Warning: Permanently added '[localhost]:45278' (ECDSA) to the list of known hosts.
2021/05/07 23:30:47 fuzzer started
2021/05/07 23:30:48 dialing manager at localhost:34299
2021/05/07 23:30:53 syscalls: 3639
2021/05/07 23:30:53 code coverage: enabled
2021/05/07 23:30:53 comparison tracing: enabled
2021/05/07 23:30:53 extra coverage: enabled
2021/05/07 23:30:53 setuid sandbox: enabled
2021/05/07 23:30:53 namespace sandbox: enabled
2021/05/07 23:30:53 Android sandbox: /sys/fs/selinux/policy does not exist
2021/05/07 23:30:53 fault injection: enabled
2021/05/07 23:30:53 leak checking: CONFIG_DEBUG_KMEMLEAK is not enabled
2021/05/07 23:30:53 net packet injection: enabled
2021/05/07 23:30:53 net device setup: enabled
2021/05/07 23:30:53 concurrency sanitizer: /sys/kernel/debug/kcsan does not exist
2021/05/07 23:30:53 devlink PCI setup: PCI device 0000:00:10.0 is not available
2021/05/07 23:30:53 USB emulation: enabled
2021/05/07 23:30:53 hci packet injection: enabled
2021/05/07 23:30:53 wifi device emulation: enabled
2021/05/07 23:30:53 802.15.4 emulation: enabled
2021/05/07 23:30:53 fetching corpus: 0, signal 0/2000 (executing program)
2021/05/07 23:30:53 fetching corpus: 50, signal 40184/43847 (executing program)
2021/05/07 23:30:53 fetching corpus: 100, signal 61923/67129 (executing program)
2021/05/07 23:30:53 fetching corpus: 150, signal 92371/98767 (executing program)
2021/05/07 23:30:54 fetching corpus: 200, signal 114936/122457 (executing program)
2021/05/07 23:30:54 fetching corpus: 250, signal 125754/134459 (executing program)
2021/05/07 23:30:54 fetching corpus: 300, signal 137373/147233 (executing program)
2021/05/07 23:30:55 fetching corpus: 350, signal 148103/159008 (executing program)
2021/05/07 23:30:55 fetching corpus: 400, signal 157048/169038 (executing program)
2021/05/07 23:30:55 fetching corpus: 450, signal 162270/175411 (executing program)
2021/05/07 23:30:55 fetching corpus: 500, signal 167046/181274 (executing program)
2021/05/07 23:30:56 fetching corpus: 550, signal 176909/191992 (executing program)
2021/05/07 23:30:56 fetching corpus: 600, signal 183686/199676 (executing program)
2021/05/07 23:30:56 fetching corpus: 650, signal 189006/205898 (executing program)
2021/05/07 23:30:56 fetching corpus: 700, signal 195721/213403 (executing program)
2021/05/07 23:30:56 fetching corpus: 750, signal 201311/219849 (executing program)
2021/05/07 23:30:57 fetching corpus: 800, signal 205572/224992 (executing program)
2021/05/07 23:30:57 fetching corpus: 850, signal 209549/229856 (executing program)
2021/05/07 23:30:57 fetching corpus: 900, signal 213361/234527 (executing program)
2021/05/07 23:30:58 fetching corpus: 950, signal 218066/239955 (executing program)
2021/05/07 23:30:58 fetching corpus: 1000, signal 222013/244660 (executing program)
2021/05/07 23:30:58 fetching corpus: 1050, signal 225899/249192 (executing program)
2021/05/07 23:30:58 fetching corpus: 1100, signal 228847/252906 (executing program)
2021/05/07 23:30:58 fetching corpus: 1150, signal 231390/256267 (executing program)
2021/05/07 23:30:59 fetching corpus: 1200, signal 233151/258855 (executing program)
2021/05/07 23:30:59 fetching corpus: 1250, signal 237509/263737 (executing program)
2021/05/07 23:30:59 fetching corpus: 1300, signal 241403/268207 (executing program)
2021/05/07 23:31:00 fetching corpus: 1350, signal 243848/271350 (executing program)
2021/05/07 23:31:00 fetching corpus: 1400, signal 246294/274472 (executing program)
syzkaller login: [  108.066469][ T3374] ieee802154 phy0 wpan0: encryption failed: -22
[  108.076748][ T3374] ieee802154 phy1 wpan1: encryption failed: -22
2021/05/07 23:31:00 fetching corpus: 1450, signal 249141/277923 (executing program)
2021/05/07 23:31:00 fetching corpus: 1500, signal 251317/280758 (executing program)
2021/05/07 23:31:00 fetching corpus: 1550, signal 253953/283980 (executing program)
2021/05/07 23:31:01 fetching corpus: 1600, signal 258060/288479 (executing program)
2021/05/07 23:31:01 fetching corpus: 1650, signal 262191/292978 (executing program)
2021/05/07 23:31:01 fetching corpus: 1700, signal 264879/296191 (executing program)
2021/05/07 23:31:01 fetching corpus: 1750, signal 267489/299269 (executing program)
2021/05/07 23:31:02 fetching corpus: 1800, signal 272082/304107 (executing program)
2021/05/07 23:31:02 fetching corpus: 1850, signal 274024/306604 (executing program)
2021/05/07 23:31:02 fetching corpus: 1900, signal 276305/309358 (executing program)
2021/05/07 23:31:02 fetching corpus: 1950, signal 278617/312125 (executing program)
2021/05/07 23:31:02 fetching corpus: 2000, signal 281312/315205 (executing program)
2021/05/07 23:31:03 fetching corpus: 2050, signal 283693/317991 (executing program)
2021/05/07 23:31:03 fetching corpus: 2100, signal 286058/320742 (executing program)
2021/05/07 23:31:03 fetching corpus: 2150, signal 289454/324385 (executing program)
2021/05/07 23:31:03 fetching corpus: 2200, signal 291939/327224 (executing program)
2021/05/07 23:31:04 fetching corpus: 2250, signal 294411/330008 (executing program)
2021/05/07 23:31:04 fetching corpus: 2300, signal 297198/332968 (executing program)
2021/05/07 23:31:05 fetching corpus: 2350, signal 298833/335018 (executing program)
2021/05/07 23:31:05 fetching corpus: 2400, signal 300763/337347 (executing program)
2021/05/07 23:31:05 fetching corpus: 2450, signal 302138/339175 (executing program)
2021/05/07 23:31:06 fetching corpus: 2500, signal 305115/342241 (executing program)
2021/05/07 23:31:06 fetching corpus: 2550, signal 307860/345155 (executing program)
2021/05/07 23:31:06 fetching corpus: 2600, signal 309947/347504 (executing program)
2021/05/07 23:31:07 fetching corpus: 2650, signal 311157/349181 (executing program)
2021/05/07 23:31:07 fetching corpus: 2700, signal 312820/351215 (executing program)
2021/05/07 23:31:07 fetching corpus: 2750, signal 314345/353072 (executing program)
2021/05/07 23:31:07 fetching corpus: 2800, signal 316471/355397 (executing program)
2021/05/07 23:31:08 fetching corpus: 2850, signal 318026/357252 (executing program)
2021/05/07 23:31:08 fetching corpus: 2900, signal 319544/359087 (executing program)
2021/05/07 23:31:08 fetching corpus: 2950, signal 321076/360903 (executing program)
2021/05/07 23:31:09 fetching corpus: 3000, signal 323634/363470 (executing program)
2021/05/07 23:31:09 fetching corpus: 3050, signal 325263/365362 (executing program)
2021/05/07 23:31:09 fetching corpus: 3100, signal 326592/367003 (executing program)
2021/05/07 23:31:09 fetching corpus: 3150, signal 329510/369854 (executing program)
2021/05/07 23:31:10 fetching corpus: 3200, signal 331495/371965 (executing program)
2021/05/07 23:31:10 fetching corpus: 3250, signal 333493/374010 (executing program)
2021/05/07 23:31:10 fetching corpus: 3300, signal 335665/376209 (executing program)
2021/05/07 23:31:10 fetching corpus: 3350, signal 338938/379128 (executing program)
2021/05/07 23:31:10 fetching corpus: 3400, signal 340265/380662 (executing program)
2021/05/07 23:31:11 fetching corpus: 3450, signal 342379/382769 (executing program)
2021/05/07 23:31:11 fetching corpus: 3500, signal 345223/385397 (executing program)
2021/05/07 23:31:11 fetching corpus: 3550, signal 346720/386995 (executing program)
2021/05/07 23:31:12 fetching corpus: 3600, signal 348562/388856 (executing program)
2021/05/07 23:31:12 fetching corpus: 3650, signal 349995/390402 (executing program)
2021/05/07 23:31:12 fetching corpus: 3700, signal 351453/391958 (executing program)
2021/05/07 23:31:13 fetching corpus: 3750, signal 353277/393753 (executing program)
2021/05/07 23:31:13 fetching corpus: 3800, signal 354280/394967 (executing program)
2021/05/07 23:31:13 fetching corpus: 3850, signal 355253/396153 (executing program)
2021/05/07 23:31:14 fetching corpus: 3900, signal 356194/397301 (executing program)
2021/05/07 23:31:14 fetching corpus: 3950, signal 357948/398925 (executing program)
2021/05/07 23:31:14 fetching corpus: 4000, signal 359599/400582 (executing program)
2021/05/07 23:31:15 fetching corpus: 4050, signal 362073/402729 (executing program)
2021/05/07 23:31:15 fetching corpus: 4100, signal 363039/403836 (executing program)
2021/05/07 23:31:15 fetching corpus: 4150, signal 364350/405186 (executing program)
2021/05/07 23:31:16 fetching corpus: 4200, signal 365263/406303 (executing program)
2021/05/07 23:31:16 fetching corpus: 4250, signal 366964/407875 (executing program)
2021/05/07 23:31:16 fetching corpus: 4300, signal 368494/409302 (executing program)
2021/05/07 23:31:16 fetching corpus: 4350, signal 369616/410467 (executing program)
2021/05/07 23:31:17 fetching corpus: 4400, signal 371119/411897 (executing program)
2021/05/07 23:31:17 fetching corpus: 4450, signal 372488/413224 (executing program)
2021/05/07 23:31:17 fetching corpus: 4500, signal 373754/414481 (executing program)
2021/05/07 23:31:17 fetching corpus: 4550, signal 375253/415861 (executing program)
2021/05/07 23:31:18 fetching corpus: 4600, signal 376684/417200 (executing program)
2021/05/07 23:31:18 fetching corpus: 4650, signal 379196/419168 (executing program)
2021/05/07 23:31:18 fetching corpus: 4700, signal 380651/420456 (executing program)
2021/05/07 23:31:19 fetching corpus: 4750, signal 381896/421617 (executing program)
2021/05/07 23:31:19 fetching corpus: 4800, signal 383456/422957 (executing program)
2021/05/07 23:31:19 fetching corpus: 4850, signal 385898/424836 (executing program)
2021/05/07 23:31:20 fetching corpus: 4900, signal 387592/426187 (executing program)
2021/05/07 23:31:20 fetching corpus: 4950, signal 389333/427620 (executing program)
2021/05/07 23:31:20 fetching corpus: 5000, signal 390451/428689 (executing program)
2021/05/07 23:31:20 fetching corpus: 5050, signal 391919/429883 (executing program)
2021/05/07 23:31:20 fetching corpus: 5100, signal 392928/430843 (executing program)
2021/05/07 23:31:21 fetching corpus: 5150, signal 394166/431952 (executing program)
2021/05/07 23:31:21 fetching corpus: 5200, signal 398091/434518 (executing program)
2021/05/07 23:31:21 fetching corpus: 5250, signal 399568/435686 (executing program)
2021/05/07 23:31:21 fetching corpus: 5300, signal 400899/436781 (executing program)
