last executing test programs:

21m15.530687645s ago: executing program 32 (id=822):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$bt_hci_HCI_DATA_DIR(r0, 0x0, 0x1, &(0x7f0000000000), 0x4)

19m12.989542523s ago: executing program 33 (id=1622):
r0 = socket$kcm(0x11, 0x3, 0x0)
setsockopt$sock_attach_bpf(r0, 0x107, 0xf, &(0x7f0000000000), 0x4)
sendmsg$kcm(r0, &(0x7f00000000c0)={&(0x7f0000000500)=@hci={0x1f, 0x0, 0x4}, 0x80, &(0x7f0000000300)=[{&(0x7f0000000580)="02042700ea0e0000000000001eafbcf706e105000000000000001104ee1606d4b8bf4a828bda305775c43824cee8440000", 0x31}, {&(0x7f00000023c0)="29386c9ba090", 0x6}, {&(0x7f0000000080)="088d85d1f4b8220aee82e7932b326f8a3164ae439862807a1589836c736d2341f7", 0x21}, {&(0x7f0000000140)="df3b46263300"/19, 0x13}, {&(0x7f00000005c0)="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", 0xed8}], 0x5}, 0x40000)

14m50.51478488s ago: executing program 34 (id=3347):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000004000)=@newtaction={0xe68, 0x30, 0x25, 0x0, 0x0, {}, [{0xe54, 0x1, [@m_pedit={0xe50, 0x1, 0x0, 0x0, {{0xa}, {0xe24, 0x2, 0x0, 0x1, [@TCA_PEDIT_PARMS={0xe20, 0x2, {{{}, 0x4}, [{}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x100000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x3}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x10}, {}, {0x5}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffc}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x4}, {0x0, 0x0, 0x0, 0x0, 0x80000}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x80000}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, {}, {}, {0x0, 0x0, 0x0, 0x0, 0x0, 0x4}], [{}, {}, {0x5}, {}, {}, {}, {0x0, 0x1}, {}, {}, {}, {}, {0x2}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {0x1}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x2, 0x1}]}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0xe68}}, 0x0)
open_by_handle_at(r0, &(0x7f0000000040)=@ceph_nfs_confh={0x10, 0x2, {0x2, 0xffffffffffff5c62}}, 0x80)

14m36.456541059s ago: executing program 35 (id=3414):
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000000e40)={0x0, 0x0, 0x0}, 0x0)
recvmsg(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000600)=""/203, 0xcb}], 0x1}, 0x12043)

14m32.949946878s ago: executing program 36 (id=3425):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f0000000080)={0x0, 0x18, 0xfa00, {0x3, &(0x7f0000000000)={<r1=>0xffffffffffffffff}, 0x111, 0xc}}, 0x20)
write$RDMA_USER_CM_CMD_BIND(r0, &(0x7f0000000180)={0x14, 0x88, 0xfa00, {r1, 0x10, 0x0, @in={0x2, 0x4e21, @loopback}}}, 0x90)

11m2.586745054s ago: executing program 37 (id=4793):
set_mempolicy(0x3, &(0x7f0000000040)=0x7, 0x7)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x77, 0x101301)
ioctl$USBDEVFS_CONTROL(r0, 0xc0105500, &(0x7f0000000000)={0x80, 0xa, 0xf, 0xfffc, 0x0, 0xb021, 0x0})

10m16.464393516s ago: executing program 38 (id=5034):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f00000004c0)=ANY=[@ANYBLOB="1c000000010401080000000000000000000000040500010001"], 0x1c}}, 0x0)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f00000009c0)={0x24, 0x1, 0x4, 0x801, 0x0, 0x0, {0x0, 0x0, 0x4}, [@NFULA_CFG_CMD={0x5, 0x1, 0x2}, @NFULA_CFG_FLAGS={0x6, 0x6, 0x1, 0x0, 0x6}]}, 0x24}}, 0x0)

7m2.691164311s ago: executing program 39 (id=6215):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x1b, &(0x7f00000000c0)={@remote={0xfe, 0x80, '\x00', 0xffffffffffffffff}}, 0x20)
syz_emit_ethernet(0x42, &(0x7f00000002c0)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "e90e5b", 0xc, 0x11, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @remote, {[], {0x0, 0x0, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}}, 0x0)

6m1.580882073s ago: executing program 6 (id=6568):
fanotify_init(0x200, 0x0)
r0 = syz_io_uring_setup(0x239, &(0x7f0000000300)={0x0, 0x400004, 0x13900}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000040)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x244}})
io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0)

6m1.257866106s ago: executing program 6 (id=6571):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
bind$bt_l2cap(r0, &(0x7f0000000100)={0x1f, 0x0, @none}, 0xe)
listen(r0, 0x0)
getsockopt$bt_BT_DEFER_SETUP(r0, 0x112, 0x7, 0x0, &(0x7f0000000040))

6m0.935858364s ago: executing program 6 (id=6574):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="800000000001010400000000141a000002000000240001801400018008000100e000000108000200e00000010c00028005000100000000002400028014000180080001000000000008000200ac1e00010c000280050001000000000008000740000000011c00108008000140000000000800024000000000080003"], 0x80}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={0x38, 0x3, 0x1, 0x401, 0x0, 0x0, {0x2}, [@CTA_TUPLE_ORIG={0x24, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @multicast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}]}, 0x38}}, 0x0)

6m0.423925115s ago: executing program 6 (id=6576):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000100)='./file0\x00', 0x400, &(0x7f0000000280)=ANY=[], 0x9, 0xc21, &(0x7f0000001e80)="$eJzs3U9sHNd9B/DfG3HFld1WTOwodhsXm7ZIZcVy9S+mYhXuqqbZBpBlIhRzC8AVSakLUyRBUo1spAXTSw89BCiKHnIi0BoFUjQwmiLokWldILn4UOTUE9HCRlD0wBYBcmnAYGbfikuKshiRlCjr87Gp7+7sezPvzVvPyILevAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIn7/tYunTqeH3QoA4EG6PPrlU2fc/wHgsXLF//8DAAAAAAAAAAAAAMBBl6KIpyLF3OW1NF6976hfatdu3hobGt6+2pFU1TxUlS9/6qfPnD33hZcGz3fzUnvmI+rvtWfjjdErFxuvzt6Ym59aWJiabIzNtCdmJ6d2vIfd1t/qRHUCGjfevDl57dpC48yLZzd9fGvgw/4njw1cGHz+5HPdsmNDw8OjG0Xq933sbdxthsfhKOJkpHjhOz9OrYgoYvfnov5gx36rI1UnTlSdGBsarjoy3W7NLJYfjnRPRBHR6KnU7J6j7cci+moPtA9314xYKptfNvhE2b3RudZ86+r0VGOkNb/YXmzPzoykTmvL/jSiiPMpYjkiVvvv3F0tiuiLFN86upauRsSh7nn4fDUx+O7tKPaxjztQtrNRi1guHoExO8D6o4jXI8VP3jseE+U5yz/xuYjXy/xexDtlvhKRyi/GuYgPtvke8WjqiyL+ohz/C2tpsroedK8rl77S+NLMtdmest3ryi94f7jjSvGQ7g9HtuSDccCvTfUoolVd8dfS/f9mBwAAAAAAAAAAAAAAAIC9diSKeDZSvPbvf1zNK45qXvrRC4N/MPDLvXPGn7nHfsqyL0bEUrGzObmH88TAkTSS0kOeS/w4q0cRf5Ln/33jYTcGAAAAAAAAAAAAAAAAAADgsVbEjyLFy+8fT8vRu6Z4e+Z640rr6nRnVdju2r/dNdPX19fXG6mTzZzjOZdyLudcybmaM4pcP2cz53jOpZzLOVdyruaMQ7l+zmbO8ZxLOZdzruRczRl9uX7OZs7xnEs5l3Ou5FzNGbWI/y8TAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIA9U0QRP4sU3/zaWooUEc2I8ejkSv/Dbh0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAUOpPRXw3UjT+sHl7W19EpOrfjuPlL+eiebjMT0ZzsMxXonkxZ6vKvuY3HkL72Z1aKuKHkaK//u7tAc/jX+u8u/01iHe+vvHuV/s6eaj74cCH/U8eO3phcPjXn7nb67RdA05cas/cvNUYGxoeHu3Z3JeP/smebQP5uMXedJ2IWHjr7Tdb09NT8/f/ovwK7KK6F14c1BfRdyCa8XD6zmOgvP9/ECl+5/3/6N7wu/f/X+q8u32Hj5/+6cb9/+WtO9rh/b9va7173P+f6tn2cv7dSK0vor54Y652LKK+8NbbJ9s3Wtenrk/NnDt16ouDg188e6p2OKJ+rT091fNqT04XAAAAAAAAAAAAAAAAwIOTivi9SNH64VpqRMStar7WwIXB508+dygOVfOtNs3bfmP0ysXGq7M35uanFhamJhtjM+2J2cmpnR6uXk33Ghsa3pfO3NORfW7/kfqrs3Nvzbev/9Hitp8/Ub94dWFxvjWx/cdxJIqIZu+WE1WDx4aGq0ZPt1szVdWRbSfT/+JqqYj/jBQT5xrps3lbnv+3dYb/pvn/S1t3tE/z/z/Rs608ZkpF/DRS/PZfPhOfrdr5RNxxznK5v40UJ85/JpeLw2W5bhs6zxXozAwsy/5vpPjHn20u250P+dRG2dM7PrGPiHL8j0aK7/75t+M38rbNz3/Yfvyf2LqjfRr/p3u2PbHpeQW77jp5/E9Gileeejd+M2/7qOd/dJ+9cTwXvv18jn0a/0/1bBvIx/2tvek6AAAAAAAAAADAI62Wivi7SPH94b70Ut62k7//N7l1R/v0978+3bNtcm/WK7rni12fVAAAAAA4IGqpiB9FiuuL796eQ715/nfP/M/f3Zj/OZS2fFr9Od+vVM8N2Ms//+s1kI87vvtuAwAAAAAAAAAAAAAAAAAAwIGSUhEv5fXUx6v5/J3nfW63nvpKpHjtv1/I5dKxKDbWgR+ofq1fnp05eXF6enaitdi6Oj3VGJ1rTUyVdZ+OFGt/85lct6jWV++uN99Z431jLfb5SDH8992ynbXYu2uTP71R9nRZ9hOR4r/+YXPZ7jrWn9ooe6Ys+9eR4qv/vH3ZYxtlz5Zlvx0pfvDVRrfsE2XZ7vNRP71R9sWJ2WLPxwQAAAAAAAAAAAAAAAAAAIDHTy0V8WeR4n9uLN+ey5/X/6/1vK288/We9f63uFWt8z9Qrf9/t9f3s/5/9VyBpbsdFQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPp5SFPF2pJi7vJZW+sv3HfVL7Zmbt8aGhrevdiRVNQ9V5cuf+ukzZ8994aXB89386Pp77dl4Y/TKxcarszfm5qcWFqYmG2Mz7YnZyakd72G39bc6UZ2Axo03b05eu7bQOPPi2U0f3xr4sP/JYwMXBp8/+Vy37NjQ8PBoT5m+2n0f/Q7pLtsPRxF/FSle+M6P0/f7I4rY/bm4x3dnvx2pOnGi6sTY0HDVkel2a2ax/HCkeyKKiEZPpWb3HD2AsdiVZsRS2fyywSfK7o3OteZbV6enGiOt+cX2Ynt2ZiR1Wlv2pxFFnE8RyxGx2n/n7mpRxJuR4ltH19K/9Ecc6p6Hz18e/fKpM3dvR7GPfdyBsp2NWsRy8QiM2QHWH0X8U6T4yXvH41/7I/qi8xOfi3i9zO9FvBOd8U7lF+NcxAfbfI94NPVFEf9Xjv+FtfRef3k96F5XLn2l8aWZa7M9ZbvXlUf+/vAgHfBrUz2K+EF1xV9L/+a/awAAAAAAAAAAAAAAAIADpIhfixQvv388VfODb88pbs9cb1xpXZ3uTOvrzv3rzpleX19fb6RONnOO51zKuZxzJedqzihy/ZzNMuvr6+P5/VLO5ZwrOVdzxqFcP2cz53jOpZzLOVdyruaMvlw/ZzPneM6lnMs5V3Ku5owDMncPAAAAAAAAAAAAAAAAAAD4eCmqf1J882trab2/s770eHRyxXqgH3s/DwAA//8W9v7w")
socket$inet6_udplite(0xa, 0x2, 0x88)
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x2116c77, 0x0)

5m59.684468456s ago: executing program 6 (id=6580):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000200)={[{@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0x8000}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@resgid}, {@grpquota}, {@usrjquota}, {@journal_dev={'journal_dev', 0x3d, 0xdcc}}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000240)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY(r0, 0x401c5820, &(0x7f0000000080)={@desc={0xd32780, 0x0, @desc2}})
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000040)=0x2006)

5m58.828088796s ago: executing program 6 (id=6585):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)={0x28, r1, 0x5, 0x4, 0x2, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x2000c080}, 0x4810)

5m57.99352887s ago: executing program 40 (id=6585):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000780)={0x28, r1, 0x5, 0x4, 0x2, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_ROOTMODE={0x5, 0xe, 0x1}]}]}, 0x28}, 0x1, 0x0, 0x0, 0x2000c080}, 0x4810)

4m55.041566144s ago: executing program 0 (id=6941):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x22, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000080)=@base={0x7, 0x4, 0x8, 0xd27, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f00000001c0)={r1, 0x0, 0x0}, 0x20)

4m54.381061627s ago: executing program 0 (id=6944):
rseq(&(0x7f0000000280)={0x0, 0x0, 0x0, 0x6}, 0x20, 0x0, 0x0)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
timer_create(0x0, 0x0, &(0x7f0000bbdffc))
remap_file_pages(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x0, 0x600, 0x0)

4m54.00520783s ago: executing program 0 (id=6946):
mknod$loop(&(0x7f0000000040)='./file0\x00', 0x100000000000600d, 0x1)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0)
mount$fuse(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f0000002280)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x8000}})
lgetxattr(&(0x7f0000000000)='./file0\x00', &(0x7f00000002c0)=@known='system.posix_acl_default\x00', 0x0, 0x0)

4m52.666743768s ago: executing program 0 (id=6955):
syz_mount_image$udf(&(0x7f0000000f40), &(0x7f0000000f80)='./file1\x00', 0x204004, &(0x7f0000002480)=ANY=[@ANYBLOB='mode=00000000000000000000202,umask=00000000000000000000002,dmode=00000000000000000100002,gid=forget,longad,shortad,novrs,iocharset=cp437,uid=forget,umask=00000000000000000000006,dmode=00000000000000000000010,gid=', @ANYRESDEC=0x0, @ANYBLOB="010000006e6963622c73657373696f6e08003030303030303030303030303030303030ff352c00"], 0x2, 0xc47, &(0x7f0000000fc0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file4\x00', 0x1018000, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000000), 0x10000, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file4'}}, {@metacopy_on}], [], 0x2c})

4m51.536303456s ago: executing program 0 (id=6962):
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
r0 = socket$netlink(0x10, 0x3, 0x0)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000080)={0x2, &(0x7f0000000400)=[{0x20, 0xfd, 0x0, 0xfff00002}, {0x16}]}, 0x8)
sendmsg$netlink(r0, &(0x7f00000047c0)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="140000006a0001"], 0x14}], 0x1}, 0x0)

4m50.356038266s ago: executing program 0 (id=6971):
syz_mount_image$minix(&(0x7f0000000300), &(0x7f0000000180)='./file2\x00', 0x4000, &(0x7f0000000340)=ANY=[], 0x1, 0x1ff, &(0x7f00000005c0)="$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")
unlink(&(0x7f00000001c0)='./file2\x00')
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000004c0)='./file3\x00')
creat(&(0x7f0000000200)='./file5\x00', 0x10)

4m49.232974814s ago: executing program 41 (id=6971):
syz_mount_image$minix(&(0x7f0000000300), &(0x7f0000000180)='./file2\x00', 0x4000, &(0x7f0000000340)=ANY=[], 0x1, 0x1ff, &(0x7f00000005c0)="$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")
unlink(&(0x7f00000001c0)='./file2\x00')
rename(&(0x7f0000000000)='./file1\x00', &(0x7f00000004c0)='./file3\x00')
creat(&(0x7f0000000200)='./file5\x00', 0x10)

4m6.570734682s ago: executing program 2 (id=7197):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000040000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001"], 0xfc}}, 0x0)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r1, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000300)=ANY=[@ANYBLOB="ec000000210001002dbd7000fedbdf25fe880000000000000000000000000101e00000020000000000000000000000004e248001000700010a0080a03b000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="af6b6e00010000009c001100ff"], 0xec}, 0x1, 0x0, 0x0, 0x400c000}, 0x20000000)

4m5.96713498s ago: executing program 2 (id=7200):
timer_create(0x2, 0x0, &(0x7f00000004c0)=<r0=>0x0)
timer_settime(0x0, 0x1, &(0x7f0000000000)={{}, {0x0, 0x3938700}}, 0x0)
clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0)
timer_delete(r0)

4m5.172813718s ago: executing program 2 (id=7206):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$batadv(&(0x7f0000000080), r0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r0, 0x8933, &(0x7f0000000100)={'batadv0\x00', <r2=>0x0})
sendmsg$BATADV_CMD_GET_HARDIF(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)={0x24, r1, 0x21, 0x70bd29, 0x25dfdbfe, {}, [@BATADV_ATTR_HARD_IFINDEX={0x8, 0x6, r2}, @BATADV_ATTR_MESH_IFINDEX={0x8, 0x3, r2}]}, 0x24}, 0x1, 0x0, 0x0, 0x20000044}, 0x40000)

