last executing test programs:

19.201629597s ago: executing program 1 (id=788):
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff)
sendmsg$NL80211_CMD_TDLS_OPER(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r2, 0x100, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0x51}}}}, [@NL80211_ATTR_TDLS_OPERATION={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4040000)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000240))
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x8, './file0\x00'}})
prctl$PR_SET_TAGGED_ADDR_CTRL(0x37, 0x1) (async)
socket$nl_route(0x10, 0x3, 0x0) (async)
ioctl$sock_kcm_SIOCKCMCLONE(0xffffffffffffffff, 0x89e2, &(0x7f0000000000)) (async)
syz_genetlink_get_family_id$nl80211(&(0x7f00000000c0), 0xffffffffffffffff) (async)
sendmsg$NL80211_CMD_TDLS_OPER(r1, &(0x7f0000000180)={&(0x7f0000000080)={0x10, 0x0, 0x0, 0x800000}, 0xc, &(0x7f0000000140)={&(0x7f0000000100)={0x28, r2, 0x100, 0x70bd25, 0x25dfdbfe, {{}, {@void, @val={0xc, 0x99, {0x1, 0x51}}}}, [@NL80211_ATTR_TDLS_OPERATION={0x5}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000}, 0x4040000) (async)
socketpair$tipc(0x1e, 0x5, 0x0, &(0x7f0000000240)) (async)
ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000040)={'ip6tnl0\x00', &(0x7f0000000400)=@ethtool_flash={0x33, 0x8, './file0\x00'}}) (async)

19.109701815s ago: executing program 1 (id=790):
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000007c0)=ANY=[@ANYBLOB="b702000003000000bfa30000000000000703000000feffff7a0ae0fff8ffffff79a4f0ff00000000b7060000ffffffff2e6405000000000065040400010000000404000001007d60b7030000000000006a0a00fe00ee0000850000000d000000b70000000000000095000000000000002c3f2cc2b7956244cef7baf48e6d2885a09a87507ebfc75b5b0f4e4309ebcdac5f7a860c000c9c781f6410457253e89ad528d985636a860fd668f59cd1159a2c2e85d726859a919cc9548a349980d1ccdce27f94bc074c27f81078545c146a0857153b7b8f00034debae58a4ab415b0d7ff0575cc272cd3d7e8d974927676468ff2d86e0ffac94792ed9cf6b40b3cf252a47c05af3a70d57cc3e067d1867b54d24e20000000000000020009ebf84d3b042d6e4e4e29d8b33fbdd02e86a6432cd080e3b57239f0127473e6ba922aff649609d40b47ec331ccba3ce8f530ffff19a6471bf5abc742d9cbcfb964b1383107000000aad84cf08a6c7b2235dc99de9aa3e6b77c7a2877261ed32da90864987f30926c9013eec3b86836ae50447aa5a79f40c235000000453302712c3d8fc4e2b61adb0695e800000000d4f4e91f0000002c33df871a8e782339bc424d1bafe5725c8a404724f8a4f1cda7997b65954f74097579b91da309b887af2485c2d9ab09b506000000000000000bf7b2ff4602aec1eea200000064881c5630521a08e051374cf05c921a06fb78183e7e68de9dc8d95e0e5b365d10e1004dae58b3b5b89709b0ff47b200000000004000cbefd9a6bb70f60eb9c01dd2fc79b85e4d961498f3a80131d21d85618ba2189f45d011ef1da5c6d57bb8fd387ccea9c3899a914e47e82f040000009de2323f927355408f87264797d3fa970949793b94329d580500d1f91c0d22587e05a61e3d8576ca168e88d7a9af95b04a37c27bfffab9abbb31fa8c0080258cfa6d3f166e695f3c56490aeef464d9965d70a50f1282619344f223548e75fa39643adac1322c87ca253ff2fb1882760d6feab16bacdf83c11816dbe959ebc5ec479c8319f73e2249eab0486b110702a481d3b51976a52303056e800b4ae5acc2df636a65eb1d672bf2000000cda8462cc9b16624998be65683321e970000000009b8e20762c1bf4a3eb6769f2b23e842bacd9c685edea0ffa3e975424f8ede49e61a4de808a38ba3221d64dc71867df4eee3f1ff791cf7c9862f98b45852e4b2f78721b978addf2f2a29a387c6f0576b36038f819286eea99a6a434811cf2a117d775fe986a49fb82cf5f15972d55185ab18f1045384501adabb20f7b0e15ff47f1744e2341b59034959a1289ba6e243668e671d305707e3de7652bfc5b60c76deff43a1d6fd6a4180ab723735abbeffe7f2ec3a0bb86f9eddfc0f3d1d503d7a540f64000000000000fbb4c256409e54daefbb107c381fa729ff5fe607d93430da178d685d7730f5e129438a5214f722096d2986334c25e454474f8ee65828b018174a9f4738b8c71fbdead06ab95e02f9a847182766964976b1fccdb9f35721e43e33883cf16ed1343fb7429eb395123b0a4262b7023c22039b9002589a379ed4c6267965af78b861bd335312538cec97966b8973d4e299d9802264d06e40ae118e1d242d1128dcedeb44030df12ef68ffce8d141e8960ef790fb0078215d65f96eb55db8cbcb060000000d988374e45451a694ffe38a1d03912b31c98d42e1a1bda1290de1a499a5d6849914c1788a7aca37177cc34102f44fec5c5e0abae01c439a1b0311e074e81ae9993b5b3459553ecece78d4c1541c70f5d81e0725d5b273755c0000000000000000aa4234e282182952a76233d18e7d49638aeb04e7a9e9e7eafb7c255372795d2d192a0a33cab0f5bf2e93e0544fcdf2df2bc6ce96e5a7d72fcdb0a11993d54d97a23754ac828674dbb93c0ad345715be4a13678b01edf76d8a9236558fea2c88cce004505ab45d8f5f88aa887bbce5c18970428516f6099bdbb2cd7a2356397f1a0a23e662e2a6c4834400cbaa41c3c574ea68da5ec1ae49f968bbe0e0bf9878516f553639f5b4828e92019b61f5874be1c7cdd9482df50bc24a8a1fa10d291390eb84e26a2e8dbeaa45604b05a116c1210a7540bf81005044273f5a8ffc538db289350eb248e483bd8920efcf30a798c2b636243e0a37262ca47dfeefa1ce69b4475d7d714ba0c636e6ae9f710411d30ef424aeaabe057c7df6ff8f767bcd9012e1047c686f5ccb76ab3a5df53cbc22ba7ea8f6a8edc19d6c1be841503850803bc2c2d5e0e34270a7f1cca0c6c53a8e5f891f7a793a70da62d6d88fbb90d220acc687931b42d6be83ab870da3c0a567f5e65ec0457f4ad2a4ec0b671b36388afd5520a8483a4b11f7d02a41b315f0f9e59f47668d68a74838d6976e12fd45200014041dffacbf60892ec8bd7560686f137a806d3dfaba900b47cac62f828342fff009adb5b2251461a1b9d6ba625b8fe04e69a1a4be2696f24bb68f486e172932e03000080000000005942e1b9d6dc28ab8e19e1111dd893e8d5bc5642faf21eef40d6e7de3ef62c4bc5ff17e7aeb2841098f0cf74f845d1cc9ec4eee79c290fb0ba939b13707004e2e9cc0d350538c1c8c6bb9a38c6ac5ca07df32601240ea3f160d3a7b83ecd0509ce9eba0c7bf7843799b1b56a234f9eaab8a3f14f1472bb6aaeb8ac9ee4055f05558ab31f339f6a4caf2ee2fd01f34dca330000000000000000000000000000000000000000000000000000000000000000000000000095e6f945ba9a941cef5e70b8c152321e24b5b29bcf374dcf5a29a35d76e6e2bf8df95462690a4fc9ec8129e92b6ebb4b40a992a75d3c5954d0bfc87db24d856359079b29b3c374d081c300b2cfaa596d24e800ef8e2201f2fb7a9946f89f9f31f7cbd6f7fd7f8898c70b5c65f2e28f22e983892c383882809f557affbda5e1850d66a4a1ee73b2084681f880a754acddcdafe3ceeeebc0b5f2fedfe7d198e3067f3dbac9441a9ab8409cbbb7e15b9ae3944097de34de2001c8533a3766e6e4c4c4702ccb932a27a3962814cd6aa8fc684beeaa3932efae9052be8eec1e95f6ad8d41dd34829504ba4b66e27154cb6e34aa13450522df1723130b6fe347c93f00e40e293c98d849a33f773c743728992f40faccd5c23130a1c6bfd6fc661bca1598137ddd1090ded672f5a48a40cab3f640c8241a364cbdd3f188eec7da7bccafbd5bf28a46f0eecc6b550471b0b0770c6a5a411c0e0b19e15a461e7c6833ba9356214b013f2819ec6572a43b5cd32b11d7e4f8dcf8f7820a17b7b2ee6178a03351dd31091e46bfd82a3979b9cad109fd6217cd52aa81bdabd50826a474bd16b8f7e6aed12a305366599f5f029a7b24558c02750500002f1c19d16a6f391906000000cc03bbec8c698ecc137d96711100e01031aa74fad86b99eebf0527552a9331e646c424b14ffbb815622bfd2f635855bed1b164d0a56bd104be069854111c5b26ec3c652b5f0a6b9676dae987ec23456ba05a4dfb15321ef6b76e7e547a688c67ab531cfc86784c9f940d9fb0464a72ce635e14b80dc5c1c64e8f58c570e7afd83ee77f157c146aa747b728969aeb4aba1d8f9de1b3fb8ab6ea50e884c2ea98e6400bf0c5ae2887cd1da0e57ccfdf5eca2b455247efcc13102846c0a85f20c80007c0ce6efce627b95b8ad3003385de97101678fb2163ecea6e70a77a6fbc089e31a5ccece932229b8f79faa6863d6857c3d9a9710f938ad16eeb8342278f1c1cbc226498028234d21466892983378fe64acbb44f694cd78e43c74aa75505cb1c91b189f8f89f233a05f5cd4e173a373178557843dd705268f74a9e5429945503195aefd6706e587f7ee8375fa559c3ad195d3795df1a8364cd13acc3256ee4634c73eeb6954d0fcf09ab84df0b8900e0c6fea2cc0e7c207b8942fafd70530a0fc4622ecf132d1d5bdc9ffc79f0549b82df521817651d5fead5128205b92ccdccc69407ab556217af277af999dbd456dfc43dd061b6c91485dcc208cf0b3d0bf851de413f5de5ec015e296914afab6411109355e027ce04990d9aae251b9deb11b7db45b9f15b7b55d8fdbedd9e6cf891205694f02be8b9ea8ecd41308a0e1b93ae3435bfa88b440b1f701b4d0fc49c82193f27f8023b630ea97edbf3bf421a0a1a2b4ac7bb30bcd1cdd172c0df37408fd6827bb03e8742fc1c7a2be0d1299928c5f79e846a8dc7ca648d960a759e6711b69776896a9656d59af6d44bc5348229fa84034faf8421a22c4b4c17a3d24a4aeee0d0850371feefd77cc4eef51c2b417c8c7458ddd7dd9d1a863bf0a9e1a30a19020490038017a5c7e474c83302a2b59654d49a11c6736ac63e8eb383760fc2b5c976dacf3dda7191c757f28e44f6a5f95db7055f7ed983f5665210f20a494fabb0dbcd335700000000000000000000000000000086666201251aa4f139d0485ffcf89f01639fd1579a3802f720a0215c720a97071f5065a23642a5826fdbca444b00e2e5835185d5d5b2796eb0fe32cf3b0633f58ecc7648c3c6efe82f93a3008052416512eea30ea9472e0b456a652883c0907323cf03be193ad0438cdef7a98a1671a1918df310dc4bfd61c3db3c22673884dca370558936b85737e14819ab1c57b348a8ff16d36364a20fe846d11d045de81f069bac8425b31c5d089e11a4badb19da4585011f9b78b2401989384311101e452f54661ecdb251ab9eefc8e400191f0f0f8c679b000000000000000000000000b41b0ae67d9351c49e1ff285d05a3cc39a5b0cd20afe0a00086650f8fad20c0e1e7131836c85b2cbacd41593928207312189fdd66abc45a139f0c9dbcc58237cec5bd56ffe0c6de23254a7951a298501ca04ab30b5723df6dd01d0b1a87c197b83b286374ba9a9dd1bd09ea1b71b24a1f527bf59d9633e3d15ed3757acc494f464482e49884c13780cc392bfe67b5d91e5b513daea48cac7645db35f07ba41aa187f65c5344717d7a0ee353a7e36b14fdce5898a613cef224d3addb3d2de74cef73f7520dc8cc8ffaa62cbd25e691ef4c45fdd25675b32c129a8464f08c4da9c08713b5441653b56a04086dab1d196884e062287ad4758e883d2f99833d8aaf0c56718f6b0434740900faf4ab824662a719bf370fd0b2de04c1455ec14908ce5cbec79466f2f2cc337d6b824b926254e00000000000000000000000000000000c34646f8ae68c095e7298300feab8a3dfe2c43fc971385b13b4f3b61ddbf5044ff572defcc67930f0e715774e1e970751534398faf79350255cfa9021378f10c2043e7ecd5649c9720530da7ea227b792f31cb5d688b5f1eba9ff5f85c97b35e00ecf76282912b483e31c76e303e527e98a9ca14f718d495ad45db16c4500011de50b3690d02dee7e82c6daf02056f0ca35f7ea96ed1831e3c1219f985b26cb8a70e7c8efcb287984871e0fed3f1985cf63f00289292b378188ad0dfae12c265b88961a9223b48cf7055d641595e0cb926d63c1f8a207f48bd482290b79867285c2155e655e017bca6cbba43f9b49042fb2fb190c436b3306e8a4e1ae01b90d159004da838a50235b91f5273c1fe083067ce1e2d8011c9e2b6d3ea69dfc3d40f9e862cd29d534b580599f1f11faa0c684ccf7a975de776d1c19d61ab959681a15753a1e1339a36b1568e6fd68aa7b0d18c37acf0475ae9d74f4d46251da1804708f98473b5d9d282162c668f51260c67f734372298ba174d571030dcb25586141f8d42541e76b2413d7b2fe7ee774e92b11ecd8d7209dbcf"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x20000000}, 0x48)

19.077157538s ago: executing program 1 (id=791):
r0 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r0, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r0, &(0x7f0000000000)={&(0x7f00000002c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x14}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000340)="f4001100032b2c25fe8007000000007a2c080000000900000000000200"/40, 0x5dc}], 0x1}, 0x0)

18.954161878s ago: executing program 1 (id=793):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYRES16, @ANYRES32, @ANYBLOB="0000000000000000b70800000d0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0xfff, 0xa, 0x0, 0xffffffffffffffff, 0xffffffee}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b708000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x1f, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000080000000085000000adeee8667c"], 0x0, 0x8, 0x0, 0x0, 0x0, 0x10}, 0x90)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8b18, &(0x7f0000000000)={'wlan1\x00'})
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r0}, &(0x7f0000000000), &(0x7f0000000180)}, 0x20)
syz_mount_image$fuse(0x0, &(0x7f0000000400)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r6 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0)
pipe2$9p(&(0x7f0000000040)={0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x480)
write$P9_RLOPEN(r7, &(0x7f0000000280)={0x18, 0xd, 0x2, {{0x2, 0x3, 0x1}, 0xd3c}}, 0x18)
fsconfig$FSCONFIG_CMD_CREATE(r6, 0x6, 0x0, 0x0, 0x0)
r8 = fsmount(r6, 0x0, 0x0)
bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000200)={@cgroup=r8, 0xe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40)
tgkill(r3, r3, 0x12)
ioctl$FS_IOC_SET_ENCRYPTION_POLICY(0xffffffffffffffff, 0x800c6613, 0x0)
syz_mount_image$fuse(0x0, &(0x7f0000000180)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
close(r1)
bpf$PROG_LOAD(0x5, &(0x7f0000000b40)={0x11, 0x8, &(0x7f0000005c00)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)

17.56051678s ago: executing program 1 (id=795):
r0 = syz_init_net_socket$ax25(0x3, 0x5, 0x0)
r1 = timerfd_create(0x0, 0x0)
timerfd_settime(r1, 0x3, &(0x7f0000000040)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
timerfd_settime(r1, 0x0, &(0x7f0000000000)={{0x77359400}, {0x77359400}}, 0x0)
ioctl$SIOCAX25GETUID(r0, 0x89e0, 0xfffffffffffffffe)
socket$inet_udplite(0x2, 0x2, 0x88)

17.421979323s ago: executing program 1 (id=799):
r0 = socket(0x10, 0x3, 0x0)
socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
bind$inet(0xffffffffffffffff, &(0x7f0000000040)={0x2, 0x4e22, @empty}, 0x10)
sendto$inet(0xffffffffffffffff, &(0x7f00000000c0)='}', 0x1, 0x0, &(0x7f00000001c0)={0x2, 0x4e22, @local}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = syz_mount_image$reiserfs(&(0x7f0000000080), &(0x7f0000000140)='./file0\x00', 0x120c083, &(0x7f0000000480), 0xfd, 0x1117, &(0x7f00000024c0)="$eJzs2cFq1FAUBuD/JqPtbiTug6ALF1JaxgewC4XZutWNSEGwqw4Iiq/hG/gWvoJ25b50r4uCSyESM3GqDKh0KgjfB8k9OcnJyV3emwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEBvknwqyfUqacZclaQkbXs8P03Sjvlr7+sqJQ8P5ov7R7MHiyT198fLo6T0VX1Zmr2b282smTV7zd17+7c+LF6+ev7k8PDgaPmakjYnZxudRRlP9flc2WgPAAAA+G91FzbNmxd/0unqJfUHAAAAfmfT+wkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf6ubruJmDKokJWnb4/lpknZN3ZV/9H0AAADAxZVUeTxdlx+2AVbu5OO0/Mj345fSx7t5u6YeAAAAWHn27qfLbmsZnP+//rUb9Ovu25kM6/Lt4d6NTLKzM8TLIZ/3kzrJ7i+9Ts5ePx2P0tXJ1uXMCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIBv7MABCQAAAICg/6/bESgAAAAAAAAAAAAAAAAAAAAAAAAAFwUAAP//YwzhLg==")
syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000180)='.\x00', 0x1a484bc, &(0x7f0000000640)=ANY=[@ANYRES8=r3, @ANYBLOB="eea73c3ca047349ab66dff07b1e2bdc61875c6ccebea30ba1b8977c632dd4bd75d3cfd10cce0c88cabf65767e9dbbd7b5841a8ce3eb44c7151dec2b7b8f9cf870af04f1cc951b195c7fd36ffdbd0622cdc14395f095fb0d31f384214d59a0105d577557215473973f3b70178f49f07562f4d21cad59fafb7fbaf76061c56fdd2093329e2ece7cf96435bca11a90ba7f31e69c4b73ba3d172906ffc90f5de134a696a731d20a9cf70009a31f83d4b774b0d99de69f14de9e655b84b646166d979b9cdbde38324510998bba500000000007cf791c3e2fc9c72f920a64e00"/231, @ANYRES8, @ANYRESDEC=r3, @ANYRES8=r3, @ANYRES16, @ANYRESOCT=r3, @ANYRESHEX, @ANYRESDEC], 0x1, 0x0, &(0x7f0000000480))
r4 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='blkio.throttle.io_serviced_recursive\x00', 0x275a, 0x0)
ioctl$FIBMAP(r4, 0x1, &(0x7f00000000c0))
openat2$dir(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0)
r5 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r5, &(0x7f0000000000)={0x0, 0x6000000, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000001010101000000000000000002000000040001801800028014000180080001007f00000108000200ac1414aa140019800800010004000000080002"], 0x44}}, 0x0)
r6 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r6, 0x5423, &(0x7f00000000c0)=0xf)
ioctl$TCFLSH(r6, 0x400455c8, 0x0)
ioctl$sock_bt_hci(r2, 0x800448d3, &(0x7f00000003c0))
r7 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000000)={'macvlan0\x00'})
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000003b0007010000000000000000047c0000040000000c00018008000300", @ANYRES32, @ANYBLOB="0caf4731df75c2b0866d6df4cf346f7fa1feff4bf9cf4e36979a5129b882b4d42703a13a5db2907fc0f2868bf9958db81af905a5edea075a067dc783708fb372cfbebff05653712af0f4628d116ad946ccdcf80866a3a1aa19511c414c052d9b756c053c073ed25c247e89b7b2395ab4e105a60b000000000000"], 0x24}}, 0x0)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'lo\x00', <r8=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000300)={'ip6gre0\x00', &(0x7f0000000000)={'syztnl2\x00', r8, 0x0, 0x81, 0x1f, 0x8, 0x40, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @loopback={0xfec0ffff00000000}, 0x8000, 0x0, 0x8000, 0x3}})

