last executing test programs:

45.508690253s ago: executing program 5 (id=6):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000000040)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SW_SYNC_IOC_CREATE_FENCE(r2, 0xc0285700, &(0x7f0000000100)={0x1, "ff0f000000000000f5a72d866b0000000000f0ffdefe00"})
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x6, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r4 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r4, 0xc0184800, &(0x7f0000000100)={0x4, <r5=>r3})
ioctl$DMA_BUF_SET_NAME_A(r5, 0x40086203, &(0x7f00000001c0)='\x02\x00\x00\x00\x05\x00\x00\x00-control\x00')
ioctl$DMA_BUF_IOCTL_SYNC(r5, 0x40086200, &(0x7f0000000080)=0x2)

44.268894076s ago: executing program 5 (id=17):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000200), 0x60281, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x80200, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
openat$sw_sync_info(0xffffffffffffff9c, &(0x7f0000000100), 0x400, 0x0)
socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x15)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x3, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

43.171533841s ago: executing program 5 (id=22):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000300)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='./file0/../file0\x00', &(0x7f0000000340)='./file0/file0\x00', 0x0, 0x891018, 0x0)
mount$bind(0x0, &(0x7f0000000140)='./file0/file0\x00', 0x0, 0x80000, 0x0)
mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000280)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0)
mount$bind(&(0x7f00000002c0)='./file0/file0\x00', &(0x7f0000000240)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
umount2(&(0x7f0000000480)='./file0\x00', 0x0)

42.551271522s ago: executing program 5 (id=25):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000002c0))
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup(r1)
r3 = fcntl$dupfd(r0, 0x0, r1)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0})
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f0000000080)={0x0, r2})
r4 = syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x82)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x12, r4, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), 0xffffffffffffffff)

41.404367035s ago: executing program 5 (id=28):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000000)={0x30, 0x5, 0x0, {0x2e}}, 0x30)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x498e}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r2, r0, 0x0)

40.449481371s ago: executing program 32 (id=28):
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f0000006380)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000021c0)="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", 0x2000, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000580)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x24c01, 0x0)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f0000000000)={0x30, 0x5, 0x0, {0x2e}}, 0x30)
syz_fuse_handle_req(r0, &(0x7f00000041c0)="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", 0x2000, &(0x7f0000000a40)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000240)={0x18, 0x0, 0x0, {0x498e}}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
dup3(r2, r0, 0x0)

22.89124004s ago: executing program 2 (id=70):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000c80)='./file1\x00', 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB='iocharset=iso8859-15,unhide,uid=', @ANYRESDEC=0x0, @ANYBLOB], 0x1, 0xc3c, &(0x7f0000000d00)="$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")
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x30)
syz_open_dev$loop(0x0, 0x0, 0x22400)
r0 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x6242, 0xce)

19.899468691s ago: executing program 2 (id=76):
r0 = userfaultfd(0x801)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})

19.617769776s ago: executing program 1 (id=79):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x651, 0x0)
setsockopt$IP_VS_SO_SET_ADD(0xffffffffffffffff, 0x0, 0x482, &(0x7f00000004c0)={0x2b, @initdev={0xac, 0x1e, 0x1, 0x0}, 0x4e23, 0x0, 'lblcr\x00', 0x2, 0x7ff, 0x56}, 0x2c)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r2 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r2, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r2, &(0x7f0000000300)={&(0x7f0000000040)={0x2, 0x0, @local}, 0x10, 0x0, 0x0, &(0x7f0000000240)=[@rdma_dest={0x18, 0x114, 0x2, {0x2, 0x7}}], 0x18, 0x400c8c5}, 0x0)
r3 = add_key$keyring(&(0x7f0000000080), 0x0, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r3, 0x0, 0x0)
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mkdir(&(0x7f0000000400)='./file1\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
setgroups(0x0, 0x0)
socket(0x10, 0x3, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
setxattr$system_posix_acl(&(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='system.posix_acl_access\x00', 0x0, 0x0, 0x0)

17.891846999s ago: executing program 2 (id=95):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
r3 = memfd_create(&(0x7f0000000080)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea\x7f\x8cZ7`_4t\xcda\x9b\x11\x11\x0e\xa1\xcf\x00'/51, 0x2)
ftruncate(r3, 0x1000006)
fcntl$addseals(r3, 0x409, 0x7)
ioctl$UDMABUF_CREATE(r2, 0x40187542, &(0x7f0000000000)={r3, 0x0, 0x0, 0x1000000})

16.158938065s ago: executing program 4 (id=86):
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x9)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000180)={[{@upperdir={'upperdir', 0x3d, './file1'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@workdir={'workdir', 0x3d, './bus'}}]})
r0 = open(&(0x7f0000000140)='./file0\x00', 0x0, 0x0)
mknodat$loop(r0, &(0x7f0000000040)='./file1\x00', 0x2000, 0x0)
chdir(&(0x7f00000003c0)='./bus\x00')
rename(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000200)='./file2\x00')
linkat(r0, &(0x7f0000000100)='./file1\x00', r0, &(0x7f0000000240)='./file0\x00', 0x0)
name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', &(0x7f00000000c0)=@reiserfs_5={0x46, 0x5, {0x4, 0x7, 0x6, 0x8, 0x80000001}}, 0x0, 0x1200)

15.071162469s ago: executing program 4 (id=87):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x3)
ioctl$FS_IOC_GETFSLABEL(r3, 0x541b, 0xffffffffffffffff)

13.449195517s ago: executing program 4 (id=90):
syz_mount_image$udf(&(0x7f0000000c40), &(0x7f0000000c80)='./file1\x00', 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB='iocharset=iso8859-15,unhide,uid=', @ANYRESDEC=0x0, @ANYBLOB], 0x1, 0xc3c, &(0x7f0000000d00)="$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")
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(0xffffffffffffffff, 0x8933, 0x0)
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x30)
syz_open_dev$loop(0x0, 0x0, 0x22400)
r0 = openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r1, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x6242, 0xce)

12.705996465s ago: executing program 0 (id=104):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, 0x0, 0x48)
r3 = syz_open_procfs(0x0, &(0x7f0000000200)='net/ipv6_route\x00')
pread64(r3, &(0x7f000001a240)=""/102400, 0x19000, 0x100008)

12.602805444s ago: executing program 1 (id=93):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$int_in(r0, 0x40000000af01, 0x0)
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000002c0))
r1 = socket$packet(0x11, 0x3, 0x300)
r2 = dup(r1)
r3 = fcntl$dupfd(r0, 0x0, r1)
ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000340)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/251, 0x0})
ioctl$VHOST_NET_SET_BACKEND(r3, 0x4008af30, &(0x7f0000000080)={0x0, r2})
r4 = syz_open_dev$sg(&(0x7f00000000c0), 0x0, 0x82)
mmap(&(0x7f0000000000/0x2000)=nil, 0x2000, 0x5, 0x12, r4, 0x0)
syz_genetlink_get_family_id$ieee802154(&(0x7f0000000280), 0xffffffffffffffff)

10.653715199s ago: executing program 0 (id=96):
r0 = userfaultfd(0x801)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})

10.602567578s ago: executing program 2 (id=97):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=@mpls_newroute={0x144, 0x18, 0x10, 0x70bd28, 0x25dfdbfe, {0x1c, 0x80, 0x0, 0xf6, 0x0, 0x4, 0x0, 0x0, 0x800}, [@RTA_DST={0x8, 0x1, {0xe, 0x0, 0x1}}, @RTA_NEWDST={0x84, 0x13, [{0x3}, {0x9}, {0x7, 0x0, 0x1}, {0x9}, {0x400}, {}, {0xe8}, {0x2}, {0x5, 0x0, 0x1}, {0x75e}, {0x0, 0x0, 0x1}, {0x3}, {0x2, 0x0, 0x1}, {0x80, 0x0, 0x1}, {0xffff9, 0x0, 0x1}, {0x9}, {0x1, 0x0, 0x1}, {0x8000, 0x0, 0x1}, {0x19c}, {0x9}, {0x7, 0x0, 0x1}, {0x400}, {0xac08b}, {0x1f1c, 0x0, 0x1}, {0x1}, {0x8}, {0x2, 0x0, 0x1}, {0x401, 0x0, 0x1}, {0xff}, {0x8, 0x0, 0x1}, {0x40000}, {0x3ff}]}, @RTA_OIF={0x8}, @RTA_OIF={0x8}, @RTA_OIF={0x8}, @RTA_NEWDST={0x84, 0x13, [{0x2, 0x0, 0x1}, {0xf8001, 0x0, 0x1}, {0x100, 0x0, 0x1}, {0x36, 0x0, 0x1}, {0x2159}, {}, {0xd}, {0x6, 0x0, 0x1}, {0x717, 0x0, 0x1}, {0x5}, {0x8, 0x0, 0x1}, {0x800}, {0x800}, {0x6, 0x0, 0x1}, {0x95c1, 0x0, 0x1}, {0x9}, {0x92, 0x0, 0x1}, {0x100}, {0x9}, {0x7ff}, {0x8, 0x0, 0x1}, {0xfffff, 0x0, 0x1}, {0xfff}, {0x2, 0x0, 0x1}, {0x1}, {0x401, 0x0, 0x1}, {0x7, 0x0, 0x1}, {0x3, 0x0, 0x1}, {0x3d8, 0x0, 0x1}, {0x8}, {0x4, 0x0, 0x1}, {0x1, 0x0, 0x1}]}]}, 0x144}}, 0x0)
getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r3, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', &(0x7f0000000180)='%(,c\xbe\xfbL:', 0x0)
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r5, &(0x7f0000000380)=""/141, 0x8d)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000000400)=ANY=[], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_mount_image$iso9660(&(0x7f00000008c0), &(0x7f0000000040)='./file0\x00', 0x1080a, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x1, 0x66f, &(0x7f0000000240)="$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")
newfstatat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x800)
socket(0x2, 0x80805, 0x0)

10.098035727s ago: executing program 4 (id=98):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xc)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000100)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f0000000180)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f00000000c0))
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
r2 = syz_open_dev$usbfs(&(0x7f00000000c0), 0x201, 0x2)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1000002, 0x11012, r2, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600a00, 0x200000, 0x3, &(0x7f0000a00000/0x600000)=nil)

9.376545885s ago: executing program 0 (id=99):
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x6, 0x8, 0x5, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={0x0}, 0x18)
creat(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x42031, 0xffffffffffffffff, 0x0)
r1 = syz_open_dev$vim2m(&(0x7f00000001c0), 0x8, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r1, 0xc0405602, &(0x7f0000000300)={0x41, 0x2, 0x0, "444900d730faa901000000000000000000f789981008d7b15b5700e46b8be100", 0x50424752})

8.529258616s ago: executing program 2 (id=101):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xfe, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r1 = dup(r0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000201000085000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r5, 0x402c542d, &(0x7f0000000740)={0x1000200, 0x0, 0x934, 0x10002, 0x0, "4ae206000000e90cd88f00040100", 0x4, 0x4})
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r6, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r6, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$sock_int(r6, 0x1, 0x29, &(0x7f0000000040)=0x1000, 0x4)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x25, &(0x7f0000000080)=0x2a8, 0x4)
sendto$inet6(r6, &(0x7f0000000000)="8d", 0x1, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000003180)=[{{0x0, 0x0, 0x0}, 0x67f}], 0x1, 0x12031, 0x0)

8.450752439s ago: executing program 1 (id=102):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000380)={[{@user_xattr}, {@noblock_validity}, {@mblk_io_submit}, {@resuid}, {@usrquota}, {@block_validity}]}, 0x1, 0x4b5, &(0x7f0000000580)="$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")
open(&(0x7f0000000000)='./bus\x00', 0x60142, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000b00)={0x2, 0x4e24, @local}, 0x10)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
ftruncate(r1, 0x2007ffb)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x28011, r1, 0x0)
sync()
setxattr$trusted_overlay_upper(0x0, 0x0, 0x0, 0x835, 0x0)
open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)

7.648778044s ago: executing program 0 (id=103):
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan0\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
sendmsg$NL80211_CMD_SET_STATION(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000004500)={0x34, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_MAC={0xa, 0x6, @device_b}, @NL80211_ATTR_STA_FLAGS2={0xc, 0x43, {0x2, 0x8001}}]}, 0x34}, 0x1, 0x0, 0x0, 0x40084}, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000000640)={'wlan0\x00', <r5=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r3, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r4, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r5}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x8}]}, 0x24}, 0x1, 0x0, 0x0, 0x1}, 0x0)

7.482218826s ago: executing program 3 (id=105):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x80}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@usrjquota}]}, 0x1, 0x55a, &(0x7f0000001880)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000480))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000001740)=""/192, &(0x7f0000000140)=""/92})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000240)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

7.137496882s ago: executing program 0 (id=106):
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000300)=ANY=[@ANYBLOB="1500000065ffff017f000e0800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000000)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000003c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_GETXATTR(r2, &(0x7f00000000c0)={0x18}, 0x18)
write$FUSE_INIT(r2, &(0x7f0000000200)={0x50, 0x0, 0x0, {0x7, 0x29, 0x20200}}, 0x50)
mount$9p_fd(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000080), 0x0, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
r3 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
writev(r3, &(0x7f0000000000)=[{&(0x7f00000000c0)="14", 0x1f68}], 0x2)

6.911586976s ago: executing program 4 (id=107):
r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000240)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x4f3, 0x755, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x40, 0xb1, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x1, 0x0, {0x9, 0x21, 0x101, 0x0, 0x1, {0x22, 0x5}}, {{{0x9, 0x5, 0x81, 0x3, 0x3ff, 0xc}}}}}]}}]}}, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0xffffffff)
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/67, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, 0x0, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680))
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, &(0x7f0000000000)={0x2c, &(0x7f0000000040)={0x20, 0x12, 0x7, {0x7, 0x1, "00f4000000"}}, 0x0, 0x0, 0x0, 0x0}, 0x0)

6.212175153s ago: executing program 0 (id=108):
sendmsg$nl_route_sched(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e23}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
fsopen(&(0x7f00000002c0)='pstore\x00', 0x1)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000841, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @empty}, 0x1c)
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r4, &(0x7f00000000c0)={0x18, 0x0, {0x2, @empty, 'ip6_vti0\x00'}}, 0x1e)
sendmmsg(r4, 0x0, 0x0, 0x0)
sendmsg$IPSET_CMD_CREATE(r3, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[], 0x6c}}, 0x0)
add_key(&(0x7f0000000240)='cifs.spnego\x00', 0x0, 0x0, 0x0, 0xfffffffffffffffd)
setreuid(0xffffffffffffffff, 0xee00)
pipe(0x0)
ioctl$int_in(0xffffffffffffffff, 0x5452, &(0x7f0000000180)=0x48000)

6.079570001s ago: executing program 3 (id=109):
pipe(&(0x7f0000000100)={<r0=>0xffffffffffffffff})
fremovexattr(r0, &(0x7f0000000300)=@random={'osx.', '@\x00'})
socket$nl_route(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0xffffffffffffff1a, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000280), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
r2 = syz_open_dev$usbmon(&(0x7f00000005c0), 0x0, 0x0)
r3 = syz_open_dev$usbfs(&(0x7f0000000040), 0x20000007d, 0x0)
dup3(r2, r3, 0x0)

4.480181156s ago: executing program 1 (id=110):
getpeername$qrtr(0xffffffffffffffff, 0x0, 0x0)
r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000380)='/proc/asound/card1/oss_mixer\x00', 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x1)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002000)=""/102400, 0x19000)
r2 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000900), 0x2, 0x0)
write$RDMA_USER_CM_CMD_LISTEN(r2, &(0x7f00000004c0)={0x7, 0x8, 0xfa00, {0xffffffffffffffff, 0xd4}}, 0x10)
write$proc_mixer(r0, 0x0, 0xd3)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)

4.213894805s ago: executing program 3 (id=111):
openat(0xffffffffffffff9c, 0x0, 0x0, 0x1)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x10, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x1, 0x0, 0x2}}}}}}, 0x0)
syz_emit_ethernet(0x5e, &(0x7f0000002e40)={@local, @dev, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "7428dd", 0x28, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_na={0x89, 0x0, 0x0, 0x0, '\x00', @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, [{0x0, 0x2, "122b472e41e24b11f34b608816e5"}]}}}}}}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
capset(0x0, 0x0)
mkdir(0x0, 0x0)
r1 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_procs(r1, &(0x7f0000000180)='cgroup.threads\x00', 0x2, 0x0)
creat(0x0, 0x0)
pwritev(0xffffffffffffffff, &(0x7f0000000500)=[{&(0x7f0000000000)='0', 0x1}, {&(0x7f00000002c0)='2', 0x1}], 0x2, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="300000001000010800"/20, @ANYRES32=0x0, @ANYBLOB="000000000000000008000400699b000008001b"], 0x30}}, 0x0)

3.08847246s ago: executing program 1 (id=112):
r0 = userfaultfd(0x801)
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r1 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r1, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f00000001c0))
ioctl$UFFDIO_REGISTER(r0, 0xc020aa00, &(0x7f0000000080)={{&(0x7f00000e2000/0xc00000)=nil, 0xc00000}, 0x2})
ioctl$UFFDIO_COPY(r0, 0xc028aa03, &(0x7f0000000000)={&(0x7f00002b9000/0x400000)=nil, &(0x7f0000779000/0x1000)=nil, 0x400000, 0x3, 0x2})

