last executing test programs:

1m47.514706757s ago: executing program 4:
r0 = syz_io_uring_setup(0xe80, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x44, 0x0, @fd_index, 0x0, &(0x7f00000017c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9})
io_uring_enter(r0, 0x2, 0x0, 0x0, 0x0, 0x0)

1m16.438649106s ago: executing program 4:
r0 = syz_io_uring_setup(0xe80, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x44, 0x0, @fd_index, 0x0, &(0x7f00000017c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9})
io_uring_enter(r0, 0x2, 0x0, 0x0, 0x0, 0x0)

57.453608313s ago: executing program 4:
r0 = syz_io_uring_setup(0xe80, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x44, 0x0, @fd_index, 0x0, &(0x7f00000017c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9})
io_uring_enter(r0, 0x2, 0x0, 0x0, 0x0, 0x0)

34.517769584s ago: executing program 4:
r0 = syz_io_uring_setup(0xe80, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x44, 0x0, @fd_index, 0x0, &(0x7f00000017c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9})
io_uring_enter(r0, 0x2, 0x0, 0x0, 0x0, 0x0)

20.202645063s ago: executing program 4:
r0 = syz_io_uring_setup(0xe80, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x44, 0x0, @fd_index, 0x0, &(0x7f00000017c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9})
io_uring_enter(r0, 0x2, 0x0, 0x0, 0x0, 0x0)

8.744503988s ago: executing program 1:
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x800, &(0x7f0000000380)={[{@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@umask={'umask', 0x3d, 0x9}}, {@iocharset={'iocharset', 0x3d, 'cp949'}}, {@errors_remount}, {}, {@errors_remount}, {@gid}, {@errors_remount}, {@discard}, {@errors_continue}]}, 0x5, 0x1510, &(0x7f00000037c0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

7.836726749s ago: executing program 1:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448d2, &(0x7f0000000100)={0x1, 0x0, "94b76d"})

6.848013203s ago: executing program 1:
syz_mount_image$hfsplus(&(0x7f0000000100), &(0x7f0000000280)='./file0\x00', 0x11000c, &(0x7f0000000b80)=ANY=[@ANYRES16=0x0, @ANYRESHEX=0x0, @ANYBLOB="2c73657373696f6e3d3078666666666666666666666666666637662c626172726965722c63726561746f723dddf2bd6c2c6e6c733d69736f383835392d312c6e6c733d69736f383835392d31332c756d61736b3d30303030303030303030303030303030303030303030332c63726561746f723d85f194712c6e6f626172726965722c63726561746f723d65fe04c22c756d61736b3d30303030303030303030303030303030303030323030312c6465636f6d706f73652c666f7263652c6465636f6d706f73652c63726561746f0000178aa0d42c666f7263652c6e6f626172726965722c00", @ANYRES16, @ANYRESOCT, @ANYRES16], 0x0, 0x6e4, &(0x7f0000000340)="$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")
syz_mount_image$vfat(&(0x7f00000002c0), &(0x7f0000000580)='./file0\x00', 0x0, &(0x7f0000001900)=ANY=[], 0xfd, 0x222, &(0x7f00000016c0)="$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")
chdir(&(0x7f0000004340)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = creat(&(0x7f00000000c0)='./bus\x00', 0x0)
write$binfmt_elf64(r0, &(0x7f0000000140)=ANY=[], 0xfd14)
mknod(&(0x7f00000005c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)
ioctl$TUNSETOFFLOAD(0xffffffffffffffff, 0x400454c9, 0x0)
mknod(&(0x7f0000000580)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x0)

6.469079542s ago: executing program 1:
socket(0x40000000015, 0x5, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=@base={0xa, 0x1, 0x8, 0x100}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='sys_enter\x00', r1}, 0x10)
mq_open(&(0x7f0000000380)='eth0\x00#\x13\xaeu\xe0\xfbu0*\xf3\x05\x00\x00\x00\x00\x00\x00\x00_\xa0\xf6\xdfk\xbf.\"\xa6\xc0#p\xcd\x1c/\xa6\xf2\xbcyL\x85a\xb5\xbb~+>\xbc\x93\xf8\xab\x9a3\x85l\x1d\x15\x11\x1a{@!2\xb6!\xae\xf79k\x90\x88\v8I$\xfdQ\x1d\x90=r\xd8\xc0\xd8\t/\x8dv\xb8\x93\xc3C\xae\x9dc\xd1T\xdd\x14\xd3\xe1\xbe_$A=z\xee\xbd/X\xbemOX)s\x94\xde\xbe_\v\x01\xbe\xeb\xbb\x91\x11z\xc2|d\x1b\x04\xd2\xf9yx\xb2\x1b\bLTrw\x88\x9e0\t\xc6\xe2\x81\xed\\\xd8[\xc8\x04 \xf3\xac]V\x1d:\xfc\xc3\x9e\x02\ax\xef\xfe\x1c.TT\xcf\xbf\xf5\x80a%\xdcQ\xb3CuT\xcc7\x8avs\xb2\a\xfe\xb3j*\xad\x18I\xcc\xe9\xaa{]\xef\xb7\xf2\xee*\xf95\bJt\xd0s\xc4\xaa\xc8\x13~\xb2\xf20\xbdf\xdb\xaeG\xe3\xfb\xef\x94\a\x00\x00\x00\xe3\xa3\xa4}\xef`e\xcdL\xab\xdb\r\xf2y\x9fg1\xf4\t\x18i/!\x13\xf1,\x8cu\xaa\xbf~)\x94\x1b2\x93\x86\xe7\x9a\xf2j\xa8\x96\xa6\xa2\xfcN\x81\xafTh\xb3\x1bo:\xe8\vq7S\xe4H\xf3L\xa0\x9c\x97B\x12\x10\x9d\xaa\x7fq\x06\xb9(\xf6\x1c\x83\xb1J\xec\x926\xb5a0\xa0B\xae|\xf2\x98;U\x1fgU\x04&\x03~\xbd/\xcb\xf4\xdb\b\n\xaa\xd7\xb5\xa0\xb0\xd5\x8e\xcd\x18\xc9\xbe\xf75\x8eK.E\x95B\xee\x85<\xf8\xd9\xb0\xda9\x9c\xc1\x8d?\xbfU\xef\xeb\x7f\"\xf0\x04\xfc\xc4\x16\x81i\xfa\x7f\xcd\at\xe1\xb9Y\x1c\xfaA\xab\xe8w:\xc7\xecU\x1fr\x8eQ0z5E\xc6\xfd3\x1e\rA\xa70\x91\xb4\r\xfd\x9e\xb5\xcc\x05\xfdJ*\xdd\xe7\x9f\x04\xf39\\\xe1\xec\x06\xe8\xb6$\xf8\x0fj\x80R\xb6', 0x0, 0x0, 0x0)
r2 = socket$inet6(0x10, 0x3, 0x0)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$batadv(&(0x7f0000000180), 0xffffffffffffffff)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f00000001c0)={'batadv0\x00', <r5=>0x0})
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r6=>0xffffffffffffffff})
getpeername$packet(r6, &(0x7f0000000000)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f00000006c0)=0x39)
sendmsg$BATADV_CMD_SET_HARDIF(r3, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000000)={0x24, r4, 0x201, 0x0, 0x0, {}, [@BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r5}, @BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r7}]}, 0x24}}, 0x0)

5.916148438s ago: executing program 1:
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x14, 0x0, 0x0, 0x80000000}, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mkdir(0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000107b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000925e850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f0000000300)='sched_switch\x00', r3}, 0x10)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r5 = dup(r4)
write$UHID_INPUT(r5, &(0x7f0000000000)={0xf, {"a2e3ad21ed0d09f91b3d090987f70906d038e7ff7fc6e5539b0d3d0e8b089b3c310068090890e0878f0e1ac6e7049b334a959b669a240d5b67f3988f7ef319520100ffe8d178708c523c921b1b5b31070b074a0936cd3b78130daa61d8e8040000005802b77f07227227b7ba67e0e78657a6f5c2a874e62a9ccdc0d31a0c9f318c0da1993bd160e233df4a62179c6f30e065cd5b91cd0ae193973735b36d5b1b63dd1c00305d3f46635eb016d5b1dda98e2d749be7bd1df1fb3b231fdcdb5075a9aaa1b469c3090000000000000075271b286329d169934288fd789aa37d6e98b224fd44b65b31334ffc55cc82cd3ac32ecdb08ced6f9081b4dd0d8b38f3cd4498bee800490841bdb114f6b76383709d8f5c55432a909fda039aec54a1236e80f6a8abadea7662496bddbb42be6bfb2f17959d1f416e56c71b1931870262f5e801119242ca026bfc821e7e7daf2451138e645bb80c617669314e2fbe70de98ec76a9e40dad47f36fd9f7d0d42a4b5f1185ccdcf16ff46295d8a0fa17713c5802630933a9a34af674f3f39fe23491237c08822dec110911e893d0a8c4f677747abc360934b82910ff85bfd995083bba2987a67399eac427d145d546a40b9f6ff14ac488ec130fb3850a27af9544ae15a7e454dea05918b41243513f000000000000000a3621c56cea8d20fa911a0c41db6ebe8cac64f17679141d54b34bbc9963ac4f4bb3309603f1d4ab966203861b5b15a841f2b575a8bd0d78248ebe4d9a80002695104f674c2431dca141fae269cab70e9a66f3c3a9a63e9639e1f59c0ede26c6b5d74b078a5e15c31634e5ae098ce9ee70771aaa18119a867e1088334975e9f73483b6a62fa678ca14ffd9f9db2a7869d85864056526f889af43a6056080572286522449df466c632b3570243f989cce7cd9f465e41e610c20d80421d653a5520000008213b704c7fb082ff27590678ef9f190bae97909507041d860420c5664b27921b14dc1db8892fd32d0ad7bc946813591ad8deff4b05f60cea0da7710ac0000000000008000bea37ce0d0d4aa202f928f28381aab144a5d429a04a6a2b83c7068ae949ed06e288e810bac9c76600025e19c907f8ea2e2010000008271a1f5f8528f227e79c1389dbdfffe492f21579d2c15b8c70cdb1c332d86d87341432750861ec2bc3451edca194b221cfec4603d276bbaa1dfa6d4fb8a48a76eafc9a9a0270e4c10d64cd5a62427264f2377fe763c43470833ac96c45f357cbbaba8f1b1fdcc7cbb61a7cdb9744ed7f9129aede2be21ccfdc4e9134f8684b3a4f354da9a795e96334e207dff70f1988037b2ed3aaf575c0b88d8f146684078416d59fdee5325928974d12dad99dac44c3f0008047096a44002bebc2420aed92fa9b6578b4779415d4ac01b75d5495c118045651cf41c2fc48b778efa5ea5677747430af4162b987b80c3e001cd34e5c92f76cc4c24eeb8bc4e9ac2aed9e53803ed0ca4ae3a9737d214060005ea6f1783e287b3bee96e3a726eafe2fdfaa78d1f48c13b64df07847754b8400daaa69bf5c8f4350aeae9ca1207e78283cd0b20ceb360c7e658828163e2d25c4aa348561f927e88f63aa70e73a5e69b3df3495903f06572e1e007fa55a2999f596d067312f5779e8dbfdcf3427138f3d444d2639a10477f9bec4b0bbb6e3c04be68981f392203dd0ee3ef478e16dacfc5e3e03cf7ab8e3902f1b0ff034ef655b253ca509383815b1b6fc6522d4e4fdc11a48cf42d48604675fde2b94cf00500a2690891abf8ab9c015073014d9e08d4338b8780bdecd436cf0541359bafffa45237f104b96210403b2de9efed496f42355bc7872c827467cfa5c4e72730d56bd068ed211cf847535edecb7b373f78b095b68441a34cb51682a8ae4d24ad0465f3927f889b813076038e79a7962fb385a882e8020f06c4c2ba1dd5cac7c18876da865d258734dd73583df292892448039ef799cf0630becdcce04579b5561dc825ab829827945e020c1f67ee615feb6243378e0610060f02cca4e91b2f001edb3d78fb4b55668dda93aec92a5de203717aa49c2d284acfabe262fccfcbb2b75a2183c46eb65ca8104e1b4da7fbb77ab2fc043aead87c32ab875ee7c2e7b7019c982cd3b43eaeb1a5fb135c0c7dcee8fe6516a328032f88c042891824659e9e94265c803b35ee5f83a2b210520106b8a358b50ab7a1fa89af9c251fe5294b3d1802d5676d95f160ec97b1ad94872cb2044642c37b4a6cc6c04effc1672db7e4b6080000007a508ae54b3cd7369dde50e8c77d95a3d361c040babb171607caac2a3559ad4f75465f49c0d0ae3716db6e00cb11db4a5fade2a57c10238e204a67737c3b42aae501b20f7694a00f16e2d0174035a2c22656dc29880acebdbe8ddbd75c2f998d8ac2dfad2ba3a504767b6b45a45957f24d758ed024b3849c11d412a2a03b4047497022d9c30e23ef4df5c89644f48bb536f7945b59d7bcddff754413d135273ea8e75f22f216c6b9990ae71806f2c00b4025c48b75c0f73cdb9a7b8fa367b50028067e7f16f4dd569d462f4f19eacdb3ed70eeebb4483f8fd777d443e8b40427db6fe29068c0ca3d2414442e8f3a154704b0e51bc664a137b26be719f4f7c9a5678a674dfc95df80b9ce375dd649c8c704e509bd88c8e63d8c7dd67071115c8982ba46af4d6adcc9f68a75b9397b035153faf46366e7205dd8d6f37525c1a0e94610dd94323f6c15d085197149bfd6655548cfd9c52c9711937f79abb1a124f1210465483cd3b2d78378cfb85ed82e7da0f6eb6d279f2ae455925d0f6f1ba571eba281f2a654fb39ddff3b484439ff158e7c5419e037f3e3ad038f2211f1033195563c7f93cd54b9094f226e783271e1e5a2a2c10712eab625d64931cd4ffe6738d97b9b5ef828ee9fb059fc01af0e79c1e14b1d25988c69a399567c1d93768f7971d31488b8658a20878b7c1dd7ba02fc42939dde3d4a3339a65d507dc59c51097b40517705da56e9ebf0afa53282bf86dbb58c548069ff6eb95aade7cc66d7bbef724779ca1f731b3346ff177050373d79ff7b3e7f9bc0c1b4b266a8878b90baaa039d3e3b63979ac3df6e6f4859afd50238c7547a39b60810938044ae185d2ba3e00a4e73676864ae090d81eaee5ee6cf1d0ab378dd4dd891e937c2ea5410e0513005000000000000003911fab964c271550027697b52160687461602f88df165d884b36ec2b6c25a2f33c715687e9d4afb96d6861aca47da73d6f3144345f48843dd014e5c5ad8fe995754bd9cf32fce1e31919c4b2082fb0a30b9deae84bed4b28045634073c9c58c89d9e99c81769177c6d594f88a4facfd4c735a20307c737afa2d60399473296b831dbd933d93994ba3064279b10ea0c5833f41f157ea2302993dbe433b1aa3a3766d5439020484f4113c4c859465c3b415c3432f81db8719539d5bf372aaaea1cc43a6c5cbe59758bfee2916580dac4b008e595f437491d87abed02cefcd9db53d94d02daee67918e5d6787463183b4b87c1050000002f7809959bc048850613d17ca51055f2f416a44fe180d2d50c312cca7cb14a2bdc331f57a9817139a206fc76957227ffff2de20a4b8e3737fbb42913777c06376f799eba367e21f94ca598705f5dcb767d6f0900d6b0f6095e53c4c4234d0c1fbe434f6ab8f43c0013ee93b83946ee7759e89d7bdd1a32d7b311711b757fe43c06d21a35810d8fe98b27faea8aa12bc8716eefc5c97c45ac33eeec964c5214bc3a9359bdea1cccab94f15e36319cb34ebcacedb82c2ed3de5a8a8f0011e8f74e82d7f96093530e76692839d7961939adfdeeeaff19d11efcafb6d546fef271e89d6cc2389e81ff58cefcce3fbf4625a7e7de40e42e07b34449e15e065cc7340002000000000000f288a4510de03dab19d26285eda89156d50dd385a60333ba5bbf5d77cd7007ad1519ad5470de3dd6d6080cafccf8a97406bb6b68a1f0c4549820a73c880f475f732ae00398e8bd1f4108b7807fb33b72685ec37a2d3f766413a60459516246e5a1d998a2017aef0948a68cf255315ab80dd349e891aef595dc4d470e8ac32a308e15fc37d06aeac289c0523f483e1ff7408c6087f1ab652f2ef91d4f2b01987b0f46da034e5c3f745a7ee8101a3934c54e24b48ec0275e2d0687dc746b0827cbf652f406c6b95f2722e58c05f752ce2126596e1cd7655b904801784c416b22f73d324678e2724f43f1fe687c7e8a60c28b82b6528341b648cdd56fed7cdcbb15da202d5ecd36dea3bca0b7427d8392c6289455e8f8d2ab2242729251ae033a9e02210e62df0546a74b333a1c48f95fd54acb5741259e8c5488efeee327415cc19451432c6f14c27693102a3cd84857cd6586fc5ca9a93eb0145fac0662ff86107f998a8ef7df8aa14046c55b03d3d47f88a8d60f7774a2ee08758897fb411a94b3c2fc5d5f0db42c0456ec015f08e5247d33ae2d35603ff8454c16f8342856935125102bb784ed7148b6ce431b63ee356b0c785f2f47b90e29389f22fc5b59a70efaea2bd40195af4486220d702e30bfc43c10ec23ea6283994a7dde4dcb61fea6b651fb1d62458d0741a12830052fcc460db043afe525629b40d7cee458e4cb5e930ed624806c43a006e39336d07c2b8081c128ad2706f48261f7897484c297a1a6613bc18f5a38d442768af38041efe03d152ef95ff569e76db2391f4509d7f339d92fdb4a89364949da398000000000000000d80a4fe654578376e599aff3565b1d531f30912b9945030b81ea9935fd46edb44a78f615255490a4b621501f2a9e4d24624c4dac9274118c67584f5d374755534d7f68f679c4ff516a9c861a0e7e65868fcb2bf1cb9aea4e05df72279fdb0d2b9e935c5af3cf474bed79dfc248c1f5aea4b8b32c5d295e57079d0fe662a46b7f71cd47744db86c50b704c971d90295c7b2c7439a2d78ccfa79b5fc2bff6bbf840262bf89394b3e0691953264d2700c838fa2c7b3425260f59554e502dcea39cb313b0000000000004ca7c12f45858d6284ca6270d6b2f0e58fded8a7b4a302a97bc641df07720ba2b26bbfcc807ca0abb1b44322269c21c5ec68cb068ea88067d905ea917bb03eefdaebdeabf2d0dce80997c915c8949de992587c2cb5fe36d7d3e5db21b094b8b77940b5f07722e47a08d367e5f84c96ec664b72934b99b3109af65d77e86abd6859cddf4bbae1f0930462df15fddbc48562ea3511a8065ef028cf12f14dcf6ebecd8d884836174faf1aa609e5f1ee1162dfa13bdc1fa7cfaadba85c72e9758f03a755d0be53f8d2a1dfb1c68cc164b0a0780d971a96ea2c4d4ca0398c2235980a9307b3d5bd3b01faffd0a5dbed2881a9700af561ac8c6b00000000000000f96f06817fb903729a7db6ff957697c9ede7885d94ffb0969be0daf60af93109eb1dee72e4363f51af62af6fb2a6df3bec89822a7a0b678058fa3fef86faec216eb6992162f8dcbf719c148cd2f9c55f4901203a9a8a2c3e90f3943dbc10360a1a49700d1dfbf66d69f6fbaf506c8bcce8bb0d872a02238926407a4eddd5d0fc5a752f9000", 0x1000}}, 0x1006)