2021/05/07 23:31:22 fetching corpus: 5350, signal 402202/437789 (executing program)
2021/05/07 23:31:22 fetching corpus: 5400, signal 403162/438611 (executing program)
2021/05/07 23:31:22 fetching corpus: 5450, signal 405217/440048 (executing program)
2021/05/07 23:31:22 fetching corpus: 5500, signal 406112/440845 (executing program)
2021/05/07 23:31:23 fetching corpus: 5550, signal 407892/442119 (executing program)
2021/05/07 23:31:23 fetching corpus: 5600, signal 409105/443045 (executing program)
2021/05/07 23:31:23 fetching corpus: 5650, signal 409778/443710 (executing program)
2021/05/07 23:31:24 fetching corpus: 5700, signal 410884/444531 (executing program)
2021/05/07 23:31:24 fetching corpus: 5750, signal 412434/445657 (executing program)
2021/05/07 23:31:24 fetching corpus: 5800, signal 413985/446727 (executing program)
2021/05/07 23:31:24 fetching corpus: 5850, signal 414940/447477 (executing program)
2021/05/07 23:31:25 fetching corpus: 5900, signal 416101/448364 (executing program)
2021/05/07 23:31:25 fetching corpus: 5950, signal 417110/449136 (executing program)
2021/05/07 23:31:25 fetching corpus: 6000, signal 418129/449895 (executing program)
2021/05/07 23:31:26 fetching corpus: 6050, signal 419026/450568 (executing program)
2021/05/07 23:31:26 fetching corpus: 6100, signal 419784/451186 (executing program)
2021/05/07 23:31:26 fetching corpus: 6150, signal 420689/451897 (executing program)
2021/05/07 23:31:27 fetching corpus: 6200, signal 421371/452480 (executing program)
2021/05/07 23:31:27 fetching corpus: 6250, signal 422530/453271 (executing program)
2021/05/07 23:31:27 fetching corpus: 6300, signal 423514/453978 (executing program)
2021/05/07 23:31:27 fetching corpus: 6350, signal 424505/454711 (executing program)
2021/05/07 23:31:28 fetching corpus: 6400, signal 425475/455423 (executing program)
2021/05/07 23:31:28 fetching corpus: 6450, signal 426640/456192 (executing program)
2021/05/07 23:31:28 fetching corpus: 6500, signal 427304/456730 (executing program)
2021/05/07 23:31:29 fetching corpus: 6550, signal 428128/457324 (executing program)
2021/05/07 23:31:29 fetching corpus: 6600, signal 428882/457880 (executing program)
2021/05/07 23:31:29 fetching corpus: 6650, signal 429745/458489 (executing program)
2021/05/07 23:31:29 fetching corpus: 6700, signal 430714/459161 (executing program)
2021/05/07 23:31:30 fetching corpus: 6750, signal 431541/459704 (executing program)
2021/05/07 23:31:30 fetching corpus: 6800, signal 432264/460244 (executing program)
2021/05/07 23:31:30 fetching corpus: 6850, signal 433335/460903 (executing program)
2021/05/07 23:31:31 fetching corpus: 6900, signal 434540/461616 (executing program)
2021/05/07 23:31:31 fetching corpus: 6950, signal 435391/462162 (executing program)
2021/05/07 23:31:31 fetching corpus: 7000, signal 436494/462822 (executing program)
2021/05/07 23:31:31 fetching corpus: 7050, signal 438297/463768 (executing program)
2021/05/07 23:31:31 fetching corpus: 7100, signal 438988/464239 (executing program)
2021/05/07 23:31:32 fetching corpus: 7150, signal 439923/464789 (executing program)
2021/05/07 23:31:32 fetching corpus: 7200, signal 441245/465493 (executing program)
2021/05/07 23:31:32 fetching corpus: 7250, signal 442085/465990 (executing program)
2021/05/07 23:31:32 fetching corpus: 7300, signal 443165/466577 (executing program)
2021/05/07 23:31:33 fetching corpus: 7350, signal 443941/467090 (executing program)
2021/05/07 23:31:33 fetching corpus: 7400, signal 444617/467473 (executing program)
2021/05/07 23:31:33 fetching corpus: 7450, signal 445783/468095 (executing program)
2021/05/07 23:31:34 fetching corpus: 7500, signal 447349/468841 (executing program)
2021/05/07 23:31:34 fetching corpus: 7550, signal 448167/469286 (executing program)
2021/05/07 23:31:34 fetching corpus: 7600, signal 449096/469762 (executing program)
2021/05/07 23:31:34 fetching corpus: 7650, signal 450592/470410 (executing program)
2021/05/07 23:31:35 fetching corpus: 7700, signal 451398/470830 (executing program)
2021/05/07 23:31:35 fetching corpus: 7750, signal 452595/471420 (executing program)
2021/05/07 23:31:36 fetching corpus: 7800, signal 453302/471797 (executing program)
2021/05/07 23:31:36 fetching corpus: 7850, signal 454298/472286 (executing program)
2021/05/07 23:31:36 fetching corpus: 7900, signal 455661/472863 (executing program)
2021/05/07 23:31:37 fetching corpus: 7950, signal 456161/473149 (executing program)
2021/05/07 23:31:37 fetching corpus: 8000, signal 456889/473509 (executing program)
2021/05/07 23:31:37 fetching corpus: 8050, signal 457829/473898 (executing program)
2021/05/07 23:31:38 fetching corpus: 8100, signal 459071/474417 (executing program)
2021/05/07 23:31:38 fetching corpus: 8150, signal 459923/474798 (executing program)
2021/05/07 23:31:38 fetching corpus: 8200, signal 462010/475566 (executing program)
2021/05/07 23:31:39 fetching corpus: 8250, signal 463328/476055 (executing program)
2021/05/07 23:31:39 fetching corpus: 8300, signal 464459/476468 (executing program)
2021/05/07 23:31:39 fetching corpus: 8350, signal 465586/476895 (executing program)
2021/05/07 23:31:39 fetching corpus: 8400, signal 466235/477156 (executing program)
2021/05/07 23:31:40 fetching corpus: 8450, signal 467392/477558 (executing program)
2021/05/07 23:31:40 fetching corpus: 8500, signal 468219/477901 (executing program)
2021/05/07 23:31:40 fetching corpus: 8550, signal 468965/478157 (executing program)
2021/05/07 23:31:40 fetching corpus: 8600, signal 469511/478389 (executing program)
2021/05/07 23:31:40 fetching corpus: 8650, signal 470104/478588 (executing program)
2021/05/07 23:31:41 fetching corpus: 8700, signal 470720/478797 (executing program)
2021/05/07 23:31:41 fetching corpus: 8750, signal 471899/479177 (executing program)
2021/05/07 23:31:41 fetching corpus: 8800, signal 472817/479462 (executing program)
2021/05/07 23:31:41 fetching corpus: 8850, signal 474709/479965 (executing program)
2021/05/07 23:31:42 fetching corpus: 8900, signal 475459/480210 (executing program)
2021/05/07 23:31:42 fetching corpus: 8950, signal 476078/480393 (executing program)
2021/05/07 23:31:42 fetching corpus: 9000, signal 476912/480629 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480829 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480852 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480868 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480893 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480918 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480933 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480956 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480979 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/480999 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481015 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481026 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481044 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481062 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481082 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481105 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481127 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481149 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481169 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481186 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481207 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481239 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481253 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481266 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481280 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481297 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481315 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481334 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481359 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481375 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481391 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481412 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481434 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481449 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481465 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481483 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481498 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481514 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481528 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481544 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481564 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481586 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481607 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481621 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481642 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481659 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481675 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481703 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481719 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481737 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481749 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481773 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481791 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481808 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481824 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481838 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481861 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481875 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481884 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481907 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481923 (executing program)
2021/05/07 23:31:43 fetching corpus: 9034, signal 477569/481923 (executing program)
2021/05/07 23:31:48 starting 4 fuzzer processes
23:31:49 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@enum={0x7, 0x0, 0x0, 0xd}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000100)=""/203, 0x2c, 0xcb, 0x1}, 0x20)