3.946167884s ago: executing program 0 (id=925):
r0 = openat(0xffffffffffffff9c, &(0x7f0000004400)='./bus\x00', 0x15b042, 0x30)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "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", "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"})
r1 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r0, 0xc00864bf, &(0x7f0000001140)={<r2=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r1, 0xc01064c2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r1, 0xc01064c2, &(0x7f00000000c0)={<r3=>0x0, 0x1, r1})
ioctl$DRM_IOCTL_ADD_CTX(r1, 0xc0086420, &(0x7f0000000140))
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x169802, 0x0)
r5 = dup(r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000006, 0x10, r5, 0x0)
r6 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv(r6, &(0x7f0000000100)=[{&(0x7f0000033a80)=""/102386, 0x18ff2}, {&(0x7f00000001c0)=""/102, 0x66}], 0x2, 0x0, 0x0)
io_uring_register$IORING_REGISTER_PERSONALITY(r6, 0x9, 0x0, 0x0)
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r5, 0xc00c642d, &(0x7f0000000280)={0x0, 0x80000})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(0xffffffffffffffff, 0xc01064c2, &(0x7f0000000580)={<r7=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r1, 0xc03064ca, &(0x7f0000000180)={&(0x7f0000001180)=[r2, 0x0, 0x0, r7, 0x0, r3], &(0x7f0000000140), 0x401, 0x6, 0xc})
r8 = syz_open_dev$dri(&(0x7f0000000040), 0x0, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_CREATE(r8, 0xc00864bf, &(0x7f0000000200)={<r9=>0x0})
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r8, 0xc01064c2, 0x0)
ioctl$DRM_IOCTL_SYNCOBJ_FD_TO_HANDLE_SYNC_FILE(r8, 0xc01064c2, &(0x7f00000000c0)={0x0, 0x1, r8})
ioctl$DRM_IOCTL_ADD_CTX(r8, 0xc0086420, &(0x7f0000000140))
ioctl$DRM_IOCTL_SYNCOBJ_TIMELINE_WAIT(r8, 0xc03064ca, &(0x7f0000000180)={&(0x7f0000000100)=[r9, 0x0, 0x0], &(0x7f0000000140), 0x6bd52f2a, 0x3, 0x8})
ioctl$DRM_IOCTL_SYNCOBJ_WAIT(r0, 0xc02864c3, &(0x7f0000001100)={&(0x7f00000010c0)=[r2, r9, 0x0], 0x0, 0x3})
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$BATADV_CMD_SET_MESH(0xffffffffffffffff, &(0x7f0000001080)={0x0, 0xfffffffffffffea2, &(0x7f00000002c0)={&(0x7f0000001040)=ANY=[@ANYBLOB="14000000", @ANYRES16=0x0, @ANYBLOB="00000080000025872507d8ce3c81"], 0x14}}, 0x0)
sendmsg$NFT_BATCH(r10, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000002000a28000000000a01010000000000000000020000000900010073797a3000000000080002400000000098000000030a01020000000000000000020000000900010073797a30000000000900030073797a32000000006b000300"], 0xfc}}, 0x0)
r11 = openat(0xffffffffffffff9c, &(0x7f0000001240)='./file0\x00', 0x15b242, 0x0)
ftruncate(r4, 0x1)
open_by_handle_at(r0, &(0x7f00000011c0)=ANY=[@ANYBLOB="4c0000000100000065a1e0eb02d8d038a1d9896b05b3f803c39aa5b5cebedbe80b792489914b9ab480378c79d752a1866b2863ee5e3134269e960d39aadb5c04a6feeb087ece7e150200dc36edfa8cba618995bea6ab"], 0x600200)
sendfile(r11, r0, 0x0, 0x2109c)

3.398076843s ago: executing program 0 (id=933):
syz_emit_vhci(&(0x7f0000000040)=@HCI_EVENT_PKT={0x4, @hci_ev_cmd_status={{0xf, 0x4}, {0x0, 0xfa, 0x41b}}}, 0x67)

3.373304155s ago: executing program 0 (id=934):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000001b40)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x49)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)

2.317865277s ago: executing program 0 (id=941):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000000)="2e00000010008188040f80ec59acbc0413a1f848120000005e140602000000000e000a000f00000002800000121f", 0x2e}], 0x1}, 0x0)

2.094140917s ago: executing program 0 (id=943):
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r0)
ptrace$setregs(0xd, r0, 0x0, &(0x7f00000003c0)="18607651149d7b10b4024fbbdc08899b8f589df2dbb5d7a8d1b36cfab675cb3976ee8100e2878c9cfa178cac130eb046eda93df39ed4b41924dc225ad4028dd63defb87d698be5c749450b350a789dcfc6b2d6a696b5026d1e52f19274566d1da0f353dd65e330ebf71c5e823f2753c5fd76724828ef31b353e71805205c3dceb44cc4c7b3664e29fb")
ptrace$getregset(0x4205, r0, 0x1, &(0x7f0000000080)={0x0, 0x300})

1.992080556s ago: executing program 0 (id=944):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00'}, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @random="a538ae464632", @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @multicast1}, {0x12, 0x0, 0x0, @multicast1}}}}}, 0x0)
openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0xaa00, 0x0)
setsockopt$sock_linger(0xffffffffffffffff, 0x1, 0xd, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
getpid()
r0 = getpid()
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(0xffffffffffffffff, 0x81f8943c, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, 0x0)
syz_usb_connect$cdc_ncm(0x4, 0x6e, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000020000002505a1a440000102030109025c0002010000000904000001a3f45747d649f9a30105240000000d240f8100000000000000000006241a0000000905810300000000000904010000020d00000904010102020d000009058202000000000009050302"], 0x0)
syz_usb_connect(0x0, 0x2d, &(0x7f0000000100)=ANY=[@ANYBLOB="120100001ddf8208c007121522300000000109021b0001000000010904010001faf40d00090582"], 0x0)
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
write$char_usb(r1, &(0x7f0000001300)="92", 0x2)
write$char_usb(r1, 0x0, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f00000b2f40)={0x0, 0x0, "4166f8b228bacb3f0ed36d7eca13d46a72b63c813257124d5a340e893434bb9ced757c23a97e97f970c6ec1e2f3fc6b62c06444b596e72d211e21aaecd81948d380a9d2f33f6763db33dc8478ca44fe55952c978c4aecd3230353fa7e3edd9906b12be4201d0db2eee3bd84767180b960649a6f0903decb5bd3bfa6afb4f3228bd2af2d9c5af7175ebe169b76fcd4835eeb02fe6fd1e252ecd03b9ac21ea00289fd1a58353d0399514c9073477d1fd68b7a152b61fb7e676e89166f8ff0f66237e2727663b108540428f333c9ce75d126e94e116956a896e14a5cc7939363bfe2341bcb075532c2fbd01b65110cfb8b16b233a4caee87ddb57f5b8af0d7225b6", "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"})
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(0xffffffffffffffff, 0xd000943d, 0x0)
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
syz_open_dev$sndctrl(&(0x7f0000000240), 0x5, 0x12000)
r2 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r2, &(0x7f0000000000)={0x26, 'hash\x00', 0x0, 0x0, 'sha384-generic\x00'}, 0x58)
r3 = accept4(r2, 0x0, 0x0, 0x0)
sendmmsg$alg(r3, &(0x7f0000000400)=[{0x0, 0x0, &(0x7f00000002c0)=[{&(0x7f0000000080)="f78d9ca38fff48f3be52163448412ba8", 0xfffffe1a}], 0x1, &(0x7f0000000380)=[@op={0x18}], 0x18}], 0x4924924924924b9, 0x0)

1.330025184s ago: executing program 4 (id=946):
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280))
r0 = getpid()
ptrace$setopts(0x4206, r0, 0x0, 0x200004)

1.329762504s ago: executing program 2 (id=947):
io_setup(0x8, 0x0)
io_submit(0x0, 0x1, &(0x7f00000004c0)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0xff600000}])
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001280)={0x18, 0x3, &(0x7f0000000940)=ANY=[@ANYBLOB="1800000000000000000000000000040095"], 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000780)='contention_end\x00', r0}, 0x10)
r1 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000040), 0x42002)
ioctl$SNDRV_SEQ_IOCTL_GET_SUBSCRIPTION(r1, 0xc0505350, &(0x7f0000000280)={{0x11, 0x9}, {0x9, 0x1}, 0xffffff09, 0x0, 0xa})

1.288466588s ago: executing program 2 (id=948):
syz_emit_ethernet(0x48, &(0x7f0000000740)=ANY=[@ANYBLOB="58ae610b4f2de9693b81bded0431408524752520431c4c5254e78d584767f3f0c907c81ebf9cd30b98ecada50f34006d290d03fe6462d58c792635810935c4164c113544a7c7d835ee8e41752e3cdf2273e32b061252e794b9681c213d9cb60bfd188a7d2bb70aa53de82eafc9125223c821d79c18665b3abc3a79a146661b", @ANYRES64, @ANYRESOCT, @ANYBLOB="ca28bc08ab24823576ee4a937dca9f518d49ff12d2d2416eee3d3bbf6fcfab2b1aaf780487b65af60eec9283b2834232de96e125f9e02eb7dbe76845b404e8bc4d3061b268df23a4d9a66a886e90c05f765bebc5a15947ae4a0846047bc8856299e23baaa1684a2af7777f46343876388e82ffe7f6d04ad1a9cf81ee1ed52eecc1d243463bf64dcfffdf2503c31a65d953e59d2556df36a3b756b7092d02af5dfd15f8258ce3a050530a52d29680652c72c1b2c8f4bfea16d2012011f2f0f881435f7c7dda58b44030fe8cf100fb82fd37a5fb98ac22", @ANYRESDEC, @ANYRES64, @ANYRES64, @ANYRES32, @ANYBLOB="4355ccfb9e4513c27eaed799f12f7aa7bb893dc130e63471cac864c657d2"], 0x0)
syz_open_dev$loop(&(0x7f0000000100), 0x2, 0x10000)
epoll_create1(0x80000)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f0000000000), 0x2c8822, 0x0)
r1 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffb)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, 0x0, 0x0)
syz_usb_connect(0x0, 0x24, 0x0, 0x0)
socket$inet(0x2, 0xa, 0x3)
setsockopt$XDP_UMEM_FILL_RING(r0, 0x11b, 0x5, &(0x7f0000000280)=0x4, 0x4)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000000c0))
r2 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000000)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0)
write$proc_mixer(r2, 0x0, 0xb0)
openat$proc_mixer(0xffffffffffffff9c, &(0x7f00000000c0)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0)
dup3(0xffffffffffffffff, r2, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmmsg$unix(r3, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x690b, 0x0, 0x0, 0x0)
syz_io_uring_setup(0x1866, &(0x7f0000000400)={0x0, 0x20c5, 0x4, 0x1, 0x1a1, 0x0, r0}, &(0x7f0000000140), &(0x7f0000000380))
r4 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
fchdir(r4)
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
dup3(r5, r4, 0x0)
r6 = landlock_create_ruleset(&(0x7f0000000240)={0x1fff}, 0x10, 0x0)
landlock_restrict_self(r6, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)

1.245311991s ago: executing program 4 (id=949):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x24, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}}, 0x24}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000fc0)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {}, {0x1c, 0xffff}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

1.122263022s ago: executing program 4 (id=950):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000180), r0)
sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)={0xf4, r1, 0xe701ac47a3d23ecd, 0x0, 0x0, {}, [@NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}, @NLBL_MGMT_A_DOMAIN={0xce, 0x1, 'C\xec\xf8\xa0w\x15|\xd8\xbcs\xe1\xb93\x14\xcd\xcb\xb6\xb9\xbb\x84\xe5\xbc\xdb\x7f\x9a\xf2\xea\xcc\x91:v@\xe83-\x1d\xaagQl\x7f\tKt\fc\x1f\x17]\xd5\xd0\xf0\xa8\xeb\xd2g\x92\x04\x02\x00\x00od\xe6,\xd3@I\x17\xf3\xbees0\xad\xc6\xbf/*\xb6(o\x91t\x12\x93U6\xf4@n\xdc\xdc\x8a7y\x81FY\xbe\xbbc\xd2\xc3\x01\xa5\xe2V\x8c\xb3im~\xd2V\xdaG\xbdbF\xc8n\x86\xac\x9c\xfb\xda\xe2&\"\xb4:\x13\xe9\tc\x85\xb4\xcb\x17\xbfm\x846\xe7\x7fp\x9eCdb\xad;\xa2\x8fs\xbf6\xe8\xe3Xg3&\xe2 \xd6\n\x9d=~<\x93/\xaf\x89\x06+\x96]\xb5+\xee\xff8^D*\xdb\xb8\xd8t\x80\xd4\x8fK=E0\xe8R\x83'}, @NLBL_MGMT_A_IPV4ADDR={0x8, 0x7, @broadcast}]}, 0xf4}}, 0x8804)

1.122037122s ago: executing program 4 (id=951):
r0 = getpid()
process_vm_readv(r0, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r1}, 0x10)
r2 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r2, &(0x7f00000002c0)=[{&(0x7f0000000280)='2', 0x1}], 0x1)

1.069775956s ago: executing program 3 (id=952):
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000000980)={0x0, 0x1, "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"})

1.008856362s ago: executing program 3 (id=953):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000000)={'wlan1\x00', <r1=>0x0})
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000007bc0), 0xffffffffffffffff)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_KEY(r3, &(0x7f0000009240)={0x0, 0x0, &(0x7f0000009200)={&(0x7f0000009180)=ANY=[@ANYBLOB='T\x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010000000000000000000b00000008000300", @ANYRES32=r1, @ANYBLOB="11000700e081cc0a605cdbcb9a662cc10a00000008003700000000000a000600ffffffffff1101000800090008ac0f000500080000000000"], 0x54}}, 0x0)

902.163641ms ago: executing program 3 (id=954):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000280)={0x18, 0x3a, 0xb, 0x0, 0x0, {0x4}, [@nested={0x4}]}, 0x18}}, 0x0)

881.707083ms ago: executing program 3 (id=955):
openat$rdma_cm(0xffffffffffffff9c, 0x0, 0x2, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000003c0)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000006c0)='tlb_flush\x00', r0}, 0x10)
r1 = getpid()
process_vm_readv(r1, &(0x7f0000008400)=[{&(0x7f0000000340)=""/69, 0x623c41ea}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
fsetxattr$trusted_overlay_origin(r0, &(0x7f0000000000), 0x0, 0x0, 0x3)
socket$inet6(0xa, 0x0, 0x0)
sync()

649.163993ms ago: executing program 2 (id=956):
r0 = socket(0x2a, 0x2, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000005c0)=@newqdisc={0x24}, 0x24}}, 0x0)
getsockname$packet(r0, &(0x7f0000000200)={0x11, 0x0, <r1=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000040)=0x14)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000380)=@newqdisc={0x2c, 0x24, 0xf0b, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_drr={0x8}]}, 0x2c}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000fc0)=@newtfilter={0x34, 0x2c, 0xd27, 0x0, 0x0, {0x0, 0x0, 0x0, r1, {0x0, 0xfff3}, {}, {0x1c, 0xffff}}, [@filter_kind_options=@f_route={{0xa}, {0x4}}]}, 0x34}}, 0x0)
r2 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f00000002c0), 0x40000000000009f, 0x0)

526.255274ms ago: executing program 2 (id=957):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBDIACR(r0, 0x4b4a, &(0x7f0000000000)=""/176)

512.131285ms ago: executing program 2 (id=958):
r0 = socket$inet(0x2, 0x2, 0x1)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f00000002c0)='veth1_virt_wifi\x00', 0x10)
bind$inet(r0, &(0x7f00000003c0)={0x2, 0x4e30, @private=0xa010101}, 0x10)

483.289908ms ago: executing program 2 (id=959):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$loop(0x0, 0x0, 0x0)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)
write$binfmt_aout(r1, &(0x7f00000010c0)=ANY=[], 0x1a3)
sendmsg$IPSET_CMD_TYPE(r1, &(0x7f0000000a00)={&(0x7f0000000000)={0x10, 0x0, 0x0, 0x2000000}, 0xc, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0xc0001)
syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan1\x00'})
sendmsg$NL80211_CMD_SET_INTERFACE(r0, &(0x7f0000000100)={0x0, 0x0, 0x0}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r0, 0x0, 0x0)
r2 = syz_clone(0x80800, &(0x7f0000000a40)="b8a3bef112adb0176d832e", 0xb, &(0x7f0000000a80), &(0x7f0000000ac0), &(0x7f0000000b00)="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")
ptrace$getregset(0x4204, r2, 0x0, &(0x7f0000001b80)={&(0x7f0000001b00)=""/122, 0x7a})
syz_80211_inject_frame(&(0x7f00000002c0)=@device_b, &(0x7f0000000540)=@data_frame={@msdu=@type01={{0x0, 0x2, 0x5, 0x0, 0x1, 0x0, 0x0, 0x1, 0x1, 0x0, 0x1}, {0x5}, @device_b, @initial, @device_b, {0x1, 0x5}, "", @void, @value=@ver_80211n={0x0, 0x3, 0x0, 0x1, 0x0, 0x1}}, @a_msdu}, 0x1c)
nanosleep(0x0, &(0x7f0000000380))
syz_80211_inject_frame(0x0, &(0x7f0000000400)=@mgmt_frame=@auth={{{}, {0x900}, @device_b, @device_a, @from_mac, {0x0, 0x1}}, 0x0, 0x2, 0x0, @void}, 0x1e)
bpf$BPF_GET_PROG_INFO(0xf, 0x0, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
bpf$BPF_PROG_GET_FD_BY_ID(0xd, 0x0, 0x0)
nanosleep(&(0x7f0000000440)={0x0, 0x2faf080}, &(0x7f0000000480))
syz_80211_inject_frame(&(0x7f00000004c0)=@device_b, &(0x7f0000000500)=ANY=[@ANYBLOB], 0x28)

286.289435ms ago: executing program 4 (id=960):
r0 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000001a0001ff"], 0x24}}, 0x0)

185.190154ms ago: executing program 3 (id=961):
openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000080), 0x80383, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000040000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f000000a400)={0x2020, 0x0, <r1=>0x0}, 0x2020)
syz_fuse_handle_req(r0, &(0x7f0000008400)="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", 0x2000, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000200)={0x90, 0x0, 0x0, {0x3, 0x0, 0x0, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6000, 0x0, 0x0, 0x0, 0x800}}}, 0x0, 0x0, 0x0, 0x0})
write$FUSE_INIT(r0, &(0x7f0000000340)={0x50, 0x0, r1}, 0x50)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000a80)='./file0/file0\x00', 0x0, 0x0)
ioctl$FIBMAP(r2, 0x401070ca, &(0x7f0000000080))