5.684845714s ago: executing program 1:
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, &(0x7f0000000640)={'tunl0\x00', &(0x7f0000000240)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x6, 0x4, 0x0, 0x0, 0x18, 0x0, 0x0, 0x0, 0xb388629d78895789, 0x0, @empty, @empty, {[@ra={0x94, 0x4}]}}}}})

5.103374635s ago: executing program 4:
r0 = syz_io_uring_setup(0xe80, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000100)=<r1=>0x0, &(0x7f0000000140)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000040)=@IORING_OP_READV=@pass_iovec={0x1, 0x44, 0x0, @fd_index, 0x0, &(0x7f00000017c0)=[{0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}, {0x0}], 0x9})
io_uring_enter(r0, 0x2, 0x0, 0x0, 0x0, 0x0)

3.443373234s ago: executing program 2:
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@newlink={0x44, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_VFINFO_LIST={0xc, 0x16, 0x0, 0x1, [{0x8, 0x1, 0x0, 0x1, [@IFLA_VF_VLAN_LIST={0x4}]}]}, @IFLA_IFNAME={0x14, 0x3, 'netdevsim0\x00'}, @IFLA_IFALIASn={0x4}]}, 0x44}}, 0x0)

2.594819726s ago: executing program 0:
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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")
lsetxattr$system_posix_acl(&(0x7f0000000400)='.\x00', &(0x7f0000000440)='system.posix_acl_default\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="02000000010000000000000002000000", @ANYRES32=0xee01, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0xee00, @ANYBLOB="02000000", @ANYRES32=0x0, @ANYBLOB="040000000000800008000000", @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB='\b\x00\x00\x00', @ANYRES32=0x0, @ANYBLOB="100000000000000020"], 0x5c, 0x0)
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000600))

2.386047578s ago: executing program 2:
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001200010a001800000000"], 0x14}}, 0x0)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
r3 = syz_open_dev$radio(&(0x7f0000000180), 0x3, 0x2)
ioctl$VIDIOC_SUBDEV_G_EDID(r3, 0xc0285628, &(0x7f0000000280)={0x0, 0x0, 0x5, '\x00', &(0x7f00000001c0)=0x5})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r4 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r4, &(0x7f0000000240)=[{0x0}], 0x1, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x4)
dup(0xffffffffffffffff)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x1006)
bind$inet6(r2, &(0x7f0000d84000)={0xa, 0x2, 0x0, @loopback}, 0x1c)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
r5 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r5, &(0x7f0000000100)=[{{&(0x7f0000000000)={0xa, 0x0, 0x0, @private2}, 0x1c, &(0x7f0000000480)=[{&(0x7f00000000c0)='W', 0x1}], 0x1}}], 0x1, 0x0)
sendto$inet6(r5, &(0x7f0000000040)="b9", 0x1, 0x0, &(0x7f0000000080)={0xa, 0x0, 0x0, @private2}, 0x1c)
listen(r5, 0x100101)
accept4(r5, 0x0, 0x0, 0x0)
sendto$inet6(r2, &(0x7f00000000c0)="044aac2f202c5feda71e039a57a93088fdcce4afe28aac61837792741a190670ccbe1a2b00aa77a87d56a3f12c7920ad02928a5d1014e5b896f000fcf6521928480be9af82613a5c661f4110adba358afd8b5b4ef1702051e393ede2698112a1f1bdf1d0f568546ed322ab4c53545bd2cd6e48522f0c154cb3c6864dc30ae921db100f1ee97a234503338f8fdf356472da0c7ab62f274f34", 0x116d962d5f73552, 0x20000845, &(0x7f0000b63fe4)={0xa, 0x2}, 0x1c)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000cc0)={0x1, @pix_mp={0x0, 0x0, 0x3631564e}})

1.902385813s ago: executing program 0:
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0x12, 0x5, &(0x7f0000000040)=@framed={{0xc4, 0xa, 0x0, 0x0, 0x0, 0x79, 0x11, 0x10}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0xf}, 0x80)

1.690359316s ago: executing program 0:
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000080)='ext4_mballoc_prealloc\x00'}, 0x10)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000240)=ANY=[], 0x1c}}, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r1 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r1, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=""/57, 0x0, &(0x7f0000000500)=""/4096})
setsockopt$inet_msfilter(0xffffffffffffffff, 0x0, 0x29, &(0x7f0000000080)=ANY=[@ANYBLOB="e0000002ac1414aa0000000001"], 0x14)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

1.529934271s ago: executing program 3:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='pids.current\x00', 0x275a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r0, 0x0)
ftruncate(r0, 0xc0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000b80)=@raw={'raw\x00', 0x3c1, 0x3, 0xa68, 0x0, 0xc8, 0x8, 0x170, 0x5803, 0xa40, 0x2e8, 0x2e8, 0xa40, 0x2e8, 0x3, 0x0, {[{{@ipv6={@empty, @private2, [], [], 'pim6reg0\x00', 'wlan0\x00'}, 0x0, 0xa8, 0xf0, 0x0, {0x0, 0x2000000000000}}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'snmp\x00'}}}, {{@uncond, 0x0, 0x888, 0x8a8, 0x0, {}, [@common=@unspec=@u32={{0x7e0}}]}, @unspec=@TRACE={0x20}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0xac8)

1.404695931s ago: executing program 2:
socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f00000000c0)={<r0=>0xffffffffffffffff})
getsockopt$sock_buf(r0, 0x1, 0x1c, 0x0, &(0x7f0000000080))
r1 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$FBIOPUT_VSCREENINFO(r1, 0x4601, &(0x7f0000000100)={0x400, 0x300, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x0, {0x0, 0x8}, {}, {}, {}, 0x0, 0x3f0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x80, 0x0, 0x4})

1.15503534s ago: executing program 2:
unshare(0x6020400)
r0 = fsopen(&(0x7f0000000000)='cgroup2\x00', 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0)
r1 = fsmount(r0, 0x0, 0x0)
bpf$BPF_LINK_CREATE(0x8, &(0x7f00000003c0)={0xffffffffffffffff, r1}, 0x10)

1.108423847s ago: executing program 3:
r0 = socket$inet(0xa, 0x801, 0x84)
sendmmsg$inet_sctp(r0, &(0x7f0000002000)=[{&(0x7f0000000000)=@in6={0xa, 0x0, 0x0, @private1}, 0x1c, &(0x7f0000000240)=[{&(0x7f0000000040)="aa", 0x1}], 0x1, &(0x7f0000001480)=ANY=[@ANYBLOB="3000000000000000840000000100"/44, @ANYRES32=0x0, @ANYBLOB=' '], 0x50}], 0x1, 0x0)

1.015796041s ago: executing program 2:
syz_mount_image$nilfs2(&(0x7f0000000ec0), &(0x7f0000000f00)='./file0\x00', 0x402, &(0x7f0000000840)=ANY=[], 0x3, 0xf08, &(0x7f0000001e40)="$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")
r0 = open(&(0x7f0000000040)='./bus\x00', 0x62b42, 0x0)
r1 = open(&(0x7f0000000200)='./bus\x00', 0x14507e, 0x0)
r2 = creat(&(0x7f00000001c0)='./bus\x00', 0x0)
lseek(r2, 0x7ffffb, 0x0)
write$cgroup_devices(r2, &(0x7f0000000000)=ANY=[], 0xa)
sendfile(r1, r1, 0x0, 0x100000000)
sendfile(r0, r0, 0x0, 0x80000942)

975.117568ms ago: executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x28a40, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000300), 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a03000000000000000000010000000900010073797a300000000060000000090a010400000000000000000100000008000a40000000000900020073797a32000000000900010073797a30000000000800054000000021240011800b0001006578746864720000140002800800074000000000080006"], 0xa8}}, 0x0)

827.588361ms ago: executing program 3:
syz_mount_image$hfs(&(0x7f00000001c0), &(0x7f0000000140)='./bus\x00', 0x14000, &(0x7f0000000000)=ANY=[], 0x4, 0x299, &(0x7f00000004c0)="$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")
chdir(&(0x7f0000000140)='./file0\x00')
open(&(0x7f0000002000)='./bus\x00', 0x143142, 0x0)
r0 = open(&(0x7f0000000240)='./file0\x00', 0x62042, 0x0)
ftruncate(r0, 0x2007fff)

769.63068ms ago: executing program 0:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000008500000075000000a50000002300000095"], &(0x7f00000000c0)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
sendmsg$NFULNL_MSG_CONFIG(0xffffffffffffffff, &(0x7f0000001bc0)={0x0, 0x0, &(0x7f0000001b80)={&(0x7f0000000140)=ANY=[@ANYBLOB="2400000001040101000000000000000000001b617cdb387fdf8a0045e85e000005000100020000000800044000000000ae7bf1600a063ba5a19d797fa17701556f3c4c3e8b134b68c7342b1c27"], 0x24}}, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r1, &(0x7f0000000180)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r1, 0x0)
futex_waitv(&(0x7f0000000600)=[{0x0, 0x0}], 0x1, 0x0, &(0x7f0000000000), 0x0)

568.476271ms ago: executing program 0:
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f0000000280)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@errors_continue}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f0000000680)="$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")
chdir(&(0x7f0000000000)='./file0\x00')
creat(&(0x7f0000000040)='./bus\x00', 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0)
mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r0, 0x0)
readv(0xffffffffffffffff, &(0x7f0000001f80)=[{0x0}, {0x0}, {0xffffffffffffffff}], 0x3)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0)

454.757659ms ago: executing program 3:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$HCIINQUIRY(r0, 0x800448d2, &(0x7f0000000100)={0x1, 0x0, "94b76d"})

233.789143ms ago: executing program 3:
syz_mount_image$f2fs(&(0x7f0000000180), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000500)=ANY=[@ANYRES64=0x0, @ANYBLOB="c3649be801cfa9d37b32e5a81bd8ef65d2d6ae7c55dce6f28d147bd4743ac27b", @ANYRES16, @ANYBLOB="91f895dd7ebcc2b83a83fb121e4e844e5d7a09e7d4a4979f3fdfe200b83e593144c1cf15b5624e3448b3b40065bc381005ed653b2e5aeafdfb38eeddb8c08b04fb2e46eba33d22f32db6a9608832f35ee976140648653030c5dd9306f90fc9f46534c6d9f2b37f945ba052c7197494046b00916b8f07b5b9f05f77f79225aa0700a01e414c5352def7a6078229384108c95320a4abf33afd65548efaf0b3dc54c4c10995d3e08a9017ae0c8828c59983d23cf29ff4ff4a16908f199ba7"], 0x1, 0x556c, &(0x7f000000b980)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0)
mkdir(&(0x7f0000000200)='./bus\x00', 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000001080)='mounts\x00')
r1 = open(&(0x7f0000000080)='./file1\x00', 0x10b942, 0x0)
sendfile(r1, r0, 0x0, 0x80000000)

