last executing test programs:

41.466280825s ago: executing program 2 (id=354):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
ioctl$EVIOCGMASK(r3, 0x40084502, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x19, 0x0, &(0x7f0000000100))

40.195755489s ago: executing program 2 (id=356):
syz_emit_ethernet(0xa6, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x70, 0x3a, 0x0, @local, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, [{0x0, 0xa, "bd3e6d4706598080a80300378927fc503b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af0302"}, {0x0, 0x1, "000000050000000026000400"}]}}}}}}, 0x0)

40.06518118s ago: executing program 2 (id=357):
r0 = socket$inet6(0xa, 0x80002, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x200c8004, &(0x7f0000000280)={0xa, 0xe20, 0x0, @remote}, 0x1c)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)=@updpolicy={0xb8, 0x19, 0x1, 0x0, 0x0, {{@in=@multicast1, @in6=@private1, 0x0, 0x0, 0x0, 0x0, 0xa}, {}, {}, 0x0, 0x0, 0x1, 0x1}}, 0xb8}}, 0x0)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
setsockopt$inet6_udp_int(r0, 0x88, 0x1, &(0x7f0000000080), 0x4)

39.910712223s ago: executing program 2 (id=359):
syz_mount_image$xfs(&(0x7f0000000040), &(0x7f0000009840)='./file0\x00', 0x0, &(0x7f0000000000), 0x11, 0x991b, &(0x7f0000009880)="$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")
socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_AUTO_ASCONF(0xffffffffffffffff, 0x84, 0x1e, &(0x7f00000000c0)=0x800, 0x4)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
sendmsg$nl_route(0xffffffffffffffff, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
setxattr$trusted_overlay_upper(0x0, &(0x7f0000000280), &(0x7f0000000d40)=ANY=[], 0xff68, 0x0)
r0 = open(&(0x7f0000000300)='./file0\x00', 0x0, 0x0)
fsetxattr$trusted_overlay_redirect(r0, &(0x7f0000000040), 0x0, 0x0, 0x0)
open(&(0x7f0000000180)='./file2\x00', 0x0, 0x0)
chmod(&(0x7f0000000040)='./file2\x00', 0x0)

36.407544831s ago: executing program 2 (id=370):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080))
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
r3 = syz_open_dev$evdev(&(0x7f0000000180), 0x0, 0x0)
ioctl$EVIOCGMASK(r3, 0x40084502, 0x0)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)
syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getsockopt$inet_buf(0xffffffffffffffff, 0x0, 0x19, 0x0, &(0x7f0000000100))

31.265644063s ago: executing program 2 (id=381):
prctl$PR_SCHED_CORE(0x3e, 0x0, 0x0, 0x2, 0x0)
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb(cipher_null)\x00'}, 0x58)
r1 = accept4(r0, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000005c0)=[{{0x0, 0xfffffffffffffea3, 0x0}}], 0x3ffffffffffff62, 0x0, 0x0)
readv(0xffffffffffffffff, 0x0, 0x0)
openat$hwrng(0xffffffffffffff9c, 0x0, 0x0, 0x0)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
rename(&(0x7f0000000300)='./control/file0\x00', 0x0)
socket$alg(0x26, 0x5, 0x0)

15.354634039s ago: executing program 3 (id=409):
r0 = socket$inet6(0xa, 0x80002, 0x0)
sendto$inet6(r0, 0x0, 0x0, 0x200c8004, &(0x7f0000000280)={0xa, 0xe20, 0x0, @remote}, 0x1c)
socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$inet6_udp_int(r0, 0x88, 0x1, &(0x7f0000000080), 0x4)

15.174556314s ago: executing program 3 (id=411):
setregid(0x0, 0xee00)
setregid(0x0, 0x0)
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x2c)
r1 = socket$inet6(0xa, 0x3, 0x87)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in=@local, @in=@multicast1}}, {{@in=@empty}, 0x0, @in6=@loopback}}, 0xe8)
socket$packet(0x11, 0x0, 0x300)
socket$packet(0x11, 0x0, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$nl_route(0x10, 0x3, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
prctl$PR_SET_MM(0x23, 0x8, &(0x7f0000001000/0x4000)=nil)
r5 = inotify_init1(0x0)
fcntl$setown(r5, 0x8, 0xffffffffffffffff)
fcntl$getownex(r5, 0x10, &(0x7f0000000040)={0x0, <r6=>0x0})
ptrace$setopts(0x4206, r6, 0x0, 0x0)

8.463930955s ago: executing program 3 (id=422):
syz_mount_image$iso9660(&(0x7f0000000140), &(0x7f0000002380)='mnt\x00', 0x3a0c412, &(0x7f0000000840)=ANY=[@ANYBLOB="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"/334], 0xff, 0x9be, &(0x7f0000000e00)="$eJzs3c1vXOW9B/Dv8Uvia1AIkMvNRUAm4QYM5Dq2U0IjNk3scTLUL5XtSERVRShJqihWqaCVAHWRSlVXRe2i6oLuWHaFxAY2VXbtX9BFpYp/AXUVddGpzplxbGOPx079Rvh8rOM5L7/zPL/H5/g88vHMecLXWbPZrKb7XL78x91Mlv3nwsQXH3/yYTn94nYOpDcvF58lA0lqSV+So0n/+MTc7HSXgm4lV5PcSYokB9N63ZSrKX6Th5eX76T4Q1lv5fJ9NoxNafKNttfnHwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA7EfF+MTIyGiRqcbM5ddrnVVDgHfa2LNc3ufVqN/F513rTYpyysDA0lDfR48sb36i/HYiT7WWnqoGJM9APnjoicOvPt7Xs7T/Bglvxb/agyFvecd33//g1puLi9ff2aZEvm4u1mca87ON6fMX67XG/Gzt3NmzI6cvTc7XJhtT9fkr8wv16dr4XP38wuxcbWj8hdrouXNnavXhK7OXZy5ODE/Vl1a+8v9jIyNna68Nf69+fm5+dub0a8Pz45caU1ONmYtVTLm5jHmlPBG/21ioLdTPT9dqN24uXj+zKqN1TokyaLRbS8qgsW5BYyNjY6OjY2OjZ18+9/IrIyN9yyt6U60Y+Yqs2eXeSVue0Vv5WbOvfdSz2cjtvYDDf6Cn3f9nKo3M5HJeT23dr/FMZC6zme6wvW2p/z95ur5hvSv7/6Ve/ujy5idT9f/PtJae6dT/d8hl977ezfv5ILfyZhazmOt5Z9XWg/dRYrO5963a/NfF1DOTRuYzm0amc75aU2uvqeVczuZsRvJGLmUy86llMo1MpZ75XMl8FlKvzqjxzKWe81noKw90LUMZzwupZTTnci5nUks9w7mS2VzOTC5mIuerUm7kZvVzP7NBjveCRjcTNLZB0Ab9f3vFFvp/vqF24CoO96fZ7v8PdA8dGt+NhAAAAIBt979/yaEjj/3570l/nq7usQMAAAAPmurtek+VL/3l3NMpJhtT9ZG9TgsAAADYRkX1GbsiyWCOteaWPgnlJgAAAAA8IKr//z9TvgyWc8dS+PsfAAAAHjTdn7HfNaI4lVpul5tq11qR19oR7ef8Dk42purD47NTr47mueopA9UnDdaU1pvDSfXxgxdzvBV1fLD1Ori6xIEyanT41dEM5ES7IUPPli/PDq0TOVZGvpjnW5HPL0UOZE3kmTISAB50Jzbojzfb/7+YU62IU09Wj2/ve3KdPnhEzwoA+0X3MXa6RhTfWhr+p8Pf/4/lxrHWWwqG81bezmKu5VT1aYPqHQftUnOnyHKpgyvehnCqy92AwRUjvJxauh9w7OF17wcMrhjo5dSaOwKdYs/swpEAgN1zYk0/vEH/32y25tbc/9/47/9BbykEgH3l3gj2Oziz120EAFa7r166dwcTAgAAAAAAAAAAAAAAAAAAAAAAAAAAgAfAbjz/f1/O3E6yD9Iws7MzA7tzhv/gQLJfmrxNM3t9ZQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGA3FEnveut7koNJ30iS07uf1c65vdcJ7LHibu7mvRza6zwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB407ef/96T1+lBrVfp6kpNJrib5/l7nuJ3u7nUCe2zF8//LY55mkb7WYU/RPz4xNztdHv4cLLd/8fEnH5bT/dRTFlDWsGpwiXYNnfd6tNprcOL6u7d++vZPahMXqiQvLExOTUxfnPvOcuATxadJLa1pyVK+Py/aZ/Hqln9atnRz9U5W9U6srfd/1tv7Xr0n//Tbzm1btpzGzcXrY2VNC/XXF37245vvrQh6LMeTZ4eSodU1/aicOtR0PP0b1Vt8WfyqOJTf52p1/Ms0imZRHqJHqvb/142bi9eH33p78VqHnA7nWJJrycDmczq29kgsqc66nv6y1pEqqPx2pEt5G3qo91Cz2SpxtEMbHq1OmcEttaHWuQ2VLj/3dhvPdMjo8Ty35SP9XJca2/7ZbGktFV8Wfysu5a/55YrxP3rK438ym/ntLGOqyBVnSuc2n1xu+djKDW98NbLjbyU74Nf5Yb597/j3rLj+t4/V7lyPVtS4Y78XRasXaqvmj3ylR2pffTpl2c7zSCuqQ57/nZfW7tclz5e6XFG26fd/teLL4qNiKP/IbeP/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+1+R9K63vic5meRwkkfK5VrS3I76egaL7Shmkw6sWXN7F2vfP3ruzRV3czfv5dCepgMAAAAAAADAtrkw8cXHn3xYTtX/43vzf8VnyUDrP/19SQ4Xv+sfn5ibne5SUH9yNcmdcn5gazmU++Xh5eU75dLRrbcFANicfwcAAP//U9R2+g==")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
r1 = fanotify_init(0x202, 0x0)
fanotify_mark(r1, 0x1, 0x800003f, r0, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x10e, &(0x7f0000000280)={[{@errors_remount}, {@nodelalloc}, {@usrjquota_path={'usrjquota', 0x3d, './file1'}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x10000}}, {@block_validity}, {@quota}]}, 0x3, 0x44d, &(0x7f0000000a40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x0, 0x0)
unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200)

8.028809051s ago: executing program 3 (id=423):
r0 = socket$packet(0x11, 0x0, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCL_SETSEL(r4, 0x5424, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000003100)=@gcm_128={{0x303}, "0400", "0d07080d004fcf0000e8ffff1a8600", "cf0d00", "865703b7e43b34e4"}, 0x28)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000001300), 0x8f)
close(0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x6, 0x2a7, &(0x7f00000011c0)="$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")
r5 = creat(&(0x7f0000000980)='./file1\x00', 0x0)
ftruncate(r5, 0x4)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)

6.840200288s ago: executing program 3 (id=424):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0xb8, 0xc0, 0x7d, 0x40, 0xc45, 0x8001, 0x900a, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x80, 0x82, 0x99}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000740)={0x44, &(0x7f00000001c0)={0x0, 0x0, 0x1, "7f"}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

6.648793004s ago: executing program 4 (id=426):
syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000180)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0, &(0x7f0000000200)={[{@type={'type', 0x3d, "fcffffff"}}, {@nodecompose}, {@creator={'creator', 0x3d, "bd3c66f5"}}, {@nls={'nls', 0x3d, 'iso8859-1'}}, {@umask={'umask', 0x3d, 0x100}}, {@session={'session', 0x3d, 0xfffffffffffffffe}}]}, 0x3, 0x6a4, &(0x7f0000000e00)="$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")
llistxattr(&(0x7f0000000100)='./file1\x00', &(0x7f0000000140)=""/162, 0xa2)

6.600757408s ago: executing program 0 (id=427):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x4801})
write$cgroup_devices(r0, &(0x7f0000000100)=ANY=[@ANYBLOB="65217d09d9034073d38b7aaf"], 0xffdd)

6.519895085s ago: executing program 4 (id=428):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_io_uring_submit(0x0, 0x0, 0x0)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x2, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0}, 0x4d)

6.220067759s ago: executing program 0 (id=429):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x0, 0x30}, 0xc)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f00000004c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r0, &(0x7f0000000480)=[{&(0x7f0000000280)="e0", 0x1}], 0x1)
sendto$inet6(r0, 0x0, 0x0, 0x0, 0x0, 0x0)

5.380886928s ago: executing program 4 (id=430):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f00000003c0)={0x2, 0x0, {0x0, 0x2, 0x0}}, 0x48)

5.317812693s ago: executing program 4 (id=431):
syz_emit_ethernet(0x9a, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x64, 0x3a, 0xff, @local, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, [{0x0, 0xa, "bd3e6d4706598080a80300378927fc503b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af0302"}, {}]}}}}}}, 0x0)

5.215405892s ago: executing program 4 (id=432):
syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000000)={[{@jqfmt_vfsv0}, {@errors_remount}]}, 0x1, 0x784, &(0x7f00000007c0)="$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")
r0 = creat(&(0x7f0000000300)='./bus\x00', 0x0)
r1 = open(&(0x7f0000000400)='./bus\x00', 0x16543e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x11, r1, 0x0)
ftruncate(r1, 0x7fff)
fcntl$setstatus(r0, 0x4, 0x6800)
io_setup(0x7f, &(0x7f0000000100)=<r2=>0x0)
fsopen(&(0x7f0000000040)='ramfs\x00', 0x0)
io_submit(r2, 0x2, &(0x7f0000000380)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f00000001c0)="7f", 0x1}, &(0x7f0000000180)={0x0, 0x0, 0x3, 0x0, 0x0, 0xffffffffffffffff, 0x0}])

5.079905603s ago: executing program 0 (id=433):
r0 = socket$packet(0x11, 0x0, 0x300)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00'})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCL_SETSEL(r4, 0x5424, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(0xffffffffffffffff, &(0x7f0000000140)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(0xffffffffffffffff, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000003100)=@gcm_128={{0x303}, "0400", "0d07080d004fcf0000e8ffff1a8600", "cf0d00", "865703b7e43b34e4"}, 0x28)
write$binfmt_script(0xffffffffffffffff, &(0x7f0000001300), 0x8f)
close(0xffffffffffffffff)
socket$nl_route(0x10, 0x3, 0x0)
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000200)='./file0\x00', 0x0, &(0x7f0000000700)=ANY=[@ANYBLOB="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"], 0x6, 0x2a7, &(0x7f00000011c0)="$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")
r5 = creat(&(0x7f0000000980)='./file1\x00', 0x0)
ftruncate(r5, 0x4)
r6 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r7 = ioctl$KVM_CREATE_VM(r6, 0xae01, 0x0)
ioctl$KVM_CREATE_VCPU(r7, 0xae41, 0x0)

4.612146671s ago: executing program 3 (id=434):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00:H', @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000280)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
getrlimit(0x0, &(0x7f0000000340))
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@bloom_filter={0x1e, 0x7fff, 0x8, 0xff, 0x800, 0xffffffffffffffff, 0x80000005, '\x00', 0x0, 0xffffffffffffffff, 0x2, 0x1, 0x0, 0xd}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00'}, 0x10)
unshare(0x22020600)
r3 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TUNSETIFF(r3, 0x400454ca, &(0x7f0000000180)={'syzkaller0\x00', 0x7101})
r4 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
close(r5)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000200))
ioctl$SIOCSIFHWADDR(r5, 0x8914, &(0x7f00000000c0)={'syzkaller0\x00', @broadcast})
close(r4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000000))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5}, 0x48)
ioctl$SIOCSIFHWADDR(r4, 0x8943, &(0x7f0000002280)={'syzkaller0\x00'})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000300)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0xffffffcc)
close(r3)

3.580120326s ago: executing program 0 (id=435):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
getpid()
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000180))
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0x0, &(0x7f0000000540)=0x6, 0x4)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x0, 0x800000000004, @thr={0x0, &(0x7f00000003c0)}}, 0x0)
ioctl$TCSETSF(r1, 0x5409, 0x0)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)

