last executing test programs:

9.83203035s ago: executing program 1 (id=1349):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newlink={0x3c, 0x10, 0x1, 0x0, 0x0, {}, [@IFLA_IFNAME={0x14, 0x3, 'bond0\x00'}, @IFLA_AF_SPEC={0x8, 0x1a, 0x0, 0x1, [@AF_MPLS={0x4}]}]}, 0x3c}}, 0x0)

9.70667167s ago: executing program 1 (id=1351):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r2, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r3=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x56, &(0x7f00000002c0)={&(0x7f0000000040)={0x24, 0x0, 0x0, 0x0, 0x0, {}, [@NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r3}, @void}}}, 0x28}, 0x1, 0x6c00}, 0x0)

9.577987741s ago: executing program 1 (id=1353):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x0, 0x1f, 0x0, 0xfffffffd}, {0x44, 0x0, 0x5, 0x200}, {0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmctl$IPC_INFO(0x0, 0x3, &(0x7f00000000c0)=""/114)

8.456201962s ago: executing program 1 (id=1358):
syz_usb_connect(0x2, 0x2d, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000ec31f8104c1302007eec0102030109021b0001000000000904002c11018b75000905", @ANYRES64], 0x0)
openat$pidfd(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x3, 0x0)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
setresuid(0x0, 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
openat$uinput(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
getsockopt$inet6_IPV6_IPSEC_POLICY(0xffffffffffffffff, 0x29, 0x22, 0x0, &(0x7f00000002c0))
r3 = syz_open_dev$vbi(&(0x7f0000000000), 0x1, 0x2)
ioctl$VIDIOC_G_EXT_CTRLS(r3, 0xc0205647, &(0x7f0000000100)={0xf000000, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f0000000080)={0x98f90b, 0xffffc002, '\x00', @p_u8=&(0x7f0000000280)}})
mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX, @ANYBLOB=',wfdnuZ', @ANYRESHEX])

4.233505576s ago: executing program 1 (id=1374):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
open(0x0, 0x0, 0x0)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x11, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000004000000000000000000850000002300000095"], &(0x7f0000000180)='GPL\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000380)='sched_switch\x00', r3}, 0x10)
semget$private(0x0, 0x2, 0x0)
syz_emit_vhci(0x0, 0x7)
syz_emit_vhci(&(0x7f0000000540)=ANY=[@ANYBLOB="043e1f0a"], 0x22)
syz_emit_vhci(&(0x7f00000001c0)=ANY=[@ANYBLOB="04300fac430e77fe310e0407244bf58969"], 0x7)
syz_read_part_table(0x5fd, &(0x7f0000001a40)="$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")
capset(&(0x7f0000000340)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x8, 0x36, 0x0, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10}, 0x90)
migrate_pages(r0, 0x5, &(0x7f0000000300)=0x1, 0x0)
readahead(0xffffffffffffffff, 0x0, 0x0)
r4 = syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file0\x00', 0x800, &(0x7f0000000040)=ANY=[@ANYBLOB='iocharset=cp936,dm00000000000230,\x00'/47], 0x1, 0x14d3, &(0x7f00000015c0)="$eJzs3HuYz9XaMPB1r7W+jGnSr0kOw7rX/eWXBsskSQ5JckiSJElySkiaJElIDDklIQk5TpLDEJLDYDDO5/P50GRLkiSnnMJ6L+39PJ6928/led+938cfc3+ua12z7vn+7vu31twz8z1c18zPnYZUb1ijSn0iEv8S+OuHFCFEjBCivxDiDiFEIIQoE18m/vrxXApS/rU3Yf9ez6Xd6hWwW4n7n71x/7M37n/2xv3P3rj/2Rv3P3vj/mdv3H/GsrOt0wrcySP7Dn7+n53x+T974/5nb9z/7I37n71x/7M37n/2xv3P3rj/2Rv3n7Hs7FY/f+Zxa8et/v5jjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMZY9XPQ3aCHEf8xv9boYY4wxxhhjjDH27+Nz3uoVMMYYY4wxxhhj7P8/EFIooUUgcoicIkbkErHiNhEnbhe5xR0iIu4U8eIukUfcLfKKfCK/KCASREFRSBiBwgoSoSgsioiouEcUFfeKRFFMFBclhBMlRZK4T5QS94vS4gFRRjwoyoqHRDlRXlQQFcXDopJ4RFQWj4oq4jFRVVQT1UUN8bioKZ4QtcSTorZ4StQRT4u64hlRTzwr6ovnRAPxvGgoXhCNxIuisWgimopmovn/U/67opt4T3QXPUSK6Cl6ifdFb9FH9BX9RH/xgRggPhQDxUdikBgshoiPxVDxiRgmPhXDxQgxUnwmRonRYowYK8aJ8SJVfC4miC/ERPGlmCQmiyliqkgT08R08ZWYIWaKWeJrMVt8I+aIuWKemC/SxQKxUCwSGWKxWCKWikyxTCwXK8RKsUqsFmvEWrFOrBcbxEaxSWwWW8RWsU1sFzvETrFL7BZ7xF6xT+wXB8RB8a3IEt/9X+Zf+If8ziBAgAQJGjTkgBwQAzEQC7EQB3GQG3JDBCIQD/GQB/JAXsgL+SE/JEACFIJCgIBAQFAYCkMUolAUikIiJEJxKA4OHCRBEpSC+6E0lIYyUAbKQlkoB+WhPFSEilAJKkFlqAxVoApUhapQHarD4/A4PAG1oBbUhtpQB+pAXagL9aAe1If60AAaQENoCI2gETSGxtAUmkJzaA4toAW0hJbQGlpDG2gDbaEtJEMytIN20B7aQwfoAB2hI3SCTtAZukAXeBfehffgPegBVWVP6AW9oDf0hr7QD/rBBzAAPoQP4SMYBINhCHwMH8MnMAzOw3AYASNhJFSSo2EMjAWS4yEVUmECTICJMBEmwWSYDFMhDabBdJgOM2AmzISvYTZ8A9/AXJgL8yEd0mEhLIIMyIAlcAEyYRkshxWwElbBSlgDa2ENrIcNsB42wSbYAltgG2yDHbADdsEu2AN7YB/sgwNwAAZBFmTBITgEh+EwHIEjcBSOwjE4BsfhOJyAE3ASTsIpOA1n4DScg3NwHi7ARbgIl+EyXIErcA2uXf/hl9dpqWUOmUPGyBgZK2NlnIyTuWVuGZERGS/jZR6ZR+aVeWV+mV8myARZSBaSKFGSDGVhWVhGZVQWlUVlokyUxWVx6aSTSTJJlpKlZGlZWpaRD8qy8iFZTpaXrVxFWVFWkq1dZfmorCKryKqymqwua8gasqasKWvJWrK2rC3ryDqyrnxG1pM9oS88J693pqEcDI3kEGgsm8imspn8BF6SLeQwaClbydbyFTkChkNb2cIly9dlOzkG2ss35Vh4S3aU46GTfEd2ll1kV/mu7CZbuu6yh5wEPWUvORV6yz6yr+wnZ0A1eb1j1eVHcpAcLIfIj+V8+EQOk5/K4XKEHCk/k6PkaDlGjpXj5HiZKj+XE+QXcqL8Uk6Sk+UUOVWmyWlyuvxKzpAz5Sz5tZwtv5Fz5Fw5T86X6XKBXCgXyQy5WC6RS2WmXCaXyxVypVwlV8s1cq1cJ9fLDXKj3CQ3yy1yq9wmt8sdcqfcJXfLPXKv3Cf3ywPyoPxWZsnv5CH5F3lYfi+PyB/kUfmjPCZ/ksflz/KE/EWelL/KU/K0PCPPynPyN3leXpAX5SV5Wf4ur8ir8pr0UihQUimlVaByqJwqRuVSseo2FaduV7nVHSqi7lTx6i6VR92t8qp8Kr8qoBJUQVVIGYXKKlKhKqyKqKi6RxVV96pEVUwVVyWUUyVVkrpPlVL3q9LqAVVGPajKqodUOVVeVVAV1cOqknpEVVaPqirqMVVVVVPVVQ31uKqpnlC11JOqtnpK1VFPq7rqGVVPPavqq+dUA/W8aqheUI3Ui6qxaqKaqmaquXpJtVAvq5aqlWqtXlFt1KuqrXpNJavXVTv1hmqv3lQd1Fuqo3pbdVLvqM6qi+qqrqpryqvuqodKUT1VL/W+6q36qL6qn+qvPlAD1IdqoPpIDVKD1RD1sRqqPlHD1KdquBqhRqrP1Cg1Wo1RY9U4NV6lqs/VBPWFmqi+VJPUZDVFTVVpaprq+7dKs/4H+V/8k/yBf7z7FrVVbVPb1Q61U+1Su9UetVftVfvVfnVQHVRZKksdUofUYXVYHVFH1FF1VB1Tx9RxdVydUCfUSXVSnVKn1SV1Vp1Tv6nz6oK6oC6py+qyuvK3r4HQoKVWWutA59A5dYzOpWP1bTpO365z6zt0RN+p4/VdOo++W+fV+XR+XUAn6IK6kDYatdWkQ11YF9FRfY8uqu/VibqYLq5LaKdL6iR937+cf7P1NdfNdQvdQrfULXVr3Vq30W10W91WJ+tk3U630+11e91Bd9AddUfdSXfSnXVn3VV31d10N91dd9cpOkX30u/r3rqP7qv76f76Az1AD9AD9UA9SA/SQ/QQPVQP1cP0MD1cD9cj9Ug9So/SY/QYPU6P06k6VU/QE/REPVFP0pP0FD1Fp+k0PV1P1zP0DD1Lz9Kz9Ww9R8/R8/Q8na7T9UK9UGfoDL1EL9GZepleplfoFXqVXqXX6DV6nV6nN+gNepPepDP1Vr1Vb9fb9U69U+/Wu/VevVfv1/v1QX1QZ+ksfUgf0of1YX1EH9FH9VF9TB/Tx/VxfUKf0Cf1SX1Kn9Jn9Bl9Tp/T5/V5fVFf1Jf1ZX1FX9HX9LXrl32BDGSgAx3kCHIEMUFMEBvEBnFBXJA7yB1EgkgQH8QHeYK7g7xBviB/UCBICAoGhQITYGADCsKgcFAkiAb3BEWDe4PEoFhQPCgRuKBkkBTcF5QK7g9KBw8EZYIHg7LBQ0G5oHxQIagYPBxUCh4JKgePBlWCx4KqQbWgelAjeDyoGTwR1AqeDGoHTwV1gqeDusEzQb3g2aB+8FzQIHg+aBi8EDQKXgwaB02CpkGzoPm/tb735/O97LqbHibF9DS9zPumt+lj+pp+pr/5wAwwH5qB5iMzyAw2Q8zHZqj5xAwzn5rhZoQZaT4zo8xoM8aMNePMeJNqPjcTzBdmovnSTDKTzRQz1aSZaWa6+crMMDPNLPO1mW2+MXPMXDPPzDfpZoFZaBaZDLPYLDFLTaZZZpabFWalWWVWmzVmrVln1psNZqPZZDabLWar2Wa2mx1mp9lldps9Zq/ZZ/abA+ag+dZkme/MIfMXc9h8b46YH8xR86M5Zn4yx83P5oT5xZw0v5pT5rQ5Y86ac+Y3c95cMBfNJXPZ/G6umKvmmvHXL+6vn95Ro8YcmANjMAZjMRbjMA5zY26MYATjMR7zYB7Mi3kxP+bHBEzAQlgIryMkLIyFMYpRLIpFMRETsTgWR4cOkzAJS2EpLI2lsQyWwbJYFsthOayAFfBhfBgfwUfwUXwUH8PHsBpWwxpYA2tiTayFtbA21sY6WAfrYl2sh/WwPtbHBtgAG2JDbISNsDE2xqbYFJtjc2yBLbAltsTW2BrbYBtsi20xGZOxHbbD9tgeO2AH7IgdsRN2ws7YGbtiV+yG3bA7dscUTMFe2At7Y2/si32xP/bHATgAB+JAHISDcAgOwaE4FIfhMByOI3AkfoajcDSOwbE4DsdjKqbiBJyAE3EiTsJJOAWnYBqm4XScjjNwBs7CWTgbZ+McnIPzcB6mYzouxIWYgRm4BJdgJmbiclyOK3ElrsbVuBbX4npcjxtxI27GzbgVt+J23I47cSfuxt24F/fiftyPB/EgZmEWHsJDeBgP4xE8gkfxKB7DY3gcj+MJPIEn8SSewlN4Bs/gOTyH5/E8XsSLeBl/xyt4Fa+hxxiby8ba22ycvd3mtnfYf4zz2wI2wRa0hayxeW2+v4vRWptoi9nitoR1tqRNsvf9KS5ny9sKtqJ92Fayj9jKf4pr2idsLfukrW2fsjXs438X17FP27r2BVvPvmjr2ya2gW1mG9oXbCP7om1sm9imtpltY1+1be1rNtm+btvZN/4UL7SL7Fq7zq63G+x+e8BetJfscfuzvWx/t91tD9vffmAH2A/tQPuRHWQH/ykeaT+zo+xoO8aOtePs+D/FU+xUm2an2en2KzvDzvxTnG4X2Nk2w86xc+08O/+P+PqaMuxiu8QutZl2mV1uV9iVdpVdbdf851pX2E12s91i99p9drvdYXfaXXa33fNHfH0fB+23Nst+Z4/Zn+xh+709Yk/Yo/bHP+Lr+zthf7En7a/2lD1tz9iz9pz9zZ63F/7Y//W9n7VX7TXrrSAgSYo0BZSDclIM5aJYuo3i6HbKTXdQhO6keLqL8tDdlJfyUX4qQAlUkAqRISRLRCEVpiIUpXuoKN1LiVSMilMJclSSkug+KkX3U2l6gMrQg1SWHqJyVJ4qUEV6mCrRI1SZHqUq9BhVpWpUnWrQ41STnqBa9CTVpqeoDj1NdekZqkfPUn16jhrQ89SQXqBG9CI1pibUlJpRc3qJWtDL1JJaUWt6hdrQq9SWXqNkep3a0RvUnt6kDvQWdaS3qRO9Q52pC3Wld6kbvUfdqQelUE/qRe9Tb+pDfakf9acPaAB9SAPpIxpEg2kIfUxD6RMaRp/ScBpBI+kzGkWjaQyNpXE0nlLpc5pAX9BE+pIm0WSaQlMpjabRdPqKZtBMmkVf02z6hubQXJpH8ymdFtBCWkQZtJiW0FLKpGW0nFbQSlpFq2kNraV1tJ420EbaRJtpC22lbbSddtBO2kW7aQ/tpX20nw7QQfqWsug7OkR/ocP0PR2hH+go/UjH6Cc6Tj/TCfqFTtKvdIpO0xk6S+foNzpPF+giXaLL9Dtdoat0jTyJEEIZqlCHQZgjzBnGhLnC2PC2MC68Pcwd3hFGwjvD+PCuME94d5g3zBfmDwuECWHBsFBoQgxtSGEYFg6LhNHwnrBoeG+YGBYLi4clQheWDJPC+8JS4f1h6fCBsEz4YFg2fCgsF5YPK4QVw4fDSuEjYeXw0bBK+FhYNawWVg9rhI+HNcMnwlrhk2Ht8KmwdPh0WDd8JqwXPhvWD58LG4TPhw3DF8JG4Yth47BJ2DRsFjYPXwpbhC+HLcNWYevwlbBN+GrYNnwtTA5fD9uFb9z0eErYM+wVvh++H3r/pJoXnR9Njy6ILowuimZEF0eXRJdGM6PLosujK6Iro6uiq6Nromuj66LroxuiG6ObopujW6Le18gpHDjplNMucDlcThfjcrlYd5uLc7e73O4OF3F3unh3l8vj7nZ5XT6X3xVwCa6gK+SMQ2cdudAVdkVc1N3jirp7XaIr5oq7Es65ki7JNXPNXXPXwr3sWrpWrrV7xb3iXnWvutfca+5118694dq7N10H95br6N52b7t3XGfXxXV177pu7j3X3fVwKS7F9XK9XG/X2/V1fV1/198NcAPcQDfQDXKD3BA3xA11Q90wN8wNd8PdSDfSjXKj3Bg3xo1z41yqS3UT3AQ30U10k9wkN8VNcWkuzU13090MN8PNcrPcbDfbzXFz3Dw3z6W7dLfQLXQZLsMtcUtcpst0y91yt9KtdKvdarfWrXXr3Xq30W10m91mt9VtddvddrfT7XS73W631+11+91+d9AddFkuyx1yh9xhd9gdcT+4o+5Hd8z95I67n90J94s76X51p9xpd8addefcb+68u+AuukvusvvdXXFX3TXnXWrk88iEyBeRiZEvI5MikyNTIlMjaZFpkemRryIzIjMjsyJfR2ZHvonMicyNzIvMj6RHFkQWRhZFMiKLI0siSyOZkWWR5ZEVkZWRVRHvC24PfWFfxEf9Pb6ov9cn+mK+uC/hnS/pk/x9vpS/35f2D/gy/kFf1j/ky/nyvoJ/0Tf2TXxT38w39y/5Fv5l39K38q39K76Nf9W39a/5ZP+6b+ff8O39m76Df8t39G/7Tv4d39l38V39u76bf8939z18iu/pe/n3fW/fx/f1/Xx//4Ef4D/0A/1HfpAf7If4j/1Q/4kf5j/1w/0IP9J/5kf50X6MH+vH+fE+1X/uJ/gv/ET/pZ/kJ/spfqpP89P8dP+Vn+Fn+ln+az/bf+Pn+Ll+np/v0/0Cv9Av8hl+sV/il/pMv8wv9yv8Sr/Kr/Zr/Fq/zq/3G/xGv8lv9lv8Vr/Nb/c7/E6/y+/2e/xev8/v9wf8Qf+tz/Lf+UP+L/6w/94f8T/4o/5Hf8z/5I/7n/0J/4s/6X/1p/xpf8af9ef8b/68v+Av+kv+sv/dX/FX/TX+mzXGGGOMsf8RdZPjPf/J5+TfxnW9hBC37yhw9B9rbsz713kfmdAmIoR4vUen5/5jVK2akpLyt9dmKhEUmSuEiNzIzyFuxMtEa/GqSBatRKl/ur4+sstlukn96INCxP6XnBhxI75R//7/pv7o2TetP1eIxCI3cnKJG/GN+qX/m/r5Wtykfq7vU4Vo+V9y4sSN+Eb9JPGyeEMk/90rGWOMMcYYY4yxv+ojK3S42f3t9fvzBH0jJ6e4Ed/s/pwxxhhjjDHGGGO33ltdur72UnJyqw484QlPePKfk1v9m4kxxhhjjDH273bjov9Wr4QxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGMu+/jf+ndit3iNjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2q/2fAAAA//+uBTVz")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r5, &(0x7f0000000180)='./bus\x00', 0x0)
syz_emit_vhci(&(0x7f0000000200)=@HCI_EVENT_PKT={0x4, @inquiry_info={{0x2, 0x2b}, {0x3, [{@any, 0x1, 0x0, 0xf, "2d49e8", 0x7347}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x12}, 0x2, 0x4, 0x3, "cae1d5", 0x6}, {@fixed={'\xaa\xaa\xaa\xaa\xaa', 0x10}, 0x7f, 0x54, 0x7f, "426992", 0x2}]}}}, 0x2e)
renameat2(0xffffffffffffffff, &(0x7f0000000400)='./file0\x00', r4, &(0x7f00000002c0)='./file1\x00', 0x0)
io_setup(0x7fb, 0x0)

