last executing test programs:

4m34.359904436s ago: executing program 5 (id=76):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
close(0x3)
socket$igmp6(0xa, 0x3, 0x2)
setsockopt$inet_mtu(r0, 0x0, 0xa, 0x0, 0x0)

4m32.473536996s ago: executing program 5 (id=79):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
times(&(0x7f0000000040))
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(0xffffffffffffffff, 0x1, 0xffffffffffffffff, 0x0)
msgctl$IPC_RMID(0x0, 0x0)
socket(0x10, 0x803, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x1f, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11}, 0x94)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x14)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f00000003c0)=@ipv6_newaddr={0x54, 0x14, 0x9535393fea6295b5, 0x0, 0x0, {0xa, 0x18, 0x0, 0x0, r5}, [@IFA_LOCAL={0x14, 0x2, @ipv4}, @IFA_ADDRESS={0x14, 0x1, @private1={0xfc, 0x1, '\x00', 0x1}}, @IFA_CACHEINFO={0x14, 0x6, {0x0, 0x1, 0x4, 0xfffffffc}}]}, 0x54}}, 0x0)

4m30.443528435s ago: executing program 5 (id=80):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0xa2f01, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = dup(r1)
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000040)={'syzkaller1\x00', @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}})
write$tun(r0, &(0x7f0000000540)={@val={0xa, 0x88a8}, @void, @eth={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @random="2833b1656532", @void, {@ipv6={0x86dd, @generic={0x9, 0x6, "000400", 0x8, 0x2c, 0xff, @private2={0xfc, 0x2, '\x00', 0x1}, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, {[@routing={0x0, 0x0, 0x0, 0x6}]}}}}}}, 0x42)

4m30.269168434s ago: executing program 2 (id=82):
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000480)='./file0\x00', 0x18000, &(0x7f0000001e40)=ANY=[@ANYRES32=0x0, @ANYRESHEX, @ANYRES64, @ANYBLOB="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", @ANYRESOCT, @ANYRES64], 0x8, 0x2ed, &(0x7f0000000a80)="$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")
r0 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x41, 0x1ff)
write$binfmt_script(r0, 0x0, 0x0)
r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x4206, r1)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
recvmmsg(r2, &(0x7f0000007900)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
waitid(0x1, r1, 0x0, 0x2000000a, 0x0)

4m28.112780613s ago: executing program 2 (id=86):
creat(&(0x7f0000000300)='./bus\x00', 0x1a0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x301400, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x49)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x7a00, 0x0, 0x3)
r1 = open(&(0x7f00000001c0)='./bus\x00', 0x4c27e, 0x2)
fallocate(r1, 0x0, 0x0, 0x1000f4)

4m27.75276995s ago: executing program 2 (id=87):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x36}]}, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x1, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000140)={@map=0x1, 0xb, 0x1, 0x0, &(0x7f0000000040), 0x0, 0x0, &(0x7f0000000080)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f00000000c0)=[0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0], &(0x7f0000000100)=[0x0, 0x0], <r1=>0x0}, 0x40)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb4e02000)
r3 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r4 = syz_open_dev$MSR(&(0x7f0000000240), 0xfffffffffffffffa, 0x0)
read$msr(r4, &(0x7f0000019680)=""/102392, 0x18ff8)
sendmmsg$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
bind$inet(0xffffffffffffffff, 0x0, 0x0)
r5 = socket(0x28, 0x5, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, 0x0)
bind$vsock_stream(r5, &(0x7f0000000040), 0x10)
listen(r5, 0x0)
connect$vsock_stream(0xffffffffffffffff, 0x0, 0x0)
r6 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r6, 0x4018620d, &(0x7f0000000100)={0x73622a85, 0x0, 0x1})
sendmsg$inet(0xffffffffffffffff, 0x0, 0x80804)
r7 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000280), 0x40900, 0x0)
io_submit(0x0, 0x1, &(0x7f0000000000)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r7, 0x0}])
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000180)={@map, r0, 0x29, 0x10, r0, @void, @value=r0, @void, @void, r1}, 0x20)

4m24.404434792s ago: executing program 2 (id=90):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x24020400)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, 0x0, &(0x7f0000001280), 0xffffffff, r1}, 0x38)
r2 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, 0x0, 0x0)
listen(r3, 0x5)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [0x0, 0x0, 0x0, 0xffffff00], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r5, 0x1)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bind$inet6(r5, &(0x7f00000000c0)={0xa, 0x4e20, 0x3, @empty, 0x10005}, 0x1c)
connect$inet6(r5, &(0x7f0000000040)={0xa, 0x4e20, 0x9, @loopback}, 0x1c)

4m20.936637604s ago: executing program 5 (id=99):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x210000, &(0x7f0000000280)={[{@user_xattr}, {@noquota}, {@dioread_nolock}, {@jqfmt_vfsv1}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x70}}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7b1}}, {@stripe={'stripe', 0x3d, 0x20}}, {@bsdgroups}, {@max_batch_time={'max_batch_time', 0x3d, 0x3fe}}, {@user_xattr}, {@noinit_itable}]}, 0x3, 0x583, &(0x7f0000000800)="$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")
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x2, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x8005)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$hfsplus(&(0x7f0000000400), &(0x7f0000000600)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[@ANYBLOB="6e6f626172726965722c706172743d3078303030303030303030303030303030382c747970653daa58ce622c6e6f626172726965722c6769643d", @ANYRESHEX=0x0, @ANYBLOB="9fc5377cdd6e9f8a851313b4564060cc0870bc1effff", @ANYRES32], 0x44, 0x727, &(0x7f00000008c0)="$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")
getdents64(0xffffffffffffffff, 0x0, 0x22)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r0 = syz_open_dev$MSR(&(0x7f0000000200), 0x0, 0x0)
read$msr(r0, &(0x7f0000002700)=""/102392, 0x18ff8)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x4b)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x18)
ioctl$FITHAW(0xffffffffffffffff, 0xc0045878)
getdents(r1, 0x0, 0x48)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000400)='./file1\x00', 0x143142, 0x40)
pwritev2(r2, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0x1}], 0x1, 0x5405, 0xfffffffe, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
sendto$inet(r3, 0x0, 0x0, 0x20028084, &(0x7f00000018c0)={0x2, 0x4e20, @remote}, 0x10)
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000800)={&(0x7f0000000640)=ANY=[@ANYBLOB="9feb01001800000000000000200000002000000007000000000000000000000d0a0000000000000001000006040000000500000004000000002e305f5f2e001217e64f52057b776f86996ed68a50bf2f4d5abd46774352560c96b280d5a9712fba684f09a55efb663554b56187edf86c31e6c5f4f80b83804fa9363064c55bf039b504490b9ab602d4993f786b3213b4b69182b3b8fbc834f3ef17"], &(0x7f0000000f40)=""/4089, 0x3f, 0xff9, 0x1}, 0x28)
r4 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000340)={0xe, 0x7, &(0x7f0000000480)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x1}, [@initr0={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7}, @initr0={0x18, 0x0, 0x0, 0x0, 0x2f, 0x0, 0x0, 0x0, 0x1}]}, &(0x7f0000000000)='GPL\x00'}, 0x94)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000280)=ANY=[@ANYRES32, @ANYRES32=r4, @ANYBLOB="05"], 0x10)
shutdown(r3, 0x1)

4m17.359596s ago: executing program 5 (id=109):
mkdirat(0xffffffffffffff9c, &(0x7f0000000200)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2c020400)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
io_setup(0x4, &(0x7f00000014c0)=<r0=>0x0)
r1 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x80, 0x0)
preadv(r1, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
statx(r1, 0x0, 0x800, 0x8fcc006e198ec91a, 0x0)
statx(r1, 0x0, 0x4000, 0x7ff, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = syz_open_procfs(0x0, &(0x7f00000002c0)='mounts\x00')
io_submit(r0, 0x1, &(0x7f0000000280)=[&(0x7f0000000100)={0x0, 0x0, 0x0, 0x5, 0xfffe, r2, 0x0}])
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f00000000c0)={0x0, 0xffffffffffffffff, 0x0, 0x1c, &(0x7f0000000000)='//sys\x00\x00\x00\x00\x00\x00\x80\x004\x00\x00s/\x92ync_\x93\x96\xff\x92\xaf\x00Se\xf44.\x00'/49}, 0x30)
mount$bpf(0x200000000000, &(0x7f0000000200)='./file0\x00', 0x0, 0x206002, 0x0)

4m17.17162914s ago: executing program 2 (id=112):
r0 = getpgrp(0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000200)=0x1000000000005)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00')
preadv(r4, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0xc002a0, 0x0)

4m13.969160091s ago: executing program 5 (id=119):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102392, 0x18ff8)
fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, <r1=>0x0})
ptrace$setregs(0xf, r1, 0x3, &(0x7f0000019300)="08900052d00c73f67da3c8088e613e0da3ed96b9560e1bc6fa4dec4253634ffe442a1e28096e3f96a33a11f79e5cef3399c82dddebcb9239083f9086bfebb60751c0d9261f9c8d87b8cf78b0efb3fb9b02ef360b3d3199e69f3776fc5d0fe2333a001b535f1483c91d01788055c0da404937fba22cd28a0add4cad36ad14b224e5be1a56b6e2")
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x22, &(0x7f00000000c0), 0x4)
recvmsg(r2, &(0x7f0000000140)={0x0, 0x23, 0x0, 0x0, 0xfffffffffffffffd, 0x27e56f27fd380eed}, 0x40002040)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
remap_file_pages(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0xa, 0x8000)

4m13.680968371s ago: executing program 0 (id=120):
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x29, 0x20000)
ioctl$IOC_PR_PREEMPT_ABORT(r0, 0x401870cc, 0x0)

4m13.502812374s ago: executing program 2 (id=121):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x44084)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
accept4(r0, &(0x7f0000000040)=@l2={0x1f, 0x0, @fixed}, &(0x7f00000000c0)=0x80, 0x80c00)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x80200)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r3, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port0\x00', 0x8, 0x100c75, 0x7fff, 0xe5, 0x1ff, 0x4, 0x0, 0x0, 0x6})
close_range(r2, 0xffffffffffffffff, 0x0)

4m13.439065818s ago: executing program 0 (id=122):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f0000000580)={0x14, 0x0, &(0x7f0000000440)=[@acquire_done], 0x0, 0x0, 0x0})

4m11.585847818s ago: executing program 0 (id=125):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000240)={[{@noblock_validity}, {}, {@sysvgroups}, {@resuid={'resuid', 0x3d, 0xee01}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@grpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)
truncate(&(0x7f0000000900)='./file1\x00', 0x3000000)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040))

4m9.253360724s ago: executing program 0 (id=129):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x110)
mount$bind(&(0x7f0000000100)='.\x00', &(0x7f0000000300)='./file0/../file0\x00', 0x0, 0x2151090, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
mount$bind(&(0x7f0000000000)='./file0/file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b101a, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x18)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(0xffffffffffffffff, 0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
getsockopt$inet_pktinfo(0xffffffffffffffff, 0x0, 0x8, 0x0, 0x0)
syz_io_uring_complete(0x0)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_delete(0x0)
umount2(0x0, 0x9)
unshare(0x22020400)
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x11, &(0x7f0000001a80)={[{@orlov}, {@norecovery}, {@inlinecrypt}, {@resuid}]}, 0x8, 0x617, &(0x7f0000001100)="$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")

4m8.023651346s ago: executing program 0 (id=130):
r0 = syz_io_uring_setup(0x5c2, &(0x7f0000000140)={0x0, 0x1954, 0x1, 0x1}, &(0x7f0000000300)=<r1=>0x0, &(0x7f0000000580))
syz_memcpy_off$IO_URING_METADATA_GENERIC(r1, 0x4, &(0x7f0000000080)=0x8c, 0x0, 0x4)
io_uring_enter(r0, 0x6e2, 0x3900, 0x3, 0x0, 0x0)

4m7.106797596s ago: executing program 0 (id=134):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

4m4.697067492s ago: executing program 32 (id=134):
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9)

3m58.804840313s ago: executing program 33 (id=119):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
getsockopt$inet6_mreq(0xffffffffffffffff, 0x29, 0x14, 0x0, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000000300)=""/102392, 0x18ff8)
fcntl$getownex(r0, 0x10, &(0x7f0000000000)={0x0, <r1=>0x0})
ptrace$setregs(0xf, r1, 0x3, &(0x7f0000019300)="08900052d00c73f67da3c8088e613e0da3ed96b9560e1bc6fa4dec4253634ffe442a1e28096e3f96a33a11f79e5cef3399c82dddebcb9239083f9086bfebb60751c0d9261f9c8d87b8cf78b0efb3fb9b02ef360b3d3199e69f3776fc5d0fe2333a001b535f1483c91d01788055c0da404937fba22cd28a0add4cad36ad14b224e5be1a56b6e2")
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r2, 0x1, 0x22, &(0x7f00000000c0), 0x4)
recvmsg(r2, &(0x7f0000000140)={0x0, 0x23, 0x0, 0x0, 0xfffffffffffffffd, 0x27e56f27fd380eed}, 0x40002040)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00304, 0x17)
rseq(&(0x7f00000004c0)={0x0, 0x0, 0x0, 0x3}, 0x20, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000280)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1000}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
remap_file_pages(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0xa, 0x8000)

3m56.59126419s ago: executing program 34 (id=121):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000003c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000}, 0x44084)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x11, &(0x7f0000000180)=0x1400200bce)
accept4(r0, &(0x7f0000000040)=@l2={0x1f, 0x0, @fixed}, &(0x7f00000000c0)=0x80, 0x80c00)
sched_setscheduler(0x0, 0x1, &(0x7f0000002200)=0x1)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000002700)=""/102392, 0x18ff8)
openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
mlock2(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r3 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000100), 0x80200)
ioctl$SNDRV_SEQ_IOCTL_DELETE_PORT(r3, 0x40a85321, &(0x7f00000004c0)={{0x80}, 'port0\x00', 0x8, 0x100c75, 0x7fff, 0xe5, 0x1ff, 0x4, 0x0, 0x0, 0x6})
close_range(r2, 0xffffffffffffffff, 0x0)

16.125232368s ago: executing program 4 (id=444):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x24020400)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, 0x0, &(0x7f0000001280), 0xffffffff, r1}, 0x38)
r2 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [0x0, 0x0, 0x0, 0xffffff00], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r4, 0x1)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x3, @empty, 0x10005}, 0x1c)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x4e20, 0x9, @loopback}, 0x1c)

15.749521166s ago: executing program 4 (id=447):
r0 = shmget$private(0x0, 0x2000, 0x100, &(0x7f0000ffe000/0x2000)=nil)
shmctl$SHM_LOCK(r0, 0xb)
shmctl$SHM_LOCK(r0, 0xb)
shmget$private(0x0, 0x7000, 0x78000000, &(0x7f0000ff9000/0x7000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000ffa000/0x1000)=nil, 0x1000}, 0x1})
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r2, &(0x7f0000000240)={0xa, 0x4e20, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x9}, 0x1c)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x804)
cachestat(r3, &(0x7f0000000000)={0x7f, 0x80000000}, &(0x7f00000000c0), 0x0)
write$uinput_user_dev(r3, &(0x7f0000000300)={'syz0\x00', {0x2b1c, 0xfff9, 0xb82f, 0x2}, 0x53, [0x1, 0x17, 0x1000, 0x8, 0xfffffffd, 0xc87b, 0x4eb, 0x7, 0x7, 0x4, 0x7, 0x4, 0xad7, 0x6, 0x0, 0x0, 0x0, 0x7, 0x200, 0x9, 0x469, 0x40, 0x7fffffff, 0xd979, 0x2, 0x5, 0x6, 0xfff, 0x5, 0x2, 0x2c, 0x8, 0xee, 0xffffffff, 0x8001, 0x712, 0x3, 0xffff0001, 0xe, 0x8, 0xed08, 0xfffffffa, 0x7, 0x51, 0xfffffff8, 0x9, 0x8, 0x7, 0xb0, 0x3, 0x10000, 0xef1, 0xfffffff7, 0x8, 0xdc2, 0x3, 0xef1, 0x0, 0x4, 0x3, 0xffffffff, 0xf, 0x9, 0x101], [0x0, 0x4, 0x6, 0xd8fa, 0x1000, 0x565, 0x6, 0x8, 0x886d, 0x3, 0x4, 0x6, 0x8, 0x40, 0x18b, 0x1ffe000, 0x8, 0x2, 0x9, 0x7, 0x9, 0x4, 0x7, 0xfffffffb, 0x0, 0xffff, 0x7, 0x9, 0x400, 0x1, 0x4, 0x7, 0x1, 0x6, 0x80000001, 0x8, 0xca, 0xd60, 0xf, 0x7f, 0x0, 0xba, 0x8, 0x40000005, 0x8, 0x1ce8, 0x0, 0x800, 0x80000001, 0x0, 0x8, 0x6, 0x3354, 0x200, 0x0, 0x10001, 0x3, 0x8, 0x7, 0x2, 0x41c8, 0x7, 0x7, 0x5], [0x0, 0x6, 0x7, 0x5, 0xe, 0x4b, 0x3, 0x6, 0xf, 0x3, 0x1, 0x6, 0x9, 0x101, 0x1000, 0x1, 0xfffffffc, 0x7, 0x5f, 0x800, 0x10, 0x4, 0x9, 0x9, 0x3, 0xfff, 0x9, 0xa, 0xb, 0x0, 0x6, 0x890, 0xfffffff7, 0x3, 0x4, 0x3b4, 0xdc, 0x2, 0x8, 0x3, 0x2, 0x0, 0x317b4bbd, 0x3, 0xffffffff, 0x92, 0x7a, 0xa1, 0x5, 0x1, 0x8, 0x1ff, 0x400, 0x9, 0x1, 0x5, 0x4, 0x8, 0x8, 0x0, 0x6, 0x9, 0x209, 0x38a], [0xa29, 0x80000001, 0xfffffffd, 0x8, 0xffff, 0x6, 0x6, 0xfffffc01, 0x1000, 0xfffffff4, 0x8, 0x9, 0x8000, 0x10001, 0x4, 0x100, 0x5, 0x4, 0xd7d, 0x9, 0x7, 0x2, 0x4, 0x5, 0x5, 0x1ff, 0x4, 0xff7, 0xc3, 0x7ff, 0x8, 0x8, 0x10000, 0x72133749, 0x7, 0x3, 0x0, 0x200, 0x8, 0x80000000, 0x30dc0000, 0x3, 0x1, 0x5, 0x9, 0x5, 0x900000, 0x5, 0x200, 0xffff0001, 0x9, 0x9, 0x2, 0xe64, 0x7, 0x0, 0x80000001, 0x6, 0x7, 0x8c, 0x6, 0x5, 0x6, 0x8]}, 0x45c)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, &(0x7f0000000280)={0x100}, 0x0)
sendmmsg$inet6(r2, &(0x7f0000001840), 0x3b, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0xb3)

14.913411278s ago: executing program 1 (id=448):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f00000001c0)=0x6, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r6 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x3, 0x34e}, &(0x7f00000004c0)=<r7=>0x0, &(0x7f0000000480)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r6, 0x3498, 0x969, 0xffff000000000000, 0x0, 0x0)
r9 = dup3(r6, r4, 0x80000)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r11, 0x0, 0xfffffffffffffffd}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x20, 0xc, &(0x7f00000005c0)=ANY=[@ANYRESOCT=r10, @ANYRES16=r0, @ANYRESDEC=r3], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @netfilter=0x2d, r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r13 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r12, r13, 0x0, 0x20000023896)
close(r12)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000420000002000128008000100677470001400028008000200", @ANYRES32=r1, @ANYBLOB="28b53eb4695cfbf2dcc76e02f75dd983f25717b5dbb7bb3891a1af3ed418b1e8c342594e9c84a5a5026fa07ad5e7860a8e26a072501149bfca897b6e8fc8d8b0a54ef10728", @ANYRES32=r2, @ANYBLOB], 0x40}, 0x1, 0xba01, 0x0, 0x4000050}, 0x0)