23:31:49 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

23:31:50 executing program 2:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='huge=within_size'])
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1011fe, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x161842, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r0, 0x0, 0x8080fffffffe)
ftruncate(r1, 0x0)

23:31:50 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x4142, 0x0)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8721)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[], 0xab)
sendfile(r1, r0, 0x0, 0xa198)

[  158.534157][ T8651] IPVS: ftp: loaded support on port[0] = 21
[  158.779070][ T8651] chnl_net:caif_netlink_parms(): no params data found
[  158.788749][ T8652] IPVS: ftp: loaded support on port[0] = 21
[  158.894351][ T8651] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.904558][ T8651] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.916749][ T8651] device bridge_slave_0 entered promiscuous mode
[  158.937673][ T8651] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.954986][ T8651] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.983407][ T8651] device bridge_slave_1 entered promiscuous mode
[  159.033730][ T8651] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.049313][ T8651] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.084393][ T8651] team0: Port device team_slave_0 added
[  159.102673][ T8651] team0: Port device team_slave_1 added
[  159.183778][ T8651] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.201326][ T8651] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.241151][ T8651] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.268670][ T8652] chnl_net:caif_netlink_parms(): no params data found
[  159.288268][ T8651] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.301527][ T8651] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.348162][ T8651] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.408798][ T8651] device hsr_slave_0 entered promiscuous mode
[  159.418233][ T8651] device hsr_slave_1 entered promiscuous mode
[  159.448096][ T8655] IPVS: ftp: loaded support on port[0] = 21
[  159.499446][ T8652] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.508001][ T8652] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.518069][ T8652] device bridge_slave_0 entered promiscuous mode
[  159.547455][ T8652] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.556830][ T8652] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.566917][ T8652] device bridge_slave_1 entered promiscuous mode
[  159.626844][ T8652] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  159.660932][ T8665] IPVS: ftp: loaded support on port[0] = 21
[  159.677610][ T8652] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  159.706764][ T8652] team0: Port device team_slave_0 added
[  159.720102][ T8652] team0: Port device team_slave_1 added
[  159.764955][ T8652] batman_adv: batadv0: Adding interface: batadv_slave_0
[  159.773517][ T8652] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.805347][ T8652] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  159.841548][ T8652] batman_adv: batadv0: Adding interface: batadv_slave_1
[  159.849941][ T8652] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  159.885470][ T8652] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  159.987414][ T8652] device hsr_slave_0 entered promiscuous mode
[  159.998295][ T8652] device hsr_slave_1 entered promiscuous mode
[  160.007491][ T8652] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  160.023541][ T8652] Cannot create hsr debugfs directory
[  160.035254][ T8655] chnl_net:caif_netlink_parms(): no params data found
[  160.055453][ T8651] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  160.079335][ T8651] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  160.095542][ T8651] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  160.138771][ T8651] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  160.324583][ T8655] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.334202][ T8655] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.344258][ T8655] device bridge_slave_0 entered promiscuous mode
[  160.357635][ T8655] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.375578][ T8655] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.387763][ T8655] device bridge_slave_1 entered promiscuous mode
[  160.397425][ T8665] chnl_net:caif_netlink_parms(): no params data found
[  160.483938][ T8655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  160.524513][ T8655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  160.549723][ T4994] Bluetooth: hci0: command 0x0409 tx timeout
[  160.596410][ T8665] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.606491][ T8665] bridge0: port 1(bridge_slave_0) entered disabled state
[  160.615318][ T8665] device bridge_slave_0 entered promiscuous mode
[  160.637038][ T8655] team0: Port device team_slave_0 added
[  160.646078][ T8665] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.655199][ T8665] bridge0: port 2(bridge_slave_1) entered disabled state
[  160.666500][ T8665] device bridge_slave_1 entered promiscuous mode
[  160.686698][ T8655] team0: Port device team_slave_1 added
[  160.711202][ T8665] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  160.730493][ T8665] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  160.770707][ T8655] batman_adv: batadv0: Adding interface: batadv_slave_0
[  160.780121][ T8655] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.814322][ T3282] Bluetooth: hci1: command 0x0409 tx timeout
[  160.820243][ T8655] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  160.864996][ T8655] batman_adv: batadv0: Adding interface: batadv_slave_1
[  160.874469][ T8655] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  160.909732][ T8655] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  160.937081][ T8665] team0: Port device team_slave_0 added
[  160.969489][ T8665] team0: Port device team_slave_1 added
[  160.993734][ T8652] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  161.006448][ T8652] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  161.048349][ T8655] device hsr_slave_0 entered promiscuous mode
[  161.057607][ T8655] device hsr_slave_1 entered promiscuous mode
[  161.066236][ T8655] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  161.076190][ T8655] Cannot create hsr debugfs directory
[  161.084787][ T8652] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  161.106855][ T8665] batman_adv: batadv0: Adding interface: batadv_slave_0
[  161.116353][ T8665] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.152709][ T8665] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  161.168416][ T8665] batman_adv: batadv0: Adding interface: batadv_slave_1
[  161.176375][ T8665] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  161.208936][ T8665] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  161.227018][ T8652] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  161.265701][ T8665] device hsr_slave_0 entered promiscuous mode
[  161.277234][ T8665] device hsr_slave_1 entered promiscuous mode
[  161.289793][ T8665] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  161.304149][ T8665] Cannot create hsr debugfs directory
[  161.342537][   T26] Bluetooth: hci2: command 0x0409 tx timeout
[  161.359021][ T8651] 8021q: adding VLAN 0 to HW filter on device bond0
[  161.494524][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  161.506927][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  161.545991][ T8651] 8021q: adding VLAN 0 to HW filter on device team0
[  161.577429][ T9293] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  161.588973][ T9293] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  161.602399][ T9293] bridge0: port 1(bridge_slave_0) entered blocking state
[  161.612714][ T9293] bridge0: port 1(bridge_slave_0) entered forwarding state
[  161.659997][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  161.671857][   T37] Bluetooth: hci3: command 0x0409 tx timeout
[  161.672766][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  161.694893][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  161.706088][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  161.715942][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  161.736926][   T48] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  161.761527][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  161.793862][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  161.806930][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  161.820726][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  161.842234][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  161.858896][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  161.883032][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  161.898025][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  161.921335][ T8655] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  161.940294][ T8655] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  161.958308][ T8655] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  161.972576][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  161.984463][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  162.000278][ T8655] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  162.026382][ T8651] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  162.067823][ T8652] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.118035][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  162.132397][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  162.162054][ T8651] 8021q: adding VLAN 0 to HW filter on device batadv0
[  162.174064][ T8665] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  162.189553][ T8665] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  162.211041][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  162.227432][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  162.259671][ T8665] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  162.275667][ T8665] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  162.291544][ T8652] 8021q: adding VLAN 0 to HW filter on device team0
[  162.321685][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  162.331863][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  162.369541][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  162.381079][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  162.392740][    T5] bridge0: port 1(bridge_slave_0) entered blocking state
[  162.402476][    T5] bridge0: port 1(bridge_slave_0) entered forwarding state
[  162.416018][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  162.447801][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  162.460853][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  162.475510][ T5073] bridge0: port 2(bridge_slave_1) entered blocking state
[  162.486705][ T5073] bridge0: port 2(bridge_slave_1) entered forwarding state
[  162.516633][ T8651] device veth0_vlan entered promiscuous mode
[  162.536001][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  162.548964][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  162.563404][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  162.580370][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  162.593799][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  162.621987][ T8651] device veth1_vlan entered promiscuous mode
[  162.632344][ T9446] Bluetooth: hci0: command 0x041b tx timeout
[  162.650726][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  162.663998][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  162.684299][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  162.698391][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  162.739051][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  162.757964][ T9373] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  162.773281][ T9373] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  162.786667][ T9373] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  162.815961][ T8655] 8021q: adding VLAN 0 to HW filter on device bond0
[  162.840207][ T9513] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  162.854205][ T9513] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  162.862856][   T26] Bluetooth: hci1: command 0x041b tx timeout
[  162.871108][ T8652] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  162.895380][ T8652] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  162.927319][ T8655] 8021q: adding VLAN 0 to HW filter on device team0
[  162.936844][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  162.979150][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  163.018329][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  163.029815][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  163.060633][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  163.074758][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  163.087773][ T9529] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.098768][ T9529] bridge0: port 1(bridge_slave_0) entered forwarding state
[  163.112505][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  163.126668][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  163.140693][ T9529] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  163.176878][ T8652] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.188872][   T37] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  163.199598][   T37] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  163.220360][ T8651] device veth0_macvtap entered promiscuous mode
[  163.237058][ T8651] device veth1_macvtap entered promiscuous mode
[  163.252264][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  163.273076][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  163.285221][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  163.298449][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  163.311197][    T5] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.319680][    T5] bridge0: port 2(bridge_slave_1) entered forwarding state
[  163.356117][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  163.412124][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  163.430707][ T8651] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.432408][ T9528] Bluetooth: hci2: command 0x041b tx timeout
[  163.455322][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  163.468763][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  163.482728][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  163.496974][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  163.511793][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  163.525522][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  163.539838][ T9446] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  163.560384][ T8665] 8021q: adding VLAN 0 to HW filter on device bond0
[  163.574550][ T8651] batman_adv: batadv0: Interface activated: batadv_slave_1
[  163.609853][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  163.623005][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  163.637242][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  163.652079][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  163.664906][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  163.675258][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  163.685363][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  163.696195][ T9528] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  163.715875][ T8652] device veth0_vlan entered promiscuous mode
[  163.727469][ T8651] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.741301][ T8651] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.754145][ T8651] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.754188][ T9446] Bluetooth: hci3: command 0x041b tx timeout
[  163.782535][ T8651] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.809691][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  163.821691][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  163.840107][ T8652] device veth1_vlan entered promiscuous mode
[  163.857933][ T8655] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  163.869381][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  163.882133][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  163.895102][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  163.905148][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  163.919145][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  163.966457][ T8665] 8021q: adding VLAN 0 to HW filter on device team0
[  164.012634][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  164.025664][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  164.037100][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  164.048996][   T26] bridge0: port 1(bridge_slave_0) entered blocking state
[  164.059177][   T26] bridge0: port 1(bridge_slave_0) entered forwarding state
[  164.071784][ T9373] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  164.125214][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  164.137151][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  164.148167][    T7] bridge0: port 2(bridge_slave_1) entered blocking state
[  164.160970][    T7] bridge0: port 2(bridge_slave_1) entered forwarding state
[  164.170781][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  164.189457][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  164.200227][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  164.214105][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  164.229819][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  164.283342][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  164.298082][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  164.309411][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  164.319559][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  164.341155][ T8652] device veth0_macvtap entered promiscuous mode
[  164.361864][ T8652] device veth1_macvtap entered promiscuous mode
[  164.376300][ T8655] 8021q: adding VLAN 0 to HW filter on device batadv0
[  164.378922][ T9379] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.395605][ T9379] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  164.405063][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  164.414529][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  164.426333][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  164.435432][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  164.445638][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  164.456000][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  164.466394][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  164.476542][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  164.486101][ T9506] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  164.543100][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  164.556466][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  164.572165][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  164.585488][   T26] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  164.617768][ T8652] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  164.633393][ T8652] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.649140][ T8652] batman_adv: batadv0: Interface activated: batadv_slave_0
[  164.662595][ T8665] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  164.673433][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  164.683860][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  164.694862][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  164.709493][ T3282] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  164.711581][   T37] Bluetooth: hci0: command 0x040f tx timeout
[  164.735958][ T8655] device veth0_vlan entered promiscuous mode
[  164.750601][ T8655] device veth1_vlan entered promiscuous mode
[  164.768524][ T8652] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  164.769735][ T9379] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  164.790095][ T8652] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.799712][ T9379] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  164.817063][ T8652] batman_adv: batadv0: Interface activated: batadv_slave_1
[  164.845760][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  164.857844][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  164.871116][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  164.884463][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  164.896579][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  164.921038][ T8652] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.939882][ T8652] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.942965][   T26] Bluetooth: hci1: command 0x040f tx timeout
[  165.002046][ T8652] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.013878][ T8652] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
23:31:57 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@enum={0x7, 0x0, 0x0, 0xd}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000100)=""/203, 0x2c, 0xcb, 0x1}, 0x20)

[  165.076785][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  165.089866][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  165.106144][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  165.123888][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
23:31:57 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@enum={0x7, 0x0, 0x0, 0xd}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000100)=""/203, 0x2c, 0xcb, 0x1}, 0x20)

[  165.153959][ T8655] device veth0_macvtap entered promiscuous mode
[  165.174096][ T8665] 8021q: adding VLAN 0 to HW filter on device batadv0
[  165.190308][ T8655] device veth1_macvtap entered promiscuous mode
23:31:57 executing program 0:
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000440)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x8, [@enum={0x7, 0x0, 0x0, 0xd}]}, {0x0, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0]}}, &(0x7f0000000100)=""/203, 0x2c, 0xcb, 0x1}, 0x20)

[  165.277113][ T8655] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  165.294151][ T8655] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.312487][ T8655] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
23:31:57 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000280)=""/240, 0xf0)

[  165.331832][ T8655] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.347639][ T8655] batman_adv: batadv0: Interface activated: batadv_slave_0
[  165.361785][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  165.372618][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  165.383406][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
23:31:57 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000280)=""/240, 0xf0)