3.450976469s ago: executing program 0 (id=1383):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3e, &(0x7f0000000080)=0xe6be, 0x4)
sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @remote}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000540)="44a91c7fe96258cf33157ea1ab91ab59696d913243de26686c1f6f31d42ac31f5ea3c994b1b228ced9b5c10500c72094ec754439af9d294e2b4170cdd4f2133037ecee7b08e50336327236a905e947f2b61a3b272fd34af4f6b2d1320dc7c696a356014d04", 0x65}, {&(0x7f0000000340)="42d011483308fa5f6e3575e1109444bd1f19ee05a4e6f7a12c3d118f700256ff36d9ebc716df2cfd224580561e68532865d93f1bac308f6cfb5e89553ca075bcf05c0461b7f82dce9d977f9002e8aa5d7a199356f23081b68fde3d6c300a1e7bc51f51d67d28091adaf5605e8ca0fad58687d2ce2d303dc44ad3cc5ba13b0c4c8852a678fdaba969666f1c8d0591e35c5b3297007083eda2abf9f4ee8f16d02df7f1124e", 0xa4}, {&(0x7f00000001c0)="8452ed5e59bfa391ef0bf659636114100192b9544bc8bd90dc8d0f067872cf30991b389a94fcc05212bfaeff5fbb6285f471a35d929e82e9de02a33c88a9b84ddb2430f0149d0503020491c9ce6167", 0x4f}, {&(0x7f0000000400)="171c79d4355a126cc4471af2b5ba11292a7bd1ac59eb97bad432cdcffc8383a9e9961c8006511918239d8b03bd4ab3790966ec03b6945b460d5023bea4652ef963833641bf5e86f6dbad6580d730ccb1230ed5d7ab7ba09e13cf73e1b13d5c77fbb4a4e64a04d750dce210941a15b16ed775dbc865497133ff8efde88c5e05bba9df168090ae24c9d35b16c5501068d3de1bd3a68ebea4decc806cf96401447b15394dca76bca4b476c70f44b9bdd4e5a5eab58855f22af838fd6fa7c40c1d0f3edd8f2d2aaba129ca600e1f94deca2b3e24278574d5fd4d2a3b5a332f277266504c4bee6f", 0xe5}, {&(0x7f0000000980)="f5924371f36d65c05a35fe44717914da572d7f150cf9d64822f6b8037f52efaa79d10e2d366e15b7797b91be15e44447f5d532c8e308ea2b8cefe9a8c7c3ae92a7d0111580d101cb72f2e5a375c6ad20206c898bdbd7e644977d3a42b886e53e7ea8dc1ae4568e3db3770508f29f10c06365e7a23134a733e4e4d6dd75c9d6cfee1515f84a6b452851225309354895fee093d810155052a9d9c9f939960c4a8fa03bcc0e7f0d30abd3d8151d75c9bff78955de3c5ed640", 0xb7}, {&(0x7f0000000ac0)="c444dee3d7aba54e3ab0bb77e538117be266254b77b059aae07f9a279d657068776f29c9bc8ba5ab19e9ef888e3e2451732afacf5611c221ab732223a7a676fc68e4307f229cb77c3a0d52c55610b0878550a4c1448f3b7946fcbd11bf9f9c367df2c14495cb61a809e2c49aee3b97d8136ee3bfe35f52b7eba628dad0d23ecdbfbd1561bdd45fca6fb79a92b6f33d13acdf172d4e8475a2870ddfc3185249", 0x9f}, {&(0x7f0000000b80)="561dcfa919208b99d603c28b593e8048426be13cb4cdf56ad0762df564744cabaf2e04ce62b5a44ce48871150b31ebcec3a2c70d7468bf299bec75e0e2874fc5dbef5289c7287e712afc3f3c22a148443d76d4d62e3a19033449be3169c39f7136f5e54d81221b1c75b20d42103d357898864b679fa801b5c8883a6ee0e5dfdfff78bee931d65abad662f337e9976e4556e2a650c2900006c5efcd2b", 0x9c}], 0x7}}], 0x1, 0xc000)

3.294640992s ago: executing program 0 (id=1384):
socket$nl_generic(0x10, 0x3, 0x10)
socket$qrtr(0x2a, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket$l2tp(0x2, 0x2, 0x73)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f0000001200)={0x1d, r4}, 0x18)
sendmsg$can_j1939(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)="aed76e2ee868d29636", 0x9}}, 0x0)

3.024943154s ago: executing program 2 (id=1385):
r0 = socket$inet(0x2, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f00000005c0)=0x169, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4)
getsockopt$inet_int(r0, 0x0, 0x31, &(0x7f00000000c0), &(0x7f0000000140)=0x4)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$eJzs3F9IU38Yx/HHPz/1Z+hGRFBQPeVNRRzcrgMdoRENjHJhCcExz2rstI2dsZqEWxB400U3/buuIEIQoosgELvoKpTwrovuvPMiu0oiOjGnudnUMnWS79fF9rDn+zl8z58dtu9g08fvXouGHSNspqS6oUqq2yUns1XilWpZkJMj10fe7zt34eLpQDDYcVa1M9Dt86tq84HR3pvDh8ZSO86/bH5dL+PeS9Mz/qnx3eN7pr93X404GnE0Fk+pqX3xeMrssy3tv+9EDdUztmU6lkZijpUs6YfteCKRUTPW39SYSFqOo2Yso1Ero6m4ppIZNa+YkZgahqFNjYKVDacfBZbvhp7Puq7MpN65bn1OXNfNv9iwidNDhc2df9ctOv93Kj0lbKKim3qDiD2UDqVDhedCPxCWiNhiSat45JvkrxH38Yg7d6nkH2/4R4KTR9++UVWvDNrZ+Xw2HaopzfvEI95CpqBQd54Kdvi0oDT/nzQW5/3ikV3l8/6y+To53FKUN8Qjk5clLrZMjB78MtU19GAhP+hTPdEVXJL/X/oXD9OzzxU6PwAAAAAAAAAArIWhP5VdvzfyA24PqGrTkn4hX+73gaXr861l1+drZW9tZfcdAAAAAIDtwskMRE3btpJ/WeS/yq/Hdv694smt3x+8v3PlMS1tNRPtH3KJrbBff1B87dkS0ygtZH71abXBNev8TlksPq3Ldqrm57f8mJO9H1+sup26X47PcsY2/q4EAAAAYCMsfuhvk2z4VTrbc+xepecEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMB2s4a/HJt4WK6l+WLn03KtSu8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADASn4EAAD//xAR0Ao=")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x0, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000a40)=ANY=[@ANYBLOB="540100001a000100ffffffff00000000fe800000000000000000000000000000ac1414bb00000000000000000000000000000000000000000000000000000000a0ff2e4ca37fe40ce651afa38c028cf5ac547393ee2496223ce6c082205e9afc1007b2339536c62628544662fccc5a11ed16ffb46390005119fb0713ea4cb92df03a9c9f9cd35d027a254832a5ddb1831a0256bd6c0ca6d792aaae1d28c3dbdfac5016609da0603483b394822fde107765c4f98d348ea520814e4be83166f93e84f07d50555a37471cc5c80c0233eb38fe9a73f4aa43e310", @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000010000000032000000fe80000000000000000000000000000e00"/134], 0x154}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f00000007c0)={0x2, &(0x7f00000001c0)=[{0x3ff, 0x7, 0x3, 0x8}, {0x7, 0x34, 0x9, 0x2}]})
epoll_create1(0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2}, 0x48)

