last executing test programs:

41.899747783s ago: executing program 3:
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x3200400, &(0x7f0000000140)=ANY=[], 0x3, 0xa73, &(0x7f0000003cc0)="$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")
rename(&(0x7f0000000000)='./file1\x00', &(0x7f0000000080)='./file2\x00')
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(r0, &(0x7f00000001c0)='./bus\x00', 0x0)
mkdirat(r0, &(0x7f0000000040)='./file1\x00', 0x0)

41.556111241s ago: executing program 3:
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b"], 0x15)
inotify_init()
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_open_procfs(0xffffffffffffffff, 0x0)
pipe(&(0x7f0000000080))
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r0, &(0x7f0000000080)=ANY=[@ANYBLOB="4c00030007"], 0xd)

41.288247106s ago: executing program 3:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r0, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)=[{&(0x7f0000000200)=ANY=[@ANYBLOB="2000000076001f03000000000800000008000100ffffffff08000a8004000000"], 0x20}], 0x1}, 0x0)
r1 = syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000800)=@base={0x1b, 0x0, 0x1, 0x8000}, 0xa4)
sendmsg$IPSET_CMD_DEL(r0, &(0x7f00000003c0)={&(0x7f0000000080), 0xc, &(0x7f0000000340)={&(0x7f0000000500)={0x94, 0xa, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0x8}, [@IPSET_ATTR_LINENO={0x8, 0x9, 0x1, 0x0, 0x1}, @IPSET_ATTR_DATA={0x78, 0x7, 0x0, 0x1, [@IPSET_ATTR_CIDR={0x5}, @IPSET_ATTR_PROTO={0x0, 0x7, 0x33}, @IPSET_ATTR_IP2_TO={0x18, 0x16, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV6={0x14, 0x2, 0x1, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}}, @IPSET_ATTR_IP2={0x18, 0x14, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x0, 0x1, 0x1, 0x0, @loopback}}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x3}, @IPSET_ATTR_IFACE={0x14, 0x17, 'veth1_to_batadv\x00'}, @IPSET_ATTR_BYTES={0xc, 0x18, 0x1, 0x0, 0x8}, @IPSET_ATTR_SKBQUEUE={0x6, 0x1d, 0x1, 0x0, 0x4}]}]}, 0x94}, 0x1, 0x0, 0x0, 0x8001}, 0x40004800)
pipe2(&(0x7f0000000040)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
r4 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r4, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7f12ddc1517600"})
r5 = syz_open_pts(r4, 0x0)
ioctl$TIOCSETD(r5, 0x5423, &(0x7f0000000200)=0x2)
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000280)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r6, @ANYBLOB="0000000000000000b702000000000000850e8c00860f464e1fab70a0e2f2900d4dbdbc7f0000009500000000000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='sched_kthread_stop_ret\x00', r2}, 0x10)
read(r5, 0x0, 0x2006)
close_range(r3, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES64=r1], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='mm_page_alloc\x00', r7}, 0x10)
syz_read_part_table(0x5d3, &(0x7f00000026c0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020307b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
llistxattr(&(0x7f0000000000)='./file0/file0\x00', &(0x7f0000000bc0)=""/4096, 0x1000)

40.766148393s ago: executing program 3:
syz_emit_ethernet(0x22, &(0x7f0000000240)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaa0008004500001400000000002f9078ac2414bbac1414bbe6c738e9bb1060057ef4aa47f16ddefcf95539021fbd145cad5dae63f3bf97afc4"], 0x0)
syz_mount_image$ext4(&(0x7f0000000740)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1810714, &(0x7f0000000440)={[{@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}, {@init_itable_val}, {@nolazytime}, {@grpid}, {@prjquota}, {@usrjquota}, {@lazytime}, {@errors_continue}, {@test_dummy_encryption}, {@test_dummy_encryption}]}, 0xff, 0x468, &(0x7f0000000780)="$eJzs289vFFUcAPDvzG4BQdmKiIIgVTRp/NHSgsrBxGg08aCJiR7wWNtCkIUaWhMhjVZj8GhIvBuPJv4FnjwZ9WTiFY8mhoQoMQG9uGZ2Z0q77JbWbtlN9/NJBt6befve+3bmzb6dtxtA3xrK/kki7o6IyxFRaWSXFxhq/Hfj2vzk39fmJ5Oo1d78I6mXu35tfrKWK163I69zOI1IP03yRmJgabWz5y+cnqhWp8/l+dG5M++Nzp6/8PSpMxMnp09Onx0/duzokbHnnh1/pkWvf7u01jiz+K7v+3Bm/95X3770+uTxS+/8+E3W3z0HGsezONZa5+0MZYH/2fjbNB97vNONddm/tZtxJuVu94bVKkVEOR+cl6MSpbh58irxyidd7RywobJ79tb2hxdqwCaWRLd7AHRH8Uafff4ttjs09egJV19sfADK4r6Rb40j5UjzMgMb2P5QRBxf+OfLbIum5xC1Fs8NAADW67ts/vNUq/lfGnuWlNuZrw0NRsS9EbErIu6LiN0RcX9EvewDEfHgGtsfasrfOv9Mr/yvwFYpm/89n69tLZ//FbO/GCzluXvq8Q8kJ05Vpw/nf5PhGNia5cdaVV5U8fIvn7drf+n8L9uy9ou5YF7JlXLjAd22Ys/UxNxEpyalVz+O2FduFX+yuBKQRMTeiNi3tqp3FolTT3y9v12h28e/gg6sM9W+KiqZX4im+AvJyuuTo9uiOn14tLgqbvXTzxffaNf+uuLvgOz8b19+/TeVqPyVLF2vnV088MJq27j462dtP1OWV3/9L8qu/y3JW/U13S35vg8m5ubOjUVsSV6r55ftH7/52iJflM/iHz7Uevzvyl+Txf9QRGQX8YGIeDgiDubn7pGIeDQiDq0Q/w8vPfZuu2O9cP6nWt7/Fq//weXnf+2J0unvv23X/uruf0frqeF8T/3+dxvtu1PcRpuuZgAAANjE0vp345N0ZDGdpiMjje/w747taXVmdu7JEzPvn51qfId+MAbS4klXZcnz0LFkIa+xkR/PnxUXx4/kz42/KN1Vz49MzlSnuhw79LsdbcZ/5vdSt3sHbDi/14L+1Tz+0y71A7jzvP9D/zL+oX8Z/9C/Wo3/j5ry1gJgM6pVut0DoHvM/6F/Gf/Qv4x/6Evr+V3/RiXKK/x6X6JXEpH2RDd6JnGwh0ZTuQOju8s3JgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgA75LwAA///foPki")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000200)={0x71e5b314, 0x100})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x12, 0xffffffffffffffff, 0x6b965000)
syz_open_procfs(0x0, 0x0)
getdents64(0xffffffffffffffff, &(0x7f0000002f40)=""/4098, 0x1002)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
syz_open_dev$admmidi(&(0x7f0000000140), 0x20, 0x0)
io_submit(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00'}, 0x10)
r4 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0x0)
ioctl$DRM_IOCTL_SET_CLIENT_CAP(r4, 0x4010640d, &(0x7f0000000000)={0x3, 0x2})
ioctl$DRM_IOCTL_MODE_GETPLANERESOURCES(r4, 0xc01064b5, &(0x7f0000000140)={&(0x7f00000006c0)=[<r5=>0x0], 0x1})
ioctl$DRM_IOCTL_MODE_GETPLANE(r4, 0xc02064b6, &(0x7f00000003c0)={r5, <r6=>0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
ioctl$DRM_IOCTL_MODE_SETCRTC(r4, 0xc06864a2, &(0x7f0000000400)={0x0, 0x0, r6, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x23c, 0x0, 0x0, "b4bc323ef77d1f000071849800000000deff00000000e6ffffff00"}})

39.628296613s ago: executing program 3:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0}, 0x10)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000280), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'rose0\x00', 0x112})
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdirat$cgroup(0xffffffffffffffff, 0x0, 0x1ff)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x8002, 0x0, 0x1}, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x0, 0xe, &(0x7f0000000800)=ANY=[@ANYBLOB="b702000000000000bfa300000000000007030000fdfdfff67a0af0fff8ffffff79a4f0ff00000000b7060000ffffffff2d6405000000000065040000010000400404000001000000b7050000050000006a0a00fe00000000850000000a000000b70000000000000095000000000000009cc6b3fcd62c061c6238975d43a4505f80e39c9f3c530cf08e467b592f868ee3b0a435df0a0e8c1bf176db2a6b2feb4b77d3d5707bfd2d84aaa3b1d4e984c46ea7e2b347a36f5662403e1b2be4284322a4908a0d411a9872971c7c56f0979bd10b97163c066d0e196bf02f46c7953ab1abdaf9de9ca3c00cb9bf4e418d076feafa22f0610a70f2bdf4000200000000b0c2c1254f0963f63223b7b80197aa3161f45346b100000000000000000089e399f6609876b5887437a172ebc02a740694298b79dc194e533583412dff048fc21f28bdd3e26a1a8a0481e9f0da43bb6ca66e2f55a9ff19ffcafe3e64be033c9d2f972cc93c1c13caec04a367c24a9fb6a6991ddb737d527d6acb15426415b6e8b14f822e86067a5e991c3b404984dfa2c6e94bd0339454c13ad3c328a182c15dc760a313e3b3ca5d3393404029e98fa883c71949a34d84030323e3d54f45b29d27643453ad9211e3550ee5520211d9370175133f260c6882a146880b9387f1beb5418618bc83a3becf9bb57da7ba8b913c685fc6700848dc6665d73248c1f74e08ad04ce905faf32706e0000249a028044ede964362cfb7830a246c3b2f60000fc4deb8eda1368b0960b8d69bd99c64893d44f962524429dc058528e7e541c903869d96989b9a986620cb2c95c83f2a082c52764f49e51188f9418b01bcd8ae164acdac95318ec8b2c6feacdcf4b528e5e58219bc54f6ad5679e7f430e6960ed048c46e1dccca05bfa1d67c83795eae2d31968c055d325a9c794ef88b30c2de4a274878b73c05ffa88b7033be648b12bb1fee58958d6a6f31bfe568215dfbde59dad00008a73b40f09cf018cd496b36050d7fd45e3620c28f76749262e33e16429a6da35ceb1a989de81c3f8b8bc3a4763948a1cbc10348ef2ac3781b847611fcb0a26acafdd6d9ab05865fcf7c493d8f8cd344a1d470ca0d6f16ab0293774b5509fb0e7113936d59d5a60dbd84a938476adeebab9ff44f531bb81c53f16d80f51006cbc71570a5e272b223425e09dc6b6cc1fbc455a64fd449284f71761092a0302000000000000008a05d36fd9b814b4292745418c92d944763a4bf5e138d810e29a31f08f7dea7762d28484e15dc4320e4f85c16a8fbffadf8214d6d24cabe17ad4135d8872935ce0e6a468fd20fa4461d1d67b234feac6eb4f046f2acc1b0efb4438abddcabb4e4e72a450aab72b589bec83bbb688e659fb426cb43d0ee993516fd4e867232cde69b6ffad447dcd92e0ef8234ff850ec3948dd1fa7afb77d951fe4abf618121b7894c1044ef221973432ccc7e62b151eb898a01010a7ec5acd0a5dcb2de443880c8a682515d1da9a3048744acb44384d1591df789883c0560495cb0cb32283529926d25e5c7f4815237c3aa356217738898a16ba603439f6eaad8e70b"], 0x0}, 0x80)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x9, 0x4, 0x6, 0xff, 0x42}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000100), &(0x7f0000000080), 0x619, r2}, 0x38)
close(r0)

11.773818214s ago: executing program 3:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setuid(r1)
prlimit64(0x0, 0x6, &(0x7f0000000040), 0x0)
syz_io_uring_setup(0x4ee7, &(0x7f0000000100)={0x0, 0x0, 0x2}, 0x0, 0x0)

11.127579592s ago: executing program 0:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cpuacct.usage_sys\x00', 0x275a, 0x0)
r1 = socket(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r2, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x1c, &(0x7f00000020c0)=[@in6={0xa, 0x0, 0x0, @remote, 0x34}]}, &(0x7f0000002100)=0x10)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r1, 0x84, 0x7, &(0x7f0000000300)={0x0, @in6={{0xa, 0x0, 0x0, @empty}}}, &(0x7f0000003c00)=0x90)
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x7, 0x10012, r0, 0x0)

8.463136557s ago: executing program 0:
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)="fe", 0x1}, {&(0x7f0000001240)="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", 0x480}], 0x2}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xb78}}, 0x0)

8.319626791s ago: executing program 0:
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PTP_PIN_GETFUNC2(r0, 0xc0603d0f, 0x0)

8.287159057s ago: executing program 0:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x7000000)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r2)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r3, 0x407, 0x100000)

8.196290551s ago: executing program 0:
socket$inet6_tcp(0xa, 0x1, 0x0)
io_setup(0x0, 0x0)
io_submit(0x0, 0x1, &(0x7f0000001b80)=[0x0])
listen(0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000001700)=0x4)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r2, &(0x7f0000000040)={0x20000004})
epoll_pwait(r3, &(0x7f0000000140)=[{}], 0x1, 0xfffffff8, 0x0, 0x0)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r1, &(0x7f0000000100)={0x60002006})

7.210124176s ago: executing program 0:
r0 = socket$rds(0x15, 0x5, 0x0)
sendmsg$rds(r0, &(0x7f0000000780)={&(0x7f0000000140)={0x2, 0x0, @broadcast}, 0x10, 0x0}, 0x0)

3.643855742s ago: executing program 4:
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, 0x0, 0x0)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f00000003c0)="fe", 0x1}, {&(0x7f0000001240)="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", 0x480}], 0x2}, 0x0)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={0x0, 0xb78}}, 0x0)

3.599762089s ago: executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x200000000000011, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000100)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @bridge={{0xb}, {0xc, 0x2, 0x0, 0x1, [@IFLA_BR_MAX_AGE={0x8}]}}}]}, 0x3c}}, 0x0)

3.161828732s ago: executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000fd41fd01020400000a00120002002800000019002d007fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000240), 0xb)
creat(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/56, 0x38}], 0x1, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004400), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x3, &(0x7f0000000140)=[{0x35, 0x0, 0x0, 0x2}, {0x35, 0x0, 0x0, 0xe12b}, {0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x3, &(0x7f0000000240)=[{0x5, 0x33}, {0x7fff, 0x9, 0x80, 0x4}, {0x4, 0x2f, 0x3f, 0x2}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000340)={<r3=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, &(0x7f0000000180)={r3})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0xc17a)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000480)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000080)={r4, 0x3, r2, 0x5})
write$binfmt_script(0xffffffffffffffff, &(0x7f00000016c0), 0x3af4701e)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x1e, 0x200, &(0x7f0000000880)="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"})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r1, 0x0)
r6 = openat$cgroup_pressure(r1, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000080)={'some', 0x20, 0x400, 0x20, 0xb6}, 0x2f)
getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x6, 0x0, &(0x7f0000000040))

1.745982699s ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x3, 0x4, 0x2}, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000001880), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000b40), 0x2b842ac, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='ext4_free_inode\x00', r5}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x800000, &(0x7f0000000440)={[{@shortname_lower}, {@shortname_winnt}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@shortname_mixed}, {@fat=@codepage={'codepage', 0x3d, '1255'}}, {@fat=@nocase}, {@fat=@fmask={'fmask', 0x3d, 0x1}}, {@rodir}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}], [{@uid_eq}, {@uid_eq}]}, 0x1, 0x29f, &(0x7f0000000180)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='rdma.current\x00', 0x275a, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f00000003c0)='./file1\x00', 0x20421, &(0x7f0000001a40)=ANY=[@ANYBLOB="696f636861727365743d61736369692c646973636172642c646d61736b3d30303030303030303030303030303030303030303030b72c7569643d", @ANYRESDEC, @ANYRESHEX, @ANYRES64, @ANYRESHEX, @ANYRESOCT, @ANYBLOB="c7f66d5a3cf83fe1ebe9"], 0x81, 0x1501, &(0x7f0000000500)="$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")
write$binfmt_script(r6, &(0x7f00000008c0), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0)
creat(&(0x7f00000002c0)='./bus\x00', 0x0)
unlink(&(0x7f0000000140)='./cgroup\x00')

