.
[  251.926552][ T6209] loop4: detected capacity change from 0 to 512
[  253.078667][ T6227] loop6: detected capacity change from 0 to 1024
[  253.248109][ T6238] loop5: detected capacity change from 0 to 512
[  253.306939][ T6209] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #15: comm syz.4.489: inode has both inline data and extents flags
[  253.444309][ T6209] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.489: couldn't read orphan inode 15 (err -117)
[  253.640331][ T6209] EXT4-fs (loop4): mounted filesystem without journal. Opts: noblock_validity,resgid=0x000000000000ee00,acl,noload,journal_dev=0x0000000000000003,nodiscard,,errors=continue. Quota mode: none.
[  254.215822][ T6258] loop1: detected capacity change from 0 to 16
[  254.242923][ T6209] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1147: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  255.281280][ T6258] erofs: (device loop1): mounted with root inode @ nid 36.
[  255.860797][   T26] audit: type=1326 audit(1768544717.414:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  256.783025][   T26] audit: type=1326 audit(1768544717.464:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  257.153131][   T26] audit: type=1326 audit(1768544717.464:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  257.354671][   T26] audit: type=1326 audit(1768544717.464:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  257.503981][ T6281] fuse: Bad value for 'fd'
[  257.646125][   T26] audit: type=1326 audit(1768544717.494:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  257.760472][   T26] audit: type=1326 audit(1768544717.494:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  257.872017][   T26] audit: type=1326 audit(1768544717.494:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  258.043391][   T26] audit: type=1326 audit(1768544717.514:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=222 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  258.072431][   T26] audit: type=1326 audit(1768544717.534:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  258.131091][   T26] audit: type=1326 audit(1768544717.544:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6271 comm="syz.1.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  258.811998][ T4277] hid-generic 0000:0000:0000.0002: unknown main item tag 0x0
[  258.904276][ T4277] hid-generic 0000:0000:0000.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  259.135996][ T6335] loop4: detected capacity change from 0 to 736
[  260.904495][ T6349] fido_id[6349]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  261.144055][ T6361] loop6: detected capacity change from 0 to 512
[  261.396276][ T6361] EXT4-fs warning (device loop6): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value
[  262.292085][ T1420] ieee802154 phy0 wpan0: encryption failed: -22
[  262.298649][ T1420] ieee802154 phy1 wpan1: encryption failed: -22
[  262.392745][ T6361] EXT4-fs warning (device loop6): dx_probe:881: Enable large directory feature to access it
[  262.482630][ T6361] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.527: Corrupt directory, running e2fsck is recommended
[  262.563224][ T6361] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117
[  262.605023][ T6361] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2229: inode #15: comm syz.6.527: corrupted in-inode xattr
[  262.663361][ T6361] EXT4-fs error (device loop6): ext4_orphan_get:1406: comm syz.6.527: couldn't read orphan inode 15 (err -117)
[  262.706386][ T6361] EXT4-fs (loop6): mounted filesystem without journal. Opts: dioread_lock,noblock_validity,abort,dioread_lock,stripe=0x00000000000001f5,grpjquota=.barrier,nolazytime,jqfmt=vfsv1,grpid,,,errors=continue. Quota mode: writeback.
[  263.001576][ T6386] pit: kvm: requested 186057 ns i8254 timer period limited to 200000 ns
[  263.049207][ T6386] pit: kvm: requested 72914 ns i8254 timer period limited to 200000 ns
[  263.262852][ T4175] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  263.522756][ T4175] usb 5-1: Using ep0 maxpacket: 16
[  263.673023][ T4175] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  263.703053][ T4175] usb 5-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00
[  263.752691][ T4175] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  263.803586][ T4175] usb 5-1: config 0 descriptor??
[  264.472360][ T4175] hid-multitouch 0003:1FD2:6007.0003: item fetching failed at offset 5/7
[  264.543212][ T4175] hid-multitouch: probe of 0003:1FD2:6007.0003 failed with error -22
[  264.664988][ T6434] bridge0: port 1(bridge_slave_0) entered forwarding state
[  264.694925][   T21] usb 5-1: USB disconnect, device number 6
[  265.412769][   T21] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  265.455355][ T6450] loop6: detected capacity change from 0 to 1024
[  265.687865][ T6450] EXT4-fs (loop6): mounted filesystem without journal. Opts: noblock_validity,noauto_da_alloc,jqfmt=vfsold,stripe=0x0000000000000003,noauto_da_alloc,auto_da_alloc=0x0000000000000005,resuid=0x0000000000000000,dioread_lock,jqfmt=vfsv1,,errors=continue. Quota mode: none.