185.039674ms ago: executing program 4 (id=962):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000fe05000000000000000000009500000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
syz_open_dev$loop(&(0x7f0000000240), 0x20364, 0x1)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$PIO_UNIMAP(r4, 0x4b67, &(0x7f0000000040)={0x4, &(0x7f0000000000)=[{0x8, 0xdcf6}, {0xea, 0x8}, {0x57c, 0x8000}, {0xff, 0x7}]})

0s ago: executing program 3 (id=963):
socket$nl_route(0x10, 0x3, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_io_uring_setup(0x1c2, &(0x7f0000000140)={0x0, 0xb511, 0x400, 0x7fffffff}, &(0x7f0000000240)=<r0=>0x0, &(0x7f00000001c0)=<r1=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r0, 0x4, &(0x7f0000000080)=0xfffffff8, 0x0, 0x4)
syz_io_uring_submit(r0, r1, &(0x7f00000004c0)=@IORING_OP_TIMEOUT={0xb, 0x17, 0x0, 0x0, 0x4, &(0x7f0000000300)={0x0, 0x3938700}})
r2 = socket$inet6(0xa, 0x40000080806, 0x0)
bind$inet6(r2, &(0x7f000047b000)={0xa, 0x4e20, 0x0, @loopback}, 0x1c)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000580)='tlb_flush\x00'}, 0x10)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r3 = getpid()
process_vm_readv(r3, &(0x7f0000008400)=[{&(0x7f0000000300)=""/54, 0x7ffff000}, {&(0x7f0000006180)=""/152, 0x98}], 0x2, &(0x7f0000008640)=[{&(0x7f0000008480)=""/95, 0x7ffff000}], 0x286, 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz0\x00', 0x1ff)
r4 = shmget$private(0x0, 0x3000, 0x20, &(0x7f0000ffb000/0x3000)=nil)
shmctl$SHM_LOCK(r4, 0xb)
r5 = syz_open_procfs(0x0, &(0x7f0000000300)='cpuset\x00')
pread64(r5, &(0x7f0000000880)=""/4096, 0x1000, 0xa96)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x0, 0x5, 0x0, 0x0}, 0x90)
openat$sndseq(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.cpu/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_int(r6, &(0x7f0000000080)='hugetlb.1GB.rsvd.limit_in_bytes\x00', 0x2, 0x0)
writev(r7, &(0x7f0000000a40)=[{&(0x7f00000007c0)='e', 0x1}], 0x1)

kernel console output (not intermixed with test programs):