1.535311993s ago: executing program 4:
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x0, 0x5}, 0x10)
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
sendmsg$kcm(r0, &(0x7f0000000100)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x0, @dev={0xfe, 0x80, '\x00', 0x29}}, 0x80, &(0x7f0000001500)=[{&(0x7f0000000000), 0x6800}], 0x1}, 0x0)

777.8684ms ago: executing program 4:
syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x2010000, &(0x7f0000000100)={[{@utf8}, {@utf8no}, {@iocharset={'iocharset', 0x3d, 'cp852'}}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@fat=@sys_immutable}, {@shortname_mixed}, {@rodir}, {@uni_xlate}, {@shortname_lower}, {@shortname_mixed}, {@fat=@check_normal}, {@iocharset={'iocharset', 0x3d, 'cp1255'}}, {@uni_xlate}]}, 0x25, 0x336, &(0x7f0000004200)="$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")
setsockopt$ARPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x60, 0x0, 0x0)
dup2(0xffffffffffffffff, 0xffffffffffffffff)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

700.563073ms ago: executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0x12, 0x4, &(0x7f00000007c0)=ANY=[@ANYBLOB="18000000000000000000000000000000711233000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x90)

626.515685ms ago: executing program 2:
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)={{0x14, 0x10, 0x9000, 0x6}, [@NFT_MSG_NEWSET={0x1c, 0x9, 0xa, 0x0, 0x0, 0x0, {}, [@NFTA_SET_ID={0x8}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x44}}, 0x0)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="1400000010000100000000000000000000fc000a20000000000a03000000000000000000070000000900010073797a30000000004c000000090a010400000000000000000700000008000a40000000000900020073797a31000000000900010073797a3000000000080005400000001c08000640ffffff000800034000000028580000000c0a01010000000000000000070000000900020073797a31000000000900010073797a30000000002c0003"], 0xec}}, 0x0)

581.599213ms ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xe, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x5, 0x0, 0x0, 0x0, 0x71, 0x10, 0x66}, [@ldst={0x5}]}, &(0x7f0000003ff6)='GPL\x00', 0x4, 0xfd90, &(0x7f000000cf3d)=""/195}, 0x48)

532.211272ms ago: executing program 2:
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, {}, {}, {}, {}, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0xffffffff})

487.000689ms ago: executing program 1:
syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000000)='./mnt\x00', 0x1c20b8, &(0x7f0000000180)=ANY=[@ANYRES8=0x0, @ANYRES8=0x0], 0x0, 0x1c4, &(0x7f0000000440)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0)
r1 = open(&(0x7f0000000840)='mnt/encrypted_dir\x00', 0x0, 0x0)
symlinkat(&(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', r1, &(0x7f00000000c0)='./file0\x00')

416.919631ms ago: executing program 2:
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x400, &(0x7f0000000140)=ANY=[@ANYBLOB='nostrict,umask=00000000000000000000010,unhide,longad,utf8,lastblock=00000000000000002304,anchor=18446744073709551615,gid=', @ANYRESDEC=0x0, @ANYBLOB=',gid=forget,uid=forget,noadinicb,shortad,iocharset=ascii,lastblock=00000000000000000009,iocharset=cp950,fileset=00000000000000000001,undelete,anchor=00000000000000000006,partition=00000000000000000008,anchor=00000000000008421375,session=00000000000000000001,anchor=00000000000000000005,gid=', @ANYRESDEC=0x0, @ANYBLOB="2c66fefb470f725c", @ANYRESDEC=0x0, @ANYBLOB=',uid=', @ANYRESDEC=0x0, @ANYBLOB="2c736d61636b66736465663d233f9d1abf59c53229ddd780b162f44a0e44f3436d598025e596d23078a3e733e07b480ad2f41c3ccd7956530c3be5c0d1833ad4954140d857bb924e0f613fe32a0c1461263f77581d8ed8b341959c53a341493644534a4b27223d1faac6bf7df530d100a57452b6a3abc826bb0f0b82809ca1e13376959935f589115abe267b25f42757304b4d6c7ffaec13f3079a4658933152fe693cc762ce82776b4003c4ac3d9d3478da3da1f79ad788d3b25f59422ba668e32c00"], 0x9, 0xc1e, &(0x7f0000001240)="$eJzs3U9sHNd9B/DfG5HiUmkrJnYUu42LTVukMmO5+hdTsQp3VdNsA8gyEYq5BeCKpNSFKZIgqUY20oLppYceAhRFDzkRaI0CKRoYTRH0yLQukFx8KHLqiWhhIyh6YIsAOQUsZvatuKRIixFFibI+H5v67s6+N/PevPWMLOjNCwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAg4vdfu3T6THrUrQAAHqYrY185fdb9HwCeKFf9/z8AAAAAAAAAAAAAABx2KYp4KlLMX1lPE9X7ttrlVu+t2+PDIztX609VzSNV+fKndubsufNffGnoQicvt2Y/ov6D9my8MXb1Uv3VuZvzC9OLi9NT9fHZ1uTc1PSe97Df+tsNViegfvPNW1PXry/Wz754bsvHtwc+7PvEiYGLQ8+feq5Tdnx4ZGRss0jtvo+9g91meByNIk5Fihe++5PUjIgi9n8uag937LfrrzoxWHVifHik6shMqzm7VH442jkRRUS9q1Kjc452Hovo6X2ofdhdI2K5bH7Z4MGye2PzzYXmtZnp+mhzYam11JqbHU3t1pb9qUcRF1LESkSs9d29u94ooidSfPv4eroWEUc65+EL1cTg3dtRHGAf96BsZ703YqV4DMbsEOuLIl6PFD9972RMlucs/8TnI14v8/sR75T5SkQqvxjnIz7Y4XvE46kniviLcvwvrqep6nrQua5c/mr9y7PX57rKdq4rv+D94a4rxSO6P/Rvy4fjkF+balFEs7rir6f7/80OAAAAAAAAAAAAAAAAAA9afxTxbKR47d//uJpXHNW89OMXh/5g4Je754w/c4/9lGVfjIjlYm9zco/miYGjaTSlRzyX+ElWiyL+JM//++ajbgwAAAAAAAAAAAAAAAAAAMATrYgfR4qX3z+ZVqJ7TfHW7I361ea1mfaqsJ21fztrpm9sbGzUUzsbOSdyLudcybmacy1nFLl+zkbOiZzLOVdyruZcyxlHcv2cjZwTOZdzruRczbmWM3py/ZyNnBM5l3Ou5FzNuZYzDsnavQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHydFFPHzSPGtr6+nSBHRiJiIdq72PerWAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAClvlTE9yJF/Q8bd7b1RESq/m07Wf5yPhpHy/xUNIbKfCUal3I2q+xpfPMRtJ/96U1F/ChS9NXevTPgefx72+/ufA3inW9svvvVnnYe6Xw48GHfJ04cvzg08uvP7PY67dSAwcut2Vu36+PDIyNjXZt78tE/1bVtIB+3eDBdJyIW33r7zebMzPTC/b8ovwL7qO6FF4f1RfQcimY8mr7zBCjv/x9Eit95/z86N/zO/f+X2u/u3OHjZ3+6ef9/efuO9nj/79le7x73/6e6tr2cfzfS2xNRW7o533siorb41tunWjebN6ZvTM+eP336S0NDXzp3uvdoRO16a2a669UDOV0AAAAAAAAAAAAAAAAAD08q4vciRfNH66keEber+VoDF4eeP/XckThSzbfaMm/7jbGrl+qvzt2cX5heXJyeqo/Ptibnpqb3erhaNd1rfHjkQDpzT/0H3P7+2qtz828ttG780dKOnx+rXbq2uLTQnNz54+iPIqLRvWWwavD48EjV6JlWc7aqOrrjZPpfXG8q4j8jxeT5evpc3pbn/22f4b9l/v/y9h0d0Pz/T3ZtK4+ZUhE/ixS//ZfPxOeqdh6Lu85ZLve3kWLwwmdzuThaluu0of1cgfbMwLLs/0aKf/z51rKd+ZBPbZY9s+cT+5gox/94pPjen38nfiNv2/r8h53H/9j2HR3Q+D/dte3YlucV7Lvr5PE/FSleeerd+M287aOe/9F59sbJXPjO8zkOaPw/3bVtIB/3tx5M1wEAAAAAAAAAAB5rvamIv4sUPxjpSS/lbXv5+39T23d0QH//6zNd26YezHpF93yx75MKAAAAAIdEbyrix5HixtK7d+ZQb53/3TX/83c3538Op22fVn/O9yvVcwMe5J//dRvIx53Yf7cBAAAAAAAAAAAAAAAAAADgUEmpiJfyeuoT1Xz+qV3XU1+NFK/99wu5XDpRluusAz9Q/Vq7Mjd76tLMzNxkc6l5bWa6PjbfnJwu6z4dKdb/5rO5blGtr95Zb769xvvmWuwLkWLk7ztl22uxd9Ymf3qz7Jmy7CcjxX/9w9aynXWsP71Z9mxZ9q8jxdf+eeeyJzbLnivLfidS/PBr9U7ZY2XZzvNRP7NZ9sXJueIARgUAAAAAAAAAAAAAAAAAAIAnTW8q4s8ixf/cXLkzlz+v/9/b9bbyzje61vvf5na1zv9Atf7/bq/vZ/3/6rkCy7sdFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPp5SFPF2pJi/sp5W+8r3bbXLrdlbt8eHR3au1p+qmkeq8uVP7czZc+e/+NLQhU5+dP0H7dl4Y+zqpfqrczfnF6YXF6en6uOzrcm5qek972G/9bcbrE5A/eabt6auX1+sn33x3JaPbw982PeJEwMXh54/9Vyn7PjwyMhYV5me3vs++l3SLtuPRhF/FSle+O5P0g/6IorY/7m4x3fnoPVXnRisOjE+PFJ1ZKbVnF0qPxztnIgiot5VqdE5Rw9hLPalEbFcNr9s8GDZvbH55kLz2sx0fbS5sNRaas3NjqZ2a8v+1KOICyliJSLW+u7eXW8U8Wak+Pbx9fQvfRFHOufhC1fGvnL67O7tKA6wj3tQtrPeG7FSPAZjdoj1RRH/FCl++t7J+Ne+iJ5o/8TnI14v8/sR70R7vFP5xTgf8cEO3yMeTz1RxP+V439xPb3XV14POteVy1+tf3n2+lxX2c515bG/PzxMh/zaVIsiflhd8dfTv/nvGgAAAAAAAAAAAAAAAOAQKeLXIsXL759M1fzgO3OKW7M36leb12ba0/o6c/86c6Y3NjY26qmdjZwTOZdzruRczbmWM4pcP2ejzNrGxkR+v5xzJedqzrWccSTXz9nIOZFzOedKztWcazmjJ9fP2cg5kXM550rO1ZxrOeOQzN0DAAAAAAAAAAAAAAAAAAA+XorqnxTf+vp62uhrry89Ee1ctR7ox97/BwAA///bhfta")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000580)='memory.events\x00', 0x100002, 0x0)
write$cgroup_type(r1, &(0x7f0000000140), 0x9)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
r2 = socket(0xa, 0x2, 0x3a)
r3 = fcntl$dupfd(r2, 0x0, r2)
write$P9_RGETATTR(r3, &(0x7f00000003c0)={0xa0}, 0xa0)

316.969707ms ago: executing program 4:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000140)="5500000018007f5f00fe01b2a4a2809302060000fd41fd01020400000a00120002002800000019002d007fffffff0022de1330d54400009b84136ef75afb83de066a5900e1baac968300000000f2ff000001000000", 0x55}], 0x1, 0x0, 0x0, 0x7a000000}, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000006ac0)='cpuacct.stat\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000240), 0xb)
creat(&(0x7f0000000300)='./bus\x00', 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff)
openat$cgroup_ro(0xffffffffffffffff, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
preadv(0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f00000000c0)=""/56, 0x38}], 0x1, 0x0, 0x0)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000004400), 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
syz_genetlink_get_family_id$nl802154(0x0, 0xffffffffffffffff)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x3, &(0x7f0000000140)=[{0x35, 0x0, 0x0, 0x2}, {0x35, 0x0, 0x0, 0xe12b}, {0x16}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000280)={0x3, &(0x7f0000000240)=[{0x5, 0x33}, {0x7fff, 0x9, 0x80, 0x4}, {0x4, 0x2f, 0x3f, 0x2}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000340)={<r3=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r2, 0xc0182101, &(0x7f0000000180)={r3})
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
ftruncate(0xffffffffffffffff, 0xc17a)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r2, 0xc0502100, &(0x7f0000000480)={<r4=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r2, 0x40182103, &(0x7f0000000080)={r4, 0x3, r2, 0x5})
write$binfmt_script(0xffffffffffffffff, &(0x7f00000016c0), 0x3af4701e)
r5 = syz_open_dev$tty1(0xc, 0x4, 0x4)
ioctl$KDFONTOP_SET(r5, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x1e, 0x200, &(0x7f0000000880)="1ae19337aa151f36ae49bb3f8cb95c5bf840d4f1e55efaaf098d47a70eb36a7309000000000000000f4743f490c585108c1331c7749299a25a705f5096cb268cbc6070d680e1be250700000000000000472471ff550c0010000007f3c7b61abe4162256004ea8ca5e5b5f379c6eb3257eda08f7e6959090000004d13184d382747e035b4722525e00ade86b4c6d1e157c75d15c1f961ebc0a64d7f2a73f8979fcecacaa64f9b9069ebcc1d5b471edbc4f6c7f1b98ae74e909aa6f25b7fa77bf9cd4ed36d5c53dc519d11c3cc1c22a3b86cf3c645413f4afbcea0c99ded703699d2bb6a4a663b99b6069da5aaf64785a5887c31261d4b9e57ee07000000def6f255ca26108f11f02047d47f2d0fec30f7e92482f71496e184214a4e0c5fdc48b0af0c0478940016d8f0990a0e1090fd515380aae83c5eaeed338701574b64200a16ef2811fadcf1e0f49a514df529061e09ce45e3da03a03fe9b4a6bcfa7d04594e4f6d0714a2e14ea127ab37d64a5e0db630cd4f4a2e6c985a542ff20a9b2193f265f93a258a88dd6c9d6a926dd23d32425849c5d9210007660a617f22133b6cb5087f4c6057942aa18193172bd995fa70a1f949b196f2e2a3c175858575713be5ee3f7f4dcecc98123f9ded3afdebe13d79a7f7fcb2469ae0ac503111401612df7ee995f74fb97a63bf62d61f78c062f959119ab50c1f706a930121ebcd53ccb93d158186ed360750ca8e728150d988844b9a5cff46591ccaff416e5a8c25f9555da5ca6fdf75b86ea6171b046b856168f403b5253a5cc393430a09a4489a0895571e597ac8846f945ffb372a88d3a25978b463dc961416c80c55773f917020751ed51cfd73c1e06fbadd156d56bedc117af95d242d6dccbe2ce34dccd6005e944afa92b22ec9a698469c6edc06caa2cfcd61912607d459b4c28ebea9745bcd4697d75c9601fd333d3cd797963a3c71b7cc5fdc756da8d97207936e5f53b53b732533c2722e03002293517966611602f297de6ff5408777b7a93c45cee3ee5c5601a4e94266b295ea7a86812a7ab8896ec5ea1b12643e1844b185734528399e62bceb8700cc6cd491e4a4430d0a3ba329a5a2fa170fd0b1cc4ba8294de988cd35df2cd7344aa8a9f3432b96fb889c02f484f635a0cc3466a3c2733d45f176931b2db18dba54991a9553cedb7f585786388d4042dbae1c95b769e3d4e036e8afea0a04c04f542b152ca1fd1f8efee60425c5a122fd1b90e98635284abd9f217d9e19cb2a64b354c9d79509cc47d7305114990148a7291cb0fe2d1c773a6664b66ae04aa62c534d072ae54c2ca0d5962cc58945d8924abfc4d5af922462507430d8f2c17479a6678b0b3700000000000000000000000000000000000000000000f800"})
mmap(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x1, 0x10012, r1, 0x0)
r6 = openat$cgroup_pressure(r1, &(0x7f0000000000)='memory.pressure\x00', 0x2, 0x0)
write$cgroup_pressure(r6, &(0x7f0000000080)={'some', 0x20, 0x400, 0x20, 0xb6}, 0x2f)
getsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x6, 0x0, &(0x7f0000000040))

