last executing test programs:

19.119049242s ago: executing program 1 (id=7101):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@typedef={0x10, 0x0, 0x0, 0x8, 0x2}]}}, 0x0, 0x26, 0x0, 0x0, 0x8, 0x0, @void, @value}, 0x20)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="1c1000003e0007012ebd700004101c000100000004000002041001"], 0x101c}}, 0x0)

18.797396457s ago: executing program 1 (id=7232):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$tipc2(&(0x7f00000001c0), 0xffffffffffffffff)
sendmsg$TIPC_NL_LINK_RESET_STATS(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000004c0)=ANY=[@ANYBLOB=',\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000a00"], 0x2c}}, 0x0)

18.459831281s ago: executing program 1 (id=7235):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)=ANY=[@ANYBLOB='D\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="170900000000000000000100000005000700000000000800090000000000060002000100000008000a0000000000080018000000000006001a"], 0x44}}, 0x0)

18.258410854s ago: executing program 1 (id=7238):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000100)='./file1\x00', 0x0, &(0x7f0000000140)={[{@discard}, {@keep_last_dots}, {@dmask={'dmask', 0x3d, 0x9}}, {@utf8}, {@errors_remount}, {@time_offset={'time_offset', 0x3d, 0x101}}, {@fmask={'fmask', 0x3d, 0x5}}, {@errors_remount}, {@fmask={'fmask', 0x3d, 0x50}}, {@gid}]}, 0x1, 0x1548, &(0x7f0000000380)="$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")
open(&(0x7f0000000100)='./bus\x00', 0x169042, 0x8f5086323d52e816)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000340)='./bus\x00', 0x0, 0x1000, 0x0)

17.862180372s ago: executing program 1 (id=7243):
r0 = socket(0xa, 0x3, 0x3a)
setsockopt$MRT6_TABLE(r0, 0x29, 0xc8, &(0x7f0000000080), 0x4)
setsockopt$MRT6_TABLE(r0, 0x29, 0xcf, 0x0, 0x0)

17.225950573s ago: executing program 1 (id=7249):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_COALESCE_SET(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000000)={0x34, r1, 0x1, 0x0, 0x0, {0x10}, [@ETHTOOL_A_COALESCE_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'veth0\x00'}]}, @ETHTOOL_A_COALESCE_STATS_BLOCK_USECS={0x8, 0xa, 0xfffffffd}]}, 0x34}}, 0x0)

14.87138982s ago: executing program 3 (id=7279):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000200)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010300000000000000000100fffd0900010073797a300000000040000000030a01020000000000000000010000000900030073797a3200000000140004800800024032658aeb08000140000000010900010073797a300000000044000000060a010400000000000001040100000008000b40000000000900010073797a30000000001c000480180001800d00010073796e70726f7879000000000400028014000000110001"], 0xcc}}, 0x0)
syz_emit_ethernet(0x56, &(0x7f0000000480)={@link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x2}, @link_local, @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x0, 0x0, 0x48, 0x0, 0x0, 0x0, 0x6, 0x0, @empty, @empty}, {{0x10, 0x4e26, 0x41424344, 0x41424344, 0x0, 0x0, 0xd, 0xc2, 0x1, 0x0, 0x0, {[@window={0x3, 0x3, 0x9}, @mptcp=@synack={0x1e, 0x10, 0x1, 0x2, 0xa, 0x7, 0xe3}, @timestamp={0x8, 0xa, 0x8, 0xffffffff}]}}}}}}}, 0x0)

14.022980183s ago: executing program 3 (id=7288):
r0 = socket$kcm(0x10, 0x2, 0x10)
sendmsg$kcm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000480)=[{&(0x7f0000000000)="1400000010003507d25a806f8c6394f90324fc60", 0x14}], 0x1}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000003940)=[{&(0x7f0000000500)=""/4086, 0xff6}, {&(0x7f0000000100)=""/81, 0x51}, {&(0x7f0000002800)=""/4096, 0x1000}, {&(0x7f0000000180)=""/56, 0x38}, {&(0x7f0000000280)=""/17, 0x11}, {&(0x7f0000003800)=""/152, 0x98}, {&(0x7f00000038c0)=""/115, 0x73}], 0x7}, 0x0)

9.455177794s ago: executing program 3 (id=7302):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r1 = dup(r0)
write$UHID_INPUT(r1, &(0x7f0000001980)={0x9, {"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", 0x1000}}, 0x1006)

7.786620464s ago: executing program 4 (id=7312):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
syz_emit_ethernet(0x6a, &(0x7f0000000140)={@broadcast, @random="6487a2bed3d6", @val={@void}, {@ipv4={0x800, @gre={{0x5, 0x4, 0x0, 0x0, 0x58, 0x0, 0x0, 0x0, 0x6c, 0x0, @private}}}}}, 0x0)

7.355775065s ago: executing program 4 (id=7315):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f00000001c0)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc0004}]})
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000880)={[{@noquota}, {@journal_dev={'journal_dev', 0x3d, 0x8001}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@minixdf}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nombcache}, {@mblk_io_submit}]}, 0x3, 0x44a, &(0x7f0000000400)="$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")
chown(&(0x7f0000000140)='./file0\x00', 0xee01, 0x0)

6.829726189s ago: executing program 4 (id=7320):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000380)={r0, <r1=>0xffffffffffffffff}, 0x4)
bpf$MAP_UPDATE_CONST_STR(0x16, &(0x7f0000000080)={{r1}, 0x0, 0x0}, 0x20)

6.48265545s ago: executing program 0 (id=7322):
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000100), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000200)={0x1, 0x0, 0x0, 0x0, 0x0, 0x2})

6.333791701s ago: executing program 4 (id=7323):
syz_mount_image$fuse(0x0, &(0x7f0000000c40)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000000), 0x0, 0x0)
mount$tmpfs(0x0, &(0x7f0000000040)='./file0\x00', 0x0, 0x128a877, &(0x7f0000000180)={[{@size={'size', 0x3d, [0x38]}}, {@nr_inodes={'nr_inodes', 0x3d, [0x6d]}}]})

6.086208669s ago: executing program 0 (id=7325):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x41, &(0x7f0000000740)={[{@errors_remount}, {@noload}, {@noinit_itable}, {@noquota}, {@noblock_validity}, {@acl}, {@mblk_io_submit}, {@acl}, {@resgid}], [], 0x3d}, 0x68, 0x51c, &(0x7f0000000200)="$eJzs3UFoJFkZAOC/Ot3ZyUx2k1UPuuC6uiuZQac72bi7wcO6guhpQV3vY0w6IaSTDunO7iQsmsGDR0FEBU968SJ48iTIghePIizoWVFRRGf0IKhTS3dXZ2aS6k5mpiedSX8fVOrV66r3v9ehqutVPaoCGFnPRcRrEXE7TdMrETGV5ReyKfY7U2u9WzffXmpNSaTpG/9IIsnyumWlbU/EpWyzCxHx5S9EfC05Grexu7e+WKtVt7PlSnNjq9LY3bu6trG4Wl2tbs7Pz7288MrCSwuzA2nnZES8+rm/fO/bP/n8q7/85Ft/vPa3y19Psvw41I77VOz3YafppfZ3cfcG2w8Y7CwqtluYmchbY+xIzo1HXCcAAHp7X0R8LCKuxFSM9T+dBQAAAB5D6Wcm439J997dEeM98gEAAIDHSKE9BjYplLPxvpNRKJTL0R7D+4G4WKjVG81PrNR3Npc7Y2Wno1RYWatVZ7OxwtNRSlrLc+30neUXDy3PR8TTEfHdqYn2cnmpXlse9sUPAAAAGBGXDvX//z3V6f8DAAAA58z0sCsAAAAAPHL6/wAAAHD+6f8DAADAufbF119vTWn3/dfLb+7urNffvLpcbayXN3aWykv17a3yar2+2n5m38Zx5dXq9a1PxebO9Uqz2mhWGrt71zbqO5vNa2v3vAIbAAAAOEVPf+Sd3ycRsf/pifbUMn6yTU+4GnBWFQ9SSTbP2a3/8FRn/udTqhRwKsaGXQFgaIrDrgAwNKVhVwAYuuSYz3sO3vlNNv/oYOsDAAAM3syHet//L/Tdcr//x8CZZyeG0eX+P4yu9v3/k47kdbIA50rJGQCMvIe+/3+sNL2vCgEAAAM32Z6SQjm7vDcZhUK5HPFk+7UApWRlrVadjYinIuJ3U6UnWstz7S2TY/sMAAAAAAAAAAAAAAAAAAAAAAAAAEBHmiaRAgAAAOdaROGvya86z/KfmXph8vD1gfHkP1ORvSL0rR++8f3ri83m9lwr/58H+c0fZPkvDuMKBgAAAIyE4v2s3O2nd/vxAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADBIt26+vdSdTjPu3z8bEdN58YtxoT2/EKWIuPivJIp3bZdExNgA4k+0/nwwL37SqtZByLz4EwOIv3+jb/yYzr6FvPiXBhAfRtk7rePPa3n7XyGea8/z979ixD3LD6r38S8Ojn9jPfb/J08Y45l3f1bpGf9GxDPF/ONPN37SI/7zeQX+/FtHsr76lb29XvHTH0XM5P7+JPfEqjQ3tiqN3b2raxuLq9XV6ub8/NzLC68svLQwW1lZq1Wzv7kxvvPhX9zu1/6LPeJPH9P+F3LKG8/J+/+712++v5Ms5cW//HxO/F//OFvjaPxC9tv38Szd+nymm97vpO/27E9/+2y/9i/3aP9x///LvQo95MqXvvmnE64KAJyCxu7e+mKtVt0+t4lWL/0MVONxS/w3PRPVeLSJbwy0wDRN09Y+9RDlJHF6X0LSv6rDPjIBAACDduekf9g1AQAAAAAAAAAAAAAAAAAAgNF1Gk8aOxxz/yCVDOIR2gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/FeAAAA//+kyeAN")
r0 = syz_open_procfs(0x0, &(0x7f0000001400)='mounts\x00')
read$FUSE(r0, &(0x7f0000001a80)={0x2020}, 0x2020)

5.837851123s ago: executing program 4 (id=7326):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x3)
r1 = dup(r0)
sendmsg$netlink(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f0000000880)=[{&(0x7f0000000580)={0x40, 0x12, 0x2, 0x70bd2b, 0x25dfdbfe, "", [@typed={0x8, 0x84, 0x0, 0x0, @uid}, @typed={0x9, 0xbe, 0x0, 0x0, @str='[\'\t$\x00'}, @nested={0x1c, 0xcf, 0x0, 0x1, [@typed={0xc, 0x10c, 0x0, 0x0, @u64=0x7fffffffffffffff}, @typed={0xc, 0xd5, 0x0, 0x0, @u64=0x200}]}]}, 0x40}, {&(0x7f00000006c0)={0x40, 0x42, 0x4, 0x70bd2c, 0x25dfdbfe, "", [@generic="57726318bb4278dca9a780aa5d99d50c29f229b039747c0bce64170e8a9ed2b06a82eb2ec888b806d093cd78cc"]}, 0x40}], 0x2, 0x0, 0x0, 0x40}, 0x0)

5.521893802s ago: executing program 0 (id=7329):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="1805000000000000000000004b64ffec850000007d000000850000002300000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000000)='mm_page_alloc\x00', r0}, 0x10)
syz_io_uring_setup(0x24fa, &(0x7f0000000080)={0x0, 0x0, 0x10100}, &(0x7f0000000100), &(0x7f0000000140))

5.443603258s ago: executing program 4 (id=7330):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000500)={0x30, r1, 0x103, 0x0, 0x0, {}, [@NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}, @NL80211_ATTR_DFS_REGION={0x5}, @NL80211_ATTR_REG_RULES={0xc, 0x22, 0x0, 0x1, [{0x4}, {0x4}]}]}, 0x30}}, 0x0)

5.257790129s ago: executing program 2 (id=7331):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$team(&(0x7f00000003c0), 0xffffffffffffffff)
sendmsg$TEAM_CMD_OPTIONS_SET(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB='`\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="0106000000000000000002000000080001"], 0x60}}, 0x0)

5.028337637s ago: executing program 0 (id=7333):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000180)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007\x00\x00\x00\x00=', @ANYRESHEX, @ANYBLOB=',dmask=00000000000000000000152,iocharset=iso8859-1,gid=', @ANYRESHEX, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB=',discard,\x00'], 0x81, 0x14f5, &(0x7f0000001580)="$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")
setresuid(0x0, 0xee00, 0x0)
open(&(0x7f0000000140)='./bus\x00', 0x14937e, 0x0)

4.885839255s ago: executing program 2 (id=7334):
r0 = syz_open_dev$vim2m(&(0x7f0000000680), 0x0, 0x2)
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000340)={0x0, 0x5, 0x4, {0x1, @win={{}, 0x0, 0xfffffff8, 0x0, 0x0, 0x0}}})
ioctl$vim2m_VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000240)={0x0, 0x6, 0x1, {0x1, @pix_mp={0x0, 0x0, 0x0, 0x0, 0x0, [{0x1}]}}})

4.661221761s ago: executing program 2 (id=7335):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
connect$netrom(r0, &(0x7f0000000300)={{0x6, @rose}, [@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @default, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
sendto$netrom(r0, 0x0, 0x0, 0x0, &(0x7f0000000000)={{0x6, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @default, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}]}, 0x65)

4.635753807s ago: executing program 0 (id=7336):
r0 = syz_mount_image$btrfs(&(0x7f0000000000), &(0x7f00000015c0)='./file0\x00', 0x0, &(0x7f0000001600), 0x0, 0x559e, &(0x7f0000005680)="$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")
ioctl$BTRFS_IOC_QUOTA_CTL(r0, 0xc0109428, &(0x7f00000000c0)={0x1})
ioctl$BTRFS_IOC_QGROUP_LIMIT(r0, 0xc0c09425, &(0x7f0000000040))

4.138425789s ago: executing program 3 (id=7337):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000000040), r0)
sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x14, r1, 0x401, 0x70bd2d, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20048080}, 0x0)

4.126744091s ago: executing program 2 (id=7338):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$eJzs3c9vHFcdAPDvjH82TesEeoAKSIBCQFF2400bVb20uYBQVQlRcUAcUmNvLJNdr/GuS20s4f4NIIHECf4EDkgckHriwI0jEgeEVA5IASxQjATSopkdO1t7TZbsepd6Px9pMvPmzcz3vWxm39u3m3kBTKyrEbEXEbMR8VZELBT7k2KJ1zpLdtzD/d3lg/3d5STa7Tf/muT52b7oOifzdHHN+Yj42pcjvpWcjNvc3rm/VKtVN4t0uVXfKDe3d26s1ZdWq6vV9Url9uLtmy/feqkytLpeqf/8wZfWXv/6r375yfd/u/fF72XFuljkdddjmDpVnzmKk5mOiNfPItgYTBXr2TGXgyeTRsRHIuIz+f2/EFP5v04A4DxrtxeivdCdBgDOuzQfA0vSUkSkadEJKHXG8J6LC2mt0Wxdv9fYWl/pjJVdipn03lqtevPy3O+/kx88k2TpxTwvz8/TlWPpWxFxOSJ+OPdUni4tN2or4+nyAMDEe7q7/Y+If8ylaanU16k9vtUDAD405sddAABg5LT/ADB5tP8AMHn6aP+LL/v3zrwsAMBo+PwPAJNH+w8Ak0f7DwAT5atvvJEt7YPi+dcrb29v3W+8fWOl2rxfqm8tl5Ybmxul1UZjNX9mT/1x16s1GhuLL8bWO+VWtdkqN7d37tYbW+utu/lzve9WZ0ZSKwDgv7l85b3fJRGx98pT+RJdczloq+F8S8ddAGBspgY5WQcBPtTM9gWTq68mPO8k/ObMywKMR8+Hec/33PygH/8PQfzOCP6vXPt4/+P/5niG88X4P0yuJxv/f3Xo5QBGz/g/TK52Ozk+5//sURYAcC4N8BO+9veH1QkBxupxk3kP5ft/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOGcuRsS3I0lL+VzgafZnWipFPBMRl2ImubdWq96MiGfjSkTMzGXpxXEXGgAYUPrnpJj/69rCCxeP584m/5zL1xHx3Z+8+aN3llqtzcVs/9+O9s8dTh9WeXTeAPMKAgBDlrfflWLd9UH+4f7u8uEyyvI8uBP/LqYiXj7Y382XTs50ZDsj5vO+xIW/JzFdnDMfEc9HxNQQ4u+9GxEf61X/JB8buVTMfNodP4rYz4w0fvqB+Gme11lnna+PDqEsMGneuxMRr/W6/9K4mq973//z+TvU4B7c6Vzs8L3voCv+dBFpqkf87J6/2m+MF3/9lRM72wudvHcjnp/uFT85ip+cEv+FPuP/4ROf+sGrp+S1fxpxLXrH745VbtU3ys3tnRtr9aXV6mp1vVK5vXj75su3XqqU8zHq8uFI9Ul/eeX6s6eVLav/hVPiz/es/+zRuZ/rs/4/+9db3/z0o+Tc8fhf+Gzv1/+5nvE7sjbx833GX7rwi1On787ir5xS/8e9/tf7jP/+n3ZW+jwUABiB5vbO/aVarbo50Eb2KXQY1zmxkRWxv4MPu4uDBf1jnEUtnnBj5qz+Vs98Y/qorzjcK38ju+KIq5MOvRYDbTwcVazxvScBo/Hoph93SQAAAAAAAAAAAAAAgNOM4r8ujbuOAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAnF//CQAA//+zi8zo")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
lseek(r0, 0x0, 0x3)

3.774975476s ago: executing program 3 (id=7339):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x1000002, 0x200000005c831, 0xffffffffffffffff, 0x0)
syz_clone(0x1000, 0x0, 0x0, &(0x7f00000000c0), 0x0, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800006, 0x0, 0x0, 0x0, 0x2)

3.50738856s ago: executing program 2 (id=7340):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000640)={{0x14}, [@NFT_MSG_NEWRULE={0x54, 0x6, 0xa, 0x40b, 0x0, 0x0, {0x2}, [@NFTA_RULE_EXPRESSIONS={0x28, 0x4, 0x0, 0x1, [{0x24, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x14, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_SREG={0x8}, @NFTA_EXTHDR_OP={0x8, 0x6, 0x1, 0x0, 0x3}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_RULE_CHAIN={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x7c}}, 0x0)

3.268645839s ago: executing program 3 (id=7341):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000700)={0x0, 0xd, &(0x7f0000000380)=ANY=[@ANYBLOB="b7080000000000007b8af8ff00000000b7a90000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32, @ANYBLOB="0000000000000000b70500000800000085"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001240)={&(0x7f0000000380)=ANY=[@ANYBLOB="640000001900010000000000000000001d0109004d000f"], 0x64}}, 0x0)

