last executing test programs:

2m13.891928145s ago: executing program 1 (id=102):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x18, &(0x7f0000000800)={r1, 0x1, 0x6, @local}, 0x10)
sendmmsg(r2, &(0x7f000000b800)=[{{&(0x7f0000000080)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)="886f9500eae6445b0a9fa20f63d5d121d7c3d209702941a527126dd947f28fdd277a9177362f94", 0x27}, {&(0x7f0000000200)="84efdce2cc1bd7bc4be35bfa439453cf3db1879b8c8d76c14d61691bd80a19b58122a97ceb22b179958584b3339caf29e279e3b9b22c61969ac2d7d682c039195c100060263a060db37bfe7d2fbc8f338c24173b373696bd27efd3db55a5aaaeb1dd5cead3d5caf1d0c6a58f29ed014bfaf27a1bf6bcd29fc25a", 0x7a}], 0x2}}], 0x1, 0x0)

1m51.454607229s ago: executing program 1 (id=102):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x18, &(0x7f0000000800)={r1, 0x1, 0x6, @local}, 0x10)
sendmmsg(r2, &(0x7f000000b800)=[{{&(0x7f0000000080)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)="886f9500eae6445b0a9fa20f63d5d121d7c3d209702941a527126dd947f28fdd277a9177362f94", 0x27}, {&(0x7f0000000200)="84efdce2cc1bd7bc4be35bfa439453cf3db1879b8c8d76c14d61691bd80a19b58122a97ceb22b179958584b3339caf29e279e3b9b22c61969ac2d7d682c039195c100060263a060db37bfe7d2fbc8f338c24173b373696bd27efd3db55a5aaaeb1dd5cead3d5caf1d0c6a58f29ed014bfaf27a1bf6bcd29fc25a", 0x7a}], 0x2}}], 0x1, 0x0)

1m21.336142087s ago: executing program 1 (id=102):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x18, &(0x7f0000000800)={r1, 0x1, 0x6, @local}, 0x10)
sendmmsg(r2, &(0x7f000000b800)=[{{&(0x7f0000000080)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)="886f9500eae6445b0a9fa20f63d5d121d7c3d209702941a527126dd947f28fdd277a9177362f94", 0x27}, {&(0x7f0000000200)="84efdce2cc1bd7bc4be35bfa439453cf3db1879b8c8d76c14d61691bd80a19b58122a97ceb22b179958584b3339caf29e279e3b9b22c61969ac2d7d682c039195c100060263a060db37bfe7d2fbc8f338c24173b373696bd27efd3db55a5aaaeb1dd5cead3d5caf1d0c6a58f29ed014bfaf27a1bf6bcd29fc25a", 0x7a}], 0x2}}], 0x1, 0x0)

1m0.377725177s ago: executing program 1 (id=102):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x18, &(0x7f0000000800)={r1, 0x1, 0x6, @local}, 0x10)
sendmmsg(r2, &(0x7f000000b800)=[{{&(0x7f0000000080)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)="886f9500eae6445b0a9fa20f63d5d121d7c3d209702941a527126dd947f28fdd277a9177362f94", 0x27}, {&(0x7f0000000200)="84efdce2cc1bd7bc4be35bfa439453cf3db1879b8c8d76c14d61691bd80a19b58122a97ceb22b179958584b3339caf29e279e3b9b22c61969ac2d7d682c039195c100060263a060db37bfe7d2fbc8f338c24173b373696bd27efd3db55a5aaaeb1dd5cead3d5caf1d0c6a58f29ed014bfaf27a1bf6bcd29fc25a", 0x7a}], 0x2}}], 0x1, 0x0)

41.848938989s ago: executing program 1 (id=102):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x18, &(0x7f0000000800)={r1, 0x1, 0x6, @local}, 0x10)
sendmmsg(r2, &(0x7f000000b800)=[{{&(0x7f0000000080)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)="886f9500eae6445b0a9fa20f63d5d121d7c3d209702941a527126dd947f28fdd277a9177362f94", 0x27}, {&(0x7f0000000200)="84efdce2cc1bd7bc4be35bfa439453cf3db1879b8c8d76c14d61691bd80a19b58122a97ceb22b179958584b3339caf29e279e3b9b22c61969ac2d7d682c039195c100060263a060db37bfe7d2fbc8f338c24173b373696bd27efd3db55a5aaaeb1dd5cead3d5caf1d0c6a58f29ed014bfaf27a1bf6bcd29fc25a", 0x7a}], 0x2}}], 0x1, 0x0)

22.143687793s ago: executing program 1 (id=102):
r0 = socket$phonet(0x23, 0x2, 0x1)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f00000001c0)={'ip6gretap0\x00', <r1=>0x0})
r2 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r2, 0x107, 0x18, &(0x7f0000000800)={r1, 0x1, 0x6, @local}, 0x10)
sendmmsg(r2, &(0x7f000000b800)=[{{&(0x7f0000000080)=@ieee802154={0x24, @long}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)="886f9500eae6445b0a9fa20f63d5d121d7c3d209702941a527126dd947f28fdd277a9177362f94", 0x27}, {&(0x7f0000000200)="84efdce2cc1bd7bc4be35bfa439453cf3db1879b8c8d76c14d61691bd80a19b58122a97ceb22b179958584b3339caf29e279e3b9b22c61969ac2d7d682c039195c100060263a060db37bfe7d2fbc8f338c24173b373696bd27efd3db55a5aaaeb1dd5cead3d5caf1d0c6a58f29ed014bfaf27a1bf6bcd29fc25a", 0x7a}], 0x2}}], 0x1, 0x0)

12.399452014s ago: executing program 3 (id=960):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0xfff, 0x7}, 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000080), &(0x7f0000000280)}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000004000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc)

12.346834602s ago: executing program 3 (id=961):
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
mmap(&(0x7f0000002000/0x3000)=nil, 0x3000, 0x0, 0x12, r2, 0x0)
sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="8ec1cc54649640be1983f79c5bfe88cd6a6afd5570ab59578db363f4892559f334d436138406b699de69db13fd73", 0x2e}, {&(0x7f0000000640)="b0fef28adda655a00a8ce0bb7d500200000000000000001abe0a88f67472c3cd975c9884ae01084df2b7f556e2a043b74efe85a30267fae395b1f4e8a051934cefd1a1f19f89180ab1fe20a7e4088d8a3f4304feafe592c403cb5d1991683fcbda9a1404998bc92cb28946223165c906e2bed23adce79d37148e79c6b485db91083de9905e7de49fd8837cf3792d697bf8b29b9c6e8daee80e86778a4afc150a6a77e42f2da6286986dc4e452426e6459d4a30ad36b1380793a6e21acbc4749413f629ba4de97b84ed9acc06a3d29ef68cd6d32fc4398429c472891f8e244d27a4b6241083efd4ecd2c92d91399de6ddcafbcd07000000000000009d1b7d60c898340102268c474bf8b7db7464a0e1dea749ec27c8787b34cae8a9c676907ec017733c1ece82e11b99a4bdc74c8d9d1871be6af0fef62b529af9ab1f37d60a2f967d715b301856b033a7e7dac74416447a090f7b6693bbd2deaf5eebbfc9adef009bafcf57774d0c993f5524409672b4f35409a8720dc2b78f83198096c60126f911fd42c29cd6fa311e2c8daef3927ccdc90436b2b6ee4c79ff80f6938e0560d9d8e925bdc4fffffffffffffff8d9b7977fff6c4293065de2ff26a041e67954f68871d010d377f9ba1ee447b5bfd5b9d3711b3ea5c6361a97d4d46b8b406091be9433f950613083805aa4ae31e3aef57eb8d299548df54dffb7c4af7f00a869c6bdbc6c2bd1a83262981638ae365b2611d2b50c5f000000d620e2a52db4283dc928036d3ccb76effc5135748a38555b783f5631069aaaaaf516057dc27fa92ff105179700"/594, 0x252}, {&(0x7f0000000f00)="1b3b351333f3a3b13679144b7cd8a483d6dbc75ded5829aceff163e19496e9ba6875841285b877fac97b183e950017761d4433127df4ffeab47d3545970ac2571b8775e05a2ec30dbc2154f17ddb1de319411d093471a30c77ca0d06", 0x5c}], 0x3}, 0x0)
recvmsg(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000000)=""/233, 0xe9}], 0x1, &(0x7f0000001d00)=""/4080, 0xff0}, 0x0)
close(r0)

12.178614375s ago: executing program 3 (id=962):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001880)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'netdevsim0\x00'}]}, @ETHTOOL_A_COALESCE_TX_MAX_FRAMES={0x8, 0x7, 0x3ff}]}, 0x34}}, 0x0)

11.296169451s ago: executing program 3 (id=964):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000140)='./file1\x00', 0x1008400, &(0x7f0000000080)=ANY=[@ANYRES16=0x0, @ANYRES64], 0x86, 0x680, &(0x7f0000000340)="$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")
socket$inet(0x2, 0x0, 0x0)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f00000001c0)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
move_mount(0xffffffffffffff9c, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000240)='./file0\x00', 0x0)

10.971489892s ago: executing program 3 (id=969):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = openat$audio1(0xffffffffffffff9c, &(0x7f0000000080), 0x129202, 0x0)
ioctl$SNDCTL_DSP_SETFRAGMENT(r1, 0xc004500a, &(0x7f0000000040))
ioctl$SNDCTL_DSP_SETFMT(r1, 0xc0045005, &(0x7f00000000c0)=0x20)
write$binfmt_elf32(r1, 0x0, 0x4cd)
dup3(r0, r1, 0x0)

10.731817932s ago: executing program 3 (id=973):
syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0x0, &(0x7f0000000100), 0x1, 0x77b, &(0x7f0000000340)="$eJzs3M9rXFUUAODzXjNNf6Qmggt1IUIFC6WTpNm0K+NG3BQKBbc1JC8h5CVTMpPaxEJb10JtNgqCKC51p1uh1D/AjUhBwb0gWqNQ3Iy8yWTaNJk4aZNMSb8Ppu/eO/fOOWfe43YG8iaAZ9arxT9JRF9EnI+I/uZ4GhEHG61DEddX563cuzpePJKo1y/8kRTLYqXe33qtpHk8Go0l8WJE3ClFnPxgY9zq4tLMWJ5n883+YG320mB1cenU9OzYVDaVzQ2PnB06MzJyZmhkx2p97Z2zh2/98Nby8k/f1m6+0nMqidFG3dGsbccCPWT1PSnF6P36uvG53QjWRUkHc3r2IA8AALZWfM4/0PxsVor+OOBTGgAAAOw79d46AAAAsO8l0e0MAAAAgN219ncAa/f27tZ9sO38/mZEDGwWv6dxD3HEoShFxJGVZN2dCcnqMngi129ExO3RTa6/pHn9Pb6hR/qd3CPN3rpd7D+jESv/RMS685+29p/YZP/pWfvthCfUfv97EP9Am/0v6fCK+u6zl0pt49+IeLlns/hJK37SJv67HdZ4c/nDW+2eq38R8fqm//+0amucgC1+H2Jwcjrf8o248++Ju1vVf2RD/CRpxE+2rv9Sh/W/v/LXTLu9pIh/4vjW5381fu+6dcU18VEzjzQibjWPRX/5kRjHZ3/+fmPk5Ppa/Ik27//m5//t1urPO6z/1697r3Q4FQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABrSiOiLJC232mlaLkccjYgX4kiaV6q1k5OVhbmJ4rmIgSilk9N5NhQR/av9pOgPf3MsBh7qn260H/RHIuL5Xw43Ypam86w8Xsknul08AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALUcjoi+StBwRaUT83Z+m5XK3swIAAAB23EC3EwAAAAB2ne//AAAAsP897vf/ZIfzAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPa18+fOFY/6yr2r40V/4vLiwkzl8qmJrDpTnl0YL49X5i+VpyqVqTwrj1dm/+/10ogYPhsLVwZrWbU2WF1cujhbWZirXZyeHZvKLmalPakKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA7eprPJK0HBFplFrjxyJiIErJ5HSeDUXEcxFxt7/UW/SHu5oxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAu6G6uDQzlufZ/FPdiKcjjS40voot50QS8bSk+ow3Iraz6lrs6In7cefr6vbOBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAN1QXl2bG8jybr3Y7EwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALor/S2JiMNtnj2Y3O9vHCPivU8vfHxlrFabHy7G/2yN1z5pjp9+aOG1PUkeAAAAnhVvbGdy43t6T/M4vHtJAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+091cWlmLM+z+SdslCKi3Zy4sTHulxPdqBYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANiO/wIAAP//5kDCow==")
sendmsg$ETHTOOL_MSG_RINGS_GET(0xffffffffffffffff, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="0a012a20", @ANYRES16=0x0, @ANYBLOB="e60f000901008b00005d33cdc96be58bd5b3274e000f", @ANYRES32=0x0, @ANYBLOB="0c001a8048000300"], 0x2c}}, 0x0)
r0 = socket(0x10, 0x3, 0x0)
write(r0, &(0x7f0000000240)="aefc00001a0025f00385bc04fef7681d020b49ff708800008003280008021000ac0a1410bc71176a36ede498534108e58342fa94a235a2a441f9", 0xfcae)

2.440240128s ago: executing program 0 (id=1027):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0x13, &(0x7f0000000340)=@framed={{}, [@printk={@u}, @printk={@s, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x71}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x14, 0x14, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

2.422386724s ago: executing program 4 (id=1029):
r0 = open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0)
r1 = socket(0x1, 0x2, 0x0)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r2=>0x0}, &(0x7f0000cab000)=0xc)
setresuid(0x0, r2, 0x0)
fcntl$setlease(r0, 0x400, 0x2)

2.350819822s ago: executing program 4 (id=1030):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0))
timer_create(0x0, 0x0, &(0x7f00009b1ffc))
timer_getoverrun(0x0)

2.327328371s ago: executing program 0 (id=1031):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.io_merged_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000200), 0xfffffd9d)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000000c0)='westwood\x00', 0x9)
sendfile(r0, r1, 0x0, 0x40)

2.257932201s ago: executing program 4 (id=1033):
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00', <r1=>0x0})
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x4457, 0x4)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$packet(r0, &(0x7f00000000c0)="6a767354b3abc74d83a261d7d3b5", 0xe, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=""/64, 0x40}}], 0x2, 0x2000, 0x0)

2.19012507s ago: executing program 4 (id=1034):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f0000000080)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000077c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x207601a}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000380)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
getdents(r2, &(0x7f0000000100)=""/252, 0xfc)
syz_fuse_handle_req(r0, &(0x7f0000002140)="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", 0x2000, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000a40)={0xb0, 0x0, 0x0, [{{0x5}, {0x0, 0x0, 0x1, 0x0, '.'}}]}, 0x0, 0x0})

1.990912869s ago: executing program 4 (id=1035):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000290000/0x4000)=nil)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mincore(&(0x7f0000996000/0x2000)=nil, 0x2000, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
munlockall()
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)

1.030680197s ago: executing program 0 (id=1037):
syz_usb_connect(0x0, 0x24, &(0x7f0000000080)=ANY=[@ANYBLOB="12010000994bd740f60d5600b5a0000000010902120001000000000904"], 0x0)
timer_create(0x6, &(0x7f0000000000)={0x0, 0x3a, 0x1, @tid=0xffffffffffffffff}, &(0x7f0000000040)=<r0=>0x0)
timer_getoverrun(r0)
clock_gettime(0x0, &(0x7f00000000c0)={<r1=>0x0, <r2=>0x0})
timer_settime(r0, 0x0, &(0x7f0000000100)={{0x77359400}, {r1, r2+60000000}}, &(0x7f0000000140))
syz_open_dev$char_usb(0xc, 0xb4, 0xfffffffffffffff9)
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000240)={<r3=>0xffffffffffffffff})
close(r3)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0xb, 0x7, 0x10001, 0x8, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
close(r3)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x10001, 0x9, 0x1}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r5, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r6, 0x0, 0x0}, 0x10)

999.523783ms ago: executing program 4 (id=1038):
r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
syz_open_dev$ptys(0xc, 0x3, 0x0)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
syz_usb_connect$uac1(0x0, 0x71, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x8, 0x1d6b, 0x101, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x5f, 0x3, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x0, 0x1, 0x1, 0x0, 0x0, {{0xa, 0x24, 0x1, 0xbd19}}}, {}, {0x9, 0x4, 0x1, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x1, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7}}}}, {}, {0x9, 0x4, 0x2, 0x1, 0x1, 0x1, 0x2, 0x0, 0x0, {}, {{0x9, 0x5, 0x82, 0x9, 0x0, 0x0, 0x0, 0x0, {0x7, 0x25, 0x1, 0x80, 0x81}}}}}}}]}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz1\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'syzkaller0\x00'}}]}, 0x38}}, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