75.199668ms ago: executing program 2:
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200800, &(0x7f0000000940), 0x5, 0x58d, &(0x7f0000000f80)="$eJzs3d9rW1UcAPDvTdN1v3QdjKEvMtiDk7l0bf0xQXA+ig4H+j5Dm5XRdBlNOtY6cHtwL77IEEQ2EP8A330c/gP+FQMdDBlFkSFEbnLT1Tbpr6VLtnw+cNNz7r3Jud+ce27PvecmCWBgHUsfchGvRsS3ScShVcvykS081lxv+dH1qXRKol7/7M8kkmxea/0k+3sgy7wSEb9+HXEyt77c6uLSbLFcLs1n+bHa3JWx6uLSqUtzxZnSTOnyxOTkmbcnJ957952uxfrG+b9/+PTeR3u/Ob78/c8PDt9O4mwczJatjuMp3FidOVb8N0sNx9k1K453obB+kvR6A9iRoaydD0d6DDgUQ1mrB158X0VEHRhQifYPA6rVD2id23fpPPi58fDD5gnQ+vjzzWsjsbdxbrR/OfnfmVF6vjvahfLTMn754+7tdIqNr0Ps2yQPsC03bkbE6Xx+/fEvyY5/O3e6cfF4Y2vLGLT/P9BL99L+z5vt+j+5lf5PtOn/HGjTdndi8/afe9CFYjpK+3/vt+3/rhy6Roey3EuNPt9wcvFSuXQ6Il6OiBMxPJLmNxrPObN8v95p2er+Xzql5bf6gtl2PMiPtNJDjcfpYq34tHG3PLwZUR9pF3+yUv9Jm/pP34/zWyzjaOnua52WbR7/7qr/FPF62/p/MqKVbDw+OdbYH8Zae8V6f906+lun8nsdf1r/+zeOfzRZPV5b3X4ZP+59XOq0bHv7f1O6/+9JPm+k92TzrhVrtfnxiD3JJ+vnTzx5bivfWj+N/8TxjY9/7fb/9OTriy3Gf+vIrY6r9kP9T2+r/refuP/xl3c6lb+1+n+rkTqRzVlz/Hu85lJGw1Y3sEtvIwAAAAAAAPSFXEQcjCTXGts8GLlcodC8v+NI7M+VK9XayYuVhcvT0fis7GgM51oj3YcaQ7DN+yHGs/thW/dHTKzJT0bE4Yj4bmhfI1+YqpSnexs6AAAAAAAAAAAAAAAAAAAA9I0D2ef/CyvfBdD8/H/q96Febx2w6xpf/jHS660AemHTn/zvxi89AX1p0/YPvLC0fxhc2j8MLu0fBpf2D4NL+4fBpf3D4NL+AQAAAAAAAAAAAAAAAAAAAAAAAAAAoKvOnzuXTvXlR9en0vz01cWF2crVU9Ol6mxhbmGqMFWZv1KYqVRmyqXCVGVus9crVypXxidi4dpYrVStjVUXly7MVRYu1y5cmivOlC6Uhp9JVAAAAAAAAAAAAAAAAAAAAPB8qS4uzRbL5dL8M07koweF7jDxQfTFZuxmgE07enp+/aJ/IqIf4hqwxJ2sGrvzgj08KAEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAGv8FAAD//56YOsc=")
setxattr$trusted_overlay_upper(&(0x7f0000000080)='./file0\x00', 0x0, 0x0, 0x1015, 0x0)

0s ago: executing program 0:
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$smc(&(0x7f0000000180), 0xffffffffffffffff)
sendmsg$SMC_PNETID_DEL(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)={0x14, r1, 0xe27, 0x0, 0x0, {0x3, 0x2, 0x2}}, 0x14}, 0x1, 0x40030000000000}, 0x0)

kernel console output (not intermixed with test programs):