13.866219005s ago: executing program 4 (id=449):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f00000011c0)='net/protocols\x00')
preadv(r0, &(0x7f0000000000)=[{&(0x7f0000003900)=""/4104, 0x1008}], 0x1, 0x73, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000100)={0x12, 0x3, &(0x7f0000000000)=@framed={{0x18, 0x0, 0x0, 0x0, 0x2}}, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xf68}, 0x94)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x600, 0x0, 0x33, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000032680)=""/102400, 0x19000)
sendmsg$nl_xfrm(0xffffffffffffffff, 0x0, 0x10)
r4 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
unshare(0x60400)
open(&(0x7f0000000180)='./bus\x00', 0x1492fc, 0x80)
setsockopt$inet6_IPV6_XFRM_POLICY(r4, 0x29, 0x23, &(0x7f00000003c0)={{{@in=@multicast1, @in=@multicast2, 0x4e23, 0x0, 0x800, 0x0, 0x2}, {0x7, 0x0, 0x0, 0x2, 0x3}, {0xffffffffffffffff}, 0x3, 0x0, 0x1, 0x0, 0x3, 0x3}, {{@in6=@private0={0xfc, 0x0, '\x00', 0x1}, 0x0, 0x2b}, 0x0, @in=@initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 0x0, 0x0, 0x10001, 0x200000}}, 0xe8)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @loopback}}, 0x1c)

10.564802886s ago: executing program 1 (id=453):
socket$netlink(0x10, 0x3, 0x4)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000180)={@private1={0xfc, 0x1, '\x00', 0xfd}, 0x8000000, 0x0, 0x3, 0x1, 0x96}, 0x20)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_procfs(0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
socket$unix(0x1, 0x1, 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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")
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x1, 0x14f5, &(0x7f0000001580)="$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")
geteuid()
statx(0xffffffffffffffff, 0x0, 0x4000, 0x100, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)

8.844171295s ago: executing program 1 (id=454):
socket$nl_audit(0x10, 0x3, 0x9)
r0 = accept4$ax25(0xffffffffffffffff, 0x0, &(0x7f0000000000), 0x800)
socket(0x5, 0x2, 0x0)
socket(0x200000000000011, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000280)={'bridge_slave_1\x00', <r1=>0x0})
r2 = socket(0x200000000000011, 0x2, 0x8000000)
bind$packet(r2, &(0x7f0000000080)={0x11, 0x800, r1, 0x1, 0x0, 0x6, @random="933c547ecfa7"}, 0x14)
syz_emit_ethernet(0x32, &(0x7f0000000040)=ANY=[@ANYBLOB="e90c610faca20180c20000ea0800450000240000e0000011907800000000000000000000000000189078a20c000100000000"], 0x0)

7.310221835s ago: executing program 4 (id=456):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x24020400)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, 0x0, &(0x7f0000001280), 0xffffffff, r1}, 0x38)
r2 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r3, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [0x0, 0x0, 0x0, 0xffffff00], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
shutdown(r4, 0x1)
bind$inet6(r4, &(0x7f00000000c0)={0xa, 0x4e20, 0x3, @empty, 0x10005}, 0x1c)
connect$inet6(r4, &(0x7f0000000040)={0xa, 0x4e20, 0x9, @loopback}, 0x1c)

7.240881349s ago: executing program 3 (id=457):
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0x0, 0x25, 0x0, @val=@netfilter}, 0x40)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0x4)
ioctl$VHOST_SET_VRING_BASE(r5, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000380)={0xaa, 0x564})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/236, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/66})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1)
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000200)=""/233, 0xe9}], 0x1, 0xfff, 0x0)

6.110927628s ago: executing program 3 (id=458):
r0 = shmget$private(0x0, 0x2000, 0x100, &(0x7f0000ffe000/0x2000)=nil)
shmctl$SHM_LOCK(r0, 0xb)
shmctl$SHM_LOCK(r0, 0xb)
shmget$private(0x0, 0x7000, 0x78000000, &(0x7f0000ff9000/0x7000)=nil)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = syz_open_dev$MSR(&(0x7f0000000240), 0x0, 0x0)
read$msr(r1, &(0x7f0000019680)=""/102392, 0x18ff8)
ioctl$UFFDIO_REGISTER(0xffffffffffffffff, 0xc020aa00, &(0x7f0000000000)={{&(0x7f0000ffa000/0x1000)=nil, 0x1000}, 0x1})
r2 = socket$inet6(0xa, 0x802, 0x0)
setsockopt$inet6_buf(r2, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18)
connect$inet6(r2, &(0x7f0000000240)={0xa, 0x4e20, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}, 0x9}, 0x1c)
mkdirat(0xffffffffffffff9c, 0x0, 0x1c0)
r3 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x804)
cachestat(r3, &(0x7f0000000000)={0x7f, 0x80000000}, &(0x7f00000000c0), 0x0)
write$uinput_user_dev(r3, &(0x7f0000000300)={'syz0\x00', {0x2b1c, 0xfff9, 0xb82f, 0x2}, 0x53, [0x1, 0x17, 0x1000, 0x8, 0xfffffffd, 0xc87b, 0x4eb, 0x7, 0x7, 0x4, 0x7, 0x4, 0xad7, 0x6, 0x0, 0x0, 0x0, 0x7, 0x200, 0x9, 0x469, 0x40, 0x7fffffff, 0xd979, 0x2, 0x5, 0x6, 0xfff, 0x5, 0x2, 0x2c, 0x8, 0xee, 0xffffffff, 0x8001, 0x712, 0x3, 0xffff0001, 0xe, 0x8, 0xed08, 0xfffffffa, 0x7, 0x51, 0xfffffff8, 0x9, 0x8, 0x7, 0xb0, 0x3, 0x10000, 0xef1, 0xfffffff7, 0x8, 0xdc2, 0x3, 0xef1, 0x0, 0x4, 0x3, 0xffffffff, 0xf, 0x9, 0x101], [0x0, 0x4, 0x6, 0xd8fa, 0x1000, 0x565, 0x6, 0x8, 0x886d, 0x3, 0x4, 0x6, 0x8, 0x40, 0x18b, 0x1ffe000, 0x8, 0x2, 0x9, 0x7, 0x9, 0x4, 0x7, 0xfffffffb, 0x0, 0xffff, 0x7, 0x9, 0x400, 0x1, 0x4, 0x7, 0x1, 0x6, 0x80000001, 0x8, 0xca, 0xd60, 0xf, 0x7f, 0x0, 0xba, 0x8, 0x40000005, 0x8, 0x1ce8, 0x0, 0x800, 0x80000001, 0x0, 0x8, 0x6, 0x3354, 0x200, 0x0, 0x10001, 0x3, 0x8, 0x7, 0x2, 0x41c8, 0x7, 0x7, 0x5], [0x0, 0x6, 0x7, 0x5, 0xe, 0x4b, 0x3, 0x6, 0xf, 0x3, 0x1, 0x6, 0x9, 0x101, 0x1000, 0x1, 0xfffffffc, 0x7, 0x5f, 0x800, 0x10, 0x4, 0x9, 0x9, 0x3, 0xfff, 0x9, 0xa, 0xb, 0x0, 0x6, 0x890, 0xfffffff7, 0x3, 0x4, 0x3b4, 0xdc, 0x2, 0x8, 0x3, 0x2, 0x0, 0x317b4bbd, 0x3, 0xffffffff, 0x92, 0x7a, 0xa1, 0x5, 0x1, 0x8, 0x1ff, 0x400, 0x9, 0x1, 0x5, 0x4, 0x8, 0x8, 0x0, 0x6, 0x9, 0x209, 0x38a], [0xa29, 0x80000001, 0xfffffffd, 0x8, 0xffff, 0x6, 0x6, 0xfffffc01, 0x1000, 0xfffffff4, 0x8, 0x9, 0x8000, 0x10001, 0x4, 0x100, 0x5, 0x4, 0xd7d, 0x9, 0x7, 0x2, 0x4, 0x5, 0x5, 0x1ff, 0x4, 0xff7, 0xc3, 0x7ff, 0x8, 0x8, 0x10000, 0x72133749, 0x7, 0x3, 0x0, 0x200, 0x8, 0x80000000, 0x30dc0000, 0x3, 0x1, 0x5, 0x9, 0x5, 0x900000, 0x5, 0x200, 0xffff0001, 0x9, 0x9, 0x2, 0xe64, 0x7, 0x0, 0x80000001, 0x6, 0x7, 0x8c, 0x6, 0x5, 0x6, 0x8]}, 0x45c)
landlock_add_rule$LANDLOCK_RULE_PATH_BENEATH(0xffffffffffffffff, 0x1, &(0x7f0000000280)={0x100}, 0x0)
sendmmsg$inet6(r2, &(0x7f0000001840), 0x3b, 0x0)
creat(&(0x7f00000000c0)='./file0\x00', 0xb3)

6.074309248s ago: executing program 4 (id=459):
syz_mount_image$fuse(0x0, &(0x7f0000000040)='./file0\x00', 0x20, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file1\x00', 0x4000, &(0x7f0000000480), 0x1, 0x3d0, &(0x7f00000004c0)="$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")
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000000)='./bus\x00', 0x0, 0x63d017, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
ioctl$MON_IOCX_MFETCH(0xffffffffffffffff, 0xc0109207, &(0x7f0000000040)={0x0, 0x0, 0xfffffffa})
r1 = openat$vcsa(0xffffffffffffff9c, &(0x7f0000000100), 0x842, 0x0)
writev(r1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000000100), 0xff, 0x4a1, &(0x7f00000004c0)="$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")
openat(0xffffffffffffff9c, 0x0, 0x20042, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x9, 0x200000087}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xd, 0x0, 0x0)
r5 = open(&(0x7f0000000580)='./file1\x00', 0x80242, 0x1df2a23c5997fa5f)
write$FUSE_CREATE_OPEN(r5, &(0x7f0000000180)={0xa0, 0x0, 0x0, {{0x6, 0x100000000000001, 0x8000000004007, 0xac, 0x800, 0x4, {0x0, 0x4, 0x6218, 0x40000000005, 0x4000000000085, 0xd614, 0x9, 0x7fffffff, 0xfffffffa, 0xc000, 0x0, 0xee00, 0x0, 0x3ff, 0x401}}, {0x0, 0x8}}}, 0xa0)
sendfile(r5, r5, &(0x7f0000000080), 0x7f03)
r6 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r6, 0x0)
connect$inet(0xffffffffffffffff, &(0x7f0000000400)={0x2, 0x4c1e, @rand_addr=0x64010100}, 0x10)

5.297721002s ago: executing program 1 (id=460):
bpf$PROG_LOAD(0x5, 0x0, 0x0)
unshare(0x24020400)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x1f, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x13}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000500)={r0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x48)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000900)={0x0, 0x0, 0x0, &(0x7f0000001280), 0xffffffff, r1}, 0x38)
r2 = socket$netlink(0x10, 0x3, 0xc)
bind$netlink(r2, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r3, 0x0, 0x0)
listen(r3, 0x5)
socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet6(0xa, 0x3, 0x8000000003c)
setsockopt$IP6T_SO_SET_REPLACE(r4, 0x29, 0x40, &(0x7f0000000440)=@raw={'raw\x00', 0x8, 0x3, 0x4c8, 0x0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x3f8, 0xffffffff, 0xffffffff, 0x3f8, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [0x0, 0x0, 0x0, 0xffffff00], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0x148, 0x170, 0x0, {}, [@common=@unspec=@helper={{0x48}}, @common=@inet=@hashlimit1={{0x58}, {'bond_slave_1\x00', {0x41, 0x1ff, 0x6, 0xb0e2, 0x10001, 0x84e, 0xfffffffb, 0x18, 0x8}, {0x1}}}]}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'erspan0\x00', 'gre0\x00'}, 0x0, 0x258, 0x288, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0x0, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'vcan0\x00', {0x3, 0x0, 0x41, 0x0, 0x2, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x528)
bind$inet6(0xffffffffffffffff, &(0x7f00000000c0)={0xa, 0x4e20, 0x3, @empty, 0x10005}, 0x1c)
connect$inet6(0xffffffffffffffff, &(0x7f0000000040)={0xa, 0x4e20, 0x9, @loopback}, 0x1c)

5.093779573s ago: executing program 3 (id=461):
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_int(r1, 0x29, 0x1a, &(0x7f00000001c0)=0x6, 0x4)
r2 = socket$inet_udp(0x2, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x11, 0x8, &(0x7f0000000200)=ANY=[@ANYRESHEX=0x0], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r4 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000100), 0x8000)
r5 = socket$qrtr(0x2a, 0x2, 0x0)
connect$qrtr(r5, &(0x7f0000000200)={0x2a, 0xffffffffffffffff, 0xfffffffe}, 0xc)
r6 = syz_io_uring_setup(0x497, &(0x7f0000000540)={0x0, 0x4660, 0x400, 0x3, 0x34e}, &(0x7f00000004c0)=<r7=>0x0, &(0x7f0000000480)=<r8=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r7, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r7, r8, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd=r5, 0x0, 0x0})
io_uring_enter(r6, 0x3498, 0x969, 0xffff000000000000, 0x0, 0x0)
r9 = dup3(r6, r4, 0x80000)
r10 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[], 0x48)
r11 = bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x11, 0x10, 0x0, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x30, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000000c0)='kfree\x00', r11, 0x0, 0xfffffffffffffffd}, 0x18)
socket$nl_route(0x10, 0x3, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0500000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x20, 0xc, &(0x7f00000005c0)=ANY=[@ANYRESOCT=r10, @ANYRES16=r0, @ANYRESDEC=r3], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @netfilter=0x2d, r9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r12 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
r13 = openat$procfs(0xffffffffffffff9c, &(0x7f00000001c0)='/proc/timer_list\x00', 0x0, 0x0)
sendfile(r12, r13, 0x0, 0x20000023896)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', 0xffffffffffffffff, 0x0, 0x7fff}, 0x18)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000200)=ANY=[@ANYBLOB="400000001000030400"/20, @ANYRES32=0x0, @ANYBLOB="00000000420000002000128008000100677470001400028008000200", @ANYRES32=r1, @ANYBLOB="28b53eb4695cfbf2dcc76e02f75dd983f25717b5dbb7bb3891a1af3ed418b1e8c342594e9c84a5a5026fa07ad5e7860a8e26a072501149bfca897b6e8fc8d8b0a54ef10728", @ANYRES32=r2, @ANYBLOB], 0x40}, 0x1, 0xba01, 0x0, 0x4000050}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)

