last executing test programs:

6.03115243s ago: executing program 0 (id=27406):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r0, @ANYRES64], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r0, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r1, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(0xffffffffffffffff, 0x0, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000005f00)={'wlan1\x00', <r4=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r2, &(0x7f0000006000)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01002dbd0600ffdbdb252100000008000300", @ANYRES32=r4], 0x44}}, 0x28000)

5.92987415s ago: executing program 2 (id=27407):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
mount$tmpfs(0x0, 0x0, 0x0, 0x400, 0x0)

5.786748304s ago: executing program 2 (id=27409):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x0, 0x0)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r5 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r5}, &(0x7f0000bbdffc))

5.648087858s ago: executing program 2 (id=27412):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
sendmmsg$inet6(r3, &(0x7f0000003c00), 0x0, 0x4)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x3, 0x20000000ec071, 0xffffffffffffffff, 0x0)

5.387078964s ago: executing program 2 (id=27415):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = fsopen(&(0x7f0000000040)='devpts\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r3, 0x1, &(0x7f0000000200)='gid', &(0x7f0000000580)='0\x00#\x00\xd0\x00 \x00\x00qS\x00\x00\x00\x00\x00\x00\x00\x00$\xf6_\xbdI\x1c\xf2\xa9]\xcc\xe0*\xef\x01\x8d\x15\xd2h\x93\xc9\xb57\xc3\xeaEb\xf8\xe6,\xdf\xd4\xfae\x84\xcc\xd5\"d\xf0D-\x98\x9f\x81{\xfc$\xc4\xbcF\xf8\xc8\x8d\xcb\xb8\xf2\x1e\xe4\'U\xb3\xb8\xd3\xe6\xd7\x80Y\xc2\xeb\n\xb8_\xe8\x96YY\xe3\xc7\xe6\xf28\x19\xa6\xa7\xfa\xdb\x1ce\xc1\x03\x86J\xb2fh\x19\xee#\xcc\x0f\xed\xfea\xdc\x88\xcb%bW\xd35\xda=\xac\x1d\xae\x93\xfd\'T6\x94\n\xa4\x9cU\xc4\fA~[\xbf\x8b\x90\xfe\x04\xe7U\xf3h\x81\x14l7u\x95\x96t\\\x0f\xef;\x03\xa4C\xbc(Vc!a\xc1\xe39\xc6b\x905\xf8\xc9@h\x01\xf5\xcb\x88\xdf9\xaf5\xc8a:z\xe4\xcbag&67\x814\xf6}\xe10v6l\xd6,\x1e\xa0\xcc\xbf\xfdkm\b?\x839\x85N\x1c\xc1\xcb\xfc\x85\xd2\n\x02\"\xf2\x81g\x90\x01n%\x7f_\xe1.f>>\xa5\xfb\"\xab\xdb\x06\x12e\x14\x11~\x9a\bR-\x85\xc3\xa9\xe6\xf6R\x11\"\xc3\xc9\xfc\x14s X\xec\xdd\xc2qB\x85\xf0\xd7\x04\xdd<\x9a\x84\'\xa3\xf1\xd9<\xb9k\x00', 0x0)

5.216496411s ago: executing program 2 (id=27418):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, 0x0)
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
pipe(&(0x7f0000000140)={<r3=>0xffffffffffffffff})
ioctl$RTC_PIE_OFF(r3, 0x7006)

2.797565742s ago: executing program 3 (id=27448):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r3}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r4 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000400), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r4, 0xaf01, 0x0)
ioctl$VHOST_SET_FEATURES(r4, 0x4008af00, &(0x7f0000000140)=0x200000000)
ioctl$VHOST_SET_MEM_TABLE(r4, 0x4008af03, &(0x7f0000000900))
read(r4, &(0x7f00000002c0)=""/237, 0xed)
ioctl$VHOST_VSOCK_SET_RUNNING(r4, 0x4004af61, &(0x7f00000000c0)=0x1)

2.741715957s ago: executing program 0 (id=27449):
openat(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x80, 0x29)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = dup(r0)
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), r1)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2}, 0xc, &(0x7f00000001c0)={&(0x7f0000000100)={0x54, r3, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x30}}}}, [@NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x54}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0xb}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x26}], @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x10000)
socket$inet_tcp(0x2, 0x1, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x6, 0xc, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bc82000000000000a6020000f8ffffffb703000008000000b703000000000000850000003300000095"], &(0x7f0000000780)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'syz_tun\x00'})
syz_emit_ethernet(0x36, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x3, 0x28, 0xfffc, 0x0, 0x9, 0x6, 0x0, @remote, @local}, {{0x4e23, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x6, 0x5, 0x2, 0x8002, 0x0, 0xfffc}}}}}}, 0x0)

2.578905843s ago: executing program 3 (id=27450):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000200), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r6, 0x8933, &(0x7f0000000480)={'wlan0\x00', <r7=>0x0})
sendmsg$NL80211_CMD_CANCEL_REMAIN_ON_CHANNEL(r4, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000500)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r5, @ANYBLOB, @ANYRES32=r7], 0x34}, 0x1, 0x0, 0x0, 0x4040}, 0x0)

2.387194522s ago: executing program 3 (id=27452):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, 0x0, 0x0)
r3 = accept$alg(r2, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r2, 0x117, 0x1, 0x0, 0x0)
sendmmsg$alg(r3, 0x0, 0x0, 0x24041091)
recvmsg(r3, 0x0, 0x3886d42165142a48)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
splice(r2, 0x0, r2, 0x0, 0x4, 0x17)
sendto$inet(r4, 0x0, 0x0, 0x805, 0x0, 0x0)
sendto$inet(r4, 0x0, 0x0, 0x80, 0x0, 0x0)
capset(&(0x7f0000000040)={0x20080522, 0xffffffffffffffff}, 0x0)

2.217843599s ago: executing program 3 (id=27453):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, 0x0, 0x0, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
syz_clone3(&(0x7f0000000540)={0x40600, 0x0, 0x0, 0x0, {0x35}, 0x0, 0x0, 0x0, 0x0, 0x0, {r1}}, 0x58)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)

2.063669795s ago: executing program 3 (id=27455):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
syz_emit_vhci(0x0, 0x9)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
r4 = syz_usb_connect(0x4, 0x24, &(0x7f0000000840)=ANY=[@ANYRESDEC=r3, @ANYBLOB="742865a85e096d0aa145a134615d4834802e52ad44a327004f9dedb3d253188150a0048c66262ddbe041f6679c70e1c931857cead723ba41fe169445c8c97d7d052bcf86482f1d36efd25774a06f64c141cdb38521a210edda8485b0e8174ce00facf62e5586e1f5c1ca8c17d43cf444c6fbbf6bd7594964a66eb1f0aa8fca21f9e11fb63c718419378de8ddc33d0ec3ea813e80f0cf96208d333370db6165730628cf7e2b2fa593d67a7cd7b00d"], 0x0)
ioctl$TCSETSW2(0xffffffffffffffff, 0x402c542c, 0x0)
syz_usb_control_io(0xffffffffffffffff, 0x0, &(0x7f0000000780)={0x84, &(0x7f0000000000)=ANY=[@ANYBLOB="00000100000022"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r4, 0x0, &(0x7f0000000140)={0x44, &(0x7f0000000000)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_mount_image$erofs(&(0x7f0000000180), &(0x7f0000000140)='./file1\x00', 0x2008804, &(0x7f0000000400)=ANY=[@ANYRES16, @ANYBLOB="df49d1112b7a1ca49a237c23a033cd4e6f154fabc057758c63637899d925c8918735a4676ac9cee2695a717522df2f01cff0a827888ec3296907e91b119f3f8b8f82606cb26a61599c88aa04902c25d44d4a8d240a4848b9aaa38c2e39f3e4d1da5ff4597d6a99e9d72eae51829b3975abf026ed5ea84d2f67c26e70d0a336f6d1e9260e10f13e096911391e0f101e82cd2829db67b3946dce202edb2ee76442b9ab62b056899ad94e0c14a9050fa74455a954ec584e84d45902bb65aeb7061e86187970e0b6718ae3e485aea2e867310b0c5725ffb9144a", @ANYBLOB="0649cca2e9f44c6756eeca09b5b038108a8672b7", @ANYRESDEC], 0x2, 0x1f0, &(0x7f00000001c0)="$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")
syz_usb_control_io(r4, 0x0, &(0x7f0000000700)={0x84, &(0x7f0000000080)=ANY=[@ANYBLOB="201104"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r5 = open(0x0, 0x20000, 0x1)
getdents64(r5, 0x0, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
r6 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r6, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r7=>0x0})
r8 = socket$igmp(0x2, 0x3, 0x2)
syz_clone3(&(0x7f00000005c0)={0xc2140000, 0x0, 0x0, 0x0, {0xa}, 0x0, 0x0, 0x0, 0x0}, 0x58)
setsockopt$SO_BINDTODEVICE(r8, 0x1, 0x19, &(0x7f0000000000)='bridge0\x00', 0x10)
sendto$inet(r8, &(0x7f0000000040), 0x0, 0x804, &(0x7f0000000080)={0x2, 0x4e22, @multicast1=0xe000000d}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKINFO_SET(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r10, @ANYBLOB="010000000000000000001e0000000c00018008000100", @ANYRES32=r7, @ANYBLOB="c11e2c8946bfe4456a83855006331c522c226f3330cd010e1822272a63a7f17d3500756e5fd21911d90a7087d2f90f07b6b98793fd1afdc6222c27317fee31a53a6835a40ca7d09fadedbb522c0d491c21"], 0x20}}, 0x0)

1.924688148s ago: executing program 2 (id=27457):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
fsmount(0xffffffffffffffff, 0x0, 0x0)

1.91176903s ago: executing program 4 (id=27458):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
socket$inet6_udp(0xa, 0x2, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000400)={0x1fe, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r5, &(0x7f000014f000/0x18000)=nil, &(0x7f0000005700)=[@text16={0x10, 0x0}], 0x1, 0x14, 0x0, 0x0)
ioctl$KVM_RUN(r5, 0xae80, 0x0)

1.795393522s ago: executing program 1 (id=27459):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r5 = socket(0x10, 0x803, 0x0)
sendto(r5, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r5, &(0x7f0000009800)=[{{0x0, 0x0, 0x0}, 0x9}, {{0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000dc0)=""/4096, 0x1000}, {&(0x7f0000000080)=""/93, 0x5d}, {&(0x7f0000000a80)=""/200, 0xc8}, {&(0x7f0000000340)=""/158, 0x9e}], 0x4}, 0x81}], 0x2, 0x2142, 0x0)

1.630849578s ago: executing program 4 (id=27460):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
write(r0, 0x0, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nl80211(&(0x7f0000005ec0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r3, 0x8933, &(0x7f0000005f00)={'wlan1\x00', <r5=>0x0})
sendmsg$NL80211_CMD_TRIGGER_SCAN(r3, &(0x7f0000006000)={0x0, 0x0, &(0x7f0000005fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r4, @ANYBLOB="01002dbd0600ffdbdb252100000008000300", @ANYRES32=r5], 0x44}}, 0x28000)

1.629800988s ago: executing program 1 (id=27461):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
flock(0xffffffffffffffff, 0x2)
r2 = open(&(0x7f0000000300)='.\x00', 0x102000, 0x0)
flock(r2, 0x1)
r3 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r3, 0x2)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

1.501899001s ago: executing program 0 (id=27462):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
openat2(0xffffffffffffffff, &(0x7f00000000c0)='./cgroup\x00', &(0x7f0000000080)={0x80042, 0x0, 0x11}, 0x18)

667.607084ms ago: executing program 1 (id=27463):
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./bus\x00', 0x0)
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r4, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f00000003c0), 0x0, &(0x7f00000004c0)={[{@upperdir={'upperdir', 0x3d, './file1'}}]})

638.148026ms ago: executing program 4 (id=27464):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
timer_create(0x0, 0x0, &(0x7f0000000300))
timer_settime(0x0, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

604.43282ms ago: executing program 0 (id=27465):
rt_sigaction(0xd, &(0x7f0000000080)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0xb74]}}, 0x0, 0x8, &(0x7f00000000c0))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket$packet(0x11, 0x3, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
socket$packet(0x11, 0x2, 0x300)
socket$nl_generic(0x10, 0x3, 0x10)
socket$inet6_tcp(0xa, 0x1, 0x0)
socket(0x10, 0x3, 0x0)
socket$inet6(0xa, 0x802, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x50)

510.873199ms ago: executing program 1 (id=27466):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r3, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket(0x10, 0x3, 0x0)
sendmsg$IPCTNL_MSG_EXP_GET(r4, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={0x0, 0x44}, 0x1, 0x0, 0x0, 0x20000014}, 0x4000840)
sendmsg$nl_generic(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000540)=ANY=[@ANYBLOB="640000001900010000000000fbdbdf251d"], 0x64}, 0x1, 0x0, 0x0, 0x5}, 0x0)

466.418263ms ago: executing program 4 (id=27467):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0xdc000006, 0x0, {[0x1]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cpuacct.usage_percpu\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r0, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFQNL_MSG_CONFIG(r2, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000040)={0x1c, 0x2, 0x3, 0x3, 0x0, 0x0, {}, [@NFQA_CFG_CMD={0x8, 0x1, {0x1}}]}, 0x1c}, 0x1, 0x0, 0x0, 0x20008000}, 0x0)
sendmsg$NFQNL_MSG_VERDICT_BATCH(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000400)={0x14, 0x3, 0x3, 0x201, 0x0, 0x0, {0x5}}, 0x14}, 0x1, 0x0, 0x0, 0xc010}, 0x4000)

465.525934ms ago: executing program 0 (id=27468):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
ioctl$KVM_X86_SETUP_MCE(r1, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f25, 0x4})
sendmmsg$inet6(r0, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r2 = dup(r0)
sendmsg$NL80211_CMD_TDLS_CHANNEL_SWITCH(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)={0x5c, 0x0, 0x400, 0x70bd26, 0x25dfdbff, {{}, {@void, @val={0xc, 0x99, {0x0, 0x30}}}}, [@NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0x2}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8, 0x26, @random=0x15cc}, @NL80211_ATTR_WIPHY_FREQ_OFFSET={0x8, 0x122, 0x54}], @NL80211_ATTR_OPER_CLASS={0x5, 0xd6, 0xb}, @chandef_params=[@NL80211_ATTR_WIPHY_EDMG_BW_CONFIG={0x5, 0x119, 0x9}, @NL80211_ATTR_WIPHY_EDMG_CHANNELS={0x5, 0x118, 0x26}], @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}]}, 0x5c}, 0x1, 0x0, 0x0, 0x4004}, 0x10000)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000100)='./file0\x00', 0x400e, &(0x7f0000000640), 0x1, 0x451, &(0x7f00000001c0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000300)='./file1\x00', 0xc4042, 0x1ff)