3.088025946s ago: executing program 3 (id=113):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xe, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$USBDEVFS_CONTROL(0xffffffffffffffff, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0x301, 0x0, 0x2, 0x0, 0x0})
sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x4008440)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x7, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00, 0x0, 0xffffffffffffffff, 0xffffffffffffffb9, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1.671770651s ago: executing program 3 (id=114):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000600)=@mpls_newroute={0x144, 0x18, 0x10, 0x70bd28, 0x25dfdbfe, {0x1c, 0x80, 0x0, 0xf6, 0x0, 0x4, 0x0, 0x0, 0x800}, [@RTA_DST={0x8, 0x1, {0xe, 0x0, 0x1}}, @RTA_NEWDST={0x84, 0x13, [{0x3}, {0x9}, {0x7, 0x0, 0x1}, {0x9}, {0x400}, {}, {0xe8}, {0x2}, {0x5, 0x0, 0x1}, {0x75e}, {0x0, 0x0, 0x1}, {0x3}, {0x2, 0x0, 0x1}, {0x80, 0x0, 0x1}, {0xffff9, 0x0, 0x1}, {0x9}, {0x1, 0x0, 0x1}, {0x8000, 0x0, 0x1}, {0x19c}, {0x9}, {0x7, 0x0, 0x1}, {0x400}, {0xac08b}, {0x1f1c, 0x0, 0x1}, {0x1}, {0x8}, {0x2, 0x0, 0x1}, {0x401, 0x0, 0x1}, {0xff}, {0x8, 0x0, 0x1}, {0x40000}, {0x3ff}]}, @RTA_OIF={0x8}, @RTA_OIF={0x8}, @RTA_OIF={0x8}, @RTA_NEWDST={0x84, 0x13, [{0x2, 0x0, 0x1}, {0xf8001, 0x0, 0x1}, {0x100, 0x0, 0x1}, {0x36, 0x0, 0x1}, {0x2159}, {}, {0xd}, {0x6, 0x0, 0x1}, {0x717, 0x0, 0x1}, {0x5}, {0x8, 0x0, 0x1}, {0x800}, {0x800}, {0x6, 0x0, 0x1}, {0x95c1, 0x0, 0x1}, {0x9}, {0x92, 0x0, 0x1}, {0x100}, {0x9}, {0x7ff}, {0x8, 0x0, 0x1}, {0xfffff, 0x0, 0x1}, {0xfff}, {0x2, 0x0, 0x1}, {0x1}, {0x401, 0x0, 0x1}, {0x7, 0x0, 0x1}, {0x3, 0x0, 0x1}, {0x3d8, 0x0, 0x1}, {0x8}, {0x4, 0x0, 0x1}, {0x1, 0x0, 0x1}]}]}, 0x144}}, 0x0)
getpid()
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000005000000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
writev(0xffffffffffffffff, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r2 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r3 = dup(r2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3000007, 0x38011, r3, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
r4 = socket$inet6(0xa, 0x1, 0x8010000000000084)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e21, 0x0, @empty}, 0x1c)
mount$afs(0x0, &(0x7f0000002840)='./file0\x00', &(0x7f0000002880), 0x700, 0x0)
mount$overlay(0x0, 0x0, &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
fsconfig$FSCONFIG_SET_STRING(0xffffffffffffffff, 0x1, &(0x7f0000000000)='source', &(0x7f0000000180)='%(,c\xbe\xfbL:', 0x0)
r5 = openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
getdents64(r5, &(0x7f0000000380)=""/141, 0x8d)
connect$inet6(r4, &(0x7f0000000000)={0xa, 0x4e21, 0x0, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0x14}}}, 0x1c)
bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x0, 0x16, &(0x7f0000000400)=ANY=[], &(0x7f0000000900)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
socket$inet6_sctp(0xa, 0x1, 0x84)
syz_mount_image$iso9660(&(0x7f00000008c0), &(0x7f0000000040)='./file0\x00', 0x1080a, &(0x7f0000000080)=ANY=[@ANYBLOB="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"], 0x1, 0x66f, &(0x7f0000000240)="$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")
newfstatat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0, 0x800)
socket(0x2, 0x80805, 0x0)

1.137163963s ago: executing program 4 (id=115):
creat(&(0x7f0000000240)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000001900)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000340)=ANY=[@ANYBLOB="1500000065ffff048000000800395032303030"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})
chmod(&(0x7f0000000140)='./file0\x00', 0x0)
r3 = creat(&(0x7f0000000300)='./file0\x00', 0x0)
r4 = syz_open_dev$loop(&(0x7f0000000080), 0x47ffffa, 0x62800)
mmap(&(0x7f0000001000/0x4000)=nil, 0x4000, 0x5, 0x12, r4, 0x0)
write$UHID_INPUT(r3, &(0x7f0000000540)={0x8, {"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", 0x1000}}, 0x1006)

969.998391ms ago: executing program 1 (id=116):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
pwrite64(r0, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r1, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
truncate(&(0x7f0000002000)='./file1\x00', 0x1)
fallocate(r1, 0x0, 0x11, 0x1afd)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x2, 0x96)
pwrite64(r2, &(0x7f0000000140)='2', 0x155c2, 0x8000c64)
openat(0xffffffffffffff9c, 0x0, 0x42, 0x31)
open(&(0x7f0000000040)='./file1\x00', 0x80242, 0x0)

717.421361ms ago: executing program 3 (id=117):
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x0, 0x0, 0xfe, 0x0, &(0x7f0000000000))
pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, <r0=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r1 = dup(r0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000201000085000000"], 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xc, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00'}, 0x10)
write$FUSE_BMAP(r1, &(0x7f0000000100)={0x18}, 0x18)
r5 = syz_open_dev$tty20(0xc, 0x4, 0x0)
ioctl$TCSETSF2(r5, 0x402c542d, &(0x7f0000000740)={0x1000200, 0x0, 0x934, 0x10002, 0x0, "4ae206000000e90cd88f00040100", 0x4, 0x4})
r6 = socket$inet6(0xa, 0x400000000001, 0x0)
bind$inet6(r6, &(0x7f0000fa0fe4)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
sendto$inet6(r6, 0x0, 0x0, 0x20000008, &(0x7f00000001c0)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
setsockopt$sock_int(r6, 0x1, 0x29, &(0x7f0000000040)=0x1000, 0x4)
setsockopt$SO_TIMESTAMPING(r6, 0x1, 0x25, &(0x7f0000000080)=0x2a8, 0x4)
sendto$inet6(r6, &(0x7f0000000000)="8d", 0x1, 0x0, 0x0, 0x0)
recvmmsg(r6, &(0x7f0000003180)=[{{0x0, 0x0, 0x0}, 0x67f}], 0x1, 0x12031, 0x0)