  388.097423][ T7964] EXT4-fs (loop0): unmounting filesystem.
[  388.149962][ T3690] device hsr_slave_0 left promiscuous mode
[  388.158553][ T3690] device hsr_slave_1 left promiscuous mode
[  388.165107][ T9428] EXT4-fs error (device loop2): ext4_do_update_inode:5210: inode #16: comm syz-executor.2: corrupted inode contents
[  388.182724][ T9428] EXT4-fs error (device loop2): ext4_dirty_inode:6072: inode #16: comm syz-executor.2: mark_inode_dirty error
[  388.213724][ T3690] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  388.221257][ T3690] batman_adv: batadv0: Removing interface: batadv_slave_0
[  388.231980][ T9428] EXT4-fs error (device loop2): ext4_do_update_inode:5210: inode #16: comm syz-executor.2: corrupted inode contents
[  388.249739][ T3690] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  388.262852][ T3690] batman_adv: batadv0: Removing interface: batadv_slave_1
[  388.280459][ T3690] device bridge_slave_1 left promiscuous mode
[  388.293372][ T3690] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.315672][ T3690] device bridge_slave_0 left promiscuous mode
[  388.321983][ T9428] EXT4-fs error (device loop2): __ext4_ext_dirty:202: inode #16: comm syz-executor.2: mark_inode_dirty error
[  388.334036][ T3690] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.353487][ T9428] EXT4-fs error (device loop2): ext4_do_update_inode:5210: inode #16: comm syz-executor.2: corrupted inode contents
[  388.434254][ T3690] device veth1_macvtap left promiscuous mode
[  388.443915][ T3690] device veth0_macvtap left promiscuous mode
[  388.450078][ T3690] device veth1_vlan left promiscuous mode
[  388.476996][ T3690] device veth0_vlan left promiscuous mode
[  388.494703][ T3690] device veth1_macvtap left promiscuous mode
[  388.502745][ T3690] device veth0_macvtap left promiscuous mode
[  388.528787][ T3690] device veth1_vlan left promiscuous mode
[  388.537207][ T9428] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  388.552747][ T3690] device veth0_vlan left promiscuous mode
[  388.579311][ T9428] EXT4-fs error (device loop2): ext4_do_update_inode:5210: inode #16: comm syz-executor.2: corrupted inode contents
[  388.648720][ T9428] EXT4-fs error (device loop2): ext4_truncate:4300: inode #16: comm syz-executor.2: mark_inode_dirty error
[  388.677386][ T9428] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  388.956744][ T9428] EXT4-fs (loop2): 1 truncate cleaned up
[  389.162209][ T9428] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  389.568317][ T4348] Quota error (device loop2): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  389.570790][ T9428] ext4 filesystem being mounted at /root/syzkaller-testdir1381073747/syzkaller.XYeUdl/116/file1 supports timestamps until 2038 (0x7fffffff)
[  389.593608][ T4348] EXT4-fs error (device loop2): ext4_release_dquot:6800: comm kworker/u4:11: Failed to release dquot type 1
[  390.074876][ T3690] team0 (unregistering): Port device team_slave_1 removed
[  390.096964][ T3690] team0 (unregistering): Port device team_slave_0 removed
[  390.112126][ T3690] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  390.136383][ T3690] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  390.260172][ T3690] bond0 (unregistering): Released all slaves
[  390.398529][ T3690] team0 (unregistering): Port device team_slave_1 removed
[  390.417710][ T3690] team0 (unregistering): Port device team_slave_0 removed
[  390.436137][ T3690] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  390.456175][ T3690] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  390.524939][ T3690] bond0 (unregistering): Released all slaves
[  390.578250][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  390.587144][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  390.597677][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  390.606765][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  390.618746][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  390.627636][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  390.636954][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  390.646752][    T7] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  390.660115][ T9293] device veth0_macvtap entered promiscuous mode
[  390.684849][ T9293] device veth1_macvtap entered promiscuous mode
[  390.748635][ T9293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  390.812779][ T9293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.827565][ T9444] loop0: detected capacity change from 0 to 64
[  390.833954][ T9293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  390.858315][ T9293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.880696][ T9293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  390.905967][ T9293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  390.924074][ T9293] batman_adv: batadv0: Interface activated: batadv_slave_0
[  390.935802][ T9339] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  390.948525][ T9339] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  390.996624][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  391.006526][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  391.026686][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  391.159419][ T7875] EXT4-fs (loop2): unmounting filesystem.
[  391.223037][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  391.232251][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  391.241222][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  391.251149][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  391.261806][ T9293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  391.272888][ T9293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  391.283017][ T9293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  391.293626][ T9293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  391.310572][ T9293] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  391.353541][ T9293] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  392.309676][ T9293] batman_adv: batadv0: Interface activated: batadv_slave_1
[  392.341268][ T3899] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  392.361922][ T3899] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  392.533696][ T3899] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  392.545912][ T9293] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  392.559339][ T9293] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  392.568172][ T9293] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  392.598950][ T9464] loop0: detected capacity change from 0 to 512
[  392.605459][ T9293] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  392.639146][ T9464] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  392.740946][ T9464] EXT4-fs error (device loop0): mb_free_blocks:1815: group 0, inode 11: block 64:freeing already freed block (bit 63); block bitmap corrupt.
[  392.756366][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  392.780462][  T102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  392.789720][  T102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  392.792393][ T9464] EXT4-fs (loop0): Remounting filesystem read-only
[  392.804370][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  392.833308][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  392.844301][ T9464] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz-executor.0: invalid indirect mapped block 1 (level 1)
[  392.876461][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  392.887499][ T9464] EXT4-fs (loop0): 1 truncate cleaned up
[  392.955855][ T9464] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  393.188763][ T7964] EXT4-fs (loop0): unmounting filesystem.
[  393.921360][ T9479] tty tty23: ldisc open failed (-12), clearing slot 22
[  393.929021][ T9480] tty tty1: ldisc open failed (-12), clearing slot 0
[  395.142488][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  395.179930][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  395.216092][ T9339] 8021q: adding VLAN 0 to HW filter on device batadv0
[  395.298391][ T3899] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  395.317952][ T3899] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  395.432419][ T9500] loop1: detected capacity change from 0 to 512
[  396.400741][ T9500] EXT4-fs error (device loop1): ext4_do_update_inode:5210: inode #16: comm syz-executor.1: corrupted inode contents
[  396.558982][ T9339] device veth0_vlan entered promiscuous mode
[  396.598435][ T9500] EXT4-fs error (device loop1): ext4_dirty_inode:6072: inode #16: comm syz-executor.1: mark_inode_dirty error
[  396.640272][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  396.658966][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  396.680680][ T9500] EXT4-fs error (device loop1): ext4_do_update_inode:5210: inode #16: comm syz-executor.1: corrupted inode contents
[  396.688744][ T9339] device veth1_vlan entered promiscuous mode
[  397.870229][ T9500] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz-executor.1: mark_inode_dirty error
[  397.904947][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  397.913431][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  397.969985][ T9500] EXT4-fs error (device loop1): ext4_do_update_inode:5210: inode #16: comm syz-executor.1: corrupted inode contents
[  398.010906][ T9500] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  398.059493][ T9500] EXT4-fs error (device loop1): ext4_do_update_inode:5210: inode #16: comm syz-executor.1: corrupted inode contents
[  398.098849][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  398.120394][ T9500] EXT4-fs error (device loop1): ext4_truncate:4300: inode #16: comm syz-executor.1: mark_inode_dirty error
[  398.121438][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  398.148167][ T9500] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  398.172168][   T27] audit: type=1326 audit(1718649669.777:1682): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9518 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faab447cf29 code=0x0
[  398.198320][ T9339] device veth0_macvtap entered promiscuous mode
[  398.206499][ T9500] EXT4-fs (loop1): 1 truncate cleaned up
[  398.212350][ T9500] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  398.223491][ T4974] Quota error (device loop1): do_check_range: Getting dqdh_entries 15 out of range 0-14
[  398.238841][ T4974] EXT4-fs error (device loop1): ext4_release_dquot:6800: comm kworker/u4:20: Failed to release dquot type 1
[  398.245352][ T9339] device veth1_macvtap entered promiscuous mode
[  398.257023][ T9500] ext4 filesystem being mounted at /root/syzkaller-testdir3931145161/syzkaller.w9nl0m/1/file1 supports timestamps until 2038 (0x7fffffff)
[  398.354217][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.392301][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.412513][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.431795][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.442243][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.453763][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.491465][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  398.518838][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.557802][ T9339] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.570505][ T9293] EXT4-fs (loop1): unmounting filesystem.
[  398.582566][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  398.600513][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  398.620010][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  398.631532][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  398.660452][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.703699][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.739121][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.778226][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.798504][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.819331][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.840034][ T9339] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  398.861124][ T9339] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.901740][ T9339] batman_adv: batadv0: Interface activated: batadv_slave_1
[  398.912995][ T3899] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  398.921902][ T3899] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  398.957837][ T9339] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  398.995158][ T3586] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  399.008494][ T3586] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  399.017655][ T3586] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  399.023321][ T9339] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  399.038268][ T3583] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  399.046068][ T3583] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  399.053511][ T3583] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  399.107129][ T9339] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  399.116039][ T9339] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  399.207913][ T9536] loop2: detected capacity change from 0 to 64
[  399.549708][ T3931] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  399.602755][ T3931] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  400.258814][ T4974] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  400.482956][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  400.528715][ T4974] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  400.636986][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  400.776989][ T9532] chnl_net:caif_netlink_parms(): no params data found
[  401.003952][ T9562] tmpfs: Bad value for 'uid'
[  401.051978][ T9532] bridge0: port 1(bridge_slave_0) entered blocking state
[  401.083235][ T9532] bridge0: port 1(bridge_slave_0) entered disabled state
[  401.091192][ T3583] Bluetooth: hci1: command tx timeout
[  401.140903][ T9532] device bridge_slave_0 entered promiscuous mode
[  401.289544][ T9564] device syzkaller0 entered promiscuous mode
[  401.324198][ T9532] bridge0: port 2(bridge_slave_1) entered blocking state
[  401.334080][ T9532] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.380877][ T9532] device bridge_slave_1 entered promiscuous mode
[  401.442527][ T9532] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  401.471757][ T9564] loop3: detected capacity change from 0 to 2048
[  401.506304][ T9532] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  401.534680][ T9564] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[  401.565318][ T9564] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  401.603537][   T27] audit: type=1326 audit(1718649673.217:1683): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9576 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faab447cf29 code=0x0
[  401.667558][ T9532] team0: Port device team_slave_0 added
[  401.667724][   T27] audit: type=1326 audit(1718649673.217:1684): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9563 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5d6687cf29 code=0x0
[  401.673815][ T9581] loop1: detected capacity change from 0 to 64
[  401.685083][ T9532] team0: Port device team_slave_1 added
[  401.802284][ T9532] batman_adv: batadv0: Adding interface: batadv_slave_0
[  401.813598][ T9532] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  401.922354][ T9532] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  402.112518][ T9532] batman_adv: batadv0: Adding interface: batadv_slave_1
[  402.138567][ T9532] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  402.904806][ T9532] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  403.149302][ T9532] device hsr_slave_0 entered promiscuous mode
[  403.172746][ T3583] Bluetooth: hci1: command tx timeout
[  403.209251][ T9532] device hsr_slave_1 entered promiscuous mode
[  403.236632][ T9532] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  403.258913][ T9532] Cannot create hsr debugfs directory
[  406.348392][ T3582] Bluetooth: hci1: command tx timeout
[  406.401640][   T27] audit: type=1326 audit(1718649678.007:1685): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9616 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5d6687cf29 code=0x0
[  406.987304][ T9532] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.041223][ T9634] device syzkaller0 entered promiscuous mode
[  407.151435][ T9532] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.231912][ T9635] loop0: detected capacity change from 0 to 2048
[  407.274547][ T9532] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.296447][ T9635] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  407.330224][ T9635] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  407.383933][ T9532] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.413042][ T9640] loop2: detected capacity change from 0 to 256
[  407.420457][ T9640] exfat: Deprecated parameter 'namecase'
[  407.427718][   T27] audit: type=1326 audit(1718649679.037:1686): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9631 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x0
[  407.491239][ T9640] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x6ff59669, utbl_chksum : 0xe619d30d)
[  407.838718][ T9532] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  407.882514][ T9532] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  407.901300][ T9650] loop3: detected capacity change from 0 to 512
[  407.937815][ T9532] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  407.957543][ T9532] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  407.971044][ T9650] EXT4-fs (loop3): external journal device major/minor numbers have changed
[  408.039596][ T9650] EXT4-fs (loop3): failed to open journal device unknown-block(8,1) -16
[  408.144891][ T3931] device hsr_slave_0 left promiscuous mode
[  408.163515][ T3931] device hsr_slave_1 left promiscuous mode
[  408.186615][ T3931] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  408.359127][ T3931] batman_adv: batadv0: Removing interface: batadv_slave_0
[  408.366973][ T3582] Bluetooth: hci1: command tx timeout
[  408.383210][ T3931] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  408.390765][ T3931] batman_adv: batadv0: Removing interface: batadv_slave_1
[  408.486957][ T3931] device bridge_slave_1 left promiscuous mode
[  408.521484][ T3931] bridge0: port 2(bridge_slave_1) entered disabled state
[  408.698553][ T3931] device bridge_slave_0 left promiscuous mode
[  408.734996][ T3931] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.847686][ T3931] device veth1_macvtap left promiscuous mode
[  408.887626][ T3931] device veth0_macvtap left promiscuous mode
[  408.923382][ T3931] device veth1_vlan left promiscuous mode
[  408.957823][ T3931] device veth0_vlan left promiscuous mode
[  409.993563][   T27] audit: type=1326 audit(1718649681.607:1687): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9657 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x7fc00000
[  410.102097][ T9678] loop1: detected capacity change from 0 to 4096
[  410.110138][ T9678] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  410.126518][ T9678] ntfs3: loop1: Failed to load $MFT.
[  410.176656][   T27] audit: type=1326 audit(1718649681.787:1688): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9657 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x7fc00000
[  410.272507][ T9681] loop1: detected capacity change from 0 to 256
[  410.282508][ T9681] exfat: Deprecated parameter 'namecase'
[  410.313939][ T9681] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x6ff59669, utbl_chksum : 0xe619d30d)
[  410.389479][ T3931] team0 (unregistering): Port device team_slave_1 removed
[  410.422926][ T3931] team0 (unregistering): Port device team_slave_0 removed
[  410.470735][ T3931] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  410.497856][ T3931] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  410.601796][ T3931] bond0 (unregistering): Released all slaves
[  410.781914][ T9691] loop1: detected capacity change from 0 to 2048
[  410.799803][ T9691] UDF-fs: error (device loop1): udf_process_sequence: Primary Volume Descriptor not found!
[  410.859337][ T9691] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  410.870315][ T9532] 8021q: adding VLAN 0 to HW filter on device bond0
[  410.898518][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  410.907176][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  410.929655][ T9532] 8021q: adding VLAN 0 to HW filter on device team0
[  410.964066][   T27] audit: type=1326 audit(1718649682.577:1689): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9686 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f479047cf29 code=0x0
[  410.979673][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  411.027089][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  411.050660][ T3615] bridge0: port 1(bridge_slave_0) entered blocking state
[  411.057863][ T3615] bridge0: port 1(bridge_slave_0) entered forwarding state
[  411.075432][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  411.091355][   T27] audit: type=1326 audit(1718649682.697:1690): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9703 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f5d6687cf29 code=0x0
[  411.092951][ T3615] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  411.123853][ T3615] bridge0: port 2(bridge_slave_1) entered blocking state
[  411.131028][ T3615] bridge0: port 2(bridge_slave_1) entered forwarding state
[  411.150546][ T4797] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  411.158833][ T4797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  411.167849][ T4797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  411.182026][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  411.320893][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  411.341910][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  411.371790][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  411.499524][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  411.513498][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  411.523609][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  412.079531][ T9713] loop0: detected capacity change from 0 to 4096
[  412.210052][ T9713] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  412.469548][ T9532] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  412.502996][ T9713] ntfs3: loop0: Failed to load $MFT.
[  412.528835][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  412.543770][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  412.928972][ T9723] loop1: detected capacity change from 0 to 4096
[  413.177119][ T9723] ntfs3: loop1: Different NTFS' sector size (2048) and media sector size (512)
[  413.771661][ T9723] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  413.972996][   T11] ntfs3: loop1: ntfs3_write_inode r=5 failed, -22.
[  414.011252][ T9293] ntfs3: loop1: ntfs_evict_inode r=5 failed, -22.
[  414.083472][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  414.091810][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  414.119007][ T9532] 8021q: adding VLAN 0 to HW filter on device batadv0
[  414.215559][   T27] audit: type=1326 audit(1718649685.827:1691): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9747 comm="syz-executor.0" exe="/root/syz-executor.0" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x0
