last executing test programs:

6m41.154067287s ago: executing program 3 (id=4):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x22000402, &(0x7f0000000080)={[{@dioread_lock}, {@noblock_validity}, {@data_err_abort}, {@discard}, {@auto_da_alloc}, {@grpjquota, 0x2e}, {@usrjquota}, {@errors_remount}, {@jqfmt_vfsv1}, {@grpid}], [], 0x2c}, 0x85, 0x4e6, &(0x7f00000001c0)="$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")
socket(0x10, 0x3, 0x0)
r0 = socket$inet6_udplite(0xa, 0x2, 0x88)
r1 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r1, 0x107, 0x12, &(0x7f0000000040)={0x3, 0x1000}, 0x4)
r2 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000440), 0xa080)
ioctl$SNDRV_TIMER_IOCTL_GSTATUS(r2, 0xc0505405, &(0x7f0000000b00)={{0x1, 0x3, 0x1ff}, 0xd, 0x100000200, 0x2e})
connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e21, 0x679, @dev={0xfe, 0x80, '\x00', 0x3a}, 0x1}, 0x1c)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000000280)={0xffffffffffffffff, 0x0, &(0x7f0000000200)=""/76}, 0x20)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_procfs(0x0, &(0x7f00000001c0)='net/fib_triestat\x00')
read$FUSE(r4, &(0x7f0000004480)={0x2020}, 0x2020)
sendmmsg$inet6(r0, &(0x7f0000005400)=[{{&(0x7f0000000040)={0xa, 0x4e27, 0xfff, @remote, 0x2}, 0x18, 0x0}}], 0x40000000000016d, 0x1000)

6m40.740936316s ago: executing program 3 (id=6):
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x4080, &(0x7f00000001c0)=ANY=[@ANYBLOB='lastblock=00000000000000000000,umask=00000000000000000000002,dmode=00000000000000000077777,novrs,shortad,shortad,undelete,iocharset=cp437,shortad,umask=00000000000000000000006,dmode=00000000000000000000002,nostrict,uid=', @ANYRESOCT=0x0, @ANYRES16], 0x2, 0xc36, &(0x7f0000002540)="$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")
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000380)={'wlan0\x00'})
syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r1)
sendmsg$NL80211_CMD_DEL_KEY(r1, 0x0, 0x4800)
syz_mount_image$exfat(0x0, &(0x7f0000000100)='./bus\x00', 0x4800, 0x0, 0x0, 0x0, &(0x7f0000000240))
fcntl$getownex(r0, 0x10, &(0x7f0000000400))
sendmsg$nl_generic(r1, &(0x7f0000000480)={&(0x7f0000000300)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000000440)={0x0}, 0x1, 0x0, 0x0, 0x20008010}, 0x60008002)
r2 = semget$private(0x0, 0x4000000009, 0x88)
r3 = open(&(0x7f0000000180)='./bus\x00', 0x14927e, 0x0)
fallocate(r3, 0x8, 0x9, 0x7fffffffffffffff)
semop(r2, &(0x7f0000000040)=[{0x2, 0xfffe, 0x1000}], 0x1)
semctl$IPC_SET(r2, 0x0, 0x1, &(0x7f0000000340)={{0x0, 0x0, 0x0, 0x0, 0x0, 0xdc, 0x100d}, 0x6, 0x94c, 0x0, 0x0, 0x0, 0x0, 0xf932})
semctl$GETVAL(r2, 0x4, 0xc, 0x0)
semctl$GETNCNT(r2, 0x2, 0xe, &(0x7f0000000040)=""/70)
chdir(&(0x7f00000003c0)='./bus\x00')
mkdir(&(0x7f0000000280)='./file0\x00', 0x0)
r4 = openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x181)
rmdir(&(0x7f0000000000)='./file0\x00')
r5 = open_tree(r4, &(0x7f0000000280)='\x00', 0x89901)
move_mount(r5, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

6m39.635450039s ago: executing program 3 (id=10):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x4, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000001300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

6m39.245616433s ago: executing program 3 (id=13):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x3000000, &(0x7f0000000080)=ANY=[@ANYRES64=0x0], 0x1, 0x5d8, &(0x7f00000006c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x105042, 0x189)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27ffff7, 0x4012011, r0, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
fdatasync(r0)

6m35.856699349s ago: executing program 3 (id=19):
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
rt_sigaction(0x1, &(0x7f0000000080)={0x0, 0x88000000, 0x0, {[0x7]}}, 0x0, 0x8, &(0x7f00000002c0))
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
lseek(r0, 0x80000000457, 0x0)

6m34.18048543s ago: executing program 3 (id=24):
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x10, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000e100000000000000000000000071103200000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="f3ff26bd7200fcdbdf2511000000180001801400020076657468315f746f5f626f6e64"], 0x2c}}, 0x2)

6m33.002634081s ago: executing program 32 (id=24):
socket$inet6_udp(0xa, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x10, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180000e100000000000000000000000071103200000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sk_msg, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f00000002c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000300)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r5, @ANYBLOB="f3ff26bd7200fcdbdf2511000000180001801400020076657468315f746f5f626f6e64"], 0x2c}}, 0x2)

4.753688405s ago: executing program 4 (id=2120):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
bpf$BPF_BTF_GET_FD_BY_ID(0x13, 0x0, 0x0)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
connect$inet(r0, &(0x7f00000000c0)={0x2, 0xfffa, @empty}, 0x10)
r1 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r1, 0x0, 0x27, &(0x7f0000000100)={@multicast1, @local}, 0xc)
syz_emit_ethernet(0x44, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x36, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x0, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b"}}}}}, 0x0)

4.488628459s ago: executing program 4 (id=2124):
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x1, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x18, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
ioctl$TIOCL_SETVESABLANK(r1, 0x560e, &(0x7f0000000140))
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDSIGACCEPT(r2, 0x5607, 0x26)
ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000140)={0x5, 0x4, 0x9fc9})

3.844513242s ago: executing program 0 (id=2126):
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0)
ioctl$COMEDI_INSN(0xffffffffffffffff, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92ff, 0x0, 0x0, 0x80000000})

3.245862366s ago: executing program 5 (id=2127):
openat$fuse(0xffffffffffffff9c, &(0x7f0000002000), 0x2, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x30800, 0x0, 0x3e, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000500)={0x3, 0x4, &(0x7f0000000b40)=@framed={{0x18, 0x2, 0x0, 0x0, 0x7}, [@call={0x85, 0x0, 0x0, 0x54}]}, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x1000}, 0x94)

2.915724455s ago: executing program 4 (id=2128):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000100)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@resgid}, {@data_err_ignore}, {@grpquota}, {@nodioread_nolock}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x563, &(0x7f00000007c0)="$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")
socket$nl_route(0x10, 0x3, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
pwrite64(r0, &(0x7f00000000c0)='a', 0x200000c1, 0x9000)
fcntl$addseals(r0, 0x409, 0x0)

2.840435212s ago: executing program 2 (id=2129):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='contention_end\x00', r0}, 0x18)
setsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX(0xffffffffffffffff, 0x84, 0x6e, 0x0, 0x0)
r1 = socket$xdp(0x2c, 0x3, 0x0)
r2 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r1, 0x11b, 0x2, &(0x7f00000002c0)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r2, 0x8933, &(0x7f0000000280)={'batadv_slave_1\x00', <r3=>0x0})
r4 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r4, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)
setsockopt$XDP_UMEM_COMPLETION_RING(r4, 0x11b, 0x6, &(0x7f0000000080)=0x1, 0x4)
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$XDP_RX_RING(r4, 0x11b, 0x2, &(0x7f0000001980)=0x100, 0x4)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r5, 0x8933, &(0x7f0000000580)={'batadv_slave_1\x00', <r6=>0x0})
setsockopt$XDP_UMEM_FILL_RING(r4, 0x11b, 0x5, &(0x7f0000000300)=0x1, 0x4)
bind$xdp(r4, &(0x7f0000000100)={0x2c, 0x0, r6}, 0x10)
bind$xdp(r1, &(0x7f0000000240)={0x2c, 0x1, r3, 0x0, r4}, 0x60)
getsockopt$XDP_STATISTICS(r1, 0x11b, 0x7, &(0x7f0000000180), &(0x7f0000000200)=0x30)

2.840234505s ago: executing program 0 (id=2130):
r0 = socket$unix(0x1, 0x1, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000380)={'bond0\x00', <r2=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000180)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x25dfdbfb, {0x0, 0x0, 0x0, r2, {0x0, 0xb}, {0xffff, 0xffff}, {0x5, 0xfff2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x5, 0x7ff}}}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000b40)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70b926, 0x80000, {0x0, 0x0, 0x0, r2, {0x0, 0xf}, {0xf, 0xb}, {0xd, 0xb}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x2, 0x4, 0x100}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x21}, 0x4008000)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000200)={0x0, 0x0, 0x0}, 0x20040040)

2.789548512s ago: executing program 5 (id=2131):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='hrtimer_init\x00', r0}, 0x18)
setresuid(0xee00, 0x0, 0x0)
setresgid(0xee00, 0xee01, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
sendmmsg$unix(r1, &(0x7f00000065c0)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, 0x0, 0x0, &(0x7f00000001c0)=[@cred={{0x1c}}], 0x20, 0x44000}}], 0x2, 0x10)
timer_create(0x1, 0x0, &(0x7f0000000000)=<r2=>0x0)
timer_settime(r2, 0x1, &(0x7f0000000880)={{0x0, 0x3938700}, {0x0, 0x989680}}, 0x0)

2.66838902s ago: executing program 5 (id=2132):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000004c0)=0x79, 0x4)
bind$inet(r0, &(0x7f0000000080)={0x2, 0x4e23, @local}, 0x10)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r0, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f0000000100)='bbr\x00', 0x4)
sendmmsg$inet(r0, &(0x7f00000003c0)=[{{0x0, 0x0, &(0x7f0000000500)=[{&(0x7f00000002c0)='h7xc', 0x4}], 0x1}}], 0x1, 0xc0)
sendto$inet(r0, &(0x7f0000000dc0)="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", 0x632, 0x10, 0x0, 0x0)

2.296512117s ago: executing program 2 (id=2133):
r0 = userfaultfd(0x1)
ioctl$UFFDIO_API(r0, 0xc018aa3f, &(0x7f0000000040)={0xaa, 0x270})
ioctl$UFFDIO_ZEROPAGE(r0, 0xc020aa04, 0x0)

2.296011915s ago: executing program 0 (id=2134):
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x1)
openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYBLOB=',grou', @ANYRESDEC=0x0])
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000006c0)={0x18, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f00000004c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000002c0)='contention_begin\x00', r0, 0x0, 0xd}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000540)=0x4)
r1 = openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
openat$binfmt_register(0xffffffffffffff9c, &(0x7f0000000000), 0x1, 0x0)
r2 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r2, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
syz_io_uring_setup(0x7dca, &(0x7f0000000340)={0x0, 0x4, 0x10100, 0x0, 0x2000000}, &(0x7f0000000140), 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000001ec0)=@ipv6_getroute={0x114, 0x1a, 0x100, 0x70bd28, 0x25dfdbfe, {0xa, 0x10, 0x0, 0x4, 0xfd, 0x1, 0xfe, 0x2, 0x2c00}, [@RTA_METRICS={0x99, 0x8, 0x0, 0x1, "823471791e926cb913673fd0ffe340c0a3dc043e2f0cb93fb089f18d7e7ff6a718c9597a9ad7fd8fc2c65e30e036090b1bc70468b9f5a97c9136918c3cd36776a5d79d70c90f0f734154dd58209d3f158cae7403542251dd1229d91cccf23a01ffc88f2ae1fdb0f04de747748fea612950077a57a5238d7ae648a4c1c76ef38853ec4da125e5a50cd46463929baaa38ec9d3ee6191"}, @RTA_IIF={0x8}, @RTA_PRIORITY={0x8, 0x6, 0x5}, @RTA_UID={0x8}, @RTA_PRIORITY={0x8, 0x6, 0x182}, @RTA_GATEWAY={0x14, 0x5, @mcast2}, @RTA_GATEWAY={0x14, 0x5, @empty}, @RTA_GATEWAY={0x14, 0x5, @private0}]}, 0xffffffffffffff69}}, 0x48002)
syz_io_uring_setup(0x186b, &(0x7f00000007c0)={0x0, 0xe1ba, 0x80, 0x0, 0x10}, &(0x7f0000000700), &(0x7f0000000080))
r4 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r4, &(0x7f0000000040), 0x6)
ioctl$sock_bt_hci(r4, 0x400448e6, &(0x7f0000000080)="fc")
ioctl$sock_bt_hci(r4, 0x400448e7, &(0x7f0000000080))
r5 = socket$inet(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000300)={'bond0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000001880)={0x0, 0x0, &(0x7f0000001600)=[{&(0x7f0000000000)="19f83a7ee8714a624307f0aba3bc03317ca0d272ddaa01c89eefa87f8eb471f3f966ef18d88f2f51277f3346294925ce7b4d282be6e9f0", 0x37}, {&(0x7f00000013c0)="90a5bd212ca5da03101b401ac282d4d16e2b41ada48f9a5a540bbbabf093a2ab8808ca95f51e02731f8d814bdca023658c024ec80c57b8faa533dbf23cc4433a86a712ec487d1e109e3c6045fe3081b066ad5cffc301500127332363055d33cdd1c195b265f13a40ef0d194771421e57ecc77f29a9786e4c4a", 0x79}, {&(0x7f0000001540)="1b801ed99c192032a4eb5bf6bc48198734d3b80d224611a9643a7fe73fde8f5f81701a698e748b7db1a0a20085968b86e2c4506bd6970bd0e0532384bfa1a77dc7809728411142aceccef61c58338aac2a94e73601a007b8445d13364094", 0x5e}], 0x3, &(0x7f0000001640)}, 0x40000)
sendmsg$nl_route_sched(r7, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000000c0)=@newqdisc={0x98, 0x24, 0xf0b, 0x70bd2b, 0x25dfdbfb, {0x0, 0x0, 0x12, r6, {}, {0xffff, 0xffff}, {0x2}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x68, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1], 0x1, [0x5, 0x4, 0x2, 0x0, 0x8, 0x2, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3], [0x0, 0x8, 0x0, 0x0, 0x0, 0x1]}}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x4}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8, 0x5, 0x80000000}]}}]}, 0x98}, 0x1, 0x0, 0x0, 0xc850}, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r4, 0x81f8943c, &(0x7f00000000c0)={0x0, ""/256, 0x0, 0x0, 0x0, 0x0, ""/16, ""/16, ""/16, 0x0, 0x0, 0x0, <r8=>0x0})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r4, 0x50009418, &(0x7f0000000340)={{r7}, r8, 0x2, @inherit={0x68, &(0x7f00000002c0)=ANY=[@ANYBLOB="00000000000000000400000000000000000000000000000001000100000000001000000000000000e5ffffff7f0300000100000000000000040000000000000003000000000000000000000000000005000000000000000600"/98]}, @devid})
ioctl$BTRFS_IOC_SUBVOL_CREATE_V2(r1, 0x50009418, &(0x7f0000000880)={{r2}, r8, 0x1a, @unused=[0x6, 0xfffffffffffffffe, 0x1, 0x9], @subvolid=0x7})