4m4.857011958s ago: executing program 2 (id=7208):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x10c, &(0x7f0000000400)={[{@errors_remount}, {@lazytime}, {@oldalloc}, {@test_dummy_encryption}, {@block_validity}, {@oldalloc}]}, 0x1, 0x46b, &(0x7f0000000c00)="$eJzs3M9vFFUcAPDvTFug/LAVUeSHWkVjI9rSgsrBi0YTD5qYeMFjbQtBCjW0JkKIojF4NCTejUcT/wJPejHqycSrnrwYEmK4CJ7WzO5Mu7vslmVZOsX9fJKh78284b1v37zZN/PaBtC3xrJ/kojtEfF7RIzUso0Fxmpfrl+7MHvj2oXZJCqVt/9OquX+uXZhtihanLctz4ynEelnSexrUe/SufOnZhYW5s/m+cnl0+9PLp07/9zJ0zMn5k/Mn5k+evTI4akXX5h+vidx3p+1de9Hi/v3vP7O5Tdnj11+9+dvkyL+pjh6ZGytg09VKj2urlw76tLJ4EpySymNoWMDEZF111B1/I/EQKx23ki89mmpjQPuqkquzeGLFeB/LImyWwCUo/igz55/i239Zh/lu/py7QEoi/t6vtWODEaalxlqer7tpbGIOHbx36+yLe7OewgAgAbfZ/OfZ1vN/9J4qK7cffna0Gi+lrIzIh6IiF0R8WBEtezuiHj4NutvXiS5ef6TXukqsA5l87+X8rWtxvlfMfuL0YE8t6Ma/1By/OTC/KH8ezIeQ5uz/NQadfzw6m9ftDtWP//Ltqz+Yi6Yt+PK4ObGc+ZmlmfuJOZ6Vz+J2DvYKv5kZSUgiYg9EbG3yzpOPvPN/nbHbh3/Gga7bFCdytcRT9f6/2I0xV9I1l6fnNwSC/OHJour4ma//HrprXb131H8PZD1/9aW1/9K/KNJ/Xrt0u3XcemPz9s+00x0df2v7tiUf/1wZnn57FTEpuSNWqPr90+vnlvki/JZ/OMHWo//nbH6ndgXEdlF/EhEPBoRj+V993hEPBERB1qHlz06xk+vPPleu/g3Qv/PNfX/aGORpv5fTWyK5j2tEwOnfvyu8X9cTXZ2/ztSTY3nezq5/3XSru6uZgAAALj3pBGxPZJ0YiU9nE5M1H6Gf1dsTRcWl5YPHl/84Mxc7XcERmMoLd50jdS9D53KH+uL/HRT/nD+3vjLgeFqfmJ2cWGu7OChz227afyn1fGf+Wug7NYBd10P1tGAe1Td+E/KbAew/nz+Q/8y/qF/tRj/w2W0A1h/rT7/Py6hHcD6axr/lv2gj3j+h/5l/EP/qh//fgAA+sbScNz6l+RbJbZEN2fVEjcO/rm7q0olNk4i0ts/a2SjNL45kXQ5CjpNbC87wHZ/miO/DbQ4VPKNCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoEf+CwAA///x7OQx")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
r0 = open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f0000000140)=@v1={0x0, @aes128, 0x0, @desc3})

4m3.560869281s ago: executing program 2 (id=7215):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000100)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_TX_BITRATE_MASK(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x30, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TX_RATES={0x14, 0x5a, 0x0, 0x1, [@NL80211_BAND_2GHZ={0x10, 0x0, 0x0, 0x1, [@NL80211_TXRATE_LEGACY={0x4}, @NL80211_TXRATE_HT={0x6, 0x2, [{0x4, 0x1}, {0x3, 0x5}]}]}]}]}, 0x30}}, 0x0)

4m2.742745822s ago: executing program 2 (id=7221):
sched_setscheduler(0x0, 0x5, &(0x7f0000000100))
ioprio_set$pid(0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r0, r0, 0x0, 0xfffe80)

4m1.63019347s ago: executing program 42 (id=7221):
sched_setscheduler(0x0, 0x5, &(0x7f0000000100))
ioprio_set$pid(0x1, 0x0, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0xc4042, 0x1ff)
sendfile(r0, r0, 0x0, 0xfffe80)

3m26.884181954s ago: executing program 5 (id=7398):
r0 = socket$kcm(0x10, 0x2, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
sendmsg$kcm(r0, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)=[{&(0x7f00000001c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8f5ef52a985162756aa5e8d7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad801000000ce81ed0bffece0b42a9ecba46dee5de6ccd40dd6e4edef3d93452a929500"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x24000084)

3m26.710227555s ago: executing program 5 (id=7399):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
sendmsg$key(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f00000004c0)={0x2, 0x5, 0xfd, 0x2, 0x2, 0x0, 0x70bd25, 0x25dfdbff}, 0x10}}, 0x4000880)
r0 = io_uring_setup(0x7b3, &(0x7f0000000440)={0x0, 0xf42f, 0x0, 0xffa, 0x32f})
io_uring_register$IORING_REGISTER_BUFFERS(r0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)

3m26.473044522s ago: executing program 5 (id=7401):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x7, &(0x7f0000000100)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]})
r0 = gettid()
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r0, 0x7)

3m26.076229619s ago: executing program 5 (id=7404):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000180)='./bus\x00', 0xe, &(0x7f00000004c0)={[{@resuid={'resuid', 0x3d, 0xee00}}, {@init_itable}, {@debug}, {@noblock_validity}]}, 0x3, 0x453, &(0x7f0000001f80)="$eJzs3M9vFFUcAPDvzHaLCNiKqPxS8Vck/mgpoHLwoEYTD5iY6EGPTVsIslBDayKEKBiDJ2NMvBuP/gt60Ysxnoxe9W5IiOECeFozuzN0d7u7tNsti93PJxl4b+ZN3/v2zdt9M2+3AQytfdk/ScTWiPgzIsbq2eYC++r/Xb96fubG1fMzSVSrb/+T1Mpdu3p+pihanLclz+xPI9LPktjTpt6Fs+dOTlcqc2fy/OTiqQ8mF86ee+7Eqenjc8fnTh88cuTwoakXXzj4fF/izNp0bffH83t3vfHeV28e/aIp/pY41mznpsYf3daT1WrfqrsTbGtIJyMDbAirUoqIrLvKtfE/FqVY6ryxeP3TgTYOWFfVarW6pfPhC1VgA0uiOW/Iw7Ao3uiz+99ia50EvLx+04+Bu/JK/QYoi/t6vtWPjESalym33N/2076IePfCv99kW/T7OQQAQBs/ZvOfZ9vN/9J4oKHcPfna0HhE3BsR2yPivojYERH3R9TKPhgRO1dZf+siyfL5T3q5p8BWKJv/vZSvbTXP/4rZX4yX8ty2Wvzl5NiJytyB/HeyP8qbsvxUlzp+eu2PLzsda5z/ZVtWfzEXzNtxeWRT8zmz04vTa4m50ZWLEbtH2sWf3FwJSCJiV0Ts7rGOE09/t7fTsVvH30Uf1pmq30Y8Ve//C9ESfyHpvj45eVdU5g5MFlfFcr/+dumtTvWvKf4+yPr/7rbX/834x5PG9dqF1ddx6a/PO97T9Hr9jybv1NKj+b6PphcXz0xFjCZH641u3H9w6dwiX5T/4ff6/nbjf3ss/Sb2RER2ET8UEQ9HxCN52x+NiMci4vEu8f/y6hPv9x7/+sr6f3ZV/b+UGI3WPe0TpZM/f99U6fiy+G907//DtdT+fM9KXv9W0q7ermYAAAD4/0kjYmsk6cTNdJpOTNQ/L78jIq3MLyw+c2z+w9Oz9e8IjEc5LZ50jTU8D53Kb+vr+YsRUf9oQXH8UP7c+OvS5lp+Yma+Mjvo4GHIbekw/jN/lwbdOmDd+b4WDC/jH4aX8Q/Dy/iH4dVm/G8eRDuA26/d+/8nA2gHcPu1jH/LfjBE3P/D8Oo4/jfyX/4Barz/w1Ba2By3/pJ810Txk3o8fcMmonxHNGPtiWrStnMjHXTDJNYzMdjXJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgH75LwAA//8HW+BC")
syz_mount_image$ext4(&(0x7f00000000c0)='ext3\x00', &(0x7f0000000380)='./file0\x00', 0x10e, &(0x7f0000000140)={[{@inlinecrypt}, {@nodelalloc}, {@jqfmt_vfsold}, {@bh}, {@block_validity}, {@quota}]}, 0x3, 0x460, &(0x7f0000001380)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101091, 0x0)
mount(0x0, &(0x7f0000000040)='./file0/../file0\x00', 0x0, 0x20, &(0x7f0000000140)='usrjquota=')

3m24.110402655s ago: executing program 5 (id=7413):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='sys_enter\x00', r0}, 0x10)
syncfs(0xffffffffffffffff)
dup3(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

3m22.896318352s ago: executing program 5 (id=7421):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setuid(r1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="b4050000000000006110a400000000001f150000000000009500000000000000704fff7649b0983f42d01eccd13e9ec8a0a0ba6f00720c38fb17c6973e6361f5710065aaf625b96d173daf810865508ce8e9e1fa28e8bc8620294d24b6e609fa8a42156ea7394b8e0f09362f9e2576fd38cecff65abf747c96f88c9e0d54c135a1666ac39044329aaff9afb6"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0x7, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

3m21.115189943s ago: executing program 43 (id=7421):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000240)={0x0, <r1=>0x0}, &(0x7f0000000280)=0x5)
setuid(r1)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x1, 0x4, &(0x7f0000000500)=ANY=[@ANYBLOB="b4050000000000006110a400000000001f150000000000009500000000000000704fff7649b0983f42d01eccd13e9ec8a0a0ba6f00720c38fb17c6973e6361f5710065aaf625b96d173daf810865508ce8e9e1fa28e8bc8620294d24b6e609fa8a42156ea7394b8e0f09362f9e2576fd38cecff65abf747c96f88c9e0d54c135a1666ac39044329aaff9afb6"], &(0x7f0000003ff6)='GPL\x00', 0x5, 0x7, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0x1dd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)

1m16.875434964s ago: executing program 1 (id=8177):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
prlimit64(0x0, 0x7, &(0x7f0000000140), 0x0)
ioctl$KVM_CREATE_DEVICE(r1, 0xaece, 0x0)

1m16.007899285s ago: executing program 1 (id=8183):
syz_mount_image$vfat(&(0x7f0000000400), &(0x7f0000000280)='./file0\x00', 0x414, &(0x7f0000000000)=ANY=[@ANYBLOB="6e6f6e756d7461696c2c6e66732c73686f72746e616d653d6c6f7765722c757466383d312c64656275672c696f636861727365743d757466382c73686f72746e616d653d6d697865642c757466383d312c004845160000000000"], 0x1, 0x2a1, &(0x7f0000000f40)="$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")
syz_emit_ethernet(0x4a, &(0x7f0000000000)={@local, @local, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "8a37f2", 0x14, 0x2c, 0x0, @empty, @local, {[], {{0x2b00, 0x405, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x80}}}}}}}, 0x0)
mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)

1m13.832371985s ago: executing program 1 (id=8192):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000280)=@newlink={0x54, 0x10, 0x40d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, 0x0, 0x40}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @bridge_slave={{0x11}, {0x1c, 0x5, 0x0, 0x1, [@IFLA_BRPORT_STATE={0x5, 0x1, 0x4}, @IFLA_BRPORT_PRIORITY={0x6, 0x2, 0x1}, @IFLA_BRPORT_COST={0x8, 0x3, 0x4bf}]}}}]}, 0x54}}, 0x0)

1m12.927012505s ago: executing program 1 (id=8200):
mkdir(&(0x7f00000020c0)='./file0\x00', 0x0)
syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@iocharset={'iocharset', 0x3d, 'cp932'}}, {@gid}, {@dmode={'dmode', 0x3d, 0x4}}, {@rootdir={'rootdir', 0x3d, 0x4}}, {@uid}, {}, {@gid_ignore}, {@anchor={'anchor', 0x3d, 0x100}}, {@umask={'umask', 0x3d, 0x70ed}}]}, 0x1, 0xc32, &(0x7f0000000e00)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x0)
mount$overlay(0x20000000, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@workdir={'workdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@lowerdir, 0x5c}], [], 0x2e})

1m11.321763797s ago: executing program 1 (id=8211):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000240)={'tunl0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000100)=@bridge_setlink={0x38, 0x10, 0x1, 0x0, 0x0, {0x7, 0x0, 0x0, r2}, [@IFLA_LINKINFO={0x18, 0x12, 0x0, 0x1, @ipip={{0x9}, {0x8, 0x2, 0x0, 0x1, [@IFLA_IPTUN_COLLECT_METADATA={0x4}]}}}]}, 0x38}}, 0x804)

1m10.164202301s ago: executing program 1 (id=8218):
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f00000001c0)='./file0\x00', 0x3200c00, &(0x7f0000001bc0)=ANY=[@ANYRES8=0x0, @ANYRESDEC], 0x3, 0xa73, &(0x7f0000003cc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4882, 0x81)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$binfmt_format(r0, &(0x7f0000000140)='-1\x00', 0x3)

1m9.093013856s ago: executing program 44 (id=8218):
syz_mount_image$nilfs2(&(0x7f0000000000), &(0x7f00000001c0)='./file0\x00', 0x3200c00, &(0x7f0000001bc0)=ANY=[@ANYRES8=0x0, @ANYRESDEC], 0x3, 0xa73, &(0x7f0000003cc0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x4882, 0x81)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.bfq.io_service_time_recursive\x00', 0x275a, 0x0)
write$binfmt_format(r0, &(0x7f0000000140)='-1\x00', 0x3)

13.139989558s ago: executing program 9 (id=8572):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000580)='./file1\x00', 0x40, &(0x7f0000000340), 0x1, 0x58c, &(0x7f00000005c0)="$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")
syz_emit_vhci(&(0x7f0000000640)=ANY=[@ANYBLOB="040e04093520"], 0x7)
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000000)='/sys/kernel/address_bits', 0x242, 0x2a1)
socket$inet_tcp(0x2, 0x1, 0x0)

12.490973261s ago: executing program 9 (id=8576):
r0 = fsopen(&(0x7f0000000100)='cifs\x00', 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='user\x00', &(0x7f0000000140)='\x00', 0x0)

12.340410475s ago: executing program 4 (id=8577):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000240)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff}, 0x106}}, 0x20)
write$RDMA_USER_CM_CMD_JOIN_IP_MCAST(r0, &(0x7f0000000480)={0x10, 0x30, 0xfa00, {0x0, 0x1, {0xa, 0x4e20, 0x9, @dev={0xfe, 0x80, '\x00', 0x30}, 0xfffff800}, r2}}, 0x38)

11.97790376s ago: executing program 4 (id=8579):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000340), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000200)={0x28, r1, 0x5, 0xffffffff, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_CONFIG={0xc, 0x23, 0x0, 0x1, [@NL80211_MESHCONF_HWMP_ACTIVE_PATH_TIMEOUT={0x8, 0xb, 0x6}]}]}, 0x28}}, 0x40050)

11.82887534s ago: executing program 9 (id=8581):
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x42202)
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x84, &(0x7f0000000000)={0x0, @in6={{0xa, 0x0, 0x1, @empty}}, 0xfffd}, 0x90)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000000c0)={0x0, 0x10, &(0x7f0000000240)=[@in={0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0x1a}}]}, &(0x7f00000002c0)=0x10)

11.160653973s ago: executing program 4 (id=8584):
setsockopt$inet6_tcp_TLS_TX(0xffffffffffffffff, 0x11a, 0x1, &(0x7f0000000040)=@gcm_256={{0x304, 0x36}, "1a88ef816c4b42ed", "a5fdeb69a751e94df50ad7e9fb434d1665e9298b01e49419567b443803cf578f", "6d02cd81", "066580001e00"}, 0x38)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'})
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r0, 0x8b27, &(0x7f0000000040))

11.112758058s ago: executing program 9 (id=8585):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="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"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f00000002c0)='bdi_dirty_ratelimit\x00', r0}, 0x10)
r2 = gettid()
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000380)={r2, r1, 0x0, 0x6, 0xfffffffffffffffe}, 0x42)

10.677463765s ago: executing program 4 (id=8586):
r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000cc0)=ANY=[@ANYBLOB="120100004f92b90857152077ebb7000000010902120001000000000904"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000f80)={0x84, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000e00)={0x40, 0x13, 0x6, @local}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io(r0, 0x0, &(0x7f0000001740)={0x7f, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)={0x40, 0x19, 0x2, "0200"}, 0x0, 0x0, 0x0, 0x0})
syz_usb_control_io$uac1(r0, 0x0, &(0x7f00000006c0)={0x95, &(0x7f0000000000)={0x40, 0xa, 0x3}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})

10.669234993s ago: executing program 9 (id=8587):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x40086602, &(0x7f0000000280)=0x10)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000940)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$unix(r1, &(0x7f0000000200)=@file={0x1, './file0\x00'}, 0x6e)

10.396076789s ago: executing program 9 (id=8588):
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/tcp6\x00')
r1 = syz_open_dev$loop(&(0x7f0000000440), 0x81, 0x2a82)
ioctl$LOOP_CONFIGURE(r1, 0x4c0a, &(0x7f00000002c0)={r0, 0x800, {0x2a00, 0x80010000, 0x0, 0x17, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd6447a4b4e00d9683dda1af1ea09de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c5512406c7f0000000000008000", [0x6, 0x40000000000000]}})
ioctl$LOOP_CHANGE_FD(r1, 0x4c06, r0)

7.124996203s ago: executing program 3 (id=8595):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0x3, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000080000000000000000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
setregid(0x0, 0x0)

6.112972171s ago: executing program 8 (id=8597):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r1, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0xc}]}, 0x24}}, 0x0)

5.866510373s ago: executing program 7 (id=8598):
syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x844, &(0x7f0000000bc0)=ANY=[@ANYBLOB="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"], 0x1, 0x26d, &(0x7f0000000800)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='kfree\x00', 0xffffffffffffffff, 0x0, 0x2}, 0x18)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000012c0)={r0, 0x0, 0x30, 0xe1515f8735398fb, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1f, 0x1}}, 0x3c)

5.646877038s ago: executing program 4 (id=8599):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xf, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
uname(&(0x7f0000000000)=""/57)

5.519988225s ago: executing program 3 (id=8600):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x1, './file0\x00'}, 0x6e)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x8)
madvise(&(0x7f0000000000/0xc00000)=nil, 0xc00003, 0x8)

5.021377067s ago: executing program 8 (id=8601):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f0000001140)={0x26, 'hash\x00', 0x0, 0x0, 'sha256-generic\x00'}, 0x58)
accept4(r0, 0x0, 0x0, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'rng\x00', 0x0, 0x0, 'drbg_pr_hmac_sha512\x00'}, 0x58)