3.156133598s ago: executing program 5 (id=7342):
syz_mount_image$exfat(&(0x7f0000000040), &(0x7f0000000180)='\xe9\x1fq\x89Y\x1e\x923aK\x00', 0xa1008a, &(0x7f00000003c0)=ANY=[], 0x21, 0x150f, &(0x7f0000000480)="$eJzs3AuYjtX6MPD7Xms9DE16m+QwrLXuhzcNliFJDklySJJkS5JTQmiSJCExzpKGJMlxkhyGkBymMWmcz4eckyRpkiQkJFnfNW199t7tvfv2/9/3ub7/3L/rei7rfp/3Xu/9vPfzeg7v9c63PUfXbV6vVlMigv8W/Os/yQAQAwDDAeA6AAgAoFJcpbic9fkkJv/3XoT9uR5Ku9oVsKuJ+5+7cf9zN+5/7sb9z924/7kb9z934/7nbtx/xnKz7XOKXs9L7l34/n9uxsf//0Gyy03+cmO5G3v9Bync/9yN+5+7cf9zN+5/7sb9z924/7kb9z934/4zlpv91+8d83cH/xOWq73/McYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhjLHc77KxQA/Da+2nUxxhhjjDHGGGPsz+PzXu0KGGOMMcYYY4wx9n8fggAJCgLIA3khBvJBfrgGYuFaKADXQQSuhzi4AQrCjVAICkMRKArxUAyKgwYDFghCKAElIQo3QSm4GRKgNJSBsuCgHCRCeagAt0BFuBUqwW1QGW6HKlAVqkF1uANqwJ1QE+6CWnA31IY6UBfqwT1QH+6FBnAfNIT7oRE8AI3hQWgCf4Gm8BA0g4ehOTwCLeBRaAmtoDW0gbb/pfwXoC+8CP2gPyTDABgIg2AwDIGhMAyGw0swAl6GkfAKpMAoGA2vwhh4DcbC6zAO3oDx8CZMgIkwCSbDFJgKqfAWTIO3YTq8AzNgJsyC2ZAGc2AuvAvzYD4sgPdgIbwPi2AxLIGlkA4fQAYsg0z4EJbDR5AFK2AlrILVsAbWwjpYDxtgI2yCzbAFtsI22A4fww7YCbtgN+yBvbAPPoH98CkcgM/gIHz+H+af+4f8XggIKFCgQoV5MA/GYAzmx/wYi7FYAAtgBCMYh3FYEAtiISyERbAIxmM8FsfiaNAgIaG6vCeVwlKYgAlYBsugQ4eJmIgV8BasiBWxElbCylgZq2BVrIrVsTrWwBpYE2tiLayFtbE21sW6eA/eg/diA2yADbEhNsJG2BgbYxNsgk2xKTbDZtgcm2MLbIEtsSW2xtbYFttiO2yH7bE9dsSO2Ak7YRfsgkmYhF2xK3bDbtgdu2MP7IE9sSf2wt7YG1/AF/BFfBH7Y20xAAfiQByMg3EoDsNh+BKOwJfxZXwFU3AUjsZX8VV8DcfiWRyHb+B4HI81xESchJORxFRMxVSchtNwOk7HGTgTZ+JsTMM5OBfn4jycj/PxPVyI7+P7uBgX41JMx3TMwGWYiZm4HM9hFq7AlbgKV+MaXI3rcD2uw424CTfiFtyC23Abfowf407cibtxN+7Nea/xE/wUP8UUPIgH8RAewsN4GI/gEczGbDyKR/EYHsPjeBxP4Ak8iafwNJ7CM3gGz+I5PI/n8QJewIv4XPzXzfaW3pACIocSSuQReUSMiBH5RX4RK2JFAVFARERExIk4UVAUFIVEIVFEFBHxIl4UF8WFEUaQCEUJUUJERVSUEqVEgkgQZUQZ4YQTiSJRVBAVREVRUVQSt4nK4nZRRVQVHVx1UV3UEB1dTXGXqCVqidqijqgr6ol6or6oLxqIBqKhaCgaiUaisXhQNBEDcCg+JHI601yMwhZiNLYUrURr0Ua8ho+JdmIsthcdREfxhHgDx2EX0c4liadEVzEJu4lnxGR8VvQQU7GneF70Er1FH/GC6Cvau36iv5iBA8RAMRsHiyFiqBgm5mEdkdOxuuIVkSJGidHiVbEUXxO/7ePjxZtigpgoJonJYoqYKlLFW2KaeFtMF++IGWKmmCVmizQxR8wV74p5Yr5YIN4TC8X7YpFYLJaIpSJdfCAyxDKRKT4Uy8VHIkusECvFKrFarBFrxTqxXmwQG8UmsVlsEVvFNrFdfCx2iJ1il9gt9oi9Yp/4ROwXn4oD4jNxUHwuDokvxGHxpTgivhLZ4mtxVHwjjolvxXHxnTghvhcnxSlxWvwgzogfxVlxTpwXP4kL4mdxUfwiLgkvQKIUUkolA5lH5pUxMp/ML6+RsfJaWUBeJyPyehknb5AF5Y2ykCwsi8iiMl4Wk8WllkZaSTKUJWRJGZU3yVLyZpkgS8sysqx0spxMlOVlBXmLrChvlZXkbbKyvF1WkVVlNVld3iFryDtlTXmXrCXvlrVlHVlX1pP3yPryXtlA3icbyvtlI/mAbCwflE3kX2RT+ZBsJh+WzeUjsoV8VLaUrWRr2Ua2lY/JdvJx2V52kB3lE7KT7Cy7yCdlknxKdpVPy27yGdldPit7yOdkT/m87CV7yz7yF3lJetlP9pfJcoAcKAfJwXKIHCqHyeHyJTlCvixHyldkSgwAyFflGPmaHCtfl+PkG3K8fFNOkBPlJDlZTpFTZap8S06Tb8vp8h05Q86Us+RsmSbnyKGXZ1rwf5D/9j/JHylT5Ci5TW6XH8sdcqfcJXfLPXKv3Cf3yf1yvzwgD8iD8qA8JA/Jw/KwPCKPyGyZLY/Ko/KYPCaPy+PyhDwhT8pT8if5gzwjf5Rn5Tl5Tv4kL8gL8uLl9wAUKqGkUipQeVReFaPyqfzqGhWrrlUF1HUqoq5XceoGVVDdqAqpwqqIKqriVTFVXGlllFWkQlVClVRRdRNe/oioMqqscqqcSlTl/5N8VUrdrBJU6b/L/6P62qq2qp1qp9qr9qqj6qg6qU6qi+qiklSS6qq6qm6qm+quuqseqofqqXqqXqqX6qP6qL6qr+qn+qlklawGqkFqsBqihqphavgAUCPUCDVSjVQpKkWNVqPVGDVGjVVj1Tg1To1X49UENUFNUpPUFDVFpapUNU1NU9PVdDVDzVCz1CyVptLUXDVXzVPz1AK1QC1UC9UitUgtUUtUukpXGSpDZapMtVwtV1lqhVqhVqlVao1ao9apdWqD2qA2qU1qi9qistR2tV3tUDvULrVL7VF71D61T+1X+9UBdUAdVAfVIXVIHVaH1RF1RGWrbHVUHVXH1DF1XB1XJ9QJdVKdVKfVaXVGnVFn1Vl1Xp1XF9QFdVFdVJfUpZzTvkAEIlCBCvIEeYKYICbIH+QPYoPYoEBQIIgEkSAuiAsKBjcGhYLCQZGgaBAfFAuKBzowgQ0oCIMSQckgGtwUlApuDhKC0kGZoGzggnJBYlA+qBDcElQMbg0qBbcFlYPbgypB1aBaUD24I6gR3BnUDO4KagV3B7WDOkHdoF5wT1A/uDdoENwXNAzuDxoFDwSNgweDJsFfgqbBQ0Gz4OGgefBI0CJ4NGgZtApaB22Ctn/q/N6fLfy466f762Q9QA/Ug/RgPUQP1cP0cP2SHqFf1iP1KzpFj9Kj9at6jH5Nj9Wv63H6DT1ev6kn6Il6kp6sp+ipOlW/pafpt/V0/Y6eoWfqWXq2TtNz9Fz9rp6n5+sF+j29UL+vF+nFeoleqtP1BzpDL9OZ+kO9XH+ks/QKvVKv0qv1Gr1Wr9Pr9Qa9UW/Sm/UWvVVv09v1x3qH3ql36d16j96r9+lP9H79qT6gP9MH9ef6kP5CH9Zf6iP6K52tv9ZH9Tf6mP5WH9ff6RP6e31Sn9Kn9Q/6jP5Rn9Xn9Hn9k76gf9YX9S/6kvY5J/c5h3ejjDJ5TB4TY2JMfpPfxJpYU8AUMBETMXEmzhQ0BU0hU8gUMUVMvIk3xU1xk4MMmRKmhImaqCllSpkEk2DKmDLGGWcSTaKpYCqYiqaiqWQqmcqmsqliqphqppq5w9xh7jR3mrvMXeZuc7epY+qYeqaeqW/qmwamgWloGppGppFpbBqbJqaJaWqammammWlumpsWpoVpaVqa1qa1aWvamnamnWlv2puOpqPpZDqZLqaLSTJJpqvparqZbqa76W56mB6mp+lpeplepo/pY/qavqaf6WeSTbIZaAaawWawGWqGmuFmuBlhRpiRZqRJMSlmtBltxpgxZqwZa8aZN8x486aZYCaaSWaymWKmmlSTaqaZaWa6mW5mmBlmlpll0kyamWvmmnlmnllgFpiFZqFZZBaZJWaJSTfpJsNkmEyTaZab5SbLZJmVZqVZbVabtWatWW/Wm41mo9lsNputZqvZbrabHWaH2WV2mT1mj9ln9pn9Zr85YA6Yg+agOWQOeQQwR8wRk22yzVFz1Bwzx8xxc9ycMCfMSXPSnDanzRlzxpw1Z815c95cMD+bi+YXc8l4E2Pz2fz2Ghtrr7UF7HX2H+MitqiNt8VscattIVv472JjrU2wpW2Z3y4xbXmbkHMstWWts+Vsoi1vq9iqtpqtbu+wNeydtubv4vr2XtvA3mcb2vttPXvP38WN7AO2sX3ENrGP2qa2lW1m29jm9hHbwj5qW9pWtrVtYzvZzraLfdIm2adsV/v07+IMu8yutxvsRrvJ7ref2vP2J3vMfmsv2J9tP9vfDrcv2RH2ZTvSvmJT7KjfxePtm3aCnWgn2cl2ip36u3iWnW3T7Bw7175r59n5v4vT7Qd2oc20i+xiu8Qu/TXOqSnTfmiX249sll1hV9pVdrVdY9fadf+71lV2i91qt9l99hO7w+60u+xuu8fu/TXO2Y4D9jN70H5uj9pv7GH7pT1ij9ts+/Wvcc72Hbff2RP2e3vSnrKn7Q/2jP3RnrXncrbf52z7D/YXe8l6C4QkSJKigPJQXoqhfJSfrqFYupYK0HUUoespjm6ggnQjFaLCVISKUjwVo+KkyZAlopBKUEmK0k1Uim6mBCpNZagsOSpHiVSeKtAtVJFupUp0G1Wm26kKVaVqVJ3uoBp0J9Wku6gW3U21qQ7VpXp0D9Wne6kB3UcN6X5qRA9QY3qQmtBfqCk9RM3oYWpOj1ALepRaUitqTW2oLT1G7ehxak8dqCM9QZ2oM3WhJymJnqKu9DR1o2eoOz1LPeg56knPUy/qTX3oBepLL1I/6k/JNIAG0iAaTENoKA2j4fQSjaCXaSS9Qik0ikbTqzSGXqOx9DqNozdoPL1JE2giTaLJNIWmUiq9RdPobZpO79AMmkmzaDal0RyaS+/SPJpPC+g9Wkjv0yJaTEtoKaXTB5RByyiTPqTl9BFl0QpaSatoNa2htbSO1tMG2kibaDNtoa20jbbTx7SDdtIu2k17aC/to09oP+W7/IH7nA7RF3SYvqQj9BVl09d0lL6hY/QtHafv6AR9TyfpFJ2mH+gM/Uhn6Rydp5/oAv1MF+kXukSeIMRQhDJUYRDmCfOGMWG+MH94TRgbXhsWCK8LI+H1YVx4Q1gwvDEsFBYOi4RFw/iwWFg81KEJbUhhGJYIS4bR8KawVHhzmBCWDsuEZUMXlgsTw/JhhfCWsGJ4a1gpvC2sHN4eVgmrho/cXz28I6wR3hnWDO8Ka4V3h7XDOmHdsF54T1g/vDdsEN4XNgzvDyuGD4SNwwdDuPx7lWbhw2Hz8JGwRfho2DJsFbYO24Rtw8fCduHjYfuwQ9gxfCLsFHYOu4RPhknhU2HX8Ok/XJ8cDggHhoPCQaH398kl0aXR9OgH0Yzosmhm9MPo8uhH0azoiujK6Kro6uia6Nrouuj66Iboxuim6ObolujW6Lao9/XygkMnnHTKBS6Py+tiXD6X313jYt21roC7zkXc9S7O3eAKuhtdIVfYFXFFXbwr5oo77YyzjlzoSriSLupucqXczS7BlXZlXFnnXDmX6Nq4tq6ta+ced+1dB9fRPeGecJ1dZ/eke9I95bq6p10394zr7p51Pdxz7jn3vOvlers+7gXX173o+rn+Ltklu4FuoBvsBruhbqgb7oa7EW6EG+lGuhSX4ka70W6MG+PGurFunBvnxrvxboKb4Ca5SW6Km+JSXaqb5qa56W66CwBglpvl0lyam+vmunlunlvgFriFCQvdIrfILXFLXLpLdxkuw2W6TLfcLXdZLsutdCvdarfarXVr3Xq33m10G91mt9ltdVvddrfd7XA73C63y+1xe9w+t8/td/vdAXfAHXQH3SF3yB12h90R95XLdl+7o+4bd8x9646779wJ97076U650+4Hd8b96M66c+68+8ldcD+7i+4Xd8l5lxp5KzIt8nZkeuSdyIzIzMisyOxIWmROZG7k3ci8yPzIgsh7kYWR9yOLIosjSyJLI+mRDyIZkWWRzMiHkeWRjyJZkRWRlZFVkdWRNQp8sR2hL+FL+qi/yZfyN/sEX9qX8WW98+V8oi/vK/hbfEV/q6/kb/OV/e2+iq/qq/lHfUvfyrf2bXxb/5hv5x/37X0H39E/4Tv5zr6Lf9In+ad8V/+07+af8d39s76Hf8739M/7Xr637+Nf8H39i76f7++T/QA/0A/yg/0QP9QP88P9S36Ef9mP9K/4FD/Kj/av+jH+NT/Wv+7H+Tf8eP+mn+An+kl+sp/ip/pU/5af5t/20/07foaf6Wf52T7Nz/Fz/bt+np/vF/j3/EL/vl/kF/slfqlP9x/4DL/MZ/oP/XL/kc/yK/xKv8qv9mv8Wr/Or/cb/Ea/yW/2W/xWv81v9x/7HX6n3+V3+z1+r9/nP/H7/af+gP/MH/Sf+0P+C3/Yf+mP+K98tv/aH836xh/z3/rj/jt/wn/vT/pT/rT/wZ/xP/qz/pw/73/yF/zP/qL/xV/6D3+zVufPuHXOGGOMMfb/oUF/sH7AP3lMAYC4PP7Ze3/tzqLZf7teAsDmQn8dDxHxnSIA8FT/ng/9ttSunZycfPm5WRKCkosBIPIPL3A5XgEdoTMkQQeo8E/rGyJ6X6B/M3/GWJoSvQ0g/9/kxMCV+Mr8X/yL+R97YnxG5fB83L+uP7oYIKHklZycq/Df4hXQ8devDjtAxX8xf+F2/67+LAn5vkwFaP83ObEA0D7fP9afCI/D05D0d89kjDHGGGOMMcb+aoio1v0Prj9/vT6PV1dy8sKV+I+uzxljjDHGGGOMMXb1Pdu7z5OPJSV16M4DHvAglw06/5vnXO3/mRhjjDHGGGN/tisn/Vcey3c1C2KMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxnKh/xd/aexqbyNjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2tf2vAAAA///aYjRz")
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f0000001fc0)=""/184, 0xb8)

3.010478499s ago: executing program 2 (id=7343):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x5, 0x10, &(0x7f0000000000)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f0000000040)=ANY=[@ANYBLOB="2c0000002000010400000000000000000a0000000000000000000000080017004e224e22080018"], 0x2c}}, 0x0)

2.805731887s ago: executing program 5 (id=7344):
syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000380)={[{@acl}, {@heartbeat_none}, {@err_ro}, {@coherency_full}, {@coherency_full}, {@localflocks}, {@intr}, {@noacl}]}, 0x1, 0x442a, &(0x7f0000008940)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x147042, 0x0)
pwritev2(r0, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)

2.211987919s ago: executing program 0 (id=7345):
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000880)=@setlink={0x30, 0x13, 0xbaa23f3d13f2d1f5, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_TXQLEN={0x8}, @IFLA_GSO_MAX_SIZE={0x8, 0x29, 0x10000}]}, 0x30}, 0x1, 0x0, 0x0, 0x40010}, 0x0)

1.059982252s ago: executing program 5 (id=7346):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
remap_file_pages(&(0x7f00002ec000/0x200000)=nil, 0x200000, 0x0, 0x2, 0x0)
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x4, 0x0, 0x0, 0x2)

248.810668ms ago: executing program 5 (id=7347):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000000), 0x4)
syz_emit_ethernet(0x52, &(0x7f0000000a00)={@empty, @remote, @val, {@ipv6={0x86dd, @tcp={0x0, 0x6, "00fbff", 0x14, 0x2f, 0x0, @dev, @private2, {[], {{0x0, 0x8902, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0)

120.236452ms ago: executing program 5 (id=7348):
capset(&(0x7f0000000040)={0x20080522}, &(0x7f0000000080))
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='projid_map\x00')
fchown(r0, 0x0, 0xee00)

0s ago: executing program 5 (id=7349):
setsockopt$ax25_SO_BINDTODEVICE(0xffffffffffffffff, 0x101, 0x19, &(0x7f0000000000)=@bpq0, 0x10)
r0 = syz_init_net_socket$bt_sco(0x1f, 0x5, 0x2)
ioctl$sock_netdev_private(r0, 0x89f1, &(0x7f0000000000))

kernel console output (not intermixed with test programs):