4.360633289s ago: executing program 1 (id=462):
socket$netlink(0x10, 0x3, 0x4)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r4, 0x29, 0x20, &(0x7f0000000180)={@private1={0xfc, 0x1, '\x00', 0xfd}, 0x8000000, 0x0, 0x3, 0x1, 0x96}, 0x20)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_open_procfs(0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
socket$unix(0x1, 0x1, 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f00000018c0)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl/xmb9D9jk/5nbNL/jCy40gWIK0w+/xmb9F+IDO0Pf6e84dyVfqct27+wCSGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQ/w+c85cYAPhtfKXrEkIIIYQQQgghxB/Hv3ulKxBCCCGEEEIIIcT/PgQFGgwEkAkyQwJkgUS4CrJCNsgOOSAGV0NOuAZywbWQG/JAXsgH+aEAFIQQCCwwRFAICkMcroMicD0UhWJQHEqAg5JQCm6A0nAjlIGboCzcDOXgFigPFX4+Z7rboTLcAVXgTqgK1aA61IC7oCbcDbXgHqgN90IduA/qwv1QDx6A+tAAGsKD0AgegsbQBJpCM2gOLaDlZfKTc/y9/OehB7wAPaEXJEFv6AMvQl/oB/1hAAyEl2AQvAyD4RUYAkNhGLwKw+E1GAGvw0gYBaPhDRgDY2EcjIcJMBGS4U2YBG/BZHj7oWwwFabBdJgBM2EWvAOzYQ7MhXdhHsyHBZCcZREshiXwHiyF9yEFPoBl8CGkwnJYASthFayGNbAW1sF62AAbYRNshi2wFbbBR7AddsBO2AW7YQ/shY9hH3wC++FTSMPP/sX8s7/Ph24ICKhQoUGDmTATJmACJmIiZsWsmB2zYwxjmBNzYi7MhbkxN+bFvJiE+bEgFkRCQkbGQlgI4xjHIlgEi2JRLI7F0aHDUlgKS+ONWAbLYFksi+WwHJbHClgBb8VbsRJWwspYGatgFayKVbE6Vse78C68G2thLayNtbEO1sG6WBfrYT2sj/WxITbERtgIG2NjbIpNsTk2x5bYElthK2yNrbEttsV22A7bY3vsgB2wI3bETtgJO2Nn7IJdsCt2xW74HD6Hz+Pz+AK+gL2wquqNfbAP9sW+2B8H4AB8CQfhy/gyvoJDcCgOw1fxVXwNR+AZHImjcDSOxkpqLI7D8chqIiZjMmaGSTgZJ+MUnIpTcTrOwJk4C2fhbJyDc/BdnIfzcT4uxIW4GJfgElyK72MKpuAyPIupuBxX4EpchatxFa7FdbgWN+BG3ICbcTNuxa34EX6EO3AH7sJduAf34Mf4MX6Cn+AQTMM0PIAH8CAexEN4CA/jYTyCR/AoHsVjeAyP43E8gSfxFJ7E03gaz+BZPAcA5/E8XsALeBEvpn/4VTqjjMqkMqkElaASVaLKqrKq7Cq7iqmYyqlyqlwql8qtcqu8Kq/Kr/KrgqqgIkWKVaQKqUIqruKqiCqiiqqiqrgqrpxyqpQqpUqr0qqMKqPKqptVOXWLKq8qqDbuVnWrqqTausrqDlVFVVFVVTVVXdVQNVRNVVPVUrVUbVVb1VF1VF11v6qnemN/bKDSO9NIDcXGahg2Vc1Uc9VCvYYPq1ZqBLZWbVRb9agahSOxvWrlOqgnVEc1Djupp9R4fFp1UROxq3pWdVPPqe7qedVDtXY9VS81BXurPmo69lX9VH81QM3Gaiq9Y9XVK+r5zEPVMPWqWoyvqRHqdTVSjVKj1RtqjBqrxqnxaoKaqJLVm2qSektNVm+rKWqqmqamqxlqppql3lGz1Rw1V72r5qn5aoFaqBapxWqJek8tVe+rFPWBWqY+VKlquVqhVqpVarVao9aqdWq92qA2qk1qs9qitqpt6iO1Xe1QO9UutVvtUXvVx2qf+kTtV5+qNPWZOqD+og6qz9Uh9YU6rL5UR9RX6qj6Wh1T36jj6lt1Qp1Up9R36rT6Xp1RZ9U59YM6r35UF9RP6qLyCjRqpbU2OtCZdGadoLPoRH2Vzqqz6ew6h47pq3VOfY3Opa/VuXUendfk0/l1AV1Qh5q01awjXUgX1nF9nS6ir9dFdTFdXJfQTpfUpfQNurS+UZfRN+my+mZdTt+iy+sKuqIHfZuupG/XlfUduoq+U1fV1XR1XUPfpWvqu3UtfY+ure/VdfR9uq6+X9fTD+j6uoFuqB/UjfRDurFuopvqZrq5bqFb6od1K/2Ibq3b6Lb6Ud1OP6bb68d1B/2E7qif1J30U7qzflp30c/orvpZ3U0/p7vrn/RF7XVP3Usn6d66j35R99X9dH89QA/UL+lB+mU9WL+ih+iheph+VQ/Xr+kR+nU9Uo/So/Ubeoweq8fp8XqCnqiT9Zt6kn5LT9Zv6yl6qp6mp+sZeqbu/+tMc/+J/Lf+Tv7gn8++VW/TH+nteofeqXfp3XqP3qv36n16n96v9+s0naYP6AP6oD6oD+lD+rA+rI/oI/qoPqqP6WP6uD6uT+iT+gf9nT6tv9dn9Fl9Vv+gz+vz+sKvPwMwaJTRxpjAZDKZTYLJYhLNVSaryWaymxwmZq42Oc01Jpe51uQ2eUxek8/kNwVMQRMaMtawiUwhU9jEzXWmiLneFDXFTHFTwjhT0pQyN/yP8y9XX0vT0rQyrUxr09q0NW1NO9POtDftTQfTwXQ0HU0n08l0Np1NF9PFdDVdTTfTzXQ33U0P08P0ND1NkkkyfcyLpq/pZ/qbAWageckMMoPMYDPYDDFDzDAzzAw3w80IM8KMNCPNaDPajDFjzDgzzkwwE0yyz2EmmUlmsplsppgpZtrAHGaGmWFmmVlmtplt5pq5Zp6ZZxaYBWaRWWSWmCVmqVlqUkyKWWaWmVSz3Cw3K81Ks9qsNmvNWrPerDcbzUaz2Ww2qWab2Wa2m+1mp9lpdpvdZq/Za/aZfWa/2W/STJo5YA6Yg+agOWQOmcPmsDlijpij5qg5Zo6Z4+a4OWFOmFPmlDltTpsz5ow5Z86Z8+a8uWAumIvmYvptX6ACFZjABJmCTEFCkBAkBolB1iBrkD3IHsSCWJAzyBnkCq4Ncgd5grxBviB/UCAoGIQBBTbgIAoKBYWDeHBdUCS4PigaFAuKByUCF5QMSgU3BKWDG4MywU1B2eDmoFxwS1A+qBBUDG4NbgsqBbcHlYM7girBnUHVoFpQPagR3BXUDO4OagX3BLWDe4M6wX1B3eD+oF7wQFA/aBA0DB4MGgUPBY2DJkHToFnQPGgRtPxD5/f+TJ5HXM+wV5gU9g77hC+GfcN+Yf9wQDgwfCkcFL4cDg5fCYeEQ8Nh4avh8PC1cET4ejgyHBWODt8Ix4Rjw3Hh+HBCODFMDt8MJ4VvhZPDt8Mp4dRwWjA9nBHODGeF74Szwznh3PDdcF44P1wQLgwXhYtD/OWWGFLCD8Jl4Ydharg8XBGuDFeFq8M14dpwXbg+3BBuDDeFm8sO+uXQcHu4I9wZ7gp3h3vCveHH4b7wk3B/+GmYFn4WHgj/Eh4MPw8PhV+Eh8MvwyPhV+HR8OvwWPhNeDz8NjwRngxPhd+Fp8PvwzPh2fBc+EN4PvwxvBD+FF4MffrNffrlnQwZykSZKIESKJESKStlpeyUnWIUo5yUk3JRLspNuSkv5aX8lJ8KUkFKx8RUiApRnOJUhIpQUSpKxak4OXJUikpRaSpNZagMlaWyVI7KUXkqTxWpIt1Gt9HtdDvdQXfQnXQnVaNqVINqUE2qSbWoFtWm2lSH6lBdqkv1qB7Vp/rUkBpSI2pEjakxNaWm1JyaU0tqSa2oFbWm1tSW2lI7akftqT11oA7UkTpSJ+pEnakzdaEu1JW6UjfqRt2pO/WgHtSTelISJVEf6kN9qS/1p/40kAbSIBpEg2kwDaEhNIyG0XAaTiNoBI2kUTSa3qAxNJbG0XiaQBMpmZJpEk2iyTSZptAUmkbTaAbNoFk0i2bTbJpLc2kezaMFtIAW0SJaQktoKS2lFEqhZbSMUimVVtAKWkWraA2toXW0jjbQBtpEm2gLbaFttI2203baSTtpN+2mvbSX9tE+2k/7KY3S6AAdoIN0kA7RITpMh+kIHaGjdJSO0TE6TsfpBJ2gU3SKTtNpOkNn6Bydo/P0I12gn+gieUqwWWyivcpmtdlsdpvD/nWc1+az+W0BW9CGNrfN87uYrLVFbTFb3Jawzpa0pewNfxOXtxVsRXurvc1Wsrfbyra8zQL/Na5p77a17D22tr3X1rB3/S6uY++zde1Dtp5tYuvbZrahbWEb2YdsY9vENrXNbHPbwrazj9n29nHbwT5hO9on/yZeat+36+x6u8FutPvsJ/ac/cEetV/b8/ZH29P2sgPtS3aQfdkOtq/YIXbo72MAO9q+YcfYsXacHW8n2Il/E0+z0+0MO9POsu/Y2XbO38RL7Ht2nk2xC+xCu8gu/jlOrynFfmCX2Q9tql1uV9iVdpVdbdfYtf+31pV2s91it9q99mO73e6wO+0uu9vu+TlOX8d++6lNs5/ZI/Yre9B+bg/ZY/aw/fLnOH19x+w39rj91p6wJ+0p+509bb+3Z+zZn9efvvbv7E/2ovUWGFmxZsMBZ+LMnMBZOJGv4qycjbNzDo7x1ZyTr+FcfC3n5jycl/Nxfi7ABTlkYsvMERfiwhzn67gIX89FuRgX5xLsuCSX4hu4NN/IZfgmLss3czm+hctzBa7It/JtXIlv58p8B1fhO7kqV+PqXIPv4pp8N9fie7g238t1+D6uy/dzPX6A63MDbsgPciN+iBtzE27Kzbg5t+CW/DC34ke4Nbfhtvwot+PHuD0/zh34Ce7IT3Infoo789PchZ/hrvwsd+PnuDs/zz34Be7JvTiJe3MffpH7cj/uzwN4IL/Eg/hlHsyv8BAeysP4VR7Or/EIfp1H8igezW/wGB7L43g8T+CJnMxv8iR+iyfz2zyFp/I0ns4zeCbP4nd4Ns/hufwuz+P5vIAX8iJezEv4PV7K73MKf8DL+ENO5eW8glfyKl7Na3gtr+P1vIE38ibezFt4K2/jj3g77+CdvIt38x7eyx/zPv6E9/OnnMaf8QH+Cx/kz/kQf8GH+Us+wl/xUf6aj/E3fJy/5RN8kk/xd3yav+czfJbP8Q98nn/kC/wTX2TPEGGkIh2ZKIgyRZmjhChLlBhdFWWNskXZoxxRLLo6yhldE+WKro1yR3mivFG+KH9UICoYhRFFNuIoigpFhaN4dF1UJLo+KhoVi4pHJSIXlYxKRTdEpaMbozLRTVHZ6OaoXHRLVD6qEFWMbo1uiypFt0eVozuiKtGdUdWoWlQ9qhHdFdWM7o5qRfdEtaN7ozLRfVHd6P6oXvRAVD9qEDWMHowaRQ9FjaMmUdOoWdQ8ahG1jB6OWkWPRK2jNlHb6NGoXfRY1D56POoQPRF1jJ68tL9Y8MvV9K/2J0W9I/3rG7J79KL44viS+HvxpfH34ynxD+LL4h/GU+PL4yviK+Or4qvja+Jr4+vi6+Mb4hvjm+Kb41viW+Pe18gMDtMfhMG4wGVymV2Cy+IS3VUuq8vmsrscLuaudjndNS6Xu9bldnlcXpfP5XcFXEEXOnLWsYtcIVfYxd11roi73hV1xVxxV8I5V9KVci1cS9fStXKPuNaujWvrHnWPusfcY+7xhF8Ld53cU66ze9p1cc+4Z9yzrpt7znV3z7se7gXX0/VySS7J9XF9XF/X1/V3/d1AN9ANcoPcYDfYDXFD3DA3zA13w90IN8KNdCPdaDfajXFj3Dg3zk1wE1yyS3aT3CQ32U12U9wUN81NczPcDDfLzXKz3Ww3181189w8t8AtcIvcIrfELXFL3VKX4lLcMrfMpbpUt8KtcKvcKrfGrXHr3Dq3wW1wm9wmt8VtcdvcNrfdbXc73U632+12e91et8/tc/vdfpfm0twBd8AddAfdIfeFO+y+dEfcV+6o+9odc9+44+5bd8KddKec16fd9+6MO+vOuR/cefeju+B+chedd8mxN2OTYm/FJsfejk2JTY1Ni02PzYjNjM2KvRObHZsTmxt7NzYvNj+2ILYwtii2OLYk9l5saez9WErsg9iy2Iex1Njy2IrYytiq2OqY9wW2R76QL+zj/jpfxF/vi/pivrgv4Z0v6Uv5G3xpf6Mv42/yZf3Nvpy/xZf3FXxF38Q39c18c9/Ct/QP+1b+Ed/at/Ft/aO+nX/Mt/eP+w7+Cd/RP+k7+ad8Z/+07+Kf8V39s/N/7bLv4V/wPX0vn+R7+z7+Rd/X9/P9/QA/0L/kB/mX/WD/ih/ih/ph/lU/3L/mR/jX/Ug/yo/2b/gxfqwf58f7CX6iT/Zv+kn+LT/Zv+2n+Kl+mp/uZ/iZfpZ/x8/2c/xc/66f5+f7BX6hX+QX+yX+Pb/Uv+9T/Ad+mf/Qp/rlfoVf6Vf51X6NX+vX+fV+g9/oN/nNfovf6rf5j/x2v8Pv9Lv8br/H7/Uf+33+E7/ff+rT/Gf+gP+LP+g/94f8F/6w/9If8V/5o/5rf8x/44/7b/0Jf9Kf8t/50/57f8af9ef8D/68/9Ff8D/5i/I3a0IIIYQQ/xR9mf29/87/qV+3dH0AINuOfIf/es5NuX8Z91P7OsYA4IleXRv8tjVokJSU9OuxqRqCwgsBIHYp/+fvH/g1Xg5t4THoAG2g9N+tr5+q+PN93383f/xmgESALL/lpD8eJcJfz3/jP5i/yXt8ufkXAhQtfCkn/US/xZfmL/MP5t/T7jLzZ/k8GaD1f8nJCpfiS/OXgkfgSejwuyOFEEIIIYQQQohf9FPnu13u+Tb9+Ty/uZSTGS7Fl3s+v4zKf8QahBBCCCGEEEII8d97+rnujz/coUObzv/Jg8x/jjL+BAMEgD9BGTL48w+u9G8mIYQQQgghxB/t0k3/la5ECCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYTIuP79bwhT//TBV3qNQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghxJX2fwIAAP//5g1V0w==")
socket(0x840000000002, 0x3, 0xff)
syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x1, 0x14f5, &(0x7f0000001580)="$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")
geteuid()
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
openat$fuse(0xffffffffffffff9c, 0x0, 0x2, 0x0)

1.993902164s ago: executing program 1 (id=463):
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prlimit64(0x0, 0xe, &(0x7f0000000100)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
syz_open_procfs(0x0, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff})
recvmmsg(r4, &(0x7f0000000400)=[{{0x0, 0xf5ffffff, 0x0, 0x0, 0x0, 0x4000000}}], 0xf00, 0x0, 0x0)
shutdown(r4, 0x0)

1.992971699s ago: executing program 3 (id=464):
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$afs(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f00000002c0), 0x0, 0x0)
chdir(&(0x7f0000000340)='./file0\x00')
ioctl$SG_SET_FORCE_PACK_ID(0xffffffffffffffff, 0x227b, &(0x7f0000000300))
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000880)={0x0, 0xffffffffffffff3e, &(0x7f0000000840)={&(0x7f0000001a00)=ANY=[@ANYRESOCT, @ANYRES16=0x0, @ANYRES32=0x0, @ANYRESOCT, @ANYRESOCT, @ANYRES32=0x0, @ANYRESHEX=0x0], 0x134}}, 0x0)
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
rmdir(&(0x7f0000000080)='./cgroup/../file0\x00')

1.738704699s ago: executing program 3 (id=465):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x2000, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec8500000075000000040000000700000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000240)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
ioctl$AUTOFS_DEV_IOCTL_REQUESTER(0xffffffffffffffff, 0xc018937b, &(0x7f0000000e80)={{0x1, 0x1, 0x18, r1, {0xee00, <r3=>0xffffffffffffffff}}, './bus\x00'})
sendmsg$netlink(0xffffffffffffffff, &(0x7f0000000f80)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000440)={0xe0, 0x25, 0x800, 0x70bd2c, 0x25dfdbff, "", [@typed={0xc2, 0xa2, 0x0, 0x0, @binary="568ccf7e93ec2bcbbd8cd8b6d5b7643a0372bc82c84ff01f39ad7dc5d058b2365f479ea4299bb708d9fae6acf1290e176f1ce779da6ca95e92d8e09bbf6a6e9c111c478384304a972fb6b81ae8071c5584b3f2057aa9b1ae2bfbe21479639a7619761642de0df13b2ecb52a09b03ddf62d36a9ad9c7f946aaab18db5ec3735f76faf0512505575762f756917411638b0faa57b4d18a17e56deb08fc59d91627f850150f57c71b62f52fcb73ae78e0d02175538149ea28d42473050b1f43f"}, @typed={0x9, 0xa5, 0x0, 0x0, @str='::]-\x00'}]}, 0xe0}, {&(0x7f0000000540)={0x210, 0x22, 0x20, 0x70bd2a, 0x25dfdbfc, "", [@typed={0x4, 0xb6}, @typed={0x8, 0xfd, 0x0, 0x0, @str='GPL\x00'}, @nested={0x18, 0x128, 0x0, 0x1, [@nested={0x4, 0x116}, @nested={0x4, 0x8e}, @typed={0x8, 0xb2, 0x0, 0x0, @pid=r2}, @nested={0x4, 0xef}, @generic]}, @typed={0x8, 0xba, 0x0, 0x0, @pid=r2}, @nested={0x18, 0xa5, 0x0, 0x1, [@typed={0xa, 0xe1, 0x0, 0x0, @str=',}(#(\x00'}, @typed={0x8, 0x95, 0x0, 0x0, @u32=0x9}]}, @generic="15744cfec3d0e029306da99066e77c8e233fa610cc919bfd3467eab9ed5f728909b820c32697c4658a530ad8739a208fa9acfcaac5e883ba9f7df29ae3fc8309bb4234ee5a69a912599fa9974bc18b6d61056390054cae523afedf9e6d70cc4ef335c9542949f66b7da1f91043731d5b68e6c936d5e1d685aa7286f5f12b68a1f5fcdb361266ff82e26fe9657823697334d0a43bca1f9af65e507029067eabc2c20aa97f638fc9753c296ca83d5daa0a5a06ecd0d84e5b39905a791550339e963575d83d79ebc8d2a589963cab47b5540c67c0b6d375b455e550", @typed={0x35, 0x89, 0x0, 0x0, @binary="f1c16b877e190b17d9ac28cf398b0fc223d2c25f0cad7fd3e5ab6252c3564366262b8a90e2c9b5f2d00154be26fa2abfb2"}, @generic="ddfdbe6c3131e23f98e43c983845e0e623082026894c8a6dd8247951c289024822a032e0ff2272d93a519afcb5b6a3948977d1225cc18acd0bf96fb0ea01281c4d1181e9d3bc93e20204e93ac90ce2b6c2a9e1ed96c30b9b5999a760bc566948a685a00066a7d7c3b6f3e61a1cadac524f4cb7fbe9b7688e2a41bfee5ea76479e3920ba9ebe65521c006c1296d3f201351e2635080e6e689840985d8d864cf864455e3af5e53cd76d040"]}, 0x210}, {&(0x7f0000000780)={0x238, 0x1b, 0x400, 0x70bd25, 0x25dfdbfb, "", [@nested={0xd8, 0x42, 0x0, 0x1, [@nested={0x4, 0x2}, @generic="747bf7111959b37b97756e58d30e22465f36f85d8c39b7c28736e9d0ea58ef31b9d4ab68cb805ea02bd24461906967ec541142ac9ad440d219716bb0530536cda5db1917633040a07000c1ab9f12d1e0eadcda6070e6f68190638d466e5a855bad342adc597b680f98db35c090e488247eff39502482f942294cb2990d59eaa25fbe24fb6b95ca0369362e4cfc106dbf467093630cb791a8d55907fa2fd711d2383d9b5e97f5f2260450f4100c7beba2cf1341c0090bac90dfa0d5991ad40f2f7fef8626d2e9a742a49fbdc9789529af"]}, @generic="1ddd422ba8f2a20aaa735470434fe1766f920ec753c91166b2a66b834d0331c635053a5e4dbd241f9f186f9944883398a1436c74724359e7e87e2cad0c518a2faae6192eaae33110870d0e31dc81f4c9e4ff78dc425090a12c64e50fbafc8d2bcbfdbf51f227bbbc7a98de167dc92bb3df58acc6993ae9df15f8f0789e782310b013851c63136ff655380716676b433a9be85291b84c6c6984440ea2", @typed={0x8, 0x3b, 0x0, 0x0, @u32=0x3ff}, @nested={0x4, 0xd7, 0x0, 0x1, [@generic]}, @generic="ddeca39b162d6e6ee9a711e06d4819af4b1b1fa67b63bcbaa41ccca8ed8660c0123f388639c8cd9f5eeda6b84e0accecc26f39c18d6c5d266f68c92750437d3b324ec7449f23714f58dfa3336f0710deee6d2afa2792aa0a99d5b5135fa1f645f0522519703eaf668773ad2dad", @nested={0x36, 0xf5, 0x0, 0x1, [@generic="f5721dec031fe6985024d197275eb9bf1c58b37d3c08349910f57e7c3e65756eef29", @nested={0x4, 0x33}, @typed={0x5, 0xa7, 0x0, 0x0, @str='\x00'}, @nested={0x4, 0xad}]}]}, 0x238}, {&(0x7f0000000100)={0x24, 0x20, 0x100, 0x70bd27, 0x25dfdbfd, "", [@typed={0x14, 0x10a, 0x0, 0x0, @ipv6=@loopback}]}, 0x24}], 0x4, &(0x7f0000000ec0)=ANY=[@ANYBLOB="1c000000000000000100000002000000", @ANYRES32=r2, @ANYRES32=0xee00, @ANYRES32=0x0, @ANYBLOB="000000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\x00', @ANYRES32=r2, @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="00000000100000000000000001000000010000001c000000000000000100000002000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYRES32=r3, @ANYBLOB='\x00\x00\x00\x00'], 0x90, 0x58021}, 0x40000)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r2, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PARTIAL_DELIVERY_POINT(r6, 0x84, 0x13, 0x0, 0x0)
r7 = dup(0xffffffffffffffff)
ioctl$VT_SETMODE(r7, 0x5602, &(0x7f0000000040)={0xb, 0x4, 0x800, 0x6})
ioctl$BLKROSET(0xffffffffffffffff, 0x125d, 0x0)
fsopen(&(0x7f00000001c0)='pvfs2\x00', 0x1)
ioctl$TIOCGPTPEER(r0, 0x5441, 0xc65c)

536.327319ms ago: executing program 3 (id=466):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000380)=ANY=[@ANYBLOB="140000004200"], 0x14}, 0x1, 0x0, 0x0, 0x68840}, 0x4)
recvmmsg(r0, &(0x7f0000002b00)=[{{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000003c0)=""/4095, 0xfff}], 0x1}, 0x40005}], 0x1, 0x120, 0x0)

0s ago: executing program 4 (id=467):
sendto$inet(0xffffffffffffffff, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f00000000001b0000850000006d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00')
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={0xffffffffffffffff, 0x0, 0x25, 0x0, @val=@netfilter}, 0x40)
r5 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r5, 0xaf01, 0x0)
r6 = eventfd(0x4)
ioctl$VHOST_SET_LOG_FD(r5, 0x4004af07, &(0x7f0000000240)=r6)
ioctl$VHOST_SET_VRING_KICK(r5, 0x4008af20, &(0x7f0000000040)={0x1, r6})
ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000380)={0xaa, 0x564})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r5, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/236, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/66})
ioctl$VHOST_SET_MEM_TABLE(r5, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_VSOCK_SET_RUNNING(r5, 0x4004af61, &(0x7f0000000000)=0x1)
preadv(r4, &(0x7f0000000040)=[{&(0x7f0000000200)=""/233, 0xe9}], 0x1, 0xfff, 0x0)

kernel console output (not intermixed with test programs):

