last executing test programs:

4m31.950542005s ago: executing program 0 (id=1149):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000c80)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=@newqdisc={0x60, 0x24, 0x4ee4e6a52ff56541, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x30, 0x2, {{0x0, 0x0, 0x0, 0x1}, [@TCA_NETEM_RATE={0x14, 0xd}]}}}]}, 0x60}}, 0x0)

4m31.799820447s ago: executing program 0 (id=1151):
symlink(&(0x7f00000049c0)='./file0\x00', &(0x7f00000059c0)='./file0\x00')
umount2(&(0x7f0000000080)='./file0\x00', 0xe)

4m31.681163637s ago: executing program 0 (id=1155):
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x936}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='mm_page_alloc\x00', r1}, 0x10)
modify_ldt$write(0x1, &(0x7f0000000000), 0x10)
r2 = socket$packet(0x11, 0x0, 0x300)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x2000480, &(0x7f0000000100), 0x5, 0x764, &(0x7f0000000f80)="$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")
r3 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r4 = syz_mount_image$fuse(&(0x7f0000000080), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002880)={{'fd', 0x3d, r3}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0)
read$FUSE(r3, &(0x7f0000004940)={0x2020, 0x0, <r5=>0x0}, 0x2020)
write$FUSE_INIT(r3, &(0x7f0000002140)={0x50, 0x0, r5, {0x7, 0x28, 0x0, 0x1c0000}}, 0x50)
read$FUSE(r3, &(0x7f0000002900)={0x2020, 0x0, <r6=>0x0}, 0x2020)
write$FUSE_INTERRUPT(r3, &(0x7f0000000000)={0x10, 0xffffffffffffffda, r6}, 0x10)
openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
syz_fuse_handle_req(r3, &(0x7f0000006980)="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", 0x2000, &(0x7f0000008d40)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
getdents(r4, 0x0, 0x0)
syz_fuse_handle_req(r3, &(0x7f0000000140)="3fced206f73fe1d5867026f1528868695fe645f20d5aaa25def1012a87b088d43746b1a07b310f864106f968e2d284149cc6e1e894898edcf1fc433bea30de5a97fd7225f7c662354bc7c2df98dff9ab415c0f9fbdc4bd50e96e0e92c6236214a63e0111b2df8e89040439088bf85e4fdc0b6dddf3768c7fdbddaafc34069f64b05c83e8a9f2e59c73b23c3e439240f64265e9f9cf0e3f8d992cc54e84b30c3420e7f81a375ea64305688fd9906a7a62b40e7d7f85efb48aee9bd081d887acd82a5fa6b30e13fc5f63a5940c9df05e252cf9ace116406752366657c7a464d95a922cd871f18327d22d418f716029a53d117f744194c2813c810f4dca20d19dff4a0f95c5310c89624c0c810db6e4924ff04ea75629c27ded80303080e416357d621bca8831c43dfa4200e11ca818977a5ff62d08883b7137f77597361fbff4942c584e3e710c70b654a7ae30b86aa4d17abac9ea89d4779df035c5a483d17d875e80f272fba0dce30605ea9a0816ad8005fcd3802ab5501fdd487ee5b6989761b4e6de12e361aca175d43501d1efb14ec2432e40f9fb3cfbd904f27307fe5e8589f58fc7224050bd572994b2ed9c635b0eeae352b180525cdaed0c6498b5b65452f6db57677c197984ba102aea22864ed92d2ae0b9b5101cf66f680751b974b544b2a4264b374717aec81aedc48818d4b6105bd9ced9c4610d4b5eb73cc232fc68bdd876aa2b3d886c6d9631bbd903abdd477d9c4643cb5f880a54d1b298225467463099a970796501cf5b71a4fa8454ef5d941d4407487bd8d24465366b465c774849515b5cf9552c622e109b6f3ddfbf04a9f554224f1a25654f613f0e8ee49f4cc1c12a6aa9fd0e1626172cec3add6ea47200cca5c6bbd50730714a91ebe4c7b79d4fb13a3b9125d6b061b83aad342895cf739b713e9e9db9101f31af49484b356825065c3187c39ce38b5201aaa0e199944d8cdf903a2b66bb5bd650b10a990ffc9532400a576113f6975cf704935fbfd3cfcdf4fcf5562eb744318a8636aa5d15d3d39f5184ce32aeab9a92b0b61a2dab73358bc4e04473169fa0d1bd38bcae2a9337741dcac99c25ee21b625e70ae63c5d655eb52b243cef6fb967b22e0a83fa8cb042a22e051c16f2c210bd4f4d132746da11c3afcc5997ffd57e541681c7ce86a06bd975bc6743a48fdba858dcec89dd14dc987a647a2c4fe2386f88ee54c9db02dd859c27a7730645d25d7e3246a3ea83a857292e3f970a2e62699df8392ca3c50aa008bbb624d889e20b4adbf5bf268a22713307bc0ccf20adcfd98d77d4407f0b2792454ce9c989d680c4031420f1fa7efa22bc8941665dd0880820d40b8fee68c397401500c47183d1b6076d8f264a825fe79fe0f9ac30f458b8793ed1b6307a9571c98c2f8834e2d8497ad89e0fcf0f9b2b88c1a6b5aaf9173aabaaf4cdb486481c09d826043c042ccb239f01dc148ad1f7b8d500bda3d70b77dde63da3da7fd839e53467da913fb58c5b3464b441c15e999e6d2467ac36c60101f23a737d21287277e7465b87ee520b26dda09d5f65cde7c01a1f8067c1d71115b5633308516505e7fbabe828e5e34ccf6cf10f1ecd3d0da67b78259e6826c4c562e04c5bfc0d59f88ab03c04b2b758fa8c5670ab0d8578da001c5a44d03f839224461a8283779e9635cca73e5e8c8fdd376d2863cf264df795ae29d718ba2010c4d64a5ba37c0839e2a16d5398adf6ad92d5d835b423989f70864b555c68986ea4bc4061861484bd4f41b1e7dd29804e49b16d286e18332adaac61377e2b237ee2fea56b00965ec76b4cf8b65499f9d340f880ad45c07382c533fc54ed0fc5da1f34331c1ee1330aae6d5db5a76b6b36b0b50b97d6742f689c799864187560e97108385493452ccc4c19bffa5cede12ead6670fe42016ce68d86e72c44260eb95171d8117d309683e50940378ca8e2f85212c992be7c8942d76b6450db14eed0caf8a252c1fb4229bc6e3a365cb773d8eca9ba5d1fabdab28f8986ba59c93820c812f7dc848242e01ea5ab36ec291c701b025bf71bfedc18c384afe0ade67ae4a7126f05e86b4df46b9bf3fb3497ed67b3af59f2b3cdab47d0edd0d0bc35a52fd9369ae2d6bddf4fc348102d61a6448d2dca4763d2b91b41ca1f625fb7b6b6f7228a317850005e8014a33637b8422e389ed4f823652253e808d2aac83f5dbacedfcfe6e970dc00898289a58025a416336a457fb67b068013035b9e520e60e4aa0867e6862d483ebb9724ad7b3d61ef388780d747efbecded7202c3b81296988b237a1af6475e0b450c91c2ec581049aebb2d8562e374e86c84a3ac18430385c835f5ed496af862bea9b1fda406676f23357e3a63b05a9aaf4d241a70fd5eb966126026db869122c1f9eb11750d64f016c165725da96c425dff9e0c6c0dfe3fd1d44e0bac5c20e5d8c3abad94c4fab5e7d6b6303c43f512c96c903a5b21f95c4f48000a56000dc635f80cf28387153032854ae1a7684f98df6b1e8de16de43869d4484ccadb704f510e715dc0eb4694ed644aed009f9df8f42e3e7a4ef2d953f30ee8309ca06e5b368976254275360a4ca3b8059b0c097b700fcddf01e8bd12baefaba605cb00c4d054b5437b7b8eae2d5c758f549e61731867f95c2ca661dfd2372cecd7de4e85393a6bb917520b6ad983a32860b7bae0d07909e6b0fb1eeb68e3ef49a444177f97dae2585483ae3a367e418dc4bd9960ff37421615196651e02b6dd2cda9dd27e6c80c1f765dde8c66cc835f68ddf378b047e118569c1b1e41879a77ef8d40f0286640d59915f0f691e49ee0c929e662bd4328fb88a8b2ca7fdf7808f138851ecf37a7c7971395d149f8035e2a02dac056bf7fc74b4cc035f9457d27662aab2fb7841654790a8955546b2f4068c8b78912d6bd520ba6662a3b00d350d56cec92638f2139afe5df4107a268dae46a4cb62b235a46e2781b66e3833d9bdb59eb583fb920fb40a82d4b4085360e79bfe7428eefb614fa323286d1b88deee055fde187bb9d31146fd59a7ea72f5051fa31368e0ce433f8740cd94aa96a8d993cb743635a1e890b54115255ae62a5c5aac52a83f3783567b56859429e64c7bb0cfb55f824e5bd5476099fd96103b4c18b77ca9ae88cc5310df669b0e1e779a6c7e83885420acd7166e6c9d96e0cfc5b6476ac74cb1359199d9bb92c87d1e74bc18ca40b6e40cc01f018d500fe19dcb94cd2356cf45218c4f5ccfbe3a91fdfe4bc259bb942d0f4d4b03cd6f75fb8dad1d26c082f5591836278495b29a276dc9c88ae8f4cbe835216055c4d00f2301094cb7eb6fef4ca7d5ba8412f8907adbfdbf13081af3815ddcef7a94eec2e65e5042bf2cbc35e46016925e0962089d201e9ea0f3850004d76ff41c720eb1ca58e8d7d4ef10fc536eb24edc2c8a867d7ccf1c05567c0043226a92f7f597d03ae0599a2b8285331392072c967cc4101556871c66e957e3836f4b1f56496b5b72eb9661c8013bcf2801164b556dcd6064ddb921011b00505a1a4173d78d0ed5409473161a7b9b28e28bac88f514fadc8b8b04172e30d86572468dcc7d8d2376d1596a4e4228bdb4d8455e66842f9016dd0e7859674b8fe7813c876a28232c8670888bcd734d6e39b5a2690efce7d5e91d7a86711c2956f6f2b2b99526edb3fc783400682eb6bd375ba0cfac9d0db2d79fa224819ea4eeea6bc6190f17a8a288c66d7c1b5b187412eff61298f2da2946955cb0faf5aa950dab2c00bf27a340150c93acaa173220f0d52581d666c0220bf6d7bfa7a0fb28131ffe6d1032eca6b1142bb363d76808b1b4b149ec59562dcba9e8a5e85fbf8e2732c79c89f14a8517810ce275809fc85354d3126e37c354e42a50e0f63fe07cf5a239481394fd48306569fd5c4479fbde9399a192317c37957e1a284e9a50b13d018340fdae2a7fd0f6e7e5b069d6601fe8c8b1d45201a709b35d0a3a0391bafc00bd8ccf0071c5a05229272fc610ea18a3d45d66c0c3214afe1af4fa410b918ed68cb8d76b9a8ec6a8e330cddbe376183c844c9340b9a6211afce019327f6da1342bcfd139fd0da4755b46f1a4e564240be80575dec5e33476b4a93e7506bc91123d311656624024c43269e7cb88affe25e1438554da4d7782c65c27930c0e0935f695e79b36df451cf014679300ea74caf5b8f1233b8d218d01dac66bf26b9a1f81a0b48148191419fa2b55050be562974969ea93535312379fab9369159fcd2ab4d72ed046851f4d1338c5d540ecd064647824302f83c5ad248602a2c07a4ef10e2c9987d94c6275c7a443d11f83c4df08bfd77a623a85377df45c99c1b9f37f23d8181dcd6d29f559bed23b4f60d30d26f8e22cdde22a8e0b5a283ad6613432e55824f3df9861df61210f75ec24741a7315bdfc56670a51bcfa6f0eb448e86eba50ca106430877a753b3241e02445f692924400ca13eab2edb4ae3d34dcf55093422d990b4c53cd02722c8bd34062338b4c3e0e3c4b5d9f5aa38611127f92a0df767a7318d6c5bb833e8ade404359a9f5a322f55e1e6ef74181b30c71fb463ad404c099c5b4438f092d25eee0054b80221a939eaa8eae60daf5210faa19909e9808819de3785fa5d449b2c58a0674f2bc9b3def02527bf6fcbad9b10d63fcdec174bb10e6d097e160885d7abb722f004afa75efa594f64b2bb003f35f36c69c7b92a121ff89bb8229f374ec52250ed681921feb72a1978ad64ffeb2a835131c453a9ddf750e47948b679e9236b504cdd47799912b65067bf7afbb60371936076b70c3d87c376de2476d64357ec431b1109eb2dbb77df3e484af3ed40cec35038361a2c5c67a6603da1d8acf174d70d9ae0a12e0ba463a6ec20cc3281d6216feec62b7d88d02e440d0188f69872aac26fd62b7342939f1b2ab9c60fa4bf1778579d6ed2ff2f283ca3e3326987095f72e3049e3867d0a3b083847a23c9b712788c14870f5dedf52e0dab2b0a9af983f71e22d6d6bdb6afb16020bdccec3933c7b88a42674be476f7c0b544deaab722ef287c297f69e086da9cc36f45fd64591b0a10f7bce08c9bee07670c51fe8c1ce0ff65626047501c15b3dbd5c9a8c2f5fc3bda072566091eeaab39c254f9f88a97794797acd633abb7c1a8e1a6f1c85a602fa7dff62ed8deade204b70dae3fbf83eb732eb3603017eebe6a3f735ff7243658938ac7048e1634da356da8e44dfe96c0c658e70a7e0f8715e025851205b806621d2fde2891c15ab9fc182af5c918c9a049a6f1e4f8764913b3f2743b27f896687c7832b64b0b476fdddee512e91e81a17bdd7b733dda5617eec606b7565f68a606de2eed2c0d74d8a54c3757d0da4a2c4ff46bd413c7ead9450c3c31932390ef85c907642a1167e549cea2d022d3d322ebb9984831d4ea0fdbe60bfe5f1bd02f7485c6daae19776d6f215d45511d5b3cb449e264ca72a99d597707f298950661887e4198cc4b795a4e072d690f1120c6eeb9f74a8dc88eb559d5d22a39c677afc4f8a51ae0b2c1c0477f8c5e14b85f10d706da507d3d9069e344ed001ba9863d16864dabfce9398df6b80595b0e48d507a9141f21d06c499d920982b357fc3ea69a45037eff7583d8fca48f06252964ddbb7419478f981d5b4b21b9c88298e80ad862db55ad79ac0eaf649607e430a9f53aa33a99589549163cb1eb4d63956b7bca839e21a9d18f7f09ab87b8e63fa484835e9d351d3f994a5d8ce0d793fc91158cc7c3b0257d4ec613ba5afdc5693671bf90b9b03453b21ac597361e89a2b7190bdb8c7706e77ce42456d155dd2fed5cdaded977e5e9cfbe792eb1557caa96fc4c4a6cf5af88054c96412007590b328385e3cf7477eac9a171af4679dd7caab085604dcc1858843fa38808a4c28eef3d9446286a0ba4e84308c7cf1b730c36f0793e666eb6c44f87634437a1dfca8eba077ce9ec7129c1462bf60c88aad1f68589ff84a1107b2fd5b2e1991b6cdf80a81167a84e3a7b9001e35bc104bc3823d2dd1e51a7326dc868cc1615b5b0c1502ae60e75dcc499504ff5e554185b59b9e291baec2c0ca6489ff0baf6cb36dfa1d10a3b3b8f2a1b3f81c75adbe3394c61777265d7b95ab8cf6add0cd972643e012b749b175b24c6b87dfd576cda872be10df4daf56a74ab51900916c5c80693ca74e0b30f6a2c786669448fcc474c57905b3fc9b19a5f23741481feabbefa2f7f9642f98b99644d1c6610596a524067f39f23fc36609af64f669b9eb163a70f9b564a19e36b0ac94642a0536dfa51c5863799f1e109f1728bda68dd1ce0f126c77b9e9f8b1d994099e707d26db0f245d306ae10f9bea416cea1c902870d9ab730e214fea86139fbd0cd32e5853572d7cbd0327305a36a467007fab93d1c9abd3594308216257048fbfca7ac27c04e2492c89fc0be44705d68bbd05f30525120616306b0dcbc884633daa9837e5eb765764c260dba3b04adf42c365660f10c9e2a1ceb9bbd675168040a9c86d55c1b4c38d99e4fe0c4c4c0d557e2936f510b31112ba13f745e0fbdc18e51e464296d721f84f88ee4a94bbbf76004dc38b276e0ec13a9ccfeced9e87dc19162c64fbb9b34fc6e06b9b116a31330107b572fcb76e9a32fddbc6ac45d0104fdc1bd3b166e18a721d690fa4287ad6aa981b94b2a4f1261066379d6f3b13105091a32998b882313c60b952a95ae9d202827d9c6bc34c968fa7d9571a96dc830510f7c548a3567c64252cab0b9ce3b74454b8a47b4621560165aed1158529988cfc9d4a018c1adbed2a6f0dcf9cfd06f30df4e078adcde9a3579ad3f6e31a384b1ecd7eb2457a5eb528b61ed27b82be6cc32aedb3e481d87a3de4be4a694bfe787f76b1d393071073b4d42efc519c0d020a24c861d6b672ee8042ca55e2510cb3d46abbabac513b2d68d5b70f4484dc23958bf9af90f5319c0241e1ec47b4dcecad0bf61fee8586e798176498799534ace7ad53a7dbcb6a9977561de87cf2100978d45de5bac74de8e2548210615fd1a1bb399b3dee0d3096a2130bd62b8e0e1ea65c8f5a2ba9a423ac80dc90a67d5b2f3b4d93cb90b2e761d51a4f977b204bd89828a2a3ebfd3fd5520ee2067e8c453df02732364159bb1d035cdc589f000dbd7b335ec1d4a99af620764de93e43cf265ecaac5d6e04d4c5e5db49a2d83a6e831ae90404d6de38cbb3f3841463ce36c9738fa72a26549cada0afcabd908755ecc416811b30a18500ab971b62b26acaaa0b503f5ca7ec4b1895172b338c116688c58729abaa03406ef96489d02b6e0f11a7da8fceb1c282a73a339e3c73822e755b7a777006f5b79277a6f12ccc8a774252bd1cc0028f5440a36e8c7b19ba3efd193c6f076b69654f9783a36af5d27039406ee411f7cd8261df28357eec7a44efe8fed0735ee65cb985eda7c696a18f5ce23283fe68ede441f2986d7b178397725c9f484c7fdf78c8cd702bbac8af22528e0b255a11852f3db119ba27d78edc2159c4d99818cccbd886120104d276aba5d80fe602b3fbba012dbee589fc4e9460c9876365e09f40347e3784a38cab3df001b754c8516c6ee0a40a0d1bf0e7d347c139d74b81a2b8c2da4bba66a047cca9a56992c83c86a3eaae7cada08c4af7c6485652cc7782da7587a3e6c8309204747da500d67894a69708cd5b6cea64b92ddf268cd5491078aa5e590619be31eef29f482d5bf1df6ff47635f05b77cb02f7b80491afc712030814d16bde1727bd4921e29e46bedd57e59262d986bc028644a3fc1a916233faea3697387903c99dd97be1ae616890835ffa66daef7a728d3d67d8527183efd57c595731e7104c307e20af472318ea78f01eeb59a7add9b89b27ecf0df215f6d129134291c87a830975af401c7a549626eeb91e92c92e1955201686912ab571e66810a4e8b06587dcfae5c53f317c701154ecece00c3d784d619a35a3fc59042c1ee87118ba73624c46ff47018a43cbfbb1eb6a35a67ae0547dd032b6671d67cc360fc65ece45b705591f4b4c0d04c48bf50d045bf029e161f5d82aad7b4b15f598a8de1be3a212e2dbc8650b329e5bd1859281796a0141eb30921635efc77e01a8c9198a3c641750e48f861389c122a991f3f05f7ef7eaf82d04a8d4949fe4c514a1b3304f4cb142d1f33cacc53e5da351dd5d3abfc323ef854f251b4561f22fa05ec92a679f2b4e0fb84995401d82f78ebe6d24aa14f4a4aba8fb6b38d7d391073c1554f7a1e13f8090cfde8aca4c04d3ac7b21696cb9818952a6860ae0202e85b93587fcd223d77848566d2ff909910ffef85660f9dcada6ff6a8d2d39090ce86798997afe52a12e13efd6cc5f5cdf4daa9afe81984577d88488c89e56f1445ce1fba76d01254dd57c406de622cd7aa814686623a78bc3addf45a955f1080c7f7d473d16b408f18d6b24afc442391046497a8d2a50e68ef6793d1d155e2a89764148eb8de6dbec41c9ce9a0e4a0618f97393224eebd08bd659ac4d9bb7687b23c0607358af4f32d28d12106ddef96541ea6881d68aef8f354ab0914dccc8f398f24ee92ddea25dd41824d4394c5149930f64709717ce96de48c33606705e1434a56c4ea715e986b2c58d57590e563cb734c4712510063b7f4249d601ba78ef7e47341b5df34a514fa438bd0f03162fd4e3582d3f25b5fa550d6f7eac1d40cf26830d696b23f1cea89b61ac0bc4c80aeb9df213671688051fed21e1fcb32075f2803c636914a1bb2728a1032d248deffd7b74b4d5765645645c1d6b236809259b4d0d28dbbb8476a9630e7715d6125ce96c5d537a9ef16a9bb31f2108d86e4808b75235008cad3d8e3d7ac750d149ec64e086ef566e3b49cc747035a766163c28cfc2516805f1399b2195a94250435d78282c50ad4a11450afd2a8d6b83d4920e20064c33e96dcb579a45f32f99ae4e961a6bb8fa7fb9e2efea5e04aba75e0a02ac9990d4be78a316546c5d073919e01834f4eb46921e169b6baa21f73dd36ade7a6513cdd652e82eabff0f145f6ddacccb81e3de81d2df9064bf8e1f0122c67e9e0dcfbc6a73b5a29e92bf9c2f04df8d83a7b78e5fc89d67a4069a73ef65df4700f2e9c5484618a5dfcbacbc38c804227db1a5c012a63b1dddbeabe35d43039923037197094dde9dbac93d642cf9192483a36e12b8592b6603f03ba02ed2fac481f5d851dd302f8e8b99eb7055b7bbe2a3b5e3dd460485b21706091e5215a6ce6097e3f08bbc10c60cd2665874e0be509125f608e3c99f08e0cafbaa4a5cb2dacf654304b63b9eb03facfecf94a41adb88ad30ad1a78643484b75b415a23248fef05e99fc65bfbacae745c5ea1c0477da5dee88cb54a5efcc291f8046fb43db078b84d9a85c4e093ad7c17f0f093155536fc4baebd659822ef4d3ccbdd52f6cd0bb4bfb280dfb6e7b548f8da704ab5c5e31ea4e78af1420e65d4a92ffa434974f9d25edd77d68b62f4fb5fa8ca1c1d040b821809cb73b56aefb5cd573528465b66891f991a73e5df569abdbef97d27e6f15042974cf392dbfd39655ab4fc1f9c21ed0e92047701c6d7bffbf07829be98b6a56ceee9e2401ca06d96aea0dbaa3c2f071f087ef13bbe631a233d9c32132243257d5a46c1107cd377f5ce519a8bfb5db9f1a19d6a72f21767e0c1bca7461f3822efd20610c741cf50a5c73ddcbcd23dbdadcd4a580691bf5c183c9b36880506ce6c57db1018702ce42bc264edf9174ff746ee7deee570926be44847cd3c65dcd96587abdadfedce3ad7abd582a1455b8330351c88bd3268d27cd66a1bf90128c4bf2f7c63bf9145c9e490387a4d625f83e363502e17a66ab2dbd249ea5b7e69d518e0eb8e61f71d16f29d7c34fa97792f4ffe5cb3926159feca1cb50fe511dd4a57917bea044a9ee4b9ced1cffbb5f4c10cad0b0296316eacc5946f8479a343e97b6e6aa1eea5cd7233db564760bf9ba06aa524f2982fd84d29df66a50e17edc4d731aeaa1f096d0efd80709fdb3625b4bc76a8155ecb3610dc22c76abf0f9ecbccaa0ab8d086e243180f94a76bd8150084bd02259f52ebbac10b7ee9bf5088119ae3c1d00a1d97c86a6a4231f4f89cfabee803ebe62552833c90a3134e8a3d36002ab80ce7c64b8e063ea50aa80bdb2fde1bc33a8b0f9abd0a6c5ff06e39e29c205aad70cd41e9c413c6f98eabd8071264857b78106e15921896608ff7e341480098adaf2ada4852c74b96879ac426a77faeb5dc221f732517e320918a3193b4ce0d63f4d671ae96baa77fabccf0c68d0cd86122d1c98387cf2a099785dec4a9a897ae5d010c0607dccfd7a8f9637592b6e344f604e3a12d2afdf7734b7c31a3aa3628ea6d87d5a5a45ef7bcf06490fd6de1a5948975942abdf6fda886dc86685c096a4ae15c04ab6b811ee6f6e0fcad5dd1110c8fb836ee4380395340228d71ff6eaf52424fb0725971d72925de57a72a09e4fd8e7d27caf606ac5554381e1a5505b91458c99d58518e3b3f0eac342ee79d952b0f0f2e3c5fb2e5fb29d02ebaf1d43c9a8c5a60308448490cc2abe780597aa2a4128c9df1f0aefd8183b2a6737a3f9593f83d4241547d84599737ea88267e87932fcd462cab1f18c2ed779d8c3f1b7985c9e05a5ad0ed65d1d6e5b4c3e9da8621274f441b6d14b368bce5b585bc894c20c417837817f7a45709e552b80cf8b5c5f36bcee1ea16aa331753489e83a261b6ed120a93baa732e21ac49b81a206e9cb4bc7769fc2696edcceddaef89ed9dbb9df186a5de99fc6e95e8b9d9315671c007c5008da3fdb15888a3aca680bc872ffa24d2a6ac999c79a02dbc2e827146137722a9cea41c026d53113933ed8c8b40406eb8c255b76a6779b89fcca810d2b17ef9eda797b18e8fa3ead6800d8e25665a1f152464be46a51d33ed0b3780409dbed6805313bf331f85d5acd72741b4abcc1aa45086c42d0f27a20ad555b7e2b8bc94ac08ee20790c2e3c47deab2de8b7f596b5b4c6b5029b0cec8977ba80246049554ad54c720ddd40bc971e52e974b4363011367e266a36f30c4081a0b37f15c9ee9a9ac0e8887ac3a4b2d5350baa7e0a03bce862d709e34f74e0ab83d397e83c650471276eb48cd13ae79598f05fbc04cea5e213732152bcd956abbd0f00cbd7362902987e3374cc81325362ab3b41d0c8257d59a17740efc0fdd814b50be77d3537a5568b11d1306448f7d2e500ecebf57c03149497d1739d210f1208e5d3d79ab064a2c491f3d4421f248d3fb481c63f43a460a89ffefeb3b4ac5e1f9fed61dd8df95c67537aa7450a0c01227565c1badea6ea3131c57c6b4f1e78c6918d929e9754b1f08a8353a883af26b0492844556a3120d2d369f6f27f3558848099a7e87a7ab0f414b4380fd83995fd49cc25f0595219d003da07ff349db6fc14b6dc001030406dfe82711d7377259a0cbe999e12b0e1982d21ed424c353d1d84dc7bde66869a546338bbc94da49c3b6cf487410bb180fecbd1fb2c87263341527130f8105cb35fa9ac211731b17351d20d0c506eab8212c4a31321adb223ee079a788cb6431fc344a9b62449e5123b", 0x2000, &(0x7f0000002800)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000100)={0x10}, 0x0, 0x0, 0x0})
r7 = open(&(0x7f0000000180)='./bus\x00', 0x14d27e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x27fffff, 0x4002011, r7, 0x0)
ftruncate(r7, 0xcd98)
r8 = open(&(0x7f0000000180)='./bus\x00', 0x4917e, 0x0)
fallocate(r8, 0x0, 0x0, 0x1000f4)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r9 = open(&(0x7f0000000100)='./bus\x00', 0x0, 0x0)
write$binfmt_script(r9, &(0x7f0000000080), 0x208e24b)
r10 = syz_open_dev$evdev(&(0x7f0000000000), 0xc0, 0x0)
ioctl$EVIOCGREP(r10, 0x80084503, &(0x7f0000001f40)=""/231)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000140)={'syz_tun\x00'})