59][T21997] loop0: detected capacity change from 0 to 4096
[  576.664811][T21997] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  576.692809][T22001] netlink: 'syz.5.6788': attribute type 11 has an invalid length.
[  576.703927][T22001] netlink: 'syz.5.6788': attribute type 1 has an invalid length.
[  576.736199][T22001] netlink: 191384 bytes leftover after parsing attributes in process `syz.5.6788'.
[  576.768238][T21997] ntfs3: loop0: ino=5, "/" directory corrupted
[  576.789485][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  576.810506][    T8] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  576.826748][    T8] usb 3-1: New USB device found, idVendor=0458, idProduct=501b, bcdDevice= 0.00
[  576.841485][    T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  576.854423][    T8] usb 3-1: config 0 descriptor??
[  577.091249][T22009] loop4: detected capacity change from 0 to 16
[  577.152678][T22009] erofs: (device loop4): mounted with root inode @ nid 36.
[  577.260563][T22016] loop5: detected capacity change from 0 to 512
[  577.290696][    T8] kye 0003:0458:501B.0016: tablet report size too small, or kye_tablet_rdesc unexpectedly large
[  577.345336][T22016] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  577.447056][    T8] kye 0003:0458:501B.0016: hidraw0: USB HID v0.00 Device [HID 0458:501b] on usb-dummy_hcd.2-1/input0
[  577.461011][    T8] kye 0003:0458:501B.0016: tablet-enabling feature report not found
[  577.482137][    T8] kye 0003:0458:501B.0016: tablet enabling failed
[  577.523739][T22022] loop3: detected capacity change from 0 to 1024
[  577.540010][T19006] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  577.565644][    T8] usb 3-1: USB disconnect, device number 28
[  577.772908][  T938] hfsplus: b-tree write err: -5, ino 4
[  578.261235][T22051] loop5: detected capacity change from 0 to 512
[  578.341309][T22057] loop1: detected capacity change from 0 to 256
[  578.478700][T22051] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  578.608456][T22066] loop1: detected capacity change from 0 to 512
[  578.616392][T22069] ax25_connect(): syz.2.6819 uses autobind, please contact jreuter@yaina.de
[  578.705747][T22066] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended
[  578.765068][T22066] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  578.828503][T19006] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  578.954386][T22066] EXT4-fs error (device loop1): ext4_add_entry:2435: inode #2: comm syz.1.6817: Directory hole found for htree leaf block 0
[  579.037860][T22079] EXT4-fs warning (device loop1): ext4_update_dynamic_rev:1137: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  579.321322][T22028] loop4: detected capacity change from 0 to 40427
[  579.354131][T12855] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.361602][    T8] hid-generic 000D:0000:0000.0017: unknown main item tag 0x0
[  579.379160][T22028] F2FS-fs (loop4): Insane cp_payload (553648128 >= 504)
[  579.422285][T22028] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  579.452008][    T8] hid-generic 000D:0000:0000.0017: unknown main item tag 0x0
[  579.522912][    T8] hid-generic 000D:0000:0000.0017: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz1
[  579.534339][T22028] F2FS-fs (loop4): invalid crc value
[  579.570042][T22028] F2FS-fs (loop4): Found nat_bits in checkpoint
[  579.915491][T22028] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  579.936113][T22028] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  580.313716][T22120] use of bytesused == 0 is deprecated and will be removed in the future,
[  580.345550][T22120] use the actual size instead.
[  580.460642][T22102] loop5: detected capacity change from 0 to 40427
[  580.573790][T22104] loop0: detected capacity change from 0 to 32768
[  580.586348][T22102] F2FS-fs (loop5): invalid crc value
[  580.611400][T22102] F2FS-fs (loop5): Found nat_bits in checkpoint
[  580.647504][T22131] loop2: detected capacity change from 0 to 1024
[  580.682372][T21590] usb 4-1: new high-speed USB device number 32 using dummy_hcd
[  580.850350][T22102] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e4
[  580.862300][T21590] usb 4-1: Using ep0 maxpacket: 32
[  580.877236][T21590] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  580.892271][ T3003] hfsplus: b-tree write err: -5, ino 4
[  580.895577][T22134] loop1: detected capacity change from 0 to 128
[  580.914923][T21590] usb 4-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  580.935008][T21590] usb 4-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40
[  580.945616][T21590] usb 4-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0
[  580.957492][T21590] usb 4-1: Product: syz
[  580.961692][T21590] usb 4-1: Manufacturer: syz
[  581.017307][T21590] hub 4-1:4.0: USB hub found
[  581.025643][T22134] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  581.224018][T21590] hub 4-1:4.0: 2 ports detected
[  581.260761][T12855] EXT4-fs error (device loop1): ext4_readdir:221: inode #11: comm syz-executor: path /650/file0/lost+found: directory fails checksum at offset 1024
[  581.302760][T12855] EXT4-fs error (device loop1): ext4_readdir:221: inode #11: comm syz-executor: path /650/file0/lost+found: directory fails checksum at offset 8192
[  581.322873][T12855] EXT4-fs error (device loop1): ext4_empty_dir:3115: inode #11: block 1: comm syz-executor: Directory block failed checksum
[  581.342546][   T46] usb 3-1: new high-speed USB device number 29 using dummy_hcd
[  581.362369][T12855] EXT4-fs error (device loop1): ext4_readdir:221: inode #11: comm syz-executor: path /650/file0/lost+found: directory fails checksum at offset 1024
[  581.480018][T12855] EXT4-fs error (device loop1): ext4_readdir:221: inode #11: comm syz-executor: path /650/file0/lost+found: directory fails checksum at offset 8192
[  581.534452][T12855] EXT4-fs error (device loop1): ext4_empty_dir:3115: inode #11: block 1: comm syz-executor: Directory block failed checksum
[  581.552194][   T46] usb 3-1: Using ep0 maxpacket: 16
[  581.562826][   T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  581.582247][   T46] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  581.593633][T12855] EXT4-fs error (device loop1): ext4_readdir:221: inode #11: comm syz-executor: path /650/file0/lost+found: directory fails checksum at offset 1024
[  581.619755][   T46] usb 3-1: New USB device found, idVendor=1044, idProduct=7a4d, bcdDevice= 0.00
[  581.640307][T21590] hub 4-1:4.0: set hub depth failed
[  581.652655][T12855] EXT4-fs error (device loop1): ext4_readdir:221: inode #11: comm syz-executor: path /650/file0/lost+found: directory fails checksum at offset 8192
[  581.671628][   T46] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  581.697407][T21590] usb 4-1: USB disconnect, device number 32
[  581.700777][T12855] EXT4-fs error (device loop1): ext4_empty_dir:3115: inode #11: block 1: comm syz-executor: Directory block failed checksum
[  581.712332][   T46] usb 3-1: config 0 descriptor??
[  581.772138][T12855] EXT4-fs error (device loop1): ext4_readdir:221: inode #11: comm syz-executor: path /650/file0/lost+found: directory fails checksum at offset 1024
[  581.945606][T22151] loop5: detected capacity change from 0 to 64
[  582.063924][   T29] audit: type=1800 audit(582.024:159): pid=22151 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.6846" name="file0" dev="loop5" ino=21 res=0 errno=0
[  582.092803][T22141] loop0: detected capacity change from 0 to 32768
[  582.157006][T22141] JBD2: Ignoring recovery information on journal
[  582.201887][   T46] waterforce 0003:1044:7A4D.0018: unknown main item tag 0x0
[  582.210945][   T46] waterforce 0003:1044:7A4D.0018: unknown main item tag 0x0
[  582.218517][   T46] waterforce 0003:1044:7A4D.0018: unknown main item tag 0x0
[  582.226283][   T46] waterforce 0003:1044:7A4D.0018: unknown main item tag 0x0
[  582.237465][   T46] waterforce 0003:1044:7A4D.0018: hidraw0: USB HID v0.00 Device [HID 1044:7a4d] on usb-dummy_hcd.2-1/input0
[  582.353877][T22141] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  582.366965][   T46] waterforce 0003:1044:7A4D.0018: fw version request failed with -38
[  582.469614][   T46] usb 3-1: USB disconnect, device number 29
[  582.586776][T22141] (syz.0.6848,22141,1):ocfs2_group_extend:314 ERROR: The disk is too old and small. Force to do offline resize.
[  582.717284][T19268] ocfs2: Unmounting device (7,0) on (node local)
[  582.892630][T21590] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  583.082477][T21590] usb 4-1: Using ep0 maxpacket: 16
[  583.112351][T21590] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  583.146913][T21590] usb 4-1: New USB device found, idVendor=056a, idProduct=0000, bcdDevice= 0.00
[  583.198794][T21590] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  583.219141][T21590] usb 4-1: config 0 descriptor??
[  583.240607][T22178] netlink: 'syz.5.6864': attribute type 1 has an invalid length.
[  583.248983][T22178] netlink: 'syz.5.6864': attribute type 2 has an invalid length.
[  583.294842][T12855] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  583.408519][T22180] loop4: detected capacity change from 0 to 256
[  583.473882][T22182] nbd: must specify an index to disconnect
[  583.670156][T21590] wacom 0003:056A:0000.0019: Unknown device_type for 'HID 056a:0000'. Assuming pen.
[  583.687719][ T3003] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  583.705145][T21590] wacom 0003:056A:0000.0019: hidraw0: USB HID v0.00 Device [HID 056a:0000] on usb-dummy_hcd.3-1/input0
[  583.764168][T21590] input: Wacom Penpartner Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:056A:0000.0019/input/input38
[  583.925178][T21590] usb 4-1: USB disconnect, device number 33
[  583.940891][T22196] netlink: zone id is out of range
[  583.981471][T22196] netlink: zone id is out of range
[  584.013917][ T3003] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  584.023362][T22196] netlink: zone id is out of range
[  584.031543][T22196] netlink: zone id is out of range
[  584.052258][T22196] netlink: zone id is out of range
[  584.071661][T22196] netlink: zone id is out of range
[  584.114547][T22196] netlink: zone id is out of range
[  584.130916][T22196] netlink: zone id is out of range
[  584.148476][T22196] netlink: zone id is out of range
[  584.169101][T22196] netlink: zone id is out of range
[  584.263703][ T3003] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  584.471619][T22204] IPVS: set_ctl: invalid protocol: 108 0.0.0.0:0
[  584.503001][ T4614] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  584.504626][ T3003] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  584.529827][ T4614] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  584.540660][ T4614] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  584.550635][ T4614] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  584.558923][ T4614] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  584.566691][ T4614] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  585.339302][ T3003] bridge_slave_1: left allmulticast mode
[  585.399942][ T3003] bridge_slave_1: left promiscuous mode
[  585.455753][ T3003] bridge0: port 2(bridge_slave_1) entered disabled state
[  585.647299][ T3003] bridge_slave_0: left allmulticast mode
[  585.654858][ T3003] bridge_slave_0: left promiscuous mode
[  585.660571][ T3003] bridge0: port 1(bridge_slave_0) entered disabled state
[  585.947794][T22234] loop5: detected capacity change from 0 to 32768
[  585.973497][T22215] loop3: detected capacity change from 0 to 32768
[  586.010912][T22215] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.6878 (22215)
[  586.072230][T22250] loop2: detected capacity change from 0 to 4096
[  586.113928][T22215] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  586.115604][T22250] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  586.141596][T22215] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  586.159219][T22215] BTRFS info (device loop3): using free-space-tree
[  586.182652][T22234] JBD2: Ignoring recovery information on journal
[  586.287929][T22234] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  586.325722][T22250] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[  586.377076][T22234] (syz.5.6880,22234,0):ocfs2_group_add:495 ERROR: The disk is too old and small. Force to do offline resize.
[  586.519940][T22250] Process accounting resumed
[  586.533638][T19006] ocfs2: Unmounting device (7,5) on (node local)
[  586.693173][T20593] Bluetooth: hci0: command tx timeout
[  586.905957][T16493] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  587.577486][ T3003] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  587.612864][ T3003] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  587.640121][ T3003] bond0 (unregistering): Released all slaves
[  587.667256][T22283] loop3: detected capacity change from 0 to 8
[  587.683665][T22283] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  587.902413][ T3003] tipc: Disabling bearer <eth:vlan0>
[  588.063497][ T3003] tipc: Left network mode
[  588.279879][ T3003] IPVS: stopping backup sync thread 20163 ...
[  588.281929][T22208] chnl_net:caif_netlink_parms(): no params data found
[  588.303789][ T3003] IPVS: stopping backup sync thread 20162 ...
[  588.332753][ T3003] IPVS: stopping backup sync thread 20161 ...
[  588.362356][ T3003] IPVS: stopping backup sync thread 20156 ...
[  588.492459][ T5237] usb 5-1: new high-speed USB device number 29 using dummy_hcd
[  588.598459][T22322] loop2: detected capacity change from 0 to 512
[  588.660501][ T5237] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  588.752112][ T5237] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  588.761909][ T5237] usb 5-1: New USB device found, idVendor=0543, idProduct=e621, bcdDevice= 0.00
[  588.781721][T20593] Bluetooth: hci0: command tx timeout
[  588.795011][T22322] EXT4-fs error (device loop2): ext4_orphan_get:1391: inode #15: comm syz.2.6905: casefold flag without casefold feature
[  588.846305][T22322] EXT4-fs error (device loop2): ext4_orphan_get:1396: comm syz.2.6905: couldn't read orphan inode 15 (err -117)
[  588.846426][ T5237] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  588.861772][T22322] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.916108][ T5237] usb 5-1: config 0 descriptor??
[  589.034310][T22208] bridge0: port 1(bridge_slave_0) entered blocking state
[  589.068922][T22208] bridge0: port 1(bridge_slave_0) entered disabled state
[  589.089501][ T5243] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  589.092591][T22208] bridge_slave_0: entered allmulticast mode
[  589.119830][T22208] bridge_slave_0: entered promiscuous mode
[  589.165796][T22208] bridge0: port 2(bridge_slave_1) entered blocking state
[  589.199762][T22208] bridge0: port 2(bridge_slave_1) entered disabled state
[  589.239112][T22208] bridge_slave_1: entered allmulticast mode
[  589.264919][T22208] bridge_slave_1: entered promiscuous mode
[  589.381559][ T5237] viewsonic 0003:0543:E621.001A: hidraw0: USB HID v0.00 Device [HID 0543:e621] on usb-dummy_hcd.4-1/input0
[  589.574306][T22208] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  589.587610][ T5237] usb 5-1: USB disconnect, device number 29
[  589.690096][T22208] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  589.870320][T22334] loop3: detected capacity change from 0 to 32768
[  589.956195][T22334] XFS (loop3): Mounting V5 Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  590.086416][T22350] sp0: Synchronizing with TNC
[  590.111784][T22334] XFS (loop3): Ending clean mount
[  590.119905][T22349] [U] è`
[  590.264955][T22368] loop5: detected capacity change from 0 to 8
[  590.290327][T16493] XFS (loop3): Unmounting Filesystem ca7e2101-b8f1-4838-8e2d-7637b90620e6
[  590.301937][T22208] team0: Port device team_slave_0 added
[  590.658611][ T3003] hsr_slave_0: left promiscuous mode
[  590.707034][ T5237] usb 5-1: new high-speed USB device number 30 using dummy_hcd
[  590.727356][ T3003] hsr_slave_1: left promiscuous mode
[  590.774500][ T3003] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  590.818868][ T3003] batman_adv: batadv0: Removing interface: batadv_slave_0
[  590.833413][ T3003] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  590.851032][ T3003] batman_adv: batadv0: Removing interface: batadv_slave_1
[  590.871577][T20593] Bluetooth: hci0: command tx timeout
[  590.908045][ T5237] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  590.942500][ T5237] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  590.961363][ T3003] veth1_macvtap: left promiscuous mode
[  590.970370][ T3003] veth0_macvtap: left promiscuous mode
[  590.989600][ T5237] usb 5-1: New USB device found, idVendor=056e, idProduct=011c, bcdDevice= 0.00
[  591.023196][ T3003] veth1_vlan: left promiscuous mode
[  591.028553][ T3003] veth0_vlan: left promiscuous mode
[  591.032832][ T5237] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  591.089572][ T5237] usb 5-1: config 0 descriptor??
[  591.531089][ T5237] elecom 0003:056E:011C.001B: unknown main item tag 0x0
[  591.542559][ T2945] smc: removing ib device syz2
[  591.549388][ T5237] elecom 0003:056E:011C.001B: unknown main item tag 0xe
[  591.562127][ T5237] elecom 0003:056E:011C.001B: unknown main item tag 0x5
[  591.569747][ T5237] elecom 0003:056E:011C.001B: unknown main item tag 0x4
[  591.589042][ T5237] elecom 0003:056E:011C.001B: ignoring exceeding usage max
[  591.600366][ T5237] elecom 0003:056E:011C.001B: usage index exceeded
[  591.609258][ T5237] elecom 0003:056E:011C.001B: item 0 0 2 0 parsing failed
[  591.617759][ T5237] elecom 0003:056E:011C.001B: probe with driver elecom failed with error -22
[  591.750587][ T5237] usb 5-1: USB disconnect, device number 30
[  592.840793][ T3003] team0 (unregistering): Port device team_slave_1 removed
[  592.928197][ T3003] team0 (unregistering): Port device team_slave_0 removed
[  592.940109][T20593] Bluetooth: hci0: command tx timeout
[  593.830400][T22208] team0: Port device team_slave_1 added
[  593.852532][T22394] netlink: 2 bytes leftover after parsing attributes in process `syz.0.6927'.
[  594.082699][T22208] batman_adv: batadv0: Adding interface: batadv_slave_0
[  594.099374][T22208] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  594.215949][T22208] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  594.228883][T22208] batman_adv: batadv0: Adding interface: batadv_slave_1
[  594.236023][T22208] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  594.263505][T22208] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  594.593484][T22208] hsr_slave_0: entered promiscuous mode
[  594.622717][T22208] hsr_slave_1: entered promiscuous mode
[  594.644002][T22208] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  594.682155][T22208] Cannot create hsr debugfs directory
[  595.251139][T22438] loop3: detected capacity change from 0 to 2048
[  595.266787][T22438] NILFS (loop3): invalid segment: Checksum error in segment payload
[  595.340339][T22438] NILFS (loop3): trying rollback from an earlier position
[  595.429781][T22438] NILFS (loop3): recovery complete
[  595.481666][T22444] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  595.488953][T22408] loop4: detected capacity change from 0 to 32768
[  595.560145][T22408] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.6934 (22408)
[  595.651733][T22408] BTRFS info (device loop4): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  595.701891][T22408] BTRFS info (device loop4): using sha256 (sha256-ni) checksum algorithm
[  595.740265][T22408] BTRFS info (device loop4): using free-space-tree
[  596.028804][T22426] loop5: detected capacity change from 0 to 32768
[  596.267740][T22422] loop0: detected capacity change from 0 to 40427
[  596.292173][T22422] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  596.316029][T22422] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  596.354777][T22422] F2FS-fs (loop0): invalid crc value
[  596.363969][T22422] F2FS-fs (loop0): Found nat_bits in checkpoint
[  596.806110][T22426] JBD2: Ignoring recovery information on journal
[  596.825570][T22408] BTRFS info (device loop4): rebuilding free space tree
[  596.859317][T22482] netlink: 4 bytes leftover after parsing attributes in process `syz.3.6952'.
[  596.928158][T22408] BTRFS info (device loop4): checking UUID tree
[  597.146964][T22426] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  597.206658][T22422] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  597.219390][T22422] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  597.240483][   T29] audit: type=1800 audit(597.184:160): pid=22426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.6941" name="file1" dev="loop5" ino=16946 res=0 errno=0
[  597.243606][ T5244] BTRFS info (device loop4): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  597.466914][T19006] ocfs2: Unmounting device (7,5) on (node local)
[  598.405399][T22208] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  598.511584][T22208] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  598.563246][T22208] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  598.575776][T22516] loop4: detected capacity change from 0 to 1024
[  598.624674][T22515] netlink: 52 bytes leftover after parsing attributes in process `syz.3.6960'.
[  598.679945][T22208] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  598.991271][T22208] 8021q: adding VLAN 0 to HW filter on device bond0
[  599.032867][ T2945] hfsplus: b-tree write err: -5, ino 4
[  599.130700][T22208] 8021q: adding VLAN 0 to HW filter on device team0
[  599.168414][T14296] bridge0: port 1(bridge_slave_0) entered blocking state
[  599.175644][T14296] bridge0: port 1(bridge_slave_0) entered forwarding state
[  599.461118][T22533] loop5: detected capacity change from 0 to 4096
[  599.462503][T22536] loop4: detected capacity change from 0 to 32768
[  599.478993][T14296] bridge0: port 2(bridge_slave_1) entered blocking state
[  599.486173][T14296] bridge0: port 2(bridge_slave_1) entered forwarding state
[  599.574295][T22536] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[  599.608391][T22208] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  599.670877][T22548] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  599.681723][T22536] OCFS2: ERROR (device loop4): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has empty extent list at depth 312
[  599.717728][T22536] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[  599.757854][T22536] OCFS2: File system is now read-only.