08.046263][   T50] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.064003][ T5843] batman_adv: batadv0: Interface activated: batadv_slave_1
[  108.094021][   T50] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.118815][   T50] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.127633][   T50] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.136675][   T50] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.161897][   T50] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.190282][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.198131][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.213655][   T50] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.222528][   T50] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  108.241587][ T5911] usb 1-1: new full-speed USB device number 2 using dummy_hcd
[  108.258246][   T50] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  108.284232][   T50] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  108.293878][   T50] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  108.324313][ T3487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.337660][ T3487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.391836][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.403599][ T4872] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.415069][ T4872] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.421340][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.434538][ T5911] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  108.457671][ T5911] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2
[  108.483419][ T5911] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  108.498904][ T5911] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  108.507174][ T5911] usb 1-1: Product: syz
[  108.512449][ T5911] usb 1-1: Manufacturer: syz
[  108.517048][ T5911] usb 1-1: SerialNumber: syz
[  108.549089][ T3487] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.578183][ T3487] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.657474][   T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  108.668615][   T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  108.749653][ T4872] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  109.305877][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  109.306116][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  109.408135][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  109.408521][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  109.510605][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  109.511709][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  109.518817][    T0] NOHZ tick-stop error: local softirq work is pending, handler #42!!!
[  109.680492][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  109.688863][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[  110.730089][ T4872] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  110.842718][ T5962] usb 1-1: USB disconnect, device number 2
[  110.922795][   T50] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  110.984514][   T50] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.334107][ T3970] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.345424][ T3970] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  112.275628][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  114.541442][  T402] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.549280][  T402] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.177004][ T6004] loop4: detected capacity change from 0 to 2048
[  115.256405][ T6004] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  115.292330][ T6009] loop2: detected capacity change from 0 to 1024
[  116.416246][ T6009] hfsplus: request for non-existent node 3 in B*Tree
[  116.654830][ T6009] hfsplus: request for non-existent node 3 in B*Tree
[  117.739951][ T6006] netlink: 12 bytes leftover after parsing attributes in process `syz.5.6'.
[  118.839714][ T6026] loop4: detected capacity change from 0 to 256
[  119.538285][ T6026] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x22932667, utbl_chksum : 0xe619d30d)
[  120.514583][ T6035] loop0: detected capacity change from 0 to 256
[  120.624235][ T6035] =======================================================
[  120.624235][ T6035] WARNING: The mand mount option has been deprecated and
[  120.624235][ T6035]          and is ignored by this kernel. Remove the mand
[  120.624235][ T6035]          option from the mount to silence this warning.
[  120.624235][ T6035] =======================================================
[  120.714809][ T6035] exfat: Invalid uid '0x00000000ffffffff'
[  120.844361][ T6041] loop2: detected capacity change from 0 to 164
[  120.954310][ T6041] rock: directory entry would overflow storage
[  121.030848][ T6045] netlink: 20 bytes leftover after parsing attributes in process `syz.4.27'.
[  121.041175][ T6041] rock: sig=0x66, size=4, remaining=3
[  121.102559][ T6041] rock: directory entry would overflow storage
[  121.149429][ T6041] rock: sig=0x66, size=4, remaining=3
[  121.313278][ T6054] loop3: detected capacity change from 0 to 16
[  121.363088][ T6053] loop1: detected capacity change from 0 to 1024
[  121.413686][ T6054] erofs (device loop3): mounted with root inode @ nid 36.
[  121.420063][ T6053] hfsplus: invalid file type 0120411 for inode 2
[  121.470967][ T6053] hfsplus: failed to load root directory
[  121.478443][ T6054] erofs (device loop3): big pcluster head1/2 of compact indexes should be consistent for nid 36
[  121.541747][ T6054] erofs (device loop3): big pcluster head1/2 of compact indexes should be consistent for nid 36
[  121.591215][ T6054] erofs (device loop3): read error -117 @ 72 of nid 36
[  124.981719][ T6058] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  125.203897][ T6066] syz.4.33 (6066): /proc/6062/oom_adj is deprecated, please use /proc/6062/oom_score_adj instead.
[  126.087150][ T6071] loop4: detected capacity change from 0 to 1024
[  126.375638][ T6071] hfsplus: Unknown parameter '@'
[  127.910311][ T6079] loop0: detected capacity change from 0 to 512
[  127.917680][ T6079] EXT4-fs: Ignoring removed nobh option
[  127.934005][ T6079] EXT4-fs: inline encryption not supported
[  127.948143][ T6077] loop2: detected capacity change from 0 to 512
[  128.543798][ T6079] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.560637][ T6077] EXT4-fs (loop2): orphan cleanup on readonly fs
[  128.585733][ T6079] ext4 filesystem being mounted at /9/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  128.589206][ T6077] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.35: ea_inode with extended attributes
[  128.600696][ T6084] netlink: 68 bytes leftover after parsing attributes in process `syz.3.36'.
[  128.610217][ T6077] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.35: error while reading EA inode 11 err=-117
[  128.610673][ T6077] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  128.610857][ T6077] EXT4-fs error (device loop2): ext4_xattr_inode_iget:441: inode #11: comm syz.2.35: ea_inode with extended attributes
[  128.612125][ T6077] EXT4-fs error (device loop2): ext4_xattr_inode_iget:446: comm syz.2.35: error while reading EA inode 11 err=-117
[  128.614245][ T6077] EXT4-fs (loop2): 1 orphan inode deleted
[  128.618431][ T6077] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  129.005314][ T5832] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.018234][ T6092] EXT4-fs error (device loop0): ext4_lookup:1785: inode #12: comm syz.0.37: iget: bad i_size value: 2533274857506816
[  131.148709][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  133.248371][ T6112] loop0: detected capacity change from 0 to 512
[  133.293355][ T6112] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  133.293384][ T6112] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  133.342531][ T6112] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  133.351268][ T6112] EXT4-fs (loop0): 1 truncate cleaned up
[  133.354092][ T6112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  133.466122][ T6116] loop2: detected capacity change from 0 to 2048
[  133.530114][ T6116] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  134.338580][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.594654][ T6122] loop0: detected capacity change from 0 to 128
[  134.611047][ T6122] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256
[  134.637899][ T6122] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  138.638791][ T6147] cgroup: name respecified
[  138.758196][ T6149] binder: 6148:6149 ioctl 4058534c 2000000004c0 returned -22
[  139.039470][ T6154] loop3: detected capacity change from 0 to 256
[  139.633750][ T6154] exFAT-fs (loop3): error, The cluster chain has a loop
[  139.659119][ T6153] loop4: detected capacity change from 0 to 2048
[  139.693311][ T6154] exFAT-fs (loop3): Filesystem has been set read-only
[  139.749398][ T6154] exFAT-fs (loop3): failed to count the number of clusters in root
[  139.800199][ T6153] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  139.807899][ T6153] UDF-fs: Scanning with blocksize 512 failed
[  139.826546][ T6154] exFAT-fs (loop3): failed to recognize exfat type
[  141.448673][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  141.455482][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  141.605487][ T6153] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  141.638305][ T6167] loop1: detected capacity change from 0 to 256
[  141.677623][ T6154] loop3: detected capacity change from 0 to 1024
[  141.731387][ T6167] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x009ea0b8, utbl_chksum : 0x7319d30d)
[  144.076285][ T6184] loop4: detected capacity change from 0 to 512
[  144.134676][ T6184] EXT4-fs: Ignoring removed nomblk_io_submit option
[  144.191428][ T6184] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  144.250962][ T6184] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended
[  144.328694][ T6184] Quota error (device loop4): do_insert_tree: Free block already used in tree: block 1
[  144.331156][ T6172] loop3: detected capacity change from 0 to 8192
[  144.340938][ T6184] Quota error (device loop4): qtree_write_dquot: Error -5 occurred while creating quota
[  145.735228][ T6184] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.64: Failed to acquire dquot type 1
[  145.806075][ T6184] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 46 vs 41 free clusters
[  145.848484][ T6184] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.64: corrupted inode contents
[  145.871264][ T6199] loop2: detected capacity change from 0 to 1024
[  145.909439][ T6199] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  145.925702][ T6184] EXT4-fs error (device loop4): ext4_dirty_inode:6502: inode #12: comm syz.4.64: mark_inode_dirty error
[  145.978965][ T6199] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.53: Invalid block bitmap block 0 in block_group 0
[  145.995126][ T6184] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.64: corrupted inode contents
[  146.047982][ T6184] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #12: comm syz.4.64: mark_inode_dirty error
[  146.084349][ T6199] Quota error (device loop2): write_blk: dquota write failed
[  146.116058][ T6184] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.64: corrupted inode contents
[  146.132538][ T6199] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  146.168643][ T6184] EXT4-fs error (device loop4) in ext4_orphan_del:303: Corrupt filesystem
[  146.200123][ T6199] EXT4-fs error (device loop2): ext4_acquire_dquot:6986: comm syz.2.53: Failed to acquire dquot type 0
[  146.212711][ T6184] EXT4-fs error (device loop4): ext4_do_update_inode:5617: inode #12: comm syz.4.64: corrupted inode contents
[  146.237885][ T6184] EXT4-fs error (device loop4): ext4_truncate:4635: inode #12: comm syz.4.64: mark_inode_dirty error
[  146.259657][ T6184] EXT4-fs error (device loop4) in ext4_process_orphan:345: Corrupt filesystem
[  146.269639][ T6199] EXT4-fs error (device loop2): ext4_free_blocks:6728: comm syz.2.53: Freeing blocks not in datazone - block = 0, count = 4096
[  146.311871][ T6184] EXT4-fs (loop4): 1 truncate cleaned up
[  146.336171][ T6199] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.53: Invalid inode bitmap blk 0 in block_group 0
[  146.351968][ T6184] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.370419][ T6199] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  146.371305][   T60] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-7
[  146.563812][ T6199] EXT4-fs (loop2): 1 orphan inode deleted
[  146.648303][ T6199] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.702394][   T60] EXT4-fs error (device loop2): ext4_release_dquot:7022: comm kworker/u8:4: Failed to release dquot type 0
[  147.013981][ T6184] Quota error (device loop4): do_check_range: Getting dqdh_entries 16 out of range 0-14
[  147.070576][ T6184] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  147.142062][ T6184] EXT4-fs error (device loop4): ext4_acquire_dquot:6986: comm syz.4.64: Failed to acquire dquot type 1
[  147.201264][ T5832] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.334044][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.364128][ T6000] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  147.540545][ T6000] usb 2-1: Using ep0 maxpacket: 16
[  147.579432][ T6000] usb 2-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[  147.607974][ T6000] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  147.646065][ T6000] usb 2-1: Product: syz
[  147.658613][ T6000] usb 2-1: Manufacturer: syz
[  149.291756][ T6000] usb 2-1: SerialNumber: syz
[  149.300254][ T6101] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  149.372018][ T6000] r8152-cfgselector 2-1: Unknown version 0x0000
[  149.378343][ T6000] r8152-cfgselector 2-1: config 0 descriptor??
[  151.389374][ T6101] usb 3-1: Using ep0 maxpacket: 16
[  151.529832][ T6101] usb 3-1: device descriptor read/all, error -71
[  151.626632][ T6000] r8152-cfgselector 2-1: USB disconnect, device number 2
[  151.673957][ T6240] loop2: detected capacity change from 0 to 128
[  154.226206][ T6255] loop0: detected capacity change from 0 to 2048
[  156.044103][ T6255] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  156.249576][ T6255] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  156.392908][ T6255] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 332 with error 28
[  156.552693][ T6269] loop1: detected capacity change from 0 to 1024
[  157.138474][ T6255] EXT4-fs (loop0): This should not happen!! Data will be lost
[  157.138474][ T6255] 
[  157.172053][ T4545] hfsplus: b-tree write err: -5, ino 4
[  157.400096][ T6255] EXT4-fs (loop0): Total free blocks count 0
[  157.456592][ T6255] EXT4-fs (loop0): Free/Dirty block details
[  157.493219][ T6255] EXT4-fs (loop0): free_blocks=2415919104
[  157.522869][ T6255] EXT4-fs (loop0): dirty_blocks=336
[  157.528078][ T6255] EXT4-fs (loop0): Block reservation details
[  157.614468][ T6255] EXT4-fs (loop0): i_reserved_data_blocks=21
[  157.823839][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  159.453694][ T6286] hub 1-0:1.0: USB hub found
[  160.718316][ T6293] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  160.736795][ T6286] hub 1-0:1.0: 1 port detected
[  160.900106][ T6198] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  161.144074][ T6198] usb 5-1: Using ep0 maxpacket: 8
[  161.162451][ T6300] netlink: 277 bytes leftover after parsing attributes in process `syz.3.96'.
[  161.496562][ T6198] usb 5-1: unable to get BOS descriptor or descriptor too short
[  161.538471][ T6302] loop5: detected capacity change from 0 to 1024
[  161.552461][ T6198] usb 5-1: unable to read config index 0 descriptor/start: -71
[  161.581601][ T6198] usb 5-1: can't read configurations, error -71
[  161.688000][ T6302] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.755617][ T6309] loop0: detected capacity change from 0 to 2048
[  161.790272][ T6309] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  162.115617][ T6311] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  162.880259][ T6307] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  164.534388][ T5837] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.009068][ T6351] loop0: detected capacity change from 0 to 2048
[  166.680158][ T6198] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  167.960743][ T6198] usb 2-1: Using ep0 maxpacket: 16
[  168.020577][ T6198] usb 2-1: New USB device found, idVendor=054c, idProduct=002e, bcdDevice= 5.00
[  168.029683][ T6198] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.070732][ T6198] usb 2-1: Product: syz
[  168.074955][ T6198] usb 2-1: Manufacturer: syz
[  168.079546][ T6198] usb 2-1: SerialNumber: syz
[  168.131422][ T6198] usb 2-1: config 0 descriptor??
[  168.161830][ T6198] usb-storage 2-1:0.0: USB Mass Storage device detected
[  168.226878][ T6198] usb-storage 2-1:0.0: Quirks match for vid 054c pid 002e: 1
[  168.300057][ T6198] usb-storage 2-1:0.0: This device (054c,002e,0500 S 04 P 00) has an unneeded SubClass entry in unusual_devs.h (kernel syzkaller)
[  168.300057][ T6198]    Please send a copy of this message to <linux-usb@vger.kernel.org> and <usb-storage@lists.one-eyed-alien.net>
[  169.056301][ T6375] x_tables: duplicate underflow at hook 3
[  170.195459][ T6198] usb 2-1: USB disconnect, device number 3
[  170.613851][ T6382] loop0: detected capacity change from 0 to 1024
[  170.621357][ T6382] EXT4-fs: Ignoring removed nomblk_io_submit option
[  171.622074][ T6382] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  172.359114][   T31] audit: type=1800 audit(1765898608.701:2): pid=6382 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.125" name="file1" dev="loop0" ino=15 res=0 errno=0
[  172.649555][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.717686][ T6399] loop1: detected capacity change from 0 to 1024
[  172.755671][ T6399] EXT4-fs (loop1): stripe (4) is not aligned with cluster size (4096), stripe is disabled
[  172.911182][ T6399] EXT4-fs error (device loop1): ext4_map_blocks:825: inode #3: block 1: comm syz.1.128: lblock 1 mapped to illegal pblock 1 (length 1)
[  173.144529][ T6405] loop0: detected capacity change from 0 to 1024
[  173.151784][ T6405] EXT4-fs: Ignoring removed orlov option
[  173.157438][ T6405] EXT4-fs: inline encryption not supported
[  173.419061][ T6405] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (52289!=20869)
[  173.429051][ T6405] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  173.625000][ T6405] EXT4-fs (loop0): invalid journal inode
[  173.630835][ T6405] EXT4-fs (loop0): can't get journal size
[  173.639485][ T6405] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  173.659142][ T6399] Quota error (device loop1): write_blk: dquota write failed
[  173.703619][ T6399] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  173.752566][ T6399] EXT4-fs error (device loop1): ext4_acquire_dquot:6986: comm syz.1.128: Failed to acquire dquot type 0
[  173.800446][ T6399] EXT4-fs error (device loop1): ext4_free_blocks:6728: comm syz.1.128: Freeing blocks not in datazone - block = 0, count = 4096
[  173.870698][ T6399] EXT4-fs error (device loop1): ext4_read_inode_bitmap:139: comm syz.1.128: Invalid inode bitmap blk 0 in block_group 0
[  173.885797][ T5826] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.900109][ T6163] EXT4-fs error (device loop1): ext4_map_blocks:783: inode #3: block 1: comm kworker/u8:22: lblock 1 mapped to illegal pblock 1 (length 1)
[  173.952633][ T6399] EXT4-fs error (device loop1) in ext4_free_inode:361: Corrupt filesystem
[  173.964946][ T6163] Quota error (device loop1): remove_tree: Can't read quota data block 1
[  174.036973][ T6163] EXT4-fs error (device loop1): ext4_release_dquot:7022: comm kworker/u8:22: Failed to release dquot type 0
[  174.048619][ T6399] EXT4-fs (loop1): 1 orphan inode deleted
[  174.081905][ T6399] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.290121][ T6399] EXT4-fs (loop1): re-mounted 00000000-0000-0000-0000-000000000000.
[  174.423734][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  174.655217][ T6412] binder: 6411:6412 ioctl c0306201 0 returned -14
[  174.996168][ T6419] loop1: detected capacity change from 0 to 1024
[  175.026548][ T6419] hfsplus: Bad value for 'umask'
[  175.063547][ T1910] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  175.261810][ T1910] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  175.338660][ T6421] loop4: detected capacity change from 0 to 1024
[  175.361086][ T6421] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  176.344436][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.464892][ T1910] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  176.619238][ T1910] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  177.006439][ T1910] bridge_slave_1: left allmulticast mode
[  177.030127][ T1910] bridge_slave_1: left promiscuous mode
[  177.036727][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  177.163960][ T1910] bridge_slave_0: left allmulticast mode
[  177.169633][ T1910] bridge_slave_0: left promiscuous mode
[  177.214807][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  177.510937][ T6436] loop1: detected capacity change from 0 to 256
[  178.061642][ T6436] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  178.088981][ T6436] FAT-fs (loop1): Filesystem has been set read-only
[  178.103994][ T6436] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  178.119360][ T6436] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  178.192301][ T5829] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  178.211865][ T5829] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  178.220151][ T5829] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  178.230122][ T5829] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  178.238407][ T5829] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  178.300388][   T31] audit: type=1800 audit(1765898614.651:3): pid=6436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.137" name="file1" dev="loop1" ino=1048611 res=0 errno=0
[  180.108245][ T6440] loop4: detected capacity change from 0 to 4096
[  180.143534][ T6440] EXT4-fs (loop4): Test dummy encryption mode enabled
[  180.285871][ T6440] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0103]
[  180.300209][ T6440] System zones: 0-5
[  180.320287][ T5838] Bluetooth: hci0: command tx timeout
[  180.362266][ T6440] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  180.577400][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.858773][ T6464] loop4: detected capacity change from 0 to 256
[  180.940995][ T6464] exFAT-fs (loop4): failed to test first cluster bit of root dir(5)
[  181.230404][ T6469] loop1: detected capacity change from 0 to 256
[  181.256007][ T6469] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011bf5, chksum : 0xbdb9a789, utbl_chksum : 0xe619d30d)
[  181.295741][ T6469] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  181.320608][ T6469] exFAT-fs (loop1): failed to load alloc-bitmap
[  181.326839][ T6469] exFAT-fs (loop1): failed to recognize exfat type
[  181.682883][ T6472] netlink: 36 bytes leftover after parsing attributes in process `syz.4.147'.
[  181.925275][ T6475] loop1: detected capacity change from 0 to 1024
[  182.099829][ T6475] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  182.403017][ T5838] Bluetooth: hci0: command tx timeout
[  182.975488][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.929615][ T5838] Bluetooth: hci0: command tx timeout
[  185.425698][ T5829] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  185.434337][ T5829] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  185.443592][ T5829] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  185.455394][ T5829] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  185.463472][ T5829] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  185.656401][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  185.760764][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  185.828719][ T1910] bond0 (unregistering): Released all slaves