4.667364229s ago: executing program 7 (id=8602):
r0 = socket(0x840000000002, 0x3, 0x100)
connect$inet(r0, &(0x7f0000000000)={0x2, 0x4e20, @remote}, 0x10)
getpeername$packet(r0, &(0x7f0000001540)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @remote}, &(0x7f0000001580)=0x14)
sendmmsg$inet(r0, &(0x7f00000041c0)=[{{&(0x7f0000000040)={0x2, 0x4e21, @multicast2}, 0x10, 0x0, 0x0, &(0x7f0000001700)=[@ip_pktinfo={{0x18, 0x0, 0x8, {r1, @remote, @multicast1}}}], 0x18}}], 0x1, 0x20000000)

4.393815324s ago: executing program 3 (id=8603):
r0 = socket(0x2b, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r1, 0x29, 0x20, &(0x7f0000000180)={@private0, 0x8000000, 0x0, 0xff, 0x1}, 0x20)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000180)={@mcast1, 0x8000000, 0x0, 0xff, 0x2}, 0x20)

4.108520405s ago: executing program 8 (id=8604):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'macsec0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000880)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000006c0)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=r2, @ANYBLOB="00000000000000002c0012800b0001006d616373656300001c000280060008"], 0x4c}}, 0x0)

3.673993723s ago: executing program 7 (id=8605):
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000000)={@multicast1, @dev={0xac, 0x14, 0x14, 0x2f}}, 0xc)
setsockopt$inet_mreqn(r0, 0x0, 0x27, &(0x7f0000000100)={@multicast2, @local}, 0xc)
setsockopt$inet_msfilter(r0, 0x0, 0x29, &(0x7f0000000180)={@multicast1, @local}, 0x10)

3.434439475s ago: executing program 3 (id=8606):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000000c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff000000000200a8140900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETRULE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000440)=ANY=[@ANYBLOB="38000000070a011d29ca1e668192a40002"], 0x38}}, 0x0)

3.000475049s ago: executing program 8 (id=8607):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000840)={[{@dioread_lock}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@journal_dev={'journal_dev', 0x3d, 0xc}}, {@user_xattr}, {@sysvgroups}, {@lazytime}]}, 0x3, 0x43a, &(0x7f0000000340)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x0)
fcntl$setlease(r0, 0x400, 0x0)
link(&(0x7f0000000200)='./file1\x00', &(0x7f0000000300)='./bus\x00')

2.603943111s ago: executing program 7 (id=8608):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r0, 0x107, 0x16, &(0x7f0000000100)={0x3, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x40}, {0x6}]}, 0x8)
syz_emit_ethernet(0x2e, &(0x7f0000001140)={@broadcast, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x3}, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x20, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x1, 0x4e20, 0xc, 0x0, @gue={{0x1, 0x0, 0x0, 0x0, 0x0, @void}}}}}}}, 0x0)

2.27451812s ago: executing program 3 (id=8609):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000140), 0x8601, 0x0)
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000080)={0xb0000005})
ppoll(&(0x7f0000000200)=[{r1, 0x4080}], 0x1, 0x0, 0x0, 0x0)

1.472600206s ago: executing program 7 (id=8610):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f00000000c0)='./binderfs/binder0\x00', 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x0, 0x28011, r1, 0x400000)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x2000001, 0x12, r0, 0x0)

1.38544607s ago: executing program 8 (id=8611):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@ipv6_newaddr={0x34, 0x14, 0x401, 0x0, 0x0, {0xa, 0x8, 0x0, 0x0, r2}, [@IFA_ADDRESS={0x14, 0x1, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFA_RT_PRIORITY={0x8, 0x9, 0xc0}]}, 0x34}}, 0x20000080)

503.746021ms ago: executing program 7 (id=8612):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000500)={&(0x7f00000000c0)='netlink_extack\x00'}, 0x10)
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000140), 0x62981)
ioctl$SNDRV_SEQ_IOCTL_CREATE_QUEUE(r0, 0xc08c5332, &(0x7f00000001c0)={0x0, 0x800000, 0x0, 'queue1\x00', 0x2})
writev(r0, &(0x7f0000000580)=[{&(0x7f0000000000)="238292", 0xfff6}], 0x2)

400.893649ms ago: executing program 3 (id=8613):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet6(r0, &(0x7f0000003000)=[{{&(0x7f00000002c0)={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x5}, 0x1c, &(0x7f0000000a00)=[{&(0x7f0000000640)=':', 0x1}], 0x1}}, {{&(0x7f0000000d40)={0xa, 0x0, 0x0, @private1}, 0x1c, &(0x7f0000000f40)=[{&(0x7f00000077c0)="d7", 0x1}], 0x1}}], 0x2, 0x24000045)
shutdown(r0, 0x1)
setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x84, 0x19, &(0x7f0000000200)={0x0, 0x8}, 0x8)

112.515849ms ago: executing program 4 (id=8614):
r0 = add_key$user(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, &(0x7f00000000c0)="ff", 0x1, 0xffffffffffffffff)
r1 = add_key$keyring(&(0x7f0000000240), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x0}, &(0x7f00000001c0)="a6", 0x1, r1)
keyctl$KEYCTL_MOVE(0x1e, r0, 0xffffffffffffffff, r1, 0x0)

0s ago: executing program 8 (id=8615):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000008000000000000001000000940000000fad433ec50000000f00000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x78)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f00000000c0)='netlink_extack\x00', r0}, 0x10)
r1 = socket(0x10, 0x2, 0x0)
write(r1, &(0x7f0000000000)="110000001a005f0414f9f4070009040081", 0x11)

kernel console output (not intermixed with test programs):