4m30.745872482s ago: executing program 0 (id=1165):
symlink(&(0x7f00000049c0)='./file0\x00', &(0x7f00000059c0)='./file0\x00')
umount2(&(0x7f0000000080)='./file0\x00', 0xe)

4m30.141372841s ago: executing program 0 (id=1174):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x11, 0x4, 0x4, 0xff}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000000c0)={0x3, 0xc, &(0x7f0000000180)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0xfffffffe}}]}, &(0x7f0000000200)='GPL\x00', 0x4, 0xff9, &(0x7f0000002300)=""/4089}, 0x90)

4m26.425543941s ago: executing program 1 (id=1204):
socket$inet6_udp(0xa, 0x2, 0x0)
pipe(&(0x7f0000000340)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x129c81, 0x0)
ppoll(&(0x7f0000000140)=[{r1}], 0x1, 0x0, 0x0, 0x0)
write$binfmt_aout(r1, &(0x7f0000000080)=ANY=[], 0xff2e)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, 0x0, "02341f9b1000007e4f00"})
r2 = syz_open_pts(r1, 0x0)
dup3(r2, r1, 0x0)
splice(r1, 0x0, r0, 0x0, 0x1000007ffff000, 0x0)

4m25.501065196s ago: executing program 1 (id=1207):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000680)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000540)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000006c0)=@newtfilter={0x520, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {}, {0x2}}, [@filter_kind_options=@f_flow={{0x9}, {0x4f0, 0x2, [@TCA_FLOW_ADDEND={0x8}, @TCA_FLOW_BASECLASS={0xfffffffffffffdb7}, @TCA_FLOW_ACT={0x4dc, 0x9, 0x0, 0x1, [@m_skbmod={0x170, 0x0, 0x0, 0x0, {{0xb}, {0xb0, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_DMAC, @TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_DMAC={0xa}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_DMAC={0xa, 0x3, @dev}, @TCA_SKBMOD_SMAC={0xa, 0x4, @dev}]}, {0x95, 0x6, "768dd9e4fd4476cd9d242caf214648e3a93e270accb9c975f200261d929868e548ef5f56fbc80573bd87324fe8f0aaa1df4c326297e225aec2fcb0d32f81e5617ce6fba73dcd4eeb727f99f0499944e036fcfc5cd3f2a74397133c5f8895a636c0bf8b4331f8d1e1111e499ec65018ca533366711c6b5dff32829d8f5df56e33cd7456bedb85800d33b3d3a395d3ab84b4"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x2, 0x1}}}}, @m_tunnel_key={0x12c, 0x0, 0x0, 0x0, {{0xf}, {0x98, 0x2, 0x0, 0x1, [@TCA_TUNNEL_KEY_ENC_KEY_ID={0x8}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8}, @TCA_TUNNEL_KEY_ENC_KEY_ID={0x8}, @TCA_TUNNEL_KEY_PARMS={0x1c}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @private0}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @private2}, @TCA_TUNNEL_KEY_ENC_IPV6_DST={0x14, 0x6, @mcast1}, @TCA_TUNNEL_KEY_ENC_DST_PORT={0x6}, @TCA_TUNNEL_KEY_ENC_IPV6_SRC={0x14, 0x5, @mcast1}]}, {0x65, 0x6, "09dba6cdb56ef3f2c67f7c5fa0805159a6da885cacbed605ac374947f52465332140a85600eb394566f83633bd29180ace38da10f698f6478b90a11a8f0cf9b45a1d1350a182a0b16d520eb8fdc76f2cac3cb8a230bf2d3e7b8138caee89756ab4"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x3, 0x3}}}}, @m_vlan={0x98, 0x0, 0x0, 0x0, {{0x9}, {0x14, 0x2, 0x0, 0x1, [@TCA_VLAN_PUSH_VLAN_ID={0x6}, @TCA_VLAN_PUSH_VLAN_ID={0x6}]}, {0x59, 0x6, "ce58d7cd1a3277bf271448e2fefa678ae335f8d16f725d23c8500b7728c8b3ade1cf66de4a4a51336b383b2ad6c594621f1aebe5ab71fbabb4966f36d28604ba72b389ee3baffeaef3fb4aed3ccb00a2e8d8839596"}, {0xc}, {0xc, 0x8, {0x1, 0x3}}}}, @m_mpls={0xa0, 0x0, 0x0, 0x0, {{0x9}, {0x1c, 0x2, 0x0, 0x1, [@TCA_MPLS_TTL={0x5}, @TCA_MPLS_LABEL={0x8}, @TCA_MPLS_BOS={0x5}]}, {0x5b, 0x6, "cde7802368012e534db6f6ca165b9e2bd5a9ebca040e75777d959ee031b901c8fa4396c108e34b2dd66bac28b29548f006408cb85388e83d24d883b24fbefff00a58f6c6dcf90f0f7ad32f9d1a70103e61cc0d5bbb4c68"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x5}}}}, @m_skbmod={0x104, 0x0, 0x0, 0x0, {{0xb}, {0xbc, 0x2, 0x0, 0x1, [@TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_DMAC={0xa}, @TCA_SKBMOD_SMAC={0xa, 0x4, @broadcast}, @TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_PARMS={0x24}, @TCA_SKBMOD_ETYPE={0x6}, @TCA_SKBMOD_SMAC={0x0, 0x4, @link_local}, @TCA_SKBMOD_PARMS={0x24}]}, {0x1d, 0x6, "8a57b4e47d66a9dc1341abda9678494b1ec7779b9ec9c7adc9"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x5, 0x2}}}}]}]}}]}, 0x520}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

4m24.901815424s ago: executing program 4 (id=1213):
socketpair$unix(0x1, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000280)={0x80, 0x0, 0xca, 0x7e})
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040e0700081400c900"], 0xa)
openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x0, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000040)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r3 = openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_RELEASEINTERFACE(r3, 0x80045510, &(0x7f00000000c0)=0x4)
ioctl$VIDIOC_ENUM_FRAMESIZES(r1, 0xc02c564a, &(0x7f00000029c0)={0x6, 0x34424752, 0x0, @stepwise})
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
sched_setaffinity(0x0, 0x5f, &(0x7f00000001c0)=0x5)
preadv(r4, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1000016e, 0x0, 0x4)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f0000000080)=0x7f)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000140a05000000000000000000000000000900010073797a31000000000000000020000000080a01080f6b000000000000000000000900010073797a300000000014000000080a01020020000000000000000000001400000011000100000000145dbe39000000000a0000000000000000000000000000000051f97cb8f9a161fd8f50bff24ee536d63fe7b701c313b14041aee817916dc7ad491202aef8c44cacb3be2f3f005959e588c22d0dd6"], 0x90}}, 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
getpid()
bind$unix(r3, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000240), 0x4)

4m24.795536612s ago: executing program 3 (id=1214):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
socket$nl_sock_diag(0x10, 0x3, 0x4)
socket$packet(0x11, 0x3, 0x300)
r1 = socket(0x200000100000011, 0x3, 0x0)
r2 = socket$packet(0x11, 0x3, 0x300)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000000c0)={'batadv0\x00', <r3=>0x0})
r4 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
socket$kcm(0xa, 0x0, 0x87)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000300)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r5, 0xc0182101, &(0x7f0000000180)={r6})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000002780)={<r7=>0x0})
close(r4)
r8 = fspick(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r8, 0x1, &(0x7f00000001c0)='\xff\xff\xff\xff\xff\xff', &(0x7f0000000200)='\x00', 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000080)={r7, 0x3, r5})
bind$packet(r1, &(0x7f0000000040)={0x11, 0x8, r3, 0x1, 0x0, 0x6, @broadcast}, 0x14)
r9 = socket(0x15, 0x5, 0x0)
getsockopt(r9, 0x200000000114, 0x8, &(0x7f0000c35fff)=""/1, &(0x7f0000000000)=0xf002)
sendmsg$TCPDIAG_GETSOCK(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000280)=ANY=[@ANYRESDEC, @ANYRES8=0x0, @ANYBLOB="0000000000000000000000000000000018000100000800825f302b8b0a399e90d921a814d237ee1b"], 0x64}}, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
r10 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r10, 0x84, 0x81, &(0x7f00000002c0)="1a00000002000000", 0x8)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r10, 0x84, 0x17, &(0x7f0000000200)=ANY=[@ANYRES32=0x0, @ANYBLOB="05"], 0x9)
setsockopt$inet_sctp6_SCTP_AUTH_ACTIVE_KEY(r10, 0x84, 0x19, &(0x7f0000000340)={0x0, 0x2}, 0x8)
socket$rds(0x15, 0x5, 0x0)
syz_mount_image$btrfs(&(0x7f00000000c0), &(0x7f0000005140)='./file0\x00', 0x1000884, &(0x7f0000000100)={[{@nospace_cache}, {@nodatacow}, {@nossd_spread}, {@noautodefrag}, {@space_cache}, {@compress_algo={'compress', 0x3d, 'no'}}, {@nospace_cache}, {@usebackuproot}]}, 0x1, 0x5100, &(0x7f000000f3c0)="$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")

4m24.763829865s ago: executing program 4 (id=1215):
r0 = syz_open_dev$usbmon(&(0x7f0000000900), 0x0, 0x2000)
ioctl$MON_IOCX_MFETCH(r0, 0xc0109207, &(0x7f0000000080)={0x0, 0x6})
ioctl$MON_IOCX_GETX(r0, 0x80089203, &(0x7f0000000a40)={0x0, 0x0})
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)

4m24.559158452s ago: executing program 4 (id=1216):
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc)

4m24.45781204s ago: executing program 4 (id=1217):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x10, 0x4, 0x8, 0x7}, 0x48)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={0x0, 0x78}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x17, 0x0, 0xffffffff, 0x8000, 0x0, 0xffffffffffffffff, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpriority(0x0, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r3, 0x28, 0x6, &(0x7f0000000080)={0x0, 0xea60}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @host}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000380)={0x28, 0x0, 0x0, @host}, 0x10)
ioctl$USBDEVFS_REAPURB(0xffffffffffffffff, 0x4008550c, 0x0)
ptrace$ARCH_SHSTK_STATUS(0x1e, r0, 0x0, 0x5005)
dup(0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

4m24.151270514s ago: executing program 2 (id=1218):
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000a00)='f2fs_reserve_new_blocks\x00'}, 0xfffffffffffffc45)
r1 = openat$dsp(0xffffffffffffff9c, &(0x7f0000001600), 0x0, 0x0)
readv(r1, &(0x7f0000000040)=[{&(0x7f0000000000)=""/17, 0x2}], 0x4e)

4m23.595355639s ago: executing program 1 (id=1219):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mkdirat(r0, &(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000002f80)={0x30}, 0x30)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000002ec0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
lstat(&(0x7f0000008800)='./file0\x00', 0x0)

4m23.482285828s ago: executing program 4 (id=1220):
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
getdents64(0xffffffffffffffff, 0x0, 0x0)
sendmsg$NL80211_CMD_GET_POWER_SAVE(0xffffffffffffffff, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={0x0, 0x14}}, 0x20014000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
socket$inet_udplite(0x2, 0x2, 0x88)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0xe)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil)
bind$inet6(0xffffffffffffffff, &(0x7f000047b000)={0xa, 0x0, 0x0, @local}, 0x1c)
mremap(&(0x7f0000241000/0x2000)=nil, 0x2000, 0x400000, 0x3, &(0x7f000082a000/0x400000)=nil)
madvise(&(0x7f000042f000/0x800000)=nil, 0x800000, 0x15)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000900)={0x0, 0x30, 0x0, 0x0, 0x91bb, 0x0, 0x0, 0x40f00}, 0x90)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x0, 0x3, 0x0, 0x0}, 0x90)
creat(&(0x7f0000000000)='./bus\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./bus\x00', &(0x7f00000000c0)='ecryptfs\x00', 0x0, 0x0)

4m23.481452168s ago: executing program 2 (id=1221):
r0 = socket$can_bcm(0x1d, 0x2, 0x2)
io_setup(0x9, &(0x7f0000000240)=<r1=>0x0)
connect$can_bcm(r0, &(0x7f0000000000), 0x10)
sendmsg$can_bcm(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000000600)={0x5, 0x0, 0x0, {}, {0x0, 0x2710}, {}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "f9de19a2cf1ea204"}}, 0x48}}, 0x0)
io_submit(r1, 0x1, &(0x7f0000000100)=[&(0x7f00000000c0)={0x400000, 0x0, 0x0, 0x1, 0x0, r0, &(0x7f0000000200)="0500000093c21faf16da39de706f646800580f02000000003f420f000000000000580f02000000003f420f00000000000029ffffff000000", 0x20000238}])

4m23.287621304s ago: executing program 1 (id=1222):
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f00000001c0)={'wlan1\x00'})
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000001380)={{0x12, 0x1, 0x0, 0x49, 0xff, 0xe8, 0x40, 0x13e5, 0x1, 0x4e53, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0xd8, 0xd1, 0x37}}]}}]}}, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)

4m23.276561895s ago: executing program 2 (id=1223):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000340)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000000)={'#! ', './file1'}, 0xb)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
write$binfmt_script(r1, &(0x7f0000000280)={'#! ', './file1'}, 0xb)

4m23.032621565s ago: executing program 2 (id=1224):
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000180)='./file0\x00', 0x3810746, &(0x7f00000000c0)={[{@noauto_da_alloc}, {@user_xattr}, {@stripe={'stripe', 0x3d, 0x8}}, {@resuid}, {@stripe={'stripe', 0x3d, 0x4}}, {@data_err_ignore}, {@user_xattr}, {@min_batch_time={'min_batch_time', 0x3d, 0xa9f}}, {@nodiscard}]}, 0xfe, 0x451, &(0x7f0000000d00)="$eJzs281vG0UbAPBn107bt+3bhFI+WloIFETER9KkBXrgAgKJA0hIcCjHkKRVqdugJki0iiAgVI6oEnfEEYm/gBMnBJyQuMIdVaogQmrhgtHau0ns2Gk+nDrUv5+0yYx3vDNPdmc9nskG0LMGsx9JxN6I+CUi+uvZxgKD9V83F+Ym/lqYm0iiWn3j96RW7sbC3ERRtHjfnjwzlEaknyR5JY1mLl0+N16pTF3M8yOz598dmbl0+emz58fPTJ2ZujB28uSJ46PPPTv2TEfizNp049AH04cPvvLW1dcmTl19+4evs/bee6S+f3kcnTKYBf5HtaZ532OdrqzL/qkuxZmUu90a1qoUEdnp6qv1//4oxdLJ64+XP+5q44Atld2zd7bfPV8F7mBJdLsFQHcUH/TZ999iu01Dj23h+gv1L0BZ3Dfzrb6nHGlepm8L6x+MiFPzf3+RbdE0D1FtMW8AALBZ32bjn6dWjv9qayPLyu3L14YGIuKuiNgfEXdHxIGIuCcve19E3L/O+puXhlaOP9NrGwxtTbLx3/P52lbj+K8Y/cVAKc/9vxZ/X3L6bGXqWP43GYq+nVl+tNXBi0O89PNn7epfPv7Ltqz+YiyYH+RauWmCbnJ8drxTg9LrH0UcKreKP1lcCciuhYMRcWh9h95XJM4+8dXhdoVuHf8qOrDOVP0y4vH6+Z+PpvgLyerrkyO7ojJ1bKS4Klb68acrr7erf1Pxd0B2/nc3Xv9NJfr/TJav186sv44rv37a9jtleYPX/47kzdqa9Y78tffHZ2cvjkbsSF6t5RteH1t6b5EvymfxDx1t3f/35+/J4n8gIrKL+EhEPBgRD+Xn7uGIeCQijq4S//cvPvpOu33b4fxPtrz/LV7/A43nf/2J0rnvvmlX/9rufydqqaH8ldr97xbaN2dXXmKjVzMAAAD896QRsTeSdHgxnabDw/X/lz8Qu9PK9Mzsk6en37swWX9GYCD60mKmq3/ZfOhoMp8fsZ4fy+eKi/3H83njz0v/q+WHJ6Yrk12OHXrdnjb9P/NbqdutA7ac57WgdzX3/7RL7QBuP5//0Lv0f+hd+j/0rlb9/8OmvLUAuDP5/Ifepf9D79L/oXfp/9CTNvNc/1Ylyqs8vS+xXRKRbotmSLRIlDvQu7t8YwIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOiQfwMAAP//NI3x9w==")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r0, &(0x7f0000000340), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15)
setgroups(0x1, &(0x7f0000000080)=[0x0])
getgroups(0x27, &(0x7f0000002540))

4m22.564735412s ago: executing program 2 (id=1225):
socketpair$unix(0x1, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
sendmmsg$sock(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_SEQ_IOCTL_SET_CLIENT_POOL(r0, 0x4058534c, &(0x7f0000000280)={0x80, 0x0, 0xca, 0x7e})
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="040e0700081400c900"], 0xa)
openat$vimc0(0xffffffffffffff9c, 0x0, 0x2, 0x0)
sendmsg$inet(0xffffffffffffffff, 0x0, 0x0)
socket$kcm(0x10, 0x0, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r1 = openat$vimc1(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r2, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000dc0)={&(0x7f0000000040)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40}, 0x0)
r3 = openat$nvme_fabrics(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$USBDEVFS_RELEASEINTERFACE(r3, 0x80045510, &(0x7f00000000c0)=0x4)
ioctl$VIDIOC_ENUM_FRAMESIZES(r1, 0xc02c564a, &(0x7f00000029c0)={0x6, 0x34424752, 0x0, @stepwise})
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000680), 0x0, 0x0)
sched_setaffinity(0x0, 0x5f, &(0x7f00000001c0)=0x5)
preadv(r4, &(0x7f0000001880)=[{&(0x7f0000001a80)=""/102400, 0x19000}], 0x1000016e, 0x0, 0x4)
r5 = openat$audio(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$SNDCTL_DSP_CHANNELS(r5, 0xc0045006, &(0x7f0000000080)=0x7f)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r6, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a34000000140a05000000000000000000000000000900010073797a31000000000000000020000000080a01080f6b000000000000000000000900010073797a300000000014000000080a01020020000000000000000000001400000011000100000000145dbe39000000000a0000000000000000000000000000000051f97cb8f9a161fd8f50bff24ee536d63fe7b701c313b14041aee817916dc7ad491202aef8c44cacb3be2f3f005959e588c22d0dd6"], 0x90}}, 0x0)
ioctl$SNDCTL_DSP_SPEED(0xffffffffffffffff, 0xc0045002, 0x0)
getpid()
bind$unix(r3, &(0x7f0000000140)=@file={0x1, './file0\x00'}, 0x6e)
r7 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_TCP_REPAIR(r7, 0x6, 0x13, &(0x7f0000000240), 0x4)

4m22.179506883s ago: executing program 3 (id=1226):
capset(&(0x7f0000000000)={0x19980330}, &(0x7f0000000180))
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_audit(0x10, 0x3, 0x9)
bind$netlink(r0, &(0x7f00000000c0)={0x10, 0x0, 0x0, 0x400}, 0xc)