2.970724868s ago: executing program 3 (id=1386):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x0, 0x1f, 0x0, 0xfffffffd}, {0x44, 0x0, 0x5, 0x200}, {0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmctl$IPC_INFO(0x0, 0x3, &(0x7f00000000c0)=""/114)

2.528053085s ago: executing program 4 (id=1389):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x0, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000040000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000940)={{r0}, &(0x7f00000008c0)=0x18, &(0x7f0000000900)='%-5lx  \x00'}, 0x20)

2.426153903s ago: executing program 4 (id=1390):
r0 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x8002, 0x0)
write$P9_RSTATu(r0, &(0x7f00000007c0)={0x23a, 0x7d, 0x0, {{0x500, 0xf9, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x25, '\x04nodev{evoo~\x059\xc6\x00\x05\x00\x007\xd9:\x8b\x92\x96_ \x9enXlo\xfe\xb1\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x03\xb4\x94\xe1', 0x14, '\xcf\xc2m\xd7\xc5\x00\xf0L\xd8_*p\xf5\xe9\x93\x0e<]\xb4Z', 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xe2\x89\xdad\x9a7\x00'}, 0x12c, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x23a)

2.360626408s ago: executing program 0 (id=1391):
open$dir(0x0, 0x0, 0x0)
r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, r0, 0x0, 0x4004)

2.236084728s ago: executing program 4 (id=1392):
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
write$UHID_CREATE2(r0, &(0x7f0000000180)=ANY=[], 0x118)
syz_open_dev$loop(&(0x7f0000000000), 0x0, 0x0)
openat$pfkey(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = socket$tipc(0x1e, 0x2, 0x0)
bind$tipc(r1, &(0x7f0000000100)=@name={0x1e, 0x2, 0x0, {{0x42}}}, 0x10)
r2 = socket$tipc(0x1e, 0x2, 0x0)
setsockopt$TIPC_GROUP_JOIN(r2, 0x10f, 0x87, &(0x7f0000000180)={0x42}, 0x10)
sendmsg$tipc(r2, &(0x7f0000000540)={&(0x7f0000000200)=@name, 0x10, 0x0}, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0)

1.809895233s ago: executing program 3 (id=1393):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000300), 0xffffffffffffffff)
socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_SET_WIPHY(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x56, &(0x7f00000002c0)={&(0x7f0000000040)={0x24, 0x0, 0x0, 0x0, 0x0, {}, [@NL80211_ATTR_WIPHY_TX_POWER_SETTING={0x8}, @NL80211_ATTR_WIPHY_RTS_THRESHOLD={0x8}]}, 0x24}}, 0x0)
sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0xffffffffffffff8c, &(0x7f0000000b00)={&(0x7f0000000040)={0x28, r1, 0x1, 0x0, 0x0, {{0x2}, {@val={0x8, 0x3, r2}, @void}}}, 0x28}, 0x1, 0x6c00}, 0x0)

1.645472936s ago: executing program 3 (id=1394):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3e, &(0x7f0000000080)=0xe6be, 0x4)
sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @remote}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000540)="44a91c7fe96258cf33157ea1ab91ab59696d913243de26686c1f6f31d42ac31f5ea3c994b1b228ced9b5c10500c72094ec754439af9d294e2b4170cdd4f2133037ecee7b08e50336327236a905e947f2b61a3b272fd34af4f6b2d1320dc7c696a356014d04", 0x65}, {&(0x7f0000000340)="42d011483308fa5f6e3575e1109444bd1f19ee05a4e6f7a12c3d118f700256ff36d9ebc716df2cfd224580561e68532865d93f1bac308f6cfb5e89553ca075bcf05c0461b7f82dce9d977f9002e8aa5d7a199356f23081b68fde3d6c300a1e7bc51f51d67d28091adaf5605e8ca0fad58687d2ce2d303dc44ad3cc5ba13b0c4c8852a678fdaba969666f1c8d0591e35c5b3297007083eda2abf9f4ee8f16d02df7f1124e", 0xa4}, {&(0x7f00000001c0)="8452ed5e59bfa391ef0bf659636114100192b9544bc8bd90dc8d0f067872cf30991b389a94fcc05212bfaeff5fbb6285f471a35d929e82e9de02a33c88a9b84ddb2430f0149d0503020491c9ce6167", 0x4f}, {&(0x7f0000000400)="171c79d4355a126cc4471af2b5ba11292a7bd1ac59eb97bad432cdcffc8383a9e9961c8006511918239d8b03bd4ab3790966ec03b6945b460d5023bea4652ef963833641bf5e86f6dbad6580d730ccb1230ed5d7ab7ba09e13cf73e1b13d5c77fbb4a4e64a04d750dce210941a15b16ed775dbc865497133ff8efde88c5e05bba9df168090ae24c9d35b16c5501068d3de1bd3a68ebea4decc806cf96401447b15394dca76bca4b476c70f44b9bdd4e5a5eab58855f22af838fd6fa7c40c1d0f3edd8f2d2aaba129ca600e1f94deca2b3e24278574d5fd4d2a3b5a332f277266504c4bee6f", 0xe5}, {&(0x7f0000000980)="f5924371f36d65c05a35fe44717914da572d7f150cf9d64822f6b8037f52efaa79d10e2d366e15b7797b91be15e44447f5d532c8e308ea2b8cefe9a8c7c3ae92a7d0111580d101cb72f2e5a375c6ad20206c898bdbd7e644977d3a42b886e53e7ea8dc1ae4568e3db3770508f29f10c06365e7a23134a733e4e4d6dd75c9d6cfee1515f84a6b452851225309354895fee093d810155052a9d9c9f939960c4a8fa03bcc0e7f0d30abd3d8151d75c9bff78955de3c5ed640", 0xb7}, {&(0x7f0000000ac0)="c444dee3d7aba54e3ab0bb77e538117be266254b77b059aae07f9a279d657068776f29c9bc8ba5ab19e9ef888e3e2451732afacf5611c221ab732223a7a676fc68e4307f229cb77c3a0d52c55610b0878550a4c1448f3b7946fcbd11bf9f9c367df2c14495cb61a809e2c49aee3b97d8136ee3bfe35f52b7eba628dad0d23ecdbfbd1561bdd45fca6fb79a92b6f33d13acdf172d4e8475a2870ddfc3185249", 0x9f}, {&(0x7f0000000b80)="561dcfa919208b99d603c28b593e8048426be13cb4cdf56ad0762df564744cabaf2e04ce62b5a44ce48871150b31ebcec3a2c70d7468bf299bec75e0e2874fc5dbef5289c7287e712afc3f3c22a148443d76d4d62e3a19033449be3169c39f7136f5e54d81221b1c75b20d42103d357898864b679fa801b5c8883a6ee0e5dfdfff78bee931d65abad662f337e9976e4556e2a650c2900006c5efcd2b", 0x9c}], 0x7}}], 0x1, 0xc000)

1.507253848s ago: executing program 1 (id=1395):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x40, &(0x7f00000003c0)=ANY=[@ANYBLOB="696f636861727365743d6e6f6e6500006f646973636172642c75737271756f74612c646973636172643d3078376666666666666666666666666666662c646973636172643d3078d7adedb02a4b5d303030303030303030e90000003033662c6e6f71756f74612c6e6f71756f746100696e746567726974792c646973636172643d3078303030303030303030303030303030392c756d61736b3d3078303030303030303030303030306266652c71756f74612c6e6f646973636172642c726573697a653d3078303030303030303030303030303030312c726573697a652c7365636c6162656c2c736d61636b66736861743d253a235d2c646f6e745f617070"], 0x6, 0x621f, &(0x7f00000004c0)="$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")
open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
mount$overlay(0x0, 0x0, 0x0, 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000340)='./bus\x00', 0x0, 0x1000, 0x0)
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r0, 0x4c02, &(0x7f0000000140))
r1 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r1, 0x0, 0x0)

1.438989313s ago: executing program 3 (id=1396):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
sendmsg$DEVLINK_CMD_SB_OCC_MAX_CLEAR(r1, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={0x0, 0x32}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000380)=ANY=[@ANYBLOB="3c0000001000850600"/20, @ANYRES32=r2, @ANYBLOB="fe000000000000001c0012000c000100626f6e64"], 0x3c}}, 0x0)
r3 = socket$nl_route(0x10, 0x3, 0x0)
getsockname$packet(r1, 0x0, &(0x7f0000000180))
sendmsg$nl_route(r3, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c00000010000507000000070000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000140012800b00010062726964676500000400028008000a00", @ANYRES32], 0x3c}}, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
getsockname$packet(r5, &(0x7f0000000100)={0x11, 0x0, <r6=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200))
sendmsg$nl_route(r4, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=ANY=[@ANYBLOB="280000001000250800000000000000000a200000", @ANYRES32=r6, @ANYBLOB='\x00\x00\x00\x00\x00\x00\x00\x00\b\x00\n\x00\r'], 0x28}}, 0x0)

1.368931539s ago: executing program 2 (id=1397):
socket$nl_netfilter(0x10, 0x3, 0xc)
rseq(0x0, 0x0, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x400000bce)
syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x3000cd0, &(0x7f0000000440)=ANY=[], 0x1, 0x1509, &(0x7f0000002d40)="$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")
truncate(&(0x7f0000000100)='./file1\x00', 0x0)

1.206154533s ago: executing program 0 (id=1398):
prctl$PR_SET_MM(0x23, 0x0, &(0x7f0000ffc000/0x1000)=nil)
syz_genetlink_get_family_id$ipvs(0x0, 0xffffffffffffffff)
ftruncate(0xffffffffffffffff, 0x0)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)
mincore(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
syz_emit_ethernet(0xa6, &(0x7f00000002c0)={@broadcast, @empty, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, '\x00\b\x00', 0x70, 0x3a, 0xff, @remote, @mcast2, {[], @ndisc_ra={0x86, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, [{0x5, 0xa, "a78ce54006598080a8030037004023493b87aafaffffffffffffff23732472eefa45ad96579269748e254c1e4a8a8b3f0ab0c430d3be27df3e34066d42ca0a5c15b37adac15084dbaf736b41e5af1802"}, {0x0, 0x1, "ffffffffff60000000000000"}]}}}}}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
r2 = getpid()
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f00000000c0)={'netdevsim0\x00'})
syz_pidfd_open(r2, 0x0)
syz_usb_connect(0x0, 0xb, &(0x7f00000010c0)=ANY=[], 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000300)=ANY=[@ANYBLOB="4c0000001800010d00000000000000850a000000000000000500000014000500200100000000000000000100000000001c00090008000000", @ANYRES32=r1], 0x4c}}, 0x0)

1.136182488s ago: executing program 4 (id=1399):
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x2, 0x11}, &(0x7f0000001fee)='R\brust\xe3c*sgrVex:D0', 0x0)

990.03559ms ago: executing program 3 (id=1400):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xb, 0x7, 0x8, 0x0, 0x5}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000040000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f0000000940)={{r0}, &(0x7f00000008c0)=0x18, &(0x7f0000000900)='%-5lx  \x00'}, 0x20)

955.019753ms ago: executing program 4 (id=1401):
socket$nl_generic(0x10, 0x3, 0x10)
socket$qrtr(0x2a, 0x2, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
socket$l2tp(0x2, 0x2, 0x73)
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r3, 0x8933, &(0x7f00000011c0)={'vxcan0\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f0000001200)={0x1d, r4}, 0x18)
sendmsg$can_j1939(r3, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)="aed76e2ee868d29636", 0x9}}, 0x0)