urnal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   64.999196][ T4497] loop0: detected capacity change from 0 to 32768
[   65.132739][  T149] block nbd3: Attempted send on invalid socket
[   65.135082][  T149] blk_update_request: I/O error, dev nbd3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[   65.169396][ T4518] hpfs: hpfs_map_sector(): read error
[   65.176682][ T4497] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.91 (4497)
[   65.177659][ T4506] chnl_net:caif_netlink_parms(): no params data found
[   65.818774][ T4497] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm
[   65.821496][ T4497] BTRFS info (device loop0): using free space tree
[   65.823200][ T4497] BTRFS info (device loop0): has skinny extents
[   65.887407][ T4529] loop4: detected capacity change from 0 to 512
[   65.905041][ T4506] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.907079][ T4506] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.918323][ T4506] device bridge_slave_0 entered promiscuous mode
[   65.927588][ T4506] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.930266][ T4506] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.933898][ T4506] device bridge_slave_1 entered promiscuous mode
[   65.977781][ T4536] loop1: detected capacity change from 0 to 8
[   65.990061][ T4529] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   66.012547][ T4506] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.022637][ T4539] netlink: 'syz.3.104': attribute type 27 has an invalid length.
[   66.035755][ T4506] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.426886][ T4497] BTRFS info (device loop0): enabling ssd optimizations
[   66.824370][    T7] Bluetooth: hci3: command 0x0409 tx timeout
[   67.032642][ T4506] team0: Port device team_slave_0 added
[   67.083732][ T4566] fuse: Bad value for 'group_id'
[   67.118475][ T4566] loop4: detected capacity change from 0 to 64
[   67.201593][ T4545] loop3: detected capacity change from 0 to 32768
[   67.294078][ T4545] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop3 scanned by syz.3.104 (4545)
[   67.334128][ T4576] loop1: detected capacity change from 0 to 512
[   67.358173][ T4545] BTRFS info (device loop3): using crc32c (crc32c-generic) checksum algorithm
[   67.362046][ T4545] BTRFS info (device loop3): enabling disk space caching
[   67.363774][ T4545] BTRFS info (device loop3): force clearing of disk cache
[   67.384843][ T4545] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[   67.387447][ T4545] BTRFS info (device loop3): use zstd compression, level 3
[   67.389243][ T4545] BTRFS info (device loop3): disk space caching is enabled
[   67.390877][ T4545] BTRFS info (device loop3): has skinny extents
[   67.421193][ T4142] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   67.439082][ T4506] team0: Port device team_slave_1 added
[   67.453473][ T4506] batman_adv: batadv0: Adding interface: batadv_slave_0
[   67.455592][ T4506] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.462607][ T4506] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.475818][ T4506] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.477822][ T4506] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.484537][ T4506] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.596770][ T4506] device hsr_slave_0 entered promiscuous mode
[   67.627795][ T4576] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   67.634727][ T4506] device hsr_slave_1 entered promiscuous mode
[   68.248206][ T4506] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   68.514694][ T4506] Cannot create hsr debugfs directory
[   68.596559][ T4142] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.630708][ T4583] netlink: 'syz.0.117': attribute type 4 has an invalid length.
[   68.649333][ T4606] loop4: detected capacity change from 0 to 16
[   68.803715][ T4142] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   68.859419][ T4545] BTRFS info (device loop3): enabling ssd optimizations
[   68.862364][ T4545] BTRFS info (device loop3): clearing free space tree
[   68.864985][ T4545] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[   68.867639][ T4545] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[   68.872818][ T4619] loop4: detected capacity change from 0 to 8
[   68.909717][    T7] Bluetooth: hci3: command 0x041b tx timeout
[   68.918627][ T4622] loop0: detected capacity change from 0 to 512
[   68.987448][ T4142] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   69.009481][ T4619] overlayfs: failed to resolve './file1': -2
[   69.087256][ T4622] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   69.632368][ T2054] ieee802154 phy0 wpan0: encryption failed: -22
[   69.635340][ T2054] ieee802154 phy1 wpan1: encryption failed: -22
[   69.993187][ T1533] cfg80211: failed to load regulatory.db
[   70.103147][ T4632] loop1: detected capacity change from 0 to 16
[   70.127829][ T4242] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 11 /dev/loop3 scanned by udevd (4242)
[   70.168290][ T4632] erofs: (device loop1): mounted with root inode @ nid 36.
[   70.387476][ T4648] loop4: detected capacity change from 0 to 512
[   70.422235][ T4651] tmpfs: Bad value for 'mpol'
[   70.463124][ T4648] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   70.470914][ T4652] loop0: detected capacity change from 0 to 256
[   70.506657][ T4652] FAT-fs (loop0): Unrecognized mount option "shortname=�L*winnt" or missing value
[   70.790616][ T4661] loop1: detected capacity change from 0 to 8
[   70.843176][ T4661] overlayfs: failed to resolve './file1': -2
[   70.925836][ T4665] netlink: 'syz.3.130': attribute type 4 has an invalid length.
[   71.000519][ T4567] Bluetooth: hci3: command 0x040f tx timeout
[   71.021993][ T4669] loop1: detected capacity change from 0 to 512
[   71.113409][ T4669] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   71.149593][ T4506] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   71.283234][ T4506] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   71.351751][ T4506] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   71.679987][ T4506] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   72.168778][ T4693] loop3: detected capacity change from 0 to 8
[   72.195999][ T4695] loop0: detected capacity change from 0 to 512
[   72.241509][ T4693] overlayfs: failed to resolve './file1': -2
[   72.249705][ T4695] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   72.338995][ T4506] 8021q: adding VLAN 0 to HW filter on device bond0
[   72.350145][ T4506] 8021q: adding VLAN 0 to HW filter on device team0
[   72.386965][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   72.389412][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   72.391740][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   72.412420][ T4699] loop1: detected capacity change from 0 to 2048
[   72.414739][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   72.437460][ T4594] bridge0: port 1(bridge_slave_0) entered blocking state
[   72.439402][ T4594] bridge0: port 1(bridge_slave_0) entered forwarding state
[   72.442490][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   72.459125][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   72.461775][ T4594] bridge0: port 2(bridge_slave_1) entered blocking state
[   72.463576][ T4594] bridge0: port 2(bridge_slave_1) entered forwarding state
[   72.470343][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   72.473451][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   72.481130][ T4703] loop3: detected capacity change from 0 to 4096
[   72.483070][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   72.537097][ T4703] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512)
[   72.554746][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   72.557798][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   72.560575][ T4699] netlink: 'syz.1.142': attribute type 4 has an invalid length.
[   72.564811][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   72.591499][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   72.603219][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   72.701917][ T4234] ntfs3: loop3: ntfs_sync_fs r=1a failed, -22.
[   72.711352][ T4234] ntfs3: loop3: ntfs_evict_inode r=1a failed, -22.
[   72.713099][ T4234] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[   72.737249][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   72.739852][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   72.761362][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   72.803045][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   73.599849][ T4066] Bluetooth: hci3: command 0x0419 tx timeout
[   73.773339][ T4720] loop3: detected capacity change from 0 to 512
[   73.778924][ T4718] loop0: detected capacity change from 0 to 512
[   73.844097][ T4723] loop4: detected capacity change from 0 to 512
[   73.850396][ T4718] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   73.873854][ T4720] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   73.946898][ T4563] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   73.948830][ T4563] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   73.956929][ T4506] 8021q: adding VLAN 0 to HW filter on device batadv0
[   73.975639][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   73.978498][ T4594] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   74.098750][ T4731] loop0: detected capacity change from 0 to 8
[   74.158852][ T4506] device veth0_vlan entered promiscuous mode
[   74.190345][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   74.192961][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   74.196305][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   74.198656][ T4471] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   74.229446][ T4506] device veth1_vlan entered promiscuous mode
[   74.299596][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   74.310089][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   74.318701][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   74.333022][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   74.342962][ T4506] device veth0_macvtap entered promiscuous mode
[   74.366556][ T4506] device veth1_macvtap entered promiscuous mode
[   74.465575][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.480337][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.504251][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.512842][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.521851][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.531454][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.569120][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.581655][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.599048][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.613389][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.622242][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   74.662779][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.697370][ T4506] batman_adv: batadv0: Interface activated: batadv_slave_0
[   74.712207][ T4741] loop0: detected capacity change from 0 to 512
[   74.715792][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   74.718628][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   74.721404][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   74.734793][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   74.776212][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.789586][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.806542][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.813505][ T4741] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   74.832916][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.855005][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.875915][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.901709][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.920822][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.934590][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.969656][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.972490][ T4506] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   74.982125][ T4506] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   74.992051][ T4506] batman_adv: batadv0: Interface activated: batadv_slave_1
[   74.996109][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   75.005588][  T136] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   75.019745][ T4506] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.022057][ T4506] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.036611][ T4746] loop1: detected capacity change from 0 to 2048
[   75.042466][ T4506] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.045458][ T4506] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.270264][ T4753] loop0: detected capacity change from 0 to 1024
[   75.416353][ T4753] hfsplus: session requires an argument
[   75.416895][ T4746] netlink: 'syz.1.157': attribute type 4 has an invalid length.
[   75.418012][ T4753] hfsplus: unable to parse mount options
[   75.876873][ T4594] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   75.879287][ T4594] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   75.883186][ T4563] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   76.095441][ T4764] loop1: detected capacity change from 0 to 8
[   76.200772][ T4756] loop4: detected capacity change from 0 to 8192
[   76.210812][ T4760] loop0: detected capacity change from 0 to 512
[   76.227863][ T4423] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   76.231011][ T4423] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   76.239195][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   76.279770][ T4760] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   76.283387][ T4760] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   76.426074][ T4760] EXT4-fs error (device loop0): ext4_orphan_get:1397: inode #15: comm syz.0.158: iget: bad extended attribute block 19
[   76.430692][ T4760] EXT4-fs error (device loop0): ext4_orphan_get:1402: comm syz.0.158: couldn't read orphan inode 15 (err -117)
[   76.440800][ T4760] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   77.376666][ T4774] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[   77.492757][ T4779] loop1: detected capacity change from 0 to 512
[   77.628663][ T4779] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   77.825108][ T4790] loop3: detected capacity change from 0 to 512
[   77.972319][ T4790] EXT4-fs (loop3): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   78.111927][ T4800] loop0: detected capacity change from 0 to 512
[   78.178576][ T4794] netlink: 'syz.1.171': attribute type 4 has an invalid length.
[   78.275622][ T4800] EXT4-fs (loop0): Ignoring removed nobh option
[   78.315717][ T4800] EXT4-fs (loop0): Mount option "dioread_nolock" incompatible with ext3
[   78.379882][ T4142] device hsr_slave_0 left promiscuous mode
[   78.399638][ T4806] loop3: detected capacity change from 0 to 8
[   78.440080][ T4142] device hsr_slave_1 left promiscuous mode
[   78.582279][ T4142] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   78.597673][ T4142] batman_adv: batadv0: Removing interface: batadv_slave_0
[   78.654307][ T4010] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[   78.663366][ T4142] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   78.665236][ T4818] loop2: detected capacity change from 0 to 512
[   78.666320][ T4142] batman_adv: batadv0: Removing interface: batadv_slave_1
[   78.670757][ T4142] device bridge_slave_1 left promiscuous mode
[   78.672461][ T4142] bridge0: port 2(bridge_slave_1) entered disabled state
[   78.715885][ T4822] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[   78.744408][ T4142] device bridge_slave_0 left promiscuous mode
[   78.746123][ T4142] bridge0: port 1(bridge_slave_0) entered disabled state
[   78.750452][ T4818] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   78.771866][ T4808] loop4: detected capacity change from 0 to 8192
[   78.934787][ T4010] usb 1-1: Using ep0 maxpacket: 8
[   78.952952][ T4142] device hsr_slave_0 left promiscuous mode
[   78.966865][ T4808] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[   78.969537][ T4808] REISERFS (device loop4): using ordered data mode
[   78.973554][ T4808] reiserfs: using flush barriers
[   79.874655][ T4808] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[   79.879403][ T4808] REISERFS (device loop4): checking transaction log (loop4)
[   79.903576][ T4142] device hsr_slave_1 left promiscuous mode
[   79.925282][ T4808] REISERFS (device loop4): Using r5 hash to sort names
[   79.930499][ T4808] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[   79.934058][ T4808] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[   79.944517][ T4010] usb 1-1: config 0 has an invalid interface number: 52 but max is 0
[   79.946613][ T4010] usb 1-1: config 0 has an invalid descriptor of length 88, skipping remainder of the config
[   79.951955][ T4010] usb 1-1: config 0 has no interface number 0
[   79.953435][ T4010] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 82, changing to 10
[   79.964600][ T4010] usb 1-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid maxpacket 1703, setting to 1024
[   79.967582][ T4010] usb 1-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[   79.987874][ T4142] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   79.989797][ T4142] batman_adv: batadv0: Removing interface: batadv_slave_0
[   79.995275][ T4010] usb 1-1: config 0 interface 52 has no altsetting 0
[   80.022461][ T4142] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   80.025150][ T4142] batman_adv: batadv0: Removing interface: batadv_slave_1
[   80.047609][ T4839] loop3: detected capacity change from 0 to 2048
[   80.050354][ T4142] device bridge_slave_1 left promiscuous mode
[   80.052055][ T4142] bridge0: port 2(bridge_slave_1) entered disabled state
[   80.067378][ T4842] loop2: detected capacity change from 0 to 512
[   80.128906][ T4142] device bridge_slave_0 left promiscuous mode
[   80.130696][ T4142] bridge0: port 1(bridge_slave_0) entered disabled state
[   80.144696][ T4010] usb 1-1: New USB device found, idVendor=06cb, idProduct=0007, bcdDevice= 0.00
[   80.147113][ T4010] usb 1-1: New USB device strings: Mfr=0, Product=149, SerialNumber=35
[   80.162887][ T4010] usb 1-1: Product: syz
[   80.164030][ T4010] usb 1-1: SerialNumber: syz
[   80.182339][ T4010] usb 1-1: config 0 descriptor??
[   80.188752][ T4842] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   80.387019][ T4142] device veth1_macvtap left promiscuous mode
[   80.388812][ T4142] device veth0_macvtap left promiscuous mode
[   80.390495][ T4142] device veth1_vlan left promiscuous mode
[   80.392059][ T4142] device veth0_vlan left promiscuous mode
[   80.484441][ T4010] usb 1-1: Can not set alternate setting to 1, error: -71
[   80.486532][ T4010] synaptics_usb: probe of 1-1:0.52 failed with error -71
[   80.515607][ T4010] usb 1-1: USB disconnect, device number 2
[   80.534566][ T4142] device veth1_macvtap left promiscuous mode
[   80.536323][ T4142] device veth0_macvtap left promiscuous mode
[   80.538027][ T4142] device veth1_vlan left promiscuous mode
[   80.539547][ T4142] device veth0_vlan left promiscuous mode
[   81.078269][ T4142] team0 (unregistering): Port device team_slave_1 removed
[   81.103772][ T4860] loop0: detected capacity change from 0 to 8
[   81.111550][ T4142] team0 (unregistering): Port device team_slave_0 removed
[   81.138901][ T4142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   81.169517][ T4142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   81.381502][ T4868] loop0: detected capacity change from 0 to 512
[   81.456976][ T4868] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   81.472940][ T4142] bond0 (unregistering): Released all slaves
[   81.536872][ T4862] loop4: detected capacity change from 0 to 32768
[   81.578645][ T4862] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop4 scanned by syz.4.192 (4862)
[   81.753189][ T4862] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm
[   81.756344][ T4862] BTRFS info (device loop4): using free space tree
[   81.758238][ T4862] BTRFS info (device loop4): has skinny extents
[   82.756424][ T4899] loop2: detected capacity change from 0 to 512
[   82.799820][ T4142] team0 (unregistering): Port device team_slave_1 removed
[   82.810597][ T4142] team0 (unregistering): Port device team_slave_0 removed
[   82.822344][ T4862] BTRFS info (device loop4): enabling ssd optimizations
[   82.846216][ T4142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   82.880613][ T4899] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   82.987250][ T4142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   83.251742][ T4142] bond0 (unregistering): Released all slaves
[   83.364692][ T4932] loop4: detected capacity change from 0 to 8
[   83.403516][ T4936] loop2: detected capacity change from 0 to 1024
[   83.448572][ T4839] netlink: 'syz.3.185': attribute type 4 has an invalid length.
[   83.460510][ T4936] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[   83.479200][ T4936] EXT4-fs (loop2): The Hurd can't support 64-bit file systems
[   83.490438][ T4938] loop1: detected capacity change from 0 to 512
[   83.572616][ T4945] loop4: detected capacity change from 0 to 256
[   83.607189][ T4938] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   83.656306][ T4945] exfat: Deprecated parameter 'utf8'
[   83.657985][ T4945] exfat: Deprecated parameter 'namecase'
[   83.659530][ T4945] exfat: Deprecated parameter 'utf8'
[   83.661039][ T4945] exfat: Deprecated parameter 'namecase'
[   83.738679][ T4945] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011f41, chksum : 0xe1a8932d, utbl_chksum : 0xe619d30d)
[   84.946086][ T4954] loop2: detected capacity change from 0 to 512
[   85.036940][ T4954] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   85.176331][ T4966] loop3: detected capacity change from 0 to 2048
[   85.272331][ T4975] loop0: detected capacity change from 0 to 8
[   85.331171][ T4980] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[   85.393953][ T4986] syz.1.227 sent an empty control message without MSG_MORE.
[   85.416820][ T4986] loop1: detected capacity change from 0 to 128
[   85.464293][ T4966] netlink: 'syz.3.222': attribute type 4 has an invalid length.
[   85.786213][ T4996] loop0: detected capacity change from 0 to 512
[   86.773251][ T5007] loop2: detected capacity change from 0 to 256
[   86.777491][ T4996] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   86.798995][ T5011] loop1: detected capacity change from 0 to 512
[   86.996930][ T5020] tmpfs: Unknown parameter 'grpquota'
[   87.016326][ T5011] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   87.138350][ T5025] loop4: detected capacity change from 0 to 8
[   87.179544][ T5020] sp0: Synchronizing with TNC
[   87.183493][ T5023] loop3: detected capacity change from 0 to 2048
[   87.217765][ T5026] tmpfs: Unknown parameter 'nr_inNp�2'
[   87.319193][ T5023] netlink: 'syz.3.238': attribute type 4 has an invalid length.
[   87.699555][ T5042] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[   88.920204][ T5059] loop0: detected capacity change from 0 to 8
[   89.025720][ T5061] loop3: detected capacity change from 0 to 256
[   89.778990][ T5063] loop2: detected capacity change from 0 to 512
[   89.785246][ T5056] netlink: 104 bytes leftover after parsing attributes in process `syz.4.250'.
[   89.897910][ T5066] loop1: detected capacity change from 0 to 512
[   89.989352][ T5063] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   90.002145][ T5072] loop4: detected capacity change from 0 to 2048
[   90.022635][ T5066] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   90.109775][ T5072] netlink: 'syz.4.255': attribute type 4 has an invalid length.
[   91.588365][ T5109] loop3: detected capacity change from 0 to 8