4m22.049901064s ago: executing program 2 (id=1227):
r0 = socket(0x11, 0x800000003, 0x0)
ioctl$ifreq_SIOCGIFINDEX_team(r0, 0x8933, &(0x7f0000000600)={'team0\x00', <r1=>0x0})
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000400)=@newqdisc={0xa4, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x12, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_taprio={{0xb}, {0x74, 0x2, [@TCA_TAPRIO_ATTR_PRIOMAP={0x56, 0x1, {0x2, [], 0x0, [0x8, 0x4], [0x0, 0x8]}}, @TCA_TAPRIO_ATTR_SCHED_CLOCKID={0x8}, @TCA_TAPRIO_ATTR_SCHED_ENTRY_LIST={0x10, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@TCA_TAPRIO_SCHED_ENTRY_INTERVAL={0x8, 0x4, 0xcb2}]}]}]}}]}, 0xa4}}, 0x0)

4m22.030404526s ago: executing program 3 (id=1228):
r0 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x3c, r0, 0xe17, 0x0, 0x0, {0x1, 0x0, 0x6000}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_UDP_SPORT={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}]}, 0x3c}}, 0x0)

4m21.738624229s ago: executing program 3 (id=1229):
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=@base={0x10, 0x4, 0x8, 0x7}, 0x48)
syz_genetlink_get_family_id$wireguard(0x0, 0xffffffffffffffff)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_UPDATE_OWE_INFO(0xffffffffffffffff, &(0x7f0000000240)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x200}, 0xc, &(0x7f0000000180)={0x0, 0x78}, 0x1, 0x0, 0x0, 0x8020}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x17, 0x0, 0xffffffff, 0x8000, 0x0, 0xffffffffffffffff, 0x2}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
getpriority(0x0, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_CONNECT_TIMEOUT_OLD(r3, 0x28, 0x6, &(0x7f0000000080)={0x0, 0xea60}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @host}, 0x10)
connect$vsock_stream(r3, &(0x7f0000000380)={0x28, 0x0, 0x0, @host}, 0x10)
ioctl$USBDEVFS_REAPURB(0xffffffffffffffff, 0x4008550c, 0x0)
ptrace$ARCH_SHSTK_STATUS(0x1e, r0, 0x0, 0x5005)
dup(0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)

4m15.139496562s ago: executing program 3 (id=1230):
socket$nl_route(0x10, 0x3, 0x0)
socket$l2tp(0x2, 0x2, 0x73)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019940)=""/102400, 0x19000)
memfd_create(&(0x7f0000000500)='\x103q}2\x9a\xce\xaf\x03\xdfy[\xd9\xffR8\xf4\x1c\bi\xe4^\xd5\xfd\xa9\r\xac7A\x94\xa0\x00\x00\x00\x90k\x96\x05\r\x84\x87\x1c\b\x8c`\xea)A\x90m\xb6&\xd0\x9d\xb8\x7f\xc6W\x81\xb7\xf9\xbd\x00\x00\xc5\xb8,\f\xd4s\xb2\x99/\xc0\x9a\xf2O\xdb\x00\x00\x00\x00\x00\x00\r\x1b\xd3\xff<qK\x80\x8fQ|\xf5d\x10\x10\xb1\xe6\xa4`\xd3\xf9\xa5\xd1I\x7f\xb5)l\xbb\x02\xfa\xb7\xb6\xa0]\xda8\xe0~\x1c \x91\t\x8b\xbd\x1f\xb3834d1i\x9b\x94\xa6\\\x0e\xe2\xfa!\xd3\xcf\xfc\xce\xba\xe2\x9f\x05xgL5\x14Y+\xb3\x1axi)<\xf7\x98\xc1\xba\xf4|\xe7|\xc4\xd7\x03\x00\x00\x00\x04D4E^7%8\x94y\x90\xf0l\xa0\'Q%\xd4\xda\xee\x81\x98\xcc\xfd\xa2\xe3M~x\x96\xe3]\xd30\xa2\x17\xca\xed\xdf\x91\xf9\x8c\xa1T\xfa\xc30\xfb&\xb7\x0f\xf9\xc9[R\xa8\xa3\xf4@dd9\xdd\vt\xa9\xa32\xc1\x1cA\xd2q\x9b\x9bV\x8c(\xb2\'\xf5~\xf6\xcf\xb0\x86\xdd\xab>\xd6\xf2\xfe\xf3]\x15&\x97]mC\v\f\n\x1f\xe2\t\x14\x84\xe0\xa4\xda\xe7\xe8\xd5ue\xf4\xf8\xde\xf3\x00q?[\xba=\x1a\xb2\xdf]\xc0\xeb\x16\xe4\x7f\x17o\x1b\xa4M\xafa\xc7tR?3hH\x18\xc9\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xcd\xe3\xb5\xd6\xed1\x10\x8d\x87N\x9c8\xfd\xd0t\xe6?\x9c\x95`\xfc_\'N\x90\xb7\xb5\x0f\xeb\x17{\x1fu\'\xb4=\xbcO@AP1\x9d\x1b\xba%\xca!\x0eRsGT\xdf\xd8;\x9ea\xd0\x01\x0eq~\x00\xfbh\xf7\xc8\x97\\\xc0\\\x17', 0xde744a19c4d2be8e)
ftruncate(0xffffffffffffffff, 0x80079a0)
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x5130)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000180)={'wlan0\x00'})
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, 0x0, 0x84)
sendmsg$NL80211_CMD_FRAME(0xffffffffffffffff, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={0x0}}, 0x0)
r1 = openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
setsockopt$inet_mreqsrc(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
r2 = ioctl$LOOP_CTL_GET_FREE(r1, 0x4c82)
ioctl$LOOP_CTL_REMOVE(r1, 0x4c81, r2)

4m1.066051887s ago: executing program 1 (id=1231):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/13, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000080008500000082000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000100)='tmpfs\x00', 0x0, 0x0)
ioprio_get$uid(0x3, 0x0)
syz_mount_image$fuse(&(0x7f0000000340), &(0x7f0000000480)='./bus\x00', 0x80000, &(0x7f0000000980)={{}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@blksize={'blksize', 0x3d, 0x1c00}}], [{@dont_hash}, {@uid_lt}, {@hash}, {@dont_measure}]}}, 0x0, 0x0, &(0x7f0000000580)="be236ca1d890f11e15a95f1f3fc7c54dc59de372bbb777701f9cb354189a66b6efff6fbc9119e200a09e878a0b4c73")
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x104421, &(0x7f00000005c0)=ANY=[], 0x0, 0x0, 0x0)
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendto$inet6(r4, 0x0, 0x5cb, 0x1, &(0x7f0000000400)={0xa, 0x4e23, 0x0, @mcast1}, 0x1c)

1m47.872131915s ago: executing program 4 (id=1232):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mkdirat(r0, &(0x7f0000000000)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r3 = dup(r2)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000480)=ANY=[@ANYBLOB="9802"], 0x298)
write$FUSE_DIRENTPLUS(r3, &(0x7f0000000580)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_NOTIFY_RETRIEVE(r3, &(0x7f0000002f80)={0x30}, 0x30)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000002ec0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r3])
openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0)
lstat(&(0x7f0000008800)='./file0\x00', 0x0)

1m33.540911381s ago: executing program 3 (id=1234):
r0 = syz_open_dev$mouse(&(0x7f0000001680), 0x0, 0x80041)
write$dsp(r0, &(0x7f0000000000)="20d3ff89946ae3268c918942064fa3708f55f65134c8477ce10c634aaa10a9cc09d6bf14af39641ad961d2797abad1ee8a45a3c558d9ce7024fa1fd6873dafeb216f02541a0e59fa59f3c84ce061dcb4401147e2d1c056838311fcab4d907470a24f75f31278140528c924936e1ba9662cd1935dd4406d0e490ba63cb9b87657cd1ec94fb324a4844f9c206f1b27ca067f9342fdef02b8d0651ac471bf63845ab6d4e4c461c2fb5cee2ede0ae28ee248ef67cef639e9cd079cca05b1774125f2", 0xc0)

45.174376174s ago: executing program 0 (id=1175):
ftruncate(0xffffffffffffffff, 0x0)
r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f00000000c0), 0x2)
r1 = memfd_create(&(0x7f0000000140)='y\x105\xfb\xf7u\x83%:r\xc2\xb9x\xa4q\xc1\xea_\x8cZ7\xe7a\x9b\x11x\x0e\xa1\xcf\x1a\x98S7\xc9\x00\x00\x00\x00\x00\x00\a\x00\x00\x00\x00\x00\x00\x04\x879\xa24\xa9am\xde\xb2\xd3\xcbZJoa\xc4\x1acB\xaa\xc1\xfb Q\xd4\xf4\x01\xa52\xe2DG\xd4\xbd{\x9f\xa9\x97\x9b@\xdb\x00b\xe1br\xb6\xea7\xe3\x10\xff\xc2\x9d\r2\x9e\x8e\x04sW\x1b\xb7\xb3\xa2\xc9&@\xca\xda\xdc\xe2/\x97X\xac\b\xb0\xc2<\x80E\x1a\xbc\xc7W\xda9VsA\xaf\xc6\xcf\xe1\xa1\xb5M\xa2\x85\xa6y\xc4J\xf1\xf7\xfcD\x95\xe3\xeb\xc7\xbc\x91\xb0\xa8\x9eo\xebF(\x9dL\x01vRk\xaacB\x04\xa7I\v\x86EZ\x96\xd5\x14OD\\\xe8R\xe4\xcd\xec\xcc\xd1\x0fre\xe86\xcd\xeb\xc4$\x98\x06J\xd6dD\x8d_U`ji{\xab\x97\xaf;l\x1f\xaf\xb38U\xcb\xfa\xb3j\x92\f\x81\xa0\xa2-g\b\x99\x0e\x8d\x8d\x16\xd9w\\\xf8\xce\xb0j\x9d\'\x93\xef\x1d\xa0H\xcd\xbd\xd9\xaf\x12$\x8d\x16%\x8b\x00', 0x2)
ftruncate(r1, 0xffff)
fcntl$addseals(r1, 0x409, 0x7)
r2 = ioctl$UDMABUF_CREATE(r0, 0x40187542, &(0x7f0000000000)={r1, 0x0, 0x0, 0x10000})
mmap(&(0x7f0000ffb000/0x3000)=nil, 0x3000, 0x0, 0x11, r2, 0x0)
r3 = syz_open_procfs(0x0, &(0x7f0000000080)='smaps\x00')
preadv(r3, &(0x7f0000000000)=[{&(0x7f0000000200)=""/4096, 0x1000}], 0x1, 0x0, 0x0)

0s ago: executing program 1 (id=1231):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800"/13, @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000080008500000082000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='./file0/../file0\x00', &(0x7f0000000100)='tmpfs\x00', 0x0, 0x0)
ioprio_get$uid(0x3, 0x0)
syz_mount_image$fuse(&(0x7f0000000340), &(0x7f0000000480)='./bus\x00', 0x80000, &(0x7f0000000980)={{}, 0x2c, {'rootmode', 0x3d, 0xa000}, 0x2c, {}, 0x2c, {'group_id', 0x3d, 0xee01}, 0x2c, {[{@default_permissions}, {@blksize={'blksize', 0x3d, 0x1c00}}], [{@dont_hash}, {@uid_lt}, {@hash}, {@dont_measure}]}}, 0x0, 0x0, &(0x7f0000000580)="be236ca1d890f11e15a95f1f3fc7c54dc59de372bbb777701f9cb354189a66b6efff6fbc9119e200a09e878a0b4c73")
syz_mount_image$fuse(&(0x7f0000000180), &(0x7f00000001c0)='./file0\x00', 0x104421, &(0x7f00000005c0)=ANY=[], 0x0, 0x0, 0x0)
utimensat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r4 = socket$inet6(0xa, 0x800000000000002, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendto$inet6(r4, 0x0, 0x5cb, 0x1, &(0x7f0000000400)={0xa, 0x4e23, 0x0, @mcast1}, 0x1c)

kernel console output (not intermixed with test programs):