: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1384.674256][ T3705] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1384.825044][T21112] usb 5-1: Using ep0 maxpacket: 16
[ 1384.841511][ T3705] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1384.852540][ T3705] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1384.856796][T21112] usb 5-1: config 0 has an invalid interface number: 214 but max is 0
[ 1384.871228][T21112] usb 5-1: config 0 has no interface number 0
[ 1384.878852][T21112] usb 5-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[ 1384.969470][T21112] usb 5-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1384.981926][T21112] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1384.990330][T21112] usb 5-1: Product: syz
[ 1384.994812][T21112] usb 5-1: Manufacturer: syz
[ 1384.999663][T21112] usb 5-1: SerialNumber: syz
[ 1385.033767][T21112] usb 5-1: config 0 descriptor??
[ 1385.940856][T21112] input: syz syz as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.214/input/input50
[ 1386.312735][T18718] usb 5-1: USB disconnect, device number 30
[ 1386.573946][T22197] loop3: detected capacity change from 0 to 4096
[ 1386.765096][T22197] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1387.134435][T22219] loop1: detected capacity change from 0 to 64
[ 1387.498225][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1387.964986][T22227] loop1: detected capacity change from 0 to 64
[ 1388.321961][T13736] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[ 1388.574431][T13736] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1388.588171][T13736] usb 4-1: not running at top speed; connect to a high speed hub
[ 1388.620831][T13736] usb 4-1: config 129 has an invalid interface number: 153 but max is 0
[ 1388.629678][T13736] usb 4-1: config 129 has an invalid descriptor of length 0, skipping remainder of the config
[ 1388.647721][T13736] usb 4-1: config 129 has no interface number 0
[ 1388.656581][T13736] usb 4-1: config 129 interface 153 altsetting 241 endpoint 0x4 has invalid wMaxPacketSize 0
[ 1388.667203][T13736] usb 4-1: config 129 interface 153 altsetting 241 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1388.683826][T13736] usb 4-1: config 129 interface 153 has no altsetting 0
[ 1389.051864][T13736] usb 4-1: New USB device found, idVendor=110a, idProduct=1110, bcdDevice=ea.39
[ 1389.061553][T13736] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1389.072604][T13736] usb 4-1: Product: syz
[ 1389.077174][T13736] usb 4-1: Manufacturer: syz
[ 1389.086250][T13736] usb 4-1: SerialNumber: syz
[ 1389.150410][   T29] audit: type=1326 audit(1736307355.058:1258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22244 comm="syz.4.7060" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70fd579 code=0x0
[ 1389.423793][T13736] ti_usb_3410_5052 4-1:129.153: TI USB 3410 1 port adapter converter detected
[ 1389.436315][T13736] ti_usb_3410_5052 4-1:129.153: missing endpoints
[ 1389.465098][T13736] usb 4-1: USB disconnect, device number 12
[ 1390.597985][T22264] netlink: 248 bytes leftover after parsing attributes in process `syz.2.7066'.
[ 1390.607645][T22264] netlink: 248 bytes leftover after parsing attributes in process `syz.2.7066'.
[ 1391.616099][T22277] loop2: detected capacity change from 0 to 2048
[ 1392.079407][T22277] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1392.232046][T22277] UDF-fs: error (device loop2): udf_fiiter_advance_blk: extent after position 232 not allocated in directory (ino 1376)
[ 1393.189835][T22295] netlink: 28 bytes leftover after parsing attributes in process `syz.2.7079'.
[ 1393.199638][T22296] tap0: tun_chr_ioctl cmd 1074025677
[ 1393.205826][T22296] tap0: linktype set to 6
[ 1393.265732][T22298] loop7: detected capacity change from 0 to 128
[ 1393.297377][T22298] FAT-fs (loop7): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1)
[ 1393.584476][T22298] FAT-fs (loop7): FAT read failed (blocknr 128)
[ 1393.694625][T22302] netlink: 'syz.2.7083': attribute type 11 has an invalid length.
[ 1393.705687][T22302] netlink: 44 bytes leftover after parsing attributes in process `syz.2.7083'.
[ 1396.566890][T13736] hid-generic 0000:0000:0000.0055: unknown main item tag 0x0
[ 1396.585836][T13736] hid-generic 0000:0000:0000.0055: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[ 1396.884078][   T25] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[ 1397.068647][   T25] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1397.112800][   T25] usb 4-1: no configurations
[ 1397.117923][   T25] usb 4-1: can't read configurations, error -22
[ 1397.606087][T22364] mkiss: ax0: crc mode is auto.
[ 1398.051988][ T5800] Bluetooth: hci5: command 0x0405 tx timeout
[ 1398.107122][T22369] loop3: detected capacity change from 0 to 512
[ 1398.119625][T22369] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1398.145657][T22369] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[ 1398.254907][T22369] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002]
[ 1398.290567][T22369] System zones: 1-12
[ 1398.355832][T22369] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.7113: corrupted in-inode xattr: e_value size too large
[ 1398.415076][T22369] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.7113: couldn't read orphan inode 15 (err -117)
[ 1398.460759][T22369] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1398.875158][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1399.298106][T22387] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[ 1399.572877][T22391] bridge_slave_0: default FDB implementation only supports local addresses
[ 1400.124352][   T25] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[ 1400.369004][   T25] usb 5-1: Using ep0 maxpacket: 32
[ 1400.423959][   T25] usb 5-1: config 0 has an invalid interface number: 51 but max is 0
[ 1400.432546][   T25] usb 5-1: config 0 has no interface number 0
[ 1400.471062][   T25] usb 5-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1400.480030][T22411] loop3: detected capacity change from 0 to 128
[ 1400.483316][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1400.497120][   T25] usb 5-1: Product: syz
[ 1400.501583][   T25] usb 5-1: Manufacturer: syz
[ 1400.507641][T22411] EXT4-fs: Ignoring removed nobh option
[ 1400.514952][   T25] usb 5-1: SerialNumber: syz
[ 1400.588148][T22411] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1400.605961][   T25] usb 5-1: config 0 descriptor??
[ 1400.632091][T22411] ext4 filesystem being mounted at /220/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1400.734958][   T25] quatech2 5-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1400.860128][   T25] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0
[ 1400.912729][   T25] usb 5-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1
[ 1401.032572][T22411] fscrypt (loop3, inode 12): Sub-block data units not yet supported with IV_INO_LBLK_32
[ 1401.289853][    C1] usb 5-1: qt2_read_bulk_callback - non-zero urb status: -71
[ 1401.304857][   T25] usb 5-1: USB disconnect, device number 31
[ 1401.321334][   T25] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0
[ 1401.388979][   T25] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1
[ 1401.403132][   T25] quatech2 5-1:0.51: device disconnected
[ 1401.529886][T19821] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1403.024686][T22443] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7143'.
[ 1403.701163][T22449] loop3: detected capacity change from 0 to 2048
[ 1403.763757][T22449] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1403.939657][T22459] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1404.055129][   T25] usb 5-1: new high-speed USB device number 32 using dummy_hcd
[ 1404.249233][   T25] usb 5-1: Using ep0 maxpacket: 16
[ 1404.277698][   T25] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1404.290071][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1404.338968][   T25] usb 5-1: New USB device found, idVendor=2040, idProduct=0264, bcdDevice=4e.d1
[ 1404.348640][   T25] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1404.357050][   T25] usb 5-1: Product: syz
[ 1404.361472][   T25] usb 5-1: Manufacturer: syz
[ 1404.369064][   T25] usb 5-1: SerialNumber: syz
[ 1404.400677][   T25] usb 5-1: config 0 descriptor??
[ 1404.439262][   T25] em28xx 5-1:0.0: New device syz syz @ 480 Mbps (2040:0264, interface 0, class 0)
[ 1404.449048][   T25] em28xx 5-1:0.0: Audio interface 0 found (Vendor Class)
[ 1404.790036][T22468] netlink: 16 bytes leftover after parsing attributes in process `syz.2.7155'.
[ 1404.856884][T13736] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[ 1405.030119][T13736] usb 4-1: Using ep0 maxpacket: 16
[ 1405.049857][T13736] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1405.066015][T13736] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1405.080460][T13736] usb 4-1: New USB device found, idVendor=05ac, idProduct=0246, bcdDevice= 0.00
[ 1405.090127][T13736] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1405.177457][T13736] usb 4-1: config 0 descriptor??
[ 1405.188894][   T25] em28xx 5-1:0.0: unknown em28xx chip ID (214)
[ 1405.249927][   T29] audit: type=1107 audit(1736307370.146:1259): pid=22472 uid=0 auid=4 ses=2 subj=unconfined msg=''
[ 1405.415097][   T25] em28xx 5-1:0.0: Config register raw data: 0xfffffffb
[ 1405.427267][   T25] em28xx 5-1:0.0: AC97 chip type couldn't be determined
[ 1405.434799][   T25] em28xx 5-1:0.0: No AC97 audio processor
[ 1405.467118][   T25] usb 5-1: USB disconnect, device number 32
[ 1405.478963][   T25] em28xx 5-1:0.0: Disconnecting em28xx
[ 1405.540156][   T25] em28xx 5-1:0.0: Freeing device
[ 1405.687499][T13736] apple 0003:05AC:0246.0056: unknown main item tag 0xd
[ 1405.695154][T13736] apple 0003:05AC:0246.0056: unexpected long global item
[ 1405.710695][T13736] apple 0003:05AC:0246.0056: parse failed
[ 1405.720543][T13736] apple 0003:05AC:0246.0056: probe with driver apple failed with error -22
[ 1405.986676][T18718] usb 4-1: USB disconnect, device number 15
[ 1406.082184][T22479] loop7: detected capacity change from 0 to 256
[ 1406.185277][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[ 1406.209121][T22479] vfat: Bad value for 'time_offset'
[ 1406.587451][T22488] loop4: detected capacity change from 0 to 1024
[ 1406.639368][T22488] EXT4-fs: Ignoring removed orlov option
[ 1406.681164][T22488] EXT4-fs (loop4): stripe (5) is not aligned with cluster size (16), stripe is disabled
[ 1406.689977][T22490] loop1: detected capacity change from 0 to 2048
[ 1406.774838][T22488] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1406.806128][T22495] vivid-004: disconnect
[ 1406.818562][T22494] vivid-004: reconnect
[ 1406.865791][T22488] EXT4-fs error (device loop4): ext4_read_inline_dir:1566: inode #12: block 7: comm syz.4.7164: path /412/file1/file0: bad entry in directory: rec_len is too small for name_len - offset=40, inode=14, rec_len=40, size=80 fake=0
[ 1406.892548][T22488] EXT4-fs (loop4): Remounting filesystem read-only
[ 1407.214128][T22490] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1407.354137][T17460] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1407.383780][T22490] EXT4-fs error (device loop1): ext4_find_extent:938: inode #2: comm syz.1.7165: pblk 1 bad header/extent: invalid magic - magic 2, entries 0, max 3(0), depth 0(4)
[ 1407.446719][T22490] EXT4-fs (loop1): Remounting filesystem read-only
[ 1407.882854][T22017] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1408.113021][T22515] loop7: detected capacity change from 0 to 256
[ 1408.384909][T22515] FAT-fs (loop7): Directory bread(block 64) failed
[ 1408.391903][T22515] FAT-fs (loop7): Directory bread(block 65) failed
[ 1408.399095][T22515] FAT-fs (loop7): Directory bread(block 66) failed
[ 1408.408767][T22515] FAT-fs (loop7): Directory bread(block 67) failed
[ 1408.415695][T22515] FAT-fs (loop7): Directory bread(block 68) failed
[ 1408.422687][T22515] FAT-fs (loop7): Directory bread(block 69) failed
[ 1408.429798][T22515] FAT-fs (loop7): Directory bread(block 70) failed
[ 1408.436577][T22515] FAT-fs (loop7): Directory bread(block 71) failed
[ 1408.446452][T22515] FAT-fs (loop7): Directory bread(block 72) failed
[ 1408.453421][T22515] FAT-fs (loop7): Directory bread(block 73) failed
[ 1408.845378][T22521] loop2: detected capacity change from 0 to 2048
[ 1408.925607][T22521] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1408.976265][T22526] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1409.055133][T22521] ------------[ cut here ]------------
[ 1409.061626][T22521] WARNING: CPU: 0 PID: 22521 at security/landlock/fs.c:955 current_check_refer_path+0x1343/0x16d0
[ 1409.075366][T22521] Modules linked in:
[ 1409.079708][T22521] CPU: 0 UID: 0 PID: 22521 Comm: syz.2.7177 Tainted: G        W          6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[ 1409.092759][T22521] Tainted: [W]=WARN
[ 1409.096766][T22521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1409.109801][T22521] RIP: 0010:current_check_refer_path+0x1343/0x16d0
[ 1409.120140][T22521] Code: e8 52 c8 e0 fb 66 b8 00 08 89 44 24 08 e9 89 f6 ff ff e8 40 c8 e0 fb 66 b8 00 10 89 44 24 08 e9 77 f6 ff ff e8 2e c8 e0 fb 90 <0f> 0b 90 e9 61 f6 ff ff 8b 7c 24 14 e8 8c f6 7b fc 66 85 db 0f 84
[ 1409.143922][T22521] RSP: 0018:ffff8881357fbb10 EFLAGS: 00010283
[ 1409.150309][T22521] RAX: ffffffff85d860d2 RBX: 0000000000000000 RCX: 0000000000080000
[ 1409.158752][T22521] RDX: ffffc90008c80000 RSI: 0000000000000661 RDI: 0000000000000662
[ 1409.169746][T22521] RBP: ffff8881357fbc30 R08: 0000000000000005 R09: ffffffff85d85679
[ 1409.178106][T22521] R10: 0000000000000008 R11: ffff8881181a8000 R12: ffff888135444540
[ 1409.186442][T22521] R13: ffff8881181a8b38 R14: 0000000000000000 R15: 000000000000000f
[ 1409.194671][T22521] FS:  0000000000000000(0000) GS:ffff88813fc00000(0063) knlGS:00000000f5126b40
[ 1409.206572][T22521] CS:  0010 DS: 002b ES: 002b CR0: 0000000080050033
[ 1409.213641][T22521] CR2: 0000000032b1bffc CR3: 0000000131aa6000 CR4: 00000000003526f0
[ 1409.225684][T22521] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 1409.239265][T22521] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 1409.247705][T22521] Call Trace:
[ 1409.251301][T22521]  <TASK>
[ 1409.254428][T22521]  ? show_trace_log_lvl+0x268/0x3d0
[ 1409.259974][T22521]  ? hook_path_rename+0x74/0x90
[ 1409.267957][T22521]  ? show_regs+0xb4/0xe0
[ 1409.272727][T22521]  ? __warn+0x2c7/0x780
[ 1409.277191][T22521]  ? current_check_refer_path+0x1343/0x16d0
[ 1409.283518][T22521]  ? report_bug+0x929/0xbd0
[ 1409.288319][T22521]  ? current_check_refer_path+0x1343/0x16d0
[ 1409.297270][T22521]  ? handle_bug+0x6d/0x90
[ 1409.301894][T22521]  ? exc_invalid_op+0x1f/0x50
[ 1409.306981][T22521]  ? asm_exc_invalid_op+0x1f/0x30
[ 1409.312330][T22521]  ? current_check_refer_path+0x8e9/0x16d0
[ 1409.318550][T22521]  ? current_check_refer_path+0x1342/0x16d0
[ 1409.324774][T22521]  ? current_check_refer_path+0x1343/0x16d0
[ 1409.337463][T22521]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1409.342981][T22521]  hook_path_rename+0x74/0x90
[ 1409.349064][T22521]  security_path_rename+0x285/0x740
[ 1409.354579][T22521]  do_renameat2+0xff3/0x1d50
[ 1409.362167][T22521]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1409.368428][T22521]  __ia32_sys_renameat2+0x14f/0x1f0
[ 1409.373953][T22521]  ia32_sys_call+0x2f8a/0x4180
[ 1409.379122][T22521]  __do_fast_syscall_32+0xb0/0x110
[ 1409.384538][T22521]  ? irqentry_exit+0x16/0x60
[ 1409.392287][T22521]  do_fast_syscall_32+0x38/0x80
[ 1409.397484][T22521]  do_SYSENTER_32+0x1f/0x30
[ 1409.402429][T22521]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1409.409134][T22521] RIP: 0023:0xf7fd5579
[ 1409.413688][T22521] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1409.436355][T22521] RSP: 002b:00000000f512655c EFLAGS: 00000206 ORIG_RAX: 0000000000000161
[ 1409.448560][T22521] RAX: ffffffffffffffda RBX: 00000000ffffff9c RCX: 0000000020000780
[ 1409.457712][T22521] RDX: 00000000ffffff9c RSI: 00000000200007c0 RDI: 0000000000000002
[ 1409.468674][T22521] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1409.477130][T22521] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1409.485495][T22521] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1409.493745][T22521]  </TASK>
[ 1409.499704][T22521] ---[ end trace 0000000000000000 ]---
[ 1411.402367][T22552] loop7: detected capacity change from 0 to 2048
[ 1411.526996][T22555] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1412.202028][T22565] netlink: 72 bytes leftover after parsing attributes in process `syz.2.7197'.
[ 1412.464514][T22570] loop7: detected capacity change from 0 to 8
[ 1412.976339][T22575] netem: change failed
[ 1413.155147][T22572] loop3: detected capacity change from 0 to 4096
[ 1413.203080][T22572] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1413.255685][T22584] loop1: detected capacity change from 0 to 128
[ 1413.434987][T22584] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1413.454396][T22584] ext4 filesystem being mounted at /35/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1413.608089][T22572] ntfs3(loop3): Failed to initialize $Extend/$Reparse.
[ 1413.617793][T22017] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1413.706149][T22590] loop7: detected capacity change from 0 to 64
[ 1413.884229][T22590] hfs: unable to locate alternate MDB
[ 1413.891452][T22590] hfs: continuing without an alternate MDB
[ 1413.923867][T22592] loop2: detected capacity change from 0 to 512
[ 1413.955007][T22592] EXT4-fs: Ignoring removed oldalloc option
[ 1413.963004][T22592] EXT4-fs: Ignoring removed oldalloc option
[ 1414.075896][T22594] bond1: entered promiscuous mode
[ 1414.081214][T22594] bond1: entered allmulticast mode
[ 1414.088014][T22594] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1414.278492][T22599] loop3: detected capacity change from 0 to 256
[ 1414.293507][T22592] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1414.305394][T22592] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1414.332130][T22594] bond1 (unregistering): Released all slaves
[ 1414.543114][T22592] EXT4-fs error (device loop2): ext4_free_branches:1023: inode #16: comm syz.2.7208: invalid indirect mapped block 83886080 (level 1)
[ 1414.594833][T22592] EXT4-fs (loop2): Remounting filesystem read-only
[ 1414.610473][T22592] EXT4-fs (loop2): 1 orphan inode deleted
[ 1414.617399][T22592] EXT4-fs (loop2): 1 truncate cleaned up
[ 1414.624876][T22592] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1415.161985][T21106] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1415.907974][ T3705] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1416.013943][T22625] vxcan1: tx address claim with dest, not broadcast
[ 1416.100810][ T3705] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1416.454822][ T3705] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1416.586509][ T3705] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1416.813852][ T3705] bridge_slave_1: left allmulticast mode
[ 1416.820102][ T3705] bridge_slave_1: left promiscuous mode
[ 1416.826707][ T3705] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1416.844039][ T3705] bridge_slave_0: left allmulticast mode
[ 1416.849938][ T3705] bridge_slave_0: left promiscuous mode
[ 1416.856857][ T3705] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1417.573767][ T3705] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1417.629763][T22018] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1417.649449][T22018] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1417.677858][T22018] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1417.721734][T22018] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1417.742034][T22018] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1417.758970][T22018] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1417.771112][ T3705] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1417.860478][ T3705] bond0 (unregistering): Released all slaves
[ 1418.908180][ T3705] hsr_slave_0: left promiscuous mode
[ 1418.941258][ T3705] hsr_slave_1: left promiscuous mode
[ 1418.962598][ T3705] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1418.972080][ T3705] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1418.985904][ T3705] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1418.996399][ T3705] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1419.051502][ T3705] veth1_macvtap: left promiscuous mode
[ 1419.060112][ T3705] veth0_macvtap: left promiscuous mode
[ 1419.066177][ T3705] veth1_vlan: left promiscuous mode
[ 1419.071741][ T3705] veth0_vlan: left promiscuous mode
[ 1419.257254][T13736] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[ 1419.366560][   T25] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[ 1419.453285][T13736] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1419.480870][T13736] usb 2-1: config 6 has an invalid interface number: 200 but max is 0
[ 1419.489832][T13736] usb 2-1: config 6 has no interface number 0
[ 1419.501110][T13736] usb 2-1: config 6 interface 200 has no altsetting 0
[ 1419.555532][T13736] usb 2-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f
[ 1419.568250][T13736] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1419.576536][T13736] usb 2-1: Product: syz
[ 1419.593214][T13736] usb 2-1: Manufacturer: syz
[ 1419.598248][T13736] usb 2-1: SerialNumber: syz
[ 1419.609057][   T25] usb 4-1: Using ep0 maxpacket: 32
[ 1419.638594][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1419.650526][   T25] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1419.660969][   T25] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1419.673245][   T25] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1419.688950][   T25] usb 4-1: config 0 descriptor??
[ 1419.708852][   T25] hub 4-1:0.0: USB hub found
[ 1419.887113][ T3705] team0 (unregistering): Port device team_slave_1 removed
[ 1419.974139][   T25] hub 4-1:0.0: config failed, hub doesn't have any ports! (err -19)
[ 1420.008004][ T3705] team0 (unregistering): Port device team_slave_0 removed
[ 1420.074039][ T5800] Bluetooth: hci0: command tx timeout
[ 1420.578386][T13736] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state.
[ 1420.579349][T22637] chnl_net:caif_netlink_parms(): no params data found
[ 1420.587393][   T25] hid-generic 0003:046D:C31C.0057: item fetching failed at offset 0/1
[ 1420.592005][   T25] hid-generic 0003:046D:C31C.0057: probe with driver hid-generic failed with error -22
[ 1420.637704][T13736] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer.
[ 1420.672011][T13736] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T)
[ 1420.680376][T13736] usb 2-1: media controller created
[ 1420.745852][T13736] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered.
[ 1420.758291][T22659] loop7: detected capacity change from 0 to 1024
[ 1420.816911][T22659] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1420.888612][T13736] dvb-usb: bulk message failed: -71 (6/0)
[ 1420.900115][T13736] dvb-usb: bulk message failed: -71 (6/0)
[ 1420.902265][T22659] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1420.906497][T13736] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T'
[ 1420.907317][   T25] usb 4-1: USB disconnect, device number 16
[ 1420.919888][T13736] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input51