203.882746ms ago: executing program 2:
r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
symlinkat(&(0x7f0000001200)='./file0\x00', r0, &(0x7f00000000c0)='./file0\x00')
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='hugetlb.1GB.usage_in_bytes\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x7, 0x12, r1, 0x0)
ftruncate(r1, 0x8979)
r2 = open(&(0x7f0000000000)='.\x00', 0x0, 0x0)
readlinkat(r2, &(0x7f0000000200)='./file0\x00', &(0x7f00000013c0)=""/4090, 0xffa)

171.596681ms ago: executing program 1:
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x4, &(0x7f0000000180)=0x2, 0x4)
getsockopt$inet6_tcp_int(r0, 0x6, 0x4, 0x0, &(0x7f00000001c0))

117.64186ms ago: executing program 2:
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x3, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}}, 0xe)
syz_emit_vhci(&(0x7f00000000c0)=ANY=[@ANYBLOB="02c8000c00080002"], 0x11)

13.108258ms ago: executing program 1:
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x3, 0x4, 0x2}, 0x48)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000001880), 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000b40), 0x2b842ac, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001d00)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00'}, 0x48)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000024"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='ext4_free_inode\x00', r5}, 0x10)
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000140)='./file0\x00', 0x800000, &(0x7f0000000440)={[{@shortname_lower}, {@shortname_winnt}, {@shortname_win95}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@shortname_mixed}, {@fat=@codepage={'codepage', 0x3d, '1255'}}, {@fat=@nocase}, {@fat=@fmask={'fmask', 0x3d, 0x1}}, {@rodir}, {@shortname_winnt}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}], [{@uid_eq}, {@uid_eq}]}, 0x1, 0x29f, &(0x7f0000000180)="$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")
r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='rdma.current\x00', 0x275a, 0x0)
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f00000003c0)='./file1\x00', 0x20421, &(0x7f0000001a40)=ANY=[@ANYBLOB="696f636861727365743d61736369692c646973636172642c646d61736b3d30303030303030303030303030303030303030303030b72c7569643d", @ANYRESDEC, @ANYRESHEX, @ANYRES64, @ANYRESHEX, @ANYRESOCT, @ANYBLOB="c7f66d5a3cf83fe1ebe9"], 0x81, 0x1501, &(0x7f0000000500)="$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")
write$binfmt_script(r6, &(0x7f00000008c0), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r6, 0x0)
creat(&(0x7f00000002c0)='./bus\x00', 0x0)
unlink(&(0x7f0000000140)='./cgroup\x00')

0s ago: executing program 2:
pipe(&(0x7f0000000000)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
fcntl$setpipe(r0, 0x407, 0x7000000)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r1, 0x1, 0x11, &(0x7f0000000240)={0x0, <r2=>0x0}, &(0x7f0000000280)=0x5)
setreuid(0x0, r2)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r3=>0xffffffffffffffff}, 0x0)
fcntl$setpipe(r3, 0x407, 0x100000)

kernel console output (not intermixed with test programs):