890.212378ms ago: executing program 2 (id=1402):
r0 = openat$sequencer(0xffffffffffffff9c, 0x0, 0x8002, 0x0)
write$P9_RSTATu(r0, &(0x7f00000007c0)={0x23a, 0x7d, 0x0, {{0x500, 0xf9, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0, 0x25, '\x04nodev{evoo~\x059\xc6\x00\x05\x00\x007\xd9:\x8b\x92\x96_ \x9enXlo\xfe\xb1\x00\x00\x00', 0x38, 'pJ\x86\xce\xc6\x02\x00}\xfag>\xff\xeb\t\xb55\x1f[\xde\x05@\x00\x00\x00\x00\x18{\x82\x00\xb5\x00\x00+Y_\xcb\x14\x03CT\xb9\xfd\x9e\xf1\x96\xa5\x1c\xd5\x15z\xdc\x81\x03\xb4\x94\xe1', 0x14, '\xcf\xc2m\xd7\xc5\x00\xf0L\xd8_*p\xf5\xe9\x93\x0e<]\xb4Z', 0x55, '\xf8\xf6i\xfbqm\xcf1^\xca\xf3\x85@\x9a\xc6[\x94\bg\x8c,;\x9e\x1dR\xc3l\xde{\xa4\xa4\x00\xb4\xb0\xb4\xf1t\xa6f\xa8R\x9aE\x1b4\a\xdb\xda\xb2\x88K\xaf\x05\x00\x00\x00\x00\x00\x00\x00G\xec!\xca\xbf\xf2\x0f\x9c\x1c\xbe6\xf4\xfd\x1aL\xc2\x80\xe8\xe2\x89\xdad\x9a7\x00'}, 0x12c, 'odev/n\xb1{#\x00\xf9\xda\xa5\xee#&n\xcf\x85\xfe\xa6^B\xd9y\xa3\xfd\xe5\xf4u\xda\xf0;\x11r\xd9{\xad\xc7\tZ\xfdv\xfeO\x04A\xf7\xf7t\x1e\xac\x03\x00\x00\xec\xff\x00\x00\xdb\xa0\xc2\xf7\xf0\x9f\xf5<~M\x1a\xd6n-\a\x01\x98\x01\x9f0\x11\x84G\xaa\x9at\xf5\x16\x85\xf5\x06\xae\x89H\x06\x87\x82g\xd5\xa1)\x8dy,J7\xf2\xe1\xcb\xbd$\x82\x92\x9a\r\x89r\xb5\xcfs.\xa5\xb0\xd7#\x85\x9d\xba?\x93\xae\xd3\xb4.\xe7\xca\xc0}\xe0\x9d\x1dh\xa6\x033\xa8\x82F}+1\xaa\xcd\xf9\x18\x85I\xb1\x12]lL\x9b\x18\xc2\xfbV\xc5}}\xc6&\xe49\a\x96\xa1\xebH\'Fi\xab\x13\xf8\xb1\x1d\x14`Y\xf3\x10\xe2cMY?\xece\xd5)\xf3\x82\x06fd\xdf$NL\x90W\np\x04\x9f9\x9f\x06\x1fu\xb7y|\xe1\xfe\x11\xea\x91\x96\t\xd5\x1aA\xdd=\xe3\x04\xbd|~\xd0\xa4V\xf0\xae\x12Qa\x05\xc9\xce\x88}\xf5\xa6\xe0\xb6\xa7}Yl\xf8\x8b\xa6\xe5\xc69|}P!\xd7\x98\x95(\xfd\x179\xe1\xc2\xd8\x7f\xff\x00'/300}}, 0x23a)

792.071716ms ago: executing program 3 (id=1403):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x11, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB], &(0x7f00000000c0)='GPL\x00', 0x4, 0xad, &(0x7f00000003c0)=""/173}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
fsconfig$FSCONFIG_SET_FLAG(0xffffffffffffffff, 0x0, &(0x7f0000000040)='ro\x00', 0x0, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000080)=[{0x0, 0x1f, 0x0, 0xfffffffd}, {0x44, 0x0, 0x5, 0x200}, {0x6}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='sched_switch\x00'}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
shmctl$IPC_INFO(0x0, 0x3, &(0x7f00000000c0)=""/114)

687.579944ms ago: executing program 2 (id=1405):
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=@ipv6_delrule={0x4c, 0x18, 0x301, 0x0, 0x0, {0xa, 0x0, 0x14, 0x0, 0x0, 0x3, 0x0, 0x7}, [@FIB_RULE_POLICY=@FRA_OIFNAME={0x14, 0x11, 'dvmrp0\x00'}, @FRA_DST={0x14, 0x1, @mcast1}, @FIB_RULE_POLICY=@FRA_FWMARK={0x8}]}, 0x4c}}, 0x0)

617.0595ms ago: executing program 2 (id=1406):
r0 = socket$inet6(0xa, 0x80002, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3e, &(0x7f0000000080)=0xe6be, 0x4)
sendmmsg$inet6(r0, &(0x7f00000034c0)=[{{&(0x7f0000000000)={0xa, 0x4e23, 0x0, @remote}, 0x1c, &(0x7f0000000040)=[{&(0x7f0000000540)="44a91c7fe96258cf33157ea1ab91ab59696d913243de26686c1f6f31d42ac31f5ea3c994b1b228ced9b5c10500c72094ec754439af9d294e2b4170cdd4f2133037ecee7b08e50336327236a905e947f2b61a3b272fd34af4f6b2d1320dc7c696a356014d04", 0x65}, {&(0x7f0000000340)="42d011483308fa5f6e3575e1109444bd1f19ee05a4e6f7a12c3d118f700256ff36d9ebc716df2cfd224580561e68532865d93f1bac308f6cfb5e89553ca075bcf05c0461b7f82dce9d977f9002e8aa5d7a199356f23081b68fde3d6c300a1e7bc51f51d67d28091adaf5605e8ca0fad58687d2ce2d303dc44ad3cc5ba13b0c4c8852a678fdaba969666f1c8d0591e35c5b3297007083eda2abf9f4ee8f16d02df7f1124e", 0xa4}, {&(0x7f00000001c0)="8452ed5e59bfa391ef0bf659636114100192b9544bc8bd90dc8d0f067872cf30991b389a94fcc05212bfaeff5fbb6285f471a35d929e82e9de02a33c88a9b84ddb2430f0149d0503020491c9ce6167", 0x4f}, {&(0x7f0000000400)="171c79d4355a126cc4471af2b5ba11292a7bd1ac59eb97bad432cdcffc8383a9e9961c8006511918239d8b03bd4ab3790966ec03b6945b460d5023bea4652ef963833641bf5e86f6dbad6580d730ccb1230ed5d7ab7ba09e13cf73e1b13d5c77fbb4a4e64a04d750dce210941a15b16ed775dbc865497133ff8efde88c5e05bba9df168090ae24c9d35b16c5501068d3de1bd3a68ebea4decc806cf96401447b15394dca76bca4b476c70f44b9bdd4e5a5eab58855f22af838fd6fa7c40c1d0f3edd8f2d2aaba129ca600e1f94deca2b3e24278574d5fd4d2a3b5a332f277266504c4bee6f", 0xe5}, {&(0x7f0000000980)="f5924371f36d65c05a35fe44717914da572d7f150cf9d64822f6b8037f52efaa79d10e2d366e15b7797b91be15e44447f5d532c8e308ea2b8cefe9a8c7c3ae92a7d0111580d101cb72f2e5a375c6ad20206c898bdbd7e644977d3a42b886e53e7ea8dc1ae4568e3db3770508f29f10c06365e7a23134a733e4e4d6dd75c9d6cfee1515f84a6b452851225309354895fee093d810155052a9d9c9f939960c4a8fa03bcc0e7f0d30abd3d8151d75c9bff78955de3c5ed640", 0xb7}, {&(0x7f0000000ac0)="c444dee3d7aba54e3ab0bb77e538117be266254b77b059aae07f9a279d657068776f29c9bc8ba5ab19e9ef888e3e2451732afacf5611c221ab732223a7a676fc68e4307f229cb77c3a0d52c55610b0878550a4c1448f3b7946fcbd11bf9f9c367df2c14495cb61a809e2c49aee3b97d8136ee3bfe35f52b7eba628dad0d23ecdbfbd1561bdd45fca6fb79a92b6f33d13acdf172d4e8475a2870ddfc3185249", 0x9f}, {&(0x7f0000000b80)="561dcfa919208b99d603c28b593e8048426be13cb4cdf56ad0762df564744cabaf2e04ce62b5a44ce48871150b31ebcec3a2c70d7468bf299bec75e0e2874fc5dbef5289c7287e712afc3f3c22a148443d76d4d62e3a19033449be3169c39f7136f5e54d81221b1c75b20d42103d357898864b679fa801b5c8883a6ee0e5dfdfff78bee931d65abad662f337e9976e4556e2a650c2900006c5efcd2b", 0x9c}], 0x7}}, {{0x0, 0x0, 0x0}}], 0x2, 0xc000)

550.043465ms ago: executing program 2 (id=1407):
r0 = socket$inet(0x2, 0x0, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x0, &(0x7f00000005c0)=0x169, 0x4)
bind$inet(r0, &(0x7f0000deb000)={0x2, 0x4e23, @local}, 0x10)
setsockopt$sock_int(r0, 0x1, 0x8, &(0x7f0000000100), 0x4)
getsockopt$inet_int(r0, 0x0, 0x31, &(0x7f00000000c0), &(0x7f0000000140)=0x4)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000200), &(0x7f0000000080)='./file0\x00', 0xa08886, &(0x7f0000000040)=ANY=[@ANYRES32=0x0], 0x9, 0x2a8, &(0x7f0000000500)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x0, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x4000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r4, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000a40)=ANY=[@ANYBLOB="540100001a000100ffffffff00000000fe800000000000000000000000000000ac1414bb00000000000000000000000000000000000000000000000000000000a0ff2e4ca37fe40ce651afa38c028cf5ac547393ee2496223ce6c082205e9afc1007b2339536c62628544662fccc5a11ed16ffb46390005119fb0713ea4cb92df03a9c9f9cd35d027a254832a5ddb1831a0256bd6c0ca6d792aaae1d28c3dbdfac5016609da0603483b394822fde107765c4f98d348ea520814e4be83166f93e84f07d50555a37471cc5c80c0233eb38fe9a73f4aa43e310", @ANYRES32=0x0, @ANYBLOB="000000000000000000000000000000010000000032000000fe80000000000000000000000000000e00"/134], 0x154}}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f00000007c0)={0x2, &(0x7f00000001c0)=[{0x3ff, 0x7, 0x3, 0x8}, {0x7, 0x34, 0x9, 0x2}]})
epoll_create1(0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2}, 0x48)

518.614858ms ago: executing program 0 (id=1408):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000004380)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=@ipv6_newrule={0x24, 0x18, 0x409, 0x0, 0x0, {}, [@FIB_RULE_POLICY=@FRA_GOTO={0x8, 0x1e, 0x1}]}, 0x24}}, 0x0)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_mesh(r2, 0x8933, &(0x7f0000001700)={'batadv0\x00', <r3=>0x0})
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(r1, 0x89f1, &(0x7f00000000c0)={'ip6_vti0\x00', &(0x7f00000001c0)={'syztnl1\x00', r3, 0x0, 0x0, 0x0, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, @private1}})

424.423316ms ago: executing program 0 (id=1409):
open$dir(0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x4008032, 0xffffffffffffffff, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
ptrace$ARCH_FORCE_TAGGED_SVA(0x1e, 0x0, 0x0, 0x4004)