3.103993715s ago: executing program 4 (id=436):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r3=>0x0})
sendmsg$NL80211_CMD_FRAME(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x2d0, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r3}, @void}}, [@NL80211_ATTR_FRAME={0x2b3, 0x33, @beacon={{{}, {}, @device_b, @device_b}, 0x0, @random, 0x0, @void, @val={0x1, 0xf}, @val={0x3, 0x1}, @void, @void, @val={0x5, 0x3}, @void, @void, @val={0x3c, 0x4}, @void, @void, @void, @val={0x76, 0x6}, [{0xdd, 0xb7, "31851c27f0515dccb7554d54162c7b9db37edff2415d5589b53027d4db2f9527a9858f2910b19c7737136d933c4cb8b186a2cb77d33dc186120309d0107aae1822ca939dc88880a147e71f89f5936e8d68041d7e8bcc0f1b2831ed25db982a9cd8fcd5160c5cdc0cbe25dce28dc9925779fc4799284de17406d9ac3b5e35515e37ca5568297e0d3e19d80a5d5addb3184fec9543e41f70eb1bcd9a87da2f4b39e15dca2e549f43749edc5d2150d9349f08894e39ac26f6"}, {0xdd, 0xba, "1cb11f4c9767b25df19d1cb86cc9f4059996ff0021375555251d74cf6f777d24ac2b13bbd9b9d6f27b608e3a58d27ba7b7e16a8e13f0d8f288fa3e9a5e6c9ba0bd7028c0866f7cec56d3e0ae5cb3c8963c4d6e991fbd1547b046152bed86b40dc529d6663ed96a2f54759ca9fd4841407c6fb63f588fed1344890b04c3914826eaa5b022f53aa9fb6bffaa0370be496fc201cd5b33db589eb87730dee906175a89a626342c521f0b18b5cb5ed9de356bf155e503ca39d841b335"}, {0xdd, 0x25, "523a4aa23e4123ca5c555c2b2bf412911511b4b39a758f6e3a496d64414c19f01ba62cf366"}, {0xdd, 0x12, "0941a0e096d40b7d3b60bec79aa8aaa3f566"}, {0xdd, 0x3f, "7b1f666daa2c5732ac642cd918aea5ee68d9287e589b7d5326dd3b2bfb9e3d1679ee7c57f9ddfe7cc6179e25076e5fbf36bd5882a567a92f5c2ba4e5d1fe2e"}, {0xdd, 0xb, "0da71e815422994325dfec"}, {0xdd, 0x6b, "30d8ac98fdedffdf2ad390d8c532101bdebf905f4f96a12b5400578c02f802cac6cedd077c38a52b4fb790de3ab2c28eed8f45baef37217a654a07159fd6efe9fc5a4effdb0327c0802a3a873e92979e62ab34d31a748ae171a86d656075c5a8c88eaba15c64afa0d2a1d2"}, {0xdd, 0x6, "4f3fef835ea8"}]}}]}, 0x2d0}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, 0xffffffffffffffff)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
r4 = socket$inet6(0x10, 0xe05d87ebd695c50d, 0x0)
write(r4, &(0x7f0000000040)="2400000021002551241c0165ff00fc020200000000100f000ee1000c080018000000", 0x22)
r5 = socket$nl_route(0x10, 0x3, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f00000001c0), 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000003680)='sched_switch\x00'}, 0x10)
r6 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_QUERY_NEXT_CLIENT(r6, 0xc05c5340, &(0x7f0000000040)={0x10000, 0x0, 'client1\x00', 0x0, "76cb0941581ecb5c", "b78e5a1a0c03c11493b719e79493c3e1e7285e1cd3b9cc02f1ae8dcd2dc1b8c2"})
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r7 = getpid()
sched_setscheduler(r7, 0x2, &(0x7f0000000200)=0x4)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
sched_setscheduler(0x0, 0x1, &(0x7f00000000c0)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r8=>0xffffffffffffffff, <r9=>0xffffffffffffffff})
connect$unix(r8, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r9, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r8, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r10 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r10, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={0x0, 0x28}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000029c0))
sendmsg$nl_route_sched(r5, &(0x7f00000005c0)={0x0, 0x7, &(0x7f0000000300)={&(0x7f0000005b80)=@delchain={0x24, 0x26, 0xf31}, 0x24}}, 0x0)

1.864671267s ago: executing program 0 (id=439):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r0 = ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r1 = dup(r0)
ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket$inet_mptcp(0x2, 0x1, 0x106)
syz_io_uring_submit(0x0, 0x0, 0x0)
getsockopt$inet_tcp_buf(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
io_uring_enter(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(0xffffffffffffffff, 0x2, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0}, 0x4d)

1.734348978s ago: executing program 1 (id=440):
r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_FEATURES(r0, 0x4008af00, &(0x7f0000000140)=0x200000000)
write$vhost_msg_v2(r0, &(0x7f00000003c0)={0x2, 0x0, {0x0, 0x2, 0x0}}, 0x48)

1.600843088s ago: executing program 1 (id=441):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
setsockopt$inet_int(r0, 0x0, 0xb, &(0x7f0000000040)=0x3, 0x4)
setsockopt$IP_VS_SO_SET_STARTDAEMON(0xffffffffffffffff, 0x0, 0x1a, 0x0, 0x0)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
connect$inet(r1, &(0x7f0000000080)={0x2, 0x0, @empty}, 0x10)
r2 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r2, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x7a, 0x4)
bind$inet(r2, &(0x7f0000000080)={0x2, 0x4e23, @multicast1}, 0x10)
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000140)={0x1, &(0x7f0000000280)=[{0x6, 0x0, 0x0, 0xe4}]}, 0x10)
sendto$inet(r2, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)
sendmmsg(r2, &(0x7f0000001940)=[{{0x0, 0x0, &(0x7f0000000b40)=[{&(0x7f00000001c0)="bd", 0x1}], 0x1}}], 0x1, 0x0)
syz_emit_ethernet(0x46, &(0x7f0000000000)={@link_local={0x3}, @multicast, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x38, 0x0, 0x0, 0x0, 0x1, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, @time_exceeded={0x3, 0x4, 0x0, 0x12, 0x1, 0x3f18, {0x5, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, @loopback, @loopback}, "00186371ae9b1c03"}}}}}, 0x0)

836.648221ms ago: executing program 0 (id=442):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f00000000c0)={0x0, 0x0, 0x30}, 0xc)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r0, 0x84, 0x7b, &(0x7f0000000100)={0x0, 0x1}, 0x8)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f00000004c0)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
writev(r0, &(0x7f0000000480)=[{&(0x7f0000000280)="e0", 0x1}], 0x1)
sendto$inet6(r0, &(0x7f0000000c80), 0x0, 0x0, 0x0, 0x0)

129.039079ms ago: executing program 1 (id=443):
syz_emit_ethernet(0x9a, &(0x7f0000000000)={@broadcast, @local, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00', 0x64, 0x3a, 0xff, @local, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x11, [{0x0, 0xa, "bd3e6d4706598080a80300378927fc503b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af0302"}, {}]}}}}}}, 0x0)

80.164313ms ago: executing program 1 (id=444):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x1e, &(0x7f0000000080)=0x2, 0x4)

809.4µs ago: executing program 1 (id=445):
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$kcm(0x2, 0x5, 0x84)
setsockopt$sock_attach_bpf(r0, 0x84, 0x7b, 0x0, 0x0)

0s ago: executing program 1 (id=446):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff})
r1 = socket$inet_udp(0x2, 0x2, 0x0)
connect$inet(r1, &(0x7f00000000c0)={0x2, 0x0, @remote}, 0x10)
syz_emit_ethernet(0x32, &(0x7f0000000100)={@link_local, @broadcast, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x24, 0x0, 0x0, 0x0, 0x11, 0x0, @remote, @multicast1}, {0x0, 0x4e20, 0x10, 0x0, @gue={{0x2}}}}}}}, 0x0)
r2 = socket$inet6(0xa, 0x3, 0xff)
syz_emit_ethernet(0x46, &(0x7f00000004c0)=ANY=[@ANYRES16=r0], 0x0)
ioctl$sock_FIOGETOWN(r2, 0x8903, &(0x7f0000000040)=<r3=>0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r3, 0x1, 0x0)
getpgrp(r3)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x0, 0x10, 0xffffffffffffffff, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000080)={0x8, 0x8d}, 0x0)
r4 = getpid()
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x4)
futex(&(0x7f0000001300)=0x80000001, 0x800000000006, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000480)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
prctl$PR_SET_NAME(0xf, &(0x7f0000000000)='l%\x86\xce6\xdb\f\xcf\x19|\xc9O\x7f\xce\x8f\x7f\x1c\xeay\x06\x00\x00\x00\a0\r\x13\xaa\x84r\xd7^\xe82\x0f\x1a\xf1\x02\x00\x1e&{\xee2\x95I\xca\xbevl\x12\xb6 \xd4')
prctl$PR_SET_SECCOMP(0x10, 0x0, 0x0)
timer_create(0x0, &(0x7f0000000680)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0)
signalfd(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(r2, &(0x7f0000000440)={0xa, 0x0, 0x2b, @ipv4={'\x00', '\xff\xff', @remote}, 0x400}, 0x1c)
syz_open_dev$tty1(0xc, 0x4, 0x1)
setresuid(0x0, 0xee01, 0x0)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000100)=@security={'security\x00', 0xe, 0x2, 0x2b0, 0xffffffff, 0x0, 0x1c8, 0xc0, 0xffffffff, 0xffffffff, 0x2a8, 0x2a8, 0x2a8, 0xffffffff, 0x4, 0x0, {[{{@uncond, 0x0, 0x70, 0x98}, @common=@unspec=@AUDIT={0x28}}, {{@ip={@multicast1, @private, 0x0, 0x0, 'veth1_to_team\x00', 'veth0\x00'}, 0x0, 0x70, 0xd0}, @common=@SET={0x60}}, {{@ip={@local, @private, 0x0, 0x0, 'team0\x00', 'wlan0\x00'}, 0x0, 0x70, 0xb0}, @common=@unspec=@ERROR={0x40, 'ERROR\x00', 0x0, "90617ae6e2ad43980c3bec242f9040a700efba1f7ef6f77096db813f042b"}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x310)
getitimer(0xe, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB="1800010000000000000000000000000085000000000000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r5 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000000100), 0x0, 0x0)
ioctl$PTP_CLOCK_GETCAPS(r5, 0x43403d0e, 0x0)

kernel console output (not intermixed with test programs):