2.147406024s ago: executing program 4 (id=2135):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x800, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0xb, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, 0xffffffffffffffff, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(0xffffffffffffffff, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a, 0x4})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0x0, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000002540)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x31, 0x0, 0x0, 0x68, 0x18, &(0x7f0000000280)={@flat=@weak_binder={0x77622a85, 0x101, 0x3}, @ptr={0x70742a85, 0x0, 0x0, 0x700, 0x2, 0x1c}, @ptr={0x70742a85, 0x1, 0x0, 0x0, 0x1, 0x25}}, &(0x7f0000000240)={0x0, 0x18, 0x40}}, 0x1000}], 0x0, 0x0, 0x0})

2.075387062s ago: executing program 0 (id=2137):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x2})
r1 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
close(r1)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f00000000c0), r2)
sendmsg$TIPC_CMD_ENABLE_BEARER(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000680)=ANY=[@ANYBLOB='8\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000d0000000000010000000000000001410000001c001700000000000000006574683a73797a6b616c6c657230"], 0x38}}, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x100, 0x0)
close(r4)
r5 = socket$unix(0x1, 0x1, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r7=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000026c0)=@newqdisc={0x4c, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r7, {0x0, 0xb}, {0xffff, 0xffff}, {0xfff2, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x1c, 0x2, {{0x100, 0x7, 0x6361, 0x5, 0xfffffffd, 0x6}}}}]}, 0x4c}, 0x1, 0x0, 0x0, 0x20000001}, 0x0)
sendmsg$nl_route_sched(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=@newqdisc={0x64, 0x24, 0x4ee4e6a52ff56541, 0x70b923, 0x80000, {0x0, 0x0, 0x0, r7, {}, {0x3, 0xb}, {0xd, 0xfff1}}, [@qdisc_kind_options=@q_tbf={{0x8}, {0x38, 0x2, [@TCA_TBF_PRATE64={0xc, 0x5, 0xda5afc934797b5dd}, @TCA_TBF_PARMS={0x28, 0x1, {{0x6, 0x0, 0x3, 0x3, 0x2c13, 0xffffffff}, {0x3, 0x1, 0x2bfe, 0x1, 0x4, 0xf62}, 0xaa, 0x9, 0x893}}]}}]}, 0x64}, 0x1, 0x0, 0x0, 0x2000c061}, 0x4008000)
ioctl$SIOCSIFHWADDR(r4, 0x8922, &(0x7f0000002280)={'syzkaller0\x00', @random="2b0100004ec6"})

2.075217382s ago: executing program 2 (id=2138):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000640)={0x1, 0x0, @ioapic={0x3000, 0x7ff, 0x9, 0x6, 0x0, [{0x8, 0x80, 0x9, '\x00', 0x4}, {0x0, 0xfe, 0x8, '\x00', 0x65}, {0x4, 0x81, 0x2, '\x00', 0x4}, {0x9, 0x8, 0xa3, '\x00', 0x4}, {0x0, 0xf, 0x9, '\x00', 0x6}, {0x5, 0x56, 0x5}, {0x5, 0x9, 0x7, '\x00', 0xfd}, {0x6, 0x3, 0xf2, '\x00', 0x5}, {0x66, 0x9, 0xad, '\x00', 0xd}, {0x6, 0x9}, {0x8, 0x2, 0xf8, '\x00', 0x4}, {0x8e, 0x9, 0x3, '\x00', 0x10}, {0x6, 0x6, 0x0, '\x00', 0x8}, {0xb0, 0x4, 0xfc, '\x00', 0x7}, {0x0, 0x8, 0x6, '\x00', 0x1}, {0x81, 0x9, 0xc, '\x00', 0x3}, {0x8, 0x9, 0x2, '\x00', 0x2}, {0x9, 0x3, 0x4, '\x00', 0x1}, {0x0, 0x2, 0x7}, {0x9, 0x3, 0x6, '\x00', 0x8}, {0x5, 0x29, 0x2}, {0x5, 0x4, 0x8, '\x00', 0x80}, {0x6, 0x6, 0x1, '\x00', 0x8}, {0x4, 0x81, 0x10, '\x00', 0x6}]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

1.984698502s ago: executing program 1 (id=2139):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{0x50, 0x20}, {0x20, 0x0, 0x0, 0xfffff010}, {0x6}]}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x7)
setsockopt$inet6_int(r1, 0x29, 0x24, &(0x7f0000000500)=0x40, 0x4)
connect$inet6(r1, &(0x7f0000000080)={0xa, 0x0, 0x380000, @loopback}, 0x1c)
sendmsg$inet(r1, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000380)="e8da0b70de94907ea28b5cdc8243d23fec642d3711198d0d84213f66b570d96ff4aebb8727c68030d8d35b13", 0x2c}], 0x1}, 0xc042)

1.914989614s ago: executing program 2 (id=2140):
bind$inet6(0xffffffffffffffff, &(0x7f0000000280)={0xa, 0x4e1e, 0xb, @loopback, 0x40009}, 0x1c)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
mprotect(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4)
ioctl$PTP_PIN_GETFUNC(r0, 0xc0603d06, &(0x7f0000000240)={'\x00', 0x404000, 0x2, 0x85d1})

1.879504171s ago: executing program 1 (id=2141):
openat$procfs(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/keys\x00', 0x0, 0x0)
ioctl$COMEDI_INSN(0xffffffffffffffff, 0x8028640c, &(0x7f0000000000)={0x4000000, 0x92ff, 0x0, 0x0, 0x80000000})

1.71246905s ago: executing program 2 (id=2142):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000580)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x57, 0x7fc00100}]})
socket$nl_netfilter(0x10, 0x3, 0xc)
mmap(&(0x7f0000000000/0x200000)=nil, 0x200000, 0x300000b, 0x204031, 0xffffffffffffffff, 0xec776000)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r0, 0xc0502100, &(0x7f0000002780))
mremap(&(0x7f00000d5000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000ffd000/0x2000)=nil)
mlock2(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0)
mremap(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x4000, 0x3, &(0x7f0000ff9000/0x4000)=nil)
mbind(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x1, 0x0, 0x6083, 0x3)

1.712196826s ago: executing program 0 (id=2143):
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@broadcast, @empty, @void, {@arp={0x806, @ether_ipv4={0x1, 0x800, 0x6, 0x4, 0x2, @local, @rand_addr=0x64010102, @broadcast, @loopback}}}}, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'syz_tun\x00', 0x0})

1.712117618s ago: executing program 1 (id=2144):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x1c1341, 0x0)
ioctl$TUNSETQUEUE(r0, 0x400454d9, &(0x7f00000000c0)={'nr0\x00', 0x600})
writev(r0, &(0x7f0000000040)=[{0x0}], 0x1)

1.705955388s ago: executing program 5 (id=2145):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20008008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000002100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x40, '\x00', 0x0, 0x2}, 0x94)
r4 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$VIDIOC_ENUM_FRAMESIZES(r4, 0xc02c564a, &(0x7f0000000040)={0x6, 0x34324258, 0x3, @discrete={0x3b79f0fc, 0xffffffff}})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
sched_getattr(r0, &(0x7f0000000340)={0x38}, 0x38, 0x0)
fanotify_init(0x0, 0x0)
open$dir(&(0x7f0000000000)='.\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000140)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
timerfd_gettime(0xffffffffffffffff, 0x0)
r5 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f00000000c0)=0x3)
openat$mice(0xffffffffffffff9c, 0x0, 0x800000)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, 0x0, 0x0)

1.655282342s ago: executing program 4 (id=2146):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000140)={{r0, <r1=>0xffffffffffffffff}, &(0x7f0000000180), &(0x7f0000000380)='%pS    \x00'}, 0x20)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000040)={r1, <r2=>0xffffffffffffffff}, 0x4)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x1f, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000008500000010000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000800000085000000a500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000000)={r3}, 0xc)

1.088568401s ago: executing program 1 (id=2147):
r0 = syz_open_dev$ptys(0xc, 0x3, 0x1)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)
fsopen(0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r1 = getpid()
sched_setscheduler(r1, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000000)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r5 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$inet_mreqn(r5, 0x0, 0x20, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r4}, 0x18)
r6 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='attr/fscreate\x00')
writev(r6, 0x0, 0x0)
r7 = socket$inet6(0xa, 0x3, 0x7)
connect$inet6(r7, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
sendmmsg(r7, &(0x7f0000000480), 0x2e9, 0x0)

1.073600283s ago: executing program 4 (id=2148):
dup(0xffffffffffffffff)
openat$dir(0xffffffffffffff9c, &(0x7f0000001a00)='./file1\x00', 0x40, 0xdc)
r0 = syz_open_dev$ndb(&(0x7f00000000c0), 0x0, 0x80000)
r1 = socket(0x2, 0x2, 0x0)
r2 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
ioctl$NBD_SET_SOCK(r0, 0xab00, r1)
ioctl$NBD_DO_IT(r2, 0xab03)
ioctl$NBD_SET_SIZE_BLOCKS(r0, 0xab07, 0x5)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000004a00)='./file1\x00', &(0x7f0000000080)='udf\x00', 0x14, 0x0)

1.04519049s ago: executing program 0 (id=2149):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x80000100008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r1, 0x1, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r2 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r2, &(0x7f0000019680)=""/102392, 0x18ff8)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}, {@subsystem='memory'}, {@subsystem='cpuacct'}]})
openat$cgroup_procs(0xffffffffffffffff, 0x0, 0x2, 0x0)
r3 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000040)='net/dev\x00')
pread64(r3, &(0x7f0000019040)=""/102400, 0x19000, 0x400000000003)

404.603491ms ago: executing program 5 (id=2150):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000004300), 0x1, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_REGS(r2, 0x4090ae82, 0x0)
ioctl$KVM_SET_IRQCHIP(r1, 0x8208ae63, &(0x7f0000000640)={0x1, 0x0, @ioapic={0x3000, 0x7ff, 0x9, 0x6, 0x0, [{0x8, 0x80, 0x9, '\x00', 0x4}, {0x0, 0xfe, 0x8, '\x00', 0x65}, {0x4, 0x81, 0x2, '\x00', 0x4}, {0x9, 0x8, 0xa3, '\x00', 0x4}, {0x0, 0xf, 0x9, '\x00', 0x6}, {0x5, 0x56, 0x5}, {0x5, 0x9, 0x7, '\x00', 0xfd}, {0x6, 0x3, 0xf2, '\x00', 0x5}, {0x66, 0x9, 0xad, '\x00', 0xd}, {0x6, 0x9}, {0x8, 0x2, 0xf8, '\x00', 0x4}, {0x8e, 0x9, 0x3, '\x00', 0x10}, {0x6, 0x6, 0x0, '\x00', 0x8}, {0xb0, 0x4, 0xfc, '\x00', 0x7}, {0x0, 0x8, 0x6, '\x00', 0x1}, {0x81, 0x9, 0xc, '\x00', 0x3}, {0x8, 0x9, 0x2, '\x00', 0x2}, {0x9, 0x3, 0x4, '\x00', 0x1}, {0x0, 0x2, 0x7}, {0x9, 0x3, 0x6, '\x00', 0x8}, {0x5, 0x29, 0x2}, {0x5, 0x4, 0x8, '\x00', 0x80}, {0x6, 0x6, 0x1, '\x00', 0x8}, {0x4, 0x81, 0x10, '\x00', 0x6}]}})
ioctl$KVM_RUN(r2, 0xae80, 0x0)

196.478362ms ago: executing program 1 (id=2151):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000002100), 0x280449c, &(0x7f0000002140)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}})
read$FUSE(r0, &(0x7f00000083c0)={0x2020, 0x0, <r1=>0x0}, 0x49e8648f)
write$FUSE_INIT(r0, &(0x7f0000004200)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x2066012}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f00000042c0)="000000000000000000000000000000000000000000000000000000000000000090c400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000542d0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ea8286a2fba523440000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000633956a1000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000007d6ab715107fa1820000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f6ffffffffffffff0000000000000e000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000e1ffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f4000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000286071480000000000b13bc1e6d970884f00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000060000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fcffffff00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f3ffffffffffffff00", 0x2000, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x6, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000000c0)='sys_enter\x00', r2}, 0x18)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xffffffed]}, 0x0, 0x8)
timer_create(0x3, 0x0, &(0x7f0000044000))
timer_settime(0x0, 0x1, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x9}}, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x40)

167.439676ms ago: executing program 2 (id=2152):
socket$nl_generic(0x10, 0x3, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000a40)=ANY=[@ANYRES32=r1, @ANYRES32=r0, @ANYBLOB='/'], 0x20)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000340)={@cgroup=r0, r0, 0x2f, 0x4, 0x4, @void, @value=r0}, 0x20)