804.168687ms ago: executing program 2 (id=1041):
mprotect(&(0x7f0000001000/0x2000)=nil, 0x2000, 0x0)
r0 = gettid()
sigaltstack(&(0x7f0000000080)={&(0x7f0000002500)=""/4092, 0x0, 0xffc}, 0x0)
rt_sigqueueinfo(r0, 0x21, &(0x7f0000000000))

770.216888ms ago: executing program 2 (id=1042):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000680)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000140)=@RTM_DELMDB={0x38, 0x55, 0x93d, 0x0, 0x0, {}, [@MDBA_SET_ENTRY={0x20, 0x1, {r2, 0x0, 0x0, 0x0, {@ip4=@local}}}]}, 0x38}}, 0x0)

376.839658ms ago: executing program 2 (id=1043):
r0 = socket(0x11, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000580)={'veth1_virt_wifi\x00', <r1=>0x0})
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000000)=0x4457, 0x4)
bind$packet(r0, &(0x7f0000000080)={0x11, 0x0, r1, 0x1, 0x0, 0x6, @link_local}, 0x14)
sendto$packet(r0, &(0x7f00000000c0)="6a767354b3abc74d83a261d7d3b5", 0xe, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000440)=""/64, 0x40}}], 0x2, 0x2000, 0x0)

239.4112ms ago: executing program 0 (id=1044):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
setsockopt$bt_l2cap_L2CAP_OPTIONS(r0, 0x6, 0x1, &(0x7f00000000c0)={0x0, 0xbbac, 0x0, 0x4}, 0xc)
bind$bt_l2cap(r0, &(0x7f0000000000), 0xe)
listen(r0, 0x0)

213.326907ms ago: executing program 2 (id=1045):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0xffffff2d, &(0x7f0000000080)=[{&(0x7f0000000040)="e03f03003d000b08d25a802b8c7494f90424fc600b0000000a000400030082c137153e3719ac018000f01700d1bd", 0x33fe0}], 0x1}, 0x0)

185.351743ms ago: executing program 0 (id=1046):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000028002702000000000000000008000002040003000c0001"], 0x2c}}, 0x0)

87.283218ms ago: executing program 2 (id=1047):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$batadv(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r1, 0x8933, &(0x7f0000000080)={'batadv0\x00', <r3=>0x0})
sendmsg$BATADV_CMD_GET_VLAN(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000540)={0x24, r2, 0x1, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r3}, @BATADV_ATTR_VLANID={0x6, 0x28, 0x2}]}, 0x24}}, 0x0)

798.201µs ago: executing program 0 (id=1048):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
mremap(&(0x7f00005ab000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000290000/0x4000)=nil)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
mincore(&(0x7f0000996000/0x2000)=nil, 0x2000, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
munlockall()
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x0, 0x50032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x8)
timerfd_settime(0xffffffffffffffff, 0x0, 0x0, 0x0)
openat$adsp1(0xffffffffffffff9c, 0x0, 0x0, 0x0)

0s ago: executing program 2 (id=1049):
r0 = socket$inet(0x2, 0x4000000805, 0x0)
r1 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r1, 0xc0045006, &(0x7f0000000180)=0x6)
r2 = syz_io_uring_setup(0x5aed, &(0x7f0000000080)={0x0, 0x3, 0x10, 0x100, 0x80000000}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
syz_io_uring_submit(r3, r4, &(0x7f00000001c0)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3})
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r5, &(0x7f0000000240), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r5, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r6 = socket(0x1d, 0x3, 0x1)
getsockopt$kcm_KCM_RECV_DISABLE(r6, 0x65, 0x8, 0x0, 0x20000000)
r7 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000100)='net/ip_mr_cache\x00')
preadv(r7, &(0x7f00000038c0)=[{&(0x7f0000001540)=""/207, 0xcf}], 0x1, 0x1f, 0x0)
io_uring_enter(r2, 0xa3d, 0x0, 0x0, 0x0, 0x0)
r8 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r8, 0x1, 0x2e, &(0x7f0000000040)=0xffffffff, 0x4)
read$dsp(r1, &(0x7f0000000440)=""/171, 0xab)
socket$inet6(0xa, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, 0x0, 0x0)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="04050400c9000b"], 0x7)
sendmmsg(r0, &(0x7f0000000b00)=[{{&(0x7f0000000000)=@l2tp={0x2, 0x0, @dev}, 0x80, &(0x7f0000000180)=[{&(0x7f00000000c0)="ae", 0x1}], 0x1}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f000001ba80)=[{0x10, 0x84}], 0x10}}], 0x2, 0x0)

kernel console output (not intermixed with test programs):