:50:50:50:50
[   74.656119][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   74.748787][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.758172][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.789536][ T3595] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   74.856081][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.864086][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.949684][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   74.954259][ T3580] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   74.954315][ T3580] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   74.965682][ T3564] Bluetooth: hci3: command tx timeout
[   74.965701][ T3562] Bluetooth: hci2: command tx timeout
[   74.965751][ T3562] Bluetooth: hci1: command tx timeout
[   74.965754][ T3564] Bluetooth: hci0: command tx timeout
[   74.966727][  T152] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   75.032579][ T3580] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.032637][ T3580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.046518][ T3559] Bluetooth: hci4: command tx timeout
[   75.090899][  T152] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   75.109514][ T3580] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.177525][ T3651] netlink: 64 bytes leftover after parsing attributes in process `syz.1.13'.
[   75.200759][ T3580] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.247883][ T3631] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   75.324085][ T3654] loop2: detected capacity change from 0 to 2048
[   75.507078][ T3654] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[   75.620488][ T3667] loop3: detected capacity change from 0 to 2048
[   75.689198][ T3554] EXT4-fs (loop2): unmounting filesystem.
[   75.723645][   T27] audit: type=1326 audit(1720069467.803:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3674 comm="syz.4.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[   75.749917][ T3667] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   75.881926][   T27] audit: type=1326 audit(1720069467.823:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3674 comm="syz.4.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[   76.000556][   T27] audit: type=1326 audit(1720069467.823:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3674 comm="syz.4.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[   76.031825][ T3695] bond0: (slave bond_slave_0): Releasing backup interface
[   76.075823][ T3555] EXT4-fs (loop3): unmounting filesystem.
[   76.140254][   T27] audit: type=1326 audit(1720069467.823:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3674 comm="syz.4.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[   76.255628][   T27] audit: type=1326 audit(1720069467.823:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3674 comm="syz.4.18" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[   76.643733][   T27] audit: type=1326 audit(1720069468.723:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3715 comm="syz.1.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c51f75bd9 code=0x7ffc0000
[   76.783231][ T3722] loop3: detected capacity change from 0 to 2048
[   76.803166][   T27] audit: type=1326 audit(1720069468.723:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3715 comm="syz.1.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f3c51f75bd9 code=0x7ffc0000
[   76.900428][ T3722] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   76.948150][   T27] audit: type=1326 audit(1720069468.723:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3715 comm="syz.1.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c51f75bd9 code=0x7ffc0000
[   77.039617][   T27] audit: type=1326 audit(1720069468.723:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3715 comm="syz.1.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f3c51f75bd9 code=0x7ffc0000
[   77.088547][ T3727] loop0: detected capacity change from 0 to 4096
[   77.096293][   T27] audit: type=1326 audit(1720069468.723:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3715 comm="syz.1.35" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3c51f75bd9 code=0x7ffc0000
[   77.137413][ T3727] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[   77.216706][    T9] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   77.296269][    T9] EXT4-fs (loop3): Remounting filesystem read-only
[   77.306560][ T3727] ntfs3: loop0: Failed to load $Extend.
[   77.359896][ T3555] EXT4-fs (loop3): unmounting filesystem.
[   77.624806][ T3746] bond0: (slave bond_slave_0): Releasing backup interface
[   78.121459][ T3759] loop0: detected capacity change from 0 to 2048
[   78.201593][ T3759] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   78.338201][ T3580] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   78.363507][ T3773] loop4: detected capacity change from 0 to 512
[   78.369875][ T3580] EXT4-fs (loop0): Remounting filesystem read-only
[   78.400109][ T3773] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.57: attempt to clear invalid blocks 2 len 1
[   78.433822][ T3549] EXT4-fs (loop0): unmounting filesystem.
[   78.434503][ T3773] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   78.457181][ T3773] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.57: invalid indirect mapped block 1819239214 (level 0)
[   78.472190][ T3773] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.57: invalid indirect mapped block 1819239214 (level 1)
[   78.497200][ T3773] EXT4-fs (loop4): 1 truncate cleaned up
[   78.502927][ T3773] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   78.567229][ T3776] atomic_op ffff88801eb72998 conn xmit_atomic 0000000000000000
[   78.663389][ T3560] EXT4-fs (loop4): unmounting filesystem.
[   78.683418][ T3780] loop3: detected capacity change from 0 to 512
[   78.788133][ T3780] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[   78.809734][ T3780] ext4 filesystem being mounted at /9/bus supports timestamps until 2038 (0x7fffffff)
[   79.012133][ T3782] loop1: detected capacity change from 0 to 4096
[   79.102278][ T3782] ntfs3: loop1: Different NTFS' sector size (2048) and media sector size (512)
[   79.224448][ T3782] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[   79.458234][ T3553] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[   79.563369][ T3555] EXT4-fs (loop3): unmounting filesystem.
[   79.570767][ T3778] loop0: detected capacity change from 0 to 32768
[   79.759138][ T3778] XFS (loop0): Mounting V5 Filesystem
[   79.776824][ T3811] loop3: detected capacity change from 0 to 2048
[   79.872923][ T3811] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   79.874234][ T3778] XFS (loop0): Ending clean mount
[   79.902955][ T3596] XFS (loop0): Metadata CRC error detected at xfs_agfl_read_verify+0x1ca/0x290, xfs_agfl block 0x3 
[   79.919691][ T3596] XFS (loop0): Unmount and run xfs_repair
[   79.941125][ T3596] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[   79.949870][ T3596] 00000000: 58 41 46 4c 00 00 00 00 00 00 00 00 00 00 80 86  XAFL............
[   79.968305][ T3596] 00000010: af d4 a8 f7 47 a7 4b ab 00 00 00 00 00 00 00 00  ....G.K.........
[   79.979180][ T3596] 00000020: 5e fe 9e 73 ff ff ff ff 00 00 02 0a 00 00 02 0b  ^..s............
[   79.992967][ T3596] 00000030: 00 00 02 0c 00 00 02 0d 00 00 02 0e 00 00 02 0f  ................
[   80.037293][ T3596] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   80.050419][ T3596] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   80.064898][ T3596] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   80.069438][ T3819] loop4: detected capacity change from 0 to 512
[   80.074375][   T56] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   80.120573][ T3596] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   80.130705][   T56] EXT4-fs (loop3): Remounting filesystem read-only
[   80.146329][ T3778] XFS (loop0): metadata I/O error in "xfs_alloc_read_agfl+0x250/0x430" at daddr 0x3 len 1 error 74
[   80.175950][ T3819] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.72: attempt to clear invalid blocks 2 len 1
[   80.211326][ T3778] XFS (loop0): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[   80.216858][ T3555] EXT4-fs (loop3): unmounting filesystem.
[   80.227538][ T3778] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[   80.238065][ T3819] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[   80.297480][ T3819] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.72: invalid indirect mapped block 1819239214 (level 0)
[   80.359802][ T3549] XFS (loop0): Unmounting Filesystem
[   80.366320][ T3819] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.72: invalid indirect mapped block 1819239214 (level 1)
[   80.418218][ T3819] EXT4-fs (loop4): 1 truncate cleaned up
[   80.435376][ T3819] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[   80.568611][ T3560] EXT4-fs (loop4): unmounting filesystem.
[   81.005923][ T3838] loop4: detected capacity change from 0 to 512
[   81.074861][ T3838] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   81.092511][ T3842] loop0: detected capacity change from 0 to 4096
[   81.099415][ T3838] ext4 filesystem being mounted at /20/bus supports timestamps until 2038 (0x7fffffff)
[   81.123360][ T3842] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[   81.170238][ T3842] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[   81.467514][ T3549] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[   81.504954][ T3853] loop3: detected capacity change from 0 to 2048
[   81.528213][ T2904] cfg80211: failed to load regulatory.db
[   81.569939][ T3853] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[   81.835302][   T27] kauditd_printk_skb: 10 callbacks suppressed
[   81.835320][   T27] audit: type=1800 audit(1720069473.913:22): pid=3853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.83" name="bus" dev="loop3" ino=18 res=0 errno=0
[   81.891467][ T3560] EXT4-fs (loop4): unmounting filesystem.
[   81.937596][   T27] audit: type=1800 audit(1720069473.963:23): pid=3853 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.83" name="bus" dev="loop3" ino=18 res=0 errno=0
[   82.032632][ T3580] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   82.086033][ T3580] EXT4-fs (loop3): Remounting filesystem read-only
[   82.113299][ T3555] EXT4-fs (loop3): unmounting filesystem.
[   82.264750][ T3878] loop1: detected capacity change from 0 to 1024
[   82.464282][ T3878] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[   82.590217][ T3878] loop1: detected capacity change from 1024 to 0
[   82.616205][    C0] I/O error, dev loop1, sector 32 op 0x0:(READ) flags 0x3000 phys_seg 1 prio class 2
[   82.630008][ T3882] EXT4-fs error (device loop1): ext4_get_inode_loc:4633: inode #12: block 16: comm syz.1.93: unable to read itable block
[   82.636664][    C0] I/O error, dev loop1, sector 46 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.646572][ T3855] loop2: detected capacity change from 0 to 32768
[   82.652719][    C0] I/O error, dev loop1, sector 44 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.668729][    C0] I/O error, dev loop1, sector 42 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.678391][    C0] I/O error, dev loop1, sector 40 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.688050][    C0] I/O error, dev loop1, sector 38 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.697696][    C0] I/O error, dev loop1, sector 36 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.700330][ T3580] loop: Write error at byte offset 9223372036854776831, length 1024.
[   82.707340][    C0] I/O error, dev loop1, sector 34 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.707382][    C0] I/O error, dev loop1, sector 30 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.707413][    C0] I/O error, dev loop1, sector 28 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[   82.747374][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   82.755851][ T3882] EXT4-fs (loop1): I/O error while writing superblock
[   82.791825][ T3855] XFS (loop2): Mounting V5 Filesystem
[   82.919485][ T3553] EXT4-fs error (device loop1): ext4_get_inode_loc:4633: inode #12: block 16: comm syz-executor: unable to read itable block
[   82.981367][ T3855] XFS (loop2): Ending clean mount
[   83.026697][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.049387][ T2904] XFS (loop2): Metadata CRC error detected at xfs_agfl_read_verify+0x1ca/0x290, xfs_agfl block 0x3 
[   83.065293][ T2904] XFS (loop2): Unmount and run xfs_repair
[   83.080808][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   83.089217][ T3553] EXT4-fs (loop1): I/O error while writing superblock
[   83.104200][ T3553] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5868: IO failure
[   83.113012][ T2904] XFS (loop2): First 128 bytes of corrupted metadata buffer:
[   83.135078][ T2904] 00000000: 58 41 46 4c 00 00 00 00 00 00 00 00 00 00 80 86  XAFL............
[   83.149750][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.162404][ T2904] 00000010: af d4 a8 f7 47 a7 4b ab 00 00 00 00 00 00 00 00  ....G.K.........
[   83.173116][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   83.185026][ T3553] EXT4-fs (loop1): I/O error while writing superblock
[   83.191847][ T3553] EXT4-fs error (device loop1): ext4_dirty_inode:6072: inode #12: comm syz-executor: mark_inode_dirty error
[   83.212683][ T2904] 00000020: 5e fe 9e 73 ff ff ff ff 00 00 02 0a 00 00 02 0b  ^..s............
[   83.222127][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.238180][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   83.246874][ T3553] EXT4-fs (loop1): I/O error while writing superblock
[   83.254742][ T2904] 00000030: 00 00 02 0c 00 00 02 0d 00 00 02 0e 00 00 02 0f  ................
[   83.270318][ T3553] EXT4-fs error (device loop1): ext4_get_inode_loc:4633: inode #2: block 6: comm syz-executor: unable to read itable block
[   83.283452][ T2904] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   83.298879][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.308662][ T2904] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   83.315373][ T3901] loop4: detected capacity change from 0 to 512
[   83.322712][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   83.332596][ T3553] EXT4-fs (loop1): I/O error while writing superblock
[   83.346969][ T3553] EXT4-fs error (device loop1) in ext4_reserve_inode_write:5868: IO failure
[   83.360336][ T2904] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   83.372763][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.389864][ T2904] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   83.392833][ T3901] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   83.399593][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   83.416440][ T3553] EXT4-fs (loop1): I/O error while writing superblock
[   83.423232][ T3553] EXT4-fs error (device loop1): ext4_dirty_inode:6072: inode #2: comm syz-executor: mark_inode_dirty error
[   83.428886][ T3898] loop0: detected capacity change from 0 to 4096
[   83.434785][ T3855] XFS (loop2): metadata I/O error in "xfs_alloc_read_agfl+0x250/0x430" at daddr 0x3 len 1 error 74
[   83.442487][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.469434][   T27] audit: type=1800 audit(1720069475.553:24): pid=3897 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.84" name="file2" dev="loop2" ino=1063 res=0 errno=0
[   83.469577][ T3855] XFS (loop2): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[   83.503396][ T3901] ext4 filesystem being mounted at /24/bus supports timestamps until 2038 (0x7fffffff)
[   83.504078][ T3855] XFS (loop2): Please unmount the filesystem and rectify the problem(s)
[   83.524228][    C0] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   83.532821][ T3553] EXT4-fs (loop1): I/O error while writing superblock
[   83.538560][ T3898] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[   83.660286][ T3554] XFS (loop2): Unmounting Filesystem
[   83.738634][ T3724] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4618: inode #12: block 16: comm kworker/u4:6: unable to read itable block
[   83.783455][ T3898] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[   83.820415][    T9] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.840651][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   83.849281][ T3724] EXT4-fs (loop1): I/O error while writing superblock
[   83.891734][ T3724] EXT4-fs error (device loop1): __ext4_get_inode_loc_noinmem:4618: inode #2: block 6: comm kworker/u4:6: unable to read itable block
[   83.969925][ T3549] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[   83.978777][ T3580] loop: Write error at byte offset 9223372036854776831, length 1024.
[   83.991487][    C1] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   84.000054][ T3724] EXT4-fs (loop1): I/O error while writing superblock
[   84.019273][ T3724] loop: Write error at byte offset 9223372036854776831, length 1024.
[   84.053575][    C0] Buffer I/O error on dev loop1, logical block 1, lost sync page write
[   84.237052][ T3906] loop0: detected capacity change from 0 to 2048
[   84.251580][ T3560] EXT4-fs (loop4): unmounting filesystem.
[   84.304037][ T3908] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma?
[   84.313881][ T3906] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   84.331239][   T27] audit: type=1800 audit(1720069476.413:25): pid=3906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.100" name="bus" dev="loop0" ino=18 res=0 errno=0
[   84.416111][   T27] audit: type=1800 audit(1720069476.413:26): pid=3906 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.100" name="bus" dev="loop0" ino=18 res=0 errno=0
[   84.510901][ T3724] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.693523][ T3724] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   84.712964][   T56] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   84.748493][ T3922] loop2: detected capacity change from 0 to 1024
[   84.803082][   T56] EXT4-fs (loop0): Remounting filesystem read-only
[   84.824214][ T3922] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   84.869343][ T3549] EXT4-fs (loop0): unmounting filesystem.
[   84.887422][ T3724] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.053570][ T3922] loop2: detected capacity change from 1024 to 0
[   85.093869][ T3922] EXT4-fs error (device loop2): ext4_get_inode_loc:4633: inode #12: block 16: comm syz.2.105: unable to read itable block
[   85.108081][ T3559] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   85.120282][ T3922] EXT4-fs (loop2): I/O error while writing superblock
[   85.120341][ T3724] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   85.145162][ T3559] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   85.154136][ T3559] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   85.168739][ T3559] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   85.176406][ T3559] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   85.184782][ T3559] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   85.315411][ T3554] EXT4-fs error (device loop2): ext4_get_inode_loc:4633: inode #12: block 16: comm syz-executor: unable to read itable block
[   85.369106][ T3554] EXT4-fs (loop2): I/O error while writing superblock
[   85.391410][ T3554] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5868: IO failure
[   85.457075][ T3554] EXT4-fs (loop2): I/O error while writing superblock
[   85.466521][ T3925] loop4: detected capacity change from 0 to 32768
[   85.478720][ T3554] EXT4-fs error (device loop2): ext4_dirty_inode:6072: inode #12: comm syz-executor: mark_inode_dirty error
[   85.505745][ T3554] EXT4-fs (loop2): I/O error while writing superblock
[   85.528942][ T3554] EXT4-fs error (device loop2): ext4_get_inode_loc:4633: inode #2: block 6: comm syz-executor: unable to read itable block
[   85.596792][ T3554] EXT4-fs (loop2): I/O error while writing superblock
[   85.624887][ T3554] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5868: IO failure
[   85.639150][ T3554] EXT4-fs (loop2): I/O error while writing superblock
[   85.702864][ T3554] EXT4-fs error (device loop2): ext4_dirty_inode:6072: inode #2: comm syz-executor: mark_inode_dirty error
[   85.741730][ T3925] XFS (loop4): Mounting V5 Filesystem
[   85.748505][ T3554] EXT4-fs (loop2): I/O error while writing superblock
[   85.775367][   T11] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4618: inode #12: block 16: comm kworker/u4:1: unable to read itable block
[   85.806265][   T11] EXT4-fs (loop2): I/O error while writing superblock
[   85.860171][   T11] EXT4-fs error (device loop2): __ext4_get_inode_loc_noinmem:4618: inode #2: block 6: comm kworker/u4:1: unable to read itable block
[   85.987847][   T11] EXT4-fs (loop2): I/O error while writing superblock