[ 1420.990580][T13736] dvb-usb: schedule remote query interval to 150 msecs.
[ 1421.002142][T13736] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected.
[ 1421.050345][T13736] usb 2-1: USB disconnect, device number 20
[ 1421.232766][T13736] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected.
[ 1421.366003][T13594] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1421.424845][T22666] loop4: detected capacity change from 0 to 256
[ 1422.053059][T22673] loop1: detected capacity change from 0 to 256
[ 1422.123219][T22673] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1422.137232][T22673] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[ 1422.153118][T22637] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1422.163808][T22637] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1422.171837][T22637] bridge_slave_0: entered allmulticast mode
[ 1422.181057][T22637] bridge_slave_0: entered promiscuous mode
[ 1422.290757][ T5800] Bluetooth: hci0: command tx timeout
[ 1422.291938][T22637] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1422.304372][T22637] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1422.312249][T22637] bridge_slave_1: entered allmulticast mode
[ 1422.324431][T22637] bridge_slave_1: entered promiscuous mode
[ 1422.330827][T22673] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe563dbae, utbl_chksum : 0xe619d30d)
[ 1422.336360][T22675] netlink: 32 bytes leftover after parsing attributes in process `syz.4.7240'.
[ 1422.355203][T22675] netlink: 7 bytes leftover after parsing attributes in process `syz.4.7240'.
[ 1422.557281][T22637] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1422.598585][T22637] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1423.056569][T22637] team0: Port device team_slave_0 added
[ 1423.113542][T22637] team0: Port device team_slave_1 added
[ 1423.371421][T22637] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1423.381532][T22637] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1423.410568][T22637] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1423.484427][T22637] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1423.491941][T22637] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1423.520855][T22637] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1423.975861][T22637] hsr_slave_0: entered promiscuous mode
[ 1424.015451][T22637] hsr_slave_1: entered promiscuous mode
[ 1424.034543][T22637] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1424.042689][T22637] Cannot create hsr debugfs directory
[ 1424.088039][T22689] mac80211_hwsim hwsim28 wlan0: entered promiscuous mode
[ 1424.098529][T22689] macvtap1: entered promiscuous mode
[ 1424.105154][T22689] macvtap1: entered allmulticast mode
[ 1424.112457][T22689] mac80211_hwsim hwsim28 wlan0: entered allmulticast mode
[ 1424.145665][T22689] mac80211_hwsim hwsim28 wlan0: left allmulticast mode
[ 1424.157963][T22689] mac80211_hwsim hwsim28 wlan0: left promiscuous mode
[ 1424.476095][ T5800] Bluetooth: hci0: command tx timeout
[ 1424.888501][T22701] loop3: detected capacity change from 0 to 512
[ 1424.908988][T22701] EXT4-fs (loop3): blocks per group (255) and clusters per group (8192) inconsistent
[ 1425.494780][T22705] loop4: detected capacity change from 0 to 16
[ 1425.587404][T22705] erofs (device loop4): mounted with root inode @ nid 36.
[ 1425.667688][T22705] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[ 1425.701699][T22637] netdevsim netdevsim5 netdevsim0: renamed from eth0
[ 1425.729604][T22705] erofs (device loop4): read error -117 @ 43 of nid 36
[ 1425.741226][T22637] netdevsim netdevsim5 netdevsim1: renamed from eth1
[ 1425.777077][T22705] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[ 1425.787263][T22705] erofs (device loop4): read error -117 @ 43 of nid 36
[ 1425.814369][T22637] netdevsim netdevsim5 netdevsim2: renamed from eth2
[ 1425.918892][T22637] netdevsim netdevsim5 netdevsim3: renamed from eth3
[ 1426.454210][T22637] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1426.506142][T22637] 8021q: adding VLAN 0 to HW filter on device team0
[ 1426.559276][ T3545] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1426.567072][ T3545] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1426.585289][ T3545] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1426.593042][ T3545] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1426.691325][T22637] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[ 1426.704872][T22637] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1426.749480][ T5800] Bluetooth: hci0: command tx timeout
[ 1427.019590][T22722] loop4: detected capacity change from 0 to 8
[ 1427.908198][T22734] Bluetooth: MGMT ver 1.23
[ 1428.414230][T22637] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1428.994141][T22753] loop4: detected capacity change from 0 to 64
[ 1429.213324][T22753] hfs: unable to locate alternate MDB
[ 1429.218987][T22753] hfs: continuing without an alternate MDB
[ 1429.335501][T22760] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7275'.
[ 1429.716547][T22766] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7278'.
[ 1430.269165][T22637] veth0_vlan: entered promiscuous mode
[ 1430.307091][T22637] veth1_vlan: entered promiscuous mode
[ 1430.475034][T22637] veth0_macvtap: entered promiscuous mode
[ 1430.530516][T22637] veth1_macvtap: entered promiscuous mode
[ 1430.746864][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1430.758638][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.768877][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1430.782472][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.798050][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1430.811265][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.824245][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1430.835038][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.845128][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1430.858896][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1430.873732][T22637] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1430.981487][T22778] loop7: detected capacity change from 0 to 2048
[ 1431.323511][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1431.340352][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1431.354709][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1431.365680][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1431.375953][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1431.389310][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1431.399494][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1431.410649][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1431.423777][T22637] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1431.434898][T22637] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1431.458731][T22637] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1431.675779][T22788] netlink: 12 bytes leftover after parsing attributes in process `syz.1.7287'.
[ 1431.742971][T22637] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.752148][T22637] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.765719][T22637] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.774897][T22637] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1431.855539][T22790] input: syz0 as /devices/virtual/input/input52
[ 1432.811666][T22799] loop4: detected capacity change from 0 to 2048
[ 1433.082155][T22799]  loop4: p2 < > p3 p4 < >
[ 1433.091714][T22799] loop4: partition table partially beyond EOD, truncated
[ 1433.100771][T22799] loop4: p2 start 4294902784 is beyond EOD, truncated
[ 1433.110745][T22799] loop4: p3 start 4278191616 is beyond EOD, truncated
[ 1434.188397][T22824] loop4: detected capacity change from 0 to 128
[ 1434.675683][   T25] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[ 1434.843873][   T25] usb 2-1: Using ep0 maxpacket: 16
[ 1434.877938][   T25] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1434.888666][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1434.902794][   T25] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1434.912984][   T25] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[ 1434.923132][   T25] usb 2-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1434.927654][T22833] loop7: detected capacity change from 0 to 1024
[ 1435.087913][T22833] hfsplus: failed to load root directory
[ 1435.135636][   T25] usb 2-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1435.145323][   T25] usb 2-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1435.156559][   T25] usb 2-1: Manufacturer: syz
[ 1435.212494][   T25] usb 2-1: config 0 descriptor??
[ 1435.709109][T22827] loop1: detected capacity change from 0 to 128
[ 1435.741678][T22827] FAT-fs (loop1): bogus number of reserved sectors
[ 1435.748480][T22827] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero
[ 1435.761012][T22827] FAT-fs (loop1): Can't find a valid FAT filesystem
[ 1435.828491][T22842] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7304'.
[ 1435.990494][   T25] rc_core: IR keymap rc-hauppauge not found
[ 1435.996643][   T25] Registered IR keymap rc-empty
[ 1436.002451][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.068368][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.139164][   T25] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0
[ 1436.162783][   T25] input: Conexant Hybrid TV (cx231xx) MCE IR no TX as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/rc/rc0/input53
[ 1436.357130][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.395287][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.581444][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.731133][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.845105][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.863271][ T5012] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1436.871659][ T5012] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1436.918831][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1436.970165][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1437.000828][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1437.035673][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1437.044380][ T3545] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1437.052787][ T3545] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1437.060968][   T25] mceusb 2-1:0.0: Error: mce write submit urb error = -90
[ 1437.081240][   T25] mceusb 2-1:0.0: Registered 424242424242 with mce emulator interface version 1
[ 1437.093994][   T25] mceusb 2-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[ 1437.228950][   T25] usb 2-1: USB disconnect, device number 21
[ 1438.830577][T22879] loop1: detected capacity change from 0 to 512
[ 1438.947294][T22879] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1439.267380][T22888] netlink: 4 bytes leftover after parsing attributes in process `syz.4.7321'.
[ 1439.396597][T22017] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1440.581320][   T29] audit: type=1326 audit(1736307403.184:1260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=22902 comm="syz.7.7330" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x0
[ 1440.603256][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1441.068727][T22910] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7331'.
[ 1441.084476][T22910] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7331'.
[ 1441.109615][T22910] vlan2: entered allmulticast mode
[ 1442.135764][T21112] usb 5-1: new high-speed USB device number 33 using dummy_hcd
[ 1442.272867][T22926] netlink: 428 bytes leftover after parsing attributes in process `syz.1.7338'.
[ 1442.291493][T22926] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7338'.
[ 1442.372902][T21112] usb 5-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[ 1442.382514][T21112] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1442.393073][T21112] usb 5-1: Product: syz
[ 1442.397488][T21112] usb 5-1: Manufacturer: syz
[ 1442.405705][T21112] usb 5-1: SerialNumber: syz
[ 1442.497624][T21112] usb 5-1: config 0 descriptor??
[ 1442.773900][T21112] hso 5-1:0.0: Failed to find BULK IN ep
[ 1442.807313][T21112] usb-storage 5-1:0.0: USB Mass Storage device detected
[ 1443.016767][T21112] usb 5-1: USB disconnect, device number 33
[ 1443.019789][T22937] loop5: detected capacity change from 0 to 164
[ 1443.054525][T18718] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[ 1443.261083][T18718] usb 2-1: Using ep0 maxpacket: 32
[ 1443.330652][T18718] usb 2-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7
[ 1443.343092][T18718] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1443.367488][T18718] usb 2-1: config 0 descriptor??
[ 1443.401238][T18718] gspca_main: sunplus-2.14.0 probing 041e:400b
[ 1443.619515][T22945] loop3: detected capacity change from 0 to 2048
[ 1443.832209][T22945] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1444.195237][T22951] loop7: detected capacity change from 0 to 128
[ 1444.336256][T18718] gspca_sunplus: reg_w_riv err -71
[ 1444.344739][T18718] sunplus 2-1:0.0: probe with driver sunplus failed with error -71
[ 1444.345000][T22951] EXT4-fs (loop7): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1444.359427][T18718] usb 2-1: USB disconnect, device number 22
[ 1444.423701][T22951] ext4 filesystem being mounted at /807/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1444.817294][T22958] netlink: 'syz.5.7352': attribute type 4 has an invalid length.
[ 1444.857322][T13594] EXT4-fs (loop7): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1445.342378][T22965] loop7: detected capacity change from 0 to 1024
[ 1446.297380][T22980] loop1: detected capacity change from 0 to 1024
[ 1446.320371][ T4328] hfsplus: b-tree write err: -5, ino 4
[ 1446.377747][T22980] hfsplus: bad catalog entry type
[ 1446.422059][   T25] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[ 1446.639249][   T25] usb 6-1: New USB device found, idVendor=0813, idProduct=0001, bcdDevice=3a.08
[ 1446.648784][   T25] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1446.689614][ T4328] hfsplus: b-tree write err: -5, ino 4
[ 1446.763999][   T25] usb 6-1: config 0 descriptor??
[ 1446.863931][T22984] netlink: 'syz.7.7364': attribute type 21 has an invalid length.
[ 1446.872721][T22984] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1446.909300][   T25] gspca_main: cpia1-2.14.0 probing 0813:0001
[ 1447.462176][   T25] gspca_cpia1: usb_control_msg 03, error -32
[ 1447.541710][   T25] gspca_cpia1: usb_control_msg 03, error -32
[ 1447.754402][   T25] gspca_cpia1: usb_control_msg 03, error -71
[ 1447.780036][   T25] gspca_cpia1: usb_control_msg 01, error -71
[ 1447.786373][   T25] cpia1 6-1:0.0: only firmware version 1 is supported (got: 0)
[ 1447.805861][   T25] usb 6-1: USB disconnect, device number 24
[ 1448.164640][T18718] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[ 1448.687780][T18718] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1448.702118][T18718] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1448.712336][T18718] usb 2-1: New USB device found, idVendor=0d8c, idProduct=0022, bcdDevice= 0.00
[ 1448.721756][T18718] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1448.751774][T18718] usb 2-1: config 0 descriptor??
[ 1449.360972][T18718] cm6533_jd 0003:0D8C:0022.0058: unknown main item tag 0x0
[ 1449.369244][T18718] cm6533_jd 0003:0D8C:0022.0058: item fetching failed at offset 4/5
[ 1449.387614][T18718] cm6533_jd 0003:0D8C:0022.0058: parse failed
[ 1449.397910][T18718] cm6533_jd 0003:0D8C:0022.0058: probe with driver cm6533_jd failed with error -22
[ 1449.625899][T18718] usb 2-1: USB disconnect, device number 23
[ 1450.149089][T23029] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7387'.
[ 1451.731630][T23057] netlink: 132 bytes leftover after parsing attributes in process `syz.5.7398'.
[ 1452.812783][T23072] loop5: detected capacity change from 0 to 512
[ 1452.942947][T23072] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1452.995029][T23075] loop1: detected capacity change from 0 to 256
[ 1453.032986][T23072] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c018, mo2=0002]
[ 1453.066929][T23075] FAT-fs (loop1): Directory bread(block 1285) failed
[ 1453.083533][T23072] EXT4-fs (loop5): 1 truncate cleaned up
[ 1453.091305][T23072] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1453.115709][T23075] FAT-fs (loop1): Directory bread(block 1285) failed
[ 1453.128916][T23075] FAT-fs (loop1): Directory bread(block 1285) failed
[ 1453.140959][T23075] FAT-fs (loop1): Directory bread(block 1285) failed
[ 1453.385576][T23072] EXT4-fs: Ignoring removed bh option
[ 1453.428328][T23072] System zones: 1-12
[ 1453.472950][T23072] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[ 1453.621698][T23082] loop1: detected capacity change from 0 to 512
[ 1453.918263][T23082] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[ 1454.057796][T23082] EXT4-fs (loop1): invalid journal inode
[ 1454.063938][T23082] EXT4-fs (loop1): can't get journal size
[ 1454.102568][T23084] ipvlan2: entered promiscuous mode
[ 1454.158581][T23084] bridge0: port 3(ipvlan2) entered blocking state
[ 1454.169031][T23084] bridge0: port 3(ipvlan2) entered disabled state
[ 1454.181452][T23084] ipvlan2: entered allmulticast mode
[ 1454.188373][T23084] bridge0: entered allmulticast mode
[ 1454.199776][T23084] ipvlan2: left allmulticast mode
[ 1454.208965][T23084] bridge0: left allmulticast mode
[ 1454.385516][T23082] EXT4-fs (loop1): 1 truncate cleaned up
[ 1454.393503][T23082] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1454.784733][T22017] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1455.408040][ T3705] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1455.424882][T22637] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1455.530835][ T3705] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1455.814297][ T3705] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1456.005028][T23109] loop3: detected capacity change from 0 to 1024
[ 1456.038042][ T3705] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1456.080760][T23109] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1456.118848][T23109] EXT4-fs (loop3): stripe (7) is not aligned with cluster size (16), stripe is disabled
[ 1456.224437][T23109] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1456.385714][ T3705] bridge_slave_1: left allmulticast mode
[ 1456.391700][ T3705] bridge_slave_1: left promiscuous mode
[ 1456.401348][ T3705] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1456.484977][ T3705] bridge_slave_0: left allmulticast mode
[ 1456.490883][ T3705] bridge_slave_0: left promiscuous mode
[ 1456.498103][ T3705] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1456.521976][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1457.010104][ T3705] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1457.031109][ T3705] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1457.068321][ T3705] bond0 (unregistering): Released all slaves
[ 1457.737580][ T3705] hsr_slave_0: left promiscuous mode
[ 1457.759704][ T3705] hsr_slave_1: left promiscuous mode
[ 1457.801354][ T3705] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1457.809848][ T3705] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1457.859042][ T3705] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1457.869873][ T3705] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1457.949582][ T3705] veth1_macvtap: left promiscuous mode
[ 1457.955456][ T3705] veth0_macvtap: left promiscuous mode
[ 1457.964440][ T3705] veth1_vlan: left promiscuous mode
[ 1457.970526][ T3705] veth0_vlan: left promiscuous mode
[ 1458.807043][T22018] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 1458.818880][T22018] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 1458.831533][T22018] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 1458.846075][T22018] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 1458.861187][T22018] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[ 1458.938960][T22018] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 1459.039128][ T3705] team0 (unregistering): Port device team_slave_1 removed
[ 1459.071646][ T3705] team0 (unregistering): Port device team_slave_0 removed
[ 1460.247409][T23139] loop4: detected capacity change from 0 to 64
[ 1460.600990][T23126] chnl_net:caif_netlink_parms(): no params data found
[ 1461.090247][T23154] netlink: 208 bytes leftover after parsing attributes in process `syz.4.7439'.
[ 1461.101695][T23154] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7439'.
[ 1461.254374][ T5800] Bluetooth: hci0: command tx timeout
[ 1461.856485][T23168] loop4: detected capacity change from 0 to 256
[ 1461.893022][T23168] exfat: Deprecated parameter 'namecase'
[ 1461.899165][T23168] exfat: Deprecated parameter 'namecase'
[ 1462.078156][T23126] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1462.086118][T23126] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1462.094859][T23126] bridge_slave_0: entered allmulticast mode
[ 1462.113609][T23126] bridge_slave_0: entered promiscuous mode
[ 1462.128604][T23126] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1462.136316][T23126] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1462.148860][T23126] bridge_slave_1: entered allmulticast mode
[ 1462.158302][T23126] bridge_slave_1: entered promiscuous mode
[ 1462.309417][T23126] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1462.339547][T23126] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1462.495781][T23168] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1fdf94bc, utbl_chksum : 0xe619d30d)
[ 1462.588995][T23126] team0: Port device team_slave_0 added
[ 1462.813834][T23126] team0: Port device team_slave_1 added
[ 1463.006283][T23126] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1463.013674][T23126] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1463.042733][T23126] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1463.075880][T23126] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1463.088529][T23126] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1463.118678][T23126] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1463.172325][T23181] input: syz0 as /devices/virtual/input/input54
[ 1463.428774][T23186] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7456'.
[ 1463.488706][T23187] loop3: detected capacity change from 0 to 1024
[ 1463.508276][ T5800] Bluetooth: hci0: command tx timeout
[ 1463.806713][T23126] hsr_slave_0: entered promiscuous mode
[ 1463.859530][T23126] hsr_slave_1: entered promiscuous mode
[ 1463.899280][T23126] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1463.907501][T23126] Cannot create hsr debugfs directory
[ 1464.426108][T23199] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7459'.
[ 1465.546058][T23126] netdevsim netdevsim8 netdevsim0: renamed from eth0
[ 1465.587900][T23126] netdevsim netdevsim8 netdevsim1: renamed from eth1
[ 1465.640361][T23126] netdevsim netdevsim8 netdevsim2: renamed from eth2
[ 1465.677166][T23126] netdevsim netdevsim8 netdevsim3: renamed from eth3
[ 1465.741374][ T5800] Bluetooth: hci0: command tx timeout
[ 1465.780025][T23216] loop3: detected capacity change from 0 to 256
[ 1465.908786][T23216] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5183de56, utbl_chksum : 0xe619d30d)