0s ago: executing program 2 (id=118):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="1b000000000000000000000000000400"], 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x15, 0x1c, &(0x7f0000000480)=@ringbuf={{0x18, 0x8}, {{0x18, 0x1, 0x1, 0x0, r2}, {}, {0x7, 0x0, 0xb, 0x6}, {0x85, 0x0, 0x0, 0x5}, {0x4}}, {{0x5, 0x0, 0x3}}, [@snprintf={{0x7, 0x0, 0xb, 0x2}, {0x3, 0x3, 0x6, 0xa, 0x9, 0xfff0, 0xf1}, {0x5, 0x0, 0xb, 0x9}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x6, 0x1, 0xb, 0xa, 0x8}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x4, 0x9}, {}, {}, {0x18, 0x6, 0x2, 0x0, r1}, {}, {0x46, 0x8, 0xfff0, 0x76}}], {{0x7, 0x1, 0xb, 0x8}, {0x6, 0x0, 0x5, 0x8}, {0x85, 0x0, 0x0, 0x7}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @sk_reuseport, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={0x0, r0}, 0x18)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.128' (ED25519) to the list of known hosts.
[  101.411161][   T24] cfg80211: failed to load regulatory.db
[  102.270750][ T5809] cgroup: Unknown subsys name 'net'
[  102.414630][ T5809] cgroup: Unknown subsys name 'cpuset'
[  102.424188][ T5809] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[  104.138765][ T5809] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[  107.114408][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  107.122508][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  107.138356][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  107.147014][ T5829] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  107.155214][ T5829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  107.159723][ T5830] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  107.170467][ T5133] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  107.178025][ T5133] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  107.198160][ T5833] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  107.208076][ T5833] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  107.217814][ T5833] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  107.218261][ T5842] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  107.225516][ T5833] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  107.232340][ T5842] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  107.246270][ T5833] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  107.246645][ T5842] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  107.254422][ T5833] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  107.261378][ T5842] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  107.270546][ T5833] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  107.275269][ T5842] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  107.300709][ T5833] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  107.300739][ T5842] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  107.330483][ T5842] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  107.339484][ T5843] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  107.348155][ T5843] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  107.357078][ T5829] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  107.364504][ T5843] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  107.369371][ T5844] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  107.372407][ T5843] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  107.388799][ T5844] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  108.364888][ T5832] chnl_net:caif_netlink_parms(): no params data found
[  108.379469][ T5826] chnl_net:caif_netlink_parms(): no params data found
[  108.488544][ T5827] chnl_net:caif_netlink_parms(): no params data found
[  108.580989][ T5836] chnl_net:caif_netlink_parms(): no params data found
[  108.632203][ T5835] chnl_net:caif_netlink_parms(): no params data found
[  108.790532][ T5834] chnl_net:caif_netlink_parms(): no params data found
[  108.971649][ T5826] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.979072][ T5826] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.986645][ T5826] bridge_slave_0: entered allmulticast mode
[  108.995383][ T5826] bridge_slave_0: entered promiscuous mode
[  109.014151][ T5827] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.021394][ T5827] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.028594][ T5827] bridge_slave_0: entered allmulticast mode
[  109.036379][ T5827] bridge_slave_0: entered promiscuous mode
[  109.067121][ T5832] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.074727][ T5832] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.082068][ T5832] bridge_slave_0: entered allmulticast mode
[  109.090048][ T5832] bridge_slave_0: entered promiscuous mode
[  109.098243][ T5826] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.105619][ T5826] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.112807][ T5826] bridge_slave_1: entered allmulticast mode
[  109.120874][ T5826] bridge_slave_1: entered promiscuous mode
[  109.143426][ T5827] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.150707][ T5827] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.157858][ T5827] bridge_slave_1: entered allmulticast mode
[  109.165616][ T5827] bridge_slave_1: entered promiscuous mode
[  109.206026][ T5832] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.213361][ T5832] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.220831][ T5832] bridge_slave_1: entered allmulticast mode
[  109.228393][ T5832] bridge_slave_1: entered promiscuous mode
[  109.251391][ T5843] Bluetooth: hci0: command tx timeout
[  109.320911][ T5836] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.328071][ T5836] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.335299][ T5836] bridge_slave_0: entered allmulticast mode
[  109.343219][ T5836] bridge_slave_0: entered promiscuous mode
[  109.351312][ T5835] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.358465][ T5835] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.365925][ T5835] bridge_slave_0: entered allmulticast mode
[  109.373668][ T5835] bridge_slave_0: entered promiscuous mode
[  109.409533][ T5843] Bluetooth: hci5: command tx timeout
[  109.409555][ T5838] Bluetooth: hci4: command tx timeout
[  109.409605][ T5844] Bluetooth: hci3: command tx timeout
[  109.415114][ T5838] Bluetooth: hci2: command tx timeout
[  109.466718][ T5836] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.476215][ T5836] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.483762][ T5836] bridge_slave_1: entered allmulticast mode
[  109.492194][ T5836] bridge_slave_1: entered promiscuous mode
[  109.492576][ T5843] Bluetooth: hci1: command tx timeout
[  109.517133][ T5835] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.524299][ T5835] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.531717][ T5835] bridge_slave_1: entered allmulticast mode
[  109.540038][ T5835] bridge_slave_1: entered promiscuous mode
[  109.551086][ T5832] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.563802][ T5832] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.576398][ T5826] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.604614][ T5827] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.667742][ T5826] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.694374][ T5834] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.701666][ T5834] bridge0: port 1(bridge_slave_0) entered disabled state
[  109.708816][ T5834] bridge_slave_0: entered allmulticast mode
[  109.717038][ T5834] bridge_slave_0: entered promiscuous mode
[  109.728125][ T5827] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.740883][ T5836] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.816047][ T5834] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.823348][ T5834] bridge0: port 2(bridge_slave_1) entered disabled state
[  109.835563][ T5834] bridge_slave_1: entered allmulticast mode
[  109.843266][ T5834] bridge_slave_1: entered promiscuous mode
[  109.870176][ T5836] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.900403][ T5835] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  109.912750][ T5832] team0: Port device team_slave_0 added
[  109.922419][ T5835] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.934279][ T5826] team0: Port device team_slave_0 added
[  109.990234][ T5832] team0: Port device team_slave_1 added
[  110.014441][ T5826] team0: Port device team_slave_1 added
[  110.062322][ T5827] team0: Port device team_slave_0 added
[  110.071382][ T5836] team0: Port device team_slave_0 added
[  110.079626][ T5827] team0: Port device team_slave_1 added
[  110.136196][ T5834] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  110.164293][ T5836] team0: Port device team_slave_1 added
[  110.203304][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.210723][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.236660][ T5832] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.253314][ T5835] team0: Port device team_slave_0 added
[  110.262768][ T5835] team0: Port device team_slave_1 added
[  110.270197][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.277152][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.303447][ T5826] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.317320][ T5834] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  110.377047][ T5832] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.384451][ T5832] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.410597][ T5832] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.476592][ T5826] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.483608][ T5826] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.509941][ T5826] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.538252][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.545799][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.571839][ T5827] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.586063][ T5827] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.593720][ T5827] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.620213][ T5827] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.638652][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.645918][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.672049][ T5836] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.694309][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_0
[  110.701393][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.727895][ T5835] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  110.750380][ T5835] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.757335][ T5835] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.783845][ T5835] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.798517][ T5834] team0: Port device team_slave_0 added
[  110.813438][ T5836] batman_adv: batadv0: Adding interface: batadv_slave_1
[  110.820458][ T5836] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.855215][ T5836] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  110.963105][ T5834] team0: Port device team_slave_1 added
[  111.013231][ T5832] hsr_slave_0: entered promiscuous mode
[  111.020515][ T5832] hsr_slave_1: entered promiscuous mode
[  111.049876][ T5826] hsr_slave_0: entered promiscuous mode
[  111.056626][ T5826] hsr_slave_1: entered promiscuous mode
[  111.063044][ T5826] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.070792][ T5826] Cannot create hsr debugfs directory
[  111.093199][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_0
[  111.100866][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.126802][ T5834] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  111.216191][ T5834] batman_adv: batadv0: Adding interface: batadv_slave_1
[  111.223283][ T5834] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  111.249361][ T5834] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  111.329726][ T5843] Bluetooth: hci0: command tx timeout
[  111.333846][ T5827] hsr_slave_0: entered promiscuous mode
[  111.342205][ T5827] hsr_slave_1: entered promiscuous mode
[  111.348404][ T5827] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.356071][ T5827] Cannot create hsr debugfs directory
[  111.398682][ T5836] hsr_slave_0: entered promiscuous mode
[  111.405785][ T5836] hsr_slave_1: entered promiscuous mode
[  111.412179][ T5836] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.419792][ T5836] Cannot create hsr debugfs directory
[  111.489826][ T5843] Bluetooth: hci5: command tx timeout
[  111.489850][ T5838] Bluetooth: hci2: command tx timeout
[  111.495230][ T5843] Bluetooth: hci3: command tx timeout
[  111.500626][ T5133] Bluetooth: hci4: command tx timeout
[  111.523033][ T5835] hsr_slave_0: entered promiscuous mode
[  111.530484][ T5835] hsr_slave_1: entered promiscuous mode
[  111.536716][ T5835] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.544754][ T5835] Cannot create hsr debugfs directory
[  111.569276][ T5843] Bluetooth: hci1: command tx timeout
[  111.663561][ T5834] hsr_slave_0: entered promiscuous mode
[  111.670556][ T5834] hsr_slave_1: entered promiscuous mode
[  111.676789][ T5834] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  111.684965][ T5834] Cannot create hsr debugfs directory
[  112.362444][ T5827] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  112.392802][ T5827] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  112.404381][ T5827] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  112.426106][ T5827] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  112.484765][ T5832] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  112.500022][ T5832] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  112.515426][ T5832] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  112.526654][ T5832] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  112.633062][ T5826] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  112.673003][ T5826] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  112.707451][ T5826] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  112.723912][ T5826] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  112.843877][ T5836] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  112.866642][ T5836] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  112.907774][ T5836] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  112.941353][ T5836] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  113.036208][ T5832] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.051031][ T5827] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.081705][ T5834] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  113.117760][ T5834] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  113.131166][ T5834] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  113.175672][ T5834] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  113.244510][ T5826] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.294461][ T5832] 8021q: adding VLAN 0 to HW filter on device team0
[  113.308921][ T5827] 8021q: adding VLAN 0 to HW filter on device team0
[  113.357691][ T5835] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  113.381132][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.388480][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.405778][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.412960][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.426215][ T5843] Bluetooth: hci0: command tx timeout
[  113.428996][ T5835] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  113.450763][ T5835] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  113.476722][ T5835] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  113.505062][ T5826] 8021q: adding VLAN 0 to HW filter on device team0
[  113.514881][   T82] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.522032][   T82] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.536041][   T82] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.543196][   T82] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.569514][ T5844] Bluetooth: hci2: command tx timeout
[  113.569568][ T5133] Bluetooth: hci5: command tx timeout
[  113.574979][ T5843] Bluetooth: hci3: command tx timeout
[  113.580520][ T5838] Bluetooth: hci4: command tx timeout
[  113.648056][   T82] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.655283][   T82] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.659455][ T5838] Bluetooth: hci1: command tx timeout
[  113.672892][   T82] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.680125][   T82] bridge0: port 2(bridge_slave_1) entered forwarding state
[  113.725092][ T5836] 8021q: adding VLAN 0 to HW filter on device bond0
[  113.849545][ T5836] 8021q: adding VLAN 0 to HW filter on device team0
[  113.904090][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[  113.911270][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  113.954470][ T1148] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.961662][ T1148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.045109][ T5834] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.175937][ T5835] 8021q: adding VLAN 0 to HW filter on device bond0
[  114.247090][ T5834] 8021q: adding VLAN 0 to HW filter on device team0
[  114.308417][ T5835] 8021q: adding VLAN 0 to HW filter on device team0
[  114.337695][ T4049] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.344873][ T4049] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.385761][ T5836] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  114.540372][ T4049] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.547560][ T4049] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.601826][ T1148] bridge0: port 1(bridge_slave_0) entered blocking state
[  114.609389][ T1148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  114.717891][ T4049] bridge0: port 2(bridge_slave_1) entered blocking state
[  114.725115][ T4049] bridge0: port 2(bridge_slave_1) entered forwarding state
[  114.826624][ T5827] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.856334][ T5832] 8021q: adding VLAN 0 to HW filter on device batadv0
[  114.878392][ T5826] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.053384][ T5836] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.080788][ T5835] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  115.154590][ T5827] veth0_vlan: entered promiscuous mode
[  115.188478][ T5826] veth0_vlan: entered promiscuous mode
[  115.295181][ T5827] veth1_vlan: entered promiscuous mode
[  115.359048][ T5826] veth1_vlan: entered promiscuous mode
[  115.495261][ T5838] Bluetooth: hci0: command tx timeout
[  115.538286][ T5827] veth0_macvtap: entered promiscuous mode
[  115.569989][ T5836] veth0_vlan: entered promiscuous mode
[  115.612437][ T5827] veth1_macvtap: entered promiscuous mode
[  115.634825][ T5836] veth1_vlan: entered promiscuous mode
[  115.654026][ T5838] Bluetooth: hci4: command tx timeout
[  115.658613][ T5826] veth0_macvtap: entered promiscuous mode
[  115.669329][ T5838] Bluetooth: hci3: command tx timeout
[  115.674752][ T5838] Bluetooth: hci5: command tx timeout
[  115.681420][ T5843] Bluetooth: hci2: command tx timeout
[  115.724732][ T5834] 8021q: adding VLAN 0 to HW filter on device batadv0
[  115.739633][ T5838] Bluetooth: hci1: command tx timeout
[  115.764550][ T5826] veth1_macvtap: entered promiscuous mode
[  115.790962][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.818878][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  115.830273][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.843454][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_0
[  115.864873][ T5826] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.887130][ T5826] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  115.896579][ T5826] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  115.905860][ T5826] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  115.915020][ T5826] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  115.928126][ T5827] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  115.940002][ T5827] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  115.951518][ T5827] batman_adv: batadv0: Interface activated: batadv_slave_1
[  115.972694][ T5835] 8021q: adding VLAN 0 to HW filter on device batadv0
[  116.017786][ T5827] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.027595][ T5827] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.038385][ T5827] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.047359][ T5827] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.126621][ T5836] veth0_macvtap: entered promiscuous mode
[  116.178361][ T5836] veth1_macvtap: entered promiscuous mode
[  116.198714][ T5834] veth0_vlan: entered promiscuous mode
[  116.256612][ T5832] veth0_vlan: entered promiscuous mode
[  116.269876][ T5834] veth1_vlan: entered promiscuous mode
[  116.314289][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.327594][ T4049] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.338777][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.345065][ T4049] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.349112][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.366526][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.380897][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.393010][ T5832] veth1_vlan: entered promiscuous mode
[  116.443280][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.459800][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.470180][ T5836] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  116.480825][ T5836] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.492385][ T5836] batman_adv: batadv0: Interface activated: batadv_slave_1
[  116.535799][ T5836] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  116.550989][ T5836] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  116.560186][ T5836] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  116.568915][ T5836] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  116.590886][ T5834] veth0_macvtap: entered promiscuous mode
[  116.636928][ T1148] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.654036][ T1148] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.673616][ T5834] veth1_macvtap: entered promiscuous mode
[  116.785863][ T5826] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  116.836999][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.839516][   T82] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  116.847778][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.855837][   T82] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.877485][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.889799][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.901692][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  116.912388][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  116.923961][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_0
[  116.976345][ T5832] veth0_macvtap: entered promiscuous mode
[  117.011914][ T5832] veth1_macvtap: entered promiscuous mode