162.165µs ago: executing program 5 (id=2153):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv6_deladdrlabel={0x24, 0x48, 0x1, 0x70bd29, 0x25dfdbff, {0xa, 0x0, 0x1f, 0x0, 0x0, 0x4}, [@IFAL_LABEL={0x8, 0x2, 0x3}]}, 0x24}, 0x1, 0x0, 0x0, 0x4000}, 0x8044)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(0x0, 0x1, &(0x7f0000000040), 0x0)

0s ago: executing program 1 (id=2154):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000001680)=ANY=[@ANYBLOB="1800000000030000000000000000000095"], &(0x7f0000001700)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x9}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='contention_begin\x00', r0, 0x0, 0xffff}, 0x18)
r1 = syz_open_dev$evdev(&(0x7f0000000000), 0x8c, 0x200)
ioctl$TCSETAW(r1, 0x5407, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.170' (ED25519) to the list of known hosts.
[   74.608308][ T5850] cgroup: Unknown subsys name 'net'
[   74.744416][ T5850] cgroup: Unknown subsys name 'cpuset'
[   74.753889][ T5850] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   76.154047][ T5850] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   80.799092][ T5864] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   80.815616][ T5877] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   80.823431][ T5877] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   80.841304][ T5877] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   80.850418][ T5877] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   80.860273][ T5878] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   80.869177][ T5877] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   80.869389][ T5881] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   80.885416][ T5881] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   80.893874][ T5881] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   80.901613][ T5877] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   80.910435][ T5881] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   80.914347][ T5880] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   80.918346][ T5881] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   80.927005][ T5880] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   80.934590][ T5183] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   80.940124][ T5880] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   80.946891][ T5183] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   80.953824][ T5880] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   80.961720][ T5183] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   80.974577][ T5183] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   80.991244][ T5183] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   80.999166][ T5183] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   81.010079][ T5876] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   81.018606][ T5876] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   81.706360][ T5868] chnl_net:caif_netlink_parms(): no params data found
[   81.814362][ T5874] chnl_net:caif_netlink_parms(): no params data found
[   81.838325][ T5862] chnl_net:caif_netlink_parms(): no params data found
[   81.858923][ T5867] chnl_net:caif_netlink_parms(): no params data found
[   82.080219][ T5863] chnl_net:caif_netlink_parms(): no params data found
[   82.189513][ T5868] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.197043][ T5868] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.205663][ T5868] bridge_slave_0: entered allmulticast mode
[   82.213517][ T5868] bridge_slave_0: entered promiscuous mode
[   82.222864][ T5868] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.230186][ T5868] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.237930][ T5868] bridge_slave_1: entered allmulticast mode
[   82.246455][ T5868] bridge_slave_1: entered promiscuous mode
[   82.373344][ T5868] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.387020][ T5874] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.394532][ T5874] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.402329][ T5874] bridge_slave_0: entered allmulticast mode
[   82.409474][ T5874] bridge_slave_0: entered promiscuous mode
[   82.427935][ T5867] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.435435][ T5867] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.443457][ T5867] bridge_slave_0: entered allmulticast mode
[   82.450434][ T5867] bridge_slave_0: entered promiscuous mode
[   82.460074][ T5868] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.485857][ T5874] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.493628][ T5874] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.500794][ T5874] bridge_slave_1: entered allmulticast mode
[   82.507990][ T5874] bridge_slave_1: entered promiscuous mode
[   82.515217][ T5862] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.522571][ T5862] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.529808][ T5862] bridge_slave_0: entered allmulticast mode
[   82.537289][ T5862] bridge_slave_0: entered promiscuous mode
[   82.544963][ T5867] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.552386][ T5867] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.559570][ T5867] bridge_slave_1: entered allmulticast mode
[   82.566913][ T5867] bridge_slave_1: entered promiscuous mode
[   82.632248][ T5862] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.639390][ T5862] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.647256][ T5862] bridge_slave_1: entered allmulticast mode
[   82.654834][ T5862] bridge_slave_1: entered promiscuous mode
[   82.674951][ T5868] team0: Port device team_slave_0 added
[   82.683807][ T5868] team0: Port device team_slave_1 added
[   82.728187][ T5867] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.750504][ T5863] bridge0: port 1(bridge_slave_0) entered blocking state
[   82.758581][ T5863] bridge0: port 1(bridge_slave_0) entered disabled state
[   82.766207][ T5863] bridge_slave_0: entered allmulticast mode
[   82.773417][ T5863] bridge_slave_0: entered promiscuous mode
[   82.784217][ T5874] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.796592][ T5874] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.820793][ T5867] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   82.842087][ T5863] bridge0: port 2(bridge_slave_1) entered blocking state
[   82.849291][ T5863] bridge0: port 2(bridge_slave_1) entered disabled state
[   82.857006][ T5863] bridge_slave_1: entered allmulticast mode
[   82.864302][ T5863] bridge_slave_1: entered promiscuous mode
[   82.901717][ T5862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   82.925070][ T5868] batman_adv: batadv0: Adding interface: batadv_slave_0
[   82.932124][ T5868] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   82.958569][ T5868] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   82.976457][ T5868] batman_adv: batadv0: Adding interface: batadv_slave_1
[   82.983900][ T5868] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.009958][ T5868] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.044772][ T5183] Bluetooth: hci2: command tx timeout
[   83.044776][ T5876] Bluetooth: hci0: command tx timeout
[   83.045065][ T5183] Bluetooth: hci3: command tx timeout
[   83.065010][ T5874] team0: Port device team_slave_0 added
[   83.073646][ T5862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.107265][ T5863] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   83.119231][ T5874] team0: Port device team_slave_1 added
[   83.124988][ T5183] Bluetooth: hci1: command tx timeout
[   83.125002][ T5864] Bluetooth: hci4: command tx timeout
[   83.153856][ T5867] team0: Port device team_slave_0 added
[   83.177212][ T5863] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   83.217025][ T5867] team0: Port device team_slave_1 added
[   83.240182][ T5862] team0: Port device team_slave_0 added
[   83.270401][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.278729][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.305039][ T5874] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.318012][ T5874] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.325049][ T5874] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.351371][ T5874] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.375837][ T5862] team0: Port device team_slave_1 added
[   83.384126][ T5863] team0: Port device team_slave_0 added
[   83.430490][ T5868] hsr_slave_0: entered promiscuous mode
[   83.437155][ T5868] hsr_slave_1: entered promiscuous mode
[   83.446095][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.453186][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.479313][ T5867] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.492942][ T5863] team0: Port device team_slave_1 added
[   83.499879][ T5867] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.507137][ T5867] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.534721][ T5867] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.558523][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.565784][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.592103][ T5862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.640212][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_0
[   83.647388][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.674100][ T5863] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   83.687093][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.694276][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.721676][ T5862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.757934][ T5863] batman_adv: batadv0: Adding interface: batadv_slave_1
[   83.765314][ T5863] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   83.791782][ T5863] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   83.860895][ T5874] hsr_slave_0: entered promiscuous mode
[   83.868619][ T5874] hsr_slave_1: entered promiscuous mode
[   83.875257][ T5874] debugfs: 'hsr0' already exists in 'hsr'
[   83.881701][ T5874] Cannot create hsr debugfs directory
[   83.931866][ T5867] hsr_slave_0: entered promiscuous mode
[   83.938669][ T5867] hsr_slave_1: entered promiscuous mode
[   83.944985][ T5867] debugfs: 'hsr0' already exists in 'hsr'
[   83.950715][ T5867] Cannot create hsr debugfs directory
[   84.037265][ T5863] hsr_slave_0: entered promiscuous mode
[   84.044468][ T5863] hsr_slave_1: entered promiscuous mode
[   84.050629][ T5863] debugfs: 'hsr0' already exists in 'hsr'
[   84.056621][ T5863] Cannot create hsr debugfs directory
[   84.090220][ T5862] hsr_slave_0: entered promiscuous mode
[   84.097716][ T5862] hsr_slave_1: entered promiscuous mode
[   84.103988][ T5862] debugfs: 'hsr0' already exists in 'hsr'
[   84.109741][ T5862] Cannot create hsr debugfs directory
[   84.637872][ T5868] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   84.667195][ T5868] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   84.690204][ T5868] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   84.729627][ T5868] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   84.777745][ T5874] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   84.794692][ T5874] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   84.815620][ T5874] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   84.844083][ T5874] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   84.924323][ T5867] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   84.940364][ T5867] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   84.960392][ T5867] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   84.996845][ T5867] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   85.074003][ T5863] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   85.117192][ T5863] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   85.124401][ T5183] Bluetooth: hci0: command tx timeout
[   85.124426][ T5864] Bluetooth: hci2: command tx timeout
[   85.129795][ T5183] Bluetooth: hci3: command tx timeout
[   85.144936][ T5863] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   85.191968][ T5863] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   85.202004][ T5183] Bluetooth: hci4: command tx timeout
[   85.211534][ T5183] Bluetooth: hci1: command tx timeout
[   85.216936][ T5868] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.267159][ T5862] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   85.278224][ T5862] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   85.307439][ T5862] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   85.317211][ T5862] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   85.335297][ T5868] 8021q: adding VLAN 0 to HW filter on device team0
[   85.358047][ T5874] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.385221][ T2913] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.392533][ T2913] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.448258][ T1141] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.455737][ T1141] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.482169][ T5874] 8021q: adding VLAN 0 to HW filter on device team0
[   85.528598][ T2913] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.535759][ T2913] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.613651][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.620771][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.638981][ T5867] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.730725][ T5867] 8021q: adding VLAN 0 to HW filter on device team0
[   85.756353][ T5863] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.776493][ T2913] bridge0: port 1(bridge_slave_0) entered blocking state
[   85.783675][ T2913] bridge0: port 1(bridge_slave_0) entered forwarding state
[   85.832817][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   85.839955][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   85.896252][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0
[   85.929989][ T5863] 8021q: adding VLAN 0 to HW filter on device team0
[   86.009783][ T1154] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.017092][ T1154] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.037877][ T1154] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.045094][ T1154] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.069126][ T5862] 8021q: adding VLAN 0 to HW filter on device team0
[   86.137620][   T49] bridge0: port 1(bridge_slave_0) entered blocking state
[   86.144889][   T49] bridge0: port 1(bridge_slave_0) entered forwarding state
[   86.165716][ T5868] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.214578][   T49] bridge0: port 2(bridge_slave_1) entered blocking state
[   86.221776][   T49] bridge0: port 2(bridge_slave_1) entered forwarding state
[   86.394233][ T5874] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.507997][ T5868] veth0_vlan: entered promiscuous mode
[   86.568643][ T5868] veth1_vlan: entered promiscuous mode
[   86.659791][ T5874] veth0_vlan: entered promiscuous mode
[   86.686507][ T5867] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.700506][ T5874] veth1_vlan: entered promiscuous mode
[   86.724864][ T5868] veth0_macvtap: entered promiscuous mode
[   86.754571][ T5868] veth1_macvtap: entered promiscuous mode
[   86.809157][ T5863] 8021q: adding VLAN 0 to HW filter on device batadv0
[   86.856675][ T5874] veth0_macvtap: entered promiscuous mode
[   86.870420][ T5868] batman_adv: batadv0: Interface activated: batadv_slave_0
[   86.887890][   T24] cfg80211: failed to load regulatory.db