[  415.364059][ T9761] loop1: detected capacity change from 0 to 4096
[  415.374550][ T9761] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  415.691171][ T9768] loop0: detected capacity change from 0 to 512
[  415.766241][ T9768] EXT4-fs (loop0): external journal device major/minor numbers have changed
[  415.814341][ T9768] EXT4-fs (loop0): failed to open journal device unknown-block(8,1) -16
[  415.855241][ T9761] ntfs3: loop1: Failed to load $MFT.
[  415.902484][ T9774] loop2: detected capacity change from 0 to 64
[  417.137281][ T9780] loop3: detected capacity change from 0 to 4096
[  417.157113][ T9780] ntfs3: loop3: Different NTFS' sector size (2048) and media sector size (512)
[  417.189826][ T9780] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  417.199646][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  417.229315][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  417.323725][ T9795] loop0: detected capacity change from 0 to 256
[  417.329642][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  417.345479][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  417.354537][ T9795] exfat: Deprecated parameter 'namecase'
[  417.383477][ T9532] device veth0_vlan entered promiscuous mode
[  417.407046][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  417.423083][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  417.434388][ T9795] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x6ff59669, utbl_chksum : 0xe619d30d)
[  417.449334][ T4971] ntfs3: loop3: ntfs3_write_inode r=5 failed, -22.
[  417.468938][ T9532] device veth1_vlan entered promiscuous mode
[  417.491773][ T9339] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22.
[  417.557740][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  417.571465][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  417.600396][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  417.629465][ T3564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  417.669244][ T9532] device veth0_macvtap entered promiscuous mode
[  417.695100][ T9532] device veth1_macvtap entered promiscuous mode
[  417.721467][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  417.970402][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  417.987812][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  417.989853][ T9807] loop2: detected capacity change from 0 to 512
[  417.998518][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.040874][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.069289][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.095538][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  419.126041][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  419.151887][ T9532] batman_adv: batadv0: Interface activated: batadv_slave_0
[  421.477666][ T9811] tty tty21: ldisc open failed (-12), clearing slot 20
[  421.486417][ T9812] tty tty1: ldisc open failed (-12), clearing slot 0
[  421.583024][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  421.620414][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  421.667310][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  421.704753][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  421.747165][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.784639][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.812028][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.842166][ T9818] loop3: detected capacity change from 0 to 4096
[  421.864768][ T9818] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[  421.881856][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.912864][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  421.942746][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  421.970697][ T9532] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  422.034735][ T9532] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.045472][ T9818] ntfs3: loop3: Failed to load $MFT.
[  422.054905][ T9532] batman_adv: batadv0: Interface activated: batadv_slave_1
[  422.066308][ T9532] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  422.083782][ T9532] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  422.112353][ T9532] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  422.271400][ T9532] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  422.925246][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  422.936995][ T9835] loop1: detected capacity change from 0 to 256
[  422.940155][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  422.946022][ T9835] exfat: Deprecated parameter 'namecase'
[  422.969878][ T9835] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x6ff59669, utbl_chksum : 0xe619d30d)
[  423.422980][ T3583] Bluetooth: hci4: command 0x0406 tx timeout
[  424.363080][ T4971] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  424.380408][ T4971] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  424.458835][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  424.488842][ T4974] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  424.531418][ T4974] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  424.582210][ T3625] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  425.304003][ T9841] loop2: detected capacity change from 0 to 40427
[  425.346873][ T9841] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  425.366202][ T9841] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  425.394695][   T27] audit: type=1326 audit(1718649697.007:1692): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9869 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f479047cf29 code=0x0
[  425.443299][ T3931] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  425.489574][ T9841] F2FS-fs (loop2): Found nat_bits in checkpoint
[  425.528438][ T9871] loop0: detected capacity change from 0 to 4096
[  425.546091][ T9871] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  425.586067][ T3931] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  425.631783][ T9841] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  425.660623][ T9871] ntfs3: loop0: Failed to load $MFT.
[  425.682289][ T9841] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  425.695410][ T9841] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  425.754363][ T9841] syz-executor.2: attempt to access beyond end of device
[  425.754363][ T9841] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  425.757765][ T3931] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  425.891354][ T3931] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  426.141614][ T9883] netlink: 'syz-executor.0': attribute type 32 has an invalid length.
[  426.305342][ T9885] loop1: detected capacity change from 0 to 64
[  426.353564][ T3586] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  426.366624][ T3586] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  426.377965][ T3586] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  426.387036][ T3586] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  426.394825][ T3586] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  426.402159][ T3586] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  426.441250][ T9889] loop0: detected capacity change from 0 to 1024
[  426.764473][ T3583] Bluetooth: hci2: command 0x0406 tx timeout
[  427.711307][ T9886] chnl_net:caif_netlink_parms(): no params data found
[  427.913207][ T9886] bridge0: port 1(bridge_slave_0) entered blocking state
[  427.920435][ T9886] bridge0: port 1(bridge_slave_0) entered disabled state
[  427.930340][ T9886] device bridge_slave_0 entered promiscuous mode
[  427.940640][ T9886] bridge0: port 2(bridge_slave_1) entered blocking state
[  427.947958][ T9886] bridge0: port 2(bridge_slave_1) entered disabled state
[  427.963865][ T9886] device bridge_slave_1 entered promiscuous mode
[  428.055093][   T27] audit: type=1326 audit(1718649699.667:1693): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9908 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faab447cf29 code=0x7fc00000
[  428.157502][ T9886] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  428.169042][ T9924] netlink: 'syz-executor.3': attribute type 32 has an invalid length.
[  428.185558][ T9886] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  428.301010][ T9928] loop3: detected capacity change from 0 to 64
[  428.332317][ T9886] team0: Port device team_slave_0 added
[  428.352023][ T3931] device hsr_slave_0 left promiscuous mode
[  428.389424][ T3931] device hsr_slave_1 left promiscuous mode
[  428.399580][ T3931] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  428.421804][ T3931] batman_adv: batadv0: Removing interface: batadv_slave_0
[  428.452800][ T3586] Bluetooth: hci1: command tx timeout
[  428.463668][ T3931] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  428.471127][ T3931] batman_adv: batadv0: Removing interface: batadv_slave_1
[  428.492505][ T3931] device bridge_slave_1 left promiscuous mode
[  428.499086][ T3931] bridge0: port 2(bridge_slave_1) entered disabled state
[  428.643112][ T3931] device bridge_slave_0 left promiscuous mode
[  428.651794][ T3931] bridge0: port 1(bridge_slave_0) entered disabled state
[  428.677172][ T3931] device veth1_macvtap left promiscuous mode
[  428.690857][ T3931] device veth0_macvtap left promiscuous mode
[  428.701647][ T3931] device veth1_vlan left promiscuous mode
[  428.706401][ T9914] loop0: detected capacity change from 0 to 40427
[  428.709892][ T3931] device veth0_vlan left promiscuous mode
[  428.719371][ T9914] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  428.727955][ T9914] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  429.113073][   T27] audit: type=1326 audit(1718649700.397:1694): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9908 comm="syz-executor.2" exe="/root/syz-executor.2" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faab447cf29 code=0x7fc00000
[  429.471410][ T9914] F2FS-fs (loop0): Found nat_bits in checkpoint
[  429.630053][ T9943] loop3: detected capacity change from 0 to 1024
[  429.649107][ T9914] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  429.724439][ T9914] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  429.731538][ T9914] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  429.807366][ T9914] syz-executor.0: attempt to access beyond end of device
[  429.807366][ T9914] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  430.857860][ T3931] team0 (unregistering): Port device team_slave_1 removed
[  430.863595][ T3586] Bluetooth: hci1: command tx timeout
[  430.887626][ T3931] team0 (unregistering): Port device team_slave_0 removed
[  430.908171][ T3931] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  430.931057][ T3931] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  431.078627][ T3931] bond0 (unregistering): Released all slaves
[  431.160444][ T9886] team0: Port device team_slave_1 added
[  431.364329][ T9969] netlink: 'syz-executor.2': attribute type 32 has an invalid length.
[  431.393179][ T9886] batman_adv: batadv0: Adding interface: batadv_slave_0
[  431.422812][ T9886] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  431.485290][ T9886] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  431.508534][ T9886] batman_adv: batadv0: Adding interface: batadv_slave_1
[  431.526751][ T9886] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  431.586099][ T9979] loop2: detected capacity change from 0 to 1024
[  431.605072][ T9886] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  431.694111][ T9980] bridge0: port 3(team0) entered blocking state
[  431.715366][ T9980] bridge0: port 3(team0) entered disabled state
[  431.744180][ T9980] device team0 entered promiscuous mode
[  431.765044][ T9980] device team_slave_0 entered promiscuous mode
[  431.793349][ T9980] device team_slave_1 entered promiscuous mode
[  431.826892][ T9980] bridge0: port 3(team0) entered blocking state
[  431.833795][ T9980] bridge0: port 3(team0) entered forwarding state
[  431.978659][ T9886] device hsr_slave_0 entered promiscuous mode
[  432.007410][ T9886] device hsr_slave_1 entered promiscuous mode
[  432.200061][ T9973] loop3: detected capacity change from 0 to 32768
[  432.274747][ T9973] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz-executor.3 (9973)
[  432.345209][ T9973] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  432.405680][ T9973] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  432.807157][ T9973] BTRFS info (device loop3): using free space tree
[  433.127546][ T3586] Bluetooth: hci1: command tx timeout
[  433.442778][ T9973] BTRFS info (device loop3): enabling ssd optimizations
[  433.511174][ T9984] loop0: detected capacity change from 0 to 40427
[  433.534993][ T9984] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  433.555160][ T9984] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  433.583330][ T9339] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  433.619015][T10025] netlink: 'syz-executor.2': attribute type 32 has an invalid length.
[  433.678977][ T9984] F2FS-fs (loop0): Found nat_bits in checkpoint
[  433.822901][ T9984] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  433.868974][ T9984] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  433.876267][ T9984] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  433.986892][ T9984] syz-executor.0: attempt to access beyond end of device
[  433.986892][ T9984] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  434.403533][ T9886] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  434.486037][ T9886] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  434.522967][ T9886] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  434.595333][ T9886] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  435.382544][ T3586] Bluetooth: hci1: command tx timeout
[  435.793082][ T9886] 8021q: adding VLAN 0 to HW filter on device bond0
[  435.862365][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  435.881945][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  435.906292][ T9886] 8021q: adding VLAN 0 to HW filter on device team0
[  435.941249][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  435.960643][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  435.971385][T10068] loop0: detected capacity change from 0 to 64
[  435.990810][ T3620] bridge0: port 1(bridge_slave_0) entered blocking state
[  435.998007][ T3620] bridge0: port 1(bridge_slave_0) entered forwarding state
[  436.039192][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  436.087823][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  436.094298][T10070] loop3: detected capacity change from 0 to 1024
[  436.114658][T10070] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  436.127444][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  436.165749][T10070] jbd2_journal_init_inode: Cannot locate journal superblock
[  436.167424][ T3620] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.180275][ T3620] bridge0: port 2(bridge_slave_1) entered forwarding state
[  436.182811][T10070] EXT4-fs (loop3): Could not load journal inode
[  436.228494][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  436.259215][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  436.316989][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  436.345055][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  436.384059][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  436.410619][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  436.446270][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  436.477363][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  436.524591][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  436.562824][T10059] loop2: detected capacity change from 0 to 32768
[  436.563487][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  436.583477][T10059] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz-executor.2 (10059)
[  436.597174][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  436.628552][T10062] loop1: detected capacity change from 0 to 32768
[  436.638815][ T9886] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  436.658224][T10059] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  436.687798][T10059] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm
[  436.741956][T10059] BTRFS info (device loop2): using free space tree
[  437.084584][T10059] BTRFS info (device loop2): enabling ssd optimizations
[  437.131483][T10072] loop0: detected capacity change from 0 to 40427
[  437.144519][T10072] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  437.152298][T10072] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  437.182911][T10072] F2FS-fs (loop0): Found nat_bits in checkpoint
[  437.200747][ T7875] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  437.392330][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  437.395215][T10072] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  437.420223][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  437.446412][ T9886] 8021q: adding VLAN 0 to HW filter on device batadv0
[  437.467371][T10072] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  437.480663][T10072] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  438.780764][T10128] loop1: detected capacity change from 0 to 1024
[  438.838407][T10128] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  438.889356][T10128] jbd2_journal_init_inode: Cannot locate journal superblock
[  438.942759][T10128] EXT4-fs (loop1): Could not load journal inode
[  439.205632][T10140] loop0: detected capacity change from 0 to 64
[  439.317810][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  439.349009][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  439.403444][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  439.411967][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  439.434474][ T9886] device veth0_vlan entered promiscuous mode
[  439.443071][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  439.451684][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  439.467797][ T9886] device veth1_vlan entered promiscuous mode
[  439.520379][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  439.531778][T10158] loop0: detected capacity change from 0 to 512
[  439.543330][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  439.551580][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  439.561328][T10158] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  439.573528][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  439.585180][ T9886] device veth0_macvtap entered promiscuous mode
[  439.609831][ T9886] device veth1_macvtap entered promiscuous mode
[  439.648594][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  439.660355][T10158] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  439.669585][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.678559][T10158] ext4 filesystem being mounted at /root/syzkaller-testdir4138856280/syzkaller.LvcKOJ/161/file0 supports timestamps until 2038 (0x7fffffff)
[  439.679544][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  439.705139][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.715049][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  439.725643][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.736398][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  439.746916][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.758475][ T9886] batman_adv: batadv0: Interface activated: batadv_slave_0
[  439.766355][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  439.774992][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  439.783544][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  439.793312][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  439.804285][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  439.815960][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.826290][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  439.845453][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.865566][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  439.898087][T10165] loop1: detected capacity change from 0 to 1024
[  439.902298][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.920200][ T9886] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  439.936516][ T9886] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  439.952178][ T7964] EXT4-fs (loop0): unmounting filesystem.
[  439.974590][ T9886] batman_adv: batadv0: Interface activated: batadv_slave_1
[  439.998142][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  440.008271][T10146] loop2: detected capacity change from 0 to 32768
[  440.018239][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  440.038980][ T9886] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  440.053049][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[  440.059383][ T1255] ieee802154 phy1 wpan1: encryption failed: -22
[  440.080552][ T9886] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  440.090351][ T9886] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  440.100292][ T9886] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  440.158200][ T4959] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  440.188397][ T4959] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  440.269181][T10174] loop3: detected capacity change from 0 to 1024
[  441.832761][ T4968] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  441.852094][T10174] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  441.886348][ T4968] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  441.904909][T10174] jbd2_journal_init_inode: Cannot locate journal superblock
[  441.935523][T10174] EXT4-fs (loop3): Could not load journal inode
[  442.164903][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  442.187409][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  442.196420][T10185] loop0: detected capacity change from 0 to 64
[  442.538370][T10200] loop1: detected capacity change from 0 to 512
[  442.562846][T10200] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  442.618583][T10200] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  442.628196][T10200] ext4 filesystem being mounted at /root/syzkaller-testdir3931145161/syzkaller.w9nl0m/55/file0 supports timestamps until 2038 (0x7fffffff)
[  442.684341][ T9293] EXT4-fs (loop1): unmounting filesystem.
[  443.776959][T10220] loop1: detected capacity change from 0 to 64
[  443.903557][T10224] loop2: detected capacity change from 0 to 1024
[  443.912484][T10224] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  443.989106][T10224] jbd2_journal_init_inode: Cannot locate journal superblock
[  444.000829][T10224] EXT4-fs (loop2): Could not load journal inode
[  444.805473][T10180] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.030242][T10180] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.142849][T10180] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  445.260111][T10180] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  446.364693][T10262] loop2: detected capacity change from 0 to 64
[  446.571977][ T3583] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  446.587077][   T27] audit: type=1326 audit(1718649718.187:1695): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10269 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faab447cf29 code=0x0