ce will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  228.198424][ T6114] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  228.250906][ T6284] loop2: detected capacity change from 0 to 1024
[  228.272680][ T6114] batman_adv: batadv0: Adding interface: batadv_slave_1
[  228.279984][ T6114] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  228.302951][ T6284] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  228.329737][ T6114] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  228.422867][ T6147] bridge0: port 1(bridge_slave_0) entered blocking state
[  228.444134][ T3556] Bluetooth: hci2: command tx timeout
[  228.450913][ T6147] bridge0: port 1(bridge_slave_0) entered disabled state
[  228.461716][ T5261] EXT4-fs (loop2): unmounting filesystem.
[  228.482691][ T6147] device bridge_slave_0 entered promiscuous mode
[  228.546536][ T6147] bridge0: port 2(bridge_slave_1) entered blocking state
[  228.558575][ T6147] bridge0: port 2(bridge_slave_1) entered disabled state
[  228.567368][ T6147] device bridge_slave_1 entered promiscuous mode
[  228.637320][ T6114] device hsr_slave_0 entered promiscuous mode
[  228.674202][ T3981] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[  228.744210][ T3556] Bluetooth: hci0: command tx timeout
[  228.907457][ T6114] device hsr_slave_1 entered promiscuous mode
[  229.046278][ T6114] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  229.115225][ T3981] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  229.131852][ T6114] Cannot create hsr debugfs directory
[  229.146306][ T3981] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  229.319311][ T3981] usb 5-1: config 0 descriptor??
[  229.417772][ T6147] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  229.508488][ T6147] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  229.545413][ T6307] loop2: detected capacity change from 0 to 512
[  229.601318][ T6147] team0: Port device team_slave_0 added
[  229.622792][   T26] kauditd_printk_skb: 47 callbacks suppressed
[  229.622807][   T26] audit: type=1326 audit(1720510933.930:242): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  229.627715][ T6307] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  229.651240][   T26] audit: type=1326 audit(1720510933.950:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  229.651283][   T26] audit: type=1326 audit(1720510933.950:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  229.651322][   T26] audit: type=1326 audit(1720510933.950:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  229.706101][   T26] audit: type=1326 audit(1720510933.950:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  229.757057][ T6147] team0: Port device team_slave_1 added
[  229.767314][ T6307] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.727: invalid indirect mapped block 2683928664 (level 1)
[  229.782275][ T6307] EXT4-fs (loop2): Remounting filesystem read-only
[  229.789675][ T6307] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  229.818630][ T6307] EXT4-fs (loop2): 1 truncate cleaned up
[  229.825090][ T6307] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  229.907528][   T26] audit: type=1326 audit(1720510934.020:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  229.925841][ T6147] batman_adv: batadv0: Adding interface: batadv_slave_0
[  229.946550][ T6147] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  229.970449][   T26] audit: type=1326 audit(1720510934.020:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  230.049351][ T6147] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  230.058155][   T26] audit: type=1326 audit(1720510934.020:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  230.102640][ T6147] batman_adv: batadv0: Adding interface: batadv_slave_1
[  230.117150][ T6319] loop1: detected capacity change from 0 to 2048
[  230.124026][ T6147] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  230.131902][   T26] audit: type=1326 audit(1720510934.020:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  230.206832][ T6147] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  230.219698][ T6319] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  230.228490][ T6319] ext4 filesystem being mounted at /74/bus supports timestamps until 2038 (0x7fffffff)
[  230.238858][   T26] audit: type=1326 audit(1720510934.020:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6285 comm="syz.4.723" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  230.345475][ T3981] usb 5-1: Cannot read MAC address
[  230.350823][ T3981] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[  230.378634][ T5261] EXT4-fs (loop2): unmounting filesystem.
[  230.412904][ T3981] usb 5-1: USB disconnect, device number 10
[  230.505604][ T6147] device hsr_slave_0 entered promiscuous mode
[  230.524860][ T3566] Bluetooth: hci2: command tx timeout
[  230.544785][ T6147] device hsr_slave_1 entered promiscuous mode
[  230.576944][ T5112] EXT4-fs (loop1): unmounting filesystem.
[  230.605859][ T6147] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  230.613894][ T6147] Cannot create hsr debugfs directory
[  230.707890][ T6326] loop2: detected capacity change from 0 to 8
[  230.767151][ T6326] SQUASHFS error: lzo decompression failed, data probably corrupt
[  230.814131][ T6326] SQUASHFS error: Failed to read block 0x91: -5
[  230.820738][ T6326] SQUASHFS error: Unable to read metadata cache entry [8f]
[  230.858579][ T6326] SQUASHFS error: Unable to read inode 0x11f
[  231.011173][ T6332] loop1: detected capacity change from 0 to 1024
[  231.040207][ T6114] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  231.084333][ T6114] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  231.109386][ T6114] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  231.130049][ T6332] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  231.237387][ T6147] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.318134][ T5112] EXT4-fs (loop1): unmounting filesystem.
[  231.360199][ T6334] device syzkaller1 entered promiscuous mode
[  231.386105][ T6114] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  232.161892][ T6147] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.292151][ T6347] loop4: detected capacity change from 0 to 512
[  232.376290][ T6147] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.404386][ T6347] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  232.469360][ T6347] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.738: invalid indirect mapped block 2683928664 (level 1)
[  232.501005][ T6353] loop2: detected capacity change from 0 to 2048
[  232.549667][ T6147] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  232.556769][ T6353] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  232.560848][ T6347] EXT4-fs (loop4): Remounting filesystem read-only
[  232.588595][ T6347] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  232.614945][ T6353] ext4 filesystem being mounted at /62/bus supports timestamps until 2038 (0x7fffffff)
[  232.655369][ T6114] 8021q: adding VLAN 0 to HW filter on device bond0
[  232.664708][ T6347] EXT4-fs (loop4): 1 truncate cleaned up
[  232.670412][ T6347] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  232.691656][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  232.700293][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  232.712073][ T6114] 8021q: adding VLAN 0 to HW filter on device team0
[  232.763774][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  232.780002][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  232.797802][ T6364] loop1: detected capacity change from 0 to 8
[  232.805261][ T3610] bridge0: port 1(bridge_slave_0) entered blocking state
[  232.812369][ T3610] bridge0: port 1(bridge_slave_0) entered forwarding state
[  232.832172][ T6364] SQUASHFS error: lzo decompression failed, data probably corrupt
[  232.840449][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  232.844192][ T6364] SQUASHFS error: Failed to read block 0x91: -5
[  232.855191][ T6364] SQUASHFS error: Unable to read metadata cache entry [8f]
[  232.860675][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  232.862510][ T6364] SQUASHFS error: Unable to read inode 0x11f
[  232.878906][ T3610] bridge0: port 2(bridge_slave_1) entered blocking state
[  232.886108][ T3610] bridge0: port 2(bridge_slave_1) entered forwarding state
[  232.937478][ T5261] EXT4-fs (loop2): unmounting filesystem.
[  232.978256][ T4618] EXT4-fs (loop4): unmounting filesystem.
[  232.994907][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  233.003061][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  233.035167][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  233.070323][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  233.105743][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  233.115423][ T6371] loop4: detected capacity change from 0 to 512
[  233.122539][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  233.132670][ T6371] EXT4-fs: Ignoring removed mblk_io_submit option
[  233.144728][ T6371] ext4: Unknown parameter 'noacl'
[  233.156859][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  233.185057][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  233.214012][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  233.252540][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  233.287148][ T6375] device syzkaller1 entered promiscuous mode
[  233.303069][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  233.311924][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  233.352133][ T6114] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  233.551735][ T6147] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  233.578765][ T6147] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  234.034966][ T6147] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  234.356184][ T6147] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  234.412316][ T6390] loop1: detected capacity change from 0 to 2048
[  234.439279][ T6390] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  234.453142][ T6390] ext4 filesystem being mounted at /86/bus supports timestamps until 2038 (0x7fffffff)
[  234.721640][ T5112] EXT4-fs (loop1): unmounting filesystem.
[  234.765197][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  234.772685][ T6409] loop4: detected capacity change from 0 to 512
[  234.772725][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  234.814883][ T6409] EXT4-fs: Ignoring removed mblk_io_submit option
[  234.821376][ T6409] ext4: Unknown parameter 'noacl'
[  234.830021][ T6114] 8021q: adding VLAN 0 to HW filter on device batadv0
[  234.955896][ T6147] 8021q: adding VLAN 0 to HW filter on device bond0
[  235.005812][ T6411] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  235.087429][ T3975] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  235.098594][ T6411] kvm: pic: non byte read
[  235.110866][ T6411] kvm: pic: non byte read
[  235.114933][ T3975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  235.127451][ T6411] kvm: pic: non byte read
[  235.175062][ T3975] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  235.211297][ T3975] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  235.225311][ T3566] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  235.235557][ T3566] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  235.244154][ T3566] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  235.275879][ T3566] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  235.283805][ T3566] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  235.294437][ T3566] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  235.395272][ T6147] 8021q: adding VLAN 0 to HW filter on device team0
[  235.418379][ T6114] device veth0_vlan entered promiscuous mode
[  235.573666][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  235.582867][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  235.594204][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  235.603147][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  235.612202][ T3978] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.619374][ T3978] bridge0: port 1(bridge_slave_0) entered forwarding state
[  235.627477][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  235.637470][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  235.648238][ T3978] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.655424][ T3978] bridge0: port 2(bridge_slave_1) entered forwarding state
[  235.663350][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  235.684388][ T6421] device syzkaller1 entered promiscuous mode
[  235.727904][ T6114] device veth1_vlan entered promiscuous mode
[  235.738922][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  235.748742][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  235.756910][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  235.794330][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  235.838486][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  235.856744][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  235.982292][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  235.998750][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  236.015196][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  236.030865][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  236.045698][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  236.071918][ T6114] device veth0_macvtap entered promiscuous mode
[  236.079987][ T6436] loop4: detected capacity change from 0 to 2048
[  236.108854][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  236.127978][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  236.137082][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  236.152033][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  236.160875][ T6436] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  236.162486][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  236.180116][ T6147] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  236.183771][ T6441] loop2: detected capacity change from 0 to 512
[  236.194501][ T6441] EXT4-fs: Ignoring removed mblk_io_submit option
[  236.201027][ T6441] ext4: Unknown parameter 'noacl'
[  236.204458][ T6436] ext4 filesystem being mounted at /97/bus supports timestamps until 2038 (0x7fffffff)
[  236.286911][ T6114] device veth1_macvtap entered promiscuous mode
[  236.397786][ T1170] device hsr_slave_0 left promiscuous mode
[  236.415116][ T1170] device hsr_slave_1 left promiscuous mode
[  236.423097][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  236.438659][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_0
[  236.455905][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  236.472461][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_1
[  236.493299][ T1170] device bridge_slave_1 left promiscuous mode
[  236.503199][ T1170] bridge0: port 2(bridge_slave_1) entered disabled state
[  236.522357][ T1170] device bridge_slave_0 left promiscuous mode
[  236.555114][ T1170] bridge0: port 1(bridge_slave_0) entered disabled state
[  236.599382][ T1170] device veth1_macvtap left promiscuous mode
[  236.610214][ T1170] device veth0_macvtap left promiscuous mode
[  236.616540][ T1170] device veth1_vlan left promiscuous mode
[  236.622522][ T1170] device veth0_vlan left promiscuous mode
[  236.625481][ T6449] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  236.652400][ T6449] kvm: pic: non byte read
[  236.660969][ T6449] kvm: pic: non byte read
[  236.666014][ T6449] kvm: pic: non byte read
[  236.843145][ T1170] bond0 (unregistering): (slave batadv2): Releasing backup interface
[  236.871459][ T1170] bond0 (unregistering): (slave batadv1): Releasing backup interface
[  237.231681][ T1170] team0 (unregistering): Port device team_slave_1 removed
[  237.282333][ T1170] team0 (unregistering): Port device team_slave_0 removed
[  237.318794][ T1170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  237.357130][ T1170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  237.404509][ T3556] Bluetooth: hci4: command tx timeout
[  237.757865][ T1170] bond0 (unregistering): Released all slaves
[  237.891170][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  237.907018][ T6114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  237.935200][ T4618] EXT4-fs (loop4): unmounting filesystem.
[  237.951000][ T6114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.974313][ T6114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  237.984874][ T6114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  237.995969][ T6114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  238.006771][ T6114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.018761][ T6114] batman_adv: batadv0: Interface activated: batadv_slave_0
[  238.054630][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  238.064135][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  238.075178][ T6114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  238.086060][ T6114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.096826][ T6114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  238.107360][ T6114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.124656][ T6114] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  238.151225][ T6114] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.185503][ T6114] batman_adv: batadv0: Interface activated: batadv_slave_1
[  238.217441][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  238.234693][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  238.254729][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  238.257614][ T6468] loop2: detected capacity change from 0 to 512
[  238.262220][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  238.313566][ T6472] loop4: detected capacity change from 0 to 512
[  238.324612][ T6472] EXT4-fs: Ignoring removed mblk_io_submit option
[  238.331221][ T6472] ext4: Unknown parameter 'noacl'
[  238.341397][ T6417] chnl_net:caif_netlink_parms(): no params data found
[  238.349011][ T6468] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  238.359688][ T6114] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  238.368920][ T6114] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  238.379308][ T6468] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.776: invalid indirect mapped block 2683928664 (level 1)
[  238.404128][ T6114] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  238.412872][ T6114] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  238.433618][ T6468] EXT4-fs (loop2): Remounting filesystem read-only
[  238.474299][ T6468] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[  238.502879][ T6468] EXT4-fs (loop2): 1 truncate cleaned up
[  238.512039][ T6468] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  238.527796][ T6147] 8021q: adding VLAN 0 to HW filter on device batadv0
[  238.656553][ T6417] bridge0: port 1(bridge_slave_0) entered blocking state
[  238.664741][ T6417] bridge0: port 1(bridge_slave_0) entered disabled state
[  238.673559][ T6417] device bridge_slave_0 entered promiscuous mode
[  238.673939][ T5261] EXT4-fs (loop2): unmounting filesystem.
[  238.692970][ T6417] bridge0: port 2(bridge_slave_1) entered blocking state
[  238.700917][ T6417] bridge0: port 2(bridge_slave_1) entered disabled state
[  238.710145][ T6417] device bridge_slave_1 entered promiscuous mode
[  238.745927][ T3645] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.786173][ T6417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  238.799855][ T3645] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  238.812488][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  238.816532][ T3981] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  238.825061][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  238.856715][ T6417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  238.878095][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  238.936434][ T5050] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  238.956952][ T6483] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  238.979634][ T5050] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  239.003048][ T6481] kvm: pic: non byte read
[  239.019421][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  239.028970][ T6481] kvm: pic: non byte read
[  239.038837][ T6481] kvm: pic: non byte read
[  239.046254][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  239.071670][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  239.102957][ T6417] team0: Port device team_slave_0 added
[  239.141715][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  239.158442][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  239.187162][ T6417] team0: Port device team_slave_1 added
[  239.197528][ T3981] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33
[  239.222945][ T6147] device veth0_vlan entered promiscuous mode
[  239.239893][ T3981] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  239.252075][ T3981] usb 5-1: config 0 descriptor??
[  239.278550][ T6147] device veth1_vlan entered promiscuous mode
[  239.294648][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_0
[  239.315732][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.350695][ T6417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  239.373580][ T6417] batman_adv: batadv0: Adding interface: batadv_slave_1
[  239.381342][ T6417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  239.409995][ T6417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  239.453606][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  239.471727][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  239.482447][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  239.490963][ T3566] Bluetooth: hci4: command tx timeout
[  239.497470][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  239.513436][ T6147] device veth0_macvtap entered promiscuous mode
[  239.529196][   T26] kauditd_printk_skb: 42 callbacks suppressed
[  239.529210][   T26] audit: type=1326 audit(1720510943.840:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  239.626591][   T26] audit: type=1326 audit(1720510943.880:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  239.742797][   T26] audit: type=1326 audit(1720510943.880:296): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  239.787062][ T6147] device veth1_macvtap entered promiscuous mode
[  239.804727][   T26] audit: type=1326 audit(1720510943.880:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  239.838378][   T26] audit: type=1326 audit(1720510943.880:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  239.990484][   T26] audit: type=1326 audit(1720510943.880:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  240.167461][ T6417] device hsr_slave_0 entered promiscuous mode
[  240.317303][ T6417] device hsr_slave_1 entered promiscuous mode
[  240.504588][   T26] audit: type=1326 audit(1720510943.880:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  240.534182][ T6417] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  240.572245][ T6417] Cannot create hsr debugfs directory
[  240.587396][   T26] audit: type=1326 audit(1720510943.880:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  240.615051][   T26] audit: type=1326 audit(1720510943.880:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  240.654138][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  240.674039][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.683891][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  240.704042][   T26] audit: type=1326 audit(1720510943.880:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6474 comm="syz.4.778" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5068f75bd9 code=0x7ffc0000
[  240.765538][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.794394][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  240.833955][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.854067][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  240.881609][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.915086][ T6147] batman_adv: batadv0: Interface activated: batadv_slave_0
[  240.932528][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  240.944836][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  240.953042][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  240.994582][ T3981] usb 5-1: Cannot read MAC address
[  241.000011][ T3981] MOSCHIP usb-ethernet driver: probe of 5-1:0.0 failed with error -71
[  241.002511][ T3758] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  241.056586][ T3981] usb 5-1: USB disconnect, device number 11
[  241.083299][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.096033][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.124263][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.143783][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.164332][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.201203][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.230851][ T6147] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.254505][ T6147] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.280595][ T6147] batman_adv: batadv0: Interface activated: batadv_slave_1
[  241.302845][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  241.314170][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  241.341571][ T6147] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  241.361222][ T6147] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  241.373541][ T6147] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  241.405199][ T6147] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  241.574184][ T3556] Bluetooth: hci4: command tx timeout
[  241.604314][ T6525] netlink: zone id is out of range
[  241.624275][ T6525] netlink: zone id is out of range
[  241.629435][ T6525] netlink: zone id is out of range
[  241.664290][ T6525] netlink: zone id is out of range
[  241.679774][ T6525] netlink: zone id is out of range
[  241.733708][ T6525] netlink: zone id is out of range
[  241.738946][ T6525] netlink: zone id is out of range
[  241.744227][ T6525] netlink: zone id is out of range
[  241.749440][ T6525] netlink: zone id is out of range
[  241.771951][ T6525] netlink: zone id is out of range
[  242.494776][ T6529] loop4: detected capacity change from 0 to 64
[  242.525575][ T6417] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.664830][ T5050] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.673039][ T5050] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.771377][ T6533] loop3: detected capacity change from 0 to 2048
[  242.833653][ T6417] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  242.879260][ T6244] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  242.899102][ T4267] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  242.924896][ T4267] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.999363][ T6417] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  243.041046][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  243.128783][ T6417] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  243.956001][ T3566] Bluetooth: hci4: command tx timeout
[  244.361194][ T6417] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  244.371075][ T6417] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  244.418086][ T6417] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  244.500112][ T6417] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  244.574986][ T6571] loop2: detected capacity change from 0 to 2048
[  244.862825][ T6417] 8021q: adding VLAN 0 to HW filter on device bond0
[  244.890776][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  244.901142][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  244.923044][ T6417] 8021q: adding VLAN 0 to HW filter on device team0
[  244.968655][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  244.980035][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  244.989353][ T6245] bridge0: port 1(bridge_slave_0) entered blocking state
[  244.996566][ T6245] bridge0: port 1(bridge_slave_0) entered forwarding state
[  245.002465][ T6589] loop0: detected capacity change from 0 to 512
[  245.019071][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  245.028166][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  245.038530][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  245.056570][ T3601] bridge0: port 2(bridge_slave_1) entered blocking state
[  245.063749][ T3601] bridge0: port 2(bridge_slave_1) entered forwarding state
[  245.072609][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  245.087543][ T3601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  245.147397][ T6589] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  245.149024][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  245.160503][ T6589] ext4 filesystem being mounted at /4/file1 supports timestamps until 2038 (0x7fffffff)
[  245.202347][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  245.227415][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  245.259439][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  245.286729][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  245.313683][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  245.371867][ T6604] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  245.405443][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  245.435297][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  245.465320][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  245.495883][ T6417] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  249.961517][ T3556] Bluetooth: hci5: command 0x0406 tx timeout
[  250.256000][ T6147] EXT4-fs (loop0): unmounting filesystem.
[  250.260422][ T6620] loop4: detected capacity change from 0 to 2048
[  255.071290][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  255.102374][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  255.109269][ T6654] loop2: detected capacity change from 0 to 1024
[  255.121954][ T6417] 8021q: adding VLAN 0 to HW filter on device batadv0
[  255.179619][ T1170] device hsr_slave_0 left promiscuous mode
[  255.211118][ T1170] device hsr_slave_1 left promiscuous mode
[  255.263303][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  255.263503][ T6649] pit: kvm: requested 4190 ns i8254 timer period limited to 200000 ns
[  255.364960][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_0
[  255.499196][ T1256] ieee802154 phy0 wpan0: encryption failed: -22
[  255.508919][ T1256] ieee802154 phy1 wpan1: encryption failed: -22
[  255.546771][ T6649] kvm: pic: non byte read
[  255.552554][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  255.565875][ T6649] kvm: pic: non byte read
[  255.572687][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_1
[  255.582533][ T6649] kvm: pic: non byte read
[  255.622581][ T1170] device bridge_slave_1 left promiscuous mode
[  255.747435][ T1170] bridge0: port 2(bridge_slave_1) entered disabled state
[  255.821798][ T1170] device bridge_slave_0 left promiscuous mode
[  255.839755][ T1170] bridge0: port 1(bridge_slave_0) entered disabled state
[  255.963643][ T1170] device veth1_macvtap left promiscuous mode
[  256.102286][ T1170] device veth0_macvtap left promiscuous mode
[  256.108754][ T1170] device veth1_vlan left promiscuous mode
[  256.115663][ T1170] device veth0_vlan left promiscuous mode
[  256.121148][ T6675] loop4: detected capacity change from 0 to 2048
[  256.219353][ T6678] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  260.791806][ T6688] netlink: 4 bytes leftover after parsing attributes in process `syz.2.851'.
[  261.396412][    C0] vxcan1: j1939_tp_rxtimer: 0xffff88805ab54400: rx timeout, send abort
[  261.508928][ T1170] team0 (unregistering): Port device team_slave_1 removed
[  261.582861][ T1170] team0 (unregistering): Port device team_slave_0 removed
[  261.753614][ T1170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  261.793502][ T1170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  261.906016][    C0] vxcan1: j1939_tp_rxtimer: 0xffff88805ab54400: abort rx timeout. Force session deactivation
[  267.523075][ T3556] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  267.542896][ T3556] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  267.545171][ T1170] bond0 (unregistering): Released all slaves
[  267.564177][ T3556] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  267.572025][ T3556] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  267.588548][ T3556] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  267.595994][ T3556] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  267.729434][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  267.738456][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  267.772558][ T6417] device veth0_vlan entered promiscuous mode
[  267.825739][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  267.836145][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  267.849775][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  267.864328][ T3981] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  267.883414][ T6417] device veth1_vlan entered promiscuous mode
[  267.987182][ T6417] device veth0_macvtap entered promiscuous mode
[  268.016063][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  268.025198][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  268.043699][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  268.069204][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  268.090562][ T6417] device veth1_macvtap entered promiscuous mode
[  268.132474][ T6737] loop3: detected capacity change from 0 to 1024
[  268.146866][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  268.185865][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  268.349060][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  268.374377][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.394341][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  268.415213][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.434058][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  268.454075][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.474192][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  268.494024][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.526831][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_0
[  268.568941][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  268.595072][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  268.646258][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  268.678285][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.698708][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  268.720082][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.740402][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  268.761275][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.781641][ T6417] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  268.876549][ T6417] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  268.943561][ T6739] loop4: detected capacity change from 0 to 32768
[  268.953145][ T6739] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.870 (6739)
[  273.068403][ T3566] Bluetooth: hci1: command tx timeout
[  273.110952][ T6417] batman_adv: batadv0: Interface activated: batadv_slave_1
[  273.286112][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  273.295307][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  273.307346][ T6417] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  273.328895][ T6417] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  273.347879][ T6417] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  273.366788][ T6417] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  273.407975][ T6754] netlink: 4 bytes leftover after parsing attributes in process `syz.3.875'.
[  273.560499][ T3645] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  273.591654][ T6725] chnl_net:caif_netlink_parms(): no params data found
[  273.617156][ T3645] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  273.729037][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  273.761873][ T3645] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  273.780826][ T3645] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  273.829929][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  273.916282][ T6769] block device autoloading is deprecated and will be removed.
[  273.975876][ T6725] bridge0: port 1(bridge_slave_0) entered blocking state
[  274.018334][ T6725] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.065608][ T6725] device bridge_slave_0 entered promiscuous mode
[  274.100368][ T6725] bridge0: port 2(bridge_slave_1) entered blocking state
[  274.140755][ T6725] bridge0: port 2(bridge_slave_1) entered disabled state
[  274.175434][ T6725] device bridge_slave_1 entered promiscuous mode
[  274.176106][ T6777] loop2: detected capacity change from 0 to 512
[  274.192895][ T6779] loop4: detected capacity change from 0 to 1024
[  274.261360][ T6777] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  274.265614][ T6725] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  274.314692][ T6777] EXT4-fs (loop2): invalid journal inode
[  274.336870][ T6777] EXT4-fs (loop2): can't get journal size
[  274.362290][ T6725] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  274.419218][ T6777] EXT4-fs (loop2): 1 truncate cleaned up
[  274.444316][ T6777] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  274.545669][ T6725] team0: Port device team_slave_0 added
[  274.595663][ T6725] team0: Port device team_slave_1 added
[  274.717253][ T6725] batman_adv: batadv0: Adding interface: batadv_slave_0
[  274.748620][ T6725] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  274.794027][ T6725] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  274.827463][ T6799] netlink: 4 bytes leftover after parsing attributes in process `syz.4.887'.
[  274.895052][ T6799] netdevsim netdevsim4 netdevsim0: set [0, 1] type 1 family 0 port 8472 - 0
[  274.904205][ T6799] netdevsim netdevsim4 netdevsim1: set [0, 1] type 1 family 0 port 8472 - 0
[  274.912934][ T6799] netdevsim netdevsim4 netdevsim2: set [0, 1] type 1 family 0 port 8472 - 0
[  274.921729][ T6799] netdevsim netdevsim4 netdevsim3: set [0, 1] type 1 family 0 port 8472 - 0
[  275.001939][ T6799] device vxlan1 entered promiscuous mode
[  275.014173][ T6245] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  275.026300][ T6725] batman_adv: batadv0: Adding interface: batadv_slave_1
[  275.047683][ T6725] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  275.084367][ T3566] Bluetooth: hci1: command tx timeout
[  275.091425][ T6725] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  275.229239][ T6725] device hsr_slave_0 entered promiscuous mode
[  275.252430][ T6725] device hsr_slave_1 entered promiscuous mode
[  275.274053][ T6245] usb 4-1: Using ep0 maxpacket: 8
[  275.294806][ T6725] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  275.306948][ T6725] Cannot create hsr debugfs directory
[  275.394978][ T5261] EXT4-fs (loop2): unmounting filesystem.
[  275.487755][   T26] kauditd_printk_skb: 24 callbacks suppressed
[  275.487771][   T26] audit: type=1326 audit(1720510979.800:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf6975bd9 code=0x7ffc0000
[  275.574510][   T26] audit: type=1326 audit(1720510979.800:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf6975bd9 code=0x7ffc0000
[  275.614453][ T6245] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ee
[  275.654296][ T6245] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  275.662347][ T6245] usb 4-1: Product: syz
[  275.666648][   T26] audit: type=1326 audit(1720510979.810:330): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf6975bd9 code=0x7ffc0000
[  275.712101][ T6245] usb 4-1: Manufacturer: syz