0s ago: executing program 4 (id=1410):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000800000000150000001811", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa20000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$MAP_CREATE(0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x88, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x3ffffffffffffda, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000014000000b7030000000022008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b7000000000000009500000000000000"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r7 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x2d)
ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, &(0x7f0000001040)={'gre0\x00', &(0x7f0000000100)={'syztnl1\x00', <r8=>0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x2f, 0x0, @local, @multicast1}}}})
r9 = socket$nl_generic(0x10, 0x3, 0x10)
r10 = syz_genetlink_get_family_id$ethtool(&(0x7f00000007c0), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_EEE_GET(r9, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000340)={0x14, r10, 0xab2bf658e72548f3, 0x0, 0x0, {0xa}}, 0x14}}, 0x0)
r11 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x6, 0x5, 0x0, r5, 0x1, '\x00', r8, 0xffffffffffffffff, 0x0, 0x3}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r11, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r12 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
r13 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r13, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000440)={0x1c, 0x0, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@val={0x8}, @void}}}, 0x1c}}, 0x0)
r14 = eventfd2(0x9, 0x800)
io_submit(0x0, 0x9, &(0x7f0000000d80)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x7, 0xffff, 0xffffffffffffffff, &(0x7f0000000240)="d0b36283fefd7aa1c7ef7894be74ce1bdca2109b29db7cffd4ca3641f776cddbca76ad4fcd9b2e8265885586f34f79db06619e1376ab9a4d414652ce231801b510d1f3cc5c6cf7fe8def87d7b23bcf1bcbcd607869fc77e4b62756e9b50f31d30aec07630e90e4059f7846716c3ea5df", 0x70}, &(0x7f0000000300)={0x0, 0x0, 0x0, 0x0, 0x81, r12, &(0x7f00000006c0)="834672ddcbdce321eab55ec4ce8fa67dd94d1b4fc174a20c2e2cf5253005db131582f44c250221e6c83ee2390cdb65db5b6430b8df4d13f4884f6d246929a2ba6c6385bd4340c3c678b30f0fd9fc67c2a04e39f88e4b644c18017033fad489c9a84aab65570a120089dee28005401d1bf4ec3839002a85e5385403af5a1acd1eee085ea84ae1486e63523702eaff8468f4aa2d72f9f2e49d21cd37dd44a4f6bb94de", 0xa2, 0x5, 0x0, 0x2}, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x12, r7, &(0x7f00000003c0)="fdb694c3d85fee418535e6110f229d4f8545d4549b924fa95ca448f877104fc1626973067563d965f770f5fea53b2cec14509487351ad217750900df50412bd9047ff40a603a97375ee13834896cec396745e9c98543f6301e68677a5b86b675ac5e50c2e165e805a6fb436abe63", 0x6e, 0x2, 0x0, 0x3}, &(0x7f0000000500)={0x0, 0x0, 0x0, 0x0, 0x2, r6, &(0x7f0000000800)="881eab99abb473d0d6441892a325b349a8f0c27105c4eb15acc045f80da5b5945dbaca15afd3ee9f55d9a33504e1ef712b5e6c3534", 0x35, 0x9, 0x0, 0x3, r12}, &(0x7f0000000900)={0x0, 0x0, 0x0, 0x0, 0x3, r3, &(0x7f0000000780)="9145b2348d450fb362c03e", 0xb, 0x6, 0x0, 0x3}, &(0x7f0000000940)={0x0, 0x0, 0x0, 0x5, 0x3, 0xffffffffffffffff, &(0x7f0000000a40)="d0e2fe9f69b879b1bab0e1ab7bd4a9870c16a45a03dcef3bed28a1ae20900ca23e4d66ea479e6bc700a7169bf186835d049418ffcacd54e9c5da104149d89e5c9f318f99c2efd725272c702c597ceb6f16fb158189c310dcc1a16e9beac80fc8596ce227e80ff4d02c315705094c9f6244f58f6e91842aa6f6fd45206da193d4522fc79e5bbfffd4eed9a398e47750075095119ae368a9ae517d4b14ecec3c609d34a3def6e59aeb9a98fbdd7f10d2f4c7ca5246b12b0a1005be66c1a3c6bcbc3e69e08b1b", 0xc5, 0xffffffff, 0x0, 0x3}, &(0x7f0000000980)={0x0, 0x0, 0x0, 0x0, 0x7, r7, &(0x7f0000000b40)="332302d13dbc0f3182baf946f9cb4e407b17ca9f7ca626167a2ea7f099c979c3b7ea8e0f82c187a0d185279290b5383bea6cb1538026dadea761981ae0117c9d7813ae04fd13b9c9340ed2889c98e9271161f2b1fc842615b035254cee3b86c1435bee35457c5ba9", 0x68, 0x5, 0x0, 0x1, r14}, &(0x7f0000000c40)={0x0, 0x0, 0x0, 0x5, 0x6, r1, &(0x7f0000000bc0)="07bb9ca8779d81c0756ee15e3fc4185f0b0dd404d8f7d65ac4672b57c68ff5820e0fbe471a899c3e19624b6338217cb49ce037737981341a3c3a57672d9c0bbf34b4e32889b2da41e026f1942ac2a5e3216c4fc4920261", 0x57, 0x8, 0x0, 0x2}, &(0x7f0000000d40)={0x0, 0x0, 0x0, 0x0, 0x400, r0, &(0x7f0000000c80)="9cd31ef02d899307100ebe7f03781f2928ea9d195009d97e101a12cb9ac25d49f3e8588c0a295d2338eac1c38ac18ad531f2fe543ad18cfff7d49013eee29d5c34e272924a1174a8ff664c9c790d7cb6558ff7b583363916f87a4e708fec7033e41c6a2a7df62e8147bcd58d9a7c6bd7bbd5bb24db60b2203625e618c3ea1fe442c07c7a", 0x84, 0x3000000000, 0x0, 0x3}])
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x0, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
syz_clone(0x4d100000, 0x0, 0x0, 0x0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