[  599.785534][T22536] (syz.4.6966,22536,0):ocfs2_find_leaf:1940 ERROR: status = -30
[  599.813280][T22536] (syz.4.6966,22536,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[  599.854061][T22536] (syz.4.6966,22536,0):ocfs2_get_clusters:624 ERROR: status = -30
[  599.905513][T22536] (syz.4.6966,22536,0):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[  599.922557][T22536] (syz.4.6966,22536,1):ocfs2_read_virt_blocks:981 ERROR: status = -30
[  599.994163][T22536] (syz.4.6966,22536,1):ocfs2_read_dir_block:511 ERROR: status = -30
[  600.018344][T22208] 8021q: adding VLAN 0 to HW filter on device batadv0
[  600.248312][T22208] veth0_vlan: entered promiscuous mode
[  600.342766][T22208] veth1_vlan: entered promiscuous mode
[  600.445061][T22565] loop3: detected capacity change from 0 to 32768
[  600.577698][ T5244] ocfs2: Unmounting device (7,4) on (node local)
[  600.585382][T22565] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  600.605093][T22208] veth0_macvtap: entered promiscuous mode
[  600.681162][T22208] veth1_macvtap: entered promiscuous mode
[  600.820726][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  600.865478][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  600.912089][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  600.962316][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  600.989399][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.003518][T22565] XFS (loop3): Ending clean mount
[  601.011348][T22565] XFS (loop3): Quotacheck needed: Please wait.
[  601.031845][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.047329][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.122349][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.142327][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  601.160061][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.171847][T22208] batman_adv: batadv0: Interface activated: batadv_slave_0
[  601.190712][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.201449][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.211347][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.222276][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.232573][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.243094][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.253112][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.263698][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.273644][T22208] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  601.284167][T22208] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  601.295651][T22208] batman_adv: batadv0: Interface activated: batadv_slave_1
[  601.323715][T22208] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  601.352190][T22208] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  601.360998][T22208] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  601.369846][T22208] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  601.425634][T22565] XFS (loop3): Quotacheck: Done.
[  601.699353][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  601.715831][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  601.783585][T16493] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  601.862424][ T1102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  601.880548][ T1102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  602.358480][T22608] loop2: detected capacity change from 0 to 32768
[  602.388066][T22601] loop5: detected capacity change from 0 to 40427
[  602.391351][T22608] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.6985 (22608)
[  602.446901][T22601] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x1fffff
[  602.490146][T22601] F2FS-fs (loop5): Image doesn't support compression
[  602.497052][T22601] F2FS-fs (loop5): Image doesn't support compression
[  602.522519][T22601] F2FS-fs (loop5): build fault injection attr: rate: 0, type: 0x2
[  602.530603][T22608] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  602.551924][T22608] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm
[  602.577443][T22608] BTRFS info (device loop2): using free-space-tree
[  602.593116][T22601] F2FS-fs (loop5): invalid crc value
[  602.601761][T22601] F2FS-fs (loop5): Found nat_bits in checkpoint
[  602.677211][T22601] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  602.926435][T22663] netlink: 4 bytes leftover after parsing attributes in process `syz.1.6996'.
[  603.172880][T19006] syz-executor: attempt to access beyond end of device
[  603.172880][T19006] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  603.187210][T19006] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  603.316534][T22644] loop4: detected capacity change from 0 to 32768
[  603.737567][T22644] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  603.870340][T22644] XFS (loop4): Ending clean mount
[  603.880292][T22644] XFS (loop4): Quotacheck needed: Please wait.
[  604.151295][T22644] XFS (loop4): Quotacheck: Done.
[  604.204988][ T3003] BTRFS info (device loop2): qgroup scan completed (inconsistency flag cleared)
[  604.585608][T22699] loop1: detected capacity change from 0 to 32768
[  604.666473][T22699] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.7004 (22699)
[  604.766126][T19845] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  604.800414][T22699] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  604.865277][ T5244] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[  604.897093][T22699] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  604.912898][ T5243] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  604.948967][T22699] BTRFS info (device loop1): using free-space-tree
[  604.998875][T19845] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  605.071653][T19845] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  605.085923][T19845] usb 4-1: New USB device found, idVendor=0eef, idProduct=72d0, bcdDevice= 0.00
[  605.095559][T19845] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  605.125837][T19845] usb 4-1: config 0 descriptor??
[  605.670360][T19845] hid-multitouch 0003:0EEF:72D0.001C: hidraw0: USB HID v0.00 Device [HID 0eef:72d0] on usb-dummy_hcd.3-1/input0
[  605.721439][T22208] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  605.762369][T19845] usb 4-1: USB disconnect, device number 34
[  605.902199][   T46] usb 5-1: new high-speed USB device number 31 using dummy_hcd
[  605.957387][T22758] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7019'.
[  606.072567][   T46] usb 5-1: Using ep0 maxpacket: 32
[  606.084161][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  606.129758][   T46] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  606.162173][   T46] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00
[  606.204159][   T46] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  606.224103][   T46] usb 5-1: config 0 descriptor??
[  606.259841][T22765] loop1: detected capacity change from 0 to 1024
[  606.264607][T22766] loop0: detected capacity change from 0 to 256
[  606.334479][T22766] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  606.475971][T22765] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  606.661128][   T46] kone 0003:1E7D:2CED.001D: hidraw0: USB HID v0.00 Device [HID 1e7d:2ced] on usb-dummy_hcd.4-1/input0
[  606.667219][T22722] warn_alloc: 3 callbacks suppressed
[  606.667239][T22722] syz.5.6998: vmalloc error: size 3932160, failed to allocated page array size 7680, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[  606.720324][T22722] CPU: 0 UID: 0 PID: 22722 Comm: syz.5.6998 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[  606.730796][T22722] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  606.740871][T22722] Call Trace:
[  606.744168][T22722]  <TASK>
[  606.747146][T22722]  dump_stack_lvl+0x241/0x360
[  606.751887][T22722]  ? __pfx_dump_stack_lvl+0x10/0x10
[  606.757124][T22722]  ? __pfx__printk+0x10/0x10
[  606.761770][T22722]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[  606.768219][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.773894][T22722]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[  606.780435][T22722]  warn_alloc+0x278/0x410
[  606.784809][T22722]  ? __pfx_warn_alloc+0x10/0x10
[  606.789700][T22722]  ? __v4l2_ctrl_modify_dimensions+0x43b/0xb60
[  606.795898][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.801574][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.807243][T22722]  ? __get_vm_area_node+0x23d/0x270
[  606.812491][T22722]  __vmalloc_node_range_noprof+0x6a2/0x1400
[  606.818459][T22722]  ? __kmalloc_cache_node_noprof+0x1d3/0x300
[  606.824521][T22722]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  606.830916][T22722]  ? __v4l2_ctrl_modify_dimensions+0x43b/0xb60
[  606.837197][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.842879][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.848557][T22722]  ? __get_vm_area_node+0x23d/0x270
[  606.853799][T22722]  __vmalloc_node_range_noprof+0x5bc/0x1400
[  606.857102][   T46] kone 0003:1E7D:2CED.001D: couldn't init struct kone_device
[  606.859749][T22722]  ? __v4l2_ctrl_modify_dimensions+0x43b/0xb60
[  606.872656][   T46] kone 0003:1E7D:2CED.001D: couldn't install mouse
[  606.873294][T22722]  ? __mutex_trylock_common+0x183/0x2e0
[  606.885433][T22722]  ? rcu_is_watching+0x15/0xb0
[  606.890237][T22722]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[  606.891744][   T46] kone 0003:1E7D:2CED.001D: probe with driver kone failed with error -5
[  606.896609][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.896662][T22722]  ? rcu_is_watching+0x15/0xb0
[  606.915376][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.921067][T22722]  ? __kmalloc_node_noprof+0x247/0x440
[  606.921744][   T46] usb 5-1: USB disconnect, device number 31
[  606.926544][T22722]  ? __kvmalloc_node_noprof+0x72/0x190
[  606.926597][T22722]  __kvmalloc_node_noprof+0x142/0x190
[  606.926636][T22722]  ? __v4l2_ctrl_modify_dimensions+0x43b/0xb60
[  606.926679][T22722]  __v4l2_ctrl_modify_dimensions+0x43b/0xb60
[  606.926721][T22722]  ? tpg_update_mv_step+0x361/0x4f0
[  606.926758][T22722]  vivid_update_format_cap+0x133c/0x2090
[  606.926815][T22722]  ? __pfx_vivid_update_format_cap+0x10/0x10
[  606.926852][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.934195][T22777] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'syz0'
[  606.938174][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  606.992228][T22722]  vivid_vid_cap_s_dv_timings+0x535/0x1230
[  606.998211][T22722]  __video_do_ioctl+0xc25/0xdd0
[  607.003106][T22722]  ? __pfx___video_do_ioctl+0x10/0x10
[  607.008930][T22722]  ? srso_alias_return_thunk+0x5/0xfbef5
[  607.014588][T22722]  ? __might_fault+0xc6/0x120
[  607.019291][T22722]  video_usercopy+0x89d/0x1180
[  607.024082][T22722]  ? __pfx___video_do_ioctl+0x10/0x10
[  607.029472][T22722]  ? __pfx_video_usercopy+0x10/0x10
[  607.034702][T22722]  ? __fget_files+0x29/0x470
[  607.039314][T22722]  ? __fget_files+0x3f3/0x470
[  607.044011][T22722]  v4l2_ioctl+0x18b/0x1e0
[  607.048355][T22722]  ? __pfx_v4l2_ioctl+0x10/0x10
[  607.053217][T22722]  __se_sys_ioctl+0xfb/0x170
[  607.057827][T22722]  do_syscall_64+0xf3/0x230
[  607.062374][T22722]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  607.068315][T22722] RIP: 0033:0x7f9766f7def9
[  607.072741][T22722] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  607.092376][T22722] RSP: 002b:00007f9767d4e038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[  607.100819][T22722] RAX: ffffffffffffffda RBX: 00007f9767135f80 RCX: 00007f9766f7def9
[  607.108816][T22722] RDX: 0000000020000040 RSI: 00000000c0845657 RDI: 0000000000000003
[  607.116820][T22722] RBP: 00007f9766ff0b76 R08: 0000000000000000 R09: 0000000000000000
[  607.124820][T22722] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  607.132814][T22722] R13: 0000000000000000 R14: 00007f9767135f80 R15: 00007fffc54ad7f8
[  607.140817][T22722]  </TASK>
[  607.163800][T22208] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  607.217771][T22722] Mem-Info:
[  607.226918][T22722] active_anon:3635 inactive_anon:0 isolated_anon:0
[  607.226918][T22722]  active_file:13856 inactive_file:38911 isolated_file:0
[  607.226918][T22722]  unevictable:768 dirty:328 writeback:0
[  607.226918][T22722]  slab_reclaimable:9247 slab_unreclaimable:104138
[  607.226918][T22722]  mapped:24671 shmem:1270 pagetables:669
[  607.226918][T22722]  sec_pagetables:0 bounce:0
[  607.226918][T22722]  kernel_misc_reclaimable:0
[  607.226918][T22722]  free:1273812 free_pcp:541 free_cma:0
[  607.321384][T22722] Node 0 active_anon:14540kB inactive_anon:0kB active_file:55424kB inactive_file:155572kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:98684kB dirty:1308kB writeback:0kB shmem:3544kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:10112kB pagetables:2876kB sec_pagetables:0kB all_unreclaimable? no
[  607.411154][T22722] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:4kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[  607.522270][T22722] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  607.589961][T22722] lowmem_reserve[]: 0 2467 2468 0 0
[  607.619041][T22722] Node 0 DMA32 free:1142640kB boost:0kB min:34228kB low:42784kB high:51340kB reserved_highatomic:0KB active_anon:16604kB inactive_anon:0kB active_file:55424kB inactive_file:154752kB unevictable:1536kB writepending:1408kB present:3129332kB managed:2554524kB mlocked:0kB bounce:0kB free_pcp:6868kB local_pcp:6264kB free_cma:0kB
[  607.762764][T22722] lowmem_reserve[]: 0 0 0 0 0
[  607.767679][T22722] Node 0 Normal free:8kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:36kB inactive_anon:0kB active_file:0kB inactive_file:820kB unevictable:0kB writepending:0kB present:1048576kB managed:872kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:0kB free_cma:0kB
[  607.880558][T22722] lowmem_reserve[]: 0 0 0 0 0
[  607.887311][T22722] Node 1 Normal free:3929524kB boost:0kB min:55660kB low:69572kB high:83484kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:72kB unevictable:1536kB writepending:4kB present:4194304kB managed:4109120kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[  607.929785][T22230] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  607.980940][T22722] lowmem_reserve[]: 0 0 0 0 0
[  607.991584][T22722] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[  608.032356][T22722] Node 0 DMA32: 208*4kB (UME) 976*8kB (UME) 833*16kB (UME) 538*32kB (UME) 328*64kB (UME) 30*128kB (UME) 11*256kB (UME) 8*512kB (UM) 190*1024kB (UM) 6*2048kB (UME) 211*4096kB (UME) = 1142032kB
[  608.054055][T22722] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[  608.093094][T22722] Node 1 Normal: 145*4kB (UE) 48*8kB (UE) 37*16kB (UE) 155*32kB (UE) 83*64kB (UME) 35*128kB (UE) 12*256kB (UME) 7*512kB (UM) 3*1024kB (UE) 4*2048kB (UME) 951*4096kB (M) = 3929524kB
[  608.114178][T22722] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  608.134058][T22722] Node 0 hugepages_total=3 hugepages_free=3 hugepages_surp=0 hugepages_size=2048kB
[  608.167400][T22230] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  608.178013][T22722] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[  608.190634][T22722] Node 1 hugepages_total=1 hugepages_free=1 hugepages_surp=0 hugepages_size=2048kB
[  608.243279][T22722] 56254 total pagecache pages
[  608.252563][T22722] 0 pages in swap cache
[  608.256961][T22722] Free swap  = 124436kB
[  608.261154][T22722] Total swap = 124996kB
[  608.292364][T22722] 2097051 pages RAM
[  608.299081][T22801] loop4: detected capacity change from 0 to 1024
[  608.312611][T22722] 0 pages HighMem/MovableOnly
[  608.322785][T22722] 427082 pages reserved
[  608.327657][T22722] 0 pages cma reserved
[  608.387893][T22801] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.500274][T22230] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  608.522434][   T46] usb 3-1: new high-speed USB device number 30 using dummy_hcd
[  608.573233][ T4614] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  608.634815][ T4614] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  608.645472][ T4614] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  608.654090][ T4614] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  608.663781][ T4614] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  608.671294][ T4614] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  608.693203][   T46] usb 3-1: Using ep0 maxpacket: 8
[  608.699901][   T46] usb 3-1: config 1 contains an unexpected descriptor of type 0x1, skipping
[  608.709334][   T46] usb 3-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config
[  608.719865][   T46] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  608.731256][   T46] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  608.740889][   T46] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  608.749454][   T46] usb 3-1: Product: syz
[  608.754046][   T46] usb 3-1: Manufacturer: syz
[  608.758678][   T46] usb 3-1: SerialNumber: syz
[  608.892294][T22787] loop3: detected capacity change from 0 to 32768
[  608.936731][    C1] vkms_vblank_simulate: vblank timer overrun
[  609.060266][T22230] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  609.183514][   T46] usb 3-1: 0:2 : does not exist
[  609.305329][T22230] bridge_slave_1: left allmulticast mode
[  609.311675][T22230] bridge_slave_1: left promiscuous mode
[  609.318160][T22230] bridge0: port 2(bridge_slave_1) entered disabled state
[  609.328681][T22230] bridge_slave_0: left allmulticast mode
[  609.335002][T22230] bridge_slave_0: left promiscuous mode
[  609.340889][T22230] bridge0: port 1(bridge_slave_0) entered disabled state
[  609.535617][   T46] usb 3-1: USB disconnect, device number 30
[  609.549758][T22787] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  609.929116][T22787] XFS (loop3): Ending clean mount
[  609.960580][T22787] XFS (loop3): Quotacheck needed: Please wait.
[  610.127532][T22787] XFS (loop3): Quotacheck: Done.
[  610.279820][ T5244] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  610.401919][    C1] vkms_vblank_simulate: vblank timer overrun
[  610.555171][T16493] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  610.787712][T22230] gretap0 (unregistering): left allmulticast mode
[  611.093143][T20593] Bluetooth: hci2: command tx timeout
[  611.395870][T22230] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  611.409377][T22230] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  611.424056][T22230] bond0 (unregistering): Released all slaves
[  612.341636][T22855] netlink: 536 bytes leftover after parsing attributes in process `syz.1.7055'.
[  612.758222][T22807] chnl_net:caif_netlink_parms(): no params data found
[  613.172413][T20593] Bluetooth: hci2: command tx timeout
[  613.209791][T22871] loop2: detected capacity change from 0 to 512
[  613.359259][T22849] loop3: detected capacity change from 0 to 40427
[  613.388080][T22849] F2FS-fs (loop3): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288)
[  613.412960][T22849] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[  613.446127][T22849] F2FS-fs (loop3): heap/no_heap options were deprecated
[  613.483890][T22849] F2FS-fs (loop3): invalid crc value
[  613.709750][T22230] hsr_slave_0: left promiscuous mode
[  613.729819][T22849] F2FS-fs (loop3): Found nat_bits in checkpoint
[  613.746568][T22230] hsr_slave_1: left promiscuous mode
[  613.747636][T22871] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  613.792384][T22230] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  613.799977][T22230] batman_adv: batadv0: Removing interface: batadv_slave_0
[  613.814574][T22230] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  613.833577][T22230] batman_adv: batadv0: Removing interface: batadv_slave_1
[  613.893379][ T5243] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  613.902748][T22230] veth1_macvtap: left promiscuous mode
[  613.908298][T22230] veth0_macvtap: left promiscuous mode
[  613.914185][T22230] veth1_vlan: left promiscuous mode
[  613.920577][T22230] veth0_vlan: left promiscuous mode
[  613.926523][T22849] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[  613.933996][T22849] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  613.988771][T22893] loop4: detected capacity change from 0 to 128
[  613.996243][T22893] affs: Error parsing options
[  614.002342][    T8] usb 2-1: new high-speed USB device number 31 using dummy_hcd
[  614.202270][    T8] usb 2-1: Using ep0 maxpacket: 8
[  614.222452][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  614.237366][    T8] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  614.255367][    T8] usb 2-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00
[  614.272834][    T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  614.297560][    T8] usb 2-1: config 0 descriptor??
[  614.768356][    T8] lenovo 0003:17EF:60A3.001E: item fetching failed at offset 2/5
[  614.780717][    T8] lenovo 0003:17EF:60A3.001E: hid_parse failed
[  614.787543][    T8] lenovo 0003:17EF:60A3.001E: probe with driver lenovo failed with error -22
[  614.947392][ T5237] usb 2-1: USB disconnect, device number 31
[  615.023400][T22928] loop4: detected capacity change from 0 to 256
[  615.252312][T20593] Bluetooth: hci2: command tx timeout
[  615.512666][T22919] loop3: detected capacity change from 0 to 32768
[  615.572786][T22919] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7083 (22919)
[  615.604906][T22919] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  615.621212][T22919] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[  615.630405][T22919] BTRFS info (device loop3): using free-space-tree
[  616.005015][T16493] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  616.430181][T22230] team0 (unregistering): Port device team_slave_1 removed
[  616.596549][T22230] team0 (unregistering): Port device team_slave_0 removed
[  617.342470][T20593] Bluetooth: hci2: command tx timeout
[  617.651514][T22807] bridge0: port 1(bridge_slave_0) entered blocking state
[  617.661869][T22807] bridge0: port 1(bridge_slave_0) entered disabled state
[  617.688647][T22807] bridge_slave_0: entered allmulticast mode
[  617.711395][T22807] bridge_slave_0: entered promiscuous mode
[  617.735461][T22807] bridge0: port 2(bridge_slave_1) entered blocking state
[  617.760827][T22807] bridge0: port 2(bridge_slave_1) entered disabled state
[  617.792706][T22807] bridge_slave_1: entered allmulticast mode
[  617.816343][T22807] bridge_slave_1: entered promiscuous mode
[  617.899931][T22969] sp0: Synchronizing with TNC
[  617.927108][T22968] [U] è`