[  275.721308][ T6245] usb 4-1: SerialNumber: syz
[  275.729119][ T6809] netlink: 12 bytes leftover after parsing attributes in process `syz.4.891'.
[  275.738125][   T26] audit: type=1326 audit(1720510979.810:331): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fdaf6975bd9 code=0x7ffc0000
[  275.738168][   T26] audit: type=1326 audit(1720510979.850:332): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdaf6975bd9 code=0x7ffc0000
[  275.775937][ T6245] usb 4-1: config 0 descriptor??
[  275.878584][   T26] audit: type=1326 audit(1720510979.850:333): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdaf696cc27 code=0x7ffc0000
[  275.880162][ T6814] loop1: detected capacity change from 0 to 1024
[  275.915639][   T26] audit: type=1326 audit(1720510979.850:334): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf69115c9 code=0x7ffc0000
[  275.989345][   T26] audit: type=1326 audit(1720510979.850:335): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fdaf6975bd9 code=0x7ffc0000
[  276.041120][ T6725] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.064337][ T6245] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  276.079613][   T26] audit: type=1326 audit(1720510979.850:336): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fdaf696cc27 code=0x7ffc0000
[  276.164102][   T26] audit: type=1326 audit(1720510979.850:337): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6803 comm="syz.2.889" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdaf69115c9 code=0x7ffc0000
[  276.235733][ T6725] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.409069][ T6725] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.530435][ T6725] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  276.875649][ T6725] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  276.903311][ T6725] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  276.955906][ T6725] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  276.963121][ T6245] dvb_usb_rtl28xxu: probe of 4-1:0.0 failed with error -71
[  276.980076][ T6245] usb 4-1: USB disconnect, device number 9
[  276.999378][ T6725] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  277.165209][ T3566] Bluetooth: hci1: command tx timeout
[  277.281381][ T6825] loop4: detected capacity change from 0 to 32768
[  277.312537][ T6825] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[  277.322570][ T6825] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[  277.348748][ T6825] gfs2: fsid=syz:syz.0: can't lookup journal index: 0
[  277.359887][ T6725] 8021q: adding VLAN 0 to HW filter on device bond0
[  277.406775][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  277.415557][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  277.427331][ T6725] 8021q: adding VLAN 0 to HW filter on device team0
[  277.474310][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  277.483660][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  277.492696][ T3610] bridge0: port 1(bridge_slave_0) entered blocking state
[  277.499856][ T3610] bridge0: port 1(bridge_slave_0) entered forwarding state
[  277.508251][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  277.518385][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  277.527761][ T3610] bridge0: port 2(bridge_slave_1) entered blocking state
[  277.534886][ T3610] bridge0: port 2(bridge_slave_1) entered forwarding state
[  277.542638][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  277.553898][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  277.574899][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  277.617979][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  277.637280][ T6245] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  277.657967][ T6246] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  277.670626][ T6246] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  277.680111][ T6246] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  277.715538][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  277.730584][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  277.738931][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  277.748027][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  277.775521][ T6725] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  277.996142][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  278.003640][ T3610] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  278.020597][ T6725] 8021q: adding VLAN 0 to HW filter on device batadv0
[  278.046710][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  278.055886][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  278.121047][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  278.130284][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  278.139696][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  278.147825][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  278.158197][ T6725] device veth0_vlan entered promiscuous mode
[  278.182878][ T1170] device hsr_slave_0 left promiscuous mode
[  278.189894][ T1170] device hsr_slave_1 left promiscuous mode
[  278.198835][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  278.206681][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_0
[  278.217677][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  278.225184][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_1
[  278.233234][ T1170] device bridge_slave_1 left promiscuous mode
[  278.239514][ T1170] bridge0: port 2(bridge_slave_1) entered disabled state
[  278.251151][ T1170] device bridge_slave_0 left promiscuous mode
[  278.258125][ T1170] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.291632][ T1170] device veth1_macvtap left promiscuous mode
[  278.299572][ T1170] device veth0_macvtap left promiscuous mode
[  278.308034][ T1170] device veth1_vlan left promiscuous mode
[  278.313831][ T1170] device veth0_vlan left promiscuous mode
[  278.788042][ T1170] team0 (unregistering): Port device team_slave_1 removed
[  278.830840][ T1170] team0 (unregistering): Port device team_slave_0 removed
[  278.873832][ T1170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  278.921968][ T1170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  279.254341][ T3566] Bluetooth: hci1: command tx timeout
[  279.377598][ T1170] bond0 (unregistering): Released all slaves
[  279.511573][ T6725] device veth1_vlan entered promiscuous mode
[  279.540566][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  279.556298][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  279.577348][ T6725] device veth0_macvtap entered promiscuous mode
[  279.590692][ T6725] device veth1_macvtap entered promiscuous mode
[  279.611292][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.622094][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.633392][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.644883][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.654779][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.665786][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.675695][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  279.686153][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.697669][ T6725] batman_adv: batadv0: Interface activated: batadv_slave_0
[  279.705098][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  279.713456][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  279.721826][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  279.731377][ T2964] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  279.742772][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  279.753799][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.764504][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  279.775673][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.785526][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  279.795973][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.805905][ T6725] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  279.816386][ T6725] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  279.843048][ T6725] batman_adv: batadv0: Interface activated: batadv_slave_1
[  279.852917][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  279.862207][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  279.873696][ T6725] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  279.883686][ T6725] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  279.892560][ T6725] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  279.901777][ T6725] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  279.992137][   T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  280.001204][   T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  280.022066][ T6246] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  280.043661][   T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  280.052406][   T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  280.066534][ T6246] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  281.905069][   T26] kauditd_printk_skb: 1 callbacks suppressed
[  281.905086][   T26] audit: type=1326 audit(1720510986.220:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd278775bd9 code=0x7ffc0000
[  281.947492][   T26] audit: type=1326 audit(1720510986.260:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd278775bd9 code=0x7ffc0000
[  281.971681][ T6845] netlink: 4 bytes leftover after parsing attributes in process `syz.2.901'.
[  282.020907][   T26] audit: type=1326 audit(1720510986.260:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd278775bd9 code=0x7ffc0000
[  282.036277][ T6845] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  282.052072][ T6845] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  282.060823][ T6845] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  282.069596][ T6845] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  282.102428][   T26] audit: type=1326 audit(1720510986.260:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd278775bd9 code=0x7ffc0000
[  282.153036][   T26] audit: type=1326 audit(1720510986.260:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd278775bd9 code=0x7ffc0000
[  282.169721][ T6845] device vxlan0 entered promiscuous mode
[  282.240975][   T26] audit: type=1326 audit(1720510986.290:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd278775bd9 code=0x7ffc0000
[  282.271508][ T6855] loop0: detected capacity change from 0 to 1024
[  282.294308][   T26] audit: type=1326 audit(1720510986.300:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7fd278775bd9 code=0x7ffc0000
[  282.321497][   T26] audit: type=1326 audit(1720510986.300:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd27876cc27 code=0x7ffc0000
[  282.417312][   T26] audit: type=1326 audit(1720510986.300:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fd2787115c9 code=0x7ffc0000
[  282.492027][   T26] audit: type=1326 audit(1720510986.300:348): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6836 comm="syz.1.900" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fd27876cc27 code=0x7ffc0000
[  282.821989][ T6875] ALSA: mixer_oss: invalid OSS volume ''
[  282.884181][ T3610] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  283.163752][ T6870] Device name cannot be null; rc = [-22]
[  283.256354][ T3610] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32
[  283.292998][ T3610] usb 5-1: config 1 has an invalid descriptor of length 110, skipping remainder of the config
[  283.330198][ T3610] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66
[  283.357679][ T3610] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 101, changing to 7
[  283.394257][ T3610] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 10100, setting to 1024
[  283.574205][ T3610] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40
[  283.588038][ T6894] loop0: detected capacity change from 0 to 4096
[  283.594469][ T3610] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0
[  283.594497][ T3610] usb 5-1: Product: syz
[  283.594514][ T3610] usb 5-1: Manufacturer: syz
[  283.634766][ T3610] cdc_wdm 5-1:1.0: skipping garbage
[  283.640301][ T3610] cdc_wdm 5-1:1.0: skipping garbage
[  283.668688][ T3610] cdc_wdm: probe of 5-1:1.0 failed with error -22
[  283.714260][ T6894] ntfs: volume version 3.1.
[  283.752990][ T6863] loop3: detected capacity change from 0 to 40427
[  283.888131][ T6863] F2FS-fs (loop3): Found nat_bits in checkpoint
[  283.921128][ T3610] usb 5-1: USB disconnect, device number 12
[  284.087016][ T6863] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  284.214805][ T6863] syz.3.911: attempt to access beyond end of device
[  284.214805][ T6863] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  284.246958][ T6909] IPv6: Can't replace route, no match found
[  284.416393][ T6114] syz-executor: attempt to access beyond end of device
[  284.416393][ T6114] loop3: rw=2049, sector=45104, nr_sectors = 24 limit=40427
[  284.611793][ T6924] loop0: detected capacity change from 0 to 256
[  284.744701][ T6924] syz.0.934: attempt to access beyond end of device
[  284.744701][ T6924] loop0: rw=2049, sector=256, nr_sectors = 4 limit=256
[  284.877698][ T6933] loop4: detected capacity change from 0 to 1024
[  284.919821][ T6927] loop1: detected capacity change from 0 to 4096
[  284.938821][ T6933] hfsplus: inconsistency in B*Tree (-1,0,1,1,0)
[  284.984197][ T6933] hfsplus: failed to load root directory
[  285.033094][ T6927] ntfs: volume version 3.1.
[  285.358858][ T6955] netlink: 4 bytes leftover after parsing attributes in process `syz.3.947'.
[  285.419778][ T6955] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  285.428634][ T6955] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  285.437546][ T6955] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  285.446519][ T6955] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  285.483007][ T6955] device vxlan0 entered promiscuous mode
[  285.508781][ T6961] loop0: detected capacity change from 0 to 256
[  285.553095][ T6961] syz.0.952: attempt to access beyond end of device
[  285.553095][ T6961] loop0: rw=2049, sector=256, nr_sectors = 4 limit=256
[  285.716185][ T6968] IPv6: Can't replace route, no match found
[  285.852420][ T6971] loop4: detected capacity change from 0 to 4096
[  285.891971][ T6971] ntfs: volume version 3.1.
[  285.942727][ T6939] loop2: detected capacity change from 0 to 40427
[  285.991719][ T6939] F2FS-fs (loop2): Found nat_bits in checkpoint
[  286.070643][ T6939] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  286.160161][ T6939] syz.2.943: attempt to access beyond end of device
[  286.160161][ T6939] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  286.231175][ T6992] loop4: detected capacity change from 0 to 16
[  286.239450][ T6992] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  286.251839][ T5261] syz-executor: attempt to access beyond end of device
[  286.251839][ T5261] loop2: rw=2049, sector=45104, nr_sectors = 24 limit=40427
[  286.277839][ T6992] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  286.504178][ T3981] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  286.874441][ T3981] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  286.904494][ T3981] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  287.094295][ T3981] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  287.103411][ T3981] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  287.124948][ T3981] usb 4-1: Product: syz
[  287.129175][ T3981] usb 4-1: Manufacturer: syz
[  287.154741][ T3981] usb 4-1: SerialNumber: syz
[  287.163820][ T7023] loop0: detected capacity change from 0 to 16
[  287.183371][ T7023] MTD: Attempt to mount non-MTD device "/dev/loop0"
[  287.198366][ T7027] loop1: detected capacity change from 0 to 512
[  287.205219][ T3981] usb 4-1: selecting invalid altsetting 1
[  287.221402][ T7023] overlayfs: fs on './file0' does not support file handles, falling back to index=off,nfs_export=off.
[  287.248274][ T7027] EXT4-fs error (device loop1): __ext4_fill_super:5399: inode #2: comm syz.1.980: casefold flag without casefold feature
[  287.267615][ T7032] netlink: 20 bytes leftover after parsing attributes in process `syz.4.982'.
[  287.285072][ T7027] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended
[  287.317512][ T7027] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  287.362149][ T6417] EXT4-fs (loop1): unmounting filesystem.
[  287.639517][ T6991] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  287.663518][ T6991] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  287.682875][ T6991] CUSE: unknown device info ""
[  287.689070][ T6991] CUSE: DEVNAME unspecified
[  287.744352][ T3981] usb 4-1: selecting invalid altsetting 1
[  287.750379][ T3981] cdc_ncm 4-1:1.0: bind() failure
[  287.902157][ T7062] netlink: 20 bytes leftover after parsing attributes in process `syz.0.995'.
[  288.348711][ T3556] Bluetooth: hci3: command 0x0406 tx timeout
[  288.493322][ T3981] usb 4-1: USB disconnect, device number 10
[  289.617543][ T7098] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1007'.
[  289.774835][ T7104] loop4: detected capacity change from 0 to 4096
[  289.838685][ T7104] ntfs: volume version 3.1.
[  289.845915][ T7104] __ntfs_error: 74 callbacks suppressed
[  289.845932][ T7104] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  289.864436][ T7104] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  289.875952][ T7104] ntfs: (device loop4): load_system_files(): Failed to determine if Windows is hibernated.  Mounting read-only.  Run chkdsk.
[  290.034369][ T3981] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[  290.289234][ T3981] usb 3-1: Using ep0 maxpacket: 8
[  290.397884][ T7127] loop0: detected capacity change from 0 to 4096
[  290.405739][ T7127] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[  290.426845][ T3981] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 98, using maximum allowed: 30
[  290.450317][ T3981] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 98
[  290.463816][ T7127] ntfs: (device loop0): read_ntfs_boot_sector(): Primary boot sector is invalid.
[  290.482435][ T7127] ntfs: (device loop0): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy.
[  290.503733][ T3981] usb 3-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[  290.513278][ T3981] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  290.538731][ T7127] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  290.555813][ T3981] usb 3-1: config 0 descriptor??
[  290.561001][ T7127] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  290.603078][ T7127] ntfs: (device loop0): ntfs_mapping_pairs_decompress(): Corrupt attribute.
[  290.622014][ T7127] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5).
[  290.643426][ T3981] ums-jumpshot 3-1:0.0: USB Mass Storage device detected
[  290.655361][ T3981] ums-jumpshot 3-1:0.0: Quirks match for vid 05dc pid 0001: 2
[  290.674367][ T7127] ntfs: volume version 3.1.
[  290.857787][ T3981] usb 3-1: USB disconnect, device number 6
[  291.234713][ T3601] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  291.279367][ T7160] loop3: detected capacity change from 0 to 512
[  291.346929][ T7160] EXT4-fs error (device loop3): __ext4_fill_super:5399: inode #2: comm syz.3.1035: casefold flag without casefold feature
[  291.395425][ T7160] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  291.406399][ T7165] loop1: detected capacity change from 0 to 4096
[  291.440994][ T7165] ntfs: volume version 3.1.
[  291.446794][ T7160] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  291.522995][ T7171] loop4: detected capacity change from 0 to 1024
[  291.545183][ T6114] EXT4-fs (loop3): unmounting filesystem.
[  291.575081][ T7171] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.1039: Invalid block bitmap block 0 in block_group 0
[  291.619508][ T7171] EXT4-fs error (device loop4): ext4_acquire_dquot:6777: comm syz.4.1039: Failed to acquire dquot type 0
[  291.635108][ T3601] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  291.655709][ T7171] EXT4-fs error (device loop4): ext4_free_blocks:6213: comm syz.4.1039: Freeing blocks not in datazone - block = 0, count = 4096
[  291.687786][ T7177] loop3: detected capacity change from 0 to 256
[  291.692143][ T3601] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  291.696872][ T7177] FAT-fs (loop3): Unrecognized mount option "0xffffffffffffffff" or missing value
[  291.721550][ T7171] EXT4-fs error (device loop4): ext4_read_inode_bitmap:140: comm syz.4.1039: Invalid inode bitmap blk 0 in block_group 0
[  291.737138][   T11] EXT4-fs error (device loop4): ext4_release_dquot:6800: comm kworker/u4:1: Failed to release dquot type 0
[  291.750070][ T7171] EXT4-fs error (device loop4) in ext4_free_inode:362: Corrupt filesystem
[  291.764750][ T7171] EXT4-fs (loop4): 1 orphan inode deleted
[  291.770639][ T7171] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  291.854257][ T4618] EXT4-fs (loop4): unmounting filesystem.
[  291.934438][ T3601] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  291.952990][ T3601] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  291.981834][ T3601] usb 1-1: Product: syz
[  291.993332][ T3601] usb 1-1: Manufacturer: syz
[  292.002149][ T3601] usb 1-1: SerialNumber: syz
[  292.075108][ T3601] usb 1-1: selecting invalid altsetting 1
[  292.107771][ T7200] loop3: detected capacity change from 0 to 512
[  292.133797][ T7200] EXT4-fs error (device loop3): __ext4_fill_super:5399: inode #2: comm syz.3.1051: casefold flag without casefold feature
[  292.190130][ T7200] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended
[  292.230212][ T7200] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  292.264146][ T3976] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  292.352702][ T6114] EXT4-fs (loop3): unmounting filesystem.
[  292.490204][ T7148] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  292.531533][ T7148] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  292.539563][ T3976] usb 2-1: Using ep0 maxpacket: 8
[  292.563331][ T7148] CUSE: unknown device info ""
[  292.578314][ T7148] CUSE: DEVNAME unspecified
[  292.615851][ T3601] usb 1-1: selecting invalid altsetting 1
[  292.621866][ T3601] cdc_ncm 1-1:1.0: bind() failure
[  292.664156][ T3976] usb 2-1: too many endpoints for config 0 interface 0 altsetting 0: 98, using maximum allowed: 30
[  292.695145][ T3976] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 98
[  292.727108][ T3976] usb 2-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[  292.740615][ T3976] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  292.784208][ T3976] usb 2-1: config 0 descriptor??
[  292.825052][ T3976] ums-jumpshot 2-1:0.0: USB Mass Storage device detected
[  292.853139][ T3976] ums-jumpshot 2-1:0.0: Quirks match for vid 05dc pid 0001: 2
[  292.921091][ T7226] loop4: detected capacity change from 0 to 2048
[  292.961743][ T7226] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  293.048631][ T3601] usb 2-1: USB disconnect, device number 9
[  293.110072][ T3986] usb 1-1: USB disconnect, device number 13
[  293.113893][ T7231] loop4: detected capacity change from 0 to 4096
[  293.277275][ T7235] loop4: detected capacity change from 0 to 64
[  293.354266][ T4618] hfs: node 4:3 still has 1 user(s)!
[  293.386057][ T7237] loop4: detected capacity change from 0 to 512
[  293.412955][ T7237] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  293.422163][ T7237] ext4 filesystem being mounted at /178/file0 supports timestamps until 2038 (0x7fffffff)
[  293.458326][ T4618] EXT4-fs (loop4): unmounting filesystem.
[  293.657093][ T7245] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1070'.
[  293.751238][ T7249] loop1: detected capacity change from 0 to 1024
[  294.017804][ T7258] loop4: detected capacity change from 0 to 4096
[  294.069415][ T7263] loop1: detected capacity change from 0 to 1024
[  294.115758][ T7263] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.1078: Invalid block bitmap block 0 in block_group 0
[  294.130462][ T7263] EXT4-fs error (device loop1): ext4_acquire_dquot:6777: comm syz.1.1078: Failed to acquire dquot type 0
[  294.142403][ T7263] EXT4-fs error (device loop1): ext4_free_blocks:6213: comm syz.1.1078: Freeing blocks not in datazone - block = 0, count = 4096
[  294.157587][ T7263] EXT4-fs error (device loop1): ext4_read_inode_bitmap:140: comm syz.1.1078: Invalid inode bitmap blk 0 in block_group 0
[  294.173629][ T7263] EXT4-fs error (device loop1) in ext4_free_inode:362: Corrupt filesystem
[  294.182479][   T56] EXT4-fs error (device loop1): ext4_release_dquot:6800: comm kworker/u4:4: Failed to release dquot type 0
[  294.188047][ T7263] EXT4-fs (loop1): 1 orphan inode deleted
[  294.210531][ T7263] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  294.302657][ T7272] loop3: detected capacity change from 0 to 4096
[  294.324665][ T6417] EXT4-fs (loop1): unmounting filesystem.
[  295.047524][ T7297] loop2: detected capacity change from 0 to 4096
[  295.290233][ T7306] loop0: detected capacity change from 0 to 512
[  295.353308][ T7306] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  295.374696][ T7306] ext4 filesystem being mounted at /50/file0 supports timestamps until 2038 (0x7fffffff)
[  295.438947][ T7318] program syz.4.1102 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  295.557927][ T6725] EXT4-fs (loop0): unmounting filesystem.
[  295.988110][ T7348] program syz.4.1116 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  296.035994][ T7350] loop2: detected capacity change from 0 to 512
[  296.126615][ T7350] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  296.156071][ T7350] ext4 filesystem being mounted at /141/file0 supports timestamps until 2038 (0x7fffffff)
[  296.222712][ T5261] EXT4-fs (loop2): unmounting filesystem.
[  296.308329][ T7362] net_ratelimit: 14 callbacks suppressed
[  296.308348][ T7362] openvswitch: netlink: ufid size 24 bytes exceeds the range (1, 16)
[  296.345019][ T7362] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  296.727791][ T7382] program syz.4.1130 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  296.834342][ T7386] loop3: detected capacity change from 0 to 512
[  296.896079][ T7386] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  296.921278][ T7386] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038 (0x7fffffff)
[  297.066428][ T6114] EXT4-fs (loop3): unmounting filesystem.
[  297.250570][ T7398] Device name cannot be null; rc = [-22]
[  297.258471][ T7401] loop0: detected capacity change from 0 to 4096
[  297.267137][ T7405] loop3: detected capacity change from 0 to 2048
[  297.304276][ T7401] NILFS (loop0): invalid segment: Checksum error in segment payload
[  297.328271][ T7405] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  297.346836][ T7401] NILFS (loop0): trying rollback from an earlier position
[  297.418062][   T26] kauditd_printk_skb: 42 callbacks suppressed
[  297.418076][   T26] audit: type=1326 audit(1720511001.730:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  297.449119][ T7401] NILFS (loop0): recovery complete
[  297.482144][ T7405] cgroup: noprefix used incorrectly
[  297.497521][ T7412] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  297.508240][   T26] audit: type=1326 audit(1720511001.760:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  297.611467][   T26] audit: type=1326 audit(1720511001.760:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  297.703070][   T26] audit: type=1326 audit(1720511001.770:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  297.763396][   T26] audit: type=1326 audit(1720511001.770:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  297.805744][ T7419] loop3: detected capacity change from 0 to 1024
[  297.832613][   T26] audit: type=1326 audit(1720511001.770:419): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  297.869777][ T7419] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.1144: Invalid block bitmap block 0 in block_group 0
[  298.007528][ T7419] Quota error (device loop3): write_blk: dquota write failed
[  298.034353][   T26] audit: type=1326 audit(1720511001.770:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  298.056850][ T7419] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  298.097825][ T7419] EXT4-fs error (device loop3): ext4_acquire_dquot:6777: comm syz.3.1144: Failed to acquire dquot type 0
[  298.134453][   T26] audit: type=1326 audit(1720511001.770:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7404 comm="syz.3.1137" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  298.174394][ T7419] EXT4-fs error (device loop3): ext4_free_blocks:6213: comm syz.3.1144: Freeing blocks not in datazone - block = 0, count = 4096
[  298.215367][ T7419] EXT4-fs error (device loop3): ext4_read_inode_bitmap:140: comm syz.3.1144: Invalid inode bitmap blk 0 in block_group 0
[  298.234694][   T56] EXT4-fs error (device loop3): ext4_release_dquot:6800: comm kworker/u4:4: Failed to release dquot type 0
[  298.265363][ T7419] EXT4-fs error (device loop3) in ext4_free_inode:362: Corrupt filesystem
[  298.318391][ T7419] EXT4-fs (loop3): 1 orphan inode deleted
[  298.332171][ T7419] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  298.545054][ T6114] EXT4-fs (loop3): unmounting filesystem.
[  298.698931][ T7423] loop3: detected capacity change from 0 to 512
[  298.792833][ T7423] EXT4-fs (loop3): 1 orphan inode deleted
[  298.854048][ T7423] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  299.052073][ T6114] EXT4-fs (loop3): unmounting filesystem.
[  299.188782][ T7427] loop1: detected capacity change from 0 to 512
[  299.226940][ T7430] loop4: detected capacity change from 0 to 256
[  299.259372][ T7414] loop2: detected capacity change from 0 to 40427
[  299.272479][ T7430] FAT-fs (loop4): Directory bread(block 64) failed
[  299.284072][ T7430] FAT-fs (loop4): Directory bread(block 65) failed
[  299.297434][ T7430] FAT-fs (loop4): Directory bread(block 66) failed
[  299.306554][ T7427] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  299.317572][ T7430] FAT-fs (loop4): Directory bread(block 67) failed
[  299.325976][ T7430] FAT-fs (loop4): Directory bread(block 68) failed
[  299.332533][ T7430] FAT-fs (loop4): Directory bread(block 69) failed
[  299.343265][ T7427] ext4 filesystem being mounted at /47/file0 supports timestamps until 2038 (0x7fffffff)
[  299.354896][ T7431] loop3: detected capacity change from 0 to 4096
[  299.363882][ T7430] FAT-fs (loop4): Directory bread(block 70) failed
[  299.371268][ T7430] FAT-fs (loop4): Directory bread(block 71) failed
[  299.386845][ T7430] FAT-fs (loop4): Directory bread(block 72) failed
[  299.393414][ T7430] FAT-fs (loop4): Directory bread(block 73) failed
[  299.403573][ T7414] F2FS-fs (loop2): Found nat_bits in checkpoint
[  299.416341][ T6417] EXT4-fs (loop1): unmounting filesystem.
[  299.441395][ T7431] ntfs: volume version 3.1.
[  299.572830][ T7414] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  299.640165][ T7414] syz.2.1142: attempt to access beyond end of device
[  299.640165][ T7414] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  299.749462][ T7449] loop3: detected capacity change from 0 to 2048
[  299.770690][ T7451] loop0: detected capacity change from 0 to 2048
[  299.779532][ T5261] syz-executor: attempt to access beyond end of device
[  299.779532][ T5261] loop2: rw=2049, sector=45104, nr_sectors = 24 limit=40427
[  299.781165][ T7453] loop1: detected capacity change from 0 to 512
[  299.806888][ T7449] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  299.855718][ T7451] EXT4-fs error (device loop0): ext4_orphan_get:1422: comm syz.0.1155: bad orphan inode 8192
[  299.866335][ T7453] EXT4-fs (loop1): 1 orphan inode deleted
[  299.872110][ T7453] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  299.886980][ T7451] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  299.955233][ T7449] cgroup: noprefix used incorrectly
[  300.109519][ T6417] EXT4-fs (loop1): unmounting filesystem.
[  300.229423][ T7465] loop3: detected capacity change from 0 to 4096
[  300.264423][ T7465] NILFS (loop3): invalid segment: Checksum error in segment payload
[  300.268513][ T7471] loop2: detected capacity change from 0 to 64
[  300.273810][ T7465] NILFS (loop3): trying rollback from an earlier position
[  300.301031][ T7465] NILFS (loop3): recovery complete
[  300.310085][ T7472] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  300.473845][ T7478] loop2: detected capacity change from 0 to 256
[  300.511917][ T7478] FAT-fs (loop2): Directory bread(block 64) failed
[  300.524204][ T7478] FAT-fs (loop2): Directory bread(block 65) failed
[  300.530900][ T7478] FAT-fs (loop2): Directory bread(block 66) failed
[  300.537719][ T7478] FAT-fs (loop2): Directory bread(block 67) failed
[  300.544409][ T7478] FAT-fs (loop2): Directory bread(block 68) failed
[  300.551283][ T7478] FAT-fs (loop2): Directory bread(block 69) failed
[  300.568425][ T7478] FAT-fs (loop2): Directory bread(block 70) failed
[  300.578675][ T7478] FAT-fs (loop2): Directory bread(block 71) failed
[  300.591590][ T7478] FAT-fs (loop2): Directory bread(block 72) failed
[  300.598575][ T7478] FAT-fs (loop2): Directory bread(block 73) failed
[  300.631259][ T6725] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor: corrupted in-inode xattr
[  300.656829][ T6725] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz-executor: corrupted in-inode xattr
[  300.802341][ T7480] loop3: detected capacity change from 0 to 22
[  300.846162][ T7480] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  300.859175][ T7480] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  300.986965][ T7491] loop4: detected capacity change from 0 to 1024
[  301.075763][ T6725] EXT4-fs (loop0): unmounting filesystem.
[  301.185158][ T1170] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.188094][ T7496] loop3: detected capacity change from 0 to 64
[  301.313786][ T1170] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.444761][ T1170] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.555486][ T7505] loop4: detected capacity change from 0 to 4096
[  301.609128][ T7505] NILFS (loop4): invalid segment: Checksum error in segment payload
[  301.620920][ T1170] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  301.639109][ T7505] NILFS (loop4): trying rollback from an earlier position
[  301.687960][ T7505] NILFS (loop4): recovery complete
[  301.713441][ T7508] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  301.825220][ T3566] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  301.836643][ T3566] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  301.846530][ T3566] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  301.855274][ T3566] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  301.863015][ T3566] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  301.870391][ T3566] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  302.279164][ T7514] loop3: detected capacity change from 0 to 22
[  302.286323][ T7514] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  302.305036][ T7514] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  302.382724][ T7509] chnl_net:caif_netlink_parms(): no params data found
[  302.491968][ T7525] loop1: detected capacity change from 0 to 1024
[  302.618364][ T7509] bridge0: port 1(bridge_slave_0) entered blocking state
[  302.633625][ T7509] bridge0: port 1(bridge_slave_0) entered disabled state
[  302.650850][ T7533] loop3: detected capacity change from 0 to 64
[  302.652447][ T7509] device bridge_slave_0 entered promiscuous mode
[  302.676140][ T7509] bridge0: port 2(bridge_slave_1) entered blocking state
[  302.683312][ T7509] bridge0: port 2(bridge_slave_1) entered disabled state
[  302.692236][ T7509] device bridge_slave_1 entered promiscuous mode
[  302.744275][ T6246] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  302.810306][ T7537] loop3: detected capacity change from 0 to 2048
[  302.842546][ T7509] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  302.868606][ T7537] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  302.881020][ T7509] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  302.906226][   T26] kauditd_printk_skb: 49 callbacks suppressed
[  302.906242][   T26] audit: type=1326 audit(1720511007.220:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  302.920961][ T7537] cgroup: noprefix used incorrectly
[  302.938758][   T26] audit: type=1326 audit(1720511007.220:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  302.989388][   T26] audit: type=1326 audit(1720511007.220:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.013120][   T26] audit: type=1326 audit(1720511007.220:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.045492][   T26] audit: type=1326 audit(1720511007.220:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.098778][   T26] audit: type=1326 audit(1720511007.220:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.103587][ T7509] team0: Port device team_slave_0 added
[  303.128427][ T6246] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  303.132452][   T26] audit: type=1326 audit(1720511007.220:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.161350][   T26] audit: type=1326 audit(1720511007.220:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.164095][ T6246] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x81 has invalid maxpacket 0
[  303.195612][   T26] audit: type=1326 audit(1720511007.220:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.236625][   T26] audit: type=1326 audit(1720511007.220:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7536 comm="syz.3.1188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2e14775bd9 code=0x7ffc0000
[  303.315754][ T7509] team0: Port device team_slave_1 added
[  303.360692][ T7509] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.368116][ T7509] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.396357][ T7509] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  303.425916][ T7509] batman_adv: batadv0: Adding interface: batadv_slave_1
[  303.433311][ T7509] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.459596][ T7509] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  303.474342][ T6246] usb 5-1: New USB device found, idVendor=2040, idProduct=4903, bcdDevice=f6.b5
[  303.483401][ T6246] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  303.492862][ T6246] usb 5-1: Product: syz
[  303.497648][ T6246] usb 5-1: Manufacturer: syz
[  303.502336][ T6246] usb 5-1: SerialNumber: syz
[  303.508838][ T6246] usb 5-1: config 0 descriptor??
[  303.589276][ T7509] device hsr_slave_0 entered promiscuous mode
[  303.596444][ T7509] device hsr_slave_1 entered promiscuous mode
[  303.603002][ T7509] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  303.612811][ T7509] Cannot create hsr debugfs directory
[  303.642226][ T1170] device hsr_slave_0 left promiscuous mode
[  303.650924][ T1170] device hsr_slave_1 left promiscuous mode
[  303.657751][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  303.665343][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_0
[  303.673250][ T1170] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  303.680918][ T1170] batman_adv: batadv0: Removing interface: batadv_slave_1
[  303.688796][ T1170] device bridge_slave_1 left promiscuous mode
[  303.695643][ T1170] bridge0: port 2(bridge_slave_1) entered disabled state
[  303.708844][ T1170] device bridge_slave_0 left promiscuous mode
[  303.715272][ T1170] bridge0: port 1(bridge_slave_0) entered disabled state
[  303.740284][ T7545] loop1: detected capacity change from 0 to 22
[  303.754693][ T1170] device veth1_macvtap left promiscuous mode
[  303.758028][ T7545] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  303.760839][ T1170] device veth0_macvtap left promiscuous mode
[  303.775052][ T6246] hdpvr 5-1:0.0: firmware version 0x82 dated ]ï7Þó