to uuid=null.
[   79.774878][ T5646] overlayfs: failed to verify upper root origin
[   79.998738][ T5100] Bluetooth: hci2: command tx timeout
[   80.447437][ T5650] loop3: detected capacity change from 0 to 32768
[   80.475241][ T5650] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.135 (5650)
[   80.538239][ T5650] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   80.563878][ T5650] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[   80.574565][ T5650] BTRFS info (device loop3): using free-space-tree
[   80.653141][   T12] team0 (unregistering): Port device team_slave_1 removed
[   80.706911][   T12] team0 (unregistering): Port device team_slave_0 removed
[   81.032640][ T5101] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[   81.298934][   T29] kauditd_printk_skb: 25 callbacks suppressed
[   81.298955][   T29] audit: type=1804 audit(1719519452.716:44): pid=5686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.145" name="/file0/root/syzkaller.rJAZZB/36/file0" dev="sda1" ino=1963 res=1 errno=0
[   81.349767][   T29] audit: type=1804 audit(1719519452.716:45): pid=5685 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.145" name="/file0/root/syzkaller.rJAZZB/36/file0" dev="sda1" ino=1963 res=1 errno=0
[   81.388560][   T29] audit: type=1804 audit(1719519452.736:46): pid=5688 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.145" name="/file0/root/syzkaller.rJAZZB/36/file0" dev="sda1" ino=1963 res=1 errno=0
[   81.422501][   T29] audit: type=1804 audit(1719519452.756:47): pid=5690 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.145" name="/file0/root/syzkaller.rJAZZB/36/file0" dev="sda1" ino=1963 res=1 errno=0
[   81.954000][ T5708] loop3: detected capacity change from 0 to 1024
[   82.115156][ T5100] Bluetooth: hci2: command tx timeout
[   82.493007][   T29] audit: type=1800 audit(1719519453.896:48): pid=5701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.149" name="bus" dev="sda1" ino=1964 res=0 errno=0
[   82.588157][   T29] audit: type=1804 audit(1719519453.946:49): pid=5701 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.149" name="/file0/root/syzkaller.rJAZZB/38/bus" dev="sda1" ino=1964 res=1 errno=0
[   83.159466][ T5555] chnl_net:caif_netlink_parms(): no params data found
[   83.555797][ T5555] bridge0: port 1(bridge_slave_0) entered blocking state
[   83.579266][ T5555] bridge0: port 1(bridge_slave_0) entered disabled state
[   83.610905][ T5555] bridge_slave_0: entered allmulticast mode
[   83.645205][ T5555] bridge_slave_0: entered promiscuous mode
[   83.681073][ T5555] bridge0: port 2(bridge_slave_1) entered blocking state
[   83.695047][ T5555] bridge0: port 2(bridge_slave_1) entered disabled state
[   83.706480][ T5555] bridge_slave_1: entered allmulticast mode
[   83.724198][ T5555] bridge_slave_1: entered promiscuous mode
[   83.946940][ T5555] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   84.155299][ T5100] Bluetooth: hci2: command tx timeout
[   84.296727][ T5555] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   84.912256][ T5797] ieee802154 phy0 wpan0: encryption failed: -90
[   84.937081][ T5555] team0: Port device team_slave_0 added
[   84.956191][ T5555] team0: Port device team_slave_1 added
[   85.001057][ T5795] netlink: 'syz.2.175': attribute type 29 has an invalid length.
[   85.077304][ T5555] batman_adv: batadv0: Adding interface: batadv_slave_0
[   85.103283][ T5555] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.187025][ T5555] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   85.338412][ T5555] batman_adv: batadv0: Adding interface: batadv_slave_1
[   85.353244][ T5555] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   85.399105][ T5555] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   85.876330][ T5821] netlink: 576 bytes leftover after parsing attributes in process `syz.3.185'.
[   86.269570][ T5821] syz.3.185 (5821) used greatest stack depth: 18704 bytes left
[   86.319962][ T5830] 9pnet_fd: Insufficient options for proto=fd
[   86.403541][ T5830] bridge0: entered allmulticast mode
[   86.530754][ T5839] loop4: detected capacity change from 0 to 164
[   86.566676][ T5555] hsr_slave_0: entered promiscuous mode
[   86.633587][ T5555] hsr_slave_1: entered promiscuous mode
[   86.696918][ T5839] iso9660: Corrupted directory entry in block 4 of inode 1792
[   86.971159][ T5847] vxcan0: entered promiscuous mode
[   87.012291][ T5847] vlan2: entered allmulticast mode
[   87.035951][ T5847] vxcan0: entered allmulticast mode
[   87.041676][ T5844] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[   87.068762][ T5844] xt_CHECKSUM: unsupported CHECKSUM operation 68
[   88.136293][ T5871] netlink: 576 bytes leftover after parsing attributes in process `syz.2.202'.
[   89.525431][ T5555] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   89.560785][ T5555] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   89.574592][ T5890] loop4: detected capacity change from 0 to 2048
[   89.604695][ T5555] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   89.638823][ T5555] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   89.649225][ T5890] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.764694][ T5904] xt_hashlimit: overflow, try lower: 512/9223372036854775808
[   89.858666][   T62] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm kworker/u8:4: bg 0: block 234: padding at end of block bitmap is not set
[   89.883828][   T62] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[   89.958285][   T62] EXT4-fs (loop4): This should not happen!! Data will be lost
[   89.958285][   T62] 
[   90.076212][   T62] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 65537 with max blocks 33 with error 28
[   90.231047][   T62] EXT4-fs (loop4): This should not happen!! Data will be lost
[   90.231047][   T62] 
[   90.350047][   T62] EXT4-fs (loop4): Total free blocks count 0
[   90.424687][   T62] EXT4-fs (loop4): Free/Dirty block details
[   90.488034][   T62] EXT4-fs (loop4): free_blocks=0
[   90.556961][   T62] EXT4-fs (loop4): dirty_blocks=48
[   90.615217][   T62] EXT4-fs (loop4): Block reservation details
[   90.813217][ T5921] loop4: detected capacity change from 0 to 8
[   90.946532][ T5555] 8021q: adding VLAN 0 to HW filter on device bond0
[   91.229169][ T5555] 8021q: adding VLAN 0 to HW filter on device team0
[   91.321341][ T5927] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   91.344775][ T5143] bridge0: port 1(bridge_slave_0) entered blocking state
[   91.351990][ T5143] bridge0: port 1(bridge_slave_0) entered forwarding state
[   91.431550][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[   91.433500][ T5927] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[   91.438720][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[   91.600167][   T29] audit: type=1804 audit(1719519462.681:50): pid=5927 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.224" name="/file0/root/syzkaller.rJAZZB/53/cgroup.controllers" dev="sda1" ino=1969 res=1 errno=0
[   93.156264][ T5555] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.268624][ T5968] loop3: detected capacity change from 0 to 8
[   93.430223][ T5555] veth0_vlan: entered promiscuous mode
[   93.496051][ T5555] veth1_vlan: entered promiscuous mode
[   93.694403][ T5555] veth0_macvtap: entered promiscuous mode
[   93.750661][ T5555] veth1_macvtap: entered promiscuous mode
[   93.867684][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.889348][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.914426][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.944665][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   93.957127][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   93.992755][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.008557][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   94.024023][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.043428][ T5991] fuse: Bad value for 'fd'
[   94.044253][ T5555] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.133680][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.192595][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.219984][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.263659][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.284619][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.328578][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.349792][ T5555] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   94.372299][ T5555] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   94.404980][ T5555] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.483960][ T5555] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.514858][ T5555] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   94.538775][ T5555] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   94.563748][ T5555] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   94.567154][ T5977] loop4: detected capacity change from 0 to 40427
[   94.616639][ T5977] F2FS-fs (loop4): Small segment_count (9 < 1 * 24)
[   94.628394][ T5977] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[   94.688590][ T5977] F2FS-fs (loop4): Found nat_bits in checkpoint
[   94.725462][   T29] audit: type=1800 audit(1719519465.560:51): pid=6011 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.254" name="bus" dev="sda1" ino=1966 res=0 errno=0
[   94.844642][ T5977] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[   94.857796][ T5977] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[   94.867779][ T2427] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.884536][ T2427] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   94.936545][ T5090] syz-executor: attempt to access beyond end of device
[   94.936545][ T5090] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[   94.959545][ T5090] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[   94.982405][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   94.992799][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.147450][   T29] audit: type=1800 audit(1719519465.957:52): pid=6015 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.256" name="file1" dev="sda1" ino=1968 res=0 errno=0
[   95.282118][ T6019] loop3: detected capacity change from 0 to 8
[   95.675032][ T6026] loop3: detected capacity change from 0 to 1024
[   96.707729][   T29] audit: type=1804 audit(1719519467.387:53): pid=6035 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.264" name="/file0/root/syzkaller.rJAZZB/66/bus" dev="sda1" ino=1960 res=1 errno=0
[   97.183064][ T6053] xt_CT: You must specify a L4 protocol and not use inversions on it
[   97.854988][   T52] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.116976][ T6064] loop3: detected capacity change from 0 to 4096
[   98.133377][ T6064] =======================================================
[   98.133377][ T6064] WARNING: The mand mount option has been deprecated and
[   98.133377][ T6064]          and is ignored by this kernel. Remove the mand
[   98.133377][ T6064]          option from the mount to silence this warning.
[   98.133377][ T6064] =======================================================
[   98.144544][ T5100] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[   98.168305][    C0] vkms_vblank_simulate: vblank timer overrun
[   98.187580][ T5100] Bluetooth: hci3: Injecting HCI hardware error event
[   98.196700][ T5100] Bluetooth: hci3: hardware error 0x00
[   98.278056][   T29] audit: type=1800 audit(1719519468.826:54): pid=6062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.273" name="file1" dev="sda1" ino=1967 res=0 errno=0
[   98.331609][   T52] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.460964][ T4493] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   98.485064][ T4493] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   98.513418][ T4493] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   98.524196][ T4493] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   98.537487][ T4493] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   98.544921][ T4493] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   98.605063][   T29] audit: type=1804 audit(1719519469.140:55): pid=6079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.280" name="/file0/root/syzkaller.rJAZZB/72/bus" dev="sda1" ino=1962 res=1 errno=0
[   98.608312][   T52] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   98.776270][   T52] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.355271][   T52] bridge_slave_1: left allmulticast mode
[   99.372535][   T52] bridge_slave_1: left promiscuous mode
[   99.394199][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[   99.448368][   T52] bridge_slave_0: left allmulticast mode
[   99.454369][   T52] bridge_slave_0: left promiscuous mode
[   99.466908][ T6082] loop4: detected capacity change from 0 to 32768
[   99.477532][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[   99.887434][ T6111] capability: warning: `syz.3.294' uses 32-bit capabilities (legacy support in use)
[  100.406780][ T6127] loop4: detected capacity change from 0 to 2048
[  100.419090][ T6127] ext4: Bad value for 'auto_da_alloc'
[  100.467055][ T5100] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  100.567427][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.623216][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.665598][   T52] bond0 (unregistering): Released all slaves
[  100.708860][ T6141] netlink: 'syz.4.304': attribute type 4 has an invalid length.
[  100.729186][ T6141] netlink: 12 bytes leftover after parsing attributes in process `syz.4.304'.
[  100.832054][ T5100] Bluetooth: hci2: command tx timeout
[  100.839802][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  101.869938][ T5100] Bluetooth: Frame is too long (len 18, expected len 4)
[  102.442533][ T6076] chnl_net:caif_netlink_parms(): no params data found
[  102.980029][   T52] hsr_slave_0: left promiscuous mode
[  103.077197][ T5100] Bluetooth: hci2: command tx timeout
[  103.110159][   T52] hsr_slave_1: left promiscuous mode
[  103.220851][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  103.264969][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[  103.343760][ T6174] loop3: detected capacity change from 0 to 256
[  103.359199][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  103.366655][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[  103.424457][ T6174] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  103.451301][   T52] veth1_macvtap: left promiscuous mode
[  103.465537][   T52] veth0_macvtap: left promiscuous mode
[  103.481037][   T52] veth1_vlan: left promiscuous mode
[  103.488445][   T52] veth0_vlan: left promiscuous mode
[  103.504692][ T6179] loop4: detected capacity change from 0 to 2048
[  103.776159][ T6179] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  103.848485][ T5090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  104.968252][ T6202] kvm: pic: non byte write
[  105.319128][ T5100] Bluetooth: hci2: command tx timeout
[  105.373796][ T5100] Bluetooth: Wrong link type (-71)
[  105.610718][ T6226] loop4: detected capacity change from 0 to 256
[  105.650637][ T6226] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  106.008552][ T6238] loop3: detected capacity change from 0 to 1024
[  106.670775][   T52] team0 (unregistering): Port device team_slave_1 removed
[  106.779817][   T52] team0 (unregistering): Port device team_slave_0 removed
[  106.787349][   T29] audit: type=1800 audit(1719519476.679:56): pid=6242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.342" name="bus" dev="sda1" ino=1960 res=0 errno=0
[  106.843896][   T29] audit: type=1800 audit(1719519476.679:57): pid=6242 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.342" name="file0" dev="sda1" ino=1962 res=0 errno=0
[  106.905886][ T6246] netlink: 256 bytes leftover after parsing attributes in process `syz.3.341'.
[  106.916092][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  106.924670][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  106.933145][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  107.573139][ T5097] Bluetooth: hci2: command tx timeout
[  107.791092][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  107.839330][ T6206] syz.2.329 (6206) used greatest stack depth: 17776 bytes left
[  108.300154][ T5097] Bluetooth: Wrong link type (-71)
[  108.430021][ T6076] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.449263][ T6076] bridge0: port 1(bridge_slave_0) entered disabled state
[  108.471575][ T6076] bridge_slave_0: entered allmulticast mode
[  108.488929][ T6076] bridge_slave_0: entered promiscuous mode
[  108.538453][ T5097] Bluetooth: hci0: command 0x0406 tx timeout
[  108.555783][ T6076] bridge0: port 2(bridge_slave_1) entered blocking state
[  108.604131][ T6076] bridge0: port 2(bridge_slave_1) entered disabled state
[  108.611492][ T6076] bridge_slave_1: entered allmulticast mode
[  108.619006][ T6076] bridge_slave_1: entered promiscuous mode
[  108.650362][ T6280] dvmrp0: entered allmulticast mode
[  108.832254][ T6076] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  108.883020][ T6280] dvmrp8: entered allmulticast mode
[  108.896225][ T6258] loop3: detected capacity change from 0 to 32768
[  108.908258][ T6258] bcachefs (/dev/loop3): error reading default superblock: checksum error, type crc32c_nonzero: got c5d2b25c should be 484e7e3b
[  108.926719][ T6289] dvmrp8: left allmulticast mode
[  108.945322][ T6258] bcachefs (/dev/loop3): error reading superblock: Invalid superblock layout: superblocks overlap
[  108.945322][ T6258]   (sb 1 ends at 34800 next starts at 30720
[  108.982903][ T6076] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  109.085170][ T6076] team0: Port device team_slave_0 added
[  109.129945][ T6295] netlink: 4 bytes leftover after parsing attributes in process `syz.2.359'.
[  109.246082][ T6298] loop4: detected capacity change from 0 to 256
[  109.301801][ T6296] 8021q: adding VLAN 0 to HW filter on device team1
[  109.336901][ T6296] bond0: (slave team1): Enslaving as an active interface with an up link
[  109.362826][ T6076] team0: Port device team_slave_1 added
[  109.480938][ T6303] warning: `syz.4.362' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  109.548434][ T6076] batman_adv: batadv0: Adding interface: batadv_slave_0
[  109.577342][ T6076] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.582183][ T6304] loop3: detected capacity change from 0 to 4096
[  109.640793][ T6076] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  109.693547][   T29] audit: type=1326 audit(1719519479.373:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  109.695279][ T6304] ntfs3: loop3: Failed to load $Extend (-22).
[  109.746986][ T6076] batman_adv: batadv0: Adding interface: batadv_slave_1
[  109.757025][   T29] audit: type=1326 audit(1719519479.373:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  109.763507][ T6076] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  109.807142][ T6304] ntfs3: loop3: Failed to initialize $Extend.
[  109.824959][   T29] audit: type=1326 audit(1719519479.373:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  109.888963][ T6076] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  109.891060][   T29] audit: type=1326 audit(1719519479.373:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  109.992408][   T29] audit: type=1326 audit(1719519479.401:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  110.065800][   T29] audit: type=1326 audit(1719519479.401:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  110.091473][   T29] audit: type=1326 audit(1719519479.401:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  110.113767][   T29] audit: type=1326 audit(1719519479.401:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6307 comm="syz.2.366" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  110.181093][ T6319] loop3: detected capacity change from 0 to 2048