317.329619ms ago: executing program 4 (id=27469):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00')
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r4, 0x0, 0x0, 0x4)
r5 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$netlink(r5, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000600)=ANY=[@ANYBLOB="380000001000010000000000fedbdf25070000001300000062000000"], 0x38}], 0x1}, 0x0)

295.75031ms ago: executing program 1 (id=27470):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f27, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
write$UHID_CREATE2(r1, &(0x7f00000006c0)={0xb, {'syz0\x00', 'syz1\x00', 'syz1\x00', 0x0, 0x4, 0x6, 0x2, 0x0, 0x80000000}}, 0x118)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r3, &(0x7f0000000500)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendmmsg$inet6(r4, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
r5 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r5, &(0x7f0000000000)={0x1f, 0xffff, 0x2}, 0x6)
recvmmsg(r5, &(0x7f0000000580)=[{{&(0x7f0000000080)=@nl=@unspec, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000100)=""/230, 0xe6}, {&(0x7f0000000240)=""/200, 0xc8}, {&(0x7f0000000340)=""/175, 0xaf}, {&(0x7f0000000440)=""/119, 0x77}], 0x4, &(0x7f0000000540)=""/55, 0x37}}], 0x1, 0x0, 0x0)

256.151295ms ago: executing program 4 (id=27471):
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, &(0x7f0000000000)={0x1c, 0x526d630517582f26, 0x4})
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0)
r3 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
ioctl$MON_IOCX_GET(r3, 0x40189206, &(0x7f0000000340)={0x0, 0x0})

126.904647ms ago: executing program 0 (id=27472):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
r2 = open(&(0x7f0000000300)='.\x00', 0x102000, 0x0)
flock(r2, 0x1)
r3 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r3, 0x2)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

93.562291ms ago: executing program 3 (id=27473):
ioctl$KVM_SET_USER_MEMORY_REGION(0xffffffffffffffff, 0x4020ae46, &(0x7f0000000400)={0x10002, 0x4, 0x2000, 0x2000, &(0x7f0000012000/0x2000)=nil})
rt_sigaction(0xd, &(0x7f0000000180)={&(0x7f0000000000)="ca00d1c441ef196ec866400fe2de0fae4e0afaf2466ff00fc01ec422e10399c5c1202063df", 0x44000004, 0x0, {[0x2]}}, 0x0, 0x8, &(0x7f0000000300))
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.bfq.group_wait_time\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000340)=ANY=[@ANYRES32, @ANYRES8, @ANYRES8=r1, @ANYRES64=r0], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x88fd537e5c114b6e, 0x11, r1, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$KVM_X86_SETUP_MCE(0xffffffffffffffff, 0x4008ae9c, 0x0)
sendmmsg$inet6(r2, &(0x7f0000003c00)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
r3 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x28100, 0x0)
setsockopt$inet_mreqn(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000000000)={@multicast1, @local}, 0xc)
r4 = ioctl$KVM_CREATE_VM(r3, 0xae01, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000040)={0x0, 0x3c}}, 0x0)
r5 = ioctl$KVM_CREATE_VCPU(r4, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r4, 0x4020ae46, &(0x7f0000000180)={0x0, 0x0, 0x0, 0x2000, &(0x7f0000000000/0x2000)=nil})
ioctl$KVM_NMI(r5, 0xae9a)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f0000000440)={[0x0, 0x100000000, 0x0, 0x81, 0x100000, 0x0, 0x2004c8, 0x8000000, 0x0, 0x0, 0x7, 0x0, 0x5, 0x0, 0x2, 0xffffffffffffffff], 0x0, 0x200})
ioctl$KVM_RUN(r5, 0xae80, 0x0)
ioctl$KVM_SET_REGS(r5, 0x4090ae82, &(0x7f00000002c0)={[0x4, 0x5, 0x6, 0x4004, 0x2, 0x4, 0xefffffffffffffff, 0x0, 0x0, 0x2000000, 0x0, 0x1c, 0x0, 0xffffffffffffffff, 0x6], 0x0, 0x41901})
ioctl$KVM_RUN(r5, 0xae80, 0x0)

0s ago: executing program 1 (id=27474):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x21, 0x2, @thr={0x0, 0x0}}, &(0x7f0000000300)=<r1=>0x0)
flock(0xffffffffffffffff, 0x2)
r2 = open(&(0x7f0000000300)='.\x00', 0x102000, 0x0)
flock(r2, 0x1)
r3 = open(&(0x7f0000000180)='.\x00', 0x0, 0x0)
flock(r3, 0x2)
fcntl$lock(0xffffffffffffffff, 0x6, &(0x7f0000000040)={0x0, 0x0, 0x60d3, 0x5})
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
timer_settime(r1, 0x1, &(0x7f0000000040)={{}, {0x0, 0x989680}}, 0x0)

kernel console output (not intermixed with test programs):