[  165.401200][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  165.416428][ T5073] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  165.477707][ T8655] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  165.497546][ T8655] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.510911][ T3282] Bluetooth: hci2: command 0x040f tx timeout
[  165.515756][ T8655] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  165.540559][ T8655] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  165.562008][ T8655] batman_adv: batadv0: Interface activated: batadv_slave_1
[  165.586534][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  165.600592][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  165.622393][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  165.636219][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  165.654658][ T9379] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.656324][ T8665] device veth0_vlan entered promiscuous mode
[  165.669206][ T9379] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.691542][ T8665] device veth1_vlan entered promiscuous mode
[  165.700842][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  165.713139][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  165.724670][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  165.739081][ T8655] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  165.753844][ T8655] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  165.767930][ T8655] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  165.779166][ T8655] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  165.796026][    T5] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  165.821974][   T37] Bluetooth: hci3: command 0x040f tx timeout
[  165.849669][ T2897] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.860356][ T2897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.887962][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  165.902625][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  165.927027][ T8665] device veth0_macvtap entered promiscuous mode
[  165.953809][ T8665] device veth1_macvtap entered promiscuous mode
[  165.963194][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  165.975418][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  165.986923][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  166.019886][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  166.051983][ T8822] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.067777][ T8822] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.070547][ T8665] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  166.094703][ T8665] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.111133][ T8665] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  166.126695][ T8665] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.140328][ T8665] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3d) already exists on: batadv_slave_0
[  166.156947][ T8665] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.173384][ T8665] batman_adv: batadv0: Interface activated: batadv_slave_0
[  166.213686][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  166.228705][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  166.245152][ T4994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  166.280546][ T8665] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  166.295307][ T8665] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.307796][ T8665] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  166.318918][ T8665] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.329734][ T8665] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_1
[  166.342861][ T8665] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  166.359446][ T8665] batman_adv: batadv0: Interface activated: batadv_slave_1
[  166.376425][ T8665] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  166.388606][ T8665] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  166.401180][ T8665] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  166.414055][ T8665] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  166.427269][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  166.438653][    T8] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  166.452241][ T2897] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.466494][ T2897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.502175][ T9513] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
23:31:58 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000280)=""/240, 0xf0)

[  166.596100][ T2897] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.610270][ T2897] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.635574][   T37] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  166.687623][ T2897] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  166.710798][ T2897] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  166.729017][   T37] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  166.782329][   T37] Bluetooth: hci0: command 0x0419 tx timeout
23:31:59 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

[  166.830049][ T9660] loop3: detected capacity change from 0 to 4096
[  166.869106][ T9660] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  166.891117][   T50] audit: type=1800 audit(1620430319.163:2): pid=9660 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="loop3" ino=17 res=0 errno=0
[  166.932533][   T50] audit: type=1804 audit(1620430319.193:3): pid=9660 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/syzkaller-testdir896442121/syzkaller.rLvC4y/0/file0/file0" dev="loop3" ino=17 res=1 errno=0
[  166.969016][   T50] audit: type=1804 audit(1620430319.193:4): pid=9660 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/syzkaller-testdir896442121/syzkaller.rLvC4y/0/file0/file0" dev="loop3" ino=17 res=1 errno=0
[  167.034603][   T37] Bluetooth: hci1: command 0x0419 tx timeout
[  167.094391][   T50] audit: type=1800 audit(1620430319.373:5): pid=9678 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="loop3" ino=17 res=0 errno=0
[  167.123720][   T50] audit: type=1804 audit(1620430319.373:6): pid=9660 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/syzkaller-testdir896442121/syzkaller.rLvC4y/0/file0/file0" dev="loop3" ino=17 res=1 errno=0
[  167.152541][   T50] audit: type=1804 audit(1620430319.373:7): pid=9678 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.3" name="/syzkaller-testdir896442121/syzkaller.rLvC4y/0/file0/file0" dev="loop3" ino=17 res=1 errno=0
[  167.165092][ T9660] syz-executor.3 (9660) used greatest stack depth: 22984 bytes left
23:31:59 executing program 0:
mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000080)='configfs\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
r0 = open(&(0x7f0000000180)='./file0\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000000280)=""/240, 0xf0)

23:31:59 executing program 2:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='huge=within_size'])
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1011fe, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x161842, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r0, 0x0, 0x8080fffffffe)
ftruncate(r1, 0x0)

23:31:59 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

23:31:59 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x4142, 0x0)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8721)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[], 0xab)
sendfile(r1, r0, 0x0, 0xa198)

[  167.247909][    C0] hrtimer: interrupt took 52823 ns
23:31:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x4142, 0x0)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8721)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[], 0xab)
sendfile(r1, r0, 0x0, 0xa198)

[  167.325267][ T9697] loop0: detected capacity change from 0 to 4096
[  167.345579][ T9697] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
23:31:59 executing program 1:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

[  167.390209][   T50] audit: type=1800 audit(1620430319.663:8): pid=9697 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file0" dev="loop0" ino=17 res=0 errno=0
[  167.416767][ T9707] loop3: detected capacity change from 0 to 4096
[  167.435963][   T50] audit: type=1804 audit(1620430319.713:9): pid=9697 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=open_writers comm="syz-executor.0" name="/syzkaller-testdir369811777/syzkaller.EDHWec/8/file0/file0" dev="loop0" ino=17 res=1 errno=0
[  167.437511][ T9707] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
23:31:59 executing program 2:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='huge=within_size'])
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1011fe, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x161842, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r0, 0x0, 0x8080fffffffe)
ftruncate(r1, 0x0)

[  167.474398][   T50] audit: type=1804 audit(1620430319.743:10): pid=9697 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.0" name="/syzkaller-testdir369811777/syzkaller.EDHWec/8/file0/file0" dev="loop0" ino=17 res=1 errno=0
[  167.519780][   T50] audit: type=1800 audit(1620430319.793:11): pid=9707 uid=0 auid=4294967295 ses=4294967295 subj==unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="loop3" ino=17 res=0 errno=0
[  167.582284][ T3282] Bluetooth: hci2: command 0x0419 tx timeout
23:31:59 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x4142, 0x0)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8721)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[], 0xab)
sendfile(r1, r0, 0x0, 0xa198)

23:31:59 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='huge=within_size'])
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1011fe, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x161842, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r0, 0x0, 0x8080fffffffe)
ftruncate(r1, 0x0)

23:31:59 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x4142, 0x0)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8721)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[], 0xab)
sendfile(r1, r0, 0x0, 0xa198)

[  167.710947][ T9728] loop0: detected capacity change from 0 to 4096
[  167.741895][ T9728] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
23:32:00 executing program 2:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='huge=within_size'])
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1011fe, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x161842, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r0, 0x0, 0x8080fffffffe)
ftruncate(r1, 0x0)

[  167.829107][ T9737] loop3: detected capacity change from 0 to 4096
[  167.846997][ T9737] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
23:32:00 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='huge=within_size'])
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1011fe, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x161842, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r0, 0x0, 0x8080fffffffe)
ftruncate(r1, 0x0)

[  167.902230][ T9373] Bluetooth: hci3: command 0x0419 tx timeout
23:32:00 executing program 0:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x4142, 0x0)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8721)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[], 0xab)
sendfile(r1, r0, 0x0, 0xa198)

23:32:00 executing program 3:
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x200000, 0x5, &(0x7f0000000200)=[{&(0x7f0000010000)="200000000002000019000000900100000f000000000000000200000006000000000008000080000020000000dbf4655fdbf4655f0100ffff53ef010001000000daf4655f000000000000000001000000000000000b0000000004000008000000d2c200001203", 0x66, 0x400}, {&(0x7f0000010100)="00000000000000000000000082e36724c6f34caa846ed2e527703378010040", 0x1f, 0x4e0}, {&(0x7f0000010400)="02000000030000000400000019000f000300040000000000000000000f002e69", 0x20, 0x1000}, {&(0x7f0000010500)="7f000000ffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffffff", 0x1002, 0x2000}, {&(0x7f0000012600)="ed41000010000000daf4655fdbf4655fdbf4655f00000000000004008000000000000800050000000af301000400000000000000000000000900000010", 0x3d, 0x4400}], 0x0, &(0x7f00000000c0)=ANY=[])
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000000080)='./file0\x00', 0x4142, 0x0)
r0 = open(&(0x7f00000001c0)='./file0\x00', 0x0, 0x0)
r1 = open(&(0x7f0000000000)='./file0\x00', 0x141042, 0x0)
truncate(&(0x7f0000000040)='./file0\x00', 0x8721)
write$binfmt_script(r1, &(0x7f0000000280)=ANY=[], 0xab)
sendfile(r1, r0, 0x0, 0xa198)

[  168.065904][ T9751] loop0: detected capacity change from 0 to 4096
[  168.088578][ T9751] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
23:32:00 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

[  168.202085][ T9758] loop3: detected capacity change from 0 to 4096
[  168.225535][ T9758] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
23:32:00 executing program 1:
syz_mount_image$tmpfs(&(0x7f0000000040), &(0x7f0000000080)='./bus\x00', 0x0, 0x0, 0x0, 0x0, &(0x7f0000000480)=ANY=[@ANYBLOB='huge=within_size'])
perf_event_open(&(0x7f0000000080)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c2}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
chdir(&(0x7f0000000380)='./bus\x00')
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x1011fe, 0x0)
r1 = open(&(0x7f0000000100)='./bus\x00', 0x141042, 0x0)
r2 = open(&(0x7f0000002000)='./bus\x00', 0x161842, 0x0)
ftruncate(r2, 0x2007fff)
sendfile(r0, r0, 0x0, 0x8080fffffffe)
ftruncate(r1, 0x0)