[  185.961847][ T6504] fuse: Bad value for 'fd'
[  188.300897][ T5829] Bluetooth: hci6: command tx timeout
[  188.307461][ T5838] Bluetooth: hci0: command tx timeout
[  189.522507][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  189.541042][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  189.551352][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  189.562085][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  189.576486][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  190.241794][ T1910] hsr_slave_0: left promiscuous mode
[  190.323617][ T5829] Bluetooth: hci6: command tx timeout
[  190.360067][ T1910] hsr_slave_1: left promiscuous mode
[  190.366178][ T1910] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  190.450115][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  190.520118][ T1910] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  190.527559][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  190.645163][ T1910] veth1_macvtap: left promiscuous mode
[  190.691003][ T1910] veth0_macvtap: left promiscuous mode
[  190.696693][ T1910] veth1_vlan: left promiscuous mode
[  190.710752][ T1910] veth0_vlan: left promiscuous mode
[  190.724713][ T6530] loop3: detected capacity change from 0 to 512
[  190.813175][ T6530] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  190.865780][ T6537] loop4: detected capacity change from 0 to 256
[  190.866414][ T6532] loop1: detected capacity change from 0 to 2048
[  190.901315][ T6537] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  190.929944][ T6530] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #11: comm syz.3.162: corrupted inode contents
[  190.961262][ T6532] EXT4-fs: Ignoring removed i_version option
[  190.986093][ T6530] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #11: comm syz.3.162: mark_inode_dirty error
[  191.052718][ T6530] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #11: comm syz.3.162: invalid indirect mapped block 1 (level 1)
[  191.102334][ T6532] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.115368][ T6530] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #11: comm syz.3.162: corrupted inode contents
[  191.115517][ T6532] ext4 filesystem being mounted at /35/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  191.151608][ T6530] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  191.160937][ T6530] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #11: comm syz.3.162: corrupted inode contents
[  191.173504][ T6530] EXT4-fs error (device loop3): ext4_truncate:4635: inode #11: comm syz.3.162: mark_inode_dirty error
[  191.186465][ T6530] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  191.196176][ T6530] EXT4-fs (loop3): 1 truncate cleaned up
[  191.206499][ T6530] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.249288][ T6530] EXT4-fs error (device loop3): ext4_find_dest_de:2050: inode #2: block 13: comm syz.3.162: bad entry in directory: directory entry too close to block end - offset=76, inode=16, rec_len=940, size=1024 fake=0
[  191.334818][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.394714][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  191.444842][ T6542] loop4: detected capacity change from 0 to 1024
[  191.478579][ T6546] loop1: detected capacity change from 0 to 256
[  191.491962][ T6542] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  191.636169][ T6546] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  191.670063][ T6546] FAT-fs (loop1): Filesystem has been set read-only
[  191.680519][ T5829] Bluetooth: hci2: command tx timeout
[  191.691440][ T6546] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  191.742147][ T6546] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 196, start 00000001)
[  191.805375][   T31] audit: type=1800 audit(1765898628.151:4): pid=6546 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.164" name="file1" dev="loop1" ino=1048614 res=0 errno=0
[  192.459240][ T5829] Bluetooth: hci6: command tx timeout
[  192.544510][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  192.773830][ T6554] netlink: 'syz.1.167': attribute type 2 has an invalid length.
[  192.867050][ T6554] netlink: 'syz.1.167': attribute type 1 has an invalid length.
[  194.450882][ T5829] Bluetooth: hci2: command tx timeout
[  194.480276][ T5829] Bluetooth: hci6: command tx timeout
[  196.480175][ T5829] Bluetooth: hci2: command tx timeout
[  196.918854][ T6570] loop1: detected capacity change from 0 to 1024
[  196.990636][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  196.992116][ T6570] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  197.137291][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  197.418023][ T6574] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  197.480695][ T6574] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  197.493568][ T6574] EXT4-fs (loop1): This should not happen!! Data will be lost
[  197.493568][ T6574] 
[  197.504188][ T6574] EXT4-fs (loop1): Total free blocks count 0
[  197.511369][ T6574] EXT4-fs (loop1): Free/Dirty block details
[  197.518252][ T6574] EXT4-fs (loop1): free_blocks=20480
[  197.524852][ T6574] EXT4-fs (loop1): dirty_blocks=32
[  197.530367][ T6574] EXT4-fs (loop1): Block reservation details
[  197.562264][ T6574] EXT4-fs (loop1): i_reserved_data_blocks=2
[  197.989346][ T6039] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  198.560286][ T5829] Bluetooth: hci2: command tx timeout
[  198.565044][ T6585] loop4: detected capacity change from 0 to 1024
[  198.600902][ T6585] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  199.573354][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  201.510889][ T6615] loop1: detected capacity change from 0 to 512
[  201.536782][ T6615] ext4: Unknown parameter 'bsddf2'
[  203.796071][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  203.806075][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  204.547885][ T6633] loop4: detected capacity change from 0 to 512
[  205.833224][ T6633] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent
[  205.931475][ T6443] chnl_net:caif_netlink_parms(): no params data found
[  206.180593][ T6495] chnl_net:caif_netlink_parms(): no params data found
[  207.065438][ T1910] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.279014][ T1910] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.321028][ T6443] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.330361][ T6443] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.337588][ T6443] bridge_slave_0: entered allmulticast mode
[  207.376636][ T6443] bridge_slave_0: entered promiscuous mode
[  207.394003][ T6443] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.424774][ T6443] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.435193][ T6443] bridge_slave_1: entered allmulticast mode
[  207.443551][ T6443] bridge_slave_1: entered promiscuous mode
[  207.556414][ T6495] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.573382][ T6495] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.582225][ T6495] bridge_slave_0: entered allmulticast mode
[  207.592797][ T6495] bridge_slave_0: entered promiscuous mode
[  207.675271][ T6514] chnl_net:caif_netlink_parms(): no params data found
[  207.745260][ T6495] bridge0: port 2(bridge_slave_1) entered blocking state
[  207.771223][ T6495] bridge0: port 2(bridge_slave_1) entered disabled state
[  207.779642][ T6495] bridge_slave_1: entered allmulticast mode
[  207.791027][ T6495] bridge_slave_1: entered promiscuous mode
[  207.859618][ T1910] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.903898][ T6663] loop1: detected capacity change from 0 to 1024
[  207.966720][ T6663] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  208.293162][ T6443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.627203][ T1910] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.934165][ T6443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  208.948779][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  210.758967][ T6495] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  210.885016][ T6495] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  211.681412][ T5829] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  211.691202][ T5829] Bluetooth: hci5: Injecting HCI hardware error event
[  211.790300][ T5838] Bluetooth: hci5: hardware error 0x00
[  213.893268][ T6443] team0: Port device team_slave_0 added
[  213.896014][ T6162] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  213.900815][ T6514] bridge0: port 1(bridge_slave_0) entered blocking state
[  213.921327][ T5835] Bluetooth: hci2: command 0x0405 tx timeout
[  213.950753][ T6514] bridge0: port 1(bridge_slave_0) entered disabled state
[  213.990668][ T6514] bridge_slave_0: entered allmulticast mode
[  214.000501][ T5838] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  214.020566][ T6514] bridge_slave_0: entered promiscuous mode
[  214.069528][ T6495] team0: Port device team_slave_0 added
[  214.083586][ T6443] team0: Port device team_slave_1 added
[  214.093098][ T6162] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  214.110636][ T6514] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.117851][ T6514] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.120044][ T6162] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 2
[  214.140385][ T6514] bridge_slave_1: entered allmulticast mode
[  214.150133][ T6162] usb 2-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  214.162300][ T6514] bridge_slave_1: entered promiscuous mode
[  214.195485][ T6495] team0: Port device team_slave_1 added
[  214.195573][ T6162] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  214.230260][ T6162] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  214.238251][ T6162] usb 2-1: Product: syz
[  214.258596][ T6162] usb 2-1: Manufacturer: syz
[  214.272798][ T6162] usb 2-1: SerialNumber: syz
[  214.435948][ T6514] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  214.494729][ T6443] batman_adv: batadv0: Adding interface: batadv_slave_0
[  214.512299][ T6443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  214.590122][ T6443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  214.635545][ T6514] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  214.703045][ T6495] batman_adv: batadv0: Adding interface: batadv_slave_0
[  214.712689][ T6495] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  214.739604][ T6495] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  214.753721][ T6495] batman_adv: batadv0: Adding interface: batadv_slave_1
[  214.762395][ T6495] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  214.797004][ T6495] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  214.821256][ T6694] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  214.831886][ T6694] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  214.844540][ T6139] usb 2-1: USB disconnect, device number 4
[  214.865178][ T6443] batman_adv: batadv0: Adding interface: batadv_slave_1
[  214.900685][ T6443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  214.928831][ T6443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  214.996721][ T6711] loop4: detected capacity change from 0 to 1024
[  215.088562][ T6711] hfsplus: xattr searching failed
[  215.122458][ T6514] team0: Port device team_slave_0 added
[  215.211855][ T6495] hsr_slave_0: entered promiscuous mode
[  215.220374][ T6495] hsr_slave_1: entered promiscuous mode
[  215.284972][ T6514] team0: Port device team_slave_1 added
[  215.308415][ T6717] loop4: detected capacity change from 0 to 1024
[  215.333032][ T6717] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  215.407552][ T6722] loop3: detected capacity change from 0 to 1024
[  215.629072][ T1910] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.659010][  T402] hfsplus: b-tree write err: -5, ino 4
[  215.722756][ T6726] warning: `syz.1.201' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  217.667743][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.754604][ T6514] batman_adv: batadv0: Adding interface: batadv_slave_0
[  217.780001][ T6514] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  217.871104][ T6514] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  217.891495][ T6732] loop1: detected capacity change from 0 to 2048
[  218.007361][ T6443] hsr_slave_0: entered promiscuous mode
[  218.014198][ T6443] hsr_slave_1: entered promiscuous mode
[  218.020824][ T6443] debugfs: 'hsr0' already exists in 'hsr'
[  218.026550][ T6443] Cannot create hsr debugfs directory
[  218.450070][ T6732] UDF-fs: warning (device loop1): udf_load_vrs: No anchor found
[  218.550080][ T6732] UDF-fs: Scanning with blocksize 512 failed
[  218.604866][ T6732] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  218.650759][ T6514] batman_adv: batadv0: Adding interface: batadv_slave_1
[  218.657707][ T6514] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  218.750662][ T6514] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  218.847196][ T1910] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  218.951551][ T6069] kworker/u8:19: attempt to access beyond end of device
[  218.951551][ T6069] loop1: rw=8388609, sector=2048, nr_sectors = 2 limit=2048
[  219.002271][ T6069] Buffer I/O error on dev loop1, logical block 1024, lost async page write
[  219.020765][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.020765][ T6069] loop1: rw=8388609, sector=2048, nr_sectors = 2 limit=2048
[  219.056916][ T6069] Buffer I/O error on dev loop1, logical block 1024, lost async page write
[  219.061170][ T6742] netlink: 12 bytes leftover after parsing attributes in process `syz.4.208'.
[  219.083556][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.083556][ T6069] loop1: rw=8388609, sector=2050, nr_sectors = 2 limit=2048
[  219.120510][ T6069] Buffer I/O error on dev loop1, logical block 1025, lost async page write
[  219.129161][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.129161][ T6069] loop1: rw=8388609, sector=2050, nr_sectors = 2 limit=2048
[  219.160148][ T6069] Buffer I/O error on dev loop1, logical block 1025, lost async page write
[  219.168773][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.168773][ T6069] loop1: rw=8388609, sector=2052, nr_sectors = 2 limit=2048
[  219.214468][ T6069] Buffer I/O error on dev loop1, logical block 1026, lost async page write
[  219.229869][ T6514] hsr_slave_0: entered promiscuous mode
[  219.235866][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.235866][ T6069] loop1: rw=8388609, sector=2052, nr_sectors = 2 limit=2048
[  219.251330][ T6514] hsr_slave_1: entered promiscuous mode
[  219.257740][ T6514] debugfs: 'hsr0' already exists in 'hsr'
[  219.263548][ T6069] Buffer I/O error on dev loop1, logical block 1026, lost async page write
[  219.272264][ T6514] Cannot create hsr debugfs directory
[  219.284972][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.284972][ T6069] loop1: rw=8388609, sector=2054, nr_sectors = 2 limit=2048
[  219.299204][ T6069] Buffer I/O error on dev loop1, logical block 1027, lost async page write
[  219.329296][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.329296][ T6069] loop1: rw=8388609, sector=2054, nr_sectors = 2 limit=2048
[  219.344688][ T6069] Buffer I/O error on dev loop1, logical block 1027, lost async page write
[  219.353388][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.353388][ T6069] loop1: rw=8388609, sector=2056, nr_sectors = 2 limit=2048
[  219.367626][ T6069] Buffer I/O error on dev loop1, logical block 1028, lost async page write
[  219.369422][ T1910] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  219.376327][ T6069] kworker/u8:19: attempt to access beyond end of device
[  219.376327][ T6069] loop1: rw=8388609, sector=2056, nr_sectors = 2 limit=2048
[  219.405366][ T6069] Buffer I/O error on dev loop1, logical block 1028, lost async page write
[  221.554585][ T6750] netlink: 20 bytes leftover after parsing attributes in process `syz.1.207'.
[  221.602888][ T1910] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.983334][ T6756] xt_TCPMSS: Only works on TCP SYN packets
[  223.211285][ T6761] loop3: detected capacity change from 0 to 1024
[  223.275340][ T6761] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  223.679448][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  224.569767][ T5835] Bluetooth: hci4: command 0x0406 tx timeout
[  224.576645][ T5836] Bluetooth: hci1: command 0x0406 tx timeout
[  224.743476][ T6783] loop3: detected capacity change from 0 to 256
[  224.974655][ T1910] bridge_slave_1: left allmulticast mode
[  225.007307][ T6795] 9p: Bad value for 'wfdno'
[  225.028500][ T1910] bridge_slave_1: left promiscuous mode
[  225.053532][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.091570][ T1910] bridge_slave_0: left allmulticast mode
[  225.097243][ T1910] bridge_slave_0: left promiscuous mode
[  225.116671][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.137741][ T1910] bridge_slave_1: left allmulticast mode
[  225.144424][ T1910] bridge_slave_1: left promiscuous mode
[  225.150402][ T6198] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  225.159479][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.174896][ T1910] bridge_slave_0: left allmulticast mode
[  225.180943][ T1910] bridge_slave_0: left promiscuous mode
[  225.186748][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.243981][ T6799] loop1: detected capacity change from 0 to 512
[  225.278941][ T6799] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  225.292800][ T6799] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  225.320112][ T6198] usb 5-1: Using ep0 maxpacket: 32
[  225.331377][ T6198] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  225.342255][ T6198] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[  225.351985][ T6198] usb 5-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  225.368985][ T6198] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  225.379052][ T6198] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  225.387382][ T6198] usb 5-1: Product: syz
[  225.391980][ T6198] usb 5-1: Manufacturer: syz
[  225.396660][ T6198] usb 5-1: SerialNumber: syz
[  225.415818][ T6198] cdc_ncm 5-1:1.0: skipping garbage
[  225.421155][ T6198] cdc_ncm 5-1:1.0: CDC Union missing and no IAD found
[  225.430789][ T6198] cdc_ncm 5-1:1.0: bind() failure
[  225.617234][ T6139] usb 5-1: USB disconnect, device number 4
[  225.655493][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.889093][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  225.905725][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  225.916221][ T1910] bond0 (unregistering): Released all slaves
[  226.235211][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  226.274213][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.293568][ T1910] bond0 (unregistering): Released all slaves
[  226.327291][ T6819] loop4: detected capacity change from 0 to 1024
[  226.347908][ T6495] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  226.373150][ T6819] hfsplus: Unknown parameter '0x0000000000000000'
[  226.379130][ T6495] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  226.431849][ T6495] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  227.192842][ T6495] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  227.715671][ T6845] loop4: detected capacity change from 0 to 1024
[  229.735072][ T6514] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  229.744514][ T6858] loop1: detected capacity change from 0 to 128
[  229.993161][ T6514] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  230.182693][ T6514] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  230.236334][ T6514] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  230.284085][ T6867] loop1: detected capacity change from 0 to 128
[  230.321468][ T6864] loop3: detected capacity change from 0 to 32768
[  230.331389][ T6864] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.228 (6864)
[  230.393302][ T6864] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  230.403661][ T6864] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[  230.429620][ T6867] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  230.482049][ T6867] ext4 filesystem being mounted at /62/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  230.597412][ T6864] BTRFS info (device loop3): enabling ssd optimizations
[  230.604507][ T6864] BTRFS info (device loop3): turning on async discard
[  230.611356][ T6864] BTRFS info (device loop3): enabling free space tree
[  230.658157][   T31] audit: type=1800 audit(1765898667.001:5): pid=6867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.229" name="file1" dev="loop1" ino=12 res=0 errno=0
[  230.926514][ T5843] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  231.002112][ T5842] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  231.900357][ T1910] hsr_slave_0: left promiscuous mode
[  231.922576][ T1910] hsr_slave_1: left promiscuous mode
[  231.943830][ T1910] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  233.631738][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  233.741486][ T1910] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  233.748908][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  233.860521][ T1910] hsr_slave_0: left promiscuous mode
[  233.875031][ T1910] hsr_slave_1: left promiscuous mode
[  233.894508][ T1910] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  233.910023][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  233.937563][ T1910] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  233.962342][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  234.571442][ T1910] veth1_macvtap: left promiscuous mode
[  234.577001][ T1910] veth0_macvtap: left promiscuous mode
[  234.599584][ T1910] veth1_vlan: left promiscuous mode
[  234.616874][ T1910] veth0_vlan: left promiscuous mode
[  234.632123][ T1910] veth1_macvtap: left promiscuous mode
[  234.643933][ T1910] veth0_macvtap: left promiscuous mode
[  234.654478][ T1910] veth1_vlan: left promiscuous mode
[  234.665530][ T1910] veth0_vlan: left promiscuous mode
[  235.730061][   T30] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  235.894484][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  235.901735][   T30] usb 4-1: Using ep0 maxpacket: 32
[  235.912223][   T30] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  235.950092][   T30] usb 4-1: config 0 has no interface number 0
[  235.969134][   T30] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  235.998972][   T30] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  236.019142][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  236.038590][   T30] usb 4-1: Product: syz
[  236.043177][   T30] usb 4-1: Manufacturer: syz
[  236.047889][   T30] usb 4-1: SerialNumber: syz
[  236.061240][   T30] usb 4-1: config 0 descriptor??
[  236.087661][   T30] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  236.701073][    C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  237.649000][   T30] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  237.664366][   T30] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  237.684222][   T30] usb 4-1: USB disconnect, device number 2
[  237.710516][   T30] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  237.734179][   T30] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  237.749494][   T30] quatech2 4-1:0.51: device disconnected
[  237.933175][ T5829] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  237.944496][ T5829] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  237.954978][ T5829] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  237.966092][ T5829] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  237.975693][ T5829] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  237.977675][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  238.029689][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  238.886953][ T6443] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  239.231690][ T6495] 8021q: adding VLAN 0 to HW filter on device bond0
