last executing test programs:

5m6.635017656s ago: executing program 5 (id=116):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r0, 0x84, 0x7f, 0x0, 0x0)

5m6.127615279s ago: executing program 5 (id=119):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r0, r1, 0x2}, 0x10)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz1\x00', 0x1ff)
r2 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000040)={@cgroup=r2, r3, 0x2}, 0x10)

5m5.4273437s ago: executing program 5 (id=125):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
ioctl$EXT4_IOC_MIGRATE(0xffffffffffffffff, 0x6609)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='ext4_journal_start\x00'}, 0x10)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000400)={[], [{@euid_lt}, {@subj_role={'subj_role', 0x3d, '+-$%('}}]}, 0x1, 0x500, &(0x7f0000000500)="$eJzs3U9sI1cZAPBvJn/sTdMmhR4AFbqUwoJWayfeNqp6oZwqhCoheuSwDYkTRbHjKHZKE/aQPXJHohInOHHmgMQBqSfuSBzgxqUckAqsQA0SByOP7V3njzfWbmzvxr+fNJo38+L53tvRvGd91s4LYGJdj4ijiJiNiPcjYqFzPuls8XZ7a/3dZ/fvrh3fv7uWRLP53j+TrL51Lno+0/Jc55r5iPjBOxE/Sk4F/VNE/eBwe7VSKe91ThUb1d1i/eDw1lZ1dbO8Wd4plVaWV5bevP1G6dL6+kr1N59ei4jf/+7Ln/zx6Fs/aTVrvlPX24/L1O76zIM4LdMR8b1hBBuDqU5/Zh/nw4/1IS5TGhGfi4hXs+d/Iaayu3nSydv07RG2DgAYhmZzIZoLvccAwFWXZjmwJC10cgHzkaaFQjuH91LMpZVavXFzo7a/s97OlS3GTLqxVSkvdXKFizGTbGxNl5ezcve4Ui6dOr4dES9GxM9y17Ljwlqtsj7OLz4AMMGeOzX//yfXnv8BgCsu/7CYG2c7AIDRyY+7AQDAyJn/AWDymP8BYPKY/wFg8pj/AWDymP8BYKJ8/913W1vzuPP+6/UPDva3ax/cWi/XtwvV/bXCWm1vt7BZq21m7+ypXnS9Sq22u/x67H9YbJTrjWL94PBOtba/07iTvdf7TnlmJL0CAB7lxVc+/ksSEUdvXcu26Hnf/4Vz9cvDbh0wTOm4GwCMzdS4GwCMzdnVvoBJIR8P9CzRe6/ndP5M4bSPBrp8at1QePrc+OIT5P+BZ5r8P0yux8v/+y4PV4H8P0yuZjOx5j8ATBg5fiC5oL739/+lZs/BYL//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJU0n21JWuisBT4faVooRDwfEYsxk2xsVcpLEfFCRPw5N5NrHS9HhHWDAOBZlv496az/dWPhtfnTtbO5/+ayfUT8+Bfv/fzD1UZjbzliNvnXg/ONjzrnS+NoPwBwke483Z3Huz67f3etu42yPZ9+p724aCvucWdr10zHdLbPZ7mGuX8nneO21veVqUuIf3QvIr5wXv+TLDey2Fn59HT8VuznRxo/PRE/zera+9a/xecvoS0waT5ujT9vn/f8pXE925///OezEerJdce/4zPjX/pg/JvqM/5dHzTG63/47pmTzYV23b2IL01HHHcv3jP+dOMnfeK/NmD8v778lVf71TV/GXEjzut/ciJWsVHdLdYPDm9tVVc3y5vlnVJpZXll6c3bb5SKWY662M1Un/WPt26+0C9+q/9zfeLnL+j/1wfs/6/+9/4Pv/qI+N/82vn3/6VHxG/Nid8YMP7q3G/z/epa8df79P+i+39zwPif/O1wfcA/BQBGoH5wuL1aqZT3hl1Ihx8iKyQRRyPoTruQ+/VP3xlVrCEW4ulohsLTVBj3yAQM28OHftwtAQAAAAAAAAAAAAAA+hnFfycadx8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4uv4fAAD//5iA1Hs=")
r0 = fanotify_init(0x200, 0x0)
fanotify_mark(r0, 0x101, 0x4000086e, 0xffffffffffffffff, 0x0)
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
mkdirat(0xffffffffffffffff, &(0x7f0000000200)='./bus\x00', 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
renameat2(r1, &(0x7f0000000080)='./bus\x00', 0xffffffffffffffff, 0x0, 0x0)
ioctl$sock_SIOCGIFCONF(0xffffffffffffffff, 0x890b, &(0x7f0000000000)=@buf)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000040)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000017c0)={0x1, 0xe, &(0x7f0000001880)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfffffffffffffd00}, 0x48)
writev(0xffffffffffffffff, &(0x7f0000000240), 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, &(0x7f0000000000))
r6 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x5, 0x4, 0x1}, 0x48)
bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r6, &(0x7f0000000040), 0x20000000}, 0x20)

5m4.811204683s ago: executing program 5 (id=130):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
socketpair(0x23, 0x5, 0x0, &(0x7f0000000000))

5m2.330021379s ago: executing program 0 (id=141):
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000040)=0x10001)
r0 = openat$hwrng(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
preadv(r0, &(0x7f0000000240)=[{&(0x7f0000033a80)=""/102386, 0xfffffd6e}], 0x1, 0x0, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x0)
r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0xaf01, 0x0)
r2 = eventfd(0x0)
ioctl$VHOST_SET_VRING_BASE(r1, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f})
ioctl$VHOST_SET_LOG_FD(r1, 0x4004af07, &(0x7f0000000240)=r2)
ioctl$VHOST_SET_VRING_KICK(r1, 0x4008af20, &(0x7f0000000040)={0x1, r2})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000180)=""/53, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r1, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/74})
ioctl$VHOST_SET_MEM_TABLE(r1, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0xfffffeac, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r1, 0x4008af22, &(0x7f00000002c0)={0x1, r2})
setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, 0x0, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r1, 0x4004af61, &(0x7f0000000000)=0x1)
ioctl$BTRFS_IOC_SCRUB_PROGRESS(0xffffffffffffffff, 0xc400941d, &(0x7f0000000380)={0x0, 0x1fffe000000})

4m58.971967317s ago: executing program 0 (id=152):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x19, 0x0, &(0x7f0000000000))

4m9.366254376s ago: executing program 0 (id=152):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x19, 0x0, &(0x7f0000000000))

3m12.382192678s ago: executing program 0 (id=152):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x19, 0x0, &(0x7f0000000000))

3m8.629284712s ago: executing program 5 (id=130):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
socketpair(0x23, 0x5, 0x0, &(0x7f0000000000))

1m57.132441362s ago: executing program 2 (id=389):
r0 = socket$l2tp6(0xa, 0x2, 0x73)
ioctl$sock_SIOCSIFVLAN_GET_VLAN_REALDEV_NAME_CMD(r0, 0x8983, &(0x7f0000000000)={0x8, 'vlan0\x00', {'ip6erspan0\x00'}})

1m55.434433711s ago: executing program 2 (id=392):
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
connect$inet6(r0, &(0x7f0000002d80)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000000)={0x0, 0x80, 0x2})
ioctl$TIOCL_GETKMSGREDIRECT(r2, 0x4b30, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@gettaction={0x14, 0x26, 0x1, 0x0, 0x25dfdbfb}, 0x14}}, 0x0)
r3 = open(0x0, 0x14d27e, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
lchown(&(0x7f0000000000)='./bus\x00', r5, r6)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f00000000c0), 0x24, 0x0)
setresuid(0xee01, r5, 0xffffffffffffffff)
fchmod(r3, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x800, 0x8, '9P2000.u'}, 0x15)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}]}, 0x30}}, 0x0)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2004118}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x64, r7, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x3e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x21}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x67}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x37}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x64}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x805)

1m53.506804487s ago: executing program 2 (id=394):
syz_mount_image$hfsplus(&(0x7f0000000000), &(0x7f0000000300)='./file0\x00', 0x80000c, &(0x7f0000000780)={[{@nobarrier}, {@nls={'nls', 0x3d, 'maccroatian'}}, {@session={'session', 0x3d, 0xffffffffffffff7f}}, {@barrier}, {@creator={'creator', 0x3d, "e06cd4f9"}}, {@part={'part', 0x3d, 0x1f}}, {@uid}, {@umask={'umask', 0x3d, 0x1}}, {@uid}, {}, {@creator={'creator', 0x3d, "65fd44c2"}}, {@gid}, {@session={'session', 0x3d, 0x10000}}, {@barrier}, {@part={'part', 0x3d, 0x4}}, {@nls={'nls', 0x3d, 'cp737'}}, {@barrier}, {@force}, {}, {@barrier}, {@nls={'nls', 0x3d, 'koi8-u'}}, {@barrier}, {@barrier}, {@type={'type', 0x3d, "fe453e62"}}, {@session={'session', 0x3d, 0x9}}, {@session={'session', 0x3d, 0x80000000}}]}, 0x1, 0x6da, &(0x7f0000004980)="$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")
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0))
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x0, 0x0, &(0x7f0000000180)='syzkaller\x00'}, 0x90)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
unshare(0x64000600)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
r4 = openat$procfs(0xffffff9c, &(0x7f0000000000)='/proc/diskstats\x00', 0x0, 0x0)
preadv2(r4, &(0x7f00000018c0)=[{&(0x7f0000000380)=""/225, 0xe1}], 0x1, 0xffffffff, 0x0, 0x0)
inotify_init1(0x0)
r5 = dup(0xffffffffffffffff)
inotify_rm_watch(r5, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r5, 0x10, &(0x7f00000009c0)={0xffffff16, 0x0, &(0x7f0000000940)=[{&(0x7f0000000480)=""/209, 0xd1}, {&(0x7f0000000580)=""/81, 0x51}, {&(0x7f0000001900)=""/4096, 0x1000}, {&(0x7f0000000600)=""/151, 0x97}, {&(0x7f00000006c0)=""/14, 0xe}], 0x0, 0x5}, 0x20)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @remote}}, 0x1c)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(0xffffffffffffffff, 0x6, 0x23, &(0x7f00000000c0)={&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000180)=0x40)
msgsnd(0x0, 0x0, 0x0, 0x0)

1m19.533942691s ago: executing program 0 (id=152):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x19, 0x0, &(0x7f0000000000))

1m14.512045278s ago: executing program 5 (id=130):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000000)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00', r0}, 0x10)
socketpair(0x23, 0x5, 0x0, &(0x7f0000000000))

1m4.262436457s ago: executing program 2 (id=399):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x8052, &(0x7f0000000040)={[{@block_validity}, {@noblock_validity}, {@quota}]}, 0x1, 0x4d3, &(0x7f0000000600)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000002100)={0x50}, 0x50)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000000e40)="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", 0xbba}], 0x1}}], 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x10004, &(0x7f00000000c0), 0x0, 0x4c0, &(0x7f0000000540)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0xa, 0x7, 0x209, 0x40}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000180), 0x3ff, r3}, 0x38)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x0, 0x70bd26, 0x0, {{@in=@multicast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x4}}}, 0xb8}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @multicast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000040)=""/2, 0x2}}, 0x120)
write$UHID_DESTROY(r4, &(0x7f0000000200), 0x4)

1m1.170268295s ago: executing program 2 (id=409):
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
connect$inet6(r0, &(0x7f0000002d80)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @multicast1}}, 0x1c)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$VT_RESIZE(r2, 0x5609, &(0x7f0000000000)={0x0, 0x80, 0x2})
ioctl$TIOCL_GETKMSGREDIRECT(r2, 0x4b30, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000002c0)=@gettaction={0x14, 0x26, 0x1, 0x0, 0x25dfdbfb}, 0x14}}, 0x0)
r3 = open(0x0, 0x14d27e, 0x0)
r4 = socket$unix(0x1, 0x2, 0x0)
getsockopt$sock_cred(r4, 0x1, 0x11, &(0x7f0000caaffb)={0x0, <r5=>0x0, <r6=>0x0}, &(0x7f0000cab000)=0xc)
lchown(&(0x7f0000000000)='./bus\x00', r5, r6)
lsetxattr$system_posix_acl(&(0x7f0000000040)='./bus\x00', &(0x7f0000000080)='system.posix_acl_access\x00', &(0x7f00000000c0), 0x24, 0x0)
setresuid(0xee01, r5, 0xffffffffffffffff)
fchmod(r3, 0x0)
write$P9_RVERSION(0xffffffffffffffff, &(0x7f0000000000)={0x15, 0x65, 0xffff, 0x800, 0x8, '9P2000.u'}, 0x15)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
r8 = socket$nl_generic(0x10, 0x3, 0x10)
r9 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000080), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r8, 0x8933, &(0x7f00000000c0)={'wlan1\x00', <r10=>0x0})
sendmsg$NL80211_CMD_SET_INTERFACE(r8, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)={0x24, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_CONNECT(r8, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000240)={0x30, r9, 0x5, 0x0, 0x0, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_SSID={0xa, 0x34, @default_ap_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}]}, 0x30}}, 0x0)
sendmsg$NL80211_CMD_STOP_SCHED_SCAN(0xffffffffffffffff, &(0x7f00000001c0)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x2004118}, 0xc, &(0x7f0000000140)={&(0x7f00000000c0)={0x64, r7, 0x800, 0x70bd27, 0x25dfdbfd, {{}, {@val={0x8, 0x3, r10}, @void}}, [@NL80211_ATTR_COOKIE={0xc, 0x58, 0x3e}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x21}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x67}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x37}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x2}, @NL80211_ATTR_COOKIE={0xc, 0x58, 0x64}]}, 0x64}, 0x1, 0x0, 0x0, 0x40001}, 0x805)

59.072863428s ago: executing program 2 (id=411):
r0 = socket$kcm(0x29, 0x5, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
sendmsg$inet(r4, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r3, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000140), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmsg$inet(r6, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r5, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r7=>0xffffffffffffffff, <r8=>0xffffffffffffffff})
sendmsg$inet(r8, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r7, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x89e2, 0x0)

28.509973068s ago: executing program 0 (id=152):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
getsockopt$inet_opts(r0, 0x0, 0x19, 0x0, &(0x7f0000000000))

8.970468897s ago: executing program 3 (id=509):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000240))
waitid(0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)

8.754885349s ago: executing program 3 (id=512):
sendmsg$NFC_CMD_DEP_LINK_UP(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={0x0}}, 0x0)
r0 = socket$nl_sock_diag(0x10, 0x3, 0x4)
sendmsg$TCPDIAG_GETSOCK(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[@ANYBLOB="54000000120001032cbd700000000000000000004e234e240be50000feffffff00000000000000009e3ff2c1a91200"/56, @ANYRES32=0x0, @ANYBLOB="00000000000000000010000004000000080003"], 0x54}}, 0x0)

8.457770338s ago: executing program 3 (id=515):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f0000000400)=ANY=[@ANYBLOB="9feb0100180000000000000024000000240000000600000000000000000000020300000002000000000000120000000004000000000000120200000000005f0061"], 0x0, 0x42}, 0x20)

8.235420998s ago: executing program 3 (id=517):
socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$OSF_MSG_ADD(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000000)={0x8}, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f0000000200)=0x400000bce)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x1)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
socket$inet_sctp(0x2, 0x5, 0x84)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(0xffffffffffffffff, 0x84, 0x64, &(0x7f00000000c0)=[@in={0x2, 0x0, @loopback}, @in], 0x20)
getpid()
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000dc0), r1)
sendmsg$NLBL_CIPSOV4_C_REMOVE(r1, &(0x7f0000000e80)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000e00)={0x1c, r2, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_DOI={0x8}]}, 0x1c}}, 0x0)

5.969714129s ago: executing program 1 (id=521):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000540)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x2, 0x8, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000002000000000000000002000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70300000000000085000000ad000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f00000000c0)={r1, 0xffffffffffffffff, 0x38, 0x0, @void}, 0x10)

5.768418564s ago: executing program 4 (id=522):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000003c0)={{0x14}, [@NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x2c, 0x4, 0x0, 0x1, [{0x28, 0x1, 0x0, 0x1, @range={{0xa}, @val={0x18, 0x2, 0x0, 0x1, [@NFTA_RANGE_SREG={0x8}, @NFTA_RANGE_OP={0x8}, @NFTA_RANGE_FROM_DATA={0x4}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x80}}, 0x0)

5.567549999s ago: executing program 1 (id=523):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000000240))
waitid(0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)

5.439096027s ago: executing program 4 (id=524):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000002c0)={0x48, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8}, @L2TP_ATTR_IP6_DADDR={0x14, 0x18, @ipv4={'\x00', '\xff\xff', @private}}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_ENCAP_TYPE={0x6}]}, 0x48}, 0x1, 0x620b}, 0x0)