418) failed
[ 2883.319454][T31367] FAT-fs (loop3): Directory bread(block 419) failed
[ 2883.349842][T31367] FAT-fs (loop3): Directory bread(block 420) failed
[ 2883.383242][T31372] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2883.385182][T31367] FAT-fs (loop3): Directory bread(block 421) failed
[ 2883.516367][T31372] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2883.586605][T31372] ext4 filesystem being mounted at /206/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2883.657264][T31372] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25580: corrupted inode contents
[ 2883.741212][T21254] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 2883.754265][T31372] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.25580: mark_inode_dirty error
[ 2883.766468][T21254] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 2883.787932][T31372] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25580: corrupted inode contents
[ 2883.808144][T31173] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 2883.907337][T31372] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.25580: mark_inode_dirty error
[ 2883.930826][T26416] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 2883.978254][T26416] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 2883.987136][T27368] Bluetooth: hci3: command 0x0419 tx timeout
[ 2884.136920][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 2884.179080][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 2884.240650][T31173] device veth0_vlan entered promiscuous mode
[ 2884.258711][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 2884.305334][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 2884.341767][T31173] device veth1_vlan entered promiscuous mode
[ 2884.470759][T31403] loop4: detected capacity change from 0 to 128
[ 2884.474210][T31173] device veth0_macvtap entered promiscuous mode
[ 2884.513064][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 2884.529512][T31405] loop3: detected capacity change from 0 to 512
[ 2884.534925][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 2884.552110][T31403] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 2884.595540][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 2884.609189][T31403] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2884.647180][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 2884.659992][T31405] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2884.692394][T31403] ext4 filesystem being mounted at /208/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2884.695245][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 2884.808754][T31173] device veth1_macvtap entered promiscuous mode
[ 2884.834092][T31405] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2884.858469][T31405] ext4 filesystem being mounted at /145/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2884.966300][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2884.998939][T31405] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25587: corrupted inode contents
[ 2885.024590][T31405] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.25587: mark_inode_dirty error
[ 2885.043983][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.069278][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2885.080807][T31405] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25587: corrupted inode contents
[ 2885.114061][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.134277][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2885.145311][T31405] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.25587: mark_inode_dirty error
[ 2885.184072][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.215431][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 2885.258010][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.300414][T31173] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 2885.338001][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 2885.356692][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 2885.382531][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2885.448170][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.478396][T31424] loop1: detected capacity change from 0 to 128
[ 2885.496648][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2885.513546][T31423] loop4: detected capacity change from 0 to 512
[ 2885.541483][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.579070][T31423] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2885.614289][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2885.648866][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.684647][T31173] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 2885.697115][T31423] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2885.726380][T31173] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 2885.738767][T31423] ext4 filesystem being mounted at /209/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2885.759047][T31173] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 2885.770860][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 2885.788141][T31423] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25589: corrupted inode contents
[ 2885.792920][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 2885.873022][T31423] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.25589: mark_inode_dirty error
[ 2885.895329][T31423] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25589: corrupted inode contents
[ 2885.928492][T31173] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 2885.942147][T31423] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.25589: mark_inode_dirty error
[ 2885.958043][T31173] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 2886.006141][T31173] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 2886.045582][T31173] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 2886.240097][T31447] loop0: detected capacity change from 0 to 16
[ 2886.364980][T31447] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2886.386047][ T4292] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2886.439756][ T4292] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2886.482482][T31452] loop4: detected capacity change from 0 to 128
[ 2886.505003][ T4246] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 2886.538700][ T4246] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 2886.619774][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 2886.639805][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 2887.006516][T31467] loop2: detected capacity change from 0 to 512
[ 2887.079930][T31467] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2887.136878][T31476] netlink: 4 bytes leftover after parsing attributes in process `syz.4.25603'.
[ 2887.224135][T31467] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2887.306300][T31467] ext4 filesystem being mounted at /0/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2887.320795][T31467] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25526: corrupted inode contents
[ 2887.321348][T31481] loop1: detected capacity change from 0 to 128
[ 2887.354078][T31467] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.25526: mark_inode_dirty error
[ 2887.380032][T31467] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25526: corrupted inode contents
[ 2887.451178][T31487] loop4: detected capacity change from 0 to 512
[ 2887.463695][T31481] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 2887.485375][T31467] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.25526: mark_inode_dirty error
[ 2887.565999][T31487] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 2887.610430][T31481] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2887.663639][T31487] EXT4-fs (loop4): 1 truncate cleaned up
[ 2887.744257][T31487] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2887.849718][T21254] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2887.860797][   T26] audit: type=1800 audit(1763179873.149:368): pid=31487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.25605" name="file1" dev="loop4" ino=15 res=0 errno=0
[ 2888.136128][T31501] loop1: detected capacity change from 0 to 128
[ 2888.219179][T31501] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 2888.267443][T31501] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2888.336183][T31501] ext4 filesystem being mounted at /195/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2888.541930][   T26] audit: type=1326 audit(1763179873.819:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31513 comm="syz.2.25615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0cda076c9 code=0x7ffc0000
[ 2888.657266][   T26] audit: type=1326 audit(1763179873.819:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31513 comm="syz.2.25615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd0cda076c9 code=0x7ffc0000
[ 2888.723528][T31523] loop1: detected capacity change from 0 to 128
[ 2888.730056][T31524] netlink: 48 bytes leftover after parsing attributes in process `syz.2.25619'.
[ 2888.772198][T31524] netlink: 48 bytes leftover after parsing attributes in process `syz.2.25619'.
[ 2888.784085][   T26] audit: type=1326 audit(1763179873.819:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31513 comm="syz.2.25615" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd0cda076c9 code=0x7ffc0000
[ 2888.828376][T31527] loop4: detected capacity change from 0 to 128
[ 2888.873376][T31523] FAT-fs (loop1): Directory bread(block 414) failed
[ 2888.884361][T31527] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 2888.902639][T31523] FAT-fs (loop1): Directory bread(block 415) failed
[ 2888.918970][T31527] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2888.922942][T31523] FAT-fs (loop1): Directory bread(block 416) failed
[ 2888.949980][T31523] FAT-fs (loop1): Directory bread(block 417) failed
[ 2888.964234][T31523] FAT-fs (loop1): Directory bread(block 418) failed
[ 2888.979953][T31523] FAT-fs (loop1): Directory bread(block 419) failed
[ 2888.989668][T31527] ext4 filesystem being mounted at /217/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2889.049840][T31523] FAT-fs (loop1): Directory bread(block 420) failed
[ 2889.120946][T31523] FAT-fs (loop1): Directory bread(block 421) failed
[ 2889.722288][T31552] IPv6: addrconf: prefix option has invalid lifetime
[ 2890.746919][T31563] loop3: detected capacity change from 0 to 512
[ 2890.816632][T31563] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2890.922775][T31563] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2891.004179][T31563] ext4 filesystem being mounted at /151/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2891.111817][T31563] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25637: corrupted inode contents
[ 2891.180291][T31563] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.25637: mark_inode_dirty error
[ 2891.235719][T31563] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25637: corrupted inode contents
[ 2891.299279][T31563] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.25637: mark_inode_dirty error
[ 2892.341327][T31577] loop3: detected capacity change from 0 to 128
[ 2892.489566][T31577] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 2892.525537][T31577] EXT4-fs (loop3): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2892.554144][T31577] ext4 filesystem being mounted at /156/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2892.977921][T31583] IPv6: addrconf: prefix option has invalid lifetime
[ 2893.813489][T31603] loop2: detected capacity change from 0 to 128
[ 2894.033655][T31609] IPv6: addrconf: prefix option has invalid lifetime
[ 2894.167700][T31613] loop4: detected capacity change from 0 to 128
[ 2894.274873][T31618] loop1: detected capacity change from 0 to 512
[ 2894.295320][T31620] loop2: detected capacity change from 0 to 128
[ 2894.305256][T31613] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 2894.330792][T31613] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2894.360224][T31618] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2894.366495][T31613] ext4 filesystem being mounted at /222/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2894.393150][T31620] FAT-fs (loop2): Directory bread(block 414) failed
[ 2894.423237][T31620] FAT-fs (loop2): Directory bread(block 415) failed
[ 2894.430692][T31620] FAT-fs (loop2): Directory bread(block 416) failed
[ 2894.443486][T31620] FAT-fs (loop2): Directory bread(block 417) failed
[ 2894.507146][T31618] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2894.594024][T31620] FAT-fs (loop2): Directory bread(block 418) failed
[ 2894.600860][T31620] FAT-fs (loop2): Directory bread(block 419) failed
[ 2894.618945][T31618] ext4 filesystem being mounted at /201/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2894.680886][T31618] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25651: corrupted inode contents
[ 2894.713643][T31620] FAT-fs (loop2): Directory bread(block 420) failed
[ 2894.764149][T31620] FAT-fs (loop2): Directory bread(block 421) failed
[ 2894.781419][T31618] EXT4-fs error (device loop1): ext4_dirty_inode:6054: inode #2: comm syz.1.25651: mark_inode_dirty error
[ 2894.814224][T31618] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25651: corrupted inode contents
[ 2894.889252][T31618] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.25651: mark_inode_dirty error
[ 2895.139524][T31637] loop2: detected capacity change from 0 to 512
[ 2895.280450][T31637] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2895.363085][T31637] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2895.387962][T31637] ext4 filesystem being mounted at /13/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2895.424899][T31637] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25669: corrupted inode contents
[ 2895.525903][T31637] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.25669: mark_inode_dirty error
[ 2895.575099][T31637] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25669: corrupted inode contents
[ 2895.637442][T31637] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.25669: mark_inode_dirty error
[ 2895.649814][T31651] IPv6: addrconf: prefix option has invalid lifetime
[ 2896.079320][T31658] loop2: detected capacity change from 0 to 128
[ 2896.133115][T31658] FAT-fs (loop2): Directory bread(block 414) failed
[ 2896.143347][T31658] FAT-fs (loop2): Directory bread(block 415) failed
[ 2896.155731][T31658] FAT-fs (loop2): Directory bread(block 416) failed
[ 2896.162573][T31658] FAT-fs (loop2): Directory bread(block 417) failed
[ 2896.173780][T31658] FAT-fs (loop2): Directory bread(block 418) failed
[ 2896.187034][T31658] FAT-fs (loop2): Directory bread(block 419) failed
[ 2896.199121][T31658] FAT-fs (loop2): Directory bread(block 420) failed
[ 2896.207682][T31658] FAT-fs (loop2): Directory bread(block 421) failed
[ 2896.686972][T31672] netlink: 4 bytes leftover after parsing attributes in process `syz.3.25682'.
[ 2896.958810][T31677] loop3: detected capacity change from 0 to 512
[ 2897.103319][T31677] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2897.217920][T31677] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2897.264112][T31677] ext4 filesystem being mounted at /178/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2897.301107][T31681] loop0: detected capacity change from 0 to 512
[ 2897.314985][T31681] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2897.374968][T31677] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25685: corrupted inode contents
[ 2897.431497][T31677] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.25685: mark_inode_dirty error
[ 2897.450693][T31681] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2897.512359][T31681] ext4 filesystem being mounted at /350/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2897.544674][T31677] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25685: corrupted inode contents
[ 2897.595457][T31681] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.25679: corrupted inode contents
[ 2897.624606][T31677] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.25685: mark_inode_dirty error
[ 2897.658910][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[ 2897.665356][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[ 2897.685839][T31681] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.25679: mark_inode_dirty error
[ 2897.742707][T31681] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.25679: corrupted inode contents
[ 2897.793271][T31681] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.25679: mark_inode_dirty error
[ 2898.498653][   T26] audit: type=1326 audit(1763179883.769:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31697 comm="syz.3.25691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb497fa6c9 code=0x7ffc0000
[ 2898.567761][   T26] audit: type=1326 audit(1763179883.809:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31697 comm="syz.3.25691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7ffb497fa6c9 code=0x7ffc0000
[ 2898.624780][T31702] loop4: detected capacity change from 0 to 128
[ 2898.654250][   T26] audit: type=1326 audit(1763179883.809:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31697 comm="syz.3.25691" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffb497fa6c9 code=0x7ffc0000
[ 2898.705029][T31702] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 2898.740861][T31702] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2898.883706][ T4292] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2899.033417][T31708] loop4: detected capacity change from 0 to 512
[ 2899.083218][T31710] loop3: detected capacity change from 0 to 512
[ 2899.137077][T31708] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[ 2899.154726][T31710] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2899.234635][T31708] EXT4-fs (loop4): 1 truncate cleaned up
[ 2899.283983][T31708] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2899.311250][T31710] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2899.331185][T31710] ext4 filesystem being mounted at /185/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2899.351845][   T26] audit: type=1800 audit(1763179884.629:375): pid=31708 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.25697" name="file1" dev="loop4" ino=15 res=0 errno=0
[ 2899.354866][T31710] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25698: corrupted inode contents
[ 2899.515669][T31710] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.25698: mark_inode_dirty error
[ 2899.585587][T31710] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25698: corrupted inode contents
[ 2899.634795][T31710] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.25698: mark_inode_dirty error
[ 2899.647727][T31717] loop4: detected capacity change from 0 to 16
[ 2899.732764][T31717] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2900.200193][T31726] loop3: detected capacity change from 0 to 128
[ 2901.055216][T31743] netlink: 16 bytes leftover after parsing attributes in process `syz.2.25701'.
[ 2901.213275][T31751] loop2: detected capacity change from 0 to 128
[ 2901.493626][T31759] loop4: detected capacity change from 0 to 512
[ 2901.503999][T31757] IPv6: addrconf: prefix option has invalid lifetime
[ 2901.572958][T31759] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2901.711785][T31759] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2901.817666][T31759] ext4 filesystem being mounted at /231/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2901.836109][T31768] loop3: detected capacity change from 0 to 16