[  618.073654][T22807] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  618.143989][T22807] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  618.315156][T22977] loop3: detected capacity change from 0 to 256
[  618.336480][T22807] team0: Port device team_slave_0 added
[  618.384426][T22807] team0: Port device team_slave_1 added
[  618.619112][T22807] batman_adv: batadv0: Adding interface: batadv_slave_0
[  618.649474][T22807] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  618.689228][T22983] loop5: detected capacity change from 0 to 2048
[  618.727118][ T4614] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  618.739607][ T4614] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  618.742292][T22987] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  618.764235][ T4614] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  618.776032][ T1846] usb 4-1: [UEAGLE-ATM] firmware is not available
[  618.795109][T22807] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  618.826770][T22807] batman_adv: batadv0: Adding interface: batadv_slave_1
[  618.839332][T22807] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  618.866589][ T4614] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  618.868709][T22807] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  618.875369][ T4614] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  618.946219][ T5242] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  618.954622][ T5242] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  618.965432][ T5242] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  618.975770][ T5242] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  618.989200][T22994] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  619.007120][T22994] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  619.014590][T22994] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  619.152544][T22807] hsr_slave_0: entered promiscuous mode
[  619.169204][T22807] hsr_slave_1: entered promiscuous mode
[  619.176996][T22807] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  619.185076][T22807] Cannot create hsr debugfs directory
[  619.268059][   T29] audit: type=1326 audit(619.234:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.272222][T19845] usb 6-1: new high-speed USB device number 27 using dummy_hcd
[  619.332433][   T29] audit: type=1326 audit(619.234:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.388184][   T29] audit: type=1326 audit(619.274:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.485960][T19845] usb 6-1: Using ep0 maxpacket: 16
[  619.491318][   T29] audit: type=1326 audit(619.274:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.514963][T19845] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  619.522461][   T29] audit: type=1326 audit(619.274:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.548968][T19845] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  619.574070][T22230] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  619.581333][T19845] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9
[  619.623720][T19845] usb 6-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00
[  619.629690][   T29] audit: type=1326 audit(619.274:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.643790][T19845] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  619.668164][   T29] audit: type=1326 audit(619.274:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.721557][T19845] usb 6-1: config 0 descriptor??
[  619.725555][   T29] audit: type=1326 audit(619.274:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23004 comm="syz.3.7113" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb64617def9 code=0x7ffc0000
[  619.897192][T22230] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.088065][T22230] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.180552][T19845] microsoft 0003:045E:07DA.001F: unbalanced collection at end of report description
[  620.200280][T19845] microsoft 0003:045E:07DA.001F: parse failed
[  620.218771][T23009] loop3: detected capacity change from 0 to 32768
[  620.225537][T19845] microsoft 0003:045E:07DA.001F: probe with driver microsoft failed with error -22
[  620.226176][T23009] XFS: ikeep mount option is deprecated.
[  620.278307][T23009] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  620.294166][T22230] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  620.405847][T19845] usb 6-1: USB disconnect, device number 27
[  620.444870][T23009] XFS (loop3): Ending clean mount
[  620.548995][T16493] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  620.762657][T22984] chnl_net:caif_netlink_parms(): no params data found
[  620.831947][T22992] chnl_net:caif_netlink_parms(): no params data found
[  621.013348][T20593] Bluetooth: hci0: command tx timeout
[  621.114983][T20593] Bluetooth: hci3: command tx timeout
[  621.297067][T22230] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  621.359084][T22984] bridge0: port 1(bridge_slave_0) entered blocking state
[  621.367072][T22984] bridge0: port 1(bridge_slave_0) entered disabled state
[  621.392346][T22984] bridge_slave_0: entered allmulticast mode
[  621.399558][T22984] bridge_slave_0: entered promiscuous mode
[  621.472840][ T1846] usb 6-1: new high-speed USB device number 28 using dummy_hcd
[  621.480206][T23048] loop3: detected capacity change from 0 to 256
[  621.491093][T23048] exfat: Unknown parameter 'iocharse49'
[  621.516913][T22230] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  621.533987][T22984] bridge0: port 2(bridge_slave_1) entered blocking state
[  621.541146][T22984] bridge0: port 2(bridge_slave_1) entered disabled state
[  621.560703][T22984] bridge_slave_1: entered allmulticast mode
[  621.573595][T22984] bridge_slave_1: entered promiscuous mode
[  621.592739][T22992] bridge0: port 1(bridge_slave_0) entered blocking state
[  621.600430][T22992] bridge0: port 1(bridge_slave_0) entered disabled state
[  621.618897][T22992] bridge_slave_0: entered allmulticast mode
[  621.626438][T22992] bridge_slave_0: entered promiscuous mode
[  621.635377][ T1846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  621.647925][T22992] bridge0: port 2(bridge_slave_1) entered blocking state
[  621.655328][ T1846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  621.667414][T22992] bridge0: port 2(bridge_slave_1) entered disabled state
[  621.682445][T22992] bridge_slave_1: entered allmulticast mode
[  621.689653][T22992] bridge_slave_1: entered promiscuous mode
[  621.698065][ T1846] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  621.700164][T23052] Bluetooth: MGMT ver 1.23
[  621.723950][ T1846] usb 6-1: New USB device found, idVendor=1b1c, idProduct=1d00, bcdDevice= 0.00
[  621.750039][ T1846] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  621.778298][ T1846] usb 6-1: config 0 descriptor??
[  621.818635][T22230] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  621.926121][T22992] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  621.975856][T22230] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  622.021281][T22984] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  622.077491][T22992] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  622.111401][T22984] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  622.232662][ T1846] corsair-cpro 0003:1B1C:1D00.0020: unbalanced collection at end of report description
[  622.253055][ T1846] corsair-cpro 0003:1B1C:1D00.0020: probe with driver corsair-cpro failed with error -22
[  622.281937][T22807] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  622.317849][T22992] team0: Port device team_slave_0 added
[  622.334990][T22992] team0: Port device team_slave_1 added
[  622.359302][T22984] team0: Port device team_slave_0 added
[  622.377272][T22807] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  622.435048][T22984] team0: Port device team_slave_1 added
[  622.441845][    T8] usb 6-1: USB disconnect, device number 28
[  622.495964][T22807] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  622.507414][T22992] batman_adv: batadv0: Adding interface: batadv_slave_0
[  622.522102][T22992] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  622.549422][T22992] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  622.621064][T22807] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  622.665583][T22992] batman_adv: batadv0: Adding interface: batadv_slave_1
[  622.684448][T22992] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  622.732454][T22992] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  622.766303][T22984] batman_adv: batadv0: Adding interface: batadv_slave_0
[  622.788870][T22984] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  622.824776][T22984] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  622.838329][T22984] batman_adv: batadv0: Adding interface: batadv_slave_1
[  622.846561][T22984] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  622.873810][T22984] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  622.928414][T22230] bridge_slave_1: left allmulticast mode
[  622.948701][T22230] bridge_slave_1: left promiscuous mode
[  622.955057][T22230] bridge0: port 2(bridge_slave_1) entered disabled state
[  622.967086][T22230] bridge_slave_0: left allmulticast mode
[  622.975006][T22230] bridge_slave_0: left promiscuous mode
[  622.991984][T22230] bridge0: port 1(bridge_slave_0) entered disabled state
[  623.018622][T22230] bridge_slave_1: left allmulticast mode
[  623.025086][T22230] bridge_slave_1: left promiscuous mode
[  623.034595][T22230] bridge0: port 2(bridge_slave_1) entered disabled state
[  623.044801][T22230] bridge_slave_0: left allmulticast mode
[  623.050592][T22230] bridge_slave_0: left promiscuous mode
[  623.056645][T22230] bridge0: port 1(bridge_slave_0) entered disabled state
[  623.076950][T22230] tipc: Resetting bearer <eth:geneve1>
[  623.094868][T20593] Bluetooth: hci0: command tx timeout
[  623.116297][ T5237] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  623.132546][ T5237] hid-generic 0000:0000:0000.0021: unknown main item tag 0x0
[  623.141645][ T5237] hid-generic 0000:0000:0000.0021: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  623.172286][T20593] Bluetooth: hci3: command tx timeout
[  623.358562][    C1] vkms_vblank_simulate: vblank timer overrun
[  623.362378][    T8] usb 6-1: new high-speed USB device number 29 using dummy_hcd
[  623.562324][    T8] usb 6-1: Using ep0 maxpacket: 16
[  623.581788][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  623.604600][T23076] loop3: detected capacity change from 0 to 64
[  623.611383][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  623.631109][    T8] usb 6-1: New USB device found, idVendor=1044, idProduct=7a4d, bcdDevice= 0.00
[  623.667258][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  623.687702][    T8] usb 6-1: config 0 descriptor??
[  623.897510][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  624.129142][    T8] waterforce 0003:1044:7A4D.0022: unknown main item tag 0x0
[  624.131947][    C1] vkms_vblank_simulate: vblank timer overrun
[  624.152407][    T8] waterforce 0003:1044:7A4D.0022: item fetching failed at offset 3/4
[  624.200090][    T8] waterforce 0003:1044:7A4D.0022: hid parse failed with -22
[  624.215669][    C1] vkms_vblank_simulate: vblank timer overrun
[  624.218036][    T8] waterforce 0003:1044:7A4D.0022: probe with driver waterforce failed with error -22
[  624.284920][T22230] tipc: Disabling bearer <eth:geneve1>
[  624.348023][    T8] usb 6-1: USB disconnect, device number 29
[  624.905571][T22230] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  624.922744][T22230] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  624.938780][T22230] bond0 (unregistering): Released all slaves
[  625.193371][T20593] Bluetooth: hci0: command tx timeout
[  625.264548][T20593] Bluetooth: hci3: command tx timeout
[  625.441578][T22230] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  625.460493][T22230] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  625.485083][T22230] bond0 (unregistering): Released all slaves
[  625.500516][T22230] bond1 (unregistering): Released all slaves
[  625.520034][T22230] bond2 (unregistering): Released all slaves
[  625.751452][T22992] hsr_slave_0: entered promiscuous mode
[  625.763389][T22992] hsr_slave_1: entered promiscuous mode
[  625.770584][T22992] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  625.792960][T22992] Cannot create hsr debugfs directory
[  625.800108][T22230] Êü�: left promiscuous mode
[  625.904556][T22984] hsr_slave_0: entered promiscuous mode
[  625.936631][T22984] hsr_slave_1: entered promiscuous mode
[  625.962941][T22984] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  625.975296][T22984] Cannot create hsr debugfs directory
[  626.038889][T22230] tipc: Left network mode
[  626.875426][T22807] 8021q: adding VLAN 0 to HW filter on device bond0
[  626.911692][T22807] 8021q: adding VLAN 0 to HW filter on device team0
[  626.916020][T23129] loop3: detected capacity change from 0 to 4096
[  626.933738][ T3003] bridge0: port 1(bridge_slave_0) entered blocking state
[  626.940846][ T3003] bridge0: port 1(bridge_slave_0) entered forwarding state
[  626.950629][ T3003] bridge0: port 2(bridge_slave_1) entered blocking state
[  626.957796][ T3003] bridge0: port 2(bridge_slave_1) entered forwarding state
[  626.967422][T23129] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  626.995481][T23131] loop5: detected capacity change from 0 to 164
[  626.995714][T23129] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  627.060384][T23129] Process accounting resumed
[  627.166077][    C1] vkms_vblank_simulate: vblank timer overrun
[  627.253237][T20593] Bluetooth: hci0: command tx timeout
[  627.352217][T20593] Bluetooth: hci3: command tx timeout
[  627.446637][T23141] loop5: detected capacity change from 0 to 2048
[  627.529239][T23141] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  627.594424][T23147] loop3: detected capacity change from 0 to 1024
[  627.913587][T23154] program syz.3.7172 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  627.949685][T22807] 8021q: adding VLAN 0 to HW filter on device batadv0
[  628.089344][T22230] hsr_slave_0: left promiscuous mode
[  628.102839][T22230] hsr_slave_1: left promiscuous mode
[  628.111566][T22230] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  628.119620][T22230] batman_adv: batadv0: Removing interface: batadv_slave_0
[  628.131261][T22230] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  628.150645][T22230] batman_adv: batadv0: Removing interface: batadv_slave_1
[  628.162449][T22230] hsr_slave_0: left promiscuous mode
[  628.168449][T22230] hsr_slave_1: left promiscuous mode
[  628.177646][T22230] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  628.185701][T22230] batman_adv: batadv0: Removing interface: batadv_slave_0
[  628.194332][T22230] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  628.201794][T22230] batman_adv: batadv0: Removing interface: batadv_slave_1
[  628.248936][T22230] veth1_macvtap: left promiscuous mode
[  628.254871][T22230] veth0_macvtap: left promiscuous mode
[  628.260743][T22230] veth1_vlan: left promiscuous mode
[  628.266913][T22230] veth0_vlan: left promiscuous mode
[  628.273733][T22230] veth1_macvtap: left promiscuous mode
[  628.279252][T22230] veth0_macvtap: left promiscuous mode
[  628.286129][T22230] veth1_vlan: left promiscuous mode
[  628.291380][T22230] veth0_vlan: left promiscuous mode
[  628.546116][   T29] audit: type=1326 audit(628.514:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23149 comm="syz.5.7171" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9766f7def9 code=0x7fc00000
[  629.124271][T23166] loop3: detected capacity change from 0 to 4096
[  629.135692][T23166] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[  629.164542][T23166] ntfs3: loop3: mft corrupted
[  629.169547][T23166] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[  629.179503][T23166] ntfs3: loop3: Failed to load $MFT (-22).
[  629.569315][T22230] team0 (unregistering): Port device team_slave_1 removed
[  629.631492][T22230] team0 (unregistering): Port device team_slave_0 removed
[  630.182648][ T4614] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  630.194680][ T4614] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  630.232341][ T4614] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  630.258069][ T4614] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  630.283617][ T4614] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  630.291645][ T4614] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  631.372927][T22230] team0 (unregistering): Port device team_slave_1 removed
[  631.464469][T22230] team0 (unregistering): Port device team_slave_0 removed
[  632.339909][T23164] netlink: 32 bytes leftover after parsing attributes in process `syz.5.7176'.
[  632.349897][T23164] netlink: 44 bytes leftover after parsing attributes in process `syz.5.7176'.
[  632.369334][T23164] netlink: 44 bytes leftover after parsing attributes in process `syz.5.7176'.
[  632.378598][T20593] Bluetooth: hci6: command tx timeout
[  632.504141][T22807] veth0_vlan: entered promiscuous mode
[  632.560111][T23176] netlink: 92 bytes leftover after parsing attributes in process `syz.3.7181'.
[  632.570343][T23176] netlink: 224 bytes leftover after parsing attributes in process `syz.3.7181'.
[  632.638454][T22807] veth1_vlan: entered promiscuous mode
[  632.659809][T22992] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  632.690505][T22992] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  632.764475][T22992] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  632.816271][T22992] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  632.979682][T22807] veth0_macvtap: entered promiscuous mode
[  633.032175][T23183] netlink: 'syz.5.7184': attribute type 29 has an invalid length.
[  633.048172][T23182] netlink: 'syz.5.7184': attribute type 29 has an invalid length.
[  633.076601][T22807] veth1_macvtap: entered promiscuous mode
[  633.163266][T22984] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  633.213412][T23187] nbd: illegal input index 1966080
[  633.223327][T22984] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  633.280813][T22807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  633.301295][T22807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.342014][T22807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  633.362863][T22807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.384355][T22807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  633.405172][T22807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.446347][T22807] batman_adv: batadv0: Interface activated: batadv_slave_0
[  633.469590][T22984] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  633.508477][T22984] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  633.551175][T22807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  633.592015][T22807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.610819][T22807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  633.649714][T22807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.670572][T22807] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  633.681350][T22807] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  633.693690][T22807] batman_adv: batadv0: Interface activated: batadv_slave_1
[  633.704806][T22807] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  633.713812][T22807] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  633.722643][T22807] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  633.731376][T22807] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  633.984317][ T3003] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  634.001543][ T3003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.064132][T23207] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.7195'.
[  634.074461][T23207] net_ratelimit: 324 callbacks suppressed
[  634.074481][T23207] openvswitch: netlink: IP tunnel attribute has 3052 unknown bytes.
[  634.130931][T23205] mkiss: ax0: crc mode is auto.
[  634.203758][ T3003] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  634.212966][ T3003] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  634.427734][T22992] 8021q: adding VLAN 0 to HW filter on device bond0
[  634.463801][T20593] Bluetooth: hci6: command tx timeout
[  634.765821][T23171] chnl_net:caif_netlink_parms(): no params data found
[  634.889517][T22992] 8021q: adding VLAN 0 to HW filter on device team0
[  634.940693][T22984] 8021q: adding VLAN 0 to HW filter on device bond0
[  635.064492][ T3032] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.071698][ T3032] bridge0: port 1(bridge_slave_0) entered forwarding state
[  635.282548][   T62] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.289709][   T62] bridge0: port 2(bridge_slave_1) entered forwarding state
[  635.289893][T23225] loop0: detected capacity change from 0 to 32768
[  635.340774][T22984] 8021q: adding VLAN 0 to HW filter on device team0
[  635.369257][T23225] JBD2: Ignoring recovery information on journal
[  635.410864][T23171] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.431770][T23171] bridge0: port 1(bridge_slave_0) entered disabled state
[  635.439323][T23225] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[  635.455536][T23171] bridge_slave_0: entered allmulticast mode
[  635.482988][T23171] bridge_slave_0: entered promiscuous mode
[  635.522667][T23171] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.529825][T23171] bridge0: port 2(bridge_slave_1) entered disabled state
[  635.561308][T23171] bridge_slave_1: entered allmulticast mode
[  635.579119][T22807] ocfs2: Unmounting device (7,0) on (node local)
[  635.579946][T23171] bridge_slave_1: entered promiscuous mode
[  635.621146][T22230] bridge0: port 1(bridge_slave_0) entered blocking state
[  635.628886][T22230] bridge0: port 1(bridge_slave_0) entered forwarding state
[  635.684876][T23171] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  635.835005][T23220] loop3: detected capacity change from 0 to 40427
[  635.845649][T23220] F2FS-fs (loop3): invalid crc value
[  635.851610][T22230] bridge0: port 2(bridge_slave_1) entered blocking state
[  635.858855][T22230] bridge0: port 2(bridge_slave_1) entered forwarding state
[  635.914071][T23220] F2FS-fs (loop3): Found nat_bits in checkpoint
[  635.958272][T23171] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  636.016362][T23220] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  636.049447][T23171] team0: Port device team_slave_0 added