[   86.930484][ T5868] batman_adv: batadv0: Interface activated: batadv_slave_1
[   86.946476][ T5874] veth1_macvtap: entered promiscuous mode
[   86.981246][ T5867] veth0_vlan: entered promiscuous mode
[   87.005996][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0
[   87.046069][ T3524] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.063498][ T3524] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.079754][ T5867] veth1_vlan: entered promiscuous mode
[   87.088881][ T3524] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.103391][ T3524] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.117513][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.154467][ T5874] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.186773][ T1154] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.201865][ T5183] Bluetooth: hci2: command tx timeout
[   87.203227][ T5864] Bluetooth: hci0: command tx timeout
[   87.207297][ T5183] Bluetooth: hci3: command tx timeout
[   87.265772][ T1154] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.281610][ T5864] Bluetooth: hci1: command tx timeout
[   87.281963][ T5876] Bluetooth: hci4: command tx timeout
[   87.300666][ T1154] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.352920][ T1154] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.363003][ T5867] veth0_macvtap: entered promiscuous mode
[   87.384548][ T5862] veth0_vlan: entered promiscuous mode
[   87.422684][ T5867] veth1_macvtap: entered promiscuous mode
[   87.444987][ T2913] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.463086][ T2913] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.483990][ T5862] veth1_vlan: entered promiscuous mode
[   87.498381][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.527929][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.587721][ T1154] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.606300][ T5863] veth0_vlan: entered promiscuous mode
[   87.612051][ T1154] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.629641][ T3524] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.639111][ T3524] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   87.659963][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.661359][ T5863] veth1_vlan: entered promiscuous mode
[   87.682369][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.686040][ T3524] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   87.698752][ T3524] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   87.709396][ T5862] veth0_macvtap: entered promiscuous mode
[   87.730686][ T5862] veth1_macvtap: entered promiscuous mode
[   87.802471][ T5868] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   87.806015][ T3524] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   87.835054][ T3524] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.857812][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0
[   87.930275][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1
[   87.954780][ T5986] loop3: detected capacity change from 0 to 512
[   87.978059][   T49] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   87.996009][ T5986] EXT4-fs (loop3): can't mount with data_err=abort, fs mounted w/o journal
[   88.058966][ T5863] veth0_macvtap: entered promiscuous mode
[   88.067140][ T5986] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   88.080373][ T5988] loop2: detected capacity change from 0 to 512
[   88.087498][   T49] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.154268][   T49] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.235821][ T5988] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[   88.282335][ T1154] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.290183][ T1154] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.314117][ T5863] veth1_macvtap: entered promiscuous mode
[   88.332630][   T49] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.381514][ T5990] loop3: detected capacity change from 0 to 2048
[   88.470566][ T5990] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[   88.504073][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.562236][ T5990] Zero length message leads to an empty skb
[   88.574919][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.579254][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.601941][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   88.637679][ T3524] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.654569][ T3524] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.700531][ T3524] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.709866][ T3524] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.824179][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   88.856341][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.010045][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.037306][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.078344][ T6002] loop1: detected capacity change from 0 to 512
[   89.095130][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.120017][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.123694][ T6002] =======================================================
[   89.123694][ T6002] WARNING: The mand mount option has been deprecated and
[   89.123694][ T6002]          and is ignored by this kernel. Remove the mand
[   89.123694][ T6002]          option from the mount to silence this warning.
[   89.123694][ T6002] =======================================================
[   89.189540][   T13] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   89.213065][   T13] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   89.282101][ T5876] Bluetooth: hci0: command tx timeout
[   89.283154][ T5864] Bluetooth: hci3: command tx timeout
[   89.287677][ T5876] Bluetooth: hci2: command tx timeout
[   89.327944][ T6002] EXT4-fs warning (device loop1): ext4_expand_extra_isize_ea:2848: Unable to expand inode 17. Delete some EAs or run e2fsck.
[   89.361666][ T5183] Bluetooth: hci4: command tx timeout
[   89.367242][ T5183] Bluetooth: hci1: command tx timeout
[   89.390824][ T6002] EXT4-fs (loop1): 1 truncate cleaned up
[   89.400771][ T6002] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   89.644626][ T5867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   89.925275][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.741669][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.750233][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.766920][ T6026] loop3: detected capacity change from 0 to 1024
[   90.791658][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.800434][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   90.809929][    T0] NOHZ tick-stop error: local softirq work is pending, handler #208!!!
[   90.841403][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   90.999841][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   91.041387][    T0] NOHZ tick-stop error: local softirq work is pending, handler #08!!!
[   91.050671][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   92.748857][ T6035] loop4: detected capacity change from 0 to 512
[   92.816726][ T6038] loop1: detected capacity change from 0 to 8
[   92.853821][   T30] audit: type=1800 audit(1754533703.846:2): pid=6026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.13" name="file1" dev="loop3" ino=20 res=0 errno=0
[   92.884857][ T6035] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[   93.016144][   T30] audit: type=1800 audit(1754533703.866:3): pid=6026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.13" name="file1" dev="loop3" ino=20 res=0 errno=0
[   93.414879][ T6045] loop4: detected capacity change from 0 to 1024
[   94.773181][ T5928] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   94.941066][ T5928] usb 3-1: Using ep0 maxpacket: 16
[   94.958094][ T5928] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[   94.967250][   T49] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   94.987217][ T5928] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[   95.043833][ T5928] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[   95.067927][ T5928] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   95.098919][ T5928] usb 3-1: Product: syz
[   95.113628][ T5928] usb 3-1: Manufacturer: syz
[   95.128929][ T5928] usb 3-1: SerialNumber: syz
[   95.268009][ T6063] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   95.735976][ T5928] usb 3-1: 0:2 : does not exist
[   95.793572][ T5928] usb 3-1: 5:0: cannot get min/max values for control 4 (id 5)
[   95.796061][   T49] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.821159][ T5928] usb 3-1: 5:0: cannot get min/max values for control 5 (id 5)
[   95.860203][ T5928] usb 3-1: 5:0: cannot get min/max values for control 5 (id 5)
[   95.914306][ T5928] usb 3-1: 5:0: failed to get current value for ch 1 (-22)
[   95.983343][   T49] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.091984][ T5928] usb 3-1: 5:0: cannot get min/max values for control 5 (id 5)
[   96.098855][ T6068] loop1: detected capacity change from 0 to 256
[   96.142149][ T5928] usb 3-1: USB disconnect, device number 2
[   96.208466][   T49] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   96.238300][ T6068] exFAT-fs (loop1): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[   96.317680][ T6037] udevd[6037]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[   96.488462][ T6073] loop2: detected capacity change from 0 to 512
[   96.565182][ T6073] EXT4-fs (loop2): can't mount with data_err=abort, fs mounted w/o journal
[   96.824128][ T6077] Driver unsupported XDP return value 0 on prog  (id 8) dev N/A, expect packet loss!
[   96.869029][   T49] bridge_slave_1: left allmulticast mode
[   96.886860][   T49] bridge_slave_1: left promiscuous mode
[   96.910151][   T49] bridge0: port 2(bridge_slave_1) entered disabled state
[   96.920800][ T6084] loop0: detected capacity change from 0 to 1024
[   98.497630][   T49] bridge_slave_0: left allmulticast mode
[   98.571074][   T49] bridge_slave_0: left promiscuous mode
[   98.577433][   T49] bridge0: port 1(bridge_slave_0) entered disabled state
[   98.734392][ T6084] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   98.801340][ T6084] ext4 filesystem being mounted at /1/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   98.801878][ T5864] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   98.829015][ T5864] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   98.838580][ T5864] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   98.847134][ T5864] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   98.855885][ T5864] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   98.870412][   T30] audit: type=1800 audit(1754533709.846:4): pid=6084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.32" name="file1" dev="loop0" ino=15 res=0 errno=0
[   98.934574][   T30] audit: type=1804 audit(1754533709.906:5): pid=6084 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.32" name="/newroot/1/file1/file1" dev="loop0" ino=15 res=1 errno=0
[   98.977219][ T6097] loop1: detected capacity change from 0 to 8
[   99.160203][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   99.401338][ T6109] kvm_intel: L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   99.711228][ T5954] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   99.885448][ T5954] usb 1-1: config 0 has no interfaces?
[   99.899108][ T5954] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[   99.932322][ T5954] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   99.973146][ T5954] usb 1-1: config 0 descriptor??
[  100.040887][ T6126] fuse: Bad value for 'fd'
[  100.265826][ T5954] usb 1-1: USB disconnect, device number 2
[  100.273511][ T6130] loop2: detected capacity change from 0 to 164
[  100.300059][ T6130] ISOFS: unable to read i-node block
[  100.308113][ T6130] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  100.478650][   T30] audit: type=1326 audit(1754533711.466:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6124 comm="syz.1.41" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x0
[  100.731898][ T6135] loop4: detected capacity change from 0 to 512
[  100.827617][ T6135] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  100.838011][   T49] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  100.868410][   T49] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  100.881470][ T5864] Bluetooth: hci3: command tx timeout
[  100.972198][   T49] bond0 (unregistering): Released all slaves
[  101.948333][ T6152] loop4: detected capacity change from 0 to 512
[  102.025350][ T6152] EXT4-fs (loop4): Test dummy encryption mode enabled
[  102.041279][ T6151] loop0: detected capacity change from 0 to 1024
[  102.058270][ T6152] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  102.107272][ T6152] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  102.178260][ T6151] hfsplus: bad catalog entry type
[  102.224909][ T6152] EXT4-fs (loop4): 1 truncate cleaned up
[  102.285400][ T6152] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  102.374554][ T6152] EXT4-fs error (device loop4): ext4_lookup:1787: inode #16: comm syz.4.49: iget: bad i_size value: 5497558147880
[  102.581535][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  102.814559][   T49] hsr_slave_0: left promiscuous mode
[  102.901077][   T49] hsr_slave_1: left promiscuous mode
[  102.941941][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.961751][ T6167] loop4: detected capacity change from 0 to 2048
[  102.964353][   T49] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.976568][ T5864] Bluetooth: hci3: command tx timeout
[  103.022642][ T6167] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  103.024737][ T6171] 9pnet_fd: Insufficient options for proto=fd
[  103.042945][   T49] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  103.059015][   T49] batman_adv: batadv0: Removing interface: batadv_slave_1
[  103.318102][   T49] veth1_macvtap: left promiscuous mode
[  103.326501][   T49] veth0_macvtap: left promiscuous mode
[  103.340163][   T49] veth1_vlan: left promiscuous mode
[  103.856005][   T49] veth0_vlan: left promiscuous mode
[  104.021866][ T6182] loop0: detected capacity change from 0 to 512
[  104.078114][ T6182] EXT4-fs (loop0): can't mount with data_err=abort, fs mounted w/o journal
[  104.460032][ T6190] cgroup: Unknown subsys name 'cpuset'
[  105.231734][ T5864] Bluetooth: hci3: command tx timeout
[  105.897636][   T30] audit: type=1326 audit(1754533716.886:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  106.882094][ T6204] loop0: detected capacity change from 0 to 512
[  106.896098][ T6204] EXT4-fs (loop0): can't mount with data_err=abort, fs mounted w/o journal
[  107.249358][   T30] audit: type=1326 audit(1754533718.236:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.274618][   T30] audit: type=1326 audit(1754533718.236:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.298529][ T5864] Bluetooth: hci3: command tx timeout
[  107.307137][   T30] audit: type=1326 audit(1754533718.236:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.331471][   T30] audit: type=1326 audit(1754533718.236:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.355217][   T30] audit: type=1326 audit(1754533718.236:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.378919][   T30] audit: type=1326 audit(1754533718.236:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.402724][   T30] audit: type=1326 audit(1754533718.236:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.426333][   T30] audit: type=1326 audit(1754533718.236:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.451276][   T30] audit: type=1326 audit(1754533718.236:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.1.57" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1d7858ebe9 code=0x7fc00000