5.386195258s ago: executing program 3 (id=525):
open(&(0x7f0000000080)='./bus\x00', 0x143142, 0x0)
ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, 0x0)
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000000000040260933334000000000010902"], 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000600)={&(0x7f0000000c00)=ANY=[@ANYBLOB="9feb01001800000000000000340008003400000004000000000000000000000b000000000200000000000000000025ff000000000000000f02000000b8b300005f001f4b2579c2150707a150bae72db78970eb8cd4f136008188d2c473e9945457bf6a8cff969b3461661a337cfe11e452e2a1dccce6aec9f1fca173f083fe2fac1da455a6abf897978431965e0de921b1f4635c0d3b06850c836dd6201c974091f8b99be53036f9bc706bf64dd1cd33b643a2bb4b5c00055e8c8297876706110bab4978fad0e714a6105e3f07cca97d349dd00d15b7d19c88d700a4882c6a44e9178a"], &(0x7f0000000540)=""/145, 0x50, 0x91, 0x1}, 0x20)
syz_usb_control_io$hid(r0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x3)
keyctl$restrict_keyring(0x3, 0xfffffffffffffffb, 0x0, 0x0)
r1 = socket$inet6_udplite(0xa, 0x2, 0x88)
sendmmsg$inet6(r1, &(0x7f0000000a00)=[{{&(0x7f0000000000)={0xa, 0x4e21, 0x0, @remote, 0x9}, 0x1c, &(0x7f00000000c0)=[{&(0x7f0000000300)}], 0x1, 0x0, 0x590}}], 0x1, 0x8008801)
r2 = add_key$keyring(0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd)
keyctl$clear(0x7, 0x0)
add_key$user(&(0x7f0000000100), &(0x7f0000000140)={'syz', 0x3}, &(0x7f0000000300)="921a777c540ed1eec49c79b9d84753277b677b84488c3317ae2d0b391af7e1df7878303c012fced97421b6870395264fa085ee5074cd", 0x36, r2)
r3 = socket$nl_generic(0x10, 0x3, 0x10)
bind$netlink(r3, &(0x7f0000000040)={0x10, 0x0, 0x25dfdbfd}, 0xc)
bind$netlink(r3, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x4000000}, 0xc)
bind$netlink(r3, &(0x7f00000000c0), 0xc)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000280)={<r4=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000800)={'wlan0\x00', <r5=>0x0})
r6 = socket(0x11, 0x3, 0x0)
sendto$packet(r6, &(0x7f0000000840)="1412e0c84935a9738e0ff2f788a8", 0xe, 0x0, &(0x7f00000007c0)={0x11, 0x0, r5, 0x1, 0x0, 0x6, @multicast}, 0x14)

5.339215204s ago: executing program 1 (id=526):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000001c0)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r0 = add_key$keyring(&(0x7f0000000080), &(0x7f00000000c0)={'syz', 0x2}, 0x0, 0x0, 0xfffffffffffffffd)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000001c0)=ANY=[], 0x14}}, 0x0)
request_key(&(0x7f0000000240)='keyring\x00', &(0x7f0000000280)={'syz', 0x2}, 0x0, 0xfffffffffffffffc)
sendmsg$NL80211_CMD_SET_PMKSA(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x10, &(0x7f0000000200)={0x0}}, 0x0)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_GET_INTERFACE(r2, &(0x7f0000000180)={&(0x7f0000000040), 0xc, &(0x7f0000000140)={&(0x7f00000002c0)=ANY=[@ANYRES64=r2, @ANYRES16=r0, @ANYBLOB="000629bd7000ffdbdf250500000008000300", @ANYRES32=0x0, @ANYBLOB="0c009900008000001e000000"], 0x28}}, 0x4000)
syz_emit_vhci(&(0x7f0000000000)=ANY=[@ANYBLOB="043e751d"], 0x24)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBMODE(r3, 0x4b46, &(0x7f0000000300))
r4 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
mkdir(&(0x7f0000000200)='./control\x00', 0x0)
r5 = socket(0x15, 0x5, 0x0)
getsockopt$nfc_llcp(r5, 0x114, 0x2718, 0x0, 0x20000000)
close(r4)
r6 = inotify_init1(0x0)
fcntl$setstatus(r6, 0x4, 0x2c00)
fcntl$setown(r4, 0x8, 0x0)
rt_sigprocmask(0x0, &(0x7f0000000440)={[0xffffdffb]}, 0x0, 0x8)
inotify_add_watch(r4, &(0x7f0000000080)='./control\x00', 0x210000e8)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r7, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="600000000206010100000000000000000000000005000100070000000900020073797a3000000000050005000200000005000400000000000c000780080008400000106d080006400000000011000300686173683a69702c6d61726b"], 0x60}}, 0x0)
rmdir(&(0x7f0000000100)='./control\x00')
setrlimit(0x8, &(0x7f0000000380))
mlock(&(0x7f0000ffd000/0x3000)=nil, 0x3000)
memfd_create(&(0x7f0000000380)='/dev/loop#\x00', 0x0)
fstat(r3, &(0x7f0000000200))

5.100496718s ago: executing program 4 (id=527):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = socket$inet(0x2, 0xa, 0x0)
bind$inet(r4, &(0x7f0000000040), 0x10)

4.938343043s ago: executing program 1 (id=528):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
sendmsg$xdp(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)=[{&(0x7f0000001240)="1e", 0x1}], 0x1}, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$F2FS_IOC_MOVE_RANGE(r1, 0x541b, &(0x7f0000000040)={<r2=>0xffffffffffffffff})
close_range(r2, 0xffffffffffffffff, 0x0)

4.743433197s ago: executing program 1 (id=529):
syz_mount_image$ext4(&(0x7f00000005c0)='ext4\x00', &(0x7f0000000080)='./bus\x00', 0x8052, &(0x7f0000000040)={[{@block_validity}, {@noblock_validity}, {@quota}]}, 0x1, 0x4d3, &(0x7f0000000600)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
socket$nl_xfrm(0x10, 0x3, 0x6)
socket$nl_xfrm(0x10, 0x3, 0x6)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x0, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x80042, 0x0)
write$FUSE_INIT(0xffffffffffffffff, &(0x7f0000002100)={0x50}, 0x50)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003140)=[{{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000000e40)="74836a608a879c0f4933e2980e3c27227b44c5f674d374f685a7252ac48df7cbdb6cb4b24ef98291b83a501c8237790fe9dd1ab86749497a19e5823d8a30793254456ddc653c653fa808d834a5eb7d4d59ffb92952f1066a00bce07815b7b6d48a1722932d00dbdee09c36353b3109cdf5e573402fe43eed02728bedac7695eecc6592553d856ef5c81f3ac1aae42258794c093e644c10232030162346daaed7eb5035eeedc50977abe7153d2a693ed4a3808361052bbbd83cdd05d314de0d22a343bc438fb7d6cf3e96986d06662f1005a21a1a92a75cc0b9e59032f9cdeccd2d0ce9961ac063991b8adade53529e42a66e71cfe2898c62fea7a35048348ed3c1558f7dccf1d57ec1e04dce785f2b7d53a725bee3285c34c39c4bcfc7e78de0e2056ee113473335dff60475785116916d1f140a093a98912ab97185763da02e09aff786dabac1ecb508f44c729831afccd8127a432236ca799e232e24d6a432401121373560729431c07d280d5ddca29f8b090ba9fb342c0472dd41254696804d890335594dc908892b5b4141817d074e3d18f60fcc88a09d01167ebc34abe1fa88ad479b255fed991086555f6715611b75281c919e08295d7dce5a94354de0d3f9ab6a0ca20a76060b23caf7c18bf50d5cc1035f292394bf1be8640588918f692827dfdc1e4095c2b468a80b722b69e350e66c88c222bf1c357b3867d162e5e1d90777223b7dac6b9bd8fca2ee2019dbe35f7eb9f4562dd0d761adf16f1c2659aea0fe284602a4c188fae98d28f6bbe8c9928ecaa3ab282e4eb4480f8d26b1e38df368d808dc037350d13fd898638c1ffb13005709a6340fa4dec43307c7a53236399d02e03280fe5b37326b4bf920770607950aa957f73b56eb42b50428b80f533d57042b8cec67548f60789e557f5e68426b7ea3c7e2ed0c68e571bbb4d14dbb1a7e32750c30a97535bc6a398204e0b4b20038a2905fa97a899c0c153b9f783e08561d6d7ce9c593b20a8c9d0342c64639db4e4a900de891f9cf418caf585a9fb1fe88cd1febb3fadc934827e10adc73668c2bec4161c6d9d8af83b94916ba183fd4319139cea73173a5a2a5a50665643a0ca3de14b989706eecdbb010c45c9826ef368fc494c468446813208021c973c933a58507bc8a51baf3b77af624c8d15fad4e2d3cc7b2092c089baed0cd1f545cd6f1646bdaab17a11a74666c24e2af78dff22c8767155c7257235e851a4d57f51cc65e14f51c4a2afe1af92cdc25e5e71bdd3dde36ed40cb6393cc9696d7235e47929dbdb6a5d9d9059e19cd5e2e55ee1c25408f7deae259db7da26b81aa60365da1694085cfcda459930e6cc31501ece761aa36c12027a297f9e8b7da2b8149b251519a805ba3d5d850221e50ccc97b93281753193943d23b50be93fe957395c0ca116ebcedca7998c7f408dc938aba02b18ad9da724c2e3716981a658ce235d1723aba974c768c07dbef8678ff11cf46afae541ac5ac3a65ae67a51d201d9c8619592484afadcd4af0a4b0ea4af052a551e61bca70f2fac665e2e4d974ae3ee76f71ed58fc2e4194d9fd94b1a627cc7e116f11d67683144308947f4707422d31d4485a573e760963c74085dec9ed551d63c802d57e1633b82711b514a5b873b2be89660d84a188dbf1b97d7a23cb8b364f6ea031077718b19d01a6ed5942564525cb749e21c9a68ce245489db7e4fd383ed3e93ee006ff10a58c2fe3c91d97f790b8a271180c69589c21a0c72e68d84eddde3e01d5eb034e77a5a27cb80e34fa36f0fa4125a22944f60590e1b9b0f1c836d64217322286e3d24af8e991458af3a542ea8354fbe83a4d513893a39539523eef23802bff8019a5de324cbf39ec1e913fbb3cacbf7c7cf15ebfffbdd11c24543845d87e8b401671d2ae8d5db07d7e929248e1a348a17d80aff99ef1b3836f79a93f958a70d4e33a7f04fa15e1336f5c26289b46e470eff41958dce02e3163c199dd1ec083df1c8447624e529320fba36b848d27390aeb331d357de60465c2e0fb501916b1aa238ac1869dce80a17d9bba484c48a8928c170925889cd2224872ad328afb9321c9eb676096f5ad01c39652c906880b04190ad16855c9b03875356fef8fb2e470fc2432b878ea8daf6beb9b94e4dbaef0a1674403d1d2a72b593ac56de5237e7da7e662863b41f00e9332775c11e4d67c19f23e0d0eea7d2cec9ddb030baaf793e223052c6315ed478aa4d8707f2400d7d03bc32fff163acc1536e459f4807efacd3a855c55725392e635c3f432a2f724080a7aae411718b32f096c6dba2ed280b8169b1486812685f6aa34418b0b1777afd3c0f8030be528e31db140ee48814a1f56993678f97cb54abde61d8dcc8ecdcfc13531ac3fa53972e2be36f47f22ff6fce17f6a92c24ecd533ce544d47584683211e732dc49bffb3ecac90becf5dec9a2197512dcaca04f791cc04710105f7e80a704629834bca658c9928471cbcc32b2abfe50e0d3d63f7fe9b7c74313abf62b6a2addb4476c3ffd98ccc9c5bf3608da20d315d1428ed5025af648eafc90b5fec2fff3e1f3e284c661bb53c17e3e722a62122d62b8274bda4404d1b17144f2f04c3cc5bccee3b2568e2da456a284e4f76de40e70d4a34020530257e96a9c2f1d2ca661605641bc9bd78da275529dbf65203633f86a20b5971f3efc1b5160dcd0a4f2eb81bba79c3e6ceb46c8b8b301d8e050cb73df803b922d9edecadc4fd3c7d1598f44a16a0098202be9c180ca53fa26fc28f5dbd23cb052a9fda3d219f7f1fc8b5e85db094657f7263dfbe1b3c80022518890ff80b5bd91547d7a3404ce0b37974315cfc2dc6906eebc5f5e0227c2f6cbf98bda4466dd11026508026a8f7485f3ccb1273ff43f24fb49325db5e4a243d3f7c5ce6f35eb922d81544ed807897c896ce2f36705ffd58396022d093f6c74cc5f5eb2102bf9f2f213e471cfdf1f30f76ec8764f7a92d94cf00ff88107462bc3cb6e87c5926c0fdc6b5f45bcab6937ab0128f39a46fc8721548fd1451a9535905a70613f74d401989bffed243cd3560114ebcb38ea93474fe9ab948f930d236b244a562451d9c564dd86d635c6ce0bd0522f10a0d399e7bcd6e6ba89138c2da6b0b47dcfdd6cc773561943d15afb950b1d9a710ec2c3772e4ceacbddab61a344e360ee2a63e99c0fe6ef635cb0f40fa29246e37db290c1a038f59ee5fa379eaf26ead1146eaacaefbb753c3b0e3b16118ff3df617292c0705a6727f96770e3f0869effe493311469dfceb6c5f7f68976a04175b99df0b4ae0a8723188a210e9f66098332e022b02ca3a651ab99d660d764940b6868e59c7773efb0b4827b0d91d8429ea5bf545aa08013abfeac6160f97802cab7b32b38d9922a954e96cc4c5d7c43a7c89ca1e2d00c51208733dd8539724e62f5f5e69f556a1a3e5f4e9ee57363dd0317132e9829015ae0878fdf49e917f32e088ad00779cb801bcb2d34b21a5126d260c126ac3fa64182e9a640228f1707063a5bb4ea79f8b8b703367b31d8f387cb2695d1f27349ae5ba8ae40649ec6af188a68c0c4e2c8af927535a154db2661c71f0fd02fa07b154572addb912df3c844e1bc9ed6b4b14c4f802525374f075bc61c11c53cce143c812ffb53fc32766198464c8a574255b1727ec61a5812079fc23b773f4532284e9bf113c1b841b525dc6f9be7017c7bf1b8896e90925a633ee8724579f7f18f765a4029186eda52ff8292e4d44fa3d2edc99090e03568bf466200a35548ca3de102acd80355a9407fbabdb8722588d2396a5ff3b899e488346e9eeff8e8b349dbea0d6e8f86543bea1c8db9ec7b882909ebf7cdab930547afb8b0748abc72c9013cb72464dfb33354b1295d584800cf87869d7edbd07d0f88468b1e6d5d8679d5dce3d68c7c46b4cec0a5b9ed21ec1ede3deeb5c1bb98d92cd36a643e35a279aed569334181a70a37029ab8e79d0697359e58fecb7241e26188125e84123cde051d9a8bca2044e9786a88ef88e379a8e00a2c91ae98efa3649c0c2fe88a4e31c91e3372d5ccea58eb1d74cc48ef8e37b7248628b270df2c864a4b1a66d6ccf1b83cb6c484a2224e42905b0505fa5268a77fb1b10d08f57952e415c3f94e2f6299a3b1972a66e5aa34f000016803534160f99ccdd6a2cbb2c3b29ad078aec93f33d4f436549ffe88939cc7747c605c930a906c787c115ea6da9fcbd2148cfbabd4f88", 0xbba}], 0x1}}], 0x1, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x10004, &(0x7f00000000c0), 0x0, 0x4c0, &(0x7f0000000540)="$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")
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x5, 0xa, 0x7, 0x209, 0x40}, 0x48)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000280), &(0x7f0000000180), 0x3ff, r3}, 0x38)
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f00000004c0)=@updpolicy={0xb8, 0x19, 0x0, 0x70bd26, 0x0, {{@in=@multicast1, @in6=@local, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x20}, {0x0, 0x0, 0x0, 0x4}}}, 0xb8}}, 0x0)
syz_emit_ethernet(0x4a, &(0x7f00000001c0)={@local, @multicast, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, '\x00', 0x14, 0x6, 0x0, @local, @local, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00'}, 0x10)
r4 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_CREATE(0xffffffffffffffff, &(0x7f0000000240)={0x0, {'syz0\x00', 'syz1\x00', 'syz0\x00', &(0x7f0000000040)=""/2, 0x2}}, 0x120)
write$UHID_DESTROY(r4, &(0x7f0000000200), 0x4)

3.513690602s ago: executing program 4 (id=530):
rseq(&(0x7f0000000040), 0x20, 0x0, 0x0)
creat(&(0x7f0000000000)='./file0\x00', 0x0)
acct(&(0x7f00000001c0)='./file0\x00')

2.987338071s ago: executing program 4 (id=531):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="180100001c0000000000000000000000850000006d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={0x0, r0}, 0x10)
rt_sigprocmask(0x0, &(0x7f0000000000)={[0xfffffffffffffffd]}, 0x0, 0x8)
rseq(0x0, 0x0, 0xfffffffffffffffd, 0x0)
r1 = syz_open_dev$swradio(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_ENUM_FREQ_BANDS(r1, 0xc0405665, &(0x7f0000000080))
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
setsockopt$packet_fanout_data(0xffffffffffffffff, 0x107, 0x11, 0x0, 0x0)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mkdir(&(0x7f0000000540)='./file0\x00', 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0}, 0x90)
r5 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r6 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="1400000016000b63d25a80648c56915a20aa2bfe", 0x14}], 0x1}, 0x0)
r7 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00')
getdents64(r7, &(0x7f0000000180)=""/59, 0x3b)
prctl$PR_GET_IO_FLUSHER(0x3a)
bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, &(0x7f0000001840)=@ringbuf={{}, {{}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x1b}}, {}, [@snprintf={{}, {0x3, 0x3, 0x3, 0xa, 0x9}, {0x5, 0x0, 0xb, 0x9, 0x0, 0x5}, {0x3, 0x3, 0x3, 0xa, 0xa}, {0x5, 0x1, 0xb, 0x8, 0xa, 0x4}, {0x7, 0x0, 0x0, 0x8}, {0x7, 0x1, 0xb, 0x0}, {0x7, 0x0, 0x0, 0x0}, {}, {0x18, 0x2, 0x2, 0x0, r5}, {}, {0x46, 0x0, 0x0, 0x76}}], {{}, {0x6, 0x0, 0xb, 0x8}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, &(0x7f0000000100)={{{@in=@initdev, @in=@empty, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, <r8=>0x0}}, {{}, 0x0, @in=@multicast2}}, &(0x7f0000000200)=0xe8)
mount$9p_tcp(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x400, &(0x7f0000000300)=ANY=[@ANYBLOB='trans=tcp,port=0x0000000000000000,version=9p2000.u,privport,debug=0x8000000000000000,version=9p2000,hash,fowner=', @ANYRESDEC=r8, @ANYBLOB="000061028a6c0a689b3553aacd3e830a350a01ccfccdae25e69d1de9ca3d34862b242da9ec0a22902986209a792291f513465fdfbe790aaf7859af"])