[   91.654761][ T5113] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[   91.894053][ T5126] loop2: detected capacity change from 0 to 2048
[   91.948310][ T5126] netlink: 'syz.2.271': attribute type 4 has an invalid length.
[   92.192446][ T5134] loop0: detected capacity change from 0 to 512
[   92.269776][ T5122] loop4: detected capacity change from 0 to 40427
[   92.413714][ T5122] F2FS-fs (loop4): Invalid segment/section count (31, 24 x 1)
[   92.419334][ T5122] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock
[   92.449895][ T5122] F2FS-fs (loop4): Unrecognized mount option "00000000000000000003" or missing value
[   92.635591][ T5134] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   94.080764][ T5146] loop3: detected capacity change from 0 to 256
[   94.115570][ T5146] exfat: Deprecated parameter 'namecase'
[   94.125627][ T5147] loop1: detected capacity change from 0 to 512
[   94.127605][ T5146] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[   94.261288][ T5147] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   94.284003][ T5155] loop0: detected capacity change from 0 to 8
[   94.373339][ T5155] overlayfs: missing 'lowerdir'
[   94.511366][ T5158] loop2: detected capacity change from 0 to 4096
[   94.570709][ T5158] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[   94.596085][ T5158] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096)
[   94.629102][ T4255] udevd[4255]: incorrect nilfs2 checksum on /dev/loop2
[   94.641775][ T5162] loop0: detected capacity change from 0 to 2048
[   94.648541][ T5165] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[   94.804916][ T5162] netlink: 'syz.0.283': attribute type 4 has an invalid length.
[   96.262282][ T5182] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[   97.211563][ T5196] loop1: detected capacity change from 0 to 512
[   97.225664][ T5194] loop2: detected capacity change from 0 to 512
[   97.296660][ T5194] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   97.310786][ T5196] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   97.318624][ T5187] loop4: detected capacity change from 0 to 32768
[   97.374562][ T5187] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by syz.4.290 (5187)
[   97.410350][ T5187] BTRFS info (device loop4): using sha256 (sha256-ce) checksum algorithm
[   97.412536][ T5187] BTRFS info (device loop4): setting nodatacow, compression disabled
[   97.434411][ T5187] BTRFS info (device loop4): setting datasum, datacow enabled
[   97.436587][ T5187] BTRFS warning (device loop4): the 'inode_cache' option is deprecated and has no effect since 5.11
[   97.439377][ T5187] BTRFS info (device loop4): turning on sync discard
[   97.453318][ T5187] BTRFS info (device loop4): turning off barriers
[   97.456628][ T5187] BTRFS error (device loop4): support for check_integrity* not compiled in!
[   97.461691][ T5187] BTRFS error (device loop4): open_ctree failed
[   97.541171][ T5209] loop0: detected capacity change from 0 to 128
[   97.543555][ T5204] loop2: detected capacity change from 0 to 8
[   97.569797][ T4255] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 scanned by udevd (4255)
[   97.574012][ T5204] overlayfs: missing 'lowerdir'
[   97.600735][ T5207] loop1: detected capacity change from 0 to 2048
[   97.671245][ T5207] netlink: 'syz.1.295': attribute type 4 has an invalid length.
[   97.909888][ T5223] netlink: 8 bytes leftover after parsing attributes in process `syz.0.300'.
[   98.774304][ T5234] loop4: detected capacity change from 0 to 512
[   98.885173][ T5236] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[   98.952781][ T5240] loop2: detected capacity change from 0 to 512
[   99.673482][ T5234] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   99.736474][ T5240] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[   99.792984][ T5247] loop0: detected capacity change from 0 to 8
[   99.901400][ T5247] overlayfs: missing 'lowerdir'
[   99.978652][ T5256] loop2: detected capacity change from 0 to 2048
[  100.020741][ T5258] udc-core: couldn't find an available UDC or it's busy
[  100.022660][ T5258] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  100.065417][ T5256] netlink: 'syz.2.312': attribute type 4 has an invalid length.
[  100.205427][ T5268] loop4: detected capacity change from 0 to 512
[  101.204803][ T5268] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  101.279333][ T5286] loop0: detected capacity change from 0 to 512
[  102.170766][ T5295] loop1: detected capacity change from 0 to 8
[  102.174365][ T5286] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  102.231214][ T5298] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  102.233871][ T5295] overlayfs: missing 'lowerdir'
[  102.406675][ T5311] loop0: detected capacity change from 0 to 2048
[  102.429193][ T5311] netlink: 'syz.0.327': attribute type 4 has an invalid length.
[  102.448172][ T5314] netlink: 4 bytes leftover after parsing attributes in process `syz.2.330'.
[  102.626110][ T5317] loop2: detected capacity change from 0 to 1024
[  103.330617][ T5321] loop0: detected capacity change from 0 to 512
[  103.374997][ T5321] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  103.562772][ T5317] hfsplus: session requires an argument
[  103.594070][ T5317] hfsplus: unable to parse mount options
[  104.575283][ T5315] netlink: 28 bytes leftover after parsing attributes in process `syz.2.330'.
[  104.577749][ T5315] netlink: 28 bytes leftover after parsing attributes in process `syz.2.330'.
[  104.624706][ T5315] netlink: 32 bytes leftover after parsing attributes in process `syz.2.330'.
[  104.660935][ T5344] loop4: detected capacity change from 0 to 8
[  104.685386][ T5341] loop0: detected capacity change from 0 to 512
[  104.740556][ T5344] overlayfs: missing 'lowerdir'
[  104.776625][ T5357] loop1: detected capacity change from 0 to 512
[  104.826172][ T5341] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  104.851616][ T5353] loop2: detected capacity change from 0 to 2048
[  104.926735][ T5345] chnl_net:caif_netlink_parms(): no params data found
[  104.959720][ T5357] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  104.991819][ T5353] netlink: 'syz.2.343': attribute type 4 has an invalid length.
[  105.852550][ T5345] bridge0: port 1(bridge_slave_0) entered blocking state
[  105.869941][ T5345] bridge0: port 1(bridge_slave_0) entered disabled state
[  105.872494][ T5345] device bridge_slave_0 entered promiscuous mode
[  105.890851][ T5345] bridge0: port 2(bridge_slave_1) entered blocking state
[  105.892851][ T5345] bridge0: port 2(bridge_slave_1) entered disabled state
[  105.900037][ T5345] device bridge_slave_1 entered promiscuous mode
[  105.930723][ T5345] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  105.970376][ T5345] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  106.015012][ T5388] 9pnet: Insufficient options for proto=fd
[  106.035493][ T5390] loop4: detected capacity change from 0 to 8
[  106.071923][ T5345] team0: Port device team_slave_0 added
[  106.077488][ T5390] overlayfs: missing 'lowerdir'
[  106.080821][ T5345] team0: Port device team_slave_1 added
[  106.167552][ T5394] loop0: detected capacity change from 0 to 512
[  106.169546][ T5391] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  106.193410][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_0
[  106.202483][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.219839][ T5345] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  106.234798][ T5345] batman_adv: batadv0: Adding interface: batadv_slave_1
[  106.236581][ T5345] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  106.248739][ T5345] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  106.268006][ T5394] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  106.332891][ T5396] loop4: detected capacity change from 0 to 2048
[  106.347695][ T5345] device hsr_slave_0 entered promiscuous mode
[  106.383903][ T5345] device hsr_slave_1 entered promiscuous mode
[  106.437044][ T5403] xt_l2tp: unknown flags: 10
[  106.444581][ T5345] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  106.446721][ T5345] Cannot create hsr debugfs directory
[  106.463862][ T5396] netlink: 'syz.4.356': attribute type 4 has an invalid length.
[  106.774209][ T4066] Bluetooth: hci5: command 0x0409 tx timeout
[  107.666316][ T5423] loop4: detected capacity change from 0 to 8
[  107.666540][ T5345] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.685326][ T5414] netlink: 20 bytes leftover after parsing attributes in process `syz.1.362'.
[  107.721677][ T5425] loop2: detected capacity change from 0 to 512
[  107.737783][ T5423] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  107.740293][ T5423] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  107.751007][ T5345] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.767281][ T5425] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  107.781017][ T5425] EXT4-fs (loop2): warning: maximal mount count reached, running e2fsck is recommended
[  107.808851][ T5430] loop1: detected capacity change from 0 to 2048
[  107.812063][ T5425] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.366: inode #15: comm syz.2.366: iget: illegal inode #
[  107.818634][ T5425] EXT4-fs (loop2): Remounting filesystem read-only
[  107.826208][ T5425] EXT4-fs error (device loop2): ext4_orphan_get:1402: comm syz.2.366: couldn't read orphan inode 15 (err -117)
[  107.840008][ T5345] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  107.841960][ T5425] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,noblock_validity,. Quota mode: none.
[  107.913824][ T5425] process 'syz.2.366' launched './file1' with NULL argv: empty string added
[  107.916815][ T5430] netlink: 'syz.1.368': attribute type 4 has an invalid length.
[  107.925214][ T5425] EXT4-fs error (device loop2): ext4_lookup:1856: comm syz.2.366: inode #15: comm syz.2.366: iget: illegal inode #
[  107.942557][ T5425] EXT4-fs (loop2): Remounting filesystem read-only
[  107.975705][ T5345] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  108.016857][ T5447] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  108.039423][ T5444] EXT4-fs (loop2): Remounting file system with no journal so ignoring journalled data option
[  108.042034][ T5444] EXT4-fs (loop2): Ignoring removed mblk_io_submit option
[  108.076975][ T5444] EXT4-fs error (device loop2): ext4_remount:5854: comm syz.2.366: Abort forced by user
[  108.086973][ T5444] EXT4-fs (loop2): re-mounted. Opts: quota,data_err=abort,data=ordered,mblk_io_submit,grpjquota=,norecovery,. Quota mode: writeback.
[  109.191436][ T1533] Bluetooth: hci5: command 0x041b tx timeout
[  109.253407][ T5463] loop2: detected capacity change from 0 to 8
[  109.335975][ T5345] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  109.338684][ T5463] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  109.340855][ T5463] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  109.424595][ T5345] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  109.442216][ T5471] loop1: detected capacity change from 0 to 2048
[  109.476340][ T5345] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  109.516212][ T5345] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  109.547194][ T5471] netlink: 'syz.1.382': attribute type 4 has an invalid length.
[  109.833077][ T5345] 8021q: adding VLAN 0 to HW filter on device bond0
[  110.712998][ T5495] loop1: detected capacity change from 0 to 4096
[  110.752036][ T5345] 8021q: adding VLAN 0 to HW filter on device team0
[  110.758111][  T520] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  110.760381][  T520] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  110.775370][ T5495] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  110.799571][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  110.802312][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  110.805277][ T4564] bridge0: port 1(bridge_slave_0) entered blocking state
[  110.807142][ T4564] bridge0: port 1(bridge_slave_0) entered forwarding state
[  110.822512][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  110.837506][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  110.843775][ T5495] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[  110.851989][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  110.862164][ T5507] loop0: detected capacity change from 0 to 8
[  110.869514][ T4564] bridge0: port 2(bridge_slave_1) entered blocking state
[  110.871494][ T4564] bridge0: port 2(bridge_slave_1) entered forwarding state
[  110.891605][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  110.910708][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  110.928530][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  110.933908][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  110.947480][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  110.957155][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  110.959955][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  110.964639][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  110.991130][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  111.000129][ T5507] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[  111.003442][ T5507] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent
[  111.021191][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  111.027644][ T5345] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  111.031176][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  111.219199][ T5515] loop4: detected capacity change from 0 to 2048
[  111.234744][ T4069] Bluetooth: hci5: command 0x040f tx timeout
[  111.293456][ T5515] netlink: 'syz.4.397': attribute type 4 has an invalid length.
[  111.396384][  T520] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  111.398478][  T520] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  111.458971][ T5532] loop4: detected capacity change from 0 to 512
[  111.506800][ T5345] 8021q: adding VLAN 0 to HW filter on device batadv0
[  111.574560][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  111.577337][ T4564] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  112.335498][ T5532] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  112.343155][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  112.346159][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  112.350741][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  112.353119][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  112.415994][ T5345] device veth0_vlan entered promiscuous mode
[  112.461287][ T5345] device veth1_vlan entered promiscuous mode
[  112.550560][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  112.553105][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  112.556515][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  112.560437][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  112.705144][ T5543] FAULT_INJECTION: forcing a failure.
[  112.705144][ T5543] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  112.708431][ T5543] CPU: 0 PID: 5543 Comm: syz.0.403 Not tainted 5.15.166-syzkaller #0
[  112.710548][ T5543] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  112.712999][ T5543] Call trace:
[  112.713793][ T5543]  dump_backtrace+0x0/0x530
[  112.714936][ T5543]  show_stack+0x2c/0x3c
[  112.716023][ T5543]  dump_stack_lvl+0x108/0x170
[  112.717229][ T5543]  dump_stack+0x1c/0x58
[  112.718207][ T5543]  should_fail+0x3b8/0x514
[  112.719336][ T5543]  should_fail_usercopy+0x20/0x30
[  112.720557][ T5543]  simple_read_from_buffer+0xd8/0x26c
[  112.721915][ T5543]  proc_fail_nth_read+0x1a0/0x248
[  112.723199][ T5543]  vfs_read+0x278/0xb18
[  112.724231][ T5543]  ksys_read+0x15c/0x26c
[  112.725356][ T5543]  __arm64_sys_read+0x7c/0x90
[  112.726585][ T5543]  invoke_syscall+0x98/0x2b8
[  112.727697][ T5543]  el0_svc_common+0x138/0x258
[  112.728952][ T5543]  do_el0_svc+0x58/0x14c
[  112.730095][ T5543]  el0_svc+0x7c/0x1f0
[  112.731111][ T5543]  el0t_64_sync_handler+0x84/0xe4
[  112.732458][ T5543]  el0t_64_sync+0x1a0/0x1a4
[  112.739814][ T5345] device veth0_macvtap entered promiscuous mode
[  112.808221][ T5345] device veth1_macvtap entered promiscuous mode
[  112.867593][ T5547] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  112.966884][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  112.989109][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.006211][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  113.022382][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.041850][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  113.062243][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.080352][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  113.099188][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.115021][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  113.130123][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.149953][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_0
[  113.176251][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  113.181076][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  113.183834][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  113.195333][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  113.219441][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  113.222125][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.233452][ T5549] loop0: detected capacity change from 0 to 4096
[  113.235270][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  113.237864][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.240336][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  113.242857][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.254935][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  113.257809][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.260247][ T5345] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  113.262725][ T5345] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  113.267992][ T5345] batman_adv: batadv0: Interface activated: batadv_slave_1
[  113.270145][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  113.277626][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  113.315530][ T4069] Bluetooth: hci5: command 0x0419 tx timeout
[  113.317541][ T5345] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  113.319867][ T5345] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  113.322123][ T5345] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  113.337051][ T5549] ntfs: (device loop0): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match.  Run ntfsfix or chkdsk.
[  113.340193][ T5549] ntfs: (device loop0): load_system_files(): $MFTMirr does not match $MFT.  Mounting read-only.  Run ntfsfix and/or chkdsk.
[  113.345327][ T5551] loop1: detected capacity change from 0 to 8
[  113.347020][ T5345] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  113.351313][ T5549] ntfs: (device loop0): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn.
[  113.376386][ T5549] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -5.  Marking corrupt inode 0xa as bad.  Run chkdsk.
[  113.379765][ T5549] ntfs: (device loop0): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default.
[  113.424546][ T5549] ntfs: volume version 3.1.
[  113.448663][ T5549] ntfs: (device loop0): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty.
[  113.467082][ T5551] overlayfs: missing 'lowerdir'
[  113.468778][ T5549] ntfs: (device loop0): load_system_files(): Failed to load $LogFile.  Will not be able to remount read-write.  Mount in Windows.
[  113.499607][ T5549] ntfs: (device loop0): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5.
[  113.502354][ T5549] ntfs: (device loop0): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys.
[  113.514519][ T5549] ntfs: (device loop0): load_system_files(): Failed to determine if Windows is hibernated.  Will not be able to remount read-write.  Run chkdsk.
[  113.540610][ T4142] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.542755][ T4142] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.557593][ T4142] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  113.698554][ T5555] loop4: detected capacity change from 0 to 2048
[  113.713060][ T4142] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  113.715464][ T4142] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  113.719657][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  113.970156][ T5559] usb usb1: check_ctrlrecip: process 5559 (syz.0.405) requesting ep 01 but needs 81
[  114.181669][ T5533] loop2: detected capacity change from 0 to 32768
[  114.312251][ T5562] udc-core: couldn't find an available UDC or it's busy
[  114.315744][ T5562] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  114.564456][ T5555] netlink: 'syz.4.409': attribute type 4 has an invalid length.
[  114.646757][ T5570] loop1: detected capacity change from 0 to 512
[  114.741921][ T5570] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  114.929089][ T5583] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  114.936397][ T5586] loop1: detected capacity change from 0 to 8
[  114.999940][ T5586] overlayfs: missing 'lowerdir'
[  115.939074][ T5594] device bridge0 entered promiscuous mode
[  116.217600][ T5602] netlink: 'syz.1.424': attribute type 4 has an invalid length.
[  116.316964][ T5609] loop2: detected capacity change from 0 to 512
[  116.375783][ T5612] loop1: detected capacity change from 0 to 1024
[  116.382493][ T5609] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  116.408062][ T5612] EXT4-fs (loop1): Ignoring removed nomblk_io_submit option
[  116.463350][ T5612] EXT4-fs (loop1): mounted filesystem without journal. Opts: barrier=0x0000000000000009,bsddf,barrier=0x00000000000001ff,data_err=abort,debug_want_extra_isize=0x0000000000000080,lazytime,sb=0x000000000000006a,noblock_validity,nomblk_io_submit,sysvgroups,auto_da_alloc=0x000000000000fae,errors=continue. Quota mode: none.
[  116.548264][ T5599] loop4: detected capacity change from 0 to 40427
[  116.576920][ T5620] loop2: detected capacity change from 0 to 8
[  116.631054][ T5620] overlayfs: missing 'lowerdir'
[  116.659997][ T5599] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  116.664930][ T5599] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  116.680390][ T5599] F2FS-fs (loop4): invalid crc value
[  116.706988][ T5599] F2FS-fs (loop4): Found nat_bits in checkpoint
[  116.787420][ T5599] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  116.790523][ T5599] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  116.821256][ T5599] Zero length message leads to an empty skb
[  117.055556][  T148] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  117.057942][  T148] F2FS-fs (loop4): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  117.138476][ T5612] EXT4-fs error (device loop1): ext4_lookup:1856: inode #14: comm syz.1.428: iget: bad extra_isize 17960 (inode size 256)
[  117.912850][ T5637] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  118.055931][ T5645] netlink: 'syz.0.437': attribute type 4 has an invalid length.
[  118.099778][ T5647] loop1: detected capacity change from 0 to 512
[  118.126174][ T5649] loop0: detected capacity change from 0 to 8
[  118.185119][ T5647] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  118.201338][ T5658] loop2: detected capacity change from 0 to 256
[  118.235745][ T5649] overlayfs: missing 'workdir'
[  118.391607][ T5666] loop0: detected capacity change from 0 to 128
[  118.395666][ T4029] sysfs: cannot create duplicate filename '/devices/virtual/bluetooth/hci1/hci1:201'
[  118.395720][ T4029] CPU: 0 PID: 4029 Comm: kworker/u5:4 Not tainted 5.15.166-syzkaller #0
[  118.395732][ T4029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  118.395739][ T4029] Workqueue: hci1 hci_rx_work
[  118.395757][ T4029] Call trace:
[  118.395761][ T4029]  dump_backtrace+0x0/0x530
[  118.395772][ T4029]  show_stack+0x2c/0x3c
[  118.395780][ T4029]  dump_stack_lvl+0x108/0x170