[  636.094329][T23171] team0: Port device team_slave_1 added
[  636.122348][ T1846] usb 6-1: new high-speed USB device number 30 using dummy_hcd
[  636.179786][T23171] batman_adv: batadv0: Adding interface: batadv_slave_0
[  636.196690][T16493] syz-executor: attempt to access beyond end of device
[  636.196690][T16493] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  636.211559][T23171] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  636.236081][T23248] loop0: detected capacity change from 0 to 1024
[  636.242691][T16493] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  636.255942][T23171] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  636.299119][ T1846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  636.308978][T23248] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  636.318682][ T1846] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  636.349176][ T1846] usb 6-1: New USB device found, idVendor=056a, idProduct=0003, bcdDevice= 0.00
[  636.351749][T23171] batman_adv: batadv0: Adding interface: batadv_slave_1
[  636.358962][ T1846] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  636.389174][ T1846] usb 6-1: config 0 descriptor??
[  636.392746][T23171] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  636.422986][T23171] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  636.509814][T22807] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  636.563573][T20593] Bluetooth: hci6: command tx timeout
[  636.664424][T23171] hsr_slave_0: entered promiscuous mode
[  636.681271][T23171] hsr_slave_1: entered promiscuous mode
[  636.703176][T23171] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  636.710760][T23171] Cannot create hsr debugfs directory
[  636.833709][ T1846] wacom 0003:056A:0003.0023: Unknown device_type for 'HID 056a:0003'. Assuming pen.
[  636.882521][ T1846] wacom 0003:056A:0003.0023: hidraw0: USB HID v0.00 Device [HID 056a:0003] on usb-dummy_hcd.5-1/input0
[  636.930095][ T1846] input: Wacom Cintiq Partner Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:0003.0023/input/input41
[  637.000344][T22992] 8021q: adding VLAN 0 to HW filter on device batadv0
[  637.062424][ T1846] usb 6-1: USB disconnect, device number 30
[  637.064790][T22984] 8021q: adding VLAN 0 to HW filter on device batadv0
[  637.199747][T23171] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  637.225352][T23265] loop0: detected capacity change from 0 to 1024
[  637.242919][T23265] EXT4-fs: Ignoring removed bh option
[  637.261886][T23265] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  637.274082][T22992] veth0_vlan: entered promiscuous mode
[  637.310621][T22992] veth1_vlan: entered promiscuous mode
[  637.319228][T23265] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  637.414934][T23171] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  637.472899][T23272] netlink: 36 bytes leftover after parsing attributes in process `syz.3.7213'.
[  637.491344][T22807] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.527387][T22992] veth0_macvtap: entered promiscuous mode
[  637.769518][T23171] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  637.831890][T22992] veth1_macvtap: entered promiscuous mode
[  637.859966][T22984] veth0_vlan: entered promiscuous mode
[  637.999055][T23171] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  638.035533][T22984] veth1_vlan: entered promiscuous mode
[  638.070379][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.091592][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.114812][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.135709][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.155321][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.166878][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.176993][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.187788][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.199701][T22992] batman_adv: batadv0: Interface activated: batadv_slave_0
[  638.216990][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.230169][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.242318][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.254283][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.266193][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.276777][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.287216][T22992] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.298580][T22992] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.321668][T22992] batman_adv: batadv0: Interface activated: batadv_slave_1
[  638.355993][T22992] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  638.365283][T22992] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  638.375520][T22992] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  638.384915][T22992] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  638.568107][T23171] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  638.585250][T22984] veth0_macvtap: entered promiscuous mode
[  638.604726][T23171] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  638.612414][T20593] Bluetooth: hci6: command tx timeout
[  638.625741][T23171] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  638.638933][T23171] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  638.659993][T22984] veth1_macvtap: entered promiscuous mode
[  638.668614][ T1102] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  638.679891][ T1102] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  638.740233][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.751035][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.770386][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.790196][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.801173][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.811897][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.832561][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.843180][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.862106][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  638.887622][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.914089][T22984] batman_adv: batadv0: Interface activated: batadv_slave_0
[  638.935097][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.955402][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  638.975916][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  638.991962][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.006609][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  639.017826][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.027814][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  639.038404][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.052862][T22984] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  639.065352][T22984] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  639.077875][T22984] batman_adv: batadv0: Interface activated: batadv_slave_1
[  639.114692][ T3003] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.124500][T22984] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  639.144261][ T3003] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.159797][T22984] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  639.182166][T22984] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  639.190939][T22984] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  639.309684][T23308] loop5: detected capacity change from 0 to 256
[  639.382999][T23308] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  639.443086][T23311] netlink: zone id is out of range
[  639.473006][T23311] netlink: zone id is out of range
[  639.485169][ T3003] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.509867][T23171] 8021q: adding VLAN 0 to HW filter on device bond0
[  639.520178][T23311] netlink: set zone limit has 4 unknown bytes
[  639.520220][ T3003] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.610880][ T1102] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  639.631882][T23171] 8021q: adding VLAN 0 to HW filter on device team0
[  639.637907][ T1102] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  639.660236][T23313] loop5: detected capacity change from 0 to 1024
[  639.690410][ T3032] bridge0: port 1(bridge_slave_0) entered blocking state
[  639.697629][ T3032] bridge0: port 1(bridge_slave_0) entered forwarding state
[  639.708839][T23313] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  639.744131][ T3032] bridge0: port 2(bridge_slave_1) entered blocking state
[  639.751381][ T3032] bridge0: port 2(bridge_slave_1) entered forwarding state
[  639.770709][T23315] netlink: 24 bytes leftover after parsing attributes in process `syz.1.7232'.
[  639.802512][T23313] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:483: comm syz.5.7231: Invalid block bitmap block 0 in block_group 0
[  639.896472][T23313] Quota error (device loop5): write_blk: dquota write failed
[  639.912237][T23313] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  639.922678][T23313] EXT4-fs error (device loop5): ext4_acquire_dquot:6848: comm syz.5.7231: Failed to acquire dquot type 0
[  640.026133][T23313] EXT4-fs error (device loop5): ext4_free_blocks:6590: comm syz.5.7231: Freeing blocks not in datazone - block = 0, count = 4096
[  640.089749][T23313] EXT4-fs error (device loop5): ext4_read_inode_bitmap:140: comm syz.5.7231: Invalid inode bitmap blk 0 in block_group 0
[  640.104713][ T3032] Quota error (device loop5): do_check_range: Getting block 0 out of range 1-8
[  640.115111][ T3032] EXT4-fs error (device loop5): ext4_release_dquot:6871: comm kworker/u8:10: Failed to release dquot type 0
[  640.167961][T23313] EXT4-fs error (device loop5) in ext4_free_inode:362: Corrupt filesystem
[  640.219422][T23313] EXT4-fs (loop5): 1 orphan inode deleted
[  640.228716][T23313] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  640.254938][T23332] loop1: detected capacity change from 0 to 256
[  640.280095][T23332] exfat: Deprecated parameter 'utf8'
[  640.370783][T23332] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  640.421000][T23171] 8021q: adding VLAN 0 to HW filter on device batadv0
[  640.471022][T23340] loop2: detected capacity change from 0 to 1024
[  640.489658][T23343] netlink: zone id is out of range
[  640.495597][T23313] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 r/w. Quota mode: writeback.
[  640.514267][T23343] netlink: zone id is out of range
[  640.516139][T23340] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  640.565837][T23343] netlink: set zone limit has 4 unknown bytes
[  640.599293][T23340] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.7241: Invalid block bitmap block 0 in block_group 0
[  640.649035][T23340] Quota error (device loop2): write_blk: dquota write failed
[  640.668117][T23340] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  640.698029][T19006] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  640.722443][T23340] EXT4-fs error (device loop2): ext4_acquire_dquot:6848: comm syz.2.7241: Failed to acquire dquot type 0
[  640.764987][T23340] EXT4-fs error (device loop2): ext4_free_blocks:6590: comm syz.2.7241: Freeing blocks not in datazone - block = 0, count = 4096
[  640.910639][T23340] EXT4-fs error (device loop2): ext4_read_inode_bitmap:140: comm syz.2.7241: Invalid inode bitmap blk 0 in block_group 0
[  640.926104][T22230] Quota error (device loop2): do_check_range: Getting block 0 out of range 1-8
[  640.952204][T22230] EXT4-fs error (device loop2): ext4_release_dquot:6871: comm kworker/u8:2: Failed to release dquot type 0
[  640.964507][T23340] EXT4-fs error (device loop2) in ext4_free_inode:362: Corrupt filesystem
[  640.974391][T23340] EXT4-fs (loop2): 1 orphan inode deleted
[  640.981099][T23340] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  641.008769][T23354] pimreg: entered allmulticast mode
[  641.038330][T23355] pimreg: left allmulticast mode
[  641.080240][T22984] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  641.277255][T23359] netlink: 'syz.3.7248': attribute type 58 has an invalid length.
[  641.456797][ T1102] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  641.543831][T23171] veth0_vlan: entered promiscuous mode
[  641.579661][T23171] veth1_vlan: entered promiscuous mode
[  641.876300][ T1102] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  641.913859][T23378] netlink: zone id is out of range
[  641.924858][T23379] loop3: detected capacity change from 0 to 1024
[  641.940594][T23378] netlink: zone id is out of range
[  641.954857][T23379] hfsplus: request for non-existent node 3 in B*Tree
[  641.988102][T23379] hfsplus: request for non-existent node 3 in B*Tree
[  642.015583][T23378] netlink: set zone limit has 4 unknown bytes
[  642.056719][ T4614] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  642.069027][ T4614] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  642.081268][ T4614] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  642.091635][ T4614] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  642.102742][ T4614] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  642.110312][ T4614] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  642.285339][ T1102] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.383458][T23171] veth0_macvtap: entered promiscuous mode
[  642.536079][ T1102] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  642.614559][T23171] veth1_macvtap: entered promiscuous mode
[  642.683345][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  642.712182][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.748794][T23389] loop3: detected capacity change from 0 to 32768
[  642.761798][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  642.793425][T23389] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7262 (23389)
[  642.808567][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.832210][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  642.855201][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  642.855520][T23404] loop2: detected capacity change from 0 to 512
[  642.877284][T23389] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  642.892711][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  642.912280][T23389] BTRFS info (device loop3): using sha256 (sha256-ni) checksum algorithm
[  642.921157][T23389] BTRFS info (device loop3): using free-space-tree
[  642.955458][T23404] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  642.972526][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.019234][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  643.042212][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.072180][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  643.100402][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.125235][T23171] batman_adv: batadv0: Interface activated: batadv_slave_0
[  643.151166][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  643.178358][T22984] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  643.185708][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.211019][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  643.261598][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.288277][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  643.358382][T23436] loop2: detected capacity change from 0 to 16
[  643.367512][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.379017][T23436] erofs: (device loop2): mounted with root inode @ nid 36.
[  643.401743][T20593] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[9000]
[  643.410286][ T3032] BTRFS info (device loop3): qgroup scan completed (inconsistency flag cleared)
[  643.423439][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  643.446406][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.462279][T23436] erofs: (device loop2): z_erofs_lz4_decompress_mem: failed to decompress 6887 in[4096, 0] out[8192]
[  643.502450][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  643.530175][T23436] erofs: (device loop2): z_erofs_read_folio: read error -117 @ 0 of nid 89
[  643.560492][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.571047][   T29] audit: type=1800 audit(643.534:170): pid=23436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.7272" name="file3" dev="loop2" ino=89 res=0 errno=0
[  643.604860][T23171] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  643.626294][T23171] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  643.650280][T23171] batman_adv: batadv0: Interface activated: batadv_slave_1
[  643.699175][T16493] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  643.738128][T23171] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  643.802673][T23171] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  643.811439][T23171] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  643.859165][T23171] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  644.212548][T20593] Bluetooth: hci3: command tx timeout
[  644.456652][ T1102] bridge_slave_1: left allmulticast mode
[  644.485052][ T1102] bridge_slave_1: left promiscuous mode
[  644.490883][ T1102] bridge0: port 2(bridge_slave_1) entered disabled state
[  644.660221][ T1102] bridge_slave_0: left allmulticast mode
[  644.689028][ T1102] bridge_slave_0: left promiscuous mode
[  644.738781][ T1102] bridge0: port 1(bridge_slave_0) entered disabled state
[  644.843476][T23468] loop5: detected capacity change from 0 to 1024
[  645.462698][T14296] hfsplus: b-tree write err: -5, ino 4
[  646.179652][T23480] loop5: detected capacity change from 0 to 512
[  646.198152][T23480] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  646.260328][T23480] EXT4-fs (loop5): #clusters per group too big: 2130739200
[  646.301404][T20593] Bluetooth: hci3: command tx timeout
[  647.136745][T23485] loop5: detected capacity change from 0 to 256
[  647.160718][T23485] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  647.452297][ T5338] usb 6-1: new high-speed USB device number 31 using dummy_hcd
[  647.634098][ T5338] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  647.656803][ T5338] usb 6-1: config 0 has no interfaces?
[  647.664999][ T5338] usb 6-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  647.686673][ T5338] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  647.795715][ T5338] usb 6-1: config 0 descriptor??
[  648.076166][    T8] usb 6-1: USB disconnect, device number 31
[  648.389097][T20593] Bluetooth: hci3: command tx timeout
[  648.653589][ T1102] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  648.718129][ T1102] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  648.766670][ T1102] bond0 (unregistering): Released all slaves
[  648.896926][T23487] loop5: detected capacity change from 0 to 1024
[  649.032258][T23487] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  649.149575][   T29] audit: type=1326 audit(649.114:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb0d7def9 code=0x7ffc0000
[  649.210179][T22230] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  649.291578][T22230] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  649.322594][   T29] audit: type=1326 audit(649.144:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb0d7def9 code=0x7ffc0000
[  649.322653][   T29] audit: type=1326 audit(649.174:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f1cb0d7def9 code=0x7ffc0000
[  649.322700][   T29] audit: type=1326 audit(649.174:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb0d7def9 code=0x7ffc0000
[  649.322746][   T29] audit: type=1326 audit(649.174:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb0d7def9 code=0x7ffc0000
[  649.322792][   T29] audit: type=1326 audit(649.174:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f1cb0d7c9df code=0x7ffc0000
[  649.322838][   T29] audit: type=1326 audit(649.174:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb0d7def9 code=0x7ffc0000
[  649.322885][   T29] audit: type=1326 audit(649.174:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23491 comm="syz.0.7301" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb0d7def9 code=0x7ffc0000
[  649.424240][T19006] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  649.475654][ T1826] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  649.475695][ T1826] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  649.626303][T23384] chnl_net:caif_netlink_parms(): no params data found
[  649.697073][T23500] loop0: detected capacity change from 0 to 1024
[  649.828263][T23503] netlink: 'syz.5.7304': attribute type 3 has an invalid length.
[  650.130146][T23384] bridge0: port 1(bridge_slave_0) entered blocking state
[  650.137300][T23384] bridge0: port 1(bridge_slave_0) entered disabled state
[  650.137533][T23384] bridge_slave_0: entered allmulticast mode
[  650.138748][T23384] bridge_slave_0: entered promiscuous mode
[  650.162359][T23384] bridge0: port 2(bridge_slave_1) entered blocking state
[  650.162437][T23384] bridge0: port 2(bridge_slave_1) entered disabled state
[  650.162626][T23384] bridge_slave_1: entered allmulticast mode
[  650.163776][T23384] bridge_slave_1: entered promiscuous mode
[  650.226757][ T1826] hfsplus: b-tree write err: -5, ino 4
[  650.466844][T20593] Bluetooth: hci3: command tx timeout
[  650.617669][T23515] loop5: detected capacity change from 0 to 256
[  650.927317][T23384] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  650.960295][T23384] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  651.292322][   T29] audit: type=1326 audit(651.254:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23522 comm="syz.4.7315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f08d7def9 code=0x7ffc0000
[  651.292822][T23384] team0: Port device team_slave_0 added
[  651.306571][   T29] audit: type=1326 audit(651.254:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23522 comm="syz.4.7315" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f08d7def9 code=0x7ffc0000
[  651.344964][T23384] team0: Port device team_slave_1 added
[  651.364797][T23524] loop4: detected capacity change from 0 to 512
[  651.373603][T23524] EXT4-fs: Ignoring removed mblk_io_submit option
[  651.398431][T23524] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.7315: corrupted in-inode xattr: invalid ea_ino
[  651.398947][T23524] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.7315: couldn't read orphan inode 15 (err -117)
[  651.400397][T23524] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  651.607705][T23384] batman_adv: batadv0: Adding interface: batadv_slave_0