[ 2901.886420][T31768] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2901.923694][T31759] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25717: corrupted inode contents
[ 2901.961629][T31759] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.25717: mark_inode_dirty error
[ 2902.028257][T31759] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25717: corrupted inode contents
[ 2902.103800][T31759] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.25717: mark_inode_dirty error
[ 2903.539718][T31803] loop4: detected capacity change from 0 to 512
[ 2903.718050][T31803] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2903.842521][T31803] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2903.985011][T31803] ext4 filesystem being mounted at /237/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2904.087410][T31803] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25733: corrupted inode contents
[ 2904.152116][T31803] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.25733: mark_inode_dirty error
[ 2904.185044][T31803] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25733: corrupted inode contents
[ 2904.215674][T31814] loop3: detected capacity change from 0 to 16
[ 2904.266422][T31814] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2904.269075][T31803] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.25733: mark_inode_dirty error
[ 2904.352313][T31817] netlink: 20 bytes leftover after parsing attributes in process `syz.1.25735'.
[ 2905.857969][T31832] loop3: detected capacity change from 0 to 128
[ 2905.932154][T31832] FAT-fs (loop3): Directory bread(block 414) failed
[ 2905.971773][T31832] FAT-fs (loop3): Directory bread(block 415) failed
[ 2905.981905][T31832] FAT-fs (loop3): Directory bread(block 416) failed
[ 2906.014092][T31832] FAT-fs (loop3): Directory bread(block 417) failed
[ 2906.021054][T31832] FAT-fs (loop3): Directory bread(block 418) failed
[ 2906.054247][T31832] FAT-fs (loop3): Directory bread(block 419) failed
[ 2906.091994][T31832] FAT-fs (loop3): Directory bread(block 420) failed
[ 2906.112291][T31832] FAT-fs (loop3): Directory bread(block 421) failed
[ 2906.322123][T31834] loop2: detected capacity change from 0 to 128
[ 2906.401061][T31836] loop3: detected capacity change from 0 to 128
[ 2907.352782][T31856] loop5: detected capacity change from 0 to 7
[ 2907.412470][T31856] Dev loop5: unable to read RDB block 7
[ 2907.418477][T31856]  loop5: unable to read partition table
[ 2907.444812][T31856] loop5: partition table beyond EOD, truncated
[ 2907.483739][T31856] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5)
[ 2907.520900][ T3559] Dev loop5: unable to read RDB block 7
[ 2907.527200][ T3559]  loop5: unable to read partition table
[ 2907.539993][ T3559] loop5: partition table beyond EOD, truncated
[ 2910.797572][T31891] loop3: detected capacity change from 0 to 512
[ 2910.851781][T31891] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2910.961882][T31891] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2911.074215][T31891] ext4 filesystem being mounted at /224/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2911.168014][T31891] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25771: corrupted inode contents
[ 2911.218491][T31891] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.25771: mark_inode_dirty error
[ 2911.341719][T31891] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25771: corrupted inode contents
[ 2911.400333][T31891] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.25771: mark_inode_dirty error
[ 2912.031922][T31908] netlink: 32 bytes leftover after parsing attributes in process `syz.3.25777'.
[ 2912.912357][T31927] syz.1.25782 uses obsolete (PF_INET,SOCK_PACKET)
[ 2913.692400][T31943] loop4: detected capacity change from 0 to 128
[ 2916.347486][T31959] IPv6: addrconf: prefix option has invalid lifetime
[ 2916.513862][T31963] netlink: 20 bytes leftover after parsing attributes in process `syz.2.25806'.
[ 2917.177870][T31986] loop1: detected capacity change from 0 to 512
[ 2917.239263][T31986] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2917.322991][T31986] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2917.349485][T31986] ext4 filesystem being mounted at /215/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2917.410723][T31986] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25814: corrupted inode contents
[ 2917.430543][T31986] EXT4-fs error (device loop1): ext4_dirty_inode:6054: inode #2: comm syz.1.25814: mark_inode_dirty error
[ 2917.450783][T31986] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25814: corrupted inode contents
[ 2917.487227][T31986] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.25814: mark_inode_dirty error
[ 2917.710038][T32004] IPv6: addrconf: prefix option has invalid lifetime
[ 2918.348962][T32028] loop2: detected capacity change from 0 to 512
[ 2918.444074][T32028] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2918.598134][T32028] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2918.648088][T32028] ext4 filesystem being mounted at /47/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2918.765858][T32028] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25829: corrupted inode contents
[ 2918.844497][T32028] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.25829: mark_inode_dirty error
[ 2918.894632][T32028] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25829: corrupted inode contents
[ 2918.930877][T32028] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.25829: mark_inode_dirty error
[ 2919.265471][T32056] loop1: detected capacity change from 0 to 128
[ 2919.352158][T32056] EXT4-fs (loop1): Test dummy encryption mode enabled
[ 2919.396687][T32056] EXT4-fs (loop1): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2919.452131][T32061] netlink: 4 bytes leftover after parsing attributes in process `syz.3.25843'.
[ 2919.502306][T32056] ext4 filesystem being mounted at /224/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2919.530860][T32064] netlink: 4 bytes leftover after parsing attributes in process `syz.2.25844'.
[ 2919.582027][T32064] device veth0_macvtap left promiscuous mode
[ 2919.871049][T32073] netlink: 48 bytes leftover after parsing attributes in process `syz.2.25848'.
[ 2919.914314][T32073] netlink: 48 bytes leftover after parsing attributes in process `syz.2.25848'.
[ 2920.100550][T32078] loop2: detected capacity change from 0 to 512
[ 2920.264034][T32078] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2920.330230][T32078] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2920.361917][T32078] ext4 filesystem being mounted at /51/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2920.468187][T32078] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25851: corrupted inode contents
[ 2920.524566][T32078] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.25851: mark_inode_dirty error
[ 2920.568612][T32078] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25851: corrupted inode contents
[ 2920.621627][T32078] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.25851: mark_inode_dirty error
[ 2921.736716][T32095] loop0: detected capacity change from 0 to 128
[ 2921.814560][T32095] EXT4-fs (loop0): Test dummy encryption mode enabled
[ 2921.847776][T32095] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2921.936198][T32095] ext4 filesystem being mounted at /366/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2922.339250][T32106] netlink: 24 bytes leftover after parsing attributes in process `syz.4.25855'.
[ 2923.382409][T32119] loop0: detected capacity change from 0 to 16
[ 2923.405971][T32121] netlink: 4 bytes leftover after parsing attributes in process `syz.2.25864'.
[ 2923.457118][T32119] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2925.966015][T32149] binder: 32148:32149 ioctl c0306201 0 returned -14
[ 2925.987062][T32151] loop0: detected capacity change from 0 to 128
[ 2926.089946][T32151] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 2926.120078][T32153] loop3: detected capacity change from 0 to 512
[ 2926.167650][T32151] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2926.304195][T10615] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2926.334109][T32153] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2926.488871][T32153] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2926.507921][T32153] ext4 filesystem being mounted at /257/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2926.525020][T32153] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25877: corrupted inode contents
[ 2926.594551][T32153] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.25877: mark_inode_dirty error
[ 2926.616859][T32160] netlink: 48 bytes leftover after parsing attributes in process `syz.0.25879'.
[ 2926.628228][T32153] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25877: corrupted inode contents
[ 2926.654346][T32153] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.25877: mark_inode_dirty error
[ 2926.677406][T32164] IPv6: addrconf: prefix option has invalid lifetime
[ 2926.713458][T32160] netlink: 48 bytes leftover after parsing attributes in process `syz.0.25879'.
[ 2926.878079][T32168] loop4: detected capacity change from 0 to 512
[ 2927.014803][T32168] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2927.100877][T32175] netlink: 24 bytes leftover after parsing attributes in process `syz.0.25886'.
[ 2927.146506][T32168] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2927.198364][T32168] ext4 filesystem being mounted at /251/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2927.251695][T32182] netlink: 48 bytes leftover after parsing attributes in process `syz.1.25887'.
[ 2927.261886][T32182] netlink: 48 bytes leftover after parsing attributes in process `syz.1.25887'.
[ 2927.314784][T32168] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25882: corrupted inode contents
[ 2927.320323][T32185] binder: 32184:32185 ioctl c0306201 0 returned -14
[ 2927.400079][T32168] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.25882: mark_inode_dirty error
[ 2927.474611][T32168] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25882: corrupted inode contents
[ 2927.516299][T32190] netlink: 40 bytes leftover after parsing attributes in process `syz.1.25891'.
[ 2927.537168][T32192] loop3: detected capacity change from 0 to 512
[ 2927.562122][T32168] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.25882: mark_inode_dirty error
[ 2927.640657][T32192] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2927.735303][T32192] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2927.754391][T32192] ext4 filesystem being mounted at /260/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2927.755707][T32195] loop1: detected capacity change from 0 to 512
[ 2927.826734][T32195] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2927.926919][T32192] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25892: corrupted inode contents
[ 2927.951091][T32195] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2928.039628][T32195] ext4 filesystem being mounted at /232/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2928.137039][T32192] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.25892: mark_inode_dirty error
[ 2928.161633][T32195] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25893: corrupted inode contents
[ 2928.174586][T32192] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.25892: corrupted inode contents
[ 2928.250114][T32192] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.25892: mark_inode_dirty error
[ 2928.264270][T32195] EXT4-fs error (device loop1): ext4_dirty_inode:6054: inode #2: comm syz.1.25893: mark_inode_dirty error
[ 2928.307296][T32212] loop4: detected capacity change from 0 to 128
[ 2928.330375][T32195] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25893: corrupted inode contents
[ 2928.374694][T32212] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 2928.407516][T32195] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.25893: mark_inode_dirty error
[ 2928.444465][T32212] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2928.550710][T32212] ext4 filesystem being mounted at /254/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2928.971327][T32225] loop1: detected capacity change from 0 to 512
[ 2929.070594][T32225] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2929.168781][T32225] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2929.187883][T32225] ext4 filesystem being mounted at /234/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2929.253173][T32225] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25902: corrupted inode contents
[ 2929.345369][T32225] EXT4-fs error (device loop1): ext4_dirty_inode:6054: inode #2: comm syz.1.25902: mark_inode_dirty error
[ 2929.371081][T32225] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.25902: corrupted inode contents
[ 2929.441415][T32225] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.25902: mark_inode_dirty error
[ 2929.896018][T32245] loop1: detected capacity change from 0 to 16
[ 2929.929592][T32245] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2930.978452][T32265] netlink: 24 bytes leftover after parsing attributes in process `syz.4.25917'.
[ 2931.009366][T32267] netlink: 4 bytes leftover after parsing attributes in process `syz.1.25918'.
[ 2931.040380][T32267] device veth0_macvtap left promiscuous mode
[ 2932.149613][T32298] loop4: detected capacity change from 0 to 128
[ 2932.185935][T32298] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 2932.219598][T32300] loop2: detected capacity change from 0 to 512
[ 2932.264201][T32298] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2932.345798][T32300] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 2932.411440][T32300] EXT4-fs (loop2): 1 truncate cleaned up
[ 2932.419552][T32300] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2932.454548][   T26] audit: type=1800 audit(1763179917.739:376): pid=32300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.25919" name="file1" dev="loop2" ino=15 res=0 errno=0
[ 2932.544437][T26416] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 2932.956176][T32313] loop2: detected capacity change from 0 to 128
[ 2933.031910][T32315] loop4: detected capacity change from 0 to 512
[ 2933.064367][T32313] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 2933.094345][T32313] EXT4-fs (loop2): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2933.166289][T32315] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2933.246408][T32313] ext4 filesystem being mounted at /64/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2933.329083][T32315] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2933.477004][T32315] ext4 filesystem being mounted at /270/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2933.568294][T32315] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25940: corrupted inode contents
[ 2933.626756][T32315] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.25940: mark_inode_dirty error
[ 2933.665019][T32315] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.25940: corrupted inode contents
[ 2933.726928][T32315] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.25940: mark_inode_dirty error
[ 2933.864411][T32331] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 2934.092323][T32335] netlink: 20 bytes leftover after parsing attributes in process `syz.2.25949'.
[ 2934.143658][T32335] netlink: 20 bytes leftover after parsing attributes in process `syz.2.25949'.
[ 2934.947700][T32356] IPv6: addrconf: prefix option has invalid lifetime
[ 2935.346170][T32360] IPv6: addrconf: prefix option has invalid lifetime
[ 2935.796353][T32368] binder: 32367:32368 ioctl c0306201 0 returned -14
[ 2936.967108][T32385] netlink: 20 bytes leftover after parsing attributes in process `syz.2.25970'.
[ 2936.985332][T32385] netlink: 20 bytes leftover after parsing attributes in process `syz.2.25970'.
[ 2937.425961][T32391] netlink: 24 bytes leftover after parsing attributes in process `syz.2.25974'.
[ 2937.638209][T32397] loop0: detected capacity change from 0 to 512
[ 2937.746706][T32397] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2937.878693][T32397] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2937.929770][T32397] ext4 filesystem being mounted at /391/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2938.030319][T32397] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.25978: corrupted inode contents
[ 2938.125633][T32397] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.25978: mark_inode_dirty error
[ 2938.174413][T32397] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.25978: corrupted inode contents
[ 2938.224262][T32397] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.25978: mark_inode_dirty error
[ 2938.310699][T32412] loop2: detected capacity change from 0 to 512
[ 2938.434240][T32412] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2938.545434][T32412] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2938.604155][T32412] ext4 filesystem being mounted at /87/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2938.641878][T32423] netlink: 32 bytes leftover after parsing attributes in process `syz.0.25987'.
[ 2938.696396][T32427] loop0: detected capacity change from 0 to 512
[ 2938.708388][T32412] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25982: corrupted inode contents
[ 2938.730787][T32412] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.25982: mark_inode_dirty error
[ 2938.747514][T32412] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.25982: corrupted inode contents
[ 2938.774531][T32427] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2938.815344][T32412] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.25982: mark_inode_dirty error
[ 2938.897564][T32427] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2939.012468][T32427] ext4 filesystem being mounted at /394/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2939.108203][T32427] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.25988: corrupted inode contents
[ 2939.149953][T32427] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.25988: mark_inode_dirty error
[ 2939.248592][T32427] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.25988: corrupted inode contents
[ 2939.314327][T32427] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.25988: mark_inode_dirty error
[ 2939.397519][T32447] netlink: 20 bytes leftover after parsing attributes in process `syz.3.25993'.
[ 2939.742657][T32461] netlink: 24 bytes leftover after parsing attributes in process `syz.3.25998'.
[ 2939.888767][T32465] loop3: detected capacity change from 0 to 512
[ 2939.968069][T32465] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2940.062039][T32465] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2940.140779][T32465] ext4 filesystem being mounted at /286/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2940.237205][T32465] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26000: corrupted inode contents
[ 2940.303204][T32465] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26000: mark_inode_dirty error
[ 2940.350525][T32465] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26000: corrupted inode contents
[ 2940.407085][T32465] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26000: mark_inode_dirty error