[  239.331736][ T6929] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  239.431226][ T6945] netlink: 8 bytes leftover after parsing attributes in process `syz.3.238'.
[  240.176626][ T6953] netlink: 80 bytes leftover after parsing attributes in process `syz.4.240'.
[  241.282317][ T5829] Bluetooth: hci3: command tx timeout
[  241.554816][ T6495] 8021q: adding VLAN 0 to HW filter on device team0
[  241.633839][ T6514] 8021q: adding VLAN 0 to HW filter on device bond0
[  241.999001][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.006206][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.151607][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.158763][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.232073][ T6514] 8021q: adding VLAN 0 to HW filter on device team0
[  242.260282][ T6198] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  242.344173][ T6931] chnl_net:caif_netlink_parms(): no params data found
[  242.386300][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[  242.393469][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[  242.472362][ T6198] usb 4-1: Using ep0 maxpacket: 16
[  242.503905][ T6198] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[  242.525485][ T6198] usb 4-1: config 0 has no interface number 0
[  242.543337][ T6198] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  242.574168][ T6198] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  242.602167][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  242.609413][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  242.635483][ T6198] usb 4-1: config 0 interface 41 has no altsetting 0
[  242.684832][ T6198] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  242.761692][ T6198] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  242.769742][ T6198] usb 4-1: Product: syz
[  242.788403][ T6198] usb 4-1: Manufacturer: syz
[  242.797567][ T6198] usb 4-1: SerialNumber: syz
[  242.807355][ T6198] usb 4-1: config 0 descriptor??
[  242.813676][ T6964] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  242.837295][ T6964] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  242.844764][ T6495] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  243.016185][ T6931] bridge0: port 1(bridge_slave_0) entered blocking state
[  243.024008][ T6931] bridge0: port 1(bridge_slave_0) entered disabled state
[  243.031335][ T6931] bridge_slave_0: entered allmulticast mode
[  243.042774][ T6931] bridge_slave_0: entered promiscuous mode
[  243.057202][ T6962] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  243.082753][ T6931] bridge0: port 2(bridge_slave_1) entered blocking state
[  243.092887][ T6962] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  243.127035][ T6931] bridge0: port 2(bridge_slave_1) entered disabled state
[  243.135422][   T30] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  243.145811][ T6931] bridge_slave_1: entered allmulticast mode
[  243.156830][ T6931] bridge_slave_1: entered promiscuous mode
[  243.266584][ T6931] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  243.308054][   T30] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  243.331232][ T6931] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  243.360497][ T5829] Bluetooth: hci3: command tx timeout
[  243.372177][   T30] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[  243.402286][   T30] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00
[  243.414705][   T30] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[  243.431332][   T30] usb 2-1: SerialNumber: syz
[  243.783880][ T6198] Error reading MAC address
[  243.981548][   T30] usb 2-1: 0:2 : does not exist
[  244.008193][ T6198] sr9700 4-1:0.41: probe with driver sr9700 failed with error -71
[  244.060835][ T6198] usb 4-1: USB disconnect, device number 3
[  244.261151][ T6931] team0: Port device team_slave_0 added
[  244.294554][ T6977] loop1: detected capacity change from 0 to 512
[  244.372886][ T6931] team0: Port device team_slave_1 added
[  244.391623][ T6977] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.243: attempt to clear invalid blocks 1 len 1
[  244.417116][ T6514] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  244.434576][ T5838] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  244.460588][ T5838] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  244.476740][ T5838] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  244.496735][ T5838] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  244.507178][ T5838] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  244.574848][ T6977] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.243: bg 0: block 343: padding at end of block bitmap is not set
[  244.624837][ T6977] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6689: Corrupt filesystem
[  244.657322][ T6977] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.243: invalid indirect mapped block 1819239214 (level 0)
[  244.711100][ T6977] EXT4-fs error (device loop1): ext4_free_branches:1023: inode #13: comm syz.1.243: invalid indirect mapped block 1819239214 (level 1)
[  244.793378][ T6977] EXT4-fs (loop1): 1 truncate cleaned up
[  244.812871][ T6977] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  245.441002][ T5829] Bluetooth: hci3: command tx timeout
[  245.689808][ T6931] batman_adv: batadv0: Adding interface: batadv_slave_0
[  245.699821][ T6931] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  245.733604][ T6931] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  246.562183][ T5829] Bluetooth: hci0: command tx timeout
[  247.520205][ T5829] Bluetooth: hci3: command tx timeout
[  248.640653][ T5829] Bluetooth: hci0: command tx timeout
[  248.670512][ T7011] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  248.783626][ T6748] usb 2-1: USB disconnect, device number 5
[  248.851978][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.002721][ T6931] batman_adv: batadv0: Adding interface: batadv_slave_1
[  249.619885][ T6931] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  249.917229][ T6931] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  250.628039][ T7030] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  251.727453][ T5829] Bluetooth: hci0: command tx timeout
[  252.707828][ T7038] loop1: detected capacity change from 0 to 512
[  252.775259][ T7038] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  253.099918][ T7045] loop3: detected capacity change from 0 to 1024
[  253.833269][ T5829] Bluetooth: hci0: command tx timeout
[  254.162238][ T6931] hsr_slave_0: entered promiscuous mode
[  254.169036][ T6931] hsr_slave_1: entered promiscuous mode
[  254.380542][ T5829] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  254.392274][ T5829] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  254.399882][ T5829] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  254.409503][ T5829] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  254.417791][ T5829] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  254.484260][ T6931] debugfs: 'hsr0' already exists in 'hsr'
[  254.490332][ T6931] Cannot create hsr debugfs directory
[  254.491241][ T5842] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  255.091943][ T3538] hfsplus: b-tree write err: -5, ino 4
[  255.196528][ T1910] bridge_slave_1: left allmulticast mode
[  255.211297][ T1910] bridge_slave_1: left promiscuous mode
[  255.217120][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.246067][ T1910] bridge_slave_0: left allmulticast mode
[  255.250588][ T6101] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  255.252339][ T1910] bridge_slave_0: left promiscuous mode
[  255.266544][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.417144][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  255.420358][ T6101] usb 2-1: Using ep0 maxpacket: 16
[  255.435057][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  255.448697][ T1910] bond0 (unregistering): Released all slaves
[  255.461774][ T6101] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  255.488908][ T6101] usb 2-1: config 0 has no interface number 0
[  255.501883][ T6101] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  255.523838][ T6101] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  255.538670][ T6101] usb 2-1: config 0 interface 41 has no altsetting 0
[  255.548052][ T6101] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  255.561242][ T6101] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  255.569531][ T6101] usb 2-1: Product: syz
[  255.574062][ T6101] usb 2-1: Manufacturer: syz
[  255.578708][ T6101] usb 2-1: SerialNumber: syz
[  255.608437][ T6101] usb 2-1: config 0 descriptor??
[  255.618072][ T7057] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  255.627436][ T7057] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  255.720115][ T1910] hsr_slave_0: left promiscuous mode
[  255.727310][ T1910] hsr_slave_1: left promiscuous mode
[  255.750359][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  255.761634][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  255.844912][ T7057] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  255.854868][ T7057] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  256.480450][ T5829] Bluetooth: hci6: command tx timeout
[  257.416217][ T7072] loop3: detected capacity change from 0 to 32768
[  257.470411][ T7072] (syz.3.261,7072,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  257.559564][ T7072] (syz.3.261,7072,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[  257.899703][ T7072] (syz.3.261,7072,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  257.951594][ T7072] (syz.3.261,7072,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  258.032866][ T7072] JBD2: Ignoring recovery information on journal
[  258.410667][ T6101] Error reading MAC address
[  258.425277][ T6101] sr9700 2-1:0.41: probe with driver sr9700 failed with error -71
[  258.444139][ T6101] usb 2-1: USB disconnect, device number 6
[  258.453661][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  258.487568][ T7072] (syz.3.261,7072,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[  258.514580][ T7072] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[  258.548838][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  258.556150][ T7072] (syz.3.261,7072,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[  258.560080][ T5829] Bluetooth: hci6: command tx timeout
[  258.611470][ T7072] (syz.3.261,7072,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[  259.197208][ T7067] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  260.467592][ T5843] ocfs2: Unmounting device (7,3) on (node local)
[  260.640530][ T5829] Bluetooth: hci6: command tx timeout
[  260.669914][ T7086] netlink: 277 bytes leftover after parsing attributes in process `syz.3.265'.
[  262.720257][ T5829] Bluetooth: hci6: command tx timeout
[  262.995060][ T7095] loop4: detected capacity change from 0 to 256
[  263.042198][ T7095] vfat: Bad value for 'uni_xlate'
[  263.131579][ T7095] loop4: detected capacity change from 0 to 8
[  263.138675][ T7095] squashfs: Unknown parameter ''
[  263.444777][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  263.453072][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  264.389472][ T6992] chnl_net:caif_netlink_parms(): no params data found
[  265.811711][ T7046] chnl_net:caif_netlink_parms(): no params data found
[  266.049596][ T6992] bridge0: port 1(bridge_slave_0) entered blocking state
[  266.063135][ T7129] loop1: detected capacity change from 0 to 1024
[  266.083006][ T6992] bridge0: port 1(bridge_slave_0) entered disabled state
[  266.114470][ T6992] bridge_slave_0: entered allmulticast mode
[  266.157405][ T6992] bridge_slave_0: entered promiscuous mode
[  266.347416][ T7140] loop4: detected capacity change from 0 to 1024
[  266.373403][ T6992] bridge0: port 2(bridge_slave_1) entered blocking state
[  266.380840][ T6101] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[  266.400364][ T6992] bridge0: port 2(bridge_slave_1) entered disabled state
[  266.407867][ T6992] bridge_slave_1: entered allmulticast mode
[  268.904962][ T6992] bridge_slave_1: entered promiscuous mode
[  268.919603][ T7140] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  268.970442][ T6101] usb 2-1: Using ep0 maxpacket: 32
[  268.996657][ T6101] usb 2-1: unable to get BOS descriptor or descriptor too short
[  269.351758][ T6101] usb 2-1: unable to read config index 0 descriptor/start: -71
[  269.401671][ T6101] usb 2-1: can't read configurations, error -71
[  269.668025][ T7141] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  269.683883][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  269.799840][ T7150] netlink: 277 bytes leftover after parsing attributes in process `syz.1.275'.
[  270.792332][ T6992] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  270.813436][ T6931] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  270.922395][ T7165] loop1: detected capacity change from 0 to 256
[  270.925988][ T6992] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  270.942845][ T7165] vfat: Bad value for 'uni_xlate'
[  270.965087][ T6931] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  271.216373][ T6931] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  272.198660][ T7046] bridge0: port 1(bridge_slave_0) entered blocking state
[  272.458922][ T7046] bridge0: port 1(bridge_slave_0) entered disabled state
[  272.960920][ T7046] bridge_slave_0: entered allmulticast mode
[  272.968918][ T7046] bridge_slave_0: entered promiscuous mode
[  273.016913][ T7046] bridge0: port 2(bridge_slave_1) entered blocking state
[  273.060762][ T7046] bridge0: port 2(bridge_slave_1) entered disabled state
[  273.068120][ T7046] bridge_slave_1: entered allmulticast mode
[  273.107061][ T7046] bridge_slave_1: entered promiscuous mode
[  273.601342][ T6931] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  275.502482][ T6992] team0: Port device team_slave_0 added
[  276.101576][ T6992] team0: Port device team_slave_1 added
[  276.110803][ T7046] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  276.128721][ T7046] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  276.327556][ T6992] batman_adv: batadv0: Adding interface: batadv_slave_0
[  276.350724][ T6992] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  276.430254][ T6992] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  276.951669][ T6992] batman_adv: batadv0: Adding interface: batadv_slave_1
[  276.958649][ T6992] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  277.038792][ T6992] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  280.200927][ T7200] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  280.225255][ T7046] team0: Port device team_slave_0 added
[  282.471561][ T7046] team0: Port device team_slave_1 added
[  285.010325][ T7046] batman_adv: batadv0: Adding interface: batadv_slave_0
[  285.017317][ T7046] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  285.140016][ T7046] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  285.231356][ T6992] hsr_slave_0: entered promiscuous mode
[  285.237932][ T6992] hsr_slave_1: entered promiscuous mode
[  285.276967][ T6992] debugfs: 'hsr0' already exists in 'hsr'
[  285.303203][ T6992] Cannot create hsr debugfs directory
[  287.327266][ T7046] batman_adv: batadv0: Adding interface: batadv_slave_1
[  287.364949][ T7046] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  287.440184][ T7046] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  288.142785][ T7046] hsr_slave_0: entered promiscuous mode
[  288.160761][ T7046] hsr_slave_1: entered promiscuous mode
[  288.173638][ T7046] debugfs: 'hsr0' already exists in 'hsr'
[  288.179373][ T7046] Cannot create hsr debugfs directory
[  289.742022][ T7238] loop4: detected capacity change from 0 to 32768
[  289.761415][ T7238] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.294 (7238)
[  289.779045][ T7238] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  289.789258][ T7238] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[  289.998106][ T7238] BTRFS info (device loop4): enabling ssd optimizations
[  290.005267][ T7238] BTRFS info (device loop4): turning on async discard
[  290.012111][ T7238] BTRFS info (device loop4): enabling free space tree
[  290.162061][ T5831] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  292.467235][ T7260] loop3: detected capacity change from 0 to 4096
[  293.662784][ T7277] loop3: detected capacity change from 0 to 512
[  294.760420][ T7277] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  294.870410][ T6931] 8021q: adding VLAN 0 to HW filter on device bond0
[  295.161768][ T1910] bridge_slave_1: left allmulticast mode
[  295.167440][ T1910] bridge_slave_1: left promiscuous mode
[  295.220302][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.275749][ T1910] bridge_slave_0: left allmulticast mode
[  295.293005][ T1910] bridge_slave_0: left promiscuous mode
[  295.298802][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.357013][ T1910] bridge_slave_1: left allmulticast mode
[  295.377259][ T1910] bridge_slave_1: left promiscuous mode
[  295.391094][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  296.981424][ T1910] bridge_slave_0: left allmulticast mode
[  297.005462][ T1910] bridge_slave_0: left promiscuous mode
[  297.021516][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.298088][ T7296] netlink: 176 bytes leftover after parsing attributes in process `syz.4.297'.
[  298.320554][ T6198] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  298.610954][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  298.661052][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  298.672202][ T1910] bond0 (unregistering): Released all slaves
[  298.760447][ T6198] usb 4-1: Using ep0 maxpacket: 32
[  298.769810][ T5838] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  298.773530][ T6198] usb 4-1: config 0 has an invalid interface number: 51 but max is 0
[  298.785350][ T6198] usb 4-1: config 0 has no interface number 0
[  298.785434][ T5838] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  298.795015][ T6198] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  298.807847][ T5838] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  298.817164][ T5838] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  298.824901][ T6198] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  298.824921][ T5838] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  298.857509][ T6198] usb 4-1: Product: syz
[  298.869753][ T6198] usb 4-1: Manufacturer: syz
[  298.879801][ T6198] usb 4-1: SerialNumber: syz
[  298.899362][ T6198] usb 4-1: config 0 descriptor??
[  298.914965][ T6198] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  299.123114][ T6198] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  299.168705][ T6198] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  300.332153][    C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71
[  300.332554][ T6231] usb 4-1: USB disconnect, device number 4
[  300.447054][ T6231] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  300.522447][ T6231] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  300.890156][ T5838] Bluetooth: hci2: command tx timeout
[  300.898794][ T6231] quatech2 4-1:0.51: device disconnected
[  301.150648][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  301.595869][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  301.615253][ T1910] bond0 (unregistering): Released all slaves
[  302.713503][ T7320] loop3: detected capacity change from 0 to 1024
[  302.838463][ T7320] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  302.960055][ T5838] Bluetooth: hci2: command tx timeout
[  303.016978][ T1910] hsr_slave_0: left promiscuous mode
[  303.043422][ T1910] hsr_slave_1: left promiscuous mode
[  303.056538][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  303.061491][ T7328] loop1: detected capacity change from 0 to 2048
[  303.093508][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  303.113487][ T7328] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  303.211205][ T1910] hsr_slave_0: left promiscuous mode
[  303.523784][ T1910] hsr_slave_1: left promiscuous mode
[  303.577299][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  304.072194][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  304.075856][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  304.687310][ T5829] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  304.697121][ T5829] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  304.704938][ T5829] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  304.714163][ T5829] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  304.725006][ T5829] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  305.040617][ T5829] Bluetooth: hci2: command tx timeout
[  305.322746][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  305.645861][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  307.734248][ T5829] Bluetooth: hci3: command tx timeout
[  307.740520][ T5829] Bluetooth: hci2: command tx timeout
[  308.252011][ T7358] loop1: detected capacity change from 0 to 2048
[  308.324669][ T7358] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  309.250813][ T7361] netlink: 176 bytes leftover after parsing attributes in process `syz.4.311'.
[  309.800284][ T5838] Bluetooth: hci3: command tx timeout
[  310.491057][ T5829] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  310.513182][ T5829] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  310.521939][ T5829] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  310.530962][ T5829] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  310.538567][ T5829] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  310.631917][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  310.709981][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  312.442243][ T5829] Bluetooth: hci3: command tx timeout
[  312.560017][ T5829] Bluetooth: hci7: command tx timeout
[  314.480838][ T5829] Bluetooth: hci3: command tx timeout
[  314.640673][ T5829] Bluetooth: hci7: command tx timeout
[  317.981936][ T5829] Bluetooth: hci7: command tx timeout
[  318.104440][ T7402] kthread_run failed with err -4
[  319.255378][ T7297] chnl_net:caif_netlink_parms(): no params data found
[  320.000103][ T5829] Bluetooth: hci7: command tx timeout
[  320.682088][ T7435] netlink: 176 bytes leftover after parsing attributes in process `syz.3.324'.
[  322.580832][ T7297] bridge0: port 1(bridge_slave_0) entered blocking state
[  322.588281][ T7297] bridge0: port 1(bridge_slave_0) entered disabled state
[  322.630317][ T7297] bridge_slave_0: entered allmulticast mode
[  322.644068][ T7297] bridge_slave_0: entered promiscuous mode
[  323.633769][ T7368] chnl_net:caif_netlink_parms(): no params data found
[  323.667975][ T7297] bridge0: port 2(bridge_slave_1) entered blocking state
[  323.830231][ T7297] bridge0: port 2(bridge_slave_1) entered disabled state
[  323.838636][ T7297] bridge_slave_1: entered allmulticast mode
[  323.846693][ T7297] bridge_slave_1: entered promiscuous mode
[  324.194067][ T7341] chnl_net:caif_netlink_parms(): no params data found
[  324.265679][ T7453] loop1: detected capacity change from 0 to 1024
[  324.350824][ T7453] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  324.715290][ T7297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  324.889204][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  324.895738][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  324.897812][ T7460] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  324.947767][ T7460] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  324.962932][ T7460] EXT4-fs (loop1): This should not happen!! Data will be lost