[  107.782143][   T49] team0 (unregistering): Port device team_slave_1 removed
[  107.829775][   T49] team0 (unregistering): Port device team_slave_0 removed
[  108.757836][ T6215] warning: `syz.4.63' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  109.921481][ T5864] Bluetooth: hci3: command tx timeout
[  110.047630][ T6093] chnl_net:caif_netlink_parms(): no params data found
[  110.223278][ T6225] loop4: detected capacity change from 0 to 512
[  110.660964][    C0] vkms_vblank_simulate: vblank timer overrun
[  110.810361][ T6232] cgroup: Unknown subsys name 'cpuset'
[  111.741214][ T6225] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  111.749660][ T6225] EXT4-fs (loop4): orphan cleanup on readonly fs
[  111.770485][ T6225] __quota_error: 58 callbacks suppressed
[  111.770506][ T6225] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  112.731174][ T6225] EXT4-fs warning (device loop4): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  112.831491][ T6225] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  112.840629][ T6093] bridge0: port 1(bridge_slave_0) entered blocking state
[  112.879405][ T6093] bridge0: port 1(bridge_slave_0) entered disabled state
[  112.896457][ T6225] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.66: bg 0: block 40: padding at end of block bitmap is not set
[  112.911700][ T6093] bridge_slave_0: entered allmulticast mode
[  112.919683][ T6093] bridge_slave_0: entered promiscuous mode
[  112.936929][ T6225] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  112.975600][ T6225] EXT4-fs (loop4): 1 truncate cleaned up
[  113.007525][ T6093] bridge0: port 2(bridge_slave_1) entered blocking state
[  113.013756][ T6225] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  113.041253][ T6093] bridge0: port 2(bridge_slave_1) entered disabled state
[  113.048599][ T6093] bridge_slave_1: entered allmulticast mode
[  113.098463][ T6093] bridge_slave_1: entered promiscuous mode
[  113.099143][ T6225] EXT4-fs error (device loop4): ext4_get_link:106: inode #16: comm syz.4.66: bad symlink.
[  113.213265][ T6225] EXT4-fs error (device loop4): ext4_get_link:106: inode #16: comm syz.4.66: bad symlink.
[  113.331391][ T6093] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  113.349196][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  113.364229][ T6093] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  113.594652][ T6093] team0: Port device team_slave_0 added
[  113.623646][ T6093] team0: Port device team_slave_1 added
[  113.783298][ T6093] batman_adv: batadv0: Adding interface: batadv_slave_0
[  114.151211][ T6093] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.216960][ T6093] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  114.355387][ T6093] batman_adv: batadv0: Adding interface: batadv_slave_1
[  114.372714][ T6093] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  114.462626][ T6093] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  114.849854][ T6266] loop0: detected capacity change from 0 to 4096
[  115.373403][ T6093] hsr_slave_0: entered promiscuous mode
[  115.432754][ T6093] hsr_slave_1: entered promiscuous mode
[  115.632778][ T6266] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  116.133633][ T6292] cgroup: Unknown subsys name 'cpuset'
[  117.242519][ T6295] netlink: 4 bytes leftover after parsing attributes in process `syz.2.80'.
[  117.382841][ T6298] netlink: 4 bytes leftover after parsing attributes in process `syz.2.80'.
[  118.019841][ T6093] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  118.046995][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  118.098020][ T6093] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  118.288603][ T6093] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  118.435376][ T6093] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  118.606025][ T6317] loop0: detected capacity change from 0 to 1024
[  119.106900][ T1141] hfsplus: b-tree write err: -5, ino 3
[  119.177247][ T6093] 8021q: adding VLAN 0 to HW filter on device bond0
[  119.255581][ T6093] 8021q: adding VLAN 0 to HW filter on device team0
[  119.327356][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.334669][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  119.449168][ T3524] bridge0: port 2(bridge_slave_1) entered blocking state
[  119.456584][ T3524] bridge0: port 2(bridge_slave_1) entered forwarding state
[  119.903845][ T6338] hub 9-0:1.0: USB hub found
[  119.971832][ T6338] hub 9-0:1.0: 1 port detected
[  120.197122][ T6344] loop0: detected capacity change from 0 to 512
[  120.230141][ T6344] EXT4-fs: Ignoring removed orlov option
[  120.278518][ T6344] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  120.325652][ T6344] EXT4-fs (loop0): Cannot use DAX on a filesystem that may contain inline data
[  120.608947][ T6093] 8021q: adding VLAN 0 to HW filter on device batadv0
[  123.097008][ T6364] netlink: 176 bytes leftover after parsing attributes in process `syz.1.89'.
[  125.385637][ T5864] Bluetooth: hci0: ACL packet for unknown connection handle 2153
[  125.401054][   T30] audit: type=1326 audit(1754533735.826:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  125.762587][   T30] audit: type=1326 audit(1754533735.836:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  125.858093][   T30] audit: type=1326 audit(1754533735.836:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=70 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  125.944535][   T30] audit: type=1326 audit(1754533735.836:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  126.051114][   T30] audit: type=1326 audit(1754533735.836:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  126.141045][   T30] audit: type=1326 audit(1754533735.846:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=69 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  126.221171][   T30] audit: type=1326 audit(1754533735.856:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  126.331121][   T30] audit: type=1326 audit(1754533735.856:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  126.421356][   T30] audit: type=1326 audit(1754533735.866:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  126.480190][ T6093] veth0_vlan: entered promiscuous mode
[  126.512682][   T30] audit: type=1326 audit(1754533735.866:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6369 comm="syz.0.92" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd92358ebe9 code=0x7ffc0000
[  126.548031][ T6093] veth1_vlan: entered promiscuous mode
[  126.672339][ T6093] veth0_macvtap: entered promiscuous mode
[  126.723750][ T6093] veth1_macvtap: entered promiscuous mode
[  126.811320][ T6093] batman_adv: batadv0: Interface activated: batadv_slave_0
[  126.855400][ T6093] batman_adv: batadv0: Interface activated: batadv_slave_1
[  126.910265][ T6065] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  127.004401][ T2913] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  127.060855][ T2913] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  127.142068][ T2913] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  127.288639][ T6396] loop2: detected capacity change from 0 to 256
[  127.333496][ T6396] exfat: Deprecated parameter 'namecase'
[  127.365442][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  127.376057][ T6396] exfat: Deprecated parameter 'namecase'
[  127.406359][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  127.442069][ T6396] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xfcc0b04e, utbl_chksum : 0xe619d30d)
[  128.465978][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  128.500743][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  128.722422][ T6414] netlink: 20 bytes leftover after parsing attributes in process `syz.2.98'.
[  130.421210][   T10] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  131.060068][ T6435] loop5: detected capacity change from 0 to 512
[  131.097878][ T6435] EXT4-fs (loop5): can't mount with data_err=abort, fs mounted w/o journal
[  131.254759][   T10] usb 2-1: Using ep0 maxpacket: 32
[  131.272622][   T10] usb 2-1: config 0 has an invalid interface number: 184 but max is 0
[  131.422927][   T10] usb 2-1: config 0 has no interface number 0
[  131.562609][   T10] usb 2-1: config 0 interface 184 has no altsetting 0
[  132.515004][   T10] usb 2-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[  132.684511][   T10] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  132.693046][   T10] usb 2-1: Product: syz
[  132.697330][   T10] usb 2-1: Manufacturer: syz
[  132.705731][   T10] usb 2-1: SerialNumber: syz
[  132.739840][   T10] usb 2-1: config 0 descriptor??
[  133.389617][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  133.396518][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  134.003263][   T10] usb 2-1: can't set config #0, error -71
[  134.018772][   T10] usb 2-1: USB disconnect, device number 2
[  134.101244][ T6446] loop5: detected capacity change from 0 to 128
[  134.108553][ T6446] EXT4-fs: Ignoring removed nobh option
[  134.283821][ T6446] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  134.307470][ T6446] ext4 filesystem being mounted at /2/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  134.892851][ T6093] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  136.411753][ T6487] cgroup: Unknown subsys name 'cpuset'
[  139.707326][ T6518] loop4: detected capacity change from 0 to 128
[  139.759340][ T6518] EXT4-fs: Ignoring removed nobh option
[  140.516567][ T6518] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  140.529245][ T6518] ext4 filesystem being mounted at /30/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  141.033579][ T6533] netlink: 4 bytes leftover after parsing attributes in process `syz.0.122'.
[  142.348649][ T6548] binder: BINDER_SET_CONTEXT_MGR already set
[  142.540694][ T6548] binder: 6544:6548 ioctl 4018620d 200000000140 returned -16
[  142.643335][ T5863] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  143.011865][ T6554] cgroup: Unknown subsys name 'cpuset'
[  143.986244][ T6561] syz.5.128 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  146.091931][ T6576] fuse: Bad value for 'fd'
[  148.612688][ T6600] loop4: detected capacity change from 0 to 128
[  148.734344][ T6600] EXT4-fs: Ignoring removed nobh option
[  148.798122][ T6603] netlink: 4 bytes leftover after parsing attributes in process `syz.2.137'.
[  148.913904][ T6600] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  149.010543][ T6600] ext4 filesystem being mounted at /32/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  151.152380][    T9] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  151.403630][    T9] usb 6-1: Using ep0 maxpacket: 32
[  152.316653][ T5863] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  152.343874][ T6631] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  152.371831][ T6631] overlayfs: maximum fs stacking depth exceeded
[  153.758935][    T9] usb 6-1: unable to get BOS descriptor or descriptor too short
[  153.794312][    T9] usb 6-1: unable to read config index 0 descriptor/start: -71
[  153.821467][    T9] usb 6-1: can't read configurations, error -71
[  155.753271][ T6695] netlink: 100 bytes leftover after parsing attributes in process `syz.1.160'.
[  157.896348][ T6684] loop5: detected capacity change from 0 to 128
[  157.934078][ T6684] EXT4-fs: Ignoring removed nobh option
[  158.124653][ T6684] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  158.183052][ T6684] ext4 filesystem being mounted at /10/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  158.662860][ T6093] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  164.727061][ T6810] overlayfs: failed to clone upperpath
[  166.681054][ T5954] usb 6-1: new high-speed USB device number 4 using dummy_hcd
[  166.854581][ T5954] usb 6-1: Using ep0 maxpacket: 8
[  166.894038][ T5954] usb 6-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  166.944548][ T5954] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  166.987000][ T5954] usb 6-1: config 0 descriptor??
[  167.938728][ T6842] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  168.172541][ T6842] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  168.727825][ T5954] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  168.806128][ T5954] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to send software reset: ffffffb9
[  168.862453][ T5954] asix 6-1:0.0: probe with driver asix failed with error -71
[  168.938313][ T5954] usb 6-1: USB disconnect, device number 4
[  169.631752][ T6918] loop5: detected capacity change from 0 to 512
[  169.787612][ T6918] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  169.940183][ T6918] ext4 filesystem being mounted at /16/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  170.155477][ T6918] fs-verity (loop5, inode 15): Unrecognized descriptor size: 0 bytes
[  171.273896][ T6093] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  171.609285][ T6946] loop5: detected capacity change from 0 to 512
[  171.662782][ T6946] EXT4-fs (loop5): can't mount with data_err=abort, fs mounted w/o journal
[  173.950638][ T6995] loop4: detected capacity change from 0 to 512
[  174.020305][ T6995] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  177.466775][ T7078] overlayfs: failed to clone upperpath
[  177.646528][ T7086] overlayfs: failed to clone lowerpath
[  178.915860][ T7117] overlayfs: failed to clone upperpath
[  179.895850][ T7126] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  182.371170][ T5954] usb 5-1: new low-speed USB device number 2 using dummy_hcd
[  182.640938][ T5954] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[  182.652148][ T5954] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  182.682677][ T5954] usb 5-1: config 0 descriptor??
[  182.911084][ T5954] asix 5-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random
[  183.979878][ T7198] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'.
[  184.089460][ T7203] netlink: 4 bytes leftover after parsing attributes in process `syz.2.307'.
[  184.903298][ T5954] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[  184.943748][ T5954] asix 5-1:0.0: probe with driver asix failed with error -71
[  185.010697][ T5954] usb 5-1: USB disconnect, device number 2
[  185.735045][ T7248] loop4: detected capacity change from 0 to 512
[  185.767908][ T7248] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  185.824281][ T7250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.330'.
[  186.412404][ T7250] netlink: 4 bytes leftover after parsing attributes in process `syz.2.330'.
[  187.074631][ T7283] hub 9-0:1.0: USB hub found
[  187.081049][ T7283] hub 9-0:1.0: 1 port detected
[  188.326853][ T7306] netlink: 4 bytes leftover after parsing attributes in process `syz.1.355'.
[  188.425887][ T7311] netlink: 4 bytes leftover after parsing attributes in process `syz.1.355'.
[  189.739324][ T7322] cgroup: Unknown subsys name 'cpuset'
[  194.561599][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  194.567949][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  195.109077][ T7358] netlink: 'syz.5.377': attribute type 12 has an invalid length.
[  204.687284][ T7452] loop4: detected capacity change from 0 to 1024