[ 2941.022871][T32483] loop3: detected capacity change from 0 to 512
[ 2941.112833][T32483] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2941.212936][T32483] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2941.305958][T32483] ext4 filesystem being mounted at /289/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2941.318276][T32489] binder: 32487:32489 ioctl c0306201 0 returned -14
[ 2941.382238][T32483] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26007: corrupted inode contents
[ 2941.425352][T32483] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26007: mark_inode_dirty error
[ 2941.490305][T32483] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26007: corrupted inode contents
[ 2941.544439][T32483] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26007: mark_inode_dirty error
[ 2941.851273][T32495] loop3: detected capacity change from 0 to 512
[ 2941.919604][T32495] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2942.027972][T32495] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2942.094887][T32495] ext4 filesystem being mounted at /290/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2942.144796][T32495] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26012: corrupted inode contents
[ 2942.172311][T32495] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26012: mark_inode_dirty error
[ 2942.210942][T32495] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26012: corrupted inode contents
[ 2942.252304][T32495] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26012: mark_inode_dirty error
[ 2942.843053][T32519] netlink: 24 bytes leftover after parsing attributes in process `syz.1.26022'.
[ 2942.933205][T32521] loop2: detected capacity change from 0 to 512
[ 2942.980262][T32521] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2943.113667][T32521] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2943.158442][T32521] ext4 filesystem being mounted at /90/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2943.186020][T32521] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26013: corrupted inode contents
[ 2943.272816][T32521] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.26013: mark_inode_dirty error
[ 2943.355492][T32521] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26013: corrupted inode contents
[ 2943.433119][T32521] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.26013: mark_inode_dirty error
[ 2944.264558][T32564] netlink: 16 bytes leftover after parsing attributes in process `syz.2.26040'.
[ 2947.661605][T32580] netlink: 24 bytes leftover after parsing attributes in process `syz.3.26051'.
[ 2948.487169][T32598] IPv6: addrconf: prefix option has invalid lifetime
[ 2949.189796][T32606] loop2: detected capacity change from 0 to 512
[ 2949.245673][T32606] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 2950.765300][T32624] loop2: detected capacity change from 0 to 512
[ 2950.863412][T32624] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 2950.987553][T32624] EXT4-fs (loop2): 1 truncate cleaned up
[ 2950.993275][T32624] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2951.022715][   T26] audit: type=1800 audit(1763179936.299:377): pid=32624 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.26072" name="file1" dev="loop2" ino=15 res=0 errno=0
[ 2951.882350][T32636] loop3: detected capacity change from 0 to 512
[ 2951.951310][T32636] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2952.028875][T32636] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2952.082788][T32636] ext4 filesystem being mounted at /301/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2952.130641][T32636] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26071: corrupted inode contents
[ 2952.200763][T32636] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26071: mark_inode_dirty error
[ 2952.271585][T32644] loop4: detected capacity change from 0 to 512
[ 2952.304645][T32636] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26071: corrupted inode contents
[ 2952.334710][T32636] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26071: mark_inode_dirty error
[ 2952.412284][T32644] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2952.490198][T32644] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2952.521646][T32644] ext4 filesystem being mounted at /285/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2952.542940][T32644] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26078: corrupted inode contents
[ 2952.653841][T32644] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.26078: mark_inode_dirty error
[ 2952.708562][T32644] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26078: corrupted inode contents
[ 2952.741553][T32644] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.26078: mark_inode_dirty error
[ 2953.465013][T32667] loop3: detected capacity change from 0 to 16
[ 2953.479220][T32667] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2957.225334][T32703] loop4: detected capacity change from 0 to 128
[ 2957.273085][T32703] EXT4-fs (loop4): Test dummy encryption mode enabled
[ 2957.332600][T32703] EXT4-fs (loop4): mounted filesystem without journal. Opts: test_dummy_encryption,usrjquota=,,errors=continue. Quota mode: none.
[ 2957.354440][T32703] ext4 filesystem being mounted at /289/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 2957.909505][T32711] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(8)
[ 2957.916763][T32711] vhci_hcd vhci_hcd.0: devid(0) speed(3) speed_str(high-speed)
[ 2957.998653][T32711] vhci_hcd vhci_hcd.0: Device attached
[ 2958.033203][T32712] vhci_hcd: connection closed
[ 2958.049829][T21254] vhci_hcd: stop threads
[ 2958.071827][T21254] vhci_hcd: release socket
[ 2958.095574][T21254] vhci_hcd: disconnect device
[ 2959.107045][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[ 2959.113519][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[ 2959.366165][T32726] netlink: 24 bytes leftover after parsing attributes in process `syz.1.26111'.
[ 2959.370041][T32725] loop3: detected capacity change from 0 to 512
[ 2959.471302][T32725] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2959.622642][T32725] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2959.679622][T32725] ext4 filesystem being mounted at /311/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2959.776006][T32725] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26105: corrupted inode contents
[ 2959.840213][T32725] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26105: mark_inode_dirty error
[ 2959.875760][T32725] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26105: corrupted inode contents
[ 2959.944053][T32725] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26105: mark_inode_dirty error
[ 2960.384730][T32749] IPv6: addrconf: prefix option has invalid lifetime
[ 2960.676258][T32761] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26125'.
[ 2960.697737][T32761] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26125'.
[ 2960.869416][  T302] netlink: 32 bytes leftover after parsing attributes in process `syz.0.26127'.
[ 2960.871189][  T301] loop2: detected capacity change from 0 to 512
[ 2960.980250][  T301] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2961.066884][  T301] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2961.091780][  T301] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2961.123184][  T301] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26128: corrupted inode contents
[ 2961.212909][  T301] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.26128: mark_inode_dirty error
[ 2961.242165][  T301] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26128: corrupted inode contents
[ 2961.290342][  T301] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.26128: mark_inode_dirty error
[ 2961.566648][  T317] loop0: detected capacity change from 0 to 512
[ 2961.620223][  T317] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2961.665399][  T321] netlink: 24 bytes leftover after parsing attributes in process `syz.2.26133'.
[ 2961.768949][  T317] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2961.844015][  T317] ext4 filesystem being mounted at /416/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2961.944488][  T317] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26134: corrupted inode contents
[ 2962.011464][  T317] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.26134: mark_inode_dirty error
[ 2962.062292][  T317] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26134: corrupted inode contents
[ 2962.140288][  T317] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.26134: mark_inode_dirty error
[ 2962.893861][  T376] loop1: detected capacity change from 0 to 512
[ 2962.902983][  T377] IPv6: addrconf: prefix option has invalid lifetime
[ 2962.932934][  T376] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2963.007943][  T376] EXT4-fs (loop1): 1 truncate cleaned up
[ 2963.013661][  T376] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2963.057272][   T26] audit: type=1800 audit(1763179948.339:378): pid=376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.26158" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 2963.839987][  T395] loop1: detected capacity change from 0 to 512
[ 2963.891211][  T395] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2963.991612][  T395] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2964.069024][  T395] ext4 filesystem being mounted at /294/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2964.175706][  T395] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.26168: corrupted inode contents
[ 2964.234643][  T395] EXT4-fs error (device loop1): ext4_dirty_inode:6054: inode #2: comm syz.1.26168: mark_inode_dirty error
[ 2964.280425][  T395] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.26168: corrupted inode contents
[ 2964.370850][  T395] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.26168: mark_inode_dirty error
[ 2964.873644][  T411] netlink: 4 bytes leftover after parsing attributes in process `syz.1.26171'.
[ 2965.740497][  T427] loop3: detected capacity change from 0 to 512
[ 2965.798132][  T427] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2965.897319][  T427] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2966.020745][  T427] ext4 filesystem being mounted at /317/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2966.078866][  T437] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26183'.
[ 2966.124817][  T437] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26183'.
[ 2966.131053][  T427] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26179: corrupted inode contents
[ 2966.254576][  T427] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26179: mark_inode_dirty error
[ 2966.290018][  T427] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26179: corrupted inode contents
[ 2966.318940][  T427] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26179: mark_inode_dirty error
[ 2967.471402][  T470] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26197'.
[ 2967.522724][  T470] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26197'.
[ 2967.784880][  T478] loop3: detected capacity change from 0 to 16
[ 2967.864693][  T478] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 2969.377965][  T502] netlink: 'syz.3.26211': attribute type 72 has an invalid length.
[ 2969.432980][  T502] netlink: 40 bytes leftover after parsing attributes in process `syz.3.26211'.
[ 2969.672217][  T507] netlink: 20 bytes leftover after parsing attributes in process `syz.3.26213'.
[ 2970.740223][  T528] loop2: detected capacity change from 0 to 512
[ 2970.806011][  T528] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2970.921134][  T528] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2971.041212][  T528] ext4 filesystem being mounted at /139/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2971.144434][  T528] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26223: corrupted inode contents
[ 2971.211345][  T528] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.26223: mark_inode_dirty error
[ 2971.295104][  T528] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26223: corrupted inode contents
[ 2971.379178][  T528] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.26223: mark_inode_dirty error
[ 2972.158487][  T555] netlink: 48 bytes leftover after parsing attributes in process `syz.1.26234'.
[ 2972.218562][  T555] netlink: 48 bytes leftover after parsing attributes in process `syz.1.26234'.
[ 2972.314113][  T559] netlink: 24 bytes leftover after parsing attributes in process `syz.0.26235'.
[ 2972.364931][  T561] netlink: 32 bytes leftover after parsing attributes in process `syz.4.26225'.
[ 2972.675742][  T573] loop1: detected capacity change from 0 to 512
[ 2972.758438][  T573] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2972.838799][  T573] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2972.865487][  T573] ext4 filesystem being mounted at /317/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2972.972780][  T573] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.26239: corrupted inode contents
[ 2973.091204][  T573] EXT4-fs error (device loop1): ext4_dirty_inode:6054: inode #2: comm syz.1.26239: mark_inode_dirty error
[ 2973.128485][  T573] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.26239: corrupted inode contents
[ 2973.205446][  T573] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.26239: mark_inode_dirty error
[ 2974.190846][  T615] netlink: 24 bytes leftover after parsing attributes in process `syz.3.26248'.
[ 2974.524305][  T623] netlink: 28 bytes leftover after parsing attributes in process `syz.0.26260'.
[ 2974.585182][  T623] netlink: 28 bytes leftover after parsing attributes in process `syz.0.26260'.
[ 2975.082954][  T640] netlink: 24 bytes leftover after parsing attributes in process `syz.0.26268'.
[ 2975.940067][  T656] netlink: 20 bytes leftover after parsing attributes in process `syz.2.26267'.
[ 2976.027545][  T658] binder: BINDER_SET_CONTEXT_MGR already set
[ 2976.034154][  T658] binder: 657:658 ioctl 4018620d 200000004a80 returned -16
[ 2976.455798][  T666] netlink: 4 bytes leftover after parsing attributes in process `syz.3.26280'.
[ 2977.427735][  T679] netlink: 20 bytes leftover after parsing attributes in process `syz.4.26279'.
[ 2977.580501][  T683] netlink: 24 bytes leftover after parsing attributes in process `syz.4.26287'.
[ 2977.617250][  T685] binder: BINDER_SET_CONTEXT_MGR already set
[ 2977.664255][  T685] binder: 684:685 ioctl 4018620d 200000004a80 returned -16
[ 2978.290099][  T695] loop4: detected capacity change from 0 to 512
[ 2978.418634][  T695] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2978.553742][  T695] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2978.579862][  T695] ext4 filesystem being mounted at /318/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2978.651063][  T695] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26295: corrupted inode contents
[ 2978.715612][  T695] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.26295: mark_inode_dirty error
[ 2978.758300][  T695] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26295: corrupted inode contents
[ 2978.811122][  T695] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.26295: mark_inode_dirty error
[ 2979.116787][  T703] netlink: 20 bytes leftover after parsing attributes in process `syz.1.26292'.
[ 2979.294704][  T711] binder: 710:711 ioctl c0306201 0 returned -14
[ 2979.331660][  T711] binder: 710:711 ioctl c0306201 0 returned -14
[ 2980.522245][  T735] netlink: 20 bytes leftover after parsing attributes in process `syz.1.26309'.
[ 2980.593399][  T737] binder: 736:737 ioctl c0306201 0 returned -14
[ 2980.665025][  T737] binder: 736:737 ioctl c0306201 0 returned -14
[ 2981.490041][  T762] binder: 761:762 ioctl c0306201 0 returned -14
[ 2981.518994][  T762] binder: 761:762 ioctl c0306201 0 returned -14
[ 2983.127231][  T803] binder: 801:803 ioctl c0306201 0 returned -14
[ 2983.323128][  T810] netlink: 4 bytes leftover after parsing attributes in process `syz.4.26342'.
[ 2984.160684][  T834] binder: 833:834 ioctl c0306201 0 returned -14
[ 2985.975994][  T866] netlink: 4 bytes leftover after parsing attributes in process `syz.2.26363'.
[ 2986.554244][  T873] loop2: detected capacity change from 0 to 512
[ 2986.603147][  T873] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 2986.721385][  T873] EXT4-fs (loop2): 1 truncate cleaned up
[ 2986.727474][  T873] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2986.806582][   T26] audit: type=1800 audit(1763179972.089:379): pid=873 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.26367" name="file1" dev="loop2" ino=15 res=0 errno=0
[ 2987.741640][  T893] loop3: detected capacity change from 0 to 512
[ 2987.820472][  T893] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2987.968272][  T893] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2987.999802][  T893] ext4 filesystem being mounted at /369/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2988.105181][  T893] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26375: corrupted inode contents
[ 2988.205368][  T893] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26375: mark_inode_dirty error
[ 2988.253779][  T893] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26375: corrupted inode contents
[ 2988.310491][  T893] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26375: mark_inode_dirty error
[ 2988.805068][  T921] netlink: 20 bytes leftover after parsing attributes in process `syz.3.26384'.
[ 2988.951301][  T926] loop3: detected capacity change from 0 to 512
[ 2989.045637][  T926] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 2989.097486][  T926] EXT4-fs (loop3): 1 truncate cleaned up
[ 2989.107221][  T926] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2989.136300][   T26] audit: type=1800 audit(1763179974.419:380): pid=926 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.26387" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 2990.237124][  T959] loop1: detected capacity change from 0 to 512
[ 2990.314226][  T959] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 2990.377352][  T959] EXT4-fs (loop1): 1 truncate cleaned up
[ 2990.383165][  T959] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 2990.397831][   T26] audit: type=1800 audit(1763179975.679:381): pid=959 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.26400" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 2990.983496][  T978] binder: 977:978 ioctl 4018620d 0 returned -22
[ 2991.003681][  T978] binder: 977:978 ioctl c0306201 0 returned -14
[ 2991.256575][  T986] netlink: 24 bytes leftover after parsing attributes in process `syz.1.26414'.
[ 2991.710103][  T994] loop3: detected capacity change from 0 to 512
[ 2991.809639][  T994] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2991.938049][  T994] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2991.992332][  T994] ext4 filesystem being mounted at /387/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2992.070687][  T994] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26419: corrupted inode contents
[ 2992.114488][  T994] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.26419: mark_inode_dirty error
[ 2992.134818][  T994] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.26419: corrupted inode contents
[ 2992.190154][  T994] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.26419: mark_inode_dirty error