[  118.395791][ T4029]  dump_stack+0x1c/0x58
[  118.395799][ T4029]  sysfs_create_dir_ns+0x278/0x318
[  118.395810][ T4029]  kobject_add_internal+0x384/0x8f0
[  118.395820][ T4029]  kobject_add+0x14c/0x21c
[  118.395829][ T4029]  device_add+0x400/0xef4
[  118.395838][ T4029]  hci_conn_add_sysfs+0xc4/0x1cc
[  118.395848][ T4029]  le_conn_complete_evt+0x954/0x1228
[  118.395857][ T4029]  hci_le_meta_evt+0xa50/0x31c0
[  118.395867][ T4029]  hci_event_packet+0xd34/0x12b4
[  118.395877][ T4029]  hci_rx_work+0x1c0/0x7c4
[  118.395886][ T4029]  process_one_work+0x790/0x11b8
[  118.395896][ T4029]  worker_thread+0x910/0x1034
[  118.395906][ T4029]  kthread+0x37c/0x45c
[  118.395915][ T4029]  ret_from_fork+0x10/0x20
[  118.395937][ T4029] kobject_add_internal failed for hci1:201 with -EEXIST, don't try to register things with the same name in the same directory.
[  118.395972][ T4029] Bluetooth: hci1: failed to register connection device
[  118.731264][ T5683] netlink: 'syz.1.451': attribute type 4 has an invalid length.
[  119.625527][ T5688] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  119.670290][ T5695] overlayfs: missing 'workdir'
[  119.676301][ T5692] netlink: 'syz.2.453': attribute type 298 has an invalid length.
[  119.681522][ T5692] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  119.772717][ T5699] loop0: detected capacity change from 0 to 512
[  119.805743][ T5709] autofs4:pid:5709:autofs_fill_super: called with bogus options
[  119.859540][ T5699] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  119.900353][ T5717] netlink: 'syz.3.464': attribute type 4 has an invalid length.
[  120.216862][ T5712] loop4: detected capacity change from 0 to 32768
[  120.247596][ T5712] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop4 scanned by syz.4.462 (5712)
[  120.259577][ T5726] binder: tried to use weak ref as strong ref
[  120.261299][ T5726] binder: 5724:5726 Acquire 1 refcount change on invalid ref 0 ret -22
[  120.279712][ T5712] BTRFS info (device loop4): using blake2b (blake2b-256-generic) checksum algorithm
[  120.282115][ T5712] BTRFS info (device loop4): using free space tree
[  120.283835][ T5712] BTRFS info (device loop4): has skinny extents
[  120.314343][ T5734] overlayfs: missing 'workdir'
[  120.342356][ T5737] MPTCP: kernel_bind error, err=-99
[  120.384795][ T5736] netlink: 'syz.2.468': attribute type 1 has an invalid length.
[  120.401180][ T5737] netlink: 'syz.2.468': attribute type 1 has an invalid length.
[  120.424260][ T4010] Bluetooth: hci1: command 0x2016 tx timeout
[  120.469777][ T5712] BTRFS info (device loop4): enabling ssd optimizations
[  120.497239][ T5763] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  120.919685][ T5777] netlink: 'syz.3.476': attribute type 4 has an invalid length.
[  121.118823][ T5789] overlayfs: failed to resolve './file0': -2
[  121.198927][ T5799] netlink: 12 bytes leftover after parsing attributes in process `syz.1.484'.
[  121.209524][ T5800] loop0: detected capacity change from 0 to 512
[  121.326733][ T5800] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  121.379407][ T5809] loop4: detected capacity change from 0 to 2048
[  121.484002][ T5809] netlink: 'syz.4.488': attribute type 4 has an invalid length.
[  122.439795][ T5830] loop4: detected capacity change from 0 to 8
[  122.585616][ T5833] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  122.778213][ T5850] loop1: detected capacity change from 0 to 512
[  122.811672][ T5846] loop4: detected capacity change from 0 to 4096
[  122.889388][ T5850] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  122.908814][ T5846] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  122.916579][ T5859] netlink: 16 bytes leftover after parsing attributes in process `syz.3.506'.
[  122.923720][ T5854] loop0: detected capacity change from 0 to 2048
[  123.190379][ T5870] overlayfs: failed to resolve './file0': -2
[  123.535990][ T5890] loop0: detected capacity change from 0 to 512
[  123.651908][ T5890] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  123.681967][ T5899] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  123.766241][ T5905] loop2: detected capacity change from 0 to 512
[  123.848861][ T5909] loop0: detected capacity change from 0 to 8
[  124.039964][ T5905] loop2: detected capacity change from 0 to 4096
[  124.104771][ T5905] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[  124.107762][ T5905] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 4096)
[  124.110333][ T5905] NILFS (loop2): mounting unchecked fs
[  124.113499][ T5921] binder: 5920:5921 got transaction to context manager from process owning it
[  124.127841][ T5921] binder: 5920:5921 transaction failed 29201/-22, size 0-0 line 2908
[  124.130061][ T5905] NILFS (loop2): invalid segment: Checksum error in segment payload
[  124.131991][ T5905] NILFS (loop2): unable to fall back to spare super block
[  124.133975][ T5905] NILFS (loop2): error -22 while searching super root
[  124.193270][ T4022] binder: undelivered TRANSACTION_ERROR: 29201
[  124.220821][ T5927] loop4: detected capacity change from 0 to 2048
[  124.225234][ T5929] netlink: 8 bytes leftover after parsing attributes in process `syz.0.531'.
[  124.248594][ T5929] loop0: detected capacity change from 0 to 512
[  124.404476][ T5929] EXT4-fs (loop0): Mount option "nouser_xattr" will be removed by 3.5
[  124.404476][ T5929] Contact linux-ext4@vger.kernel.org if you think we should keep it.
[  124.404476][ T5929] 
[  124.484043][ T5929] EXT4-fs (loop0): 1 orphan inode deleted
[  124.500893][ T5929] EXT4-fs (loop0): mounted filesystem without journal. Opts: resgid=0x0000000000000000,discard,noblock_validity,init_itable,stripe=0x000000000000002e,nouser_xattr,sysvgroups,norecovery,usrquota,minixdf,,errors=continue. Quota mode: writeback.
[  124.735396][ T5937] binder: 5933:5937 tried to acquire reference to desc 0, got 1 instead
[  124.765333][ T5937] binder_alloc: 5933: binder_alloc_buf failed to map page at 20ffe000 in userspace
[  124.767877][ T5937] binder: 5933:5937 transaction failed 29201/-12, size 12288-0 line 3085
[  125.228640][ T5948] loop0: detected capacity change from 0 to 8
[  125.354696][ T4022] binder: undelivered TRANSACTION_ERROR: 29201
[  125.493179][ T5937] syz.4.532 (5937): drop_caches: 2
[  125.560828][ T5954] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  126.052522][ T5967] loop0: detected capacity change from 0 to 2048
[  126.101929][ T5971] bond0: option mode: unable to set because the bond device has slaves
[  126.115800][ T5971] loop1: detected capacity change from 0 to 16
[  126.155166][ T5971] erofs: DAX enabled. Warning: EXPERIMENTAL, use at your own risk
[  126.160278][ T5967] netlink: 'syz.0.542': attribute type 4 has an invalid length.
[  126.164534][ T5971] erofs: DAX unsupported by block device. Turning off DAX.
[  126.166522][ T5971] erofs: (device loop1): mounted with root inode @ nid 36.
[  126.183634][ T5975] loop4: detected capacity change from 0 to 512
[  126.273887][ T5981] device bridge1 entered promiscuous mode
[  126.297845][ T5981] netlink: 4 bytes leftover after parsing attributes in process `syz.0.547'.
[  126.310709][ T5975] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  126.332362][ T5985] IPVS: set_ctl: invalid protocol: 512 0.0.0.0:0
[  126.347349][ T5986] loop1: detected capacity change from 0 to 8
[  126.705772][ T6008] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  127.630179][ T6014] loop4: detected capacity change from 0 to 2048
[  127.673785][ T6023] loop0: detected capacity change from 0 to 512
[  127.751959][ T6014] netlink: 'syz.4.557': attribute type 4 has an invalid length.
[  127.791119][ T6028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  127.903525][ T6023] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  127.950972][ T6035] loop4: detected capacity change from 0 to 8
[  127.974824][ T6039] loop1: detected capacity change from 0 to 8
[  127.997866][ T6028] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  128.009259][ T6039] FAULT_INJECTION: forcing a failure.
[  128.009259][ T6039] name failslab, interval 1, probability 0, space 0, times 1
[  128.012591][ T6039] CPU: 0 PID: 6039 Comm: syz.1.565 Not tainted 5.15.166-syzkaller #0
[  128.014668][ T6039] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  128.017179][ T6039] Call trace:
[  128.018108][ T6039]  dump_backtrace+0x0/0x530
[  128.019197][ T6039]  show_stack+0x2c/0x3c
[  128.020281][ T6039]  dump_stack_lvl+0x108/0x170
[  128.021455][ T6039]  dump_stack+0x1c/0x58
[  128.022531][ T6039]  should_fail+0x3b8/0x514
[  128.023670][ T6039]  __should_failslab+0xbc/0x110
[  128.024930][ T6039]  should_failslab+0x10/0x28
[  128.026130][ T6039]  slab_pre_alloc_hook+0x64/0xe8
[  128.027518][ T6039]  kmem_cache_alloc+0x98/0x45c
[  128.028734][ T6039]  getname_flags+0xd0/0x480
[  128.029907][ T6039]  __arm64_sys_unlinkat+0xb4/0xfc
[  128.031235][ T6039]  invoke_syscall+0x98/0x2b8
[  128.032382][ T6039]  el0_svc_common+0x138/0x258
[  128.033521][ T6039]  do_el0_svc+0x58/0x14c
[  128.034677][ T6039]  el0_svc+0x7c/0x1f0
[  128.035732][ T6039]  el0t_64_sync_handler+0x84/0xe4
[  128.037084][ T6039]  el0t_64_sync+0x1a0/0x1a4
[  128.175563][ T6043] loop1: detected capacity change from 0 to 8
[  129.719869][ T6045] loop0: detected capacity change from 0 to 32768
[  129.734326][ T6049] netlink: 36 bytes leftover after parsing attributes in process `syz.3.569'.
[  129.841461][ T6053] loop4: detected capacity change from 0 to 2048
[  130.008024][ T6053] UDF-fs: warning (device loop4): udf_load_vrs: No anchor found
[  130.010333][ T6053] UDF-fs: Scanning with blocksize 512 failed
[  130.856545][ T4567] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  130.859095][ T4567] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  130.878353][ T6062] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  130.909086][ T6053] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  130.934957][ T4567] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz1
[  130.977846][ T6068] loop0: detected capacity change from 0 to 512
[  131.065646][ T2054] ieee802154 phy0 wpan0: encryption failed: -22
[  131.067443][ T2054] ieee802154 phy1 wpan1: encryption failed: -22
[  131.105597][ T6068] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  131.117083][ T6067] loop1: detected capacity change from 0 to 2048
[  131.138473][ T6080] loop2: detected capacity change from 0 to 8
[  131.233761][ T6080] FAULT_INJECTION: forcing a failure.
[  131.233761][ T6080] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  131.240834][ T6067] netlink: 'syz.1.577': attribute type 4 has an invalid length.
[  131.251865][ T6080] CPU: 0 PID: 6080 Comm: syz.2.580 Not tainted 5.15.166-syzkaller #0
[  131.253991][ T6080] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  131.256714][ T6080] Call trace:
[  131.257656][ T6080]  dump_backtrace+0x0/0x530
[  131.258804][ T6080]  show_stack+0x2c/0x3c
[  131.259967][ T6080]  dump_stack_lvl+0x108/0x170
[  131.261206][ T6080]  dump_stack+0x1c/0x58
[  131.262288][ T6080]  should_fail+0x3b8/0x514
[  131.263505][ T6080]  should_fail_usercopy+0x20/0x30
[  131.264811][ T6080]  strncpy_from_user+0x48/0x580
[  131.266111][ T6080]  getname_flags+0x104/0x480
[  131.267366][ T6080]  __arm64_sys_unlinkat+0xb4/0xfc
[  131.268691][ T6080]  invoke_syscall+0x98/0x2b8
[  131.269912][ T6080]  el0_svc_common+0x138/0x258
[  131.271181][ T6080]  do_el0_svc+0x58/0x14c
[  131.272338][ T6080]  el0_svc+0x7c/0x1f0
[  131.273371][ T6080]  el0t_64_sync_handler+0x84/0xe4
[  131.274715][ T6080]  el0t_64_sync+0x1a0/0x1a4
[  131.292053][ T6053] attempt to access beyond end of device
[  131.292053][ T6053] loop4: rw=2049, want=2050, limit=2048
[  131.330011][ T6053] Buffer I/O error on dev loop4, logical block 1024, lost async page write
[  131.332459][ T6053] attempt to access beyond end of device
[  131.332459][ T6053] loop4: rw=2049, want=2050, limit=2048
[  131.339547][ T6053] Buffer I/O error on dev loop4, logical block 1024, lost async page write
[  131.341865][ T6053] attempt to access beyond end of device
[  131.341865][ T6053] loop4: rw=2049, want=2050, limit=2048
[  131.395563][ T6088] loop0: detected capacity change from 0 to 8
[  131.397376][ T6053] Buffer I/O error on dev loop4, logical block 1024, lost async page write
[  131.399547][ T6053] attempt to access beyond end of device
[  131.399547][ T6053] loop4: rw=2049, want=2050, limit=2048
[  131.402253][ T6053] Buffer I/O error on dev loop4, logical block 1024, lost async page write
[  131.421104][ T6053] attempt to access beyond end of device
[  131.421104][ T6053] loop4: rw=2049, want=2052, limit=2048
[  131.431816][ T6091] loop1: detected capacity change from 0 to 128
[  131.433561][ T6053] Buffer I/O error on dev loop4, logical block 1025, lost async page write
[  131.436448][ T6053] attempt to access beyond end of device
[  131.436448][ T6053] loop4: rw=2049, want=2052, limit=2048
[  131.439056][ T6053] Buffer I/O error on dev loop4, logical block 1025, lost async page write
[  131.441278][ T6053] attempt to access beyond end of device
[  131.441278][ T6053] loop4: rw=2049, want=2052, limit=2048
[  131.444351][ T6053] Buffer I/O error on dev loop4, logical block 1025, lost async page write
[  131.446550][ T6053] attempt to access beyond end of device
[  131.446550][ T6053] loop4: rw=2049, want=2052, limit=2048
[  131.449442][ T6053] Buffer I/O error on dev loop4, logical block 1025, lost async page write
[  131.451824][ T6053] attempt to access beyond end of device
[  131.451824][ T6053] loop4: rw=2049, want=2054, limit=2048
[  131.471333][ T6053] Buffer I/O error on dev loop4, logical block 1026, lost async page write
[  131.480828][ T6091] hsr0: VLAN not yet supported
[  131.535147][ T6091] overlayfs: filesystem on './file1' not supported
[  131.659906][ T6100] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  131.762651][ T6112] loop0: detected capacity change from 0 to 512
[  131.824123][ T6112] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  131.865431][ T6115] loop1: detected capacity change from 0 to 2048
[  132.002228][ T6119] syz.3.594 uses obsolete (PF_INET,SOCK_PACKET)
[  132.072372][ T6115] netlink: 'syz.1.593': attribute type 4 has an invalid length.
[  132.190691][ T6131] overlayfs: failed to resolve './file0': -2
[  132.210883][ T6134] loop2: detected capacity change from 0 to 8
[  132.219736][ T6133] netlink: 24 bytes leftover after parsing attributes in process `syz.0.599'.
[  132.231941][ T6131] FAULT_INJECTION: forcing a failure.
[  132.231941][ T6131] name failslab, interval 1, probability 0, space 0, times 0
[  132.237911][ T6133] netlink: 100 bytes leftover after parsing attributes in process `syz.0.599'.
[  132.240402][ T6131] CPU: 0 PID: 6131 Comm: syz.1.597 Not tainted 5.15.166-syzkaller #0
[  132.242523][ T6131] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  132.245064][ T6131] Call trace:
[  132.245932][ T6131]  dump_backtrace+0x0/0x530
[  132.247102][ T6131]  show_stack+0x2c/0x3c
[  132.248233][ T6131]  dump_stack_lvl+0x108/0x170
[  132.249475][ T6131]  dump_stack+0x1c/0x58
[  132.250548][ T6131]  should_fail+0x3b8/0x514
[  132.251623][ T6131]  __should_failslab+0xbc/0x110
[  132.252926][ T6131]  should_failslab+0x10/0x28
[  132.254146][ T6131]  slab_pre_alloc_hook+0x64/0xe8
[  132.255497][ T6131]  kmem_cache_alloc+0x98/0x45c
[  132.256738][ T6131]  __d_alloc+0x3c/0x6a8
[  132.257853][ T6131]  d_alloc+0x54/0x18c
[  132.258932][ T6131]  lookup_one_qstr_excl+0xbc/0x230
[  132.260278][ T6131]  do_rmdir+0x208/0x84c
[  132.261369][ T6131]  __arm64_sys_unlinkat+0xe0/0xfc
[  132.262613][ T6131]  invoke_syscall+0x98/0x2b8
[  132.263728][ T6131]  el0_svc_common+0x138/0x258
[  132.264917][ T6131]  do_el0_svc+0x58/0x14c
[  132.266003][ T6131]  el0_svc+0x7c/0x1f0
[  132.266955][ T6131]  el0t_64_sync_handler+0x84/0xe4
[  132.268213][ T6131]  el0t_64_sync+0x1a0/0x1a4
[  132.269494][    C0] vkms_vblank_simulate: vblank timer overrun
[  132.387277][ T6138] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  132.443476][ T6104] loop4: detected capacity change from 0 to 32768
[  132.452350][ T6140] loop0: detected capacity change from 0 to 8
[  132.503706][ T6140] SQUASHFS error: xz decompression failed, data probably corrupt
[  132.520096][ T6140] SQUASHFS error: Failed to read block 0x108: -5
[  132.521679][ T6140] SQUASHFS error: Unable to read metadata cache entry [106]
[  132.523461][ T6140] SQUASHFS error: Unable to read inode 0x0
[  132.562376][ T6146] loop1: detected capacity change from 0 to 512
[  132.565753][ T6148] loop2: detected capacity change from 0 to 8
[  132.663322][ T6146] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  132.944718][ T6159] loop2: detected capacity change from 0 to 2048
[  132.960957][ T6162] loop1: detected capacity change from 0 to 512
[  132.961417][ T6163] loop4: detected capacity change from 0 to 8
[  133.045309][ T6165] overlayfs: failed to resolve './file0': -2
[  133.107210][ T6163] FAULT_INJECTION: forcing a failure.
[  133.107210][ T6163] name failslab, interval 1, probability 0, space 0, times 0
[  133.114839][ T6159] netlink: 'syz.2.608': attribute type 4 has an invalid length.
[  133.116282][ T6163] CPU: 1 PID: 6163 Comm: syz.4.612 Not tainted 5.15.166-syzkaller #0
[  133.118891][ T6163] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  133.121415][ T6163] Call trace:
[  133.122276][ T6163]  dump_backtrace+0x0/0x530
[  133.122805][ T6172] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  133.123485][ T6163]  show_stack+0x2c/0x3c
[  133.126346][ T6163]  dump_stack_lvl+0x108/0x170
[  133.127558][ T6163]  dump_stack+0x1c/0x58
[  133.128593][ T6163]  should_fail+0x3b8/0x514
[  133.129708][ T6163]  __should_failslab+0xbc/0x110
[  133.130958][ T6163]  should_failslab+0x10/0x28
[  133.132195][ T6163]  slab_pre_alloc_hook+0x64/0xe8
[  133.133515][ T6163]  kmem_cache_alloc+0x98/0x45c
[  133.134676][ T6163]  __d_alloc+0x3c/0x6a8
[  133.135767][ T6163]  d_alloc_parallel+0xb8/0x11bc
[  133.136959][ T6163]  __lookup_slow+0x108/0x388
[  133.138171][ T6163]  lookup_one_unlocked+0x144/0x254
[  133.139459][ T6163]  lookup_one_len_unlocked+0x3c/0x50
[  133.140855][ T6163]  ovl_lookup_single+0x84/0x6c4
[  133.142128][ T6163]  ovl_lookup_layer+0x368/0x454
[  133.143361][ T6163]  ovl_lookup+0x374/0x1928
[  133.144466][ T6163]  lookup_one_qstr_excl+0x108/0x230
[  133.145751][ T6163]  do_rmdir+0x208/0x84c
[  133.146800][ T6163]  __arm64_sys_unlinkat+0xe0/0xfc
[  133.148131][ T6163]  invoke_syscall+0x98/0x2b8
[  133.149292][ T6163]  el0_svc_common+0x138/0x258
[  133.150464][ T6163]  do_el0_svc+0x58/0x14c
[  133.151503][ T6163]  el0_svc+0x7c/0x1f0
[  133.152564][ T6163]  el0t_64_sync_handler+0x84/0xe4
[  133.153892][ T6163]  el0t_64_sync+0x1a0/0x1a4
[  133.184626][ T6162] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  133.199488][ T6162] EXT4-fs (loop1): orphan cleanup on readonly fs
[  133.208469][ T6162] EXT4-fs error (device loop1): ext4_mb_mark_diskspace_used:3879: comm syz.1.611: Allocating blocks 41-42 which overlap fs metadata
[  133.273512][ T6162] __quota_error: 6 callbacks suppressed
[  133.273526][ T6162] Quota error (device loop1): write_blk: dquota write failed
[  133.293760][ T6162] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  133.305179][ T6180] udc-core: couldn't find an available UDC or it's busy
[  133.307122][ T6180] misc raw-gadget: fail, usb_gadget_probe_driver returned -19
[  133.324460][ T6162] EXT4-fs error (device loop1): ext4_acquire_dquot:6196: comm syz.1.611: Failed to acquire dquot type 0
[  133.336581][ T6162] EXT4-fs (loop1): 1 truncate cleaned up
[  133.385140][ T6162] EXT4-fs (loop1): pa 0000000084c688de: logic 1, phys. 41, len 23
[  133.387618][ T6162] EXT4-fs error (device loop1): ext4_mb_release_inode_pa:4896: group 0, free 22, pa_free 23
[  133.425930][ T6162] EXT4-fs (loop1): mounted filesystem without journal. Opts: max_dir_size_kb=0x0000000000000002,noblock_validity,abort,grpjquota=,nogrpid,nobarrier,noinit_itable,resgid=0x0000000000000000,resuid=0x00000000000000002,errors=continue. Quota mode: writeback.
[  133.482033][   T26] audit: type=1326 audit(133.450:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6183 comm="syz.2.620" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x0
[  133.483160][ T6162] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #15: comm syz.1.611: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  133.518497][ T6162] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #15: comm syz.1.611: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  133.549429][ T6186] loop4: detected capacity change from 0 to 256
[  133.556998][ T6162] netlink: 'syz.1.611': attribute type 10 has an invalid length.
[  133.558972][ T6162] netlink: 40 bytes leftover after parsing attributes in process `syz.1.611'.
[  133.572074][ T6162] bridge0: port 3(syz_tun) entered blocking state
[  133.573921][ T6162] bridge0: port 3(syz_tun) entered disabled state
[  133.579321][ T6162] device syz_tun entered promiscuous mode
[  133.582108][ T6187] loop2: detected capacity change from 0 to 8
[  133.584580][ T6162] bridge0: port 3(syz_tun) entered blocking state
[  133.586437][ T6162] bridge0: port 3(syz_tun) entered forwarding state
[  133.601808][ T6162] EXT4-fs error (device loop1): ext4_ext_check_inode:501: inode #15: comm syz.1.611: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  133.633983][ T6186] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d)
[  133.651275][ T6187] overlayfs: unrecognized mount option "uuid=null" or missing value
[  133.691557][ T6186] netlink: 8 bytes leftover after parsing attributes in process `syz.4.621'.
[  133.694971][ T6186] netlink: 4 bytes leftover after parsing attributes in process `syz.4.621'.
[  133.743003][ T6153] loop0: detected capacity change from 0 to 32768
[  133.759581][ T6192] loop1: detected capacity change from 0 to 512
[  133.782374][ T6153] gfs2: Unknown parameter 'L#w��꛲�&m�����p��v��'
[  133.811384][ T6192] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  133.839045][ T6194] loop4: detected capacity change from 0 to 512
[  133.923047][ T6194] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  134.008595][ T6200] FAULT_INJECTION: forcing a failure.
[  134.008595][ T6200] name failslab, interval 1, probability 0, space 0, times 0
[  134.012003][ T6200] CPU: 1 PID: 6200 Comm: syz.4.623 Not tainted 5.15.166-syzkaller #0
[  134.014228][ T6200] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  134.016769][ T6200] Call trace:
[  134.017607][ T6200]  dump_backtrace+0x0/0x530
[  134.018680][ T6200]  show_stack+0x2c/0x3c
[  134.019684][ T6200]  dump_stack_lvl+0x108/0x170
[  134.020905][ T6200]  dump_stack+0x1c/0x58
[  134.022012][ T6200]  should_fail+0x3b8/0x514
[  134.023188][ T6200]  __should_failslab+0xbc/0x110
[  134.024361][ T6200]  should_failslab+0x10/0x28
[  134.025538][ T6200]  slab_pre_alloc_hook+0x64/0xe8
[  134.026855][ T6200]  kmem_cache_alloc_trace+0x9c/0x47c
[  134.028207][ T6200]  alloc_pipe_info+0xfc/0x518
[  134.029458][ T6200]  splice_direct_to_actor+0x818/0x9a0
[  134.030747][ T6200]  do_splice_direct+0x1f4/0x334
[  134.032004][ T6200]  do_sendfile+0x4c0/0xcb0
[  134.033001][ T6200]  __arm64_sys_sendfile64+0x160/0x408
[  134.034406][ T6200]  invoke_syscall+0x98/0x2b8
[  134.035551][ T6200]  el0_svc_common+0x138/0x258
[  134.036794][ T6200]  do_el0_svc+0x58/0x14c
[  134.037902][ T6200]  el0_svc+0x7c/0x1f0
[  134.038886][ T6200]  el0t_64_sync_handler+0x84/0xe4
[  134.040195][ T6200]  el0t_64_sync+0x1a0/0x1a4
[  134.483634][ T6208] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  134.597175][ T6210] loop2: detected capacity change from 0 to 2048
[  134.716652][ T6210] netlink: 'syz.2.627': attribute type 4 has an invalid length.
[  135.009792][ T6204] loop0: detected capacity change from 0 to 32768
[  135.064591][ T6224] loop2: detected capacity change from 0 to 8
[  135.073628][ T6204] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.624 (6204)
[  135.230377][ T6225] loop4: detected capacity change from 0 to 512