[  446.617254][ T3583] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  446.653072][ T3583] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  446.661118][ T3583] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  446.668866][ T3582] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  446.684427][ T3583] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  446.702974][T10273] loop0: detected capacity change from 0 to 1024
[  446.711434][T10273] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  446.730640][T10273] jbd2_journal_init_inode: Cannot locate journal superblock
[  446.738798][T10273] EXT4-fs (loop0): Could not load journal inode
[  448.067479][T10266] chnl_net:caif_netlink_parms(): no params data found
[  448.844083][ T3583] Bluetooth: hci1: command tx timeout
[  449.182474][T10311] loop2: detected capacity change from 0 to 512
[  449.192016][T10311] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  449.288567][T10311] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  449.335739][T10311] ext4 filesystem being mounted at /root/syzkaller-testdir1381073747/syzkaller.XYeUdl/187/file0 supports timestamps until 2038 (0x7fffffff)
[  449.361809][T10266] bridge0: port 1(bridge_slave_0) entered blocking state
[  449.382026][T10266] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.411576][T10266] device bridge_slave_0 entered promiscuous mode
[  449.483645][ T7875] EXT4-fs (loop2): unmounting filesystem.
[  449.499447][T10266] bridge0: port 2(bridge_slave_1) entered blocking state
[  449.521798][T10266] bridge0: port 2(bridge_slave_1) entered disabled state
[  449.558508][T10266] device bridge_slave_1 entered promiscuous mode
[  449.569876][T10324] loop1: detected capacity change from 0 to 1024
[  449.651899][T10266] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  449.669781][T10324] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869)
[  449.708269][T10324] jbd2_journal_init_inode: Cannot locate journal superblock
[  449.749640][T10266] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  449.760894][   T27] audit: type=1326 audit(1718649721.357:1696): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10328 comm="syz-executor.2" exe="/root/syz-executor.2" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7faab447cf29 code=0x0
[  449.786057][T10324] EXT4-fs (loop1): Could not load journal inode
[  450.648454][T10266] team0: Port device team_slave_0 added
[  450.748259][T10180] device hsr_slave_0 left promiscuous mode
[  450.771850][T10180] device hsr_slave_1 left promiscuous mode
[  450.798303][T10180] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  450.842725][T10180] batman_adv: batadv0: Removing interface: batadv_slave_0
[  450.895276][T10180] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  450.917492][T10180] batman_adv: batadv0: Removing interface: batadv_slave_1
[  450.934109][ T3583] Bluetooth: hci1: command tx timeout
[  450.942820][T10180] device bridge_slave_1 left promiscuous mode
[  450.986988][T10180] bridge0: port 2(bridge_slave_1) entered disabled state
[  451.029205][T10180] device bridge_slave_0 left promiscuous mode
[  451.046799][T10180] bridge0: port 1(bridge_slave_0) entered disabled state
[  451.076676][T10180] device veth1_macvtap left promiscuous mode
[  451.093486][T10180] device veth0_macvtap left promiscuous mode
[  451.110173][T10180] device veth1_vlan left promiscuous mode
[  451.661016][T10180] device veth0_vlan left promiscuous mode
[  452.119206][T10355] loop3: detected capacity change from 0 to 512
[  452.155073][T10355] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  452.235171][T10355] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  452.262763][T10355] ext4 filesystem being mounted at /root/syzkaller-testdir1214780166/syzkaller.u8hoF6/63/file0 supports timestamps until 2038 (0x7fffffff)
[  452.435597][ T9339] EXT4-fs (loop3): unmounting filesystem.
[  452.699652][T10180] team0 (unregistering): Port device team_slave_1 removed
[  452.741239][T10180] team0 (unregistering): Port device team_slave_0 removed
[  452.762813][T10180] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  452.806286][T10180] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  452.919616][T10180] bond0 (unregistering): Released all slaves
[  452.969987][T10266] team0: Port device team_slave_1 added
[  453.012879][ T3583] Bluetooth: hci1: command tx timeout
[  453.026528][T10357] bridge0: port 3(team0) entered blocking state
[  453.040955][T10357] bridge0: port 3(team0) entered disabled state
[  453.052721][T10357] device team0 entered promiscuous mode
[  453.058464][T10357] device team_slave_0 entered promiscuous mode
[  453.073699][T10357] device team_slave_1 entered promiscuous mode
[  453.081342][T10357] bridge0: port 3(team0) entered blocking state
[  453.087746][T10357] bridge0: port 3(team0) entered forwarding state
[  453.218905][T10266] batman_adv: batadv0: Adding interface: batadv_slave_0
[  453.282712][T10266] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  454.201143][T10266] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  454.306983][T10266] batman_adv: batadv0: Adding interface: batadv_slave_1
[  454.320344][T10266] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  454.380540][T10266] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  455.082945][ T3583] Bluetooth: hci1: command tx timeout
[  455.388736][T10266] device hsr_slave_0 entered promiscuous mode
[  455.459059][T10266] device hsr_slave_1 entered promiscuous mode
[  455.825488][T10416] netlink: 20 bytes leftover after parsing attributes in process `syz-executor.3'.
[  455.860726][ T6213] usb 3-1: new high-speed USB device number 25 using dummy_hcd
[  456.149880][T10420] loop3: detected capacity change from 0 to 4096
[  456.235846][T10425] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  457.212783][ T6213] usb 3-1: config 0 has an invalid interface number: 4 but max is 0
[  457.227200][ T6213] usb 3-1: config 0 has no interface number 0
[  457.238013][ T6213] usb 3-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  457.286908][ T6213] usb 3-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  457.305284][ T6213] usb 3-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  457.316449][ T6213] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  457.837856][ T6213] usb 3-1: config 0 descriptor??
[  458.401509][T10266] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  458.434251][T10266] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  458.467504][T10266] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  458.489432][T10266] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  458.648145][ T6213] magicmouse 0003:05AC:0269.000F: hidraw0: USB HID v0.00 Device [HID 05ac:0269] on usb-dummy_hcd.2-1/input4
[  458.777217][T10266] 8021q: adding VLAN 0 to HW filter on device bond0
[  458.836586][ T6213] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  458.853300][ T6213] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  458.853450][ T3591] usb 3-1: USB disconnect, device number 25
[  458.873783][T10266] 8021q: adding VLAN 0 to HW filter on device team0
[  458.895640][ T6213] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  458.912079][ T6213] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  458.946296][ T6213] bridge0: port 1(bridge_slave_0) entered blocking state
[  458.953455][ T6213] bridge0: port 1(bridge_slave_0) entered forwarding state
[  458.998798][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  459.009065][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  459.023315][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  459.044415][ T4802] bridge0: port 2(bridge_slave_1) entered blocking state
[  459.051634][ T4802] bridge0: port 2(bridge_slave_1) entered forwarding state
[  459.064261][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  459.107830][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  459.143290][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  459.180605][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  459.194226][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  459.211000][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  459.239085][T10266] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  459.312804][T10266] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  459.355518][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  459.374004][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  459.399028][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  459.433750][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  459.443710][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  459.466584][ T4802] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  459.759936][T10473] program syz-executor.3 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  460.315309][T10470] loop0: detected capacity change from 0 to 4096
[  460.666899][T10479] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  461.753836][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  461.761373][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  461.774724][T10266] 8021q: adding VLAN 0 to HW filter on device batadv0
[  461.895064][T10491] binder: 10490:10491 ioctl c018620c 20000600 returned -1
[  462.312777][ T4096] usb 1-1: new high-speed USB device number 13 using dummy_hcd
[  462.685125][ T4096] usb 1-1: config 0 has an invalid interface number: 4 but max is 0
[  463.095191][ T4096] usb 1-1: config 0 has no interface number 0
[  463.713118][ T4096] usb 1-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  463.795566][ T4096] usb 1-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  463.826228][ T4096] usb 1-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  463.878863][ T4096] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  463.896247][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  463.905472][ T4096] usb 1-1: config 0 descriptor??
[  463.911374][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  463.930644][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  463.940839][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  463.952704][ T4657] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  463.960928][ T4657] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  464.394341][T10266] device veth0_vlan entered promiscuous mode
[  464.621813][T10266] device veth1_vlan entered promiscuous mode
[  464.907129][ T4096] magicmouse 0003:05AC:0269.0010: hidraw0: USB HID v0.00 Device [HID 05ac:0269] on usb-dummy_hcd.0-1/input4
[  464.914166][T10525] loop1: detected capacity change from 0 to 4096
[  464.963200][T10531] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  464.978368][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  464.989343][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  465.010887][T10266] device veth0_macvtap entered promiscuous mode
[  465.037432][T10266] device veth1_macvtap entered promiscuous mode
[  465.100976][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  465.127616][ T3620] usb 1-1: USB disconnect, device number 13
[  465.129032][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.160606][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  465.191707][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.210688][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  465.231548][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.252127][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  465.273039][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.285164][T10541] binder: 10539:10541 ioctl c018620c 20000600 returned -1
[  465.295754][T10266] batman_adv: batadv0: Interface activated: batadv_slave_0
[  465.331527][ T4096] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  465.340853][ T4096] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  465.359853][ T4096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  465.383319][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  465.397984][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.415839][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  465.429204][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.439287][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  465.450154][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.461239][T10266] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  465.477179][T10266] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  465.492450][T10266] batman_adv: batadv0: Interface activated: batadv_slave_1
[  465.501333][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  465.511079][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  465.540630][T10266] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  465.572704][T10266] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  465.581466][T10266] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  465.612621][T10266] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  465.793166][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  465.818377][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  465.853932][ T3931] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  465.862247][ T3931] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  465.879183][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  465.906478][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  467.347005][   T27] audit: type=1326 audit(1718649738.957:1697): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  467.404136][T10180] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  467.448260][   T27] audit: type=1326 audit(1718649738.957:1698): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  467.516547][   T27] audit: type=1326 audit(1718649738.957:1699): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10576 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  468.694303][T10596] loop1: detected capacity change from 0 to 4096
[  468.723644][T10180] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.776214][T10604] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  468.808978][T10180] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  468.969006][T10180] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  469.079926][ T3586] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  469.095477][ T3586] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  469.104338][ T3586] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  469.113742][ T3586] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  469.121569][ T3586] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  469.129118][ T3586] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  469.753310][   T27] audit: type=1326 audit(1718649741.367:1700): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10633 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x7ffc0000
[  469.787628][   T27] audit: type=1326 audit(1718649741.367:1701): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10633 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x7ffc0000
[  469.813249][   T27] audit: type=1326 audit(1718649741.367:1702): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10633 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f432a07cf29 code=0x7ffc0000
[  469.842753][   T27] audit: type=1326 audit(1718649741.367:1703): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10633 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x7ffc0000
[  469.920906][T10616] chnl_net:caif_netlink_parms(): no params data found
[  469.924038][   T27] audit: type=1326 audit(1718649741.367:1704): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10633 comm="syz-executor.0" exe="/root/syz-executor.0" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f432a07cf29 code=0x7ffc0000
[  471.066374][T10661] loop0: detected capacity change from 0 to 1024
[  471.104437][T10661] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  471.185182][T10661] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  471.213788][T10616] bridge0: port 1(bridge_slave_0) entered blocking state
[  471.220970][T10616] bridge0: port 1(bridge_slave_0) entered disabled state
[  471.245194][ T3583] Bluetooth: hci1: command tx timeout
[  471.280442][T10616] device bridge_slave_0 entered promiscuous mode
[  471.405080][T10616] bridge0: port 2(bridge_slave_1) entered blocking state
[  471.412316][T10616] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.434797][   T27] audit: type=1326 audit(1718649743.047:1705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10672 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  471.461539][T10674] nbd: must specify a size in bytes for the device
[  471.476836][ T7964] EXT4-fs (loop0): unmounting filesystem.
[  471.489677][T10616] device bridge_slave_1 entered promiscuous mode
[  471.533375][   T27] audit: type=1326 audit(1718649743.047:1706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10672 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  471.604991][T10616] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  471.673645][T10180] device hsr_slave_0 left promiscuous mode
[  471.699897][T10180] device hsr_slave_1 left promiscuous mode
[  471.714848][T10180] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  471.732682][T10180] batman_adv: batadv0: Removing interface: batadv_slave_0
[  471.754806][T10180] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  471.762261][T10180] batman_adv: batadv0: Removing interface: batadv_slave_1
[  471.789111][T10180] device bridge_slave_1 left promiscuous mode
[  471.807484][T10180] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.831575][T10654] loop3: detected capacity change from 0 to 32768
[  471.854186][T10180] device bridge_slave_0 left promiscuous mode
[  471.868701][T10180] bridge0: port 1(bridge_slave_0) entered disabled state
[  471.912591][T10180] device veth1_macvtap left promiscuous mode
[  471.936308][T10180] device veth0_macvtap left promiscuous mode
[  471.954770][T10180] device veth1_vlan left promiscuous mode
[  471.960864][T10180] device veth0_vlan left promiscuous mode
[  471.970808][T10654] XFS (loop3): Mounting V5 Filesystem
[  472.014965][T10654] XFS (loop3): Ending clean mount
[  472.039546][T10694] EXT4-fs warning (device sda1): verify_group_input:151: Cannot add at group 63 (only 8 groups)
[  472.092655][  T153] usb 3-1: new high-speed USB device number 26 using dummy_hcd
[  472.319232][ T9339] XFS (loop3): Unmounting Filesystem
[  472.342144][T10180] team0 (unregistering): Port device team_slave_1 removed
[  472.356517][  T153] usb 3-1: Using ep0 maxpacket: 8
[  472.436757][T10180] team0 (unregistering): Port device team_slave_0 removed
[  472.479840][T10180] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.512953][  T153] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  472.528524][  T153] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  472.543579][  T153] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[  472.573276][T10180] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.734900][  T153] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  472.760496][  T153] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  472.788037][  T153] usb 3-1: Product: syz
[  472.792262][  T153] usb 3-1: Manufacturer: syz
[  472.805446][T10180] bond0 (unregistering): Released all slaves
[  472.822758][  T153] usb 3-1: SerialNumber: syz
[  472.878198][  T153] cdc_ncm 3-1:1.0: skipping garbage
[  472.886450][  T153] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found
[  472.897739][  T153] cdc_ncm 3-1:1.0: bind() failure
[  472.905538][T10616] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  472.920647][T10699] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  473.101900][  T153] usb 3-1: USB disconnect, device number 26
[  473.115495][T10710] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[  473.131275][T10616] team0: Port device team_slave_0 added
[  473.154179][T10616] team0: Port device team_slave_1 added
[  473.217481][T10713] loop3: detected capacity change from 0 to 1024
[  473.237691][   T27] kauditd_printk_skb: 2 callbacks suppressed
[  473.237708][   T27] audit: type=1326 audit(1718649744.847:1709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  473.246136][T10713] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  473.267001][    C1] vkms_vblank_simulate: vblank timer overrun
[  473.287683][T10616] batman_adv: batadv0: Adding interface: batadv_slave_0
[  473.303824][T10713] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback.
[  473.312993][T10616] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  473.341130][T10616] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  473.343153][ T3583] Bluetooth: hci1: command tx timeout
[  473.354208][T10616] batman_adv: batadv0: Adding interface: batadv_slave_1
[  473.403462][   T27] audit: type=1326 audit(1718649744.917:1710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=82 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  473.409296][T10616] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  473.469821][T10616] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  473.493355][   T27] audit: type=1326 audit(1718649744.917:1711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10714 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f479047cf29 code=0x7ffc0000
[  473.493819][ T9339] EXT4-fs (loop3): unmounting filesystem.
[  473.516311][    C1] vkms_vblank_simulate: vblank timer overrun
[  473.586028][T10616] device hsr_slave_0 entered promiscuous mode
[  473.617477][T10616] device hsr_slave_1 entered promiscuous mode
[  473.870066][T10734] loop3: detected capacity change from 0 to 2048
[  473.959334][T10734] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  474.016444][T10734] syz-executor.3: attempt to access beyond end of device
[  474.016444][T10734] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[  474.034781][T10746] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  474.387313][   T27] audit: type=1800 audit(1718649746.007:1712): pid=10759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1945 res=0 errno=0
[  474.461005][T10759] loop0: detected capacity change from 0 to 256
[  474.467537][   T27] audit: type=1800 audit(1718649746.007:1713): pid=10759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1945 res=0 errno=0
[  474.479318][T10756] loop2: detected capacity change from 0 to 4096
[  474.551638][   T27] audit: type=1800 audit(1718649746.027:1714): pid=10759 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="sda1" ino=1945 res=0 errno=0
[  474.555896][T10759] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x21b487da, utbl_chksum : 0xe619d30d)
[  474.617735][T10768] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  474.645484][T10616] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  474.689384][T10616] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  474.708287][T10616] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  474.756217][T10616] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  474.943182][T10616] 8021q: adding VLAN 0 to HW filter on device bond0
[  474.974403][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  474.994585][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  475.017088][T10616] 8021q: adding VLAN 0 to HW filter on device team0