23:32:00 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

23:32:00 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

23:32:00 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

23:32:00 executing program 3:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:00 executing program 2:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

23:32:00 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x2000000, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f00000003c0)='.', 0x0, 0x2233080, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000380)='.', 0x0, 0x5010, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='mountinfo\x00')
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2000006a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0, 0x0)

23:32:01 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x2000000, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f00000003c0)='.', 0x0, 0x2233080, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000380)='.', 0x0, 0x5010, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='mountinfo\x00')
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2000006a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0, 0x0)

23:32:01 executing program 2:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x2000000, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f00000003c0)='.', 0x0, 0x2233080, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000380)='.', 0x0, 0x5010, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='mountinfo\x00')
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2000006a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0, 0x0)

23:32:01 executing program 0:
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1800007, 0x12, r0, 0x0)
preadv(r0, &(0x7f0000000280), 0x1, 0x0, 0x0)
perf_event_open(&(0x7f00000000c0)={0x0, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41c1}, 0x0, 0x0, 0xffffffffffffffff, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})
ioctl$TUNSETGROUP(r1, 0x400454ce, 0xee00)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00'})

23:32:01 executing program 2:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x2000000, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f00000003c0)='.', 0x0, 0x2233080, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000380)='.', 0x0, 0x5010, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='mountinfo\x00')
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2000006a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0, 0x0)

23:32:01 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x2000000, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f00000003c0)='.', 0x0, 0x2233080, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000380)='.', 0x0, 0x5010, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='mountinfo\x00')
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2000006a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0, 0x0)

[  169.514552][ T3374] ieee802154 phy0 wpan0: encryption failed: -22
[  169.522875][ T3374] ieee802154 phy1 wpan1: encryption failed: -22
23:32:03 executing program 3:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:03 executing program 0:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:07 executing program 2:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x2000000, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f00000003c0)='.', 0x0, 0x2233080, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000380)='.', 0x0, 0x5010, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='mountinfo\x00')
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2000006a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0, 0x0)

23:32:30 executing program 1:
mkdir(&(0x7f0000000000)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000001c0)='./file0\x00', &(0x7f0000000100)='ramfs\x00', 0x2000000, 0x0)
mount(0x0, &(0x7f0000000480)='./file0\x00', 0x0, 0x100000, 0x0)
mount(0x0, &(0x7f0000000080)='.', 0x0, 0x0, 0x0)
mount(&(0x7f0000000200)=@filename='./file0\x00', &(0x7f00000003c0)='.', 0x0, 0x2233080, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000380)='.', 0x0, 0x5010, 0x0)
mount(&(0x7f0000000080), &(0x7f0000000140)='.', 0x0, 0x5110, 0x0)
umount2(&(0x7f0000000240)='./file0\x00', 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000180)='mountinfo\x00')
preadv(r0, &(0x7f0000000940)=[{&(0x7f0000000040)=""/42, 0x2000006a}, {&(0x7f00000008c0)=""/106, 0x5b}, {&(0x7f00000007c0)=""/242, 0xf2}, {&(0x7f0000001380)=""/239, 0xfc36}], 0xc7, 0x0, 0x0)

23:32:33 executing program 2:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:33 executing program 1:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:33 executing program 0:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:34 executing program 3:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:35 executing program 2:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:35 executing program 0:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

23:32:37 executing program 2:
madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0xe)
r0 = perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c42}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
clone(0x7a900, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff)
mbind(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x0, &(0x7f0000000080)=0x8, 0xffffffff, 0x5)
madvise(&(0x7f0000388000/0x1000)=nil, 0x1000, 0x65)
r1 = creat(&(0x7f0000000040)='./bus\x00', 0x0)
io_setup(0x202, &(0x7f0000000200)=<r2=>0x0)
io_submit(r2, 0x8, &(0x7f0000000540)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r1, &(0x7f0000000000), 0x1a000000}])
write$binfmt_script(0xffffffffffffffff, &(0x7f0000000580)=ANY=[@ANYBLOB="2321202e2f66696c653020f014d336b06b030400000000000092290a7e4555a763c15ceda08b5e4577124d1a2e21da765cd1ce2356a8f856f0bf8893cc7149595714f0771b65d33e129933dd93f99f03cd6b3e5903e1ddb59220f69e068d2c7faba4084e7a3b0c6c699890e19745ba9a0000dd7ff58b659bbf65c6a2b2e441a0e0c44a3d9abeb7d90f000000000e07c36f0000000000"], 0x191)
close(0xffffffffffffffff)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, 0x0)
write$P9_RLCREATE(0xffffffffffffffff, &(0x7f00000002c0)={0x18, 0xf, 0x2, {{0x1, 0x0, 0x5}, 0x6}}, 0x18)
setsockopt$inet_group_source_req(0xffffffffffffffff, 0x0, 0x2e, &(0x7f0000000580)={0x7f, {{0x2, 0x4e24, @multicast1}}, {{0x2, 0x4e24, @local}}}, 0x108)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000000)='/proc/self/exe\x00', 0x0, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x200000b, 0x12, r3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000380)={0x18, 0x6, &(0x7f0000000180)=@raw=[@btf_id={0x18, 0x5}, @call={0x85, 0x0, 0x0, 0x50}, @jmp={0x5, 0x0, 0x1b, 0x1, 0xb, 0x30, 0xffffffffffffffff}, @map_val={0x18, 0x2, 0x2, 0x0, r0, 0x0, 0x0, 0x0, 0x4}], &(0x7f00000001c0)='syzkaller\x00', 0x5, 0x7e, &(0x7f0000000240)=""/126, 0x41000, 0xa, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000300)={0x3, 0x2}, 0x8, 0x10, &(0x7f0000000340)={0x4, 0xa, 0x0, 0x1}, 0x10}, 0x78)