[ 2992.348951][ T1007] netlink: 20 bytes leftover after parsing attributes in process `syz.4.26423'.
[ 2992.878896][ T1023] netlink: 4 bytes leftover after parsing attributes in process `syz.4.26427'.
[ 2993.469841][ T1039] netlink: 20 bytes leftover after parsing attributes in process `syz.3.26433'.
[ 2994.046413][ T1059] netlink: 48 bytes leftover after parsing attributes in process `syz.3.26438'.
[ 2994.115387][ T1059] netlink: 48 bytes leftover after parsing attributes in process `syz.3.26438'.
[ 2994.161881][ T1065] binder: 1063:1065 ioctl c0306201 0 returned -14
[ 2994.194408][ T1065] binder: 1063:1065 ioctl c0306201 0 returned -14
[ 2994.685432][ T1077] netlink: 32 bytes leftover after parsing attributes in process `syz.3.26443'.
[ 2995.275477][ T1085] loop3: detected capacity change from 0 to 128
[ 2996.916639][ T1121] loop1: detected capacity change from 0 to 512
[ 2997.074968][ T1121] EXT4-fs (loop1): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2997.159570][ T1121] EXT4-fs (loop1): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2997.184158][ T1121] ext4 filesystem being mounted at /375/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2997.253152][ T1121] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.26463: corrupted inode contents
[ 2997.346536][ T1121] EXT4-fs error (device loop1): ext4_dirty_inode:6054: inode #2: comm syz.1.26463: mark_inode_dirty error
[ 2997.380103][ T1121] EXT4-fs error (device loop1): ext4_do_update_inode:5218: inode #2: comm syz.1.26463: corrupted inode contents
[ 2997.397412][ T1127] loop2: detected capacity change from 0 to 512
[ 2997.428018][ T1121] EXT4-fs error (device loop1): __ext4_ext_dirty:183: inode #2: comm syz.1.26463: mark_inode_dirty error
[ 2997.524346][ T1127] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2997.628034][ T1127] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2997.677207][ T1127] ext4 filesystem being mounted at /161/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2997.792878][ T1127] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26454: corrupted inode contents
[ 2997.825609][ T1127] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.26454: mark_inode_dirty error
[ 2997.881872][ T1127] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26454: corrupted inode contents
[ 2997.931517][ T1127] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.26454: mark_inode_dirty error
[ 2998.440778][ T1158] netlink: 4 bytes leftover after parsing attributes in process `syz.2.26473'.
[ 2998.678768][ T1166] loop2: detected capacity change from 0 to 512
[ 2998.827722][ T1166] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 2998.981333][ T1166] EXT4-fs (loop2): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 2999.004146][ T1166] ext4 filesystem being mounted at /164/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 2999.079560][ T1166] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26476: corrupted inode contents
[ 2999.145312][ T1166] EXT4-fs error (device loop2): ext4_dirty_inode:6054: inode #2: comm syz.2.26476: mark_inode_dirty error
[ 2999.184103][ T1166] EXT4-fs error (device loop2): ext4_do_update_inode:5218: inode #2: comm syz.2.26476: corrupted inode contents
[ 2999.238840][ T1166] EXT4-fs error (device loop2): __ext4_ext_dirty:183: inode #2: comm syz.2.26476: mark_inode_dirty error
[ 2999.591165][ T1194] binder: 1193:1194 ioctl c0306201 0 returned -14
[ 3000.932103][ T1217] binder: 1216:1217 ioctl c0306201 0 returned -14
[ 3001.890733][ T1233] loop0: detected capacity change from 0 to 512
[ 3002.014615][ T1233] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 3002.110650][ T1233] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3002.134198][T27368] Bluetooth: hci3: command 0x0406 tx timeout
[ 3002.208160][ T1233] ext4 filesystem being mounted at /477/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3002.296599][ T1233] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26500: corrupted inode contents
[ 3002.346131][ T1233] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.26500: mark_inode_dirty error
[ 3002.397071][ T1233] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26500: corrupted inode contents
[ 3002.452426][ T1233] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.26500: mark_inode_dirty error
[ 3002.480659][ T1252] binder: 1251:1252 ioctl c0306201 0 returned -14
[ 3002.979809][ T1265] netlink: 24 bytes leftover after parsing attributes in process `syz.4.26511'.
[ 3003.353762][ T1273] binder: 1272:1273 ioctl c0306201 0 returned -14
[ 3003.497615][ T1277] loop0: detected capacity change from 0 to 512
[ 3003.559623][ T1277] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 3003.693703][ T1277] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3003.775786][ T1277] ext4 filesystem being mounted at /482/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3003.826711][ T1277] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26517: corrupted inode contents
[ 3003.855948][ T1277] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.26517: mark_inode_dirty error
[ 3003.888318][ T1277] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26517: corrupted inode contents
[ 3003.934936][ T1277] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.26517: mark_inode_dirty error
[ 3004.241566][ T1297] netlink: 24 bytes leftover after parsing attributes in process `syz.4.26523'.
[ 3004.622208][ T1308] binder: 1307:1308 ioctl c0306201 0 returned -14
[ 3004.819284][ T1315] loop0: detected capacity change from 0 to 512
[ 3004.851683][ T1316] loop4: detected capacity change from 0 to 512
[ 3004.922463][ T1315] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 3004.936630][ T1316] EXT4-fs (loop4): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 3005.001901][ T1315] EXT4-fs (loop0): 1 truncate cleaned up
[ 3005.014084][ T1315] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3005.040307][ T1316] EXT4-fs (loop4): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3005.051516][   T26] audit: type=1800 audit(1763179990.319:382): pid=1315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.26531" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 3005.085465][ T1316] ext4 filesystem being mounted at /369/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3005.174210][ T1316] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26533: corrupted inode contents
[ 3005.228038][ T1316] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.26533: mark_inode_dirty error
[ 3005.251814][ T1316] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26533: corrupted inode contents
[ 3005.310933][ T1316] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.26533: mark_inode_dirty error
[ 3005.379904][ T1330] netlink: 24 bytes leftover after parsing attributes in process `syz.0.26536'.
[ 3006.500515][ T1375] loop2: detected capacity change from 0 to 512
[ 3006.621457][ T1375] EXT4-fs (loop2): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3006.645090][ T1375] ext4 filesystem being mounted at /173/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3007.447870][ T1433] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26574'.
[ 3007.531569][ T1433] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26574'.
[ 3008.240490][ T1466] netlink: 20 bytes leftover after parsing attributes in process `syz.0.26589'.
[ 3008.413226][ T1473] netlink: 32 bytes leftover after parsing attributes in process `syz.0.26592'.
[ 3008.958841][ T1494] netlink: 24 bytes leftover after parsing attributes in process `syz.4.26601'.
[ 3009.123985][T20421] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[ 3009.384136][T20421] usb 3-1: Using ep0 maxpacket: 16
[ 3009.504522][T20421] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3009.534074][T20421] usb 3-1: config 0 has no interfaces?
[ 3009.566534][T20421] usb 3-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00
[ 3009.599844][T20421] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3009.625282][T20421] usb 3-1: config 0 descriptor??
[ 3009.880781][T20421] usb 3-1: USB disconnect, device number 36
[ 3010.673281][ T1525] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26615'.
[ 3010.726728][ T1525] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26615'.
[ 3011.358352][ T1544] loop3: detected capacity change from 0 to 16
[ 3011.418804][ T1544] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3012.309163][ T1567] loop1: detected capacity change from 0 to 128
[ 3012.759840][ T1585] netlink: 4 bytes leftover after parsing attributes in process `syz.2.26638'.
[ 3013.033083][ T1593] loop3: detected capacity change from 0 to 16
[ 3013.057639][ T1599] raw_sendmsg: syz.1.26646 forgot to set AF_INET. Fix it!
[ 3013.114872][ T1593] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3013.839847][ T1618] netlink: 48 bytes leftover after parsing attributes in process `syz.1.26654'.
[ 3013.924632][ T1618] netlink: 48 bytes leftover after parsing attributes in process `syz.1.26654'.
[ 3014.026401][ T1620] loop2: detected capacity change from 0 to 256
[ 3014.206962][ T1620] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 3014.335824][ T1628] netlink: 4 bytes leftover after parsing attributes in process `syz.1.26656'.
[ 3014.478069][ T1631] netlink: 24 bytes leftover after parsing attributes in process `syz.2.26659'.
[ 3014.618333][ T1633] loop3: detected capacity change from 0 to 512
[ 3014.714108][ T1633] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 3014.896043][ T1633] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3014.914341][ T1633] ext4 filesystem being mounted at /439/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3015.435217][ T1659] netlink: 4 bytes leftover after parsing attributes in process `syz.3.26671'.
[ 3015.795080][ T1668] netlink: 20 bytes leftover after parsing attributes in process `syz.3.26674'.
[ 3016.107491][ T1674] netlink: 48 bytes leftover after parsing attributes in process `syz.3.26676'.
[ 3016.174255][ T1674] netlink: 48 bytes leftover after parsing attributes in process `syz.3.26676'.
[ 3017.662666][ T1716] netlink: 24 bytes leftover after parsing attributes in process `syz.2.26696'.
[ 3017.702517][ T1717] netlink: 20 bytes leftover after parsing attributes in process `syz.0.26695'.
[ 3019.640499][ T1763] loop0: detected capacity change from 0 to 512
[ 3019.726912][ T1763] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 3019.835563][ T1763] EXT4-fs (loop0): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3019.934115][ T1763] ext4 filesystem being mounted at /524/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3020.059834][ T1770] __nla_validate_parse: 2 callbacks suppressed
[ 3020.059851][ T1770] netlink: 20 bytes leftover after parsing attributes in process `syz.2.26719'.
[ 3020.065233][ T1763] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26716: corrupted inode contents
[ 3020.156235][ T1763] EXT4-fs error (device loop0): ext4_dirty_inode:6054: inode #2: comm syz.0.26716: mark_inode_dirty error
[ 3020.230156][ T1763] EXT4-fs error (device loop0): ext4_do_update_inode:5218: inode #2: comm syz.0.26716: corrupted inode contents
[ 3020.251266][ T1773] netlink: 24 bytes leftover after parsing attributes in process `syz.2.26721'.
[ 3020.295882][ T1763] EXT4-fs error (device loop0): __ext4_ext_dirty:183: inode #2: comm syz.0.26716: mark_inode_dirty error
[ 3020.549019][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[ 3020.567914][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[ 3021.753847][ T1806] netlink: 24 bytes leftover after parsing attributes in process `syz.3.26734'.
[ 3022.125477][ T1818] binder: 1817:1818 ioctl c0306201 0 returned -14
[ 3022.219328][ T1820] netlink: 20 bytes leftover after parsing attributes in process `syz.3.26740'.
[ 3023.033960][ T1854] netlink: 20 bytes leftover after parsing attributes in process `syz.4.26755'.
[ 3023.616007][ T1872] loop4: detected capacity change from 0 to 512
[ 3023.776768][ T1872] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3023.800612][ T1872] ext4 filesystem being mounted at /410/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3023.911049][ T1872] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26764: corrupted inode contents
[ 3023.954533][ T1872] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.26764: mark_inode_dirty error
[ 3023.986064][ T1872] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.26764: corrupted inode contents
[ 3024.019686][ T1872] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.26764: mark_inode_dirty error
[ 3025.589759][ T1904] netlink: 20 bytes leftover after parsing attributes in process `syz.1.26775'.
[ 3026.502235][ T1931] loop1: detected capacity change from 0 to 512
[ 3026.582860][ T1931] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 3026.651104][ T1931] EXT4-fs (loop1): 1 truncate cleaned up
[ 3026.673965][ T1931] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3026.693798][   T26] audit: type=1800 audit(1763180011.969:383): pid=1931 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.26790" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 3027.890374][ T1968] loop1: detected capacity change from 0 to 512
[ 3028.004744][ T1968] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 3028.072072][ T1968] EXT4-fs (loop1): 1 truncate cleaned up
[ 3028.088074][ T1968] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3028.131015][   T26] audit: type=1800 audit(1763180013.409:384): pid=1968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.26804" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 3029.113963][T20421] usb 4-1: new high-speed USB device number 30 using dummy_hcd
[ 3029.199988][ T2008] loop1: detected capacity change from 0 to 512
[ 3029.255610][ T2008] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 3029.317493][ T2008] EXT4-fs (loop1): 1 truncate cleaned up
[ 3029.323205][ T2008] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3029.374001][T20421] usb 4-1: Using ep0 maxpacket: 16
[ 3029.459544][   T26] audit: type=1800 audit(1763180014.739:385): pid=2008 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.26822" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 3029.495078][T20421] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3029.513970][T20421] usb 4-1: config 0 has 0 interfaces, different from the descriptor's value: 3
[ 3029.684336][T20421] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3029.709419][T20421] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3029.734120][T20421] usb 4-1: Product: syz
[ 3029.738451][T20421] usb 4-1: Manufacturer: syz
[ 3029.743143][T20421] usb 4-1: SerialNumber: syz
[ 3029.775821][T20421] usb 4-1: config 0 descriptor??
[ 3030.041897][ T4220] usb 4-1: USB disconnect, device number 30
[ 3030.888145][ T2038] loop1: detected capacity change from 0 to 512
[ 3031.005755][ T2038] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 3031.079725][ T2038] EXT4-fs (loop1): 1 truncate cleaned up
[ 3031.085518][ T2038] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3031.205519][ T2051] netlink: 24 bytes leftover after parsing attributes in process `syz.0.26839'.
[ 3032.157956][ T2078] netlink: 4 bytes leftover after parsing attributes in process `syz.2.26851'.
[ 3032.588872][ T2086] loop4: detected capacity change from 0 to 128
[ 3032.627855][ T2084] netlink: 24 bytes leftover after parsing attributes in process `syz.1.26852'.
[ 3032.674314][ T2086] FAT-fs (loop4): Directory bread(block 414) failed
[ 3032.692220][ T2086] FAT-fs (loop4): Directory bread(block 415) failed
[ 3032.738501][ T2086] FAT-fs (loop4): Directory bread(block 416) failed
[ 3032.764692][ T2086] FAT-fs (loop4): Directory bread(block 417) failed
[ 3032.782504][ T2086] FAT-fs (loop4): Directory bread(block 418) failed
[ 3032.799751][ T2086] FAT-fs (loop4): Directory bread(block 419) failed
[ 3032.829785][ T2086] FAT-fs (loop4): Directory bread(block 420) failed
[ 3032.875877][ T2086] FAT-fs (loop4): Directory bread(block 421) failed
[ 3033.374206][T29278] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[ 3033.764143][T29278] usb 2-1: config 0 has an invalid interface number: 182 but max is 1
[ 3033.776169][T29278] usb 2-1: config 0 has no interface number 1
[ 3033.798676][T29278] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=9c.af
[ 3033.823088][T29278] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 3033.875984][T29278] usb 2-1: config 0 descriptor??
[ 3034.150034][T29278] usb 2-1: USB disconnect, device number 31
[ 3034.682587][ T2127] loop0: detected capacity change from 0 to 16
[ 3034.720690][ T2127] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3035.706146][ T2143] netlink: 24 bytes leftover after parsing attributes in process `syz.0.26877'.
[ 3037.246063][ T2149] netlink: 40 bytes leftover after parsing attributes in process `syz.4.26880'.
[ 3037.910073][ T2155] loop2: detected capacity change from 0 to 2048
[ 3038.045040][ T2155] Alternate GPT is invalid, using primary GPT.
[ 3038.051346][ T2155]  loop2: p1 p2 p3
[ 3038.354464][T31026] udevd[31026]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[ 3038.354614][T31027] udevd[31027]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[ 3038.375300][T30976] udevd[30976]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[ 3038.474012][ T2157] loop2: detected capacity change from 0 to 1024
[ 3038.496948][ T2159] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26885'.
[ 3038.544216][ T2159] netlink: 48 bytes leftover after parsing attributes in process `syz.4.26885'.
[ 3038.566841][ T2157] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[ 3038.674633][T30976] udevd[30976]: inotify_add_watch(7, /dev/loop2p3, 10) failed: No such file or directory
[ 3038.680257][T31026] udevd[31026]: inotify_add_watch(7, /dev/loop2p2, 10) failed: No such file or directory
[ 3038.718953][T31027] udevd[31027]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[ 3038.764813][ T2157] EXT4-fs (loop2): mounted filesystem without journal. Opts: noblock_validity,bsddf,sysvgroups,resuid=0x000000000000ee01,debug_want_extra_isize=0x0000000000000080,nodelalloc,grpid,noauto_da_alloc,nomblk_io_submit,,errors=continue. Quota mode: none.
[ 3039.415288][ T2175] netlink: 24 bytes leftover after parsing attributes in process `syz.2.26892'.
[ 3039.592429][ T2178] loop2: detected capacity change from 0 to 16
[ 3039.708973][ T2178] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3040.035436][ T2189] netlink: 40 bytes leftover after parsing attributes in process `syz.4.26898'.
[ 3041.167080][ T2230] netlink: 40 bytes leftover after parsing attributes in process `syz.0.26914'.
[ 3041.378370][ T2236] loop3: detected capacity change from 0 to 512
[ 3041.450506][ T2236] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 3041.547464][ T2240] loop1: detected capacity change from 0 to 16
[ 3041.610389][ T2236] EXT4-fs (loop3): 1 truncate cleaned up
[ 3041.624015][ T2236] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3041.634690][ T2240] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3041.756747][   T26] audit: type=1800 audit(1763180027.039:386): pid=2236 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.26917" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 3043.908286][ T2307] netlink: 40 bytes leftover after parsing attributes in process `syz.0.26948'.
[ 3044.051441][ T2314] netlink: 24 bytes leftover after parsing attributes in process `syz.1.26951'.