z_tun entered promiscuous mode
[  200.515227][   T26] audit: type=1804 audit(1718630217.704:68): pid=5855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.1" name="/root/syzkaller-testdir2671970238/syzkaller.3X2Cl3/12/bus" dev="sda1" ino=1962 res=1 errno=0
[  200.586875][   T26] audit: type=1804 audit(1718630217.714:69): pid=5855 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2671970238/syzkaller.3X2Cl3/12/bus" dev="sda1" ino=1962 res=1 errno=0
[  200.668370][   T26] audit: type=1326 audit(1718630218.784:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5859 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  200.763724][   T26] audit: type=1326 audit(1718630218.784:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5859 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  200.774858][ T5862] syz-executor.3 uses obsolete (PF_INET,SOCK_PACKET)
[  200.791357][ T5847] device syz_tun left promiscuous mode
[  200.817175][ T5864] loop1: detected capacity change from 0 to 256
[  200.832490][   T26] audit: type=1326 audit(1718630218.784:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5859 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  200.870195][ T5867] loop2: detected capacity change from 0 to 47
[  200.881069][ T5864] exFAT-fs (loop1): bogus data start sector
[  200.890372][   T26] audit: type=1326 audit(1718630218.784:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5859 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  200.919853][ T5864] exFAT-fs (loop1): failed to read boot sector
[  200.931759][ T5864] exFAT-fs (loop1): failed to recognize exfat type
[  200.939253][   T26] audit: type=1326 audit(1718630218.834:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5859 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  200.969197][   T26] audit: type=1326 audit(1718630218.854:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5859 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  201.191780][   T26] audit: type=1326 audit(1718630218.864:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5859 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4f37c7a6a7 code=0x7ffc0000
[  201.368132][ T5870] loop0: detected capacity change from 0 to 40427
[  201.392296][ T5870] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  201.400110][ T5870] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  202.044019][ T5870] F2FS-fs (loop0): Found nat_bits in checkpoint
[  202.083470][ T5870] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  202.103218][ T5870] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  202.110280][ T5870] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  202.344932][ T5901] loop3: detected capacity change from 0 to 4096
[  202.359554][ T5901] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  203.093005][ T5901] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  203.129086][ T5901] ntfs3: loop3: Failed to load $Extend.
[  203.171865][ T4189] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  203.171890][ T4189] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  203.192522][ T4189] F2FS-fs (loop0): invalid namelen(0), ino:0, run fsck to fix.
[  203.255802][ T5910] device syz_tun entered promiscuous mode
[  203.349972][ T5917] loop4: detected capacity change from 0 to 8192
[  203.362998][ T5917] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  203.390363][ T5917] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  203.411198][ T5917] REISERFS (device loop4): using ordered data mode
[  203.419359][ T5917] reiserfs: using flush barriers
[  203.452745][ T5917] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  203.469621][ T5908] device syz_tun left promiscuous mode
[  203.481590][ T5917] REISERFS (device loop4): checking transaction log (loop4)
[  203.746885][ T5917] REISERFS (device loop4): Using tea hash to sort names
[  203.761243][ T5917] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  203.781647][ T5917] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  204.025464][ T5936] loop2: detected capacity change from 0 to 40427
[  204.050419][ T5936] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  204.058255][ T5936] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  204.103271][ T5938] loop3: detected capacity change from 0 to 8
[  204.110870][ T5938] Filesystem uses "unknown" compression. This is not supported
[  204.123804][ T5936] F2FS-fs (loop2): Found nat_bits in checkpoint
[  204.159713][ T5936] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  204.209519][ T5936] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  204.216781][ T5936] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  204.261106][ T5938] loop3: detected capacity change from 0 to 512
[  204.470601][ T5938] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  204.482641][ T5938] ext4 filesystem being mounted at /root/syzkaller-testdir934915642/syzkaller.r2v1dR/65/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  205.099669][ T5964] device syz_tun entered promiscuous mode
[  205.234365][ T4531] f2fs_fill_dentries: 4 callbacks suppressed
[  205.234649][ T4531] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  205.275185][ T4531] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  205.297291][ T4634] EXT4-fs (loop3): unmounting filesystem.
[  205.322512][ T4531] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  205.322533][ T4531] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  205.333289][ T4531] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  205.340852][ T4531] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  205.349338][ T5960] device syz_tun left promiscuous mode
[  205.366800][ T4531] F2FS-fs (loop2): invalid namelen(0), ino:0, run fsck to fix.
[  205.502408][ T5969] loop4: detected capacity change from 0 to 8192
[  205.875543][ T5969] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  206.036501][ T5969] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  206.269075][ T5969] REISERFS (device loop4): using ordered data mode
[  206.311954][ T5969] reiserfs: using flush barriers
[  206.394045][ T5969] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  206.414252][ T5969] REISERFS (device loop4): checking transaction log (loop4)
[  206.558543][ T5996] loop3: detected capacity change from 0 to 1024
[  206.568924][ T5969] REISERFS (device loop4): Using tea hash to sort names
[  206.579714][ T5969] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  206.602384][ T5969] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  206.627237][ T5996] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  206.851353][ T4634] EXT4-fs (loop3): unmounting filesystem.
[  206.984628][ T3679] libceph: connect (1)[c::]:6789 error -101
[  206.991242][ T3679] libceph: mon0 (1)[c::]:6789 connect error
[  207.030075][ T6019] loop4: detected capacity change from 0 to 4096
[  207.030259][ T3679] libceph: connect (1)[c::]:6789 error -101
[  207.037589][ T6019] __ntfs_warning: 56 callbacks suppressed
[  207.037601][ T6019] ntfs: (device loop4): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  207.074530][ T3679] libceph: mon0 (1)[c::]:6789 connect error
[  207.075691][ T6019] ntfs: (device loop4): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  207.091076][ T6019] ntfs: (device loop4): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy.
[  207.108684][ T6019] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  207.117463][ T6019] ntfs: (device loop4): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  207.137425][ T6019] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  207.146522][ T6019] ntfs: (device loop4): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[  207.167422][ T6019] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  207.176256][ T6019] ntfs: (device loop4): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  207.211163][ T6019] ntfs: (device loop4): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  207.306457][ T6019] ntfs: volume version 3.1.
[  208.040165][ T3614] libceph: connect (1)[c::]:6789 error -101
[  208.048276][ T3614] libceph: mon0 (1)[c::]:6789 connect error
[  208.079721][ T6010] ceph: No mds server is up or the cluster is laggy
[  208.458835][ T6043] device pim6reg1 entered promiscuous mode
[  208.509699][ T6043] loop0: detected capacity change from 0 to 512
[  208.750948][ T6047] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  208.787814][ T6043] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz-executor.0: inode #1: comm syz-executor.0: iget: illegal inode #
[  208.805099][ T6043] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 1 err=-117
[  208.818936][ T6043] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz-executor.0: inode #1: comm syz-executor.0: iget: illegal inode #
[  208.835674][ T6043] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 1 err=-117
[  208.853272][ T6043] EXT4-fs (loop0): 1 orphan inode deleted
[  208.859088][ T6043] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  208.876562][ T6043] EXT4-fs (loop0): unmounting filesystem.
[  209.569588][ T6030] loop3: detected capacity change from 0 to 32768
[  210.215168][ T6030] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (6030)
[  210.347195][ T6066] loop0: detected capacity change from 0 to 8192
[  210.388853][ T6066] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  210.415056][ T6066] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  210.429846][ T6066] REISERFS (device loop0): using ordered data mode
[  210.436717][ T6066] reiserfs: using flush barriers
[  210.449416][ T6066] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  210.473280][ T6066] REISERFS (device loop0): checking transaction log (loop0)
[  210.522097][ T6030] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  210.545308][ T6030] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  210.561670][ T6030] BTRFS info (device loop3): use zlib compression, level 3
[  210.628762][ T6030] BTRFS info (device loop3): using free space tree
[  210.670391][ T6066] REISERFS (device loop0): Using tea hash to sort names
[  210.677874][ T6066] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  210.693094][ T6066] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  210.763998][ T6030] BTRFS info (device loop3): enabling ssd optimizations
[  210.822617][ T6108] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  210.957520][ T4634] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  211.281439][ T6130] loop3: detected capacity change from 0 to 64
[  211.859708][ T6143] loop2: detected capacity change from 0 to 8
[  211.988043][ T6143] Filesystem uses "unknown" compression. This is not supported
[  212.284467][ T6138] loop0: detected capacity change from 0 to 8192
[  212.322942][ T6143] loop2: detected capacity change from 0 to 512
[  212.352752][ T6138] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  212.373766][ T6138] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  212.401597][ T6138] REISERFS (device loop0): using ordered data mode
[  212.408287][ T6138] reiserfs: using flush barriers
[  212.434515][ T6138] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  212.463926][ T6138] REISERFS (device loop0): checking transaction log (loop0)
[  212.582280][ T6143] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  212.601278][ T6143] ext4 filesystem being mounted at /root/syzkaller-testdir613461494/syzkaller.L72a14/100/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  212.714581][ T6172] loop3: detected capacity change from 0 to 256
[  212.940535][ T6138] REISERFS (device loop0): Using tea hash to sort names
[  212.953354][ T6138] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  212.967848][ T6138] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  213.444802][ T4531] EXT4-fs (loop2): unmounting filesystem.
[  213.506177][   T26] kauditd_printk_skb: 14 callbacks suppressed
[  213.506193][   T26] audit: type=1800 audit(1718630231.704:137): pid=6181 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1952 res=0 errno=0
[  213.913575][ T6200] device pim6reg1 entered promiscuous mode
[  213.929299][ T6200] loop3: detected capacity change from 0 to 512
[  215.368430][ T6200] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz-executor.3: inode #1: comm syz-executor.3: iget: illegal inode #
[  215.382684][ T6200] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz-executor.3: error while reading EA inode 1 err=-117
[  215.397099][ T6200] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz-executor.3: inode #1: comm syz-executor.3: iget: illegal inode #
[  215.411233][ T6200] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz-executor.3: error while reading EA inode 1 err=-117
[  215.424370][ T6200] EXT4-fs (loop3): 1 orphan inode deleted
[  215.430244][ T6200] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  215.441499][ T6200] EXT4-fs (loop3): unmounting filesystem.
[  215.766432][ T6214] loop4: detected capacity change from 0 to 8
[  215.835441][ T6214] Filesystem uses "unknown" compression. This is not supported
[  215.955145][ T6214] loop4: detected capacity change from 0 to 512
[  215.961647][ T6219] loop2: detected capacity change from 0 to 8192
[  216.075633][ T6225] loop0: detected capacity change from 0 to 256
[  216.267017][ T6228] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.1'.
[  216.281252][ T6219] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  216.318559][ T6214] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  216.369790][ T6214] ext4 filesystem being mounted at /root/syzkaller-testdir3489809133/syzkaller.5Hs2tA/147/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  216.422529][   T26] audit: type=1800 audit(1718630234.614:138): pid=6231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1970 res=0 errno=0
[  216.444000][ T6219] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  216.560926][ T6219] REISERFS (device loop2): using ordered data mode
[  216.595137][ T6219] reiserfs: using flush barriers
[  216.628901][ T6219] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  216.646093][   T26] audit: type=1800 audit(1718630234.844:139): pid=6232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="bus" dev="sda1" ino=1970 res=0 errno=0
[  216.701823][ T6219] REISERFS (device loop2): checking transaction log (loop2)
[  216.741772][   T26] audit: type=1800 audit(1718630234.924:140): pid=6236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="sda1" ino=1955 res=0 errno=0
[  216.765393][ T4248] EXT4-fs (loop4): unmounting filesystem.
[  216.799334][ T6239] loop3: detected capacity change from 0 to 164
[  216.872025][ T6239] Unable to read rock-ridge attributes
[  216.958328][ T6219] REISERFS (device loop2): Using tea hash to sort names
[  216.979189][ T6219] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  217.008681][ T6219] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  217.096106][ T6252] overlayfs: failed to resolve './file0': -2
[  218.838837][ T6274] loop1: detected capacity change from 0 to 8
[  218.846188][ T6277] loop0: detected capacity change from 0 to 256
[  218.860260][ T6274] Filesystem uses "unknown" compression. This is not supported
[  218.862256][ T6277] exfat: Deprecated parameter 'utf8'
[  219.018396][ T6277] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  219.709891][ T6274] loop1: detected capacity change from 0 to 512
[  219.829288][ T6274] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  219.848106][ T6274] ext4 filesystem being mounted at /root/syzkaller-testdir2671970238/syzkaller.3X2Cl3/52/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  219.994534][ T5430] EXT4-fs (loop1): unmounting filesystem.
[  220.006112][ T6297] sock: sock_timestamping_bind_phc: sock not bind to device
[  220.071273][ T6297] binder: 6295:6297 ioctl c018620c 200005c0 returned -1
[  220.348532][ T6320] loop0: detected capacity change from 0 to 256
[  220.443055][   T41] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  220.459078][ T6320] exfat: Deprecated parameter 'utf8'
[  220.571984][ T6320] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  220.863157][   T41] usb 3-1: config 0 descriptor has 1 excess byte, ignoring
[  220.887728][   T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  221.151290][   T41] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  221.161582][   T41] usb 3-1: New USB device found, idVendor=046d, idProduct=c086, bcdDevice= 0.fb
[  221.171352][   T41] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.188155][   T41] usb 3-1: config 0 descriptor??
[  221.234958][   T41] usbhid 3-1:0.0: can't add hid device: -22
[  221.245225][   T41] usbhid: probe of 3-1:0.0 failed with error -22
[  221.348128][ T6327] loop1: detected capacity change from 0 to 8192
[  221.377244][ T6305] loop3: detected capacity change from 0 to 32768
[  221.387553][ T6327] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  221.409767][ T6327] REISERFS (device loop1): found reiserfs format "3.6" with non-standard journal
[  221.450502][ T6327] REISERFS (device loop1): using ordered data mode
[  221.458392][ T6327] reiserfs: using flush barriers
[  221.469867][ T6327] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  221.504479][ T6305] find_entry called with index = 0
[  221.511740][ T6305] find_entry called with index = 0
[  221.519512][ T6327] REISERFS (device loop1): checking transaction log (loop1)
[  221.553462][ T6339] find_entry called with index >= next_index
[  221.559654][ T6339] find_entry called with index >= next_index
[  221.565827][ T6339] find_entry called with index >= next_index
[  221.571998][ T6339] find_entry called with index >= next_index
[  221.578128][ T6339] find_entry called with index >= next_index
[  221.656374][ T6327] REISERFS (device loop1): Using tea hash to sort names
[  221.668208][ T6327] REISERFS warning (device loop1): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  221.704275][ T6327] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  221.815415][ T6342] mmap: syz-executor.2 (6342) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  221.829175][ T6341] loop0: detected capacity change from 0 to 8
[  221.850620][ T6341] Filesystem uses "unknown" compression. This is not supported
[  221.957981][ T6341] loop0: detected capacity change from 0 to 512
[  221.994433][ T6341] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  222.022735][ T6341] ext4 filesystem being mounted at /root/syzkaller-testdir3313703495/syzkaller.YzwjuH/172/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff)
[  222.167040][ T6361] loop1: detected capacity change from 0 to 256
[  222.210594][ T4189] EXT4-fs (loop0): unmounting filesystem.
[  222.217651][ T6361] exfat: Deprecated parameter 'utf8'
[  222.258311][ T6361] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  222.454446][ T6368] device pim6reg1 entered promiscuous mode
[  222.507651][ T6368] loop0: detected capacity change from 0 to 512
[  222.606156][ T6368] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz-executor.0: inode #1: comm syz-executor.0: iget: illegal inode #
[  222.621633][ T6368] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 1 err=-117
[  222.637094][ T6368] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: comm syz-executor.0: inode #1: comm syz-executor.0: iget: illegal inode #
[  222.653477][ T6368] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz-executor.0: error while reading EA inode 1 err=-117
[  222.673579][ T6368] EXT4-fs (loop0): 1 orphan inode deleted
[  222.679418][ T6368] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  222.701312][ T6368] EXT4-fs (loop0): unmounting filesystem.
[  223.300849][ T3614] usb 3-1: USB disconnect, device number 3
[  223.385203][ T6357] loop3: detected capacity change from 0 to 32768
[  223.406886][ T6357] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (6357)
[  223.832805][ T6357] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  224.142301][ T6357] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  224.187920][ T6357] BTRFS info (device loop3): using free space tree
[  224.375959][ T6357] BTRFS info (device loop3): enabling ssd optimizations
[  224.501967][ T4634] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  224.531597][ T6413] netlink: 19 bytes leftover after parsing attributes in process `syz-executor.4'.
[  224.637753][ T6418] loop0: detected capacity change from 0 to 128
[  224.794760][ T6428] netlink: 'syz-executor.4': attribute type 4 has an invalid length.
[  224.840384][ T6418] FAT-fs (loop0): error, corrupted directory (invalid i_start)
[  224.859290][ T6418] FAT-fs (loop0): Filesystem has been set read-only
[  224.861698][ T6417] loop1: detected capacity change from 0 to 4096
[  224.904570][ T6430] loop4: detected capacity change from 0 to 8
[  224.912402][ T6417] ntfs: (device loop1): parse_ntfs_boot_sector(): Mft record size (32768) exceeds the PAGE_SIZE on your system (4096).  This is not supported.  Sorry.
[  225.013471][ T6434] loop0: detected capacity change from 0 to 64
[  225.022582][ T3614] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  225.077459][ T6435] loop3: detected capacity change from 0 to 164
[  225.109953][ T6435] Unable to read rock-ridge attributes
[  225.714092][ T6459] loop1: detected capacity change from 0 to 64
[  225.731747][ T6461] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  226.084508][ T6478] loop0: detected capacity change from 0 to 256
[  228.507404][ T6473] loop4: detected capacity change from 0 to 40427
[  228.584878][ T6473] F2FS-fs (loop4): Found nat_bits in checkpoint
[  228.628621][ T6511] loop2: detected capacity change from 0 to 2048
[  228.652220][ T6473] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  228.721021][ T6511] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  228.869264][ T4248] syz-executor.4: attempt to access beyond end of device
[  228.869264][ T4248] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  228.869386][ T6504] loop3: detected capacity change from 0 to 32768
[  228.913018][ T6504] find_entry called with index = 0
[  228.918159][ T6504] find_entry called with index = 0
[  228.918894][ T4531] EXT4-fs (loop2): unmounting filesystem.
[  228.934973][ T6504] find_entry called with index >= next_index
[  228.940977][ T6504] find_entry called with index >= next_index
[  228.959166][ T6504] find_entry called with index >= next_index
[  228.965354][ T6504] find_entry called with index >= next_index
[  229.000280][ T6504] find_entry called with index >= next_index
[  229.123839][ T6537] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.0'.
[  229.913975][   T26] audit: type=1326 audit(1718630248.114:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  229.969066][   T26] audit: type=1326 audit(1718630248.114:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  230.001602][ T6589] loop0: detected capacity change from 0 to 1024