[  218.246456][ T2897] ================================================================================
[  218.263893][ T2897] UBSAN: shift-out-of-bounds in kernel/sched/fair.c:7712:14
[  218.273141][ T2897] shift exponent 98 is too large for 64-bit type 'long unsigned int'
[  218.287273][ T2897] CPU: 2 PID: 2897 Comm: kworker/u16:1 Not tainted 5.12.0-rc8-syzkaller #0
[  218.301869][ T2897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  218.312614][ T2897] Workqueue:  0x0 (bat_events)
[  218.318167][ T2897] Call Trace:
[  218.321853][ T2897]  dump_stack+0x141/0x1d7
[  218.326752][ T2897]  ubsan_epilogue+0xb/0x5a
[  218.332396][ T2897]  __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181
[  218.340287][ T2897]  ? can_migrate_task+0x1155/0x1680
[  218.346568][ T2897]  load_balance.cold+0x1d/0x2e
[  218.353024][ T2897]  ? find_busiest_group+0x8c0/0x8c0
[  218.359307][ T2897]  ? kvm_sched_clock_read+0x14/0x40
[  218.365156][ T2897]  ? sched_clock+0x2a/0x40
[  218.370109][ T2897]  ? sched_clock_cpu+0x18/0x1f0
[  218.375129][ T2897]  newidle_balance+0x6b3/0xe50
[  218.380204][ T2897]  ? run_rebalance_domains+0x140/0x140
[  218.385755][ T2897]  pick_next_task_fair+0x94/0xce0
[  218.390970][ T2897]  __schedule+0x370/0x21b0
[  218.396093][ T2897]  ? io_schedule_timeout+0x140/0x140
[  218.402698][ T2897]  ? rwlock_bug.part.0+0x90/0x90
[  218.410351][ T2897]  schedule+0xcf/0x270
[  218.416346][ T2897]  worker_thread+0x14c/0x1120
[  218.422609][ T2897]  ? __kthread_parkme+0x13f/0x1e0
[  218.429056][ T2897]  ? process_one_work+0x1600/0x1600
[  218.435239][ T2897]  kthread+0x3b1/0x4a0
[  218.439764][ T2897]  ? __kthread_bind_mask+0xc0/0xc0
[  218.445368][ T2897]  ret_from_fork+0x1f/0x30
[  218.450200][ T2897] ================================================================================
[  218.460540][ T2897] Kernel panic - not syncing: panic_on_warn set ...
[  218.467647][ T2897] CPU: 2 PID: 2897 Comm: kworker/u16:1 Not tainted 5.12.0-rc8-syzkaller #0
[  218.477345][ T2897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  218.487672][ T2897] Workqueue:  0x0 (bat_events)
[  218.493562][ T2897] Call Trace:
[  218.497204][ T2897]  dump_stack+0x141/0x1d7
[  218.502018][ T2897]  panic+0x306/0x73d
[  218.506885][ T2897]  ? __warn_printk+0xf3/0xf3
[  218.512198][ T2897]  ? ret_from_fork+0x1f/0x30
[  218.517191][ T2897]  ? ubsan_epilogue+0x3e/0x5a
[  218.523091][ T2897]  ubsan_epilogue+0x54/0x5a
[  218.528645][ T2897]  __ubsan_handle_shift_out_of_bounds.cold+0xb1/0x181
[  218.537567][ T2897]  ? can_migrate_task+0x1155/0x1680
[  218.545552][ T2897]  load_balance.cold+0x1d/0x2e
[  218.552314][ T2897]  ? find_busiest_group+0x8c0/0x8c0
[  218.559560][ T2897]  ? kvm_sched_clock_read+0x14/0x40
[  218.567636][ T2897]  ? sched_clock+0x2a/0x40
[  218.573672][ T2897]  ? sched_clock_cpu+0x18/0x1f0
[  218.579155][ T2897]  newidle_balance+0x6b3/0xe50
[  218.584934][ T2897]  ? run_rebalance_domains+0x140/0x140
[  218.592224][ T2897]  pick_next_task_fair+0x94/0xce0
[  218.598571][ T2897]  __schedule+0x370/0x21b0
[  218.604300][ T2897]  ? io_schedule_timeout+0x140/0x140
[  218.610464][ T2897]  ? rwlock_bug.part.0+0x90/0x90
[  218.616070][ T2897]  schedule+0xcf/0x270
[  218.620433][ T2897]  worker_thread+0x14c/0x1120
[  218.625672][ T2897]  ? __kthread_parkme+0x13f/0x1e0
[  218.631274][ T2897]  ? process_one_work+0x1600/0x1600
[  218.637007][ T2897]  kthread+0x3b1/0x4a0
[  218.641380][ T2897]  ? __kthread_bind_mask+0xc0/0xc0
[  218.647163][ T2897]  ret_from_fork+0x1f/0x30
[  218.652396][ T2897] 
[  218.652405][ T2897] ======================================================
[  218.652411][ T2897] WARNING: possible circular locking dependency detected
[  218.652417][ T2897] 5.12.0-rc8-syzkaller #0 Not tainted
[  218.652421][ T2897] ------------------------------------------------------
[  218.652427][ T2897] kworker/u16:1/2897 is trying to acquire lock:
[  218.652431][ T2897] ffffffff8bf63498 ((console_sem).lock){-...}-{2:2}, at: down_trylock+0xe/0x60
[  218.652450][ T2897] 
[  218.652453][ T2897] but task is already holding lock:
[  218.652478][ T2897] ffff88802ca35198 (&rq->lock){-.-.}-{2:2}, at: load_balance+0x9f7/0x25d0
[  218.652494][ T2897] 
[  218.652498][ T2897] which lock already depends on the new lock.
[  218.652501][ T2897] 
[  218.652503][ T2897] 
[  218.652507][ T2897] the existing dependency chain (in reverse order) is:
[  218.652511][ T2897] 
[  218.652513][ T2897] -> #2 (&rq->lock){-.-.}-{2:2}:
[  218.652527][ T2897]        _raw_spin_lock+0x2a/0x40
[  218.652531][ T2897]        task_fork_fair+0x74/0x4d0
[  218.652535][ T2897]        sched_fork+0x3fc/0xbd0
[  218.652538][ T2897]        copy_process+0x1ee8/0x71a0
[  218.652542][ T2897]        kernel_clone+0xe7/0xab0
[  218.652546][ T2897]        kernel_thread+0xb5/0xf0
[  218.652550][ T2897]        rest_init+0x23/0x388
[  218.652559][ T2897]        start_kernel+0x475/0x496
[  218.652563][ T2897]        secondary_startup_64_no_verify+0xb0/0xbb
[  218.652568][ T2897] 
[  218.652570][ T2897] -> #1 (&p->pi_lock){-.-.}-{2:2}:
[  218.652584][ T2897]        _raw_spin_lock_irqsave+0x39/0x50
[  218.652588][ T2897]        try_to_wake_up+0x98/0x14a0
[  218.652592][ T2897]        up+0x75/0xb0
[  218.652595][ T2897]        __up_console_sem+0x47/0xc0
[  218.652599][ T2897]        console_unlock+0x58a/0xc80