1.431141665s ago: executing program 4 (id=532):
ioctl$BINDER_WRITE_READ(0xffffffffffffffff, 0xc0306201, &(0x7f0000001140)={0x0, 0x0, 0x0, 0x46f, 0x0, &(0x7f0000000140)="2b7393b7c6347cd49978d5023a81022d1e7baeea09c5d463b04397f7a66a0f0b769bc097d48d09754d7e15e59224486b3df2c3fc8b3379a1a30fee142bb1a32d4c3b32006571f5de9d846e7e8b8e64c79a66e2ba19f7eca5d0e0517dcd4eba1ab882af481e477e362ceb1fd11c9d50b5e3afd7f60aa6881b2681c53ee87badeeba28eba948324721a382f000917a4a6f6f76d04e0b19396feccdbae7795aaa45818dce2d1f7b4642b09dd40bf4bef9854b631eb821b13a7e475d5c9a9d4bbb3fd9b07650683a35d9557d1e7e6496dd6f6f5ca57a5c43b9863819829430e1607ebf0dbb2308a8181ef5ccdcf1eb157470d54635a1a5b7075c77dfdb97155af8fa282fcc5ca5bad36839e0cad1304c542be170a44da4089a32bc3f35a85a6e30b8d233809335a4274938505517a26728b643c2f04917afe55c68759adea3bb70f5b5c3c59fc24d6e3835c110420cfd6de096f8dec90f5f577744d2d0f3ec21819253cdb102d50678293328726f1c4f7163e28e79ab4767e3054dfa9a11b1fdafb8757b2a91f8283ad01712062048b52b5cfcaf648fe760a98ee82fbb1836c88434e0b36f9b56c4d3cd8b42566cba88ddb7418762cd8495a4ec8de7952789c2a6d37cdbbecde53ffea86db893181d9b5c7d4663d1bd78c9cb87af7cbfa54a1b2c98432ef5ba6f43c358ae873495f46850d56d83f3d7d376b3b6120ffe93c8ab6b6f214316d8c3376a5a65d173b6e4243326c729163050547d49338a737bc894f487bc9b51e75ac2031ea714ed6c917f13e3cc0ee85a75e9a98a42f9aad6f1e244c1daa06ee55b205e11aa3a2982387210bccd26c5108f2a548b06dd0a0520ca8f99532ab0a4fd8c33f0f01ad40b74ef4e9f0d01b7bbc8aa69296cca1f19d92c5be8ffa3264e3951dd318363e02d36fa69ecaa3978b6c471c9dde0052632d1ebe277982fb0c900dd3f461257ad46a69b8f1e9bc36d8992426aa4adddc024bb74a39539f1cf801502cbd0d7acb8b2c5d9778a8253d2c8746d5b252a32f67c94cb8916a6310c1af0c0eb6f09a07d5020948a9c0f147c01d4a8b3af25686eadef9eaed2623cb012521ab86453e71bf351c130b6d33ffc388afdb5b2b7c16c1002a0640dd73e7a7e6a852dd2c75209d711a50363e46116ad2a14483c3729a81e4ef2fed2f18732f0038e079e561eea96eb665219070f42139c627dd5f185d23fdc316d38eb99826bcb63938d6cd1af3b5274f57009f87854ad98bef03025c32e7aa4a721d28e94ec5feff3a279c2e1c18002e39eaaefec3dfd1eae45a61e4283e8a7ef1eaf70d93a0333a9ff9ef048332f3fcc797076f8c02858548418e34a9967282de2eb4cc6438f0b6c9dcc204cdd732dd88624b39c16e8f80819cb72be6ab07492ed05ade4caf1ae3d723830523e32c02786c50ac1f47b994ed49fc4b9b318a4c86b4f7fb0d3c6a8763ef27cd52936cc55ef5ac50935a7f706464be90ea4b5f894ad92910de17889a6236a4bda8aac5e1daa70a8fcf248360cdd4e86f854f23e3e4792d91c85f1ed6cf7c36bbe9d879fc86b55e55e0566b6451aad55b1b24156d5735d1ee7064b07bde3a7643cb7631057"})
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r1, 0x0)
r2 = mmap$binder(&(0x7f0000ffe000/0x1000)=nil, 0x1000, 0x1, 0x11, 0xffffffffffffffff, 0xda2)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000780)={0x8c, 0x0, &(0x7f00000006c0)=[@free_buffer={0x40086303, r2}, @exit_looper, @dead_binder_done, @exit_looper, @request_death={0x400c630e, 0x3}, @acquire={0x40046305, 0x1}, @acquire={0x40046305, 0x1}, @transaction={0x40406300, {0x2, 0x0, 0x0, 0x0, 0x20, 0x0, 0x0, 0x58, 0x18, &(0x7f00000000c0)={@fd={0x66642a85, 0x0, r0}, @ptr={0x70742a85, 0x0, &(0x7f0000000040)=""/85, 0x55, 0x2, 0x2a}, @flat=@weak_binder={0x77622a85, 0x1, 0x1}}, &(0x7f00000005c0)={0x0, 0x18, 0x40}}}, @release={0x40046306, 0x1}], 0x1000, 0x0, &(0x7f0000001400)="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"})
r3 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
syz_usb_connect$cdc_ncm(0x0, 0xb2, &(0x7f0000000600)={{0x12, 0x1, 0x0, 0x2, 0x0, 0x0, 0x20, 0x525, 0xa4a1, 0x40, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xa0, 0x2, 0x1, 0x0, 0x0, 0x0, {{0x9, 0x4, 0x0, 0x0, 0x1, 0x2, 0xd, 0x0, 0x0, {{0x5}, {0x5}, {0xd}, {0x6}, [@country_functional={0x6}, @country_functional={0xc, 0x24, 0x7, 0x0, 0x0, [0x0, 0x0, 0x543]}, @call_mgmt={0x5}, @mdlm_detail={0x27, 0x24, 0x13, 0x0, "d9f62b8b787a06263152755fc26d0ffd3185cc6f4ec2b3ca3f875b6e356f9c5682cf3d"}, @country_functional={0x6}]}}}}}]}}, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000013c0)={'wlan1\x00', <r4=>0x0})
syz_genetlink_get_family_id$tipc2(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000001380)={0x0, 0x0, &(0x7f0000001340)={&(0x7f0000000000)=ANY=[@ANYBLOB="f4060000", @ANYRES16=r3, @ANYBLOB="01000000000000e14f003b00000008000300", @ANYRES32=r4, @ANYBLOB="d506330080000000ffffffffffff080211000001"], 0x6f4}}, 0x0)

72.221874ms ago: executing program 1 (id=533):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000000)={[{@bh}, {@debug}, {@noauto_da_alloc}, {@block_validity}, {@prjquota}]}, 0x21, 0x4a6, &(0x7f0000000540)="$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")
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000015c0)={&(0x7f0000001400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x2}}, 0x0, 0x1a}, 0x20)
socketpair$nbd(0x1, 0x1, 0x0, 0x0)
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x121301, 0x0)
ioctl$TCSETS(0xffffffffffffffff, 0x5402, &(0x7f0000001540)={0x0, 0x0, 0x0, 0x3, 0x0, "b18587b362c5c4e373fd1a2a0df2273a39e157"})
write$binfmt_aout(r0, &(0x7f0000000000)=ANY=[], 0xff2e)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, "0000fa00ea8000"})
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
ioctl$TIOCSETD(r2, 0x541b, &(0x7f0000000ec0))

0s ago: executing program 3 (id=534):
openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000180))
socket$inet6(0xa, 0x3, 0xff)
socket$nl_generic(0x10, 0x3, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
socket$inet_udp(0x2, 0x2, 0x0)
r1 = openat$6lowpan_enable(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
socket$inet_mptcp(0x2, 0x1, 0x106)
openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000004940), 0x0, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x0)
fcntl$dupfd(r1, 0x0, r0)
epoll_create(0x4)
syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=<r3=>0x0, &(0x7f0000000140)=<r4=>0x0)
socket$rds(0x15, 0x5, 0x0)
syz_io_uring_setup(0x4446, &(0x7f0000000200), 0x0, 0x0)
socket(0x10, 0x3, 0x0)
r5 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
fcntl$dupfd(r6, 0x0, r7)
r8 = socket$alg(0x26, 0x5, 0x0)
write$UHID_CREATE2(r5, &(0x7f0000000040)=ANY=[@ANYRES64=r8], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r5, 0x0)
syz_io_uring_submit(r3, r4, &(0x7f0000000000)=@IORING_OP_SPLICE)
io_uring_enter(r2, 0x2d3e, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