[  475.043044][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  475.058970][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  475.088121][ T3616] bridge0: port 1(bridge_slave_0) entered blocking state
[  475.095326][ T3616] bridge0: port 1(bridge_slave_0) entered forwarding state
[  475.142850][ T4657] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  475.151006][ T4657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  475.180282][ T4657] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  475.205477][ T4657] bridge0: port 2(bridge_slave_1) entered blocking state
[  475.212687][ T4657] bridge0: port 2(bridge_slave_1) entered forwarding state
[  475.245391][T10766] loop1: detected capacity change from 0 to 32768
[  475.247410][ T4657] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  475.274894][   T27] audit: type=1800 audit(1718649746.887:1715): pid=10766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=7 res=0 errno=0
[  475.283410][ T4657] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  475.335046][T10772] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  475.385138][   T27] audit: type=1800 audit(1718649746.917:1716): pid=10766 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.1" name="bus" dev="loop1" ino=7 res=0 errno=0
[  475.412920][ T3583] Bluetooth: hci1: command tx timeout
[  475.485457][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  475.505487][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  475.545621][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  475.586886][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  475.638602][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  475.703822][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  475.736998][T10616] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  476.267425][T10616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  476.503626][T10777] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.0'.
[  476.542672][T10777] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.0'.
[  476.597472][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  476.633920][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  476.703249][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  477.178173][ T3620] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  477.346806][T10806] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  477.356784][T10806] FAT-fs (loop5): unable to read boot sector
[  477.482642][ T3583] Bluetooth: hci1: command tx timeout
[  477.643333][ T3620] usb 2-1: config 0 has an invalid interface number: 4 but max is 0
[  477.697487][ T3620] usb 2-1: config 0 has no interface number 0
[  478.034251][T10805] EXT4-fs warning (device sda1): verify_group_input:151: Cannot add at group 63 (only 8 groups)
[  478.062764][ T3620] usb 2-1: config 0 interface 4 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  478.112659][ T3620] usb 2-1: config 0 interface 4 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  478.175365][ T3620] usb 2-1: New USB device found, idVendor=05ac, idProduct=0269, bcdDevice= 0.00
[  478.200863][T10805] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready
[  478.221176][ T3620] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  478.245867][T10810] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.2'.
[  478.287700][ T3620] usb 2-1: config 0 descriptor??
[  478.351392][T10616] 8021q: adding VLAN 0 to HW filter on device batadv0
[  478.374164][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  478.381713][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  478.612622][T10797] loop3: detected capacity change from 0 to 40427
[  478.633184][T10797] F2FS-fs (loop3): Invalid segment count (0)
[  478.639232][T10797] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  478.675064][T10797] F2FS-fs (loop3): invalid crc value
[  478.695426][T10797] F2FS-fs (loop3): Found nat_bits in checkpoint
[  478.814633][ T3620] magicmouse 0003:05AC:0269.0011: hidraw0: USB HID v0.00 Device [HID 05ac:0269] on usb-dummy_hcd.1-1/input4
[  478.876846][T10797] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  478.894833][T10797] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  478.945385][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  478.974956][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  478.997580][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  479.007061][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  479.021892][ T9339] syz-executor.3: attempt to access beyond end of device
[  479.021892][ T9339] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  479.040953][T10616] device veth0_vlan entered promiscuous mode
[  479.053507][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  479.062172][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  479.074854][T10616] device veth1_vlan entered promiscuous mode
[  479.099955][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  479.146697][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  479.197447][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  479.218647][ T3591] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  480.165926][T10616] device veth0_macvtap entered promiscuous mode
[  480.182852][ T3616] usb 2-1: USB disconnect, device number 11
[  480.209371][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  480.221035][T10616] device veth1_macvtap entered promiscuous mode
[  480.242521][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.254625][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.273046][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.303822][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.332970][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.358692][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.364350][T10847] loop1: detected capacity change from 0 to 4096
[  480.375508][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  480.387134][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.404300][T10616] batman_adv: batadv0: Interface activated: batadv_slave_0
[  480.412670][T10849] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.3'.
[  480.424484][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  480.435063][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  480.442266][T10851] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  480.447748][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.465810][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.476325][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.487050][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.499154][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.512486][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.527298][T10616] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  480.539951][T10616] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  480.568334][T10616] batman_adv: batadv0: Interface activated: batadv_slave_1
[  480.572665][ T4797] usb 3-1: new high-speed USB device number 27 using dummy_hcd
[  480.591938][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  480.610881][ T3616] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  480.639707][T10616] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  480.659643][T10616] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  480.670215][T10616] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  480.679241][T10616] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  480.836326][ T4797] usb 3-1: Using ep0 maxpacket: 8
[  480.843589][ T4974] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  480.890362][ T4974] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  480.910995][ T4459] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  480.925057][ T4100] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  480.935030][ T4459] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  480.970199][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  481.072989][ T4797] usb 3-1: config 9 has an invalid interface number: 94 but max is 0
[  481.090475][ T4797] usb 3-1: config 9 has no interface number 0
[  481.112619][ T4797] usb 3-1: config 9 interface 94 altsetting 167 has an invalid endpoint with address 0x4D, skipping
[  481.167457][ T4797] usb 3-1: config 9 interface 94 altsetting 167 has a duplicate endpoint with address 0x4, skipping
[  481.198159][ T4797] usb 3-1: config 9 interface 94 altsetting 167 has an invalid endpoint with address 0x80, skipping
[  481.219344][ T4797] usb 3-1: config 9 interface 94 altsetting 167 has a duplicate endpoint with address 0x4, skipping
[  481.261328][ T4797] usb 3-1: config 9 interface 94 altsetting 167 has a duplicate endpoint with address 0x4, skipping
[  481.282645][ T4797] usb 3-1: config 9 interface 94 altsetting 167 endpoint 0x9 has invalid maxpacket 1023, setting to 64
[  481.318257][ T4797] usb 3-1: config 9 interface 94 altsetting 167 endpoint 0x86 has an invalid bInterval 63, changing to 9
[  481.352795][ T4797] usb 3-1: config 9 interface 94 has no altsetting 0
[  481.532883][ T4797] usb 3-1: Dual-Role OTG device on HNP port
[  481.563849][ T4797] usb 3-1: New USB device found, idVendor=1a8d, idProduct=100b, bcdDevice=8c.67
[  481.593953][ T4797] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  481.622634][ T4797] usb 3-1: Product: 䀁
[  481.628105][ T4797] usb 3-1: Manufacturer: 挆뇹㑌썄昖뻻㳠饟蠤𥉉蔡䙨
[  481.639422][T10856] loop3: detected capacity change from 0 to 32768
[  481.652807][ T4797] usb 3-1: SerialNumber: syz
[  481.757190][ T4348] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  481.993800][ T4797] option 3-1:9.94: GSM modem (1-port) converter detected
[  482.005706][ T4348] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  482.087913][T10869] loop1: detected capacity change from 0 to 32768
[  482.121910][T10869] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz-executor.1 (10869)
[  482.204388][ T4797] usb 3-1: USB disconnect, device number 27
[  482.212621][ T4797] option 3-1:9.94: device disconnected
[  482.222967][T10869] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  482.252891][T10869] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  482.270041][T10869] BTRFS info (device loop1): using free space tree
[  482.359087][T10882] I/O error, dev loop7, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  482.368874][T10882] FAT-fs (loop7): unable to read boot sector
[  482.708589][ T4348] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.191634][ T3586] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  483.207421][ T3586] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  483.217086][ T3586] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  483.226418][ T3586] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  483.236651][ T3586] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  483.247456][ T3586] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  483.251179][ T4348] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  483.353690][T10869] BTRFS info (device loop1): enabling ssd optimizations
[  483.356711][T10911] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[  483.409463][T10912] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.0'.
[  483.426128][ T9293] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  483.701449][T10914] loop3: detected capacity change from 0 to 32768
[  483.761733][T10914] ialloc: diAlloc returned -5!
[  483.835047][T10918] loop2: detected capacity change from 0 to 256
[  483.849272][T10918] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  483.897333][T10918] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d)
[  484.135814][T10895] chnl_net:caif_netlink_parms(): no params data found
[  484.429755][T10920] loop0: detected capacity change from 0 to 32768
[  484.575678][T10895] bridge0: port 1(bridge_slave_0) entered blocking state
[  484.583325][T10895] bridge0: port 1(bridge_slave_0) entered disabled state
[  484.604227][T10895] device bridge_slave_0 entered promiscuous mode
[  484.625745][T10895] bridge0: port 2(bridge_slave_1) entered blocking state
[  484.644856][T10895] bridge0: port 2(bridge_slave_1) entered disabled state
[  484.664248][T10895] device bridge_slave_1 entered promiscuous mode
[  484.786290][T10952] netlink: 'syz-executor.3': attribute type 3 has an invalid length.
[  484.837681][T10895] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  484.856203][T10895] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  484.876719][T10954] loop2: detected capacity change from 0 to 64
[  484.965439][T10895] team0: Port device team_slave_0 added
[  485.003922][T10895] team0: Port device team_slave_1 added
[  485.057738][T10895] batman_adv: batadv0: Adding interface: batadv_slave_0
[  485.074327][T10895] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  485.120407][T10960] loop3: detected capacity change from 0 to 4096
[  485.154054][T10895] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  485.182660][T10962] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  485.233306][T10895] batman_adv: batadv0: Adding interface: batadv_slave_1
[  485.240299][T10895] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  485.318102][T10895] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  485.330165][ T3583] Bluetooth: hci1: command tx timeout
[  485.359332][T10967] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.1'.
[  485.466910][T10895] device hsr_slave_0 entered promiscuous mode
[  485.484887][T10895] device hsr_slave_1 entered promiscuous mode
[  485.501447][T10950] loop0: detected capacity change from 0 to 32768
[  485.518349][T10895] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  485.532767][T10895] Cannot create hsr debugfs directory
[  485.582976][T10950] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (10950)
[  485.622980][ T4348] device hsr_slave_0 left promiscuous mode
[  485.643203][ T4348] device hsr_slave_1 left promiscuous mode
[  485.695794][ T4348] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  485.723158][T10950] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  485.739261][ T4348] batman_adv: batadv0: Removing interface: batadv_slave_0
[  485.746665][T10950] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  485.759512][ T4348] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  485.762743][T10950] BTRFS info (device loop0): using free space tree
[  485.769605][ T4348] batman_adv: batadv0: Removing interface: batadv_slave_1
[  485.791137][ T4348] device bridge_slave_1 left promiscuous mode
[  485.798106][ T4348] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.814965][ T4348] device bridge_slave_0 left promiscuous mode
[  485.821836][ T4348] bridge0: port 1(bridge_slave_0) entered disabled state
[  486.252819][   T14] usb 3-1: new high-speed USB device number 28 using dummy_hcd
[  486.606996][ T4348] device veth1_macvtap left promiscuous mode
[  486.634064][ T4348] device veth0_macvtap left promiscuous mode
[  486.640226][ T4348] device veth1_vlan left promiscuous mode
[  486.664403][ T4348] device veth0_vlan left promiscuous mode
[  486.698375][T10950] BTRFS info (device loop0): enabling ssd optimizations
[  486.782700][   T14] usb 3-1: Using ep0 maxpacket: 32
[  486.896744][ T7964] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  486.903129][   T14] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  487.089349][T11000] loop1: detected capacity change from 0 to 2048
[  487.211824][T11000] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  487.225379][T11000] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4
[  487.242593][T11000] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  487.370052][   T14] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  487.379948][   T14] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  487.392894][   T14] usb 3-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  487.401960][   T14] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  487.420483][ T3583] Bluetooth: hci1: command tx timeout
[  487.438276][   T14] usb 3-1: config 0 descriptor??
[  487.708751][ T4348] team0 (unregistering): Port device team_slave_1 removed
[  487.729872][ T4348] team0 (unregistering): Port device team_slave_0 removed
[  487.777649][T11010] loop0: detected capacity change from 0 to 64
[  487.793097][ T4348] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  487.831475][ T4348] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  487.927349][   T14] ntrig 0003:1B96:000A.0012: unknown main item tag 0x0
[  487.943305][   T14] ntrig 0003:1B96:000A.0012: unknown main item tag 0x0
[  487.966300][   T14] ntrig 0003:1B96:000A.0012: unknown main item tag 0x0
[  487.973357][   T14] ntrig 0003:1B96:000A.0012: unknown main item tag 0x0
[  487.980392][   T14] ntrig 0003:1B96:000A.0012: unknown main item tag 0x0
[  487.989801][   T14] ntrig 0003:1B96:000A.0012: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.2-1/input0
[  488.011546][ T4348] bond0 (unregistering): Released all slaves
[  488.215680][   T14] usb 3-1: USB disconnect, device number 28
[  488.518079][T11025] loop3: detected capacity change from 0 to 4096
[  488.570759][T11026] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  488.742206][T11018] loop0: detected capacity change from 0 to 32768
[  488.892403][T11018] XFS (loop0): Mounting V5 Filesystem
[  489.001383][T11041] loop2: detected capacity change from 0 to 256
[  489.012068][T11041] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  489.029206][T11018] XFS (loop0): Ending clean mount
[  489.039859][T11041] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe622a5da, utbl_chksum : 0xe619d30d)
[  489.183447][ T7964] XFS (loop0): Unmounting Filesystem
[  489.288745][T11023] loop1: detected capacity change from 0 to 40427
[  489.309274][T11045] Bluetooth: MGMT ver 1.22
[  489.324795][T11023] F2FS-fs (loop1): Invalid segment count (0)
[  489.355013][T11023] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  489.425861][T11023] F2FS-fs (loop1): invalid crc value
[  489.469761][T11023] F2FS-fs (loop1): Found nat_bits in checkpoint
[  489.488695][ T3583] Bluetooth: hci1: command tx timeout
[  489.511511][T10895] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  489.578865][T11023] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  489.588420][T11023] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  489.592021][T10895] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  489.672950][T10895] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  489.701876][T10895] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  489.718802][ T9293] syz-executor.1: attempt to access beyond end of device
[  489.718802][ T9293] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  489.756085][T11057] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.2'.
[  489.944155][T10895] 8021q: adding VLAN 0 to HW filter on device bond0
[  489.983835][T11061] loop0: detected capacity change from 0 to 64
[  490.088888][T10034] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  490.098407][T10034] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  490.116701][T10895] 8021q: adding VLAN 0 to HW filter on device team0
[  490.128775][T10034] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  490.163372][T10034] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  490.192345][T10034] bridge0: port 1(bridge_slave_0) entered blocking state
[  490.199558][T10034] bridge0: port 1(bridge_slave_0) entered forwarding state
[  490.250343][ T3896] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  490.266975][ T3896] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  490.283771][ T3896] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  490.306358][ T3896] bridge0: port 2(bridge_slave_1) entered blocking state
[  490.313603][ T3896] bridge0: port 2(bridge_slave_1) entered forwarding state
[  490.373906][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  490.392719][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  490.392802][ T4098] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  490.401706][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  490.470812][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  490.519304][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  490.535774][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  490.565008][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  490.585324][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  490.620026][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  490.628663][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  490.653331][ T3620] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  490.686933][ T4098] usb 4-1: Using ep0 maxpacket: 32
[  490.693600][T10895] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  490.812882][ T4098] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  490.852915][ T4098] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  490.889155][ T4098] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[  490.924276][ T4098] usb 4-1: New USB device found, idVendor=1b96, idProduct=000a, bcdDevice= 0.00
[  490.956240][ T4098] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  490.986487][ T4098] usb 4-1: config 0 descriptor??
[  491.145515][T11065] loop0: detected capacity change from 0 to 32768
[  491.180083][T11065] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz-executor.0 (11065)
[  491.244859][T11065] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  491.303368][T11073] loop2: detected capacity change from 0 to 32768
[  491.309097][T11065] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  491.319697][T10034] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  491.330370][T10034] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  491.344225][T10895] 8021q: adding VLAN 0 to HW filter on device batadv0
[  491.351155][T11065] BTRFS info (device loop0): using free space tree
[  491.426995][T11073] XFS (loop2): Mounting V5 Filesystem
[  491.453066][T11065] BTRFS info (device loop0): enabling ssd optimizations
[  491.498023][ T4098] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  491.506329][T11073] XFS (loop2): Ending clean mount
[  491.532785][ T4098] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  491.563046][ T4098] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  491.563605][ T3583] Bluetooth: hci1: command tx timeout
[  491.569964][ T4098] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  491.687316][ T4098] ntrig 0003:1B96:000A.0013: unknown main item tag 0x0
[  491.716993][ T4098] ntrig 0003:1B96:000A.0013: hidraw0: USB HID v0.00 Device [HID 1b96:000a] on usb-dummy_hcd.3-1/input0
[  491.768842][ T4098] usb 4-1: USB disconnect, device number 13
[  491.789092][ T7964] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  491.924240][ T7875] XFS (loop2): Unmounting Filesystem
[  492.214784][ T4096] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  492.228599][ T4096] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  492.304425][ T4797] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  492.314128][ T4797] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  492.415820][T10895] device veth0_vlan entered promiscuous mode
[  492.425753][T10895] device veth1_vlan entered promiscuous mode