[  110.193589][ T6319] EXT4-fs (loop3): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  110.213089][ T6319] EXT4-fs (loop3): group descriptors corrupted!
[  110.303275][ T6076] hsr_slave_0: entered promiscuous mode
[  110.335608][ T6076] hsr_slave_1: entered promiscuous mode
[  110.432412][ T6325] loop3: detected capacity change from 0 to 128
[  113.477439][ T6336] xt_CT: You must specify a L4 protocol and not use inversions on it
[  113.658638][    C0] vcan0: j1939_xtp_rx_dat: no tx connection found
[  114.174254][ T6343] loop3: detected capacity change from 0 to 2048
[  114.329839][ T6343]  loop3: p1 p3 p4 < p5 p6 p7 p8 p9 p10 p11 p12 p13 p14 p15 p16 p17 p18 p19 p20 p21 p22 p23 p24 p25 p26 p27 p28 p29 p30 p31 p32 p33 p34 p35 p36 p37 p38 p39 p40 p41 p42 p43 p44 p45 p46 p47 p48 p49 p50 p51 p52 p53 p54 p55 p56 p57 p58 p59 p60 p61 p62 p63 p64 p65 p66 p67 p68 p69 p70 p71 p72 p73 p74 p75 p76 p77 p78 p79 p80 p81 p82 p83 p84 p85 p86 p87 p88 p89 p90 p91 p92 p93 p94 p95 p96 p97 p98 p99 p100 p101 p102 p103 p104 p105 p106 p107 p108 p109 p110 p111 p112 p113 p114 p115 p116 p117 p118 p119 p120 p121 p122 p123 p124 p125 p126 p127 p128 p129 p130 p131 p132 p133 p134 p135 p136 p137 p138 p139 p140 p141 p142 p143 p144 p145 p146 p147 p148 p149 p150 p151 p152 p153 p154 p155 p156 p157 p158 p159 p160 p161 p162 p163 p164 p165 p166 p167 p168 p169 p170 p171 p172 p173 p174 p175 p176 p177 p178 p179 p180 p181 p182 p183 p184 p185 p186 p187 p188 p189 p190 p191 p192 p193 p194 p195 p196 p197 p198 p199 p200 p201 p202 p203 p204 p205 p206 p207 p208 p209 p210 p211 p212 p213 p214 p215 p216 p217 p218 p219 p220 p221 p222 p223 p224 p2
[  114.373161][ T6343] loop3: p3 start 4259840 is beyond EOD, truncated
[  114.478426][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880238ba000: rx timeout, send abort
[  115.030405][    C0] vcan0: j1939_tp_rxtimer: 0xffff8880238ba000: abort rx timeout. Force session deactivation
[  115.244866][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  115.375517][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  115.497768][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  116.069814][    C0] DEBUG: waiting rtnl_mutex for 526 jiffies.
[  116.076286][    C0] task:syz-executor    state:D stack:21024 pid:6076  tgid:6076  ppid:6056   flags:0x00000000
[  116.086522][    C0] Call Trace:
[  116.089792][    C0]  <TASK>
[  116.092767][    C0]  __schedule+0x17e8/0x4a20
[  116.097338][    C0]  ? __pfx___schedule+0x10/0x10
[  116.102275][    C0]  ? __pfx_lock_release+0x10/0x10
[  116.107336][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  116.112859][    C0]  ? schedule+0x90/0x320
[  116.117162][    C0]  schedule+0x14b/0x320
[  116.121352][    C0]  schedule_preempt_disabled+0x13/0x30
[  116.126875][    C0]  __mutex_lock+0x6a4/0xd70
[  116.131420][    C0]  ? __mutex_lock+0x527/0xd70
[  116.136170][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  116.141396][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  116.146499][    C0]  ? rtnl_lock+0xe7/0x130
[  116.150875][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  116.155933][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  116.161194][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  116.166678][    C0]  ? is_bpf_text_address+0x285/0x2a0
[  116.172032][    C0]  ? __pfx_validate_chain+0x10/0x10
[  116.177268][    C0]  ? __pfx_validate_chain+0x10/0x10
[  116.182544][    C0]  ? arch_stack_walk+0x16d/0x1b0
[  116.187529][    C0]  ? mark_lock+0x9a/0x360
[  116.191937][    C0]  ? __pfx_validate_chain+0x10/0x10
[  116.197179][    C0]  ? __lock_acquire+0x1359/0x2000
[  116.202376][    C0]  ? mark_lock+0x9a/0x360
[  116.206752][    C0]  ? __lock_acquire+0x1359/0x2000
[  116.211856][    C0]  netlink_rcv_skb+0x1e3/0x430
[  116.216657][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  116.222190][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  116.227543][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  116.232815][    C0]  netlink_unicast+0x7f0/0x990
[  116.237618][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  116.242941][    C0]  ? __virt_addr_valid+0x183/0x530
[  116.248133][    C0]  ? __check_object_size+0x49c/0x900
[  116.253454][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  116.258654][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  116.263479][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.268829][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  116.274846][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  116.279876][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  116.285198][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  116.290719][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  116.296029][    C0]  __sock_sendmsg+0x221/0x270
[  116.300772][    C0]  __sys_sendto+0x3a4/0x4f0
[  116.305319][    C0]  ? __pfx___sys_sendto+0x10/0x10
[  116.310436][    C0]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  116.316458][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  116.322845][    C0]  __x64_sys_sendto+0xde/0x100
[  116.327644][    C0]  do_syscall_64+0xf3/0x230
[  116.332201][    C0]  ? clear_bhb_loop+0x35/0x90
[  116.336907][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.342862][    C0] RIP: 0033:0x7fa310f778bc
[  116.347475][    C0] RSP: 002b:00007ffff590c890 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  116.355946][    C0] RAX: ffffffffffffffda RBX: 00007fa311c34620 RCX: 00007fa310f778bc
[  116.364660][    C0] RDX: 0000000000000020 RSI: 00007fa311c34670 RDI: 0000000000000003
[  116.372664][    C0] RBP: 0000000000000000 R08: 00007ffff590c8e4 R09: 000000000000000c
[  116.380688][    C0] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  116.388708][    C0] R13: 0000000000000000 R14: 00007fa311c34670 R15: 0000000000000000
[  116.396772][    C0]  </TASK>
[  116.399823][    C0] DEBUG: holding rtnl_mutex for 561 jiffies.
[  116.405842][    C0] task:syz.4.365       state:R  running task     stack:24672 pid:6308  tgid:6308  ppid:5090   flags:0x0000400e
[  116.417641][    C0] Call Trace:
[  116.420938][    C0]  <IRQ>
[  116.423793][    C0]  sched_show_task+0x506/0x6d0
[  116.428704][    C0]  ? report_rtnl_holders+0x183/0x2d0
[  116.434024][    C0]  ? __pfx__printk+0x10/0x10
[  116.438686][    C0]  ? __pfx_sched_show_task+0x10/0x10
[  116.444012][    C0]  report_rtnl_holders+0x1ba/0x2d0
[  116.449189][    C0]  ? report_rtnl_holders+0x20/0x2d0
[  116.454421][    C0]  call_timer_fn+0x18e/0x650
[  116.459029][    C0]  ? call_timer_fn+0xc0/0x650
[  116.463770][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  116.469427][    C0]  ? __pfx_call_timer_fn+0x10/0x10
[  116.474600][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  116.480272][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  116.485977][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  116.491649][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  116.496927][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  116.502165][    C0]  ? __pfx_report_rtnl_holders+0x10/0x10
[  116.507871][    C0]  __run_timer_base+0x66a/0x8e0
[  116.512778][    C0]  ? __pfx___run_timer_base+0x10/0x10
[  116.518235][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  116.524629][    C0]  run_timer_softirq+0xb7/0x170
[  116.529565][    C0]  handle_softirqs+0x2c4/0x970
[  116.534365][    C0]  ? __irq_exit_rcu+0xf4/0x1c0
[  116.539201][    C0]  ? __pfx_handle_softirqs+0x10/0x10
[  116.544521][    C0]  ? irqtime_account_irq+0xd4/0x1e0
[  116.549874][    C0]  __irq_exit_rcu+0xf4/0x1c0
[  116.554494][    C0]  ? __pfx___irq_exit_rcu+0x10/0x10
[  116.559762][    C0]  irq_exit_rcu+0x9/0x30
[  116.564033][    C0]  sysvec_apic_timer_interrupt+0xa6/0xc0
[  116.569729][    C0]  </IRQ>
[  116.572677][    C0]  <TASK>
[  116.575623][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  116.581665][    C0] RIP: 0010:lockdep_unregister_key+0x56d/0x610
[  116.587870][    C0] Code: ff 92 48 c7 c6 90 b6 6f 81 e8 7f 04 0a 00 e8 ea 18 0a 00 e9 e5 fb ff ff e8 00 18 20 0a 41 f7 c7 00 02 00 00 74 d0 fb 45 84 f6 <75> cf eb e0 90 0f 0b 90 45 31 f6 e9 62 ff ff ff 90 0f 0b 90 e9 a1
[  116.607574][    C0] RSP: 0018:ffffc90008cdf8e0 EFLAGS: 00000246
[  116.613713][    C0] RAX: dffffc0000000000 RBX: 1ffff9200119bf24 RCX: ffffffff947eb803
[  116.621712][    C0] RDX: 0000000000000001 RSI: ffffffff8bcad5e0 RDI: ffffffff8c206fe0
[  116.629746][    C0] RBP: ffffc90008cdf9b8 R08: ffffffff92ff4faf R09: 1ffffffff25fe9f5
[  116.637785][    C0] R10: dffffc0000000000 R11: fffffbfff25fe9f6 R12: ffffc90008cdf920
[  116.645900][    C0] R13: 1ffff9200119bf20 R14: 0000000000000000 R15: 0000000000000207
[  116.653918][    C0]  ? __pfx_lockdep_unregister_key+0x10/0x10
[  116.659887][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  116.665135][    C0]  ? __qdisc_destroy+0x150/0x410
[  116.670228][    C0]  ? kfree+0x149/0x360
[  116.674334][    C0]  ? __pfx_pfifo_fast_destroy+0x10/0x10
[  116.679946][    C0]  __qdisc_destroy+0x165/0x410
[  116.684748][    C0]  dev_shutdown+0x9b/0x440
[  116.689234][    C0]  unregister_netdevice_many_notify+0x977/0x16b0
[  116.695613][    C0]  ? __pfx_unregister_netdevice_many_notify+0x10/0x10
[  116.702449][    C0]  ? __asan_memset+0x23/0x50
[  116.707070][    C0]  ? skb_queue_purge_reason+0x2de/0x500
[  116.712694][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  116.717928][    C0]  unregister_netdevice_queue+0x303/0x370
[  116.723711][    C0]  ? __pfx_unregister_netdevice_queue+0x10/0x10
[  116.727036][ T6362] loop3: detected capacity change from 0 to 40427
[  116.729978][    C0]  __tun_detach+0x6b6/0x1600
[  116.741029][    C0]  tun_chr_close+0x108/0x1b0
[  116.744462][ T6362] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  116.745678][    C0]  ? __pfx_tun_chr_close+0x10/0x10
[  116.757382][ T6362] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  116.758461][    C0]  __fput+0x24a/0x8a0
[  116.770641][    C0]  task_work_run+0x24f/0x310
[  116.773612][ T6362] F2FS-fs (loop3): invalid crc value
[  116.775266][    C0]  ? __pfx_task_work_run+0x10/0x10
[  116.775298][    C0]  ? syscall_exit_to_user_mode+0xa3/0x370
[  116.775334][    C0]  syscall_exit_to_user_mode+0x168/0x370
[  116.775368][    C0]  do_syscall_64+0x100/0x230
[  116.775390][    C0]  ? clear_bhb_loop+0x35/0x90
[  116.789843][ T6362] F2FS-fs (loop3): Found nat_bits in checkpoint
[  116.791659][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  116.791694][    C0] RIP: 0033:0x7f8111375b29
[  116.823226][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  116.842892][    C0] RSP: 002b:00007fffa8128b88 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[  116.851377][    C0] RAX: 0000000000000000 RBX: 00007f81115059a0 RCX: 00007f8111375b29
[  116.854132][ T6362] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  116.859359][    C0] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[  116.859379][    C0] RBP: 00007f81115059a0 R08: 0000000000000008 R09: 00000018a8128e9f
[  116.869758][ T6362] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  116.874403][    C0] R10: 00000000005d9e04 R11: 0000000000000246 R12: 000000000001a891
[  116.874422][    C0] R13: 0000000000000032 R14: 00007f81115059a0 R15: 00007f8111504210
[  116.874455][    C0]  </TASK>
[  116.874466][    C0] DEBUG: waiting rtnl_mutex for 560 jiffies.
[  116.874479][    C0] task:syz.2.371       state:D stack:26768 pid:6327  tgid:6324  ppid:5089   flags:0x00000004
[  116.874520][    C0] Call Trace:
[  116.874529][    C0]  <TASK>
[  116.931512][    C0]  __schedule+0x17e8/0x4a20
[  116.936073][    C0]  ? __pfx___schedule+0x10/0x10
[  116.941192][    C0]  ? __pfx_lock_release+0x10/0x10
[  116.946325][    C0]  ? __mutex_trylock_common+0x92/0x2e0
[  116.951868][    C0]  ? schedule+0x90/0x320
[  116.956138][    C0]  schedule+0x14b/0x320
[  116.960492][    C0]  schedule_preempt_disabled+0x13/0x30
[  116.966003][    C0]  __mutex_lock+0x6a4/0xd70
[  116.970589][    C0]  ? __mutex_lock+0x527/0xd70
[  116.975300][    C0]  ? rtnetlink_rcv_msg+0x839/0x1170
[  116.980902][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  116.985986][    C0]  ? rtnl_lock+0xe7/0x130
[  116.990362][    C0]  rtnetlink_rcv_msg+0x839/0x1170
[  116.995466][    C0]  ? rtnetlink_rcv_msg+0x208/0x1170
[  117.000698][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  117.006231][    C0]  ? __local_bh_enable_ip+0x168/0x200
[  117.011638][    C0]  ? lockdep_hardirqs_on+0x99/0x150
[  117.016915][    C0]  ? __local_bh_enable_ip+0x168/0x200
[  117.022343][    C0]  ? dev_hard_start_xmit+0x773/0x7e0
[  117.027716][    C0]  ? __dev_queue_xmit+0x2da/0x3e90
[  117.032876][    C0]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  117.038680][    C0]  ? __dev_queue_xmit+0x2da/0x3e90
[  117.043841][    C0]  ? __dev_queue_xmit+0x1763/0x3e90
[  117.049148][    C0]  ? kasan_save_track+0x51/0x80
[  117.054047][    C0]  ? do_syscall_64+0xf3/0x230
[  117.058873][    C0]  ? __dev_queue_xmit+0x2da/0x3e90
[  117.064031][    C0]  ? __pfx___dev_queue_xmit+0x10/0x10
[  117.069491][    C0]  ? ref_tracker_free+0x643/0x7e0
[  117.074567][    C0]  netlink_rcv_skb+0x1e3/0x430
[  117.079412][    C0]  ? __pfx_rtnetlink_rcv_msg+0x10/0x10
[  117.084905][    C0]  ? __pfx_netlink_rcv_skb+0x10/0x10
[  117.090286][    C0]  ? netlink_deliver_tap+0x2e/0x1b0
[  117.095523][    C0]  netlink_unicast+0x7f0/0x990
[  117.100373][    C0]  ? __pfx_netlink_unicast+0x10/0x10
[  117.105700][    C0]  ? __virt_addr_valid+0x183/0x530
[  117.110895][    C0]  ? __check_object_size+0x49c/0x900
[  117.116218][    C0]  ? bpf_lsm_netlink_send+0x9/0x10
[  117.121407][    C0]  netlink_sendmsg+0x8e4/0xcb0
[  117.126210][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.131538][    C0]  ? __import_iovec+0x536/0x820
[  117.136449][    C0]  ? aa_sock_msg_perm+0x91/0x160
[  117.141423][    C0]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  117.146771][    C0]  ? security_socket_sendmsg+0x87/0xb0
[  117.152287][    C0]  ? __pfx_netlink_sendmsg+0x10/0x10
[  117.157653][    C0]  __sock_sendmsg+0x221/0x270
[  117.162377][    C0]  ____sys_sendmsg+0x525/0x7d0
[  117.167238][    C0]  ? __pfx_____sys_sendmsg+0x10/0x10
[  117.172587][    C0]  __sys_sendmsg+0x2b0/0x3a0
[  117.177351][    C0]  ? __pfx___sys_sendmsg+0x10/0x10
[  117.182547][    C0]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  117.188950][    C0]  ? do_syscall_64+0x100/0x230
[  117.193753][    C0]  ? do_syscall_64+0xb6/0x230
[  117.198499][    C0]  do_syscall_64+0xf3/0x230
[  117.203030][    C0]  ? clear_bhb_loop+0x35/0x90
[  117.207769][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  117.213697][    C0] RIP: 0033:0x7f11b4575b29
[  117.218152][    C0] RSP: 002b:00007f11b5380048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  117.226644][    C0] RAX: ffffffffffffffda RBX: 00007f11b4704070 RCX: 00007f11b4575b29
[  117.234695][    C0] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000005
[  117.242738][    C0] RBP: 00007f11b45f6756 R08: 0000000000000000 R09: 0000000000000000
[  117.250755][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  117.258796][    C0] R13: 000000000000006e R14: 00007f11b4704070 R15: 00007ffd663cb848
[  117.266856][    C0]  </TASK>
[  117.269912][    C0] DEBUG: waiting rtnl_mutex for 566 jiffies.
[  117.275963][    C0] task:kworker/0:3     state:D stack:23632 pid:5141  tgid:5141  ppid:2      flags:0x00004000
[  117.286215][    C0] Workqueue: events linkwatch_event
[  117.291465][    C0] Call Trace:
[  117.294807][    C0]  <TASK>
[  117.297778][    C0]  __schedule+0x17e8/0x4a20
[  117.302355][    C0]  ? __pfx___schedule+0x10/0x10
[  117.307296][    C0]  ? __pfx_lock_release+0x10/0x10
[  117.312388][    C0]  ? preempt_schedule_thunk+0x1a/0x30
[  117.317848][    C0]  ? schedule+0x90/0x320
[  117.319372][ T6362] syz.3.383: attempt to access beyond end of device
[  117.319372][ T6362] loop3: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  117.322106][    C0]  schedule+0x14b/0x320
[  117.322140][    C0]  schedule_preempt_disabled+0x13/0x30
[  117.322169][    C0]  __mutex_lock+0x6a4/0xd70
[  117.343938][ T6362] syz.3.383: attempt to access beyond end of device
[  117.343938][ T6362] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  117.345751][    C0]  ? __mutex_lock+0x527/0xd70
[  117.352417][   T29] kauditd_printk_skb: 14 callbacks suppressed
[  117.352434][   T29] audit: type=1800 audit(1719519486.044:80): pid=6362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.383" name="file0" dev="loop3" ino=455 res=0 errno=0
[  117.364159][    C0]  ? linkwatch_event+0xe/0x60
[  117.364198][    C0]  ? __pfx___mutex_lock+0x10/0x10
[  117.364238][    C0]  ? process_scheduled_works+0x945/0x1830
[  117.364263][    C0]  ? rtnl_lock+0xe7/0x130
[  117.364285][    C0]  ? process_scheduled_works+0x945/0x1830
[  117.364306][    C0]  linkwatch_event+0xe/0x60
[  117.364327][    C0]  process_scheduled_works+0xa2c/0x1830
[  117.364381][    C0]  ? __pfx_process_scheduled_works+0x10/0x10
[  117.364417][    C0]  ? assign_work+0x364/0x3d0
[  117.364448][    C0]  worker_thread+0x86d/0xd40
[  117.364479][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  117.364508][    C0]  ? __kthread_parkme+0x169/0x1d0
[  117.364536][    C0]  ? __pfx_worker_thread+0x10/0x10
[  117.375763][   T29] audit: type=1804 audit(1719519486.044:81): pid=6362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.383" name="/root/syzkaller.kKrUlJ/80/bus/file0" dev="loop3" ino=455 res=1 errno=0
[  117.395636][    C0]  kthread+0x2f0/0x390
[  117.395675][    C0]  ? __pfx_worker_thread+0x10/0x10
[  117.395701][    C0]  ? __pfx_kthread+0x10/0x10
[  117.395732][    C0]  ret_from_fork+0x4b/0x80
[  117.395761][    C0]  ? __pfx_kthread+0x10/0x10
[  117.395790][    C0]  ret_from_fork_asm+0x1a/0x30
[  117.395837][    C0]  </TASK>
[  117.395851][    C0] 
[  117.395851][    C0] Showing all locks held in the system:
[  117.395866][    C0] 3 locks held by kauditd/29:
[  117.395982][    C0] 2 locks held by getty/4848:
[  117.395996][    C0]  #0: ffff88802a92d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  117.396068][    C0]  #1: ffffc9000312b2f0 (&ldata->atomic_read_lock
[  117.405710][   T29] audit: type=1804 audit(1719519486.044:82): pid=6362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.383" name="/root/syzkaller.kKrUlJ/80/bus/file0" dev="loop3" ino=455 res=1 errno=0
[  117.406101][    C0] ){+.+.}-{3:3}, at: n_tty_read+0x6b5/0x1e10
[  117.577371][    C0] 3 locks held by kworker/0:3/5141:
[  117.582598][    C0]  #0: ffff888015080948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  117.593581][    C0]  #1: ffffc900040ffd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  117.604586][    C0]  #2: ffffffff8f5fb948 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  117.613596][    C0] 3 locks held by kworker/1:5/5147:
[  117.618779][    C0]  #0: ffff888015081948 ((wq_completion)events_power_efficient){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  117.631176][    C0]  #1: ffffc9000422fd00 ((crda_timeout).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  117.642063][    C0]  #2: ffffffff8f5fb948 (rtnl_mutex){+.+.}-{3:3}, at: crda_timeout_work+0x15/0x50
[  117.651357][    C0] 1 lock held by syz-executor/6076:
[  117.656576][    C0]  #0: ffffffff8f5fb948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  117.666098][    C0] 4 locks held by syz.4.365/6308:
[  117.671123][    C0]  #0: ffffffff8f5fb948 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3e/0x1b0
[  117.680106][    C0]  #1: ffffc90000007c00 (net/core/rtnetlink.c:82){+.-.}-{0:0}, at: call_timer_fn+0xc0/0x650
[  117.690215][    C0]  #2: ffffffff8e3357e0 (rcu_read_lock){....}-{1:2}, at: report_rtnl_holders+0x20/0x2d0
[  117.699983][    C0]  #3: ffffffff8e3357e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  117.709860][    C0] 1 lock held by syz.2.371/6327:
[  117.714803][    C0]  #0: ffffffff8f5fb948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  117.724340][    C0] 1 lock held by syz.0.379/6352:
[  117.729311][    C0]  #0: ffffffff8f5fb948 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x839/0x1170
[  117.738984][    C0] 1 lock held by syz.3.383/6361:
[  117.743921][    C0]  #0: ffffffff8e33abb8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x381/0x830
[  117.754820][    C0] 
[  117.757132][    C0] =============================================
[  117.757132][    C0] 
[  117.830642][   T35] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  117.854339][   T35] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  118.154620][ T6327] netlink: 4 bytes leftover after parsing attributes in process `syz.2.371'.
[  118.284227][ T6369] netlink: 40 bytes leftover after parsing attributes in process `syz.0.385'.
[  118.561701][ T6385] netlink: 'syz.2.389': attribute type 1 has an invalid length.
[  119.756808][ T6387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  119.912159][ T6387] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  120.147610][   T29] audit: type=1804 audit(1719519489.006:83): pid=6387 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.392" name="/root/syzkaller.YsvJdB/88/cgroup.controllers" dev="sda1" ino=1973 res=1 errno=0
[  120.250199][ T6402] netlink: 40 bytes leftover after parsing attributes in process `syz.3.398'.
[  120.523864][ T6076] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  120.562591][ T6076] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  120.586443][ T6076] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  120.620312][ T6076] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  120.754802][ T6423] netlink: 'syz.0.405': attribute type 1 has an invalid length.
[  121.894944][ T6076] 8021q: adding VLAN 0 to HW filter on device bond0
[  121.979252][ T6076] 8021q: adding VLAN 0 to HW filter on device team0
[  122.050166][ T6413] loop3: detected capacity change from 0 to 32768
[  122.058641][ T5142] bridge0: port 1(bridge_slave_0) entered blocking state
[  122.065935][ T5142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  122.085784][ T6444] xt_l2tp: v2 sid > 0xffff: 536870912
[  122.106415][ T5142] bridge0: port 2(bridge_slave_1) entered blocking state
[  122.113631][ T5142] bridge0: port 2(bridge_slave_1) entered forwarding state
[  122.153375][ T6413] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  122.158315][ T6452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  122.238106][ T6452] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  122.293272][   T29] audit: type=1804 audit(1719519490.999:84): pid=6452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.417" name="/root/syzkaller.YsvJdB/92/cgroup.controllers" dev="sda1" ino=1974 res=1 errno=0
[  122.371671][ T6413] XFS (loop3): Ending clean mount
[  122.426983][ T6413] XFS (loop3): Quotacheck needed: Please wait.
[  122.528540][ T6413] XFS (loop3): Quotacheck: Done.
[  122.590504][ T6076] 8021q: adding VLAN 0 to HW filter on device batadv0
[  122.748936][   T29] audit: type=1804 audit(1719519491.423:85): pid=6486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.427" name="/file0/root/syzkaller.rJAZZB/116/bus" dev="sda1" ino=1971 res=1 errno=0
[  122.782723][ T5101] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  122.796994][   T29] audit: type=1804 audit(1719519491.442:86): pid=6486 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.427" name="/file0/root/syzkaller.rJAZZB/116/bus" dev="sda1" ino=1971 res=1 errno=0
[  122.847921][ T6076] veth0_vlan: entered promiscuous mode
[  122.935239][ T6076] veth1_vlan: entered promiscuous mode
[  123.226168][ T6076] veth0_macvtap: entered promiscuous mode
[  123.493728][ T6507] netlink: 8 bytes leftover after parsing attributes in process `syz.4.434'.
[  123.503367][ T6507] netlink: 4 bytes leftover after parsing attributes in process `syz.4.434'.
[  123.532053][ T6076] veth1_macvtap: entered promiscuous mode
[  123.676234][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.694550][   T29] audit: type=1800 audit(1719519492.291:87): pid=6517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.437" name="bus" dev="sda1" ino=1968 res=0 errno=0
[  123.710003][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.719253][   T29] audit: type=1800 audit(1719519492.291:88): pid=6517 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.437" name="bus" dev="sda1" ino=1968 res=0 errno=0
[  123.745127][ T6511] kvm: emulating exchange as write
[  123.745650][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.758345][ T6519] loop4: detected capacity change from 0 to 1024
[  123.760982][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.781181][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.792685][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.803200][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  123.814797][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  123.852825][ T6076] batman_adv: batadv0: Interface activated: batadv_slave_0
[  124.031513][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.068494][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.078382][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.122232][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.143474][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.173775][ T6526] Zero length message leads to an empty skb
[  124.178140][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.185826][ T6528] netlink: 4 bytes leftover after parsing attributes in process `syz.0.441'.
[  124.209090][ T6076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  124.233936][ T6076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  124.256332][ T6076] batman_adv: batadv0: Interface activated: batadv_slave_1
[  124.373741][ T6076] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  124.405389][ T6076] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  124.414160][ T6076] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  124.447529][ T6076] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  124.482630][ T6538] netlink: 8 bytes leftover after parsing attributes in process `syz.0.446'.
[  124.501776][ T6538] netlink: 4 bytes leftover after parsing attributes in process `syz.0.446'.
[  124.719403][ T6547] loop4: detected capacity change from 0 to 1024
[  124.895960][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  124.928638][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  125.058721][ T6529] loop3: detected capacity change from 0 to 40427
[  125.071143][ T6558] loop4: detected capacity change from 0 to 764
[  125.118740][ T6558] rock: corrupted directory entry. extent=32, offset=2044, size=237
[  125.182009][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  125.207713][ T6529] F2FS-fs (loop3): Found nat_bits in checkpoint
[  125.251523][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  125.971506][ T6529] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  126.109402][ T5101] syz-executor: attempt to access beyond end of device
[  126.109402][ T5101] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  126.146475][ T5101] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  126.166571][ T5101] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  126.576734][ T6575] loop4: detected capacity change from 0 to 64
[  126.745116][   T29] audit: type=1804 audit(1719519495.096:89): pid=6577 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.461" name="/file0/root/syzkaller.rJAZZB/125/bus" dev="sda1" ino=1969 res=1 errno=0
[  126.768353][ T6579] netlink: 8 bytes leftover after parsing attributes in process `syz.3.459'.
[  126.795709][ T6579] netlink: 4 bytes leftover after parsing attributes in process `syz.3.459'.
[  126.952716][ T6584] loop3: detected capacity change from 0 to 1024
[  127.086732][ T6591] netlink: 'syz.0.469': attribute type 4 has an invalid length.
[  127.101479][ T6591] netlink: 'syz.0.469': attribute type 11 has an invalid length.
[  127.464987][ T2866] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.610816][ T6607] loop4: detected capacity change from 0 to 1024
[  127.657276][ T6607] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  127.697790][ T6604] loop3: detected capacity change from 0 to 8192
[  127.728652][ T5090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  127.777354][ T6604]  loop3: RDSK (0)
[  127.777354][ T6604]  AHDI p2 p3
[  127.936234][ T5097] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  127.953657][ T5097] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  127.978676][ T2866] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.979280][ T5097] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  128.004461][ T5097] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  128.012180][ T5097] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  128.019783][ T5097] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  128.484734][ T2866] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.878258][ T2866] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  128.989463][ T6625] netlink: 'syz.0.481': attribute type 4 has an invalid length.
[  129.021050][ T6625] netlink: 'syz.0.481': attribute type 11 has an invalid length.
[  130.056006][ T2866] bridge_slave_1: left allmulticast mode
[  130.072533][ T2866] bridge_slave_1: left promiscuous mode
[  130.078347][ T2866] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.135095][ T2866] bridge_slave_0: left allmulticast mode
[  130.140544][ T6623] loop4: detected capacity change from 0 to 40427
[  130.145099][ T2866] bridge_slave_0: left promiscuous mode
[  130.149675][ T6623] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  130.156675][ T2866] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.170788][ T6623] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  130.183479][ T6623] F2FS-fs (loop4): invalid crc value
[  130.216052][ T6623] F2FS-fs (loop4): Found nat_bits in checkpoint
[  130.289695][ T5097] Bluetooth: hci2: command tx timeout
[  130.418008][ T6623] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  130.439940][ T6623] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  130.571225][   T29] audit: type=1800 audit(1719519498.630:90): pid=6623 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.480" name="file0" dev="loop4" ino=455 res=0 errno=0
[  130.597489][   T29] audit: type=1804 audit(1719519498.657:91): pid=6623 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.480" name="/root/syzkaller.YsvJdB/106/bus/file0" dev="loop4" ino=455 res=1 errno=0
[  130.625695][   T29] audit: type=1804 audit(1719519498.694:92): pid=6651 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.480" name="/root/syzkaller.YsvJdB/106/bus/file0" dev="loop4" ino=455 res=1 errno=0
[  130.854473][ T6654] syz.3.488 (pid 6654) is setting deprecated v1 encryption policy; recommend upgrading to v2.
[  130.975443][ T6655] input: syz1 as /devices/virtual/input/input5
[  131.597359][ T2917] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  131.626289][ T2917] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  131.972232][ T2866] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  131.984385][ T2866] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  131.995735][ T2866] bond0 (unregistering): Released all slaves
[  132.273291][   T29] audit: type=1804 audit(1719519500.207:93): pid=6682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.499" name="/root/syzkaller.kKrUlJ/102/bus" dev="sda1" ino=1966 res=1 errno=0
[  132.343695][   T29] audit: type=1804 audit(1719519500.235:94): pid=6682 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.3.499" name="/root/syzkaller.kKrUlJ/102/bus" dev="sda1" ino=1966 res=1 errno=0
[  132.543220][ T5097] Bluetooth: hci2: command tx timeout
[  132.659584][ T6691] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  133.042899][ T6614] chnl_net:caif_netlink_parms(): no params data found
[  133.065864][   T29] audit: type=1326 audit(1719519500.936:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  133.095450][ T6700] netlink: 12 bytes leftover after parsing attributes in process `syz.2.504'.
[  133.102619][   T29] audit: type=1326 audit(1719519500.964:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  133.156926][   T29] audit: type=1326 audit(1719519500.964:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  133.224583][   T29] audit: type=1326 audit(1719519500.964:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  133.271486][ T2866] hsr_slave_0: left promiscuous mode
[  133.297809][ T2866] hsr_slave_1: left promiscuous mode
[  133.320261][   T29] audit: type=1326 audit(1719519501.001:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6699 comm="syz.2.504" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  133.356953][ T2866] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  133.370913][ T2866] batman_adv: batadv0: Removing interface: batadv_slave_0
[  133.400491][ T2866] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  133.427515][ T2866] batman_adv: batadv0: Removing interface: batadv_slave_1
[  133.474875][ T2866] veth1_macvtap: left promiscuous mode
[  133.494897][ T2866] veth0_macvtap: left promiscuous mode
[  133.510211][ T2866] veth1_vlan: left promiscuous mode
[  133.519320][ T2866] veth0_vlan: left promiscuous mode
[  134.267955][ T2866] team0 (unregistering): Port device team_slave_1 removed
[  134.327985][ T2866] team0 (unregistering): Port device team_slave_0 removed
[  134.563464][ T6735] loop3: detected capacity change from 0 to 8192
[  134.696285][ T6736] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  134.797634][ T5097] Bluetooth: hci2: command tx timeout
[  135.337199][ T6614] bridge0: port 1(bridge_slave_0) entered blocking state
[  135.345080][ T6614] bridge0: port 1(bridge_slave_0) entered disabled state
[  135.381385][ T6614] bridge_slave_0: entered allmulticast mode
[  135.399391][ T6614] bridge_slave_0: entered promiscuous mode
[  135.427343][ T6614] bridge0: port 2(bridge_slave_1) entered blocking state
[  135.829265][ T6614] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.293332][ T6614] bridge_slave_1: entered allmulticast mode
[  136.317039][ T6614] bridge_slave_1: entered promiscuous mode
[  136.667571][   T29] kauditd_printk_skb: 32 callbacks suppressed
[  136.667585][   T29] audit: type=1326 audit(1719519504.249:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6768 comm="syz.4.528" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f8111375b29 code=0x0
[  137.040641][ T6614] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  137.052798][ T5097] Bluetooth: hci2: command tx timeout
[  137.059125][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  137.631306][ T6614] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  138.166754][ T6808] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  138.166754][ T6808] The task syz.4.534 (6808) triggered the difference, watch for misbehavior.
[  138.212515][ T6809] Cannot find set identified by id 0 to match
[  138.270810][ T6614] team0: Port device team_slave_0 added
[  138.344008][ T6614] team0: Port device team_slave_1 added
[  138.351517][ T6798] netlink: 4 bytes leftover after parsing attributes in process `syz.2.535'.
[  138.414654][ T6818] netlink: 'syz.3.540': attribute type 3 has an invalid length.
[  138.559135][ T6614] batman_adv: batadv0: Adding interface: batadv_slave_0
[  138.567165][ T6614] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  138.608592][ T6614] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  138.765822][ T6614] batman_adv: batadv0: Adding interface: batadv_slave_1
[  138.773769][ T6614] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  138.808491][ T6614] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  138.893694][ T6614] hsr_slave_0: entered promiscuous mode
[  138.904492][ T6614] hsr_slave_1: entered promiscuous mode
[  139.257882][ T6853] netlink: 'syz.2.554': attribute type 3 has an invalid length.
[  139.729411][ T6849] loop3: detected capacity change from 0 to 40427
[  139.744325][ T6849] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[  139.759736][ T6849] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  139.781931][ T6849] F2FS-fs (loop3): invalid crc value
[  139.821043][ T6849] F2FS-fs (loop3): Found nat_bits in checkpoint
[  139.921461][ T6614] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  139.939629][ T6614] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  139.955778][ T6614] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  139.973818][ T6849] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  139.985537][ T6614] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  139.992630][ T6849] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  141.086665][   T52] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  141.115685][   T52] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  141.129436][ T6887] netlink: 'syz.0.567': attribute type 3 has an invalid length.
[  141.151177][ T6614] 8021q: adding VLAN 0 to HW filter on device bond0
[  141.254245][ T6614] 8021q: adding VLAN 0 to HW filter on device team0
[  141.309918][ T5142] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.317163][ T5142] bridge0: port 1(bridge_slave_0) entered forwarding state
[  141.415586][ T5143] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.422838][ T5143] bridge0: port 2(bridge_slave_1) entered forwarding state
[  141.906958][    C1] sched: RT throttling activated
[  142.209904][ T6901] ip6tnl1: entered promiscuous mode
[  142.241734][ T6901] ip6tnl1: entered allmulticast mode
[  142.526869][ T6906] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  142.559187][ T5097] Bluetooth: Frame is too long (len 18, expected len 4)
[  142.762516][ T2866] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  142.914723][ T6614] 8021q: adding VLAN 0 to HW filter on device batadv0
[  143.299993][ T6614] veth0_vlan: entered promiscuous mode
[  143.352722][ T6614] veth1_vlan: entered promiscuous mode
[  143.568067][ T6614] veth0_macvtap: entered promiscuous mode
[  143.690802][ T6614] veth1_macvtap: entered promiscuous mode
[  143.699866][ T6932] loop3: detected capacity change from 0 to 8192
[  143.708169][ T6937] netlink: 4 bytes leftover after parsing attributes in process `syz.2.576'.
[  143.750636][ T6938] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  144.078332][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  144.197163][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  144.341972][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  144.576333][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  144.594557][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  144.627761][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  144.650984][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  144.669452][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.255570][ T6614] batman_adv: batadv0: Interface activated: batadv_slave_0
[  145.702698][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.739317][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.765286][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.786945][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.807898][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.830085][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.848821][ T6614] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  145.860524][ T6614] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.875361][ T6614] batman_adv: batadv0: Interface activated: batadv_slave_1
[  145.914401][ T6614] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  145.951105][ T6614] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  145.973118][ T6614] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.002603][ T6614] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.316175][ T6950] netlink: 4 bytes leftover after parsing attributes in process `syz.2.592'.