face activated: batadv_slave_0
[  271.174366][ T5114] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  271.196281][ T5114] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  271.212493][ T5114] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  271.233360][ T5114] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  271.256032][ T5114] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  271.268934][ T5114] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  271.340291][ T3575] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  271.394556][ T6167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.418740][ T6167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.424081][ T3575] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  271.441560][ T6167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.486085][ T6167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.527163][ T6167] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  271.553507][ T6167] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  271.570367][ T6167] batman_adv: batadv0: Interface activated: batadv_slave_1
[  271.611003][ T6167] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  271.638688][ T6167] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  271.661887][ T6167] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  271.670653][ T6167] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  272.664980][ T6499] loop1: detected capacity change from 0 to 64
[  273.312227][ T5114] Bluetooth: hci1: command tx timeout
[  273.471512][ T6231] 8021q: adding VLAN 0 to HW filter on device batadv0
[  273.611616][   T35] bridge_slave_1: left allmulticast mode
[  273.640339][   T35] bridge_slave_1: left promiscuous mode
[  273.658555][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  273.720096][   T35] bridge_slave_0: left allmulticast mode
[  273.752258][   T35] bridge_slave_0: left promiscuous mode
[  273.859528][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  274.878203][ T4487] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  274.889660][ T4487] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  274.910258][ T4487] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  274.939914][ T4487] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  274.960653][ T4487] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  274.984646][ T4487] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  275.046469][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  275.065729][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  275.088581][   T35] bond0 (unregistering): Released all slaves
[  275.409047][ T5114] Bluetooth: hci1: command tx timeout
[  275.440552][ T6521] netlink: 60 bytes leftover after parsing attributes in process `syz.1.279'.
[  275.452794][ T6521] netlink: 60 bytes leftover after parsing attributes in process `syz.1.279'.
[  275.484879][ T6524] xt_hashlimit: invalid interval
[  275.719667][ T2482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  275.765744][ T2482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  276.034942][ T6292] 8021q: adding VLAN 0 to HW filter on device batadv0
[  276.692623][   T62] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  276.728201][   T62] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  276.802551][   T35] hsr_slave_0: left promiscuous mode
[  276.868941][   T35] hsr_slave_1: left promiscuous mode
[  276.915505][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  276.935771][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  276.953522][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  276.961029][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  277.029032][   T35] veth1_macvtap: left promiscuous mode
[  277.052103][   T35] veth0_macvtap: left promiscuous mode
[  277.072268][   T35] veth1_vlan: left promiscuous mode
[  277.077855][   T35] veth0_vlan: left promiscuous mode
[  277.092880][ T5114] Bluetooth: hci4: command tx timeout
[  277.668636][ T5114] Bluetooth: hci1: command tx timeout
[  279.089090][   T35] team0 (unregistering): Port device team_slave_1 removed
[  279.144142][   T35] team0 (unregistering): Port device team_slave_0 removed
[  279.152968][ T5114] Bluetooth: hci4: command tx timeout
[  279.722278][ T5114] Bluetooth: hci1: command tx timeout
[  279.847900][ T6534] netlink: 'syz.1.280': attribute type 8 has an invalid length.
[  279.858216][ T6534] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  280.282849][ T6480] chnl_net:caif_netlink_parms(): no params data found
[  280.439068][ T6231] veth0_vlan: entered promiscuous mode
[  280.488569][ T6541] loop2: detected capacity change from 0 to 1024
[  280.524660][ T6541] hfsplus: unable to parse mount options
[  281.393622][ T5114] Bluetooth: hci4: command tx timeout
[  281.849174][ T6292] veth0_vlan: entered promiscuous mode
[  282.108485][ T6231] veth1_vlan: entered promiscuous mode
[  282.264317][ T6544] loop1: detected capacity change from 0 to 32768
[  282.482273][ T6480] bridge0: port 1(bridge_slave_0) entered blocking state
[  282.489654][ T6480] bridge0: port 1(bridge_slave_0) entered disabled state
[  282.507470][ T6480] bridge_slave_0: entered allmulticast mode
[  282.517534][ T6480] bridge_slave_0: entered promiscuous mode
[  282.634225][ T6544] bcachefs (loop1): mounting version 1.7: mi_btree_bitmap opts=metadata_checksum=none,data_checksum=none,compression=zstd,nojournal_transaction_names
[  282.660738][ T6544] bcachefs (loop1): recovering from clean shutdown, journal seq 10
[  282.695909][ T6292] veth1_vlan: entered promiscuous mode
[  282.750055][ T6480] bridge0: port 2(bridge_slave_1) entered blocking state
[  282.782220][ T6480] bridge0: port 2(bridge_slave_1) entered disabled state
[  282.792844][ T6480] bridge_slave_1: entered allmulticast mode
[  282.822939][ T6480] bridge_slave_1: entered promiscuous mode
[  282.836950][ T6544] bcachefs (loop1): alloc_read... done
[  282.853980][ T6544] bcachefs (loop1): stripes_read... done
[  282.872860][ T6544] bcachefs (loop1): snapshots_read... done
[  282.920760][ T6544] bcachefs (loop1): journal_replay... done
[  282.929163][ T6544] bcachefs (loop1): resume_logged_ops... done
[  282.976190][ T6544] bcachefs (loop1): going read-write
[  283.011619][ T6544] bcachefs (loop1): done starting filesystem
[  283.115690][ T6480] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  283.179144][ T6480] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  283.216962][ T6513] chnl_net:caif_netlink_parms(): no params data found
[  283.248720][ T6544] syz.1.282 (6544) used greatest stack depth: 21024 bytes left
[  283.350182][ T5728] bcachefs (loop1): shutting down
[  283.358830][ T5728] bcachefs (loop1): going read-only
[  283.369714][ T5728] bcachefs (loop1): finished waiting for writes to stop
[  283.390591][ T5728] bcachefs (loop1): flushing journal and stopping allocators, journal seq 11
[  283.473688][ T4487] Bluetooth: hci4: command tx timeout
[  283.486297][ T6480] team0: Port device team_slave_0 added
[  283.567456][ T5728] bcachefs (loop1): flushing journal and stopping allocators complete, journal seq 13
[  283.606390][ T6480] team0: Port device team_slave_1 added
[  283.627082][ T5728] bcachefs (loop1): shutdown complete, journal seq 14
[  283.692395][ T5728] bcachefs (loop1): marking filesystem clean
[  283.905555][ T5728] bcachefs (loop1): shutdown complete
[  284.131131][   T11] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  284.375815][ T6480] batman_adv: batadv0: Adding interface: batadv_slave_0
[  284.406320][ T6480] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  284.567141][ T6585] loop2: detected capacity change from 0 to 64
[  285.182054][ T6480] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  285.656409][   T11] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  286.093744][ T6480] batman_adv: batadv0: Adding interface: batadv_slave_1
[  286.264425][ T6480] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  286.693256][ T6480] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  286.865585][ T6231] veth0_macvtap: entered promiscuous mode
[  286.947431][   T11] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.026349][ T6292] veth0_macvtap: entered promiscuous mode
[  287.215049][ T6231] veth1_macvtap: entered promiscuous mode
[  287.569707][   T11] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  287.624683][ T6292] veth1_macvtap: entered promiscuous mode
[  287.861451][ T6513] bridge0: port 1(bridge_slave_0) entered blocking state
[  287.892199][ T6513] bridge0: port 1(bridge_slave_0) entered disabled state
[  287.908717][ T6513] bridge_slave_0: entered allmulticast mode
[  287.929910][ T6513] bridge_slave_0: entered promiscuous mode
[  287.972213][ T6613] xt_hashlimit: invalid interval
[  288.135676][ T6480] hsr_slave_0: entered promiscuous mode
[  288.158578][ T6480] hsr_slave_1: entered promiscuous mode
[  288.349801][ T6611] netlink: 60 bytes leftover after parsing attributes in process `syz.2.289'.
[  288.355854][ T5114] Bluetooth: hci3: command 0x0406 tx timeout
[  288.370348][ T6611] netlink: 60 bytes leftover after parsing attributes in process `syz.2.289'.
[  288.432534][ T6513] bridge0: port 2(bridge_slave_1) entered blocking state
[  288.439857][ T6513] bridge0: port 2(bridge_slave_1) entered disabled state
[  288.514257][ T6513] bridge_slave_1: entered allmulticast mode
[  288.574233][ T6513] bridge_slave_1: entered promiscuous mode
[  288.948506][ T6513] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  289.105405][ T6513] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  292.151781][ T6639] loop2: detected capacity change from 0 to 2048
[  292.195559][ T6639] EXT4-fs: Ignoring removed bh option
[  292.232566][ T6639] EXT4-fs: Ignoring removed nomblk_io_submit option
[  292.239298][ T6639] EXT4-fs: Ignoring removed nobh option
[  292.385827][ T6639] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  292.517008][ T6639] EXT4-fs error (device loop2): __ext4_remount:6503: comm syz.2.295: Abort forced by user
[  292.563292][ T6639] EXT4-fs (loop2): Remounting filesystem read-only
[  292.679969][ T6292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  292.719672][ T6292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  292.751929][ T6292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  292.781956][ T6292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  292.811962][ T6292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  292.850843][ T6292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  292.875694][ T6292] batman_adv: batadv0: Interface activated: batadv_slave_0
[  292.882924][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  293.103561][ T6231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.142692][ T6231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.171954][ T6231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.194657][ T6231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.234392][ T6231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.281642][ T6231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.319438][ T6231] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  293.337481][ T6231] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.367476][ T6231] batman_adv: batadv0: Interface activated: batadv_slave_0
[  293.398379][ T5114] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  293.411466][ T5114] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  293.430640][ T5114] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  293.455304][ T5114] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  293.461681][ T6513] team0: Port device team_slave_0 added
[  293.473688][ T5114] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  293.489016][ T5114] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  293.526459][ T6513] team0: Port device team_slave_1 added
[  293.683643][ T6292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.754518][ T6292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.794928][ T6292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.848995][ T6292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.892320][ T6292] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  293.931170][ T6292] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  293.945565][ T6666] netlink: 16 bytes leftover after parsing attributes in process `syz.1.302'.
[  294.034054][ T6668] Zero length message leads to an empty skb
[  294.096459][ T6668] loop2: detected capacity change from 0 to 512
[  294.134098][ T6668] EXT4-fs: Invalid uid value -1
[  294.177398][ T6292] batman_adv: batadv0: Interface activated: batadv_slave_1
[  294.329012][ T6657] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  295.234569][   T11] bridge_slave_1: left allmulticast mode
[  295.292007][   T11] bridge_slave_1: left promiscuous mode
[  295.298247][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.413577][   T11] bridge_slave_0: left allmulticast mode
[  295.419405][   T11] bridge_slave_0: left promiscuous mode
[  295.464118][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.483164][ T6679] Bluetooth: MGMT ver 1.22
[  295.568479][ T4487] Bluetooth: hci6: command tx timeout
[  297.017056][ T6689] loop2: detected capacity change from 0 to 2048
[  297.144170][ T6689] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  297.436975][ T6689] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  297.483892][ T6694] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 288: padding at end of block bitmap is not set
[  297.919737][ T4487] Bluetooth: hci6: command tx timeout
[  298.147427][ T6689] fs-verity: sha512 using implementation "sha512-avx2"
[  298.265122][ T6689] fs-verity (loop2, inode 13): ext4_end_enable_verity() failed with err -28
[  298.474248][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.063327][ T6706] loop2: detected capacity change from 0 to 2048
[  299.103456][ T6706] EXT4-fs: Ignoring removed bh option
[  299.115816][ T6706] EXT4-fs: Ignoring removed nomblk_io_submit option
[  299.124051][ T6706] EXT4-fs: Ignoring removed nobh option
[  299.210505][ T6706] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  299.323880][ T6706] EXT4-fs error (device loop2): __ext4_remount:6503: comm syz.2.308: Abort forced by user
[  299.372923][ T6706] EXT4-fs (loop2): Remounting filesystem read-only
[  299.411355][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  299.443740][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  299.452777][ T6715] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  299.468405][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  299.491531][   T11] bond0 (unregistering): Released all slaves
[  299.529911][ T6292] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  299.549068][ T6292] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  299.562007][ T6292] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  299.570823][ T6292] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  299.624766][ T6513] batman_adv: batadv0: Adding interface: batadv_slave_0
[  299.643774][ T6513] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  299.715389][ T6513] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  299.734264][ T6513] batman_adv: batadv0: Adding interface: batadv_slave_1
[  299.741259][ T6513] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  299.819557][ T6513] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  299.972013][ T4487] Bluetooth: hci6: command tx timeout
[  300.173309][ T6715] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  300.217582][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  300.401404][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  300.905575][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  300.922860][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  300.960443][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  301.103892][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  301.132852][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  301.206415][ T6513] hsr_slave_0: entered promiscuous mode
[  301.224447][ T6513] hsr_slave_1: entered promiscuous mode
[  301.240152][ T6513] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  301.266247][ T6513] Cannot create hsr debugfs directory
[  301.548691][ T6716] netlink: 12 bytes leftover after parsing attributes in process `syz.1.311'.
[  301.575435][   T11] hsr_slave_0: left promiscuous mode
[  301.584894][   T11] hsr_slave_1: left promiscuous mode
[  301.591517][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  301.602436][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  301.610885][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  301.620855][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  301.659769][   T11] veth1_macvtap: left promiscuous mode
[  301.665742][   T11] veth0_macvtap: left promiscuous mode
[  301.671528][   T11] veth1_vlan: left promiscuous mode
[  301.677427][   T11] veth0_vlan: left promiscuous mode
[  302.042566][ T4487] Bluetooth: hci6: command tx timeout
[  302.500397][ T5114] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  302.523286][ T5114] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  302.533712][ T5114] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  302.563347][ T5114] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  302.579994][ T5114] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  302.592133][ T5114] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  302.850499][   T11] team0 (unregistering): Port device team_slave_1 removed
[  302.908493][   T11] team0 (unregistering): Port device team_slave_0 removed
[  304.286460][ T6751] loop2: detected capacity change from 0 to 2048
[  304.414691][ T6751] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  304.488699][ T6751] ext4 filesystem being mounted at /18/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  304.632825][ T6751] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.318: bg 0: block 288: padding at end of block bitmap is not set
[  304.673952][ T5114] Bluetooth: hci2: command tx timeout
[  304.703779][ T6751] fs-verity (loop2, inode 13): ext4_end_enable_verity() failed with err -117
[  304.858196][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  305.623614][ T6768] __nla_validate_parse: 10 callbacks suppressed
[  305.623642][ T6768] netlink: 16 bytes leftover after parsing attributes in process `syz.1.323'.
[  305.720762][ T6769] loop2: detected capacity change from 0 to 512
[  305.875194][ T6769] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  305.962850][ T6769] ext4 filesystem being mounted at /20/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  306.587181][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  306.758577][ T5114] Bluetooth: hci2: command tx timeout
[  307.316004][ T6658] chnl_net:caif_netlink_parms(): no params data found
[  308.447629][   T11] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  308.834408][ T5114] Bluetooth: hci2: command tx timeout
[  308.844399][ T6480] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  309.193920][ T6806] loop2: detected capacity change from 0 to 512
[  309.234420][   T11] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.260170][ T6806] EXT4-fs error (device loop2): ext4_orphan_get:1394: inode #15: comm syz.2.332: casefold flag without casefold feature
[  309.294701][ T6806] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.332: couldn't read orphan inode 15 (err -117)
[  309.326362][ T6806] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  309.471635][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  309.533095][   T11] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  309.655638][ T6480] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  309.694197][ T6480] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  309.933776][   T11] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  310.050296][ T6480] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  310.458614][ T6823] netlink: 16 bytes leftover after parsing attributes in process `syz.1.337'.
[  310.520398][ T6816] loop2: detected capacity change from 0 to 32768
[  310.532887][ T6816] XFS: ikeep mount option is deprecated.
[  310.538661][ T6816] XFS: noikeep mount option is deprecated.
[  310.814928][ T6816] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  311.032322][ T5114] Bluetooth: hci2: command tx timeout
[  311.328180][ T6816] XFS (loop2): Ending clean mount
[  311.374137][ T6816] XFS (loop2): Quotacheck needed: Please wait.
[  311.685581][ T6816] XFS (loop2): Quotacheck: Done.
[  311.776496][ T6658] bridge0: port 1(bridge_slave_0) entered blocking state
[  311.813507][ T6658] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.820888][ T6658] bridge_slave_0: entered allmulticast mode
[  311.848115][ T6167] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  311.876801][ T6658] bridge_slave_0: entered promiscuous mode
[  311.911095][ T6658] bridge0: port 2(bridge_slave_1) entered blocking state
[  311.933176][ T6658] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.960668][ T6658] bridge_slave_1: entered allmulticast mode
[  311.981393][ T6658] bridge_slave_1: entered promiscuous mode
[  313.600771][ T6658] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  313.665348][ T6743] chnl_net:caif_netlink_parms(): no params data found
[  313.939267][ T6658] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  314.398826][ T6859] loop1: detected capacity change from 0 to 2048
[  314.452428][ T6859] EXT4-fs: Ignoring removed bh option
[  314.464016][ T6658] team0: Port device team_slave_0 added
[  314.475855][ T6859] EXT4-fs: Ignoring removed nomblk_io_submit option
[  314.515847][ T6859] EXT4-fs: Ignoring removed nobh option
[  314.527635][ T6856] loop2: detected capacity change from 0 to 40427
[  314.544196][ T6856] F2FS-fs (loop2): invalid crc value
[  314.564382][ T6856] F2FS-fs (loop2): Found nat_bits in checkpoint
[  314.564874][ T6859] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  314.669782][ T6856] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  314.691928][ T6859] EXT4-fs error (device loop1): __ext4_remount:6503: comm syz.1.344: Abort forced by user
[  314.704853][ T6859] EXT4-fs (loop1): Remounting filesystem read-only
[  314.851447][ T6658] team0: Port device team_slave_1 added
[  314.863347][ T5728] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  315.351120][ T6868] syz.2.343: attempt to access beyond end of device
[  315.351120][ T6868] loop2: rw=2049, sector=54792, nr_sectors = 1544 limit=40427
[  315.440969][   T29] audit: type=1800 audit(1720045840.847:59): pid=6868 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.343" name="file2" dev="loop2" ino=10 res=0 errno=0
[  316.152553][ T6658] batman_adv: batadv0: Adding interface: batadv_slave_0
[  316.152750][ T6167] syz-executor: attempt to access beyond end of device
[  316.152750][ T6167] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  316.159615][ T6658] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.232369][ T6167] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  316.247192][ T6658] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  316.279272][ T6658] batman_adv: batadv0: Adding interface: batadv_slave_1