[  492.432861][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  492.433542][ T5793] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  492.728206][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  492.774667][T11130] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  492.784021][T11130] FAT-fs (loop1): unable to read boot sector
[  492.901454][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  493.099177][T10895] device veth0_macvtap entered promiscuous mode
[  493.519114][T10895] device veth1_macvtap entered promiscuous mode
[  493.583419][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  493.591668][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  493.635600][T11135] loop1: detected capacity change from 0 to 256
[  493.672123][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.706816][T11135] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  493.741379][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.776991][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.809567][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.868170][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  493.922415][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  493.932869][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  494.493977][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.752453][T10895] batman_adv: batadv0: Interface activated: batadv_slave_0
[  494.788256][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  494.803416][  T153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  494.885665][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.930585][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  494.962631][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  494.992620][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.011116][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  495.030518][T11160] loop1: detected capacity change from 0 to 1024
[  495.037288][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.052355][T10895] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  495.052379][T10895] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  495.056264][T10895] batman_adv: batadv0: Interface activated: batadv_slave_1
[  495.056468][T11114] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  495.057078][T11114] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  495.068429][T10895] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  495.068471][T10895] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  495.068502][T10895] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  495.068534][T10895] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  495.100629][T11160] loop1: detected capacity change from 0 to 128
[  495.166176][T11155] loop0: detected capacity change from 0 to 8192
[  495.173782][ T4348] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.184131][T11155] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  495.199103][T11155] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal
[  495.207298][ T4348] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.221514][T11155] REISERFS (device loop0): using ordered data mode
[  495.293872][T11155] reiserfs: using flush barriers
[  495.308583][ T9293] FAT-fs (loop1): error, invalid access to FAT (entry 0x00006165)
[  495.310660][T11155] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  495.334839][T11155] REISERFS (device loop0): checking transaction log (loop0)
[  495.369937][T11114] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  495.385500][ T9293] FAT-fs (loop1): Filesystem has been set read-only
[  495.410563][ T4348] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  495.419841][ T9293] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00003030)
[  495.440718][ T4348] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  495.453680][ T9293] FAT-fs (loop1): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00003030)
[  495.470410][T11155] REISERFS (device loop0): Using tea hash to sort names
[  495.473168][T11114] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  495.487622][T11155] REISERFS warning (device loop0): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  495.519091][T11155] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage.
[  495.930112][ T4348] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  495.995911][T11174] bridge0: port 1(bridge_slave_0) entered disabled state
[  496.045091][T11176] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  496.110148][ T4348] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.218369][ T4348] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.302725][T11170] loop2: detected capacity change from 0 to 40427
[  496.327011][T11170] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[  496.337200][T11183] loop3: detected capacity change from 0 to 4096
[  496.337937][T11170] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  496.355011][ T4348] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  496.379039][T11183] NILFS (loop3): invalid segment: Checksum error in segment payload
[  496.404909][T11170] F2FS-fs (loop2): Found nat_bits in checkpoint
[  496.418794][T11183] NILFS (loop3): trying rollback from an earlier position
[  496.481215][T11183] NILFS (loop3): recovery complete
[  496.512914][T11191] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  496.549876][T11170] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  496.567356][T11170] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  496.619775][   T27] audit: type=1800 audit(1718649768.227:1717): pid=11170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="file1" dev="loop2" ino=10 res=0 errno=0
[  496.719582][T11196] loop0: detected capacity change from 0 to 1024
[  496.730626][T11183] overlayfs: upper fs does not support tmpfile.
[  496.768058][T11183] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  496.788181][T11196] EXT4-fs: Ignoring removed orlov option
[  496.818389][T11183] overlayfs: failed to set xattr on upper
[  496.824563][T11196] EXT4-fs: Ignoring removed nomblk_io_submit option
[  496.838484][T11183] overlayfs: ...falling back to index=off,metacopy=off.
[  496.880800][T11198] IPv6: addrconf: prefix option has invalid lifetime
[  496.884025][T11183] overlayfs: failed to resolve './file0': -2
[  496.914312][T11196] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  497.024842][T11196] EXT4-fs error (device loop0): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.0: corrupt xattr in inline inode
[  497.090048][T11196] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.0: corrupted in-inode xattr
[  497.250060][ T7964] EXT4-fs (loop0): unmounting filesystem.
[  497.399251][T11204] loop0: detected capacity change from 0 to 256
[  497.459504][T11204] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  497.784759][ T3586] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  497.803037][ T3586] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  497.811543][ T3586] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  497.827920][ T3586] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  497.837460][ T3586] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  497.848820][ T3582] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  497.904356][ T4348] device hsr_slave_0 left promiscuous mode
[  497.914457][ T4348] device hsr_slave_1 left promiscuous mode
[  497.942961][ T4348] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  497.952897][ T4348] batman_adv: batadv0: Removing interface: batadv_slave_0
[  497.981839][ T4348] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  498.002198][ T4348] batman_adv: batadv0: Removing interface: batadv_slave_1
[  498.047643][ T4348] device team0 left promiscuous mode
[  498.056414][ T4348] device team_slave_0 left promiscuous mode
[  498.081343][ T4348] device team_slave_1 left promiscuous mode
[  498.093748][ T4348] bridge0: port 3(team0) entered disabled state
[  498.111690][ T4348] device bridge_slave_1 left promiscuous mode
[  498.125972][ T4348] bridge0: port 2(bridge_slave_1) entered disabled state
[  498.145213][ T4348] device bridge_slave_0 left promiscuous mode
[  498.168570][ T4348] bridge0: port 1(bridge_slave_0) entered disabled state
[  498.199676][ T4348] device veth1_macvtap left promiscuous mode
[  498.217293][T11217] loop2: detected capacity change from 0 to 2048
[  498.218572][ T4348] device veth0_macvtap left promiscuous mode
[  498.247502][ T4348] device veth1_vlan left promiscuous mode
[  498.261452][T11217] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  498.282029][ T4348] device veth0_vlan left promiscuous mode
[  498.326743][ T7875] EXT4-fs (loop2): unmounting filesystem.
[  498.859372][T11239] cgroup: No subsys list or none specified
[  498.878291][ T4348] team0 (unregistering): Port device team_slave_1 removed
[  498.896117][ T4348] team0 (unregistering): Port device team_slave_0 removed
[  498.917224][ T4348] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  498.968365][ T4348] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  499.072043][T11243] loop0: detected capacity change from 0 to 256
[  499.095149][T11243] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[  499.167601][ T4348] bond0 (unregistering): Released all slaves
[  499.219941][T11245] loop0: detected capacity change from 0 to 512
[  499.249989][T11225] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  499.286853][T11245] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  499.302815][T11245] ext4 filesystem being mounted at /root/syzkaller-testdir4138856280/syzkaller.LvcKOJ/262/file0 supports timestamps until 2038 (0x7fffffff)
[  499.494241][T11245] EXT4-fs error (device loop0): ext4_do_update_inode:5210: inode #2: comm syz-executor.0: corrupted inode contents
[  499.547915][T11245] EXT4-fs error (device loop0): ext4_dirty_inode:6072: inode #2: comm syz-executor.0: mark_inode_dirty error
[  499.591371][T11245] EXT4-fs error (device loop0): ext4_do_update_inode:5210: inode #2: comm syz-executor.0: corrupted inode contents
[  499.715230][T11248] EXT4-fs error (device loop0): ext4_do_update_inode:5210: inode #2: comm syz-executor.0: corrupted inode contents
[  499.758567][T11257] loop3: detected capacity change from 0 to 8192
[  499.808778][T11257] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  499.845337][T11210] chnl_net:caif_netlink_parms(): no params data found
[  499.856516][T11257] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  499.870308][ T7964] EXT4-fs (loop0): unmounting filesystem.
[  499.882958][ T3583] Bluetooth: hci0: command tx timeout
[  499.912949][T11257] REISERFS (device loop3): using ordered data mode
[  499.921900][T11257] reiserfs: using flush barriers
[  499.928630][T11257] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  499.945596][T11257] REISERFS (device loop3): checking transaction log (loop3)
[  500.024147][T11257] REISERFS (device loop3): Using tea hash to sort names
[  500.041740][T11257] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  500.068196][T11257] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  500.244856][T11210] bridge0: port 1(bridge_slave_0) entered blocking state
[  500.262815][T11210] bridge0: port 1(bridge_slave_0) entered disabled state
[  500.277805][T11210] device bridge_slave_0 entered promiscuous mode
[  500.288262][T11210] bridge0: port 2(bridge_slave_1) entered blocking state
[  500.306779][T11210] bridge0: port 2(bridge_slave_1) entered disabled state
[  500.316906][T11210] device bridge_slave_1 entered promiscuous mode
[  500.389873][T11210] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  500.392784][T11210] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  500.460010][T11210] team0: Port device team_slave_0 added
[  500.464758][T11210] team0: Port device team_slave_1 added
[  500.531247][T11210] batman_adv: batadv0: Adding interface: batadv_slave_0
[  500.549741][T11210] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  500.631921][T11210] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  500.666964][T11210] batman_adv: batadv0: Adding interface: batadv_slave_1
[  500.690326][T11210] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  500.716348][    C1] vkms_vblank_simulate: vblank timer overrun
[  500.786267][T11210] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  500.898280][T11210] device hsr_slave_0 entered promiscuous mode
[  500.919232][T11210] device hsr_slave_1 entered promiscuous mode
[  500.978029][T11279] loop2: detected capacity change from 0 to 4096
[  501.013746][T11283] loop3: detected capacity change from 0 to 64
[  501.039640][T11284] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  501.072839][T11283] hfs: unable to locate alternate MDB
[  501.115250][T11283] hfs: continuing without an alternate MDB
[  501.305544][T11289] loop0: detected capacity change from 0 to 1024
[  501.333709][T11289] EXT4-fs: Ignoring removed orlov option
[  501.348828][T11289] EXT4-fs: Ignoring removed nomblk_io_submit option
[  501.386528][T11210] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  501.420057][T11289] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  501.483972][ T1255] ieee802154 phy0 wpan0: encryption failed: -22
[  501.490367][ T1255] ieee802154 phy1 wpan1: encryption failed: -22
[  501.539168][T11210] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  501.570718][T11289] EXT4-fs error (device loop0): get_max_inline_xattr_value_size:69: inode #12: comm syz-executor.0: corrupt xattr in inline inode
[  501.642770][T11289] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #12: comm syz-executor.0: corrupted in-inode xattr
[  501.662341][T11210] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  501.750827][T11210] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  501.796857][ T7964] ==================================================================
[  501.804971][ T7964] BUG: KASAN: use-after-free in ext4_xattr_delete_inode+0xcd0/0xce0
[  501.813012][ T7964] Read of size 4 at addr ffff88806d296000 by task syz-executor.0/7964
[  501.821180][ T7964] 
[  501.823525][ T7964] CPU: 0 PID: 7964 Comm: syz-executor.0 Not tainted 6.1.94-syzkaller #0
[  501.831874][ T7964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  501.841958][ T7964] Call Trace:
[  501.845248][ T7964]  <TASK>
[  501.848194][ T7964]  dump_stack_lvl+0x1e3/0x2cb
[  501.852915][ T7964]  ? nf_tcp_handle_invalid+0x642/0x642
[  501.858402][ T7964]  ? panic+0x764/0x764
[  501.862474][ T7964]  ? _printk+0xd1/0x111
[  501.866629][ T7964]  ? __virt_addr_valid+0x17f/0x520
[  501.871746][ T7964]  ? __virt_addr_valid+0x17f/0x520
[  501.876863][ T7964]  print_report+0x15f/0x4f0
[  501.881386][ T7964]  ? __virt_addr_valid+0x17f/0x520
[  501.886511][ T7964]  ? __virt_addr_valid+0x17f/0x520
[  501.891629][ T7964]  ? __virt_addr_valid+0x44a/0x520
[  501.896762][ T7964]  ? __phys_addr+0xb6/0x170
[  501.901270][ T7964]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  501.906915][ T7964]  kasan_report+0x136/0x160
[  501.911421][ T7964]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  501.917067][ T7964]  ext4_xattr_delete_inode+0xcd0/0xce0
[  501.922542][ T7964]  ? ext4_blocks_for_truncate+0x270/0x270
[  501.928278][ T7964]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  501.934356][ T7964]  ? rcu_read_lock_any_held+0xb3/0x160
[  501.939824][ T7964]  ? ext4_inode_is_fast_symlink+0x262/0x390
[  501.945722][ T7964]  ext4_evict_inode+0xc77/0x1150
[  501.950666][ T7964]  ? _raw_spin_unlock+0x24/0x40
[  501.955533][ T7964]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  501.961436][ T7964]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  501.967333][ T7964]  evict+0x2a4/0x620
[  501.971243][ T7964]  vfs_rmdir+0x381/0x4b0
[  501.975492][ T7964]  do_rmdir+0x3a2/0x590
[  501.979657][ T7964]  ? d_delete_notify+0x150/0x150
[  501.984603][ T7964]  ? syscall_enter_from_user_mode+0x2e/0x230
[  501.990592][ T7964]  __x64_sys_unlinkat+0xdc/0xf0
[  501.995452][ T7964]  do_syscall_64+0x3b/0xb0
[  501.999882][ T7964]  ? clear_bhb_loop+0x45/0xa0
[  502.004571][ T7964]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  502.010472][ T7964] RIP: 0033:0x7f432a07c707
[  502.014897][ T7964] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  502.034529][ T7964] RSP: 002b:00007ffdd5dea558 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  502.042953][ T7964] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007f432a07c707
[  502.050932][ T7964] RDX: 0000000000000200 RSI: 00007ffdd5deb700 RDI: 00000000ffffff9c
[  502.058904][ T7964] RBP: 00007f432a0d96c6 R08: 0000000000000000 R09: 0000000000000000
[  502.066874][ T7964] R10: 0000000000000100 R11: 0000000000000207 R12: 00007ffdd5deb700
[  502.074843][ T7964] R13: 00007f432a0d96c6 R14: 000000000007a5e6 R15: 0000000000000008
[  502.082821][ T7964]  </TASK>
[  502.085836][ T7964] 
[  502.088156][ T7964] The buggy address belongs to the physical page:
[  502.094571][ T7964] page:ffffea0001b4a580 refcount:0 mapcount:-128 mapping:0000000000000000 index:0x1 pfn:0x6d296
[  502.104981][ T7964] flags: 0xfff00000000000(node=0|zone=1|lastcpupid=0x7ff)
[  502.112100][ T7964] raw: 00fff00000000000 ffffea0001448748 ffffea0001ffb548 0000000000000000
[  502.120695][ T7964] raw: 0000000000000001 0000000000000000 00000000ffffff7f 0000000000000000
[  502.129277][ T7964] page dumped because: kasan: bad access detected
[  502.135695][ T7964] page_owner tracks the page as freed
[  502.141058][ T7964] page last allocated via order 0, migratetype Movable, gfp_mask 0x148c48(GFP_NOFS|__GFP_NOFAIL|__GFP_COMP|__GFP_HARDWALL|__GFP_MOVABLE), pid 11257, tgid 11256 (syz-executor.3), ts 499956724679, free_ts 500335832045
[  502.161914][ T7964]  post_alloc_hook+0x18d/0x1b0
[  502.166694][ T7964]  get_page_from_freelist+0x31a1/0x3320
[  502.172242][ T7964]  __alloc_pages+0x28d/0x770
[  502.176832][ T7964]  folio_alloc+0x1a/0x50
[  502.181082][ T7964]  filemap_alloc_folio+0xda/0x4f0
[  502.186117][ T7964]  __filemap_get_folio+0x749/0xe80
[  502.191232][ T7964]  pagecache_get_page+0x28/0x250
[  502.196183][ T7964]  __getblk_gfp+0x211/0xa20
[  502.200688][ T7964]  journal_read+0x8ee/0x3b50
[  502.205285][ T7964]  journal_init+0x1a63/0x24b0
[  502.209968][ T7964]  reiserfs_fill_super+0x1035/0x2620
[  502.215253][ T7964]  mount_bdev+0x2c9/0x3f0
[  502.219584][ T7964]  legacy_get_tree+0xeb/0x180
[  502.224267][ T7964]  vfs_get_tree+0x88/0x270
[  502.228684][ T7964]  do_new_mount+0x2ba/0xb40
[  502.233191][ T7964]  __se_sys_mount+0x2d5/0x3c0
[  502.237872][ T7964] page last free stack trace:
[  502.242547][ T7964]  free_unref_page_prepare+0xf63/0x1120
[  502.248114][ T7964]  free_unref_page_list+0x663/0x900
[  502.253325][ T7964]  release_pages+0x2836/0x2b40
[  502.258097][ T7964]  __pagevec_release+0x80/0xf0
[  502.262865][ T7964]  truncate_inode_pages_range+0x48a/0x1340
[  502.268678][ T7964]  blkdev_flush_mapping+0x154/0x2b0
[  502.274162][ T7964]  blkdev_put+0x4c0/0x750
[  502.278504][ T7964]  deactivate_locked_super+0xa0/0x110
[  502.283887][ T7964]  cleanup_mnt+0x490/0x520
[  502.288317][ T7964]  task_work_run+0x246/0x300
[  502.292921][ T7964]  exit_to_user_mode_loop+0xde/0x100
[  502.298208][ T7964]  exit_to_user_mode_prepare+0xb1/0x140
[  502.303760][ T7964]  syscall_exit_to_user_mode+0x60/0x270
[  502.309327][ T7964]  do_syscall_64+0x47/0xb0
[  502.313794][ T7964]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  502.319711][ T7964] 
[  502.322034][ T7964] Memory state around the buggy address:
[  502.327664][ T7964]  ffff88806d295f00: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  502.335727][ T7964]  ffff88806d295f80: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
2024/06/17 18:42:54 SYZFATAL: failed to recv *flatrpc.HostMessageRaw: EOF
[  502.343791][ T7964] >ffff88806d296000: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  502.351846][ T7964]                    ^
[  502.355909][ T7964]  ffff88806d296080: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  502.363969][ T7964]  ffff88806d296100: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff
[  502.372024][ T7964] ==================================================================
[  502.381388][ T3582] Bluetooth: hci0: command tx timeout
[  502.513328][ T7964] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  502.520573][ T7964] CPU: 1 PID: 7964 Comm: syz-executor.0 Not tainted 6.1.94-syzkaller #0
[  502.529008][ T7964] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  502.539084][ T7964] Call Trace:
[  502.542376][ T7964]  <TASK>
[  502.545318][ T7964]  dump_stack_lvl+0x1e3/0x2cb
[  502.550030][ T7964]  ? nf_tcp_handle_invalid+0x642/0x642
[  502.555523][ T7964]  ? panic+0x764/0x764
[  502.559617][ T7964]  ? preempt_schedule_common+0xa6/0xd0
[  502.565097][ T7964]  ? vscnprintf+0x59/0x80
[  502.569545][ T7964]  panic+0x318/0x764
[  502.574014][ T7964]  ? check_panic_on_warn+0x1d/0xa0
[  502.579238][ T7964]  ? memcpy_page_flushcache+0xfc/0xfc
[  502.584635][ T7964]  ? _raw_spin_unlock_irqrestore+0x128/0x130
[  502.590814][ T7964]  ? _raw_spin_unlock+0x40/0x40
[  502.595701][ T7964]  ? print_report+0x4a3/0x4f0
[  502.600401][ T7964]  check_panic_on_warn+0x7e/0xa0
[  502.605362][ T7964]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  502.611026][ T7964]  end_report+0x66/0x110
[  502.615290][ T7964]  kasan_report+0x143/0x160
[  502.619809][ T7964]  ? ext4_xattr_delete_inode+0xcd0/0xce0
[  502.625475][ T7964]  ext4_xattr_delete_inode+0xcd0/0xce0
[  502.630972][ T7964]  ? ext4_blocks_for_truncate+0x270/0x270
[  502.636717][ T7964]  ? ext4_expand_extra_isize_ea+0x1bb0/0x1bb0
[  502.642813][ T7964]  ? rcu_read_lock_any_held+0xb3/0x160
[  502.648306][ T7964]  ? ext4_inode_is_fast_symlink+0x262/0x390
[  502.654231][ T7964]  ext4_evict_inode+0xc77/0x1150
[  502.659186][ T7964]  ? _raw_spin_unlock+0x24/0x40
[  502.664067][ T7964]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  502.669985][ T7964]  ? ext4_inode_is_fast_symlink+0x390/0x390
[  502.675902][ T7964]  evict+0x2a4/0x620
[  502.679828][ T7964]  vfs_rmdir+0x381/0x4b0
[  502.684097][ T7964]  do_rmdir+0x3a2/0x590
[  502.688278][ T7964]  ? d_delete_notify+0x150/0x150
[  502.693256][ T7964]  ? syscall_enter_from_user_mode+0x2e/0x230
[  502.699277][ T7964]  __x64_sys_unlinkat+0xdc/0xf0
[  502.704164][ T7964]  do_syscall_64+0x3b/0xb0
[  502.708607][ T7964]  ? clear_bhb_loop+0x45/0xa0
[  502.713315][ T7964]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  502.719233][ T7964] RIP: 0033:0x7f432a07c707
[  502.723661][ T7964] Code: 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 07 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48
[  502.743286][ T7964] RSP: 002b:00007ffdd5dea558 EFLAGS: 00000207 ORIG_RAX: 0000000000000107
[  502.751723][ T7964] RAX: ffffffffffffffda RBX: 0000000000000065 RCX: 00007f432a07c707
[  502.759717][ T7964] RDX: 0000000000000200 RSI: 00007ffdd5deb700 RDI: 00000000ffffff9c
[  502.767713][ T7964] RBP: 00007f432a0d96c6 R08: 0000000000000000 R09: 0000000000000000
[  502.775703][ T7964] R10: 0000000000000100 R11: 0000000000000207 R12: 00007ffdd5deb700
[  502.783693][ T7964] R13: 00007f432a0d96c6 R14: 000000000007a5e6 R15: 0000000000000008
[  502.791688][ T7964]  </TASK>
[  502.795069][ T7964] Kernel Offset: disabled
[  502.799392][ T7964] Rebooting in 86400 seconds..