[ 3046.901606][ T2372] netlink: 44 bytes leftover after parsing attributes in process `syz.0.26974'.
[ 3047.603659][ T2403] netlink: 48 bytes leftover after parsing attributes in process `syz.2.26987'.
[ 3048.303830][ T2434] netlink: 48 bytes leftover after parsing attributes in process `syz.1.27001'.
[ 3051.054673][ T2503] loop3: detected capacity change from 0 to 512
[ 3051.111809][ T2503] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 3051.175487][ T2503] EXT4-fs (loop3): 1 truncate cleaned up
[ 3051.181212][ T2503] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3051.236625][   T26] audit: type=1800 audit(1763180036.519:387): pid=2503 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.27021" name="file1" dev="loop3" ino=15 res=0 errno=0
[ 3051.709813][ T2525] netlink: 24 bytes leftover after parsing attributes in process `syz.0.27031'.
[ 3052.151216][ T2536] loop3: detected capacity change from 0 to 512
[ 3052.233550][ T2538] netlink: 52 bytes leftover after parsing attributes in process `syz.1.27036'.
[ 3052.424731][ T2536] EXT4-fs (loop3): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3052.454264][ T2536] ext4 filesystem being mounted at /501/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3052.500769][ T2536] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.27035: corrupted inode contents
[ 3052.540447][ T2536] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.27035: mark_inode_dirty error
[ 3052.583234][ T2536] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.27035: corrupted inode contents
[ 3052.616373][ T2536] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.27035: mark_inode_dirty error
[ 3053.488785][ T2553] chnl_net:caif_netlink_parms(): no params data found
[ 3053.532930][ T2571] loop3: detected capacity change from 0 to 512
[ 3053.637854][ T2571] EXT4-fs (loop3): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 3053.694763][ T2571] EXT4-fs (loop3): mounted filesystem without journal. Opts: dioread_nolock,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3053.790547][ T2553] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3053.837736][ T2553] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3053.851911][ T2571] ext4 filesystem being mounted at /505/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 3053.874313][ T2553] device bridge_slave_0 entered promiscuous mode
[ 3053.906165][ T2571] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.27043: corrupted inode contents
[ 3053.920833][ T2553] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3053.955338][ T2553] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3053.979003][ T2571] EXT4-fs error (device loop3): ext4_dirty_inode:6054: inode #2: comm syz.3.27043: mark_inode_dirty error
[ 3053.981589][ T2553] device bridge_slave_1 entered promiscuous mode
[ 3054.038614][ T2571] EXT4-fs error (device loop3): ext4_do_update_inode:5218: inode #2: comm syz.3.27043: corrupted inode contents
[ 3054.074369][ T2571] EXT4-fs error (device loop3): __ext4_ext_dirty:183: inode #2: comm syz.3.27043: mark_inode_dirty error
[ 3054.126900][ T2553] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3054.173636][ T2553] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3054.309420][ T2553] team0: Port device team_slave_0 added
[ 3054.346333][ T2553] team0: Port device team_slave_1 added
[ 3054.445842][T10615] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3054.519897][ T2553] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3054.564153][ T2553] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3054.623163][ T2608] loop2: detected capacity change from 0 to 16
[ 3054.629622][ T2553] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3054.681072][T10615] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3054.692270][ T2608] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3054.774073][T20421] Bluetooth: hci1: command 0x0409 tx timeout
[ 3055.109657][ T2553] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3055.160993][ T2553] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3055.465489][ T2553] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3055.653265][ T2553] device hsr_slave_0 entered promiscuous mode
[ 3055.682496][ T2553] device hsr_slave_1 entered promiscuous mode
[ 3055.703981][ T2553] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3055.725451][ T2553] Cannot create hsr debugfs directory
[ 3055.756044][T10615] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3055.880441][T10615] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3056.853954][ T4221] Bluetooth: hci1: command 0x041b tx timeout
[ 3056.939944][ T2652] netlink: 24 bytes leftover after parsing attributes in process `syz.1.27060'.
[ 3057.293391][ T2666] netlink: 40 bytes leftover after parsing attributes in process `syz.1.27065'.
[ 3057.381771][ T2553] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 3057.428882][ T2553] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 3057.515519][T10615] device hsr_slave_0 left promiscuous mode
[ 3057.531348][T10615] device hsr_slave_1 left promiscuous mode
[ 3057.545857][T10615] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3057.583951][T10615] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3057.615013][T10615] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3057.622529][T10615] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3057.665922][T10615] device bridge_slave_1 left promiscuous mode
[ 3057.693582][T10615] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3057.744440][T10615] device bridge_slave_0 left promiscuous mode
[ 3057.750865][T10615] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3057.845286][T10615] device veth1_macvtap left promiscuous mode
[ 3057.851553][T10615] device veth1_vlan left promiscuous mode
[ 3057.898791][T10615] device veth0_vlan left promiscuous mode
[ 3058.663527][T10615] team0 (unregistering): Port device team_slave_1 removed
[ 3058.735470][T10615] team0 (unregistering): Port device team_slave_0 removed
[ 3058.786351][T10615] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3058.853190][T10615] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3058.934177][ T4221] Bluetooth: hci1: command 0x040f tx timeout
[ 3059.128449][T10615] bond0 (unregistering): Released all slaves
[ 3059.211091][ T2553] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 3059.227610][ T2553] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 3059.420862][ T2732] netlink: 52 bytes leftover after parsing attributes in process `syz.1.27083'.
[ 3059.608806][ T2553] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3059.645594][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3059.674955][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3059.707352][ T2553] 8021q: adding VLAN 0 to HW filter on device team0
[ 3059.739496][  T746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3059.765594][ T2743] netlink: 24 bytes leftover after parsing attributes in process `syz.1.27086'.
[ 3059.775607][  T746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3059.795589][  T746] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3059.802715][  T746] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3059.841202][  T746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3059.880593][  T746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3059.928589][  T746] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3059.955233][  T746] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3059.962510][  T746] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3060.026891][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3060.056552][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3060.080475][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3060.111904][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3060.140257][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3060.227483][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3060.249673][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3060.315017][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3060.334878][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3060.343425][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3060.382839][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3060.418302][ T2553] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3060.911293][ T2553] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3060.957908][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3060.976269][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3061.014091][ T4221] Bluetooth: hci1: command 0x0419 tx timeout
[ 3061.032120][ T9662] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3061.054624][ T9662] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3061.160468][ T2553] device veth0_vlan entered promiscuous mode
[ 3061.195141][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3061.230149][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3061.259735][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3061.319659][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3061.349699][ T2553] device veth1_vlan entered promiscuous mode
[ 3061.471250][  T746] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3061.510537][  T746] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3061.537845][ T2553] device veth0_macvtap entered promiscuous mode
[ 3061.597866][ T2553] device veth1_macvtap entered promiscuous mode
[ 3061.661053][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3061.714779][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3061.754004][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3061.789066][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3061.819912][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3061.853957][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3061.887147][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3061.918369][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3061.950439][ T2553] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3061.983819][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3062.000468][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3062.040492][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3062.071422][ T4551] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3062.098721][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3062.147612][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3062.190219][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3062.221226][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3062.251767][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3062.276139][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3062.307334][ T2553] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3062.340473][ T2553] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3062.372693][ T2553] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3062.402657][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3062.425376][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3062.467397][ T2553] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 3062.494589][ T2553] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 3062.523923][ T2553] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 3062.532684][ T2553] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 3062.758087][ T4292] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3062.809632][ T4292] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3062.856884][ T4551] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3062.897557][ T9662] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 3062.912551][ T4551] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3062.960616][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 3064.878283][ T2829] netlink: 36 bytes leftover after parsing attributes in process `syz.3.27114'.
[ 3065.400956][ T2845] netlink: 4 bytes leftover after parsing attributes in process `syz.3.27118'.
[ 3068.348043][ T2864] netlink: 48 bytes leftover after parsing attributes in process `syz.0.27128'.
[ 3068.388037][ T2864] netlink: 48 bytes leftover after parsing attributes in process `syz.0.27128'.
[ 3068.643014][ T2868] netlink: 4 bytes leftover after parsing attributes in process `syz.0.27129'.
[ 3068.679544][ T2872] loop1: detected capacity change from 0 to 512
[ 3068.687005][ T2868] device veth0_macvtap left promiscuous mode
[ 3068.733120][ T2872] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[ 3068.805600][ T2872] EXT4-fs (loop1): 1 truncate cleaned up
[ 3068.811356][ T2872] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3068.931290][   T26] audit: type=1800 audit(1763180054.209:388): pid=2872 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.27130" name="file1" dev="loop1" ino=15 res=0 errno=0
[ 3069.097827][ T2876] netlink: 40 bytes leftover after parsing attributes in process `syz.0.27132'.
[ 3071.976503][ T2891] netlink: 48 bytes leftover after parsing attributes in process `syz.4.27139'.
[ 3072.044665][ T2891] netlink: 48 bytes leftover after parsing attributes in process `syz.4.27139'.
[ 3072.766171][ T2912] netlink: 52 bytes leftover after parsing attributes in process `syz.4.27145'.
[ 3075.125394][ T2968] netlink: 52 bytes leftover after parsing attributes in process `syz.1.27163'.
[ 3077.585585][ T3003] netlink: 4 bytes leftover after parsing attributes in process `syz.3.27180'.
[ 3078.004365][ T3013] netlink: 48 bytes leftover after parsing attributes in process `syz.1.27185'.
[ 3078.175446][ T3015] netlink: 24 bytes leftover after parsing attributes in process `syz.1.27186'.
[ 3078.667312][ T3028] loop2: detected capacity change from 0 to 16
[ 3078.714992][ T3028] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3079.355535][ T3039] netlink: 48 bytes leftover after parsing attributes in process `syz.1.27194'.
[ 3079.390094][ T3039] netlink: 48 bytes leftover after parsing attributes in process `syz.1.27194'.
[ 3079.568718][ T3043] netlink: 4 bytes leftover after parsing attributes in process `syz.2.27196'.
[ 3079.758537][ T3049] overlayfs: missing 'lowerdir'
[ 3080.143696][ T3059] loop2: detected capacity change from 0 to 16
[ 3080.194911][ T3059] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3080.666968][ T3067] netlink: 24 bytes leftover after parsing attributes in process `syz.1.27210'.
[ 3081.987768][ T1431] ieee802154 phy0 wpan0: encryption failed: -22
[ 3081.994175][ T1431] ieee802154 phy1 wpan1: encryption failed: -22
[ 3082.098150][ T3140] netlink: 48 bytes leftover after parsing attributes in process `syz.4.27240'.
[ 3082.149040][ T3140] netlink: 48 bytes leftover after parsing attributes in process `syz.4.27240'.
[ 3082.349909][ T3154] netlink: 40 bytes leftover after parsing attributes in process `syz.4.27246'.
[ 3082.669566][ T3170] overlayfs: missing 'lowerdir'
[ 3083.422611][ T3178] __nla_validate_parse: 1 callbacks suppressed
[ 3083.422631][ T3178] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27257'.
[ 3083.444997][ T3178] netlink: 48 bytes leftover after parsing attributes in process `syz.2.27257'.
[ 3083.791175][ T3199] netlink: 24 bytes leftover after parsing attributes in process `syz.0.27266'.
[ 3084.273032][ T3230] netlink: 24 bytes leftover after parsing attributes in process `syz.0.27280'.
[ 3084.287398][ T3228] netlink: 40 bytes leftover after parsing attributes in process `syz.4.27279'.
[ 3084.918886][ T3262] overlayfs: missing 'lowerdir'
[ 3085.950466][T10615] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3085.990787][ T3310] loop5: detected capacity change from 0 to 7
[ 3086.022698][T10615] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3086.087181][T10615] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3086.112378][T31027] Dev loop5: unable to read RDB block 7
[ 3086.119528][T31027]  loop5: unable to read partition table
[ 3086.149935][T31027] loop5: partition table beyond EOD, truncated
[ 3086.198014][ T3310] Dev loop5: unable to read RDB block 7
[ 3086.236968][ T3310]  loop5: unable to read partition table
[ 3086.243126][ T3310] loop5: partition table beyond EOD, truncated
[ 3086.257724][ T3310] loop_reread_partitions: partition scan of loop5 (úù) failed (rc=-5)
[ 3086.272321][T10615] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 3086.289135][ T3559] Dev loop5: unable to read RDB block 7
[ 3086.295814][ T3559]  loop5: unable to read partition table
[ 3086.326927][ T3559] loop5: partition table beyond EOD, truncated
[ 3086.343402][ T3317] loop4: detected capacity change from 0 to 512
[ 3086.513191][ T3317] EXT4-fs (loop4): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000001000,nodiscard,quota,,errors=continue. Quota mode: writeback.
[ 3086.658666][ T3317] ext4 filesystem being mounted at /513/file0/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 3086.687155][ T3311] chnl_net:caif_netlink_parms(): no params data found
[ 3087.498707][ T3317] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.27316: corrupted inode contents
[ 3087.527619][ T3317] EXT4-fs error (device loop4): ext4_dirty_inode:6054: inode #2: comm syz.4.27316: mark_inode_dirty error
[ 3087.559856][ T3317] EXT4-fs error (device loop4): ext4_do_update_inode:5218: inode #2: comm syz.4.27316: corrupted inode contents
[ 3087.630516][ T3317] EXT4-fs error (device loop4): __ext4_ext_dirty:183: inode #2: comm syz.4.27316: mark_inode_dirty error
[ 3088.042322][ T3311] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3088.054066][ T3142] Bluetooth: hci0: command 0x0409 tx timeout
[ 3088.092675][ T3311] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3088.142761][ T3311] device bridge_slave_0 entered promiscuous mode
[ 3088.241010][ T3311] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3088.272500][ T3311] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3088.332506][ T3311] device bridge_slave_1 entered promiscuous mode
[ 3088.529072][ T3311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 3088.631003][ T3311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 3088.823563][ T3311] team0: Port device team_slave_0 added
[ 3088.862425][ T3311] team0: Port device team_slave_1 added
[ 3089.008887][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 3089.033972][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3089.163119][ T3311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 3089.214790][ T3311] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 3089.252414][ T3311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 3089.364245][ T3311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 3089.551746][ T3311] device hsr_slave_0 entered promiscuous mode
[ 3089.566943][ T3311] device hsr_slave_1 entered promiscuous mode
[ 3089.582358][ T3311] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 3089.603736][ T3311] Cannot create hsr debugfs directory
[ 3089.684002][ T3142] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[ 3089.836799][T10615] device hsr_slave_0 left promiscuous mode
[ 3089.849513][T10615] device hsr_slave_1 left promiscuous mode
[ 3089.864780][T10615] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 3089.872528][T10615] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 3089.922876][T10615] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 3089.934178][T10615] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 3089.954259][ T3142] usb 5-1: Using ep0 maxpacket: 16
[ 3089.965354][T10615] device bridge_slave_1 left promiscuous mode
[ 3089.971806][T10615] bridge0: port 2(bridge_slave_1) entered disabled state