[  117.032781][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.050581][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.065097][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.068332][ T5932] binder: 5931:5932 ioctl c0306201 2000000003c0 returned -14
[  117.077827][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.107199][ T5834] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.132657][ T5834] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.150791][ T5834] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.196432][   T63] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.207054][   T63] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.215760][ T5834] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.227898][ T5834] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.239465][ T5834] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.250260][ T5834] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.297717][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  117.308461][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.318806][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  117.365259][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.375576][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  117.386185][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.396366][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  117.407081][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.423057][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_0
[  117.471731][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.499188][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.509014][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.524792][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.534825][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.545461][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.556240][ T5832] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  117.567017][ T5832] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  117.590799][ T5832] batman_adv: batadv0: Interface activated: batadv_slave_1
[  117.603985][ T5835] veth0_vlan: entered promiscuous mode
[  117.636094][ T5832] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  117.648897][ T5832] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  117.659440][ T5832] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  117.668177][ T5832] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  117.719239][ T4049] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.728896][ T4049] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.760743][   T82] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.773488][   T82] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  117.803124][ T5835] veth1_vlan: entered promiscuous mode
[  117.936908][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  117.962767][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  118.095580][ T5835] veth0_macvtap: entered promiscuous mode
[  119.050209][   T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.069254][   T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.094759][ T5835] veth1_macvtap: entered promiscuous mode
[  119.199269][ T4049] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  119.207382][ T4049] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  119.362082][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.404319][ T5956] loop2: detected capacity change from 0 to 1024
[  119.411289][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.438111][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.450981][ T5956] =======================================================
[  119.450981][ T5956] WARNING: The mand mount option has been deprecated and
[  119.450981][ T5956]          and is ignored by this kernel. Remove the mand
[  119.450981][ T5956]          option from the mount to silence this warning.
[  119.450981][ T5956] =======================================================
[  119.522653][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.529535][ T5956] EXT4-fs: Ignoring removed nobh option
[  119.549224][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.554435][ T5956] EXT4-fs: Ignoring removed bh option
[  119.571238][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.595493][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.616944][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.658430][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  119.672599][ T5956] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.967684][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  119.980600][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_0
[  120.010857][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  120.027382][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  120.040266][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  120.053461][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  120.176616][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  120.193089][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  120.206829][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  120.269341][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  120.296076][ T5835] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  120.319799][ T5835] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  120.352677][ T5835] batman_adv: batadv0: Interface activated: batadv_slave_1
[  120.370268][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  120.462546][ T5835] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  120.509928][ T5956] EXT4-fs error (device loop2): mb_free_blocks:1945: group 0, inode 15: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[  120.528864][ T5835] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  120.541784][ T5835] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  120.557904][ T5835] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  120.617909][   T36] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  120.673223][   T36] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  120.903207][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.186484][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.229727][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  121.875541][ T5982] process 'syz.2.16' launched './file0' with NULL argv: empty string added
[  121.912773][ T4049] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  121.961892][ T4049] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  122.175603][  T847] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  122.229625][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  122.289568][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  122.302593][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  122.415763][ T5996] binder: 5995:5996 ioctl c0306201 200000000640 returned -14
[  122.469178][  T847] usb 2-1: Using ep0 maxpacket: 32
[  122.559295][  T847] usb 2-1: config 0 has no interfaces?
[  122.612767][  T847] usb 2-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed
[  122.647981][  T847] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  122.713436][  T847] usb 2-1: Product: syz
[  122.717643][  T847] usb 2-1: Manufacturer: syz
[  122.759193][  T847] usb 2-1: SerialNumber: syz
[  122.822132][  T847] usb 2-1: config 0 descriptor??
[  122.835293][ T6001] loop2: detected capacity change from 0 to 2048
[  122.997718][ T6001] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  123.152584][ T6001] ext4 filesystem being mounted at /3/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  123.199686][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  123.259903][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  123.271395][ T6013] syz.3.23 (6013): attempted to duplicate a private mapping with mremap.  This is not supported.
[  123.384887][   T30] audit: type=1800 audit(1746653634.271:2): pid=6001 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.19" name="file0" dev="loop2" ino=13 res=0 errno=0
[  123.387442][ T6001] fs-verity: sha512 using implementation "sha512-avx2"
[  123.700589][ T6001] fs-verity (loop2, inode 13): Error -4 building Merkle tree
[  124.485171][ T5827] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  124.610678][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  124.619505][    T0] NOHZ tick-stop error: local softirq work is pending, handler #82!!!
[  124.692960][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[  124.749455][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  124.951833][ T5889] usb 2-1: USB disconnect, device number 2
[  125.131565][   T63] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.323106][   T63] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.453547][   T63] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.662231][   T63] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.750660][ T6036] loop4: detected capacity change from 0 to 1024
[  126.708527][   T63] bridge_slave_1: left allmulticast mode
[  126.769136][   T63] bridge_slave_1: left promiscuous mode
[  126.775569][   T63] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.793017][   T30] audit: type=1804 audit(1746653637.711:3): pid=6045 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.36" name="/newroot/5/bus/bus" dev="overlay" ino=52 res=1 errno=0
[  126.965530][   T63] bridge_slave_0: left allmulticast mode
[  126.998183][   T63] bridge_slave_0: left promiscuous mode
[  127.034548][   T63] bridge0: port 1(bridge_slave_0) entered disabled state
[  127.510738][ T5133] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  127.755063][ T5133] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  127.763046][ T5133] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  127.771437][ T5133] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  127.779908][ T5133] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  129.810714][ T5133] Bluetooth: hci2: command tx timeout
[  130.339175][ T5911] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  130.340201][ T6093] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  130.501086][ T5911] usb 2-1: Using ep0 maxpacket: 8
[  130.537131][ T5911] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  130.581597][ T5911] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  130.610735][ T5911] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  130.652514][ T5911] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  130.814783][   T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  130.847997][   T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  130.879033][   T63] bond0 (unregistering): Released all slaves
[  130.969226][ T5911] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  130.978401][ T5911] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  131.230271][ T5911] usb 2-1: GET_CAPABILITIES returned 0
[  131.261022][ T5911] usbtmc 2-1:16.0: can't read capabilities
[  131.641453][    T9] usb 2-1: USB disconnect, device number 3
[  131.917620][ T5133] Bluetooth: hci2: command tx timeout
[  134.053335][ T5133] Bluetooth: hci2: command tx timeout
[  135.344372][ T6143] loop0: detected capacity change from 0 to 256
[  136.415215][ T5133] Bluetooth: hci2: command tx timeout
[  137.760557][   T63] hsr_slave_0: left promiscuous mode
[  137.788564][ T6151] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  137.796586][   T63] hsr_slave_1: left promiscuous mode
[  137.874115][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  137.937047][   T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[  138.019597][   T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  138.054076][   T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[  138.212215][   T63] veth1_macvtap: left promiscuous mode
[  138.217946][   T63] veth0_macvtap: left promiscuous mode
[  138.268856][   T63] veth1_vlan: left promiscuous mode
[  138.300880][   T63] veth0_vlan: left promiscuous mode
[  138.496431][ T6167] netlink: 8 bytes leftover after parsing attributes in process `syz.2.62'.
[  139.970030][ T6172] netlink: 4 bytes leftover after parsing attributes in process `syz.4.64'.
[  140.218072][    C1] vcan0: j1939_tp_rxtimer: 0xffff88803425a400: rx timeout, send abort
[  140.718600][    C1] vcan0: j1939_tp_rxtimer: 0xffff88803425a000: rx timeout, send abort
[  140.726912][    C1] vcan0: j1939_tp_rxtimer: 0xffff88803425a400: abort rx timeout. Force session deactivation
[  140.793540][   T63] team0 (unregistering): Port device team_slave_1 removed
[  140.912515][   T63] team0 (unregistering): Port device team_slave_0 removed
[  141.226847][    C1] vcan0: j1939_tp_rxtimer: 0xffff88803425a000: abort rx timeout. Force session deactivation
[  141.939533][ T6162] warning: `syz.3.61' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  142.375207][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[  142.382169][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[  142.949173][    T9] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  143.159308][    T9] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[  143.228679][    T9] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  143.557674][    T9] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  143.569890][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.578098][    T9] usb 2-1: Product: syz
[  143.582687][    T9] usb 2-1: Manufacturer: syz
[  143.587896][    T9] usb 2-1: SerialNumber: syz
[  143.610928][ T6182] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  143.742152][ T6199] loop2: detected capacity change from 0 to 2048
[  143.858010][    T9] usblp 2-1:1.0: usblp0: USB Unidirectional printer dev 4 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8
[  143.885971][ T6199] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[  143.924413][ T6199] UDF-fs: Scanning with blocksize 512 failed
[  144.566548][ T6065] chnl_net:caif_netlink_parms(): no params data found
[  144.599668][ T6199] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  144.703930][ T5889] usb 2-1: USB disconnect, device number 4
[  144.730573][   T30] audit: type=1800 audit(1746653655.651:4): pid=6199 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.70" name="bus" dev="loop2" ino=830 res=0 errno=0
[  144.831252][   T30] audit: type=1800 audit(1746653655.731:5): pid=6199 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.70" name="bus" dev="loop2" ino=830 res=0 errno=0
[  144.851233][    C1] vkms_vblank_simulate: vblank timer overrun
[  144.908702][ T6181] usblp0: removed
[  144.964343][   T30] audit: type=1800 audit(1746653655.811:6): pid=6210 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.70" name="bus" dev="loop2" ino=830 res=0 errno=0
[  146.221926][   T12] wlan1: Trigger new scan to find an IBSS to join
[  146.522394][ T6065] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.571483][ T6065] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.610110][ T6065] bridge_slave_0: entered allmulticast mode
[  146.634969][ T6065] bridge_slave_0: entered promiscuous mode
[  146.900519][ T6065] bridge0: port 2(bridge_slave_1) entered blocking state
[  146.907774][ T6065] bridge0: port 2(bridge_slave_1) entered disabled state
[  146.917694][ T6065] bridge_slave_1: entered allmulticast mode
[  147.133479][ T6065] bridge_slave_1: entered promiscuous mode
[  147.620612][ T6253] loop3: detected capacity change from 0 to 256
[  147.880676][ T6065] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  147.934634][ T6065] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  148.317147][ T6065] team0: Port device team_slave_0 added
[  148.360540][ T6065] team0: Port device team_slave_1 added
[  150.376109][ T1148] wlan1: Trigger new scan to find an IBSS to join
[  150.839477][ T6065] batman_adv: batadv0: Adding interface: batadv_slave_0
[  150.874991][ T6065] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.029234][ T6065] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  151.095844][ T6065] batman_adv: batadv0: Adding interface: batadv_slave_1
[  151.131919][ T6065] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  151.736739][ T6065] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  152.939527][ T1148] wlan1: Creating new IBSS network, BSSID 00:00:00:8d:00:00
[  153.005955][ T6065] hsr_slave_0: entered promiscuous mode
[  153.038309][ T6065] hsr_slave_1: entered promiscuous mode
[  153.068628][ T6283] loop4: detected capacity change from 0 to 2048
[  153.167885][ T6283] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  153.207412][ T6283] UDF-fs: Scanning with blocksize 512 failed
[  153.344336][ T6283] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  153.789319][   T30] audit: type=1800 audit(1746653664.701:7): pid=6283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.90" name="bus" dev="loop4" ino=830 res=0 errno=0
[  154.794538][   T30] audit: type=1800 audit(1746653665.671:8): pid=6283 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.90" name="bus" dev="loop4" ino=830 res=0 errno=0
[  155.349982][   T30] audit: type=1800 audit(1746653666.271:9): pid=6294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.90" name="bus" dev="loop4" ino=830 res=0 errno=0
[  156.793570][ T6305] loop2: detected capacity change from 0 to 164
[  158.555063][ T6323] loop1: detected capacity change from 0 to 512
[  158.583404][ T6323] EXT4-fs: Ignoring removed mblk_io_submit option
[  158.782661][ T6330] loop3: detected capacity change from 0 to 1024
[  158.820399][ T6330] EXT4-fs: Ignoring removed nobh option
[  158.866268][ T6065] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  158.876763][ T6330] EXT4-fs: Ignoring removed bh option
[  158.918944][ T6065] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  158.973375][ T6065] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  159.011724][ T6323] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.034500][ T6323] ext4 filesystem being mounted at /9/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  159.044427][ T6065] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  159.189317][ T6330] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.579283][ T5912] usb 5-1: new full-speed USB device number 2 using dummy_hcd
[  159.801860][ T5912] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1023, setting to 64
[  159.881938][ T6065] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.888902][ T5912] usb 5-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00
[  159.888959][ T5912] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  159.956397][ T5912] usb 5-1: config 0 descriptor??
[  159.977796][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.998357][ T6343] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  160.067978][ T6065] 8021q: adding VLAN 0 to HW filter on device team0
[  160.204149][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.211429][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.324909][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.332203][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  161.560303][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.683694][ T5912] elan 0003:04F3:0755.0001: hidraw0: USB HID v1.01 Device [HID 04f3:0755] on usb-dummy_hcd.4-1/input0
[  162.648361][ T5912] usb 5-1: USB disconnect, device number 2
[  162.662534][ T6373] ALSA: mixer_oss: invalid OSS volume ''
[  162.773389][ T6372] fido_id[6372]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory
[  164.784517][ T6065] 8021q: adding VLAN 0 to HW filter on device batadv0
[  165.145396][ T6391] loop3: detected capacity change from 0 to 164
[  165.175875][ T6395] netfs: Couldn't get user pages (rc=-14)
[  165.508165][ T6400] loop1: detected capacity change from 0 to 1024
[  165.553926][ T6400] EXT4-fs: Ignoring removed nobh option
[  165.624747][ T6400] EXT4-fs: Ignoring removed bh option
[  165.810209][ T6400] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.823481][ T6421] EXT4-fs error (device loop1): mb_free_blocks:1945: group 0, inode 15: block 113:freeing already freed block (bit 7); block bitmap corrupt.
[  166.904030][ T4049] ==================================================================
[  166.912113][ T4049] BUG: KASAN: slab-out-of-bounds in iov_iter_revert+0x443/0x5a0
[  166.919762][ T4049] Read of size 4 at addr ffff88803515b078 by task kworker/u8:7/4049
[  166.927734][ T4049] 
[  166.930052][ T4049] CPU: 0 UID: 0 PID: 4049 Comm: kworker/u8:7 Not tainted 6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  166.930087][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  166.930105][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  166.930155][ T4049] Call Trace:
[  166.930164][ T4049]  <TASK>
[  166.930174][ T4049]  dump_stack_lvl+0x116/0x1f0
[  166.930214][ T4049]  print_report+0xc3/0x670
[  166.930255][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.930288][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.930321][ T4049]  ? __phys_addr+0xc6/0x150
[  166.930361][ T4049]  ? iov_iter_revert+0x443/0x5a0
[  166.930400][ T4049]  kasan_report+0xe0/0x110
[  166.930442][ T4049]  ? iov_iter_revert+0x443/0x5a0
[  166.930486][ T4049]  iov_iter_revert+0x443/0x5a0
[  166.930528][ T4049]  netfs_retry_writes+0x166d/0x1a50
[  166.930559][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.930599][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.930633][ T4049]  ? update_curr_se+0x8b/0x270
[  166.930675][ T4049]  ? update_curr+0x74/0x800
[  166.930704][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  166.930736][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.930769][ T4049]  ? register_lock_class+0x41/0x4c0
[  166.930813][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.930850][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  166.930916][ T4049]  process_one_work+0x9cf/0x1b70
[  166.930953][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  166.930982][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.931020][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.931053][ T4049]  ? assign_work+0x1a0/0x250
[  166.931081][ T4049]  worker_thread+0x6c8/0xf10
[  166.931118][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  166.931147][ T4049]  kthread+0x3c5/0x780
[  166.931172][ T4049]  ? __pfx_kthread+0x10/0x10
[  166.931196][ T4049]  ? __pfx_kthread+0x10/0x10
[  166.931220][ T4049]  ? __pfx_kthread+0x10/0x10
[  166.931244][ T4049]  ? __pfx_kthread+0x10/0x10
[  166.931267][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  166.931300][ T4049]  ? rcu_is_watching+0x12/0xc0
[  166.931332][ T4049]  ? __pfx_kthread+0x10/0x10
[  166.931358][ T4049]  ret_from_fork+0x48/0x80
[  166.931384][ T4049]  ? __pfx_kthread+0x10/0x10
[  166.931409][ T4049]  ret_from_fork_asm+0x1a/0x30
[  166.931458][ T4049]  </TASK>
[  166.931468][ T4049] 
[  167.156051][ T4049] Allocated by task 5987:
[  167.160381][ T4049]  kasan_save_stack+0x33/0x60
[  167.165085][ T4049]  kasan_save_track+0x14/0x30
[  167.169786][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  167.174399][ T4049]  kmem_cache_free+0x148/0x4d0
[  167.179186][ T4049]  vma_complete+0x54d/0xe30
[  167.183710][ T4049]  commit_merge+0x5e7/0x1020
[  167.188319][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  167.193977][ T4049]  vma_modify+0x87/0x510