[   85.996108][ T3925] XFS (loop4): Ending clean mount
[   86.044247][ T3955] loop0: detected capacity change from 0 to 2048
[   86.074220][ T2904] XFS (loop4): Metadata CRC error detected at xfs_agfl_read_verify+0x1ca/0x290, xfs_agfl block 0x3 
[   86.117359][ T2904] XFS (loop4): Unmount and run xfs_repair
[   86.143519][ T2904] XFS (loop4): First 128 bytes of corrupted metadata buffer:
[   86.169168][ T3955] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[   86.172980][ T2904] 00000000: 58 41 46 4c 00 00 00 00 00 00 00 00 00 00 80 86  XAFL............
[   86.205189][ T2904] 00000010: af d4 a8 f7 47 a7 4b ab 00 00 00 00 00 00 00 00  ....G.K.........
[   86.218044][ T2904] 00000020: 5e fe 9e 73 ff ff ff ff 00 00 02 0a 00 00 02 0b  ^..s............
[   86.233389][ T2904] 00000030: 00 00 02 0c 00 00 02 0d 00 00 02 0e 00 00 02 0f  ................
[   86.242492][ T2904] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   86.251769][ T2904] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   86.260985][ T2904] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   86.270132][ T2904] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[   86.279190][ T3925] XFS (loop4): metadata I/O error in "xfs_alloc_read_agfl+0x250/0x430" at daddr 0x3 len 1 error 74
[   86.332033][ T3925] XFS (loop4): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[   86.335833][   T27] audit: type=1800 audit(1720069478.423:27): pid=3962 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.109" name="file2" dev="loop4" ino=1063 res=0 errno=0
[   86.353148][ T3925] XFS (loop4): Please unmount the filesystem and rectify the problem(s)
[   86.407078][   T27] audit: type=1800 audit(1720069478.453:28): pid=3955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.117" name="bus" dev="loop0" ino=18 res=0 errno=0
[   86.449287][ T3560] XFS (loop4): Unmounting Filesystem
[   86.467226][ T3929] chnl_net:caif_netlink_parms(): no params data found
[   86.486498][ T3790] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   86.526351][   T27] audit: type=1800 audit(1720069478.453:29): pid=3955 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.117" name="bus" dev="loop0" ino=18 res=0 errno=0
[   86.550866][ T3790] EXT4-fs (loop0): Remounting filesystem read-only
[   86.596644][ T3549] EXT4-fs (loop0): unmounting filesystem.
[   87.216930][ T3987] Zero length message leads to an empty skb
[   87.232667][ T3559] Bluetooth: hci1: command tx timeout
[   87.833716][ T3559] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   87.842678][ T3559] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   87.951755][ T3559] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   87.959990][ T3559] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   87.968541][ T3562] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   87.975995][ T3559] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   88.077398][ T3929] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.112255][ T3929] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.158711][ T4000] ptrace attach of "./syz-executor exec"[3560] was attempted by ""[4000]
[   88.224658][ T3929] device bridge_slave_0 entered promiscuous mode
[   88.656213][ T3929] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.064434][ T3929] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.119795][ T4011] loop0: detected capacity change from 0 to 256
[   89.164635][ T4011] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001)
[   89.172752][ T4011] FAT-fs (loop0): Filesystem has been set read-only
[   89.185547][ T4011] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   89.375236][ T3559] Bluetooth: hci1: command tx timeout
[   89.451053][ T3929] device bridge_slave_1 entered promiscuous mode
[   89.803119][ T3929] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.838043][ T3929] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   90.005128][ T3564] Bluetooth: hci2: command tx timeout
[   90.067789][ T4024] loop0: detected capacity change from 0 to 4096
[   90.075953][ T4024] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[   90.108502][ T4024] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[   90.260427][ T3549] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[   90.327101][ T3929] team0: Port device team_slave_0 added
[   91.076807][ T3929] team0: Port device team_slave_1 added
[   91.524344][ T3564] Bluetooth: hci1: command tx timeout
[   92.164387][ T4062] ptrace attach of "./syz-executor exec"[3549] was attempted by ""[4062]
[   92.176521][ T3564] Bluetooth: hci2: command tx timeout
[   92.470608][ T4065] loop4: detected capacity change from 0 to 256
[   93.462273][ T4061] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[   93.470188][ T4061] FAT-fs (loop4): Filesystem has been set read-only
[   93.615190][ T3564] Bluetooth: hci1: command tx timeout
[   93.968117][ T3724] device hsr_slave_0 left promiscuous mode
[   93.997985][ T3724] device hsr_slave_1 left promiscuous mode
[   94.029053][ T3724] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   94.055119][ T3724] batman_adv: batadv0: Removing interface: batadv_slave_0
[   94.111093][ T3724] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   94.161716][ T3724] batman_adv: batadv0: Removing interface: batadv_slave_1
[   94.170651][ T4076] loop3: detected capacity change from 0 to 4096
[   94.216333][ T4076] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512)
[   94.250744][ T3724] device bridge_slave_1 left promiscuous mode
[   94.279568][ T3564] Bluetooth: hci2: command tx timeout
[   94.304176][ T3724] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.332100][ T3724] device bridge_slave_0 left promiscuous mode
[   94.737787][ T4091] loop4: detected capacity change from 0 to 512
[   95.408971][ T3724] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.437441][ T4091] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz.4.143: inline data xattr refers to an external xattr inode
[   95.453697][ T4091] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.143: couldn't read orphan inode 12 (err -117)
[   95.466459][ T4091] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[   95.514393][ T4076] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[   95.737481][ T3724] device veth1_macvtap left promiscuous mode
[   95.737775][ T3560] EXT4-fs (loop4): unmounting filesystem.
[   95.743918][ T3724] device veth0_macvtap left promiscuous mode
[   95.806006][ T3724] device veth1_vlan left promiscuous mode
[   95.812156][ T3724] device veth0_vlan left promiscuous mode
[   95.859776][ T3555] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[   96.325114][ T3564] Bluetooth: hci2: command tx timeout
[   96.489437][ T4118] ptrace attach of "./syz-executor exec"[3555] was attempted by ""[4118]
[   96.825377][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[   96.957792][    T0] NOHZ tick-stop error: local softirq work is pending, handler #140!!!
[   97.060360][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[   97.075005][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   97.083444][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   97.091734][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   97.100145][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   97.108448][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   97.116831][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   97.125128][    T0] NOHZ tick-stop error: local softirq work is pending, handler #02!!!
[   97.571906][ T4127] loop3: detected capacity change from 0 to 256
[   97.592615][ T4127] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[   97.600710][ T4127] FAT-fs (loop3): Filesystem has been set read-only
[   98.375596][ T4130] loop0: detected capacity change from 0 to 512
[   98.586396][ T4130] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:164: inode #12: comm syz.0.152: inline data xattr refers to an external xattr inode
[   98.603572][ T4130] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.152: couldn't read orphan inode 12 (err -117)
[   98.616247][ T4130] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[   98.899433][ T3549] EXT4-fs (loop0): unmounting filesystem.
[   99.038071][ T3724] team0 (unregistering): Port device team_slave_1 removed
[   99.094709][ T3724] team0 (unregistering): Port device team_slave_0 removed
[   99.103628][ T4140] loop3: detected capacity change from 0 to 4096
[   99.133345][ T4140] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512)
[   99.172560][ T3724] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   99.182716][ T4140] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[   99.298115][ T3724] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   99.308311][ T3555] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[   99.658920][ T3724] bond0 (unregistering): Released all slaves
[   99.730311][ T3929] batman_adv: batadv0: Adding interface: batadv_slave_0
[   99.740079][ T3929] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.770989][ T3929] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   99.803640][ T4152] netlink: 12 bytes leftover after parsing attributes in process `syz.3.157'.
[   99.833061][ T4152] device vlan2 entered promiscuous mode
[   99.846407][ T4152] device vlan0 entered promiscuous mode
[   99.860035][ T4152] device vlan0 left promiscuous mode
[   99.901065][ T3989] chnl_net:caif_netlink_parms(): no params data found
[   99.913899][ T3929] batman_adv: batadv0: Adding interface: batadv_slave_1
[   99.921811][ T3929] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   99.958948][ T3929] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  100.255143][ T4160] ptrace attach of "./syz-executor exec"[3549] was attempted by ""[4160]
[  100.476266][ T3929] device hsr_slave_0 entered promiscuous mode
[  100.656356][ T3929] device hsr_slave_1 entered promiscuous mode
[  101.015741][ T3929] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  101.023370][ T3929] Cannot create hsr debugfs directory
[  101.623505][ T4188] loop4: detected capacity change from 0 to 256
[  101.635675][ T4188] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  101.643616][ T4188] FAT-fs (loop4): Filesystem has been set read-only
[  102.167457][ T3989] bridge0: port 1(bridge_slave_0) entered blocking state
[  102.199339][ T3989] bridge0: port 1(bridge_slave_0) entered disabled state
[  102.255177][ T3989] device bridge_slave_0 entered promiscuous mode
[  102.392784][ T3989] bridge0: port 2(bridge_slave_1) entered blocking state
[  102.400248][ T3989] bridge0: port 2(bridge_slave_1) entered disabled state
[  102.422532][ T3989] device bridge_slave_1 entered promiscuous mode
[  102.620066][ T4205] netlink: 'syz.3.166': attribute type 10 has an invalid length.
[  102.691539][ T4201] loop0: detected capacity change from 0 to 4096
[  102.745534][ T4205] batman_adv: batadv0: Adding interface: team0
[  102.751768][ T4205] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  102.778401][ T4201] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  102.902300][ T4205] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  102.907538][ T4201] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  102.936734][ T4202] netlink: 'syz.3.166': attribute type 10 has an invalid length.
[  103.075931][ T4202] netlink: 2 bytes leftover after parsing attributes in process `syz.3.166'.
[  103.347179][ T4202] device team0 entered promiscuous mode
[  103.564317][ T4202] device team_slave_0 entered promiscuous mode
[  103.602559][ T4202] device team_slave_1 entered promiscuous mode
[  103.624183][ T3549] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[  103.635754][ T4202] 8021q: adding VLAN 0 to HW filter on device team0
[  103.642681][ T4202] batman_adv: batadv0: Interface activated: team0
[  103.683309][ T4202] batman_adv: batadv0: Interface deactivated: team0
[  103.690123][ T4202] batman_adv: batadv0: Removing interface: team0
[  103.742170][ T4202] bridge0: port 3(team0) entered blocking state
[  103.754683][ T4202] bridge0: port 3(team0) entered disabled state
[  103.774407][ T4202] bridge0: port 3(team0) entered blocking state
[  103.781218][ T4202] bridge0: port 3(team0) entered forwarding state
[  103.812326][ T3989] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  103.899064][ T4218] netlink: 28 bytes leftover after parsing attributes in process `syz.0.169'.
[  103.934687][ T4218] netlink: 8 bytes leftover after parsing attributes in process `syz.0.169'.
[  104.069031][ T3989] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  104.380964][ T3989] team0: Port device team_slave_0 added
[  104.479578][ T4235] ptrace attach of "./syz-executor exec"[3549] was attempted by ""[4235]
[  105.517715][ T4236] loop3: detected capacity change from 0 to 2048
[  105.674007][ T4236] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  106.048769][ T3989] team0: Port device team_slave_1 added
[  106.137444][ T3989] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.154704][ T3989] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.229794][ T3989] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.524772][ T4249] loop3: detected capacity change from 0 to 256
[  106.538169][ T4249] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  106.546258][ T4249] FAT-fs (loop3): Filesystem has been set read-only
[  107.442649][ T4248] loop0: detected capacity change from 0 to 4096
[  107.475549][ T4248] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  108.222380][ T3989] batman_adv: batadv0: Adding interface: batadv_slave_1
[  108.235811][ T3989] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  108.371944][ T4248] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  108.384305][ T3989] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  108.746296][ T3549] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[  108.880212][ T3989] device hsr_slave_0 entered promiscuous mode
[  109.041167][ T3989] device hsr_slave_1 entered promiscuous mode
[  109.055998][ T3989] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  109.095843][ T3989] Cannot create hsr debugfs directory
[  109.157930][ T4271] ptrace attach of "./syz-executor exec"[3549] was attempted by ""[4271]
[  109.721714][ T4268] netlink: 'syz.3.181': attribute type 10 has an invalid length.
[  109.813335][ T4268] bridge0: port 3(team0) entered disabled state
[  109.883920][ T4268] device team0 left promiscuous mode
[  109.892513][ T4268] device team_slave_0 left promiscuous mode
[  109.933610][ T4268] device team_slave_1 left promiscuous mode
[  109.981560][ T4268] bridge0: port 3(team0) entered disabled state
[  110.019868][ T4268] batman_adv: batadv0: Adding interface: team0
[  110.033773][ T4268] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  110.067305][ T4268] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  111.046877][ T4280] device syzkaller0 entered promiscuous mode
[  111.588743][ T4295] loop3: detected capacity change from 0 to 256
[  111.623712][ T4295] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  111.631971][ T4295] FAT-fs (loop3): Filesystem has been set read-only
[  112.653997][ T4299] loop3: detected capacity change from 0 to 4096
[  113.301540][ T4301] loop3: detected capacity change from 0 to 256
[  113.348681][ T4301] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  113.381707][ T4301] FAT-fs (loop3): Filesystem has been set read-only
[  113.769355][ T4307] loop3: detected capacity change from 0 to 4096
[  113.808946][ T4307] =======================================================
[  113.808946][ T4307] WARNING: The mand mount option has been deprecated and
[  113.808946][ T4307]          and is ignored by this kernel. Remove the mand
[  113.808946][ T4307]          option from the mount to silence this warning.
[  113.808946][ T4307] =======================================================
[  114.141198][ T3929] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  114.201174][ T3929] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  114.275188][    T7] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  114.310594][ T3929] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  114.341737][ T3929] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  114.417041][ T4315] ptrace attach of "./syz-executor exec"[3549] was attempted by ""[4315]
[  114.727214][ T3989] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  114.911685][ T4317] netlink: 'syz.3.192': attribute type 10 has an invalid length.
[  115.033898][ T4317] netlink: 2 bytes leftover after parsing attributes in process `syz.3.192'.
[  115.066125][ T4317] device team0 entered promiscuous mode
[  115.071881][ T4317] device team_slave_0 entered promiscuous mode
[  115.078464][ T4317] device team_slave_1 entered promiscuous mode
[  115.180928][ T4317] 8021q: adding VLAN 0 to HW filter on device team0
[  115.215444][ T4317] batman_adv: batadv0: Interface activated: team0
[  115.224302][ T4317] batman_adv: batadv0: Interface deactivated: team0
[  115.225075][    T7] usb 5-1: Using ep0 maxpacket: 32
[  115.315615][ T4317] batman_adv: batadv0: Removing interface: team0
[  115.334363][ T4317] bridge0: port 3(team0) entered blocking state
[  115.351181][ T4317] bridge0: port 3(team0) entered disabled state
[  115.362244][ T4317] bridge0: port 3(team0) entered blocking state
[  115.368749][ T4317] bridge0: port 3(team0) entered forwarding state
[  115.383054][    T7] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  115.404425][    T7] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  115.449366][ T4318] netlink: 'syz.3.192': attribute type 10 has an invalid length.
[  115.449398][    T7] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  115.480940][    T7] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  116.336943][    T7] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  116.362967][    T7] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  116.395947][ T4318] bridge0: port 3(team0) entered disabled state
[  116.425836][ T4318] device team0 left promiscuous mode
[  116.431208][ T4318] device team_slave_0 left promiscuous mode
[  116.437792][ T4318] device team_slave_1 left promiscuous mode
[  116.444013][ T4318] bridge0: port 3(team0) entered disabled state
[  116.469276][ T4318] batman_adv: batadv0: Adding interface: team0
[  116.484829][ T4318] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  116.535418][    T7] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  116.544517][    T7] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.554267][ T4318] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active
[  116.593595][    T7] usb 5-1: Product: syz
[  116.602290][    T7] usb 5-1: Manufacturer: syz
[  116.619699][    T7] usb 5-1: SerialNumber: syz
[  116.726007][ T3989] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  116.733419][    T7] usb 5-1: can't set config #1, error -71
[  116.767551][    T7] usb 5-1: USB disconnect, device number 2
[  116.823779][ T4348] loop0: detected capacity change from 0 to 256
[  116.956706][ T4348] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001)
[  116.964641][ T4348] FAT-fs (loop0): Filesystem has been set read-only
[  117.359592][ T3989] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.604026][ T3989] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.910070][ T4368] loop4: detected capacity change from 0 to 1024
[  118.950754][ T3929] 8021q: adding VLAN 0 to HW filter on device bond0
[  118.993900][ T3929] 8021q: adding VLAN 0 to HW filter on device team0
[  119.869283][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  119.905935][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  119.921878][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  119.940945][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  119.961303][ T3602] bridge0: port 1(bridge_slave_0) entered blocking state
[  119.968485][ T3602] bridge0: port 1(bridge_slave_0) entered forwarding state
[  119.981169][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  120.008814][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  120.031527][ T3602] bridge0: port 2(bridge_slave_1) entered blocking state
[  120.038821][ T3602] bridge0: port 2(bridge_slave_1) entered forwarding state
[  120.078607][ T4371] device syzkaller0 entered promiscuous mode
[  120.156198][ T4368] EXT4-fs: Ignoring removed orlov option
[  120.186128][ T4368] EXT4-fs (loop4): Test dummy encryption mode enabled