[  230.059657][   T26] audit: type=1326 audit(1718630248.144:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  230.095184][ T6589] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  230.145020][   T26] audit: type=1326 audit(1718630248.144:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  230.217503][   T26] audit: type=1326 audit(1718630248.144:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  230.291546][   T26] audit: type=1326 audit(1718630248.144:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  230.336552][   T26] audit: type=1326 audit(1718630248.144:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  230.374509][   T26] audit: type=1326 audit(1718630248.144:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f4f37c7a6a7 code=0x7ffc0000
[  230.397332][   T26] audit: type=1326 audit(1718630248.144:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f4f37c40379 code=0x7ffc0000
[  230.420218][   T26] audit: type=1326 audit(1718630248.144:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6584 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4f37c7cf29 code=0x7ffc0000
[  230.527101][ T4189] EXT4-fs (loop0): unmounting filesystem.
[  230.587930][ T6614] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  230.813576][ T3614] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  230.976957][ T6633] device pim6reg1 entered promiscuous mode
[  231.025256][ T6633] loop4: detected capacity change from 0 to 512
[  231.150699][ T6633] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz-executor.4: inode #1: comm syz-executor.4: iget: illegal inode #
[  231.170767][ T6633] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz-executor.4: error while reading EA inode 1 err=-117
[  231.185041][ T6633] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: comm syz-executor.4: inode #1: comm syz-executor.4: iget: illegal inode #
[  231.199878][ T6633] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz-executor.4: error while reading EA inode 1 err=-117
[  231.214082][ T6633] EXT4-fs (loop4): 1 orphan inode deleted
[  231.219907][ T6633] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  231.237500][ T6633] EXT4-fs (loop4): unmounting filesystem.
[  231.922613][ T3614] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  231.932225][ T3614] usb 2-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config
[  231.942783][ T3614] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66
[  231.966565][ T3614] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 10
[  231.978108][ T3614] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024
[  231.999682][ T6641] loop3: detected capacity change from 0 to 1024
[  232.111839][ T3574] Bluetooth: hci0: command 0x0406 tx timeout
[  232.118223][ T3614] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  232.132732][ T6641] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  232.150369][ T3614] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  232.167495][ T3614] usb 2-1: Product: syz
[  232.171681][ T3614] usb 2-1: Manufacturer: syz
[  232.194872][ T6611] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  232.233459][ T3614] cdc_wdm 2-1:1.0: skipping garbage
[  232.238696][ T3614] cdc_wdm 2-1:1.0: skipping garbage
[  232.257044][ T3614] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device
[  232.275852][ T3614] cdc_wdm 2-1:1.0: Unknown control protocol
[  232.315657][ T4634] EXT4-fs (loop3): unmounting filesystem.
[  232.468546][ T3615] usb 2-1: USB disconnect, device number 10
[  232.967382][ T6658] loop0: detected capacity change from 0 to 40427
[  233.009259][ T6658] F2FS-fs (loop0): Found nat_bits in checkpoint
[  233.100707][ T6658] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  233.173808][ T4189] syz-executor.0: attempt to access beyond end of device
[  233.173808][ T4189] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  233.569872][ T6680] loop3: detected capacity change from 0 to 32768
[  233.584146][ T6680] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (6680)
[  233.629419][ T6680] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  233.659943][ T6680] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  233.680392][ T6680] BTRFS warning (device loop3): the 'inode_cache' option is deprecated and has no effect since 5.11
[  233.706239][ T6680] BTRFS info (device loop3): doing ref verification
[  233.714087][ T6680] BTRFS info (device loop3): max_inline at 6
[  233.720187][ T6680] BTRFS info (device loop3): max_inline at 4096
[  233.727463][ T6680] BTRFS info (device loop3): turning on sync discard
[  233.741020][ T6680] BTRFS info (device loop3): force zlib compression, level 3
[  233.748591][ T6680] BTRFS info (device loop3): turning off barriers
[  233.771986][ T6680] BTRFS error (device loop3): unrecognized mount option 'rootcontext=system_u'
[  233.813517][ T6680] BTRFS error (device loop3): open_ctree failed
[  234.173192][ T6719] netlink: 128 bytes leftover after parsing attributes in process `syz-executor.4'.
[  234.279134][ T6729] netlink: 'syz-executor.4': attribute type 19 has an invalid length.
[  237.309987][ T3574] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  237.321595][ T3574] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  237.330458][ T3574] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  237.463444][ T3574] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  237.472086][ T3574] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  237.479476][ T3574] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  237.504647][ T3647] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  237.560939][ T6814] vcan0 speed is unknown, defaulting to 1000
[  238.518857][ T3647] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.612953][ T6831] fuse: Bad value for 'fd'
[  238.706579][ T3647] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  238.770259][ T6835] loop0: detected capacity change from 0 to 256
[  239.098072][ T3647] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  239.542653][ T3574] Bluetooth: hci1: command tx timeout
[  241.186464][ T6851] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  241.214120][ T6851] sch_tbf: burst 0 is lower than device lo mtu (18) !
[  241.435070][ T6814] chnl_net:caif_netlink_parms(): no params data found
[  241.443227][   T26] kauditd_printk_skb: 217 callbacks suppressed
[  241.443241][   T26] audit: type=1804 audit(1718630259.644:368): pid=6861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir613461494/syzkaller.L72a14/149/bus" dev="sda1" ino=1953 res=1 errno=0
[  241.485398][ T6861] Invalid ELF header magic: != ELF
[  241.519456][   T26] audit: type=1804 audit(1718630259.674:369): pid=6861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir613461494/syzkaller.L72a14/149/bus" dev="sda1" ino=1953 res=1 errno=0
[  241.575048][   T26] audit: type=1804 audit(1718630259.674:370): pid=6861 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir613461494/syzkaller.L72a14/149/bus" dev="sda1" ino=1953 res=1 errno=0
[  241.623435][ T3574] Bluetooth: hci1: command tx timeout
[  241.692546][ T3615] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[  241.701703][ T6814] bridge0: port 1(bridge_slave_0) entered blocking state
[  241.721543][ T6814] bridge0: port 1(bridge_slave_0) entered disabled state
[  241.732747][ T6814] device bridge_slave_0 entered promiscuous mode
[  241.893626][ T6814] bridge0: port 2(bridge_slave_1) entered blocking state
[  241.901027][ T6814] bridge0: port 2(bridge_slave_1) entered disabled state
[  241.909624][ T6814] device bridge_slave_1 entered promiscuous mode
[  242.012501][ T6886] loop4: detected capacity change from 0 to 256
[  242.672513][ T3615] usb 1-1: Using ep0 maxpacket: 32
[  243.702754][ T3574] Bluetooth: hci1: command tx timeout
[  243.769110][ T6814] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  243.781277][ T6814] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  243.812906][ T3615] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  243.836535][   T26] audit: type=1326 audit(1718630262.034:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6900 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x0
[  243.866521][ T3615] usb 1-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  243.879119][ T3615] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  243.897207][ T3615] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  243.926295][ T6814] team0: Port device team_slave_0 added
[  243.941103][ T6814] team0: Port device team_slave_1 added
[  243.947777][ T3615] hub 1-1:4.0: USB hub found
[  244.015648][ T6814] batman_adv: batadv0: Adding interface: batadv_slave_0
[  244.030643][ T6814] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  244.034232][ T6915] Illegal XDP return value 692518095 on prog  (id 208) dev N/A, expect packet loss!
[  244.068517][ T6814] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  244.096609][ T6814] batman_adv: batadv0: Adding interface: batadv_slave_1
[  244.103760][ T6814] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  244.132411][ T6814] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  244.189518][ T6814] device hsr_slave_0 entered promiscuous mode
[  244.201485][ T6814] device hsr_slave_1 entered promiscuous mode
[  244.212269][ T6814] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  244.227121][ T6814] Cannot create hsr debugfs directory
[  244.263040][ T3615] hub 1-1:4.0: 8 ports detected
[  244.300016][ T3615] hub 1-1:4.0: insufficient power available to use all downstream ports
[  244.427517][ T6922] loop3: detected capacity change from 0 to 256
[  244.681091][   T26] audit: type=1326 audit(1718630262.874:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2a67cf29 code=0x7ffc0000
[  245.001575][   T26] audit: type=1326 audit(1718630262.904:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2a67cf29 code=0x7ffc0000
[  245.042743][ T3615] hub 1-1:4.0: hub_hub_status failed (err = -71)
[  245.050998][ T3615] hub 1-1:4.0: config failed, can't get hub status (err -71)
[  245.084773][   T26] audit: type=1326 audit(1718630262.914:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fef2a67cf29 code=0x7ffc0000
[  245.120854][   T26] audit: type=1326 audit(1718630262.914:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2a67cf29 code=0x7ffc0000
[  245.133262][ T3615] usb 1-1: USB disconnect, device number 8
[  245.159620][   T26] audit: type=1326 audit(1718630262.924:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef2a67cf29 code=0x7ffc0000
[  245.559553][   T26] audit: type=1326 audit(1718630262.934:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6858 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fef2a67cf29 code=0x7ffc0000
[  245.782693][ T3574] Bluetooth: hci1: command tx timeout
[  246.085735][ T3647] device hsr_slave_0 left promiscuous mode
[  246.114786][ T3647] device hsr_slave_1 left promiscuous mode
[  246.125470][ T3647] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  246.138457][ T3647] batman_adv: batadv0: Removing interface: batadv_slave_0
[  246.154456][ T3647] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  246.162319][ T3647] batman_adv: batadv0: Removing interface: batadv_slave_1
[  246.178011][ T3647] device bridge_slave_1 left promiscuous mode
[  246.189747][ T3647] bridge0: port 2(bridge_slave_1) entered disabled state
[  246.198980][ T3647] device bridge_slave_0 left promiscuous mode
[  246.205824][ T3647] bridge0: port 1(bridge_slave_0) entered disabled state
[  246.230357][ T3647] device veth1_macvtap left promiscuous mode
[  246.238180][ T3647] device veth0_macvtap left promiscuous mode
[  246.256203][ T3647] device veth1_vlan left promiscuous mode
[  246.266886][ T3647] device veth0_vlan left promiscuous mode
[  246.392778][ T3615] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[  246.549793][ T3647] team0 (unregistering): Port device team_slave_1 removed
[  246.564638][ T3647] team0 (unregistering): Port device team_slave_0 removed
[  246.587685][ T3647] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  246.605008][ T3647] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  246.690807][ T3647] bond0 (unregistering): Released all slaves
[  246.762686][ T3615] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  246.779283][ T3615] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  246.805867][ T3615] usb 1-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  246.817815][ T3615] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  246.828851][ T3615] usb 1-1: config 0 descriptor??
[  247.128135][ T6814] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  247.163125][ T6814] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  247.187542][ T6814] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  247.208643][ T6814] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  247.326915][ T3615] logitech 0003:046D:C24F.0001: hidraw0: USB HID v0.00 Device [HID 046d:c24f] on usb-dummy_hcd.0-1/input0
[  247.352523][ T3615] logitech 0003:046D:C24F.0001: no inputs found
[  247.362578][ T4717] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  247.411364][ T6814] 8021q: adding VLAN 0 to HW filter on device bond0
[  247.431543][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  247.440638][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  247.457829][ T6814] 8021q: adding VLAN 0 to HW filter on device team0
[  247.487364][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  247.502256][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  247.511541][ T6120] bridge0: port 1(bridge_slave_0) entered blocking state
[  247.518660][ T6120] bridge0: port 1(bridge_slave_0) entered forwarding state
[  247.549614][ T6963] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  247.551295][ T6942] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  247.572844][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  247.583790][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  247.597385][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  247.607995][ T6942] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  247.621943][ T3613] bridge0: port 2(bridge_slave_1) entered blocking state
[  247.629080][ T3613] bridge0: port 2(bridge_slave_1) entered forwarding state
[  247.642582][ T4717] usb 5-1: Using ep0 maxpacket: 32
[  247.667476][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  247.685634][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  247.717143][ T3615] usb 1-1: USB disconnect, device number 9
[  247.724268][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  247.741138][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  247.750405][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  247.760611][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  247.769306][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  247.777503][ T4717] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  247.789174][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  247.797009][ T4717] usb 5-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  247.810914][ T6814] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  247.821440][ T4717] usb 5-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  247.839283][ T6814] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  247.847016][ T4717] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  247.863510][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  247.873193][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  247.891782][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  247.909813][ T4717] hub 5-1:4.0: USB hub found
[  247.922277][ T6969] 9pnet_fd: Insufficient options for proto=fd
[  248.204441][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  248.211892][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  248.219479][ T4717] hub 5-1:4.0: 8 ports detected
[  248.242382][ T6814] 8021q: adding VLAN 0 to HW filter on device batadv0
[  248.249613][ T4717] hub 5-1:4.0: insufficient power available to use all downstream ports
[  248.310797][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  248.333898][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  248.365769][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  248.383391][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  248.402329][ T6814] device veth0_vlan entered promiscuous mode
[  248.412333][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  248.421842][   T26] kauditd_printk_skb: 20 callbacks suppressed
[  248.421855][   T26] audit: type=1326 audit(1718630266.614:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  248.423064][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  248.439865][   T26] audit: type=1326 audit(1718630266.614:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  248.462573][ T4717] hub 5-1:4.0: hub_hub_status failed (err = -71)
[  248.632036][   T26] audit: type=1326 audit(1718630266.614:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  248.650922][ T4717] hub 5-1:4.0: config failed, can't get hub status (err -71)
[  248.671512][ T6814] device veth1_vlan entered promiscuous mode
[  248.693324][ T4717] usb 5-1: USB disconnect, device number 5
[  248.712090][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  248.720308][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  248.729446][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  249.034315][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  250.094468][ T6814] device veth0_macvtap entered promiscuous mode
[  250.153079][ T6814] device veth1_macvtap entered promiscuous mode
[  250.161512][   T26] audit: type=1326 audit(1718630266.614:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  250.264782][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  250.285061][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  250.289777][   T26] audit: type=1326 audit(1718630266.614:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  250.326639][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.362527][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.383358][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.402508][   T26] audit: type=1326 audit(1718630266.614:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  250.440016][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.458716][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.469316][   T26] audit: type=1326 audit(1718630266.614:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  250.502304][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.522487][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  250.542518][   T26] audit: type=1326 audit(1718630266.614:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  250.602512][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.602910][   T26] audit: type=1326 audit(1718630266.634:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  250.649148][ T6814] batman_adv: batadv0: Interface activated: batadv_slave_0
[  250.651643][   T26] audit: type=1326 audit(1718630266.634:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6956 comm="syz-executor.4" exe="/root/syz-executor.4" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x7ffc0000
[  250.685558][ T6999] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  250.701915][ T7006] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.4'.
[  250.716653][ T6982] loop0: detected capacity change from 0 to 32768
[  250.745405][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  250.752655][ T6982] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (6982)
[  250.773377][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  250.789762][ T6982] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  250.806115][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.811026][ T6982] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  250.826431][ T6982] BTRFS error (device loop0): unrecognized mount option 'fsmagic=0x0000000000000002'
[  250.854082][ T6982] BTRFS error (device loop0): open_ctree failed
[  250.860451][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.889080][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.908205][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.922576][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.951155][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  250.971484][ T6814] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  250.997629][ T6814] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  251.016178][ T6814] batman_adv: batadv0: Interface activated: batadv_slave_1
[  251.048293][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  251.064776][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  251.120127][ T7016] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.2'.
[  251.180399][ T6814] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  251.196923][ T6814] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  251.232518][ T6814] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  251.241236][ T6814] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  251.275042][ T7026] openvswitch: netlink: Message has 4 unknown bytes.
[  251.286043][ T7018] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.2'.
[  251.543099][ T3811] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  251.552405][ T3811] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  251.564587][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  251.590941][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  251.871811][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  252.008875][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  252.195458][ T7037] loop4: detected capacity change from 0 to 256
[  252.528598][ T7043] loop0: detected capacity change from 0 to 4096
[  252.592710][ T3574] Bluetooth: hci2: command 0x0406 tx timeout
[  252.663446][ T7059] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  253.392756][ T6120] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  253.782809][ T6120] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  253.814223][ T6120] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  253.844548][ T6120] usb 2-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  253.874845][ T6120] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  253.906405][ T6120] usb 2-1: config 0 descriptor??
[  254.003035][ T7055] loop4: detected capacity change from 0 to 32768
[  254.032331][ T7055] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz-executor.4 (7055)
[  254.071308][ T7055] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  254.092006][ T7055] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  254.112375][ T7055] BTRFS error (device loop4): unrecognized mount option 'fsmagic=0x0000000000000002'
[  254.146955][ T7055] BTRFS error (device loop4): open_ctree failed
[  254.416284][ T6120] logitech 0003:046D:C24F.0002: hidraw0: USB HID v0.00 Device [HID 046d:c24f] on usb-dummy_hcd.1-1/input0
[  254.462586][ T6120] logitech 0003:046D:C24F.0002: no inputs found
[  254.638594][ T7062] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  254.669558][ T7062] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  254.719330][ T6120] usb 2-1: USB disconnect, device number 11