[  167.198241][ T4049]  vma_modify_flags+0x212/0x2d0
[  167.203117][ T4049]  mprotect_fixup+0x2b3/0xb10
[  167.207818][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  167.212710][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  167.217583][ T4049]  do_syscall_64+0xcd/0x260
[  167.222119][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.228023][ T4049] 
[  167.230343][ T4049] Freed by task 0:
[  167.234059][ T4049]  kasan_save_stack+0x33/0x60
[  167.238759][ T4049]  kasan_save_track+0x14/0x30
[  167.243460][ T4049]  kasan_save_free_info+0x3b/0x60
[  167.248499][ T4049]  __kasan_slab_free+0x51/0x70
[  167.253287][ T4049]  kfree+0x2b6/0x4d0
[  167.257203][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  167.262776][ T4049]  rcu_core+0x79c/0x14e0
[  167.267032][ T4049]  handle_softirqs+0x219/0x8e0
[  167.271813][ T4049]  __irq_exit_rcu+0x109/0x170
[  167.276508][ T4049]  irq_exit_rcu+0x9/0x30
[  167.280768][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  167.286425][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  167.292420][ T4049] 
[  167.294741][ T4049] Last potentially related work creation:
[  167.300452][ T4049]  kasan_save_stack+0x33/0x60
[  167.305153][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  167.310380][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  167.316309][ T4049]  kmem_cache_free+0x173/0x4d0
[  167.321095][ T4049]  vma_complete+0x54d/0xe30
[  167.325619][ T4049]  commit_merge+0x5e7/0x1020
[  167.330230][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  167.335885][ T4049]  vma_modify+0x87/0x510
[  167.340150][ T4049]  vma_modify_flags+0x212/0x2d0
[  167.345025][ T4049]  mprotect_fixup+0x2b3/0xb10
[  167.349735][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  167.354622][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  167.359507][ T4049]  do_syscall_64+0xcd/0x260
[  167.364051][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.369959][ T4049] 
[  167.372279][ T4049] The buggy address belongs to the object at ffff88803515b040
[  167.372279][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  167.386164][ T4049] The buggy address is located 24 bytes to the right of
[  167.386164][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  167.400664][ T4049] 
[  167.402987][ T4049] The buggy address belongs to the physical page:
[  167.409396][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  167.418161][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  167.425275][ T4049] page_type: f5(slab)
[  167.429264][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  167.437856][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  167.446439][ T4049] page dumped because: kasan: bad access detected
[  167.452848][ T4049] page_owner tracks the page as allocated
[  167.458557][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  167.476206][ T4049]  post_alloc_hook+0x181/0x1b0
[  167.480995][ T4049]  get_page_from_freelist+0x135c/0x3920
[  167.486569][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  167.492488][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  167.497368][ T4049]  new_slab+0x244/0x340
[  167.501558][ T4049]  ___slab_alloc+0xd9c/0x1940
[  167.506251][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  167.511646][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  167.516953][ T4049]  kmem_cache_free+0x148/0x4d0
[  167.521739][ T4049]  exit_mmap+0x511/0xb90
[  167.525997][ T4049]  __mmput+0x12a/0x410
[  167.530086][ T4049]  mmput+0x62/0x70
[  167.533826][ T4049]  do_exit+0x9d1/0x2c30
[  167.538009][ T4049]  do_group_exit+0xd3/0x2a0
[  167.542540][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  167.547595][ T4049]  x64_sys_call+0x1530/0x1730
[  167.552300][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  167.558626][ T4049]  __free_frozen_pages+0x69d/0xff0
[  167.563757][ T4049]  __mmdrop+0xd5/0x4f0
[  167.567842][ T4049]  __mmput+0x36c/0x410
[  167.571930][ T4049]  mmput+0x62/0x70
[  167.575670][ T4049]  do_exit+0x9d1/0x2c30
[  167.579850][ T4049]  do_group_exit+0xd3/0x2a0
[  167.584383][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  167.589437][ T4049]  x64_sys_call+0x1530/0x1730
[  167.594142][ T4049]  do_syscall_64+0xcd/0x260
[  167.598672][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  167.604595][ T4049] 
[  167.606913][ T4049] Memory state around the buggy address:
[  167.612542][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  167.620609][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  167.628676][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  167.636734][ T4049]                                                                 ^
[  167.644711][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  167.652779][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  167.660857][ T4049] ==================================================================
[  168.073055][ T4049] Disabling lock debugging due to kernel taint
[  168.073074][ T4049] ==================================================================
[  168.073090][ T4049] BUG: KASAN: slab-out-of-bounds in iov_iter_revert+0x521/0x5a0
[  168.073152][ T4049] Read of size 4 at addr ffff88803515b068 by task kworker/u8:7/4049
[  168.073181][ T4049] 
[  168.073199][ T4049] CPU: 1 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  168.073240][ T4049] Tainted: [B]=BAD_PAGE
[  168.073250][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  168.073268][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  168.073317][ T4049] Call Trace:
[  168.073326][ T4049]  <TASK>
[  168.073336][ T4049]  dump_stack_lvl+0x116/0x1f0
[  168.073380][ T4049]  print_report+0xc3/0x670
[  168.073420][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.073454][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.073487][ T4049]  ? __phys_addr+0xc6/0x150
[  168.073526][ T4049]  ? iov_iter_revert+0x521/0x5a0
[  168.073564][ T4049]  kasan_report+0xe0/0x110
[  168.073607][ T4049]  ? iov_iter_revert+0x521/0x5a0
[  168.073651][ T4049]  iov_iter_revert+0x521/0x5a0
[  168.073693][ T4049]  netfs_retry_writes+0x166d/0x1a50
[  168.073724][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.073759][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.073793][ T4049]  ? update_curr_se+0x8b/0x270
[  168.073835][ T4049]  ? update_curr+0x74/0x800
[  168.073863][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  168.073895][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.073928][ T4049]  ? register_lock_class+0x41/0x4c0
[  168.073973][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.074009][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  168.074074][ T4049]  process_one_work+0x9cf/0x1b70
[  168.074110][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  168.074139][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.074177][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.074209][ T4049]  ? assign_work+0x1a0/0x250
[  168.074236][ T4049]  worker_thread+0x6c8/0xf10
[  168.074273][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  168.074302][ T4049]  kthread+0x3c5/0x780
[  168.074338][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.074376][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.074408][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.074440][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.074471][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.074516][ T4049]  ? rcu_is_watching+0x12/0xc0
[  168.074560][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.074593][ T4049]  ret_from_fork+0x48/0x80
[  168.074628][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.074661][ T4049]  ret_from_fork_asm+0x1a/0x30
[  168.074727][ T4049]  </TASK>
[  168.074739][ T4049] 
[  168.074748][ T4049] Allocated by task 5987:
[  168.074764][ T4049]  kasan_save_stack+0x33/0x60
[  168.074812][ T4049]  kasan_save_track+0x14/0x30
[  168.074860][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  168.074906][ T4049]  kmem_cache_free+0x148/0x4d0
[  168.074952][ T4049]  vma_complete+0x54d/0xe30
[  168.074997][ T4049]  commit_merge+0x5e7/0x1020
[  168.075042][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  168.075091][ T4049]  vma_modify+0x87/0x510
[  168.075137][ T4049]  vma_modify_flags+0x212/0x2d0
[  168.075186][ T4049]  mprotect_fixup+0x2b3/0xb10
[  168.075233][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  168.075281][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  168.075329][ T4049]  do_syscall_64+0xcd/0x260
[  168.075387][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.075422][ T4049] 
[  168.075431][ T4049] Freed by task 0:
[  168.075446][ T4049]  kasan_save_stack+0x33/0x60
[  168.075493][ T4049]  kasan_save_track+0x14/0x30
[  168.075528][ T4049]  kasan_save_free_info+0x3b/0x60
[  168.075556][ T4049]  __kasan_slab_free+0x51/0x70
[  168.075594][ T4049]  kfree+0x2b6/0x4d0
[  168.075622][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  168.075658][ T4049]  rcu_core+0x79c/0x14e0
[  168.075682][ T4049]  handle_softirqs+0x219/0x8e0
[  168.075713][ T4049]  __irq_exit_rcu+0x109/0x170
[  168.075743][ T4049]  irq_exit_rcu+0x9/0x30
[  168.075774][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  168.075808][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  168.075837][ T4049] 
[  168.075843][ T4049] Last potentially related work creation:
[  168.075852][ T4049]  kasan_save_stack+0x33/0x60
[  168.075887][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  168.075914][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  168.075959][ T4049]  kmem_cache_free+0x173/0x4d0
[  168.076000][ T4049]  vma_complete+0x54d/0xe30
[  168.076049][ T4049]  commit_merge+0x5e7/0x1020
[  168.076085][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  168.076122][ T4049]  vma_modify+0x87/0x510
[  168.076155][ T4049]  vma_modify_flags+0x212/0x2d0
[  168.076191][ T4049]  mprotect_fixup+0x2b3/0xb10
[  168.076225][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  168.076260][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  168.076295][ T4049]  do_syscall_64+0xcd/0x260
[  168.076332][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.076364][ T4049] 
[  168.076371][ T4049] The buggy address belongs to the object at ffff88803515b040
[  168.076371][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  168.076392][ T4049] The buggy address is located 8 bytes to the right of
[  168.076392][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  168.076419][ T4049] 
[  168.076426][ T4049] The buggy address belongs to the physical page:
[  168.076436][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  168.076460][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  168.076480][ T4049] page_type: f5(slab)
[  168.076503][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  168.076528][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  168.076544][ T4049] page dumped because: kasan: bad access detected
[  168.076557][ T4049] page_owner tracks the page as allocated
[  168.076566][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  168.076609][ T4049]  post_alloc_hook+0x181/0x1b0
[  168.076642][ T4049]  get_page_from_freelist+0x135c/0x3920
[  168.076679][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  168.076717][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  168.076756][ T4049]  new_slab+0x244/0x340
[  168.076784][ T4049]  ___slab_alloc+0xd9c/0x1940
[  168.076814][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  168.076846][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  168.076878][ T4049]  kmem_cache_free+0x148/0x4d0
[  168.076913][ T4049]  exit_mmap+0x511/0xb90
[  168.076941][ T4049]  __mmput+0x12a/0x410
[  168.076973][ T4049]  mmput+0x62/0x70
[  168.077003][ T4049]  do_exit+0x9d1/0x2c30
[  168.077040][ T4049]  do_group_exit+0xd3/0x2a0
[  168.077079][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  168.077119][ T4049]  x64_sys_call+0x1530/0x1730
[  168.077157][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  168.077172][ T4049]  __free_frozen_pages+0x69d/0xff0
[  168.077203][ T4049]  __mmdrop+0xd5/0x4f0
[  168.077231][ T4049]  __mmput+0x36c/0x410
[  168.077262][ T4049]  mmput+0x62/0x70
[  168.077292][ T4049]  do_exit+0x9d1/0x2c30
[  168.077329][ T4049]  do_group_exit+0xd3/0x2a0
[  168.077371][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  168.077411][ T4049]  x64_sys_call+0x1530/0x1730
[  168.077449][ T4049]  do_syscall_64+0xcd/0x260
[  168.077486][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  168.077512][ T4049] 
[  168.077518][ T4049] Memory state around the buggy address:
[  168.077531][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  168.077551][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  168.077570][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  168.077585][ T4049]                                                           ^
[  168.077601][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  168.077620][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  168.077636][ T4049] ==================================================================
[  168.080979][ T6065] veth0_vlan: entered promiscuous mode
[  168.096972][ T6065] veth1_vlan: entered promiscuous mode
[  168.185318][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  168.208394][ T4049] ==================================================================
[  168.884875][ T4049] BUG: KASAN: slab-out-of-bounds in iov_iter_advance+0x652/0x6c0
[  168.892630][ T4049] Read of size 4 at addr ffff88803515b068 by task kworker/u8:7/4049
[  168.900615][ T4049] 
[  168.902945][ T4049] CPU: 1 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  168.902998][ T4049] Tainted: [B]=BAD_PAGE
[  168.903009][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  168.903032][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  168.903094][ T4049] Call Trace:
[  168.903104][ T4049]  <TASK>
[  168.903117][ T4049]  dump_stack_lvl+0x116/0x1f0
[  168.903167][ T4049]  print_report+0xc3/0x670
[  168.903217][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.903259][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.903300][ T4049]  ? __phys_addr+0xc6/0x150
[  168.903354][ T4049]  ? iov_iter_advance+0x652/0x6c0
[  168.903402][ T4049]  kasan_report+0xe0/0x110
[  168.903454][ T4049]  ? iov_iter_advance+0x652/0x6c0
[  168.903509][ T4049]  iov_iter_advance+0x652/0x6c0
[  168.903561][ T4049]  netfs_reissue_write+0x13d/0x240
[  168.903596][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  168.903634][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.903678][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.903720][ T4049]  ? update_curr_se+0x8b/0x270
[  168.903772][ T4049]  ? update_curr+0x74/0x800
[  168.903807][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  168.903846][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.903887][ T4049]  ? register_lock_class+0x41/0x4c0
[  168.903943][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.903988][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  168.904068][ T4049]  process_one_work+0x9cf/0x1b70
[  168.904112][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  168.904148][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.904194][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.904235][ T4049]  ? assign_work+0x1a0/0x250
[  168.904268][ T4049]  worker_thread+0x6c8/0xf10
[  168.904313][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  168.904357][ T4049]  kthread+0x3c5/0x780
[  168.904387][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.904416][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.904445][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.904475][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.904503][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  168.904544][ T4049]  ? rcu_is_watching+0x12/0xc0
[  168.904584][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.904615][ T4049]  ret_from_fork+0x48/0x80
[  168.904647][ T4049]  ? __pfx_kthread+0x10/0x10
[  168.904677][ T4049]  ret_from_fork_asm+0x1a/0x30
[  168.904738][ T4049]  </TASK>
[  168.904749][ T4049] 
[  169.140426][ T4049] Allocated by task 5987:
[  169.144751][ T4049]  kasan_save_stack+0x33/0x60
[  169.149452][ T4049]  kasan_save_track+0x14/0x30
[  169.154152][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  169.158762][ T4049]  kmem_cache_free+0x148/0x4d0
[  169.163551][ T4049]  vma_complete+0x54d/0xe30
[  169.168072][ T4049]  commit_merge+0x5e7/0x1020
[  169.172681][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  169.178336][ T4049]  vma_modify+0x87/0x510
[  169.182603][ T4049]  vma_modify_flags+0x212/0x2d0
[  169.187478][ T4049]  mprotect_fixup+0x2b3/0xb10
[  169.192177][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  169.197048][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  169.201924][ T4049]  do_syscall_64+0xcd/0x260
[  169.206453][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.212361][ T4049] 
[  169.214680][ T4049] Freed by task 0:
[  169.218393][ T4049]  kasan_save_stack+0x33/0x60
[  169.223093][ T4049]  kasan_save_track+0x14/0x30
[  169.227791][ T4049]  kasan_save_free_info+0x3b/0x60
[  169.232830][ T4049]  __kasan_slab_free+0x51/0x70
[  169.237617][ T4049]  kfree+0x2b6/0x4d0
[  169.241526][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  169.247093][ T4049]  rcu_core+0x79c/0x14e0
[  169.251356][ T4049]  handle_softirqs+0x219/0x8e0
[  169.256139][ T4049]  __irq_exit_rcu+0x109/0x170
[  169.260836][ T4049]  irq_exit_rcu+0x9/0x30
[  169.265094][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  169.270747][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  169.276741][ T4049] 
[  169.279064][ T4049] Last potentially related work creation:
[  169.284773][ T4049]  kasan_save_stack+0x33/0x60
[  169.289474][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  169.294687][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  169.300618][ T4049]  kmem_cache_free+0x173/0x4d0
[  169.305407][ T4049]  vma_complete+0x54d/0xe30
[  169.309933][ T4049]  commit_merge+0x5e7/0x1020
[  169.314546][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  169.320203][ T4049]  vma_modify+0x87/0x510
[  169.324467][ T4049]  vma_modify_flags+0x212/0x2d0
[  169.329345][ T4049]  mprotect_fixup+0x2b3/0xb10
[  169.334044][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  169.338944][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  169.343815][ T4049]  do_syscall_64+0xcd/0x260
[  169.348347][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.354250][ T4049] 
[  169.356568][ T4049] The buggy address belongs to the object at ffff88803515b040
[  169.356568][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  169.370453][ T4049] The buggy address is located 8 bytes to the right of
[  169.370453][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  169.384864][ T4049] 
[  169.387182][ T4049] The buggy address belongs to the physical page:
[  169.393585][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  169.402356][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  169.409475][ T4049] page_type: f5(slab)
[  169.413467][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  169.422064][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  169.430647][ T4049] page dumped because: kasan: bad access detected
[  169.437057][ T4049] page_owner tracks the page as allocated
[  169.442765][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  169.460415][ T4049]  post_alloc_hook+0x181/0x1b0
[  169.465204][ T4049]  get_page_from_freelist+0x135c/0x3920
[  169.470778][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  169.476698][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  169.481599][ T4049]  new_slab+0x244/0x340
[  169.485770][ T4049]  ___slab_alloc+0xd9c/0x1940
[  169.490464][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  169.495855][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  169.501161][ T4049]  kmem_cache_free+0x148/0x4d0
[  169.505949][ T4049]  exit_mmap+0x511/0xb90
[  169.510209][ T4049]  __mmput+0x12a/0x410
[  169.514297][ T4049]  mmput+0x62/0x70
[  169.518036][ T4049]  do_exit+0x9d1/0x2c30
[  169.522220][ T4049]  do_group_exit+0xd3/0x2a0
[  169.526750][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  169.531803][ T4049]  x64_sys_call+0x1530/0x1730
[  169.536510][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  169.542836][ T4049]  __free_frozen_pages+0x69d/0xff0
[  169.547966][ T4049]  __mmdrop+0xd5/0x4f0
[  169.552058][ T4049]  __mmput+0x36c/0x410
[  169.556144][ T4049]  mmput+0x62/0x70
[  169.559883][ T4049]  do_exit+0x9d1/0x2c30
[  169.564074][ T4049]  do_group_exit+0xd3/0x2a0
[  169.568634][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  169.573689][ T4049]  x64_sys_call+0x1530/0x1730
[  169.578393][ T4049]  do_syscall_64+0xcd/0x260
[  169.582924][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  169.588833][ T4049] 
[  169.591153][ T4049] Memory state around the buggy address:
[  169.596779][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  169.604846][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  169.612917][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  169.620982][ T4049]                                                           ^
[  169.628438][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  169.636504][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  169.644566][ T4049] ==================================================================
[  169.704957][ T6065] veth0_macvtap: entered promiscuous mode
[  169.715670][ T6065] veth1_macvtap: entered promiscuous mode
[  169.825794][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.838413][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.856532][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.867447][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.885040][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.896926][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.908987][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.921289][ T4049] ==================================================================
[  169.926133][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.929346][ T4049] BUG: KASAN: slab-out-of-bounds in iov_iter_advance+0x652/0x6c0
[  169.939414][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.946864][ T4049] Read of size 4 at addr ffff88803515b078 by task kworker/u8:7/4049
[  169.946898][ T4049] 
[  169.946919][ T4049] CPU: 1 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  169.946974][ T4049] Tainted: [B]=BAD_PAGE
[  169.946987][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  169.947011][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  169.947077][ T4049] Call Trace:
[  169.947089][ T4049]  <TASK>
[  169.947102][ T4049]  dump_stack_lvl+0x116/0x1f0
[  169.947154][ T4049]  print_report+0xc3/0x670
[  169.947207][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.947251][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.947295][ T4049]  ? __phys_addr+0xc6/0x150