[  218.652603][ T2897]        vt_ioctl+0x238b/0x27f0
[  218.652606][ T2897]        tty_ioctl+0xed8/0x1710
[  218.652610][ T2897]        __x64_sys_ioctl+0x193/0x200
[  218.652614][ T2897]        do_syscall_64+0x2d/0x70
[  218.652618][ T2897]        entry_SYSCALL_64_after_hwframe+0x44/0xae
[  218.652622][ T2897] 
[  218.652625][ T2897] -> #0 ((console_sem).lock){-...}-{2:2}:
[  218.652639][ T2897]        __lock_acquire+0x2b14/0x54c0
[  218.652643][ T2897]        lock_acquire+0x1ab/0x740
[  218.652647][ T2897]        _raw_spin_lock_irqsave+0x39/0x50
[  218.652651][ T2897]        down_trylock+0xe/0x60
[  218.652655][ T2897]        __down_trylock_console_sem+0x40/0x120
[  218.652660][ T2897]        vprintk_emit+0x178/0x560
[  218.652663][ T2897]        vprintk_func+0x8d/0x1e0
[  218.652667][ T2897]        printk+0xba/0xed
[  218.652671][ T2897]        ubsan_prologue+0x28/0x49
[  218.652675][ T2897]        __ubsan_handle_shift_out_of_bounds.cold+0x14/0x181
[  218.652680][ T2897]        load_balance.cold+0x1d/0x2e
[  218.652684][ T2897]        newidle_balance+0x6b3/0xe50
[  218.652688][ T2897]        pick_next_task_fair+0x94/0xce0
[  218.652692][ T2897]        __schedule+0x370/0x21b0
[  218.652696][ T2897]        schedule+0xcf/0x270
[  218.652707][ T2897]        worker_thread+0x14c/0x1120
[  218.652711][ T2897]        kthread+0x3b1/0x4a0
[  218.652715][ T2897]        ret_from_fork+0x1f/0x30
[  218.652718][ T2897] 
[  218.652721][ T2897] other info that might help us debug this:
[  218.652725][ T2897] 
[  218.652727][ T2897] Chain exists of:
[  218.652730][ T2897]   (console_sem).lock --> &p->pi_lock --> &rq->lock
[  218.652749][ T2897] 
[  218.652752][ T2897]  Possible unsafe locking scenario:
[  218.652755][ T2897] 
[  218.652758][ T2897]        CPU0                    CPU1
[  218.652762][ T2897]        ----                    ----
[  218.652766][ T2897]   lock(&rq->lock);
[  218.652774][ T2897]                                lock(&p->pi_lock);
[  218.652784][ T2897]                                lock(&rq->lock);
[  218.652793][ T2897]   lock((console_sem).lock);
[  218.652801][ T2897] 
[  218.652803][ T2897]  *** DEADLOCK ***
[  218.652806][ T2897] 
[  218.652809][ T2897] 2 locks held by kworker/u16:1/2897:
[  218.652812][ T2897]  #0: ffffffff8bf74360 (rcu_read_lock){....}-{1:2}, at: newidle_balance+0x462/0xe50
[  218.652831][ T2897]  #1: ffff88802ca35198 (&rq->lock){-.-.}-{2:2}, at: load_balance+0x9f7/0x25d0
[  218.652850][ T2897] 
[  218.652852][ T2897] stack backtrace:
[  218.652856][ T2897] CPU: 2 PID: 2897 Comm: kworker/u16:1 Not tainted 5.12.0-rc8-syzkaller #0
[  218.652862][ T2897] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.14.0-2 04/01/2014
[  218.652867][ T2897] Workqueue:  0x0 (bat_events)
[  218.652896][ T2897] Call Trace:
[  218.652899][ T2897]  dump_stack+0x141/0x1d7
[  218.652912][ T2897]  check_noncircular+0x25f/0x2e0
[  218.652916][ T2897]  ? print_circular_bug+0x480/0x480
[  218.652920][ T2897]  ? enable_ptr_key_workfn+0x30/0x30
[  218.652924][ T2897]  ? __sanitizer_cov_trace_const_cmp4+0x1c/0x70
[  218.652928][ T2897]  ? space_used+0x1a3/0x2a0
[  218.652932][ T2897]  ? format_decode+0x230/0xad0
[  218.652936][ T2897]  ? lockdep_lock+0xc6/0x200
[  218.652939][ T2897]  ? call_rcu_zapped+0xb0/0xb0
[  218.652979][ T2897]  __lock_acquire+0x2b14/0x54c0
[  218.652984][ T2897]  ? lockdep_hardirqs_on_prepare+0x400/0x400
[  218.652988][ T2897]  lock_acquire+0x1ab/0x740
[  218.652992][ T2897]  ? down_trylock+0xe/0x60
[  218.653002][ T2897]  ? lock_release+0x720/0x720
[  218.653006][ T2897]  ? vprintk_func+0x8d/0x1e0
[  218.653009][ T2897]  _raw_spin_lock_irqsave+0x39/0x50
[  218.653014][ T2897]  ? down_trylock+0xe/0x60
[  218.653019][ T2897]  down_trylock+0xe/0x60
[  218.653043][ T2897]  __down_trylock_console_sem+0x40/0x120
[  218.653051][ T2897]  vprintk_emit+0x178/0x560
[  218.653057][ T2897]  vprintk_func+0x8d/0x1e0
[  218.653062][ T2897]  printk+0xba/0xed
[  218.653067][ T2897]  ? record_print_text.cold+0x16/0x16
[  218.653072][ T2897]  ? ubsan_prologue+0xd/0x49
[  218.653077][ T2897]  ubsan_prologue+0x28/0x49
[  218.653082][ T2897]  __ubsan_handle_shift_out_of_bounds.cold+0x14/0x181
[  218.653088][ T2897]  ? can_migrate_task+0x1155/0x1680
[  218.653093][ T2897]  load_balance.cold+0x1d/0x2e
[  218.653098][ T2897]  ? find_busiest_group+0x8c0/0x8c0
[  218.653104][ T2897]  ? kvm_sched_clock_read+0x14/0x40
[  218.653109][ T2897]  ? sched_clock+0x2a/0x40
[  218.653114][ T2897]  ? sched_clock_cpu+0x18/0x1f0
[  218.653119][ T2897]  newidle_balance+0x6b3/0xe50
[  218.653124][ T2897]  ? run_rebalance_domains+0x140/0x140
[  218.653129][ T2897]  pick_next_task_fair+0x94/0xce0
[  218.653135][ T2897]  __schedule+0x370/0x21b0
[  218.653140][ T2897]  ? io_schedule_timeout+0x140/0x140
[  218.653146][ T2897]  ? rwlock_bug.part.0+0x90/0x90
[  218.653151][ T2897]  schedule+0xcf/0x270
[  218.653156][ T2897]  worker_thread+0x14c/0x1120
[  218.653161][ T2897]  ? __kthread_parkme+0x13f/0x1e0
[  218.653167][ T2897]  ? process_one_work+0x1600/0x1600
[  218.653172][ T2897]  kthread+0x3b1/0x4a0
[  218.653178][ T2897]  ? __kthread_bind_mask+0xc0/0xc0
[  218.653184][ T2897]  ret_from_fork+0x1f/0x30
[  219.772792][ T2897] Shutting down cpus with NMI
[  220.576458][ T2897] Kernel Offset: disabled
[  220.582368][ T2897] Rebooting in 86400 seconds..