[  254.773770][ T3574] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  254.788738][ T3574] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  254.801924][ T3574] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  254.810037][ T3574] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  254.821915][ T3574] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  254.832575][ T3574] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  254.912177][   T46] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  254.990800][ T7076] vcan0 speed is unknown, defaulting to 1000
[  255.025159][   T46] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.134467][   T46] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.286075][   T46] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  255.410430][ T7087] loop1: detected capacity change from 0 to 8
[  255.424558][ T7087] SQUASHFS error: lzo decompression failed, data probably corrupt
[  255.440835][ T7089] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.3'.
[  255.452627][ T7087] SQUASHFS error: Failed to read block 0x91: -5
[  255.458885][ T7087] SQUASHFS error: Unable to read metadata cache entry [8f]
[  255.477419][ T7087] SQUASHFS error: Unable to read inode 0x11f
[  255.539895][ T7089] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  255.624984][ T1253] ieee802154 phy0 wpan0: encryption failed: -22
[  255.631643][ T1253] ieee802154 phy1 wpan1: encryption failed: -22
[  256.251586][ T7076] chnl_net:caif_netlink_parms(): no params data found
[  256.676350][ T7110] loop1: detected capacity change from 0 to 512
[  256.683588][ T7110] EXT4-fs: Ignoring removed nomblk_io_submit option
[  256.749883][ T7110] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -2
[  256.772532][ T7110] EXT4-fs (loop1): Cannot turn on journaled quota: type 1: error -2
[  256.819073][ T7110] EXT4-fs (loop1): 1 truncate cleaned up
[  256.832643][ T7110] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  256.902989][ T3583] Bluetooth: hci4: command tx timeout
[  256.920053][ T7110] EXT4-fs error (device loop1): ext4_map_blocks:607: inode #2: block 4: comm syz-executor.1: lblock 0 mapped to illegal pblock 4 (length 1)
[  256.946357][ T7110] EXT4-fs (loop1): Remounting filesystem read-only
[  257.163897][ T7076] bridge0: port 1(bridge_slave_0) entered blocking state
[  257.182939][ T7076] bridge0: port 1(bridge_slave_0) entered disabled state
[  257.200081][ T7076] device bridge_slave_0 entered promiscuous mode
[  257.302967][ T7076] bridge0: port 2(bridge_slave_1) entered blocking state
[  257.310075][ T7076] bridge0: port 2(bridge_slave_1) entered disabled state
[  257.342589][ T7076] device bridge_slave_1 entered promiscuous mode
[  257.365452][ T7113] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 227 vs 220 free clusters
[  257.495840][ T6814] EXT4-fs (loop1): unmounting filesystem.
[  257.572497][ T7076] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  257.643071][ T7076] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  258.357361][ T7076] team0: Port device team_slave_0 added
[  258.357987][ T7138] loop4: detected capacity change from 0 to 512
[  258.384790][ T7076] team0: Port device team_slave_1 added
[  258.434004][ T7138] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  258.449760][ T7138] ext4 filesystem being mounted at /root/syzkaller-testdir3489809133/syzkaller.5Hs2tA/223/file0 supports timestamps until 2038 (0x7fffffff)
[  258.752039][   T26] kauditd_printk_skb: 12 callbacks suppressed
[  258.752056][   T26] audit: type=1804 audit(1718630276.944:420): pid=7138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.4" name="/root/syzkaller-testdir3489809133/syzkaller.5Hs2tA/223/file0/bus" dev="loop4" ino=18 res=1 errno=0
[  258.842708][   T26] audit: type=1800 audit(1718630276.984:421): pid=7138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.4" name="bus" dev="loop4" ino=18 res=0 errno=0
[  258.912270][   T26] audit: type=1804 audit(1718630277.104:422): pid=7145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.3" name="/root/syzkaller-testdir934915642/syzkaller.r2v1dR/157/bus" dev="sda1" ino=1958 res=1 errno=0
[  258.936906][ T7134] loop1: detected capacity change from 0 to 40427
[  258.969379][ T7134] F2FS-fs (loop1): invalid crc value
[  258.982583][ T3583] Bluetooth: hci4: command tx timeout
[  259.030482][ T7134] F2FS-fs (loop1): Found nat_bits in checkpoint
[  259.031136][ T7076] batman_adv: batadv0: Adding interface: batadv_slave_0
[  259.066527][ T7076] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.137087][ T7151] Bluetooth: MGMT ver 1.22
[  259.152848][ T7076] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  259.159316][ T7134] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  259.176592][ T7151] Bluetooth: hci3: invalid len left 7, exp >= 126
[  259.196331][ T7076] batman_adv: batadv0: Adding interface: batadv_slave_1
[  259.217192][ T7076] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  259.309333][ T7076] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  259.330255][ T7133] syz-executor.1: attempt to access beyond end of device
[  259.330255][ T7133] loop1: rw=10241, sector=53248, nr_sectors = 8 limit=40427
[  259.354476][ T4248] EXT4-fs (loop4): unmounting filesystem.
[  259.406635][   T46] device hsr_slave_0 left promiscuous mode
[  259.424550][   T46] device hsr_slave_1 left promiscuous mode
[  259.453690][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  259.461120][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  259.498113][ T6814] syz-executor.1: attempt to access beyond end of device
[  259.498113][ T6814] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  259.516347][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  259.533137][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  259.563868][   T46] device bridge_slave_1 left promiscuous mode
[  259.570087][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  259.612690][   T46] device bridge_slave_0 left promiscuous mode
[  259.618921][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  259.661147][   T46] device veth1_macvtap left promiscuous mode
[  259.673991][   T46] device veth0_macvtap left promiscuous mode
[  259.921393][   T46] bond2 (unregistering): Released all slaves
[  259.963156][   T46] bond1 (unregistering): Released all slaves
[  260.273589][   T46] team0 (unregistering): Port device team_slave_1 removed
[  260.302359][   T46] team0 (unregistering): Port device team_slave_0 removed
[  260.339812][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  260.421722][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  260.531931][ T7181] loop4: detected capacity change from 0 to 40427
[  260.539865][ T7181] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  260.547700][ T7181] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  260.584215][ T7181] F2FS-fs (loop4): Found nat_bits in checkpoint
[  260.634242][ T7181] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  260.641317][ T7181] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  260.659518][ T7189] Bluetooth: hci3: invalid len left 7, exp >= 126
[  260.674348][   T46] bond0 (unregistering): Released all slaves
[  260.960820][   T26] audit: type=1804 audit(1718630279.154:423): pid=7190 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.4" name="/root/syzkaller-testdir3489809133/syzkaller.5Hs2tA/227/bus/bus" dev="loop4" ino=10 res=1 errno=0
[  261.026556][ T7190] syz-executor.4: attempt to access beyond end of device
[  261.026556][ T7190] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  261.063101][ T3583] Bluetooth: hci4: command tx timeout
[  261.102882][ T7190] syz-executor.4: attempt to access beyond end of device
[  261.102882][ T7190] loop4: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  261.122560][ T7190] syz-executor.4: attempt to access beyond end of device
[  261.122560][ T7190] loop4: rw=2049, sector=40960, nr_sectors = 24 limit=40427
[  261.289734][ T7076] device hsr_slave_0 entered promiscuous mode
[  261.297943][ T7076] device hsr_slave_1 entered promiscuous mode
[  263.126926][ T7216] Bluetooth: hci3: invalid len left 7, exp >= 126
[  263.142802][ T3583] Bluetooth: hci4: command tx timeout
[  263.243627][ T3574] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  263.254836][ T3574] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  263.256888][ T7076] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  263.262679][ T3574] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  263.279595][ T3574] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  263.306533][ T7076] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  263.317026][ T3574] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  263.324442][ T3574] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  263.357622][ T7076] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  263.375842][ T7076] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  263.467848][ T7217] vcan0 speed is unknown, defaulting to 1000
[  263.632996][ T7076] 8021q: adding VLAN 0 to HW filter on device bond0
[  263.666116][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  263.674728][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  263.705700][ T7076] 8021q: adding VLAN 0 to HW filter on device team0
[  263.736373][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  263.753115][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  263.761623][ T6424] bridge0: port 1(bridge_slave_0) entered blocking state
[  263.768739][ T6424] bridge0: port 1(bridge_slave_0) entered forwarding state
[  263.843193][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  263.851194][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  263.883453][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  263.891928][ T6421] bridge0: port 2(bridge_slave_1) entered blocking state
[  263.899096][ T6421] bridge0: port 2(bridge_slave_1) entered forwarding state
[  263.976200][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  263.996214][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  264.021767][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  264.062876][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  264.125907][ T7076] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  264.162537][ T7076] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  264.193999][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  264.233326][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  264.271180][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  264.279854][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  264.303705][ T7224] loop4: detected capacity change from 0 to 512
[  264.310859][ T7224] EXT4-fs: Ignoring removed nomblk_io_submit option
[  264.330310][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  264.340371][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  264.367002][ T7224] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  264.373071][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  264.403099][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  264.412693][ T7224] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  264.458903][ T7224] EXT4-fs (loop4): 1 truncate cleaned up
[  264.512541][ T7224] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  264.557545][ T7224] EXT4-fs error (device loop4): ext4_map_blocks:607: inode #2: block 4: comm syz-executor.4: lblock 0 mapped to illegal pblock 4 (length 1)
[  264.686941][ T7224] EXT4-fs (loop4): Remounting filesystem read-only
[  264.809408][ T7217] chnl_net:caif_netlink_parms(): no params data found
[  265.100475][ T7217] bridge0: port 1(bridge_slave_0) entered blocking state
[  265.143034][ T7217] bridge0: port 1(bridge_slave_0) entered disabled state
[  265.167540][ T7217] device bridge_slave_0 entered promiscuous mode
[  265.207526][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  265.222885][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  265.252774][ T7217] bridge0: port 2(bridge_slave_1) entered blocking state
[  265.260981][ T7217] bridge0: port 2(bridge_slave_1) entered disabled state
[  265.269015][ T4248] EXT4-fs (loop4): unmounting filesystem.
[  265.292943][ T7217] device bridge_slave_1 entered promiscuous mode
[  265.326548][ T7076] 8021q: adding VLAN 0 to HW filter on device batadv0
[  265.382805][ T3583] Bluetooth: hci1: command tx timeout
[  265.422032][ T7217] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  265.478367][ T7217] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  265.538890][ T7239] loop4: detected capacity change from 0 to 4096
[  265.546625][ T7239] ntfs3: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ0x0000000000000000'
[  265.610486][ T7217] team0: Port device team_slave_0 added
[  265.671081][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  265.702029][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  265.753145][ T7217] team0: Port device team_slave_1 added
[  265.804061][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  265.823460][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  265.824449][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  265.824945][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  265.826099][ T7076] device veth0_vlan entered promiscuous mode
[  265.831480][ T7076] device veth1_vlan entered promiscuous mode
[  265.848313][ T7217] batman_adv: batadv0: Adding interface: batadv_slave_0
[  265.848326][ T7217] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.848351][ T7217] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  265.853887][ T7217] batman_adv: batadv0: Adding interface: batadv_slave_1
[  265.853900][ T7217] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  265.853923][ T7217] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  265.926949][ T7076] device veth0_macvtap entered promiscuous mode
[  265.929853][ T7076] device veth1_macvtap entered promiscuous mode
[  265.940863][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  265.941476][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  265.942058][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  265.942651][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  265.990752][ T7217] device hsr_slave_0 entered promiscuous mode
[  265.991708][ T7217] device hsr_slave_1 entered promiscuous mode
[  265.992233][ T7217] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  265.992254][ T7217] Cannot create hsr debugfs directory
[  266.000903][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  266.000922][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.000933][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  266.000946][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.000956][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  266.000968][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.000978][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  266.000991][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.002150][ T7076] batman_adv: batadv0: Interface activated: batadv_slave_0
[  266.002978][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  266.003539][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  266.308419][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  266.308440][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.308451][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  266.308464][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.308474][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  266.308486][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.308496][ T7076] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  266.308508][ T7076] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  266.309734][ T7076] batman_adv: batadv0: Interface activated: batadv_slave_1
[  266.312298][ T7076] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  266.312329][ T7076] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  266.312354][ T7076] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  266.312379][ T7076] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  266.316663][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  266.317275][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  266.450754][   T46] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.753316][   T46] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.873190][   T46] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  266.903044][ T3647] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  266.911480][ T3647] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  266.967859][   T46] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  267.020778][ T6424] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  267.066872][ T3647] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  267.099670][ T3647] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  267.160770][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  267.204267][ T7249] af_packet: tpacket_rcv: packet too big, clamped from 96 to 4294967272. macoff=96
[  267.462863][ T3583] Bluetooth: hci1: command tx timeout
[  267.546635][ T7258] Bluetooth: hci3: invalid len left 7, exp >= 126
[  268.133694][ T7267] loop0: detected capacity change from 0 to 4096
[  268.140482][ T7267] ntfs3: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ0x0000000000000000'
[  268.250911][ T7217] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  268.274226][ T7217] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  268.324658][ T7217] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  268.354975][ T7217] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  268.384582][   T46] device hsr_slave_0 left promiscuous mode
[  268.403533][   T46] device hsr_slave_1 left promiscuous mode
[  268.411106][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  268.423748][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  268.448314][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  268.469517][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  268.481994][   T46] device bridge_slave_1 left promiscuous mode
[  268.497283][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  268.526342][   T46] device bridge_slave_0 left promiscuous mode
[  268.545551][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  268.555481][ T7274] serio: Serial port pts0
[  268.568460][   T46] device veth1_macvtap left promiscuous mode
[  268.583099][   T46] device veth0_macvtap left promiscuous mode
[  268.599428][   T46] device veth1_vlan left promiscuous mode
[  268.609563][   T46] device veth0_vlan left promiscuous mode
[  268.707462][ T7274] loop0: detected capacity change from 0 to 2048
[  269.060378][   T46] team0 (unregistering): Port device team_slave_1 removed
[  269.089757][   T46] team0 (unregistering): Port device team_slave_0 removed
[  269.119837][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  269.151991][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  269.363944][   T46] bond0 (unregistering): Released all slaves
[  269.543082][ T3583] Bluetooth: hci1: command tx timeout
[  269.634668][ T7217] 8021q: adding VLAN 0 to HW filter on device bond0
[  269.675838][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  269.701285][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  269.747144][ T7217] 8021q: adding VLAN 0 to HW filter on device team0
[  269.763719][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  269.783721][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  269.802739][ T6120] bridge0: port 1(bridge_slave_0) entered blocking state
[  269.809830][ T6120] bridge0: port 1(bridge_slave_0) entered forwarding state
[  269.885842][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  269.894342][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  269.913126][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  269.921534][ T4717] bridge0: port 2(bridge_slave_1) entered blocking state
[  269.928643][ T4717] bridge0: port 2(bridge_slave_1) entered forwarding state
[  269.982802][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  269.991604][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  270.033388][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  270.081850][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  270.121189][ T7217] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  270.135203][ T7217] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  270.163159][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  270.190191][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  270.223424][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  270.231913][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  270.253116][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  270.292090][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  270.321205][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  270.366808][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  270.727326][ T7303] serio: Serial port pts0
[  270.826016][ T7303] loop0: detected capacity change from 0 to 2048
[  270.961183][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  270.973774][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  270.992372][ T7217] 8021q: adding VLAN 0 to HW filter on device batadv0
[  271.114613][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  271.128884][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  271.177830][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  271.193515][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  271.220223][ T7217] device veth0_vlan entered promiscuous mode
[  271.238007][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  271.262650][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  271.299101][ T7217] device veth1_vlan entered promiscuous mode
[  271.358890][ T7315] AppArmor: change_hat: Invalid input, NULL hat and NULL magic
[  271.366970][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  271.410461][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  271.450350][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  271.459738][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  271.504980][ T7217] device veth0_macvtap entered promiscuous mode
[  271.536477][ T7217] device veth1_macvtap entered promiscuous mode
[  271.600833][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.623100][ T3583] Bluetooth: hci1: command tx timeout
[  271.639676][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.684168][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.731544][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.762514][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.810638][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.831775][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  271.852415][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.863842][ T7217] batman_adv: batadv0: Interface activated: batadv_slave_0
[  271.872987][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  271.881606][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  271.933425][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  271.968829][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  272.009927][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.043062][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.062580][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.093358][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.126014][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.152525][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.182495][ T7217] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  272.212530][ T7217] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  272.254005][ T7217] batman_adv: batadv0: Interface activated: batadv_slave_1