[  204.783753][ T7452] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.325307][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  206.724861][ T5869] Bluetooth: hci2: command 0x0406 tx timeout
[  206.731642][ T5880] Bluetooth: hci1: command 0x0406 tx timeout
[  206.731915][ T5881] Bluetooth: hci0: command 0x0406 tx timeout
[  206.737715][ T5880] Bluetooth: hci4: command 0x0406 tx timeout
[  211.462119][ T7532] overlayfs: failed to clone upperpath
[  212.007217][ T7538] kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  212.121317][ T7536] kvm: requested 838 ns i8254 timer period limited to 200000 ns
[  212.162587][ T7536] kvm: requested 39390 ns i8254 timer period limited to 200000 ns
[  212.170641][ T7536] kvm: requested 93866 ns i8254 timer period limited to 200000 ns
[  212.179090][ T7536] kvm: requested 12571 ns i8254 timer period limited to 200000 ns
[  212.237242][ T7536] kvm: requested 12571 ns i8254 timer period limited to 200000 ns
[  212.261125][ T7536] kvm: requested 85485 ns i8254 timer period limited to 200000 ns
[  212.281086][ T7536] kvm: requested 93028 ns i8254 timer period limited to 200000 ns
[  212.336903][ T7536] kvm: requested 7542 ns i8254 timer period limited to 200000 ns
[  212.366348][ T7536] kvm: requested 10057 ns i8254 timer period limited to 200000 ns
[  215.719981][ T7573] kvm: user requested TSC rate below hardware speed
[  215.769691][ T7573] kvm_intel: set kvm_intel.dump_invalid_vmcs=1 to dump internal KVM state.
[  216.334076][ T7581] loop4: detected capacity change from 0 to 512
[  216.393047][ T7581] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  219.768020][ T7623] loop7: detected capacity change from 0 to 16384
[  221.230231][ T7642] overlayfs: missing 'lowerdir'
[  223.600596][ T7662] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.608828][ T7662] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.077969][ T7662] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  224.154448][ T7662] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  229.598305][ T7696] cgroup: Unknown subsys name 'cpuset'
[  230.971332][ T3524] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  231.034348][ T3524] netdevsim netdevsim2 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  231.086580][ T3524] netdevsim netdevsim2 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  231.097403][ T7708] fuse: Bad value for 'fd'
[  231.132141][ T3524] netdevsim netdevsim2 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  232.321270][ T5183] Bluetooth: hci3: command 0x0406 tx timeout
[  233.020650][ T7731] netlink: 4 bytes leftover after parsing attributes in process `syz.1.497'.
[  236.625441][ T7759] loop4: detected capacity change from 0 to 1024
[  236.699485][ T7759] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.901686][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.179960][ T7801] netlink: 8 bytes leftover after parsing attributes in process `syz.1.523'.
[  239.277419][   T30] kauditd_printk_skb: 1 callbacks suppressed
[  239.287617][   T30] audit: type=1326 audit(1754533850.260:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  240.234880][   T30] audit: type=1326 audit(1754533850.260:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  240.284799][   T30] audit: type=1326 audit(1754533850.260:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  240.368605][   T30] audit: type=1326 audit(1754533850.260:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  240.470971][   T30] audit: type=1326 audit(1754533850.260:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  240.530951][   T30] audit: type=1326 audit(1754533850.260:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=20 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  240.631358][   T30] audit: type=1326 audit(1754533850.260:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  240.751403][   T30] audit: type=1326 audit(1754533850.260:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7804 comm="syz.5.525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f209c98ebe9 code=0x7ffc0000
[  242.457824][ T7855] loop4: detected capacity change from 0 to 512
[  242.657950][ T7855] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  242.781258][ T7855] ext4 filesystem being mounted at /91/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  242.859994][   T30] audit: type=1326 audit(1754533853.840:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7860 comm="syz.5.545" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f209c98ebe9 code=0x0
[  243.086592][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  244.781245][ T7894] capability: warning: `syz.5.557' uses deprecated v2 capabilities in a way that may be insecure
[  245.040651][ T7902] netlink: 4 bytes leftover after parsing attributes in process `syz.2.559'.
[  254.530386][ T8005] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.601'.
[  256.176846][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  256.183257][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  256.770614][ T8034] kAFS: No cell specified
[  259.130741][   T30] audit: type=1326 audit(1754533870.110:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8072 comm="syz.5.627" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f209c98ebe9 code=0x0
[  268.273926][ T8171] fuse: Unknown parameter 'group_id00000000000000000000'
[  270.429033][ T8202] fuse: Bad value for 'fd'
[  271.369697][ T8217] netlink: 'syz.5.677': attribute type 17 has an invalid length.
[  273.237741][ T8244] fuse: Bad value for 'fd'
[  273.980447][ T8242] loop4: detected capacity change from 0 to 512
[  274.233449][ T8242] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  274.251001][ T8242] ext4 filesystem being mounted at /109/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  274.299425][ T8242] fs-verity (loop4, inode 15): Unrecognized descriptor size: 0 bytes
[  274.758945][ T5863] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  277.294589][ T8288] netlink: 4 bytes leftover after parsing attributes in process `syz.1.702'.
[  277.422531][ T8293] netlink: 4 bytes leftover after parsing attributes in process `syz.1.702'.
[  277.476396][ T8291] fuse: Bad value for 'fd'
[  278.013866][ T8300] hub 9-0:1.0: USB hub found
[  278.034585][ T8300] hub 9-0:1.0: 1 port detected
[  280.610433][ T8336] netlink: 4 bytes leftover after parsing attributes in process `syz.1.721'.
[  282.782109][ T8374] netlink: 4 bytes leftover after parsing attributes in process `syz.0.733'.
[  286.670282][ T8416] netlink: 4 bytes leftover after parsing attributes in process `syz.1.749'.
[  287.996000][ T8432] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.754'.
[  288.055740][ T8431] netlink: 16402 bytes leftover after parsing attributes in process `syz.1.754'.
[  288.510942][ T5954] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  288.981003][ T5954] usb 5-1: Using ep0 maxpacket: 32
[  289.004927][ T5954] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  289.049803][ T5954] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  289.063085][ T5954] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  289.091978][ T5954] usb 5-1: Product: syz
[  289.211211][ T5954] usb 5-1: Manufacturer: syz
[  289.243058][ T5954] usb 5-1: SerialNumber: syz
[  289.282295][ T5954] usb 5-1: config 0 descriptor??
[  289.287904][ T8439] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  289.678928][ T5997] usb 5-1: USB disconnect, device number 3
[  291.135388][ T8476] tipc: Started in network mode
[  291.147325][ T8476] tipc: Node identity 00000000000000000000000000000001, cluster identity 4711
[  291.193084][ T8476] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  293.631045][ T5864] Bluetooth: hci4: unexpected event for opcode 0x0413
[  295.931223][ T8548] kAFS: No cell specified
[  298.351067][ T5864] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  298.359598][ T5864] Bluetooth: hci4: Injecting HCI hardware error event
[  298.368837][ T5183] Bluetooth: hci4: hardware error 0x00
[  299.252779][ T8585] kAFS: No cell specified
[  300.530234][ T8619] kAFS: No cell specified
[  301.320924][ T5183] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  305.665071][ T8687] vlan2: entered promiscuous mode
[  305.681434][ T8687] bond0: entered promiscuous mode
[  305.691769][ T8687] bond_slave_0: entered promiscuous mode
[  305.708753][ T8687] bond_slave_1: entered promiscuous mode
[  309.068057][ T8750] process 'syz.5.856' launched '/dev/fd/6' with NULL argv: empty string added
[  309.517718][ T8755] netlink: 4 bytes leftover after parsing attributes in process `syz.2.861'.
[  309.602937][ T8757] netlink: 4 bytes leftover after parsing attributes in process `syz.2.861'.
[  309.779708][ T8761] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  310.227205][ T8775] : entered promiscuous mode
[  311.720563][ T8817] netlink: 4 bytes leftover after parsing attributes in process `syz.2.883'.
[  311.885747][ T8823] fuse: Bad value for 'rootmode'
[  313.322034][ T8857] fuse: Bad value for 'rootmode'
[  314.394858][ T8890] netlink: 20 bytes leftover after parsing attributes in process `syz.5.909'.
[  314.776573][ T8901] fuse: Unknown parameter 'use00000000000000000000'
[  315.029315][ T5957] IPVS: starting estimator thread 0...
[  315.131507][ T8906] IPVS: using max 30 ests per chain, 72000 per kthread
[  315.899171][ T8936] fuse: Unknown parameter 'use00000000000000000000'
[  316.945658][ T8965] fuse: Unknown parameter 'use00000000000000000000'
[  317.073246][ T8971] netlink: 4 bytes leftover after parsing attributes in process `syz.5.940'.
[  317.361383][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  317.367716][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  318.611760][ T9000] fuse: Unknown parameter 'user_i00000000000000000000'
[  319.389039][ T9026] fuse: Unknown parameter 'user_i00000000000000000000'
[  319.636707][ T9034] fuse: Bad value for 'fd'
[  321.558435][ T9061] fuse: Unknown parameter 'user_i00000000000000000000'
[  322.828840][ T9082] fuse: Bad value for 'fd'
[  323.078350][ T9086] 9pnet_virtio: no channels available for device syz
[  325.004556][ T9105] fuse: Unknown parameter 'user_id00000000000000000000'
[  326.068613][ T9117] fuse: Bad value for 'fd'
[  326.955563][ T9136] fuse: Unknown parameter 'user_id00000000000000000000'
[  327.251724][ T9142] fuse: Bad value for 'fd'
[  327.621975][ T9151] 9pnet_virtio: no channels available for device syz
[  327.879803][ T9151] 9pnet_virtio: no channels available for device syz
[  329.661863][ T9181] fuse: Bad value for 'fd'
[  332.664199][ T9213] fuse: Bad value for 'fd'
[  333.475046][ T9225] fuse: Bad value for 'fd'
[  340.055304][ T9307] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  341.541792][ T9330] fuse: Bad value for 'fd'
[  345.882214][ T9390] netlink: 996 bytes leftover after parsing attributes in process `syz.4.1089'.
[  346.931216][ T9400] fuse: Bad value for 'fd'
[  348.074216][ T9414] loop4: detected capacity change from 0 to 512
[  348.130426][ T9414] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  349.485519][ T9419] team0: No ports can be present during mode change
[  349.667676][ T9427] loop4: detected capacity change from 0 to 256
[  349.962246][ T9431] openvswitch: netlink: Flow actions attr not present in new flow.
[  350.590628][ T9435] fuse: Bad value for 'fd'
[  352.195961][ T9457] netlink: 'syz.0.1113': attribute type 1 has an invalid length.
[  352.294121][ T9457] 8021q: adding VLAN 0 to HW filter on device bond1
[  352.628598][ T9458] 8021q: adding VLAN 0 to HW filter on device bond1
[  352.671512][ T9458] bond1: (slave vxcan3): The slave device specified does not support setting the MAC address
[  352.694603][ T9458] bond1: (slave vxcan3): Error -95 calling set_mac_address
[  354.117467][ T9492] loop4: detected capacity change from 0 to 512
[  354.181842][ T9492] EXT4-fs (loop4): can't mount with data_err=abort, fs mounted w/o journal
[  357.322658][ T9546] fuse: Unknown parameter '0x0000000000000003'
[  358.228380][ T9552] fuse: Bad value for 'fd'
[  360.571841][ T9590] vxcan1: tx drop: invalid da for name 0x0000000000000001
[  361.078155][ T9596] fuse: Unknown parameter '0x0000000000000003'
[  364.405078][ T9637] loop4: detected capacity change from 0 to 128
[  364.414942][ T9637] EXT4-fs: Ignoring removed nobh option
[  364.756110][ T9637] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  364.883350][ T9637] ext4 filesystem being mounted at /186/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  365.231621][ T9652] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1171'.
[  365.534739][ T5863] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  365.625965][ T9647] syz_tun: entered allmulticast mode
[  365.631865][ T9647] syz_tun: left allmulticast mode
[  365.641295][ T9649] syz_tun: entered allmulticast mode
[  365.949850][ T9664] Þeth0_virt_: renamed from veth0_vlan (while UP)
[  366.028058][ T5957] IPVS: starting estimator thread 0...
[  366.140900][ T9668] IPVS: using max 49 ests per chain, 117600 per kthread
[  366.263751][ T9681] syz.2.1182 uses obsolete (PF_INET,SOCK_PACKET)
[  368.425517][ T9744] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  369.992650][ T9762] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  370.324158][ T9781] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  370.341226][ T9781] syzkaller0: entered promiscuous mode
[  370.347604][ T9781] syzkaller0: entered allmulticast mode
[  370.376658][ T9781] tipc: Resetting bearer <eth:syzkaller0>
[  371.037040][ T9779] tipc: Resetting bearer <eth:syzkaller0>
[  371.088802][ T9779] tipc: Disabling bearer <eth:syzkaller0>
[  372.138878][ T9833] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1244'.
[  372.813185][ T9859] netlink: 1752 bytes leftover after parsing attributes in process `syz.5.1255'.
[  378.724556][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  378.731285][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  380.201623][ T9937] cgroup: Unknown subsys name 'cpuset'
[  381.231064][ T9945] netlink: 1752 bytes leftover after parsing attributes in process `syz.4.1288'.
[  381.868928][ T9963] tipc: Enabled bearer <udp:syz2>, priority 10
[  381.880183][ T9963] tipc: Enabling of bearer <udp:syz0> rejected, failed to enable media
[  382.982496][ T5954] tipc: Node number set to 1
[  383.345508][ T9972] cgroup: Unknown subsys name 'cpuset'
[  384.660959][ T6003] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  384.844740][ T6003] usb 5-1: Using ep0 maxpacket: 16
[  384.862500][ T6003] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x84 has invalid wMaxPacketSize 0
[  384.893754][ T6003] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[  384.921929][ T6003] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  384.944784][ T6003] usb 5-1: Product: syz
[  384.948990][ T6003] usb 5-1: Manufacturer: syz
[  384.976710][ T6003] usb 5-1: SerialNumber: syz
[  385.009050][ T6003] usb 5-1: config 0 descriptor??
[  385.039601][ T6003] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[  385.076303][ T6003] em28xx 5-1:0.0: DVB interface 0 found: bulk
[  385.667199][ T6003] em28xx 5-1:0.0: unknown em28xx chip ID (0)
[  386.921588][ T6003] em28xx 5-1:0.0: failed to get i2c transfer status from bridge register (error=-5)
[  386.961175][ T6003] em28xx 5-1:0.0: board has no eeprom
[  387.110947][ T6003] em28xx 5-1:0.0: Identified as PCTV tripleStick (292e) (card=94)
[  387.160881][ T6003] em28xx 5-1:0.0: dvb set to bulk mode.