[  651.607732][T23384] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  651.607769][T23384] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  651.609602][T23384] batman_adv: batadv0: Adding interface: batadv_slave_1
[  651.609622][T23384] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  651.609660][T23384] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  651.655739][T23171] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  651.948995][T23384] hsr_slave_0: entered promiscuous mode
[  651.962572][T23384] hsr_slave_1: entered promiscuous mode
[  651.965193][T23384] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  651.965363][T23384] Cannot create hsr debugfs directory
[  652.606466][T23549] loop0: detected capacity change from 0 to 512
[  652.607188][T23549] EXT4-fs: Ignoring removed mblk_io_submit option
[  652.628594][T23549] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  652.629902][T23549] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  652.630170][T23549] EXT4-fs (loop0): orphan cleanup on readonly fs
[  652.631817][T23549] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:483: comm syz.0.7325: Invalid block bitmap block 0 in block_group 0
[  652.633225][T23549] EXT4-fs (loop0): Remounting filesystem read-only
[  652.633706][T23549] EXT4-fs (loop0): 1 orphan inode deleted
[  652.635032][T23549] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  652.931701][T22807] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  653.392739][T23562] netlink: 68 bytes leftover after parsing attributes in process `syz.2.7331'.
[  653.619968][T23566] loop0: detected capacity change from 0 to 256
[  653.638481][T23566] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  653.742265][    T8] usb 6-1: new high-speed USB device number 32 using dummy_hcd
[  653.931916][    T8] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  653.931975][    T8] usb 6-1: New USB device found, idVendor=17ef, idProduct=6047, bcdDevice= 0.00
[  653.932008][    T8] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  653.936281][    T8] usb 6-1: config 0 descriptor??
[  654.388242][    T8] lenovo 0003:17EF:6047.0024: hidraw0: USB HID v0.00 Device [HID 17ef:6047] on usb-dummy_hcd.5-1/input0
[  654.490477][T23576] loop2: detected capacity change from 0 to 512
[  654.574795][    T8] lenovo 0003:17EF:6047.0024: Failed to switch F7/9/11 mode: -71
[  654.591366][T23576] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  654.631623][    T8] lenovo 0003:17EF:6047.0024: Failed to switch middle button: -71
[  654.672293][    T8] lenovo 0003:17EF:6047.0024: Fn-lock setting failed: -71
[  654.704710][    T8] lenovo 0003:17EF:6047.0024: Sensitivity setting failed: -71
[  654.733420][T23576] EXT4-fs error (device loop2): ext4_map_blocks:609: inode #2: block 3: comm syz.2.7338: lblock 8 mapped to illegal pblock 3 (length 26)
[  654.774841][    T8] usb 6-1: USB disconnect, device number 32
[  654.951682][T22984] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.468150][T23590] loop5: detected capacity change from 0 to 256
[  655.604253][T23572] loop0: detected capacity change from 0 to 32768
[  655.635374][T23572] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.7336 (23572)
[  655.685681][T23572] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  655.723244][T23572] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm
[  655.751747][T23572] BTRFS info (device loop0): using free-space-tree
[  656.141012][ T3032] BTRFS info (device loop0): qgroup scan completed (inconsistency flag cleared)
[  656.281159][T22807] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  657.123016][T23594] loop5: detected capacity change from 0 to 32768
[  657.207032][T23594] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[  657.272369][   T29] kauditd_printk_skb: 18 callbacks suppressed
[  657.272396][   T29] audit: type=1800 audit(657.234:197): pid=23594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.7344" name="file2" dev="loop5" ino=17058 res=0 errno=0
[  657.448213][T19006] ocfs2: Unmounting device (7,5) on (node local)
[  664.235911][ T4614] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  664.247938][ T4614] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  664.261113][ T4614] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  664.274610][ T4614] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  664.282635][ T4614] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  664.289949][ T4614] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  666.112415][T20593] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  666.125271][T20593] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  666.146930][T20593] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  666.155594][T20593] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  666.165545][T20593] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  666.173237][T20593] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  666.372655][T20593] Bluetooth: hci7: command tx timeout
[  666.653836][ T4614] Bluetooth: hci9: unexpected cc 0x0c03 length: 249 > 1
[  666.667159][ T4614] Bluetooth: hci9: unexpected cc 0x1003 length: 249 > 9
[  666.675391][ T4614] Bluetooth: hci9: unexpected cc 0x1001 length: 249 > 9
[  666.705436][ T4614] Bluetooth: hci9: unexpected cc 0x0c23 length: 249 > 4
[  666.715099][ T4614] Bluetooth: hci9: unexpected cc 0x0c25 length: 249 > 3
[  666.728161][ T4614] Bluetooth: hci9: unexpected cc 0x0c38 length: 249 > 2
[  667.073404][T20593] Bluetooth: hci10: unexpected cc 0x0c03 length: 249 > 1
[  667.087015][T20593] Bluetooth: hci10: unexpected cc 0x1003 length: 249 > 9
[  667.096128][T20593] Bluetooth: hci10: unexpected cc 0x1001 length: 249 > 9
[  667.105176][T20593] Bluetooth: hci10: unexpected cc 0x0c23 length: 249 > 4
[  667.113093][T20593] Bluetooth: hci10: unexpected cc 0x0c25 length: 249 > 3
[  667.128006][T20593] Bluetooth: hci10: unexpected cc 0x0c38 length: 249 > 2
[  668.215728][T20593] Bluetooth: hci8: command tx timeout
[  668.437578][   T24] sched: DL replenish lagged too much
[  668.457040][T20593] Bluetooth: hci7: command tx timeout
[  668.773726][T20593] Bluetooth: hci9: command tx timeout
[  669.172343][T20593] Bluetooth: hci10: command tx timeout
[  669.403815][ T4614] Bluetooth: hci11: unexpected cc 0x0c03 length: 249 > 1
[  669.416972][ T4614] Bluetooth: hci11: unexpected cc 0x1003 length: 249 > 9
[  669.427475][ T4614] Bluetooth: hci11: unexpected cc 0x1001 length: 249 > 9
[  669.460323][ T4614] Bluetooth: hci11: unexpected cc 0x0c23 length: 249 > 4
[  669.470281][ T4614] Bluetooth: hci11: unexpected cc 0x0c25 length: 249 > 3
[  669.478420][ T4614] Bluetooth: hci11: unexpected cc 0x0c38 length: 249 > 2
[  670.292430][ T4614] Bluetooth: hci8: command tx timeout
[  670.532581][ T4614] Bluetooth: hci7: command tx timeout
[  670.852298][ T4614] Bluetooth: hci9: command tx timeout
[  671.253379][ T4614] Bluetooth: hci10: command tx timeout
[  671.573067][ T4614] Bluetooth: hci11: command tx timeout
[  672.378650][ T4614] Bluetooth: hci8: command tx timeout
[  672.612896][ T4614] Bluetooth: hci7: command tx timeout
[  672.932364][ T4614] Bluetooth: hci9: command tx timeout
[  673.332358][ T4614] Bluetooth: hci10: command tx timeout
[  673.652779][ T4614] Bluetooth: hci11: command tx timeout
[  674.453257][ T4614] Bluetooth: hci8: command tx timeout
[  675.013053][ T4614] Bluetooth: hci9: command tx timeout
[  675.412696][ T4614] Bluetooth: hci10: command tx timeout
[  675.732766][ T4614] Bluetooth: hci11: command tx timeout
[  677.813296][ T4614] Bluetooth: hci11: command tx timeout
[  685.340757][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  704.122566][T20593] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  704.134430][T20593] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  704.143393][T20593] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  704.153193][T20593] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  704.163040][T20593] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  704.171243][T20593] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  706.212435][T20593] Bluetooth: hci12: command tx timeout
[  708.292267][T20593] Bluetooth: hci12: command tx timeout
[  710.390471][T20593] Bluetooth: hci12: command tx timeout
[  712.452519][T20593] Bluetooth: hci12: command tx timeout
[  725.407788][ T4614] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  725.422376][ T4614] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  725.434433][ T4614] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  725.442797][ T4614] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  725.452750][ T4614] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  725.460056][ T4614] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  726.818805][ T4614] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  726.829288][ T4614] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  726.838168][ T4614] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  726.846037][ T4614] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  726.854297][ T4614] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  726.861651][ T4614] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  726.906861][T20593] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  726.917544][T20593] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  726.930327][T20593] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  726.943782][T20593] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  726.953330][T20593] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  726.960653][T20593] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  727.338218][T22994] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  727.350366][T22994] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  727.363435][T22994] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  727.371414][T22994] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  727.381115][T22994] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  727.394477][T22994] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  727.492576][T22994] Bluetooth: hci0: command tx timeout
[  729.013196][ T5242] Bluetooth: hci2: command tx timeout
[  729.022333][T22994] Bluetooth: hci1: command tx timeout
[  729.502278][ T5242] Bluetooth: hci5: command tx timeout
[  729.572249][ T5242] Bluetooth: hci0: command tx timeout
[  730.023542][T22994] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  730.043335][T22994] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  730.055861][T22994] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  730.066842][T22994] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  730.085864][T22994] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  730.093562][T22994] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  731.095584][ T5242] Bluetooth: hci1: command tx timeout
[  731.112797][T22994] Bluetooth: hci2: command tx timeout
[  731.572335][T22994] Bluetooth: hci5: command tx timeout
[  731.652619][T22994] Bluetooth: hci0: command tx timeout
[  732.132496][T22994] Bluetooth: hci6: command tx timeout
[  733.176320][ T5242] Bluetooth: hci1: command tx timeout
[  733.182529][T22994] Bluetooth: hci2: command tx timeout
[  733.652373][T22994] Bluetooth: hci5: command tx timeout
[  733.732364][T22994] Bluetooth: hci0: command tx timeout
[  734.212214][T22994] Bluetooth: hci6: command tx timeout
[  735.254052][ T5242] Bluetooth: hci2: command tx timeout
[  735.260354][ T5242] Bluetooth: hci1: command tx timeout
[  735.732417][ T5242] Bluetooth: hci5: command tx timeout
[  736.292252][ T5242] Bluetooth: hci6: command tx timeout
[  738.374488][ T5242] Bluetooth: hci6: command tx timeout
[  746.783030][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  763.737242][T22994] Bluetooth: hci13: unexpected cc 0x0c03 length: 249 > 1
[  763.748998][T22994] Bluetooth: hci13: unexpected cc 0x1003 length: 249 > 9
[  763.760384][T22994] Bluetooth: hci13: unexpected cc 0x1001 length: 249 > 9
[  763.775566][T22994] Bluetooth: hci13: unexpected cc 0x0c23 length: 249 > 4
[  763.784483][T22994] Bluetooth: hci13: unexpected cc 0x0c25 length: 249 > 3
[  763.792518][T22994] Bluetooth: hci13: unexpected cc 0x0c38 length: 249 > 2
[  765.892533][ T5242] Bluetooth: hci13: command tx timeout
[  767.972378][ T5242] Bluetooth: hci13: command tx timeout
[  769.341809][ T5242] Bluetooth: hci3: command 0x0406 tx timeout
[  770.052253][T22994] Bluetooth: hci13: command tx timeout
[  772.132381][T22994] Bluetooth: hci13: command tx timeout
[  785.628742][ T5242] Bluetooth: hci8: unexpected cc 0x0c03 length: 249 > 1
[  785.654944][ T5242] Bluetooth: hci8: unexpected cc 0x1003 length: 249 > 9
[  785.667934][ T5242] Bluetooth: hci8: unexpected cc 0x1001 length: 249 > 9
[  785.676542][ T5242] Bluetooth: hci8: unexpected cc 0x0c23 length: 249 > 4
[  785.687975][ T5242] Bluetooth: hci8: unexpected cc 0x0c25 length: 249 > 3
[  785.695460][ T5242] Bluetooth: hci8: unexpected cc 0x0c38 length: 249 > 2
[  787.366232][T22994] Bluetooth: hci12: unexpected cc 0x0c03 length: 249 > 1
[  787.378382][T22994] Bluetooth: hci12: unexpected cc 0x1003 length: 249 > 9
[  787.412995][T22994] Bluetooth: hci12: unexpected cc 0x1001 length: 249 > 9
[  787.421424][T22994] Bluetooth: hci12: unexpected cc 0x0c23 length: 249 > 4
[  787.429478][T22994] Bluetooth: hci12: unexpected cc 0x0c25 length: 249 > 3
[  787.437108][T22994] Bluetooth: hci12: unexpected cc 0x0c38 length: 249 > 2
[  787.557579][ T5242] Bluetooth: hci14: unexpected cc 0x0c03 length: 249 > 1
[  787.568804][ T5242] Bluetooth: hci14: unexpected cc 0x1003 length: 249 > 9
[  787.579930][ T5242] Bluetooth: hci14: unexpected cc 0x1001 length: 249 > 9
[  787.591184][ T5242] Bluetooth: hci14: unexpected cc 0x0c23 length: 249 > 4
[  787.601916][ T5242] Bluetooth: hci14: unexpected cc 0x0c25 length: 249 > 3
[  787.612281][ T5242] Bluetooth: hci14: unexpected cc 0x0c38 length: 249 > 2
[  787.758706][T20593] Bluetooth: hci8: command tx timeout
[  787.978956][T23673] Bluetooth: hci15: unexpected cc 0x0c03 length: 249 > 1
[  787.996278][T23673] Bluetooth: hci15: unexpected cc 0x1003 length: 249 > 9
[  788.009125][T23673] Bluetooth: hci15: unexpected cc 0x1001 length: 249 > 9
[  788.020915][T23673] Bluetooth: hci15: unexpected cc 0x0c23 length: 249 > 4
[  788.029422][T23673] Bluetooth: hci15: unexpected cc 0x0c25 length: 249 > 3
[  788.046938][T23673] Bluetooth: hci15: unexpected cc 0x0c38 length: 249 > 2
[  789.492605][T20593] Bluetooth: hci12: command tx timeout
[  789.652586][T20593] Bluetooth: hci14: command tx timeout
[  789.839306][T20593] Bluetooth: hci10: command 0x0406 tx timeout
[  789.845568][T23673] Bluetooth: hci7: command 0x0406 tx timeout
[  789.851608][T23673] Bluetooth: hci8: command tx timeout
[  789.860476][T20593] Bluetooth: hci9: command 0x0406 tx timeout
[  790.142256][T22994] Bluetooth: hci15: command tx timeout
[  790.483456][ T4614] Bluetooth: hci16: unexpected cc 0x0c03 length: 249 > 1
[  790.507957][ T4614] Bluetooth: hci16: unexpected cc 0x1003 length: 249 > 9
[  790.530004][ T4614] Bluetooth: hci16: unexpected cc 0x1001 length: 249 > 9
[  790.538348][ T4614] Bluetooth: hci16: unexpected cc 0x0c23 length: 249 > 4
[  790.546817][ T4614] Bluetooth: hci16: unexpected cc 0x0c25 length: 249 > 3
[  790.556295][ T4614] Bluetooth: hci16: unexpected cc 0x0c38 length: 249 > 2
[  791.572403][ T4614] Bluetooth: hci12: command tx timeout
[  791.732432][ T4614] Bluetooth: hci14: command tx timeout
[  791.892327][ T4614] Bluetooth: hci8: command tx timeout
[  792.214765][ T4614] Bluetooth: hci15: command tx timeout
[  792.612501][ T4614] Bluetooth: hci16: command tx timeout
[  793.652415][ T4614] Bluetooth: hci12: command tx timeout
[  793.812769][ T4614] Bluetooth: hci14: command tx timeout
[  793.976633][ T4614] Bluetooth: hci8: command tx timeout
[  794.293676][ T4614] Bluetooth: hci15: command tx timeout
[  794.692577][ T4614] Bluetooth: hci16: command tx timeout
[  794.942867][ T4614] Bluetooth: hci11: command 0x0406 tx timeout
[  795.732394][T22994] Bluetooth: hci12: command tx timeout
[  795.892687][T22994] Bluetooth: hci14: command tx timeout
[  796.372683][T22994] Bluetooth: hci15: command tx timeout
[  796.772308][T22994] Bluetooth: hci16: command tx timeout
[  798.852427][T22994] Bluetooth: hci16: command tx timeout
[  808.214715][ T1262] ieee802154 phy0 wpan0: encryption failed: -22
[  825.068489][ T4614] Bluetooth: hci17: unexpected cc 0x0c03 length: 249 > 1
[  825.081808][ T4614] Bluetooth: hci17: unexpected cc 0x1003 length: 249 > 9
[  825.097197][ T4614] Bluetooth: hci17: unexpected cc 0x1001 length: 249 > 9
[  825.109553][ T4614] Bluetooth: hci17: unexpected cc 0x0c23 length: 249 > 4
[  825.120904][ T4614] Bluetooth: hci17: unexpected cc 0x0c25 length: 249 > 3
[  825.132290][ T4614] Bluetooth: hci17: unexpected cc 0x0c38 length: 249 > 2
[  827.172629][T22994] Bluetooth: hci17: command tx timeout
[  829.252362][T22994] Bluetooth: hci17: command tx timeout
[  831.333485][T22994] Bluetooth: hci17: command tx timeout
[  833.412654][T22994] Bluetooth: hci17: command tx timeout
[  846.965725][ T4614] Bluetooth: hci18: unexpected cc 0x0c03 length: 249 > 1
[  846.982256][ T4614] Bluetooth: hci18: unexpected cc 0x1003 length: 249 > 9
[  846.991943][ T4614] Bluetooth: hci18: unexpected cc 0x1001 length: 249 > 9
[  847.000608][ T4614] Bluetooth: hci18: unexpected cc 0x0c23 length: 249 > 4
[  847.008430][ T4614] Bluetooth: hci18: unexpected cc 0x0c25 length: 249 > 3
[  847.022101][ T4614] Bluetooth: hci18: unexpected cc 0x0c38 length: 249 > 2
[  847.954993][ T4614] Bluetooth: hci19: unexpected cc 0x0c03 length: 249 > 1
[  847.969379][ T4614] Bluetooth: hci19: unexpected cc 0x1003 length: 249 > 9
[  847.982640][ T4614] Bluetooth: hci19: unexpected cc 0x1001 length: 249 > 9
[  847.991069][ T4614] Bluetooth: hci19: unexpected cc 0x0c23 length: 249 > 4
[  848.003406][ T4614] Bluetooth: hci19: unexpected cc 0x0c25 length: 249 > 3
[  848.010922][ T4614] Bluetooth: hci19: unexpected cc 0x0c38 length: 249 > 2
[  848.123705][T22994] Bluetooth: hci20: unexpected cc 0x0c03 length: 249 > 1
[  848.136827][T22994] Bluetooth: hci20: unexpected cc 0x1003 length: 249 > 9
[  848.145208][T22994] Bluetooth: hci20: unexpected cc 0x1001 length: 249 > 9
[  848.155236][T22994] Bluetooth: hci20: unexpected cc 0x0c23 length: 249 > 4
[  848.163296][T22994] Bluetooth: hci20: unexpected cc 0x0c25 length: 249 > 3
[  848.173727][T22994] Bluetooth: hci20: unexpected cc 0x0c38 length: 249 > 2
[  848.477330][ T4614] Bluetooth: hci21: unexpected cc 0x0c03 length: 249 > 1
[  848.499247][ T4614] Bluetooth: hci21: unexpected cc 0x1003 length: 249 > 9
[  848.512178][ T4614] Bluetooth: hci21: unexpected cc 0x1001 length: 249 > 9
[  848.525018][ T4614] Bluetooth: hci21: unexpected cc 0x0c23 length: 249 > 4
[  848.534122][ T4614] Bluetooth: hci21: unexpected cc 0x0c25 length: 249 > 3
[  848.546778][ T4614] Bluetooth: hci21: unexpected cc 0x0c38 length: 249 > 2
[  849.103452][ T4614] Bluetooth: hci18: command tx timeout
[  850.052478][ T4614] Bluetooth: hci19: command tx timeout
[  850.212785][ T4614] Bluetooth: hci20: command tx timeout
[  850.591390][ T5242] Bluetooth: hci22: unexpected cc 0x0c03 length: 249 > 1
[  850.612269][ T5242] Bluetooth: hci21: command tx timeout
[  850.621485][ T5242] Bluetooth: hci22: unexpected cc 0x1003 length: 249 > 9
[  850.636799][ T5242] Bluetooth: hci22: unexpected cc 0x1001 length: 249 > 9
[  850.645241][ T5242] Bluetooth: hci22: unexpected cc 0x0c23 length: 249 > 4
[  850.653355][ T5242] Bluetooth: hci22: unexpected cc 0x0c25 length: 249 > 3
[  850.660764][ T5242] Bluetooth: hci22: unexpected cc 0x0c38 length: 249 > 2
[  851.172310][ T5242] Bluetooth: hci18: command tx timeout
[  851.267717][ T5242] Bluetooth: hci5: command 0x0406 tx timeout
[  851.273898][ T4614] Bluetooth: hci0: command 0x0406 tx timeout
[  851.280729][ T4614] Bluetooth: hci2: command 0x0406 tx timeout
[  851.288784][ T5242] Bluetooth: hci1: command 0x0406 tx timeout
[  852.134527][T22996] Bluetooth: hci19: command tx timeout
[  852.292431][T22996] Bluetooth: hci20: command tx timeout
[  852.692313][T22994] Bluetooth: hci21: command tx timeout
[  852.698983][T22996] Bluetooth: hci22: command tx timeout
[  853.252288][T22996] Bluetooth: hci18: command tx timeout
[  854.212331][T22996] Bluetooth: hci19: command tx timeout
[  854.372365][T22994] Bluetooth: hci20: command tx timeout
[  854.772646][T23675] Bluetooth: hci21: command tx timeout
[  854.779535][T22994] Bluetooth: hci22: command tx timeout
[  855.332269][T22994] Bluetooth: hci18: command tx timeout
[  856.292379][T22994] Bluetooth: hci19: command tx timeout
[  856.381531][T22994] Bluetooth: hci6: command 0x0406 tx timeout
[  856.452561][T22996] Bluetooth: hci20: command tx timeout
[  856.852620][T22994] Bluetooth: hci22: command tx timeout
[  856.858187][T22994] Bluetooth: hci21: command tx timeout
[  858.932430][T22994] Bluetooth: hci22: command tx timeout
[  859.413710][   T30] INFO: task syz.0.7345:23611 blocked for more than 143 seconds.
[  859.421514][   T30]       Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  859.472002][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  859.502237][   T30] task:syz.0.7345      state:D stack:21712 pid:23611 tgid:23610 ppid:22807  flags:0x00004002
[  859.532032][   T30] Call Trace:
[  859.540624][   T30]  <TASK>
[  859.621661][   T30]  __schedule+0x1893/0x4b50
[  859.650926][   T30]  ? __pfx___schedule+0x10/0x10
[  859.695794][   T30]  ? __pfx_lock_release+0x10/0x10
[  859.700934][   T30]  ? __mutex_trylock_common+0x92/0x2e0
[  859.731918][   T30]  ? schedule+0x90/0x320
[  859.737132][   T30]  schedule+0x14b/0x320
[  859.741794][   T30]  schedule_preempt_disabled+0x13/0x30
[  859.761417][   T30]  __mutex_lock+0x6a7/0xd70
[  859.767179][   T30]  ? __mutex_lock+0x52a/0xd70
[  859.771908][   T30]  ? tun_chr_close+0x3b/0x1b0
[  859.782094][   T30]  ? __pfx___mutex_lock+0x10/0x10
[  859.787184][   T30]  ? __pfx_call_rcu+0x10/0x10
[  859.791901][   T30]  tun_chr_close+0x3b/0x1b0
[  859.808534][   T30]  ? __pfx_tun_chr_close+0x10/0x10
[  859.822277][   T30]  __fput+0x241/0x880
[  859.826327][   T30]  task_work_run+0x251/0x310
[  859.830949][   T30]  ? kasan_quarantine_put+0xdc/0x230
[  859.847483][   T30]  ? __pfx_task_work_run+0x10/0x10
[  859.859116][   T30]  ? do_exit+0xa2a/0x27f0
[  859.868278][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  859.882213][   T30]  ? kmem_cache_free+0x1a3/0x420
[  859.887200][   T30]  ? do_exit+0xa2a/0x27f0
[  859.891579][   T30]  do_exit+0xa2f/0x27f0
[  859.907714][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  859.921315][   T30]  ? __pfx_do_exit+0x10/0x10