%Ý-¾˜1ñmÇ¢žN¨º¥ãÃj¤�Ä}ÏÍ2I
[  303.780171][ T7545] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  303.791200][ T6246] hdpvr 5-1:0.0: untested firmware, the driver might not work.
[  303.801036][ T1170] device veth1_vlan left promiscuous mode
[  303.807274][ T1170] device veth0_vlan left promiscuous mode
[  303.884170][ T3566] Bluetooth: hci1: command tx timeout
[  303.984141][ T6246] hdpvr 5-1:0.0: device init failed
[  303.989455][ T6246] hdpvr: probe of 5-1:0.0 failed with error -12
[  304.035434][ T6246] usb 5-1: USB disconnect, device number 13
[  304.066336][ T7553] loop1: detected capacity change from 0 to 1024
[  304.267478][ T7561] loop1: detected capacity change from 0 to 512
[  304.295978][ T7561] EXT4-fs (loop1): 1 orphan inode deleted
[  304.303288][ T7561] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  304.559785][ T6417] EXT4-fs (loop1): unmounting filesystem.
[  304.810013][ T7574] loop1: detected capacity change from 0 to 22
[  304.833459][ T7574] MTD: Attempt to mount non-MTD device "/dev/loop1"
[  304.849904][ T7574] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  305.073415][ T7567] Device name cannot be null; rc = [-22]
[  305.367468][ T1170] team0 (unregistering): Port device team_slave_1 removed
[  305.534627][ T1170] team0 (unregistering): Port device team_slave_0 removed
[  305.620009][ T1170] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  305.705006][ T1170] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  305.964318][ T3566] Bluetooth: hci1: command tx timeout
[  306.339871][ T7594] loop3: detected capacity change from 0 to 512
[  306.377803][ T7594] EXT4-fs (loop3): 1 orphan inode deleted
[  306.397966][ T7594] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  306.442799][ T3566] Bluetooth: hci5: unexpected event for opcode 0x1408
[  306.470133][ T7600] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1213'.
[  306.555063][ T6114] EXT4-fs (loop3): unmounting filesystem.
[  306.771461][ T1170] bond0 (unregistering): Released all slaves
[  306.802771][ T7609] capability: warning: `syz.4.1216' uses 32-bit capabilities (legacy support in use)
[  307.078056][ T7586] netlink: 1252 bytes leftover after parsing attributes in process `syz.1.1207'.
[  307.173816][ T7586] Zero length message leads to an empty skb
[  308.054158][ T3566] Bluetooth: hci1: command tx timeout
[  308.238947][ T7610] loop3: detected capacity change from 0 to 32768
[  308.263158][ T7610] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.1214 (7610)
[  308.293044][ T7610] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  308.356372][ T7610] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  308.372752][ T7610] BTRFS info (device loop3): disabling free space tree
[  308.387107][ T7630] loop2: detected capacity change from 0 to 512
[  308.398485][ T7610] BTRFS info (device loop3): setting nodatacow, compression disabled
[  308.421281][ T7610] BTRFS info (device loop3): enabling disk space caching
[  308.439663][ T7623] Device name cannot be null; rc = [-22]
[  308.447781][ T7630] EXT4-fs (loop2): 1 orphan inode deleted
[  308.451623][ T7610] BTRFS info (device loop3): use no compression
[  308.453508][ T7630] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  308.460148][    T7] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  308.479545][ T7610] BTRFS info (device loop3): disabling disk space caching
[  308.491947][ T7610] BTRFS warning (device loop3): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  308.519946][ T7610] BTRFS info (device loop3): trying to use backup root at mount time
[  308.529925][ T7610] BTRFS error (device loop3): cannot disable free space tree
[  308.550942][ T7610] BTRFS error (device loop3): open_ctree failed
[  308.728978][ T7509] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  308.771701][ T7509] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  308.790966][ T5261] EXT4-fs (loop2): unmounting filesystem.
[  308.828777][ T7509] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  308.864219][    T7] usb 2-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53
[  308.876152][    T7] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.892368][ T7509] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  308.924423][    T7] usb 2-1: config 0 descriptor??
[  308.987620][ T3566] Bluetooth: hci3: unexpected event for opcode 0x1408
[  309.171938][ T7635] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1225'.
[  309.387694][ T7509] 8021q: adding VLAN 0 to HW filter on device bond0
[  309.412122][ T2964] usb 2-1: USB disconnect, device number 10
[  309.427656][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  309.451122][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  309.479745][    C0] hrtimer: interrupt took 5439962 ns
[  310.396313][ T3566] Bluetooth: hci1: command tx timeout
[  310.936089][ T3556] Bluetooth: hci5: Controller not accepting commands anymore: ncmd = 0
[  310.944978][ T3556] Bluetooth: hci5: Injecting HCI hardware error event
[  310.955383][ T3556] Bluetooth: hci5: hardware error 0x00
[  313.535875][ T3566] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  313.544607][ T3566] Bluetooth: hci3: Injecting HCI hardware error event
[  313.554815][ T3566] Bluetooth: hci3: hardware error 0x00
[  318.359338][ T1256] ieee802154 phy0 wpan0: encryption failed: -22
[  318.365655][ T1256] ieee802154 phy1 wpan1: encryption failed: -22
[  322.924450][ T3556] Bluetooth: hci5: Opcode 0x0c03 failed: -110
[  325.514161][ T3566] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  327.844098][ T3566] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  328.046114][ T3566] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  329.894090][ T7652] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  329.974682][ T3556] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  329.985239][ T3556] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  329.993503][ T3556] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  330.001718][ T3556] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  330.009653][ T3556] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  330.018927][ T3556] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  330.117746][ T7509] 8021q: adding VLAN 0 to HW filter on device team0
[  330.274089][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  330.294500][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  330.351819][ T3976] bridge0: port 1(bridge_slave_0) entered blocking state
[  330.359023][ T3976] bridge0: port 1(bridge_slave_0) entered forwarding state
[  332.084189][ T3566] Bluetooth: hci6: command tx timeout
[  334.016956][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  334.114688][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  334.123173][ T3976] bridge0: port 2(bridge_slave_1) entered blocking state
[  334.130301][ T3976] bridge0: port 2(bridge_slave_1) entered forwarding state
[  334.137949][ T3566] Bluetooth: hci6: command tx timeout
[  334.254389][ T3976] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  334.696694][ T3556] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  334.706764][ T3556] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  334.714947][ T3556] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  334.722744][ T3556] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  334.730363][ T3556] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  334.737834][ T3560] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  334.814972][ T3560] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  334.825058][ T3560] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  334.833920][ T3560] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  334.843401][ T3556] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  334.851002][ T3556] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  334.858724][ T3556] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  335.106325][ T3556] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  335.116546][ T3556] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  335.125486][ T3556] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  335.143836][ T3556] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  335.151414][ T3556] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  335.158678][ T3556] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  336.214585][ T3556] Bluetooth: hci6: command tx timeout
[  336.766572][ T3556] Bluetooth: hci2: command tx timeout
[  336.864329][ T3556] Bluetooth: hci3: command tx timeout
[  336.984638][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  336.992662][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  337.009215][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  337.021039][ T3986] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  337.164175][ T3556] Bluetooth: hci7: command tx timeout
[  338.298940][ T3556] Bluetooth: hci6: command tx timeout
[  338.844150][ T3556] Bluetooth: hci2: command tx timeout
[  338.924127][ T3556] Bluetooth: hci3: command tx timeout
[  339.274180][ T3556] Bluetooth: hci7: command tx timeout
[  342.402852][ T3556] Bluetooth: hci2: command tx timeout
[  342.408464][ T3556] Bluetooth: hci3: command tx timeout
[  342.413889][ T3556] Bluetooth: hci7: command tx timeout
[  344.460050][ T3556] Bluetooth: hci7: command tx timeout
[  344.465532][ T3556] Bluetooth: hci3: command tx timeout
[  344.470929][ T3556] Bluetooth: hci2: command tx timeout
[  344.855342][ T3975] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  346.884283][ T3560] Bluetooth: hci0: command 0x0406 tx timeout
[  346.889242][ T7509] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  346.900636][ T7509] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  349.141556][ T3988] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  349.169778][ T3988] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  349.190964][ T3988] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  349.215102][ T3988] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  349.224170][ T3988] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  349.232703][ T3988] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  349.244995][ T7661] chnl_net:caif_netlink_parms(): no params data found
[  351.545166][ T3978] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  355.316529][ T7661] bridge0: port 1(bridge_slave_0) entered blocking state
[  355.323645][ T7661] bridge0: port 1(bridge_slave_0) entered disabled state
[  355.331531][ T7661] device bridge_slave_0 entered promiscuous mode
[  355.339351][ T7661] bridge0: port 2(bridge_slave_1) entered blocking state
[  355.346619][ T7661] bridge0: port 2(bridge_slave_1) entered disabled state
[  355.354478][ T7661] device bridge_slave_1 entered promiscuous mode
[  355.376221][ T7661] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  355.387214][ T7661] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  356.874060][ T7661] team0: Port device team_slave_0 added
[  356.881479][ T7661] team0: Port device team_slave_1 added
[  356.900400][ T7661] batman_adv: batadv0: Adding interface: batadv_slave_0
[  356.907349][ T7661] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  356.933207][ T7661] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  356.945244][ T7661] batman_adv: batadv0: Adding interface: batadv_slave_1
[  358.255532][ T7661] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  358.281435][ T7661] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  358.315542][ T7661] device hsr_slave_0 entered promiscuous mode
[  358.322204][ T7661] device hsr_slave_1 entered promiscuous mode
[  358.328727][ T7661] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  358.336284][ T7661] Cannot create hsr debugfs directory
[  360.803479][ T7655] chnl_net:caif_netlink_parms(): no params data found
[  365.643818][ T7663] chnl_net:caif_netlink_parms(): no params data found
[  367.616107][ T3566] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  367.637817][ T3566] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  367.647110][ T3566] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  367.655568][ T3566] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  367.663211][ T3566] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  367.670496][ T3566] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  372.027890][ T3566] Bluetooth: hci4: command tx timeout
[  372.037882][ T3645] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  374.238267][ T3560] Bluetooth: hci4: command tx timeout
[  374.264935][ T7661] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  374.275626][ T7661] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.570507][ T3566] Bluetooth: hci4: command tx timeout
[  378.994211][ T1256] ieee802154 phy0 wpan0: encryption failed: -22
[  379.003830][ T1256] ieee802154 phy1 wpan1: encryption failed: -22
[  379.053486][ T3645] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  379.076620][ T7655] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.083743][ T7655] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.370806][ T3560] Bluetooth: hci4: command tx timeout
[  380.377320][ T7655] device bridge_slave_0 entered promiscuous mode
[  380.402214][ T7655] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.409328][ T7655] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.417269][ T7655] device bridge_slave_1 entered promiscuous mode
[  380.458816][ T7661] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  382.112130][ T7661] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  382.192199][ T7655] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  382.224853][ T7659] chnl_net:caif_netlink_parms(): no params data found
[  382.238548][ T7655] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  384.087326][ T3645] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  384.111099][ T7663] bridge0: port 1(bridge_slave_0) entered blocking state
[  385.636834][ T7663] bridge0: port 1(bridge_slave_0) entered disabled state
[  385.645123][ T7663] device bridge_slave_0 entered promiscuous mode
[  385.653600][ T7663] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.660762][ T7663] bridge0: port 2(bridge_slave_1) entered disabled state
[  385.682439][ T7663] device bridge_slave_1 entered promiscuous mode
[  387.470335][ T7661] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  387.481296][ T7661] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  388.544983][ T7655] team0: Port device team_slave_0 added
[  388.553637][ T7663] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  389.316359][ T3560] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  389.327324][ T3560] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  389.340743][ T3560] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  389.349518][ T3560] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  389.357577][ T3556] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  389.366272][ T3556] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  391.492609][ T3556] Bluetooth: hci1: command tx timeout
[  391.537146][ T7663] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  393.990075][ T3556] Bluetooth: hci1: command tx timeout
[  394.017793][ T3645] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.425314][ T3566] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  394.436816][ T3566] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  394.445463][ T3566] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  394.455320][ T3566] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  394.462868][ T3566] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  394.470372][ T3566] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  395.265875][ T3566] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  395.276827][ T3566] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  395.285304][ T3566] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  395.293310][ T3566] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  395.300859][ T3566] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  395.308123][ T3566] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  396.074129][ T3556] Bluetooth: hci1: command tx timeout
[  396.564322][ T3556] Bluetooth: hci5: command tx timeout
[  397.334238][ T3556] Bluetooth: hci6: command tx timeout
[  398.134242][ T3556] Bluetooth: hci1: command tx timeout
[  398.614094][ T3556] Bluetooth: hci5: command tx timeout
[  399.404196][ T3556] Bluetooth: hci6: command tx timeout
[  400.000792][ T7661] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  400.011086][ T7661] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  402.748970][ T3566] Bluetooth: hci6: command tx timeout
[  402.763983][ T3556] Bluetooth: hci5: command tx timeout
[  405.968348][ T3556] Bluetooth: hci5: command tx timeout
[  405.974357][ T3556] Bluetooth: hci6: command tx timeout
[  406.023789][ T7685] chnl_net:caif_netlink_parms(): no params data found
[  406.054833][ T3556] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  406.084156][ T3556] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  406.092896][ T3556] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  406.101042][ T3556] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  406.108589][ T3556] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  406.116015][ T3560] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  409.935533][ T3566] Bluetooth: hci8: command tx timeout
[  411.964409][ T3566] Bluetooth: hci8: command tx timeout
[  414.044546][ T3566] Bluetooth: hci8: command tx timeout
[  416.164908][ T3566] Bluetooth: hci8: command tx timeout
[  421.733225][ T7685] bridge0: port 1(bridge_slave_0) entered blocking state
[  421.760367][ T7685] bridge0: port 1(bridge_slave_0) entered disabled state
[  421.769969][ T7685] device bridge_slave_0 entered promiscuous mode
[  421.781436][ T7701] chnl_net:caif_netlink_parms(): no params data found
[  424.560552][ T7685] bridge0: port 2(bridge_slave_1) entered blocking state
[  424.567982][ T7685] bridge0: port 2(bridge_slave_1) entered disabled state
[  424.576357][ T7685] device bridge_slave_1 entered promiscuous mode
[  427.379256][ T7694] chnl_net:caif_netlink_parms(): no params data found
[  427.401132][ T7704] chnl_net:caif_netlink_parms(): no params data found
[  427.417311][ T7701] bridge0: port 1(bridge_slave_0) entered blocking state
[  427.434031][ T7701] bridge0: port 1(bridge_slave_0) entered disabled state
[  427.442330][ T7701] device bridge_slave_0 entered promiscuous mode
[  430.117189][ T3560] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  430.130024][ T3560] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  430.138176][ T3560] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  430.146160][ T3560] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  430.153828][ T3560] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  430.161137][ T3560] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  432.224093][ T3560] Bluetooth: hci0: command tx timeout
[  432.735024][ T3645] netdevsim netdevsim2 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  432.745764][ T3645] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  432.791209][ T7701] bridge0: port 2(bridge_slave_1) entered blocking state
[  432.798493][ T7701] bridge0: port 2(bridge_slave_1) entered disabled state
[  432.806722][ T7701] device bridge_slave_1 entered promiscuous mode
[  435.513868][ T3560] Bluetooth: hci0: command tx timeout
[  435.589991][ T7701] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  438.580801][ T3560] Bluetooth: hci0: command tx timeout
[  438.644556][ T7709] chnl_net:caif_netlink_parms(): no params data found
[  438.666566][ T7701] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  442.136310][ T3560] Bluetooth: hci0: command tx timeout
[  442.146985][ T1256] ieee802154 phy0 wpan0: encryption failed: -22
[  442.153314][ T1256] ieee802154 phy1 wpan1: encryption failed: -22
[  442.190179][ T3645] netdevsim netdevsim2 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0
[  442.200576][ T3645] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.580606][ T7701] team0: Port device team_slave_0 added
[  445.595427][ T7694] bridge0: port 1(bridge_slave_0) entered blocking state
[  449.082571][ T7694] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.105295][ T7694] device bridge_slave_0 entered promiscuous mode
[  449.143691][ T7701] team0: Port device team_slave_1 added
[  449.155871][ T7704] bridge0: port 1(bridge_slave_0) entered blocking state
[  449.162989][ T7704] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.171653][ T7704] device bridge_slave_0 entered promiscuous mode
[  449.182193][ T7704] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.189353][ T7704] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.197744][ T7704] device bridge_slave_1 entered promiscuous mode
[  455.454981][ T3566] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  455.465461][ T3566] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  455.473525][ T3566] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  455.485605][ T3566] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  458.980950][ T3560] Bluetooth: hci2: Opcode 0x0c25 failed: -110
[  458.991413][ T3560] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  459.316529][ T3566] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  459.326769][ T3566] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  459.334882][ T3566] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  459.342724][ T3566] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  459.351613][ T3566] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  459.359012][ T3566] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  463.318822][ T3566] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  463.330327][ T7737] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  463.369600][ T3556] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  463.380804][ T3556] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  463.389563][ T3556] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  463.397500][ T3556] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  463.405215][ T3556] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  463.412542][ T3556] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  472.601260][ T7745] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  472.616835][ T7745] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  477.741052][ T7748] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  477.854987][ T7750] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  477.865961][ T7750] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  477.873986][ T7750] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  477.881792][ T7750] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  477.891006][ T7750] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  477.898304][ T7750] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  490.037282][ T7745] Bluetooth: hci7: command tx timeout
[  490.046053][ T3556] Bluetooth: hci4: command tx timeout
[  490.066835][ T3560] Bluetooth: hci3: command tx timeout