[  120.253296][ T3929] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  120.286838][ T4368] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  120.347666][ T3929] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  120.433459][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  120.488174][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  120.509004][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  120.544558][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  120.578037][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  120.609313][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  120.618922][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  120.633700][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  120.646165][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  120.658949][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  120.671912][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  120.687443][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  121.790148][ T4397] ptrace attach of "./syz-executor exec"[3560] was attempted by ""[4397]
[  122.923109][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  122.948136][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  123.000113][ T3989] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  123.113994][ T3989] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  123.153295][ T3989] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  123.290880][ T3989] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  123.695879][ T3628] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  123.766096][ T3559] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  123.789710][ T3559] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  123.798488][ T3559] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  123.810469][ T4419] loop0: detected capacity change from 0 to 4096
[  123.817473][ T3559] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  123.826451][ T3559] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  123.834086][ T3559] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  123.842323][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  123.874776][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  123.909715][ T3929] 8021q: adding VLAN 0 to HW filter on device batadv0
[  123.955300][ T3628] usb 5-1: Using ep0 maxpacket: 32
[  124.002612][ T3989] 8021q: adding VLAN 0 to HW filter on device bond0
[  124.076910][ T3628] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  124.095045][ T3628] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  124.112822][ T3628] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  124.123138][ T3628] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  124.133399][ T3628] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  124.143542][ T3628] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  124.214673][ T3989] 8021q: adding VLAN 0 to HW filter on device team0
[  124.241582][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  124.250080][ T3599] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  124.305320][ T3628] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  124.327958][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  124.335076][ T3628] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  124.338115][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  124.352221][ T3628] usb 5-1: Product: syz
[  124.352245][ T3628] usb 5-1: Manufacturer: syz
[  124.352260][ T3628] usb 5-1: SerialNumber: syz
[  124.381265][ T3596] bridge0: port 1(bridge_slave_0) entered blocking state
[  124.388582][ T3596] bridge0: port 1(bridge_slave_0) entered forwarding state
[  124.420169][ T4433] loop0: detected capacity change from 0 to 1024
[  124.432999][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  124.442345][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  124.458650][ T4433] EXT4-fs: Ignoring removed orlov option
[  124.469350][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  124.482692][ T4433] EXT4-fs (loop0): Test dummy encryption mode enabled
[  124.510148][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  124.522952][ T3596] bridge0: port 2(bridge_slave_1) entered blocking state
[  124.530189][ T3596] bridge0: port 2(bridge_slave_1) entered forwarding state
[  124.547063][ T4433] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  124.654550][ T3549] EXT4-fs (loop0): unmounting filesystem.
[  124.685570][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  124.701924][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  124.721517][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  124.732187][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  124.741777][ T3602] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  124.807651][ T3628] cdc_ncm 5-1:1.0: bind() failure
[  124.835467][ T4002] device hsr_slave_0 left promiscuous mode
[  124.845968][ T4002] device hsr_slave_1 left promiscuous mode
[  124.856806][ T4002] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  124.875963][ T4002] batman_adv: batadv0: Removing interface: batadv_slave_0
[  124.879357][ T3628] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  124.892831][ T4002] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  124.913700][ T4002] batman_adv: batadv0: Removing interface: batadv_slave_1
[  124.917723][ T3628] cdc_ncm 5-1:1.1: bind() failure
[  124.936440][ T4002] device bridge_slave_1 left promiscuous mode
[  124.942759][ T4002] bridge0: port 2(bridge_slave_1) entered disabled state
[  124.945465][ T3628] usb 5-1: USB disconnect, device number 3
[  124.986274][ T4002] device bridge_slave_0 left promiscuous mode
[  125.000247][ T4002] bridge0: port 1(bridge_slave_0) entered disabled state
[  125.086779][ T4002] device veth1_macvtap left promiscuous mode
[  125.094602][ T4002] device veth0_macvtap left promiscuous mode
[  125.111364][ T4002] device veth1_vlan left promiscuous mode
[  125.123286][ T4002] device veth0_vlan left promiscuous mode
[  125.923224][ T4455] ptrace attach of "./syz-executor exec"[3560] was attempted by ""[4455]
[  125.996133][ T3564] Bluetooth: hci3: command tx timeout
[  127.634214][ T4474] capability: warning: `syz.0.213' uses 32-bit capabilities (legacy support in use)
[  127.797360][ T4002] team0 (unregistering): Port device team_slave_1 removed
[  127.842768][ T4002] team0 (unregistering): Port device team_slave_0 removed
[  127.874800][ T4002] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  127.911398][ T4002] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  128.005198][ T3562] Bluetooth: hci3: command tx timeout
[  128.264007][ T4484] loop0: detected capacity change from 0 to 1024
[  128.272131][ T4484] EXT4-fs: Ignoring removed orlov option
[  128.279352][ T4484] EXT4-fs (loop0): Test dummy encryption mode enabled
[  128.313422][ T4484] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  128.386693][ T3549] EXT4-fs (loop0): unmounting filesystem.
[  128.424488][ T4002] bond0 (unregistering): Released all slaves
[  128.574797][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  128.596033][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  128.607422][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  128.655642][ T4464] device syzkaller0 entered promiscuous mode
[  128.851379][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  128.860584][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  128.872096][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  128.887045][ T4494] loop0: detected capacity change from 0 to 2048
[  128.907772][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  128.922546][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  128.934449][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  128.949902][ T4494] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  128.958918][ T3929] device veth0_vlan entered promiscuous mode
[  128.994750][ T3929] device veth1_vlan entered promiscuous mode
[  129.960347][ T3989] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  129.994880][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  130.043436][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  130.059821][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  130.090936][ T3562] Bluetooth: hci3: command tx timeout
[  130.182564][ T3929] device veth0_macvtap entered promiscuous mode
[  130.215356][ T4501] loop0: detected capacity change from 0 to 64
[  130.252394][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  130.278908][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  130.306142][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  130.342793][ T4421] chnl_net:caif_netlink_parms(): no params data found
[  130.363271][ T3929] device veth1_macvtap entered promiscuous mode
[  130.467977][ T4509] netlink: 16 bytes leftover after parsing attributes in process `syz.4.222'.
[  130.538027][ T3929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.564001][ T3929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.575075][ T3929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.585613][ T3929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.595577][ T3929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  130.595995][ T4507] loop0: detected capacity change from 0 to 4096
[  130.606182][ T3929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.609530][ T3929] batman_adv: batadv0: Interface activated: batadv_slave_0
[  130.633367][ T3929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.644812][ T3929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.655450][ T3929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.666299][ T3929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.676748][ T4507] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  130.685099][ T3929] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  130.703242][ T3929] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  130.716544][ T3929] batman_adv: batadv0: Interface activated: batadv_slave_1
[  130.729116][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  130.758713][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  130.767872][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  130.776927][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  130.780109][ T4507] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  130.791322][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  130.828549][ T3929] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  130.837473][ T3929] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  130.846933][ T3929] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  130.856900][ T3929] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  130.879505][ T4516] loop4: detected capacity change from 0 to 512
[  130.921869][ T4421] bridge0: port 1(bridge_slave_0) entered blocking state
[  130.938873][ T3549] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[  130.944282][ T4421] bridge0: port 1(bridge_slave_0) entered disabled state
[  130.954773][ T4421] device bridge_slave_0 entered promiscuous mode
[  130.964323][ T4421] bridge0: port 2(bridge_slave_1) entered blocking state
[  130.972629][ T4421] bridge0: port 2(bridge_slave_1) entered disabled state
[  130.981069][ T4421] device bridge_slave_1 entered promiscuous mode
[  131.055587][ T4516] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  131.115276][ T4516] ext4 filesystem being mounted at /52/bus supports timestamps until 2038 (0x7fffffff)
[  131.140573][ T4421] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  131.347998][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  131.362000][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  131.380971][ T3989] 8021q: adding VLAN 0 to HW filter on device batadv0
[  131.392245][ T4421] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  131.493717][ T4421] team0: Port device team_slave_0 added
[  131.506193][ T4421] team0: Port device team_slave_1 added
[  131.547548][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  131.559949][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  131.584575][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  131.607160][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  131.622860][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  131.639951][ T4421] batman_adv: batadv0: Adding interface: batadv_slave_0
[  131.653529][ T4421] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.670375][ T4524] loop0: detected capacity change from 0 to 32768
[  131.688653][ T4421] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  131.732951][ T3989] device veth0_vlan entered promiscuous mode
[  131.762308][ T3989] device veth1_vlan entered promiscuous mode
[  131.801352][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  131.814267][ T4421] batman_adv: batadv0: Adding interface: batadv_slave_1
[  131.824253][ T4421] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  131.853214][ T4421] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  131.865085][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  131.873559][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  131.906065][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  131.918544][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  131.928903][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  131.937458][ T4524] XFS (loop0): Mounting V5 Filesystem
[  131.937652][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  132.003512][ T4524] XFS (loop0): Ending clean mount
[  132.033658][ T4524] XFS (loop0): Quotacheck needed: Please wait.
[  132.103339][ T4524] XFS (loop0): Quotacheck: Done.
[  132.165473][ T3562] Bluetooth: hci3: command tx timeout
[  132.727355][ T1254] ieee802154 phy0 wpan0: encryption failed: -22
[  132.734066][ T1254] ieee802154 phy1 wpan1: encryption failed: -22
[  132.863735][ T3790] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  132.900666][ T4540] device syzkaller0 entered promiscuous mode
[  132.910665][ T3790] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  132.991401][ T3549] XFS (loop0): Unmounting Filesystem
[  133.837843][ T4550] loop0: detected capacity change from 0 to 2048
[  134.000611][ T4550] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  135.627106][ T4555] ptrace attach of "./syz-executor exec"[3549] was attempted by ""[4555]
[  137.367732][ T4421] device hsr_slave_0 entered promiscuous mode
[  137.374703][ T4421] device hsr_slave_1 entered promiscuous mode
[  137.386483][ T3596] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  137.519746][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  137.545941][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  137.557755][ T3989] device veth0_macvtap entered promiscuous mode
[  137.594544][ T3989] device veth1_macvtap entered promiscuous mode
[  137.732867][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  137.793615][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  137.823560][ T4563] loop0: detected capacity change from 0 to 4096
[  138.035677][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.055290][ T4563] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512)
[  138.082152][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.186985][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.251674][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.295204][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.343856][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.403218][ T3989] batman_adv: batadv0: Interface activated: batadv_slave_0
[  138.938025][ T4570] loop1: detected capacity change from 0 to 512
[  139.154201][ T4570] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  139.184125][ T4570] ext4 filesystem being mounted at /1/bus supports timestamps until 2038 (0x7fffffff)
[  139.624961][    C0] sched: RT throttling activated
[  139.630283][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  139.647100][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  139.655783][ T4563] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  139.678465][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  139.694689][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  139.749343][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.835035][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.875208][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.889536][ T4565] loop4: detected capacity change from 0 to 262144
[  139.908938][ T4565] BTRFS: device fsid 7e32c2af-f87a-45a1-bcba-64dea7c56a53 devid 1 transid 8 /dev/loop4 scanned by syz.4.233 (4565)
[  139.959564][ T4565] BTRFS info (device loop4): first mount of filesystem 7e32c2af-f87a-45a1-bcba-64dea7c56a53
[  139.970702][ T4565] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[  139.980093][ T4565] BTRFS info (device loop4): enabling ssd optimizations
[  139.981097][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.987107][ T4565] BTRFS info (device loop4): enabling auto defrag
[  139.987171][ T4565] BTRFS info (device loop4): using free space tree
[  140.066129][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.077489][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.087737][ T3989] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.098268][ T3989] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.109956][ T3549] ntfs3: loop0: ntfs_evict_inode r=5 failed, -22.
[  140.110060][ T3989] batman_adv: batadv0: Interface activated: batadv_slave_1
[  140.132612][ T3989] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.141423][ T3989] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.150723][ T3989] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.159495][ T3989] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  140.244891][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  140.266338][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  140.298916][ T3929] EXT4-fs (loop1): unmounting filesystem.
[  140.300768][    T9] BTRFS warning (device loop4): checksum verify failed on logical 22036480 mirror 1 wanted 0x23e101be1e001a29 found 0x98e2f59226e63d74 level 0
[  140.340873][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 22036480 (dev /dev/loop4 sector 43040)
[  140.352822][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 22040576 (dev /dev/loop4 sector 43048)
[  140.364193][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 22044672 (dev /dev/loop4 sector 43056)
[  140.377112][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 22048768 (dev /dev/loop4 sector 43064)
[  140.395964][ T4006] BTRFS warning (device loop4): checksum verify failed on logical 30670848 mirror 1 wanted 0xe9f08ec94c425425 found 0x1a4a9216e61c07c8 level 0
[  140.426940][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 30670848 (dev /dev/loop4 sector 76288)
[  140.470834][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 30674944 (dev /dev/loop4 sector 76296)
[  140.482890][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 30679040 (dev /dev/loop4 sector 76304)
[  140.494105][ T4565] BTRFS info (device loop4): read error corrected: ino 0 off 30683136 (dev /dev/loop4 sector 76312)
[  140.533632][ T4565] BTRFS error (device loop4): open_ctree failed
[  140.694790][ T4421] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  140.866736][ T4604] loop1: detected capacity change from 0 to 2048
[  141.840883][ T4614] device syzkaller0 entered promiscuous mode
[  141.865286][ T4604] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  142.165215][ T4611] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  142.292016][ T4421] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.445123][ T4611] usb 1-1: Using ep0 maxpacket: 32
[  142.725337][ T4611] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  142.745136][ T4611] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  143.520141][ T4611] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  143.530017][ T4611] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  143.539927][ T4611] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  143.549998][ T4611] usb 1-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  143.805273][ T4611] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  143.825082][ T4611] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.833244][ T4611] usb 1-1: Product: syz
[  143.837827][ T4611] usb 1-1: Manufacturer: syz
[  143.917714][ T4611] usb 1-1: can't set config #1, error -71
[  143.925187][ T4611] usb 1-1: USB disconnect, device number 2
[  145.017717][ T4421] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.078856][ T4014] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.133145][ T3724] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  145.138500][ T4014] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.147628][ T3724] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  145.241087][ T4421] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.300308][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  145.316046][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  145.366633][ T4644] loop1: detected capacity change from 0 to 512