[  272.264149][ T7327] netlink: 'syz-executor.0': attribute type 1 has an invalid length.
[  272.272314][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  272.293248][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  272.315076][ T7217] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  272.350996][ T7217] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  272.382523][ T7217] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  272.412533][ T7217] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  272.585747][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  272.608172][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  272.644977][ T3811] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  272.650242][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  272.666383][ T3811] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  272.693079][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  272.968962][ T7325] loop4: detected capacity change from 0 to 32768
[  272.996746][ T7336] loop0: detected capacity change from 0 to 64
[  273.037892][ T7325] XFS (loop4): Mounting V5 Filesystem
[  273.184452][ T7325] XFS (loop4): Ending clean mount
[  273.208412][ T4851] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  273.223701][ T7325] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'.
[  273.239774][ T4851] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  273.311638][ T4248] XFS (loop4): Unmounting Filesystem
[  274.457479][ T3574] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  274.468586][ T3574] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  274.477187][ T3574] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  274.485821][ T3574] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  274.503783][ T3574] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  274.511133][ T3574] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  274.588158][ T7374] capability: warning: `syz-executor.4' uses 32-bit capabilities (legacy support in use)
[  274.602375][   T46] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.617486][ T7377] loop1: detected capacity change from 0 to 256
[  274.692026][ T7369] vcan0 speed is unknown, defaulting to 1000
[  274.750855][ T7374] loop4: detected capacity change from 0 to 2048
[  274.774486][   T46] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.816459][ T7374] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  274.880325][   T46] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  274.960215][ T7377] kvm: emulating exchange as write
[  275.035594][   T46] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  275.200571][ T7382] loop1: detected capacity change from 0 to 64
[  275.486048][ T7369] chnl_net:caif_netlink_parms(): no params data found
[  275.644275][ T7369] bridge0: port 1(bridge_slave_0) entered blocking state
[  275.644395][ T7369] bridge0: port 1(bridge_slave_0) entered disabled state
[  275.645420][ T7369] device bridge_slave_0 entered promiscuous mode
[  275.647756][ T7369] bridge0: port 2(bridge_slave_1) entered blocking state
[  275.647886][ T7369] bridge0: port 2(bridge_slave_1) entered disabled state
[  275.649096][ T7369] device bridge_slave_1 entered promiscuous mode
[  275.695939][ T7369] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  275.819579][ T7369] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  275.875849][ T7369] team0: Port device team_slave_0 added
[  275.925999][ T7369] team0: Port device team_slave_1 added
[  275.979412][ T7369] batman_adv: batadv0: Adding interface: batadv_slave_0
[  275.979429][ T7369] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.979452][ T7369] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  275.981118][ T7369] batman_adv: batadv0: Adding interface: batadv_slave_1
[  275.981131][ T7369] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.981154][ T7369] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  276.077615][ T7369] device hsr_slave_0 entered promiscuous mode
[  276.215194][ T7369] device hsr_slave_1 entered promiscuous mode
[  276.217240][ T7369] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  276.217263][ T7369] Cannot create hsr debugfs directory
[  276.583064][ T3574] Bluetooth: hci4: command tx timeout
[  276.619160][ T7398] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  276.700854][   T46] device hsr_slave_0 left promiscuous mode
[  276.712949][   T46] device hsr_slave_1 left promiscuous mode
[  276.752626][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  276.760117][   T46] batman_adv: batadv0: Removing interface: batadv_slave_0
[  276.780338][   T46] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  276.780363][   T46] batman_adv: batadv0: Removing interface: batadv_slave_1
[  276.794934][   T46] device bridge_slave_1 left promiscuous mode
[  276.795079][   T46] bridge0: port 2(bridge_slave_1) entered disabled state
[  276.810564][   T46] device bridge_slave_0 left promiscuous mode
[  276.810697][   T46] bridge0: port 1(bridge_slave_0) entered disabled state
[  276.817089][   T46] device veth1_macvtap left promiscuous mode
[  276.817142][   T46] device veth0_macvtap left promiscuous mode
[  276.817254][   T46] device veth1_vlan left promiscuous mode
[  276.817334][   T46] device veth0_vlan left promiscuous mode
[  277.310444][   T46] team0 (unregistering): Port device team_slave_1 removed
[  277.340846][   T46] team0 (unregistering): Port device team_slave_0 removed
[  277.369772][   T46] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  277.403818][   T46] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  277.628960][   T46] bond0 (unregistering): Released all slaves
[  278.180698][ T7369] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  278.203906][ T7369] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  278.235122][ T7369] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  278.255708][ T7421] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  278.295049][ T7369] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  278.514061][ T7369] 8021q: adding VLAN 0 to HW filter on device bond0
[  278.565440][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  278.573915][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  278.617494][ T7369] 8021q: adding VLAN 0 to HW filter on device team0
[  278.660841][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  278.662740][ T3574] Bluetooth: hci4: command tx timeout
[  278.673050][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  278.740470][ T3613] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.747610][ T3613] bridge0: port 1(bridge_slave_0) entered forwarding state
[  278.822863][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  278.830822][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  278.863856][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  278.896508][ T3613] bridge0: port 2(bridge_slave_1) entered blocking state
[  278.903651][ T3613] bridge0: port 2(bridge_slave_1) entered forwarding state
[  278.923172][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  278.931923][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  278.987764][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  278.998950][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  279.023253][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  279.031980][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  279.053307][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  279.061731][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  279.083200][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  279.102119][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  279.124402][ T7369] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  279.171757][ T4717] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  279.815822][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  279.826805][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  279.860071][ T7369] 8021q: adding VLAN 0 to HW filter on device batadv0
[  279.931457][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  279.945843][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  279.950949][ T7442] loop4: detected capacity change from 0 to 4096
[  279.974058][ T7442] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512)
[  280.003224][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  280.018757][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  280.026265][ T7442] ntfs3: loop4: Mark volume as dirty due to NTFS errors
[  280.045315][ T7442] ntfs3: loop4: Failed to load $Extend.
[  280.046620][ T7369] device veth0_vlan entered promiscuous mode
[  280.075041][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  280.099121][ T7442] ntfs3: loop4: ino=5, "/" directory corrupted
[  280.106789][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  280.147162][ T7369] device veth1_vlan entered promiscuous mode
[  280.205212][ T7445] loop1: detected capacity change from 0 to 256
[  280.213380][ T3583] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  280.223080][ T3583] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  280.231012][ T3583] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  280.239271][ T3583] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  280.249972][ T3583] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  280.257970][ T3583] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  280.282993][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  280.292979][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  280.355703][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  280.403158][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  280.425569][ T7369] device veth0_macvtap entered promiscuous mode
[  280.444854][ T7369] device veth1_macvtap entered promiscuous mode
[  280.478484][ T7443] vcan0 speed is unknown, defaulting to 1000
[  280.543369][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.582976][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.612497][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.652474][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.662321][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.722727][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.742738][ T3574] Bluetooth: hci4: command tx timeout
[  280.752474][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  280.782666][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.814556][ T7369] batman_adv: batadv0: Interface activated: batadv_slave_0
[  280.830076][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  280.842336][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  280.863188][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  280.871975][ T3613] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  280.897732][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.922938][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.942564][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.953144][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.962977][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.973418][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  280.983388][ T7369] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  280.993843][ T7369] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  281.005618][ T7369] batman_adv: batadv0: Interface activated: batadv_slave_1
[  281.024788][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  281.037645][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  281.058980][ T7369] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  281.097893][ T7369] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  281.114592][ T7369] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  281.129518][ T7369] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  281.438494][ T7463] loop4: detected capacity change from 0 to 64
[  282.198864][   T57] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.217299][   T57] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  282.255813][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  282.288278][   T57] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  282.310903][   T57] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  282.313899][ T7443] chnl_net:caif_netlink_parms(): no params data found
[  282.342766][ T3574] Bluetooth: hci2: command tx timeout
[  282.348903][   T41] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  282.623757][ T7443] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.631028][ T7443] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.666277][ T7443] device bridge_slave_0 entered promiscuous mode
[  282.748038][   T57] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.810275][ T7443] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.822113][ T7443] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.822640][ T3574] Bluetooth: hci4: command tx timeout
[  282.839734][ T7443] device bridge_slave_1 entered promiscuous mode
[  282.901461][   T57] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  282.918993][ T7491] loop1: detected capacity change from 0 to 2048
[  282.935620][ T7491] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  282.966768][ T7491] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a002e01c, mo2=0002]
[  282.994803][ T7491] System zones: 0-19
[  283.000033][ T7443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  283.014174][ T7491] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  283.043981][ T7443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  283.127974][   T57] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  283.425747][ T7217] EXT4-fs (loop1): unmounting filesystem.
[  284.019878][ T7443] team0: Port device team_slave_0 added
[  284.032421][ T7443] team0: Port device team_slave_1 added
[  284.069994][   T57] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.157166][ T7443] batman_adv: batadv0: Adding interface: batadv_slave_0
[  284.179804][ T7443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.262621][ T7443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  284.296161][ T7509] loop0: detected capacity change from 0 to 1024
[  284.300668][ T7443] batman_adv: batadv0: Adding interface: batadv_slave_1
[  284.320323][ T7443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.372495][ T7443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  284.400589][ T7509] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  284.424890][ T3574] Bluetooth: hci2: command tx timeout
[  284.478120][ T7503] loop4: detected capacity change from 0 to 32768
[  284.551757][ T7443] device hsr_slave_0 entered promiscuous mode
[  284.551824][ T7503] XFS (loop4): Mounting V5 Filesystem
[  284.567466][ T7369] EXT4-fs (loop0): unmounting filesystem.
[  284.575971][ T7443] device hsr_slave_1 entered promiscuous mode
[  284.745766][ T7503] XFS (loop4): Ending clean mount
[  284.786548][ T7503] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.4'.
[  284.863343][ T4248] XFS (loop4): Unmounting Filesystem
[  285.272557][   T57] device gretap0 left promiscuous mode
[  285.323276][   T41] usb 2-1: new low-speed USB device number 12 using dummy_hcd
[  285.479752][ T7545] loop0: detected capacity change from 0 to 64
[  285.644501][ T7443] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  285.665179][ T7443] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  285.703858][ T7443] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  285.737282][ T7443] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  285.752811][   T41] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  285.771338][   T41] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  285.801721][   T41] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  285.834198][   T41] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  285.901987][   T57] device hsr_slave_0 left promiscuous mode
[  285.908907][   T57] device hsr_slave_1 left promiscuous mode
[  285.923234][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  285.930657][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[  285.957504][   T57] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  285.971527][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[  285.981093][   T57] device bridge_slave_1 left promiscuous mode
[  285.988066][   T57] bridge0: port 2(bridge_slave_1) entered disabled state
[  285.996808][   T57] device bridge_slave_0 left promiscuous mode
[  286.003392][   T57] bridge0: port 1(bridge_slave_0) entered disabled state
[  286.016905][   T57] device veth1_macvtap left promiscuous mode
[  286.029878][   T57] device veth0_macvtap left promiscuous mode
[  286.044213][   T57] device veth1_vlan left promiscuous mode
[  286.055900][   T57] device veth0_vlan left promiscuous mode
[  286.312817][   T41] usb 2-1: string descriptor 0 read error: -22
[  286.344190][   T41] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  286.398415][   T41] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  286.464619][   T26] audit: type=1326 audit(1718630304.534:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7558 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x0
[  286.503342][ T3574] Bluetooth: hci2: command tx timeout
[  286.527012][   T41] usb 2-1: config 0 descriptor??
[  286.574223][ T7530] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  286.651641][   T41] hub 2-1:0.0: bad descriptor, ignoring hub
[  286.692297][   T41] hub: probe of 2-1:0.0 failed with error -5
[  286.786515][   T41] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input7
[  286.924379][   T41] usb 2-1: USB disconnect, device number 12
[  286.932638][    C1] usb_acecad 2-1:0.0: can't resubmit intr, dummy_hcd.1-1/input0, status -19
[  287.382202][   T57] team0 (unregistering): Port device team_slave_1 removed
[  287.412318][ T7585] loop0: detected capacity change from 0 to 256
[  287.419697][   T57] team0 (unregistering): Port device team_slave_0 removed
[  287.471408][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  287.511981][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  287.648140][   T57] team0 (unregistering): Port device bond0 removed
[  287.857966][   T57] bond0 (unregistering): Released all slaves
[  289.284583][ T3583] Bluetooth: hci2: command tx timeout
[  289.619861][   T26] audit: type=1326 audit(1718630307.594:425): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7593 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f0d7947cf29 code=0x0
[  290.218904][ T7614] loop4: detected capacity change from 0 to 256
[  290.224924][ T7443] 8021q: adding VLAN 0 to HW filter on device bond0
[  290.256430][ T7614] FAT-fs (loop4): Directory bread(block 64) failed
[  290.266296][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  290.270053][ T7616] loop0: detected capacity change from 0 to 512
[  290.274977][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  290.287761][ T7614] FAT-fs (loop4): Directory bread(block 65) failed
[  290.297850][ T7614] FAT-fs (loop4): Directory bread(block 66) failed
[  290.298272][ T7443] 8021q: adding VLAN 0 to HW filter on device team0
[  290.309341][ T7614] FAT-fs (loop4): Directory bread(block 67) failed
[  290.315941][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  290.332601][ T7614] FAT-fs (loop4): Directory bread(block 68) failed
[  290.339459][ T7614] FAT-fs (loop4): Directory bread(block 69) failed
[  290.346914][ T3655] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  290.360469][ T7614] FAT-fs (loop4): Directory bread(block 70) failed
[  290.367912][ T3655] bridge0: port 1(bridge_slave_0) entered blocking state
[  290.375052][ T3655] bridge0: port 1(bridge_slave_0) entered forwarding state
[  290.392982][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  290.394010][ T7614] FAT-fs (loop4): Directory bread(block 71) failed
[  290.400848][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  290.415643][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  290.417648][ T7616] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  290.424098][ T6120] bridge0: port 2(bridge_slave_1) entered blocking state
[  290.439627][ T6120] bridge0: port 2(bridge_slave_1) entered forwarding state
[  290.447828][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  290.470121][ T7616] ext4 filesystem being mounted at /root/syzkaller-testdir2331695526/syzkaller.DXac8w/18/bus supports timestamps until 2038 (0x7fffffff)
[  290.473329][ T6120] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  290.492293][ T7614] FAT-fs (loop4): Directory bread(block 72) failed
[  290.522713][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  290.551211][ T7614] FAT-fs (loop4): Directory bread(block 73) failed
[  290.558519][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  290.593407][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  290.602231][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  290.623726][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  290.645774][ T7614] syz-executor.4: attempt to access beyond end of device
[  290.645774][ T7614] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256
[  290.675568][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  290.695108][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  290.714684][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  290.724494][ T7627] syz-executor.4: attempt to access beyond end of device
[  290.724494][ T7627] loop4: rw=0, sector=1192, nr_sectors = 4 limit=256
[  290.726603][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  290.754310][ T7443] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  290.767409][ T7369] EXT4-fs (loop0): unmounting filesystem.
[  290.843837][ T3574] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  290.856554][ T3574] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  290.873397][ T3574] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  290.883586][ T3574] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  290.891264][ T3574] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  290.898659][ T3574] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  291.044815][ T7628] vcan0 speed is unknown, defaulting to 1000
[  292.842907][   T26] audit: type=1326 audit(1718630311.014:426): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7638 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fad8c07cf29 code=0x0
[  292.994051][ T3583] Bluetooth: hci3: command tx timeout
[  293.555308][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  293.579702][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  293.593568][ T7443] 8021q: adding VLAN 0 to HW filter on device batadv0
[  293.741326][ T7669] loop4: detected capacity change from 0 to 512