[  146.330223][  T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.347034][  T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.405839][ T6959] netlink: 'syz.3.593': attribute type 10 has an invalid length.
[  146.437289][ T6959] netlink: 210880 bytes leftover after parsing attributes in process `syz.3.593'.
[  146.477715][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  146.502695][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  146.796176][ T6966] loop3: detected capacity change from 0 to 8192
[  146.827922][ T6966] REISERFS warning (device loop3): super-6515 reiserfs_parse_options: journaled quota format not specified.
[  146.988378][ T6979] program syz.4.603 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  147.105224][ T6986] netlink: 'syz.3.605': attribute type 4 has an invalid length.
[  147.120300][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  147.388492][ T6999] netlink: 4 bytes leftover after parsing attributes in process `syz.4.612'.
[  147.488082][ T7002] ptrace attach of "./syz-executor exec"[5090] was attempted by "./syz-executor exec"[7002]
[  147.711749][   T29] audit: type=1800 audit(1719519514.454:133): pid=6970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.600" name="file0" dev="sda1" ino=1974 res=0 errno=0
[  147.743449][   T29] audit: type=1804 audit(1719519514.472:134): pid=6970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.600" name="/file0/root/syzkaller.vAhrag/154/file0" dev="sda1" ino=1974 res=1 errno=0
[  147.769830][   T29] audit: type=1804 audit(1719519514.472:135): pid=6970 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.2.600" name="/file0/root/syzkaller.vAhrag/154/file0" dev="sda1" ino=1974 res=1 errno=0
[  147.774382][ T7009] loop4: detected capacity change from 0 to 8192
[  147.811319][ T7009] REISERFS warning (device loop4): super-6515 reiserfs_parse_options: journaled quota format not specified.
[  148.546745][  T139] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.190340][ T5100] Bluetooth: hci1: command 0x0406 tx timeout
[  149.357235][  T139] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.466754][  T139] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.543434][  T139] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  149.642830][  T139] bridge_slave_1: left allmulticast mode
[  149.650243][  T139] bridge_slave_1: left promiscuous mode
[  149.657189][  T139] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.667561][  T139] bridge_slave_0: left allmulticast mode
[  149.673200][  T139] bridge_slave_0: left promiscuous mode
[  149.679481][  T139] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.901288][   T29] audit: type=1326 audit(1719519516.456:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.3.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9eef75b29 code=0x7ffc0000
[  149.967876][ T7041] loop4: detected capacity change from 0 to 1024
[  150.011638][ T7041] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  150.013871][   T29] audit: type=1326 audit(1719519516.456:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.3.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9eef75b29 code=0x7ffc0000
[  150.092972][ T7041] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.110826][ T7045] loop3: detected capacity change from 0 to 2048
[  150.111341][   T29] audit: type=1326 audit(1719519516.502:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.3.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7fe9eef75b29 code=0x7ffc0000
[  150.122398][ T7045] udf: Bad value for 'dmode'
[  150.176426][   T29] audit: type=1326 audit(1719519516.502:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.3.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9eef75b29 code=0x7ffc0000
[  150.315748][   T29] audit: type=1326 audit(1719519516.502:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7039 comm="syz.3.627" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe9eef75b29 code=0x7ffc0000
[  150.479568][ T5090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.554122][ T5100] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  150.584758][ T5100] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  150.595808][ T5100] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  150.624337][ T5100] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  150.640591][ T5100] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  150.650026][ T5100] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  150.691389][  T139] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  150.744957][  T139] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  150.765554][  T139] bond0 (unregistering): Released all slaves
[  150.834588][ T7058] loop3: detected capacity change from 0 to 4096
[  150.929974][ T7058] NILFS (loop3): invalid segment: Inconsistency found
[  150.940116][ T7058] NILFS (loop3): trying rollback from an earlier position
[  150.976696][ T7058] NILFS (loop3): recovery complete
[  150.997901][ T7062] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  151.414217][  T139] hsr_slave_0: left promiscuous mode
[  151.431846][  T139] hsr_slave_1: left promiscuous mode
[  151.492547][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  151.512594][  T139] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.526119][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.538273][  T139] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.585649][  T139] veth1_macvtap: left promiscuous mode
[  151.591413][  T139] veth0_macvtap: left promiscuous mode
[  151.597336][  T139] veth1_vlan: left promiscuous mode
[  151.602767][  T139] veth0_vlan: left promiscuous mode
[  151.686766][   T29] audit: type=1326 audit(1719519518.117:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.0.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4884975b29 code=0x7ffc0000
[  151.732056][   T29] audit: type=1326 audit(1719519518.117:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.0.640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4884975b29 code=0x7ffc0000
[  152.287267][ T7078] loop3: detected capacity change from 0 to 32768
[  152.298448][ T7078] XFS: attr2 mount option is deprecated.
[  152.304441][ T7078] XFS: ikeep mount option is deprecated.
[  152.315466][ T7078] XFS: noikeep mount option is deprecated.
[  152.384576][ T7078] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  152.419802][ T7078] XFS (loop3): Ending clean mount
[  152.456738][ T7078] XFS (loop3): Quotacheck needed: Please wait.
[  152.468264][  T139] team0 (unregistering): Port device team_slave_1 removed
[  152.491973][ T7078] XFS (loop3): Quotacheck: Done.
[  152.534938][  T139] team0 (unregistering): Port device team_slave_0 removed
[  152.543118][ T5101] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  152.921057][ T5100] Bluetooth: hci2: command tx timeout
[  153.384951][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  153.384967][   T29] audit: type=1326 audit(1719519519.667:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4884975b29 code=0x7ffc0000
[  153.414909][   T29] audit: type=1326 audit(1719519519.686:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4884975b29 code=0x7ffc0000
[  153.439866][   T29] audit: type=1326 audit(1719519519.686:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f4884975b29 code=0x7ffc0000
[  153.504116][   T29] audit: type=1326 audit(1719519519.686:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4884975b29 code=0x7ffc0000
[  153.533025][   T29] audit: type=1326 audit(1719519519.704:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7113 comm="syz.0.651" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4884975b29 code=0x7ffc0000
[  153.607626][ T7056] chnl_net:caif_netlink_parms(): no params data found
[  153.783069][ T7127] netlink: 'syz.2.657': attribute type 4 has an invalid length.
[  153.898324][ T7056] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.913705][ T7056] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.922559][ T7056] bridge_slave_0: entered allmulticast mode
[  153.931210][ T7056] bridge_slave_0: entered promiscuous mode
[  153.947599][ T7056] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.955268][ T7056] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.963966][ T7056] bridge_slave_1: entered allmulticast mode
[  153.973004][ T7056] bridge_slave_1: entered promiscuous mode
[  154.093965][ T7056] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.118884][ T7056] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.119562][   T29] audit: type=1326 audit(1719519520.359:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  154.511158][   T29] audit: type=1326 audit(1719519520.359:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  154.534660][    C1] vkms_vblank_simulate: vblank timer overrun
[  155.009985][   T29] audit: type=1326 audit(1719519520.387:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  155.072262][ T7056] team0: Port device team_slave_0 added
[  155.084814][   T29] audit: type=1326 audit(1719519520.442:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  155.175120][   T29] audit: type=1326 audit(1719519520.442:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7144 comm="syz.2.663" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  155.197809][ T5100] Bluetooth: hci2: command tx timeout
[  155.224439][ T7056] team0: Port device team_slave_1 added
[  155.417999][ T7056] batman_adv: batadv0: Adding interface: batadv_slave_0
[  155.443843][ T7056] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.524243][ T7056] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  155.568323][ T7056] batman_adv: batadv0: Adding interface: batadv_slave_1
[  155.595574][ T7056] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  155.621998][    C1] vkms_vblank_simulate: vblank timer overrun
[  155.666142][ T7056] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  155.715937][ T7165] netlink: 'syz.3.670': attribute type 4 has an invalid length.
[  155.779490][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  155.867192][ T7056] hsr_slave_0: entered promiscuous mode
[  155.883833][ T7056] hsr_slave_1: entered promiscuous mode
[  155.981245][ T7171] netlink: 'syz.3.673': attribute type 25 has an invalid length.
[  156.007032][ T7171] netlink: 'syz.3.673': attribute type 8 has an invalid length.
[  156.074197][ T7173] netlink: 'syz.0.674': attribute type 1 has an invalid length.
[  156.133786][ T7173] 8021q: adding VLAN 0 to HW filter on device bond1
[  156.247000][ T7174] 8021q: adding VLAN 0 to HW filter on device bond1
[  156.253961][ T7174] bond1: (slave ip6tnl3): The slave device specified does not support setting the MAC address
[  156.324891][ T7174] bond1: (slave ip6tnl3): Error -95 calling set_mac_address
[  156.707331][ T5143] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  156.743296][ T7197] netlink: 'syz.4.684': attribute type 4 has an invalid length.
[  157.551261][ T5100] Bluetooth: hci2: command tx timeout
[  157.675215][ T5100] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  157.729433][ T5143] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.748720][ T5143] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.761693][ T5143] usb 4-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00
[  157.774300][ T5143] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  157.796350][ T5143] usb 4-1: config 0 descriptor??
[  158.990461][ T7219] netlink: 216 bytes leftover after parsing attributes in process `syz.3.680'.
[  159.052832][ T7187] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  159.125354][ T7187] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  159.207260][ T7056] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  159.274169][ T5143] logitech 0003:046D:C29C.0001: unknown main item tag 0x0
[  159.345630][ T7056] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  159.361429][ T5143] logitech 0003:046D:C29C.0001: item fetching failed at offset 1/5
[  159.411516][ T5143] logitech 0003:046D:C29C.0001: parse failed
[  159.482935][ T5143] logitech 0003:046D:C29C.0001: probe with driver logitech failed with error -22
[  159.540478][ T7056] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  159.599861][ T5143] usb 4-1: USB disconnect, device number 2
[  159.620277][ T7056] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  159.803210][ T5100] Bluetooth: hci2: command tx timeout
[  160.590102][ T7056] 8021q: adding VLAN 0 to HW filter on device bond0
[  160.691352][ T7056] 8021q: adding VLAN 0 to HW filter on device team0
[  160.736923][ T1154] bridge0: port 1(bridge_slave_0) entered blocking state
[  160.741482][ T7249] input input6: cannot allocate more than FF_MAX_EFFECTS effects
[  160.744083][ T1154] bridge0: port 1(bridge_slave_0) entered forwarding state
[  160.776680][ T1154] bridge0: port 2(bridge_slave_1) entered blocking state
[  160.783852][ T1154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  160.857786][ T7253] loop3: detected capacity change from 0 to 1024
[  161.573984][ T7056] 8021q: adding VLAN 0 to HW filter on device batadv0
[  161.741183][ T7279] netlink: 176 bytes leftover after parsing attributes in process `syz.0.714'.
[  161.829572][ T7258] hfsplus: found bad thread record in catalog
[  161.836147][ T7279] ip6gretap0: entered promiscuous mode
[  161.883549][ T7279] netlink: 176 bytes leftover after parsing attributes in process `syz.0.714'.
[  161.960454][ T7056] veth0_vlan: entered promiscuous mode
[  162.065746][ T7056] veth1_vlan: entered promiscuous mode
[  162.272111][ T7056] veth0_macvtap: entered promiscuous mode
[  162.293993][ T7283] netlink: 3 bytes leftover after parsing attributes in process `syz.0.717'.
[  162.340837][ T7056] veth1_macvtap: entered promiscuous mode
[  162.374321][ T7283] process 'syz.0.717' launched '/dev/fd/3' with NULL argv: empty string added
[  162.505256][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.511604][ T7278] loop4: detected capacity change from 0 to 32768
[  162.528695][ T7278] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.715 (7278)
[  162.538435][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.555330][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.566542][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.576641][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.577077][ T7278] BTRFS info (device loop4): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  162.587455][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.611820][ T7278] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  162.631213][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  162.635459][ T7278] BTRFS info (device loop4): using free-space-tree
[  162.644469][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.686787][ T7056] batman_adv: batadv0: Interface activated: batadv_slave_0
[  162.711617][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.759259][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.783654][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.797473][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.827563][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.856705][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.893202][ T7056] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  162.914515][ T7056] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  162.930090][ T7056] batman_adv: batadv0: Interface activated: batadv_slave_1
[  162.994630][ T7056] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.027346][ T7056] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  163.054007][ T7056] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  163.073370][ T7056] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  163.286314][  T139] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  163.304703][  T139] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  163.313370][ T2866] hfsplus: b-tree write err: -5, ino 4
[  163.323772][ T5090] BTRFS info (device loop4): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  163.480240][ T2879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  163.499530][ T2879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  163.778609][ T7317] loop4: detected capacity change from 0 to 164
[  163.836519][ T7319] loop3: detected capacity change from 0 to 64
[  163.861170][ T7317] rock: directory entry would overflow storage
[  163.876287][ T7317] rock: sig=0x4f50, size=4, remaining=3
[  163.890605][ T7317] iso9660: Corrupted directory entry in block 4 of inode 1792
[  163.954007][ T7325] netlink: 32 bytes leftover after parsing attributes in process `syz.0.727'.
[  163.974435][ T7319] syz.3.726: attempt to access beyond end of device
[  163.974435][ T7319] loop3: rw=0, sector=16777214, nr_sectors = 2 limit=64
[  163.998928][ T7319] Buffer I/O error on dev loop3, logical block 8388607, async page read
[  164.015057][ T7319] syz.3.726: attempt to access beyond end of device
[  164.015057][ T7319] loop3: rw=0, sector=16777214, nr_sectors = 2 limit=64
[  164.046390][ T7319] Buffer I/O error on dev loop3, logical block 8388607, async page read
[  164.100441][ T7328] loop4: detected capacity change from 0 to 1024
[  164.156687][ T7328] hfsplus: extend alloc file! (8192,65536,366)
[  164.370351][ T7344] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3832186367 (7664372734 ns) > initial count (393216 ns). Using initial count to start timer.
[  164.531820][ T7344] kvm: pic: non byte write
[  164.579997][   T35] Bluetooth: (null): Invalid header checksum
[  164.627877][   T35] Bluetooth: (null): Invalid header checksum
[  165.486375][ T2879] Bluetooth: (null): Invalid header checksum
[  165.514301][ T2879] Bluetooth: (null): Invalid header checksum
[  165.520398][ T2879] Bluetooth: (null): Invalid header checksum
[  165.528063][ T2879] Bluetooth: (null): Invalid header checksum
[  165.535495][ T2879] Bluetooth: (null): Invalid header checksum
[  165.541569][ T2879] Bluetooth: (null): Invalid header checksum
[  165.552819][ T2879] Bluetooth: (null): Invalid header checksum
[  165.566217][ T2879] Bluetooth: (null): Invalid header checksum
[  165.581302][ T5100] Bluetooth: hci0: ACL packet for unknown connection handle 200
[  166.342268][ T7366] loop3: detected capacity change from 0 to 1024
[  166.382762][ T7366] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  166.437820][ T7366] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  166.496261][ T7372] loop4: detected capacity change from 0 to 512
[  166.532256][ T7372] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  166.566480][ T7372] EXT4-fs (loop4): orphan cleanup on readonly fs
[  166.572983][ T5101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  166.619996][ T7372] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.744: bg 0: block 248: padding at end of block bitmap is not set
[  166.658713][ T7372] __quota_error: 5 callbacks suppressed
[  166.658734][ T7372] Quota error (device loop4): write_blk: dquota write failed
[  166.693207][ T7372] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  166.719082][ T7372] EXT4-fs error (device loop4): ext4_acquire_dquot:6858: comm syz.4.744: Failed to acquire dquot type 1
[  166.759013][ T7372] EXT4-fs (loop4): 1 truncate cleaned up
[  166.777925][ T7372] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  166.938233][ T5090] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.100907][  T139] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.469216][  T139] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.526663][  T139] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.609044][  T139] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  167.685083][  T139] bridge_slave_1: left allmulticast mode
[  167.692590][  T139] bridge_slave_1: left promiscuous mode
[  167.698256][  T139] bridge0: port 2(bridge_slave_1) entered disabled state
[  167.708537][  T139] bridge_slave_0: left allmulticast mode
[  167.714485][  T139] bridge_slave_0: left promiscuous mode