[  145.448881][ T4644] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  145.515343][ T4644] ext4 filesystem being mounted at /5/bus supports timestamps until 2038 (0x7fffffff)
[  145.710323][ T4652] netlink: 4 bytes leftover after parsing attributes in process `syz.4.245'.
[  145.901592][ T4658] loop0: detected capacity change from 0 to 2048
[  146.990323][ T4658] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  147.692729][ T4421] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  147.915127][ T4421] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  147.964823][ T4421] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  148.153597][ T3929] EXT4-fs (loop1): unmounting filesystem.
[  148.289232][ T4421] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  149.522293][ T4596] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  149.697018][ T4683] device syzkaller0 entered promiscuous mode
[  149.917266][ T4596] usb 5-1: Using ep0 maxpacket: 32
[  150.055242][ T4596] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  150.071603][ T4596] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  150.081875][ T4596] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  150.092417][ T4596] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  150.102790][ T4596] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  150.118870][ T4596] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  150.309463][ T4596] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  150.318964][ T4596] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  150.327536][ T4596] usb 5-1: Product: syz
[  150.332041][ T4596] usb 5-1: Manufacturer: syz
[  150.337129][ T4596] usb 5-1: SerialNumber: syz
[  151.137580][ T4421] 8021q: adding VLAN 0 to HW filter on device bond0
[  151.155163][ T4596] cdc_ncm 5-1:1.0: bind() failure
[  151.169573][ T4596] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  151.189988][ T4596] cdc_ncm 5-1:1.1: bind() failure
[  151.209886][ T4596] usb 5-1: USB disconnect, device number 4
[  151.286979][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  151.305755][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  151.334207][ T4421] 8021q: adding VLAN 0 to HW filter on device team0
[  151.356165][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  151.369558][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  151.388868][   T22] bridge0: port 1(bridge_slave_0) entered blocking state
[  151.396196][   T22] bridge0: port 1(bridge_slave_0) entered forwarding state
[  151.533178][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  151.549151][ T4710] loop2: detected capacity change from 0 to 1024
[  151.577366][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  151.593180][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  151.604528][ T3597] bridge0: port 2(bridge_slave_1) entered blocking state
[  151.611904][ T3597] bridge0: port 2(bridge_slave_1) entered forwarding state
[  151.620676][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  151.630577][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  151.644116][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  151.666926][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  151.722585][ T3790] hfsplus: b-tree write err: -5, ino 4
[  151.743842][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  151.757324][ T4596] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  151.786671][ T4596] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  151.841580][ T4598] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  151.855952][ T4598] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  151.876358][ T4598] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  151.886940][ T4598] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  151.897748][ T4421] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  151.969652][ T4713] loop2: detected capacity change from 0 to 512
[  152.011112][ T4713] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  152.055177][ T4713] ext4 filesystem being mounted at /7/bus supports timestamps until 2038 (0x7fffffff)
[  152.780235][ T4734] device syzkaller0 entered promiscuous mode
[  153.306840][ T3989] EXT4-fs (loop2): unmounting filesystem.
[  153.435889][ T4733] ubi0: attaching mtd0
[  153.440527][ T4733] ubi0 error: ubi_attach_mtd_dev: bad VID header (8454144) or data offsets (8454208)
[  154.584743][ T4733] netlink: 8 bytes leftover after parsing attributes in process `syz.4.265'.
[  154.761656][ T4733] netlink: 20 bytes leftover after parsing attributes in process `syz.4.265'.
[  154.989268][ T4002] device hsr_slave_0 left promiscuous mode
[  155.173815][ T4002] device hsr_slave_1 left promiscuous mode
[  155.476214][ T3562] Bluetooth: hci0: command 0x0406 tx timeout
[  155.994563][ T4002] batman_adv: batadv0: Removing interface: team0
[  156.011761][ T4002] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  156.051677][ T4002] batman_adv: batadv0: Removing interface: batadv_slave_0
[  156.083472][ T4002] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  156.114921][ T4002] batman_adv: batadv0: Removing interface: batadv_slave_1
[  156.157988][ T4002] device bridge_slave_1 left promiscuous mode
[  156.164281][ T4002] bridge0: port 2(bridge_slave_1) entered disabled state
[  156.269577][ T4002] device bridge_slave_0 left promiscuous mode
[  156.276852][ T4002] bridge0: port 1(bridge_slave_0) entered disabled state
[  156.372015][ T4002] device veth1_macvtap left promiscuous mode
[  156.379218][ T4002] device veth0_macvtap left promiscuous mode
[  156.415587][ T4002] device veth1_vlan left promiscuous mode
[  156.437674][ T4002] device veth0_vlan left promiscuous mode
[  156.809960][ T4596] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  156.997444][ T4744] loop0: detected capacity change from 0 to 32768
[  157.105091][ T4596] usb 2-1: Using ep0 maxpacket: 32
[  157.126824][ T4744] XFS (loop0): Mounting V5 Filesystem
[  157.237036][ T4774] ptrace attach of "./syz-executor exec"[3989] was attempted by ""[4774]
[  157.245821][ T4596] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  157.259898][ T4596] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  157.270519][ T4744] XFS (loop0): Ending clean mount
[  157.270613][ T4596] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  157.288310][ T4596] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  157.301295][ T4596] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  157.327295][ T4596] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  157.361705][ T4598] XFS (loop0): Metadata CRC error detected at xfs_agfl_read_verify+0x1ca/0x290, xfs_agfl block 0x3 
[  157.374889][ T4598] XFS (loop0): Unmount and run xfs_repair
[  157.381417][ T4598] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  157.390393][ T4598] 00000000: 58 41 46 4c 00 00 00 00 00 00 00 00 00 00 80 86  XAFL............
[  157.403639][ T4598] 00000010: af d4 a8 f7 47 a7 4b ab 00 00 00 00 00 00 00 00  ....G.K.........
[  157.415013][ T4598] 00000020: 5e fe 9e 73 ff ff ff ff 00 00 02 0a 00 00 02 0b  ^..s............
[  157.428930][ T4598] 00000030: 00 00 02 0c 00 00 02 0d 00 00 02 0e 00 00 02 0f  ................
[  157.460286][ T4598] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  157.480770][ T4598] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  157.515406][ T4596] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  157.525164][ T3562] Bluetooth: hci0: command 0x0406 tx timeout
[  157.553928][ T4596] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  157.578813][ T4598] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  157.597317][ T4596] usb 2-1: Product: syz
[  157.608058][ T4598] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  157.617690][ T4596] usb 2-1: Manufacturer: syz
[  157.622373][ T4596] usb 2-1: SerialNumber: syz
[  157.640932][ T4744] XFS (loop0): metadata I/O error in "xfs_alloc_read_agfl+0x250/0x430" at daddr 0x3 len 1 error 74
[  157.673871][ T4744] XFS (loop0): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[  157.690103][   T27] audit: type=1800 audit(1720069549.753:30): pid=4776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.268" name="file2" dev="loop0" ino=1063 res=0 errno=0
[  157.722240][ T4744] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  157.778595][ T4780] loop4: detected capacity change from 0 to 512
[  157.791290][ T3549] XFS (loop0): Unmounting Filesystem
[  157.894039][ T4780] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  157.912463][ T4780] ext4 filesystem being mounted at /62/bus supports timestamps until 2038 (0x7fffffff)
[  158.222406][ T4002] team0 (unregistering): Port device team_slave_1 removed
[  159.029525][ T4002] team0 (unregistering): Port device team_slave_0 removed
[  159.110959][ T4002] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  160.587012][ T4002] bond0 (unregistering): Released all slaves
[  160.613855][ T4807] loop0: detected capacity change from 0 to 32768
[  160.634357][ T4807] XFS (loop0): Mounting V5 Filesystem
[  160.709972][ T4797] device syzkaller0 entered promiscuous mode
[  160.829007][ T4807] XFS (loop0): Ending clean mount
[  160.855353][ T4596] cdc_ncm 2-1:1.0: bind() failure
[  160.894226][ T4596] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  160.912289][ T4596] cdc_ncm 2-1:1.1: bind() failure
[  160.914593][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  160.941358][ T4596] usb 2-1: USB disconnect, device number 2
[  161.062555][ T4807] XFS (loop0): Quotacheck needed: Please wait.
[  161.120506][ T4807] XFS (loop0): Quotacheck: Done.
[  161.269029][ T3549] XFS (loop0): Unmounting Filesystem
[  161.929467][ T4823] netlink: 'syz.1.283': attribute type 2 has an invalid length.
[  162.907832][ T4611] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  162.922791][ T4611] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  162.968905][ T4421] 8021q: adding VLAN 0 to HW filter on device batadv0
[  163.057325][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  163.077514][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  163.138358][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  163.150523][ T3628] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  163.179739][ T4421] device veth0_vlan entered promiscuous mode
[  163.203824][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  163.228661][ T4839] loop4: detected capacity change from 0 to 512
[  163.243629][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  163.306305][ T4421] device veth1_vlan entered promiscuous mode
[  163.363963][ T4839] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  163.384102][ T4827] loop1: detected capacity change from 0 to 32768
[  163.394698][ T4839] ext4 filesystem being mounted at /66/bus supports timestamps until 2038 (0x7fffffff)
[  163.438740][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  163.468813][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  163.488977][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  163.511779][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  163.534070][ T4421] device veth0_macvtap entered promiscuous mode
[  163.618866][ T4421] device veth1_macvtap entered promiscuous mode
[  163.641826][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.642582][ T4827] XFS (loop1): Mounting V5 Filesystem
[  163.652894][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.668245][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.679307][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.689441][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.700021][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.725492][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  163.736168][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  163.751713][ T4421] batman_adv: batadv0: Interface activated: batadv_slave_0
[  163.844843][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  163.901840][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  164.112726][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  164.321467][ T3597] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  164.407460][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.428351][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.475017][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.497050][ T4827] XFS (loop1): Ending clean mount
[  164.548377][ T4611] XFS (loop1): Metadata CRC error detected at xfs_agfl_read_verify+0x1ca/0x290, xfs_agfl block 0x3 
[  164.570747][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.585172][ T4611] XFS (loop1): Unmount and run xfs_repair
[  164.590960][ T4611] XFS (loop1): First 128 bytes of corrupted metadata buffer:
[  164.610963][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.642188][ T4611] 00000000: 58 41 46 4c 00 00 00 00 00 00 00 00 00 00 80 86  XAFL............
[  164.660309][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.662703][ T4611] 00000010: af d4 a8 f7 47 a7 4b ab 00 00 00 00 00 00 00 00  ....G.K.........
[  164.685070][ T4421] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  164.692314][ T4611] 00000020: 5e fe 9e 73 ff ff ff ff 00 00 02 0a 00 00 02 0b  ^..s............
[  164.701783][ T4421] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  164.709706][ T4611] 00000030: 00 00 02 0c 00 00 02 0d 00 00 02 0e 00 00 02 0f  ................
[  164.730846][ T4611] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  164.741537][ T4421] batman_adv: batadv0: Interface activated: batadv_slave_1
[  164.757318][ T4611] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  164.773446][ T4611] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  164.776309][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  164.793031][ T4611] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  164.809643][ T4870] ptrace attach of "./syz-executor exec"[3549] was attempted by ""[4870]
[  164.813895][   T22] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  164.818936][ T4827] XFS (loop1): metadata I/O error in "xfs_alloc_read_agfl+0x250/0x430" at daddr 0x3 len 1 error 74
[  164.844516][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  164.864910][ T4421] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  164.873899][ T4421] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.893262][ T4827] XFS (loop1): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[  164.893781][   T27] audit: type=1800 audit(1720069556.973:31): pid=4865 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.285" name="file2" dev="loop1" ino=1063 res=0 errno=0
[  164.942551][ T4421] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.965575][ T4421] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.975049][ T4827] XFS (loop1): Please unmount the filesystem and rectify the problem(s)
[  165.098500][ T3929] XFS (loop1): Unmounting Filesystem
[  165.248137][ T4874] loop4: detected capacity change from 0 to 1024
[  165.277777][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.308116][ T4874] EXT4-fs: Ignoring removed orlov option
[  165.325167][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.339942][ T4874] EXT4-fs (loop4): Test dummy encryption mode enabled
[  165.385183][ T3628] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  165.396839][ T2904] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  165.412644][ T4004] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  165.434136][ T4874] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  165.484161][ T4004] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  165.582619][   T14] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  165.625076][ T3628] usb 3-1: Using ep0 maxpacket: 32
[  165.914709][ T3628] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  165.926394][ T3628] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  165.937569][ T3628] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  165.947797][ T3628] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  165.958052][ T3628] usb 3-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  165.968486][ T3628] usb 3-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  166.061011][ T4885] loop3: detected capacity change from 0 to 256
[  166.103166][ T4885] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  166.111246][ T4885] FAT-fs (loop3): Filesystem has been set read-only
[  166.166514][ T4874] fscrypt (loop4): Missing crypto API support for AES-256-CTS-CBC (API name: "cts(cbc(aes))")
[  166.796652][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  166.865265][ T3628] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  166.874375][ T3628] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  166.915145][ T3628] usb 3-1: Product: syz
[  166.919409][ T3628] usb 3-1: Manufacturer: syz
[  166.924042][ T3628] usb 3-1: SerialNumber: syz
[  167.031115][ T4895] fuse: Unknown parameter 'grou00000000000000000000'
[  167.245287][   T27] audit: type=1326 audit(1720069559.273:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  167.340826][   T27] audit: type=1326 audit(1720069559.273:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  167.692685][ T4905] device syzkaller0 entered promiscuous mode
[  167.796792][ T3628] cdc_ncm 3-1:1.0: bind() failure
[  168.040332][ T3628] cdc_ncm 3-1:1.1: CDC Union missing and no IAD found
[  168.075101][   T27] audit: type=1326 audit(1720069559.283:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  168.133758][ T3628] cdc_ncm 3-1:1.1: bind() failure
[  168.175873][ T3628] usb 3-1: USB disconnect, device number 2
[  168.189958][   T27] audit: type=1326 audit(1720069559.293:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  168.242951][   T27] audit: type=1326 audit(1720069559.303:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  168.322362][   T27] audit: type=1326 audit(1720069559.303:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  168.438725][   T27] audit: type=1326 audit(1720069559.303:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  168.491321][   T27] audit: type=1326 audit(1720069559.303:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.4.298" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb253775bd9 code=0x7ffc0000
[  168.709756][ T4912] loop0: detected capacity change from 0 to 512
[  168.876553][ T4912] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  168.908619][ T4912] ext4 filesystem being mounted at /89/bus supports timestamps until 2038 (0x7fffffff)
[  170.652161][ T4929] fuse: Unknown parameter 'group_i00000000000000000000'
[  170.832412][ T4931] loop2: detected capacity change from 0 to 256
[  170.864058][ T4931] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[  170.872116][ T4931] FAT-fs (loop2): Filesystem has been set read-only
[  171.686596][ T4937] loop1: detected capacity change from 0 to 256
[  171.714691][ T4937] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  171.830538][ T4937] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  171.973602][ T4917] loop4: detected capacity change from 0 to 32768
[  172.673834][ T4950] kvm [4949]: vcpu0, guest rIP: 0x18e disabled perfctr wrmsr: 0xc1 data 0x6d00000800
[  172.686987][ T4957] ptrace attach of "./syz-executor exec"[3989] was attempted by ""[4957]
[  172.872390][ T4598] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  173.110735][ T3549] EXT4-fs (loop0): unmounting filesystem.
[  173.185328][ T4598] usb 5-1: Using ep0 maxpacket: 32
[  173.320655][ T4598] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  173.364127][ T4598] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  173.379392][ T4598] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  173.391177][ T4598] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  173.409565][ T4598] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  173.436724][ T4598] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  173.607378][ T4611] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  173.624445][ T4968] fuse: Unknown parameter 'group_i00000000000000000000'
[  173.640988][ T4598] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  173.663229][ T4598] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  173.685085][ T4598] usb 5-1: Product: syz
[  173.689315][ T4598] usb 5-1: Manufacturer: syz
[  173.724817][ T4598] usb 5-1: SerialNumber: syz
[  173.875196][ T4611] usb 1-1: Using ep0 maxpacket: 32
[  174.025361][ T4611] usb 1-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  174.049839][ T4611] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 0, changing to 7
[  174.295079][ T4611] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has invalid wMaxPacketSize 0
[  174.320920][ T4611] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  174.414383][ T4980] loop1: detected capacity change from 0 to 256