[  316.300457][ T6658] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  316.382337][ T6658] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  316.446355][ T6513] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  316.485214][ T6513] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  316.520573][ T6743] bridge0: port 1(bridge_slave_0) entered blocking state
[  316.539804][ T6743] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.582815][ T6743] bridge_slave_0: entered allmulticast mode
[  316.602333][ T6743] bridge_slave_0: entered promiscuous mode
[  316.628712][ T6743] bridge0: port 2(bridge_slave_1) entered blocking state
[  316.642430][ T6743] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.662229][ T6743] bridge_slave_1: entered allmulticast mode
[  316.687556][ T6743] bridge_slave_1: entered promiscuous mode
[  316.884161][ T6513] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  316.998152][ T6883] ptrace attach of "./syz-executor exec"[6886] was attempted by "./syz-executor exec"[6883]
[  317.291545][ T6513] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  317.346178][ T6743] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  317.396213][ T6891] netlink: 8 bytes leftover after parsing attributes in process `syz.1.348'.
[  317.404107][ T6743] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  317.627193][ T6658] hsr_slave_0: entered promiscuous mode
[  317.664651][ T6658] hsr_slave_1: entered promiscuous mode
[  317.698624][ T6658] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  317.722103][ T6658] Cannot create hsr debugfs directory
[  317.985698][ T6743] team0: Port device team_slave_0 added
[  318.025979][ T6743] team0: Port device team_slave_1 added
[  318.650448][ T6743] batman_adv: batadv0: Adding interface: batadv_slave_0
[  318.702468][ T6743] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  318.803498][ T6743] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  318.836848][ T6743] batman_adv: batadv0: Adding interface: batadv_slave_1
[  318.862577][ T6743] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  318.927220][ T6743] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  319.373914][   T11] bridge_slave_1: left allmulticast mode
[  319.379629][   T11] bridge_slave_1: left promiscuous mode
[  319.393748][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.420306][   T11] bridge_slave_0: left allmulticast mode
[  319.427383][   T11] bridge_slave_0: left promiscuous mode
[  319.443912][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.570254][   T11] bridge_slave_1: left allmulticast mode
[  319.607316][   T11] bridge_slave_1: left promiscuous mode
[  319.637590][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  319.665199][   T11] bridge_slave_0: left allmulticast mode
[  319.678659][   T11] bridge_slave_0: left promiscuous mode
[  319.691694][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  320.989981][ T6899] loop1: detected capacity change from 0 to 32768
[  321.033661][ T6899] XFS: ikeep mount option is deprecated.
[  321.039390][ T6899] XFS: noikeep mount option is deprecated.
[  321.310762][ T6899] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  322.030704][ T6899] workqueue: Failed to create a rescuer kthread for wq "xfs-cil/loop1": -EINTR
[  322.147911][ T6899] XFS (loop1): log mount failed
[  322.890567][ T6939] loop2: detected capacity change from 0 to 512
[  322.900715][ T6939] EXT4-fs: Invalid uid value -1
[  323.009446][ T6939] usb usb8: usbfs: process 6939 (syz.2.355) did not claim interface 0 before use
[  323.309498][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  323.357199][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  323.396415][   T11] bond0 (unregistering): Released all slaves
[  323.997947][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  324.051069][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  324.096190][   T11] bond0 (unregistering): Released all slaves
[  324.099531][ T6942] loop1: detected capacity change from 0 to 40427
[  324.116796][ T6942] F2FS-fs (loop1): invalid crc value
[  324.136602][ T6942] F2FS-fs (loop1): Found nat_bits in checkpoint
[  324.254867][ T6942] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4
[  324.968712][ T6951] syz.1.356: attempt to access beyond end of device
[  324.968712][ T6951] loop1: rw=2049, sector=54792, nr_sectors = 1544 limit=40427
[  325.054207][   T29] audit: type=1800 audit(1720045850.497:60): pid=6951 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.356" name="file2" dev="loop1" ino=10 res=0 errno=0
[  325.440632][ T6743] hsr_slave_0: entered promiscuous mode
[  325.513522][ T6743] hsr_slave_1: entered promiscuous mode
[  325.522818][ T6743] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  325.522945][ T6743] Cannot create hsr debugfs directory
[  325.749820][ T6480] 8021q: adding VLAN 0 to HW filter on device bond0
[  325.775167][ T5728] syz-executor: attempt to access beyond end of device
[  325.775167][ T5728] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  325.775296][ T5728] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  325.832096][   T11] hsr_slave_0: left promiscuous mode
[  325.835442][   T11] hsr_slave_1: left promiscuous mode
[  325.836993][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  325.837063][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  325.838560][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  325.838604][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  325.873077][   T11] hsr_slave_0: left promiscuous mode
[  325.874420][   T11] hsr_slave_1: left promiscuous mode
[  325.875820][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  325.875893][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  325.877183][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  326.031650][   T11] veth1_macvtap: left promiscuous mode
[  326.112802][   T11] veth0_macvtap: left promiscuous mode
[  326.118709][   T11] veth1_vlan: left promiscuous mode
[  326.132270][   T11] veth0_vlan: left promiscuous mode
[  326.153806][   T11] veth1_macvtap: left promiscuous mode
[  326.159566][   T11] veth0_macvtap: left promiscuous mode
[  326.166820][   T11] veth1_vlan: left promiscuous mode
[  326.176603][   T11] veth0_vlan: left promiscuous mode
[  326.938275][ T6960] loop2: detected capacity change from 0 to 64
[  327.371501][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  327.383515][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  328.035352][ T6963] loop2: detected capacity change from 0 to 512
[  328.175671][ T6963] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  328.253351][ T6963] ext4 filesystem being mounted at /38/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  328.527238][ T6167] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  329.922646][   T11] team0 (unregistering): Port device team_slave_1 removed
[  330.028049][   T11] team0 (unregistering): Port device team_slave_0 removed
[  331.345862][ T6979] binder: 6978:6979 ioctl c0306201 20000580 returned -14
[  331.738474][ T4487] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  331.756503][ T4487] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  331.776893][ T4487] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  331.797127][ T4487] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  331.828379][ T4487] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  331.837392][ T4487] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  332.224525][   T11] team0 (unregistering): Port device team_slave_1 removed
[  332.281314][   T11] team0 (unregistering): Port device team_slave_0 removed
[  332.351649][ T6981] loop2: detected capacity change from 0 to 32768
[  332.381462][ T6981] XFS: ikeep mount option is deprecated.
[  332.401369][ T6981] XFS: noikeep mount option is deprecated.
[  332.546033][ T6981] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  332.644721][ T6981] XFS (loop2): Ending clean mount
[  332.662534][ T6981] XFS (loop2): Quotacheck needed: Please wait.
[  332.710418][ T6981] XFS (loop2): Quotacheck: Done.
[  332.835034][ T6167] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  333.630340][ T6995] loop1: detected capacity change from 0 to 512
[  333.692571][ T6995] EXT4-fs error (device loop1): ext4_orphan_get:1394: inode #15: comm syz.1.368: casefold flag without casefold feature
[  333.785902][ T6995] EXT4-fs error (device loop1): ext4_orphan_get:1397: comm syz.1.368: couldn't read orphan inode 15 (err -117)
[  333.808723][ T6995] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  333.962799][ T5114] Bluetooth: hci5: command tx timeout
[  334.244434][ T5728] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  336.032698][ T5114] Bluetooth: hci5: command tx timeout
[  336.295905][ T7022] ptrace attach of "./syz-executor exec"[7025] was attempted by "./syz-executor exec"[7022]
[  337.007558][ T4487] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  337.037353][ T4487] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  337.061521][ T4487] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  337.093202][ T4487] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  337.104951][ T4487] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  337.130903][ T4487] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  338.113841][ T5114] Bluetooth: hci5: command tx timeout
[  339.232278][ T5114] Bluetooth: hci1: command tx timeout
[  339.330907][ T6982] chnl_net:caif_netlink_parms(): no params data found
[  339.868399][ T7065] loop1: detected capacity change from 0 to 1024
[  339.878724][ T7065] hfsplus: unable to parse mount options
[  340.240942][ T5114] Bluetooth: hci5: command tx timeout
[  340.305379][ T6658] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  341.260141][ T6658] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  341.312304][ T5114] Bluetooth: hci1: command tx timeout
[  341.761495][ T6982] bridge0: port 1(bridge_slave_0) entered blocking state
[  341.792429][ T6982] bridge0: port 1(bridge_slave_0) entered disabled state
[  341.800982][ T6982] bridge_slave_0: entered allmulticast mode
[  341.805659][ T6982] bridge_slave_0: entered promiscuous mode
[  341.825717][ T6658] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  341.833498][ T6658] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  341.958988][ T6982] bridge0: port 2(bridge_slave_1) entered blocking state
[  341.959216][ T6982] bridge0: port 2(bridge_slave_1) entered disabled state
[  341.959517][ T6982] bridge_slave_1: entered allmulticast mode
[  341.969553][ T6982] bridge_slave_1: entered promiscuous mode
[  342.111381][ T6982] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  342.223984][ T6982] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  342.693063][ T6743] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  342.730483][ T6743] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  342.749484][ T6743] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  342.784966][ T6743] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  342.819587][ T7082] netlink: 8 bytes leftover after parsing attributes in process `syz.2.384'.
[  343.496524][ T4487] Bluetooth: hci1: command tx timeout
[  343.516259][ T6982] team0: Port device team_slave_0 added
[  343.568166][ T6982] team0: Port device team_slave_1 added
[  344.184293][ T7088] ptrace attach of "./syz-executor exec"[7089] was attempted by "./syz-executor exec"[7088]
[  344.562765][ T6982] batman_adv: batadv0: Adding interface: batadv_slave_0
[  344.569805][ T6982] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  344.685172][ T6982] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  344.725663][ T6982] batman_adv: batadv0: Adding interface: batadv_slave_1
[  344.756619][ T6982] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  344.877025][ T6982] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  345.172090][ T7098] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  345.566726][ T4487] Bluetooth: hci1: command tx timeout
[  345.815018][ T7032] chnl_net:caif_netlink_parms(): no params data found
[  346.364394][ T6982] hsr_slave_0: entered promiscuous mode
[  346.373345][ T6982] hsr_slave_1: entered promiscuous mode
[  346.381080][ T6982] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  346.412397][ T6982] Cannot create hsr debugfs directory
[  348.501608][ T7032] bridge0: port 1(bridge_slave_0) entered blocking state
[  348.509444][ T7032] bridge0: port 1(bridge_slave_0) entered disabled state
[  348.509770][ T7032] bridge_slave_0: entered allmulticast mode
[  348.513658][ T7032] bridge_slave_0: entered promiscuous mode
[  348.607730][ T7032] bridge0: port 2(bridge_slave_1) entered blocking state
[  348.635380][ T7032] bridge0: port 2(bridge_slave_1) entered disabled state
[  348.654048][ T7032] bridge_slave_1: entered allmulticast mode
[  348.683855][ T7032] bridge_slave_1: entered promiscuous mode
[  348.857455][ T7116] loop2: detected capacity change from 0 to 1024
[  348.913860][ T7116] hfsplus: unable to parse mount options
[  349.191030][ T7118] netlink: 8 bytes leftover after parsing attributes in process `syz.1.393'.
[  349.225442][ T7118] loop1: detected capacity change from 0 to 128
[  349.247579][ T7118] hpfs: bad mount options.
[  351.240728][ T5114] Bluetooth: hci0: command 0x0406 tx timeout
[  352.765223][ T7032] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  353.087419][   T11] bridge_slave_1: left allmulticast mode
[  353.093542][   T11] bridge_slave_1: left promiscuous mode
[  353.113008][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  353.167497][   T11] bridge_slave_0: left allmulticast mode
[  353.187488][   T11] bridge_slave_0: left promiscuous mode
[  353.215150][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.296705][   T11] bridge_slave_1: left allmulticast mode
[  353.309019][   T11] bridge_slave_1: left promiscuous mode
[  353.325848][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  353.369374][   T11] bridge_slave_0: left allmulticast mode
[  353.387656][   T11] bridge_slave_0: left promiscuous mode
[  353.403248][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  353.918125][ T5114] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  353.948591][ T5114] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  353.957512][ T5114] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  353.978560][ T5114] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  353.987481][ T5114] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  354.330038][ T5114] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  355.621722][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  355.652728][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  355.676427][   T11] bond0 (unregistering): Released all slaves
[  355.829341][ T7132] loop1: detected capacity change from 0 to 32768
[  355.845023][ T7132] btrfs: Deprecated parameter 'usebackuproot'
[  355.851190][ T7132] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  355.882162][ T7132] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.397 (7132)
[  355.986300][ T7132] BTRFS info (device loop1): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  356.020120][ T7132] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm
[  356.031692][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  356.049777][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  356.059440][ T7132] BTRFS info (device loop1): using free-space-tree
[  356.089352][   T11] bond0 (unregistering): Released all slaves
[  356.237259][ T7032] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  356.432207][ T4487] Bluetooth: hci4: command tx timeout
[  356.604115][ T7132] BTRFS info (device loop1): rebuilding free space tree
[  356.721075][ T7132] BTRFS info (device loop1): checking UUID tree
[  356.952955][   T11] hsr_slave_0: left promiscuous mode
[  356.966854][   T11] hsr_slave_1: left promiscuous mode
[  356.983026][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  357.043029][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  357.102051][   T11] hsr_slave_0: left promiscuous mode
[  357.128492][   T11] hsr_slave_1: left promiscuous mode
[  357.152185][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  357.183029][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  357.242808][ T5728] BTRFS info (device loop1): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  357.930117][   T11] team0 (unregistering): Port device team_slave_1 removed
[  357.973952][   T11] team0 (unregistering): Port device team_slave_0 removed
[  358.522117][ T4487] Bluetooth: hci4: command tx timeout
[  358.650786][   T11] team0 (unregistering): Port device team_slave_1 removed
[  358.697376][   T11] team0 (unregistering): Port device team_slave_0 removed
[  359.250410][ T7032] team0: Port device team_slave_0 added
[  359.290019][ T6743] 8021q: adding VLAN 0 to HW filter on device bond0
[  359.379896][ T7032] team0: Port device team_slave_1 added
[  359.623155][ T7032] batman_adv: batadv0: Adding interface: batadv_slave_0
[  359.630404][ T7032] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.741739][ T7032] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  359.778237][ T7032] batman_adv: batadv0: Adding interface: batadv_slave_1
[  359.799306][ T5114] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  359.804879][ T7032] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  359.838942][ T5114] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  359.849624][ T5114] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  359.862583][ T5114] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  359.873179][ T7032] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  359.894598][ T5114] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  359.907081][ T5114] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  359.939299][ T6743] 8021q: adding VLAN 0 to HW filter on device team0
[  360.329995][ T7032] hsr_slave_0: entered promiscuous mode
[  360.346270][ T7032] hsr_slave_1: entered promiscuous mode
[  360.369332][ T5106] bridge0: port 1(bridge_slave_0) entered blocking state
[  360.376865][ T5106] bridge0: port 1(bridge_slave_0) entered forwarding state
[  360.601891][ T5114] Bluetooth: hci4: command tx timeout
[  360.722377][   T29] audit: type=1326 audit(1720045886.397:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf77d75bd9 code=0x7ffc0000
[  360.749613][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  360.757006][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  360.768873][   T29] audit: type=1326 audit(1720045886.417:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7faf77d75bd9 code=0x7ffc0000
[  360.811992][   T29] audit: type=1326 audit(1720045886.417:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf77d75bd9 code=0x7ffc0000
[  360.897529][   T29] audit: type=1326 audit(1720045886.417:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faf77d75bd9 code=0x7ffc0000
[  362.027296][ T6982] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  362.042323][ T5114] Bluetooth: hci6: command tx timeout
[  362.081495][ T6982] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  362.291261][ T6982] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  362.350517][ T6982] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  362.672381][ T5114] Bluetooth: hci4: command tx timeout
[  362.915827][ T4487] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  362.935549][ T4487] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  362.953612][ T4487] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  362.965238][ T4487] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  363.003561][ T4487] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  363.014486][ T4487] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  363.633468][ T7178] loop1: detected capacity change from 0 to 4096
[  363.644867][ T7178] nilfs2: Unknown parameter 'Ž'
[  364.132480][ T4487] Bluetooth: hci6: command tx timeout
[  364.558527][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.773851][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  364.819616][ T7128] chnl_net:caif_netlink_parms(): no params data found
[  364.839736][ T7159] chnl_net:caif_netlink_parms(): no params data found
[  365.039659][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.072306][ T4487] Bluetooth: hci0: command tx timeout
[  365.256913][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  365.471241][ T7159] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.488661][ T7159] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.498620][ T7159] bridge_slave_0: entered allmulticast mode
[  365.507791][ T7159] bridge_slave_0: entered promiscuous mode
[  365.579458][ T7128] bridge0: port 1(bridge_slave_0) entered blocking state
[  365.596199][ T7128] bridge0: port 1(bridge_slave_0) entered disabled state
[  365.610468][ T7128] bridge_slave_0: entered allmulticast mode
[  365.619639][ T7128] bridge_slave_0: entered promiscuous mode
[  365.650212][ T7032] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  365.696647][ T7159] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.706268][ T7159] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.716140][ T7159] bridge_slave_1: entered allmulticast mode
[  365.726626][ T7159] bridge_slave_1: entered promiscuous mode
[  365.767720][ T7128] bridge0: port 2(bridge_slave_1) entered blocking state
[  365.779873][ T7128] bridge0: port 2(bridge_slave_1) entered disabled state
[  365.787354][ T7128] bridge_slave_1: entered allmulticast mode
[  365.796989][ T7128] bridge_slave_1: entered promiscuous mode
[  365.834758][ T7032] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  365.849966][ T7032] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  365.944714][ T7032] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  366.029663][ T7159] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.046856][ T7159] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.065943][ T7128] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  366.085374][ T6982] 8021q: adding VLAN 0 to HW filter on device bond0
[  366.192081][ T4487] Bluetooth: hci6: command tx timeout
[  366.214088][ T7128] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  366.420358][ T7128] team0: Port device team_slave_0 added
[  366.474869][ T7159] team0: Port device team_slave_0 added
[  366.488250][ T7174] chnl_net:caif_netlink_parms(): no params data found
[  366.509843][ T7128] team0: Port device team_slave_1 added
[  366.556014][ T7159] team0: Port device team_slave_1 added
[  366.890722][ T7159] batman_adv: batadv0: Adding interface: batadv_slave_0
[  366.898462][ T7159] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.928771][ T7159] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  366.956151][ T7159] batman_adv: batadv0: Adding interface: batadv_slave_1
[  366.964096][ T7159] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  366.990803][ T7159] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  367.041632][ T7128] batman_adv: batadv0: Adding interface: batadv_slave_0
[  367.048865][ T7128] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  367.075750][ T7128] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  367.090338][ T7128] batman_adv: batadv0: Adding interface: batadv_slave_1
[  367.097502][ T7128] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  367.123648][ T7128] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  367.152475][ T4487] Bluetooth: hci0: command tx timeout
[  367.202334][ T6982] 8021q: adding VLAN 0 to HW filter on device team0