[ 1466.175152][T23224] lo: entered promiscuous mode
[ 1466.197993][T23223] lo: left promiscuous mode
[ 1466.226596][T23225] loop1: detected capacity change from 0 to 1024
[ 1466.421951][T23227] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7472'.
[ 1466.576158][T23126] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1466.720307][T23225] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7470'.
[ 1466.731159][T23126] 8021q: adding VLAN 0 to HW filter on device team0
[ 1466.763445][ T3705] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1466.771180][ T3705] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1466.992785][ T3705] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1467.000501][ T3705] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1467.920970][ T5800] Bluetooth: hci0: command tx timeout
[ 1468.083595][T23126] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1468.344023][T23253] loop4: detected capacity change from 0 to 256
[ 1469.691483][   T29] audit: type=1326 audit(1736307430.395:1261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23258 comm="syz.7.7483" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x7fc00000
[ 1470.057106][T23126] veth0_vlan: entered promiscuous mode
[ 1470.121286][T23126] veth1_vlan: entered promiscuous mode
[ 1470.286022][T23126] veth0_macvtap: entered promiscuous mode
[ 1470.320021][T23126] veth1_macvtap: entered promiscuous mode
[ 1470.376226][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1470.387031][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.400027][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1470.410845][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.422608][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1470.433708][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.446535][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1470.457295][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.467453][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1470.480740][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.496459][T23126] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1470.519472][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1470.531835][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.544900][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1470.555686][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.565876][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1470.579261][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.589481][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1470.600262][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.613004][T23126] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1470.623780][T23126] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1470.640923][T23126] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1470.725494][T23126] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1470.734760][T23126] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1470.749515][T23126] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1470.759814][T23126] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1472.084484][T23304] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7499'.
[ 1473.484723][T22018] Bluetooth: hci0: command 0x0405 tx timeout
[ 1474.505969][T23320] loop4: detected capacity change from 0 to 8192
[ 1474.547136][T23320] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1474.998660][T23339] autofs: Bad value for 'fd'
[ 1476.157084][T23355] netlink: 28 bytes leftover after parsing attributes in process `syz.4.7516'.
[ 1476.335371][T23359] loop1: detected capacity change from 0 to 256
[ 1476.365086][ T5012] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1476.373410][ T5012] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1476.405988][ T2121] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1476.414407][ T2121] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1476.697638][T23359] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d16cac, utbl_chksum : 0xe619d30d)
[ 1476.758547][T23359] exFAT-fs (loop1): error, invalid access to FAT free cluster (entry 0x00000008)
[ 1476.775273][T23359] exFAT-fs (loop1): Filesystem has been set read-only
[ 1476.787183][T23359] exFAT-fs (loop1): error, failed to bmap (inode : ffff888121db4a70 iblock : 8, err : -5)
[ 1476.805748][T23359] exFAT-fs (loop1): error, invalid access to FAT free cluster (entry 0x00000008)
[ 1476.822467][T23359] exFAT-fs (loop1): error, invalid access to FAT free cluster (entry 0x00000008)
[ 1476.832299][T23359] exFAT-fs (loop1): error, failed to bmap (inode : ffff888121db4a70 iblock : 8, err : -5)
[ 1476.843916][T23359] exFAT-fs (loop1): error, invalid access to FAT free cluster (entry 0x00000008)
[ 1476.889458][T23362] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7521'.
[ 1478.678285][T23392] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7533'.
[ 1478.852093][   T25] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[ 1478.950867][T23395] loop8: detected capacity change from 0 to 2048
[ 1479.004948][T23395] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1479.036466][   T25] usb 2-1: Using ep0 maxpacket: 16
[ 1479.050519][   T25] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1479.053575][T23399] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7536'.
[ 1479.064548][   T25] usb 2-1: config 0 interface 0 altsetting 1 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1479.090260][   T25] usb 2-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[ 1479.106271][   T25] usb 2-1: config 0 interface 0 has no altsetting 0
[ 1479.113229][   T25] usb 2-1: New USB device found, idVendor=045e, idProduct=05da, bcdDevice= 0.00
[ 1479.122862][   T25] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1479.152907][   T25] usb 2-1: config 0 descriptor??
[ 1479.645867][   T25] hid-generic 0003:045E:05DA.0059: unknown main item tag 0x0
[ 1479.656454][   T25] hid-generic 0003:045E:05DA.0059: unknown main item tag 0x0
[ 1479.664624][   T25] hid-generic 0003:045E:05DA.0059: unknown main item tag 0x0
[ 1479.672490][   T25] hid-generic 0003:045E:05DA.0059: ignoring exceeding usage max
[ 1479.692546][   T25] hid-generic 0003:045E:05DA.0059: ignoring exceeding usage max
[ 1479.701568][   T25] hid-generic 0003:045E:05DA.0059: unknown main item tag 0x0
[ 1479.709331][   T25] hid-generic 0003:045E:05DA.0059: unknown main item tag 0x0
[ 1479.719859][   T25] hid-generic 0003:045E:05DA.0059: unbalanced collection at end of report description
[ 1479.757021][   T25] hid-generic 0003:045E:05DA.0059: probe with driver hid-generic failed with error -22
[ 1479.950305][   T25] usb 2-1: USB disconnect, device number 24
[ 1481.311071][   T29] audit: type=1326 audit(1736307441.302:1262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23428 comm="syz.7.7550" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf7f06579 code=0x0
[ 1481.608455][T23435] loop3: detected capacity change from 0 to 128
[ 1482.135640][T23444] loop3: detected capacity change from 0 to 64
[ 1482.488693][T23446] loop4: detected capacity change from 0 to 128
[ 1484.141764][T23468] IPVS: set_ctl: invalid protocol: 50 172.20.20.170:20004
[ 1484.230689][T23458] loop8: detected capacity change from 0 to 32768
[ 1484.999357][T23478] netlink: 8 bytes leftover after parsing attributes in process `syz.7.7570'.
[ 1486.537234][T23496] loop8: detected capacity change from 0 to 64
[ 1486.610058][T23496] hfs: Unknown parameter 'ÿ01777777777777777777777ÿÿÿÿ'
[ 1486.632745][T23500] vivid-007: disconnect
[ 1486.697807][T23497] loop1: detected capacity change from 0 to 512
[ 1486.720510][T23497] EXT4-fs: Ignoring removed bh option
[ 1486.727860][T23497] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1486.778153][T23497] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[ 1486.933276][T23506] sch_tbf: burst 19872 is lower than device lo mtu (65550) !
[ 1486.954696][T23497] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 1486.967650][T23497] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1487.079782][T23497] Quota error (device loop1): v2_read_file_info: Free block number 1 out of range (1, 6).
[ 1487.093189][T23497] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1487.209981][T23497] EXT4-fs (loop1): Cannot turn on quotas: error -117
[ 1487.258222][T23497] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:483: comm syz.1.7578: Invalid block bitmap block 0 in block_group 0
[ 1487.294285][T23497] EXT4-fs (loop1): Remounting filesystem read-only
[ 1487.301286][T23497] EXT4-fs (loop1): 1 orphan inode deleted
[ 1487.311668][T23497] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1487.344536][T23494] vivid-007: reconnect
[ 1487.628013][T22017] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1487.837801][T23515] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[ 1488.142933][T23520] loop3: detected capacity change from 0 to 64
[ 1489.858006][   T29] audit: type=1326 audit(1736307449.281:1263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1489.883838][   T29] audit: type=1326 audit(1736307449.281:1264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1489.997343][   T29] audit: type=1326 audit(1736307449.337:1265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1490.024288][   T29] audit: type=1326 audit(1736307449.402:1266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1490.047114][   T29] audit: type=1326 audit(1736307449.402:1267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1490.073073][   T29] audit: type=1326 audit(1736307449.412:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=357 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1490.095751][   T29] audit: type=1326 audit(1736307449.412:1269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=240 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1490.121034][   T29] audit: type=1326 audit(1736307449.412:1270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=20 compat=1 ip=0xf7f17579 code=0x7ffc0000
[ 1490.144595][   T29] audit: type=1326 audit(1736307449.440:1271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23544 comm="syz.8.7598" exe="/root/syz-executor" sig=0 arch=40000003 syscall=173 compat=1 ip=0xf7f175a7 code=0x7ffc0000
[ 1491.366814][T23561] netlink: 9 bytes leftover after parsing attributes in process `syz.3.7606'.
[ 1491.760041][T23563] loop4: detected capacity change from 0 to 2048
[ 1491.925787][T23572] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1492.074069][T23563] NILFS (loop4): vblocknr = 12 has abnormal lifetime: start cno (= 150994946) > current cno (= 3)
[ 1492.085311][T23563] NILFS error (device loop4): nilfs_bmap_propagate: broken bmap (inode number=16)
[ 1492.218999][T23563] Remounting filesystem read-only
[ 1492.250681][T23575] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7612'.
[ 1492.570821][T17460] NILFS (loop4): disposed unprocessed dirty file(s) when stopping log writer
[ 1493.015625][T23590] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1494.013031][ T5800] Bluetooth: hci0: command 0x0405 tx timeout
[ 1494.544487][T23614] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7628'.
[ 1496.559406][T23637] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7638'.
[ 1497.312729][T23647] loop3: detected capacity change from 0 to 128
[ 1497.378149][T23647] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1497.422151][T23647] ext4 filesystem being mounted at /332/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1497.746410][T19821] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1498.924775][   T29] kauditd_printk_skb: 10 callbacks suppressed
[ 1498.924856][   T29] audit: type=1326 audit(1736307457.774:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23670 comm="syz.4.7653" exe="/root/syz-executor" sig=9 arch=40000003 syscall=252 compat=1 ip=0xf70fd579 code=0x0
[ 1499.528516][T22018] Bluetooth: hci4: unexpected event for opcode 0x202f
[ 1501.710799][T23707] @: renamed from vlan0 (while UP)
[ 1502.112685][T23710] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7669'.
[ 1502.242863][T23714] loop8: detected capacity change from 0 to 256
[ 1502.306809][T23717] loop3: detected capacity change from 0 to 512
[ 1502.428506][T23714] exFAT-fs (loop8): failed to load upcase table (idx : 0x0001e4a3, chksum : 0x809ea061, utbl_chksum : 0x7319d30d)
[ 1502.451071][T23717] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 1502.701731][T23717] Process accounting resumed
[ 1502.779505][T23719] loop1: detected capacity change from 0 to 4096
[ 1503.591906][T23730] team0: Device gtp0 is of different type
[ 1503.890556][T23732] loop1: detected capacity change from 0 to 1024
[ 1504.085359][T23737] loop3: detected capacity change from 0 to 512
[ 1504.099885][T23737] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1504.167994][T23737] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[ 1504.200260][T23737] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a042c118, mo2=0002]
[ 1504.229696][T23737] System zones: 1-12
[ 1504.307630][T23737] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.7684: corrupted in-inode xattr: e_value size too large
[ 1504.397595][T23737] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.7684: couldn't read orphan inode 15 (err -117)
[ 1504.447544][T23737] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1504.935075][T23752] loop1: detected capacity change from 0 to 256
[ 1504.979491][T23752] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1504.993576][T23752] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[ 1505.009855][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1505.068884][T23752] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1505.261686][T23756] loop4: detected capacity change from 0 to 24
[ 1505.278936][T23756] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1505.469626][T23758] loop8: detected capacity change from 0 to 1024
[ 1505.497609][T23758] hfsplus: bad catalog file entry
[ 1505.503206][T23758] hfsplus: failed to load root directory
[ 1506.739188][T13736] usb 5-1: new high-speed USB device number 34 using dummy_hcd
[ 1506.840378][T23780] loop8: detected capacity change from 0 to 512
[ 1506.895606][T23780] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1506.944441][T13736] usb 5-1: Using ep0 maxpacket: 32
[ 1506.961379][T13736] usb 5-1: config 0 has an invalid interface number: 67 but max is 0
[ 1506.970080][T13736] usb 5-1: config 0 has no interface number 0
[ 1507.004076][T13736] usb 5-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57
[ 1507.013705][T13736] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1507.024912][T13736] usb 5-1: Product: syz
[ 1507.029937][T13736] usb 5-1: Manufacturer: syz
[ 1507.034781][T13736] usb 5-1: SerialNumber: syz
[ 1507.044147][T13736] usb 5-1: config 0 descriptor??
[ 1507.077967][T13736] smsc95xx v2.0.0
[ 1507.558330][T13736] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -32
[ 1507.570159][T13736] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1507.672630][T23126] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1507.955847][T13736] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1507.976519][T13736] smsc95xx 5-1:0.67: probe with driver smsc95xx failed with error -71
[ 1508.085760][T13736] usb 5-1: USB disconnect, device number 34
[ 1508.504165][T23798] fuse: Bad value for 'fd'
[ 1509.373389][T23807] loop4: detected capacity change from 0 to 2048
[ 1509.757604][T23807] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1510.884214][T17460] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1511.833405][T23850] loop1: detected capacity change from 0 to 128
[ 1511.846004][T23850] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1511.860657][T23850] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1512.470748][T23860] loop8: detected capacity change from 0 to 256
[ 1512.639370][T23860] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x1fdf94bc, utbl_chksum : 0xe619d30d)
[ 1512.771033][T23865] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7733'.
[ 1513.423251][T23873] loop4: detected capacity change from 0 to 2048
[ 1513.590281][T23873] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1513.688941][T23876] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7740'.
[ 1513.698398][T23876] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1513.706151][T23876] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1513.779852][T23876] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1513.788459][T23876] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1513.938542][T23877] loop3: detected capacity change from 0 to 2048
[ 1514.056213][T23879] 9pnet_fd: Insufficient options for proto=fd
[ 1514.113562][T23882] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1514.137393][T23881] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7744'.
[ 1514.645126][T23882] NILFS (loop3): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1514.658882][T23882] NILFS error (device loop3): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1514.757720][T23882] Remounting filesystem read-only
[ 1515.105349][T23896] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7750'.
[ 1515.114861][T23896] netlink: 17 bytes leftover after parsing attributes in process `syz.3.7750'.
[ 1516.407938][T23920] IPVS: wrr: SCTP 172.20.20.187:0 - no destination available
[ 1516.430493][ T5843] IPVS: starting estimator thread 0...
[ 1516.531057][T23921] IPVS: using max 240 ests per chain, 12000 per kthread
[ 1516.846306][T23925] netlink: 'syz.4.7761': attribute type 12 has an invalid length.
[ 1518.005628][T23945] loop1: detected capacity change from 0 to 64
[ 1519.524840][T13736] usb 9-1: new high-speed USB device number 11 using dummy_hcd
[ 1519.740603][T13736] usb 9-1: Using ep0 maxpacket: 32
[ 1519.780702][T13736] usb 9-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1519.795277][T13736] usb 9-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1519.808655][T13736] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1519.818225][T13736] usb 9-1: config 1 has no interface number 0
[ 1519.824882][T13736] usb 9-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1519.839453][T13736] usb 9-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1519.852848][T13736] usb 9-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1519.862340][T13736] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1520.000209][T23975] loop1: detected capacity change from 0 to 1024
[ 1520.130290][T13736] snd_usb_pod 9-1:1.1: Line 6 Pocket POD found
[ 1520.202783][T23977] loop4: detected capacity change from 0 to 2048
[ 1520.310390][T23977]  loop4: p1 < > p2 p3 p4 < p5 >
[ 1520.381640][T23977] loop4: p2 size 458752 extends beyond EOD, truncated
[ 1520.394827][T22018] Bluetooth: hci3: unexpected event for opcode 0x1405
[ 1520.422821][ T4461] hfsplus: b-tree write err: -5, ino 4
[ 1520.448595][T23977] loop4: p3 start 4284289 is beyond EOD, truncated
[ 1520.459041][T23977] loop4: p5 size 458752 extends beyond EOD, truncated
[ 1520.827898][T13736] snd_usb_pod 9-1:1.1: Line 6 Pocket POD now attached
[ 1521.707644][T21112] usb 9-1: USB disconnect, device number 11
[ 1521.715174][T21112] snd_usb_pod 9-1:1.1: Line 6 Pocket POD now disconnected
[ 1522.190178][T24009] loop4: detected capacity change from 0 to 128
[ 1522.429477][T24009] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1522.488752][T24009] ext4 filesystem being mounted at /539/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1522.794822][T24017] netlink: 372 bytes leftover after parsing attributes in process `syz.8.7800'.
[ 1523.499164][T17460] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1524.177983][T13736] usb 5-1: new high-speed USB device number 35 using dummy_hcd
[ 1524.404615][T13736] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1524.416069][T13736] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1524.429206][T13736] usb 5-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[ 1524.438875][T13736] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1524.463570][T13736] usb 5-1: config 0 descriptor??
[ 1524.722686][T22018] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[ 1524.732925][T22018] Bluetooth: hci3: Injecting HCI hardware error event
[ 1524.742487][ T5800] Bluetooth: hci3: hardware error 0x00
[ 1524.972084][T24052] loop3: detected capacity change from 0 to 164
[ 1525.006447][T13736] cp2112 0003:10C4:EA90.005A: unknown main item tag 0x0
[ 1525.031336][T13736] cp2112 0003:10C4:EA90.005A: hidraw0: USB HID v0.00 Device [HID 10c4:ea90] on usb-dummy_hcd.4-1/input0
[ 1525.442129][T24058] netlink: 4 bytes leftover after parsing attributes in process `syz.3.7820'.
[ 1525.519860][T13736] cp2112 0003:10C4:EA90.005A: Part Number: 0x00 Device Version: 0x00
[ 1525.913466][T13736] cp2112 0003:10C4:EA90.005A: error requesting SMBus config
[ 1525.974528][T13736] cp2112 0003:10C4:EA90.005A: probe with driver cp2112 failed with error -71
[ 1526.042260][T13736] usb 5-1: USB disconnect, device number 35
[ 1526.737071][T24071] netlink: 12 bytes leftover after parsing attributes in process `syz.8.7824'.
[ 1526.992547][ T5800] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[ 1527.217083][T24084] loop8: detected capacity change from 0 to 128
[ 1527.249955][T24084] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1527.444127][ T5843] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[ 1527.511020][ T3545] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1527.690126][ T5843] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a
[ 1527.701811][ T5843] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1527.711124][ T5843] usb 4-1: Product: syz
[ 1527.715836][ T5843] usb 4-1: Manufacturer: syz
[ 1527.720690][ T5843] usb 4-1: SerialNumber: syz
[ 1527.775176][ T5843] usb 4-1: config 0 descriptor??
[ 1528.063199][T24098] .: renamed from bond0 (while UP)
[ 1528.606989][T24104] loop8: detected capacity change from 0 to 65
[ 1528.649124][T24104] BFS-fs: bfs_fill_super(): NOTE: filesystem loop8 was created with 512 inodes, the real maximum is 511, mounting anyway
[ 1528.694097][   T25] usb 5-1: new high-speed USB device number 36 using dummy_hcd
[ 1528.849935][ T5843] usb 4-1: Firmware version (0.0) predates our first public release.
[ 1528.858477][ T5843] usb 4-1: Please update to version 0.2 or newer
[ 1528.885607][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1528.897755][   T25] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1528.908191][   T25] usb 5-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00
[ 1528.920352][   T25] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1528.930695][ T5843] usb 4-1: USB disconnect, device number 17
[ 1528.966378][   T25] usb 5-1: config 0 descriptor??
[ 1529.013213][T24106] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1529.089745][T24104] BFS-fs: bfs_readdir(): Bad f_pos=00000001 for loop8:00000002
[ 1529.446285][T24113] netlink: 60 bytes leftover after parsing attributes in process `syz.8.7842'.
[ 1529.455676][T24113] netlink: 60 bytes leftover after parsing attributes in process `syz.8.7842'.
[ 1529.555695][   T25] uclogic 0003:5543:0522.005B: item fetching failed at offset 2/5
[ 1529.568926][   T25] uclogic 0003:5543:0522.005B: parse failed
[ 1529.575702][   T25] uclogic 0003:5543:0522.005B: probe with driver uclogic failed with error -22