[ T3802] usb 2-1: SerialNumber: syz
[  289.573051][ T3644] Bluetooth: hci2: unexpected event for opcode 0x203d
[  289.584077][ T3802] usbhid 2-1:1.0: couldn't find an input interrupt endpoint
[  289.769905][ T4099] usb 2-1: USB disconnect, device number 9
[  290.524485][ T7073] fuse: Bad value for 'fd'
[  290.984418][ T7082] netlink: 4 bytes leftover after parsing attributes in process `syz.1.943'.
[  291.068732][ T4397] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[  291.159743][ T4397] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix.
[  291.997318][ T3644] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  292.022868][ T7097] loop4: detected capacity change from 0 to 2048
[  292.029616][ T3644] Bluetooth: hci1: unexpected event 0x30 length: 4 > 3
[  292.086938][ T7097]  loop4: p1 < > p4
[  292.102100][ T7097] loop4: p4 size 8388608 extends beyond EOD, truncated
[  292.144189][ T7101] netlink: 12 bytes leftover after parsing attributes in process `syz.2.951'.
[  292.154051][ T3092]  loop4: p1 < > p4
[  292.188323][ T3092] loop4: p4 size 8388608 extends beyond EOD, truncated
[  292.514191][ T7112] netlink: 4 bytes leftover after parsing attributes in process `syz.0.955'.
[  292.638231][ T7119] netlink: 4 bytes leftover after parsing attributes in process `syz.2.956'.
[  292.682362][ T3802] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[  292.805274][ T7121] loop0: detected capacity change from 0 to 1024
[  292.842921][ T4211] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  292.882690][ T3802] usb 2-1: device descriptor read/64, error -71
[  292.985756][ T7128] loop0: detected capacity change from 0 to 512
[  293.005350][ T7128] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  293.041304][ T7128] EXT4-fs (loop0): 1 truncate cleaned up
[  293.047596][ T7128] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  293.100319][ T4211] usb 4-1: Using ep0 maxpacket: 32
[  293.129865][ T3635] EXT4-fs (loop0): unmounting filesystem.
[  293.172467][ T3802] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[  293.300899][ T7136] loop2: detected capacity change from 0 to 2048
[  293.362633][ T3802] usb 2-1: device descriptor read/64, error -71
[  293.402517][ T4211] usb 4-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  293.411683][ T4211] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  293.433392][ T7139] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  293.462340][ T4211] usb 4-1: Product: syz
[  293.472528][ T4211] usb 4-1: Manufacturer: syz
[  293.482621][ T3802] usb usb2-port1: attempt power cycle
[  293.493553][ T4211] usb 4-1: SerialNumber: syz
[  293.510853][ T4211] usb 4-1: config 0 descriptor??
[  293.538362][ T7136] overlayfs: upper fs does not support tmpfile.
[  293.554956][ T7136] overlayfs: upper fs does not support RENAME_WHITEOUT.
[  293.561991][ T7136] overlayfs: failed to set xattr on upper
[  293.563926][ T4211] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  293.576501][ T3644] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0
[  293.585337][ T3644] Bluetooth: hci2: Injecting HCI hardware error event
[  293.586500][ T7136] overlayfs: ...falling back to index=off,metacopy=off.
[  293.593919][ T3644] Bluetooth: hci2: hardware error 0x00
[  293.760134][ T7138] loop0: detected capacity change from 0 to 32768
[  293.781502][ T7138] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.962 (7138)
[  293.852323][ T7138] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  293.860919][ T7145] loop4: detected capacity change from 0 to 2048
[  293.886064][ T7138] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  293.892412][ T3802] usb 2-1: new full-speed USB device number 12 using dummy_hcd
[  293.901669][ T7138] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_LZO (0x8)
[  293.912855][ T7138] BTRFS info (device loop0): force lzo compression, level 0
[  293.920268][ T7138] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  293.945477][ T7145] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  293.954969][ T7138] BTRFS info (device loop0): use zstd compression, level 3
[  293.972020][ T7138] BTRFS info (device loop0): using free space tree
[  294.062538][ T3802] usb 2-1: device descriptor read/8, error -71
[  294.140746][ T4211] gspca_ov534_9: reg_w failed -110
[  294.332468][ T3802] usb 2-1: new full-speed USB device number 13 using dummy_hcd
[  294.398331][ T7138] BTRFS info (device loop0): enabling ssd optimizations
[  294.432483][ T3802] usb 2-1: device descriptor read/8, error -71
[  294.555387][ T3802] usb usb2-port1: unable to enumerate USB device
[  294.559481][   T26] kauditd_printk_skb: 6 callbacks suppressed
[  294.559495][   T26] audit: type=1800 audit(1722408634.972:101): pid=7170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.962" name="bus" dev="loop0" ino=263 res=0 errno=0
[  294.634141][ T3822] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  294.672338][ T4211] gspca_ov534_9: Unknown sensor 0000
[  294.672403][ T4211] ov534_9: probe of 4-1:0.0 failed with error -22
[  294.756301][   T26] audit: type=1800 audit(1722408635.012:102): pid=7138 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.962" name="bus" dev="loop0" ino=263 res=0 errno=0
[  294.876106][   T26] audit: type=1800 audit(1722408635.112:103): pid=7170 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.962" name="bus" dev="loop0" ino=263 res=0 errno=0
[  294.966077][ T3822] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.140927][ T3635] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  295.165492][ T3822] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.325523][   T26] audit: type=1800 audit(1722408635.742:104): pid=7176 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.965" name="bus" dev="loop4" ino=18 res=0 errno=0
[  295.359751][ T3822] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.394563][ T7145] loop4: detected capacity change from 2048 to 2025
[  295.425185][ T7176] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz.4.965: path /219/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  295.494393][ T7130] EXT4-fs error (device loop4): ext4_validate_block_bitmap:429: comm ext4lazyinit: bg 0: block 2: invalid block bitmap
[  295.652312][ T3644] Bluetooth: hci2: Opcode 0x0c03 failed: -110
[  295.678679][ T3638] EXT4-fs error (device loop4): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /219/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  295.743890][ T4863] usb 3-1: USB disconnect, device number 10
[  296.143803][ T3638] EXT4-fs (loop4): unmounting filesystem.
[  296.293331][ T3636] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  296.307223][ T3636] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  296.316158][ T3636] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  296.325551][ T3636] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  296.334617][ T3636] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  296.341980][ T3636] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  297.088955][ T7190] chnl_net:caif_netlink_parms(): no params data found
[  297.342592][ T4862] usb 4-1: USB disconnect, device number 9
[  297.689374][ T3636] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  297.701232][ T3636] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  297.709621][ T3636] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  297.718547][ T3636] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  297.735292][ T3636] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  297.750011][ T3636] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  297.834242][ T7190] bridge0: port 1(bridge_slave_0) entered blocking state
[  297.841639][ T7190] bridge0: port 1(bridge_slave_0) entered disabled state
[  297.874891][ T7190] device bridge_slave_0 entered promiscuous mode
[  298.080266][ T7190] bridge0: port 2(bridge_slave_1) entered blocking state
[  298.092316][ T7190] bridge0: port 2(bridge_slave_1) entered disabled state
[  298.113829][ T7190] device bridge_slave_1 entered promiscuous mode
[  298.128371][ T7231] loop3: detected capacity change from 0 to 2048
[  298.209733][ T3822] device hsr_slave_0 left promiscuous mode
[  298.218899][ T3822] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  298.223647][ T7231] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  298.226730][ T3822] batman_adv: batadv0: Removing interface: batadv_slave_0
[  298.243013][ T3822] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  298.250791][ T3822] batman_adv: batadv0: Removing interface: batadv_slave_1
[  298.260106][ T3822] device bridge_slave_1 left promiscuous mode
[  298.266451][ T3822] bridge0: port 2(bridge_slave_1) entered disabled state
[  298.272451][ T4862] usb 1-1: new full-speed USB device number 6 using dummy_hcd
[  298.291739][ T3822] device bridge_slave_0 left promiscuous mode
[  298.298103][ T3822] bridge0: port 1(bridge_slave_0) entered disabled state
[  298.325279][ T3822] device veth1_macvtap left promiscuous mode
[  298.331428][ T3822] device veth0_macvtap left promiscuous mode
[  298.337715][ T3822] device veth1_vlan left promiscuous mode
[  298.343684][ T3822] device veth0_vlan left promiscuous mode
[  298.372528][ T3644] Bluetooth: hci1: command tx timeout
[  298.389251][ T3644] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  298.398770][ T3644] Bluetooth: hci4: unexpected event 0x30 length: 4 > 3
[  298.472383][ T4862] usb 1-1: device descriptor read/64, error -71
[  298.479885][ T7236] loop1: detected capacity change from 0 to 2048
[  298.553133][ T7236]  loop1: p1 < > p4
[  298.560150][ T7236] loop1: p4 size 8388608 extends beyond EOD, truncated
[  298.592562][ T3092]  loop1: p1 < > p4
[  298.608585][ T3092] loop1: p4 size 8388608 extends beyond EOD, truncated
[  298.657195][ T7236] __loop_clr_fd: partition scan of loop1 failed (rc=-16)
[  298.664874][ T5478] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  298.683070][ T6437] I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  298.716406][ T6437] I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  298.734354][ T5478] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  298.745048][ T6437] Buffer I/O error on dev loop1p4, logical block 1, async page read
[  298.753335][ T7236] loop1: detected capacity change from 0 to 256
[  298.759968][ T5478] Buffer I/O error on dev loop1p1, logical block 0, async page read
[  298.780173][ T4862] usb 1-1: new full-speed USB device number 7 using dummy_hcd
[  298.908904][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  298.922117][ T6437] udevd[6437]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  299.002478][ T4862] usb 1-1: device descriptor read/64, error -71
[  299.011670][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  299.019013][ T6437] udevd[6437]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  299.111818][   T26] audit: type=1800 audit(1722408639.522:105): pid=7231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.980" name="bus" dev="loop3" ino=18 res=0 errno=0
[  299.142809][ T4862] usb usb1-port1: attempt power cycle
[  299.178990][ T7231] loop3: detected capacity change from 2048 to 2025
[  299.206930][ T7237] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz.3.980: path /40/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  299.292593][ T6301] EXT4-fs error (device loop3): ext4_readdir:260: inode #2: block 16: comm syz-executor: path /40/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=0, rec_len=0, size=2048 fake=0
[  299.360191][ T6301] EXT4-fs (loop3): unmounting filesystem.
[  299.469879][ T3822] team0 (unregistering): Port device team_slave_1 removed
[  299.539362][ T3822] team0 (unregistering): Port device team_slave_0 removed
[  299.562354][ T4862] usb 1-1: new full-speed USB device number 8 using dummy_hcd
[  299.635092][ T3822] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  299.668875][ T4862] usb 1-1: device descriptor read/8, error -71
[  299.705103][ T3822] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  299.838154][ T3644] Bluetooth: hci3: command tx timeout
[  299.972318][ T4862] usb 1-1: new full-speed USB device number 9 using dummy_hcd
[  300.084392][ T4862] usb 1-1: device descriptor read/8, error -71
[  300.219222][ T4862] usb usb1-port1: unable to enumerate USB device
[  300.417412][ T3822] bond0 (unregistering): Released all slaves
[  300.452431][ T3644] Bluetooth: hci1: command tx timeout
[  300.474573][ T7190] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  300.558051][ T7190] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  300.668096][ T7190] team0: Port device team_slave_0 added
[  300.690407][ T7190] team0: Port device team_slave_1 added
[  300.765110][ T7190] batman_adv: batadv0: Adding interface: batadv_slave_0
[  300.772099][ T7190] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  300.799256][ T7190] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  300.890282][ T7190] batman_adv: batadv0: Adding interface: batadv_slave_1
[  300.898074][ T7190] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  300.952212][ T7190] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  301.128347][ T7190] device hsr_slave_0 entered promiscuous mode
[  301.145909][ T7190] device hsr_slave_1 entered promiscuous mode
[  301.153279][ T7190] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  301.160863][ T7190] Cannot create hsr debugfs directory
[  301.345626][ T7221] chnl_net:caif_netlink_parms(): no params data found
[  301.803978][ T7221] bridge0: port 1(bridge_slave_0) entered blocking state
[  301.811192][ T7221] bridge0: port 1(bridge_slave_0) entered disabled state
[  301.840065][ T7221] device bridge_slave_0 entered promiscuous mode
[  301.892395][ T3636] Bluetooth: hci3: command tx timeout
[  301.898823][ T3636] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  301.911608][ T3636] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  301.920415][ T3636] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  301.921604][ T7251] loop1: detected capacity change from 0 to 40427
[  301.936998][ T3652] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  301.945905][ T3652] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  301.954001][ T3652] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  301.966539][ T7221] bridge0: port 2(bridge_slave_1) entered blocking state
[  301.988282][ T7221] bridge0: port 2(bridge_slave_1) entered disabled state
[  302.002290][ T7251] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12
[  302.010049][ T7251] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock
[  302.074559][ T7221] device bridge_slave_1 entered promiscuous mode
[  302.081365][ T7251] F2FS-fs (loop1): invalid crc value
[  302.109120][ T7251] F2FS-fs (loop1): Found nat_bits in checkpoint
[  302.182912][ T7251] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0
[  302.190048][ T7251] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  302.203377][ T7282] loop0: detected capacity change from 0 to 2048
[  302.353223][ T7221] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  302.367453][ T7282]  loop0: p1 < > p4
[  302.386745][ T7282] loop0: p4 size 8388608 extends beyond EOD, truncated
[  302.477027][ T6437] udevd[6437]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  302.495020][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  302.532426][ T3652] Bluetooth: hci1: command tx timeout
[  302.588480][ T7221] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  302.689071][ T7221] team0: Port device team_slave_0 added
[  302.722430][ T7221] team0: Port device team_slave_1 added
[  302.824331][ T7221] batman_adv: batadv0: Adding interface: batadv_slave_0
[  302.831486][ T7221] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  302.898692][ T7221] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  302.952826][ T7221] batman_adv: batadv0: Adding interface: batadv_slave_1
[  302.985315][ T7221] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  303.043879][ T7221] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  303.359280][ T7221] device hsr_slave_0 entered promiscuous mode
[  303.379330][ T7221] device hsr_slave_1 entered promiscuous mode
[  303.396331][ T7221] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  303.404156][   T26] audit: type=1326 audit(1722408643.812:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7293 comm="syz.1.992" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f00d773b9 code=0x0
[  303.442421][ T7221] Cannot create hsr debugfs directory
[  303.460429][ T7190] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  303.523041][ T7190] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  303.664282][ T7190] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  303.708187][ T7190] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  303.734709][ T7276] chnl_net:caif_netlink_parms(): no params data found
[  303.972308][ T3652] Bluetooth: hci3: command tx timeout
[  304.054114][ T3652] Bluetooth: hci0: command tx timeout
[  304.121536][ T7276] bridge0: port 1(bridge_slave_0) entered blocking state
[  304.133259][ T7276] bridge0: port 1(bridge_slave_0) entered disabled state
[  304.143330][ T7276] device bridge_slave_0 entered promiscuous mode
[  304.226117][ T7221] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  304.363177][ T7190] 8021q: adding VLAN 0 to HW filter on device bond0
[  304.370061][ T7276] bridge0: port 2(bridge_slave_1) entered blocking state
[  304.380311][ T7276] bridge0: port 2(bridge_slave_1) entered disabled state
[  304.598223][ T7276] device bridge_slave_1 entered promiscuous mode
[  304.633638][ T3652] Bluetooth: hci1: command tx timeout
[  304.848871][ T7221] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.224900][ T7276] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  305.249067][ T7276] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  305.309125][ T7276] team0: Port device team_slave_0 added
[  305.329129][ T7276] team0: Port device team_slave_1 added
[  305.561795][ T7221] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.100705][ T7190] 8021q: adding VLAN 0 to HW filter on device team0
[  306.114519][ T3644] Bluetooth: hci3: command tx timeout
[  306.132788][ T3644] Bluetooth: hci0: command tx timeout
[  306.149021][ T3682] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  306.157112][ T3682] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  306.212902][ T7221] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.241842][ T7276] batman_adv: batadv0: Adding interface: batadv_slave_0
[  306.272241][ T7276] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.343447][ T7276] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  306.367624][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  306.379921][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  306.402736][ T3679] bridge0: port 1(bridge_slave_0) entered blocking state
[  306.409936][ T3679] bridge0: port 1(bridge_slave_0) entered forwarding state
[  306.432731][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  306.441617][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  306.462430][ T3795] usb 1-1: new full-speed USB device number 10 using dummy_hcd
[  306.471986][ T3679] bridge0: port 2(bridge_slave_1) entered blocking state
[  306.479147][ T3679] bridge0: port 2(bridge_slave_1) entered forwarding state
[  306.489248][ T7276] batman_adv: batadv0: Adding interface: batadv_slave_1
[  306.497689][ T7276] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  306.525311][ T7276] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  306.547524][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  306.557848][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  306.566838][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  306.618935][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  306.635609][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  306.649179][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  306.659504][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  306.689221][ T3795] usb 1-1: device descriptor read/64, error -71
[  306.711913][ T7190] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  306.724131][ T7190] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  306.761357][ T3822] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.778166][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  306.787484][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  306.796139][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  306.808152][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  306.816600][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  306.870492][ T3822] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.891974][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  306.932977][ T7276] device hsr_slave_0 entered promiscuous mode