[  490.077019][ T7704] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  490.435038][ T7745] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  490.445327][ T7745] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  490.454165][ T7745] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  490.463020][ T7745] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  490.471622][ T7745] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  490.480195][ T7745] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  492.082968][ T3560] Bluetooth: hci4: command tx timeout
[  492.124384][ T3560] Bluetooth: hci3: command tx timeout
[  492.130020][ T3560] Bluetooth: hci7: command tx timeout
[  492.524553][ T3560] Bluetooth: hci2: command tx timeout
[  494.172912][ T3560] Bluetooth: hci4: command tx timeout
[  494.214404][ T3560] Bluetooth: hci7: command tx timeout
[  494.219844][ T3560] Bluetooth: hci3: command tx timeout
[  494.614971][ T3560] Bluetooth: hci2: command tx timeout
[  496.214442][ T3560] Bluetooth: hci4: command tx timeout
[  496.322788][ T3560] Bluetooth: hci3: command tx timeout
[  496.328276][ T3560] Bluetooth: hci7: command tx timeout
[  496.714482][ T7745] Bluetooth: hci2: command tx timeout
[  506.585039][ T3560] Bluetooth: hci2: command tx timeout
[  506.592182][ T1256] ieee802154 phy0 wpan0: encryption failed: -22
[  506.598715][ T7745] Bluetooth: hci9: Opcode 0x0c03 failed: -110
[  506.626104][ T1256] ieee802154 phy1 wpan1: encryption failed: -22
[  506.654979][ T7745] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  515.852460][ T7763] Bluetooth: hci9: Opcode 0x0c03 failed: -110
[  536.618280][ T7750] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  536.627923][ T7750] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  536.635901][ T7750] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  536.644451][ T7750] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  536.652738][ T7750] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  536.660085][ T7750] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  547.532535][ T7750] Bluetooth: hci8: command 0x0406 tx timeout
[  547.562853][ T3560] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  547.572638][ T3560] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  547.592662][ T3556] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  547.600698][ T3556] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  547.608380][ T3560] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  547.624009][ T3560] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  559.102649][ T3560] Bluetooth: hci10: Opcode 0x0c03 failed: -110
[  559.126980][ T3556] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  571.248108][ T1256] ieee802154 phy0 wpan0: encryption failed: -22
[  571.254497][ T1256] ieee802154 phy1 wpan1: encryption failed: -22
[  571.268312][ T3556] Bluetooth: hci0: command 0x0406 tx timeout
[  571.283950][ T7773] Bluetooth: hci10: Opcode 0x0c03 failed: -110
[  583.150245][ T3560] Bluetooth: hci12: Opcode 0x0c03 failed: -110
[  583.157224][ T3556] Bluetooth: hci11: Opcode 0x0c03 failed: -110
[  583.168221][ T3566] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  583.180071][ T3556] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  583.199158][ T3566] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  583.208708][ T3566] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  583.216969][ T3566] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  583.224957][ T3566] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  583.232603][ T3566] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  583.240086][ T3566] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  583.264743][ T3556] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  583.274742][ T3556] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  583.283112][ T3556] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  583.291333][ T3556] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  583.299484][ T3556] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  583.306849][ T3556] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  640.229202][ T7784] Bluetooth: hci4: command 0x0406 tx timeout
[  640.238244][ T3560] Bluetooth: hci3: command 0x0406 tx timeout
[  640.244381][ T7780] Bluetooth: hci2: command 0x0406 tx timeout
[  640.250577][ T7791] Bluetooth: hci10: Opcode 0x0c03 failed: -110
[  640.258047][   T27] INFO: task kworker/0:10:3758 blocked for more than 167 seconds.
[  640.266353][ T1256] ieee802154 phy0 wpan0: encryption failed: -22
[  640.272684][ T1256] ieee802154 phy1 wpan1: encryption failed: -22
[  640.288973][ T7786] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  640.301267][ T7786] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  640.310979][ T7786] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  640.319320][ T7786] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  640.327245][ T7786] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  640.335185][ T7786] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  640.342663][ T7786] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  640.366556][   T27]       Not tainted 6.1.97-syzkaller #0
[  640.372141][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  640.407526][   T27] task:kworker/0:10    state:D stack:22200 pid:3758  ppid:2      flags:0x00004000
[  640.433844][   T27] Workqueue: ipv6_addrconf addrconf_verify_work
[  640.440236][   T27] Call Trace:
[  640.443530][   T27]  <TASK>
[  640.453848][   T27]  __schedule+0x142d/0x4550
[  640.458402][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  640.463651][   T27]  ? __sched_text_start+0x8/0x8
[  640.483850][   T27]  ? print_irqtrace_events+0x210/0x210
[  640.489368][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  640.513935][   T27]  ? _raw_spin_unlock_irq+0x1f/0x40
[  640.519363][   T27]  ? lockdep_hardirqs_on+0x94/0x130
[  640.533849][   T27]  schedule+0xbf/0x180
[  640.537973][   T27]  schedule_preempt_disabled+0xf/0x20
[  640.543372][   T27]  __mutex_lock+0x6b9/0xd80
[  640.563934][   T27]  ? __mutex_lock+0x53c/0xd80
[  640.568662][   T27]  ? addrconf_verify_work+0x15/0x30
[  640.583842][   T27]  ? mutex_lock_nested+0x10/0x10
[  640.588811][   T27]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  640.603854][   T27]  ? print_irqtrace_events+0x210/0x210
[  640.609350][   T27]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  640.623328][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  640.633852][   T27]  ? process_one_work+0x7a9/0x11d0
[  640.639016][   T27]  addrconf_verify_work+0x15/0x30
[  640.653850][   T27]  process_one_work+0x8a9/0x11d0
[  640.658840][   T27]  ? worker_detach_from_pool+0x260/0x260
[  640.672647][   T27]  ? _raw_spin_lock_irqsave+0x120/0x120
[  640.688583][   T27]  ? kthread_data+0x4e/0xc0
[  640.693146][   T27]  ? wq_worker_running+0x97/0x190
[  640.709333][ T7794] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  640.719563][ T7794] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  640.728781][ T7794] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  640.737803][ T7794] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  640.745596][ T7794] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  640.752926][ T7794] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  640.776977][   T27]  worker_thread+0xa47/0x1200
[  640.781731][   T27]  kthread+0x28d/0x320
[  640.785871][   T27]  ? worker_clr_flags+0x190/0x190
[  640.790911][   T27]  ? kthread_blkcg+0xd0/0xd0
[  640.795542][   T27]  ret_from_fork+0x1f/0x30
[  640.800001][   T27]  </TASK>
[  640.803035][   T27] INFO: task kworker/1:9:3976 blocked for more than 168 seconds.
[  640.810783][   T27]       Not tainted 6.1.97-syzkaller #0
[  640.816455][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  640.825164][   T27] task:kworker/1:9     state:D stack:23768 pid:3976  ppid:2      flags:0x00004000
[  640.835344][   T27] Workqueue: events linkwatch_event
[  640.840577][   T27] Call Trace:
[  640.843905][   T27]  <TASK>
[  640.846856][   T27]  __schedule+0x142d/0x4550
[  640.851417][   T27]  ? __sched_text_start+0x8/0x8
[  640.856331][   T27]  ? print_irqtrace_events+0x210/0x210
[  640.861818][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  640.867187][   T27]  ? _raw_spin_unlock_irq+0x1f/0x40
[  640.872409][   T27]  ? lockdep_hardirqs_on+0x94/0x130
[  640.877664][   T27]  schedule+0xbf/0x180
[  640.881767][   T27]  schedule_preempt_disabled+0xf/0x20
[  640.887191][   T27]  __mutex_lock+0x6b9/0xd80
[  640.891738][   T27]  ? __mutex_lock+0x53c/0xd80
[  640.896468][   T27]  ? linkwatch_event+0xa/0x50
[  640.901165][   T27]  ? mutex_lock_nested+0x10/0x10
[  640.906182][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  640.913445][   T27]  ? process_one_work+0x7a9/0x11d0
[  640.933848][   T27]  linkwatch_event+0xa/0x50
[  640.938403][   T27]  process_one_work+0x8a9/0x11d0
[  640.943383][   T27]  ? worker_detach_from_pool+0x260/0x260
[  640.973856][   T27]  ? _raw_spin_lock_irqsave+0x120/0x120
[  640.979478][   T27]  ? kthread_data+0x4e/0xc0
[  640.993870][   T27]  ? wq_worker_running+0x97/0x190
[  640.998946][   T27]  worker_thread+0xa47/0x1200
[  641.003668][   T27]  kthread+0x28d/0x320
[  641.013983][   T27]  ? worker_clr_flags+0x190/0x190
[  641.019136][   T27]  ? kthread_blkcg+0xd0/0xd0
[  641.023761][   T27]  ret_from_fork+0x1f/0x30
[  641.043868][   T27]  </TASK>
[  641.046924][   T27] INFO: task kworker/1:10:3978 blocked for more than 148 seconds.
[  641.073847][   T27]       Not tainted 6.1.97-syzkaller #0
[  641.079424][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  641.093844][   T27] task:kworker/1:10    state:D stack:24352 pid:3978  ppid:2      flags:0x00004000
[  641.103094][   T27] Workqueue: ipv6_addrconf addrconf_verify_work
[  641.133849][   T27] Call Trace:
[  641.137920][   T27]  <TASK>
[  641.140872][   T27]  __schedule+0x142d/0x4550
[  641.153849][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  641.159095][   T27]  ? preempt_schedule_common+0xa6/0xd0
[  641.173851][   T27]  ? __sched_text_start+0x8/0x8
[  641.178749][   T27]  ? print_irqtrace_events+0x210/0x210
[  641.193882][   T27]  schedule+0xbf/0x180
[  641.198088][   T27]  schedule_preempt_disabled+0xf/0x20
[  641.203492][   T27]  __mutex_lock+0x6b9/0xd80
[  641.223848][   T27]  ? __mutex_lock+0x53c/0xd80
[  641.228568][   T27]  ? addrconf_verify_work+0x15/0x30
[  641.233788][   T27]  ? mutex_lock_nested+0x10/0x10
[  641.248793][   T27]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  641.263981][   T27]  ? print_irqtrace_events+0x210/0x210
[  641.269501][   T27]  ? _raw_spin_unlock_irqrestore+0xd9/0x130
[  641.293880][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  641.299143][   T27]  ? process_one_work+0x7a9/0x11d0
[  641.314081][   T27]  addrconf_verify_work+0x15/0x30
[  641.319161][   T27]  process_one_work+0x8a9/0x11d0
[  641.328200][   T27]  ? worker_detach_from_pool+0x260/0x260
[  641.345390][   T27]  ? _raw_spin_lock_irqsave+0x120/0x120
[  641.350987][   T27]  ? kthread_data+0x4e/0xc0
[  641.371448][ T7791] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  641.382543][ T7791] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  641.391100][ T7791] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  641.399062][ T7791] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  641.406707][ T7791] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  641.415442][ T7791] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  641.439498][   T27]  ? wq_worker_running+0x97/0x190
SYZFAIL: failed to recv rpc
[  641.445455][   T27]  worker_thread+0xa47/0x1200
[  641.450172][   T27]  ? __sched_text_start+0x8/0x8
[  641.457042][   T27]  kthread+0x28d/0x320
[  641.461144][   T27]  ? worker_clr_flags+0x190/0x190
fd=3 want=4 sent=0 n=0 (errno 9: Bad file descriptor)
[  641.493860][   T27]  ? kthread_blkcg+0xd0/0xd0
[  641.498597][   T27]  ret_from_fork+0x1f/0x30
[  641.503065][   T27]  </TASK>
[  641.533878][   T27] INFO: task syz-executor:7509 blocked for more than 148 seconds.
[  641.541736][   T27]       Not tainted 6.1.97-syzkaller #0
[  641.603862][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  641.612583][   T27] task:syz-executor    state:D stack:20472 pid:7509  ppid:1      flags:0x00004006
[  641.653735][   T27] Call Trace:
[  641.657103][   T27]  <TASK>
[  641.660062][   T27]  __schedule+0x142d/0x4550
[  641.664769][   T27]  ? __mutex_lock+0x6b4/0xd80
[  641.669472][   T27]  ? __sched_text_start+0x8/0x8
[  641.674384][   T27]  ? __mutex_trylock_common+0x8d/0x2e0
[  641.679883][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  641.685146][   T27]  schedule+0xbf/0x180
[  641.689337][   T27]  schedule_preempt_disabled+0xf/0x20
[  641.694769][   T27]  __mutex_lock+0x6b9/0xd80
[  641.699295][   T27]  ? __mutex_lock+0x53c/0xd80
[  641.704019][   T27]  ? netdev_run_todo+0x8c7/0xf40
[  641.709013][   T27]  ? mutex_lock_nested+0x10/0x10
[  641.714176][   T27]  ? __init_swait_queue_head+0xaa/0x140
[  641.719857][   T27]  netdev_run_todo+0x8c7/0xf40
[  641.724689][   T27]  ? netdev_refcnt_read+0x50/0x50
[  641.729742][   T27]  ? netdev_state_change+0xa3/0x250
[  641.734989][   T27]  ? netdev_features_change+0x1b0/0x1b0
[  641.740569][   T27]  ? tun_chr_close+0x104/0x1b0
[  641.745383][   T27]  tun_chr_close+0x136/0x1b0
[  641.750827][   T27]  ? tun_chr_open+0x4d0/0x4d0
[  641.755569][   T27]  __fput+0x3b7/0x890
[  641.759602][   T27]  task_work_run+0x246/0x300
[  641.764384][   T27]  ? kasan_quarantine_put+0xd4/0x220
[  641.769800][   T27]  ? task_work_cancel+0x2b0/0x2b0
[  641.774921][   T27]  ? kmem_cache_free+0x292/0x510
[  641.779908][   T27]  ? do_exit+0xa6e/0x26a0
[  641.784340][   T27]  do_exit+0xa73/0x26a0
[  641.788573][   T27]  ? put_task_struct+0x80/0x80
[  641.793380][   T27]  ? get_signal+0x137e/0x17d0
[  641.798150][   T27]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  641.804234][   T27]  ? print_irqtrace_events+0x210/0x210
[  641.809729][   T27]  ? _raw_spin_lock_irq+0xdb/0x110
[  641.815038][   T27]  do_group_exit+0x202/0x2b0
[  641.819673][   T27]  ? _raw_spin_unlock_irq+0x1f/0x40
[  641.824934][   T27]  ? lockdep_hardirqs_on+0x94/0x130
[  641.830169][   T27]  get_signal+0x16f7/0x17d0
[  641.834752][   T27]  ? ptrace_notify+0x370/0x370
[  641.839548][   T27]  ? dev_ioctl+0x3ad/0xf70
[  641.844118][   T27]  arch_do_signal_or_restart+0xb0/0x1a10
[  641.849778][   T27]  ? sock_do_ioctl+0x281/0x450
[  641.855458][   T27]  ? sock_show_fdinfo+0xb0/0xb0
[  641.860349][   T27]  ? __lock_acquire+0x1f80/0x1f80
[  641.865655][   T27]  ? get_sigframe_size+0x10/0x10
[  641.870630][   T27]  ? lockdep_hardirqs_on_prepare+0x438/0x7a0
[  641.876695][   T27]  ? exit_to_user_mode_loop+0x39/0x100
[  641.882209][   T27]  exit_to_user_mode_loop+0x6a/0x100
[  641.893865][   T27]  exit_to_user_mode_prepare+0xb1/0x140
[  641.899485][   T27]  syscall_exit_to_user_mode+0x60/0x270
[  641.914017][   T27]  do_syscall_64+0x47/0xb0
[  641.918514][   T27]  ? clear_bhb_loop+0x45/0xa0
[  641.923463][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  641.939135][   T27] RIP: 0033:0x7fe78bf757db
[  641.943603][   T27] RSP: 002b:00007fffdcca45e0 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  641.952089][   T27] RAX: ffffffffffffffed RBX: 0000000000000005 RCX: 00007fe78bf757db
[  641.961010][   T27] RDX: 00007fffdcca4640 RSI: 0000000000008933 RDI: 0000000000000005
[  641.969178][   T27] RBP: 00007fffdcca4640 R08: 0000000000000009 R09: 0000000000000004
[  641.977207][   T27] R10: 0000000000000003 R11: 0000000000000246 R12: 00007fffdcca46cc
[  641.985261][   T27] R13: 00007fe78bfe4634 R14: 00007fe78cc34620 R15: 00007fe78bfe4634
[  641.993288][   T27]  </TASK>
[  641.996394][   T27] INFO: task syz-executor:7723 blocked for more than 149 seconds.
[  642.004257][   T27]       Not tainted 6.1.97-syzkaller #0
[  642.009816][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  642.018639][   T27] task:syz-executor    state:D stack:24984 pid:7723  ppid:1      flags:0x00004004
[  642.027905][   T27] Call Trace:
[  642.031203][   T27]  <TASK>
[  642.034184][   T27]  __schedule+0x142d/0x4550
[  642.038749][   T27]  ? __mutex_lock+0x6b4/0xd80
[  642.043458][   T27]  ? __sched_text_start+0x8/0x8
[  642.048370][   T27]  ? __mutex_trylock_common+0x8d/0x2e0
[  642.053902][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  642.060023][   T27]  schedule+0xbf/0x180
[  642.064343][   T27]  schedule_preempt_disabled+0xf/0x20
[  642.069768][   T27]  __mutex_lock+0x6b9/0xd80
[  642.074334][   T27]  ? __mutex_lock+0x53c/0xd80
[  642.079040][   T27]  ? wg_netns_pre_exit+0x1b/0x1d0
[  642.084126][   T27]  ? mutex_lock_nested+0x10/0x10
[  642.089094][   T27]  ? ops_init+0x4ae/0x610
[  642.093468][   T27]  wg_netns_pre_exit+0x1b/0x1d0
[  642.098392][   T27]  setup_net+0x772/0xb90
[  642.102684][   T27]  ? copy_net_ns+0x5d0/0x5d0
[  642.107341][   T27]  copy_net_ns+0x392/0x5d0
[  642.111801][   T27]  create_new_namespaces+0x425/0x7a0
[  642.117274][   T27]  ? bpf_lsm_capable+0x5/0x10
[  642.121996][   T27]  unshare_nsproxy_namespaces+0x11e/0x170
[  642.127936][   T27]  ksys_unshare+0x580/0xb20
[  642.132714][   T27]  ? unshare_fd+0x240/0x240
[  642.137400][   T27]  ? syscall_enter_from_user_mode+0x2e/0x230
[  642.143420][   T27]  ? lockdep_hardirqs_on+0x94/0x130
[  642.148700][   T27]  __x64_sys_unshare+0x34/0x40
[  642.153500][   T27]  do_syscall_64+0x3b/0xb0
[  642.157987][   T27]  ? clear_bhb_loop+0x45/0xa0
[  642.163521][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  642.169684][   T27] RIP: 0033:0x7f75fd977337
[  642.174156][   T27] RSP: 002b:00007fffd9236c88 EFLAGS: 00000202 ORIG_RAX: 0000000000000110
[  642.182608][   T27] RAX: ffffffffffffffda RBX: 00007f75fdb03f20 RCX: 00007f75fd977337
[  642.190661][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000040000000
[  642.198708][   T27] RBP: 00007f75fdb04a18 R08: 0000000000000000 R09: 0000000000000000
[  642.206760][   T27] R10: 0000000000000000 R11: 0000000000000202 R12: 000000000000000c
[  642.214922][   T27] R13: 0000000000000003 R14: 0000000000000009 R15: 0000000000000009
[  642.222957][   T27]  </TASK>
[  642.226037][   T27] INFO: task syz-executor:7742 blocked for more than 169 seconds.
[  642.233908][   T27]       Not tainted 6.1.97-syzkaller #0
[  642.239465][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  642.248292][   T27] task:syz-executor    state:D stack:25000 pid:7742  ppid:1      flags:0x00004004
[  642.257653][   T27] Call Trace:
[  642.261880][   T27]  <TASK>
[  642.264998][   T27]  __schedule+0x142d/0x4550
[  642.269568][   T27]  ? __mutex_lock+0x6b4/0xd80
[  642.274341][   T27]  ? __sched_text_start+0x8/0x8
[  642.279233][   T27]  ? __mutex_trylock_common+0x8d/0x2e0
[  642.284759][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  642.290051][   T27]  schedule+0xbf/0x180
[  642.294181][   T27]  schedule_preempt_disabled+0xf/0x20
[  642.299583][   T27]  __mutex_lock+0x6b9/0xd80
[  642.304186][   T27]  ? __mutex_lock+0x53c/0xd80
[  642.308888][   T27]  ? rtnetlink_rcv_msg+0x7c1/0xff0
[  642.314206][ T7791] Bluetooth: hci7: command 0x0406 tx timeout
[  642.320363][   T27]  ? mutex_lock_nested+0x10/0x10
[  642.325435][   T27]  ? rtnetlink_rcv_msg+0x1f9/0xff0
[  642.330596][   T27]  rtnetlink_rcv_msg+0x7c1/0xff0
[  642.335625][   T27]  ? rtnetlink_bind+0x80/0x80
[  642.340414][   T27]  ? stack_trace_save+0x1c0/0x1c0
[  642.345513][   T27]  ? kernel_text_address+0x9f/0xd0
[  642.350663][   T27]  ? __kernel_text_address+0x9/0x40
[  642.355942][   T27]  ? unwind_get_return_address+0x49/0x80
[  642.361602][   T27]  ? arch_stack_walk+0xf3/0x140
[  642.367550][   T27]  ? mark_lock+0x9a/0x340
[  642.371940][   T27]  ? mark_lock+0x9a/0x340
[  642.376358][   T27]  ? __lock_acquire+0x125b/0x1f80
[  642.381451][   T27]  netlink_rcv_skb+0x1cd/0x410
[  642.386278][   T27]  ? rtnetlink_bind+0x80/0x80
[  642.390980][   T27]  ? netlink_ack+0x1290/0x1290
[  642.395817][   T27]  ? netlink_deliver_tap+0x2e/0x1b0
[  642.401050][   T27]  netlink_unicast+0x7d8/0x970
[  642.405890][   T27]  ? netlink_detachskb+0x90/0x90
[  642.410852][   T27]  ? __virt_addr_valid+0x44a/0x520
[  642.416227][   T27]  ? __phys_addr_symbol+0x2b/0x70
[  642.421284][   T27]  ? __check_object_size+0x4dd/0xa30
[  642.426628][   T27]  ? bpf_lsm_netlink_send+0x5/0x10
[  642.431772][   T27]  netlink_sendmsg+0xa26/0xd60
[  642.436598][   T27]  ? netlink_getsockopt+0x580/0x580
[  642.441815][   T27]  ? __might_fault+0xa1/0x110
[  642.446549][   T27]  ? aa_sock_msg_perm+0x91/0x150
[  642.451554][   T27]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  642.456893][   T27]  ? security_socket_sendmsg+0x7d/0xa0
[  642.462380][   T27]  ? netlink_getsockopt+0x580/0x580
[  642.468575][   T27]  __sys_sendto+0x480/0x600
[  642.473144][   T27]  ? __ia32_sys_getpeername+0x80/0x80
[  642.478639][   T27]  __x64_sys_sendto+0xda/0xf0
[  642.483357][   T27]  do_syscall_64+0x3b/0xb0
[  642.487840][   T27]  ? clear_bhb_loop+0x45/0xa0
[  642.492554][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  642.498510][   T27] RIP: 0033:0x7f13d8b7796c
[  642.503065][   T27] RSP: 002b:00007ffccb607230 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  642.511621][   T27] RAX: ffffffffffffffda RBX: 00007f13d9834620 RCX: 00007f13d8b7796c
[  642.519782][   T27] RDX: 0000000000000028 RSI: 00007f13d9834670 RDI: 0000000000000003
[  642.527822][   T27] RBP: 0000000000000000 R08: 00007ffccb607284 R09: 000000000000000c
[  642.535842][   T27] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  642.543864][   T27] R13: 0000000000000000 R14: 00007f13d9834670 R15: 0000000000000000
[  642.551871][   T27]  </TASK>
[  642.554942][   T27] INFO: task syz-executor:7751 blocked for more than 149 seconds.
[  642.562772][   T27]       Not tainted 6.1.97-syzkaller #0
[  642.569281][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  642.578013][   T27] task:syz-executor    state:D stack:25000 pid:7751  ppid:1      flags:0x00004004
[  642.587278][   T27] Call Trace:
[  642.590572][   T27]  <TASK>
[  642.593523][   T27]  __schedule+0x142d/0x4550
[  642.598141][   T27]  ? __mutex_lock+0x6b4/0xd80
[  642.606683][   T27]  ? __sched_text_start+0x8/0x8
[  642.611585][   T27]  ? __mutex_trylock_common+0x8d/0x2e0
[  642.617257][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  642.622483][   T27]  schedule+0xbf/0x180
[  642.626617][   T27]  schedule_preempt_disabled+0xf/0x20
[  642.632020][   T27]  __mutex_lock+0x6b9/0xd80
[  642.636579][   T27]  ? __mutex_lock+0x53c/0xd80
[  642.641279][   T27]  ? rtnetlink_rcv_msg+0x7c1/0xff0
[  642.646446][   T27]  ? mutex_lock_nested+0x10/0x10
[  642.651422][   T27]  ? rtnetlink_rcv_msg+0x1f9/0xff0
[  642.656576][   T27]  rtnetlink_rcv_msg+0x7c1/0xff0
[  642.661545][   T27]  ? rtnetlink_bind+0x80/0x80
[  642.666381][   T27]  ? stack_trace_save+0x1c0/0x1c0
[  642.674035][   T27]  ? kernel_text_address+0x9f/0xd0
[  642.679210][   T27]  ? __kernel_text_address+0x9/0x40
[  642.684517][   T27]  ? unwind_get_return_address+0x49/0x80
[  642.690194][   T27]  ? arch_stack_walk+0xf3/0x140
[  642.695123][   T27]  ? mark_lock+0x9a/0x340
[  642.699505][   T27]  ? mark_lock+0x9a/0x340
[  642.703915][   T27]  ? __lock_acquire+0x125b/0x1f80
[  642.709005][   T27]  netlink_rcv_skb+0x1cd/0x410
[  642.714479][   T27]  ? rtnetlink_bind+0x80/0x80
[  642.719190][   T27]  ? netlink_ack+0x1290/0x1290
[  642.724128][   T27]  ? netlink_deliver_tap+0x2e/0x1b0
[  642.729367][   T27]  netlink_unicast+0x7d8/0x970
[  642.734204][   T27]  ? netlink_detachskb+0x90/0x90
[  642.739172][   T27]  ? __virt_addr_valid+0x44a/0x520
[  642.744350][   T27]  ? __phys_addr_symbol+0x2b/0x70
[  642.749410][   T27]  ? __check_object_size+0x4dd/0xa30