[  859.932171][   T30]  ? __pfx_do_raw_spin_lock+0x10/0x10
[  859.937597][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  859.954820][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  859.960862][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  859.978534][   T30]  ? _raw_spin_lock_irq+0xdf/0x120
[  859.985066][   T30]  do_group_exit+0x207/0x2c0
[  859.989794][   T30]  ? _raw_spin_unlock_irq+0x23/0x50
[  860.008686][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  860.020534][   T30]  ? lockdep_hardirqs_on+0x99/0x150
[  860.033012][   T30]  get_signal+0x176f/0x1810
[  860.037638][   T30]  ? __pfx_get_signal+0x10/0x10
[  860.058168][   T30]  arch_do_signal_or_restart+0x96/0x860
[  860.071504][   T30]  ? __pfx_arch_do_signal_or_restart+0x10/0x10
[  860.082403][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  860.099428][   T30]  ? syscall_exit_to_user_mode+0xa3/0x370
[  860.110264][   T30]  syscall_exit_to_user_mode+0xc9/0x370
[  860.122136][   T30]  do_syscall_64+0x100/0x230
[  860.126837][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  860.144072][   T30] RIP: 0033:0x7f1cb0d7def9
[  860.148535][   T30] RSP: 002b:00007f1cb1c65038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[  860.171734][   T30] RAX: 0000000000000030 RBX: 00007f1cb0f35f80 RCX: 00007f1cb0d7def9
[  860.183060][   T30] RDX: 0000000000000000 RSI: 0000000020000140 RDI: 0000000000000003
[  860.203530][   T30] RBP: 00007f1cb0df0b76 R08: 0000000000000000 R09: 0000000000000000
[  860.211543][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  860.231269][   T30] R13: 0000000000000000 R14: 00007f1cb0f35f80 R15: 00007ffc3b3664f8
[  860.241916][   T30]  </TASK>
[  860.252378][   T30] 
[  860.252378][   T30] Showing all locks held in the system:
[  860.260119][   T30] 1 lock held by khungtaskd/30:
[  860.275706][   T30]  #0: ffffffff8e9389e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  860.292444][   T30] 4 locks held by kworker/u8:6/1102:
[  860.297755][   T30]  #0: ffff88801bae5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  860.329908][   T30]  #1: ffffc90003f47d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  860.343221][   T30]  #2: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  860.368764][   T30]  #3: ffffffff8fa39a70 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_exit_net+0x8e/0x350
[  860.381517][   T30] 3 locks held by kworker/1:2/1846:
[  860.395611][   T30] 3 locks held by kworker/u8:8/2945:
[  860.400930][   T30]  #0: ffff88814b2d6148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  860.425559][   T30]  #1: ffffc90009a87d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  860.450401][   T30]  #2: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  860.462563][   T30] 2 locks held by getty/4983:
[  860.467275][   T30]  #0: ffff88814b9540a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  860.490272][   T30]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00
[  860.505280][   T30] 3 locks held by kworker/1:3/5237:
[  860.510512][   T30]  #0: ffff88801ac78948 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  860.537135][   T30]  #1: ffffc90003aa7d00 (deferred_process_work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  860.552091][   T30]  #2: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: switchdev_deferred_process_work+0xe/0x20
[  860.572437][   T30] 3 locks held by kworker/1:6/5300:
[  860.577778][   T30] 3 locks held by kworker/u8:2/22230:
[  860.598112][   T30]  #0: ffff88801ac81148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x93b/0x1850
[  860.616815][   T30]  #1: ffffc9001007fd00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x976/0x1850
[  860.634034][   T30]  #2: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  860.652378][   T30] 7 locks held by syz-executor/23384:
[  860.657781][   T30]  #0: ffff888023824420 (sb_writers#8){.+.+}-{0:0}, at: vfs_write+0x224/0xc90
[  860.677424][   T30]  #1: ffff888026d2e488 (&of->mutex){+.+.}-{3:3}, at: kernfs_fop_write_iter+0x1ea/0x500
[  860.700126][   T30]  #2: ffff8880274790f8 (kn->active#49){.+.+}-{0:0}, at: kernfs_fop_write_iter+0x20e/0x500
[  860.715926][   T30]  #3: ffffffff8f5676c8 (nsim_bus_dev_list_lock){+.+.}-{3:3}, at: del_device_store+0xfc/0x480
[  860.734108][   T30]  #4: ffff888065be40e8 (&dev->mutex){....}-{3:3}, at: device_release_driver_internal+0xce/0x7c0
[  860.754749][   T30]  #5: ffff888065be1250 (&devlink->lock_key#16){+.+.}-{3:3}, at: nsim_drv_remove+0x50/0x160
[  860.782752][   T30]  #6: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: nsim_destroy+0x71/0x5c0
[  860.791738][   T30] 2 locks held by syz.2.7343/23592:
[  860.812118][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0
[  860.821186][   T30]  #1: ffffffff8e7d28d0 (cpu_hotplug_lock){++++}-{0:0}, at: unregister_netdevice_many_notify+0x5ea/0x1da0
[  860.855569][   T30] 1 lock held by syz.0.7345/23611:
[  860.860713][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: tun_chr_close+0x3b/0x1b0
[  860.878500][   T30] 2 locks held by syz-executor/23624:
[  860.889427][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  860.908091][   T30]  #1: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: setup_net+0x602/0x9e0
[  860.928468][   T30] 2 locks held by syz-executor/23631:
[  860.939843][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  860.957086][   T30]  #1: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: setup_net+0x602/0x9e0
[  860.971365][   T30] 2 locks held by syz-executor/23633:
[  860.982405][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  860.991939][   T30]  #1: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_init_net+0x20e/0x720
[  861.023988][   T30] 2 locks held by syz-executor/23636:
[  861.032187][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  861.041713][   T30]  #1: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: ip_tunnel_init_net+0x20e/0x720
[  861.062411][   T30] 6 locks held by syz-executor/23642:
[  861.067829][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  861.089725][   T30]  #1: ffffffff8fa398b0 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x198/0x280
[  861.106132][   T30]  #2: ffffffff8fa39a70 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x1e6/0x280
[  861.122109][   T30]  #3: ffff8880202c0f38 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0x10d/0x710
[  861.147653][   T30]  #4: ffff8880202c1230 (&rxe->usdev_lock){+.+.}-{3:3}, at: rxe_query_port+0x61/0x260
[  861.162090][   T30]  #5: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: ib_get_eth_speed+0x153/0x800
[  861.171512][   T30] 4 locks held by syz-executor/23647:
[  861.190066][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  861.204459][   T30]  #1: ffffffff8fa398b0 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x198/0x280
[  861.222156][   T30]  #2: ffffffff8fa39a70 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x1e6/0x280
[  861.245951][   T30]  #3: ffff8880202c0f38 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0x10d/0x710
[  861.268276][   T30] 1 lock held by syz-executor/23648:
[  861.279455][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.301055][   T30] 4 locks held by syz-executor/23651:
[  861.306762][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  861.326567][   T30]  #1: ffffffff8fa398b0 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x198/0x280
[  861.354360][   T30]  #2: ffffffff8fa39a70 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x1e6/0x280
[  861.375548][   T30]  #3: ffff8880202c0f38 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0x10d/0x710
[  861.397164][   T30] 4 locks held by syz-executor/23654:
[  861.408231][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  861.428687][   T30]  #1: ffffffff8fa398b0 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x198/0x280
[  861.444839][   T30]  #2: ffffffff8fa39a70 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x1e6/0x280
[  861.462106][   T30]  #3: ffff8880202c0f38 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0x10d/0x710
[  861.487099][   T30] 4 locks held by syz-executor/23660:
[  861.501339][   T30]  #0: ffffffff8fcbd010 (pernet_ops_rwsem){++++}-{3:3}, at: copy_net_ns+0x328/0x570
[  861.515854][   T30]  #1: ffffffff8fa398b0 (devices_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x198/0x280
[  861.535358][   T30]  #2: ffffffff8fa39a70 (rdma_nets_rwsem){++++}-{3:3}, at: rdma_dev_init_net+0x1e6/0x280
[  861.555389][   T30]  #3: ffff8880202c0f38 (&device->compat_devs_mutex){+.+.}-{3:3}, at: add_one_compat_dev+0x10d/0x710
[  861.572102][   T30] 1 lock held by syz-executor/23663:
[  861.577425][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.606309][   T30] 1 lock held by syz-executor/23668:
[  861.611666][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.632732][   T30] 1 lock held by syz-executor/23670:
[  861.638071][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.659946][   T30] 1 lock held by syz-executor/23672:
[  861.667808][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.685853][   T30] 1 lock held by syz-executor/23677:
[  861.691174][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.708905][   T30] 1 lock held by syz-executor/23680:
[  861.720473][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.737495][   T30] 1 lock held by syz-executor/23683:
[  861.746388][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.768304][   T30] 1 lock held by syz-executor/23688:
[  861.781273][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.796942][   T30] 1 lock held by syz-executor/23690:
[  861.808899][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.826922][   T30] 1 lock held by syz-executor/23692:
[  861.842186][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.861539][   T30] 1 lock held by syz-executor/23695:
[  861.870117][   T30]  #0: ffffffff8fcc9b08 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  861.887979][   T30] 
[  861.891010][   T30] =============================================
[  861.891010][   T30] 
[  861.909079][   T30] NMI backtrace for cpu 0
[  861.913991][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[  861.924181][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  861.934294][   T30] Call Trace:
[  861.937593][   T30]  <TASK>
[  861.940548][   T30]  dump_stack_lvl+0x241/0x360
[  861.945285][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  861.950536][   T30]  ? __pfx__printk+0x10/0x10
[  861.955192][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  861.960173][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  861.965666][   T30]  ? _printk+0xd5/0x120
[  861.969953][   T30]  ? __pfx__printk+0x10/0x10
[  861.974587][   T30]  ? __wake_up_klogd+0xcc/0x110
[  861.979489][   T30]  ? __pfx__printk+0x10/0x10
[  861.984120][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  861.989837][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  861.994945][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  862.000998][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  862.007029][   T30]  watchdog+0xff4/0x1040
[  862.011324][   T30]  ? watchdog+0x1ea/0x1040
[  862.015795][   T30]  ? __pfx_watchdog+0x10/0x10
[  862.020520][   T30]  kthread+0x2f2/0x390
[  862.024627][   T30]  ? __pfx_watchdog+0x10/0x10
[  862.029342][   T30]  ? __pfx_kthread+0x10/0x10
[  862.033966][   T30]  ret_from_fork+0x4d/0x80
[  862.038430][   T30]  ? __pfx_kthread+0x10/0x10
[  862.043052][   T30]  ret_from_fork_asm+0x1a/0x30
[  862.047877][   T30]  </TASK>
[  862.052691][   T30] Sending NMI from CPU 0 to CPUs 1:
[  862.057939][    C1] NMI backtrace for cpu 1
[  862.057955][    C1] CPU: 1 UID: 0 PID: 1846 Comm: kworker/1:2 Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[  862.057984][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  862.058002][    C1] Workqueue: events nsim_dev_trap_report_work
[  862.058033][    C1] RIP: 0010:memset+0xf/0x20
[  862.058059][    C1] Code: 44 88 1f e9 8e ee 30 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 49 89 f9 40 88 f0 48 89 d1 <f3> aa 4c 89 c8 e9 62 ee 30 00 0f 1f 80 00 00 00 00 90 90 90 90 90
[  862.058080][    C1] RSP: 0018:ffffc90000a17a28 EFLAGS: 00000202
[  862.058101][    C1] RAX: ffffc90000a18100 RBX: ffffc90000a17b38 RCX: 0000000000000002
[  862.058120][    C1] RDX: 0000000000000010 RSI: 0000000000000000 RDI: ffffc90000a17b5e
[  862.058137][    C1] RBP: dffffc0000000000 R08: ffffc90000a17b5f R09: ffffc90000a17b50
[  862.058156][    C1] R10: dffffc0000000000 R11: fffff52000142f6c R12: ffffc90000a19000
[  862.058175][    C1] R13: ffffc90000a17b00 R14: ffffffff89f24d0a R15: ffffc90000a17b50
[  862.058200][    C1] FS:  0000000000000000(0000) GS:ffff8880b8900000(0000) knlGS:0000000000000000
[  862.058221][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  862.058239][    C1] CR2: 0000001b32b1dff8 CR3: 000000000e734000 CR4: 0000000000350ef0
[  862.058259][    C1] Call Trace:
[  862.058268][    C1]  <NMI>
[  862.058279][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  862.058307][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  862.058349][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  862.058375][    C1]  ? nmi_handle+0x2a/0x5a0
[  862.058411][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  862.058446][    C1]  ? nmi_handle+0x151/0x5a0
[  862.058470][    C1]  ? nmi_handle+0x2a/0x5a0
[  862.058496][    C1]  ? memset+0xf/0x20
[  862.058517][    C1]  ? default_do_nmi+0x63/0x160
[  862.058551][    C1]  ? exc_nmi+0x123/0x1f0
[  862.058578][    C1]  ? end_repeat_nmi+0xf/0x53
[  862.058616][    C1]  ? nft_synproxy_eval_v4+0x3ca/0x610
[  862.058658][    C1]  ? memset+0xf/0x20
[  862.058679][    C1]  ? memset+0xf/0x20
[  862.058702][    C1]  ? memset+0xf/0x20
[  862.058724][    C1]  </NMI>
[  862.058732][    C1]  <IRQ>
[  862.058741][    C1]  unwind_next_frame+0xcfb/0x22d0
[  862.058787][    C1]  ? synproxy_send_client_synack+0x1ba/0xf30
[  862.058823][    C1]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[  862.058855][    C1]  arch_stack_walk+0x11c/0x150
[  862.058885][    C1]  ? nft_synproxy_eval_v4+0x3ca/0x610
[  862.058924][    C1]  stack_trace_save+0x118/0x1d0
[  862.058953][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  862.058980][    C1]  ? stack_trace_save+0x118/0x1d0
[  862.059010][    C1]  ? __pfx_stack_trace_save+0x10/0x10
[  862.059043][    C1]  kasan_save_track+0x3f/0x80
[  862.059075][    C1]  ? kasan_save_track+0x3f/0x80
[  862.059105][    C1]  ? __kasan_kmalloc+0x98/0xb0
[  862.059138][    C1]  ? __kmalloc_node_track_caller_noprof+0x225/0x440
[  862.059165][    C1]  ? kmalloc_reserve+0x111/0x2a0
[  862.059202][    C1]  ? __alloc_skb+0x1f3/0x440
[  862.059237][    C1]  ? synproxy_send_client_synack+0x1ba/0xf30
[  862.059298][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.059339][    C1]  __kasan_kmalloc+0x98/0xb0
[  862.059374][    C1]  __kmalloc_node_track_caller_noprof+0x225/0x440
[  862.059400][    C1]  ? __alloc_skb+0x1f3/0x440
[  862.059438][    C1]  ? __alloc_skb+0x1f3/0x440
[  862.059474][    C1]  kmalloc_reserve+0x111/0x2a0
[  862.059513][    C1]  __alloc_skb+0x1f3/0x440
[  862.059557][    C1]  ? __pfx___alloc_skb+0x10/0x10
[  862.059594][    C1]  ? __entry_text_end+0x1020c5/0x1020c9
[  862.059638][    C1]  synproxy_send_client_synack+0x1ba/0xf30
[  862.059674][    C1]  ? kasan_quarantine_put+0xdc/0x230
[  862.059706][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  862.059743][    C1]  ? __pfx_synproxy_send_client_synack+0x10/0x10
[  862.059775][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.059817][    C1]  ? synproxy_pernet+0x45/0x270
[  862.059850][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.059892][    C1]  nft_synproxy_eval_v4+0x3ca/0x610
[  862.059931][    C1]  ? __pfx_nft_synproxy_eval_v4+0x10/0x10
[  862.059969][    C1]  ? nf_ip_checksum+0x13a/0x500
[  862.060009][    C1]  nft_synproxy_do_eval+0x362/0xa60
[  862.060048][    C1]  ? __pfx_nft_synproxy_do_eval+0x10/0x10
[  862.060087][    C1]  ? __pfx_validate_chain+0x10/0x10
[  862.060116][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.060159][    C1]  nft_do_chain+0x4af/0x1da0
[  862.060205][    C1]  ? __pfx_nft_do_chain+0x10/0x10
[  862.060239][    C1]  ? __local_bh_enable_ip+0x168/0x200
[  862.060278][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.060330][    C1]  ? __pfx_nf_nat_inet_fn+0x10/0x10
[  862.060373][    C1]  nft_do_chain_inet+0x418/0x6b0
[  862.060410][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  862.060444][    C1]  ? ipt_do_table+0x312/0x1860
[  862.060490][    C1]  ? __pfx_nft_do_chain_inet+0x10/0x10
[  862.060524][    C1]  nf_hook_slow+0xc5/0x220
[  862.060559][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  862.060586][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  862.060613][    C1]  NF_HOOK+0x29e/0x450
[  862.060636][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.060678][    C1]  ? NF_HOOK+0x9a/0x450
[  862.060701][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  862.060728][    C1]  ? __pfx_ip_local_deliver_finish+0x10/0x10
[  862.060758][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.060797][    C1]  ? ip_rcv_finish+0x406/0x560
[  862.060824][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  862.060850][    C1]  NF_HOOK+0x3a6/0x450
[  862.060872][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.060911][    C1]  ? __lock_acquire+0x1384/0x2050
[  862.060950][    C1]  ? NF_HOOK+0x9a/0x450
[  862.060974][    C1]  ? __pfx_NF_HOOK+0x10/0x10
[  862.060998][    C1]  ? ip_rcv_core+0x801/0xd10
[  862.061024][    C1]  ? __pfx_ip_rcv_finish+0x10/0x10
[  862.061055][    C1]  ? __pfx_ip_rcv+0x10/0x10
[  862.061080][    C1]  __netif_receive_skb+0x2bf/0x650
[  862.061111][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  862.061148][    C1]  ? __pfx___netif_receive_skb+0x10/0x10
[  862.061175][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  862.061212][    C1]  ? __pfx_lock_release+0x10/0x10
[  862.061250][    C1]  ? _raw_spin_lock_irq+0xdf/0x120
[  862.061292][    C1]  process_backlog+0x662/0x15b0
[  862.061327][    C1]  ? process_backlog+0x33b/0x15b0
[  862.061363][    C1]  ? __pfx_process_backlog+0x10/0x10
[  862.061393][    C1]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  862.061432][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  862.061473][    C1]  __napi_poll+0xcd/0x490
[  862.061503][    C1]  net_rx_action+0x89b/0x1240
[  862.061552][    C1]  ? __pfx_net_rx_action+0x10/0x10
[  862.061584][    C1]  ? __pfx_tmigr_handle_remote+0x10/0x10
[  862.061643][    C1]  handle_softirqs+0x2c7/0x980
[  862.061680][    C1]  ? do_softirq+0x11b/0x1e0
[  862.061714][    C1]  ? __pfx_handle_softirqs+0x10/0x10
[  862.061751][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.061793][    C1]  do_softirq+0x11b/0x1e0
[  862.061825][    C1]  </IRQ>
[  862.061833][    C1]  <TASK>
[  862.061843][    C1]  ? __pfx_do_softirq+0x10/0x10
[  862.061877][    C1]  ? __pfx_lockdep_softirqs_on+0x10/0x10
[  862.061913][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.061955][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.061994][    C1]  ? rcu_is_watching+0x15/0xb0
[  862.062023][    C1]  __local_bh_enable_ip+0x1bb/0x200
[  862.062061][    C1]  ? nsim_dev_trap_report_work+0x75d/0xaa0
[  862.062088][    C1]  ? __pfx___local_bh_enable_ip+0x10/0x10
[  862.062123][    C1]  ? do_raw_spin_unlock+0x13c/0x8b0
[  862.062156][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.062195][    C1]  ? nsim_dev_trap_report_work+0x6a7/0xaa0
[  862.062223][    C1]  nsim_dev_trap_report_work+0x75d/0xaa0
[  862.062257][    C1]  ? process_scheduled_works+0x976/0x1850
[  862.062294][    C1]  process_scheduled_works+0xa65/0x1850
[  862.062347][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  862.062388][    C1]  ? assign_work+0x364/0x3d0
[  862.062425][    C1]  worker_thread+0x870/0xd30
[  862.062463][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.062504][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.062548][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  862.062586][    C1]  ? __kthread_parkme+0x169/0x1d0
[  862.062626][    C1]  ? __pfx_worker_thread+0x10/0x10
[  862.062662][    C1]  kthread+0x2f2/0x390
[  862.062685][    C1]  ? __pfx_worker_thread+0x10/0x10
[  862.062721][    C1]  ? __pfx_kthread+0x10/0x10
[  862.062746][    C1]  ret_from_fork+0x4d/0x80
[  862.062783][    C1]  ? __pfx_kthread+0x10/0x10
[  862.062806][    C1]  ret_from_fork_asm+0x1a/0x30
[  862.062853][    C1]  </TASK>
[  862.930630][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  862.937539][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-syzkaller-07337-g2004cef11ea0 #0
[  862.947726][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024
[  862.957812][   T30] Call Trace:
[  862.961111][   T30]  <TASK>
[  862.964061][   T30]  dump_stack_lvl+0x241/0x360
[  862.968871][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  862.974116][   T30]  ? __pfx__printk+0x10/0x10
[  862.978745][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  862.984780][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  862.990457][   T30]  ? vscnprintf+0x5d/0x90
[  862.994819][   T30]  panic+0x349/0x880
[  862.998753][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  863.004430][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  863.010618][   T30]  ? __pfx_panic+0x10/0x10
[  863.015066][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  863.020468][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  863.026140][   T30]  ? __irq_work_queue_local+0x137/0x410
[  863.031717][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  863.037394][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  863.042798][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  863.048980][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  863.055516][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  863.061188][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  863.067639][   T30]  watchdog+0x1033/0x1040
[  863.072007][   T30]  ? watchdog+0x1ea/0x1040
[  863.076463][   T30]  ? __pfx_watchdog+0x10/0x10
[  863.081174][   T30]  kthread+0x2f2/0x390
[  863.085278][   T30]  ? __pfx_watchdog+0x10/0x10
[  863.089987][   T30]  ? __pfx_kthread+0x10/0x10
[  863.094604][   T30]  ret_from_fork+0x4d/0x80
[  863.099054][   T30]  ? __pfx_kthread+0x10/0x10
[  863.103670][   T30]  ret_from_fork_asm+0x1a/0x30
[  863.108491][   T30]  </TASK>
[  863.111759][   T30] Kernel Offset: disabled
[  863.116083][   T30] Rebooting in 86400 seconds..