[  174.621304][ T4976] FAT-fs (loop1): error, invalid access to FAT (entry 0x00000001)
[  174.802764][ T4976] FAT-fs (loop1): Filesystem has been set read-only
[  174.985216][ T4598] cdc_ncm 5-1:1.0: bind() failure
[  174.995513][ T4598] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  175.002374][ T4598] cdc_ncm 5-1:1.1: bind() failure
[  175.041167][ T4598] usb 5-1: USB disconnect, device number 5
[  175.145406][ T4611] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  175.154514][ T4611] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  175.170823][ T4611] usb 1-1: Product: syz
[  175.175559][ T4611] usb 1-1: Manufacturer: syz
[  175.180197][ T4611] usb 1-1: SerialNumber: syz
[  175.515510][ T4611] usb 1-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  175.530653][ T4611] usb 1-1: found format II with max.bitrate = 0, frame size=0
[  175.746081][ T4992] device syzkaller0 entered promiscuous mode
[  176.233824][ T4596] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  176.255589][ T4611] usb 1-1: 2:1 : unknown format tag 0x0 is detected.  processed as MPEG.
[  176.271646][ T4611] usb 1-1: found format II with max.bitrate = 0, frame size=0
[  176.506928][ T4596] usb 4-1: Using ep0 maxpacket: 32
[  176.519955][ T4999] loop0: detected capacity change from 0 to 512
[  176.639300][ T4596] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  176.669188][ T4596] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  176.707629][ T4999] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  176.709236][ T4596] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  176.732954][ T4986] loop2: detected capacity change from 0 to 32768
[  176.751140][ T4596] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  176.768571][ T4596] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  176.785490][ T4596] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  176.810950][ T4999] ext4 filesystem being mounted at /91/bus supports timestamps until 2038 (0x7fffffff)
[  176.855443][ T4596] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  176.944316][ T4596] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  177.036801][ T4596] usb 4-1: config 0 descriptor??
[  177.055041][ T4611] usb 1-1: USB disconnect, device number 3
[  177.113912][ T5013] loop4: detected capacity change from 0 to 64
[  177.978986][ T4986] XFS (loop2): Mounting V5 Filesystem
[  178.151025][ T4986] XFS (loop2): Ending clean mount
[  178.195513][ T4596] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 2 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  178.229831][ T4596] usb 4-1: USB disconnect, device number 2
[  178.236419][ T5019] fuse: Unknown parameter 'group_i00000000000000000000'
[  178.249317][ T4596] usblp0: removed
[  178.295677][ T3989] XFS (loop2): Unmounting Filesystem
[  178.816702][ T4596] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[  179.076937][ T5030] ptrace attach of "./syz-executor exec"[3560] was attempted by ""[5030]
[  179.109823][ T4596] usb 4-1: Using ep0 maxpacket: 32
[  179.246460][ T4596] usb 4-1: config index 0 descriptor too short (expected 29220, got 36)
[  179.254876][ T4596] usb 4-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[  179.263768][ T4596] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 81
[  179.273088][ T4596] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[  179.283039][ T4596] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[  179.293696][ T4596] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[  179.307821][ T4596] usb 4-1: New USB device found, idVendor=03f0, idProduct=6c17, bcdDevice= 0.40
[  179.317559][ T4596] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  179.328193][ T4596] usb 4-1: config 0 descriptor??
[  179.512987][ T4596] usblp 4-1:0.0: usblp0: USB Bidirectional printer dev 3 if 0 alt 0 proto 3 vid 0x03F0 pid 0x6C17
[  179.557069][ T4596] usb 4-1: USB disconnect, device number 3
[  179.610439][ T4596] usblp0: removed
[  179.926003][ T5036] loop3: detected capacity change from 0 to 256
[  180.307651][ T5036] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  180.316298][ T5036] FAT-fs (loop3): Filesystem has been set read-only
[  181.263300][ T3549] EXT4-fs (loop0): unmounting filesystem.
[  181.301364][ T5048] loop2: detected capacity change from 0 to 64
[  181.548873][ T5054] fuse: Unknown parameter 'group_id00000000000000000000'
[  182.210485][ T4598] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  182.480786][ T4598] usb 4-1: Using ep0 maxpacket: 32
[  182.622842][ T5052] loop0: detected capacity change from 0 to 32768
[  182.635539][ T4598] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  182.869193][ T5072] device syzkaller0 entered promiscuous mode
[  183.400156][ T5052] XFS (loop0): Mounting V5 Filesystem
[  183.451900][ T4598] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  183.461972][ T4598] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  183.471793][ T4598] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  183.481753][ T4598] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  183.552202][ T4598] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  183.601920][ T5052] XFS (loop0): Ending clean mount
[  183.673358][ T5052] XFS (loop0): Metadata CRC error detected at xfs_agfl_read_verify+0x1ca/0x290, xfs_agfl block 0x3 
[  183.707595][ T5052] XFS (loop0): Unmount and run xfs_repair
[  183.766397][ T5052] XFS (loop0): First 128 bytes of corrupted metadata buffer:
[  183.791642][ T5052] 00000000: 58 41 46 4c 00 00 00 00 00 00 00 00 00 00 80 86  XAFL............
[  183.803134][ T4598] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  183.819488][ T4598] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  183.829227][ T5052] 00000010: af d4 a8 f7 47 a7 4b ab 00 00 00 00 00 00 00 00  ....G.K.........
[  183.842810][ T4598] usb 4-1: Product: syz
[  183.848351][ T4598] usb 4-1: Manufacturer: syz
[  183.854586][ T5052] 00000020: 5e fe 9e 73 ff ff ff ff 00 00 02 0a 00 00 02 0b  ^..s............
[  183.868265][ T4598] usb 4-1: SerialNumber: syz
[  183.900180][ T5052] 00000030: 00 00 02 0c 00 00 02 0d 00 00 02 0e 00 00 02 0f  ................
[  183.916613][ T5052] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  183.937470][ T5052] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  183.946979][ T5052] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  183.956803][ T5052] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  183.966007][ T5052] XFS (loop0): metadata I/O error in "xfs_alloc_read_agfl+0x250/0x430" at daddr 0x3 len 1 error 74
[  184.141613][   T27] audit: type=1800 audit(1720069576.223:40): pid=5083 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.340" name="file2" dev="loop0" ino=1063 res=0 errno=0
[  184.154103][ T5087] loop4: detected capacity change from 0 to 512
[  184.162167][ T5052] XFS (loop0): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296).  Shutting down filesystem.
[  184.182855][ T5087] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  184.225218][ T5087] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  184.258204][ T5089] loop2: detected capacity change from 0 to 256
[  184.371936][ T5089] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001)
[  184.380011][ T5089] FAT-fs (loop2): Filesystem has been set read-only
[  184.501762][ T5052] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  184.744896][ T5052] syz.0.340 (5052) used greatest stack depth: 18552 bytes left
[  184.803492][ T5087] EXT4-fs (loop4): 1 truncate cleaned up
[  184.819844][ T5087] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  184.887661][ T3549] XFS (loop0): Unmounting Filesystem
[  184.940600][ T4598] cdc_ncm 4-1:1.0: bind() failure
[  184.972020][ T4598] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found
[  184.979486][ T4598] cdc_ncm 4-1:1.1: bind() failure
[  184.990910][ T4598] usb 4-1: USB disconnect, device number 4
[  185.673620][ T5095] loop2: detected capacity change from 0 to 1764
[  185.948745][ T5095] loop2: detected capacity change from 0 to 512
[  185.962053][ T5095] EXT4-fs: quotafile must be on filesystem root
[  186.044575][ T5099] fuse: Unknown parameter 'group_id00000000000000000000'
[  186.079732][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  186.085679][ T5011] blk_print_req_error: 202 callbacks suppressed
[  186.085695][ T5011] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  186.188276][ T5101] loop4: detected capacity change from 0 to 64
[  187.657157][ T5116] ptrace attach of "./syz-executor exec"[4421] was attempted by ""[5116]
[  187.719667][ T5119] fuse: Unknown parameter '0x0000000000000005'
[  188.540139][ T5131] loop4: detected capacity change from 0 to 256
[  188.636392][ T5131] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  188.644360][ T5131] FAT-fs (loop4): Filesystem has been set read-only
[  189.834205][ T5137] loop1: detected capacity change from 0 to 512
[  189.855726][ T5137] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  189.924007][ T5137] EXT4-fs (loop1): 1 truncate cleaned up
[  189.939373][ T5137] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  190.104846][ T5122] loop2: detected capacity change from 0 to 32768
[  190.379917][ T5122] XFS (loop2): Mounting V5 Filesystem
[  190.863538][ T5122] XFS (loop2): AIL initialisation failed: error -12
[  190.932838][ T5158] fuse: Unknown parameter 'group_id00000000000000000000'
[  190.941484][ T5160] loop0: detected capacity change from 0 to 64
[  190.966753][ T5122] XFS (loop2): log mount failed
[  190.978826][ T3929] EXT4-fs (loop1): unmounting filesystem.
[  191.188246][ T4611] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  191.208342][ T3564] Bluetooth: hci4: command 0x0406 tx timeout
[  191.214496][ T3564] Bluetooth: hci0: command 0x0406 tx timeout
[  191.261902][ T5164] loop1: detected capacity change from 0 to 1764
[  191.533801][ T5173] device syzkaller0 entered promiscuous mode
[  192.435014][ T4611] usb 4-1: Using ep0 maxpacket: 32
[  192.565325][ T4611] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  192.600267][ T4611] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  192.765054][ T5011] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  192.797195][ T4611] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  192.813850][ T5164] loop1: detected capacity change from 0 to 512
[  192.817709][ T4611] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  192.832739][ T5164] EXT4-fs: quotafile must be on filesystem root
[  192.845467][ T4611] usb 4-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  192.917910][ T5181] loop4: detected capacity change from 0 to 256
[  192.991527][ T5181] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  192.999588][ T5181] FAT-fs (loop4): Filesystem has been set read-only
[  193.578222][ T4611] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  193.685287][ T4611] usb 4-1: string descriptor 0 read error: -71
[  193.707430][ T4611] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  193.731832][ T4611] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  193.794373][ T4611] usb 4-1: can't set config #1, error -71
[  193.852936][ T4611] usb 4-1: USB disconnect, device number 5
[  194.115876][ T5189] loop4: detected capacity change from 0 to 512
[  194.133560][ T5189] EXT4-fs: Ignoring removed nobh option
[  194.167292][ T1254] ieee802154 phy0 wpan0: encryption failed: -22
[  194.173747][ T1254] ieee802154 phy1 wpan1: encryption failed: -22
[  194.411264][ T5189] fscrypt (loop4, inode 2): Error -61 getting encryption context
[  194.445779][ T5189] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -61
[  194.467552][ T5189] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #13: comm syz.4.374: casefold flag without casefold feature
[  194.485454][ T5196] ptrace attach of "./syz-executor exec"[3929] was attempted by ""[5196]
[  194.503156][ T5189] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #13: comm syz.4.374: unexpected EA_INODE flag
[  194.553349][ T5189] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.374: couldn't read orphan inode 13 (err -117)
[  194.595602][ T5189] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  194.754549][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  196.003021][ T5204] fuse: Bad value for 'user_id'
[  196.160304][ T5206] loop0: detected capacity change from 0 to 64
[  196.445813][ T5208] loop0: detected capacity change from 0 to 512
[  196.476563][ T5208] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  196.556939][ T5208] EXT4-fs (loop0): 1 truncate cleaned up
[  196.562861][ T5208] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  197.472703][ T5228] loop3: detected capacity change from 0 to 256
[  198.749846][ T5226] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  198.757872][ T5226] FAT-fs (loop3): Filesystem has been set read-only
[  199.158300][ T3549] EXT4-fs (loop0): unmounting filesystem.
[  199.425294][ T4598] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  199.583101][ T5245] fuse: Bad value for 'user_id'
[  199.788090][ T5246] device syzkaller0 entered promiscuous mode
[  200.375059][ T4598] usb 5-1: Using ep0 maxpacket: 32
[  200.515115][ T4598] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  200.560420][ T5250] loop0: detected capacity change from 0 to 64
[  200.584992][ T4598] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  200.635047][ T4598] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  200.685325][ T4598] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  200.708458][ T4598] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  200.732910][ T4598] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  201.058025][ T5254] Bluetooth: MGMT ver 1.22
[  201.235476][ T4598] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  201.301890][ T4598] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  201.476941][ T4598] usb 5-1: Product: syz
[  201.553818][ T4598] usb 5-1: Manufacturer: syz
[  201.618315][ T4598] usb 5-1: SerialNumber: syz
[  202.006356][ T5260] loop1: detected capacity change from 0 to 512
[  202.166008][ T5260] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  202.185544][ T5260] ext4 filesystem being mounted at /37/bus supports timestamps until 2038 (0x7fffffff)
[  204.855180][ T4598] cdc_ncm 5-1:1.0: bind() failure
[  204.868248][ T4598] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  204.878443][ T4598] cdc_ncm 5-1:1.1: bind() failure
[  204.889460][ T4598] usb 5-1: USB disconnect, device number 6
[  205.151497][ T3929] EXT4-fs (loop1): unmounting filesystem.
[  206.048766][ T5275] loop1: detected capacity change from 0 to 1764
[  206.207980][ T5275] loop1: detected capacity change from 0 to 512
[  206.339236][ T5275] EXT4-fs: quotafile must be on filesystem root
[  206.393599][ T5268] ptrace attach of "./syz-executor exec"[4421] was attempted by ""[5268]
[  206.587015][ T5282] loop0: detected capacity change from 0 to 256
[  206.612933][ T5282] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001)
[  206.621326][ T5282] FAT-fs (loop0): Filesystem has been set read-only
[  207.513261][ T5293] loop0: detected capacity change from 0 to 64
[  207.612616][ T5292] loop1: detected capacity change from 0 to 2048
[  207.679385][ T5292] EXT4-fs: Ignoring removed nomblk_io_submit option
[  207.746108][ T5292] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  207.915242][ T5292] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  207.975977][ T3564] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  207.985712][ T3564] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  208.202928][ T5302] device syzkaller0 entered promiscuous mode
[  208.411641][ T3564] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  208.444492][ T3564] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  208.455689][ T3564] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  208.464569][ T3564] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  208.639964][ T5292] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  208.677782][ T5292] EXT4-fs error (device loop1): ext4_search_dir:1548: inode #12: block 9: comm syz.1.400: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=56 fake=0
[  208.817861][ T5292] EXT4-fs (loop1): Remounting filesystem read-only
[  208.975373][ T3929] EXT4-fs (loop1): unmounting filesystem.
[  209.449430][ T5295] loop3: detected capacity change from 0 to 32768
[  209.635528][ T5295] XFS (loop3): Mounting V5 Filesystem
[  209.734009][ T5295] XFS (loop3): Ending clean mount
[  209.739332][ T3602] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  209.838939][ T4421] XFS (loop3): Unmounting Filesystem
[  210.005113][ T3602] usb 2-1: Using ep0 maxpacket: 32
[  210.087169][ T5322] loop4: detected capacity change from 0 to 512
[  210.160125][ T5322] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  210.175041][ T3602] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  210.176407][ T5322] ext4 filesystem being mounted at /97/bus supports timestamps until 2038 (0x7fffffff)
[  210.202879][ T3602] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  210.238688][ T3602] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  210.261542][ T3602] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  210.277780][ T3602] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  210.290291][ T3602] usb 2-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  210.566262][ T3562] Bluetooth: hci5: command tx timeout
[  211.310577][ T5328] fuse: Bad value for 'fd'
[  211.327538][ T3602] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  211.336928][ T3602] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  211.345595][ T3602] usb 2-1: Product: syz
[  211.349800][ T3602] usb 2-1: Manufacturer: syz
[  211.354426][ T3602] usb 2-1: SerialNumber: syz
[  211.605764][ T3562] Bluetooth: hci1: command 0x0406 tx timeout
[  212.115325][ T3602] cdc_ncm 2-1:1.0: bind() failure
[  212.144265][ T3602] cdc_ncm 2-1:1.1: CDC Union missing and no IAD found
[  212.168294][ T3602] cdc_ncm 2-1:1.1: bind() failure
[  212.217956][ T3602] usb 2-1: USB disconnect, device number 3
[  212.415590][ T4004] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.447905][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  212.643545][ T4004] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  212.654282][ T3562] Bluetooth: hci5: command tx timeout
[  212.668298][ T5339] loop4: detected capacity change from 0 to 1764
[  212.731748][ T5011] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  212.789740][ T5339] loop4: detected capacity change from 0 to 512
[  212.805825][ T5339] EXT4-fs: quotafile must be on filesystem root
[  212.835524][ T4004] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.044575][ T4004] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.160988][ T5348] ptrace attach of "./syz-executor exec"[4421] was attempted by ""[5348]
[  213.192742][ T5300] chnl_net:caif_netlink_parms(): no params data found
[  213.258013][ T5350] loop4: detected capacity change from 0 to 256
[  213.288937][ T5350] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000001)
[  213.297000][ T5350] FAT-fs (loop4): Filesystem has been set read-only
[  214.205379][ T5354] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  214.546867][ T5300] bridge0: port 1(bridge_slave_0) entered blocking state
[  214.599709][ T5300] bridge0: port 1(bridge_slave_0) entered disabled state
[  214.627241][ T5300] device bridge_slave_0 entered promiscuous mode
[  214.725401][ T3562] Bluetooth: hci5: command tx timeout
[  214.742048][ T5300] bridge0: port 2(bridge_slave_1) entered blocking state
[  214.761951][ T5300] bridge0: port 2(bridge_slave_1) entered disabled state
[  214.935163][ T5300] device bridge_slave_1 entered promiscuous mode
[  215.370941][ T5300] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  215.460569][ T5300] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  215.657877][ T5300] team0: Port device team_slave_0 added
[  215.787712][ T5300] team0: Port device team_slave_1 added
[  215.814973][ T5368] fuse: Bad value for 'fd'
[  215.935707][ T5357] loop4: detected capacity change from 0 to 32768
[  216.943059][ T3562] Bluetooth: hci5: command tx timeout
[  217.450360][ T5300] batman_adv: batadv0: Adding interface: batadv_slave_0
[  217.467905][ T5300] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  217.555061][ T5300] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  217.577070][ T5300] batman_adv: batadv0: Adding interface: batadv_slave_1
[  217.584090][ T5300] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  217.612220][ T5300] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  217.652737][ T5395] loop0: detected capacity change from 0 to 512