[  293.774120][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  293.793435][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  293.846983][ T7669] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  293.866408][ T7669] ext4 filesystem being mounted at /root/syzkaller-testdir3489809133/syzkaller.5Hs2tA/297/bus supports timestamps until 2038 (0x7fffffff)
[  293.911625][ T7443] device veth0_vlan entered promiscuous mode
[  293.929065][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  293.945940][ T6421] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  293.959262][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  293.967428][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  294.142639][ T6421] usb 2-1: new low-speed USB device number 13 using dummy_hcd
[  294.217605][ T4248] EXT4-fs (loop4): unmounting filesystem.
[  294.552826][ T6421] usb 2-1: config index 0 descriptor too short (expected 1307, got 27)
[  294.585010][ T7443] device veth1_vlan entered promiscuous mode
[  294.594416][ T6421] usb 2-1: config 0 has an invalid interface number: 0 but max is -1
[  294.709834][ T6421] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 0
[  294.801959][ T6421] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[  294.817563][ T7443] device veth0_macvtap entered promiscuous mode
[  294.835683][ T7443] device veth1_macvtap entered promiscuous mode
[  294.893294][ T3570] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  294.901928][ T3570] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  294.912278][ T3570] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  294.921652][ T3570] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  294.937946][ T3570] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  294.951692][ T7628] chnl_net:caif_netlink_parms(): no params data found
[  295.018833][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  295.048094][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  295.063354][ T3583] Bluetooth: hci3: command tx timeout
[  295.068498][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.081835][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  295.099552][ T6421] usb 2-1: string descriptor 0 read error: -22
[  295.105822][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.115887][ T6421] usb 2-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de
[  295.132400][ T6421] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  295.141754][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  295.163637][ T6421] usb 2-1: config 0 descriptor??
[  295.168753][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.185820][ T7671] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  295.200382][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  295.210995][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.229877][ T6421] hub 2-1:0.0: bad descriptor, ignoring hub
[  295.237915][ T6421] hub: probe of 2-1:0.0 failed with error -5
[  295.251746][ T7443] batman_adv: batadv0: Interface activated: batadv_slave_0
[  295.262415][ T6421] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input8
[  295.325350][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  295.359730][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.413150][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  295.423740][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.433602][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  295.444132][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.453962][ T7443] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  295.464806][ T7443] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  295.478851][ T6421] usb 2-1: USB disconnect, device number 13
[  295.480572][ T7443] batman_adv: batadv0: Interface activated: batadv_slave_1
[  295.493002][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  295.515130][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  295.543515][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  295.552079][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  295.664920][ T7443] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  295.723718][ T7443] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  295.732417][ T7443] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  295.751241][ T7443] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  295.809990][ T7628] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.842581][ T7628] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.850783][ T7628] device bridge_slave_0 entered promiscuous mode
[  295.886736][ T7702] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  295.902663][ T7628] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.909758][ T7628] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.962922][ T7628] device bridge_slave_1 entered promiscuous mode
[  296.077242][ T7628] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  296.098328][ T3647] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  296.119171][ T3647] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  296.135243][ T7628] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  296.167034][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  296.202401][ T3574] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  296.215510][ T3574] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  296.230318][ T3574] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  296.253913][ T3574] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  296.261455][ T3574] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  296.270250][ T3574] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  296.302785][ T7628] team0: Port device team_slave_0 added
[  296.309870][ T3811] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  296.333935][ T7628] team0: Port device team_slave_1 added
[  296.339443][ T3811] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  296.672119][ T3614] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  296.834647][ T7711] vcan0 speed is unknown, defaulting to 1000
[  297.152560][ T3583] Bluetooth: hci3: command tx timeout
[  297.217290][ T7628] batman_adv: batadv0: Adding interface: batadv_slave_0
[  297.269911][ T7628] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  297.304919][ T7628] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  297.348754][ T7628] batman_adv: batadv0: Adding interface: batadv_slave_1
[  297.364306][ T7628] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  297.390964][ T7628] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  297.891696][   T57] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.330660][   T57] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.343355][ T3574] Bluetooth: hci4: command tx timeout
[  298.354238][ T7737] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  298.377003][ T7628] device hsr_slave_0 entered promiscuous mode
[  298.384202][ T7628] device hsr_slave_1 entered promiscuous mode
[  298.390980][ T7628] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  298.496550][ T7628] Cannot create hsr debugfs directory
[  298.548989][   T57] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  298.726910][   T26] audit: type=1326 audit(1718630316.924:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7739 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ffa1c27cf29 code=0x0
[  299.306665][ T3583] Bluetooth: hci3: command tx timeout
[  299.573429][   T26] audit: type=1326 audit(1718630317.754:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7756 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x0
[  299.601955][   T57] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  299.625306][ T7711] chnl_net:caif_netlink_parms(): no params data found
[  300.423268][ T3583] Bluetooth: hci4: command tx timeout
[  300.442425][ T7628] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  300.532974][ T7711] bridge0: port 1(bridge_slave_0) entered blocking state
[  300.563562][ T7711] bridge0: port 1(bridge_slave_0) entered disabled state
[  300.596228][ T7711] device bridge_slave_0 entered promiscuous mode
[  300.626630][ T7711] bridge0: port 2(bridge_slave_1) entered blocking state
[  300.731443][ T7782] loop1: detected capacity change from 0 to 256
[  300.975584][ T7711] bridge0: port 2(bridge_slave_1) entered disabled state
[  301.197643][ T7711] device bridge_slave_1 entered promiscuous mode
[  301.372610][   T26] audit: type=1800 audit(1718630319.554:429): pid=7786 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file0" dev="sda1" ino=1944 res=0 errno=0
[  301.405869][ T7628] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.435138][ T7788] loop4: detected capacity change from 0 to 256
[  301.483587][ T7711] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  301.524079][ T7794] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.2'.
[  301.526576][ T7628] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.551093][ T7788] FAT-fs (loop4): Directory bread(block 64) failed
[  301.558033][ T7788] FAT-fs (loop4): Directory bread(block 65) failed
[  301.577438][ T7788] FAT-fs (loop4): Directory bread(block 66) failed
[  301.578764][ T7711] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  301.591001][ T7788] FAT-fs (loop4): Directory bread(block 67) failed
[  301.599821][ T7788] FAT-fs (loop4): Directory bread(block 68) failed
[  301.614538][ T7788] FAT-fs (loop4): Directory bread(block 69) failed
[  301.621159][ T7788] FAT-fs (loop4): Directory bread(block 70) failed
[  301.642599][ T7788] FAT-fs (loop4): Directory bread(block 71) failed
[  301.652124][ T7800] loop1: detected capacity change from 0 to 128
[  301.652690][ T7788] FAT-fs (loop4): Directory bread(block 72) failed
[  301.665844][ T7788] FAT-fs (loop4): Directory bread(block 73) failed
[  301.710486][ T7800] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  301.744641][ T7800] ext4 filesystem being mounted at /root/syzkaller-testdir787557555/syzkaller.VKfCGB/57/mnt supports timestamps until 2038 (0x7fffffff)
[  301.770718][ T7628] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.839610][ T7711] team0: Port device team_slave_0 added
[  301.841902][   T26] audit: type=1326 audit(1718630320.034:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7805 comm="syz-executor.4" exe="/root/syz-executor.4" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f18e067cf29 code=0x0
[  301.872374][ T7711] team0: Port device team_slave_1 added
[  301.950811][ T7217] EXT4-fs (loop1): unmounting filesystem.
[  301.982951][ T7711] batman_adv: batadv0: Adding interface: batadv_slave_0
[  301.990329][ T7711] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  302.061682][ T7711] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  302.077277][ T3583] ==================================================================
[  302.085354][ T3583] BUG: KASAN: use-after-free in __lock_acquire+0x77/0x1f80
[  302.092592][ T3583] Read of size 8 at addr ffff8880774620b0 by task kworker/u5:8/3583
[  302.100576][ T3583] 
[  302.102911][ T3583] CPU: 0 PID: 3583 Comm: kworker/u5:8 Not tainted 6.1.94-syzkaller #0
2024/06/17 13:18:40 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  302.111075][ T3583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  302.121144][ T3583] Workqueue: hci2 hci_rx_work
[  302.125837][ T3583] Call Trace:
[  302.129124][ T3583]  <TASK>
[  302.132110][ T3583]  dump_stack_lvl+0x1e3/0x2cb
[  302.136813][ T3583]  ? nf_tcp_handle_invalid+0x642/0x642
[  302.142292][ T3583]  ? panic+0x764/0x764
[  302.146370][ T3583]  ? _printk+0xd1/0x111
[  302.150526][ T3583]  ? __virt_addr_valid+0x17f/0x520
[  302.155652][ T3583]  ? __virt_addr_valid+0x17f/0x520
[  302.160777][ T3583]  print_report+0x15f/0x4f0
[  302.165287][ T3583]  ? __virt_addr_valid+0x17f/0x520
[  302.170414][ T3583]  ? __virt_addr_valid+0x17f/0x520
[  302.175541][ T3583]  ? __virt_addr_valid+0x44a/0x520
[  302.180661][ T3583]  ? __phys_addr+0xb6/0x170
[  302.185170][ T3583]  ? __lock_acquire+0x77/0x1f80
[  302.190032][ T3583]  kasan_report+0x136/0x160
[  302.194545][ T3583]  ? __lock_acquire+0x77/0x1f80
[  302.199411][ T3583]  __lock_acquire+0x77/0x1f80
[  302.204112][ T3583]  ? __lock_acquire+0x125b/0x1f80
[  302.209131][ T3583]  lock_acquire+0x1f8/0x5a0
[  302.213621][ T3583]  ? lock_sock_nested+0x66/0x100
[  302.218550][ T3583]  ? lockdep_softirqs_on+0x590/0x590
[  302.223826][ T3583]  ? read_lock_is_recursive+0x10/0x10
[  302.229194][ T3583]  ? __local_bh_disable_ip+0x183/0x210
[  302.234652][ T3583]  ? __might_sleep+0xb0/0xb0
[  302.239228][ T3583]  ? lock_sock_nested+0x66/0x100
[  302.244160][ T3583]  ? __bpf_trace_softirq+0x10/0x10
[  302.249262][ T3583]  ? do_raw_read_unlock+0x38/0x70
[  302.254274][ T3583]  ? _raw_read_unlock+0x24/0x40
[  302.259113][ T3583]  ? l2cap_global_chan_by_psm+0x459/0x4c0
[  302.264826][ T3583]  ? lock_sock_nested+0x66/0x100
[  302.269754][ T3583]  _raw_spin_lock_bh+0x31/0x40
[  302.274506][ T3583]  ? lock_sock_nested+0x66/0x100
[  302.279431][ T3583]  lock_sock_nested+0x66/0x100
[  302.284187][ T3583]  l2cap_sock_recv_cb+0x51/0x4e0
[  302.289117][ T3583]  ? l2cap_recv_frame+0x1242/0x8bd0
[  302.294313][ T3583]  l2cap_recv_frame+0x12ba/0x8bd0
[  302.299339][ T3583]  ? l2cap_conn_unreliable+0x1a0/0x1a0
[  302.304786][ T3583]  ? __mutex_unlock_slowpath+0x218/0x750
[  302.310404][ T3583]  ? __lock_acquire+0x1f80/0x1f80
[  302.315424][ T3583]  ? mutex_unlock+0x10/0x10
[  302.319913][ T3583]  ? hci_conn_enter_active_mode+0x25c/0x360
[  302.325801][ T3583]  ? l2cap_recv_acldata+0x2ed/0x1570
[  302.331078][ T3583]  ? hci_conn_hash_lookup_handle+0x226/0x240
[  302.337048][ T3583]  hci_rx_work+0x363/0xce0
[  302.341455][ T3583]  ? process_one_work+0x7a9/0x11d0
[  302.346558][ T3583]  process_one_work+0x8a9/0x11d0
[  302.351492][ T3583]  ? worker_detach_from_pool+0x260/0x260
[  302.357115][ T3583]  ? _raw_spin_lock_irqsave+0x120/0x120
[  302.362660][ T3583]  ? kthread_data+0x4e/0xc0
[  302.367161][ T3583]  ? wq_worker_running+0x97/0x190
[  302.372180][ T3583]  worker_thread+0xa47/0x1200
[  302.376857][ T3583]  ? _raw_spin_unlock+0x40/0x40
[  302.381705][ T3583]  ? __sched_text_start+0x8/0x8
[  302.386550][ T3583]  ? _raw_spin_unlock+0x40/0x40
[  302.391406][ T3583]  kthread+0x28d/0x320
[  302.395466][ T3583]  ? worker_clr_flags+0x190/0x190
[  302.400491][ T3583]  ? kthread_blkcg+0xd0/0xd0
[  302.405075][ T3583]  ret_from_fork+0x1f/0x30
[  302.409491][ T3583]  </TASK>
[  302.412495][ T3583] 
[  302.414812][ T3583] Allocated by task 7813:
[  302.419121][ T3583]  kasan_set_track+0x4b/0x70
[  302.423707][ T3583]  __kasan_kmalloc+0x97/0xb0
[  302.428282][ T3583]  __kmalloc+0xb2/0x230
[  302.432424][ T3583]  sk_prot_alloc+0xe0/0x200
[  302.436924][ T3583]  sk_alloc+0x36/0x350
[  302.440984][ T3583]  bt_sock_alloc+0x37/0x130
[  302.445490][ T3583]  l2cap_sock_create+0x11e/0x2b0
[  302.450427][ T3583]  bt_sock_create+0x159/0x220
[  302.455097][ T3583]  __sock_create+0x488/0x910
[  302.459692][ T3583]  __sys_socket+0x136/0x3a0
[  302.464193][ T3583]  __x64_sys_socket+0x76/0x80
[  302.468863][ T3583]  do_syscall_64+0x3b/0xb0
[  302.473360][ T3583]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  302.479245][ T3583] 
[  302.481553][ T3583] Freed by task 7811:
[  302.485512][ T3583]  kasan_set_track+0x4b/0x70
[  302.490097][ T3583]  kasan_save_free_info+0x27/0x40
[  302.495110][ T3583]  ____kasan_slab_free+0xd6/0x120
[  302.500129][ T3583]  __kmem_cache_free+0x25c/0x3c0
[  302.505055][ T3583]  __sk_destruct+0x473/0x5f0
[  302.509634][ T3583]  l2cap_sock_release+0x157/0x1d0
[  302.514651][ T3583]  sock_close+0xcd/0x230
[  302.518879][ T3583]  __fput+0x3b7/0x890
[  302.522851][ T3583]  task_work_run+0x246/0x300
[  302.527430][ T3583]  exit_to_user_mode_loop+0xde/0x100
[  302.532699][ T3583]  exit_to_user_mode_prepare+0xb1/0x140
[  302.538230][ T3583]  syscall_exit_to_user_mode+0x60/0x270
[  302.543770][ T3583]  do_syscall_64+0x47/0xb0
[  302.548182][ T3583]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  302.554068][ T3583] 
[  302.556376][ T3583] The buggy address belongs to the object at ffff888077462000
[  302.556376][ T3583]  which belongs to the cache kmalloc-2k of size 2048
[  302.570410][ T3583] The buggy address is located 176 bytes inside of
[  302.570410][ T3583]  2048-byte region [ffff888077462000, ffff888077462800)
[  302.583755][ T3583] 
[  302.586063][ T3583] The buggy address belongs to the physical page:
[  302.592495][ T3583] page:ffffea0001dd1800 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x77460
[  302.602636][ T3583] head:ffffea0001dd1800 order:3 compound_mapcount:0 compound_pincount:0
[  302.610944][ T3583] flags: 0xfff00000010200(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  302.618929][ T3583] raw: 00fff00000010200 dead000000000100 dead000000000122 ffff888012442000
[  302.627503][ T3583] raw: 0000000000000000 0000000080080008 00000001ffffffff 0000000000000000
[  302.636069][ T3583] page dumped because: kasan: bad access detected
[  302.642475][ T3583] page_owner tracks the page as allocated
[  302.648173][ T3583] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd2a20(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 3565, tgid 3565 (syz-executor.4), ts 55693750662, free_ts 55626644150
[  302.669095][ T3583]  post_alloc_hook+0x18d/0x1b0
[  302.673852][ T3583]  get_page_from_freelist+0x31a1/0x3320
[  302.679387][ T3583]  __alloc_pages+0x28d/0x770
[  302.683963][ T3583]  alloc_slab_page+0x6a/0x150
[  302.688636][ T3583]  new_slab+0x84/0x2d0
[  302.692696][ T3583]  ___slab_alloc+0xc20/0x1270
[  302.697377][ T3583]  __kmem_cache_alloc_node+0x19f/0x260
[  302.702823][ T3583]  __kmalloc_node_track_caller+0xa0/0x220
[  302.708545][ T3583]  pskb_expand_head+0x18c/0x10e0
[  302.713468][ T3583]  netlink_trim+0x183/0x220
[  302.717964][ T3583]  netlink_broadcast+0x5b/0x10b0
[  302.722917][ T3583]  nlmsg_notify+0xfb/0x1c0
[  302.727327][ T3583]  __dev_notify_flags+0xdd/0x610
[  302.732255][ T3583]  rtnl_newlink+0x1946/0x2050
[  302.736934][ T3583]  rtnetlink_rcv_msg+0x818/0xff0
[  302.741857][ T3583]  netlink_rcv_skb+0x1cd/0x410
[  302.746611][ T3583] page last free stack trace:
[  302.751264][ T3583]  free_unref_page_prepare+0xf63/0x1120
[  302.756810][ T3583]  free_unref_page+0x33/0x3e0
[  302.761481][ T3583]  qlist_free_all+0x76/0xe0
[  302.765985][ T3583]  kasan_quarantine_reduce+0x156/0x170
[  302.771441][ T3583]  __kasan_slab_alloc+0x1f/0x70
[  302.776280][ T3583]  slab_post_alloc_hook+0x52/0x3a0
[  302.781383][ T3583]  __kmem_cache_alloc_node+0x137/0x260
[  302.786829][ T3583]  kmalloc_trace+0x26/0xe0
[  302.791232][ T3583]  netdevice_event+0x3eb/0xa00
[  302.795980][ T3583]  raw_notifier_call_chain+0xd0/0x170
[  302.801343][ T3583]  __netdev_upper_dev_link+0x579/0x750
[  302.806795][ T3583]  netdev_master_upper_dev_link+0xad/0xf0
[  302.812504][ T3583]  br_add_if+0x478/0xed0
[  302.816739][ T3583]  do_setlink+0xe99/0x3de0
[  302.821140][ T3583]  rtnl_newlink+0x172c/0x2050
[  302.825807][ T3583]  rtnetlink_rcv_msg+0x818/0xff0
[  302.830731][ T3583] 
[  302.833039][ T3583] Memory state around the buggy address:
[  302.838655][ T3583]  ffff888077461f80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  302.846705][ T3583]  ffff888077462000: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  302.854749][ T3583] >ffff888077462080: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  302.862790][ T3583]                                      ^
[  302.868402][ T3583]  ffff888077462100: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  302.876443][ T3583]  ffff888077462180: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[  302.884485][ T3583] ==================================================================
[  302.892526][ T3583] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  302.899697][ T3583] CPU: 0 PID: 3583 Comm: kworker/u5:8 Not tainted 6.1.94-syzkaller #0
[  302.907830][ T3583] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  302.917892][ T3583] Workqueue: hci2 hci_rx_work
[  302.922560][ T3583] Call Trace:
[  302.925821][ T3583]  <TASK>
[  302.928742][ T3583]  dump_stack_lvl+0x1e3/0x2cb
[  302.933415][ T3583]  ? nf_tcp_handle_invalid+0x642/0x642
[  302.938874][ T3583]  ? panic+0x764/0x764
[  302.942926][ T3583]  ? lock_release+0xd6/0xa20
[  302.947508][ T3583]  ? vscnprintf+0x59/0x80
[  302.951835][ T3583]  panic+0x318/0x764
[  302.955720][ T3583]  ? check_panic_on_warn+0x1d/0xa0
[  302.960819][ T3583]  ? memcpy_page_flushcache+0xfc/0xfc
[  302.966185][ T3583]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  302.972068][ T3583]  ? _raw_spin_unlock+0x40/0x40
[  302.976915][ T3583]  ? print_report+0x4a3/0x4f0
[  302.981579][ T3583]  check_panic_on_warn+0x7e/0xa0
[  302.986503][ T3583]  ? __lock_acquire+0x77/0x1f80
[  302.991346][ T3583]  end_report+0x66/0x110
[  302.995572][ T3583]  kasan_report+0x143/0x160
[  303.000060][ T3583]  ? __lock_acquire+0x77/0x1f80
[  303.004907][ T3583]  __lock_acquire+0x77/0x1f80
[  303.009580][ T3583]  ? __lock_acquire+0x125b/0x1f80
[  303.014601][ T3583]  lock_acquire+0x1f8/0x5a0
[  303.019095][ T3583]  ? lock_sock_nested+0x66/0x100
[  303.024028][ T3583]  ? lockdep_softirqs_on+0x590/0x590
[  303.029314][ T3583]  ? read_lock_is_recursive+0x10/0x10
[  303.034677][ T3583]  ? __local_bh_disable_ip+0x183/0x210
[  303.040129][ T3583]  ? __might_sleep+0xb0/0xb0
[  303.044701][ T3583]  ? lock_sock_nested+0x66/0x100
[  303.049628][ T3583]  ? __bpf_trace_softirq+0x10/0x10
[  303.054731][ T3583]  ? do_raw_read_unlock+0x38/0x70
[  303.059739][ T3583]  ? _raw_read_unlock+0x24/0x40
[  303.064587][ T3583]  ? l2cap_global_chan_by_psm+0x459/0x4c0
[  303.070301][ T3583]  ? lock_sock_nested+0x66/0x100
[  303.075230][ T3583]  _raw_spin_lock_bh+0x31/0x40
[  303.079981][ T3583]  ? lock_sock_nested+0x66/0x100
[  303.084911][ T3583]  lock_sock_nested+0x66/0x100
[  303.089668][ T3583]  l2cap_sock_recv_cb+0x51/0x4e0
[  303.094599][ T3583]  ? l2cap_recv_frame+0x1242/0x8bd0
[  303.099788][ T3583]  l2cap_recv_frame+0x12ba/0x8bd0
[  303.104806][ T3583]  ? l2cap_conn_unreliable+0x1a0/0x1a0
[  303.110252][ T3583]  ? __mutex_unlock_slowpath+0x218/0x750
[  303.115876][ T3583]  ? __lock_acquire+0x1f80/0x1f80
[  303.120894][ T3583]  ? mutex_unlock+0x10/0x10
[  303.125378][ T3583]  ? hci_conn_enter_active_mode+0x25c/0x360
[  303.131261][ T3583]  ? l2cap_recv_acldata+0x2ed/0x1570
[  303.136538][ T3583]  ? hci_conn_hash_lookup_handle+0x226/0x240
[  303.142680][ T3583]  hci_rx_work+0x363/0xce0
[  303.147082][ T3583]  ? process_one_work+0x7a9/0x11d0
[  303.152180][ T3583]  process_one_work+0x8a9/0x11d0
[  303.157108][ T3583]  ? worker_detach_from_pool+0x260/0x260
[  303.162728][ T3583]  ? _raw_spin_lock_irqsave+0x120/0x120
[  303.168263][ T3583]  ? kthread_data+0x4e/0xc0
[  303.172760][ T3583]  ? wq_worker_running+0x97/0x190
[  303.177778][ T3583]  worker_thread+0xa47/0x1200
[  303.182445][ T3583]  ? _raw_spin_unlock+0x40/0x40
[  303.187286][ T3583]  ? __sched_text_start+0x8/0x8
[  303.192128][ T3583]  ? _raw_spin_unlock+0x40/0x40
[  303.196971][ T3583]  kthread+0x28d/0x320
[  303.201026][ T3583]  ? worker_clr_flags+0x190/0x190
[  303.206036][ T3583]  ? kthread_blkcg+0xd0/0xd0
[  303.210609][ T3583]  ret_from_fork+0x1f/0x30
[  303.215025][ T3583]  </TASK>
[  303.218246][ T3583] Kernel Offset: disabled
[  303.222554][ T3583] Rebooting in 86400 seconds..