[  169.947359][ T4049]  ? iov_iter_advance+0x652/0x6c0
[  169.947410][ T4049]  kasan_report+0xe0/0x110
[  169.947466][ T4049]  ? iov_iter_advance+0x652/0x6c0
[  169.947523][ T4049]  iov_iter_advance+0x652/0x6c0
[  169.947578][ T4049]  netfs_reissue_write+0x13d/0x240
[  169.947619][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  169.947659][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.947706][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.947750][ T4049]  ? update_curr_se+0x8b/0x270
[  169.947805][ T4049]  ? update_curr+0x74/0x800
[  169.947842][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  169.947884][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.947927][ T4049]  ? register_lock_class+0x41/0x4c0
[  169.947986][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.948033][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  169.948117][ T4049]  process_one_work+0x9cf/0x1b70
[  169.948164][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  169.948203][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.948252][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.948295][ T4049]  ? assign_work+0x1a0/0x250
[  169.948330][ T4049]  worker_thread+0x6c8/0xf10
[  169.948378][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  169.948416][ T4049]  kthread+0x3c5/0x780
[  169.948449][ T4049]  ? __pfx_kthread+0x10/0x10
[  169.948479][ T4049]  ? __pfx_kthread+0x10/0x10
[  169.948511][ T4049]  ? __pfx_kthread+0x10/0x10
[  169.948542][ T4049]  ? __pfx_kthread+0x10/0x10
[  169.948573][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  169.948619][ T4049]  ? rcu_is_watching+0x12/0xc0
[  169.948661][ T4049]  ? __pfx_kthread+0x10/0x10
[  169.948694][ T4049]  ret_from_fork+0x48/0x80
[  169.948728][ T4049]  ? __pfx_kthread+0x10/0x10
[  169.948760][ T4049]  ret_from_fork_asm+0x1a/0x30
[  169.948824][ T4049]  </TASK>
[  169.948836][ T4049] 
[  169.960888][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.965213][ T4049] Allocated by task 5987:
[  169.965232][ T4049]  kasan_save_stack+0x33/0x60
[  169.973441][ T6065] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.981210][ T4049]  kasan_save_track+0x14/0x30
[  169.999813][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.002493][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  170.008085][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.008705][ T4049]  kmem_cache_free+0x148/0x4d0
[  170.263454][ T4049]  vma_complete+0x54d/0xe30
[  170.267987][ T4049]  commit_merge+0x5e7/0x1020
[  170.272605][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  170.278261][ T4049]  vma_modify+0x87/0x510
[  170.282526][ T4049]  vma_modify_flags+0x212/0x2d0
[  170.287405][ T4049]  mprotect_fixup+0x2b3/0xb10
[  170.292111][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  170.296989][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  170.301864][ T4049]  do_syscall_64+0xcd/0x260
[  170.306393][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.312301][ T4049] 
[  170.314624][ T4049] Freed by task 0:
[  170.318342][ T4049]  kasan_save_stack+0x33/0x60
[  170.323044][ T4049]  kasan_save_track+0x14/0x30
[  170.327752][ T4049]  kasan_save_free_info+0x3b/0x60
[  170.332822][ T4049]  __kasan_slab_free+0x51/0x70
[  170.337627][ T4049]  kfree+0x2b6/0x4d0
[  170.341543][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  170.347118][ T4049]  rcu_core+0x79c/0x14e0
[  170.351375][ T4049]  handle_softirqs+0x219/0x8e0
[  170.356161][ T4049]  __irq_exit_rcu+0x109/0x170
[  170.360860][ T4049]  irq_exit_rcu+0x9/0x30
[  170.365125][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  170.370782][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  170.376779][ T4049] 
[  170.379102][ T4049] Last potentially related work creation:
[  170.384819][ T4049]  kasan_save_stack+0x33/0x60
[  170.389524][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  170.394738][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  170.400667][ T4049]  kmem_cache_free+0x173/0x4d0
[  170.405454][ T4049]  vma_complete+0x54d/0xe30
[  170.409978][ T4049]  commit_merge+0x5e7/0x1020
[  170.414595][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  170.420255][ T4049]  vma_modify+0x87/0x510
[  170.424520][ T4049]  vma_modify_flags+0x212/0x2d0
[  170.429402][ T4049]  mprotect_fixup+0x2b3/0xb10
[  170.434105][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  170.438981][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  170.443857][ T4049]  do_syscall_64+0xcd/0x260
[  170.448389][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.454293][ T4049] 
[  170.456615][ T4049] The buggy address belongs to the object at ffff88803515b040
[  170.456615][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  170.470501][ T4049] The buggy address is located 24 bytes to the right of
[  170.470501][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  170.485003][ T4049] 
[  170.487324][ T4049] The buggy address belongs to the physical page:
[  170.493742][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  170.502508][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  170.509620][ T4049] page_type: f5(slab)
[  170.513615][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  170.522208][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  170.530791][ T4049] page dumped because: kasan: bad access detected
[  170.537202][ T4049] page_owner tracks the page as allocated
[  170.542934][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  170.560580][ T4049]  post_alloc_hook+0x181/0x1b0
[  170.565390][ T4049]  get_page_from_freelist+0x135c/0x3920
[  170.570965][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  170.576887][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  170.581769][ T4049]  new_slab+0x244/0x340
[  170.585941][ T4049]  ___slab_alloc+0xd9c/0x1940
[  170.590635][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  170.596028][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  170.601336][ T4049]  kmem_cache_free+0x148/0x4d0
[  170.606132][ T4049]  exit_mmap+0x511/0xb90
[  170.610395][ T4049]  __mmput+0x12a/0x410
[  170.614486][ T4049]  mmput+0x62/0x70
[  170.618226][ T4049]  do_exit+0x9d1/0x2c30
[  170.622410][ T4049]  do_group_exit+0xd3/0x2a0
[  170.626942][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  170.632001][ T4049]  x64_sys_call+0x1530/0x1730
[  170.636730][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  170.643059][ T4049]  __free_frozen_pages+0x69d/0xff0
[  170.648190][ T4049]  __mmdrop+0xd5/0x4f0
[  170.652275][ T4049]  __mmput+0x36c/0x410
[  170.656365][ T4049]  mmput+0x62/0x70
[  170.660106][ T4049]  do_exit+0x9d1/0x2c30
[  170.664290][ T4049]  do_group_exit+0xd3/0x2a0
[  170.668824][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  170.673881][ T4049]  x64_sys_call+0x1530/0x1730
[  170.678588][ T4049]  do_syscall_64+0xcd/0x260
[  170.683127][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  170.689032][ T4049] 
[  170.691355][ T4049] Memory state around the buggy address:
[  170.696986][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  170.705071][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  170.713137][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  170.721200][ T4049]                                                                 ^
[  170.729177][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  170.737353][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  170.745430][ T4049] ==================================================================
[  170.762224][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.773428][ T4049] ==================================================================
[  170.781511][ T4049] BUG: KASAN: slab-out-of-bounds in _copy_from_iter+0x132f/0x15b0
[  170.789372][ T4049] Read of size 4 at addr ffff88803515b06c by task kworker/u8:7/4049
[  170.797367][ T4049] 
[  170.799711][ T4049] CPU: 0 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  170.799768][ T4049] Tainted: [B]=BAD_PAGE
[  170.799781][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  170.799806][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  170.799872][ T4049] Call Trace:
[  170.799884][ T4049]  <TASK>
[  170.799897][ T4049]  dump_stack_lvl+0x116/0x1f0
[  170.799951][ T4049]  print_report+0xc3/0x670
[  170.800006][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.800052][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.800097][ T4049]  ? __phys_addr+0xc6/0x150
[  170.800150][ T4049]  ? _copy_from_iter+0x132f/0x15b0
[  170.800203][ T4049]  kasan_report+0xe0/0x110
[  170.800260][ T4049]  ? _copy_from_iter+0x132f/0x15b0
[  170.800320][ T4049]  _copy_from_iter+0x132f/0x15b0
[  170.800377][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.800422][ T4049]  ? p9pdu_writef+0xc3/0x100
[  170.800457][ T4049]  ? __pfx__copy_from_iter+0x10/0x10
[  170.800514][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.800559][ T4049]  ? lock_acquire+0x2cd/0x350
[  170.800623][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.800669][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.800714][ T4049]  ? __asan_memcpy+0x3c/0x60
[  170.800762][ T4049]  p9pdu_vwritef+0x2da/0x1d30
[  170.800802][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.800847][ T4049]  ? p9pdu_writef+0xc3/0x100
[  170.800882][ T4049]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  170.800918][ T4049]  ? __pfx_p9_tag_alloc+0x10/0x10
[  170.800970][ T4049]  ? rcu_is_watching+0x12/0xc0
[  170.801013][ T4049]  ? rcu_is_watching+0x12/0xc0
[  170.801056][ T4049]  ? rcu_is_watching+0x12/0xc0
[  170.801098][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.801147][ T4049]  p9_client_prepare_req+0x247/0x4d0
[  170.801204][ T4049]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  170.801259][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.801306][ T4049]  ? trace_sched_exit_tp+0xde/0x130
[  170.801360][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.801405][ T4049]  ? __schedule+0x1186/0x5de0
[  170.801450][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.801499][ T4049]  p9_client_rpc+0x1c4/0xc50
[  170.801556][ T4049]  ? __pfx_p9_client_rpc+0x10/0x10
[  170.801617][ T4049]  ? __pfx___schedule+0x10/0x10
[  170.801663][ T4049]  ? __pfx_vprintk_emit+0x10/0x10
[  170.801710][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.801755][ T4049]  ? rcu_is_watching+0x12/0xc0
[  170.801797][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.801844][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.801894][ T4049]  p9_client_write+0x245/0x6f0
[  170.801962][ T4049]  ? __pfx_p9_client_write+0x10/0x10
[  170.802030][ T4049]  v9fs_issue_write+0xe3/0x1b0
[  170.802084][ T4049]  ? __pfx_v9fs_issue_write+0x10/0x10
[  170.802138][ T4049]  ? iov_iter_advance+0x380/0x6c0
[  170.802192][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.802238][ T4049]  ? rcu_is_watching+0x12/0xc0
[  170.802283][ T4049]  netfs_do_issue_write+0x95/0x110
[  170.802320][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  170.802361][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.802411][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.802474][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.802458][ T4049]  ? update_curr_se+0x8b/0x270
[  170.802516][ T4049]  ? update_curr+0x74/0x800
[  170.802553][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  170.802601][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.802644][ T4049]  ? register_lock_class+0x41/0x4c0
[  170.802703][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.802750][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  170.802835][ T4049]  process_one_work+0x9cf/0x1b70
[  170.802882][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  170.802920][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.802969][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.803013][ T4049]  ? assign_work+0x1a0/0x250
[  170.803048][ T4049]  worker_thread+0x6c8/0xf10
[  170.803096][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  170.803134][ T4049]  kthread+0x3c5/0x780
[  170.803166][ T4049]  ? __pfx_kthread+0x10/0x10
[  170.803197][ T4049]  ? __pfx_kthread+0x10/0x10
[  170.803229][ T4049]  ? __pfx_kthread+0x10/0x10
[  170.803260][ T4049]  ? __pfx_kthread+0x10/0x10
[  170.803291][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  170.803334][ T4049]  ? rcu_is_watching+0x12/0xc0
[  170.803377][ T4049]  ? __pfx_kthread+0x10/0x10
[  170.803412][ T4049]  ret_from_fork+0x48/0x80
[  170.803446][ T4049]  ? __pfx_kthread+0x10/0x10
[  170.803479][ T4049]  ret_from_fork_asm+0x1a/0x30
[  170.803542][ T4049]  </TASK>
[  170.803554][ T4049] 
[  171.248821][ T4049] Allocated by task 5987:
[  171.253154][ T4049]  kasan_save_stack+0x33/0x60
[  171.257858][ T4049]  kasan_save_track+0x14/0x30
[  171.262561][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  171.267174][ T4049]  kmem_cache_free+0x148/0x4d0
[  171.271963][ T4049]  vma_complete+0x54d/0xe30
[  171.276486][ T4049]  commit_merge+0x5e7/0x1020
[  171.281098][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  171.286753][ T4049]  vma_modify+0x87/0x510
[  171.291018][ T4049]  vma_modify_flags+0x212/0x2d0
[  171.295892][ T4049]  mprotect_fixup+0x2b3/0xb10
[  171.300594][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  171.305469][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  171.310351][ T4049]  do_syscall_64+0xcd/0x260
[  171.314884][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.320793][ T4049] 
[  171.323114][ T4049] Freed by task 0:
[  171.326829][ T4049]  kasan_save_stack+0x33/0x60
[  171.331532][ T4049]  kasan_save_track+0x14/0x30
[  171.336232][ T4049]  kasan_save_free_info+0x3b/0x60
[  171.341270][ T4049]  __kasan_slab_free+0x51/0x70
[  171.346062][ T4049]  kfree+0x2b6/0x4d0
[  171.349975][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  171.355546][ T4049]  rcu_core+0x79c/0x14e0
[  171.359803][ T4049]  handle_softirqs+0x219/0x8e0
[  171.364586][ T4049]  __irq_exit_rcu+0x109/0x170
[  171.369281][ T4049]  irq_exit_rcu+0x9/0x30
[  171.373545][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  171.379204][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  171.385204][ T4049] 
[  171.387527][ T4049] Last potentially related work creation:
[  171.393236][ T4049]  kasan_save_stack+0x33/0x60
[  171.397936][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  171.403147][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  171.409084][ T4049]  kmem_cache_free+0x173/0x4d0
[  171.413876][ T4049]  vma_complete+0x54d/0xe30
[  171.418401][ T4049]  commit_merge+0x5e7/0x1020
[  171.423013][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  171.428671][ T4049]  vma_modify+0x87/0x510
[  171.432934][ T4049]  vma_modify_flags+0x212/0x2d0
[  171.437808][ T4049]  mprotect_fixup+0x2b3/0xb10
[  171.442511][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  171.447387][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  171.452262][ T4049]  do_syscall_64+0xcd/0x260
[  171.456795][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.462704][ T4049] 
[  171.465025][ T4049] The buggy address belongs to the object at ffff88803515b040
[  171.465025][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  171.478911][ T4049] The buggy address is located 12 bytes to the right of
[  171.478911][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  171.493411][ T4049] 
[  171.495731][ T4049] The buggy address belongs to the physical page:
[  171.502139][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  171.510905][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  171.518020][ T4049] page_type: f5(slab)
[  171.522009][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  171.530604][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  171.539188][ T4049] page dumped because: kasan: bad access detected
[  171.545595][ T4049] page_owner tracks the page as allocated
[  171.551304][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  171.568955][ T4049]  post_alloc_hook+0x181/0x1b0
[  171.573741][ T4049]  get_page_from_freelist+0x135c/0x3920
[  171.579312][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  171.585237][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  171.590116][ T4049]  new_slab+0x244/0x340
[  171.594288][ T4049]  ___slab_alloc+0xd9c/0x1940
[  171.598988][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  171.604380][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  171.609685][ T4049]  kmem_cache_free+0x148/0x4d0
[  171.614471][ T4049]  exit_mmap+0x511/0xb90
[  171.618729][ T4049]  __mmput+0x12a/0x410
[  171.622818][ T4049]  mmput+0x62/0x70
[  171.626558][ T4049]  do_exit+0x9d1/0x2c30
[  171.630741][ T4049]  do_group_exit+0xd3/0x2a0
[  171.635273][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  171.640333][ T4049]  x64_sys_call+0x1530/0x1730
[  171.645046][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  171.651380][ T4049]  __free_frozen_pages+0x69d/0xff0
[  171.656509][ T4049]  __mmdrop+0xd5/0x4f0
[  171.660598][ T4049]  __mmput+0x36c/0x410
[  171.664686][ T4049]  mmput+0x62/0x70
[  171.668423][ T4049]  do_exit+0x9d1/0x2c30
[  171.672606][ T4049]  do_group_exit+0xd3/0x2a0
[  171.677137][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  171.682198][ T4049]  x64_sys_call+0x1530/0x1730
[  171.686902][ T4049]  do_syscall_64+0xcd/0x260
[  171.691433][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.697336][ T4049] 
[  171.699660][ T4049] Memory state around the buggy address:
[  171.705287][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  171.713360][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  171.721428][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  171.729665][ T4049]                                                           ^
[  171.737120][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  171.745189][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  171.753254][ T4049] ==================================================================
[  171.765215][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.783292][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.793175][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.803921][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.814210][ T6065] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  171.824659][ T6065] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  171.837385][ T6065] batman_adv: batadv0: Interface activated: batadv_slave_1
[  171.846979][ T6065] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  171.855730][ T6065] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  171.865183][ T6065] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  171.874568][ T6065] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  171.890467][ T4049] ==================================================================
[  171.898543][ T4049] BUG: KASAN: slab-out-of-bounds in _copy_from_iter+0x1447/0x15b0
[  171.906394][ T4049] Read of size 8 at addr ffff88803515b060 by task kworker/u8:7/4049
[  171.914388][ T4049] 
[  171.916724][ T4049] CPU: 0 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  171.916781][ T4049] Tainted: [B]=BAD_PAGE
[  171.916794][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  171.916819][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  171.916886][ T4049] Call Trace:
[  171.916897][ T4049]  <TASK>
[  171.916910][ T4049]  dump_stack_lvl+0x116/0x1f0
[  171.916964][ T4049]  print_report+0xc3/0x670
[  171.917018][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.917064][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.917109][ T4049]  ? __phys_addr+0xc6/0x150
[  171.917162][ T4049]  ? _copy_from_iter+0x1447/0x15b0
[  171.917215][ T4049]  kasan_report+0xe0/0x110
[  171.917272][ T4049]  ? _copy_from_iter+0x1447/0x15b0
[  171.917331][ T4049]  _copy_from_iter+0x1447/0x15b0
[  171.917395][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.917439][ T4049]  ? p9pdu_writef+0xc3/0x100
[  171.917474][ T4049]  ? __pfx__copy_from_iter+0x10/0x10
[  171.917531][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.917575][ T4049]  ? lock_acquire+0x2cd/0x350
[  171.917631][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.917677][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.917721][ T4049]  ? __asan_memcpy+0x3c/0x60
[  171.917769][ T4049]  p9pdu_vwritef+0x2da/0x1d30
[  171.917809][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.917853][ T4049]  ? p9pdu_writef+0xc3/0x100
[  171.917887][ T4049]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  171.917923][ T4049]  ? __pfx_p9_tag_alloc+0x10/0x10
[  171.917975][ T4049]  ? rcu_is_watching+0x12/0xc0
[  171.918018][ T4049]  ? rcu_is_watching+0x12/0xc0
[  171.918061][ T4049]  ? rcu_is_watching+0x12/0xc0
[  171.918102][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.918150][ T4049]  p9_client_prepare_req+0x247/0x4d0
[  171.918205][ T4049]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  171.918260][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.918306][ T4049]  ? trace_sched_exit_tp+0xde/0x130
[  171.918365][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.918409][ T4049]  ? __schedule+0x1186/0x5de0
[  171.918454][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.918503][ T4049]  p9_client_rpc+0x1c4/0xc50
[  171.918559][ T4049]  ? __pfx_p9_client_rpc+0x10/0x10
[  171.918616][ T4049]  ? __pfx___schedule+0x10/0x10
[  171.918662][ T4049]  ? __pfx_vprintk_emit+0x10/0x10
[  171.918709][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.918754][ T4049]  ? rcu_is_watching+0x12/0xc0
[  171.918796][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.918842][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.918892][ T4049]  p9_client_write+0x245/0x6f0
[  171.918960][ T4049]  ? __pfx_p9_client_write+0x10/0x10
[  171.919029][ T4049]  v9fs_issue_write+0xe3/0x1b0
[  171.919083][ T4049]  ? __pfx_v9fs_issue_write+0x10/0x10
[  171.919135][ T4049]  ? iov_iter_advance+0x380/0x6c0
[  171.919188][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.919233][ T4049]  ? rcu_is_watching+0x12/0xc0
[  171.919277][ T4049]  netfs_do_issue_write+0x95/0x110
[  171.919313][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  171.919359][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.919407][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.919452][ T4049]  ? update_curr_se+0x8b/0x270
[  171.919510][ T4049]  ? update_curr+0x74/0x800
[  171.919547][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  171.919590][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.919635][ T4049]  ? register_lock_class+0x41/0x4c0
[  171.919695][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.919744][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  171.919832][ T4049]  process_one_work+0x9cf/0x1b70
[  171.919880][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  171.919919][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.919970][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.920015][ T4049]  ? assign_work+0x1a0/0x250
[  171.920050][ T4049]  worker_thread+0x6c8/0xf10