[  135.581323][ T6225] EXT4-fs error (device loop4): ext4_clear_blocks:883: inode #13: comm syz.4.631: attempt to clear invalid blocks 2 len 1
[  135.595495][ T6225] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1152: group 0, block bitmap and bg descriptor inconsistent: 216 vs 220 free clusters
[  135.601440][ T6225] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.631: invalid indirect mapped block 1819239214 (level 0)
[  135.614674][ T6225] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.631: invalid indirect mapped block 1819239214 (level 1)
[  135.649785][ T6225] EXT4-fs (loop4): 1 truncate cleaned up
[  135.651380][ T6225] EXT4-fs (loop4): mounted filesystem without journal. Opts: auto_da_alloc=0x0000000000000003,,errors=continue. Quota mode: none.
[  135.704565][ T6225] EXT4-fs (loop4): shut down requested (2)
[  135.883042][ T6204] BTRFS info (device loop0): using crc32c (crc32c-generic) checksum algorithm
[  135.892328][ T6204] BTRFS info (device loop0): using free space tree
[  135.904079][ T6204] BTRFS info (device loop0): has skinny extents
[  136.092993][ T6247] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  136.218922][ T6204] BTRFS info (device loop0): enabling ssd optimizations
[  136.281365][ T6258] loop2: detected capacity change from 0 to 256
[  136.287611][ T6256] loop1: detected capacity change from 0 to 2048
[  136.309631][ T6261] loop4: detected capacity change from 0 to 8
[  136.345883][ T6256] netlink: 'syz.1.640': attribute type 4 has an invalid length.
[  136.360560][ T6261] FAULT_INJECTION: forcing a failure.
[  136.360560][ T6261] name failslab, interval 1, probability 0, space 0, times 0
[  136.384366][ T6261] CPU: 0 PID: 6261 Comm: syz.4.641 Not tainted 5.15.166-syzkaller #0
[  136.386727][ T6261] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  136.389447][ T6261] Call trace:
[  136.390325][ T6261]  dump_backtrace+0x0/0x530
[  136.391667][ T6261]  show_stack+0x2c/0x3c
[  136.392792][ T6261]  dump_stack_lvl+0x108/0x170
[  136.394068][ T6261]  dump_stack+0x1c/0x58
[  136.395329][ T6261]  should_fail+0x3b8/0x514
[  136.396509][ T6261]  __should_failslab+0xbc/0x110
[  136.397886][ T6261]  should_failslab+0x10/0x28
[  136.399112][ T6261]  slab_pre_alloc_hook+0x64/0xe8
[  136.400373][ T6261]  __kmalloc+0xc0/0x4c8
[  136.401370][ T6261]  ovl_lookup+0x558/0x1928
[  136.402609][ T6261]  lookup_one_qstr_excl+0x108/0x230
[  136.403981][ T6261]  do_rmdir+0x208/0x84c
[  136.405077][ T6261]  __arm64_sys_unlinkat+0xe0/0xfc
[  136.406119][ T6261]  invoke_syscall+0x98/0x2b8
[  136.407284][ T6261]  el0_svc_common+0x138/0x258
[  136.408580][ T6261]  do_el0_svc+0x58/0x14c
[  136.409718][ T6261]  el0_svc+0x7c/0x1f0
[  136.410768][ T6261]  el0t_64_sync_handler+0x84/0xe4
[  136.412058][ T6261]  el0t_64_sync+0x1a0/0x1a4
[  136.413344][    C0] vkms_vblank_simulate: vblank timer overrun
[  136.456893][ T6258] netlink: 12 bytes leftover after parsing attributes in process `syz.2.639'.
[  136.458679][ T6264] loop1: detected capacity change from 0 to 8
[  136.554457][ T6266] loop2: detected capacity change from 0 to 512
[  136.651976][ T6266] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  136.753736][ T6273] FAULT_INJECTION: forcing a failure.
[  136.753736][ T6273] name failslab, interval 1, probability 0, space 0, times 0
[  136.793125][ T6273] CPU: 0 PID: 6273 Comm: syz.2.644 Not tainted 5.15.166-syzkaller #0
[  136.795312][ T6273] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  136.797879][ T6273] Call trace:
[  136.798799][ T6273]  dump_backtrace+0x0/0x530
[  136.800009][ T6273]  show_stack+0x2c/0x3c
[  136.800929][ T6273]  dump_stack_lvl+0x108/0x170
[  136.802059][ T6273]  dump_stack+0x1c/0x58
[  136.803196][ T6273]  should_fail+0x3b8/0x514
[  136.804259][ T6273]  __should_failslab+0xbc/0x110
[  136.805502][ T6273]  should_failslab+0x10/0x28
[  136.806703][ T6273]  slab_pre_alloc_hook+0x64/0xe8
[  136.807878][ T6273]  __kmalloc+0xc0/0x4c8
[  136.809000][ T6273]  alloc_pipe_info+0x210/0x518
[  136.810149][ T6273]  splice_direct_to_actor+0x818/0x9a0
[  136.811644][ T6273]  do_splice_direct+0x1f4/0x334
[  136.812798][ T6273]  do_sendfile+0x4c0/0xcb0
[  136.813920][ T6273]  __arm64_sys_sendfile64+0x160/0x408
[  136.815403][ T6273]  invoke_syscall+0x98/0x2b8
[  136.816620][ T6273]  el0_svc_common+0x138/0x258
[  136.817826][ T6273]  do_el0_svc+0x58/0x14c
[  136.818970][ T6273]  el0_svc+0x7c/0x1f0
[  136.819933][ T6273]  el0t_64_sync_handler+0x84/0xe4
[  136.821203][ T6273]  el0t_64_sync+0x1a0/0x1a4
[  137.343589][ T6285] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  137.471174][ T6289] loop1: detected capacity change from 0 to 256
[  137.502819][ T6268] loop4: detected capacity change from 0 to 32768
[  137.511127][ T6289] FAT-fs (loop1): Unrecognized mount option "utf8X1" or missing value
[  137.518099][ T6289] (unnamed net_device) (uninitialized): option primary: mode dependency failed, not supported in mode balance-rr(0)
[  137.568230][ T6268] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.643 (6268)
[  137.568832][ T6294] loop2: detected capacity change from 0 to 1024
[  137.597937][ T6292] netlink: 'syz.0.652': attribute type 4 has an invalid length.
[  137.606489][ T6268] BTRFS info (device loop4): using crc32c (crc32c-generic) checksum algorithm
[  137.608657][ T6268] BTRFS info (device loop4): using free space tree
[  137.610336][ T6268] BTRFS info (device loop4): has skinny extents
[  137.629601][ T6294] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  137.633722][ T6298] overlayfs: failed to resolve './file0': -2
[  137.915050][ T6268] BTRFS info (device loop4): enabling ssd optimizations
[  137.933373][ T6338] overlayfs: failed to resolve './file0': -2
[  138.051088][ T6340] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  138.056015][ T6342] netlink: 52 bytes leftover after parsing attributes in process `syz.3.661'.
[  138.132758][ T6346] loop0: detected capacity change from 0 to 512
[  138.231571][ T6349] overlayfs: failed to resolve './file1': -2
[  138.336336][ T6348] overlayfs: unrecognized mount option "
" or missing value
[  138.359653][ T6350] loop0: detected capacity change from 0 to 512
[  138.409319][ T6350] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  138.427621][ T6350] EXT4-fs (loop0): 1 truncate cleaned up
[  138.429159][ T6350] EXT4-fs (loop0): mounted filesystem without journal. Opts: journal_dev=0x0000000000000003,journal_ioprio=0x0000000000000001,stripe=0x0000000000000003,,errors=continue. Quota mode: none.
[  138.599962][ T6361] FAULT_INJECTION: forcing a failure.
[  138.599962][ T6361] name failslab, interval 1, probability 0, space 0, times 0
[  138.618795][ T6361] CPU: 0 PID: 6361 Comm: syz.3.667 Not tainted 5.15.166-syzkaller #0
[  138.620963][ T6361] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  138.623534][ T6361] Call trace:
[  138.624406][ T6361]  dump_backtrace+0x0/0x530
[  138.625629][ T6361]  show_stack+0x2c/0x3c
[  138.626641][ T6361]  dump_stack_lvl+0x108/0x170
[  138.627771][ T6361]  dump_stack+0x1c/0x58
[  138.628853][ T6361]  should_fail+0x3b8/0x514
[  138.629931][ T6361]  __should_failslab+0xbc/0x110
[  138.631208][ T6361]  should_failslab+0x10/0x28
[  138.632412][ T6361]  slab_pre_alloc_hook+0x64/0xe8
[  138.633686][ T6361]  __kmalloc+0xc0/0x4c8
[  138.634803][ T6361]  iter_file_splice_write+0x1b0/0xc48
[  138.636175][ T6361]  direct_splice_actor+0xe4/0x1c0
[  138.637496][ T6361]  splice_direct_to_actor+0x408/0x9a0
[  138.638884][ T6361]  do_splice_direct+0x1f4/0x334
[  138.640091][ T6361]  do_sendfile+0x4c0/0xcb0
[  138.641212][ T6361]  __arm64_sys_sendfile64+0x160/0x408
[  138.642640][ T6361]  invoke_syscall+0x98/0x2b8
[  138.643744][ T6361]  el0_svc_common+0x138/0x258
[  138.644943][ T6361]  do_el0_svc+0x58/0x14c
[  138.646064][ T6361]  el0_svc+0x7c/0x1f0
[  138.647120][ T6361]  el0t_64_sync_handler+0x84/0xe4
[  138.648415][ T6361]  el0t_64_sync+0x1a0/0x1a4
[  138.655801][ T6358] loop2: detected capacity change from 0 to 2048
[  138.673478][ T6323] loop1: detected capacity change from 0 to 32768
[  138.750477][ T6358] netlink: 'syz.2.665': attribute type 4 has an invalid length.
[  138.847441][ T6323] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.657 (6323)
[  138.922790][ T6323] BTRFS info (device loop1): using sha256 (sha256-ce) checksum algorithm
[  138.925174][ T6323] BTRFS info (device loop1): max_inline at 0
[  138.926736][ T6323] BTRFS info (device loop1): enabling auto defrag
[  138.928144][ T6323] BTRFS info (device loop1): doing ref verification
[  138.940025][ T6323] BTRFS info (device loop1): max_inline at 0
[  138.941605][ T6323] BTRFS info (device loop1): enabling ssd optimizations
[  138.943407][ T6323] BTRFS info (device loop1): turning on sync discard
[  138.963323][ T6323] BTRFS info (device loop1): setting nodatacow, compression disabled
[  138.976496][ T6323] BTRFS info (device loop1): using free space tree
[  138.978370][ T6323] BTRFS info (device loop1): has skinny extents
[  139.106897][ T6374] loop2: detected capacity change from 0 to 512
[  139.159746][ T6354] loop4: detected capacity change from 0 to 32768
[  139.226236][ T6374] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  139.418190][ T6323] netlink: 'syz.1.657': attribute type 4 has an invalid length.
[  139.420757][ T6392] netlink: 'syz.1.657': attribute type 4 has an invalid length.
[  139.845509][ T6406] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  140.199408][ T6415] loop2: detected capacity change from 0 to 2048
[  140.252166][ T6418] loop1: detected capacity change from 0 to 8
[  140.256481][ T6415] netlink: 'syz.2.679': attribute type 4 has an invalid length.
[  140.447586][ T6423] ntfs3: nbd2: try to read out of volume at offset 0x0
[  140.487548][ T6423] loop2: detected capacity change from 0 to 128
[  140.532598][ T6423] ADFS-fs (loop2): error: can't find an ADFS filesystem on dev loop2.
[  140.563708][ T6402] loop4: detected capacity change from 0 to 32768
[  140.615447][ T6426] loop1: detected capacity change from 0 to 512
[  140.701993][ T6426] EXT4-fs (loop1): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,nodioread_nolock,,errors=continue. Quota mode: writeback.
[  140.702403][ T6402] XFS (loop4): Mounting V5 Filesystem
[  140.841644][ T6444] loop0: detected capacity change from 0 to 512
[  140.940808][ T6402] XFS (loop4): Ending clean mount
[  140.953745][ T6444] EXT4-fs (loop0): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  141.021302][ T6452] FAULT_INJECTION: forcing a failure.
[  141.021302][ T6452] name failslab, interval 1, probability 0, space 0, times 0
[  141.030520][ T6452] CPU: 1 PID: 6452 Comm: syz.0.686 Not tainted 5.15.166-syzkaller #0
[  141.032497][ T6452] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  141.034875][ T6452] Call trace:
[  141.035714][ T6452]  dump_backtrace+0x0/0x530
[  141.036841][ T6452]  show_stack+0x2c/0x3c
[  141.037890][ T6452]  dump_stack_lvl+0x108/0x170
[  141.039077][ T6452]  dump_stack+0x1c/0x58
[  141.040175][ T6452]  should_fail+0x3b8/0x514
[  141.041291][ T6452]  __should_failslab+0xbc/0x110
[  141.042425][ T6452]  should_failslab+0x10/0x28
[  141.043639][ T6452]  slab_pre_alloc_hook+0x64/0xe8
[  141.044849][ T6452]  kmem_cache_alloc+0x98/0x45c
[  141.046109][ T6452]  ext4_init_io_end+0x30/0x120
[  141.046702][ T6449] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  141.047406][ T6452]  ext4_writepages+0x9f8/0x36fc
[  141.050512][ T6452]  do_writepages+0x39c/0x5ec
[  141.051656][ T6452]  filemap_fdatawrite_wbc+0x1c8/0x228
[  141.053137][ T6452]  file_write_and_wait_range+0x18c/0x274
[  141.054623][ T6452]  ext4_sync_file+0x1f4/0xc18
[  141.055890][ T6452]  vfs_fsync_range+0x168/0x188
[  141.057175][ T6452]  ext4_buffered_write_iter+0x498/0x528
[  141.058645][ T6452]  ext4_file_write_iter+0x688/0x162c
[  141.060032][ T6452]  do_iter_readv_writev+0x420/0x5f8
[  141.061466][ T6452]  do_iter_write+0x1b8/0x66c
[  141.062674][ T6452]  vfs_iter_write+0x88/0xac
[  141.063863][ T6452]  iter_file_splice_write+0x618/0xc48
[  141.065266][ T6452]  direct_splice_actor+0xe4/0x1c0
[  141.066651][ T6452]  splice_direct_to_actor+0x408/0x9a0
[  141.068076][ T6452]  do_splice_direct+0x1f4/0x334
[  141.069371][ T6452]  do_sendfile+0x4c0/0xcb0
[  141.070564][ T6452]  __arm64_sys_sendfile64+0x160/0x408
[  141.071918][ T6452]  invoke_syscall+0x98/0x2b8
[  141.073119][ T6452]  el0_svc_common+0x138/0x258
[  141.074253][ T6452]  do_el0_svc+0x58/0x14c
[  141.075455][ T6452]  el0_svc+0x7c/0x1f0
[  141.076535][ T6452]  el0t_64_sync_handler+0x84/0xe4
[  141.077959][ T6452]  el0t_64_sync+0x1a0/0x1a4
[  141.407021][ T4020] XFS (loop4): Unmounting Filesystem
[  141.441472][ T6456] netlink: 'syz.3.691': attribute type 4 has an invalid length.
[  141.715417][ T6476] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  141.870174][ T6472] netlink: 8 bytes leftover after parsing attributes in process `syz.3.699'.
[  141.915527][ T6472] netlink: 16 bytes leftover after parsing attributes in process `syz.3.699'.
[  142.918798][ T6496] loop0: detected capacity change from 0 to 512
[  142.990417][ T6490] loop1: detected capacity change from 0 to 2048
[  143.022798][ T6507] loop4: detected capacity change from 0 to 8
[  143.025401][ T6496] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  143.087665][ T6490] netlink: 'syz.1.706': attribute type 4 has an invalid length.
[  143.123864][ T6507] overlayfs: unrecognized mount option "appraise" or missing value
[  143.216891][ T6521] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  143.363044][ T6531] loop1: detected capacity change from 0 to 128
[  143.598079][ T6534] loop4: detected capacity change from 0 to 4096
[  143.685855][ T6542] netlink: 'syz.3.723': attribute type 4 has an invalid length.
[  143.837942][ T6546] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  143.845020][ T6544] capability: warning: `syz.3.725' uses 32-bit capabilities (legacy support in use)
[  143.876248][ T6550] loop0: detected capacity change from 0 to 8
[  143.884574][ T6549] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  144.481875][ T6568] loop1: detected capacity change from 0 to 2048
[  144.608773][ T6573] loop2: detected capacity change from 0 to 512
[  144.624073][ T6568] netlink: 'syz.1.735': attribute type 4 has an invalid length.
[  144.659915][ T6559] loop4: detected capacity change from 0 to 32768
[  144.701624][ T6573] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  144.731119][ T6559] ERROR: (device loop4): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 1
[  144.731119][ T6559] 
[  144.783438][ T6559] ERROR: (device loop4): diRead: i_ino != di_number
[  144.783438][ T6559] 
[  144.847387][ T6578] sctp: failed to load transform for md5: -4
[  144.897771][ T6585] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  145.124985][ T6605] loop1: detected capacity change from 0 to 2048
[  145.219139][ T6605] netlink: 'syz.1.748': attribute type 4 has an invalid length.
[  145.277158][ T6602] loop2: detected capacity change from 0 to 4096
[  145.353417][ T6612] loop0: detected capacity change from 0 to 256
[  145.383360][ T6620] loop1: detected capacity change from 0 to 8
[  145.389143][ T6615] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  145.391236][ T6617] netlink: 'syz.3.752': attribute type 12 has an invalid length.
[  145.394432][ T6618] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  145.431227][ T6622] loop4: detected capacity change from 0 to 512
[  145.459149][ T6612] exFAT-fs (loop0): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  145.510294][ T6612] exFAT-fs (loop0): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294967295)
[  145.510294][ T6612] 
[  145.518712][ T6612] exFAT-fs (loop0): error, failed to bmap (inode : 0000000067d4cbc8 iblock : 0, err : -5)
[  145.524591][ T6622] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  145.921902][ T6639] loop2: detected capacity change from 0 to 1024
[  146.034501][ T6639] EXT4-fs (loop2): Ignoring removed oldalloc option
[  146.108442][ T6639] EXT4-fs (loop2): mounted filesystem without journal. Opts: stripe=0x0000000000000003,noauto_da_alloc,jqfmt=vfsold,data_err=ignore,noauto_da_alloc,delalloc,resuid=0x0000000000000000,oldalloc,jqfmt=vfsv1,,errors=continue. Quota mode: none.
[  146.141993][ T6651] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  146.182266][ T6645] loop1: detected capacity change from 0 to 2048
[  146.293605][ T6645] netlink: 'syz.1.761': attribute type 4 has an invalid length.
[  146.425260][ T6664] tipc: Can't bind to reserved service type 0
[  146.440065][ T6664] capability: warning: `syz.4.767' uses deprecated v2 capabilities in a way that may be insecure
[  146.537678][ T6672] loop1: detected capacity change from 0 to 8
[  146.543465][ T6667] loop2: detected capacity change from 0 to 4096
[  146.653644][ T6678] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  146.809914][ T6687] netlink: 'syz.3.778': attribute type 4 has an invalid length.
[  147.948573][ T6705] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  148.012545][ T6713] loop2: detected capacity change from 0 to 8
[  148.154019][ T6719] netlink: 'syz.3.789': attribute type 4 has an invalid length.
[  148.182128][ T6724] IPv6: sit1: Disabled Multicast RS
[  148.229256][ T6727] netlink: 'syz.3.792': attribute type 19 has an invalid length.
[  149.886484][ T6745] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  149.950172][ T6701] loop4: detected capacity change from 0 to 32768
[  149.952285][ T6743] loop1: detected capacity change from 0 to 8192
[  150.009582][ T6749] loop2: detected capacity change from 0 to 512
[  150.058547][ T6743] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal
[  150.061058][ T6743] REISERFS (device loop1): using ordered data mode
[  150.063021][ T6743] reiserfs: using flush barriers
[  150.072532][ T6743] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  150.072704][ T6751] netlink: 'syz.3.802': attribute type 4 has an invalid length.
[  150.104701][ T6743] REISERFS (device loop1): checking transaction log (loop1)
[  150.112157][ T6743] REISERFS (device loop1): Using r5 hash to sort names
[  150.130740][ T6743] reiserfs: enabling write barrier flush mode
[  150.150414][ T6743] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage.
[  150.213421][ T6749] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  150.278893][ T6755] loop0: detected capacity change from 0 to 4096
[  150.345431][ T6755] ntfs: volume version 3.1.
[  150.351437][ T4029] Bluetooth: hci6: sending frame failed (-49)
[  150.497760][ T6769] loop4: detected capacity change from 0 to 8
[  150.559738][ T6755] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  150.565983][ T6755] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  150.571205][ T6755] ntfs: (device loop0): ntfs_cluster_alloc(): Failed to map page.
[  150.573112][ T6755] ntfs: (device loop0): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -5).
[  150.581516][ T6755] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5).
[  150.612575][ T6755] ntfs: (device loop0): ntfs_read_block(): Failed to read from inode 0x6, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5).
[  150.632815][ T6755] ntfs: (device loop0): ntfs_cluster_alloc(): Failed to map page.
[  150.635076][ T6755] ntfs: (device loop0): ntfs_cluster_alloc(): Failed to allocate clusters, aborting (error -5).
[  150.640057][ T6755] ntfs: (device loop0): ntfs_truncate(): Cannot truncate inode 0x43, attribute type 0x80, because the conversion from resident to non-resident attribute failed with error code -5.
[  150.733519][ T4021] ntfs: (device loop0): ntfs_put_super(): Volume has errors.  Leaving volume marked dirty.  Run chkdsk.
[  151.006360][ T6763] loop2: detected capacity change from 0 to 32768
[  151.041525][ T6786] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  151.112974][ T6790] loop4: detected capacity change from 0 to 2048
[  151.132475][ T6763] XFS (loop2): Mounting V5 Filesystem
[  151.168005][ T6790] netlink: 'syz.4.815': attribute type 4 has an invalid length.
[  151.168524][ T6800] loop0: detected capacity change from 0 to 1024
[  151.223719][ T6763] XFS (loop2): Ending clean mount
[  151.250101][ T6800] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  151.311866][ T6805] loop4: detected capacity change from 0 to 512
[  151.325543][ T6763] XFS (loop2): Quotacheck needed: Please wait.
[  151.391693][ T6763] XFS (loop2): Quotacheck: Done.
[  151.420366][ T6805] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,inode_readahead_blks=0x0000000000000800,minixdf,,errors=continue. Quota mode: writeback.
[  151.425479][ T6763] netlink: 'syz.2.806': attribute type 4 has an invalid length.
[  151.515161][ T4506] XFS (loop2): Unmounting Filesystem
[  151.557208][ T6813] fuse: Bad value for 'fd'
[  151.858288][ T6826] loop0: detected capacity change from 0 to 8
[  151.908672][ T6828] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  151.978564][ T6830] overlayfs: missing 'workdir'
[  152.272882][ T6836] loop0: detected capacity change from 0 to 2048
[  152.345722][ T6836] netlink: 'syz.0.828': attribute type 4 has an invalid length.
[  152.424812][ T4010] Bluetooth: hci6: command 0x1003 tx timeout
[  152.426442][ T4029] Bluetooth: hci6: sending frame failed (-49)
[  152.488173][ T6843] loop4: detected capacity change from 0 to 1024
[  152.494059][ T6843] hfsplus: unable to parse mount options
[  152.665200][ T6843] loop4: detected capacity change from 0 to 512
[  152.810464][ T6843] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2815: Unable to expand inode 17. Delete some EAs or run e2fsck.
[  152.856670][ T6843] EXT4-fs (loop4): 1 truncate cleaned up
[  152.863846][ T6843] EXT4-fs (loop4): mounted filesystem without journal. Opts: i_version,quota,,errors=continue. Quota mode: writeback.
[  152.962424][ T6843] EXT4-fs warning (device loop4): ext4_resize_begin:73: won't resize using backup superblock at 1
[  153.329516][ T6845] loop0: detected capacity change from 0 to 32768
[  153.365473][ T6862] loop2: detected capacity change from 0 to 128
[  153.413575][ T6845] XFS (loop0): Mounting V5 Filesystem
[  153.438844][ T6869] vhci_hcd: default hub control req: 0400 v0000 i0000 l0
[  153.509543][ T6845] XFS (loop0): Ending clean mount
[  153.554633][ T6878] loop2: detected capacity change from 0 to 128
[  153.567274][ T6876] loop4: detected capacity change from 0 to 8
[  153.575772][ T6876] unable to read id index table
[  153.593921][ T6845] XFS (loop0): User initiated shutdown received.
[  153.596184][ T6845] XFS (loop0): Log I/O Error (0x6) detected at xfs_fs_goingdown+0xe0/0x15c (fs/xfs/xfs_fsops.c:491).  Shutting down filesystem.
[  153.604328][ T6845] XFS (loop0): Please unmount the filesystem and rectify the problem(s)
[  153.629583][ T4021] XFS (loop0): Unmounting Filesystem
[  153.894970][ T6882] loop2: detected capacity change from 0 to 1024
[  153.900877][ T6882] hfsplus: unable to parse mount options
[  153.962922][ T6882] loop2: detected capacity change from 0 to 1024
[  154.005006][ T6882] hfsplus: unable to parse mount options
[  154.119096][ T6882] loop2: detected capacity change from 0 to 1024
[  154.155048][ T6882] hfsplus: unable to parse mount options
[  154.189862][ T6888] loop0: detected capacity change from 0 to 2048
[  154.289708][ T6882] loop2: detected capacity change from 0 to 1024
[  154.299338][ T6888] netlink: 'syz.0.841': attribute type 4 has an invalid length.
[  154.300097][ T6882] hfsplus: unable to parse mount options
[  154.376733][ T6882] loop2: detected capacity change from 0 to 1024
[  154.395071][ T6882] hfsplus: unable to parse mount options
[  154.504699][ T1533] Bluetooth: hci6: command 0x1001 tx timeout
[  154.506341][ T4029] Bluetooth: hci6: sending frame failed (-49)
[  154.575737][ T6882] loop2: detected capacity change from 0 to 1024
[  154.843527][ T6912] loop0: detected capacity change from 0 to 2048
[  154.938494][ T6912] netlink: 'syz.0.854': attribute type 4 has an invalid length.
[  155.430009][ T6907] loop4: detected capacity change from 0 to 40427