[  367.421212][  T780] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.428599][  T780] bridge0: port 1(bridge_slave_0) entered forwarding state
[  367.551540][ T7128] hsr_slave_0: entered promiscuous mode
[  367.560216][ T7128] hsr_slave_1: entered promiscuous mode
[  367.571576][ T7128] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  367.579571][ T7128] Cannot create hsr debugfs directory
[  367.610560][ T5034] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.617897][ T5034] bridge0: port 2(bridge_slave_1) entered forwarding state
[  367.654620][ T7159] hsr_slave_0: entered promiscuous mode
[  367.663323][ T7159] hsr_slave_1: entered promiscuous mode
[  367.670196][ T7159] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  367.678357][ T7159] Cannot create hsr debugfs directory
[  367.739408][ T7174] bridge0: port 1(bridge_slave_0) entered blocking state
[  367.749631][ T7174] bridge0: port 1(bridge_slave_0) entered disabled state
[  367.759737][ T7174] bridge_slave_0: entered allmulticast mode
[  367.769106][ T7174] bridge_slave_0: entered promiscuous mode
[  367.780145][ T7174] bridge0: port 2(bridge_slave_1) entered blocking state
[  367.788992][ T7174] bridge0: port 2(bridge_slave_1) entered disabled state
[  367.797098][ T7174] bridge_slave_1: entered allmulticast mode
[  367.807832][ T7174] bridge_slave_1: entered promiscuous mode
[  368.038829][ T7174] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  368.063346][ T7174] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  368.272504][ T4487] Bluetooth: hci6: command tx timeout
[  368.296656][ T7174] team0: Port device team_slave_0 added
[  368.324726][ T7174] team0: Port device team_slave_1 added
[  368.607601][ T7174] batman_adv: batadv0: Adding interface: batadv_slave_0
[  368.618378][ T7174] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  368.647450][ T7174] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  368.721727][   T11] bridge_slave_1: left allmulticast mode
[  368.728280][   T11] bridge_slave_1: left promiscuous mode
[  368.734738][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.747406][   T11] bridge_slave_0: left allmulticast mode
[  368.754015][   T11] bridge_slave_0: left promiscuous mode
[  368.759940][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  368.783239][   T11] bridge_slave_1: left allmulticast mode
[  368.788948][   T11] bridge_slave_1: left promiscuous mode
[  368.795026][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  368.806613][   T11] bridge_slave_0: left allmulticast mode
[  368.812410][   T11] bridge_slave_0: left promiscuous mode
[  368.818576][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  369.238284][ T4487] Bluetooth: hci0: command tx timeout
[  369.632309][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  369.652902][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  369.674001][   T11] bond0 (unregistering): Released all slaves
[  369.698721][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  369.713772][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  369.734729][   T11] bond0 (unregistering): Released all slaves
[  369.774868][ T7174] batman_adv: batadv0: Adding interface: batadv_slave_1
[  369.791289][ T7174] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  369.831951][ T7174] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  370.217319][ T7174] hsr_slave_0: entered promiscuous mode
[  370.227244][ T7174] hsr_slave_1: entered promiscuous mode
[  370.236301][ T7174] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  370.244212][ T7174] Cannot create hsr debugfs directory
[  370.663027][   T11] hsr_slave_0: left promiscuous mode
[  370.679433][   T11] hsr_slave_1: left promiscuous mode
[  370.702874][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  370.710345][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  370.721523][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  370.741557][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  370.772988][   T11] hsr_slave_0: left promiscuous mode
[  370.792055][   T11] hsr_slave_1: left promiscuous mode
[  370.805858][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  370.815126][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  370.851721][   T11] veth1_macvtap: left promiscuous mode
[  370.857470][   T11] veth0_macvtap: left promiscuous mode
[  370.863806][   T11] veth1_vlan: left promiscuous mode
[  370.869268][   T11] veth0_vlan: left promiscuous mode
[  371.319353][ T4487] Bluetooth: hci0: command tx timeout
[  371.669993][   T11] team0 (unregistering): Port device team_slave_1 removed
[  371.742547][   T11] team0 (unregistering): Port device team_slave_0 removed
[  372.605453][   T11] team0 (unregistering): Port device team_slave_1 removed
[  372.650862][   T11] team0 (unregistering): Port device team_slave_0 removed
[  373.008520][ T7032] 8021q: adding VLAN 0 to HW filter on device bond0
[  373.297467][ T7032] 8021q: adding VLAN 0 to HW filter on device team0
[  373.342572][ T5169] bridge0: port 1(bridge_slave_0) entered blocking state
[  373.349894][ T5169] bridge0: port 1(bridge_slave_0) entered forwarding state
[  373.429736][ T5169] bridge0: port 2(bridge_slave_1) entered blocking state
[  373.437164][ T5169] bridge0: port 2(bridge_slave_1) entered forwarding state
[  373.719736][ T6982] 8021q: adding VLAN 0 to HW filter on device batadv0
[  373.950883][ T7128] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  374.081513][ T7128] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  374.160142][ T7128] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  374.265480][ T7128] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  374.926188][ T6982] veth0_vlan: entered promiscuous mode
[  375.120063][ T6982] veth1_vlan: entered promiscuous mode
[  375.267597][ T7032] 8021q: adding VLAN 0 to HW filter on device batadv0
[  375.336795][   T11] bridge_slave_1: left allmulticast mode
[  375.356942][   T11] bridge_slave_1: left promiscuous mode
[  375.372483][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  375.407480][   T11] bridge_slave_0: left allmulticast mode
[  375.422426][   T11] bridge_slave_0: left promiscuous mode
[  375.429161][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  376.339551][ T5114] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  376.351097][ T5114] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  376.362574][ T5114] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  376.372115][ T5114] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  376.384627][ T5114] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  376.402353][ T5114] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  376.658682][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  376.692740][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  376.718728][   T11] bond0 (unregistering): Released all slaves
[  377.146313][   T11] hsr_slave_0: left promiscuous mode
[  377.171570][   T11] hsr_slave_1: left promiscuous mode
[  377.195123][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  377.215598][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  377.841718][   T11] team0 (unregistering): Port device team_slave_1 removed
[  377.920894][   T11] team0 (unregistering): Port device team_slave_0 removed
[  378.516036][ T5114] Bluetooth: hci2: command tx timeout
[  378.695260][ T7159] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  378.709376][ T7159] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  378.727139][ T6982] veth0_macvtap: entered promiscuous mode
[  378.788483][ T7159] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  378.818525][ T7159] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  378.864403][ T6982] veth1_macvtap: entered promiscuous mode
[  378.999083][ T7128] 8021q: adding VLAN 0 to HW filter on device bond0
[  379.205038][ T6982] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  379.218762][ T6982] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.234354][ T6982] batman_adv: batadv0: Interface activated: batadv_slave_0
[  379.251710][ T6982] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  379.263022][ T6982] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  379.275667][ T6982] batman_adv: batadv0: Interface activated: batadv_slave_1
[  379.408549][ T7174] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  379.464472][ T7032] veth0_vlan: entered promiscuous mode
[  379.478514][ T6982] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  379.494902][ T6982] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  379.504692][ T6982] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  379.516396][ T6982] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  379.539360][ T7174] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  379.555320][ T7174] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  379.584203][ T7128] 8021q: adding VLAN 0 to HW filter on device team0
[  379.646413][   T11] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  379.676632][ T7174] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  379.706403][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state
[  379.713706][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state
[  379.745910][ T7032] veth1_vlan: entered promiscuous mode
[  379.806916][   T11] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  379.879435][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  379.886828][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  379.987128][   T11] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.168510][   T11] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  380.458823][ T7159] 8021q: adding VLAN 0 to HW filter on device bond0
[  380.507879][ T7032] veth0_macvtap: entered promiscuous mode
[  380.537748][ T7238] chnl_net:caif_netlink_parms(): no params data found
[  380.592414][ T5114] Bluetooth: hci2: command tx timeout
[  380.616429][ T7032] veth1_macvtap: entered promiscuous mode
[  380.689794][ T2482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  380.721012][ T2482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  381.042696][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  381.050769][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  381.063797][   T11] bridge_slave_0: left allmulticast mode
[  381.069542][   T11] bridge_slave_0: left promiscuous mode
[  381.087891][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.630036][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  381.647610][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  381.661713][   T11] bond0 (unregistering): Released all slaves
[  381.689158][ T7032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  381.700216][ T7032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.710863][ T7032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  381.727925][ T7032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  381.741204][ T7032] batman_adv: batadv0: Interface activated: batadv_slave_0
[  381.755051][ T7159] 8021q: adding VLAN 0 to HW filter on device team0
[  381.895723][ T7238] bridge0: port 1(bridge_slave_0) entered blocking state
[  381.911492][ T7238] bridge0: port 1(bridge_slave_0) entered disabled state
[  381.920426][ T7238] bridge_slave_0: entered allmulticast mode
[  381.929733][ T7238] bridge_slave_0: entered promiscuous mode
[  381.954317][ T7238] bridge0: port 2(bridge_slave_1) entered blocking state
[  381.961635][ T7238] bridge0: port 2(bridge_slave_1) entered disabled state
[  381.971387][ T7238] bridge_slave_1: entered allmulticast mode
[  381.980532][ T7238] bridge_slave_1: entered promiscuous mode
[  382.117968][ T5162] bridge0: port 1(bridge_slave_0) entered blocking state
[  382.125318][ T5162] bridge0: port 1(bridge_slave_0) entered forwarding state
[  382.256956][ T7032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  382.269191][ T7032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  382.280460][ T7032] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  382.292048][ T7032] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  382.312928][ T7032] batman_adv: batadv0: Interface activated: batadv_slave_1
[  382.438763][ T7238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  382.466266][ T5196] bridge0: port 2(bridge_slave_1) entered blocking state
[  382.473625][ T5196] bridge0: port 2(bridge_slave_1) entered forwarding state
[  382.560244][ T7238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  382.673728][ T5114] Bluetooth: hci2: command tx timeout
[  382.702961][ T7238] team0: Port device team_slave_0 added
[  382.727301][ T7238] team0: Port device team_slave_1 added
[  382.756208][ T7032] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  382.765656][ T7032] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  382.778815][ T7032] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  382.788621][ T7032] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  382.864207][   T11] hsr_slave_0: left promiscuous mode
[  382.888938][   T11] hsr_slave_1: left promiscuous mode
[  382.908188][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  382.931912][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  382.950156][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  382.960650][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  383.038591][   T11] veth1_macvtap: left promiscuous mode
[  383.044588][   T11] veth0_macvtap: left promiscuous mode
[  383.050318][   T11] veth1_vlan: left promiscuous mode
[  383.057726][   T11] veth0_vlan: left promiscuous mode
[  384.014294][ T4487] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  384.035060][ T4487] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  384.046240][ T4487] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  384.050687][   T11] team0 (unregistering): Port device team_slave_1 removed
[  384.088429][ T4487] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  384.119966][ T4487] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  384.131767][   T11] team0 (unregistering): Port device team_slave_0 removed
[  384.144731][ T4487] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  384.766073][ T5114] Bluetooth: hci2: command tx timeout
[  384.999561][ T7238] batman_adv: batadv0: Adding interface: batadv_slave_0
[  385.008394][ T7238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.035399][ T7238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  385.100493][ T7174] 8021q: adding VLAN 0 to HW filter on device bond0
[  385.167039][ T7238] batman_adv: batadv0: Adding interface: batadv_slave_1
[  385.185132][ T7238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.212218][ T7238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  385.291038][ T7128] 8021q: adding VLAN 0 to HW filter on device batadv0
[  385.360790][ T7174] 8021q: adding VLAN 0 to HW filter on device team0
[  385.627251][  T780] bridge0: port 1(bridge_slave_0) entered blocking state
[  385.634730][  T780] bridge0: port 1(bridge_slave_0) entered forwarding state
[  385.696915][ T7238] hsr_slave_0: entered promiscuous mode
[  385.722583][ T7238] hsr_slave_1: entered promiscuous mode
[  385.752403][ T7238] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  385.760302][ T7238] Cannot create hsr debugfs directory
[  385.913283][  T780] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.920587][  T780] bridge0: port 2(bridge_slave_1) entered forwarding state
[  386.193642][ T5114] Bluetooth: hci3: command tx timeout
[  386.269710][ T2482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.316915][ T2482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  386.479126][   T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.744088][   T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  386.782151][ T2454] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  386.790053][ T2454] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  387.007812][   T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.338413][   T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  387.524016][ T7159] 8021q: adding VLAN 0 to HW filter on device batadv0
[  388.198113][ T7278] chnl_net:caif_netlink_parms(): no params data found
[  388.272089][ T5114] Bluetooth: hci3: command tx timeout
[  388.443701][   T11] bridge_slave_1: left allmulticast mode
[  388.450216][   T11] bridge_slave_1: left promiscuous mode
[  388.457559][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  388.474015][   T11] bridge_slave_0: left allmulticast mode
[  388.479833][   T11] bridge_slave_0: left promiscuous mode
[  388.486050][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  388.682501][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  388.689021][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  389.070362][ T4487] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  389.084663][ T4487] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  389.094342][ T4487] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  389.107142][ T4487] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  389.116065][ T4487] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  389.127187][ T4487] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  389.337289][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  389.350783][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  389.373852][   T11] bond0 (unregistering): Released all slaves
[  389.535396][ T7128] veth0_vlan: entered promiscuous mode
[  389.825497][ T7278] bridge0: port 1(bridge_slave_0) entered blocking state
[  389.833000][ T7278] bridge0: port 1(bridge_slave_0) entered disabled state
[  389.840356][ T7278] bridge_slave_0: entered allmulticast mode
[  389.854485][ T7278] bridge_slave_0: entered promiscuous mode
[  389.944754][ T7278] bridge0: port 2(bridge_slave_1) entered blocking state
[  389.953849][ T7278] bridge0: port 2(bridge_slave_1) entered disabled state
[  389.961188][ T7278] bridge_slave_1: entered allmulticast mode
[  389.972410][ T7278] bridge_slave_1: entered promiscuous mode
[  390.017848][ T7128] veth1_vlan: entered promiscuous mode
[  390.093667][ T7159] veth0_vlan: entered promiscuous mode
[  390.286273][ T7278] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  390.339452][ T7174] 8021q: adding VLAN 0 to HW filter on device batadv0
[  390.352120][ T5114] Bluetooth: hci3: command tx timeout
[  390.371212][   T11] hsr_slave_0: left promiscuous mode
[  390.380927][   T11] hsr_slave_1: left promiscuous mode
[  390.388605][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  390.397605][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  390.407477][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  390.415085][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  390.456739][   T11] veth1_macvtap: left promiscuous mode
[  390.462800][   T11] veth0_macvtap: left promiscuous mode
[  390.468627][   T11] veth1_vlan: left promiscuous mode
[  390.474304][   T11] veth0_vlan: left promiscuous mode
[  391.248514][ T5114] Bluetooth: hci1: command tx timeout
[  391.327131][   T11] team0 (unregistering): Port device team_slave_1 removed
[  391.397457][   T11] team0 (unregistering): Port device team_slave_0 removed
[  392.137062][ T7159] veth1_vlan: entered promiscuous mode
[  392.165477][ T7238] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  392.204264][ T7278] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  392.287450][ T7238] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  392.381697][ T7238] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  392.411492][ T7278] team0: Port device team_slave_0 added
[  392.429144][ T7278] team0: Port device team_slave_1 added
[  392.435167][ T5114] Bluetooth: hci3: command tx timeout
[  392.471956][ T7238] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  392.601020][ T7278] batman_adv: batadv0: Adding interface: batadv_slave_0
[  392.622057][ T7278] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.651268][ T7278] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  392.725437][ T7278] batman_adv: batadv0: Adding interface: batadv_slave_1
[  392.737054][ T7278] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  392.764763][ T7278] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  392.877385][ T7128] veth0_macvtap: entered promiscuous mode
[  393.110709][ T7128] veth1_macvtap: entered promiscuous mode
[  393.137947][ T7278] hsr_slave_0: entered promiscuous mode
[  393.148697][ T7278] hsr_slave_1: entered promiscuous mode
[  393.156612][ T7278] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  393.165230][ T7278] Cannot create hsr debugfs directory
[  393.313478][ T5114] Bluetooth: hci1: command tx timeout
[  393.390801][ T7159] veth0_macvtap: entered promiscuous mode
[  393.567474][ T7174] veth0_vlan: entered promiscuous mode
[  393.585074][ T7159] veth1_macvtap: entered promiscuous mode
[  393.967809][ T7128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  393.980245][ T7128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.003787][ T7128] batman_adv: batadv0: Interface activated: batadv_slave_0
[  394.012914][ T7174] veth1_vlan: entered promiscuous mode
[  394.037150][ T7312] chnl_net:caif_netlink_parms(): no params data found
[  394.059038][ T7159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.069964][ T7159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.079957][ T7159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  394.090487][ T7159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.103628][ T7159] batman_adv: batadv0: Interface activated: batadv_slave_0
[  394.120354][ T7159] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.130946][ T7159] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.144553][ T7159] batman_adv: batadv0: Interface activated: batadv_slave_1
[  394.227288][   T11] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.329666][ T7128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.343671][ T7128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.356005][ T7128] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  394.367527][ T7128] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  394.383958][ T7128] batman_adv: batadv0: Interface activated: batadv_slave_1
[  394.415705][   T11] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.514186][   T11] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.634073][   T11] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  394.675989][ T7128] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  394.687918][ T7128] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  394.700574][ T7128] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  394.710142][ T7128] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  394.744556][ T7159] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  394.760677][ T7159] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  394.770017][ T7159] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  394.780862][ T7159] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  394.961377][ T7312] bridge0: port 1(bridge_slave_0) entered blocking state
[  394.976374][ T7312] bridge0: port 1(bridge_slave_0) entered disabled state
[  394.987380][ T7312] bridge_slave_0: entered allmulticast mode
[  395.004853][ T7312] bridge_slave_0: entered promiscuous mode
[  395.207270][ T7312] bridge0: port 2(bridge_slave_1) entered blocking state
[  395.215254][ T7312] bridge0: port 2(bridge_slave_1) entered disabled state
[  395.225238][ T7312] bridge_slave_1: entered allmulticast mode