[  167.720149][  T139] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.100230][ T7403] loop3: detected capacity change from 0 to 1024
[  169.118152][ T5097] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  169.131618][ T7403] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  169.133337][ T5097] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  169.152752][ T5097] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  169.172242][ T7403] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.186683][ T5097] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  169.211915][ T5097] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  169.229198][ T5097] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  169.272611][ T5101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  169.469865][  T139] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  169.486833][  T139] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  169.499172][  T139] bond0 (unregistering): Released all slaves
[  169.707318][ T5147] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  169.914782][ T5147] usb 4-1: Using ep0 maxpacket: 16
[  169.934463][ T5147] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[  169.953538][ T5147] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  169.963433][ T5147] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  169.985400][ T5147] usb 4-1: Product: syz
[  170.005924][ T5147] usb 4-1: Manufacturer: syz
[  170.018085][ T5147] usb 4-1: SerialNumber: syz
[  170.026855][ T5147] usb 4-1: config 0 descriptor??
[  170.051161][ T5147] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input7
[  170.366223][  T139] hsr_slave_0: left promiscuous mode
[  170.487843][  T139] hsr_slave_1: left promiscuous mode
[  170.683042][ T5145] usb 4-1: USB disconnect, device number 3
[  170.728651][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  170.878441][  T139] batman_adv: batadv0: Removing interface: batadv_slave_0
[  171.034797][  T139] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  171.049005][  T139] batman_adv: batadv0: Removing interface: batadv_slave_1
[  171.207588][  T139] veth1_macvtap: left promiscuous mode
[  171.224339][  T139] veth0_macvtap: left promiscuous mode
[  171.241113][  T139] veth1_vlan: left promiscuous mode
[  171.252023][  T139] veth0_vlan: left promiscuous mode
[  171.472742][ T5097] Bluetooth: hci2: command tx timeout
[  172.581495][ T7453] netlink: 8 bytes leftover after parsing attributes in process `syz.3.773'.
[  173.121991][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  173.224162][  T139] team0 (unregistering): Port device team_slave_1 removed
[  173.277627][  T139] team0 (unregistering): Port device team_slave_0 removed
[  173.738549][ T5097] Bluetooth: hci2: command tx timeout
[  173.763730][   T29] audit: type=1800 audit(1719519538.481:160): pid=7465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.778" name="bus" dev="sda1" ino=1977 res=0 errno=0
[  173.796416][   T29] audit: type=1800 audit(1719519538.481:161): pid=7465 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.778" name="bus" dev="sda1" ino=1977 res=0 errno=0
[  173.941707][ T7451] netlink: 8 bytes leftover after parsing attributes in process `syz.2.772'.
[  173.959332][ T7451] netlink: 'syz.2.772': attribute type 1 has an invalid length.
[  173.977844][ T7451] netlink: 'syz.2.772': attribute type 2 has an invalid length.
[  174.217499][ T7476] netlink: 'syz.0.783': attribute type 1 has an invalid length.
[  174.462078][ T7405] chnl_net:caif_netlink_parms(): no params data found
[  174.562298][ T7489] netlink: 'syz.2.789': attribute type 9 has an invalid length.
[  174.569992][ T7489] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.789'.
[  174.643561][ T7492] netlink: 'syz.4.791': attribute type 13 has an invalid length.
[  174.658441][ T7492] netlink: 152 bytes leftover after parsing attributes in process `syz.4.791'.
[  174.675604][ T7492] syz_tun: refused to change device tx_queue_len
[  174.691818][ T7492] A link change request failed with some changes committed already. Interface syz_tun may have been left with an inconsistent configuration, please check.
[  174.850077][ T7501] loop4: detected capacity change from 0 to 4096
[  174.937788][ T7493] netlink: 'syz.2.789': attribute type 9 has an invalid length.
[  174.947375][ T7493] netlink: 209836 bytes leftover after parsing attributes in process `syz.2.789'.
[  174.977801][ T7405] bridge0: port 1(bridge_slave_0) entered blocking state
[  174.990706][ T7405] bridge0: port 1(bridge_slave_0) entered disabled state
[  175.006428][ T7405] bridge_slave_0: entered allmulticast mode
[  175.026998][ T7405] bridge_slave_0: entered promiscuous mode
[  175.150771][ T7405] bridge0: port 2(bridge_slave_1) entered blocking state
[  175.164770][ T7516] loop3: detected capacity change from 0 to 512
[  175.176754][ T7405] bridge0: port 2(bridge_slave_1) entered disabled state
[  175.194227][ T7405] bridge_slave_1: entered allmulticast mode
[  175.204003][ T7405] bridge_slave_1: entered promiscuous mode
[  175.363468][ T7516] EXT4-fs (loop3): Test dummy encryption mode enabled
[  175.370482][ T7516] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  175.408588][ T7516] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  175.449501][ T7516] EXT4-fs (loop3): 1 truncate cleaned up
[  175.476943][ T7405] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  175.492689][ T7516] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.509964][ T7405] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  175.591626][ T7516] EXT4-fs error (device loop3): htree_dirblock_to_tree:1111: inode #2: block 13: comm syz.3.795: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=16, rec_len=0, size=1024 fake=0
[  175.630296][ T7516] EXT4-fs (loop3): Remounting filesystem read-only
[  175.640619][ T7405] team0: Port device team_slave_0 added
[  175.674869][ T7405] team0: Port device team_slave_1 added
[  175.686353][ T5101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.748785][ T7405] batman_adv: batadv0: Adding interface: batadv_slave_0
[  175.757790][ T7405] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.783839][ T7405] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  175.800448][ T7405] batman_adv: batadv0: Adding interface: batadv_slave_1
[  175.807440][ T7405] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  175.840250][ T7405] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  175.871877][ T7540] loop4: detected capacity change from 0 to 1024
[  175.962690][ T7405] hsr_slave_0: entered promiscuous mode
[  175.971772][ T7405] hsr_slave_1: entered promiscuous mode
[  175.984138][ T5097] Bluetooth: hci2: command tx timeout
[  177.401974][ T7557] netlink: 'syz.0.808': attribute type 9 has an invalid length.
[  177.410930][ T7557] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.808'.
[  177.615332][ T7545] hfsplus: found bad thread record in catalog
[  177.647485][ T7560] netlink: 'syz.0.808': attribute type 9 has an invalid length.
[  177.662745][ T7560] netlink: 209836 bytes leftover after parsing attributes in process `syz.0.808'.
[  177.802935][ T5097] Bluetooth: hci0: command 0x0406 tx timeout
[  178.177572][ T7575] netlink: 8 bytes leftover after parsing attributes in process `syz.2.813'.
[  178.332826][ T5097] Bluetooth: hci2: command tx timeout
[  178.847119][ T7577] loop3: detected capacity change from 0 to 512
[  178.965364][ T7577] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.001099][ T7405] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  179.031744][ T7405] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  179.056099][ T7577] ext4 filesystem being mounted at /root/syzkaller.kKrUlJ/179/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  179.081142][ T7405] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  179.141065][ T7405] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  179.186077][   T12] hfsplus: b-tree write err: -5, ino 4
[  179.206293][ T5101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  179.307247][   T29] audit: type=1326 audit(1719519543.602:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  179.405910][   T29] audit: type=1326 audit(1719519543.630:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  179.464855][   T29] audit: type=1326 audit(1719519543.639:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  179.478681][ T7602] loop4: detected capacity change from 0 to 256
[  179.536230][ T7602] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  179.539120][   T29] audit: type=1326 audit(1719519543.639:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  179.599042][   T29] audit: type=1326 audit(1719519543.639:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  179.907501][   T29] audit: type=1326 audit(1719519543.639:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f11b4575b29 code=0x7ffc0000
[  180.271232][   T29] audit: type=1326 audit(1719519543.639:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f11b456cba7 code=0x7ffc0000
[  180.473195][ T7606] xt_socket: unknown flags 0x50
[  180.538490][   T29] audit: type=1326 audit(1719519543.639:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f11b4511559 code=0x7ffc0000
[  180.540465][ T7405] 8021q: adding VLAN 0 to HW filter on device bond0
[  180.560803][   T29] audit: type=1326 audit(1719519543.639:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f11b456cba7 code=0x7ffc0000
[  180.590788][   T29] audit: type=1326 audit(1719519543.639:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7592 comm="syz.2.823" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f11b4511559 code=0x7ffc0000
[  180.801617][ T7405] 8021q: adding VLAN 0 to HW filter on device team0
[  180.855042][ T5145] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.862249][ T5145] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.895566][ T5145] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.902787][ T5145] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.960976][ T7638] loop3: detected capacity change from 0 to 256
[  181.005736][ T7638] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  181.035631][ T7644] xt_socket: unknown flags 0x50
[  181.678645][ T7405] 8021q: adding VLAN 0 to HW filter on device batadv0
[  182.514608][ T7683] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_1, syncid = 0, id = 0
[  182.561139][ T7686] IPVS: stopping backup sync thread 7683 ...
[  182.708610][ T7405] veth0_vlan: entered promiscuous mode
[  182.784741][ T7405] veth1_vlan: entered promiscuous mode
[  182.981956][ T7405] veth0_macvtap: entered promiscuous mode
[  183.000139][ T7405] veth1_macvtap: entered promiscuous mode
[  183.062431][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.079403][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.095875][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.106762][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.121874][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.123088][   T25] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  183.132708][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.154930][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  183.165478][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.187041][ T7405] batman_adv: batadv0: Interface activated: batadv_slave_0
[  183.206592][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.217650][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.230553][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.246127][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.257208][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.278294][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.295685][ T7405] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  183.309505][ T7405] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  183.326312][ T7405] batman_adv: batadv0: Interface activated: batadv_slave_1
[  183.339211][ T7730] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_1, syncid = 0, id = 0
[  183.357568][ T7731] IPVS: stopping backup sync thread 7730 ...
[  183.361818][   T25] usb 5-1: Using ep0 maxpacket: 32
[  183.372033][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  183.385667][ T7405] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.387411][   T25] usb 5-1: New USB device found, idVendor=1ba6, idProduct=0001, bcdDevice=49.88
[  183.399007][ T7405] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.407962][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.415253][ T7405] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.427326][   T25] usb 5-1: Product: syz
[  183.432995][ T7405] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  183.434387][   T25] usb 5-1: Manufacturer: syz
[  183.455188][   T25] usb 5-1: SerialNumber: syz
[  183.464028][   T25] usb 5-1: config 0 descriptor??
[  183.481985][   T25] as10x_usb: device has been detected
[  183.491250][   T25] dvbdev: DVB: registering new adapter (Abilis Systems DVB-Titan)
[  183.537916][   T25] usb 5-1: DVB: registering adapter 1 frontend 0 (Abilis Systems DVB-Titan)...
[  183.603878][   T25] as10x_usb: error during firmware upload part1
[  183.614509][   T25] Registered device Abilis Systems DVB-Titan
[  183.637258][ T2866] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  183.653179][ T2866] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  183.698072][ T5097] Bluetooth: hci4: command 0x0406 tx timeout
[  183.771623][ T2879] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  183.797320][ T2879] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  183.995726][ T7742] loop3: detected capacity change from 0 to 16
[  184.016265][ T7742] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  184.050657][   T25] usb 5-1: USB disconnect, device number 2
[  184.056713][ T7742] cramfs: empty filesystem
[  184.124707][   T25] Unregistered device Abilis Systems DVB-Titan
[  184.126697][   T25] as10x_usb: device has been disconnected
[  184.217860][ T5100] Bluetooth: hci0: command 0x0406 tx timeout
[  184.465535][ T7753] loop3: detected capacity change from 0 to 512
[  184.530072][ T7753] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  184.549196][ T7753] EXT4-fs (loop3): orphan cleanup on readonly fs
[  184.558091][ T7753] EXT4-fs warning (device loop3): ext4_enable_quotas:7076: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  184.576894][ T7753] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  184.584879][ T7753] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #16: comm syz.3.888: casefold flag without casefold feature
[  184.626554][ T7753] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.888: couldn't read orphan inode 16 (err -117)
[  184.786496][ T7753] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  185.009033][ T5100] Bluetooth: hci1: command 0x0406 tx timeout
[  185.445053][ T5101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.662576][   T29] kauditd_printk_skb: 75 callbacks suppressed
[  185.662594][   T29] audit: type=1804 audit(1719519549.470:246): pid=7770 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.895" name="/file0/root/syzkaller.rJAZZB/263/bus" dev="sda1" ino=1973 res=1 errno=0
[  185.753481][   T29] audit: type=1804 audit(1719519549.553:247): pid=7770 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.895" name="/file0/root/syzkaller.rJAZZB/263/bus" dev="sda1" ino=1973 res=1 errno=0
[  186.222986][ T7801] 9pnet_fd: Insufficient options for proto=fd
[  186.687275][ T2879] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.966972][ T7806] loop3: detected capacity change from 0 to 32768
[  186.976115][ T7806] bcachefs (/dev/loop3): error validating superblock: Invalid superblock section replicas_v0: invalid device 0 in entry journal: 1/1 [0]
[  186.976115][ T7806] replicas_v0 (size 24):
[  186.976115][ T7806] btree: 1 [0] journal: 1 [0] user: 1 [0]
[  186.976115][ T7806] 
[  187.510405][ T2879] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.576308][ T2879] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.656582][ T7821] netlink: 'syz.0.915': attribute type 1 has an invalid length.
[  187.734438][ T2879] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  188.079818][ T2879] bridge_slave_1: left allmulticast mode
[  188.092096][ T5097] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  188.092708][ T2879] bridge_slave_1: left promiscuous mode
[  188.110339][ T5097] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  188.120757][ T2879] bridge0: port 2(bridge_slave_1) entered disabled state
[  188.120834][ T5097] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  188.137808][ T5097] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  188.147411][ T2879] bridge_slave_0: left allmulticast mode
[  188.162576][ T2879] bridge_slave_0: left promiscuous mode
[  188.162861][ T5097] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  188.176811][ T2879] bridge0: port 1(bridge_slave_0) entered disabled state
[  188.179424][ T5097] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  188.289125][ T5143] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  188.362069][ T7852] netlink: 'syz.3.930': attribute type 1 has an invalid length.
[  188.427950][   T29] audit: type=1804 audit(1719519552.017:248): pid=7855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.931" name="/file0/root/syzkaller.vAhrag/248/bus" dev="sda1" ino=1972 res=1 errno=0
[  188.538206][ T5143] usb 5-1: Using ep0 maxpacket: 32
[  188.565222][ T5143] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  188.612031][ T5143] usb 5-1: New USB device found, idVendor=1ba6, idProduct=0001, bcdDevice=49.88
[  188.635263][ T5143] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  188.653533][ T5143] usb 5-1: Product: syz
[  188.673591][ T5143] usb 5-1: Manufacturer: syz
[  188.678240][ T5143] usb 5-1: SerialNumber: syz
[  188.963165][ T5143] usb 5-1: config 0 descriptor??
[  189.231617][ T5143] as10x_usb: device has been detected
[  189.337160][ T5143] dvbdev: DVB: registering new adapter (Abilis Systems DVB-Titan)
[  189.357991][ T5143] usb 5-1: DVB: registering adapter 1 frontend 0 (Abilis Systems DVB-Titan)...
[  189.403239][ T5143] as10x_usb: error during firmware upload part1
[  189.416308][ T5143] Registered device Abilis Systems DVB-Titan
[  189.421452][ T5143] usb 5-1: USB disconnect, device number 3
[  189.480101][ T5143] Unregistered device Abilis Systems DVB-Titan
[  189.481569][ T5143] as10x_usb: device has been disconnected
[  189.493401][ T7875] netlink: 'syz.0.939': attribute type 23 has an invalid length.
[  189.539457][ T7877] loop3: detected capacity change from 0 to 512
[  189.567247][ T7877] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  189.597444][ T7877] EXT4-fs (loop3): 1 truncate cleaned up
[  189.623906][ T7877] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  189.871237][ T5101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  189.894015][ T2879] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  189.947002][ T2879] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  189.958797][ T2879] bond0 (unregistering): Released all slaves
[  189.972809][ T7865] netlink: 24 bytes leftover after parsing attributes in process `syz.2.937'.
[  190.201786][ T5100] Bluetooth: hci1: command 0x0406 tx timeout
[  193.998519][ T5097] Bluetooth: hci2: command tx timeout
[  194.726228][ T7902] loop3: detected capacity change from 0 to 512
[  194.765088][ T7902] EXT4-fs (loop3): revision level too high, forcing read-only mode
[  194.785548][ T7902] EXT4-fs (loop3): orphan cleanup on readonly fs
[  194.817062][ T7902] Quota error (device loop3): v2_read_file_info: Block with free entry 32513 out of range (1, 6).
[  194.838852][ T7902] EXT4-fs warning (device loop3): ext4_enable_quotas:7076: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  194.883098][ T7902] EXT4-fs (loop3): Cannot turn on quotas: error -117