[  265.713692][   T21] usb 2-1: Using ep0 maxpacket: 16
[  265.842808][   T21] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 8
[  266.082725][   T21] usb 2-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00
[  266.119032][   T21] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  266.203574][   T21] usb 2-1: Product: syz
[  266.225659][   T21] usb 2-1: Manufacturer: syz
[  266.242739][   T21] usb 2-1: SerialNumber: syz
[  266.281809][   T21] usb 2-1: config 0 descriptor??
[  266.735657][ T6471] bridge: RTM_NEWNEIGH with invalid state 0x20
[  266.754270][ T4255] usb 2-1: USB disconnect, device number 6
[  267.955671][ T6484] loop6: detected capacity change from 0 to 128
[  268.218042][ T6484] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256
[  268.387382][ T6484] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  270.672768][ T4262] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  271.053023][ T4262] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  271.071910][ T4262] usb 7-1: New USB device found, idVendor=046d, idProduct=c71f, bcdDevice= 0.00
[  271.103318][ T4262] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  271.179398][ T4262] usb 7-1: config 0 descriptor??
[  271.240197][   T26] kauditd_printk_skb: 47 callbacks suppressed
[  271.240215][   T26] audit: type=1326 audit(1768544732.794:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  271.356674][   T26] audit: type=1326 audit(1768544732.794:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  271.468396][   T26] audit: type=1326 audit(1768544732.794:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  271.588921][   T26] audit: type=1326 audit(1768544732.794:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  271.656323][   T26] audit: type=1326 audit(1768544732.804:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  271.759246][ T6537] loop1: detected capacity change from 0 to 512
[  271.802179][   T26] audit: type=1326 audit(1768544732.804:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  271.832635][ T4262] logitech-djreceiver 0003:046D:C71F.0004: hidraw0: USB HID v0.00 Device [HID 046d:c71f] on usb-dummy_hcd.6-1/input0
[  271.868943][ T6537] EXT4-fs (loop1): Mount option "dax=inode" incompatible with ext3
[  271.967908][   T26] audit: type=1326 audit(1768544732.804:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  272.037206][ T4262] usb 7-1: USB disconnect, device number 2
[  273.074642][   T26] audit: type=1326 audit(1768544732.804:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  273.107402][   T26] audit: type=1326 audit(1768544732.864:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  273.143651][   T26] audit: type=1326 audit(1768544732.864:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6528 comm="syz.1.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0eaa6fe749 code=0x7ffc0000
[  273.267568][ T6541] fido_id[6541]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.6/usb7/report_descriptor': No such file or directory
[  275.305604][ T4255] Bluetooth: hci0: command 0x0406 tx timeout
[  275.569862][ T6577] loop6: detected capacity change from 0 to 512
[  275.885873][ T6581] loop5: detected capacity change from 0 to 512
[  276.052987][ T6581] EXT4-fs (loop5): Ignoring removed bh option
[  276.093141][ T6577] EXT4-fs (loop6): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  276.163796][ T6577] ext4 filesystem being mounted at /36/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  276.175514][ T6581] EXT4-fs (loop5): mounted filesystem without journal. Opts: i_version,nogrpid,bh,,errors=continue. Quota mode: writeback.
[  276.338654][ T6581] ext4 filesystem being mounted at /62/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  278.227371][ T6638] loop4: detected capacity change from 0 to 512
[  278.359281][ T6638] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  278.410547][ T6638] EXT4-fs (loop4): 1 truncate cleaned up
[  278.476990][ T6638] EXT4-fs (loop4): mounted filesystem without journal. Opts: minixdf,max_dir_size_kb=0x00000000000001ff,grpquota,noblock_validity,debug_want_extra_isize=0x0000000000000008,,errors=continue. Quota mode: writeback.