[  395.234171][ T7312] bridge_slave_1: entered promiscuous mode
[  395.374268][ T7312] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  395.392040][ T5114] Bluetooth: hci1: command tx timeout
[  395.456126][ T7312] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  395.601735][ T7238] 8021q: adding VLAN 0 to HW filter on device bond0
[  395.666656][ T7312] team0: Port device team_slave_0 added
[  395.779185][ T7312] team0: Port device team_slave_1 added
[  395.923542][ T7312] batman_adv: batadv0: Adding interface: batadv_slave_0
[  395.930603][ T7312] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  395.993988][ T7312] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  396.080284][  T983] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  396.107189][  T983] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  396.109632][ T7312] batman_adv: batadv0: Adding interface: batadv_slave_1
[  396.123313][ T7312] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  396.150143][ T7312] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  396.176530][   T11] bridge_slave_1: left allmulticast mode
[  396.188203][   T11] bridge_slave_1: left promiscuous mode
[  396.195296][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  396.213350][   T11] bridge_slave_0: left allmulticast mode
[  396.219143][   T11] bridge_slave_0: left promiscuous mode
[  396.225625][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  396.739449][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  396.760713][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  396.780022][   T11] bond0 (unregistering): Released all slaves
[  396.806097][ T7238] 8021q: adding VLAN 0 to HW filter on device team0
[  396.859876][ T7174] veth0_macvtap: entered promiscuous mode
[  397.045487][ T3575] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  397.058787][ T3575] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  397.169292][   T25] bridge0: port 1(bridge_slave_0) entered blocking state
[  397.176653][   T25] bridge0: port 1(bridge_slave_0) entered forwarding state
[  397.197989][ T7312] hsr_slave_0: entered promiscuous mode
[  397.206137][ T7312] hsr_slave_1: entered promiscuous mode
[  397.215883][ T7312] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  397.223855][ T7312] Cannot create hsr debugfs directory
[  397.238367][ T7174] veth1_macvtap: entered promiscuous mode
[  397.472092][ T5114] Bluetooth: hci1: command tx timeout
[  397.492152][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  397.500084][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  397.559983][ T5034] bridge0: port 2(bridge_slave_1) entered blocking state
[  397.567303][ T5034] bridge0: port 2(bridge_slave_1) entered forwarding state
[  397.601652][ T3575] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  397.603230][ T7278] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  397.616542][ T3575] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  397.698566][ T7278] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  397.763645][ T7278] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  397.809704][ T7174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.842153][ T7174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.873914][ T7174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.896199][ T7174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  397.934027][ T7174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  397.961905][ T7174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  398.004378][ T7174] batman_adv: batadv0: Interface activated: batadv_slave_0
[  398.013491][ T7345] loop2: detected capacity change from 0 to 512
[  398.039736][   T11] hsr_slave_0: left promiscuous mode
[  398.050687][   T11] hsr_slave_1: left promiscuous mode
[  398.073822][ T7345] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.399: invalid block
[  398.095555][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  398.103623][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  398.118420][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  398.127225][ T7345] EXT4-fs error (device loop2): ext4_free_branches:1027: inode #11: comm syz.2.399: invalid indirect mapped block 4294967295 (level 1)
[  398.132215][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  398.161637][ T7345] EXT4-fs error (device loop2): ext4_free_branches:1027: inode #11: comm syz.2.399: invalid indirect mapped block 4294967295 (level 1)
[  398.178616][ T7345] EXT4-fs (loop2): 2 truncates cleaned up
[  398.188001][ T7345] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  398.234471][   T11] veth1_macvtap: left promiscuous mode
[  398.240274][   T11] veth0_macvtap: left promiscuous mode
[  398.246511][   T11] veth1_vlan: left promiscuous mode
[  398.252201][   T11] veth0_vlan: left promiscuous mode
[  400.974139][ T7159] EXT4-fs error (device loop2): ext4_lookup:1854: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[  401.010854][ T7159] EXT4-fs error (device loop2): ext4_lookup:1854: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[  401.952437][ T7347] EXT4-fs error (device loop2): ext4_validate_block_bitmap:431: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  401.983616][   T11] team0 (unregistering): Port device team_slave_1 removed
[  402.034304][   T11] team0 (unregistering): Port device team_slave_0 removed
[  402.619959][ T7278] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  402.670106][ T7348] netlink: 12 bytes leftover after parsing attributes in process `syz.4.227'.
[  402.928872][ T7174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.940206][ T7174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.950759][ T7174] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  402.961849][ T7174] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  402.980849][ T7159] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  402.986139][ T7174] batman_adv: batadv0: Interface activated: batadv_slave_1
[  403.038241][ T7174] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  403.063520][ T7174] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  403.079409][ T7174] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  403.101897][ T7174] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  403.698733][   T29] audit: type=1326 audit(1720045929.367:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f242af75bd9 code=0x7ffc0000
[  403.813503][   T29] audit: type=1326 audit(1720045929.367:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f242af75bd9 code=0x7ffc0000
[  403.860712][   T29] audit: type=1326 audit(1720045929.367:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f242af75bd9 code=0x7ffc0000
[  403.913784][   T29] audit: type=1326 audit(1720045929.367:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7361 comm="" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f242af75bd9 code=0x7ffc0000
[  404.415444][ T2482] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  404.458029][  T983] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  404.485224][ T2482] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  404.731082][  T983] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  405.582558][ T4487] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  405.602578][ T4487] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  405.617188][ T4487] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  405.648740][ T4487] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  405.672488][ T4487] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  405.681357][ T4487] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  405.874690][ T7377] loop3: detected capacity change from 0 to 4096
[  405.882621][ T7377] nilfs2: Unknown parameter 'Ž'
[  405.919134][   T11] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.466060][   T11] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.574997][ T7278] 8021q: adding VLAN 0 to HW filter on device bond0
[  406.838990][   T11] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  406.999615][ T7373] loop4: detected capacity change from 0 to 32768
[  407.033343][ T7373] btrfs: Deprecated parameter 'usebackuproot'
[  407.052271][ T7373] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  407.086980][ T7373] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.415 (7373)
[  407.105938][   T11] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  407.134381][ T7373] BTRFS info (device loop4): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  407.160844][ T7278] 8021q: adding VLAN 0 to HW filter on device team0
[  407.168358][ T7373] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  407.200198][ T7373] BTRFS info (device loop4): using free-space-tree
[  407.219490][ T7238] 8021q: adding VLAN 0 to HW filter on device batadv0
[  407.385808][ T7312] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  407.533067][ T7373] BTRFS info (device loop4): rebuilding free space tree
[  407.615056][ T7373] BTRFS info (device loop4): checking UUID tree
[  407.634614][ T7312] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  407.696967][ T7312] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  407.792143][ T5114] Bluetooth: hci5: command tx timeout
[  407.815798][ T7401] block device autoloading is deprecated and will be removed.
[  407.827521][ T7401] syz.3.420: attempt to access beyond end of device
[  407.827521][ T7401] loop16: rw=2048, sector=0, nr_sectors = 8 limit=0
[  407.876037][ T7312] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  407.934964][ T5165] bridge0: port 1(bridge_slave_0) entered blocking state
[  407.942355][ T5165] bridge0: port 1(bridge_slave_0) entered forwarding state
[  408.031754][ T7128] BTRFS info (device loop4): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  408.233258][   T57] bridge0: port 2(bridge_slave_1) entered blocking state
[  408.240580][   T57] bridge0: port 2(bridge_slave_1) entered forwarding state
[  409.275481][   T11] bridge_slave_1: left allmulticast mode
[  409.281294][   T11] bridge_slave_1: left promiscuous mode
[  409.296991][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  409.345604][   T11] bridge_slave_0: left allmulticast mode
[  409.351486][   T11] bridge_slave_0: left promiscuous mode
[  409.368128][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  409.892651][ T5114] Bluetooth: hci5: command tx timeout
[  411.217877][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  411.231351][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  411.247009][   T11] bond0 (unregistering): Released all slaves
[  411.277975][ T7422] netlink: 12 bytes leftover after parsing attributes in process `syz.4.421'.
[  411.555934][ T5114] Bluetooth: hci0: Controller not accepting commands anymore: ncmd = 0
[  411.568495][ T5114] Bluetooth: hci0: Injecting HCI hardware error event
[  411.579793][ T5114] Bluetooth: hci0: hardware error 0x00
[  411.662705][ T7443] loop3: detected capacity change from 0 to 128
[  411.782799][   T29] audit: type=1800 audit(1720045937.457:69): pid=7443 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.428" name="bus" dev="loop3" ino=1048646 res=0 errno=0
[  411.819573][ T7370] chnl_net:caif_netlink_parms(): no params data found
[  411.896714][ T7238] veth0_vlan: entered promiscuous mode
[  411.952275][ T4487] Bluetooth: hci5: command tx timeout
[  411.969286][ T7443] syz.3.428: attempt to access beyond end of device
[  411.969286][ T7443] loop3: rw=2049, sector=417, nr_sectors = 1 limit=128
[  412.026105][ T7446] syz.3.428: attempt to access beyond end of device
[  412.026105][ T7446] loop3: rw=0, sector=417, nr_sectors = 1 limit=128
[  412.474677][ T7455] syz.4.432: attempt to access beyond end of device
[  412.474677][ T7455] loop16: rw=2048, sector=0, nr_sectors = 8 limit=0
[  412.574253][ T7238] veth1_vlan: entered promiscuous mode
[  412.866081][   T11] hsr_slave_0: left promiscuous mode
[  412.982845][   T11] hsr_slave_1: left promiscuous mode
[  413.032036][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  413.039558][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  413.115305][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  413.162159][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  413.307742][   T11] veth1_macvtap: left promiscuous mode
[  413.361438][ T7472] NILFS (nullb0): couldn't find nilfs on the device
[  413.483954][   T11] veth0_macvtap: left promiscuous mode
[  413.588434][   T11] veth1_vlan: left promiscuous mode
[  413.633126][ T5114] Bluetooth: hci0: Opcode 0x0c03 failed: -110
[  413.697018][   T11] veth0_vlan: left promiscuous mode
[  414.032818][ T5114] Bluetooth: hci5: command tx timeout
[  414.229530][ T7458] loop3: detected capacity change from 0 to 32768
[  414.239297][ T7458] btrfs: Deprecated parameter 'usebackuproot'
[  414.245576][ T7458] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  414.262121][ T7458] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.431 (7458)
[  414.332781][ T7458] BTRFS info (device loop3): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  414.372328][ T7458] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  414.380853][ T7458] BTRFS info (device loop3): using free-space-tree
[  414.623829][ T7458] BTRFS info (device loop3): rebuilding free space tree
[  414.685452][ T7458] BTRFS info (device loop3): checking UUID tree
[  414.974848][ T7174] BTRFS info (device loop3): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  415.777804][   T11] team0 (unregistering): Port device team_slave_1 removed
[  415.944682][   T11] team0 (unregistering): Port device team_slave_0 removed
[  415.987451][ T7499] loop3: detected capacity change from 0 to 512
[  416.056161][ T7499] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  416.082091][ T7499] ext4 filesystem being mounted at /15/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  416.156903][ T7499] EXT4-fs error (device loop3): ext4_do_update_inode:5075: inode #2: comm syz.3.436: corrupted inode contents
[  416.179315][ T7499] EXT4-fs error (device loop3): ext4_dirty_inode:5935: inode #2: comm syz.3.436: mark_inode_dirty error
[  416.211320][ T7499] EXT4-fs error (device loop3): ext4_do_update_inode:5075: inode #2: comm syz.3.436: corrupted inode contents
[  416.239517][ T7499] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.436: mark_inode_dirty error
[  416.432412][ T5114] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  416.444959][ T5114] Bluetooth: hci4: Injecting HCI hardware error event
[  416.446827][ T7174] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.455028][ T4487] Bluetooth: hci4: hardware error 0x00
[  418.005175][ T7510] netlink: 'syz.3.438': attribute type 8 has an invalid length.
[  418.018834][ T7510] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  418.128344][ T7312] 8021q: adding VLAN 0 to HW filter on device bond0
[  418.542754][ T7370] bridge0: port 1(bridge_slave_0) entered blocking state
[  418.549986][ T7370] bridge0: port 1(bridge_slave_0) entered disabled state
[  418.582656][ T7370] bridge_slave_0: entered allmulticast mode
[  418.591976][ T4487] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  418.612773][ T7370] bridge_slave_0: entered promiscuous mode
[  418.631229][ T7370] bridge0: port 2(bridge_slave_1) entered blocking state
[  418.691716][ T7370] bridge0: port 2(bridge_slave_1) entered disabled state
[  418.735245][ T7370] bridge_slave_1: entered allmulticast mode
[  418.769293][ T7370] bridge_slave_1: entered promiscuous mode
[  418.884847][ T7520] netlink: 12 bytes leftover after parsing attributes in process `syz.4.440'.
[  419.037487][ T7370] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  419.120894][ T7312] 8021q: adding VLAN 0 to HW filter on device team0
[  419.176546][ T7370] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  419.760782][ T7523] loop4: detected capacity change from 0 to 40427
[  419.808364][ T7238] veth0_macvtap: entered promiscuous mode
[  419.833094][ T7523] F2FS-fs (loop4): invalid crc value
[  419.869300][ T7523] F2FS-fs (loop4): Found nat_bits in checkpoint
[  419.977315][ T7523] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  420.005751][ T7370] team0: Port device team_slave_0 added
[  420.018540][ T7370] team0: Port device team_slave_1 added
[  420.348543][ T5108] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.355956][ T5108] bridge0: port 1(bridge_slave_0) entered forwarding state
[  420.838085][ T7529] syz.4.441: attempt to access beyond end of device
[  420.838085][ T7529] loop4: rw=2049, sector=54792, nr_sectors = 1544 limit=40427
[  420.879393][   T29] audit: type=1800 audit(1720045946.107:70): pid=7529 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.441" name="file2" dev="loop4" ino=10 res=0 errno=0
[  421.524494][ T7128] syz-executor: attempt to access beyond end of device
[  421.524494][ T7128] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  421.576636][ T7128] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  421.671387][ T7278] 8021q: adding VLAN 0 to HW filter on device batadv0
[  421.693998][ T7238] veth1_macvtap: entered promiscuous mode
[  421.739887][ T7370] batman_adv: batadv0: Adding interface: batadv_slave_0
[  421.752101][ T7370] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  421.781194][ T7370] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  421.867772][ T7370] batman_adv: batadv0: Adding interface: batadv_slave_1
[  421.877144][ T7370] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  421.906030][ T7370] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  421.924451][ T5991] bridge0: port 2(bridge_slave_1) entered blocking state
[  421.931781][ T5991] bridge0: port 2(bridge_slave_1) entered forwarding state
[  422.401725][ T7370] hsr_slave_0: entered promiscuous mode
[  422.421147][ T7370] hsr_slave_1: entered promiscuous mode
[  422.466230][ T7238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  422.497657][ T7238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.528642][ T7238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  422.562273][ T7238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.585704][ T7238] batman_adv: batadv0: Interface activated: batadv_slave_0
[  422.775685][ T7238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  422.814217][ T7238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.841930][ T7238] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  422.881993][ T7238] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  422.925061][ T7238] batman_adv: batadv0: Interface activated: batadv_slave_1
[  423.083919][ T7238] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  423.110479][ T7238] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  423.133461][ T7238] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  423.176185][ T7238] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  423.567534][ T7278] veth0_vlan: entered promiscuous mode
[  423.930036][ T7278] veth1_vlan: entered promiscuous mode
[  424.649470][ T7545] loop3: detected capacity change from 0 to 32768
[  424.795187][ T7545] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  425.082041][ T7545] XFS (loop3): Ending clean mount
[  425.121750][ T7545] XFS (loop3): Quotacheck needed: Please wait.
[  425.130383][   T62] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.149318][   T62] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.270921][ T7545] XFS (loop3): Quotacheck: Done.
[  425.379542][ T7278] veth0_macvtap: entered promiscuous mode
[  425.519329][ T7278] veth1_macvtap: entered promiscuous mode
[  425.544843][ T7174] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  425.809306][ T7312] 8021q: adding VLAN 0 to HW filter on device batadv0
[  425.866460][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  425.904782][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  425.904844][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  425.933033][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  425.974565][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.013977][ T7574] loop4: detected capacity change from 0 to 2048
[  426.016416][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.035793][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  426.057776][ T7574] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  426.068084][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.096156][ T7278] batman_adv: batadv0: Interface activated: batadv_slave_0
[  426.309586][ T7574] netlink: 8 bytes leftover after parsing attributes in process `syz.4.446'.
[  426.615214][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  426.678172][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.711899][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  426.756945][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.791887][ T7278] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  426.821939][ T7278] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  426.885599][ T7278] batman_adv: batadv0: Interface activated: batadv_slave_1
[  427.012277][ T7278] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  427.021096][ T7278] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  427.072542][ T7278] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  427.081358][ T7278] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  427.499942][ T7595] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  428.968182][ T7604] NILFS (nullb0): couldn't find nilfs on the device
[  430.162866][ T7370] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  430.263781][ T7607] netlink: 'syz.3.450': attribute type 8 has an invalid length.
[  430.276266][ T7607] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  430.308817][ T7611] loop1: detected capacity change from 0 to 512
[  430.407423][ T7611] EXT4-fs: Ignoring removed bh option
[  430.517145][ T7611] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  430.597415][ T7370] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  430.941777][ T7370] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  431.070859][ T7370] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  431.180639][ T7616] loop4: detected capacity change from 0 to 40427
[  431.213189][ T7616] F2FS-fs (loop4): invalid crc value
[  431.276051][ T7616] F2FS-fs (loop4): Found nat_bits in checkpoint
[  431.384871][ T7616] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4
[  431.557729][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  431.635525][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  431.768404][ T7312] veth0_vlan: entered promiscuous mode
[  432.060096][ T7628] syz.4.453: attempt to access beyond end of device
[  432.060096][ T7628] loop4: rw=2049, sector=54792, nr_sectors = 1544 limit=40427
[  432.106126][   T29] audit: type=1800 audit(1720045957.577:71): pid=7628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.453" name="file2" dev="loop4" ino=10 res=0 errno=0
[  432.615175][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  432.658010][ T7312] veth1_vlan: entered promiscuous mode
[  432.665272][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  432.892538][ T7128] syz-executor: attempt to access beyond end of device
[  432.892538][ T7128] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  432.972908][ T7128] F2FS-fs (loop4): Stopped filesystem due to reason: 3
[  433.552600][ T7312] veth0_macvtap: entered promiscuous mode
[  433.901546][ T7312] veth1_macvtap: entered promiscuous mode