[  642.754777][   T27]  ? bpf_lsm_netlink_send+0x5/0x10
[  642.759921][   T27]  netlink_sendmsg+0xa26/0xd60
[  642.764884][   T27]  ? netlink_getsockopt+0x580/0x580
[  642.770108][   T27]  ? __might_fault+0xa1/0x110
[  642.775671][   T27]  ? aa_sock_msg_perm+0x91/0x150
[  642.780648][   T27]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  642.786002][   T27]  ? security_socket_sendmsg+0x7d/0xa0
[  642.791493][   T27]  ? netlink_getsockopt+0x580/0x580
[  642.796740][   T27]  __sys_sendto+0x480/0x600
[  642.801283][   T27]  ? __ia32_sys_getpeername+0x80/0x80
[  642.806769][   T27]  __x64_sys_sendto+0xda/0xf0
[  642.811481][   T27]  do_syscall_64+0x3b/0xb0
[  642.816069][   T27]  ? clear_bhb_loop+0x45/0xa0
[  642.820783][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  642.826736][   T27] RIP: 0033:0x7fcedd17796c
[  642.831178][   T27] RSP: 002b:00007ffdb019f9a0 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  642.839681][   T27] RAX: ffffffffffffffda RBX: 00007fcedde34620 RCX: 00007fcedd17796c
[  642.847707][   T27] RDX: 0000000000000028 RSI: 00007fcedde34670 RDI: 0000000000000003
[  642.855730][   T27] RBP: 0000000000000000 R08: 00007ffdb019f9f4 R09: 000000000000000c
[  642.863722][   T27] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  642.871934][   T27] R13: 0000000000000000 R14: 00007fcedde34670 R15: 0000000000000000
[  642.880882][   T27]  </TASK>
[  642.883987][   T27] INFO: task syz-executor:7761 blocked for more than 149 seconds.
[  642.891806][   T27]       Not tainted 6.1.97-syzkaller #0
[  642.897396][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  642.906101][   T27] task:syz-executor    state:D stack:25000 pid:7761  ppid:1      flags:0x00004004
[  642.915473][   T27] Call Trace:
[  642.918770][   T27]  <TASK>
[  642.921724][   T27]  __schedule+0x142d/0x4550
[  642.926320][   T27]  ? __mutex_lock+0x6b4/0xd80
[  642.931018][   T27]  ? __sched_text_start+0x8/0x8
[  642.935925][   T27]  ? __mutex_trylock_common+0x8d/0x2e0
[  642.941423][   T27]  ? do_raw_spin_unlock+0x137/0x8a0
[  642.946677][   T27]  schedule+0xbf/0x180
[  642.950779][   T27]  schedule_preempt_disabled+0xf/0x20
[  642.956210][   T27]  __mutex_lock+0x6b9/0xd80
[  642.960758][   T27]  ? __mutex_lock+0x53c/0xd80
[  642.965688][   T27]  ? rtnetlink_rcv_msg+0x7c1/0xff0
[  642.970825][   T27]  ? mutex_lock_nested+0x10/0x10
[  642.975832][   T27]  ? rtnetlink_rcv_msg+0x1f9/0xff0
[  642.981885][   T27]  rtnetlink_rcv_msg+0x7c1/0xff0
[  642.986900][   T27]  ? rtnetlink_bind+0x80/0x80
[  642.991601][   T27]  ? stack_trace_save+0x1c0/0x1c0
[  642.996692][   T27]  ? kernel_text_address+0x9f/0xd0
[  643.001831][   T27]  ? __kernel_text_address+0x9/0x40
[  643.007094][   T27]  ? unwind_get_return_address+0x49/0x80
[  643.012753][   T27]  ? arch_stack_walk+0xf3/0x140
[  643.017794][   T27]  ? mark_lock+0x9a/0x340
[  643.022169][   T27]  ? mark_lock+0x9a/0x340
[  643.026595][   T27]  ? __lock_acquire+0x125b/0x1f80
[  643.031685][   T27]  netlink_rcv_skb+0x1cd/0x410
[  643.036512][   T27]  ? rtnetlink_bind+0x80/0x80
[  643.041211][   T27]  ? netlink_ack+0x1290/0x1290
[  643.046056][   T27]  ? netlink_deliver_tap+0x2e/0x1b0
[  643.051299][   T27]  netlink_unicast+0x7d8/0x970
[  643.056131][   T27]  ? netlink_detachskb+0x90/0x90
[  643.061098][   T27]  ? __virt_addr_valid+0x44a/0x520
[  643.066400][   T27]  ? __phys_addr_symbol+0x2b/0x70
[  643.071453][   T27]  ? __check_object_size+0x4dd/0xa30
[  643.076791][   T27]  ? bpf_lsm_netlink_send+0x5/0x10
[  643.082771][   T27]  netlink_sendmsg+0xa26/0xd60
[  643.087644][   T27]  ? netlink_getsockopt+0x580/0x580
[  643.092871][   T27]  ? __might_fault+0xa1/0x110
[  643.097634][   T27]  ? aa_sock_msg_perm+0x91/0x150
[  643.102608][   T27]  ? bpf_lsm_socket_sendmsg+0x5/0x10
[  643.107943][   T27]  ? security_socket_sendmsg+0x7d/0xa0
[  643.113428][   T27]  ? netlink_getsockopt+0x580/0x580
[  643.118795][   T27]  __sys_sendto+0x480/0x600
[  643.123345][   T27]  ? __ia32_sys_getpeername+0x80/0x80
[  643.128826][   T27]  __x64_sys_sendto+0xda/0xf0
[  643.133572][   T27]  do_syscall_64+0x3b/0xb0
[  643.138044][   T27]  ? clear_bhb_loop+0x45/0xa0
[  643.142751][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  643.148696][   T27] RIP: 0033:0x7f21e4d7796c
[  643.153148][   T27] RSP: 002b:00007ffe78c69690 EFLAGS: 00000293 ORIG_RAX: 000000000000002c
[  643.161657][   T27] RAX: ffffffffffffffda RBX: 00007f21e5a34620 RCX: 00007f21e4d7796c
[  643.169834][   T27] RDX: 0000000000000028 RSI: 00007f21e5a34670 RDI: 0000000000000003
[  643.177868][   T27] RBP: 0000000000000000 R08: 00007ffe78c696e4 R09: 000000000000000c
[  643.186696][   T27] R10: 0000000000000000 R11: 0000000000000293 R12: 0000000000000003
[  643.194728][   T27] R13: 0000000000000000 R14: 00007f21e5a34670 R15: 0000000000000000
[  643.202736][   T27]  </TASK>
[  643.205816][   T27] 
[  643.205816][   T27] Showing all locks held in the system:
[  643.213544][   T27] 3 locks held by kworker/0:0/7:
[  643.218663][   T27]  #0: ffff888012470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.229098][   T27]  #1: ffffc900000c7d20 (deferred_process_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.239527][   T27]  #2: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xa/0x20
[  643.249959][   T27] 1 lock held by rcu_tasks_kthre/12:
[  643.255284][   T27]  #0: ffffffff8d12aed0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  643.265935][   T27] 1 lock held by rcu_tasks_trace/13:
[  643.271231][   T27]  #0: ffffffff8d12b6d0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30
[  643.282290][   T27] 1 lock held by khungtaskd/27:
[  643.288108][   T27]  #0: ffffffff8d12ad00 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  643.298102][   T27] 3 locks held by kworker/1:3/2964:
[  643.303316][   T27] 2 locks held by getty/3306:
[  643.308043][   T27]  #0: ffff88814ba50098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  643.318096][   T27]  #1: ffffc900031262f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0
[  643.328273][   T27] 4 locks held by kworker/u5:2/3556:
[  643.333575][   T27]  #0: ffff888062bdd138 ((wq_completion)hci12#2){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.344107][   T27]  #1: ffffc90003cefd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.355578][   T27]  #2: ffff88807d44c078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x98/0xab0
[  643.365574][   T27]  #3: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x664/0xab0
[  643.376243][   T27] 4 locks held by kworker/u5:8/3566:
[  643.381541][   T27]  #0: ffff88805ba09938 ((wq_completion)hci11#2){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.392978][   T27]  #1: ffffc90003d8fd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.404471][   T27]  #2: ffff88807a744078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x98/0xab0
[  643.414474][   T27]  #3: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x664/0xab0
[  643.425000][   T27] 3 locks held by kworker/0:7/3601:
[  643.430212][   T27]  #0: ffff888012470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.440812][   T27]  #1: ffffc9000446fd20 ((work_completion)(&data->fib_event_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.452895][   T27]  #2: ffff888072541240 (&data->fib_lock){+.+.}-{3:3}, at: nsim_fib_event_work+0x2cd/0x4120
[  643.463082][   T27] 6 locks held by kworker/u4:6/3645:
[  643.468411][   T27]  #0: ffff888012616938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.478806][   T27]  #1: ffffc90004717d20 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.489123][   T27]  #2: ffffffff8e28d810 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0xf1/0xb60
[  643.499530][   T27]  #3: ffff88807a82f2f8 (&devlink->lock_key#13){+.+.}-{3:3}, at: devlink_pernet_pre_exit+0x130/0x2c0
[  643.510546][   T27]  #4: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x3a/0x140
[  643.519500][   T27]  #5: ffffffff8d1302f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930
[  643.530462][   T27] 3 locks held by kworker/0:10/3758:
[  643.535928][   T27]  #0: ffff888028022d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.546977][   T27]  #1: ffffc900048d7d20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.560201][   T27]  #2: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x15/0x30
[  643.569764][   T27] 3 locks held by kworker/u4:7/3773:
[  643.575095][   T27] 3 locks held by kworker/1:9/3976:
[  643.580303][   T27]  #0: ffff888012470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.590840][   T27]  #1: ffffc9000366fd20 ((linkwatch_work).work){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.602122][   T27]  #2: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xa/0x50
[  643.611228][   T27] 3 locks held by kworker/1:10/3978:
[  643.616563][   T27]  #0: ffff888028022d38 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.627605][   T27]  #1: ffffc9000372fd20 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.641065][   T27]  #2: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x15/0x30
[  643.650637][   T27] 2 locks held by kworker/1:12/3981:
[  643.655963][   T27]  #0: ffff888012470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.666407][   T27]  #1: ffffc9000396fd20 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.678924][   T27] 2 locks held by kworker/1:16/3986:
[  643.684378][   T27]  #0: ffff888012470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.695589][   T27]  #1: ffffc900039cfd20 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.708172][   T27] 1 lock held by syz-executor/7509:
[  643.713384][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: netdev_run_todo+0x8c7/0xf40
[  643.722707][   T27] 1 lock held by syz-executor/7694:
[  643.727951][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3a/0x1b0
[  643.737158][   T27] 4 locks held by syz-executor/7701:
[  643.742556][   T27]  #0: ffff88801efcd0b8 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x1cf/0x4d0
[  643.752559][   T27]  #1: ffff88801efcc078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x48d/0x1020
[  643.762296][   T27]  #2: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xb8/0x2a0
[  643.772379][   T27]  #3: ffffffff8d1302f8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x360/0x930
[  643.783331][   T27] 3 locks held by syz-executor/7704:
[  643.788806][   T27]  #0: ffff8880604090b8 (&hdev->req_lock){+.+.}-{3:3}, at: hci_unregister_dev+0x1cf/0x4d0
[  643.799725][   T27]  #1: ffff888060408078 (&hdev->lock){+.+.}-{3:3}, at: hci_dev_close_sync+0x48d/0x1020
[  643.809487][   T27]  #2: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_conn_hash_flush+0xb8/0x2a0
[  643.819577][   T27] 2 locks held by syz-executor/7723:
[  643.824897][   T27]  #0: ffffffff8e28d810 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x378/0x5d0
[  643.834502][   T27]  #1: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1b/0x1d0
[  643.844028][   T27] 1 lock held by syz-executor/7742:
[  643.849250][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  643.858869][   T27] 1 lock held by syz-executor/7743:
[  643.864154][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  643.873611][   T27] 4 locks held by kworker/u5:0/7745:
[  643.878962][   T27]  #0: ffff888055aaf138 ((wq_completion)hci1#2){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.889561][   T27]  #1: ffffc900033efd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.901925][   T27]  #2: ffff88807a9c0078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x98/0xab0
[  643.912239][   T27]  #3: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x664/0xab0
[  643.922793][   T27] 4 locks held by kworker/u5:1/7750:
[  643.928123][   T27]  #0: ffff88807801b138 ((wq_completion)hci9#4){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.938799][   T27]  #1: ffffc9000339fd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  643.950290][   T27]  #2: ffff888063d30078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x98/0xab0
[  643.960293][   T27]  #3: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x664/0xab0
[  643.970814][   T27] 1 lock held by syz-executor/7751:
[  643.976053][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  643.985654][   T27] 1 lock held by syz-executor/7761:
[  643.990864][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.000335][   T27] 1 lock held by syz-executor/7768:
[  644.006493][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.016000][   T27] 1 lock held by syz-executor/7770:
[  644.021214][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.030690][   T27] 1 lock held by syz-executor/7776:
[  644.036150][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.045637][   T27] 1 lock held by syz-executor/7777:
[  644.050847][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.060321][   T27] 1 lock held by dhcpcd/7783:
[  644.065034][   T27]  #0: ffff8880779ba130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00
[  644.074765][   T27] 1 lock held by dhcpcd/7785:
[  644.079455][   T27]  #0: ffff8880779bc130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00
[  644.089287][   T27] 4 locks held by kworker/u5:6/7786:
[  644.094609][   T27]  #0: ffff8880566ce938 ((wq_completion)hci10#4){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  644.106101][   T27]  #1: ffffc900034bfd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  644.117601][   T27]  #2: ffff888062af4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x98/0xab0
[  644.127613][   T27]  #3: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x664/0xab0
[  644.138304][   T27] 1 lock held by dhcpcd/7787:
[  644.143001][   T27]  #0: ffff8880779be130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00
[  644.152730][   T27] 1 lock held by dhcpcd/7788:
[  644.157445][   T27]  #0: ffff888062b6c130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00
[  644.167177][   T27] 1 lock held by dhcpcd/7789:
[  644.171883][   T27]  #0: ffff888062b6a130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00
[  644.181697][   T27] 1 lock held by syz-executor/7790:
[  644.187043][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.196515][   T27] 1 lock held by dhcpcd/7793:
[  644.201202][   T27]  #0: ffff888062b68130 (sk_lock-AF_PACKET){+.+.}-{0:0}, at: packet_do_bind+0x32/0xd00
[  644.211780][   T27] 4 locks held by kworker/u5:9/7794:
[  644.217117][   T27]  #0: ffff88801f544138 ((wq_completion)hci14#2){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  644.227660][   T27]  #1: ffffc9000343fd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  644.239241][   T27]  #2: ffff88805dc7c078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x98/0xab0
[  644.249250][   T27]  #3: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x664/0xab0
[  644.259770][   T27] 4 locks held by kworker/u5:10/7795:
[  644.265186][   T27]  #0: ffff888059fa9938 ((wq_completion)hci13#2){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  644.275718][   T27]  #1: ffffc900035afd20 ((work_completion)(&hdev->rx_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0
[  644.287307][   T27]  #2: ffff888073de4078 (&hdev->lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x98/0xab0
[  644.297309][   T27]  #3: ffffffff8e3f0c48 (hci_cb_list_lock){+.+.}-{3:3}, at: hci_remote_features_evt+0x664/0xab0
[  644.307882][   T27] 1 lock held by syz-executor/7797:
[  644.314176][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.323664][   T27] 1 lock held by syz-executor/7800:
[  644.328931][   T27]  #0: ffffffff8e299b68 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x7c1/0xff0
[  644.338553][   T27] 
[  644.340895][   T27] =============================================
[  644.340895][   T27] 
[  644.349348][   T27] NMI backtrace for cpu 1
[  644.353697][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.97-syzkaller #0
[  644.361526][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  644.371608][   T27] Call Trace:
[  644.374901][   T27]  <TASK>
[  644.377855][   T27]  dump_stack_lvl+0x1e3/0x2cb
[  644.382574][   T27]  ? preempt_schedule_thunk+0x16/0x18
[  644.387986][   T27]  ? nf_tcp_handle_invalid+0x642/0x642
[  644.393487][   T27]  ? panic+0x764/0x764
[  644.397590][   T27]  ? vprintk_emit+0x622/0x740
[  644.402312][   T27]  ? printk_sprint+0x490/0x490
[  644.407232][   T27]  ? nmi_cpu_backtrace+0x252/0x560
[  644.412394][   T27]  nmi_cpu_backtrace+0x4e1/0x560
[  644.417439][   T27]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  644.423642][   T27]  ? _printk+0xd1/0x111
[  644.427827][   T27]  ? panic+0x764/0x764
[  644.432018][   T27]  ? __wake_up_klogd+0xcc/0x100
[  644.436891][   T27]  ? panic+0x764/0x764
[  644.440989][   T27]  ? nmi_trigger_cpumask_backtrace+0xe2/0x3f0
[  644.447090][   T27]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  644.453190][   T27]  nmi_trigger_cpumask_backtrace+0x1b0/0x3f0
[  644.459205][   T27]  watchdog+0xf88/0xfd0
[  644.463398][   T27]  ? watchdog+0x1f8/0xfd0
[  644.467764][   T27]  kthread+0x28d/0x320
[  644.471854][   T27]  ? hungtask_pm_notify+0x50/0x50
[  644.476899][   T27]  ? kthread_blkcg+0xd0/0xd0
[  644.481522][   T27]  ret_from_fork+0x1f/0x30
[  644.485984][   T27]  </TASK>
[  644.489416][   T27] Sending NMI from CPU 1 to CPUs 0:
[  644.494806][    C0] NMI backtrace for cpu 0
[  644.494818][    C0] CPU: 0 PID: 3773 Comm: kworker/u4:7 Not tainted 6.1.97-syzkaller #0
[  644.494836][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  644.494849][    C0] Workqueue: bat_events batadv_dat_purge
[  644.494872][    C0] RIP: 0010:lock_acquire+0xf3/0x5a0
[  644.494899][    C0] Code: 0d 0f 86 e4 02 00 00 89 db 48 89 d8 48 c1 e8 06 48 8d 3c c5 a8 80 73 8e be 08 00 00 00 e8 15 b1 77 00 48 0f a3 1d 25 19 09 0d <73> 0d e8 36 e4 08 00 84 c0 0f 84 b9 02 00 00 48 c7 c0 64 b5 73 8e
[  644.494915][    C0] RSP: 0018:ffffc90000007b60 EFLAGS: 00000057
[  644.494975][    C0] RAX: 0000000000000001 RBX: 0000000000000000 RCX: ffffffff816a677b
[  644.494993][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff8e7380a8
[  644.495008][    C0] RBP: ffffc90000007ca8 R08: dffffc0000000000 R09: fffffbfff1ce7016
[  644.495022][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: 1ffff92000000f74
[  644.495034][    C0] R13: dffffc0000000000 R14: 0000000000000000 R15: 17e07bf32e183cf2
[  644.495047][    C0] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  644.495063][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  644.495075][    C0] CR2: 00007fc74d704000 CR3: 000000000ce8e000 CR4: 00000000003506f0
[  644.495093][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  644.495103][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  644.495115][    C0] Call Trace:
[  644.495121][    C0]  <NMI>
[  644.495130][    C0]  ? nmi_cpu_backtrace+0x3de/0x560
[  644.495161][    C0]  ? read_lock_is_recursive+0x10/0x10
[  644.495190][    C0]  ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0
[  644.495219][    C0]  ? nmi_handle+0x25/0x440
[  644.495254][    C0]  ? nmi_cpu_backtrace_handler+0x8/0x10
[  644.495281][    C0]  ? nmi_handle+0x12e/0x440
[  644.495308][    C0]  ? nmi_handle+0x25/0x440
[  644.495335][    C0]  ? lock_acquire+0xf3/0x5a0
[  644.495359][    C0]  ? default_do_nmi+0x62/0x150
[  644.495377][    C0]  ? exc_nmi+0xa8/0x100
[  644.495393][    C0]  ? end_repeat_nmi+0x16/0x31
[  644.495430][    C0]  ? lock_acquire+0xeb/0x5a0
[  644.495455][    C0]  ? lock_acquire+0xf3/0x5a0
[  644.495480][    C0]  ? lock_acquire+0xf3/0x5a0
[  644.495506][    C0]  ? lock_acquire+0xf3/0x5a0
[  644.495531][    C0]  </NMI>
[  644.495535][    C0]  <IRQ>
[  644.495544][    C0]  ? read_lock_is_recursive+0x10/0x10
[  644.495576][    C0]  ? __lock_acquire+0x1f80/0x1f80
[  644.495600][    C0]  ? do_raw_spin_lock+0x14a/0x370
[  644.495622][    C0]  ? do_raw_spin_unlock+0x137/0x8a0
[  644.495648][    C0]  ? advance_sched+0x6d0/0x970
[  644.495673][    C0]  advance_sched+0x6ec/0x970
[  644.495696][    C0]  ? advance_sched+0x6d0/0x970
[  644.495725][    C0]  ? taprio_free_sched_cb+0x1a0/0x1a0
[  644.495748][    C0]  __hrtimer_run_queues+0x5e5/0xe50
[  644.495781][    C0]  ? hrtimer_interrupt+0x980/0x980
[  644.495808][    C0]  hrtimer_interrupt+0x392/0x980
[  644.495842][    C0]  __sysvec_apic_timer_interrupt+0x156/0x580
[  644.495867][    C0]  sysvec_apic_timer_interrupt+0x8c/0xb0
[  644.495889][    C0]  </IRQ>
[  644.495895][    C0]  <TASK>
[  644.495900][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  644.495932][    C0] RIP: 0010:__local_bh_enable_ip+0x16c/0x1f0
[  644.495960][    C0] Code: 8a e8 08 23 37 09 65 66 8b 05 90 7f af 7e 66 85 c0 75 57 bf 01 00 00 00 e8 e1 42 0a 00 e8 ac 36 3d 00 fb 65 8b 05 3c 4f ae 7e <85> c0 75 05 e8 eb 72 ac ff 48 c7 44 24 20 0e 36 e0 45 49 c7 04 1c
[  644.495975][    C0] RSP: 0018:ffffc900048c7b40 EFLAGS: 00000286
[  644.495990][    C0] RAX: 0000000080000000 RBX: 1ffff92000918f6c RCX: ffffffff816ad49a
[  644.496004][    C0] RDX: dffffc0000000000 RSI: ffffffff8aec0240 RDI: ffffffff8b3d4760
[  644.496017][    C0] RBP: ffffc900048c7be8 R08: dffffc0000000000 R09: fffffbfff2093866
[  644.496031][    C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000
[  644.496044][    C0] R13: 1ffff92000918f70 R14: ffffc900048c7b80 R15: 0000000000000201
[  644.496063][    C0]  ? mark_lock+0x9a/0x340
[  644.496092][    C0]  ? batadv_dat_purge+0x2dc/0x3c0
[  644.496111][    C0]  ? _local_bh_enable+0xa0/0xa0
[  644.496136][    C0]  ? do_raw_spin_unlock+0x137/0x8a0
[  644.496159][    C0]  batadv_dat_purge+0x2dc/0x3c0
[  644.496184][    C0]  ? process_one_work+0x7a9/0x11d0
[  644.496203][    C0]  process_one_work+0x8a9/0x11d0
[  644.496234][    C0]  ? worker_detach_from_pool+0x260/0x260
[  644.496257][    C0]  ? _raw_spin_lock_irqsave+0x120/0x120
[  644.496278][    C0]  ? kthread_data+0x4e/0xc0
[  644.496305][    C0]  ? wq_worker_running+0x97/0x190
[  644.496333][    C0]  worker_thread+0xa47/0x1200
[  644.496356][    C0]  ? __sched_text_start+0x8/0x8
[  644.496392][    C0]  kthread+0x28d/0x320
[  644.496407][    C0]  ? worker_clr_flags+0x190/0x190
[  644.496426][    C0]  ? kthread_blkcg+0xd0/0xd0
[  644.496443][    C0]  ret_from_fork+0x1f/0x30
[  644.496474][    C0]  </TASK>
[  644.497276][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[  644.962468][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.1.97-syzkaller #0
[  644.970281][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  644.980345][   T27] Call Trace:
[  644.983630][   T27]  <TASK>
[  644.986571][   T27]  dump_stack_lvl+0x1e3/0x2cb
[  644.991279][   T27]  ? nf_tcp_handle_invalid+0x642/0x642
[  644.996763][   T27]  ? panic+0x764/0x764
[  645.000847][   T27]  ? llist_add_batch+0x160/0x1d0
[  645.005809][   T27]  ? vscnprintf+0x59/0x80
[  645.010164][   T27]  panic+0x318/0x764
[  645.014074][   T27]  ? nmi_trigger_cpumask_backtrace+0x2c1/0x3f0
[  645.020255][   T27]  ? memcpy_page_flushcache+0xfc/0xfc
[  645.025657][   T27]  ? nmi_trigger_cpumask_backtrace+0x2c1/0x3f0
[  645.031838][   T27]  ? nmi_trigger_cpumask_backtrace+0x33a/0x3f0
[  645.038017][   T27]  ? nmi_trigger_cpumask_backtrace+0x33f/0x3f0
[  645.044201][   T27]  watchdog+0xfc7/0xfd0
[  645.048380][   T27]  ? watchdog+0x1f8/0xfd0
[  645.052731][   T27]  kthread+0x28d/0x320
[  645.056813][   T27]  ? hungtask_pm_notify+0x50/0x50
[  645.061855][   T27]  ? kthread_blkcg+0xd0/0xd0
[  645.066481][   T27]  ret_from_fork+0x1f/0x30
[  645.070954][   T27]  </TASK>
[  646.249556][   T27] Shutting down cpus with NMI
[  646.254565][   T27] Kernel Offset: disabled
[  646.258922][   T27] Rebooting in 86400 seconds..