[  278.785479][   T26] kauditd_printk_skb: 24 callbacks suppressed
[  278.785497][   T26] audit: type=1326 audit(1768544740.344:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  278.933617][   T26] audit: type=1326 audit(1768544740.344:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  279.033520][   T26] audit: type=1326 audit(1768544740.374:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  279.143367][   T26] audit: type=1326 audit(1768544740.374:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  279.285528][   T26] audit: type=1326 audit(1768544740.374:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  279.869804][   T26] audit: type=1326 audit(1768544740.374:238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  280.451833][   T26] audit: type=1326 audit(1768544740.374:239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  281.396154][   T26] audit: type=1326 audit(1768544740.374:240): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  281.532503][   T26] audit: type=1326 audit(1768544740.374:241): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  281.650650][   T26] audit: type=1326 audit(1768544740.374:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.4.589" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f43a77c0749 code=0x7ffc0000
[  282.650868][ T6721] device lo entered promiscuous mode
[  283.737223][ T6729] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  283.936981][ T6734] loop4: detected capacity change from 0 to 512
[  285.470831][    C1] ------------[ cut here ]------------
[  285.476444][    C1] WARNING: CPU: 1 PID: 20 at net/mac80211/tx.c:4859 __ieee80211_beacon_get+0x172c/0x1f80
[  285.486417][    C1] Modules linked in:
[  285.490366][    C1] CPU: 1 PID: 20 Comm: ksoftirqd/1 Not tainted syzkaller #0
[  285.497721][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  285.507863][    C1] RIP: 0010:__ieee80211_beacon_get+0x172c/0x1f80
[  285.514270][    C1] Code: f8 0f 0b e9 f1 fa ff ff e8 f1 c2 41 f8 0f 0b 4c 8b 74 24 08 e9 36 fe ff ff e8 e0 c2 41 f8 0f 0b e9 3c ef ff ff e8 d4 c2 41 f8 <0f> 0b e9 b8 f2 ff ff e8 f8 dd 6b 00 44 89 e1 80 e1 07 80 c1 03 38
[  285.533927][    C1] RSP: 0018:ffffc90000da7760 EFLAGS: 00010246
[  285.540001][    C1] RAX: ffffffff8936093c RBX: ffff88806379cc80 RCX: ffff88813fe78000
[  285.548006][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  285.556007][    C1] RBP: ffffc90000da7988 R08: ffff88813fe78000 R09: 0000000000000003
[  285.564005][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88807dda7a00
[  285.571976][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff920001b4efc
[  285.580321][    C1] FS:  0000000000000000(0000) GS:ffff8880b9100000(0000) knlGS:0000000000000000
[  285.589397][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  285.596048][    C1] CR2: 0000000000000000 CR3: 0000000024d79000 CR4: 00000000003506e0
[  285.604054][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  285.612031][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  285.620054][    C1] Call Trace:
[  285.623360][    C1]  <TASK>
[  285.626303][    C1]  ? ieee80211_beacon_get_template+0x30/0x30
[  285.632430][    C1]  ? verify_lock_unused+0x140/0x140
[  285.637691][    C1]  ieee80211_beacon_get_tim+0x48/0x840
[  285.643183][    C1]  mac80211_hwsim_beacon_tx+0xf4/0x920
[  285.648662][    C1]  __iterate_interfaces+0x243/0x500
[  285.653893][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  285.660258][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  285.666554][    C1]  ieee80211_iterate_active_interfaces_atomic+0xb3/0x140
[  285.673622][    C1]  mac80211_hwsim_beacon+0x9b/0x180
[  285.678835][    C1]  __hrtimer_run_queues+0x53d/0xc40
[  285.684069][    C1]  ? ktime_get_update_offsets_now+0x95/0x3e0
[  285.690056][    C1]  ? ktime_get_update_offsets_now+0x95/0x3e0
[  285.696100][    C1]  ? hw_scan_work+0xeb0/0xeb0
[  285.700798][    C1]  ? hrtimer_interrupt+0x8d0/0x8d0
[  285.706072][    C1]  hrtimer_run_softirq+0x176/0x240
[  285.711217][    C1]  handle_softirqs+0x328/0x820
[  285.716019][    C1]  ? run_ksoftirqd+0x98/0xf0
[  285.720764][    C1]  ? do_softirq+0x200/0x200