[ 1529.898445][   T25] usb 5-1: USB disconnect, device number 36
[ 1530.208361][T24124] tipc: Started in network mode
[ 1530.213567][T24124] tipc: Node identity ac14140f, cluster identity 4711
[ 1530.230377][T24124] tipc: New replicast peer: 255.255.255.255
[ 1530.243017][T24124] tipc: Enabled bearer <udp:syz2>, priority 10
[ 1530.800420][T24132] tap0: tun_chr_ioctl cmd 2147767506
[ 1531.411282][T24145] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7856'.
[ 1531.436233][   T25] tipc: Node number set to 2886997007
[ 1533.193885][T24170] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7868'.
[ 1534.043954][T24184] loop8: detected capacity change from 0 to 128
[ 1534.364929][T24184] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1534.469239][T24196] loop3: detected capacity change from 0 to 1024
[ 1534.493928][T24184] ext4 filesystem being mounted at /68/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1534.572947][T24198] netlink: 36 bytes leftover after parsing attributes in process `syz.1.7879'.
[ 1534.702864][T24198] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1534.816288][T23126] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1535.278856][ T5012] hfsplus: b-tree write err: -5, ino 4
[ 1535.589617][T24206] netlink: 72 bytes leftover after parsing attributes in process `syz.1.7884'.
[ 1536.868355][T24232] netem: change failed
[ 1536.919655][T24230] netlink: 61211 bytes leftover after parsing attributes in process `syz.4.7894'.
[ 1537.256497][T24238] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7900'.
[ 1537.269693][T24238] netlink: 4 bytes leftover after parsing attributes in process `syz.1.7900'.
[ 1537.528154][T24244] loop4: detected capacity change from 0 to 256
[ 1538.192983][T24251] netlink: 8 bytes leftover after parsing attributes in process `syz.1.7904'.
[ 1538.749249][T24262] loop4: detected capacity change from 0 to 128
[ 1538.796518][T24258] loop8: detected capacity change from 0 to 4096
[ 1538.950208][T24262] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1538.972824][T24262] ext4 filesystem being mounted at /554/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1539.026733][T24269] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1539.478407][T17460] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1540.304375][T24287] loop3: detected capacity change from 0 to 1024
[ 1540.460765][T24287] hfsplus: bad catalog entry type
[ 1540.608308][T24290] netlink: 16 bytes leftover after parsing attributes in process `syz.4.7922'.
[ 1540.730582][ T4461] hfsplus: b-tree write err: -5, ino 4
[ 1540.792373][T24294] netlink: 40 bytes leftover after parsing attributes in process `syz.7.7923'.
[ 1541.395143][T24304] loop1: detected capacity change from 0 to 128
[ 1541.517998][T24304] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1541.567625][T24304] ext4 filesystem being mounted at /184/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1541.600007][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1541.831224][T22017] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1542.732639][T24325] loop1: detected capacity change from 0 to 512
[ 1542.971453][T24332] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7942'.
[ 1543.067244][T24325] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1543.083258][T24325] ext4 filesystem being mounted at /186/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1543.776733][T22017] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1543.872403][T21112] usb 4-1: new high-speed USB device number 18 using dummy_hcd
[ 1544.097929][T21112] usb 4-1: New USB device found, idVendor=077b, idProduct=2226, bcdDevice=ca.8b
[ 1544.107454][T21112] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1544.154239][T21112] usb 4-1: config 0 descriptor??
[ 1544.174639][T24344] loop8: detected capacity change from 0 to 4096
[ 1544.465640][T24344] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1544.675695][T24344] fs-verity: sha256 using implementation "sha256-generic"
[ 1544.716005][T24344] fs-verity (loop8, inode 16): fs-verity keyring is empty, rejecting signed file!
[ 1545.058958][T24359] netlink: 'syz.4.7953': attribute type 7 has an invalid length.
[ 1545.099164][T21112] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 1545.112415][T21112] asix 4-1:0.0 (unnamed net_device) (uninitialized): Failed to write RX_CTL mode to 0x0080: ffffffb9
[ 1545.124257][T21112] asix 4-1:0.0: probe with driver asix failed with error -71
[ 1545.204854][T23126] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1545.215288][T21112] usb 4-1: USB disconnect, device number 18
[ 1545.806272][T24370] loop4: detected capacity change from 0 to 64
[ 1547.223603][   T25] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[ 1547.432254][   T25] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1547.476656][   T25] usb 2-1: unable to read config index 0 descriptor/start: -71
[ 1547.492547][   T25] usb 2-1: can't read configurations, error -71
[ 1548.828199][T24413] netlink: 4 bytes leftover after parsing attributes in process `syz.7.7978'.
[ 1548.871722][T24413] netlink: 104 bytes leftover after parsing attributes in process `syz.7.7978'.
[ 1548.884016][T24413] netlink: 104 bytes leftover after parsing attributes in process `syz.7.7978'.
[ 1549.998186][T24431] netlink: 32 bytes leftover after parsing attributes in process `syz.4.7986'.
[ 1550.974708][T24445] netlink: 4 bytes leftover after parsing attributes in process `syz.8.7993'.
[ 1551.611663][T24454] netlink: 24 bytes leftover after parsing attributes in process `syz.7.7996'.
[ 1551.835569][T24462] sch_tbf: burst 0 is lower than device lo mtu (65550) !
[ 1553.023094][T24477] ipvlan2: entered promiscuous mode
[ 1553.571045][T24486] loop8: detected capacity change from 0 to 128
[ 1553.719266][T24486] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1554.682398][ T2121] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1554.779407][T24502] loop3: detected capacity change from 0 to 1024
[ 1555.318954][T24511] netem: incorrect ge model size
[ 1555.319074][T24511] netem: change failed
[ 1556.807492][T24536] loop3: detected capacity change from 0 to 128
[ 1556.891686][   T29] audit: type=1800 audit(1736307511.999:1283): pid=24536 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8037" name="bus" dev="loop3" ino=1049143 res=0 errno=0
[ 1557.791970][T24555] loop3: detected capacity change from 0 to 512
[ 1557.836111][T24555] EXT4-fs (loop3): Test dummy encryption mode enabled
[ 1557.941680][T24555] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[ 1557.972154][T24555] EXT4-fs (loop3): 1 orphan inode deleted
[ 1557.982751][T24555] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1558.894076][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1559.443581][T24571] trusted_key: encrypted_key: keyword 'tfs' not recognized
[ 1560.012351][T21112] usb 2-1: new high-speed USB device number 27 using dummy_hcd
[ 1560.216036][T21112] usb 2-1: Using ep0 maxpacket: 8
[ 1560.247714][T21112] usb 2-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1560.258083][T21112] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1560.312522][T21112] usb 2-1: config 0 descriptor??
[ 1561.051199][T24592] loop3: detected capacity change from 0 to 512
[ 1561.226102][T24592] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1561.242464][T24592] ext4 filesystem being mounted at /421/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1561.478415][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1563.008636][T24616] netlink: 20 bytes leftover after parsing attributes in process `syz.7.8069'.
[ 1563.108821][T21112] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 1563.122865][T21112] asix 2-1:0.0: probe with driver asix failed with error -71
[ 1563.157605][T24618] bond0: option tlb_dynamic_lb: mode dependency failed, not supported in mode balance-rr(0)
[ 1563.209018][T21112] usb 2-1: USB disconnect, device number 27
[ 1563.515326][T24622] loop4: detected capacity change from 0 to 512
[ 1563.535610][T24622] EXT4-fs: Ignoring removed nobh option
[ 1563.544651][T24622] ext4: Unknown parameter 'subj_user'
[ 1563.680678][T24622] usb usb8: usbfs: process 24622 (syz.4.8071) did not claim interface 0 before use
[ 1564.732476][T24639] loop1: detected capacity change from 0 to 4096
[ 1564.866550][T24643] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1566.022702][T24657] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8087'.
[ 1566.407427][T24659] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8088'.
[ 1566.447116][T24659] vlan2: entered allmulticast mode
[ 1566.452515][T24659] macvtap0: entered allmulticast mode
[ 1566.458283][T24659] veth0_macvtap: entered allmulticast mode
[ 1568.358496][T24673] loop4: detected capacity change from 0 to 1024
[ 1568.405528][T24673] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1568.795900][T24673] EXT4-fs (loop4): mounted filesystem 00000000-0500-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1568.827690][T24685] netlink: 'syz.8.8097': attribute type 39 has an invalid length.
[ 1568.960798][T24685] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1569.012318][T17460] EXT4-fs error (device loop4): ext4_readdir:261: inode #2: block 16: comm syz-executor: path /594/file1: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=21519, rec_len=0, size=1024 fake=0
[ 1569.073580][T24685] bridge_slave_0 (unregistering): left allmulticast mode
[ 1569.081095][T24685] bridge_slave_0 (unregistering): left promiscuous mode
[ 1569.088768][T24685] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1569.099519][T21112] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[ 1569.195100][T17460] EXT4-fs (loop4): unmounting filesystem 00000000-0500-0000-0000-000000000000.
[ 1569.305269][T21112] usb 4-1: Using ep0 maxpacket: 32
[ 1569.331946][T21112] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1569.346612][T21112] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1569.357002][T21112] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1569.372917][T21112] usb 4-1: New USB device found, idVendor=0458, idProduct=5015, bcdDevice= 0.00
[ 1569.383587][T21112] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1569.492673][T21112] usb 4-1: config 0 descriptor??
[ 1570.213226][T24700] loop8: detected capacity change from 0 to 64
[ 1570.406330][T21112] input: HID 0458:5015 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0458:5015.005C/input/input55
[ 1570.562792][T21112] input: HID 0458:5015 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0458:5015.005C/input/input56
[ 1570.597453][T21112] input: HID 0458:5015 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0458:5015.005C/input/input57
[ 1570.708702][T21112] kye 0003:0458:5015.005C: input,hiddev0,hidraw0: USB HID v0.00 Mouse [HID 0458:5015] on usb-dummy_hcd.3-1/input0
[ 1571.013817][T13736] usb 4-1: USB disconnect, device number 19
[ 1571.261833][T24712] loop8: detected capacity change from 0 to 1024
[ 1571.307388][T24714] overlayfs: workdir and upperdir must be separate subtrees
[ 1572.929102][T24737] loop3: detected capacity change from 0 to 128
[ 1573.105689][T24737] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[ 1573.110914][   T29] audit: type=1800 audit(1736307527.162:1284): pid=24737 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8122" name="file2" dev="loop3" ino=1049158 res=0 errno=0
[ 1573.113812][T24737] FAT-fs (loop3): Filesystem has been set read-only
[ 1573.145233][T24737] syz.3.8122: attempt to access beyond end of device
[ 1573.145233][T24737] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1573.311543][T21112] usb 2-1: new high-speed USB device number 28 using dummy_hcd
[ 1573.684786][T21112] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1573.698982][T21112] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1573.712450][T21112] usb 2-1: New USB device found, idVendor=1223, idProduct=3f07, bcdDevice= 0.00
[ 1573.724568][T21112] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1573.739443][ T5843] usb 5-1: new low-speed USB device number 37 using dummy_hcd
[ 1573.785643][T21112] usb 2-1: config 0 descriptor??
[ 1573.951293][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1573.965653][ T5843] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 32, setting to 8
[ 1573.978380][ T5843] usb 5-1: New USB device found, idVendor=05ac, idProduct=0240, bcdDevice= 0.00
[ 1573.990895][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1574.017755][ T5843] usb 5-1: config 0 descriptor??
[ 1574.030890][T24742] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1574.060723][ T5843] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input58
[ 1574.315042][T21112] ortek 0003:1223:3F07.005D: unknown main item tag 0x6
[ 1574.322687][T21112] ortek 0003:1223:3F07.005D: bogus close delimiter
[ 1574.332138][T21112] ortek 0003:1223:3F07.005D: item 0 0 2 10 parsing failed
[ 1574.344279][T21112] ortek 0003:1223:3F07.005D: probe with driver ortek failed with error -22
[ 1574.492158][T13736] usb 2-1: USB disconnect, device number 28
[ 1574.622138][    C0] bcm5974 5-1:0.0: trackpad urb failed: -1
[ 1574.846301][   T25] usb 5-1: USB disconnect, device number 37
[ 1574.862212][ T5126] bcm5974 5-1:0.0: could not read from device
[ 1575.053973][T21112] usb 4-1: new full-speed USB device number 20 using dummy_hcd
[ 1575.609629][T21112] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 2.00
[ 1575.622949][T21112] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1575.651943][T21112] usb 4-1: config 0 descriptor??
[ 1575.786713][T21112] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected
[ 1576.011801][T21112] usb 4-1: Detected FT232B
[ 1576.243264][T21112] ftdi_sio ttyUSB0: Unable to read latency timer: -32
[ 1576.299517][T21112] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1576.526625][T21112] usb 4-1: USB disconnect, device number 20
[ 1576.553839][T24781] loop1: detected capacity change from 0 to 512
[ 1576.561590][T21112] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1576.568128][T24782] loop4: detected capacity change from 0 to 64
[ 1576.575184][T21112] ftdi_sio 4-1:0.0: device disconnected
[ 1576.695873][T24781] EXT4-fs error (device loop1): ext4_ext_check_inode:524: inode #15: comm syz.1.8142: pblk 0 bad header/extent: invalid magic - magic 7973, entries 1402, max 27648(0), depth 25964(25964)
[ 1576.914257][T24781] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.8142: couldn't read orphan inode 15 (err -117)
[ 1576.972805][T24781] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1577.358339][T22017] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1577.882390][T24802] loop1: detected capacity change from 0 to 256
[ 1578.066478][T24802] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d)
[ 1578.716677][T24812] program syz.4.8156 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1578.804048][    C1] sd 0:0:1:0: [sda] tag#2724 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 1578.815131][    C1] sd 0:0:1:0: [sda] tag#2724 CDB: Read(6) 08 05 00 00 00 00
[ 1579.087463][T24823] netlink: 16 bytes leftover after parsing attributes in process `syz.3.8159'.
[ 1579.421054][T24828] netlink: 12 bytes leftover after parsing attributes in process `syz.8.8163'.
[ 1579.900550][T24837] netlink: 'syz.4.8160': attribute type 7 has an invalid length.
[ 1580.809959][T24852] netlink: 'syz.1.8173': attribute type 10 has an invalid length.
[ 1580.843614][T24852] syz_tun: entered promiscuous mode
[ 1580.887170][T24852] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[ 1581.047996][T24848] loop8: detected capacity change from 0 to 4096
[ 1581.106618][T24853] netlink: 'syz.1.8173': attribute type 10 has an invalid length.
[ 1581.177655][T24848] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512).
[ 1581.221628][T24853] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1581.238859][T24853] team0: Port device bond0 added
[ 1581.524711][T24857] netlink: 4 bytes leftover after parsing attributes in process `syz.7.8175'.
[ 1581.604016][T24857] netlink: 173 bytes leftover after parsing attributes in process `syz.7.8175'.
[ 1582.857135][T21085] usb 4-1: new high-speed USB device number 21 using dummy_hcd
[ 1583.120017][T21085] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1583.136428][T21085] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1583.146857][T21085] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1583.156433][T21085] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1583.210458][T24873] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1583.235832][T21085] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1583.535240][T21085] usb 4-1: USB disconnect, device number 21
[ 1584.100278][T24879] loop1: detected capacity change from 0 to 128
[ 1584.162855][T24879] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1584.308444][T24879] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1584.789291][ T1139] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1585.942454][T24911] loop3: detected capacity change from 0 to 2048
[ 1586.210203][T24918] loop1: detected capacity change from 0 to 2048
[ 1586.416501][T24911] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1586.432259][T24911] ext4 filesystem being mounted at /441/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1586.665028][T24918] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1586.701385][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1586.800680][T24918] overlayfs: upper fs needs to support d_type.
[ 1586.889463][T24918] overlayfs: upper fs does not support RENAME_WHITEOUT.
[ 1586.903736][T24918] overlayfs: failed to set xattr on upper
[ 1586.914169][T24918] overlayfs: ...falling back to redirect_dir=nofollow.
[ 1586.921481][T24918] overlayfs: ...falling back to index=off.
[ 1586.927485][T24918] overlayfs: ...falling back to uuid=null.
[ 1587.486570][T22017] UDF-fs: error (device loop1): udf_read_inode: (ino 1317) failed !bh
[ 1587.565790][T22017] UDF-fs: error (device loop1): udf_read_inode: (ino 1317) failed !bh
[ 1587.730546][T24945] netlink: 'syz.7.8213': attribute type 11 has an invalid length.
[ 1588.036073][T22017] bond0: (slave syz_tun): Releasing backup interface
[ 1588.289494][ T3545] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1588.423395][ T3545] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1588.786218][ T3545] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1589.404797][ T3545] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 1589.973569][T22018] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 1590.006673][T22018] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 1590.019016][T22018] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 1590.034895][T22018] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 1590.046162][T22018] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[ 1590.071155][T22018] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 1590.433909][ T3545] bridge_slave_1: left allmulticast mode
[ 1590.442606][ T3545] bridge_slave_1: left promiscuous mode
[ 1590.449533][ T3545] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1590.494366][ T3545] bridge_slave_0: left allmulticast mode
[ 1590.503120][ T3545] bridge_slave_0: left promiscuous mode
[ 1590.517961][ T3545] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1591.198258][ T3545] team0: Port device bond0 removed
[ 1591.254199][ T3545] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 1591.297407][ T3545] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 1591.337394][ T3545] bond0 (unregistering): Released all slaves
[ 1592.317613][ T3545] hsr_slave_0: left promiscuous mode
[ 1592.341038][ T3545] hsr_slave_1: left promiscuous mode
[ 1592.386653][ T3545] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1592.397731][ T3545] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1592.444953][ T3545] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1592.452851][ T3545] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1592.463603][T22018] Bluetooth: hci1: command tx timeout
[ 1592.532191][ T3545] veth1_macvtap: left promiscuous mode
[ 1592.538070][ T3545] veth0_macvtap: left promiscuous mode
[ 1592.546846][ T3545] veth1_vlan: left promiscuous mode
[ 1592.552559][ T3545] veth0_vlan: left promiscuous mode
[ 1592.686490][T24995] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8235'.
[ 1592.701857][T24995] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8235'.
[ 1593.209480][ T3545] team0 (unregistering): Port device team_slave_1 removed
[ 1593.268073][ T3545] team0 (unregistering): Port device team_slave_0 removed
[ 1593.601091][T24963] chnl_net:caif_netlink_parms(): no params data found
[ 1594.475519][T25010] netlink: 8 bytes leftover after parsing attributes in process `syz.7.8241'.
[ 1594.587508][ T3545] IPVS: stop unused estimator thread 0...
[ 1594.672180][T22018] Bluetooth: hci1: command tx timeout
[ 1595.178835][T24963] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1595.186656][T24963] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1595.194621][T24963] bridge_slave_0: entered allmulticast mode
[ 1595.206214][T24963] bridge_slave_0: entered promiscuous mode
[ 1595.313930][T24963] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1595.321768][T24963] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1595.331822][T24963] bridge_slave_1: entered allmulticast mode
[ 1595.340923][T24963] bridge_slave_1: entered promiscuous mode
[ 1595.810299][T24963] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 1595.830996][T24963] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 1595.970638][T24963] team0: Port device team_slave_0 added
[ 1596.020189][T24963] team0: Port device team_slave_1 added
[ 1596.049855][T21085] usb 9-1: new high-speed USB device number 12 using dummy_hcd
[ 1596.230218][T24963] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 1596.237413][T24963] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1596.266595][T24963] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 1596.321043][T24963] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 1596.331179][T24963] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 1596.360294][T24963] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 1596.494573][T21085] usb 9-1: too many endpoints for config 0 interface 0 altsetting 0: 255, using maximum allowed: 30
[ 1596.506799][T21085] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1596.523188][T21085] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1596.537749][T21085] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 255
[ 1596.554595][T21085] usb 9-1: New USB device found, idVendor=04d8, idProduct=c002, bcdDevice= 0.00
[ 1596.566691][T21085] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1596.581013][T21085] usb 9-1: config 0 descriptor??
[ 1596.830264][T24963] hsr_slave_0: entered promiscuous mode
[ 1596.902843][T22018] Bluetooth: hci1: command tx timeout
[ 1596.995861][T24963] hsr_slave_1: entered promiscuous mode
[ 1597.049518][T24963] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[ 1597.057427][T24963] Cannot create hsr debugfs directory
[ 1597.118189][T25049] loop3: detected capacity change from 0 to 256
[ 1597.150392][T21085] hid-picolcd 0003:04D8:C002.005E: item fetching failed at offset 3/7