[  306.953374][ T7276] device hsr_slave_1 entered promiscuous mode
[  306.960167][ T7276] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  306.976318][ T7276] Cannot create hsr debugfs directory
[  306.992613][ T3795] usb 1-1: new full-speed USB device number 11 using dummy_hcd
[  307.084010][ T3822] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.174394][ T3822] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  307.192524][ T3795] usb 1-1: device descriptor read/64, error -71
[  307.193710][ T7221] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  307.226946][ T7221] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  307.256538][ T7221] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  307.283366][ T7221] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  307.301166][ T3802] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  307.308966][ T3802] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  307.323431][ T3795] usb usb1-port1: attempt power cycle
[  307.366949][ T7190] 8021q: adding VLAN 0 to HW filter on device batadv0
[  307.465283][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  307.482420][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  307.603587][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  307.619795][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  307.633940][ T7190] device veth0_vlan entered promiscuous mode
[  307.668548][ T3802] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  307.676791][ T3802] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  307.691269][ T7190] device veth1_vlan entered promiscuous mode
[  307.754711][ T3795] usb 1-1: new full-speed USB device number 12 using dummy_hcd
[  307.873214][ T3795] usb 1-1: device descriptor read/8, error -71
[  307.915277][ T7221] 8021q: adding VLAN 0 to HW filter on device bond0
[  308.011829][ T7190] device veth0_macvtap entered promiscuous mode
[  308.037326][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  308.048640][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  308.057588][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  308.067550][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  308.076696][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  308.085250][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  308.098846][ T7190] device veth1_macvtap entered promiscuous mode
[  308.110092][ T7221] 8021q: adding VLAN 0 to HW filter on device team0
[  308.148528][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  308.157891][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  308.165506][ T3795] usb 1-1: new full-speed USB device number 13 using dummy_hcd
[  308.187322][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  308.197699][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  308.206836][ T3994] bridge0: port 1(bridge_slave_0) entered blocking state
[  308.213960][ T3994] bridge0: port 1(bridge_slave_0) entered forwarding state
[  308.221888][ T3644] Bluetooth: hci0: command tx timeout
[  308.237583][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  308.249111][ T3994] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  308.258273][ T3994] bridge0: port 2(bridge_slave_1) entered blocking state
[  308.265414][ T3994] bridge0: port 2(bridge_slave_1) entered forwarding state
[  308.275839][ T3795] usb 1-1: device descriptor read/8, error -71
[  308.282292][ T3681] usb 2-1: new full-speed USB device number 14 using dummy_hcd
[  308.295596][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  308.318609][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.328878][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  308.350978][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.362333][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  308.373383][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.383984][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  308.395117][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.411829][ T3795] usb usb1-port1: unable to enumerate USB device
[  308.444557][ T7190] batman_adv: batadv0: Interface activated: batadv_slave_0
[  308.489652][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  308.503029][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  308.521823][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  308.531688][ T3683] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  308.565320][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  308.584071][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.600479][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  308.621997][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.640042][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  308.650778][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.668322][ T7190] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  308.681425][ T7190] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  308.701862][ T7190] batman_adv: batadv0: Interface activated: batadv_slave_1
[  308.712473][ T3681] usb 2-1: config 0 has no interfaces?
[  308.718139][ T3681] usb 2-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  308.730116][ T3681] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  308.740381][ T3681] usb 2-1: config 0 descriptor??
[  308.757137][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  308.766624][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  308.777747][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  308.787644][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  308.798767][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  308.807379][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  308.815797][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  308.824479][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  308.833145][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  308.841306][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  308.849936][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  308.860777][ T7221] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  308.898669][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  308.916668][ T7190] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  308.928922][ T7190] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  308.938254][ T7190] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  308.947589][ T7190] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  308.988937][ T3994] usb 2-1: USB disconnect, device number 14
[  309.104314][ T7276] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  309.193597][ T7276] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  309.301440][ T7276] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  309.339948][ T4395] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  309.349613][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  309.375528][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  309.392189][ T4395] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  309.402809][ T7276] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  309.460588][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  310.081102][ T7221] 8021q: adding VLAN 0 to HW filter on device batadv0
[  310.131957][   T37] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  310.149053][   T37] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  310.162769][   T26] audit: type=1326 audit(1722408650.572:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7390 comm="syz.1.1003" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f00d773b9 code=0x0
[  310.308756][ T3644] Bluetooth: hci0: command tx timeout
[  310.321816][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  310.568747][ T7400] netlink: 4 bytes leftover after parsing attributes in process `syz.2.968'.
[  310.719484][ T7400] device hsr_slave_1 left promiscuous mode
[  310.881285][ T7276] 8021q: adding VLAN 0 to HW filter on device bond0
[  310.921974][ T3822] device hsr_slave_0 left promiscuous mode
[  310.938715][ T3822] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  310.955745][ T3822] batman_adv: batadv0: Removing interface: batadv_slave_0
[  310.985028][ T3822] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  311.002238][ T3822] batman_adv: batadv0: Removing interface: batadv_slave_1
[  311.030504][ T3822] device bridge_slave_1 left promiscuous mode
[  311.054388][ T3822] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.067952][ T3822] device bridge_slave_0 left promiscuous mode
[  311.077411][ T3822] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.097661][ T3822] device hsr_slave_0 left promiscuous mode
[  311.114371][ T3822] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  311.125932][ T3822] batman_adv: batadv0: Removing interface: batadv_slave_0
[  311.138843][ T3822] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  311.164086][ T3822] batman_adv: batadv0: Removing interface: batadv_slave_1
[  311.180817][ T3822] device bridge_slave_1 left promiscuous mode
[  311.205871][ T3822] bridge0: port 2(bridge_slave_1) entered disabled state
[  311.240540][ T3822] device bridge_slave_0 left promiscuous mode
[  311.281271][ T3822] bridge0: port 1(bridge_slave_0) entered disabled state
[  311.352377][ T3822] device veth1_macvtap left promiscuous mode
[  311.358956][ T3822] device veth0_macvtap left promiscuous mode
[  311.373350][ T3822] device veth1_vlan left promiscuous mode
[  311.379267][ T3822] device veth0_vlan left promiscuous mode
[  311.404739][ T3822] device veth1_macvtap left promiscuous mode
[  311.411081][ T3822] device veth0_macvtap left promiscuous mode
[  311.425834][ T3822] device veth1_vlan left promiscuous mode
[  311.437222][ T3822] device veth0_vlan left promiscuous mode
[  311.592271][ T3994] usb 3-1: new full-speed USB device number 11 using dummy_hcd
[  311.987287][ T3994] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  311.997657][ T3994] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[  312.007221][ T3994] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 26984, setting to 64
[  312.018334][ T3994] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  312.027599][ T3994] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  312.035796][ T3679] usb 1-1: new full-speed USB device number 14 using dummy_hcd
[  312.055040][ T3822] team0 (unregistering): Port device team_slave_1 removed
[  312.073278][ T7414] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  312.090995][ T3994] hub 3-1:1.0: bad descriptor, ignoring hub
[  312.097518][ T3994] hub: probe of 3-1:1.0 failed with error -5
[  312.104317][ T3994] cdc_wdm 3-1:1.0: skipping garbage
[  312.109522][ T3994] cdc_wdm 3-1:1.0: skipping garbage
[  312.123547][ T3994] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device
[  312.129506][ T3994] cdc_wdm 3-1:1.0: Unknown control protocol
[  312.162030][ T3822] team0 (unregistering): Port device team_slave_0 removed
[  312.197338][ T3822] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  312.230816][ T3822] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  312.452625][ T3679] usb 1-1: not running at top speed; connect to a high speed hub
[  312.552579][ T3679] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  312.616804][ T3822] bond0 (unregistering): Released all slaves
[  312.722436][ T3679] usb 1-1: New USB device found, idVendor=0b05, idProduct=1822, bcdDevice= 0.40
[  312.731545][ T3679] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  312.739835][ T3679] usb 1-1: Product: syz
[  312.744919][ T3679] usb 1-1: SerialNumber: syz
[  312.754873][ T3822] bond1 (unregistering): Released all slaves
[  312.796904][ T3679] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
[  312.999564][ T3679] usb 1-1: USB disconnect, device number 14
[  313.039866][ T3822] team0 (unregistering): Port device team_slave_1 removed
[  313.080316][ T3822] team0 (unregistering): Port device team_slave_0 removed
[  313.115618][ T3822] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  313.150500][ T3822] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  313.497373][ T3822] bond0 (unregistering): Released all slaves
[  313.619479][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  313.627779][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  313.648190][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  313.669345][ T3681] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  313.690531][ T7276] 8021q: adding VLAN 0 to HW filter on device team0
[  313.742849][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  313.757943][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  313.769324][ T4211] bridge0: port 1(bridge_slave_0) entered blocking state
[  313.776506][ T4211] bridge0: port 1(bridge_slave_0) entered forwarding state
[  313.788741][ T7221] device veth0_vlan entered promiscuous mode
[  313.798090][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  313.806734][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  313.816517][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  313.825524][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  313.835060][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  313.844055][ T3680] bridge0: port 2(bridge_slave_1) entered blocking state
[  313.851205][ T3680] bridge0: port 2(bridge_slave_1) entered forwarding state
[  313.862505][ T3679] usb 1-1: new full-speed USB device number 15 using dummy_hcd
[  313.873885][ T7221] device veth1_vlan entered promiscuous mode
[  313.883813][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  313.891827][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  313.900138][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  313.908412][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  313.918379][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  313.927515][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  313.936946][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  313.953815][ T7276] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  313.967233][ T7276] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  313.993712][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  314.008391][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  314.017736][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  314.030396][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  314.039810][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  314.053597][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  314.061870][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  314.075993][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  314.088676][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  314.109887][ T7221] device veth0_macvtap entered promiscuous mode
[  314.121631][ T3682] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  314.131229][ T3682] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  314.144457][ T3682] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  314.165968][ T7221] device veth1_macvtap entered promiscuous mode
[  314.201300][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.228779][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.244012][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.257442][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.269682][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  314.282187][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.296888][ T3679] usb 1-1: config 0 has no interfaces?
[  314.303604][ T7221] batman_adv: batadv0: Interface activated: batadv_slave_0
[  314.303641][ T3679] usb 1-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  314.314377][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  314.332421][ T3679] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  314.337715][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.350773][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  314.357213][ T3679] usb 1-1: config 0 descriptor??
[  314.368322][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.378555][ T7221] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  314.389371][ T7221] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  314.400274][ T7221] batman_adv: batadv0: Interface activated: batadv_slave_1
[  314.413099][ T7221] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  314.422024][ T7221] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  314.431821][ T7221] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  314.440640][ T7221] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  314.463905][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  314.484918][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  314.495071][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  314.504406][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  314.513561][ T3680] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  314.561036][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  314.569914][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  314.585948][ T7276] 8021q: adding VLAN 0 to HW filter on device batadv0
[  314.640607][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  314.651894][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  314.677844][ T3681] usb 1-1: USB disconnect, device number 15
[  314.698623][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  314.709174][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  314.739993][ T7276] device veth0_vlan entered promiscuous mode
[  314.747773][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  314.756220][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  314.777101][ T7276] device veth1_vlan entered promiscuous mode
[  314.792450][ T4397] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  314.800618][ T4397] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.820244][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  314.828749][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  314.844674][ T4862] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  314.879518][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  314.910649][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  314.934758][ T7276] device veth0_macvtap entered promiscuous mode
[  314.950664][ T3821] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  314.967163][ T3821] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  314.976744][ T7276] device veth1_macvtap entered promiscuous mode
[  314.998547][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  315.008426][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  315.025328][ T4211] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  315.047607][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  315.066988][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.077171][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  315.087926][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.098527][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  315.138198][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.158842][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  315.172020][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.194135][ T7276] batman_adv: batadv0: Interface activated: batadv_slave_0
[  315.219114][ T3802] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  315.233120][ T3802] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  315.288886][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  315.315726][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.351036][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  315.383693][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.413798][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  315.439302][ T3644] Bluetooth: hci5: sending frame failed (-49)
[  315.447025][ T3652] Bluetooth: hci5: Opcode 0x1003 failed: -49
[  315.474349][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.494599][ T7276] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  315.522251][ T7276] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  315.555333][ T7276] batman_adv: batadv0: Interface activated: batadv_slave_1
[  315.604168][ T7442] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1014'.
[  315.639237][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  315.653546][ T4863] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  315.693773][ T7276] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  315.706896][ T7276] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  315.735505][ T7276] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  315.744465][ T7276] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  315.887316][   T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  315.911478][   T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  315.951909][ T3682] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  315.971783][ T4397] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  316.002189][ T4397] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  316.024656][ T3679] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  316.145005][   T26] audit: type=1326 audit(1722408656.562:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7453 comm="syz.1.1019" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f00d773b9 code=0x0