[  387.166716][ T5997] em28xx 5-1:0.0: Binding DVB extension
[  387.221828][ T6003] usb 5-1: USB disconnect, device number 4
[  387.249445][ T6003] em28xx 5-1:0.0: Disconnecting em28xx
[  387.442331][ T5997] em28xx 5-1:0.0: Registering input extension
[  387.495742][ T6003] em28xx 5-1:0.0: Closing input extension
[  387.562435][ T6003] em28xx 5-1:0.0: Freeing device
[  387.573708][T10007] cgroup: Unknown subsys name 'cpuset'
[  387.811235][T10031] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  390.989287][T10091] netlink: 'syz.5.1349': attribute type 1 has an invalid length.
[  391.099542][T10091] 8021q: adding VLAN 0 to HW filter on device bond1
[  391.925333][T10095] bond1: (slave wlan0): Enslaving as an active interface with a down link
[  392.182224][T10091] vlan2: entered allmulticast mode
[  392.187433][T10091] veth1: entered allmulticast mode
[  392.217303][T10091] veth1: entered promiscuous mode
[  392.231921][T10091] veth1: left promiscuous mode
[  392.240056][T10091] bond1: (slave vlan2): making interface the new active one
[  392.248570][T10091] bond1: (slave wlan0): dev_set_mac_address on slave failed! ALB mode requires that the base driver support setting the hw address also when the network device's interface is open
[  392.275273][T10091] veth1: entered promiscuous mode
[  392.306854][T10091] vlan2: entered promiscuous mode
[  392.336531][T10091] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  392.461253][ T5957] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  392.670024][ T5957] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  392.704092][ T5957] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  392.734729][ T5957] usb 5-1: New USB device found, idVendor=056e, idProduct=00fd, bcdDevice= 0.00
[  392.780825][ T5957] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  392.851869][ T5957] usb 5-1: config 0 descriptor??
[  393.287463][ T5957] elecom 0003:056E:00FD.0001: ignoring exceeding usage max
[  393.356258][ T5957] elecom 0003:056E:00FD.0001: hidraw0: USB HID v0.00 Device [HID 056e:00fd] on usb-dummy_hcd.4-1/input0
[  393.492272][ T5957] usb 5-1: USB disconnect, device number 5
[  393.692192][T10128] fido_id[10128]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/report_descriptor': No such file or directory
[  400.809151][T10196] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  403.793226][T10262] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  403.811275][T10262] syzkaller0: entered promiscuous mode
[  403.820918][T10262] syzkaller0: entered allmulticast mode
[  403.847487][T10261] tipc: Resetting bearer <eth:syzkaller0>
[  403.962149][T10261] tipc: Disabling bearer <eth:syzkaller0>
[  405.693110][ T5183] Bluetooth: hci2: SCO packet for unknown connection handle 200
[  405.693181][ T5183] Bluetooth: hci2: SCO packet for unknown connection handle 200
[  406.110959][ T5957] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  406.285556][ T5957] usb 5-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  406.294909][ T5957] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  406.303111][ T5957] usb 5-1: Product: syz
[  406.307374][ T5957] usb 5-1: Manufacturer: syz
[  406.312244][ T5957] usb 5-1: SerialNumber: syz
[  406.319766][ T5957] usb 5-1: config 0 descriptor??
[  406.328658][ T5957] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  407.281211][    C1] vxcan0: j1939_tp_rxtimer: 0xffff888059474800: rx timeout, send abort
[  407.292094][    C1] vxcan0: j1939_xtp_rx_abort_one: 0xffff888059474800: 0x0f000: (3) A timeout occurred and this is the connection abort to close the session.
[  407.609011][ T5957] gspca_sunplus: reg_r err -110
[  407.616169][ T5957] sunplus 5-1:0.0: probe with driver sunplus failed with error -110
[  407.640966][ T5957] usb 5-1: USB disconnect, device number 6
[  407.823442][T10320] netlink: 56 bytes leftover after parsing attributes in process `syz.5.1439'.
[  408.286368][T10337] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1447'.
[  408.628407][T10351] netlink: 56 bytes leftover after parsing attributes in process `syz.1.1453'.
[  408.639409][ T6366] vlan2: left promiscuous mode
[  408.722943][ T5957] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  408.891784][ T5957] usb 5-1: Using ep0 maxpacket: 32
[  408.910969][ T5957] usb 5-1: config index 0 descriptor too short (expected 29220, got 36)
[  408.930409][ T5957] usb 5-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  408.941724][ T5183] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci0/hci0:201'
[  408.944105][ T5957] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 81
[  408.956631][ T5183] CPU: 0 UID: 0 PID: 5183 Comm: kworker/u9:1 Not tainted 6.16.0-next-20250806-syzkaller #0 PREEMPT(full) 
[  408.956655][ T5183] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  408.956667][ T5183] Workqueue: hci0 hci_rx_work
[  408.956700][ T5183] Call Trace:
[  408.956708][ T5183]  <TASK>
[  408.956716][ T5183]  dump_stack_lvl+0x189/0x250
[  408.956745][ T5183]  ? __pfx_dump_stack_lvl+0x10/0x10
[  408.956766][ T5183]  ? __pfx__printk+0x10/0x10
[  408.956796][ T5183]  ? kernfs_path_from_node+0x250/0x290
[  408.956815][ T5183]  ? kernfs_path_from_node+0x2f/0x290
[  408.956838][ T5183]  sysfs_create_dir_ns+0x259/0x280
[  408.956859][ T5183]  ? __pfx_sysfs_create_dir_ns+0x10/0x10
[  408.956881][ T5183]  ? do_raw_spin_unlock+0x122/0x240
[  408.956915][ T5183]  kobject_add_internal+0x59f/0xb40
[  408.956964][ T5183]  kobject_add+0x155/0x220
[  408.956997][ T5183]  ? __pfx_kobject_add+0x10/0x10
[  408.957023][ T5183]  ? _raw_spin_unlock+0x28/0x50
[  408.957049][ T5183]  ? get_device_parent+0x366/0x3a0
[  408.957071][ T5183]  device_add+0x408/0xb50
[  408.957093][ T5183]  hci_conn_add_sysfs+0xd5/0x1e0
[  408.957116][ T5183]  le_conn_complete_evt+0xc3a/0x1220
[  408.957154][ T5183]  ? __pfx_le_conn_complete_evt+0x10/0x10
[  408.957179][ T5183]  ? __mutex_unlock_slowpath+0x1a1/0x760
[  408.957210][ T5183]  ? __pfx___mutex_unlock_slowpath+0x10/0x10
[  408.957232][ T5183]  ? skb_pull_data+0xfb/0x200
[  408.957256][ T5183]  hci_le_enh_conn_complete_evt+0x189/0x470
[  408.957281][ T5183]  ? __pfx_hci_le_enh_conn_complete_evt+0x10/0x10
[  408.957309][ T5183]  hci_event_packet+0x78c/0x1200
[  408.957333][ T5183]  ? __pfx_hci_le_meta_evt+0x10/0x10
[  408.957358][ T5183]  ? __pfx_hci_event_packet+0x10/0x10
[  408.957379][ T5183]  ? kcov_remote_start+0x4d3/0x7f0
[  408.957402][ T5183]  ? lockdep_hardirqs_on+0x10/0x150
[  408.957428][ T5183]  ? hci_send_to_monitor+0xe2/0x570
[  408.957460][ T5183]  hci_rx_work+0x46a/0xe80
[  408.957489][ T5183]  ? process_scheduled_works+0x9ef/0x17b0
[  408.957518][ T5183]  process_scheduled_works+0xade/0x17b0
[  408.957566][ T5183]  ? __pfx_process_scheduled_works+0x10/0x10
[  408.957602][ T5183]  worker_thread+0x8a0/0xda0
[  408.957623][ T5183]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  408.957654][ T5183]  ? __kthread_parkme+0x7b/0x200
[  408.957684][ T5183]  kthread+0x70e/0x8a0
[  408.957708][ T5183]  ? __pfx_worker_thread+0x10/0x10
[  408.957725][ T5183]  ? __pfx_kthread+0x10/0x10
[  408.957748][ T5183]  ? _raw_spin_unlock_irq+0x23/0x50
[  408.957768][ T5183]  ? lockdep_hardirqs_on+0x9c/0x150
[  408.957788][ T5183]  ? __pfx_kthread+0x10/0x10
[  408.957810][ T5183]  ret_from_fork+0x3f9/0x770
[  408.957832][ T5183]  ? __pfx_ret_from_fork+0x10/0x10
[  408.957856][ T5183]  ? __switch_to_asm+0x39/0x70
[  408.957878][ T5183]  ? __switch_to_asm+0x33/0x70
[  408.957902][ T5183]  ? __pfx_kthread+0x10/0x10
[  408.957925][ T5183]  ret_from_fork_asm+0x1a/0x30
[  408.957964][ T5183]  </TASK>
[  408.958078][ T5183] kobject: kobject_add_internal failed for hci0:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  408.974995][ T5957] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  408.982806][ T5183] Bluetooth: hci0: failed to register connection device
[  408.988041][ T5957] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  409.023982][T10366] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  409.043046][ T5957] usb 5-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  409.043096][ T5957] usb 5-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  409.043117][ T5957] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  409.051481][ T5957] usb 5-1: config 0 descriptor??
[  409.569089][ T5957] usblp 5-1:0.0: usblp0: USB Bidirectional printer dev 7 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  409.588552][ T5957] usb 5-1: USB disconnect, device number 7
[  409.601747][ T5957] usblp0: removed
[  409.883896][T10393] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  410.820061][T10418] binder: 10417:10418 ioctl c0306201 200000000080 returned -14
[  410.834707][T10418] binder: BINDER_SET_CONTEXT_MGR already set
[  410.841022][T10418] binder: 10417:10418 ioctl 4018620d 200000000040 returned -16
[  411.515907][T10455] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  412.362090][T10492] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  412.432376][T10498] netlink: 28 bytes leftover after parsing attributes in process `syz.4.1518'.
[  413.929385][T10524] overlayfs: failed to clone upperpath
[  413.934247][T10526] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1528'.
[  414.129407][T10537] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1534'.
[  415.443393][T10579] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1547'.
[  415.760719][T10595] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1552'.
[  416.247533][T10613] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1560'.
[  416.520845][ T5957] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  416.681029][ T5957] usb 5-1: Using ep0 maxpacket: 32
[  416.698994][ T5957] usb 5-1: config 0 has an invalid interface number: 85 but max is 0
[  416.707602][ T5957] usb 5-1: config 0 has no interface number 0
[  416.717383][ T5957] usb 5-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  416.729562][ T5957] usb 5-1: config 0 interface 85 has no altsetting 0
[  416.741392][ T5957] usb 5-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72
[  416.760895][ T5957] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  416.768959][ T5957] usb 5-1: Product: syz
[  416.773823][ T5957] usb 5-1: Manufacturer: syz
[  416.781136][ T5957] usb 5-1: SerialNumber: syz
[  416.804198][ T5957] usb 5-1: config 0 descriptor??
[  417.232852][T10646] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1573'.
[  417.434423][ T5957] appletouch 5-1:0.85: Geyser mode initialized.
[  417.462025][ T5957] input: appletouch as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.85/input/input7
[  417.648529][ T5957] usb 5-1: USB disconnect, device number 8
[  417.734166][ T5957] appletouch 5-1:0.85: input: appletouch disconnected
[  422.146785][T10713] overlayfs: failed to clone upperpath
[  422.608250][T10725] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1602'.
[  426.506824][T10755] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1613'.
[  427.535185][T10794] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1628'.
[  427.536241][T10794] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1628'.
[  429.692508][T10818] overlayfs: failed to clone upperpath
[  429.764235][T10820] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1641'.
[  429.795894][T10820] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1641'.
[  430.181615][T10834] overlayfs: failed to clone upperpath
[  431.690917][ T5183] Bluetooth: hci1: command 0x0406 tx timeout
[  431.934944][T10848] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1654'.
[  431.966551][T10849] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1654'.
[  432.248147][T10857] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  434.590683][T10875] cgroup: Unknown subsys name 'cpuset'
[  434.623343][T10879] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1664'.
[  434.649726][T10881] Invalid source name
[  434.659562][T10881] UBIFS error (pid: 10881): cannot open "./file0", error -22
[  434.764739][T10883] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1666'.
[  434.815793][T10887] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1666'.
[  434.931903][T10890] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1668'.
[  436.618608][T10911] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1676'.
[  436.876605][T10914] cgroup: Unknown subsys name 'cpuset'
[  438.812007][ T5954] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[  439.550907][ T5954] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  439.608794][ T5954] usb 5-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  439.645204][ T5954] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  439.684774][ T5954] usb 5-1: config 0 descriptor??
[  439.713326][ T5954] pwc: Askey VC010 type 2 USB webcam detected.
[  440.861292][ T1302] ieee802154 phy0 wpan0: encryption failed: -22
[  440.867634][ T1302] ieee802154 phy1 wpan1: encryption failed: -22
[  441.101308][ T5954] pwc: recv_control_msg error -32 req 02 val 2b00
[  441.112617][ T5954] pwc: recv_control_msg error -32 req 02 val 2700
[  441.161631][ T5954] pwc: recv_control_msg error -32 req 02 val 2c00
[  441.201837][ T5954] pwc: recv_control_msg error -32 req 04 val 1000
[  441.231692][ T5954] pwc: recv_control_msg error -32 req 04 val 1300
[  441.291738][ T5954] pwc: recv_control_msg error -32 req 04 val 1400
[  441.309357][ T5954] pwc: recv_control_msg error -32 req 02 val 2000
[  441.519313][ T5954] pwc: recv_control_msg error -71 req 04 val 1500
[  441.560963][ T5954] pwc: recv_control_msg error -71 req 02 val 2500
[  441.580890][ T5954] pwc: recv_control_msg error -71 req 02 val 2400
[  441.602116][ T5954] pwc: recv_control_msg error -71 req 02 val 2600
[  441.641049][ T5954] pwc: recv_control_msg error -71 req 02 val 2900
[  441.671416][ T5954] pwc: recv_control_msg error -71 req 02 val 2800
[  441.688290][ T5954] pwc: recv_control_msg error -71 req 04 val 1100
[  441.719656][ T5954] pwc: recv_control_msg error -71 req 04 val 1200
[  441.778849][ T5954] pwc: Registered as video103.
[  441.807621][ T5954] input: PWC snapshot button as /devices/platform/dummy_hcd.4/usb5/5-1/input/input8
[  441.888917][ T5954] usb 5-1: USB disconnect, device number 9
[  442.940290][T10986] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1685'.
[  444.909935][T11014] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1716'.
[  447.377760][T11097] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1752'.
[  447.389752][T11098] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1751'.
[  447.899344][T11114] binder: 11113:11114 ioctl c0306201 200000000080 returned -14
[  448.221457][ T6003] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  448.402026][ T6003] usb 5-1: Using ep0 maxpacket: 8
[  448.472412][ T6003] usb 5-1: config index 0 descriptor too short (expected 6427, got 27)
[  448.498714][ T6003] usb 5-1: config 0 has an invalid interface number: 21 but max is 0
[  448.557547][ T6003] usb 5-1: config 0 has no interface number 0
[  448.598364][ T6003] usb 5-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[  448.652478][T11133] overlayfs: failed to clone upperpath
[  448.688601][ T6003] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 255, changing to 11
[  448.776123][ T6003] usb 5-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 59391, setting to 1024
[  448.846227][ T6003] usb 5-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[  449.861230][ T6003] usb 5-1: New USB device strings: Mfr=0, Product=1, SerialNumber=0