[ 1597.167897][T21085] hid-picolcd 0003:04D8:C002.005E: device report parse failed
[ 1597.178881][T21085] hid-picolcd 0003:04D8:C002.005E: probe with driver hid-picolcd failed with error -22
[ 1597.228253][T25049] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[ 1597.318771][   T29] audit: type=1800 audit(1736307549.808:1285): pid=25049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8258" name="file1" dev="loop3" ino=1049162 res=0 errno=0
[ 1597.406824][ T5843] usb 9-1: USB disconnect, device number 12
[ 1597.891809][T25054] netlink: 4 bytes leftover after parsing attributes in process `syz.4.8260'.
[ 1598.172214][T24963] netdevsim netdevsim9 netdevsim0: renamed from eth0
[ 1598.251069][T24963] netdevsim netdevsim9 netdevsim1: renamed from eth1
[ 1598.347056][T24963] netdevsim netdevsim9 netdevsim2: renamed from eth2
[ 1598.409008][T24963] netdevsim netdevsim9 netdevsim3: renamed from eth3
[ 1598.822002][T25068] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8267'.
[ 1599.137216][T22018] Bluetooth: hci1: command tx timeout
[ 1599.503129][T24963] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1599.641545][T24963] 8021q: adding VLAN 0 to HW filter on device team0
[ 1599.855315][ T3545] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1599.863009][ T3545] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1599.878657][ T3545] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1599.886377][ T3545] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1600.245114][T24963] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 1601.322923][T25103] loop4: detected capacity change from 0 to 256
[ 1602.157029][T24963] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 1604.273744][T25134] loop8: detected capacity change from 0 to 128
[ 1604.395557][T24963] veth0_vlan: entered promiscuous mode
[ 1604.496621][T22018] Bluetooth: hci0: unexpected event for opcode 0x0c12
[ 1604.548793][T25142] loop3: detected capacity change from 0 to 512
[ 1604.581013][T25142] EXT4-fs (loop3): blocks per group (71) and clusters per group (32768) inconsistent
[ 1604.598449][T24963] veth1_vlan: entered promiscuous mode
[ 1604.809551][T25145] tipc: New replicast peer: fc01:0000:0000:0000:0000:0000:0000:0000
[ 1604.821159][T25145] tipc: Enabled bearer <udp:syz1>, priority 10
[ 1604.964007][T24963] veth0_macvtap: entered promiscuous mode
[ 1604.986092][T24963] veth1_macvtap: entered promiscuous mode
[ 1605.205721][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1605.216733][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.226961][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1605.237838][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.248054][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1605.258868][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.269390][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[ 1605.282559][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.309054][T24963] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 1605.334659][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1605.345484][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.355607][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1605.367397][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.377989][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1605.388740][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.400531][T24963] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[ 1605.411570][T24963] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[ 1605.426466][T24963] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 1605.562350][T24963] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 1605.571490][T24963] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 1605.581298][T24963] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 1605.590936][T24963] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 1605.883292][ T5843] tipc: Node number set to 4278190081
[ 1606.013665][T25159] loop3: detected capacity change from 0 to 256
[ 1606.027684][T25159] exfat: Deprecated parameter 'utf8'
[ 1606.033722][T25159] exfat: Deprecated parameter 'namecase'
[ 1606.103753][T25159] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1607.938530][T21085] usb 9-1: new full-speed USB device number 13 using dummy_hcd
[ 1608.168398][T21085] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1608.180041][T21085] usb 9-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5
[ 1608.195993][T21085] usb 9-1: New USB device found, idVendor=0566, idProduct=3004, bcdDevice= 0.00
[ 1608.205533][T21085] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1608.292959][T21085] usb 9-1: config 0 descriptor??
[ 1608.537009][T25184] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[ 1608.546410][T25184] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[ 1608.781615][ T5800] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[ 1608.794748][ T5800] Bluetooth: hci0: Injecting HCI hardware error event
[ 1608.810086][T21085] monterey 0003:0566:3004.005F: fixing up button/consumer in HID report descriptor
[ 1608.821224][ T5800] Bluetooth: hci0: hardware error 0x00
[ 1608.832669][T21085] monterey 0003:0566:3004.005F: unknown main item tag 0x6
[ 1608.843136][T21085] monterey 0003:0566:3004.005F: report_id 29495 is invalid
[ 1608.850780][T21085] monterey 0003:0566:3004.005F: item 0 2 1 8 parsing failed
[ 1608.863617][T21085] monterey 0003:0566:3004.005F: probe with driver monterey failed with error -22
[ 1608.875439][T25205] loop3: detected capacity change from 0 to 128
[ 1608.913505][T25205] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1)
[ 1609.013629][T21112] usb 9-1: USB disconnect, device number 13
[ 1609.133799][T25205] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[ 1609.142007][T25205] FAT-fs (loop3): Filesystem has been set read-only
[ 1609.148997][T25205] syz.3.8313: attempt to access beyond end of device
[ 1609.148997][T25205] loop3: rw=524288, sector=2065, nr_sectors = 8 limit=128
[ 1609.166333][T25205] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[ 1609.174461][T25205] FAT-fs (loop3): error, invalid access to FAT (entry 0x00000100)
[ 1609.243060][T25205] syz.3.8313: attempt to access beyond end of device
[ 1609.243060][T25205] loop3: rw=0, sector=2065, nr_sectors = 8 limit=128
[ 1609.259798][   T29] audit: type=1800 audit(1736307560.986:1286): pid=25205 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.8313" name="file2" dev="loop3" ino=1049167 res=0 errno=0
[ 1610.056420][T25218] netlink: 'syz.7.8319': attribute type 11 has an invalid length.
[ 1610.065990][T25218] netlink: 204 bytes leftover after parsing attributes in process `syz.7.8319'.
[ 1610.070256][T25220] netlink: 8 bytes leftover after parsing attributes in process `syz.8.8320'.
[ 1610.301591][ T4461] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1610.310598][ T4461] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1610.438879][ T4328] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 1610.447006][ T4328] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 1611.004785][ T5800] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[ 1612.452746][T25252] loop8: detected capacity change from 0 to 256
[ 1612.560711][T25252] exfat: Bad value for 'uid'
[ 1612.566055][T25252] exfat: Bad value for 'uid'
[ 1613.118533][T25261] sch_fq: defrate 0 ignored.
[ 1613.531570][T25267] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8341'.
[ 1614.255180][T25278] netlink: 'syz.8.8343': attribute type 3 has an invalid length.
[ 1615.164791][T25282] llcp: nfc_llcp_send_ui_frame: Could not allocate PDU (error=-512)
[ 1615.651706][T25301] loop4: detected capacity change from 0 to 64
[ 1615.860297][T25301] hfs: bad catalog entry type 0
[ 1616.431755][T25314] tun0: tun_chr_ioctl cmd 1074025681
[ 1616.511066][T25308] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1617.120578][T25328] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8368'.
[ 1617.130357][T25328] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8368'.
[ 1617.403557][T25330] loop3: detected capacity change from 0 to 16
[ 1617.526813][T25330] erofs (device loop3): mounted with root inode @ nid 36.
[ 1618.461145][T25346] loop3: detected capacity change from 0 to 64
[ 1618.831118][T25354] loop8: detected capacity change from 0 to 128
[ 1618.843957][T25354] FAT-fs (loop8): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1618.880847][T25354] FAT-fs (loop8): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1619.375580][T25362] loop9: detected capacity change from 0 to 2048
[ 1619.468361][T25362] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1620.193199][T24963] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1622.085152][T25413] loop3: detected capacity change from 0 to 256
[ 1622.105081][T25413] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1624.035784][T25445] loop3: detected capacity change from 0 to 1024
[ 1624.163093][T25445] hfsplus: Filesystem is marked locked, mounting read-only.
[ 1625.013123][T25461] netlink: 830 bytes leftover after parsing attributes in process `syz.8.8428'.
[ 1625.235835][T21083] usb 4-1: new high-speed USB device number 22 using dummy_hcd
[ 1625.532529][T21083] usb 4-1: Using ep0 maxpacket: 32
[ 1625.550161][T21083] usb 4-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1625.561830][T21083] usb 4-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1625.570943][T21083] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1625.580321][T21083] usb 4-1: config 1 has no interface number 0
[ 1625.589487][T21083] usb 4-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1625.600807][T21083] usb 4-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1625.614268][T21083] usb 4-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1625.626460][T21083] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1625.698122][T21083] snd_usb_pod 4-1:1.1: Line 6 Pocket POD found
[ 1625.748010][T21112] usb 5-1: new high-speed USB device number 38 using dummy_hcd
[ 1625.962492][T21083] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now attached
[ 1626.206604][T21112] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1626.216402][T21112] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1626.256880][T21112] usb 5-1: config 0 descriptor??
[ 1626.274796][T21112] cp210x 5-1:0.0: cp210x converter detected
[ 1626.454016][ T5843] usb 4-1: USB disconnect, device number 22
[ 1626.462552][ T5843] snd_usb_pod 4-1:1.1: Line 6 Pocket POD now disconnected
[ 1627.000570][T21112] cp210x 5-1:0.0: failed to get vendor val 0x000e size 678: -71
[ 1627.008878][T21112] cp210x 5-1:0.0: GPIO initialisation failed: -71
[ 1627.072760][T21112] usb 5-1: cp210x converter now attached to ttyUSB0
[ 1627.120390][T21112] usb 5-1: USB disconnect, device number 38
[ 1627.147765][T21112] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1627.156822][T21112] cp210x 5-1:0.0: device disconnected
[ 1628.891092][T25518] loop3: detected capacity change from 0 to 16
[ 1628.986073][T25518] erofs (device loop3): mounted with root inode @ nid 36.
[ 1629.051555][T25518] erofs (device loop3): bogus dirent @ nid 36
[ 1629.586401][T25529] netlink: 12 bytes leftover after parsing attributes in process `syz.4.8459'.
[ 1629.640648][T21083] usb 9-1: new high-speed USB device number 14 using dummy_hcd
[ 1629.819913][T21083] usb 9-1: Using ep0 maxpacket: 16
[ 1629.845959][T21083] usb 9-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1629.856686][T21083] usb 9-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1629.913587][T21083] usb 9-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[ 1629.926650][T21083] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1629.934939][T21083] usb 9-1: Product: syz
[ 1629.943753][T21083] usb 9-1: Manufacturer: syz
[ 1629.948826][T21083] usb 9-1: SerialNumber: syz
[ 1630.109847][T25537] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8463'.
[ 1630.453950][T21083] usb 9-1: 0:2 : does not exist
[ 1630.959732][T21083] usb 9-1: 5:0: failed to get current value for ch 0 (-22)
[ 1631.049998][T21083] usb 9-1: USB disconnect, device number 14
[ 1631.985259][T25562] Bluetooth: MGMT ver 1.23
[ 1632.219810][T21112] usb 4-1: new high-speed USB device number 23 using dummy_hcd
[ 1632.373773][   T29] audit: type=1326 audit(1736307582.585:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25568 comm="syz.9.8478" exe="/root/syz-executor" sig=31 arch=40000003 syscall=240 compat=1 ip=0xf70ed579 code=0x0
[ 1632.417746][T21112] usb 4-1: Using ep0 maxpacket: 32
[ 1632.458336][T21112] usb 4-1: config 0 has an invalid interface number: 184 but max is 0
[ 1632.467273][T21112] usb 4-1: config 0 has no interface number 0
[ 1632.479938][T21112] usb 4-1: config 0 interface 184 has no altsetting 0
[ 1632.542543][T21112] usb 4-1: New USB device found, idVendor=0424, idProduct=7500, bcdDevice=69.ee
[ 1632.556939][T21112] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1632.565238][T21112] usb 4-1: Product: syz
[ 1632.579734][T21112] usb 4-1: Manufacturer: syz
[ 1632.584593][T21112] usb 4-1: SerialNumber: syz
[ 1632.659126][T21112] usb 4-1: config 0 descriptor??
[ 1632.690282][T21112] smsc75xx v1.0.0
[ 1633.508626][T25585] vimc link validate: Sensor A:src:640x480 (0x33424752, 8, 0, 0, 0) Raw Capture 0:snk:640x480 (0x33424752, 8, 0, 0, 0)
[ 1633.754491][T21112] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000040: -71
[ 1633.765885][T21112] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Error reading E2P_CMD
[ 1633.799503][T21112] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000014: -71
[ 1633.810884][T21112] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): Failed to read PMT_CTL: -71
[ 1633.820903][T21112] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): device not ready in smsc75xx_reset
[ 1633.831810][T21112] smsc75xx 4-1:0.184 (unnamed net_device) (uninitialized): smsc75xx_reset error -71
[ 1633.842231][T21112] smsc75xx 4-1:0.184: probe with driver smsc75xx failed with error -71
[ 1633.885511][T21112] usb 4-1: USB disconnect, device number 23
[ 1634.146469][T25592] netlink: 8 bytes leftover after parsing attributes in process `syz.9.8488'.
[ 1635.092543][T25604] netlink: 24 bytes leftover after parsing attributes in process `syz.7.8494'.
[ 1635.885183][T25623] netlink: 8 bytes leftover after parsing attributes in process `syz.4.8502'.
[ 1637.110185][T25636] loop4: detected capacity change from 0 to 4096
[ 1637.134410][T25636] ntfs3(loop4): Different NTFS sector size (2048) and media sector size (512).
[ 1638.852438][T25670] loop4: detected capacity change from 0 to 2048
[ 1638.900750][T25670] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1638.938530][T25673] netlink: 20 bytes leftover after parsing attributes in process `syz.8.8525'.
[ 1638.948026][T25673] netlink: 248 bytes leftover after parsing attributes in process `syz.8.8525'.
[ 1640.185326][T25690] loop3: detected capacity change from 0 to 2048
[ 1640.273933][T25690] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found
[ 1640.282396][T25690] UDF-fs: Scanning with blocksize 512 failed
[ 1640.384193][T25690] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1640.929282][T25705] netlink: 'syz.7.8539': attribute type 1 has an invalid length.
[ 1640.938009][T25705] netlink: 'syz.7.8539': attribute type 2 has an invalid length.
[ 1640.961114][T25708] netlink: 'syz.8.8538': attribute type 9 has an invalid length.
[ 1643.440456][T25752] vxcan1: tx address claim with dest, not broadcast
[ 1643.919571][T25758] loop8: detected capacity change from 0 to 128
[ 1644.158815][T25758] EXT4-fs (loop8): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1644.212985][T25758] ext4 filesystem being mounted at /203/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1644.550064][T25758] overlayfs: upper fs needs to support d_type.
[ 1644.630429][T25774] netlink: 92 bytes leftover after parsing attributes in process `syz.9.8567'.
[ 1645.040724][T23126] EXT4-fs (loop8): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1645.328894][T25781] loop3: detected capacity change from 0 to 1024
[ 1645.429479][T25781] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1645.557461][T25788] loop9: detected capacity change from 0 to 1024
[ 1645.677224][T25788] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1645.695392][T25788] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1646.053877][T24963] EXT4-fs (loop9): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1646.170132][T19821] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1648.466597][ T5843] usb 5-1: new high-speed USB device number 39 using dummy_hcd
[ 1649.155143][ T5843] usb 5-1: Using ep0 maxpacket: 8
[ 1649.687673][T25830] bond0: option active_slave: mode dependency failed, not supported in mode balance-rr(0)
[ 1650.785148][ T5843] usb 5-1: New USB device found, idVendor=1557, idProduct=7720, bcdDevice=b7.eb
[ 1650.794658][ T5843] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1650.871664][ T5843] usb 5-1: config 0 descriptor??
[ 1651.857207][ T5843] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write reg index 0x0000: -71
[ 1651.868075][ T5843] asix 5-1:0.0 (unnamed net_device) (uninitialized): Failed to write GPIO value 0x00b0: ffffffb9
[ 1651.984145][ T5843] asix 5-1:0.0: probe with driver asix failed with error -71
[ 1652.127176][ T5843] usb 5-1: USB disconnect, device number 39
[ 1654.948760][T25857] netlink: 'syz.8.8604': attribute type 8 has an invalid length.
[ 1654.956858][T25857] netlink: 16 bytes leftover after parsing attributes in process `syz.8.8604'.
[ 1655.769001][T25862] netlink: 36 bytes leftover after parsing attributes in process `syz.3.8606'.
[ 1656.250696][T25864] loop8: detected capacity change from 0 to 512
[ 1656.329798][T25864] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[ 1656.472959][T25864] EXT4-fs (loop8): 1 truncate cleaned up
[ 1656.480587][T25864] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1657.270890][T23126] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1658.692175][T25878] Dead loop on virtual device ipvlan1, fix it urgently!
[ 1658.700092][T25878] =====================================================
[ 1658.711483][T25878] BUG: KMSAN: uninit-value in __schedule+0x6da/0x69a0
[ 1658.719592][T25878]  __schedule+0x6da/0x69a0
[ 1658.724219][T25878]  __cond_resched+0x49/0xc0
[ 1658.729179][T25878]  __sys_sendmmsg+0x57e/0x880
[ 1658.734061][T25878]  __ia32_compat_sys_sendmmsg+0xc8/0x140
[ 1658.740231][T25878]  ia32_sys_call+0x22f1/0x4180
[ 1658.745194][T25878]  __do_fast_syscall_32+0xb0/0x110
[ 1658.750593][T25878]  do_fast_syscall_32+0x38/0x80
[ 1658.755627][T25878]  do_SYSENTER_32+0x1f/0x30
[ 1658.760441][T25878]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1658.767017][T25878] 
[ 1658.769716][T25878] Local variable acpar created at:
[ 1658.774937][T25878]  ip6t_do_table+0x70/0x23b0
[ 1658.779712][T25878]  ip6table_mangle_hook+0x23b/0x9c0
[ 1658.785235][T25878] 
[ 1658.787675][T25878] CPU: 0 UID: 0 PID: 25878 Comm: syz.3.8613 Tainted: G        W          6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[ 1658.800273][T25878] Tainted: [W]=WARN
[ 1658.804535][T25878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1658.814876][T25878] =====================================================
[ 1658.825781][T25878] Disabling lock debugging due to kernel taint
[ 1658.832074][T25878] Kernel panic - not syncing: kmsan.panic set ...
[ 1658.838639][T25878] CPU: 0 UID: 0 PID: 25878 Comm: syz.3.8613 Tainted: G    B   W          6.13.0-rc6-syzkaller-00038-g09a0fa92e5b4 #0
[ 1658.851118][T25878] Tainted: [B]=BAD_PAGE, [W]=WARN
[ 1658.856261][T25878] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 1658.866479][T25878] Call Trace:
[ 1658.869874][T25878]  <TASK>
[ 1658.872922][T25878]  dump_stack_lvl+0x216/0x2d0
[ 1658.877823][T25878]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1658.883835][T25878]  dump_stack+0x1e/0x24
[ 1658.888198][T25878]  panic+0x4e2/0xcf0
[ 1658.892301][T25878]  ? kmsan_get_metadata+0x81/0x1c0
[ 1658.897620][T25878]  kmsan_report+0x2c7/0x2d0
[ 1658.902314][T25878]  ? __msan_warning+0x95/0x120
[ 1658.907311][T25878]  ? __schedule+0x6da/0x69a0
[ 1658.912109][T25878]  ? __cond_resched+0x49/0xc0
[ 1658.916993][T25878]  ? __sys_sendmmsg+0x57e/0x880
[ 1658.922045][T25878]  ? __ia32_compat_sys_sendmmsg+0xc8/0x140
[ 1658.928080][T25878]  ? ia32_sys_call+0x22f1/0x4180
[ 1658.933207][T25878]  ? __do_fast_syscall_32+0xb0/0x110
[ 1658.938695][T25878]  ? do_fast_syscall_32+0x38/0x80
[ 1658.943903][T25878]  ? do_SYSENTER_32+0x1f/0x30
[ 1658.948762][T25878]  ? entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1658.955526][T25878]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1658.960918][T25878]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1658.966918][T25878]  ? __schedule+0x3e/0x69a0
[ 1658.971631][T25878]  ? filter_irq_stacks+0x60/0x1a0
[ 1658.976872][T25878]  ? stack_depot_save_flags+0x2c/0x750
[ 1658.982550][T25878]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1658.987936][T25878]  ? kmsan_internal_set_shadow_origin+0x69/0x100
[ 1658.994511][T25878]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1658.999900][T25878]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1659.005903][T25878]  __msan_warning+0x95/0x120
[ 1659.010718][T25878]  __schedule+0x6da/0x69a0
[ 1659.015357][T25878]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1659.020746][T25878]  ? kmsan_get_shadow_origin_ptr+0x4d/0xb0
[ 1659.026750][T25878]  ? filter_irq_stacks+0x164/0x1a0
[ 1659.032080][T25878]  ? stack_depot_save_flags+0x2c/0x750
[ 1659.037756][T25878]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1659.043138][T25878]  ? kmsan_internal_check_memory+0x98/0x560
[ 1659.049278][T25878]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1659.054678][T25878]  __cond_resched+0x49/0xc0
[ 1659.059404][T25878]  __sys_sendmmsg+0x57e/0x880
[ 1659.064295][T25878]  ? do_futex+0x341/0x4a0
[ 1659.068812][T25878]  ? kmsan_get_metadata+0x13e/0x1c0
[ 1659.074197][T25878]  ? perf_event_bpf_event+0x800/0x1480
[ 1659.079898][T25878]  __ia32_compat_sys_sendmmsg+0xc8/0x140
[ 1659.085775][T25878]  ia32_sys_call+0x22f1/0x4180
[ 1659.090738][T25878]  __do_fast_syscall_32+0xb0/0x110
[ 1659.096045][T25878]  ? irqentry_exit+0x16/0x60
[ 1659.100863][T25878]  do_fast_syscall_32+0x38/0x80
[ 1659.105905][T25878]  do_SYSENTER_32+0x1f/0x30
[ 1659.110589][T25878]  entry_SYSENTER_compat_after_hwframe+0x84/0x8e
[ 1659.117173][T25878] RIP: 0023:0xf70bd579
[ 1659.121396][T25878] Code: b8 01 10 06 03 74 b4 01 10 07 03 74 b0 01 10 08 03 74 d8 01 00 00 00 00 00 00 00 00 00 00 00 00 00 51 52 55 89 e5 0f 34 cd 80 <5d> 5a 59 c3 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90
[ 1659.141220][T25878] RSP: 002b:00000000f50af55c EFLAGS: 00000206 ORIG_RAX: 0000000000000159
[ 1659.149845][T25878] RAX: ffffffffffffffda RBX: 0000000000000003 RCX: 0000000020003000
[ 1659.157981][T25878] RDX: 0000000000000002 RSI: 0000000024000045 RDI: 0000000000000000
[ 1659.166114][T25878] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 1659.174235][T25878] R10: 0000000000000000 R11: 0000000000000206 R12: 0000000000000000
[ 1659.182391][T25878] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[ 1659.190538][T25878]  </TASK>
[ 1659.193948][T25878] Kernel Offset: disabled
[ 1659.198343][T25878] Rebooting in 86400 seconds..