[  171.920099][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  171.920138][ T4049]  kthread+0x3c5/0x780
[  171.920171][ T4049]  ? __pfx_kthread+0x10/0x10
[  171.920202][ T4049]  ? __pfx_kthread+0x10/0x10
[  171.920234][ T4049]  ? __pfx_kthread+0x10/0x10
[  171.920266][ T4049]  ? __pfx_kthread+0x10/0x10
[  171.920297][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  171.920346][ T4049]  ? rcu_is_watching+0x12/0xc0
[  171.920388][ T4049]  ? __pfx_kthread+0x10/0x10
[  171.920422][ T4049]  ret_from_fork+0x48/0x80
[  171.920456][ T4049]  ? __pfx_kthread+0x10/0x10
[  171.920489][ T4049]  ret_from_fork_asm+0x1a/0x30
[  171.920555][ T4049]  </TASK>
[  171.920567][ T4049] 
[  172.356886][ T4049] Allocated by task 5987:
[  172.361214][ T4049]  kasan_save_stack+0x33/0x60
[  172.365920][ T4049]  kasan_save_track+0x14/0x30
[  172.370622][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  172.375240][ T4049]  kmem_cache_free+0x148/0x4d0
[  172.380038][ T4049]  vma_complete+0x54d/0xe30
[  172.384564][ T4049]  commit_merge+0x5e7/0x1020
[  172.389176][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  172.394833][ T4049]  vma_modify+0x87/0x510
[  172.399097][ T4049]  vma_modify_flags+0x212/0x2d0
[  172.403973][ T4049]  mprotect_fixup+0x2b3/0xb10
[  172.408677][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  172.413557][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  172.418431][ T4049]  do_syscall_64+0xcd/0x260
[  172.422964][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.428870][ T4049] 
[  172.431193][ T4049] Freed by task 0:
[  172.434908][ T4049]  kasan_save_stack+0x33/0x60
[  172.439615][ T4049]  kasan_save_track+0x14/0x30
[  172.444315][ T4049]  kasan_save_free_info+0x3b/0x60
[  172.449369][ T4049]  __kasan_slab_free+0x51/0x70
[  172.454173][ T4049]  kfree+0x2b6/0x4d0
[  172.458086][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  172.463658][ T4049]  rcu_core+0x79c/0x14e0
[  172.467913][ T4049]  handle_softirqs+0x219/0x8e0
[  172.472700][ T4049]  __irq_exit_rcu+0x109/0x170
[  172.477395][ T4049]  irq_exit_rcu+0x9/0x30
[  172.481658][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  172.487316][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  172.493326][ T4049] 
[  172.495650][ T4049] Last potentially related work creation:
[  172.501364][ T4049]  kasan_save_stack+0x33/0x60
[  172.506065][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  172.511280][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  172.517213][ T4049]  kmem_cache_free+0x173/0x4d0
[  172.522000][ T4049]  vma_complete+0x54d/0xe30
[  172.526524][ T4049]  commit_merge+0x5e7/0x1020
[  172.531136][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  172.536792][ T4049]  vma_modify+0x87/0x510
[  172.541057][ T4049]  vma_modify_flags+0x212/0x2d0
[  172.545935][ T4049]  mprotect_fixup+0x2b3/0xb10
[  172.550638][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  172.555513][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  172.560386][ T4049]  do_syscall_64+0xcd/0x260
[  172.564916][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.570821][ T4049] 
[  172.573142][ T4049] The buggy address belongs to the object at ffff88803515b040
[  172.573142][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  172.587027][ T4049] The buggy address is located 0 bytes to the right of
[  172.587027][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  172.601443][ T4049] 
[  172.603765][ T4049] The buggy address belongs to the physical page:
[  172.610172][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  172.618937][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  172.626049][ T4049] page_type: f5(slab)
[  172.630041][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  172.638633][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  172.647216][ T4049] page dumped because: kasan: bad access detected
[  172.653648][ T4049] page_owner tracks the page as allocated
[  172.659363][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  172.677009][ T4049]  post_alloc_hook+0x181/0x1b0
[  172.681796][ T4049]  get_page_from_freelist+0x135c/0x3920
[  172.687383][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  172.693307][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  172.698190][ T4049]  new_slab+0x244/0x340
[  172.702368][ T4049]  ___slab_alloc+0xd9c/0x1940
[  172.707086][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  172.712480][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  172.717784][ T4049]  kmem_cache_free+0x148/0x4d0
[  172.722571][ T4049]  exit_mmap+0x511/0xb90
[  172.726836][ T4049]  __mmput+0x12a/0x410
[  172.730929][ T4049]  mmput+0x62/0x70
[  172.734682][ T4049]  do_exit+0x9d1/0x2c30
[  172.738862][ T4049]  do_group_exit+0xd3/0x2a0
[  172.743394][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  172.748450][ T4049]  x64_sys_call+0x1530/0x1730
[  172.753155][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  172.759482][ T4049]  __free_frozen_pages+0x69d/0xff0
[  172.764614][ T4049]  __mmdrop+0xd5/0x4f0
[  172.768698][ T4049]  __mmput+0x36c/0x410
[  172.772787][ T4049]  mmput+0x62/0x70
[  172.776527][ T4049]  do_exit+0x9d1/0x2c30
[  172.780712][ T4049]  do_group_exit+0xd3/0x2a0
[  172.785243][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  172.790300][ T4049]  x64_sys_call+0x1530/0x1730
[  172.795011][ T4049]  do_syscall_64+0xcd/0x260
[  172.799543][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  172.805451][ T4049] 
[  172.807771][ T4049] Memory state around the buggy address:
[  172.813401][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  172.821471][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  172.829540][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  172.837604][ T4049]                                                        ^
[  172.844800][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  172.852872][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  172.860937][ T4049] ==================================================================
[  173.024741][ T4049] ==================================================================
[  173.032839][ T4049] BUG: KASAN: slab-out-of-bounds in _copy_from_iter+0x1459/0x15b0
[  173.040698][ T4049] Read of size 4 at addr ffff88803515b068 by task kworker/u8:7/4049
[  173.048698][ T4049] 
[  173.051041][ T4049] CPU: 0 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  173.051098][ T4049] Tainted: [B]=BAD_PAGE
[  173.051111][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  173.051135][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  173.051203][ T4049] Call Trace:
[  173.051214][ T4049]  <TASK>
[  173.051227][ T4049]  dump_stack_lvl+0x116/0x1f0
[  173.051280][ T4049]  print_report+0xc3/0x670
[  173.051335][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.051387][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.051432][ T4049]  ? __phys_addr+0xc6/0x150
[  173.051486][ T4049]  ? _copy_from_iter+0x1459/0x15b0
[  173.051541][ T4049]  kasan_report+0xe0/0x110
[  173.051598][ T4049]  ? _copy_from_iter+0x1459/0x15b0
[  173.051658][ T4049]  _copy_from_iter+0x1459/0x15b0
[  173.051717][ T4049]  ? p9pdu_writef+0xc3/0x100
[  173.051752][ T4049]  ? __pfx__copy_from_iter+0x10/0x10
[  173.051810][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.051855][ T4049]  ? lock_acquire+0x2cd/0x350
[  173.051912][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.051957][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.052003][ T4049]  ? __asan_memcpy+0x3c/0x60
[  173.052053][ T4049]  p9pdu_vwritef+0x2da/0x1d30
[  173.052094][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.052139][ T4049]  ? p9pdu_writef+0xc3/0x100
[  173.052173][ T4049]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  173.052210][ T4049]  ? __pfx_p9_tag_alloc+0x10/0x10
[  173.052262][ T4049]  ? rcu_is_watching+0x12/0xc0
[  173.052306][ T4049]  ? rcu_is_watching+0x12/0xc0
[  173.052354][ T4049]  ? rcu_is_watching+0x12/0xc0
[  173.052397][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.052447][ T4049]  p9_client_prepare_req+0x247/0x4d0
[  173.052504][ T4049]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  173.052559][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.052604][ T4049]  ? trace_sched_exit_tp+0xde/0x130
[  173.052657][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.052702][ T4049]  ? __schedule+0x1186/0x5de0
[  173.052748][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.052797][ T4049]  p9_client_rpc+0x1c4/0xc50
[  173.052854][ T4049]  ? __pfx_p9_client_rpc+0x10/0x10
[  173.052910][ T4049]  ? __pfx___schedule+0x10/0x10
[  173.052956][ T4049]  ? __pfx_vprintk_emit+0x10/0x10
[  173.053004][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.053050][ T4049]  ? rcu_is_watching+0x12/0xc0
[  173.053091][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.053138][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.053188][ T4049]  p9_client_write+0x245/0x6f0
[  173.053255][ T4049]  ? __pfx_p9_client_write+0x10/0x10
[  173.053323][ T4049]  v9fs_issue_write+0xe3/0x1b0
[  173.053383][ T4049]  ? __pfx_v9fs_issue_write+0x10/0x10
[  173.053435][ T4049]  ? iov_iter_advance+0x380/0x6c0
[  173.053488][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.053533][ T4049]  ? rcu_is_watching+0x12/0xc0
[  173.053578][ T4049]  netfs_do_issue_write+0x95/0x110
[  173.053614][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  173.053656][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.053704][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.053749][ T4049]  ? update_curr_se+0x8b/0x270
[  173.053807][ T4049]  ? update_curr+0x74/0x800
[  173.053845][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  173.053888][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.053933][ T4049]  ? register_lock_class+0x41/0x4c0
[  173.053995][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.054044][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  173.054131][ T4049]  process_one_work+0x9cf/0x1b70
[  173.054180][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  173.054220][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.054271][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.054316][ T4049]  ? assign_work+0x1a0/0x250
[  173.054358][ T4049]  worker_thread+0x6c8/0xf10
[  173.054407][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  173.054446][ T4049]  kthread+0x3c5/0x780
[  173.054480][ T4049]  ? __pfx_kthread+0x10/0x10
[  173.054512][ T4049]  ? __pfx_kthread+0x10/0x10
[  173.054544][ T4049]  ? __pfx_kthread+0x10/0x10
[  173.054576][ T4049]  ? __pfx_kthread+0x10/0x10
[  173.054608][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  173.054653][ T4049]  ? rcu_is_watching+0x12/0xc0
[  173.054697][ T4049]  ? __pfx_kthread+0x10/0x10
[  173.054731][ T4049]  ret_from_fork+0x48/0x80
[  173.054766][ T4049]  ? __pfx_kthread+0x10/0x10
[  173.054799][ T4049]  ret_from_fork_asm+0x1a/0x30
[  173.054866][ T4049]  </TASK>
[  173.054878][ T4049] 
[  173.093111][ T4049] Allocated by task 5987:
[  173.093128][ T4049]  kasan_save_stack+0x33/0x60
[  173.093177][ T4049]  kasan_save_track+0x14/0x30
[  173.093225][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  173.093271][ T4049]  kmem_cache_free+0x148/0x4d0
[  173.093318][ T4049]  vma_complete+0x54d/0xe30
[  173.093368][ T4049]  commit_merge+0x5e7/0x1020
[  173.093413][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  173.093462][ T4049]  vma_modify+0x87/0x510
[  173.093507][ T4049]  vma_modify_flags+0x212/0x2d0
[  173.093556][ T4049]  mprotect_fixup+0x2b3/0xb10
[  173.093603][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  173.475154][ T1148] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.476678][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  173.484773][ T6075] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  173.486738][ T4049]  do_syscall_64+0xcd/0x260
[  173.491097][ T6075] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.495698][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.500407][ T1148] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  173.504909][ T4049] 
[  173.504918][ T4049] Freed by task 0:
[  173.504934][ T4049]  kasan_save_stack+0x33/0x60
[  173.504983][ T4049]  kasan_save_track+0x14/0x30
[  173.505031][ T4049]  kasan_save_free_info+0x3b/0x60
[  173.505070][ T4049]  __kasan_slab_free+0x51/0x70
[  173.505121][ T4049]  kfree+0x2b6/0x4d0
[  173.505160][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  173.505208][ T4049]  rcu_core+0x79c/0x14e0
[  173.505242][ T4049]  handle_softirqs+0x219/0x8e0
[  173.505285][ T4049]  __irq_exit_rcu+0x109/0x170
[  173.505326][ T4049]  irq_exit_rcu+0x9/0x30
[  173.640784][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  173.646447][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  173.652435][ T4049] 
[  173.654746][ T4049] Last potentially related work creation:
[  173.660447][ T4049]  kasan_save_stack+0x33/0x60
[  173.665133][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  173.670334][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  173.676248][ T4049]  kmem_cache_free+0x173/0x4d0
[  173.681020][ T4049]  vma_complete+0x54d/0xe30
[  173.685531][ T4049]  commit_merge+0x5e7/0x1020
[  173.690129][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  173.695771][ T4049]  vma_modify+0x87/0x510
[  173.700029][ T4049]  vma_modify_flags+0x212/0x2d0
[  173.704913][ T4049]  mprotect_fixup+0x2b3/0xb10
[  173.709603][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  173.714463][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  173.719324][ T4049]  do_syscall_64+0xcd/0x260
[  173.723846][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.729750][ T4049] 
[  173.732076][ T4049] The buggy address belongs to the object at ffff88803515b040
[  173.732076][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  173.745952][ T4049] The buggy address is located 8 bytes to the right of
[  173.745952][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  173.760359][ T4049] 
[  173.762672][ T4049] The buggy address belongs to the physical page:
[  173.769097][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  173.777860][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  173.784972][ T4049] page_type: f5(slab)
[  173.788953][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  173.797537][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  173.806110][ T4049] page dumped because: kasan: bad access detected
[  173.812521][ T4049] page_owner tracks the page as allocated
[  173.818235][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  173.835868][ T4049]  post_alloc_hook+0x181/0x1b0
[  173.840644][ T4049]  get_page_from_freelist+0x135c/0x3920
[  173.846199][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  173.852105][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  173.856969][ T4049]  new_slab+0x244/0x340
[  173.861130][ T4049]  ___slab_alloc+0xd9c/0x1940
[  173.865809][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  173.871186][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  173.876478][ T4049]  kmem_cache_free+0x148/0x4d0
[  173.881250][ T4049]  exit_mmap+0x511/0xb90
[  173.885495][ T4049]  __mmput+0x12a/0x410
[  173.889576][ T4049]  mmput+0x62/0x70
[  173.893323][ T4049]  do_exit+0x9d1/0x2c30
[  173.897494][ T4049]  do_group_exit+0xd3/0x2a0
[  173.902011][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  173.907050][ T4049]  x64_sys_call+0x1530/0x1730
[  173.911749][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  173.918080][ T4049]  __free_frozen_pages+0x69d/0xff0
[  173.923200][ T4049]  __mmdrop+0xd5/0x4f0
[  173.927271][ T4049]  __mmput+0x36c/0x410
[  173.931346][ T4049]  mmput+0x62/0x70
[  173.935076][ T4049]  do_exit+0x9d1/0x2c30
[  173.939243][ T4049]  do_group_exit+0xd3/0x2a0
[  173.943760][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  173.948796][ T4049]  x64_sys_call+0x1530/0x1730
[  173.953489][ T4049]  do_syscall_64+0xcd/0x260
[  173.958002][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  173.963896][ T4049] 
[  173.966209][ T4049] Memory state around the buggy address:
[  173.971838][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  173.979924][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  173.988005][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  173.996058][ T4049]                                                           ^
[  174.003508][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  174.011566][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  174.019621][ T4049] ==================================================================
[  174.040130][ T4049] ==================================================================
[  174.048206][ T4049] BUG: KASAN: wild-memory-access in _copy_from_iter+0x8c9/0x15b0
[  174.055972][ T4049] Read of size 427 at addr 18057a000489d01b by task kworker/u8:7/4049
[  174.064142][ T4049] 
[  174.066484][ T4049] CPU: 0 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  174.066541][ T4049] Tainted: [B]=BAD_PAGE
[  174.066554][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  174.066578][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  174.066645][ T4049] Call Trace:
[  174.066656][ T4049]  <TASK>
[  174.066669][ T4049]  dump_stack_lvl+0x116/0x1f0
[  174.066723][ T4049]  kasan_report+0xe0/0x110
[  174.066780][ T4049]  ? _copy_from_iter+0x8c9/0x15b0
[  174.066842][ T4049]  kasan_check_range+0xef/0x1a0
[  174.066880][ T4049]  __asan_memcpy+0x23/0x60
[  174.066925][ T4049]  _copy_from_iter+0x8c9/0x15b0
[  174.066981][ T4049]  ? p9pdu_writef+0xc3/0x100
[  174.067017][ T4049]  ? __pfx__copy_from_iter+0x10/0x10
[  174.067072][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.067114][ T4049]  ? lock_acquire+0x2cd/0x350
[  174.067166][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.067208][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.067249][ T4049]  ? __asan_memcpy+0x3c/0x60
[  174.067293][ T4049]  p9pdu_vwritef+0x2da/0x1d30
[  174.067330][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.067391][ T4049]  ? p9pdu_writef+0xc3/0x100
[  174.067426][ T4049]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  174.067461][ T4049]  ? __pfx_p9_tag_alloc+0x10/0x10
[  174.067513][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.067559][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.067602][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.067644][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.067693][ T4049]  p9_client_prepare_req+0x247/0x4d0
[  174.067750][ T4049]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  174.067804][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.067849][ T4049]  ? trace_sched_exit_tp+0xde/0x130
[  174.067904][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.067948][ T4049]  ? __schedule+0x1186/0x5de0
[  174.067993][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.068044][ T4049]  p9_client_rpc+0x1c4/0xc50
[  174.068101][ T4049]  ? __pfx_p9_client_rpc+0x10/0x10
[  174.068158][ T4049]  ? __pfx___schedule+0x10/0x10
[  174.068205][ T4049]  ? __pfx_vprintk_emit+0x10/0x10
[  174.068253][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.068299][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.068340][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.068394][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.068443][ T4049]  p9_client_write+0x245/0x6f0
[  174.068511][ T4049]  ? __pfx_p9_client_write+0x10/0x10
[  174.068579][ T4049]  v9fs_issue_write+0xe3/0x1b0
[  174.068631][ T4049]  ? __pfx_v9fs_issue_write+0x10/0x10
[  174.068682][ T4049]  ? iov_iter_advance+0x380/0x6c0
[  174.068735][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.068780][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.068824][ T4049]  netfs_do_issue_write+0x95/0x110
[  174.068860][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  174.068900][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.068947][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.068993][ T4049]  ? update_curr_se+0x8b/0x270
[  174.069050][ T4049]  ? update_curr+0x74/0x800
[  174.069088][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  174.069131][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.069177][ T4049]  ? register_lock_class+0x41/0x4c0
[  174.069239][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.069287][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  174.069378][ T4049]  process_one_work+0x9cf/0x1b70
[  174.069426][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  174.069464][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.069514][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.069557][ T4049]  ? assign_work+0x1a0/0x250
[  174.069592][ T4049]  worker_thread+0x6c8/0xf10
[  174.069641][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  174.069679][ T4049]  kthread+0x3c5/0x780
[  174.069712][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.069744][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.069776][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.069808][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.069840][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.069884][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.069926][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.069959][ T4049]  ret_from_fork+0x48/0x80
[  174.069993][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.070026][ T4049]  ret_from_fork_asm+0x1a/0x30
[  174.070091][ T4049]  </TASK>
[  174.070103][ T4049] ==================================================================
[  174.504137][ T4049] ==================================================================
[  174.512220][ T4049] BUG: KASAN: slab-out-of-bounds in _copy_from_iter+0x1416/0x15b0
[  174.520071][ T4049] Read of size 4 at addr ffff88803515b068 by task kworker/u8:7/4049
[  174.528056][ T4049] 
[  174.530391][ T4049] CPU: 1 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  174.530444][ T4049] Tainted: [B]=BAD_PAGE
[  174.530455][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  174.530478][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  174.530539][ T4049] Call Trace:
[  174.530549][ T4049]  <TASK>
[  174.530561][ T4049]  dump_stack_lvl+0x116/0x1f0
[  174.530612][ T4049]  print_report+0xc3/0x670
[  174.530662][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.530703][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.530744][ T4049]  ? __phys_addr+0xc6/0x150
[  174.530793][ T4049]  ? _copy_from_iter+0x1416/0x15b0
[  174.530841][ T4049]  kasan_report+0xe0/0x110
[  174.530893][ T4049]  ? _copy_from_iter+0x1416/0x15b0
[  174.530948][ T4049]  _copy_from_iter+0x1416/0x15b0
[  174.531000][ T4049]  ? p9pdu_writef+0xc3/0x100
[  174.531033][ T4049]  ? __pfx__copy_from_iter+0x10/0x10
[  174.531085][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531126][ T4049]  ? lock_acquire+0x2cd/0x350
[  174.531178][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531220][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531260][ T4049]  ? __asan_memcpy+0x3c/0x60
[  174.531305][ T4049]  p9pdu_vwritef+0x2da/0x1d30