[  434.130483][ T7623] loop3: detected capacity change from 0 to 32768
[  434.159785][  T983] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.242981][ T7623] workqueue: Failed to create a rescuer kthread for wq "xfs-blockgc/loop3": -EINTR
[  434.339017][ T7370] 8021q: adding VLAN 0 to HW filter on device bond0
[  434.627994][  T983] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.868146][  T983] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  434.982881][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  435.020795][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.045550][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  435.076936][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.091542][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  435.124105][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.171925][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  435.216380][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.265306][ T7312] batman_adv: batadv0: Interface activated: batadv_slave_0
[  435.502905][  T983] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  435.663800][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  435.732373][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.799815][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  435.846675][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.869682][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  435.899498][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  435.925943][ T7312] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  435.962142][ T7312] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  436.003037][ T7312] batman_adv: batadv0: Interface activated: batadv_slave_1
[  436.083794][ T7370] 8021q: adding VLAN 0 to HW filter on device team0
[  436.240075][ T5991] bridge0: port 1(bridge_slave_0) entered blocking state
[  436.247429][ T5991] bridge0: port 1(bridge_slave_0) entered forwarding state
[  436.335624][ T7312] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  436.376571][ T7672] loop4: detected capacity change from 0 to 128
[  436.413400][ T7312] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  436.442071][ T7312] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  436.493883][ T7312] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  436.581957][   T29] audit: type=1800 audit(1720045962.227:72): pid=7672 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.464" name="bus" dev="loop4" ino=1048653 res=0 errno=0
[  436.785628][ T5114] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  436.796015][ T5114] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  436.807049][ T5114] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  436.818315][ T5114] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  436.842155][ T5114] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  436.850421][ T5114] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  436.884290][ T7672] syz.4.464: attempt to access beyond end of device
[  436.884290][ T7672] loop4: rw=2049, sector=417, nr_sectors = 1 limit=128
[  436.920401][ T5108] bridge0: port 2(bridge_slave_1) entered blocking state
[  436.927726][ T5108] bridge0: port 2(bridge_slave_1) entered forwarding state
[  437.553212][ T7677] syz.4.464: attempt to access beyond end of device
[  437.553212][ T7677] loop4: rw=0, sector=417, nr_sectors = 1 limit=128
[  437.664072][ T7686] loop1: detected capacity change from 0 to 512
[  437.722982][ T7686] EXT4-fs: Ignoring removed bh option
[  437.777208][ T7686] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  437.811693][ T7683] netlink: 'syz.3.466': attribute type 8 has an invalid length.
[  437.821610][ T7683] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[  438.041348][ T7354] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  438.160025][ T7370] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  438.952885][ T4487] Bluetooth: hci3: command tx timeout
[  439.454338][ T7704] 9pnet_fd: p9_fd_create_tcp (7704): problem connecting socket to 127.0.0.1
[  440.398780][  T983] bridge_slave_1: left allmulticast mode
[  440.404902][  T983] bridge_slave_1: left promiscuous mode
[  440.482297][  T983] bridge0: port 2(bridge_slave_1) entered disabled state
[  440.574296][  T983] bridge_slave_0: left allmulticast mode
[  440.580000][  T983] bridge_slave_0: left promiscuous mode
[  440.638715][  T983] bridge0: port 1(bridge_slave_0) entered disabled state
[  440.992707][ T4487] Bluetooth: hci3: command tx timeout
[  441.946680][ T7727] loop4: detected capacity change from 0 to 128
[  441.980822][ T7725] loop3: detected capacity change from 0 to 2048
[  442.030974][ T7725] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  442.070412][   T29] audit: type=1800 audit(1720045967.737:73): pid=7727 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.480" name="bus" dev="loop4" ino=1048654 res=0 errno=0
[  442.096961][ T7725] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  442.237529][ T7727] syz.4.480: attempt to access beyond end of device
[  442.237529][ T7727] loop4: rw=2049, sector=417, nr_sectors = 1 limit=128
[  442.302555][ T7728] syz.4.480: attempt to access beyond end of device
[  442.302555][ T7728] loop4: rw=0, sector=417, nr_sectors = 1 limit=128
[  442.509865][  T983] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  442.589000][  T983] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  442.652860][  T983] bond0 (unregistering): Released all slaves
[  443.308495][ T7734] 9pnet_fd: p9_fd_create_tcp (7734): problem connecting socket to 127.0.0.1
[  443.362329][ T4487] Bluetooth: hci3: command tx timeout
[  445.665019][ T4487] Bluetooth: hci3: command tx timeout
[  447.570693][ T7749] loop3: detected capacity change from 0 to 512
[  447.645444][ T7749] EXT4-fs: Ignoring removed bh option
[  447.709493][ T7749] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  448.228296][ T2462] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  448.283420][ T2462] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  448.309562][ T7370] 8021q: adding VLAN 0 to HW filter on device batadv0
[  448.872119][  T983] hsr_slave_0: left promiscuous mode
[  448.916042][  T983] hsr_slave_1: left promiscuous mode
[  448.942317][  T983] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  448.951589][  T983] batman_adv: batadv0: Removing interface: batadv_slave_0
[  449.001353][  T983] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  449.024586][  T983] batman_adv: batadv0: Removing interface: batadv_slave_1
[  449.099430][  T983] veth1_macvtap: left promiscuous mode
[  449.108301][  T983] veth0_macvtap: left promiscuous mode
[  449.114377][  T983] veth1_vlan: left promiscuous mode
[  449.119870][  T983] veth0_vlan: left promiscuous mode
[  449.524438][ T7785] loop3: detected capacity change from 0 to 128
[  449.652777][   T29] audit: type=1800 audit(1720045975.307:74): pid=7785 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.494" name="bus" dev="loop3" ino=1048655 res=0 errno=0
[  449.865545][ T7785] syz.3.494: attempt to access beyond end of device
[  449.865545][ T7785] loop3: rw=2049, sector=417, nr_sectors = 1 limit=128
[  449.887147][ T7788] syz.3.494: attempt to access beyond end of device
[  449.887147][ T7788] loop3: rw=0, sector=417, nr_sectors = 1 limit=128
[  450.143051][ T1245] ieee802154 phy0 wpan0: encryption failed: -22
[  450.149488][ T1245] ieee802154 phy1 wpan1: encryption failed: -22
[  451.017606][ T5114] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  451.030408][ T5114] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  451.039537][ T5114] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  451.051455][ T5114] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  451.062738][ T5114] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  451.070781][ T5114] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  451.955179][ T7812] loop3: detected capacity change from 0 to 512
[  451.977060][ T7812] EXT4-fs: Ignoring removed bh option
[  451.991755][ T7812] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  452.144181][ T7354] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0
[  452.498842][  T983] team0 (unregistering): Port device team_slave_1 removed
[  452.795037][  T983] team0 (unregistering): Port device team_slave_0 removed
[  453.152889][ T5114] Bluetooth: hci1: command tx timeout
[  453.380548][ T7827] netlink: 'syz.4.510': attribute type 24 has an invalid length.
[  454.022678][ T5196] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  454.321966][ T5196] usb 5-1: Using ep0 maxpacket: 32
[  454.395729][ T5196] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  454.428550][ T5196] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  454.447679][ T5196] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  454.464486][ T5196] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  454.501348][ T5196] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  454.535605][ T5196] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  454.598849][ T5196] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  454.624559][ T5196] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  454.648667][ T5196] usb 5-1: Product: syz
[  454.672426][ T5196] usb 5-1: Manufacturer: syz
[  454.702300][ T5196] usb 5-1: SerialNumber: syz
[  455.249023][ T5114] Bluetooth: hci1: command tx timeout
[  455.257688][ T7848] loop1: detected capacity change from 0 to 512
[  455.315682][ T7848] EXT4-fs: Ignoring removed bh option
[  455.324904][ T5196] cdc_ncm 5-1:1.0: bind() failure
[  455.383292][ T7848] EXT4-fs: Project quota feature not enabled. Cannot enable project quota enforcement.
[  455.528019][ T5196] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  455.574443][ T5196] cdc_ncm 5-1:1.1: bind() failure
[  455.819334][ T5196] usb 5-1: USB disconnect, device number 2
[  456.023294][ T7676] chnl_net:caif_netlink_parms(): no params data found
[  456.859391][ T7370] veth0_vlan: entered promiscuous mode
[  456.948391][ T7871] netlink: 'syz.4.524': attribute type 24 has an invalid length.
[  457.323462][ T5114] Bluetooth: hci1: command tx timeout
[  457.555179][ T7676] bridge0: port 1(bridge_slave_0) entered blocking state
[  457.601407][ T7676] bridge0: port 1(bridge_slave_0) entered disabled state
[  457.608882][ T5991] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[  457.634909][ T7883] loop1: detected capacity change from 0 to 512
[  457.636737][ T7676] bridge_slave_0: entered allmulticast mode
[  457.650094][ T7676] bridge_slave_0: entered promiscuous mode
[  457.735535][ T7886] syz.4.527 uses obsolete (PF_INET,SOCK_PACKET)
[  458.222150][ T7676] bridge0: port 2(bridge_slave_1) entered blocking state
[  458.263277][ T7676] bridge0: port 2(bridge_slave_1) entered disabled state
[  458.283533][ T7883] EXT4-fs error (device loop1): ext4_get_branch:178: inode #11: block 4294967295: comm syz.1.529: invalid block
[  458.326475][ T7676] bridge_slave_1: entered allmulticast mode
[  458.354865][ T7883] EXT4-fs error (device loop1): ext4_free_branches:1027: inode #11: comm syz.1.529: invalid indirect mapped block 4294967295 (level 1)
[  458.390148][ T7676] bridge_slave_1: entered promiscuous mode
[  458.436118][ T7883] EXT4-fs error (device loop1): ext4_free_branches:1027: inode #11: comm syz.1.529: invalid indirect mapped block 4294967295 (level 1)
[  458.505345][ T7883] EXT4-fs (loop1): 2 truncates cleaned up
[  458.529895][ T7370] veth1_vlan: entered promiscuous mode
[  458.538178][ T7883] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.725008][ T5991] usb 4-1: config 0 has no interfaces?
[  458.730563][ T5991] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[  458.754525][  T983] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  458.768810][ T5991] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  459.050290][ T7893] Process accounting resumed
[  459.076874][ T5991] usb 4-1: config 0 descriptor??
[  459.313372][ T7888] EXT4-fs error (device loop1): ext4_validate_block_bitmap:431: comm ext4lazyinit: bg 0: block 5: invalid block bitmap
[  459.395145][ T5114] Bluetooth: hci1: command tx timeout
[  459.921982][ T7904] 9pnet_fd: p9_fd_create_tcp (7904): problem connecting socket to 127.0.0.1
[  460.306182][  T983] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.590946][  T983] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  460.849762][ T7676] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  460.958957][  T983] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  461.050223][ T7676] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  461.171999][ T5108] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  461.188757][ T7805] chnl_net:caif_netlink_parms(): no params data found
[  461.384747][ T5108] usb 5-1: Using ep0 maxpacket: 32
[  461.399898][ T5108] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  461.409815][ T7676] team0: Port device team_slave_0 added
[  461.427326][ T5108] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  461.452062][ T5108] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  461.472481][ T5108] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[  461.491877][ T5108] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x3 has invalid wMaxPacketSize 0
[  461.504270][ T5108] usb 5-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 0
[  461.519736][ T5108] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  461.529679][ T5108] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  461.549238][ T5108] usb 5-1: Product: syz
[  461.555011][ T7676] team0: Port device team_slave_1 added
[  461.560731][ T5108] usb 5-1: Manufacturer: syz
[  461.569462][ T5108] usb 5-1: SerialNumber: syz
[  461.968791][ T7370] veth0_macvtap: entered promiscuous mode
[  461.991345][ T7676] batman_adv: batadv0: Adding interface: batadv_slave_0
[  461.991473][ T7238] EXT4-fs error (device loop1): ext4_lookup:1854: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[  462.023380][ T7676] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  462.062354][ T7238] EXT4-fs error (device loop1): ext4_lookup:1854: inode #17: comm syz-executor: iget: bad extended attribute block 6904
[  462.093294][  T780] usb 4-1: USB disconnect, device number 2
[  462.098729][ T7676] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  462.179756][ T7238] ------------[ cut here ]------------
[  462.186597][ T7238] ida_free called for id=8192 which is not allocated.
[  462.238525][ T5108] cdc_ncm 5-1:1.0: bind() failure
[  462.243574][ T7238] WARNING: CPU: 0 PID: 7238 at lib/idr.c:525 ida_free+0x1fb/0x2f0
[  462.243708][ T7238] Modules linked in:
[  462.243730][ T7238] CPU: 0 PID: 7238 Comm: syz-executor Not tainted 6.10.0-rc6-syzkaller-00067-g8a9c6c40432e #0
[  462.267256][ T7238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  462.280378][ T7238] RIP: 0010:ida_free+0x1fb/0x2f0
[  462.285460][ T7238] Code: bc f6 41 83 fe 3e 76 73 e8 12 34 bc f6 48 8b 7c 24 28 4c 89 ee e8 95 0a 19 00 90 48 c7 c7 c0 60 81 8c 89 ee e8 66 4f 7e f6 90 <0f> 0b 90 90 e8 ec 33 bc f6 48 b8 00 00 00 00 00 fc ff df 48 01 c3
[  462.305292][ T7238] RSP: 0018:ffffc900090e7a40 EFLAGS: 00010282
[  462.311398][ T7238] RAX: 0000000000000000 RBX: 1ffff9200121cf49 RCX: ffffffff81514a39
[  462.320060][ T7238] RDX: ffff88802113da00 RSI: ffffffff81514a46 RDI: 0000000000000001
[  462.328218][ T7238] RBP: 0000000000002000 R08: 0000000000000001 R09: 0000000000000000
[  462.334857][ T5108] cdc_ncm 5-1:1.1: CDC Union missing and no IAD found
[  462.336255][ T7238] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000
[  462.351332][ T7238] R13: 0000000000000293 R14: 0000000000000000 R15: 0000000000000000
[  462.359982][ T7238] FS:  0000000000000000(0000) GS:ffff8880b9200000(0000) knlGS:0000000000000000
[  462.370384][ T7238] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  462.378151][ T7238] CR2: 0000565012cc2a58 CR3: 000000002cb40000 CR4: 0000000000350ef0
[  462.386226][ T7238] Call Trace:
[  462.389531][ T7238]  <TASK>
[  462.392567][ T7238]  ? show_regs+0x8c/0xa0
[  462.396885][ T7238]  ? __warn+0xe5/0x3c0
[  462.401009][ T7238]  ? ida_free+0x1fb/0x2f0
[  462.405484][ T7238]  ? report_bug+0x3c0/0x580
[  462.409451][ T7805] bridge0: port 1(bridge_slave_0) entered blocking state
[  462.410106][ T7238]  ? handle_bug+0x3d/0x70
[  462.421520][ T7238]  ? exc_invalid_op+0x17/0x50
[  462.426336][ T7238]  ? asm_exc_invalid_op+0x1a/0x20
[  462.431441][ T7238]  ? __warn_printk+0x199/0x350
[  462.437029][ T7238]  ? __warn_printk+0x1a6/0x350
[  462.442133][ T7238]  ? ida_free+0x1fb/0x2f0
[  462.446521][ T7238]  ? __pfx_ida_free+0x10/0x10
[  462.449504][ T5108] cdc_ncm 5-1:1.1: bind() failure
[  462.451299][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.451360][ T7238]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  462.462110][ T7805] bridge0: port 1(bridge_slave_0) entered disabled state
[  462.468717][ T7238]  hci_conn_del+0x768/0xdb0
[  462.468792][ T7238]  hci_conn_hash_flush+0x18f/0x260
[  462.468865][ T7238]  hci_dev_close_sync+0x591/0x1100
[  462.468942][ T7238]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  462.497343][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.503106][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.508791][ T7238]  ? up_write+0x1b2/0x520
[  462.513278][ T7238]  hci_dev_do_close+0x2e/0x90
[  462.518019][ T7238]  hci_unregister_dev+0x1e3/0x5f0
[  462.523180][ T7238]  ? __pfx_vhci_release+0x10/0x10
[  462.528263][ T7238]  vhci_release+0x7f/0x100
[  462.532804][ T7238]  __fput+0x40b/0xbb0
[  462.536852][ T7238]  task_work_run+0x151/0x250
[  462.541501][ T7238]  ? __pfx_task_work_run+0x10/0x10
[  462.542753][ T7805] bridge_slave_0: entered allmulticast mode
[  462.546737][ T7238]  do_exit+0xa9b/0x2ba0
[  462.556797][ T7238]  ? do_group_exit+0x1c3/0x2a0
[  462.563779][ T7238]  ? __pfx_lock_release+0x10/0x10
[  462.567153][ T5108] usb 5-1: USB disconnect, device number 3
[  462.570267][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.582508][ T7238]  ? do_raw_spin_lock+0x12d/0x2c0
[  462.587593][ T7238]  ? __pfx_do_exit+0x10/0x10
[  462.592418][ T7238]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  462.597849][ T7238]  ? xfd_validate_state+0x5d/0x180
[  462.603117][ T7238]  do_group_exit+0xd3/0x2a0
[  462.607674][ T7238]  __x64_sys_exit_group+0x3e/0x50
[  462.612789][ T7238]  do_syscall_64+0xcd/0x250
[  462.617361][ T7238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.623390][ T7238] RIP: 0033:0x7f61e9f75bd9
[  462.627841][ T7238] Code: Unable to access opcode bytes at 0x7f61e9f75baf.
[  462.630608][ T7805] bridge_slave_0: entered promiscuous mode
[  462.634901][ T7238] RSP: 002b:00007fff2a3073e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  462.634953][ T7238] RAX: ffffffffffffffda RBX: 00007f61e9fe353a RCX: 00007f61e9f75bd9
[  462.634985][ T7238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  462.635014][ T7238] RBP: 0000000000000075 R08: 00007fff2a305185 R09: 00007fff2a3086a0
[  462.635044][ T7238] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff2a3086a0
[  462.635074][ T7238] R13: 00007f61e9fe3515 R14: 00007f61e9fd5328 R15: 000000000000001b
[  462.635131][ T7238]  </TASK>
[  462.635151][ T7238] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  462.635171][ T7238] CPU: 0 PID: 7238 Comm: syz-executor Not tainted 6.10.0-rc6-syzkaller-00067-g8a9c6c40432e #0
[  462.635215][ T7238] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024
[  462.635239][ T7238] Call Trace:
[  462.635253][ T7238]  <TASK>
[  462.635268][ T7238]  dump_stack_lvl+0x3d/0x1f0
[  462.635319][ T7238]  panic+0x6f5/0x7a0
[  462.635365][ T7238]  ? __pfx_panic+0x10/0x10
[  462.635406][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.635449][ T7238]  ? show_trace_log_lvl+0x363/0x500
[  462.635530][ T7238]  ? check_panic_on_warn+0x1f/0xb0
[  462.635581][ T7238]  ? ida_free+0x1fb/0x2f0
[  462.635624][ T7238]  check_panic_on_warn+0xab/0xb0
[  462.635673][ T7238]  __warn+0xf1/0x3c0
[  462.635718][ T7238]  ? ida_free+0x1fb/0x2f0
[  462.635763][ T7238]  report_bug+0x3c0/0x580
[  462.635815][ T7238]  handle_bug+0x3d/0x70
[  462.635871][ T7238]  exc_invalid_op+0x17/0x50
[  462.635931][ T7238]  asm_exc_invalid_op+0x1a/0x20
[  462.635995][ T7238] RIP: 0010:ida_free+0x1fb/0x2f0
[  462.636038][ T7238] Code: bc f6 41 83 fe 3e 76 73 e8 12 34 bc f6 48 8b 7c 24 28 4c 89 ee e8 95 0a 19 00 90 48 c7 c7 c0 60 81 8c 89 ee e8 66 4f 7e f6 90 <0f> 0b 90 90 e8 ec 33 bc f6 48 b8 00 00 00 00 00 fc ff df 48 01 c3
[  462.636078][ T7238] RSP: 0018:ffffc900090e7a40 EFLAGS: 00010282
[  462.636110][ T7238] RAX: 0000000000000000 RBX: 1ffff9200121cf49 RCX: ffffffff81514a39
[  462.636138][ T7238] RDX: ffff88802113da00 RSI: ffffffff81514a46 RDI: 0000000000000001
[  462.636167][ T7238] RBP: 0000000000002000 R08: 0000000000000001 R09: 0000000000000000
[  462.636193][ T7238] R10: 0000000000000001 R11: 0000000000000002 R12: 0000000000000000
[  462.636219][ T7238] R13: 0000000000000293 R14: 0000000000000000 R15: 0000000000000000
[  462.636259][ T7238]  ? __warn_printk+0x199/0x350
[  462.636302][ T7238]  ? __warn_printk+0x1a6/0x350
[  462.636355][ T7238]  ? __pfx_ida_free+0x10/0x10
[  462.636396][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.636448][ T7238]  ? __pfx_wait_rcu_exp_gp+0x10/0x10
[  462.636503][ T7238]  hci_conn_del+0x768/0xdb0
[  462.636569][ T7238]  hci_conn_hash_flush+0x18f/0x260
[  462.636636][ T7238]  hci_dev_close_sync+0x591/0x1100
[  462.636704][ T7238]  ? __pfx_hci_dev_close_sync+0x10/0x10
[  462.636760][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.636805][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.636848][ T7238]  ? up_write+0x1b2/0x520
[  462.636908][ T7238]  hci_dev_do_close+0x2e/0x90
[  462.636968][ T7238]  hci_unregister_dev+0x1e3/0x5f0
[  462.637029][ T7238]  ? __pfx_vhci_release+0x10/0x10
[  462.637085][ T7238]  vhci_release+0x7f/0x100
[  462.637144][ T7238]  __fput+0x40b/0xbb0
[  462.637206][ T7238]  task_work_run+0x151/0x250
[  462.637258][ T7238]  ? __pfx_task_work_run+0x10/0x10
[  462.637324][ T7238]  do_exit+0xa9b/0x2ba0
[  462.637364][ T7238]  ? do_group_exit+0x1c3/0x2a0
[  462.637408][ T7238]  ? __pfx_lock_release+0x10/0x10
[  462.637453][ T7238]  ? srso_alias_return_thunk+0x5/0xfbef5
[  462.637495][ T7238]  ? do_raw_spin_lock+0x12d/0x2c0
[  462.637549][ T7238]  ? __pfx_do_exit+0x10/0x10
[  462.637589][ T7238]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  462.637640][ T7238]  ? xfd_validate_state+0x5d/0x180
[  462.637713][ T7238]  do_group_exit+0xd3/0x2a0
[  462.637761][ T7238]  __x64_sys_exit_group+0x3e/0x50
[  462.637806][ T7238]  do_syscall_64+0xcd/0x250
[  462.637865][ T7238]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  462.637927][ T7238] RIP: 0033:0x7f61e9f75bd9
[  462.637961][ T7238] Code: Unable to access opcode bytes at 0x7f61e9f75baf.
[  462.637980][ T7238] RSP: 002b:00007fff2a3073e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  462.638018][ T7238] RAX: ffffffffffffffda RBX: 00007f61e9fe353a RCX: 00007f61e9f75bd9
[  462.638047][ T7238] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000001
[  462.638073][ T7238] RBP: 0000000000000075 R08: 00007fff2a305185 R09: 00007fff2a3086a0
[  462.638100][ T7238] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff2a3086a0
[  462.638127][ T7238] R13: 00007f61e9fe3515 R14: 00007f61e9fd5328 R15: 000000000000001b
[  462.638180][ T7238]  </TASK>
[  462.641149][ T7238] Kernel Offset: disabled