[  324.962932][ T7460] 
[  324.973069][ T7460] EXT4-fs (loop1): Total free blocks count 0
[  324.979265][ T7460] EXT4-fs (loop1): Free/Dirty block details
[  324.985915][ T7460] EXT4-fs (loop1): free_blocks=20480
[  324.992145][ T7460] EXT4-fs (loop1): dirty_blocks=32
[  324.997385][ T7460] EXT4-fs (loop1): Block reservation details
[  325.010194][ T7460] EXT4-fs (loop1): i_reserved_data_blocks=2
[  325.045272][ T7297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  325.603637][ T3443] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  325.647821][ T7469] loop4: detected capacity change from 0 to 1024
[  325.722126][ T7469] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  328.279883][ T7297] team0: Port device team_slave_0 added
[  328.317928][ T7297] team0: Port device team_slave_1 added
[  328.342174][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  328.431549][ T7368] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.450069][ T7368] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.457250][ T7368] bridge_slave_0: entered allmulticast mode
[  328.501999][ T7368] bridge_slave_0: entered promiscuous mode
[  328.621826][ T7368] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.634729][ T7368] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.657465][ T7368] bridge_slave_1: entered allmulticast mode
[  328.673174][ T7368] bridge_slave_1: entered promiscuous mode
[  328.731113][ T7341] bridge0: port 1(bridge_slave_0) entered blocking state
[  328.738243][ T7341] bridge0: port 1(bridge_slave_0) entered disabled state
[  328.750572][ T7341] bridge_slave_0: entered allmulticast mode
[  328.758363][ T7341] bridge_slave_0: entered promiscuous mode
[  328.776561][ T7297] batman_adv: batadv0: Adding interface: batadv_slave_0
[  328.786901][ T7297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  328.850235][ T7297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  328.911542][ T7341] bridge0: port 2(bridge_slave_1) entered blocking state
[  328.919836][ T7341] bridge0: port 2(bridge_slave_1) entered disabled state
[  328.927899][ T7341] bridge_slave_1: entered allmulticast mode
[  328.947592][ T7341] bridge_slave_1: entered promiscuous mode
[  328.958360][ T7297] batman_adv: batadv0: Adding interface: batadv_slave_1
[  328.975477][ T7297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  329.006318][ T7499] netlink: 176 bytes leftover after parsing attributes in process `syz.4.337'.
[  329.059526][ T7297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  329.086161][ T7368] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  329.171955][ T7368] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  330.865988][ T7368] team0: Port device team_slave_0 added
[  330.877724][ T7341] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  331.233965][ T7368] team0: Port device team_slave_1 added
[  331.293848][ T7341] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  331.375432][ T7297] hsr_slave_0: entered promiscuous mode
[  331.392555][ T7297] hsr_slave_1: entered promiscuous mode
[  331.507662][ T7368] batman_adv: batadv0: Adding interface: batadv_slave_0
[  331.527045][ T7368] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  331.580145][ T7368] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  331.614153][ T7341] team0: Port device team_slave_0 added
[  331.690919][ T7368] batman_adv: batadv0: Adding interface: batadv_slave_1
[  331.698137][ T7368] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  331.760047][ T7368] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  331.942671][ T7341] team0: Port device team_slave_1 added
[  331.959417][ T7514] loop4: detected capacity change from 0 to 2048
[  331.996647][ T7514] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  334.322632][ T7341] batman_adv: batadv0: Adding interface: batadv_slave_0
[  334.329630][ T7341] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  334.366690][ T7341] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  334.378154][ T1910] bridge_slave_1: left allmulticast mode
[  334.412285][ T1910] bridge_slave_1: left promiscuous mode
[  334.428676][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.454385][ T1910] bridge_slave_0: left allmulticast mode
[  334.470106][ T6231] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  334.477740][ T1910] bridge_slave_0: left promiscuous mode
[  334.488466][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.522675][ T1910] bridge_slave_1: left allmulticast mode
[  334.538812][ T1910] bridge_slave_1: left promiscuous mode
[  334.546405][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  334.566880][ T1910] bridge_slave_0: left allmulticast mode
[  334.574362][ T1910] bridge_slave_0: left promiscuous mode
[  334.580633][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  334.782976][ T6231] usb 2-1: Using ep0 maxpacket: 32
[  334.832331][ T6231] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  334.847157][ T7531] loop4: detected capacity change from 0 to 2048
[  334.855440][ T6231] usb 2-1: config 0 has no interface number 0
[  334.912123][ T6231] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  335.027611][ T7531] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  335.075408][ T6231] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  335.175695][ T6231] usb 2-1: Product: syz
[  335.180146][ T6231] usb 2-1: Manufacturer: syz
[  335.184743][ T6231] usb 2-1: SerialNumber: syz
[  335.192749][ T6231] usb 2-1: config 0 descriptor??
[  335.228490][ T6231] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  335.346400][ T1910] bridge_slave_1: left allmulticast mode
[  335.352343][ T1910] bridge_slave_1: left promiscuous mode
[  335.359657][ T1910] bridge0: port 2(bridge_slave_1) entered disabled state
[  335.374170][ T1910] bridge_slave_0: left allmulticast mode
[  335.379844][ T1910] bridge_slave_0: left promiscuous mode
[  335.389705][ T1910] bridge0: port 1(bridge_slave_0) entered disabled state
[  335.420187][ T6231] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  335.454654][ T6231] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  336.756465][    C1] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  336.765013][ T6231] usb 2-1: USB disconnect, device number 9
[  336.870965][ T6231] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  336.938585][ T6231] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  336.978077][ T6231] quatech2 2-1:0.51: device disconnected
[  337.323357][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  337.370936][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  337.399359][ T1910] bond0 (unregistering): Released all slaves
[  337.990269][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  338.047025][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  338.542717][ T1910] bond0 (unregistering): Released all slaves
[  338.721018][ T7546] loop4: detected capacity change from 0 to 2048
[  338.765610][ T7546] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  340.592639][ T7559] loop4: detected capacity change from 0 to 256
[  340.607589][ T7559] vfat: Bad value for 'uni_xlate'
[  340.627385][ T7559] loop4: detected capacity change from 0 to 8
[  340.634738][ T7559] squashfs: Unknown parameter ''
[  340.680020][    T9] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  340.850042][    T9] usb 2-1: Using ep0 maxpacket: 16
[  340.895611][    T9] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  340.909599][    T9] usb 2-1: config 0 has no interface number 0
[  340.919477][    T9] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  340.942090][    T9] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  341.661226][    T9] usb 2-1: config 0 interface 41 has no altsetting 0
[  341.735518][    T9] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  341.798347][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  341.842766][    T9] usb 2-1: Product: syz
[  341.846966][    T9] usb 2-1: Manufacturer: syz
[  341.871814][    T9] usb 2-1: SerialNumber: syz
[  341.891194][    T9] usb 2-1: config 0 descriptor??
[  341.896931][ T7555] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  341.903496][ T7563] loop4: detected capacity change from 0 to 1024
[  341.930173][ T7555] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  341.948530][ T7563] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  341.971675][ T1910] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  342.044843][ T1910] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  342.104799][ T1910] bond0 (unregistering): Released all slaves
[  342.301164][ T7567] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  342.311152][ T7553] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  342.363159][ T7553] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  342.673016][ T7368] hsr_slave_0: entered promiscuous mode
[  342.698248][ T7368] hsr_slave_1: entered promiscuous mode
[  342.732155][ T7368] debugfs: 'hsr0' already exists in 'hsr'
[  342.757743][ T7368] Cannot create hsr debugfs directory
[  342.781397][ T7341] batman_adv: batadv0: Adding interface: batadv_slave_1
[  342.810059][ T7341] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  342.851494][    T9] Error reading MAC address
[  342.867949][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  342.869990][    T9] sr9700 2-1:0.41: probe with driver sr9700 failed with error -71
[  342.898634][ T7341] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  342.937728][    T9] usb 2-1: USB disconnect, device number 10
[  344.780001][ T1910] hsr_slave_0: left promiscuous mode
[  344.788093][ T1910] hsr_slave_1: left promiscuous mode
[  344.796967][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  344.821034][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  344.860969][ T1910] hsr_slave_0: left promiscuous mode
[  344.876022][ T1910] hsr_slave_1: left promiscuous mode
[  344.890921][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  344.902794][ T7581] loop4: detected capacity change from 0 to 4096
[  344.910796][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  345.061109][ T1910] hsr_slave_0: left promiscuous mode
[  345.090294][ T1910] hsr_slave_1: left promiscuous mode
[  345.096559][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_0
[  345.172052][ T1910] batman_adv: batadv0: Removing interface: batadv_slave_1
[  348.511019][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  348.579483][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  349.088893][ T7597] loop4: detected capacity change from 0 to 1024
[  349.180966][ T7597] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  349.369795][ T7602] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  349.428444][ T7602] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  349.443129][ T7602] EXT4-fs (loop4): This should not happen!! Data will be lost
[  349.443129][ T7602] 
[  349.453510][ T7602] EXT4-fs (loop4): Total free blocks count 0
[  349.459968][ T7602] EXT4-fs (loop4): Free/Dirty block details
[  349.467681][ T7602] EXT4-fs (loop4): free_blocks=20480
[  349.473538][ T7602] EXT4-fs (loop4): dirty_blocks=32
[  349.478746][ T7602] EXT4-fs (loop4): Block reservation details
[  349.485043][ T7602] EXT4-fs (loop4): i_reserved_data_blocks=2
[  351.190429][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  351.323884][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  351.332820][ T4872] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  351.372365][ T7608] loop1: detected capacity change from 0 to 1024
[  351.462897][ T7608] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  351.843752][ T7614] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  351.895390][ T7614] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  351.907893][ T7614] EXT4-fs (loop1): This should not happen!! Data will be lost
[  351.907893][ T7614] 
[  351.917966][ T7614] EXT4-fs (loop1): Total free blocks count 0
[  351.925577][ T7614] EXT4-fs (loop1): Free/Dirty block details
[  351.931650][ T7614] EXT4-fs (loop1): free_blocks=20480
[  351.937208][ T7614] EXT4-fs (loop1): dirty_blocks=32
[  351.943318][ T7614] EXT4-fs (loop1): Block reservation details
[  351.949967][ T7614] EXT4-fs (loop1): i_reserved_data_blocks=2
[  352.422757][ T3443] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  353.529992][ T6198] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  353.700202][ T1910] team0 (unregistering): Port device team_slave_1 removed
[  353.700268][ T6198] usb 2-1: Using ep0 maxpacket: 16
[  353.751976][ T6198] usb 2-1: config 0 has an invalid interface number: 41 but max is 0
[  353.780663][ T6198] usb 2-1: config 0 has no interface number 0
[  353.795553][ T6198] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  353.817385][ T6198] usb 2-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  353.838363][ T6198] usb 2-1: config 0 interface 41 has no altsetting 0
[  353.859458][ T6198] usb 2-1: New USB device found, idVendor=0fe6, idProduct=9700, bcdDevice=d1.9a
[  353.869726][ T1910] team0 (unregistering): Port device team_slave_0 removed
[  354.235309][ T6198] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  354.513414][ T6198] usb 2-1: Product: syz
[  354.663710][ T6198] usb 2-1: Manufacturer: syz
[  354.679982][ T6198] usb 2-1: SerialNumber: syz
[  354.706824][ T6198] usb 2-1: config 0 descriptor??
[  354.721518][ T7621] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  354.730936][ T7621] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  355.001455][ T7619] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  355.021254][ T7619] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  355.759155][ T6198] Error reading MAC address
[  355.873097][ T6198] sr9700 2-1:0.41: probe with driver sr9700 failed with error -71
[  356.075969][ T7636] loop3: detected capacity change from 0 to 256
[  356.137065][ T6198] usb 2-1: USB disconnect, device number 11
[  357.504237][ T7645] loop4: detected capacity change from 0 to 1024
[  357.622161][ T7645] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  357.824245][ T7654] netlink: 8 bytes leftover after parsing attributes in process `syz.3.375'.
[  358.092182][ T7655] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  358.208177][ T7655] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  358.220678][ T7655] EXT4-fs (loop4): This should not happen!! Data will be lost
[  358.220678][ T7655] 
[  358.230498][ T7655] EXT4-fs (loop4): Total free blocks count 0
[  358.236648][ T7655] EXT4-fs (loop4): Free/Dirty block details
[  358.245489][ T7655] EXT4-fs (loop4): free_blocks=20480
[  358.251029][ T7655] EXT4-fs (loop4): dirty_blocks=32
[  358.256253][ T7655] EXT4-fs (loop4): Block reservation details
[  358.266246][ T7655] EXT4-fs (loop4): i_reserved_data_blocks=2
[  358.511303][ T6013] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  359.242280][ T7341] hsr_slave_0: entered promiscuous mode
[  359.321431][ T7341] hsr_slave_1: entered promiscuous mode
[  359.410186][ T7341] debugfs: 'hsr0' already exists in 'hsr'
[  359.816714][ T7341] Cannot create hsr debugfs directory
[  360.958535][ T7686] loop4: detected capacity change from 0 to 512
[  361.058785][ T7686] EXT4-fs (loop4): blocks per group (95) and clusters per group (32768) inconsistent
[  362.959081][ T5838] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  362.971908][ T5838] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  362.981871][ T5838] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  363.000986][ T5838] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  363.010805][ T5838] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  363.085840][ T7693] loop4: detected capacity change from 0 to 256
[  365.119977][ T5838] Bluetooth: hci0: command tx timeout
[  365.165297][ T5829] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  365.173001][ T5829] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  365.183650][ T5829] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  365.193397][ T5829] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  365.201819][ T5829] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  365.697043][ T7368] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  365.743055][ T6198] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[  365.783688][ T7368] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  365.898775][ T7713] loop3: detected capacity change from 0 to 1024
[  365.906471][ T7368] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  365.950795][ T6198] usb 2-1: Using ep0 maxpacket: 32
[  365.984147][ T6198] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[  366.005813][ T7368] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  366.017071][ T7713] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  366.038623][ T6198] usb 2-1: config 0 has no interface number 0
[  366.078216][ T6198] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[  366.090046][ T6198] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  366.098050][ T6198] usb 2-1: Product: syz
[  366.110299][ T6198] usb 2-1: Manufacturer: syz
[  366.119997][ T6198] usb 2-1: SerialNumber: syz
[  366.183493][ T6198] usb 2-1: config 0 descriptor??
[  366.642890][ T6198] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[  366.740820][ T6198] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[  366.778672][ T6198] usb 2-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[  366.983972][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  367.133072][    C0] usb 2-1: qt2_read_bulk_callback - non-zero urb status: -71
[  367.142338][    T9] usb 2-1: USB disconnect, device number 12
[  367.163034][    T9] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[  367.220110][ T5838] Bluetooth: hci0: command tx timeout
[  367.264600][    T9] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[  367.285525][ T5838] Bluetooth: hci2: command tx timeout
[  367.343343][    T9] quatech2 2-1:0.51: device disconnected
[  367.422774][ T7735] loop3: detected capacity change from 0 to 1024
[  369.192811][ T7735] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  369.282605][ T5838] Bluetooth: hci0: command tx timeout
[  369.360788][ T5838] Bluetooth: hci2: command tx timeout
[  369.699951][ T7750] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  370.316371][ T7752] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  371.470131][ T5836] Bluetooth: hci2: command tx timeout
[  371.475988][ T5829] Bluetooth: hci0: command tx timeout
[  371.494467][ T7750] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  371.507022][ T7750] EXT4-fs (loop3): This should not happen!! Data will be lost
[  371.507022][ T7750] 
[  371.517487][ T7750] EXT4-fs (loop3): Total free blocks count 0
[  371.524238][ T7750] EXT4-fs (loop3): Free/Dirty block details
[  371.530425][ T7750] EXT4-fs (loop3): free_blocks=20480
[  371.536026][ T7750] EXT4-fs (loop3): dirty_blocks=32
[  371.538020][  T402] bridge_slave_1: left allmulticast mode
[  371.547071][ T7750] EXT4-fs (loop3): Block reservation details
[  371.556081][ T7750] EXT4-fs (loop3): i_reserved_data_blocks=2
[  371.579805][  T402] bridge_slave_1: left promiscuous mode
[  371.610932][  T402] bridge0: port 2(bridge_slave_1) entered disabled state
[  371.830880][  T402] bridge_slave_0: left allmulticast mode
[  371.859548][  T402] bridge_slave_0: left promiscuous mode
[  371.916451][  T402] bridge0: port 1(bridge_slave_0) entered disabled state
[  371.983650][  T402] bridge_slave_1: left allmulticast mode
[  371.989332][  T402] bridge_slave_1: left promiscuous mode
[  372.029852][  T402] bridge0: port 2(bridge_slave_1) entered disabled state
[  372.054215][  T402] bridge_slave_0: left allmulticast mode
[  372.070021][  T402] bridge_slave_0: left promiscuous mode
[  372.086020][  T402] bridge0: port 1(bridge_slave_0) entered disabled state
[  372.128270][ T6069] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  372.274180][ T5838] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  372.283392][ T5838] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  372.308116][ T5838] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  372.318839][ T5838] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  372.326731][ T5838] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  372.460031][  T402] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  372.510628][  T402] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  372.537813][ T7762] loop3: detected capacity change from 0 to 256
[  372.559452][ T7762] vfat filesystem being mounted at /102/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  372.601903][  T402] bond0 (unregistering): Released all slaves
[  372.842665][  T402] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  372.862769][  T402] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  372.892249][  T402] bond0 (unregistering): Released all slaves
[  372.994027][ T7691] chnl_net:caif_netlink_parms(): no params data found
[  373.949191][ T5838] Bluetooth: hci2: command tx timeout
[  374.335454][ T7781] netlink: 8 bytes leftover after parsing attributes in process `syz.4.392'.
[  374.411985][ T5838] Bluetooth: hci3: command tx timeout
[  375.507184][ T7705] chnl_net:caif_netlink_parms(): no params data found
[  376.493701][ T5838] Bluetooth: hci3: command tx timeout
[  376.583944][  T402] hsr_slave_0: left promiscuous mode
[  376.590499][  T402] hsr_slave_1: left promiscuous mode
[  376.596694][  T402] batman_adv: batadv0: Removing interface: batadv_slave_0
[  376.620745][  T402] batman_adv: batadv0: Removing interface: batadv_slave_1
[  376.686704][  T402] hsr_slave_0: left promiscuous mode
[  376.701162][  T402] hsr_slave_1: left promiscuous mode
[  376.707327][  T402] batman_adv: batadv0: Removing interface: batadv_slave_0
[  376.761971][  T402] batman_adv: batadv0: Removing interface: batadv_slave_1
[  377.370826][ T5925] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  377.632927][ T5925] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  377.674576][ T5925] usb 4-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  377.770355][ T5925] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  377.810062][ T5925] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  377.818111][ T5925] usb 4-1: Product: syz
[  377.938854][ T5925] usb 4-1: Manufacturer: syz
[  377.946375][ T5925] usb 4-1: SerialNumber: syz
[  378.108913][  T402] team0 (unregistering): Port device team_slave_1 removed
[  378.889992][ T5838] Bluetooth: hci3: command tx timeout
[  379.110502][  T402] team0 (unregistering): Port device team_slave_0 removed
[  379.753377][ T7808] loop4: detected capacity change from 0 to 256
[  379.774422][ T5925] cdc_ncm 4-1:1.0: bind() failure
[  379.796093][ T5925] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  379.811759][ T7808] vfat filesystem being mounted at /113/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  379.854015][ T5925] cdc_ncm 4-1:1.1: bind() failure
[  379.946421][ T5925] usb 4-1: USB disconnect, device number 5
[  379.979408][ T7811] netlink: 277 bytes leftover after parsing attributes in process `syz.1.401'.
[  380.634506][ T7819] loop3: detected capacity change from 0 to 1024
[  380.641950][ T7819] ext4: Unknown parameter 'fowner<00000000000000000000'
[  381.016016][ T5838] Bluetooth: hci3: command tx timeout
[  383.355092][ T7827] loop3: detected capacity change from 0 to 512
[  383.921782][ T7827] EXT4-fs (loop3): blocks per group (95) and clusters per group (32768) inconsistent
[  384.054269][  T402] team0 (unregistering): Port device team_slave_1 removed
[  384.330545][  T402] team0 (unregistering): Port device team_slave_0 removed
[  385.181318][ T7691] bridge0: port 1(bridge_slave_0) entered blocking state
[  385.188487][ T7691] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.221305][ T7691] bridge_slave_0: entered allmulticast mode
[  385.229356][ T7691] bridge_slave_0: entered promiscuous mode