[  174.531341][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531386][ T4049]  ? p9pdu_writef+0xc3/0x100
[  174.531417][ T4049]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  174.531450][ T4049]  ? __pfx_p9_tag_alloc+0x10/0x10
[  174.531498][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.531538][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.531577][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.531615][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531660][ T4049]  p9_client_prepare_req+0x247/0x4d0
[  174.531712][ T4049]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  174.531762][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531805][ T4049]  ? trace_sched_exit_tp+0xde/0x130
[  174.531855][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531895][ T4049]  ? __schedule+0x1186/0x5de0
[  174.531936][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.531982][ T4049]  p9_client_rpc+0x1c4/0xc50
[  174.532033][ T4049]  ? __pfx_p9_client_rpc+0x10/0x10
[  174.532085][ T4049]  ? __pfx___schedule+0x10/0x10
[  174.532127][ T4049]  ? __pfx_vprintk_emit+0x10/0x10
[  174.532170][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.532211][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.532249][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.532291][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.532337][ T4049]  p9_client_write+0x245/0x6f0
[  174.532404][ T4049]  ? __pfx_p9_client_write+0x10/0x10
[  174.532466][ T4049]  v9fs_issue_write+0xe3/0x1b0
[  174.532514][ T4049]  ? __pfx_v9fs_issue_write+0x10/0x10
[  174.532562][ T4049]  ? iov_iter_advance+0x380/0x6c0
[  174.532610][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.532651][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.532692][ T4049]  netfs_do_issue_write+0x95/0x110
[  174.532724][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  174.532762][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.532806][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.532847][ T4049]  ? update_curr_se+0x8b/0x270
[  174.532899][ T4049]  ? update_curr+0x74/0x800
[  174.532934][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  174.532973][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.533014][ T4049]  ? register_lock_class+0x41/0x4c0
[  174.533069][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.533113][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  174.533192][ T4049]  process_one_work+0x9cf/0x1b70
[  174.533236][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  174.533272][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.533318][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.533363][ T4049]  ? assign_work+0x1a0/0x250
[  174.533396][ T4049]  worker_thread+0x6c8/0xf10
[  174.533440][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  174.533476][ T4049]  kthread+0x3c5/0x780
[  174.533506][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.533535][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.533564][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.533594][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.533623][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  174.533663][ T4049]  ? rcu_is_watching+0x12/0xc0
[  174.533702][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.533733][ T4049]  ret_from_fork+0x48/0x80
[  174.533765][ T4049]  ? __pfx_kthread+0x10/0x10
[  174.533795][ T4049]  ret_from_fork_asm+0x1a/0x30
[  174.533855][ T4049]  </TASK>
[  174.533867][ T4049] 
[  174.964682][ T4049] Allocated by task 5987:
[  174.969009][ T4049]  kasan_save_stack+0x33/0x60
[  174.973718][ T4049]  kasan_save_track+0x14/0x30
[  174.978420][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  174.983033][ T4049]  kmem_cache_free+0x148/0x4d0
[  174.987820][ T4049]  vma_complete+0x54d/0xe30
[  174.992348][ T4049]  commit_merge+0x5e7/0x1020
[  174.996960][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  175.002614][ T4049]  vma_modify+0x87/0x510
[  175.006879][ T4049]  vma_modify_flags+0x212/0x2d0
[  175.011757][ T4049]  mprotect_fixup+0x2b3/0xb10
[  175.016457][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  175.021332][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  175.026210][ T4049]  do_syscall_64+0xcd/0x260
[  175.030738][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.036644][ T4049] 
[  175.038964][ T4049] Freed by task 0:
[  175.042681][ T4049]  kasan_save_stack+0x33/0x60
[  175.047382][ T4049]  kasan_save_track+0x14/0x30
[  175.052080][ T4049]  kasan_save_free_info+0x3b/0x60
[  175.057124][ T4049]  __kasan_slab_free+0x51/0x70
[  175.061913][ T4049]  kfree+0x2b6/0x4d0
[  175.065824][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  175.071390][ T4049]  rcu_core+0x79c/0x14e0
[  175.075643][ T4049]  handle_softirqs+0x219/0x8e0
[  175.080426][ T4049]  __irq_exit_rcu+0x109/0x170
[  175.085117][ T4049]  irq_exit_rcu+0x9/0x30
[  175.089378][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  175.095030][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  175.101023][ T4049] 
[  175.103349][ T4049] Last potentially related work creation:
[  175.109056][ T4049]  kasan_save_stack+0x33/0x60
[  175.113765][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  175.118974][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  175.124904][ T4049]  kmem_cache_free+0x173/0x4d0
[  175.129689][ T4049]  vma_complete+0x54d/0xe30
[  175.134212][ T4049]  commit_merge+0x5e7/0x1020
[  175.138823][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  175.144480][ T4049]  vma_modify+0x87/0x510
[  175.148746][ T4049]  vma_modify_flags+0x212/0x2d0
[  175.153649][ T4049]  mprotect_fixup+0x2b3/0xb10
[  175.158353][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  175.163226][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  175.168099][ T4049]  do_syscall_64+0xcd/0x260
[  175.172629][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.178533][ T4049] 
[  175.180852][ T4049] The buggy address belongs to the object at ffff88803515b040
[  175.180852][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  175.194736][ T4049] The buggy address is located 8 bytes to the right of
[  175.194736][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  175.209153][ T4049] 
[  175.211473][ T4049] The buggy address belongs to the physical page:
[  175.217876][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  175.226643][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  175.233758][ T4049] page_type: f5(slab)
[  175.237747][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  175.246346][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  175.254931][ T4049] page dumped because: kasan: bad access detected
[  175.261340][ T4049] page_owner tracks the page as allocated
[  175.267055][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  175.284699][ T4049]  post_alloc_hook+0x181/0x1b0
[  175.289486][ T4049]  get_page_from_freelist+0x135c/0x3920
[  175.295057][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  175.300975][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  175.305853][ T4049]  new_slab+0x244/0x340
[  175.310027][ T4049]  ___slab_alloc+0xd9c/0x1940
[  175.314721][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  175.320113][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  175.325415][ T4049]  kmem_cache_free+0x148/0x4d0
[  175.330200][ T4049]  exit_mmap+0x511/0xb90
[  175.334458][ T4049]  __mmput+0x12a/0x410
[  175.338543][ T4049]  mmput+0x62/0x70
[  175.342282][ T4049]  do_exit+0x9d1/0x2c30
[  175.346469][ T4049]  do_group_exit+0xd3/0x2a0
[  175.351008][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  175.356065][ T4049]  x64_sys_call+0x1530/0x1730
[  175.360773][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  175.367096][ T4049]  __free_frozen_pages+0x69d/0xff0
[  175.372228][ T4049]  __mmdrop+0xd5/0x4f0
[  175.376311][ T4049]  __mmput+0x36c/0x410
[  175.380400][ T4049]  mmput+0x62/0x70
[  175.384140][ T4049]  do_exit+0x9d1/0x2c30
[  175.388322][ T4049]  do_group_exit+0xd3/0x2a0
[  175.392856][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  175.397911][ T4049]  x64_sys_call+0x1530/0x1730
[  175.402621][ T4049]  do_syscall_64+0xcd/0x260
[  175.407152][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  175.413057][ T4049] 
[  175.415379][ T4049] Memory state around the buggy address:
[  175.421008][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  175.429077][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  175.437144][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  175.445207][ T4049]                                                           ^
[  175.452665][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  175.460734][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  175.468796][ T4049] ==================================================================
[  175.532471][ T4049] ==================================================================
[  175.540548][ T4049] BUG: KASAN: slab-out-of-bounds in _copy_from_iter+0x132f/0x15b0
[  175.548406][ T4049] Read of size 4 at addr ffff88803515b07c by task kworker/u8:7/4049
[  175.556408][ T4049] 
[  175.558751][ T4049] CPU: 1 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  175.558809][ T4049] Tainted: [B]=BAD_PAGE
[  175.558821][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  175.558847][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  175.558915][ T4049] Call Trace:
[  175.558926][ T4049]  <TASK>
[  175.558939][ T4049]  dump_stack_lvl+0x116/0x1f0
[  175.558995][ T4049]  print_report+0xc3/0x670
[  175.559052][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.559101][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.559146][ T4049]  ? __phys_addr+0xc6/0x150
[  175.559200][ T4049]  ? _copy_from_iter+0x132f/0x15b0
[  175.559255][ T4049]  kasan_report+0xe0/0x110
[  175.559315][ T4049]  ? _copy_from_iter+0x132f/0x15b0
[  175.559377][ T4049]  _copy_from_iter+0x132f/0x15b0
[  175.559435][ T4049]  ? p9pdu_writef+0xc3/0x100
[  175.559472][ T4049]  ? __pfx__copy_from_iter+0x10/0x10
[  175.559531][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.559577][ T4049]  ? lock_acquire+0x2cd/0x350
[  175.559643][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.559691][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.559738][ T4049]  ? __asan_memcpy+0x3c/0x60
[  175.559787][ T4049]  p9pdu_vwritef+0x2da/0x1d30
[  175.559829][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.559875][ T4049]  ? p9pdu_writef+0xc3/0x100
[  175.559911][ T4049]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  175.559948][ T4049]  ? __pfx_p9_tag_alloc+0x10/0x10
[  175.560003][ T4049]  ? rcu_is_watching+0x12/0xc0
[  175.560048][ T4049]  ? rcu_is_watching+0x12/0xc0
[  175.560092][ T4049]  ? rcu_is_watching+0x12/0xc0
[  175.560135][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.560186][ T4049]  p9_client_prepare_req+0x247/0x4d0
[  175.560245][ T4049]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  175.560301][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.560349][ T4049]  ? trace_sched_exit_tp+0xde/0x130
[  175.560407][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.560454][ T4049]  ? __schedule+0x1186/0x5de0
[  175.560500][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.560552][ T4049]  p9_client_rpc+0x1c4/0xc50
[  175.560614][ T4049]  ? __pfx_p9_client_rpc+0x10/0x10
[  175.560672][ T4049]  ? __pfx___schedule+0x10/0x10
[  175.560721][ T4049]  ? __pfx_vprintk_emit+0x10/0x10
[  175.560770][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.560816][ T4049]  ? rcu_is_watching+0x12/0xc0
[  175.560860][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.560908][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.560960][ T4049]  p9_client_write+0x245/0x6f0
[  175.561031][ T4049]  ? __pfx_p9_client_write+0x10/0x10
[  175.561102][ T4049]  v9fs_issue_write+0xe3/0x1b0
[  175.561157][ T4049]  ? __pfx_v9fs_issue_write+0x10/0x10
[  175.561209][ T4049]  ? iov_iter_advance+0x380/0x6c0
[  175.561263][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.561310][ T4049]  ? rcu_is_watching+0x12/0xc0
[  175.561355][ T4049]  netfs_do_issue_write+0x95/0x110
[  175.561393][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  175.561435][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.561485][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.561534][ T4049]  ? update_curr_se+0x8b/0x270
[  175.561597][ T4049]  ? update_curr+0x74/0x800
[  175.561637][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10
[  175.561681][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.561727][ T4049]  ? register_lock_class+0x41/0x4c0
[  175.561788][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.561839][ T4049]  netfs_write_collection_worker+0x23fd/0x3830
[  175.561928][ T4049]  process_one_work+0x9cf/0x1b70
[  175.561977][ T4049]  ? __pfx_process_one_work+0x10/0x10
[  175.562018][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.562070][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.562116][ T4049]  ? assign_work+0x1a0/0x250
[  175.562153][ T4049]  worker_thread+0x6c8/0xf10
[  175.562203][ T4049]  ? __pfx_worker_thread+0x10/0x10
[  175.562243][ T4049]  kthread+0x3c5/0x780
[  175.562277][ T4049]  ? __pfx_kthread+0x10/0x10
[  175.562309][ T4049]  ? __pfx_kthread+0x10/0x10
[  175.562342][ T4049]  ? __pfx_kthread+0x10/0x10
[  175.562374][ T4049]  ? __pfx_kthread+0x10/0x10
[  175.562407][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  175.562454][ T4049]  ? rcu_is_watching+0x12/0xc0
[  175.562499][ T4049]  ? __pfx_kthread+0x10/0x10
[  175.562534][ T4049]  ret_from_fork+0x48/0x80
[  175.562569][ T4049]  ? __pfx_kthread+0x10/0x10
[  175.562609][ T4049]  ret_from_fork_asm+0x1a/0x30
[  175.562677][ T4049]  </TASK>
[  175.562690][ T4049] 
[  175.993439][ T4049] Allocated by task 5987:
[  175.997767][ T4049]  kasan_save_stack+0x33/0x60
[  176.002474][ T4049]  kasan_save_track+0x14/0x30
[  176.007173][ T4049]  __kasan_kmalloc+0xaa/0xb0
[  176.011786][ T4049]  kmem_cache_free+0x148/0x4d0
[  176.016573][ T4049]  vma_complete+0x54d/0xe30
[  176.021101][ T4049]  commit_merge+0x5e7/0x1020
[  176.025714][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  176.031374][ T4049]  vma_modify+0x87/0x510
[  176.035638][ T4049]  vma_modify_flags+0x212/0x2d0
[  176.040516][ T4049]  mprotect_fixup+0x2b3/0xb10
[  176.045218][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  176.050091][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  176.054966][ T4049]  do_syscall_64+0xcd/0x260
[  176.059498][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.065405][ T4049] 
[  176.067726][ T4049] Freed by task 0:
[  176.071446][ T4049]  kasan_save_stack+0x33/0x60
[  176.076150][ T4049]  kasan_save_track+0x14/0x30
[  176.080850][ T4049]  kasan_save_free_info+0x3b/0x60
[  176.085888][ T4049]  __kasan_slab_free+0x51/0x70
[  176.090679][ T4049]  kfree+0x2b6/0x4d0
[  176.094592][ T4049]  slab_free_after_rcu_debug+0x69/0x350
[  176.100167][ T4049]  rcu_core+0x79c/0x14e0
[  176.104422][ T4049]  handle_softirqs+0x219/0x8e0
[  176.109205][ T4049]  __irq_exit_rcu+0x109/0x170
[  176.113899][ T4049]  irq_exit_rcu+0x9/0x30
[  176.118158][ T4049]  sysvec_apic_timer_interrupt+0xa4/0xc0
[  176.123813][ T4049]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  176.129811][ T4049] 
[  176.132131][ T4049] Last potentially related work creation:
[  176.137839][ T4049]  kasan_save_stack+0x33/0x60
[  176.142541][ T4049]  kasan_record_aux_stack+0xb8/0xd0
[  176.147759][ T4049]  __call_rcu_common.constprop.0+0x9a/0x9f0
[  176.153689][ T4049]  kmem_cache_free+0x173/0x4d0
[  176.158477][ T4049]  vma_complete+0x54d/0xe30
[  176.163002][ T4049]  commit_merge+0x5e7/0x1020
[  176.167623][ T4049]  vma_merge_existing_range+0xc50/0x1cd0
[  176.173284][ T4049]  vma_modify+0x87/0x510
[  176.177551][ T4049]  vma_modify_flags+0x212/0x2d0
[  176.182434][ T4049]  mprotect_fixup+0x2b3/0xb10
[  176.187134][ T4049]  do_mprotect_pkey+0x9ca/0xd50
[  176.192009][ T4049]  __x64_sys_mprotect+0x78/0xc0
[  176.196883][ T4049]  do_syscall_64+0xcd/0x260
[  176.201414][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.207319][ T4049] 
[  176.209649][ T4049] The buggy address belongs to the object at ffff88803515b040
[  176.209649][ T4049]  which belongs to the cache kmalloc-32 of size 32
[  176.223536][ T4049] The buggy address is located 28 bytes to the right of
[  176.223536][ T4049]  allocated 32-byte region [ffff88803515b040, ffff88803515b060)
[  176.238042][ T4049] 
[  176.240365][ T4049] The buggy address belongs to the physical page:
[  176.246772][ T4049] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x3515b
[  176.255539][ T4049] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  176.262654][ T4049] page_type: f5(slab)
[  176.266676][ T4049] raw: 00fff00000000000 ffff88801b441780 dead000000000100 dead000000000122
[  176.275280][ T4049] raw: 0000000000000000 0000000000400040 00000000f5000000 0000000000000000
[  176.283863][ T4049] page dumped because: kasan: bad access detected
[  176.290278][ T4049] page_owner tracks the page as allocated
[  176.295988][ T4049] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x52800(GFP_NOWAIT|__GFP_NORETRY|__GFP_COMP), pid 5235, tgid 5235 (v4l_id), ts 50065831119, free_ts 50064634938
[  176.313638][ T4049]  post_alloc_hook+0x181/0x1b0
[  176.318427][ T4049]  get_page_from_freelist+0x135c/0x3920
[  176.323999][ T4049]  __alloc_frozen_pages_noprof+0x263/0x23a0
[  176.329922][ T4049]  alloc_pages_mpol+0x1fb/0x550
[  176.334804][ T4049]  new_slab+0x244/0x340
[  176.338977][ T4049]  ___slab_alloc+0xd9c/0x1940
[  176.343700][ T4049]  __slab_alloc.constprop.0+0x56/0xb0
[  176.349093][ T4049]  __kmalloc_cache_noprof+0xfb/0x3e0
[  176.354397][ T4049]  kmem_cache_free+0x148/0x4d0
[  176.359184][ T4049]  exit_mmap+0x511/0xb90
[  176.363443][ T4049]  __mmput+0x12a/0x410
[  176.367533][ T4049]  mmput+0x62/0x70
[  176.371280][ T4049]  do_exit+0x9d1/0x2c30
[  176.375465][ T4049]  do_group_exit+0xd3/0x2a0
[  176.379998][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  176.385054][ T4049]  x64_sys_call+0x1530/0x1730
[  176.389761][ T4049] page last free pid 5224 tgid 5224 stack trace:
[  176.396084][ T4049]  __free_frozen_pages+0x69d/0xff0
[  176.401214][ T4049]  __mmdrop+0xd5/0x4f0
[  176.405299][ T4049]  __mmput+0x36c/0x410
[  176.409388][ T4049]  mmput+0x62/0x70
[  176.413128][ T4049]  do_exit+0x9d1/0x2c30
[  176.417311][ T4049]  do_group_exit+0xd3/0x2a0
[  176.421843][ T4049]  __x64_sys_exit_group+0x3e/0x50
[  176.426897][ T4049]  x64_sys_call+0x1530/0x1730
[  176.431607][ T4049]  do_syscall_64+0xcd/0x260
[  176.436137][ T4049]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  176.442046][ T4049] 
[  176.444368][ T4049] Memory state around the buggy address:
[  176.449997][ T4049]  ffff88803515af00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  176.458064][ T4049]  ffff88803515af80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  176.466133][ T4049] >ffff88803515b000: fa fb fb fb fc fc fc fc fa fb fb fb fc fc fc fc
[  176.474197][ T4049]                                                                 ^
[  176.482177][ T4049]  ffff88803515b080: 00 00 00 00 fc fc fc fc fa fb fb fb fc fc fc fc
[  176.490246][ T4049]  ffff88803515b100: 00 00 00 00 fc fc fc fc 00 00 00 00 fc fc fc fc
[  176.498309][ T4049] ==================================================================
[  176.585895][ T4049] ==================================================================
[  176.593981][ T4049] BUG: KASAN: slab-out-of-bounds in _copy_from_iter+0x1447/0x15b0
[  176.601834][ T4049] Read of size 8 at addr ffff88803515b070 by task kworker/u8:7/4049
[  176.609830][ T4049] 
[  176.612175][ T4049] CPU: 1 UID: 0 PID: 4049 Comm: kworker/u8:7 Tainted: G    B               6.15.0-rc5-syzkaller-00038-g707df3375124 #0 PREEMPT(full) 
[  176.612236][ T4049] Tainted: [B]=BAD_PAGE
[  176.612250][ T4049] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  176.612275][ T4049] Workqueue: events_unbound netfs_write_collection_worker
[  176.612344][ T4049] Call Trace:
[  176.612355][ T4049]  <TASK>
[  176.612369][ T4049]  dump_stack_lvl+0x116/0x1f0
[  176.612424][ T4049]  print_report+0xc3/0x670
[  176.612480][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.612527][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.612573][ T4049]  ? __phys_addr+0xc6/0x150
[  176.612633][ T4049]  ? _copy_from_iter+0x1447/0x15b0
[  176.612688][ T4049]  kasan_report+0xe0/0x110
[  176.612747][ T4049]  ? _copy_from_iter+0x1447/0x15b0
[  176.612808][ T4049]  _copy_from_iter+0x1447/0x15b0
[  176.612867][ T4049]  ? p9pdu_writef+0xc3/0x100
[  176.612904][ T4049]  ? __pfx__copy_from_iter+0x10/0x10
[  176.612963][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613009][ T4049]  ? lock_acquire+0x2cd/0x350
[  176.613068][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613116][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613162][ T4049]  ? __asan_memcpy+0x3c/0x60
[  176.613212][ T4049]  p9pdu_vwritef+0x2da/0x1d30
[  176.613252][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613299][ T4049]  ? p9pdu_writef+0xc3/0x100
[  176.613334][ T4049]  ? __pfx_p9pdu_vwritef+0x10/0x10
[  176.613371][ T4049]  ? __pfx_p9_tag_alloc+0x10/0x10
[  176.613425][ T4049]  ? rcu_is_watching+0x12/0xc0
[  176.613470][ T4049]  ? rcu_is_watching+0x12/0xc0
[  176.613514][ T4049]  ? rcu_is_watching+0x12/0xc0
[  176.613557][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613613][ T4049]  p9_client_prepare_req+0x247/0x4d0
[  176.613671][ T4049]  ? __pfx_p9_client_prepare_req+0x10/0x10
[  176.613728][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613776][ T4049]  ? trace_sched_exit_tp+0xde/0x130
[  176.613834][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613882][ T4049]  ? __schedule+0x1186/0x5de0
[  176.613929][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.613980][ T4049]  p9_client_rpc+0x1c4/0xc50
[  176.614040][ T4049]  ? __pfx_p9_client_rpc+0x10/0x10
[  176.614099][ T4049]  ? __pfx___schedule+0x10/0x10
[  176.614147][ T4049]  ? __pfx_vprintk_emit+0x10/0x10
[  176.614196][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.614243][ T4049]  ? rcu_is_watching+0x12/0xc0
[  176.614286][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.614334][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.614386][ T4049]  p9_client_write+0x245/0x6f0
[  176.614456][ T4049]  ? __pfx_p9_client_write+0x10/0x10
[  176.614526][ T4049]  v9fs_issue_write+0xe3/0x1b0
[  176.614581][ T4049]  ? __pfx_v9fs_issue_write+0x10/0x10
[  176.614639][ T4049]  ? iov_iter_advance+0x380/0x6c0
[  176.614693][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.614739][ T4049]  ? rcu_is_watching+0x12/0xc0
[  176.614785][ T4049]  netfs_do_issue_write+0x95/0x110
[  176.614823][ T4049]  netfs_retry_writes+0x168a/0x1a50
[  176.614867][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.614916][ T4049]  ? srso_alias_return_thunk+0x5/0xfbef5
[  176.614963][ T4049]  ? update_curr_se+0x8b/0x270
[  176.615024][ T4049]  ? update_curr+0x74/0x800
[  176.615064][ T4049]  ? __pfx_netfs_retry_writes+0x10/0x10