[  155.506423][ T6907] F2FS-fs (loop4): invalid crc value
[  155.535228][ T6907] F2FS-fs (loop4): Found nat_bits in checkpoint
[  155.560681][ T6939] loop0: detected capacity change from 0 to 512
[  155.596756][ T6907] F2FS-fs (loop4): Cannot turn on quotas: -2 on 2
[  155.609397][ T6907] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  155.698850][ T6939] EXT4-fs (loop0): mounted filesystem without journal. Opts: noinit_itable,inode_readahead_blks=0x0000000000000800,barrier=0x0000000000000009,,errors=continue. Quota mode: writeback.
[  155.725875][ T4020] attempt to access beyond end of device
[  155.725875][ T4020] loop4: rw=2049, want=45104, limit=40427
[  155.792475][ T6953] loop2: detected capacity change from 0 to 8192
[  155.882609][ T6953] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal
[  155.885004][ T6953] REISERFS (device loop2): using ordered data mode
[  155.886545][ T6953] reiserfs: using flush barriers
[  155.905747][ T6953] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  155.910171][ T6953] REISERFS (device loop2): checking transaction log (loop2)
[  156.055196][ T6958] loop0: detected capacity change from 0 to 2048
[  156.167504][ T6958] netlink: 'syz.0.869': attribute type 4 has an invalid length.
[  156.243936][ T6953] REISERFS (device loop2): Using tea hash to sort names
[  156.256694][ T6953] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  156.260092][ T6953] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[  156.394592][ T6976] FAULT_INJECTION: forcing a failure.
[  156.394592][ T6976] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  156.398401][ T6976] CPU: 1 PID: 6976 Comm: syz.4.875 Not tainted 5.15.166-syzkaller #0
[  156.400633][ T6976] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  156.403173][ T6976] Call trace:
[  156.404055][ T6976]  dump_backtrace+0x0/0x530
[  156.405214][ T6976]  show_stack+0x2c/0x3c
[  156.406371][ T6976]  dump_stack_lvl+0x108/0x170
[  156.407525][ T6976]  dump_stack+0x1c/0x58
[  156.408550][ T6976]  should_fail+0x3b8/0x514
[  156.409639][ T6976]  should_fail_usercopy+0x20/0x30
[  156.411140][ T6976]  __arm64_sys_io_uring_register+0xc5c/0x2e7c
[  156.412607][ T6976]  invoke_syscall+0x98/0x2b8
[  156.413763][ T6976]  el0_svc_common+0x138/0x258
[  156.414935][ T6976]  do_el0_svc+0x58/0x14c
[  156.415935][ T6976]  el0_svc+0x7c/0x1f0
[  156.416989][ T6976]  el0t_64_sync_handler+0x84/0xe4
[  156.418198][ T6976]  el0t_64_sync+0x1a0/0x1a4
[  156.602105][ T1533] Bluetooth: hci6: command 0x1009 tx timeout
[  156.754089][ T6999] sctp: [Deprecated]: syz.4.882 (pid 6999) Use of int in max_burst socket option.
[  156.754089][ T6999] Use struct sctp_assoc_value instead
[  156.781222][ T7000] loop0: detected capacity change from 0 to 512
[  156.856841][ T7000] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  156.937823][ T7002] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  156.947195][ T7002] loop2: detected capacity change from 0 to 512
[  156.959773][ T7004] loop4: detected capacity change from 0 to 2048
[  157.039682][ T7004] netlink: 'syz.4.883': attribute type 4 has an invalid length.
[  157.043697][ T7002] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  157.046800][ T7002] EXT4-fs (loop2): orphan cleanup on readonly fs
[  157.050287][ T7002] EXT4-fs warning (device loop2): ext4_enable_quotas:6431: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  157.054172][ T7002] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  157.066311][ T7002] EXT4-fs error (device loop2): ext4_xattr_delete_inode:2931: inode #16: comm syz.2.878: corrupted xattr block 31
[  157.076985][ T7002] EXT4-fs warning (device loop2): ext4_evict_inode:302: xattr delete (err -117)
[  157.079351][ T7002] EXT4-fs (loop2): 1 orphan inode deleted
[  157.080877][ T7002] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  157.091546][ T7002] Bluetooth: hci3: unsupported parameter 512
[  157.093399][ T7002] Bluetooth: hci3: unsupported parameter 257
[  157.095302][ T7002] Bluetooth: hci3: unsupported parameter 512
[  157.096788][ T7002] Bluetooth: hci3: unsupported parameter 257
[  157.233493][ T7010] loop4: detected capacity change from 0 to 128
[  157.247712][ T7012] loop0: detected capacity change from 0 to 8
[  157.358964][ T7012] netlink: 'syz.0.885': attribute type 13 has an invalid length.
[  157.360959][ T7012] netlink: 24859 bytes leftover after parsing attributes in process `syz.0.885'.
[  157.518618][ T7028] loop4: detected capacity change from 0 to 512
[  157.527339][ T7031] FAULT_INJECTION: forcing a failure.
[  157.527339][ T7031] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  157.530610][ T7031] CPU: 1 PID: 7031 Comm: syz.2.893 Not tainted 5.15.166-syzkaller #0
[  157.532617][ T7031] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  157.535257][ T7031] Call trace:
[  157.536140][ T7031]  dump_backtrace+0x0/0x530
[  157.537403][ T7031]  show_stack+0x2c/0x3c
[  157.538428][ T7031]  dump_stack_lvl+0x108/0x170
[  157.539655][ T7031]  dump_stack+0x1c/0x58
[  157.540821][ T7031]  should_fail+0x3b8/0x514
[  157.542038][ T7031]  should_fail_usercopy+0x20/0x30
[  157.543326][ T7031]  __io_register_rsrc_update+0xd1c/0x16d4
[  157.544740][ T7031]  __arm64_sys_io_uring_register+0x1c68/0x2e7c
[  157.546292][ T7031]  invoke_syscall+0x98/0x2b8
[  157.547449][ T7031]  el0_svc_common+0x138/0x258
[  157.548614][ T7031]  do_el0_svc+0x58/0x14c
[  157.549712][ T7031]  el0_svc+0x7c/0x1f0
[  157.550742][ T7031]  el0t_64_sync_handler+0x84/0xe4
[  157.551872][ T7031]  el0t_64_sync+0x1a0/0x1a4
[  157.568432][ T7032] netlink: 'syz.3.894': attribute type 4 has an invalid length.
[  157.633850][ T7028] EXT4-fs (loop4): 1 truncate cleaned up
[  157.635689][ T7028] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  157.690533][ T7041] loop2: detected capacity change from 0 to 512
[  157.730023][ T7039] device syzkaller0 entered promiscuous mode
[  157.736006][ T7039] PF_CAN: dropped non conform CAN skbuff: dev type 65534, len 65487
[  157.754714][ T7041] EXT4-fs (loop2): Quota format mount options ignored when QUOTA feature is enabled
[  157.773529][ T7041] EXT4-fs (loop2): mounted filesystem without journal. Opts: delalloc,nobarrier,jqfmt=vfsv1,,errors=continue. Quota mode: writeback.
[  158.045356][   T26] kauditd_printk_skb: 53 callbacks suppressed
[  158.045537][   T26] audit: type=1326 audit(157.930:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.129776][   T26] audit: type=1326 audit(157.930:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.299762][   T26] audit: type=1326 audit(158.190:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.410714][   T26] audit: type=1326 audit(158.310:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.585508][   T26] audit: type=1326 audit(158.540:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.590743][   T26] audit: type=1326 audit(158.540:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=280 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.605817][   T26] audit: type=1326 audit(158.540:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.611134][   T26] audit: type=1326 audit(158.540:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.654286][   T26] audit: type=1326 audit(158.540:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=29 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.659979][   T26] audit: type=1326 audit(158.540:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7040 comm="syz.2.897" exe="/root/syz-executor" sig=0 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x7ffc0000
[  158.768969][ T7057] loop0: detected capacity change from 0 to 8
[  158.786961][ T7055] netlink: 48 bytes leftover after parsing attributes in process `syz.3.900'.
[  159.248235][ T7076] loop2: detected capacity change from 0 to 2048
[  159.256275][ T7078] loop0: detected capacity change from 0 to 256
[  159.307410][ T7076] netlink: 'syz.2.908': attribute type 4 has an invalid length.
[  159.388061][ T7080] loop4: detected capacity change from 0 to 4096
[  159.434947][ T7080] ntfs3: Unknown parameter '�l��C�c���m�6]�<�T�!�<̾��gly�xT�Ǹ�:�(������V�~%����P
��
[  159.434947][ T7080] �#�K�[%`�>n�%eC��͇����� �ٜ"S�eB�Qm?aIxV���х;�z�	�F��a���W�"Ԟ�!�l������ɩK�yk	UE'Ƶ�K[o���j_G4����}�+H�N�������o�)�0��[�z��x�wÒxXo�ttYY�'
[  159.467769][ T7084] FAULT_INJECTION: forcing a failure.
[  159.467769][ T7084] name fail_usercopy, interval 1, probability 0, space 0, times 0
[  159.471107][ T7084] CPU: 0 PID: 7084 Comm: syz.2.913 Not tainted 5.15.166-syzkaller #0
[  159.473084][ T7084] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  159.475675][ T7084] Call trace:
[  159.476552][ T7084]  dump_backtrace+0x0/0x530
[  159.477679][ T7084]  show_stack+0x2c/0x3c
[  159.478723][ T7084]  dump_stack_lvl+0x108/0x170
[  159.479972][ T7084]  dump_stack+0x1c/0x58
[  159.481038][ T7084]  should_fail+0x3b8/0x514
[  159.482241][ T7084]  should_fail_usercopy+0x20/0x30
[  159.483455][ T7084]  simple_read_from_buffer+0xd8/0x26c
[  159.484769][ T7084]  proc_fail_nth_read+0x1a0/0x248
[  159.485926][ T7084]  vfs_read+0x278/0xb18
[  159.487024][ T7084]  ksys_read+0x15c/0x26c
[  159.488249][ T7084]  __arm64_sys_read+0x7c/0x90
[  159.489467][ T7084]  invoke_syscall+0x98/0x2b8
[  159.490657][ T7084]  el0_svc_common+0x138/0x258
[  159.491806][ T7084]  do_el0_svc+0x58/0x14c
[  159.492886][ T7084]  el0_svc+0x7c/0x1f0
[  159.493966][ T7084]  el0t_64_sync_handler+0x84/0xe4
[  159.495324][ T7084]  el0t_64_sync+0x1a0/0x1a4
[  159.635181][ T7080] loop4: detected capacity change from 0 to 4096
[  159.667110][ T7095] loop2: detected capacity change from 0 to 512
[  159.684970][ T7080] ntfs3: Unknown parameter '00000000000000000007�����������������
�:ϐ~�~�;8��J��gG��<����7�?�ҏ��E�
'�ُ��K��/k�S����k�����E�2�-c��_G�H�~�Y?Ŕ�\o./cgroup/syz1'
[  159.694375][ T7089] netlink: 23 bytes leftover after parsing attributes in process `syz.3.915'.
[  159.752479][ T7100] loop0: detected capacity change from 0 to 8
[  161.752056][ T7096] sched: RT throttling activated
[  162.769130][ T7095] EXT4-fs: failed to create workqueue
[  162.770411][ T7095] EXT4-fs (loop2): mount failed
[  163.173891][ T7103] chnl_net:caif_netlink_parms(): no params data found
[  163.233102][ T7110] netlink: 'syz.3.921': attribute type 4 has an invalid length.
[  163.512615][ T7112] loop2: detected capacity change from 0 to 32768
[  163.564825][ T7103] bridge0: port 1(bridge_slave_0) entered blocking state
[  163.587403][ T7103] bridge0: port 1(bridge_slave_0) entered disabled state
[  163.604279][ T7103] device bridge_slave_0 entered promiscuous mode
[  163.627003][ T7103] bridge0: port 2(bridge_slave_1) entered blocking state
[  163.639271][ T7103] bridge0: port 2(bridge_slave_1) entered disabled state
[  163.659436][ T7112] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.922 (7112)
[  163.665008][ T7103] device bridge_slave_1 entered promiscuous mode
[  163.742333][ T7103] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  163.765264][ T7112] BTRFS info (device loop2): using sha256 (sha256-ce) checksum algorithm
[  163.767695][ T7112] BTRFS info (device loop2): enabling auto defrag
[  163.780766][ T7112] BTRFS info (device loop2): max_inline at 0
[  163.782432][ T7112] BTRFS info (device loop2): enabling ssd optimizations
[  163.785448][ T7103] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  163.789399][ T7112] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_LZO (0x8)
[  163.814314][ T7112] BTRFS info (device loop2): use lzo compression, level 0
[  163.816271][ T7112] BTRFS info (device loop2): using free space tree
[  163.817922][ T7112] BTRFS info (device loop2): has skinny extents
[  163.919825][ T7103] team0: Port device team_slave_0 added
[  163.930175][ T7103] team0: Port device team_slave_1 added
[  163.937621][ T4019] bridge0: port 3(syz_tun) entered disabled state
[  163.990525][ T4019] device syz_tun left promiscuous mode
[  163.993771][ T4019] bridge0: port 3(syz_tun) entered disabled state
[  164.122733][ T7112] BTRFS error (device loop2): unrecognized mount option '�����������1844674407370955161501777777777777777777777�����������������'
[  164.444050][    T9] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.464041][ T7103] batman_adv: batadv0: Adding interface: batadv_slave_0
[  164.466471][ T7103] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.480273][ T7103] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  164.519097][    T9] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.543334][ T7103] batman_adv: batadv0: Adding interface: batadv_slave_1
[  164.552453][ T7103] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  164.573311][ T7103] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  164.657647][    T9] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.824930][ T4067] Bluetooth: hci1: command 0x0406 tx timeout
[  164.846938][ T7103] device hsr_slave_0 entered promiscuous mode
[  164.874670][ T7103] device hsr_slave_1 entered promiscuous mode
[  164.922884][ T7103] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  164.925018][ T7103] Cannot create hsr debugfs directory
[  164.948974][    T9] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  164.971920][ T7189] netlink: 'syz.0.941': attribute type 10 has an invalid length.
[  164.994382][ T4072] Bluetooth: hci6: command 0x0409 tx timeout
[  165.018923][   T26] kauditd_printk_skb: 46 callbacks suppressed
[  165.018935][   T26] audit: type=1326 audit(164.990:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7188 comm="syz.2.942" exe="/root/syz-executor" sig=31 arch=c00000b7 syscall=98 compat=0 ip=0xffff8515a3e8 code=0x0
[  165.977202][ T7222] ALSA: mixer_oss: invalid OSS volume ''
[  166.261488][ T7103] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  166.300275][ T7103] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  166.346188][ T7103] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  166.393935][ T7103] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  166.735827][ T7103] 8021q: adding VLAN 0 to HW filter on device bond0
[  166.768599][ T7103] 8021q: adding VLAN 0 to HW filter on device team0
[  166.774581][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  166.778281][ T4423] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  166.785603][ T7263] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  166.826295][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  166.828887][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  166.831564][  T294] bridge0: port 1(bridge_slave_0) entered blocking state
[  166.833433][  T294] bridge0: port 1(bridge_slave_0) entered forwarding state
[  166.841836][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  166.847998][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  166.854452][ T7262] mac80211_hwsim: wmediumd released netlink socket, switching to perfect channel medium
[  166.859053][  T294] bridge0: port 2(bridge_slave_1) entered blocking state
[  166.860878][  T294] bridge0: port 2(bridge_slave_1) entered forwarding state
[  166.967809][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  166.970261][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  166.973690][ T7265] netlink: 8 bytes leftover after parsing attributes in process `syz.4.960'.
[  166.992229][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  166.995458][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  167.018230][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  167.064437][ T4070] Bluetooth: hci6: command 0x041b tx timeout
[  167.090818][    T9] device hsr_slave_0 left promiscuous mode
[  167.131103][    T9] device hsr_slave_1 left promiscuous mode
[  167.237429][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  167.239310][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  167.242416][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  167.251603][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  167.598798][    T9] device bridge_slave_1 left promiscuous mode
[  167.761418][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  168.155891][ T7275] ------------[ cut here ]------------
[  168.157624][ T7275] WARNING: CPU: 1 PID: 7275 at kernel/cgroup/cgroup.c:1424 cgroup_path_ns_locked+0x270/0x2dc
[  168.160149][ T7275] Modules linked in:
[  168.161070][ T7275] CPU: 1 PID: 7275 Comm: syz.3.963 Not tainted 5.15.166-syzkaller #0
[  168.163133][ T7275] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  168.165607][ T7275] pstate: 804000c5 (Nzcv daIF +PAN -UAO -TCO -DIT -SSBS BTYPE=--)
[  168.167604][ T7275] pc : cgroup_path_ns_locked+0x270/0x2dc
[  168.169060][ T7275] lr : cgroup_path_ns_locked+0x270/0x2dc
[  168.170476][ T7275] sp : ffff8000209e7700
[  168.171463][ T7275] x29: ffff8000209e7700 x28: ffff0000ee412cc0 x27: 1ffff00002956069
[  168.173738][ T7275] x26: ffff800014ca9500 x25: ffff0000c8724000 x24: dfff800000000000
[  168.176002][ T7275] x23: ffff800014ab0000 x22: 0000000000000000 x21: ffff0000d6522000
[  168.178151][ T7275] x20: ffff0000cf7fe000 x19: 0000000000001000 x18: ffff8000209e7440
[  168.180282][ T7275] x17: ffff800008a19bb0 x16: ffff8000082eae1c x15: 0000000000000003
[  168.182437][ T7275] x14: 00000000c4419ab7 x13: dfff800000000000 x12: 0000000000040000
[  168.184526][ T7275] x11: 0000000000000ec6 x10: ffff80002a214000 x9 : 0000000000000ec7
[  168.186497][ T7275] x8 : ffff800008444a08 x7 : 0000000000000000 x6 : 0000000000000000
[  168.188529][ T7275] x5 : ffff8000179d7220 x4 : 0000000000000008 x3 : ffff0000c9c9df00
[  168.190557][ T7275] x2 : 0000000000001000 x1 : 0000000000000000 x0 : 0000000000000000
[  168.192626][ T7275] Call trace:
[  168.193456][ T7275]  cgroup_path_ns_locked+0x270/0x2dc
[  168.194763][ T7275]  proc_cpuset_show+0x298/0x42c
[  168.196127][ T7275]  proc_single_show+0xf4/0x1cc
[  168.197469][ T7275]  traverse+0x1e8/0x554
[  168.198529][ T7275]  seq_read_iter+0xb84/0xc44
[  168.199726][ T7275]  seq_read+0x388/0x4ec
[  168.200719][ T7275]  vfs_read+0x278/0xb18
[  168.201816][ T7275]  __arm64_sys_pread64+0x188/0x220
[  168.203156][ T7275]  invoke_syscall+0x98/0x2b8
[  168.204323][ T7275]  el0_svc_common+0x138/0x258
[  168.205562][ T7275]  do_el0_svc+0x58/0x14c
[  168.206548][ T7275]  el0_svc+0x7c/0x1f0
[  168.207608][ T7275]  el0t_64_sync_handler+0x84/0xe4
[  168.208942][ T7275]  el0t_64_sync+0x1a0/0x1a4
[  168.210130][ T7275] irq event stamp: 642
[  168.211182][ T7275] hardirqs last  enabled at (641): [<ffff800011b8ec20>] _raw_spin_unlock_irqrestore+0xac/0x158
[  168.213946][ T7275] hardirqs last disabled at (642): [<ffff800011b8e784>] _raw_spin_lock_irq+0x38/0x13c
[  168.216218][ T7275] softirqs last  enabled at (628): [<ffff8000080308b0>] local_bh_enable+0x10/0x34
[  168.218597][ T7275] softirqs last disabled at (626): [<ffff80000803087c>] local_bh_disable+0x10/0x34
[  168.220946][ T7275] ---[ end trace 1123b5de90634421 ]---
[  169.136396][    T9] device bridge_slave_0 left promiscuous mode
[  169.138003][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  169.144685][ T4568] Bluetooth: hci6: command 0x040f tx timeout
[  169.294604][    T9] device veth1_macvtap left promiscuous mode
[  169.296353][    T9] device veth0_macvtap left promiscuous mode
[  169.298048][    T9] device veth1_vlan left promiscuous mode
[  169.299502][    T9] device veth0_vlan left promiscuous mode
[  169.529141][    T9] team0 (unregistering): Port device team_slave_1 removed
[  169.539625][    T9] team0 (unregistering): Port device team_slave_0 removed
[  169.551176][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  169.603911][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  169.765922][    T9] bond0 (unregistering): Released all slaves
[  169.860289][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  169.862995][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  169.866110][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  169.868891][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  169.871448][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  169.880911][ T7103] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  169.904406][ T7103] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  169.910229][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  169.912838][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  170.001589][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  170.003551][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  170.013082][ T7103] 8021q: adding VLAN 0 to HW filter on device batadv0
[  170.027332][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  170.029929][ T4084] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  170.043189][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  170.047541][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  170.050324][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  170.052730][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  170.058377][ T7103] device veth0_vlan entered promiscuous mode
[  170.085088][ T7103] device veth1_vlan entered promiscuous mode
[  170.111697][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  170.114660][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  170.117275][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  170.120046][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  170.125256][ T7103] device veth0_macvtap entered promiscuous mode
[  170.129473][ T7103] device veth1_macvtap entered promiscuous mode
[  170.150253][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.152843][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.161281][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.163947][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.170593][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.173155][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.180488][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.183165][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.189975][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  170.192579][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.206240][ T7103] batman_adv: batadv0: Interface activated: batadv_slave_0
[  170.213772][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  170.217203][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  170.219906][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  170.222714][ T5538] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  170.226528][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.228959][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.231360][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.233936][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.243734][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.246893][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.249587][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.252210][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.262854][ T7103] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.265642][ T7103] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.269963][ T7103] batman_adv: batadv0: Interface activated: batadv_slave_1
[  170.274704][ T7103] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.276758][ T7103] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.278993][ T7103] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.281067][ T7103] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.284785][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  170.287378][  T294] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  170.359351][ T4084] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.366198][ T4084] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.373435][ T4141] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  170.397351][  T294] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.399758][  T294] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.408026][ T4141] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  171.225302][ T4072] Bluetooth: hci6: command 0x0419 tx timeout
[  174.104476][ T4067] Bluetooth: hci4: command 0x0406 tx timeout