[  285.725314][    C1]  ? run_ksoftirqd+0x75/0xf0
[  285.729919][    C1]  ? ksoftirqd_should_run+0x20/0x20
[  285.735321][    C1]  ? lockdep_hardirqs_off+0x70/0x100
[  285.740686][    C1]  ? ksoftirqd_should_run+0x20/0x20
[  285.745916][    C1]  run_ksoftirqd+0x98/0xf0
[  285.750342][    C1]  ? ksoftirqd_should_run+0x20/0x20
[  285.755588][    C1]  smpboot_thread_fn+0x4f6/0x970
[  285.760541][    C1]  kthread+0x436/0x520
[  285.764682][    C1]  ? cpu_report_death+0x180/0x180
[  285.769716][    C1]  ? kthread_blkcg+0xd0/0xd0
[  285.774417][    C1]  ret_from_fork+0x1f/0x30
[  285.778911][    C1]  </TASK>
[  285.781955][    C1] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  285.789254][    C1] CPU: 1 PID: 20 Comm: ksoftirqd/1 Not tainted syzkaller #0
[  285.796663][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  285.806733][    C1] Call Trace:
[  285.810024][    C1]  <TASK>
[  285.812966][    C1]  dump_stack_lvl+0x168/0x230
[  285.817674][    C1]  ? show_regs_print_info+0x20/0x20
[  285.822875][    C1]  ? load_image+0x3b0/0x3b0
[  285.827388][    C1]  panic+0x2c9/0x7f0
[  285.831291][    C1]  ? bpf_jit_dump+0xd0/0xd0
[  285.835801][    C1]  ? ret_from_fork+0x1f/0x30
[  285.840397][    C1]  ? __ieee80211_beacon_get+0x172c/0x1f80
[  285.846127][    C1]  __warn+0x248/0x2b0
[  285.850115][    C1]  ? __ieee80211_beacon_get+0x172c/0x1f80
[  285.855840][    C1]  report_bug+0x1b7/0x2e0
[  285.860175][    C1]  handle_bug+0x3a/0x70
[  285.864409][    C1]  exc_invalid_op+0x16/0x40
[  285.868938][    C1]  asm_exc_invalid_op+0x16/0x20
[  285.873793][    C1] RIP: 0010:__ieee80211_beacon_get+0x172c/0x1f80
[  285.880142][    C1] Code: f8 0f 0b e9 f1 fa ff ff e8 f1 c2 41 f8 0f 0b 4c 8b 74 24 08 e9 36 fe ff ff e8 e0 c2 41 f8 0f 0b e9 3c ef ff ff e8 d4 c2 41 f8 <0f> 0b e9 b8 f2 ff ff e8 f8 dd 6b 00 44 89 e1 80 e1 07 80 c1 03 38
[  285.899808][    C1] RSP: 0018:ffffc90000da7760 EFLAGS: 00010246
[  285.905888][    C1] RAX: ffffffff8936093c RBX: ffff88806379cc80 RCX: ffff88813fe78000
[  285.913884][    C1] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  285.921869][    C1] RBP: ffffc90000da7988 R08: ffff88813fe78000 R09: 0000000000000003
[  285.929843][    C1] R10: 0000000000000007 R11: 0000000000000100 R12: ffff88807dda7a00
[  285.937819][    C1] R13: dffffc0000000000 R14: 0000000000000000 R15: 1ffff920001b4efc
[  285.945800][    C1]  ? __ieee80211_beacon_get+0x172c/0x1f80
[  285.951541][    C1]  ? ieee80211_beacon_get_template+0x30/0x30
[  285.957533][    C1]  ? verify_lock_unused+0x140/0x140
[  285.962772][    C1]  ieee80211_beacon_get_tim+0x48/0x840
[  285.968236][    C1]  mac80211_hwsim_beacon_tx+0xf4/0x920
[  285.973704][    C1]  __iterate_interfaces+0x243/0x500
[  285.978906][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  285.985153][    C1]  ? mac80211_hwsim_vendor_cmd_test+0x2b0/0x2b0
[  285.991401][    C1]  ieee80211_iterate_active_interfaces_atomic+0xb3/0x140
[  285.998432][    C1]  mac80211_hwsim_beacon+0x9b/0x180
[  286.003646][    C1]  __hrtimer_run_queues+0x53d/0xc40
[  286.008846][    C1]  ? ktime_get_update_offsets_now+0x95/0x3e0
[  286.014820][    C1]  ? ktime_get_update_offsets_now+0x95/0x3e0
[  286.020805][    C1]  ? hw_scan_work+0xeb0/0xeb0
[  286.025493][    C1]  ? hrtimer_interrupt+0x8d0/0x8d0
[  286.030635][    C1]  hrtimer_run_softirq+0x176/0x240
[  286.035754][    C1]  handle_softirqs+0x328/0x820
[  286.040521][    C1]  ? run_ksoftirqd+0x98/0xf0
[  286.045125][    C1]  ? do_softirq+0x200/0x200
[  286.049645][    C1]  ? run_ksoftirqd+0x75/0xf0
[  286.054236][    C1]  ? ksoftirqd_should_run+0x20/0x20
[  286.059444][    C1]  ? lockdep_hardirqs_off+0x70/0x100
[  286.064760][    C1]  ? ksoftirqd_should_run+0x20/0x20
[  286.069962][    C1]  run_ksoftirqd+0x98/0xf0
[  286.074378][    C1]  ? ksoftirqd_should_run+0x20/0x20
[  286.079588][    C1]  smpboot_thread_fn+0x4f6/0x970
[  286.084535][    C1]  kthread+0x436/0x520
[  286.088600][    C1]  ? cpu_report_death+0x180/0x180
[  286.093620][    C1]  ? kthread_blkcg+0xd0/0xd0
[  286.098210][    C1]  ret_from_fork+0x1f/0x30
[  286.102661][    C1]  </TASK>
[  286.105924][    C1] Kernel Offset: disabled
[  286.110271][    C1] Rebooting in 86400 seconds..