[ 3090.022865][T10615] device bridge_slave_0 left promiscuous mode
[ 3090.044232][T10615] bridge0: port 1(bridge_slave_0) entered disabled state
[ 3090.057835][T10615] device veth1_macvtap left promiscuous mode
[ 3090.064123][T10615] device veth1_vlan left promiscuous mode
[ 3090.074823][T10615] device veth0_vlan left promiscuous mode
[ 3090.101567][ T3142] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3090.117537][ T3142] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 3
[ 3090.144003][ T3334] Bluetooth: hci0: command 0x041b tx timeout
[ 3090.314485][ T3142] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3090.349021][ T3142] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3090.379401][ T3142] usb 5-1: Product: syz
[ 3090.383638][ T3142] usb 5-1: Manufacturer: syz
[ 3090.409789][ T3142] usb 5-1: SerialNumber: syz
[ 3090.432220][ T3142] usb 5-1: config 0 descriptor??
[ 3090.697632][ T3334] usb 5-1: USB disconnect, device number 36
[ 3090.723161][T10615] team0 (unregistering): Port device team_slave_1 removed
[ 3090.773207][T10615] team0 (unregistering): Port device team_slave_0 removed
[ 3090.803148][T10615] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 3090.830635][T10615] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 3091.023713][T10615] bond0 (unregistering): Released all slaves
[ 3091.192784][ T3418] netlink: 44 bytes leftover after parsing attributes in process `syz.2.27345'.
[ 3091.907664][ T3435] overlayfs: missing 'lowerdir'
[ 3092.126779][ T3311] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 3092.234095][ T3311] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 3092.253311][T29278] Bluetooth: hci0: command 0x040f tx timeout
[ 3092.317561][ T3311] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 3092.386608][ T3311] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 3092.793507][ T3311] 8021q: adding VLAN 0 to HW filter on device bond0
[ 3092.958921][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 3092.999063][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 3093.197859][ T3311] 8021q: adding VLAN 0 to HW filter on device team0
[ 3093.239040][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[ 3093.258600][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 3093.305756][ T4292] bridge0: port 1(bridge_slave_0) entered blocking state
[ 3093.312890][ T4292] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 3093.403966][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[ 3093.447999][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[ 3093.503434][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 3093.543774][ T4292] bridge0: port 2(bridge_slave_1) entered blocking state
[ 3093.550970][ T4292] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 3093.589733][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[ 3093.645028][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[ 3093.711681][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[ 3093.780191][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[ 3093.814898][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[ 3093.854617][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[ 3093.897285][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[ 3093.953806][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[ 3093.982975][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 3094.014421][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[ 3094.054414][ T5178] usb 1-1: new high-speed USB device number 29 using dummy_hcd
[ 3094.055138][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 3094.121092][ T3311] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[ 3094.294636][T27368] Bluetooth: hci0: command 0x0419 tx timeout
[ 3094.304505][ T5178] usb 1-1: Using ep0 maxpacket: 16
[ 3094.424141][ T5178] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 3094.459197][ T5178] usb 1-1: config 0 has 0 interfaces, different from the descriptor's value: 3
[ 3094.564578][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[ 3094.572886][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[ 3094.608987][ T3311] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 3094.644248][ T5178] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 3094.653376][ T5178] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 3094.695025][ T5178] usb 1-1: Product: syz
[ 3094.699355][ T5178] usb 1-1: Manufacturer: syz
[ 3094.712706][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[ 3094.733225][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 3094.754031][ T5178] usb 1-1: SerialNumber: syz
[ 3094.779716][ T5178] usb 1-1: config 0 descriptor??
[ 3094.807168][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[ 3094.825022][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 3094.869680][ T3311] device veth0_vlan entered promiscuous mode
[ 3094.887923][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 3094.904831][ T4292] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 3094.939263][ T3311] device veth1_vlan entered promiscuous mode
[ 3095.010357][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[ 3095.037755][T20421] usb 1-1: USB disconnect, device number 29
[ 3095.056058][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[ 3095.106235][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[ 3095.135006][ T4246] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 3095.166483][ T3311] device veth0_macvtap entered promiscuous mode
[ 3095.198969][ T3311] device veth1_macvtap entered promiscuous mode
[ 3095.254470][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3095.274737][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.300501][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3095.341899][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.379641][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3095.419664][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.449839][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 3095.485103][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.521411][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 3095.540457][T21358] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[ 3095.559249][T21358] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[ 3095.590173][T21358] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[ 3095.612303][T21358] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 3095.639296][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3095.680840][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.713035][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3095.741910][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.782624][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3095.849622][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.870524][ T3311] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 3095.892815][ T3506] overlayfs: missing 'lowerdir'
[ 3095.901765][ T3311] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 3095.932693][ T3311] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 3095.965082][ T9663] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[ 3095.985783][ T9663] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 3096.022915][ T3311] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 3096.037644][ T3311] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 3096.049407][ T3311] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 3096.077513][ T3311] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 3096.315201][ T9662] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3096.366666][ T9662] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3096.438728][ T9663] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[ 3096.500595][ T3333] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 3096.532759][ T3519] loop0: detected capacity change from 0 to 16
[ 3096.545423][ T3333] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 3096.609026][ T9662] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[ 3096.644695][ T3519] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3100.128351][ T3634] netlink: 24 bytes leftover after parsing attributes in process `syz.2.27390'.
[ 3100.559342][ T3644] overlayfs: missing 'lowerdir'
[ 3101.421203][ T3648] netlink: 16 bytes leftover after parsing attributes in process `syz.2.27395'.
[ 3103.858664][ T3729] loop4: detected capacity change from 0 to 16
[ 3103.968151][ T3729] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3104.913206][ T3763] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[ 3105.744829][ T3780] netlink: 48 bytes leftover after parsing attributes in process `syz.4.27451'.
[ 3105.884617][ T3780] netlink: 48 bytes leftover after parsing attributes in process `syz.4.27451'.
[ 3106.097693][ T3789] loop3: detected capacity change from 0 to 16
[ 3106.185227][ T3789] erofs: Unknown parameter 'ÿÿßIÑ+z¤š#|# 3ÍNoO«ÀWuŒccx™Ù%È‘‡5¤gjÉÎâiZqu"ß/
Ïð¨'ˆŽÃ)iéŸ?‹�‚`l²jaYœˆª�'
[ 3106.551873][ T3804] netlink: 40 bytes leftover after parsing attributes in process `syz.4.27460'.
[ 3107.484553][ T3811] overlayfs: missing 'lowerdir'
[ 3107.696209][ T3821] loop0: detected capacity change from 0 to 512
[ 3107.728724][ T3821] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[ 3107.773262][ T3823] netlink: 24 bytes leftover after parsing attributes in process `syz.4.27469'.
[ 3107.852930][ T3821] EXT4-fs (loop0): 1 truncate cleaned up
[ 3107.894518][ T3821] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[ 3107.919681][   T26] audit: type=1800 audit(1763180093.199:389): pid=3821 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.27468" name="file1" dev="loop0" ino=15 res=0 errno=0
[ 3213.173813][    C0] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[ 3213.180912][    C0] rcu: 	Tasks blocked on level-0 rcu_node (CPUs 0-1): P4246/1:b..l
[ 3213.189442][    C0] 	(detected by 0, t=10502 jiffies, g=548669, q=85)
[ 3213.196078][    C0] task:kworker/u4:4    state:R  running task     stack:21736 pid: 4246 ppid:     2 flags:0x00004000
[ 3213.208089][    C0] Workqueue: netns cleanup_net
[ 3213.213045][    C0] Call Trace:
[ 3213.216355][    C0]  <TASK>
[ 3213.219320][    C0]  __schedule+0x11bb/0x4390
[ 3213.223926][    C0]  ? mark_lock+0x94/0x320
[ 3213.228361][    C0]  ? mark_lock+0x94/0x320
[ 3213.232724][    C0]  ? mark_lock+0x94/0x320
[ 3213.237101][    C0]  ? release_firmware_map_entry+0x190/0x190
[ 3213.243025][    C0]  ? mark_lock+0x94/0x320
[ 3213.247387][    C0]  ? preempt_schedule_irq+0xa6/0x150
[ 3213.252709][    C0]  preempt_schedule_irq+0xb1/0x150
[ 3213.257847][    C0]  ? __cond_resched+0xb0/0xb0
[ 3213.262555][    C0]  ? rcu_is_watching+0x11/0xa0
[ 3213.267414][    C0]  ? rcu_irq_exit_check_preempt+0xdb/0x200
[ 3213.273246][    C0]  irqentry_exit+0x63/0x70
[ 3213.277705][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 3213.283887][    C0] RIP: 0010:lock_acquire+0x1f2/0x3f0
[ 3213.289219][    C0] Code: 00 9c 8f 84 24 80 00 00 00 f6 84 24 81 00 00 00 02 0f 85 f6 00 00 00 41 f7 c6 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 44 3d 00 00 00 00 00 66 43 c7 44 3d 09 00 00 43 c6 44 3d 0b
[ 3213.308952][    C0] RSP: 0018:ffffc9000327f900 EFLAGS: 00000206
[ 3213.315065][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: 225d4613ad988400
[ 3213.323076][    C0] RDX: 0000000000000000 RSI: ffffffff8a0b2f00 RDI: ffffffff8a59e580
[ 3213.331098][    C0] RBP: ffffc9000327fa20 R08: dffffc0000000000 R09: fffffbfff1ff7c19
[ 3213.339098][    C0] R10: fffffbfff1ff7c19 R11: 1ffffffff1ff7c18 R12: ffffffff8c11c760
[ 3213.347098][    C0] R13: 1ffff9200064ff2c R14: 0000000000000246 R15: dffffc0000000000
[ 3213.355124][    C0]  ? rcu_lock_release+0x5/0x20
[ 3213.360030][    C0]  ? read_lock_is_recursive+0x10/0x10
[ 3213.365600][    C0]  ? __lock_acquire+0x7c60/0x7c60
[ 3213.370699][    C0]  rcu_lock_acquire+0x2a/0x30
[ 3213.375421][    C0]  ? rcu_lock_acquire+0x5/0x30
[ 3213.380219][    C0]  inet_twsk_purge+0x119/0x810
[ 3213.385034][    C0]  ? __inet_twsk_schedule+0x130/0x130
[ 3213.390439][    C0]  ? iput+0x706/0x8a0
[ 3213.394545][    C0]  ? dccp_v4_exit_net+0x80/0x80
[ 3213.399470][    C0]  cleanup_net+0x77b/0xb80
[ 3213.403921][    C0]  ? ops_free_list+0x330/0x330
[ 3213.408712][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 3213.414633][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 3213.419514][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 3213.424744][    C0]  process_one_work+0x863/0x1000
[ 3213.429795][    C0]  ? worker_detach_from_pool+0x240/0x240
[ 3213.435458][    C0]  ? lockdep_hardirqs_off+0x70/0x100
[ 3213.440772][    C0]  ? _raw_spin_lock_irq+0xab/0xe0
[ 3213.445827][    C0]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[ 3213.451227][    C0]  ? wq_worker_running+0x97/0x170
[ 3213.456276][    C0]  worker_thread+0xaa8/0x12a0
[ 3213.461014][    C0]  kthread+0x436/0x520
[ 3213.465181][    C0]  ? rcu_lock_release+0x20/0x20
[ 3213.470053][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 3213.474670][    C0]  ret_from_fork+0x1f/0x30
[ 3213.479189][    C0]  </TASK>
[ 3213.482226][    C0] rcu: rcu_preempt kthread starved for 10523 jiffies! g548669 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=0
[ 3213.493530][    C0] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[ 3213.503514][    C0] rcu: RCU grace-period kthread stack dump:
[ 3213.509416][    C0] task:rcu_preempt     state:R  running task     stack:27880 pid:   15 ppid:     2 flags:0x00004000
[ 3213.520223][    C0] Call Trace:
[ 3213.523517][    C0]  <TASK>
[ 3213.526473][    C0]  __schedule+0x11bb/0x4390
[ 3213.531011][    C0]  ? _raw_spin_lock_irqsave+0x7f/0xf0
[ 3213.536411][    C0]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[ 3213.542332][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 3213.548247][    C0]  ? _raw_spin_unlock+0x40/0x40
[ 3213.553125][    C0]  ? rcu_is_watching+0x11/0xa0
[ 3213.558041][    C0]  ? release_firmware_map_entry+0x190/0x190
[ 3213.564124][    C0]  schedule+0x11b/0x1e0
[ 3213.568431][    C0]  schedule_timeout+0x15c/0x280
[ 3213.573328][    C0]  ? console_conditional_schedule+0x40/0x40
[ 3213.579264][    C0]  ? _raw_spin_unlock_irqrestore+0x82/0x100
[ 3213.585193][    C0]  ? update_process_times+0x200/0x200
[ 3213.590688][    C0]  ? prepare_to_swait_event+0x331/0x350
[ 3213.596267][    C0]  rcu_gp_fqs_loop+0x29e/0x11b0
[ 3213.601151][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 3213.606386][    C0]  ? dyntick_save_progress_counter+0x230/0x230
[ 3213.612576][    C0]  ? rcu_gp_init+0x10e0/0x10e0
[ 3213.617455][    C0]  ? _raw_spin_unlock_irq+0x1f/0x40
[ 3213.622705][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[ 3213.627959][    C0]  rcu_gp_kthread+0x98/0x350
[ 3213.632592][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 3213.637740][    C0]  ? _raw_spin_unlock_irqrestore+0xaa/0x100
[ 3213.643672][    C0]  ? __kthread_parkme+0x157/0x1b0
[ 3213.648732][    C0]  kthread+0x436/0x520
[ 3213.652825][    C0]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[ 3213.657961][    C0]  ? kthread_blkcg+0xd0/0xd0
[ 3213.662576][    C0]  ret_from_fork+0x1f/0x30
[ 3213.667032][    C0]  </TASK>
[ 3213.670068][    C0] rcu: Stack dump where RCU GP kthread last ran:
[ 3213.676420][    C0] NMI backtrace for cpu 0
[ 3213.680769][    C0] CPU: 0 PID: 3835 Comm: syz.1.27474 Not tainted syzkaller #0
[ 3213.688251][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 3213.698325][    C0] Call Trace:
[ 3213.701639][    C0]  <IRQ>
[ 3213.704509][    C0]  dump_stack_lvl+0x168/0x230
[ 3213.709370][    C0]  ? show_regs_print_info+0x20/0x20
[ 3213.714611][    C0]  ? load_image+0x3b0/0x3b0
[ 3213.719265][    C0]  ? irq_work_queue+0xbf/0x140
[ 3213.724155][    C0]  nmi_cpu_backtrace+0x397/0x3d0
[ 3213.729147][    C0]  ? nmi_trigger_cpumask_backtrace+0x280/0x280
[ 3213.735328][    C0]  ? _printk+0xcc/0x110
[ 3213.739513][    C0]  ? cpu_online+0x1d/0x30
[ 3213.743871][    C0]  ? load_image+0x3b0/0x3b0
[ 3213.748403][    C0]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[ 3213.754590][    C0]  nmi_trigger_cpumask_backtrace+0x163/0x280
[ 3213.760604][    C0]  rcu_check_gp_kthread_starvation+0x1cd/0x250
[ 3213.766790][    C0]  print_other_cpu_stall+0x10c8/0x1220
[ 3213.772284][    C0]  ? print_cpu_stall+0x5f0/0x5f0
[ 3213.777252][    C0]  ? timekeeping_advance+0x7f6/0xac0
[ 3213.782579][    C0]  rcu_sched_clock_irq+0x831/0x1110
[ 3213.787805][    C0]  ? rcutree_dead_cpu+0x20/0x20
[ 3213.792685][    C0]  ? account_process_tick+0x227/0x3a0
[ 3213.798156][    C0]  update_process_times+0x193/0x200
[ 3213.803413][    C0]  tick_sched_timer+0x37d/0x560
[ 3213.808471][    C0]  __hrtimer_run_queues+0x4fe/0xc40
[ 3213.813727][    C0]  ? tick_setup_sched_timer+0x2c0/0x2c0
[ 3213.819319][    C0]  ? hrtimer_interrupt+0x8d0/0x8d0
[ 3213.824462][    C0]  ? ktime_get_update_offsets_now+0x3ce/0x3e0
[ 3213.830570][    C0]  hrtimer_interrupt+0x3bb/0x8d0
[ 3213.835711][    C0]  __sysvec_apic_timer_interrupt+0x137/0x4a0
[ 3213.841827][    C0]  sysvec_apic_timer_interrupt+0x9b/0xc0
[ 3213.847493][    C0]  </IRQ>
[ 3213.850448][    C0]  <TASK>
[ 3213.853408][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[ 3213.859510][    C0] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40
[ 3213.865343][    C0] Code: f6 ff 0f 1f 00 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 de 9e a9 f7 48 89 df e8 a6 73 aa f7 e8 41 0d cb f7 fb bf 01 00 00 00 <e8> 76 95 9e f7 65 8b 05 07 93 4f 76 85 c0 74 02 5b c3 e8 b4 9d 4d
[ 3213.885132][    C0] RSP: 0018:ffffc9000313fbc0 EFLAGS: 00000282
[ 3213.891241][    C0] RAX: 7a3673b21df7ae00 RBX: ffff888077c55340 RCX: 7a3673b21df7ae00
[ 3213.899242][    C0] RDX: dffffc0000000000 RSI: ffffffff8a0b1c60 RDI: 0000000000000001
[ 3213.907327][    C0] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffed100ef8aa69
[ 3213.915322][    C0] R10: ffffed100ef8aa69 R11: 1ffff1100ef8aa68 R12: ffff888077c55340
[ 3213.923318][    C0] R13: 0000000000000021 R14: dffffc0000000000 R15: 000000001c000004
[ 3213.931421][    C0]  get_signal+0x11d6/0x12c0
[ 3213.936073][    C0]  arch_do_signal_or_restart+0xc1/0x1300
[ 3213.941799][    C0]  ? _copy_from_user+0x111/0x170
[ 3213.946779][    C0]  ? __ia32_sys_rt_sigreturn+0x660/0x790
[ 3213.952450][    C0]  ? load_gs_index+0x120/0x120
[ 3213.957247][    C0]  ? get_sigframe_size+0x10/0x10
[ 3213.962232][    C0]  ? exit_to_user_mode_loop+0x3b/0x130
[ 3213.967727][    C0]  exit_to_user_mode_loop+0x9e/0x130
[ 3213.973039][    C0]  exit_to_user_mode_prepare+0xee/0x180
[ 3213.978614][    C0]  syscall_exit_to_user_mode+0x16/0x40
[ 3213.984101][    C0]  do_syscall_64+0x58/0xa0
[ 3213.988545][    C0]  ? clear_bhb_loop+0x30/0x80
[ 3213.993243][    C0]  ? clear_bhb_loop+0x30/0x80
[ 3213.997944][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 3214.003859][    C0] RIP: 0033:0x7f4ed820e6c7
[ 3214.008303][    C0] Code: ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 <0f> 05 48 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89
[ 3214.027949][    C0] RSP: 002b:00007f4ed6475038 EFLAGS: 00000246
[ 3214.034047][    C0] RAX: 0000000000000049 RBX: 00007f4ed8464fa0 RCX: 00007f4ed820e6c9
[ 3214.042044][    C0] RDX: 0000000000000000 RSI: 0000000000000002 RDI: 0000000000000005
[ 3214.050037][    C0] RBP: 00007f4ed8290f91 R08: 0000000000000000 R09: 0000000000000000
[ 3214.058043][    C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 3214.066052][    C0] R13: 00007f4ed8465038 R14: 00007f4ed8464fa0 R15: 00007ffd6043f028
[ 3214.074072][    C0]  </TASK>