[  194.902672][ T7902] EXT4-fs error (device loop3): ext4_orphan_get:1394: inode #16: comm syz.3.949: casefold flag without casefold feature
[  194.932925][ T7914] IPVS: sync thread started: state = BACKUP, mcast_ifn = bridge_slave_1, syncid = 0, id = 0
[  194.938014][ T7912] IPVS: stopping backup sync thread 7914 ...
[  194.958018][ T7902] EXT4-fs error (device loop3): ext4_orphan_get:1399: comm syz.3.949: couldn't read orphan inode 16 (err -117)
[  195.007990][ T7902] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  195.111925][ T2879] hsr_slave_0: left promiscuous mode
[  195.144058][ T2879] hsr_slave_1: left promiscuous mode
[  195.199433][ T2879] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  195.206923][ T2879] batman_adv: batadv0: Removing interface: batadv_slave_0
[  195.215550][ T5101] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  195.245521][   T29] audit: type=1804 audit(1719519558.310:249): pid=7891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.943" name="/file0/root/syzkaller.rJAZZB/278/bus" dev="sda1" ino=1967 res=1 errno=0
[  195.287789][ T2879] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  195.315031][ T2879] batman_adv: batadv0: Removing interface: batadv_slave_1
[  195.337478][   T29] audit: type=1800 audit(1719519558.310:250): pid=7891 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.943" name="bus" dev="sda1" ino=1967 res=0 errno=0
[  195.407797][ T2879] veth1_macvtap: left promiscuous mode
[  195.436708][ T2879] veth0_macvtap: left promiscuous mode
[  195.446832][ T2879] veth1_vlan: left promiscuous mode
[  195.453362][ T2879] veth0_vlan: left promiscuous mode
[  195.471773][ T7927] syz.2.957 uses obsolete (PF_INET,SOCK_PACKET)
[  196.371986][ T5100] Bluetooth: hci2: command tx timeout
[  196.863101][ T2879] team0 (unregistering): Port device team_slave_1 removed
[  196.910670][ T2879] team0 (unregistering): Port device team_slave_0 removed
[  197.490802][   T29] audit: type=1800 audit(1719519560.377:251): pid=7952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.965" name="bus" dev="sda1" ino=1978 res=0 errno=0
[  197.504037][ T7950] loop3: detected capacity change from 0 to 1024
[  197.537625][   T29] audit: type=1800 audit(1719519560.414:252): pid=7952 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.965" name="bus" dev="sda1" ino=1978 res=0 errno=0
[  197.746710][ T7962] loop4: detected capacity change from 0 to 256
[  197.920392][ T7967] netlink: 24 bytes leftover after parsing attributes in process `syz.2.971'.
[  198.045117][ T7843] chnl_net:caif_netlink_parms(): no params data found
[  198.692196][ T5100] Bluetooth: hci2: command tx timeout
[  199.164619][ T7843] bridge0: port 1(bridge_slave_0) entered blocking state
[  199.197205][ T7843] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.233103][ T7843] bridge_slave_0: entered allmulticast mode
[  199.261877][ T7843] bridge_slave_0: entered promiscuous mode
[  199.287192][ T7843] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.304225][ T7843] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.311522][ T7843] bridge_slave_1: entered allmulticast mode
[  199.330850][ T7843] bridge_slave_1: entered promiscuous mode
[  199.378689][ T4493] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  199.391513][ T4493] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  199.413688][ T4493] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  199.424575][ T4493] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  199.432350][ T4493] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  199.442497][ T4493] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  199.469107][ T7843] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  199.547268][ T7843] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  201.037971][ T5100] Bluetooth: hci2: command tx timeout
[  201.447388][ T2879] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.481770][ T7843] team0: Port device team_slave_0 added
[  201.505675][ T7843] team0: Port device team_slave_1 added
[  201.645338][ T5100] Bluetooth: hci4: command tx timeout
[  201.664469][   T29] audit: type=1800 audit(1719519564.234:253): pid=8017 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.989" name="bus" dev="sda1" ino=1975 res=0 errno=0
[  201.666916][ T2879] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.825818][ T2879] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.859237][ T7843] batman_adv: batadv0: Adding interface: batadv_slave_0
[  201.873686][ T7843] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.948626][ T7843] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  201.977933][ T7843] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.995689][ T7843] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  202.056870][ T7843] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  202.107853][ T2879] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.141551][ T8028] netdevsim netdevsim4 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  202.150944][ T8028] netdevsim netdevsim4 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  202.160179][ T8028] netdevsim netdevsim4 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  202.169305][ T8028] netdevsim netdevsim4 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  202.275044][ T7843] hsr_slave_0: entered promiscuous mode
[  202.301368][ T7843] hsr_slave_1: entered promiscuous mode
[  202.344285][   T29] audit: type=1800 audit(1719519564.861:254): pid=8036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.997" name="bus" dev="sda1" ino=1975 res=0 errno=0
[  202.404967][   T29] audit: type=1800 audit(1719519564.861:255): pid=8036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.997" name="bus" dev="sda1" ino=1975 res=0 errno=0
[  203.718541][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  203.900928][ T2879] bridge_slave_1: left allmulticast mode
[  203.906643][ T2879] bridge_slave_1: left promiscuous mode
[  203.910927][ T5100] Bluetooth: hci4: command tx timeout
[  203.950593][ T2879] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.990129][ T2879] bridge_slave_0: left allmulticast mode
[  203.995846][ T2879] bridge_slave_0: left promiscuous mode
[  204.037056][ T2879] bridge0: port 1(bridge_slave_0) entered disabled state
[  205.001418][ T2879] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  205.018232][ T2879] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  205.036273][ T2879] bond0 (unregistering): Released all slaves
[  205.090237][ T8074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1013'.
[  205.312408][ T7984] chnl_net:caif_netlink_parms(): no params data found
[  205.677014][ T2879] hsr_slave_0: left promiscuous mode
[  205.698564][ T2879] hsr_slave_1: left promiscuous mode
[  205.704825][ T2879] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  205.725310][ T2879] batman_adv: batadv0: Removing interface: batadv_slave_0
[  205.743328][ T2879] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  205.750756][ T2879] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.820521][ T2879] veth1_macvtap: left promiscuous mode
[  205.826220][ T2879] veth0_macvtap: left promiscuous mode
[  205.832777][ T2879] veth1_vlan: left promiscuous mode
[  205.838234][ T2879] veth0_vlan: left promiscuous mode
[  206.160457][ T5100] Bluetooth: hci4: command tx timeout
[  206.162005][   T29] audit: type=1804 audit(1719519568.376:256): pid=8095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1021" name="/file0/root/syzkaller.rJAZZB/299/bus" dev="sda1" ino=1971 res=1 errno=0
[  206.222342][   T29] audit: type=1800 audit(1719519568.395:257): pid=8095 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1021" name="bus" dev="sda1" ino=1971 res=0 errno=0
[  206.864369][ T2879] team0 (unregistering): Port device team_slave_1 removed
[  207.581712][ T2879] team0 (unregistering): Port device team_slave_0 removed
[  207.801109][    C0] ip6_tunnel: ip6tnl1 xmit: Local address not yet configured!
[  208.107282][ T5146] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  208.277639][ T7984] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.284886][ T7984] bridge0: port 1(bridge_slave_0) entered disabled state
[  208.310294][ T7984] bridge_slave_0: entered allmulticast mode
[  208.315542][ T5146] usb 5-1: Using ep0 maxpacket: 8
[  208.317485][ T7984] bridge_slave_0: entered promiscuous mode
[  208.332538][ T5146] usb 5-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  208.350253][ T7984] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.359604][ T5146] usb 5-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  208.377908][ T5146] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[  208.383134][ T7984] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.392632][ T5146] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  208.396100][ T7984] bridge_slave_1: entered allmulticast mode
[  208.411315][ T5100] Bluetooth: hci4: command tx timeout
[  208.414810][ T5146] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  208.427401][ T5146] usb 5-1: Product: syz
[  208.437659][ T7984] bridge_slave_1: entered promiscuous mode
[  208.452870][ T5146] usb 5-1: Manufacturer: syz
[  208.472600][ T5146] usb 5-1: SerialNumber: syz
[  208.539203][ T8156] netlink: 'syz.2.1045': attribute type 1 has an invalid length.
[  208.547229][ T8156] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.1045'.
[  208.560100][ T8157] netlink: 'syz.0.1046': attribute type 1 has an invalid length.
[  208.568099][ T8157] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1046'.
[  208.606339][ T7984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.641178][ T7984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  209.168668][ T8138] infiniband syz1: ib_query_port failed (-19)
[  209.372559][ T8138] infiniband syz1: Couldn't set up InfiniBand P_Key/GID cache
[  209.465799][ T5146] usb 5-1: 0:2 : does not exist
[  209.479585][ T8138] ------------[ cut here ]------------
[  209.485849][ T8138] GID entry ref leak for dev syz1 index 0 ref=1
[  209.500434][ T5146] usb 5-1: USB disconnect, device number 4
[  209.530627][ T8138] WARNING: CPU: 0 PID: 8138 at drivers/infiniband/core/cache.c:809 gid_table_release_one+0x33f/0x4d0
[  209.530678][ T8138] Modules linked in:
[  209.530708][ T8138] CPU: 0 UID: 0 PID: 8138 Comm: syz.4.1038 Not tainted 6.10.0-rc5-next-20240627-syzkaller #0
[  209.530731][ T8138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  209.530744][ T8138] RIP: 0010:gid_table_release_one+0x33f/0x4d0
[  209.530765][ T8138] Code: 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 3e 41 8b 0c 24 48 c7 c7 e0 d8 a7 8c 48 89 de 44 89 fa e8 b2 44 cd f8 90 <0f> 0b 90 90 e9 d3 fe ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c
[  209.530782][ T8138] RSP: 0018:ffffc90003a46fe8 EFLAGS: 00010246
[  209.530798][ T8138] RAX: 261945acb46abf00 RBX: ffff88801f20f5c0 RCX: 0000000000040000
[  209.530812][ T8138] RDX: ffffc90009c51000 RSI: 000000000002a282 RDI: 000000000002a283
[  209.530826][ T8138] RBP: ffff88802c4eb2d8 R08: ffffffff81554852 R09: fffffbfff1c39b5c
[  209.530840][ T8138] R10: dffffc0000000000 R11: fffffbfff1c39b5c R12: ffff88807acc8200
[  209.530854][ T8138] R13: ffff88802c4eb200 R14: 1ffff1100589d65b R15: 0000000000000000
[  209.530868][ T8138] FS:  00007f81121956c0(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  209.530884][ T8138] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  209.530898][ T8138] CR2: 0000001b32003ff8 CR3: 000000006161e000 CR4: 00000000003506f0
[  209.530915][ T8138] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  209.530926][ T8138] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  209.530939][ T8138] Call Trace:
[  209.530946][ T8138]  <TASK>
[  209.530955][ T8138]  ? __warn+0x168/0x4e0
[  209.530973][ T8138]  ? gid_table_release_one+0x33f/0x4d0
[  209.530998][ T8138]  ? report_bug+0x2b3/0x500
[  209.531023][ T8138]  ? gid_table_release_one+0x33f/0x4d0
[  209.531049][ T8138]  ? handle_bug+0x3e/0x70
[  209.531068][ T8138]  ? exc_invalid_op+0x1a/0x50
[  209.531087][ T8138]  ? asm_exc_invalid_op+0x1a/0x20
[  209.531114][ T8138]  ? __warn_printk+0x292/0x360
[  209.531152][ T8138]  ? gid_table_release_one+0x33f/0x4d0
[  209.531175][ T8138]  ? gid_table_release_one+0x33e/0x4d0
[  209.531207][ T8138]  ib_device_release+0xd0/0x1b0
[  209.531261][ T8138]  ? __pfx_ib_device_release+0x10/0x10
[  209.531290][ T8138]  device_release+0x99/0x1c0
[  209.531313][ T8138]  kobject_put+0x22f/0x480
[  209.531347][ T8138]  rxe_net_add+0x93/0xd0
[  209.531373][ T8138]  rxe_newlink+0xde/0x1a0
[  209.531398][ T8138]  nldev_newlink+0x5d0/0x640
[  209.531421][ T8138]  ? __pfx_nldev_newlink+0x10/0x10
[  209.531520][ T8138]  ? aa_get_newest_label+0xff/0x6f0
[  209.531548][ T8138]  ? __pfx_aa_get_newest_label+0x10/0x10
[  209.531573][ T8138]  ? __pfx_aa_get_newest_label+0x10/0x10
[  209.531607][ T8138]  ? apparmor_capable+0x138/0x1b0
[  209.531637][ T8138]  ? __pfx_nldev_newlink+0x10/0x10
[  209.531658][ T8138]  rdma_nl_rcv+0x6dd/0x9e0
[  209.531693][ T8138]  ? __pfx_rdma_nl_rcv+0x10/0x10
[  209.531748][ T8138]  ? netlink_deliver_tap+0x2e/0x1b0
[  209.531776][ T8138]  netlink_unicast+0x7f0/0x990
[  209.531802][ T8138]  ? __pfx_netlink_unicast+0x10/0x10
[  209.531818][ T8138]  ? __virt_addr_valid+0x183/0x530
[  209.531846][ T8138]  ? __check_object_size+0x49c/0x900
[  209.531868][ T8138]  ? bpf_lsm_netlink_send+0x9/0x10
[  209.531891][ T8138]  netlink_sendmsg+0x8e4/0xcb0
[  209.531922][ T8138]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.531944][ T8138]  ? __import_iovec+0x536/0x820
[  209.531960][ T8138]  ? aa_sock_msg_perm+0x91/0x160
[  209.531987][ T8138]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  209.532009][ T8138]  ? security_socket_sendmsg+0x87/0xb0
[  209.532032][ T8138]  ? __pfx_netlink_sendmsg+0x10/0x10
[  209.532051][ T8138]  __sock_sendmsg+0x221/0x270
[  209.532075][ T8138]  ____sys_sendmsg+0x525/0x7d0
[  209.532110][ T8138]  ? __pfx_____sys_sendmsg+0x10/0x10
[  209.532151][ T8138]  __sys_sendmsg+0x2b0/0x3a0
[  209.532179][ T8138]  ? __pfx___sys_sendmsg+0x10/0x10
[  209.532252][ T8138]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  209.532278][ T8138]  ? do_syscall_64+0x100/0x230
[  209.532301][ T8138]  ? do_syscall_64+0xb6/0x230
[  209.532330][ T8138]  do_syscall_64+0xf3/0x230
[  209.532348][ T8138]  ? clear_bhb_loop+0x35/0x90
[  209.532371][ T8138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  209.532391][ T8138] RIP: 0033:0x7f8111375b29
[  209.532410][ T8138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  209.532426][ T8138] RSP: 002b:00007f8112195048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  209.532447][ T8138] RAX: ffffffffffffffda RBX: 00007f8111503fa0 RCX: 00007f8111375b29
[  209.532462][ T8138] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000006
[  209.532474][ T8138] RBP: 00007f81113f6756 R08: 0000000000000000 R09: 0000000000000000
[  209.532487][ T8138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  209.532498][ T8138] R13: 000000000000000b R14: 00007f8111503fa0 R15: 00007fffa8128aa8
[  209.532529][ T8138]  </TASK>
[  209.532538][ T8138] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  210.011026][ T8138] CPU: 0 UID: 0 PID: 8138 Comm: syz.4.1038 Not tainted 6.10.0-rc5-next-20240627-syzkaller #0
[  210.021174][ T8138] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  210.031340][ T8138] Call Trace:
[  210.034635][ T8138]  <TASK>
[  210.037596][ T8138]  dump_stack_lvl+0x241/0x360
[  210.042282][ T8138]  ? __pfx_dump_stack_lvl+0x10/0x10
[  210.047479][ T8138]  ? __pfx__printk+0x10/0x10
[  210.052070][ T8138]  ? vscnprintf+0x5d/0x90
[  210.056394][ T8138]  panic+0x349/0x870
[  210.060285][ T8138]  ? __warn+0x177/0x4e0
[  210.064438][ T8138]  ? __pfx_panic+0x10/0x10
[  210.068860][ T8138]  __warn+0x34b/0x4e0
[  210.072858][ T8138]  ? gid_table_release_one+0x33f/0x4d0
[  210.078342][ T8138]  report_bug+0x2b3/0x500
[  210.082676][ T8138]  ? gid_table_release_one+0x33f/0x4d0
[  210.088142][ T8138]  handle_bug+0x3e/0x70
[  210.092302][ T8138]  exc_invalid_op+0x1a/0x50
[  210.096802][ T8138]  asm_exc_invalid_op+0x1a/0x20
[  210.101687][ T8138] RIP: 0010:gid_table_release_one+0x33f/0x4d0
[  210.107745][ T8138] Code: 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 3e 41 8b 0c 24 48 c7 c7 e0 d8 a7 8c 48 89 de 44 89 fa e8 b2 44 cd f8 90 <0f> 0b 90 90 e9 d3 fe ff ff 44 89 e9 80 e1 07 80 c1 03 38 c1 0f 8c
[  210.127341][ T8138] RSP: 0018:ffffc90003a46fe8 EFLAGS: 00010246
[  210.133411][ T8138] RAX: 261945acb46abf00 RBX: ffff88801f20f5c0 RCX: 0000000000040000
[  210.141373][ T8138] RDX: ffffc90009c51000 RSI: 000000000002a282 RDI: 000000000002a283
[  210.149337][ T8138] RBP: ffff88802c4eb2d8 R08: ffffffff81554852 R09: fffffbfff1c39b5c
[  210.157303][ T8138] R10: dffffc0000000000 R11: fffffbfff1c39b5c R12: ffff88807acc8200
[  210.165356][ T8138] R13: ffff88802c4eb200 R14: 1ffff1100589d65b R15: 0000000000000000
[  210.173325][ T8138]  ? __warn_printk+0x292/0x360
[  210.178089][ T8138]  ? gid_table_release_one+0x33e/0x4d0
[  210.183546][ T8138]  ib_device_release+0xd0/0x1b0
[  210.188395][ T8138]  ? __pfx_ib_device_release+0x10/0x10
[  210.193850][ T8138]  device_release+0x99/0x1c0
[  210.198434][ T8138]  kobject_put+0x22f/0x480
[  210.202845][ T8138]  rxe_net_add+0x93/0xd0
[  210.207085][ T8138]  rxe_newlink+0xde/0x1a0
[  210.211407][ T8138]  nldev_newlink+0x5d0/0x640
[  210.215992][ T8138]  ? __pfx_nldev_newlink+0x10/0x10
[  210.221150][ T8138]  ? aa_get_newest_label+0xff/0x6f0
[  210.226346][ T8138]  ? __pfx_aa_get_newest_label+0x10/0x10
[  210.231973][ T8138]  ? __pfx_aa_get_newest_label+0x10/0x10
[  210.237605][ T8138]  ? apparmor_capable+0x138/0x1b0
[  210.242626][ T8138]  ? __pfx_nldev_newlink+0x10/0x10
[  210.247732][ T8138]  rdma_nl_rcv+0x6dd/0x9e0
[  210.252151][ T8138]  ? __pfx_rdma_nl_rcv+0x10/0x10
[  210.257104][ T8138]  ? netlink_deliver_tap+0x2e/0x1b0
[  210.262301][ T8138]  netlink_unicast+0x7f0/0x990
[  210.267065][ T8138]  ? __pfx_netlink_unicast+0x10/0x10
[  210.272513][ T8138]  ? __virt_addr_valid+0x183/0x530
[  210.277623][ T8138]  ? __check_object_size+0x49c/0x900
[  210.282899][ T8138]  ? bpf_lsm_netlink_send+0x9/0x10
[  210.288006][ T8138]  netlink_sendmsg+0x8e4/0xcb0
[  210.292771][ T8138]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.298050][ T8138]  ? __import_iovec+0x536/0x820
[  210.302889][ T8138]  ? aa_sock_msg_perm+0x91/0x160
[  210.307823][ T8138]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  210.313099][ T8138]  ? security_socket_sendmsg+0x87/0xb0
[  210.318551][ T8138]  ? __pfx_netlink_sendmsg+0x10/0x10
[  210.323825][ T8138]  __sock_sendmsg+0x221/0x270
[  210.328497][ T8138]  ____sys_sendmsg+0x525/0x7d0
[  210.333263][ T8138]  ? __pfx_____sys_sendmsg+0x10/0x10
[  210.338578][ T8138]  __sys_sendmsg+0x2b0/0x3a0
[  210.343187][ T8138]  ? __pfx___sys_sendmsg+0x10/0x10
[  210.348337][ T8138]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  210.354708][ T8138]  ? do_syscall_64+0x100/0x230
[  210.359485][ T8138]  ? do_syscall_64+0xb6/0x230
[  210.364190][ T8138]  do_syscall_64+0xf3/0x230
[  210.368705][ T8138]  ? clear_bhb_loop+0x35/0x90
[  210.373394][ T8138]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.379293][ T8138] RIP: 0033:0x7f8111375b29
[  210.383707][ T8138] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  210.403309][ T8138] RSP: 002b:00007f8112195048 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  210.411718][ T8138] RAX: ffffffffffffffda RBX: 00007f8111503fa0 RCX: 00007f8111375b29
[  210.419681][ T8138] RDX: 0000000000000000 RSI: 00000000200002c0 RDI: 0000000000000006
[  210.427646][ T8138] RBP: 00007f81113f6756 R08: 0000000000000000 R09: 0000000000000000
[  210.435608][ T8138] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  210.443567][ T8138] R13: 000000000000000b R14: 00007f8111503fa0 R15: 00007fffa8128aa8
[  210.451552][ T8138]  </TASK>
[  210.454776][ T8138] Kernel Offset: disabled
[  210.459170][ T8138] Rebooting in 86400 seconds..