[  449.880796][ T6003] usb 5-1: Product: syz
[  449.916192][ T6003] usb 5-1: config 0 descriptor??
[  449.922287][T11116] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  450.567965][ T6003] input: syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.21/input/input9
[  450.797275][ T5954] usb 5-1: USB disconnect, device number 10
[  450.797350][    C1] keyspan_remote 5-1:0.21: keyspan_irq_recv - usb_submit_urb failed with result: -19
[  453.192913][T11213] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3095185786 (6190371572 ns) > initial count (5484635560 ns). Using initial count to start timer.
[  453.511018][ T5957] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  453.690569][ T5957] usb 5-1: config 0 has no interfaces?
[  453.702291][ T5957] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  453.746443][ T5957] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  453.785670][ T5957] usb 5-1: config 0 descriptor??
[  456.261807][ T5957] usb 5-1: USB disconnect, device number 11
[  456.359689][T11254] netlink: 828 bytes leftover after parsing attributes in process `syz.1.1813'.
[  456.447068][T11259] netlink: 828 bytes leftover after parsing attributes in process `syz.1.1813'.
[  456.730849][ T5954] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  456.900947][ T5954] usb 5-1: Using ep0 maxpacket: 16
[  456.908398][ T5954] usb 5-1: config 0 has an invalid interface number: 41 but max is 0
[  456.929478][ T5954] usb 5-1: config 0 has no interface number 0
[  456.946173][ T5954] usb 5-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[  456.976928][ T5954] usb 5-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[  457.000840][ T5954] usb 5-1: config 0 interface 41 has no altsetting 0
[  457.021932][ T5954] usb 5-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  457.041094][ T5954] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  457.061291][ T5954] usb 5-1: Product: syz
[  457.065505][ T5954] usb 5-1: Manufacturer: syz
[  457.070264][ T5954] usb 5-1: SerialNumber: syz
[  457.095146][ T5954] usb 5-1: config 0 descriptor??
[  457.101429][T11261] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  457.108900][T11261] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  457.435794][T11261] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  457.478938][T11261] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  457.667796][T11286] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1823'.
[  458.091735][ T5954] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): sr_get_phy_addr : Error reading PHYID register:ffffffe0
[  461.846566][ T5954] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): Failed to send software reset:ffffffb9
[  461.864462][ T5954] CoreChips 5-1:0.41 (unnamed net_device) (uninitialized): Failed to reset PHY: -71
[  461.878035][ T5954] CoreChips 5-1:0.41: probe with driver CoreChips failed with error -71
[  461.895288][ T5954] usb 5-1: USB disconnect, device number 12
[  462.117249][T11355] netlink: 828 bytes leftover after parsing attributes in process `syz.2.1850'.
[  462.126812][T11356] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1852'.
[  462.167633][T11358] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  462.254075][T11365] netlink: 828 bytes leftover after parsing attributes in process `syz.2.1850'.
[  462.375284][T11371] overlayfs: failed to clone upperpath
[  462.992060][T11390] overlayfs: failed to clone upperpath
[  463.182909][T11397] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  463.407644][T11408] Process accounting resumed
[  463.555704][T11413] netlink: 'syz.1.1875': attribute type 72 has an invalid length.
[  463.594198][T11413] netlink: 'syz.1.1875': attribute type 8 has an invalid length.
[  463.666821][T11413] netlink: 'syz.1.1875': attribute type 72 has an invalid length.
[  463.695847][T11413] netlink: 'syz.1.1875': attribute type 8 has an invalid length.
[  463.924064][ T5864] Bluetooth: hci1: command 0x0406 tx timeout
[  463.958335][T11429] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  466.291440][   T10] hid-generic C98F:0003:0002.0002: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  466.484026][T11498] fido_id[11498]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  466.731124][ T5864] Bluetooth: hci2: command 0x0406 tx timeout
[  468.315837][T11545] fuse: Bad value for 'fd'
[  469.108537][T11581] fuse: Bad value for 'fd'
[  470.328924][T11615] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  472.656523][T11664] veth1_to_bond: entered allmulticast mode
[  472.683574][T11664] netlink: 4 bytes leftover after parsing attributes in process `syz.2.1971'.
[  473.370240][T11664] veth1_to_bond (unregistering): left allmulticast mode
[  474.088093][T11664] bond0: (slave bond_slave_1): Releasing backup interface
[  476.114569][T11728] Process accounting resumed
[  476.143490][T11734] fuse: Bad value for 'fd'
[  477.491549][T11769] bridge0: port 1(bridge_slave_0) entered disabled state
[  477.501910][T11769] bridge0: port 2(bridge_slave_1) entered disabled state
[  478.248885][T11782] fuse: Bad value for 'fd'
[  478.496372][T11795] overlayfs: failed to clone upperpath
[  478.871590][T11805] cgroup: Unknown subsys name 'cpuset'
[  480.001127][T11837] overlayfs: failed to clone upperpath
[  481.411360][T11882] netlink: 28 bytes leftover after parsing attributes in process `syz.4.2067'.
[  482.188584][T11867] ptrace attach of "./syz-executor exec"[11901] was attempted by "./syz-executor exec"[11867]
[  482.469927][T11913] overlayfs: failed to resolve './file0': -2
[  482.644498][T11919] 8021q: adding VLAN 0 to HW filter on device bond0
[  482.672545][T11919] 8021q: adding VLAN 0 to HW filter on device team0
[  482.722830][T11919] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  482.760043][T11926] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[  483.822721][T11982] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2104'.
[  484.002023][T11994] overlayfs: failed to resolve './file1': -2
[  484.066005][T11997] fuse: Bad value for 'fd'
[  484.121097][T11998] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2115'.
[  484.172805][T11998] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2115'.
[  484.547348][T12014] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2119'.
[  486.744620][T12049] fuse: Bad value for 'fd'
[  486.975292][T12056] tipc: Enabling of bearer <eth:syzkaller0> rejected, failed to enable media
[  487.235435][T12068] binder: 12067:12068 ioctl c0306201 200000000080 returned -14
[  488.944215][T12101] syz.4.2148: attempt to access beyond end of device
[  488.944215][T12101] nbd4: rw=0, sector=64, nr_sectors = 1 limit=0
[  488.975477][T12101] ------------[ cut here ]------------
[  488.981334][T12101] WARNING: CPU: 1 PID: 12101 at fs/buffer.c:1125 bdev_getblk+0x580/0x660
[  488.990100][T12101] Modules linked in:
[  488.994504][T12101] CPU: 1 UID: 0 PID: 12101 Comm: syz.4.2148 Not tainted 6.16.0-next-20250806-syzkaller #0 PREEMPT(full) 
[  489.006253][T12101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  489.017003][T12101] RIP: 0010:bdev_getblk+0x580/0x660
[  489.022266][T12101] Code: 26 fb ff ff e8 01 b6 79 ff 48 c7 c7 e0 f3 99 8b 48 c7 c6 25 84 9e 8d 4c 89 fa 4c 89 e9 e8 18 a3 e1 fe eb bd e8 e1 b5 79 ff 90 <0f> 0b 90 48 b8 00 00 00 00 00 fc ff df 41 80 3c 07 00 74 08 48 89
[  489.042906][T12101] RSP: 0018:ffffc9000c0776b0 EFLAGS: 00010287
[  489.049009][T12101] RAX: ffffffff8245fc8f RBX: ffff888148dc7318 RCX: 0000000000080000
[  489.057293][T12101] RDX: ffffc9000ff36000 RSI: 0000000000006373 RDI: 0000000000006374
[  489.065548][T12101] RBP: 0000000000000200 R08: 0000000000000000 R09: ffffffff8215c87d
[  489.073857][T12101] R10: 0000000000000406 R11: 0000000000000002 R12: ffff888148dc7c70
[  489.082027][T12101] R13: ffff888148dc7300 R14: 0000000000000200 R15: 1ffff110291b8e63
[  489.090133][T12101] FS:  00007f40659916c0(0000) GS:ffff888125d24000(0000) knlGS:0000000000000000
[  489.099319][T12101] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  489.106060][T12101] CR2: 00007f209c962700 CR3: 0000000079386000 CR4: 00000000003526f0
[  489.114105][T12101] Call Trace:
[  489.117384][T12101]  <TASK>
[  489.120308][T12101]  __bread_gfp+0x89/0x3c0
[  489.125035][T12101]  udf_read_tagged+0xad/0xe00
[  489.129893][T12101]  udf_check_anchor_block+0x99/0x550
[  489.135441][T12101]  ? udf_get_last_block+0x286/0x360
[  489.140750][T12101]  ? __pfx_udf_check_anchor_block+0x10/0x10
[  489.146780][T12101]  ? __bread_gfp+0x340/0x3c0
[  489.151471][T12101]  udf_load_vrs+0x6e3/0xf20
[  489.156028][T12101]  ? __pfx_udf_load_vrs+0x10/0x10
[  489.161201][T12101]  ? udf_get_last_session+0x100/0x200
[  489.166722][T12101]  ? __pfx_udf_get_last_session+0x10/0x10
[  489.172725][T12101]  udf_fill_super+0x5ad/0x17a0
[  489.177833][T12101]  ? __pfx_udf_fill_super+0x10/0x10
[  489.183394][T12101]  ? set_blocksize+0x21e/0x500
[  489.190879][T12101]  ? sb_set_blocksize+0x104/0x180
[  489.195963][T12101]  ? setup_bdev_super+0x4c1/0x5b0
[  489.202025][T12101]  get_tree_bdev_flags+0x40e/0x4d0
[  489.207268][T12101]  ? __pfx_udf_fill_super+0x10/0x10
[  489.213264][T12101]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  489.219755][T12101]  vfs_get_tree+0x92/0x2b0
[  489.225194][T12101]  do_new_mount+0x2a2/0x9e0
[  489.229765][T12101]  ? ns_capable+0x8a/0xf0
[  489.234799][T12101]  ? __pfx_do_new_mount+0x10/0x10
[  489.239877][T12101]  ? path_mount+0x61c/0xfe0
[  489.245028][T12101]  ? user_path_at+0x44/0x60
[  489.250332][T12101]  __se_sys_mount+0x317/0x410
[  489.255591][T12101]  ? __pfx___se_sys_mount+0x10/0x10
[  489.261083][T12101]  ? do_syscall_64+0xbe/0x3b0
[  489.265912][T12101]  ? __x64_sys_mount+0x20/0xc0
[  489.270829][T12101]  do_syscall_64+0xfa/0x3b0
[  489.275466][T12101]  ? lockdep_hardirqs_on+0x9c/0x150
[  489.281295][T12101]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.287733][T12101]  ? clear_bhb_loop+0x60/0xb0
[  489.292520][T12101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.298469][T12101] RIP: 0033:0x7f4067b8ebe9
[  489.303188][T12101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.323138][T12101] RSP: 002b:00007f4065991038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  489.331899][T12101] RAX: ffffffffffffffda RBX: 00007f4067db6270 RCX: 00007f4067b8ebe9
[  489.339976][T12101] RDX: 0000200000000080 RSI: 0000200000004a00 RDI: 0000200000000000
[  489.348118][T12101] RBP: 00007f4067c11e19 R08: 0000000000000000 R09: 0000000000000000
[  489.356154][T12101] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000000
[  489.364631][T12101] R13: 00007f4067db6308 R14: 00007f4067db6270 R15: 00007ffdcd545878
[  489.372787][T12101]  </TASK>
[  489.375950][T12101] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  489.383230][T12101] CPU: 1 UID: 0 PID: 12101 Comm: syz.4.2148 Not tainted 6.16.0-next-20250806-syzkaller #0 PREEMPT(full) 
[  489.394588][T12101] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  489.404738][T12101] Call Trace:
[  489.408030][T12101]  <TASK>
[  489.410989][T12101]  dump_stack_lvl+0x99/0x250
[  489.415683][T12101]  ? __asan_memcpy+0x40/0x70
[  489.420278][T12101]  ? __pfx_dump_stack_lvl+0x10/0x10
[  489.425579][T12101]  ? __pfx__printk+0x10/0x10
[  489.430174][T12101]  vpanic+0x281/0x750
[  489.434247][T12101]  ? __pfx__printk+0x10/0x10
[  489.438856][T12101]  ? __pfx_vpanic+0x10/0x10
[  489.443355][T12101]  ? is_bpf_text_address+0x292/0x2b0
[  489.448646][T12101]  panic+0xb9/0xc0
[  489.452374][T12101]  ? __pfx_panic+0x10/0x10
[  489.456856][T12101]  __warn+0x31b/0x4b0
[  489.460919][T12101]  ? bdev_getblk+0x580/0x660
[  489.465597][T12101]  ? bdev_getblk+0x580/0x660
[  489.470185][T12101]  report_bug+0x2be/0x4f0
[  489.474617][T12101]  ? bdev_getblk+0x580/0x660
[  489.479292][T12101]  ? bdev_getblk+0x580/0x660
[  489.483950][T12101]  ? bdev_getblk+0x582/0x660
[  489.488716][T12101]  handle_bug+0x84/0x160
[  489.493146][T12101]  exc_invalid_op+0x1a/0x50
[  489.497731][T12101]  asm_exc_invalid_op+0x1a/0x20
[  489.502592][T12101] RIP: 0010:bdev_getblk+0x580/0x660
[  489.507883][T12101] Code: 26 fb ff ff e8 01 b6 79 ff 48 c7 c7 e0 f3 99 8b 48 c7 c6 25 84 9e 8d 4c 89 fa 4c 89 e9 e8 18 a3 e1 fe eb bd e8 e1 b5 79 ff 90 <0f> 0b 90 48 b8 00 00 00 00 00 fc ff df 41 80 3c 07 00 74 08 48 89
[  489.527488][T12101] RSP: 0018:ffffc9000c0776b0 EFLAGS: 00010287
[  489.533560][T12101] RAX: ffffffff8245fc8f RBX: ffff888148dc7318 RCX: 0000000000080000
[  489.541527][T12101] RDX: ffffc9000ff36000 RSI: 0000000000006373 RDI: 0000000000006374
[  489.549583][T12101] RBP: 0000000000000200 R08: 0000000000000000 R09: ffffffff8215c87d
[  489.557827][T12101] R10: 0000000000000406 R11: 0000000000000002 R12: ffff888148dc7c70
[  489.565793][T12101] R13: ffff888148dc7300 R14: 0000000000000200 R15: 1ffff110291b8e63
[  489.573844][T12101]  ? fs_reclaim_acquire+0x7d/0x100
[  489.579068][T12101]  ? bdev_getblk+0x57f/0x660
[  489.583769][T12101]  __bread_gfp+0x89/0x3c0
[  489.588143][T12101]  udf_read_tagged+0xad/0xe00
[  489.592928][T12101]  udf_check_anchor_block+0x99/0x550
[  489.598322][T12101]  ? udf_get_last_block+0x286/0x360
[  489.603636][T12101]  ? __pfx_udf_check_anchor_block+0x10/0x10
[  489.609637][T12101]  ? __bread_gfp+0x340/0x3c0
[  489.614241][T12101]  udf_load_vrs+0x6e3/0xf20
[  489.618762][T12101]  ? __pfx_udf_load_vrs+0x10/0x10
[  489.623820][T12101]  ? udf_get_last_session+0x100/0x200
[  489.629195][T12101]  ? __pfx_udf_get_last_session+0x10/0x10
[  489.634933][T12101]  udf_fill_super+0x5ad/0x17a0
[  489.639857][T12101]  ? __pfx_udf_fill_super+0x10/0x10
[  489.645055][T12101]  ? set_blocksize+0x21e/0x500
[  489.649832][T12101]  ? sb_set_blocksize+0x104/0x180
[  489.654850][T12101]  ? setup_bdev_super+0x4c1/0x5b0
[  489.659963][T12101]  get_tree_bdev_flags+0x40e/0x4d0
[  489.665086][T12101]  ? __pfx_udf_fill_super+0x10/0x10
[  489.670367][T12101]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  489.675995][T12101]  vfs_get_tree+0x92/0x2b0
[  489.680411][T12101]  do_new_mount+0x2a2/0x9e0
[  489.684930][T12101]  ? ns_capable+0x8a/0xf0
[  489.689277][T12101]  ? __pfx_do_new_mount+0x10/0x10
[  489.694314][T12101]  ? path_mount+0x61c/0xfe0
[  489.699359][T12101]  ? user_path_at+0x44/0x60
[  489.703873][T12101]  __se_sys_mount+0x317/0x410
[  489.708577][T12101]  ? __pfx___se_sys_mount+0x10/0x10
[  489.713775][T12101]  ? do_syscall_64+0xbe/0x3b0
[  489.718499][T12101]  ? __x64_sys_mount+0x20/0xc0
[  489.723360][T12101]  do_syscall_64+0xfa/0x3b0
[  489.727891][T12101]  ? lockdep_hardirqs_on+0x9c/0x150
[  489.733201][T12101]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.739264][T12101]  ? clear_bhb_loop+0x60/0xb0
[  489.744119][T12101]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  489.750018][T12101] RIP: 0033:0x7f4067b8ebe9
[  489.754437][T12101] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  489.774303][T12101] RSP: 002b:00007f4065991038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  489.782811][T12101] RAX: ffffffffffffffda RBX: 00007f4067db6270 RCX: 00007f4067b8ebe9
[  489.790831][T12101] RDX: 0000200000000080 RSI: 0000200000004a00 RDI: 0000200000000000
[  489.798794][T12101] RBP: 00007f4067c11e19 R08: 0000000000000000 R09: 0000000000000000
[  489.806789][T12101] R10: 0000000000000014 R11: 0000000000000246 R12: 0000000000000000
[  489.814774][T12101] R13: 00007f4067db6308 R14: 00007f4067db6270 R15: 00007ffdcd545878
[  489.822751][T12101]  </TASK>
[  489.826079][T12101] Kernel Offset: disabled
[  489.830414][T12101] Rebooting in 86400 seconds..