VM DIAGNOSIS:
23:32:51  Registers:
info registers vcpu 0
RAX=0000000000000003 RBX=0000000000000000 RCX=dffffc0000000000 RDX=0000000000000000
RSI=0000000000000003 RDI=ffff88802ca35180 RBP=ffff88802ca35180 RSP=ffffc90000007d08
R8 =0000000000000001 R9 =ffff88802ca35180 R10=ffffed1005946a30 R11=0000000000000000
R12=0000000000000000 R13=ffffed1005946a30 R14=0000000000000001 R15=ffff88802ca35f40
RIP=ffffffff81321531 RFL=00000046 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=1
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802ca00000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000c006991a40 CR3=000000000bc8e000 CR4=00150ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=0000000000000000bfe62e42fefa39ef XMM03=0000ff00000000000000000000000000
XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962
XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 1
RAX=00000000ffffffff RBX=ffff888022a11c40 RCX=1ffffffff1b8ab81 RDX=0000000000000000
RSI=ffffffff8179e4e1 RDI=ffffffff89400190 RBP=ffff888010cf0000 RSP=ffffc900004f8f78
R8 =0000000000000000 R9 =0000000000000000 R10=ffffffff8179e4c8 R11=0000000000000001
R12=0000000000000000 R13=0000000000000082 R14=0000000000000000 R15=0000000000000000
RIP=ffffffff89400196 RFL=00000246 [---Z-P-] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cb00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe000003e000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe000003c000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000c008771000 CR3=000000001bebc000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=0000001c8b41ec06c01d91689935655e XMM01=000000000184f0c00000001c8b41ec06
XMM02=652e29646e616d6d6f632a282e637069 XMM03=00000000000000000000000000000000
XMM04=039ff993dd3399123ed3651b77f01457 XMM05=7f2c8d069ef62092b5dde103593e6bcd
XMM06=9aba4597e19098696c0c3b7a4e08a4ab XMM07=a041e4b2a2c665bf9b658bf57fdd0000
XMM08=8ba0ed5cc163a755457e0a2992000000 XMM09=a85623ced15c76da212e1a4d1277455e
XMM10=651b77f01457594971cc9388bff056f8 XMM11=e103593e6bcd039ff993dd3399123ed3
XMM12=3b7a4e08a4ab7f2c8d069ef62092b5dd XMM13=8bf57fdd00009aba4597e19098696c0c
XMM14=be9a3d4ac4e0a041e4b2a2c665bf9b65 XMM15=00000000006fc3070e000000000fd9b7
info registers vcpu 2
RAX=dffffc0000000060 RBX=00000000000003fd RCX=0000000000000000 RDX=00000000000003fd
RSI=ffffffff8421d4ac RDI=ffffffff900f6620 RBP=ffffffff900f65e0 RSP=ffffc9000ac2f500
R8 =000000000000005a R9 =0000000000000000 R10=ffffffff8421d49d R11=000000000000001f
R12=0000000000000000 R13=fffffbfff201ed0f R14=fffffbfff201ecc6 R15=dffffc0000000000
RIP=ffffffff8421d4d2 RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cc00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe0000079000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000077000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=000000c0069a29d0 CR3=000000001bebc000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001fa0
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000000
XMM02=0000000000000000bfe62e42fefa39ef XMM03=0000ff00000000000000000000000000
XMM04=732f6c61636f6c2f7273752f3d485441 XMM05=622f6c61636f6c2f7273752f3a6e6962
XMM06=73752f3a6e6962732f7273752f3a6e69 XMM07=6e69622f3a6e6962732f3a6e69622f72
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000
info registers vcpu 3
RAX=00000076c087a0d2 RBX=0000000000000000 RCX=00000000000006e0 RDX=0000000000000076
RSI=ffff88802cd1f2c0 RDI=000000000000011f RBP=ffff88802cd1f2c0 RSP=ffffc900005a8978
R8 =000000000000003f R9 =ffffffff8dc52b0f R10=ffffffff8166ecf7 R11=0000000000000000
R12=000000000000011f R13=0000000000000019 R14=ffff88802cd26340 R15=7fffffffffffffff
RIP=ffffffff81304991 RFL=00000003 [------C] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =002b 0000000000000000 ffffffff 00c0f300 DPL=3 DS   [-WA]
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88802cd00000 ffffffff 00c00000
LDT=0000 0000000000000000 00000000 00000000
TR =0040 fffffe00000b4000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe00000b2000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000000009adcefc CR3=00000000627cc000 CR4=00150ee0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
XMM00=00000000000000000000000000000000 XMM01=00000000000000000000000000000002
XMM02=000000f0000000000000000300000000 XMM03=00000000000000000000000000000000
XMM04=00000000000000000000000000000000 XMM05=00000000000000000000000000000000
XMM06=00000000000000000000000000000000 XMM07=00000000000000000000000000000000
XMM08=00000000000000000000000000000000 XMM09=00000000000000000000000000000000
XMM10=00000000000000000000000000000000 XMM11=00000000000000000000000000000000
XMM12=00000000000000000000000000000000 XMM13=00000000000000000000000000000000
XMM14=00000000000000000000000000000000 XMM15=00000000000000000000000000000000