[  217.672027][ T5381] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  217.689576][ T5381] device syzkaller0 entered promiscuous mode
[  217.937744][ T5395] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  217.958954][ T5395] ext4 filesystem being mounted at /111/bus supports timestamps until 2038 (0x7fffffff)
[  219.343293][ T5412] loop3: detected capacity change from 0 to 1764
[  219.409881][ T5011] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  219.477493][ T5412] loop3: detected capacity change from 0 to 512
[  219.512031][ T5412] EXT4-fs: quotafile must be on filesystem root
[  219.980852][ T5417] loop3: detected capacity change from 0 to 256
[  220.359778][ T5416] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000001)
[  220.367810][ T5416] FAT-fs (loop3): Filesystem has been set read-only
[  221.048625][ T3549] EXT4-fs (loop0): unmounting filesystem.
[  221.080819][ T5424] loop4: detected capacity change from 0 to 1024
[  221.085323][ T3602] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  221.151459][ T5300] device hsr_slave_0 entered promiscuous mode
[  221.159905][ T4010] hfsplus: b-tree write err: -5, ino 4
[  221.190731][ T5300] device hsr_slave_1 entered promiscuous mode
[  221.231903][ T5300] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  221.244531][ T5300] Cannot create hsr debugfs directory
[  221.440885][ T3597] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  221.475295][ T3602] usb 4-1: New USB device found, idVendor=0c45, idProduct=8001, bcdDevice=90.0a
[  221.502724][ T3602] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  221.631071][ T3602] usb 4-1: config 0 descriptor??
[  221.848262][ T3602] gspca_main: sn9c2028-2.14.0 probing 0c45:8001
[  222.037019][ T3602] gspca_sn9c2028: read1 error -32
[  222.335897][ T3602] gspca_sn9c2028: read1 error -71
[  222.345812][ T3602] sn9c2028: probe of 4-1:0.0 failed with error -71
[  222.365155][ T3597] usb 2-1: Using ep0 maxpacket: 8
[  222.379651][ T3602] usb 4-1: USB disconnect, device number 6
[  222.495466][ T3597] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  222.515079][ T3597] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  222.535669][ T3597] usb 2-1: New USB device found, idVendor=04d8, idProduct=f372, bcdDevice= 0.00
[  222.556002][ T3597] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  222.607412][ T5449] loop4: detected capacity change from 0 to 2048
[  222.616026][ T3597] usb 2-1: config 0 descriptor??
[  222.745956][ T5449] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  222.807049][   T27] audit: type=1800 audit(1720069614.893:41): pid=5449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.432" name="bus" dev="loop4" ino=18 res=0 errno=0
[  222.845218][ T5456] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  222.885752][   T27] audit: type=1800 audit(1720069614.923:42): pid=5449 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.432" name="bus" dev="loop4" ino=18 res=0 errno=0
[  222.988550][ T5459] loop0: detected capacity change from 0 to 256
[  223.011849][ T5459] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000001)
[  223.020725][ T5459] FAT-fs (loop0): Filesystem has been set read-only
[  223.339508][ T5456] EXT4-fs (loop4): Remounting filesystem read-only
[  223.786321][ T4004] device hsr_slave_0 left promiscuous mode
[  223.802236][ T4004] device hsr_slave_1 left promiscuous mode
[  223.819644][ T4004] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  223.844850][ T4004] batman_adv: batadv0: Removing interface: batadv_slave_0
[  223.848157][ T3597] hid-led 0003:04D8:F372.0001: hidraw0: USB HID v0.00 Device [HID 04d8:f372] on usb-dummy_hcd.1-1/input0
[  223.880436][ T4004] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  223.972062][ T3597] hid-led 0003:04D8:F372.0001: Greynut Luxafor initialized
[  224.189823][ T4004] batman_adv: batadv0: Removing interface: batadv_slave_1
[  224.576669][ T3597] usb 2-1: USB disconnect, device number 4
[  224.682206][ T3595] leds luxafor0:blue:led5: Setting an LED's brightness failed (-38)
[  224.697004][ T3017] leds luxafor0:green:led5: Setting an LED's brightness failed (-38)
[  224.759115][ T3600] leds luxafor0:red:led5: Setting an LED's brightness failed (-38)
[  224.769158][ T3600] leds luxafor0:blue:led4: Setting an LED's brightness failed (-38)
[  224.795816][ T4004] device bridge_slave_1 left promiscuous mode
[  224.803310][ T3560] EXT4-fs (loop4): unmounting filesystem.
[  224.811125][ T4004] bridge0: port 2(bridge_slave_1) entered disabled state
[  224.880275][ T3595] leds luxafor0:green:led4: Setting an LED's brightness failed (-38)
[  225.641866][ T3595] leds luxafor0:red:led4: Setting an LED's brightness failed (-38)
[  225.652662][ T4004] device bridge_slave_0 left promiscuous mode
[  225.688571][ T4004] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.714005][ T3631] leds luxafor0:blue:led3: Setting an LED's brightness failed (-38)
[  225.748734][ T3595] leds luxafor0:green:led3: Setting an LED's brightness failed (-38)
[  225.753460][ T5492] loop4: detected capacity change from 0 to 512
[  225.767172][ T3631] leds luxafor0:red:led3: Setting an LED's brightness failed (-38)
[  225.796035][ T3595] leds luxafor0:blue:led2: Setting an LED's brightness failed (-38)
[  225.817779][ T3595] leds luxafor0:green:led2: Setting an LED's brightness failed (-38)
[  225.842820][ T3595] leds luxafor0:red:led2: Setting an LED's brightness failed (-38)
[  225.864478][ T3595] leds luxafor0:blue:led1: Setting an LED's brightness failed (-38)
[  225.889378][ T3595] leds luxafor0:green:led1: Setting an LED's brightness failed (-38)
[  225.898366][ T4004] device veth1_macvtap left promiscuous mode
[  225.904462][ T4004] device veth0_macvtap left promiscuous mode
[  225.917021][ T3595] leds luxafor0:red:led1: Setting an LED's brightness failed (-38)
[  225.926862][ T3595] leds luxafor0:blue:led0: Setting an LED's brightness failed (-38)
[  225.936443][ T3595] leds luxafor0:green:led0: Setting an LED's brightness failed (-38)
[  225.955773][ T3595] leds luxafor0:red:led0: Setting an LED's brightness failed (-38)
[  225.974267][ T4004] device veth1_vlan left promiscuous mode
[  226.034813][ T4004] device veth0_vlan left promiscuous mode
[  226.132191][ T5492] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  226.165987][ T5492] ext4 filesystem being mounted at /108/bus supports timestamps until 2038 (0x7fffffff)
[  310.042190][   T27] audit: type=1326 audit(1720069619.863:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5517 comm="syz.1.446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fef5c975bd9 code=0x7ffc0000
[  415.034893][    C1] rcu: INFO: rcu_preempt self-detected stall on CPU
[  415.041638][    C1] rcu: 	1-...!: (10499 ticks this GP) idle=393c/0/0x1 softirq=18764/18764 fqs=0
[  415.052191][    C1] 	(t=10500 jiffies g=23749 q=287 ncpus=2)
[  415.058038][    C1] rcu: rcu_preempt kthread timer wakeup didn't happen for 10499 jiffies! g23749 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402
[  415.070572][    C1] rcu: 	Possible timer handling issue on cpu=1 timer-softirq=12520
[  415.078489][    C1] rcu: rcu_preempt kthread starved for 10500 jiffies! g23749 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x402 ->cpu=1
[  415.089893][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  415.099894][    C1] rcu: RCU grace-period kthread stack dump:
[  415.105804][    C1] task:rcu_preempt     state:I stack:25816 pid:16    ppid:2      flags:0x00004000
[  415.115072][    C1] Call Trace:
[  415.118378][    C1]  <TASK>
[  415.121341][    C1]  __schedule+0x142d/0x4550
[  415.125896][    C1]  ? _raw_spin_unlock+0x40/0x40
[  415.130823][    C1]  ? __sched_text_start+0x8/0x8
[  415.135733][    C1]  ? lockdep_softirqs_off+0x420/0x420
[  415.141152][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  415.147091][    C1]  ? _raw_spin_unlock+0x40/0x40
[  415.151990][    C1]  schedule+0xbf/0x180
[  415.156107][    C1]  schedule_timeout+0x1b9/0x300
[  415.160998][    C1]  ? console_conditional_schedule+0x40/0x40
[  415.166934][    C1]  ? update_process_times+0x1b0/0x1b0
[  415.172350][    C1]  ? prepare_to_swait_event+0x329/0x350
[  415.177951][    C1]  rcu_gp_fqs_loop+0x2d2/0x1150
[  415.182870][    C1]  ? rcu_gp_init+0x15f0/0x15f0
[  415.187688][    C1]  rcu_gp_kthread+0xa3/0x3b0
[  415.192316][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  415.197464][    C1]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  415.203406][    C1]  ? __kthread_parkme+0x168/0x1c0
[  415.208476][    C1]  kthread+0x28d/0x320
[  415.212579][    C1]  ? rcu_report_qs_rsp+0x1a0/0x1a0
[  415.217731][    C1]  ? kthread_blkcg+0xd0/0xd0
[  415.222355][    C1]  ret_from_fork+0x1f/0x30
[  415.226826][    C1]  </TASK>
[  415.229877][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  415.236241][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.1.96-syzkaller #0
[  415.243906][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  415.254092][    C1] RIP: 0010:acpi_idle_do_entry+0x10f/0x340
[  415.259972][    C1] Code: 44 f5 f6 48 83 e3 08 0f 85 0b 01 00 00 4c 8d 74 24 20 e8 64 03 fc f6 0f 1f 44 00 00 e8 ba 40 f5 f6 0f 00 2d 03 14 b2 00 fb f4 <4c> 89 f3 48 c1 eb 03 42 80 3c 3b 00 74 08 4c 89 f7 e8 2b c2 4c f7
[  415.279666][    C1] RSP: 0018:ffffc90000177b80 EFLAGS: 000002d3
[  415.285772][    C1] RAX: ffffffff8a955316 RBX: 0000000000000000 RCX: ffff888012739dc0
[  415.293776][    C1] RDX: 0000000000000000 RSI: ffffffff8aec0240 RDI: ffffffff8b3d4760
[  415.301782][    C1] RBP: ffffc90000177c10 R08: ffffffff8a9552f8 R09: ffffed10024e73b9
[  415.309813][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff9200002ef70
[  415.317832][    C1] R13: ffff888141778804 R14: ffffc90000177ba0 R15: dffffc0000000000
[  415.325850][    C1] FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  415.334821][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  415.341455][    C1] CR2: 00007f9835ed02b0 CR3: 000000006313c000 CR4: 00000000003506e0
[  415.349476][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  415.357480][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  415.365479][    C1] Call Trace:
[  415.368784][    C1]  <IRQ>
[  415.371780][    C1]  ? rcu_check_gp_kthread_starvation+0x1b8/0x220
[  415.378252][    C1]  ? print_cpu_stall+0x341/0x5f0
[  415.383235][    C1]  ? rcu_sched_clock_irq+0x997/0x1200
[  415.388829][    C1]  ? rcutree_dead_cpu+0x20/0x20
[  415.393727][    C1]  ? hrtimer_run_queues+0x163/0x450
[  415.398973][    C1]  ? update_process_times+0x147/0x1b0
[  415.404389][    C1]  ? tick_sched_timer+0x386/0x550
[  415.409453][    C1]  ? tick_setup_sched_timer+0x2f0/0x2f0
[  415.415034][    C1]  ? __hrtimer_run_queues+0x5a7/0xe50
[  415.420468][    C1]  ? hrtimer_interrupt+0x980/0x980
[  415.425618][    C1]  ? ktime_get_update_offsets_now+0x407/0x420
[  415.431747][    C1]  ? hrtimer_interrupt+0x392/0x980
[  415.437098][    C1]  ? __sysvec_apic_timer_interrupt+0x156/0x580
[  415.443293][    C1]  ? sysvec_apic_timer_interrupt+0x8c/0xb0
[  415.449135][    C1]  </IRQ>
[  415.452091][    C1]  <TASK>
[  415.455047][    C1]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  415.461258][    C1]  ? acpi_idle_do_entry+0xe8/0x340
[  415.466411][    C1]  ? acpi_idle_do_entry+0x106/0x340
[  415.471651][    C1]  ? acpi_idle_do_entry+0x10f/0x340
[  415.476897][    C1]  ? acpi_idle_enter_bm+0x5e0/0x5e0
[  415.482305][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  415.488331][    C1]  ? __sched_clock_gtod_offset+0xe0/0xe0
[  415.494012][    C1]  acpi_idle_enter+0x352/0x4f0
[  415.498841][    C1]  cpuidle_enter_state+0x516/0xf80
[  415.504027][    C1]  ? cpuidle_enter_s2idle+0x6b0/0x6b0
[  415.509453][    C1]  ? tick_nohz_idle_stop_tick+0x238/0xad0
[  415.515229][    C1]  cpuidle_enter+0x59/0x90
[  415.519705][    C1]  do_idle+0x3ce/0x680
[  415.523827][    C1]  ? idle_inject_timer_fn+0x60/0x60
[  415.529078][    C1]  ? asm_common_interrupt+0x22/0x40
[  415.534330][    C1]  ? schedule_idle+0x57/0x90
[  415.538974][    C1]  cpu_startup_entry+0x3d/0x60
[  415.543787][    C1]  start_secondary+0xe4/0xf0
[  415.548417][    C1]  secondary_startup_64_no_verify+0xcf/0xdb
[  415.554457][    C1]  </TASK>
[  415.557555][    C1] Sending NMI from CPU 1 to CPUs 0:
[  415.562969][    C0] NMI backtrace for cpu 0
[  415.562980][    C0] CPU: 0 PID: 5517 Comm: syz.1.446 Not tainted 6.1.96-syzkaller #0
[  415.562998][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  415.563009][    C0] RIP: 0010:_raw_spin_lock_irq+0xe3/0x110
[  415.563037][    C0] Code: f6 31 d2 31 c9 41 b8 01 00 00 00 45 31 c9 ff 75 08 e8 b1 0b d5 f6 48 83 c4 08 4c 89 e7 e8 15 6a d6 f6 48 c7 04 24 0e 36 e0 45 <4b> c7 04 2f 00 00 00 00 65 48 8b 04 25 28 00 00 00 48 3b 44 24 40
[  415.563052][    C0] RSP: 0018:ffffc90000007cc0 EFLAGS: 00000046
[  415.563068][    C0] RAX: 0281f64bac6f9600 RBX: 1ffff92000000f9c RCX: 0000000000000001
[  415.563081][    C0] RDX: dffffc0000000000 RSI: 0000000000000004 RDI: ffffc90000007c40
[  415.563094][    C0] RBP: ffffc90000007d50 R08: dffffc0000000000 R09: 0000000000000003
[  415.563111][    C0] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff8880b982a4c0
[  415.563124][    C0] R13: 1ffff92000000f98 R14: ffffc90000007ce0 R15: dffffc0000000000
[  415.563137][    C0] FS:  0000555556521500(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  415.563153][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  415.563166][    C0] CR2: 0000001b30e16ff8 CR3: 00000000193a4000 CR4: 00000000003506f0
[  415.563181][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  415.563191][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  415.563202][    C0] Call Trace:
[  415.563210][    C0]  <NMI>
[  415.563216][    C0]  ? nmi_cpu_backtrace+0x3de/0x560
[  415.563244][    C0]  ? read_lock_is_recursive+0x10/0x10
[  415.563273][    C0]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  415.563301][    C0]  ? nmi_handle+0x25/0x440
[  415.563335][    C0]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  415.563362][    C0]  ? nmi_handle+0x12e/0x440
[  415.563387][    C0]  ? nmi_handle+0x25/0x440
[  415.563413][    C0]  ? _raw_spin_lock_irq+0xe3/0x110
[  415.563433][    C0]  ? default_do_nmi+0x62/0x150
[  415.563451][    C0]  ? exc_nmi+0xa8/0x100
[  415.563467][    C0]  ? end_repeat_nmi+0x16/0x31
[  415.563498][    C0]  ? _raw_spin_lock_irq+0xe3/0x110
[  415.563519][    C0]  ? _raw_spin_lock_irq+0xe3/0x110
[  415.563542][    C0]  ? _raw_spin_lock_irq+0xe3/0x110
[  415.563563][    C0]  </NMI>
[  415.563568][    C0]  <IRQ>
[  415.563574][    C0]  ? _raw_spin_lock_irqsave+0x120/0x120
[  415.563595][    C0]  ? posix_timer_fn+0x2ca/0x390
[  415.563620][    C0]  __hrtimer_run_queues+0x6d3/0xe50
[  415.563651][    C0]  ? hrtimer_interrupt+0x980/0x980
[  415.563671][    C0]  ? ktime_get_update_offsets_now+0x407/0x420
[  415.563700][    C0]  hrtimer_interrupt+0x392/0x980
[  415.563733][    C0]  __sysvec_apic_timer_interrupt+0x156/0x580
[  415.563757][    C0]  sysvec_apic_timer_interrupt+0x8c/0xb0
[  415.563777][    C0]  </IRQ>
[  415.563782][    C0]  <TASK>
[  415.563787][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  415.563813][    C0] RIP: 0010:_raw_spin_unlock_irq+0x25/0x40
[  415.563836][    C0] Code: f1 bc f5 ff 90 53 48 89 fb 48 83 c7 18 48 8b 74 24 08 e8 0e 30 d5 f6 48 89 df e8 76 6d d6 f6 e8 c1 f9 fb f6 fb bf 01 00 00 00 <e8> e6 05 c9 f6 65 8b 05 87 12 6d 75 85 c0 74 02 5b c3 e8 34 36 6b
[  415.563851][    C0] RSP: 0018:ffffc90003337b30 EFLAGS: 00000286
[  415.563865][    C0] RAX: 0281f64bac6f9600 RBX: ffff88805bce40c0 RCX: ffffffff91c94103
[  415.563878][    C0] RDX: dffffc0000000000 RSI: ffffffff8aec0240 RDI: 0000000000000001
[  415.563891][    C0] RBP: ffffc90003337c70 R08: dffffc0000000000 R09: ffffed100b79c819
[  415.563904][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff1100b79c8ab
[  415.563916][    C0] R13: 000000001c000004 R14: 0000000000000021 R15: ffff88805bce4558
[  415.563937][    C0]  get_signal+0x154b/0x17d0
[  415.563972][    C0]  ? ptrace_notify+0x370/0x370
[  415.564002][    C0]  arch_do_signal_or_restart+0xb0/0x1a10
[  415.564024][    C0]  ? __might_fault+0xa1/0x110
[  415.564046][    C0]  ? __lock_acquire+0x1f80/0x1f80
[  415.564076][    C0]  ? do_sigaltstack+0x3f3/0x610
[  415.564097][    C0]  ? get_sigframe_size+0x10/0x10
[  415.564123][    C0]  ? restore_altstack+0x107/0x150
[  415.564142][    C0]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  415.564174][    C0]  ? exit_to_user_mode_loop+0x39/0x100
[  415.564193][    C0]  exit_to_user_mode_loop+0x6a/0x100
[  415.564210][    C0]  exit_to_user_mode_prepare+0xb1/0x140
[  415.564227][    C0]  syscall_exit_to_user_mode+0x60/0x270
[  415.564250][    C0]  do_syscall_64+0x47/0xb0
[  415.564275][    C0]  ? clear_bhb_loop+0x45/0xa0
[  415.564301][    C0]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  415.564325][    C0] RIP: 0033:0x7fef5c975bd9
[  415.564346][    C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  415.564360][    C0] RSP: 002b:00007fff5baab848 EFLAGS: 00000246
[  415.564373][    C0] RAX: fffffffffffffffc RBX: 000000000004bb1b RCX: 00007fef5c975bd9
[  415.564386][    C0] RDX: 0000000000000000 RSI: 0000000000000080 RDI: 00007fef5cb04044
[  415.564397][    C0] RBP: 000000000004bae9 R08: 0000000000000010 R09: 000000145baabb7f
[  415.564409][    C0] R10: 00007fff5baab930 R11: 0000000000000246 R12: 00007fef5cb04044
[  415.564421][    C0] R13: 0000000000000032 R14: 00007fff5baab950 R15: 00007fff5baab930
[  415.564441][    C0]  </TASK>
[  415.564969][    C1] CPU: 1 PID: 0 Comm: swapper/1 Not tainted 6.1.96-syzkaller #0
[  416.071099][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  416.081187][    C1] RIP: 0010:acpi_idle_do_entry+0x10f/0x340
[  416.087055][    C1] Code: 44 f5 f6 48 83 e3 08 0f 85 0b 01 00 00 4c 8d 74 24 20 e8 64 03 fc f6 0f 1f 44 00 00 e8 ba 40 f5 f6 0f 00 2d 03 14 b2 00 fb f4 <4c> 89 f3 48 c1 eb 03 42 80 3c 3b 00 74 08 4c 89 f7 e8 2b c2 4c f7
[  416.106790][    C1] RSP: 0018:ffffc90000177b80 EFLAGS: 000002d3
[  416.112911][    C1] RAX: ffffffff8a955316 RBX: 0000000000000000 RCX: ffff888012739dc0
[  416.121020][    C1] RDX: 0000000000000000 RSI: ffffffff8aec0240 RDI: ffffffff8b3d4760
[  416.129240][    C1] RBP: ffffc90000177c10 R08: ffffffff8a9552f8 R09: ffffed10024e73b9
[  416.137277][    C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff9200002ef70
[  416.145291][    C1] R13: ffff888141778804 R14: ffffc90000177ba0 R15: dffffc0000000000
[  416.153495][    C1] FS:  0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  416.162643][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  416.169280][    C1] CR2: 00007f9835ed02b0 CR3: 000000006313c000 CR4: 00000000003506e0
[  416.177388][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  416.185417][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  416.193436][    C1] Call Trace:
[  416.196775][    C1]  <IRQ>
[  416.199668][    C1]  ? rcu_dump_cpu_stacks+0x296/0x4f0
[  416.205030][    C1]  ? print_cpu_stall+0x346/0x5f0
[  416.210034][    C1]  ? rcu_sched_clock_irq+0x997/0x1200
[  416.215465][    C1]  ? rcutree_dead_cpu+0x20/0x20
[  416.220358][    C1]  ? hrtimer_run_queues+0x163/0x450
[  416.225623][    C1]  ? update_process_times+0x147/0x1b0
[  416.231057][    C1]  ? tick_sched_timer+0x386/0x550
[  416.236125][    C1]  ? tick_setup_sched_timer+0x2f0/0x2f0
[  416.241750][    C1]  ? __hrtimer_run_queues+0x5a7/0xe50
[  416.247201][    C1]  ? hrtimer_interrupt+0x980/0x980
[  416.252377][    C1]  ? ktime_get_update_offsets_now+0x407/0x420
[  416.258504][    C1]  ? hrtimer_interrupt+0x392/0x980
[  416.263686][    C1]  ? __sysvec_apic_timer_interrupt+0x156/0x580
[  416.269895][    C1]  ? sysvec_apic_timer_interrupt+0x8c/0xb0
[  416.275764][    C1]  </IRQ>
[  416.278734][    C1]  <TASK>
[  416.281698][    C1]  ? asm_sysvec_apic_timer_interrupt+0x16/0x20
[  416.287915][    C1]  ? acpi_idle_do_entry+0xe8/0x340
[  416.293244][    C1]  ? acpi_idle_do_entry+0x106/0x340
[  416.298487][    C1]  ? acpi_idle_do_entry+0x10f/0x340
[  416.303820][    C1]  ? acpi_idle_enter_bm+0x5e0/0x5e0
[  416.309058][    C1]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  416.315086][    C1]  ? __sched_clock_gtod_offset+0xe0/0xe0
[  416.320777][    C1]  acpi_idle_enter+0x352/0x4f0
[  416.325605][    C1]  cpuidle_enter_state+0x516/0xf80
[  416.330909][    C1]  ? cpuidle_enter_s2idle+0x6b0/0x6b0
[  416.336351][    C1]  ? tick_nohz_idle_stop_tick+0x238/0xad0
[  416.342212][    C1]  cpuidle_enter+0x59/0x90
[  416.346673][    C1]  do_idle+0x3ce/0x680
[  416.351016][    C1]  ? idle_inject_timer_fn+0x60/0x60
[  416.356257][    C1]  ? asm_common_interrupt+0x22/0x40
[  416.361522][    C1]  ? schedule_idle+0x57/0x90
[  416.366174][    C1]  cpu_startup_entry+0x3d/0x60
[  416.370989][    C1]  start_secondary+0xe4/0xf0
[  416.375611][    C1]  secondary_startup_64_no_verify+0xcf/0xdb
[  416.381555][    C1]  </TASK>