[  385.401373][ T7691] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.408556][ T7691] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.432621][ T7691] bridge_slave_1: entered allmulticast mode
[  385.441300][ T7691] bridge_slave_1: entered promiscuous mode
[  385.448417][ T7705] bridge0: port 1(bridge_slave_0) entered blocking state
[  385.560207][ T7705] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.567480][ T7705] bridge_slave_0: entered allmulticast mode
[  385.672113][ T7705] bridge_slave_0: entered promiscuous mode
[  385.680868][ T7705] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.689016][ T7705] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.772209][ T7705] bridge_slave_1: entered allmulticast mode
[  386.007531][ T7705] bridge_slave_1: entered promiscuous mode
[  386.106021][ T7757] chnl_net:caif_netlink_parms(): no params data found
[  386.311115][ T7691] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  386.333833][ T1294] ieee802154 phy0 wpan0: encryption failed: -22
[  386.348033][ T7705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  386.351118][ T1294] ieee802154 phy1 wpan1: encryption failed: -22
[  386.542289][ T7691] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  386.585521][ T7705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  386.702558][ T7846] xt_policy: neither incoming nor outgoing policy selected
[  389.840158][ T6067] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  389.904002][ T7691] team0: Port device team_slave_0 added
[  389.913517][ T7705] team0: Port device team_slave_0 added
[  389.954836][ T7705] team0: Port device team_slave_1 added
[  390.092168][ T6067] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  390.125799][ T6067] usb 5-1: config 1 interface 1 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  390.175602][ T6067] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  390.190730][ T7691] team0: Port device team_slave_1 added
[  390.205925][ T7863] loop1: detected capacity change from 0 to 256
[  390.207128][ T6067] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.229410][ T6067] usb 5-1: Product: syz
[  390.239984][ T6067] usb 5-1: Manufacturer: syz
[  390.241113][ T7863] vfat: Bad value for 'uni_xlate'
[  390.245696][ T6067] usb 5-1: SerialNumber: syz
[  390.263164][ T7705] batman_adv: batadv0: Adding interface: batadv_slave_0
[  390.276384][ T7705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  390.305970][ T7705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  390.325974][ T7705] batman_adv: batadv0: Adding interface: batadv_slave_1
[  390.334845][ T7705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  390.371488][ T7705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  390.383606][ T7757] bridge0: port 1(bridge_slave_0) entered blocking state
[  390.449604][ T7757] bridge0: port 1(bridge_slave_0) entered disabled state
[  390.490369][ T7757] bridge_slave_0: entered allmulticast mode
[  390.545424][ T7757] bridge_slave_0: entered promiscuous mode
[  390.569371][ T7757] bridge0: port 2(bridge_slave_1) entered blocking state
[  390.577943][ T7757] bridge0: port 2(bridge_slave_1) entered disabled state
[  390.586493][ T7757] bridge_slave_1: entered allmulticast mode
[  390.607360][ T7757] bridge_slave_1: entered promiscuous mode
[  390.633823][ T7866] loop3: detected capacity change from 0 to 256
[  390.785411][ T7866] vfat filesystem being mounted at /110/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  391.243033][ T7691] batman_adv: batadv0: Adding interface: batadv_slave_0
[  391.290512][ T7691] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  391.344837][ T6067] cdc_ncm 5-1:1.0: bind() failure
[  391.369567][ T6067] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  391.376431][ T6067] cdc_ncm 5-1:1.1: bind() failure
[  391.386903][ T6067] usb 5-1: USB disconnect, device number 5
[  391.397143][ T7691] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  392.708760][ T7691] batman_adv: batadv0: Adding interface: batadv_slave_1
[  392.725308][ T7691] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  392.770309][ T7691] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  392.868490][ T7876] loop3: detected capacity change from 0 to 1024
[  392.947554][ T7876] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  393.078676][ T7757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  393.885654][ T7705] hsr_slave_0: entered promiscuous mode
[  393.911198][ T7705] hsr_slave_1: entered promiscuous mode
[  393.927637][ T7757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  393.944526][ T5843] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  396.440888][ T7757] team0: Port device team_slave_0 added
[  396.489441][ T7691] hsr_slave_0: entered promiscuous mode
[  396.502217][ T7691] hsr_slave_1: entered promiscuous mode
[  396.508612][ T7691] debugfs: 'hsr0' already exists in 'hsr'
[  396.531222][ T7691] Cannot create hsr debugfs directory
[  396.548370][ T7757] team0: Port device team_slave_1 added
[  396.854032][ T7898] loop4: detected capacity change from 0 to 256
[  396.886586][ T7898] vfat filesystem being mounted at /124/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  396.929798][ T7757] batman_adv: batadv0: Adding interface: batadv_slave_0
[  396.957041][ T7757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  397.012814][ T7757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  397.048447][ T7757] batman_adv: batadv0: Adding interface: batadv_slave_1
[  397.068007][ T7757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  397.116482][ T7757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  397.961353][ T7907] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[  399.158349][ T7757] hsr_slave_0: entered promiscuous mode
[  399.193312][ T7757] hsr_slave_1: entered promiscuous mode
[  399.211542][ T7757] debugfs: 'hsr0' already exists in 'hsr'
[  399.217304][ T7757] Cannot create hsr debugfs directory
[  401.258837][  T402] bridge_slave_1: left allmulticast mode
[  401.287249][  T402] bridge_slave_1: left promiscuous mode
[  401.318646][  T402] bridge0: port 2(bridge_slave_1) entered disabled state
[  402.144352][  T402] bridge_slave_0: left allmulticast mode
[  402.150416][  T402] bridge_slave_0: left promiscuous mode
[  402.156193][  T402] bridge0: port 1(bridge_slave_0) entered disabled state
[  402.218807][ T7931] loop4: detected capacity change from 0 to 1024
[  402.237578][ T7930] loop1: detected capacity change from 0 to 256
[  402.293909][ T7931] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  402.349411][ T7930] vfat filesystem being mounted at /123/file0 supports timestamps until 2107-12-31 (0x10391447e)
[  402.702465][ T7935] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  402.761443][ T7935] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  402.773830][ T7935] EXT4-fs (loop4): This should not happen!! Data will be lost
[  402.773830][ T7935] 
[  402.786286][ T7935] EXT4-fs (loop4): Total free blocks count 0
[  402.792551][ T7935] EXT4-fs (loop4): Free/Dirty block details
[  402.798490][ T7935] EXT4-fs (loop4): free_blocks=20480
[  402.804507][ T7935] EXT4-fs (loop4): dirty_blocks=32
[  402.810169][ T7935] EXT4-fs (loop4): Block reservation details
[  402.816718][ T7935] EXT4-fs (loop4): i_reserved_data_blocks=2
[  404.918221][ T7027] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  404.953794][  T402] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  405.042830][  T402] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  405.390451][  T402] bond0 (unregistering): Released all slaves
[  405.700013][  T402] hsr_slave_0: left promiscuous mode
[  405.736840][  T402] hsr_slave_1: left promiscuous mode
[  405.754657][  T402] batman_adv: batadv0: Removing interface: batadv_slave_0
[  405.799079][  T402] batman_adv: batadv0: Removing interface: batadv_slave_1
[  406.029837][ T7964] loop3: detected capacity change from 0 to 1024
[  406.125326][ T7964] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  407.848413][ T7976] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1306: group 0, block bitmap and bg descriptor inconsistent: 25 vs 1305 free clusters
[  407.910743][ T7976] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 21 with max blocks 1 with error 28
[  407.951155][ T7976] EXT4-fs (loop3): This should not happen!! Data will be lost
[  407.951155][ T7976] 
[  408.016871][ T7976] EXT4-fs (loop3): Total free blocks count 0
[  408.053817][ T7976] EXT4-fs (loop3): Free/Dirty block details
[  408.105986][ T7976] EXT4-fs (loop3): free_blocks=20480
[  408.141288][ T7976] EXT4-fs (loop3): dirty_blocks=32
[  408.146884][ T7976] EXT4-fs (loop3): Block reservation details
[  408.153109][ T7976] EXT4-fs (loop3): i_reserved_data_blocks=2
[  408.207570][ T7977] netlink: 8 bytes leftover after parsing attributes in process `syz.1.448'.
[  408.291133][  T402] team0 (unregistering): Port device team_slave_1 removed
[  408.347838][  T402] team0 (unregistering): Port device team_slave_0 removed
[  408.372125][   T50] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28
[  413.016219][ T7705] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  413.450739][ T7705] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  413.521296][ T7705] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  413.579049][ T7705] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  413.938371][ T7705] 8021q: adding VLAN 0 to HW filter on device bond0
[  414.076477][ T7705] 8021q: adding VLAN 0 to HW filter on device team0
[  414.136825][ T6118] bridge0: port 1(bridge_slave_0) entered blocking state
[  414.143978][ T6118] bridge0: port 1(bridge_slave_0) entered forwarding state
[  414.186569][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  414.193719][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  414.256756][ T7691] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  414.338419][ T7691] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  414.363300][ T7691] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  414.389151][ T7691] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  415.815888][ T7691] 8021q: adding VLAN 0 to HW filter on device bond0
[  415.918772][ T7691] 8021q: adding VLAN 0 to HW filter on device team0
[  416.363265][ T4872] bridge0: port 1(bridge_slave_0) entered blocking state
[  416.370460][ T4872] bridge0: port 1(bridge_slave_0) entered forwarding state
[  416.526624][ T8038] loop4: detected capacity change from 0 to 512
[  416.583859][   T37] bridge0: port 2(bridge_slave_1) entered blocking state
[  416.591078][   T37] bridge0: port 2(bridge_slave_1) entered forwarding state
[  416.667152][ T8038] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  417.066078][ T7757] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  417.137738][ T7757] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  417.218009][ T7757] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  417.340739][ T7757] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  417.410490][ T8050] netlink: 8 bytes leftover after parsing attributes in process `syz.3.461'.
[  417.532484][ T7705] 8021q: adding VLAN 0 to HW filter on device batadv0
[  419.524778][ T7757] 8021q: adding VLAN 0 to HW filter on device bond0
[  419.635337][ T7757] 8021q: adding VLAN 0 to HW filter on device team0
[  419.737305][ T6509] bridge0: port 1(bridge_slave_0) entered blocking state
[  419.744467][ T6509] bridge0: port 1(bridge_slave_0) entered forwarding state
[  419.812456][ T6509] bridge0: port 2(bridge_slave_1) entered blocking state
[  419.819601][ T6509] bridge0: port 2(bridge_slave_1) entered forwarding state
[  420.027997][ T8071] kAFS: No cell specified
[  420.392970][ T7705] veth0_vlan: entered promiscuous mode
[  420.501886][ T7705] veth1_vlan: entered promiscuous mode
[  421.303321][ T5829] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  421.311864][ T5829] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  421.333631][ T5829] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  421.343706][ T5829] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  421.347697][ T7705] veth0_macvtap: entered promiscuous mode
[  421.351495][ T5829] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  421.361307][ T7705] veth1_macvtap: entered promiscuous mode
[  421.394459][ T7705] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.484294][ T7705] batman_adv: batadv0: Interface activated: batadv_slave_1
[  421.709472][ T7027] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  421.732516][ T7027] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  421.786598][ T7027] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  421.845825][ T7027] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  421.862556][ T5831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.219845][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  527.226912][    C1] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P7705/2:b..l
[  527.235243][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=32125, q=681 ncpus=2)
[  527.242955][    C1] task:syz-executor    state:R  running task     stack:21008 pid:7705  tgid:7705  ppid:7702   task_flags:0x400140 flags:0x00080000
[  527.256939][    C1] Call Trace:
[  527.260216][    C1]  <TASK>
[  527.263152][    C1]  __schedule+0x14bc/0x5000
[  527.267717][    C1]  ? is_bpf_text_address+0x292/0x2b0
[  527.273043][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.278689][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  527.284856][    C1]  ? arch_stack_walk+0xfc/0x150
[  527.289717][    C1]  ? __pfx___schedule+0x10/0x10
[  527.294583][    C1]  ? __lock_acquire+0x6b6/0x2cf0
[  527.299526][    C1]  ? preempt_schedule_irq+0xaa/0x150
[  527.304814][    C1]  preempt_schedule_irq+0xb5/0x150
[  527.309928][    C1]  ? __pfx_preempt_schedule_irq+0x10/0x10
[  527.315646][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.321290][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.326930][    C1]  ? rcu_irq_exit_check_preempt+0xdf/0x210
[  527.332745][    C1]  irqentry_exit+0x5d8/0x660
[  527.337351][    C1]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  527.343333][    C1] RIP: 0010:unwind_next_frame+0x1174/0x2390
[  527.349243][    C1] Code: 8b 14 24 4d 89 65 00 41 0f b6 04 2f 84 c0 0f 85 f9 0f 00 00 c6 03 00 4c 8b 64 24 10 4c 8b 7c 24 28 48 8b 44 24 40 0f b6 04 28 <84> c0 0f 85 8a 0d 00 00 41 0f b6 04 2f 84 c0 0f 85 a1 0d 00 00 0f
[  527.368848][    C1] RSP: 0018:ffffc9000447f1b8 EFLAGS: 00000202
[  527.374940][    C1] RAX: 0000000000000000 RBX: ffffc9000447f2c0 RCX: 0000000000000000
[  527.382912][    C1] RDX: ffffffff90bc1120 RSI: 0000000000000000 RDI: ffffc9000447f2e8
[  527.390889][    C1] RBP: dffffc0000000000 R08: ffffc9000447f2e7 R09: ffffc9000447f2d8
[  527.398856][    C1] R10: dffffc0000000000 R11: fffff5200088fe5d R12: ffffc9000447ff48
[  527.406825][    C1] R13: ffffc9000447f2d8 R14: ffffc9000447f288 R15: 1ffffffff2178224
[  527.414816][    C1]  ? unwind_next_frame+0xc98/0x2390
[  527.420033][    C1]  ? unwind_next_frame+0xa5/0x2390
[  527.425150][    C1]  ? do_syscall_64+0xfa/0xf80
[  527.429834][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  527.436002][    C1]  arch_stack_walk+0x11c/0x150
[  527.440776][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.446846][    C1]  stack_trace_save+0x9c/0xe0
[  527.451537][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  527.456926][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.462567][    C1]  kasan_save_track+0x3e/0x80
[  527.467259][    C1]  ? kasan_save_track+0x3e/0x80
[  527.472108][    C1]  ? __kasan_slab_alloc+0x6c/0x80
[  527.477134][    C1]  ? kmem_cache_alloc_noprof+0x37d/0x710
[  527.482789][    C1]  ? skb_clone+0x212/0x3a0
[  527.487235][    C1]  ? __netlink_deliver_tap+0x404/0x850
[  527.492700][    C1]  ? netlink_deliver_tap+0x19c/0x1b0
[  527.497989][    C1]  ? netlink_sendskb+0x68/0x140
[  527.502838][    C1]  ? netlink_unicast+0x397/0x9e0
[  527.507777][    C1]  ? netlink_rcv_skb+0x28c/0x470
[  527.512719][    C1]  ? netlink_unicast+0x82f/0x9e0
[  527.517655][    C1]  ? netlink_sendmsg+0x805/0xb30
[  527.522595][    C1]  ? __sock_sendmsg+0x21c/0x270
[  527.527464][    C1]  ? __sys_sendto+0x3bd/0x520
[  527.532144][    C1]  ? __x64_sys_sendto+0xde/0x100
[  527.537089][    C1]  ? do_syscall_64+0xfa/0xf80
[  527.541812][    C1]  ? __pfx_ref_tracker_alloc+0x10/0x10
[  527.547291][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.552953][    C1]  __kasan_slab_alloc+0x6c/0x80
[  527.557813][    C1]  kmem_cache_alloc_noprof+0x37d/0x710
[  527.563286][    C1]  ? skb_clone+0x212/0x3a0
[  527.567720][    C1]  skb_clone+0x212/0x3a0
[  527.571975][    C1]  __netlink_deliver_tap+0x404/0x850
[  527.577281][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  527.582493][    C1]  netlink_deliver_tap+0x19c/0x1b0
[  527.587612][    C1]  netlink_sendskb+0x68/0x140
[  527.592296][    C1]  netlink_unicast+0x397/0x9e0
[  527.597066][    C1]  ? __asan_memcpy+0x40/0x70
[  527.601661][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  527.606961][    C1]  netlink_rcv_skb+0x28c/0x470
[  527.611737][    C1]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  527.617209][    C1]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  527.622513][    C1]  ? netlink_deliver_tap+0x2e/0x1b0
[  527.627730][    C1]  netlink_unicast+0x82f/0x9e0
[  527.632506][    C1]  ? __pfx_netlink_unicast+0x10/0x10
[  527.637791][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.643427][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.649062][    C1]  ? skb_put+0x11b/0x210
[  527.653302][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.658951][    C1]  netlink_sendmsg+0x805/0xb30
[  527.663733][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  527.669031][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.674669][    C1]  ? aa_sock_msg_perm+0xf1/0x1b0
[  527.679642][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.685284][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.690933][    C1]  ? __pfx_netlink_sendmsg+0x10/0x10
[  527.696237][    C1]  __sock_sendmsg+0x21c/0x270
[  527.700947][    C1]  __sys_sendto+0x3bd/0x520
[  527.705463][    C1]  ? __pfx___sys_sendto+0x10/0x10
[  527.710523][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.716171][    C1]  ? fput_close_sync+0x113/0x220
[  527.721138][    C1]  ? __pfx_fput_close_sync+0x10/0x10
[  527.726438][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.732074][    C1]  ? do_raw_spin_unlock+0x122/0x240
[  527.737292][    C1]  __x64_sys_sendto+0xde/0x100
[  527.742074][    C1]  do_syscall_64+0xfa/0xf80
[  527.746581][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.752219][    C1]  ? rcu_is_watching+0x15/0xb0
[  527.756990][    C1]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.763064][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  527.768957][    C1] RIP: 0033:0x7fbaf5d915dc
[  527.773365][    C1] RSP: 002b:00007ffd2a0940c0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  527.781781][    C1] RAX: ffffffffffffffda RBX: 00007fbaf6b14620 RCX: 00007fbaf5d915dc
[  527.789767][    C1] RDX: 0000000000000020 RSI: 00007fbaf6b14670 RDI: 0000000000000003
[  527.797744][    C1] RBP: 0000000000000000 R08: 00007ffd2a094114 R09: 000000000000000c
[  527.805711][    C1] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  527.813677][    C1] R13: 0000000000000000 R14: 00007fbaf6b14670 R15: 0000000000000000
[  527.821669][    C1]  </TASK>
[  527.824685][    C1] rcu: rcu_preempt kthread starved for 10556 jiffies! g32125 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  527.835878][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  527.845841][    C1] rcu: RCU grace-period kthread stack dump:
[  527.851717][    C1] task:rcu_preempt     state:R  running task     stack:26848 pid:16    tgid:16    ppid:2      task_flags:0x208040 flags:0x00080000
[  527.865266][    C1] Call Trace:
[  527.868545][    C1]  <TASK>
[  527.871480][    C1]  __schedule+0x14bc/0x5000
[  527.876034][    C1]  ? lockdep_hardirqs_on+0x98/0x140
[  527.881238][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.886875][    C1]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  527.892785][    C1]  ? __pfx___schedule+0x10/0x10
[  527.897675][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.903318][    C1]  ? schedule+0x91/0x360
[  527.907573][    C1]  schedule+0x165/0x360
[  527.911733][    C1]  schedule_timeout+0x12b/0x270
[  527.916595][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  527.921977][    C1]  ? _raw_spin_unlock_irqrestore+0x85/0x110
[  527.927885][    C1]  ? __pfx_process_timeout+0x10/0x10
[  527.933190][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.938825][    C1]  ? prepare_to_swait_event+0x341/0x380
[  527.944386][    C1]  rcu_gp_fqs_loop+0x301/0x1540
[  527.949254][    C1]  ? lockdep_hardirqs_on+0x98/0x140
[  527.954459][    C1]  ? __pfx_rcu_watching_snap_save+0x10/0x10
[  527.960355][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  527.965638][    C1]  ? _raw_spin_unlock_irq+0x2e/0x50
[  527.970864][    C1]  rcu_gp_kthread+0x99/0x390
[  527.975460][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  527.980661][    C1]  ? __kthread_parkme+0x7b/0x200
[  527.985605][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  527.991245][    C1]  ? __kthread_parkme+0x1a1/0x200
[  527.996285][    C1]  kthread+0x711/0x8a0
[  528.000372][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  528.005571][    C1]  ? __pfx_kthread+0x10/0x10
[  528.010164][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  528.015802][    C1]  ? _raw_spin_unlock_irq+0x23/0x50
[  528.021016][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  528.026665][    C1]  ? lockdep_hardirqs_on+0x98/0x140
[  528.031869][    C1]  ? __pfx_kthread+0x10/0x10
[  528.036473][    C1]  ret_from_fork+0x599/0xb30
[  528.041068][    C1]  ? __pfx_ret_from_fork+0x10/0x10
[  528.046190][    C1]  ? __switch_to_asm+0x39/0x70
[  528.050961][    C1]  ? __switch_to_asm+0x33/0x70
[  528.055729][    C1]  ? __pfx_kthread+0x10/0x10
[  528.060333][    C1]  ret_from_fork_asm+0x1a/0x30
[  528.065124][    C1]  </TASK>
[  528.068136][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  528.074477][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
[  528.083409][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  528.093461][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[  528.099188][    C1] Code: 5e 93 b4 f5 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 93 a0 0c 00 f3 0f 1e fa fb f4 <e9> 33 93 b4 f5 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[  528.118792][    C1] RSP: 0018:ffffc90000197de0 EFLAGS: 000002c6
[  528.124865][    C1] RAX: dc6940a821a84500 RBX: ffffffff81978eba RCX: dc6940a821a84500
[  528.132836][    C1] RDX: 0000000000000001 RSI: ffffffff8d792222 RDI: ffffffff8bc08360
[  528.140802][    C1] RBP: ffffc90000197f10 R08: ffff8880b87336db R09: 1ffff110170e66db
[  528.148771][    C1] R10: dffffc0000000000 R11: ffffed10170e66dc R12: ffffffff8f821e70
[  528.156736][    C1] R13: 1ffff110038d0b70 R14: 0000000000000001 R15: 0000000000000001
[  528.164706][    C1] FS:  0000000000000000(0000) GS:ffff888125f35000(0000) knlGS:0000000000000000
[  528.173635][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  528.180225][    C1] CR2: 000000110c35bf25 CR3: 0000000078d9f000 CR4: 0000000000350ef0
[  528.188193][    C1] Call Trace:
[  528.191463][    C1]  <TASK>
[  528.194384][    C1]  default_idle+0x13/0x20
[  528.198720][    C1]  default_idle_call+0x73/0xb0
[  528.203486][    C1]  do_idle+0x1ea/0x520
[  528.207557][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  528.213192][    C1]  ? irqentry_exit+0x5ba/0x660
[  528.218050][    C1]  ? __pfx_do_idle+0x10/0x10
[  528.222658][    C1]  cpu_startup_entry+0x44/0x60
[  528.227425][    C1]  start_secondary+0x101/0x110
[  528.232204][    C1]  common_startup_64+0x13e/0x147
[  528.237167][    C1]  </TASK>