[  316.667786][  T153] usb 3-1: USB disconnect, device number 11
[  316.673979][ T7414] cdc_wdm 3-1:1.0: Error autopm - -16
[  316.689768][ T7420] cdc_wdm 3-1:1.0: Error autopm - -16
[  317.016766][ T1271] ieee802154 phy0 wpan0: encryption failed: -22
[  317.023143][ T1271] ieee802154 phy1 wpan1: encryption failed: -22
[  317.152428][   T26] audit: type=1326 audit(1722408657.492:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7467 comm="syz.2.1024" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6eddf773b9 code=0x0
[  317.302421][ T3802] usb 1-1: new high-speed USB device number 16 using dummy_hcd
[  317.373133][ T3652] Bluetooth: hci3: unexpected event 0x30 length: 4 > 3
[  317.514136][ T7477] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1025'.
[  317.550507][ T7473] loop4: detected capacity change from 0 to 2048
[  317.562715][ T3802] usb 1-1: Using ep0 maxpacket: 32
[  317.668150][ T7473]  loop4: p1 < > p4
[  317.708341][ T7473] loop4: p4 size 8388608 extends beyond EOD, truncated
[  317.842434][ T3802] usb 1-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  317.862242][ T3802] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  317.915842][ T3802] usb 1-1: Product: syz
[  317.927997][ T3802] usb 1-1: Manufacturer: syz
[  317.939593][ T3802] usb 1-1: SerialNumber: syz
[  317.951142][ T3802] usb 1-1: config 0 descriptor??
[  318.024350][ T3802] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  318.379407][ T7490] Bluetooth: MGMT ver 1.22
[  318.942375][  T153] usb 3-1: new full-speed USB device number 12 using dummy_hcd
[  319.191721][   T26] audit: type=1326 audit(1722408659.602:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7505 comm="syz.4.1035" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  319.239040][ T7508] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1036'.
[  319.312411][  T153] usb 3-1: config 0 has no interfaces?
[  319.318128][  T153] usb 3-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[  319.340358][  T153] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  319.368019][  T153] usb 3-1: config 0 descriptor??
[  319.376743][ T7508] device hsr_slave_1 left promiscuous mode
[  319.418252][ T3644] Bluetooth: hci3: command tx timeout
[  319.586785][ T3802] gspca_stk1135: reg_w 0xf err -71
[  319.594853][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  319.672355][ T4862] usb 3-1: USB disconnect, device number 12
[  320.453329][ T3652] Bluetooth: hci3: Opcode 0x1407 failed: -110
[  320.470122][ T3802] gspca_stk1135: Sensor write failed
[  320.532307][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  320.538730][ T3802] gspca_stk1135: Sensor write failed
[  320.568051][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  320.576119][ T3802] gspca_stk1135: Sensor read failed
[  320.581372][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  320.591550][ T7517] serio: Serial port pts0
[  320.598989][ T3802] gspca_stk1135: Sensor read failed
[  320.606741][ T3802] gspca_stk1135: Detected sensor type unknown (0x0)
[  320.618551][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  320.627398][ T3802] gspca_stk1135: Sensor read failed
[  320.635099][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  320.641639][ T3802] gspca_stk1135: Sensor read failed
[  320.649281][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  320.690772][ T3802] gspca_stk1135: Sensor write failed
[  320.704844][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  320.721556][ T3802] gspca_stk1135: Sensor write failed
[  320.737474][ T3802] stk1135: probe of 1-1:0.0 failed with error -71
[  320.749571][ T3802] usb 1-1: USB disconnect, device number 16
[  320.775903][   T26] audit: type=1326 audit(1722408661.192:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7523 comm="syz.3.1040" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa055b773b9 code=0x0
[  321.122305][ T3802] usb 1-1: new high-speed USB device number 17 using dummy_hcd
[  321.486303][ T7536] loop1: detected capacity change from 0 to 512
[  321.503196][ T3652] Bluetooth: hci3: command 0x1407 tx timeout
[  321.571626][ T7536] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  321.590640][ T7536] ext4 filesystem being mounted at /127/bus supports timestamps until 2038 (0x7fffffff)
[  321.622400][ T3802] usb 1-1: config index 0 descriptor too short (expected 23569, got 27)
[  321.630822][ T3802] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  321.792469][ T3802] usb 1-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  321.822279][ T3802] usb 1-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  321.837528][ T3802] usb 1-1: Manufacturer: syz
[  322.523306][ T3802] usb 1-1: config 0 descriptor??
[  322.661774][ T5163] EXT4-fs (loop1): unmounting filesystem.
[  322.851714][ T3802] rc_core: IR keymap rc-hauppauge not found
[  322.857864][ T3802] Registered IR keymap rc-empty
[  322.870595][ T3802] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0
[  322.883258][ T3802] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/rc/rc0/input11
[  322.973462][ T3679] usb 1-1: USB disconnect, device number 17
[  323.019496][ T3652] Bluetooth: hci0: unexpected event 0x30 length: 4 > 3
[  323.139588][ T7554] loop3: detected capacity change from 0 to 2048
[  323.203173][ T7554]  loop3: p1 < > p4
[  323.208476][ T7554] loop3: p4 size 8388608 extends beyond EOD, truncated
[  323.651869][ T7562] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1047'.
[  323.982385][ T3802] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[  324.053320][ T7567] loop0: detected capacity change from 0 to 2048
[  324.384657][ T3802] usb 3-1: Using ep0 maxpacket: 32
[  324.960744][ T7567] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  325.058854][   T26] audit: type=1326 audit(1722408665.472:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7574 comm="syz.1.1051" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f00d773b9 code=0x0
[  325.092471][ T3652] Bluetooth: hci3: command 0x1407 tx timeout
[  325.098596][ T3652] Bluetooth: hci0: command tx timeout
[  325.104095][ T3644] Bluetooth: hci3: Opcode 0x1407 failed: -110
[  325.166446][ T3802] usb 3-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  325.220694][ T3802] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  325.262266][ T3802] usb 3-1: Product: syz
[  325.266473][ T3802] usb 3-1: Manufacturer: syz
[  325.311750][ T3802] usb 3-1: SerialNumber: syz
[  325.334777][ T3802] usb 3-1: config 0 descriptor??
[  325.374223][ T3802] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  325.602887][   T26] audit: type=1326 audit(1722408666.022:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7579 comm="syz.4.1053" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  325.647924][   T26] audit: type=1800 audit(1722408666.062:114): pid=7567 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1049" name="bus" dev="loop0" ino=18 res=0 errno=0
[  325.733582][ T3635] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  325.769325][ T3635] EXT4-fs (loop0): unmounting filesystem.
[  325.840149][ T7578] loop3: detected capacity change from 0 to 32768
[  325.841591][ T7583] loop0: detected capacity change from 0 to 512
[  325.888776][ T7583] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  325.896013][ T7578] XFS (loop3): Mounting V5 Filesystem
[  325.905051][ T7583] ext4 filesystem being mounted at /241/bus supports timestamps until 2038 (0x7fffffff)
[  326.049454][ T7578] XFS (loop3): Ending clean mount
[  326.063689][ T7578] XFS (loop3): Quotacheck needed: Please wait.
[  326.156482][ T7578] XFS (loop3): Quotacheck: Done.
[  326.612301][ T3802] gspca_stk1135: reg_w 0x5 err -110
[  326.618855][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.252025][ T3802] gspca_stk1135: Sensor write failed
[  327.290942][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.307905][ T3802] gspca_stk1135: Sensor write failed
[  327.314510][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.331115][ T3802] gspca_stk1135: Sensor read failed
[  327.339761][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.367235][ T3802] gspca_stk1135: Sensor read failed
[  327.382376][ T3802] gspca_stk1135: Detected sensor type unknown (0x0)
[  327.410093][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.431669][ T3802] gspca_stk1135: Sensor read failed
[  327.446792][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.461399][ T3802] gspca_stk1135: Sensor read failed
[  327.467525][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.474502][ T3802] gspca_stk1135: Sensor write failed
[  327.480248][ T3802] gspca_stk1135: serial bus timeout: status=0x00
[  327.487138][ T3802] gspca_stk1135: Sensor write failed
[  327.493265][ T3802] stk1135: probe of 3-1:0.0 failed with error -110
[  327.617762][ T7612] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1059'.
[  327.712804][ T7612] device hsr_slave_1 left promiscuous mode
[  327.793678][ T3635] EXT4-fs (loop0): unmounting filesystem.
[  328.860211][ T3802] usb 3-1: USB disconnect, device number 13
[  329.125776][   T26] audit: type=1326 audit(1722408669.542:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7625 comm="syz.0.1065" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f23897773b9 code=0x0
[  329.148432][ T3636] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  329.165798][ T3636] Bluetooth: hci4: unexpected event 0x30 length: 4 > 3
[  329.264818][ T7627] loop1: detected capacity change from 0 to 2048
[  329.269532][ T7628] loop4: detected capacity change from 0 to 2048
[  329.344518][ T7627]  loop1: p1 < > p4
[  329.379220][ T7627] loop1: p4 size 8388608 extends beyond EOD, truncated
[  329.441161][ T7628] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  329.502234][ T3802] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[  329.872483][ T3802] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  329.885107][ T7276] XFS (loop3): Unmounting Filesystem
[  329.902220][ T3802] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  329.921174][ T3802] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00
[  329.930792][ T3802] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  329.949812][ T3802] usb 3-1: config 0 descriptor??
[  329.982483][ T3636] Bluetooth: hci3: command 0x1407 tx timeout
[  329.988902][ T3652] Bluetooth: hci3: Opcode 0x1407 failed: -110
[  330.331514][   T26] audit: type=1326 audit(1722408670.742:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7634 comm="syz.3.1066" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa055b773b9 code=0x0
[  330.540839][   T26] audit: type=1800 audit(1722408670.952:117): pid=7628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1064" name="bus" dev="loop4" ino=18 res=0 errno=0
[  330.615238][ T7221] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  330.652359][ T3802] usb 3-1: language id specifier not provided by device, defaulting to English
[  330.691307][ T7221] EXT4-fs (loop4): unmounting filesystem.
[  331.083694][ T7652] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1071'.
[  331.099504][ T3802] input: HID 256c:006d Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0002/input/input12
[  331.182371][ T3679] usb 2-1: new full-speed USB device number 15 using dummy_hcd
[  331.225840][ T3802] input: HID 256c:006d Pad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0002/input/input13
[  331.324414][ T3802] input: HID 256c:006d Touch Strip as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0002/input/input14
[  331.467812][ T3802] input: HID 256c:006d Dial as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:256C:006D.0002/input/input15
[  332.159595][ T4862] usb 5-1: new high-speed USB device number 11 using dummy_hcd
[  332.272631][ T3679] usb 2-1: unable to get BOS descriptor or descriptor too short
[  332.282217][ T3802] uclogic 0003:256C:006D.0002: input,hiddev0,hidraw0: USB HID v0.00 Keypad [HID 256c:006d] on usb-dummy_hcd.2-1/input0
[  332.328827][ T3802] usb 3-1: USB disconnect, device number 14
[  332.466688][ T4862] usb 5-1: Using ep0 maxpacket: 32
[  332.523514][ T3679] usb 2-1: unable to read config index 0 descriptor/start: -71
[  332.533239][ T3679] usb 2-1: can't read configurations, error -71
[  333.312347][ T4862] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  333.358099][ T4862] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  333.392292][ T4862] usb 5-1: Product: syz
[  333.401370][ T4862] usb 5-1: Manufacturer: syz
[  333.431634][ T4862] usb 5-1: SerialNumber: syz
[  333.473894][ T4862] usb 5-1: config 0 descriptor??
[  333.588536][ T4862] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  333.893267][ T7671] netlink: 3 bytes leftover after parsing attributes in process `syz.3.1077'.
[  334.060364][ T7673] loop2: detected capacity change from 0 to 2048
[  334.162507][ T7673] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  334.467168][ T3652] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  334.492217][ T3652] Bluetooth: hci0: unexpected event 0x30 length: 4 > 3
[  334.549291][ T7685] loop3: detected capacity change from 0 to 2048
[  334.632949][ T7685]  loop3: p1 < > p4
[  334.639903][ T7685] loop3: p4 size 8388608 extends beyond EOD, truncated
[  334.768309][   T26] audit: type=1326 audit(1722408675.182:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7688 comm="syz.1.1082" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f00d773b9 code=0x0
[  335.163939][ T7693] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1083'.
[  335.205460][ T4862] gspca_stk1135: reg_w 0xf err -71
[  335.211789][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.241204][ T4862] gspca_stk1135: Sensor write failed
[  335.261509][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.278683][ T4862] gspca_stk1135: Sensor write failed
[  335.284600][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.301151][ T4862] gspca_stk1135: Sensor read failed
[  335.311285][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.330802][ T4862] gspca_stk1135: Sensor read failed
[  335.340624][   T26] audit: type=1800 audit(1722408675.752:119): pid=7673 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1078" name="bus" dev="loop2" ino=18 res=0 errno=0
[  335.347800][ T4862] gspca_stk1135: Detected sensor type unknown (0x0)
[  335.392935][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.403322][ T7190] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  335.420416][ T4862] gspca_stk1135: Sensor read failed
[  335.542393][ T3652] Bluetooth: hci3: command 0x1407 tx timeout
[  335.558790][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.572236][ T3636] Bluetooth: hci3: Opcode 0x1407 failed: -110
[  335.589421][ T4862] gspca_stk1135: Sensor read failed
[  335.600097][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.614008][ T4862] gspca_stk1135: Sensor write failed
[  335.626891][ T4862] gspca_stk1135: serial bus timeout: status=0x00
[  335.650419][ T4862] gspca_stk1135: Sensor write failed
[  335.656563][ T4862] stk1135: probe of 5-1:0.0 failed with error -71
[  335.666259][ T4862] usb 5-1: USB disconnect, device number 11
[  335.683309][ T7190] EXT4-fs (loop2): unmounting filesystem.
[  336.423791][ T7702] loop1: detected capacity change from 0 to 512
[  336.532972][ T7702] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  336.566622][ T7702] ext4 filesystem being mounted at /141/bus supports timestamps until 2038 (0x7fffffff)
[  337.987287][ T3680] usb 3-1: new full-speed USB device number 15 using dummy_hcd
[  338.063015][ T5163] EXT4-fs (loop1): unmounting filesystem.
[  338.383289][ T7730] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1092'.
[  338.452441][ T3680] usb 3-1: unable to get BOS descriptor or descriptor too short
[  338.498765][ T7732] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1090'.
[  338.612580][ T3680] usb 3-1: unable to read config index 0 descriptor/start: -71
[  338.714041][ T3680] usb 3-1: can't read configurations, error -71
[  338.924540][ T7740] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1094'.
[  338.945582][ T7739] loop0: detected capacity change from 0 to 2048
[  339.005076][ T7739] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  339.394189][ T3994] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[  339.404151][ T7755] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1100'.
[  340.269763][ T3652] Bluetooth: hci3: command 0x1407 tx timeout
[  340.275856][ T3636] Bluetooth: hci3: Opcode 0x1407 failed: -110
[  340.332264][ T3994] usb 5-1: Using ep0 maxpacket: 32
[  340.524903][ T7758] kvm: emulating exchange as write
[  340.645293][ T3652] Bluetooth: hci1: unexpected event 0x30 length: 4 > 3
[  340.692855][ T3994] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  340.718431][ T3994] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  340.733295][ T3994] usb 5-1: Product: syz
[  340.737495][ T3994] usb 5-1: Manufacturer: syz
[  340.754200][ T3994] usb 5-1: SerialNumber: syz
[  340.764397][ T3994] usb 5-1: config 0 descriptor??
[  340.786018][ T7765] loop2: detected capacity change from 0 to 2048
[  340.803636][ T3994] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  340.852583][ T7765]  loop2: p1 < > p4
[  340.860365][   T26] audit: type=1800 audit(1722408681.272:120): pid=7739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1095" name="bus" dev="loop0" ino=18 res=0 errno=0
[  340.916072][ T7765] loop2: p4 size 8388608 extends beyond EOD, truncated
[  340.930468][ T3635] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  341.037021][ T3635] EXT4-fs (loop0): unmounting filesystem.
[  341.192325][ T3679] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  341.442311][ T3679] usb 4-1: Using ep0 maxpacket: 32
[  341.683487][ T3680] usb 2-1: new full-speed USB device number 17 using dummy_hcd
[  341.726779][ T7776] loop2: detected capacity change from 0 to 1024
[  341.734811][ T7776] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  341.742711][ T3679] usb 4-1: New USB device found, idVendor=05a9, idProduct=1550, bcdDevice=e4.bb
[  341.750039][ T7776] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  341.757457][ T3679] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  341.763076][ T7776] EXT4-fs (loop2): orphan cleanup on readonly fs
[  341.777777][ T7776] EXT4-fs error (device loop2): ext4_free_blocks:6213: comm syz.2.1108: Freeing blocks not in datazone - block = 0, count = 4096
[  341.780926][ T3679] usb 4-1: Product: syz
[  341.804093][ T7776] EXT4-fs (loop2): 1 orphan inode deleted
[  341.809927][ T3679] usb 4-1: Manufacturer: syz
[  341.812260][ T7776] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  341.817493][ T3679] usb 4-1: SerialNumber: syz
[  341.846538][ T3679] usb 4-1: config 0 descriptor??
[  341.897627][ T3679] gspca_main: ov534_9-2.14.0 probing 05a9:1550
[  341.957750][ T7779] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1108'.
[  342.082498][ T3680] usb 2-1: not running at top speed; connect to a high speed hub
[  342.162294][ T3680] usb 2-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  342.178472][ T7781] loop0: detected capacity change from 0 to 512
[  342.204619][ T7781] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.1109: casefold flag without casefold feature
[  342.220635][ T7781] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.1109: missing EA_INODE flag
[  342.236905][ T7781] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.1109: error while reading EA inode 12 err=-117
[  342.249801][ T7781] EXT4-fs (loop0): 1 orphan inode deleted
[  342.255681][ T7781] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  342.289794][ T3635] EXT4-fs (loop0): unmounting filesystem.
[  342.333747][ T3994] gspca_stk1135: reg_w 0xf err -71
[  342.342538][ T3680] usb 2-1: New USB device found, idVendor=0b05, idProduct=1822, bcdDevice= 0.40
[  342.344439][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.353305][ T3680] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  342.362035][ T3994] gspca_stk1135: Sensor write failed
[  342.371973][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.376464][ T3680] usb 2-1: Product: syz
[  342.384011][ T3994] gspca_stk1135: Sensor write failed
[  342.396011][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.396480][ T3680] usb 2-1: SerialNumber: syz
[  342.409253][ T3994] gspca_stk1135: Sensor read failed
[  342.420394][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.429641][ T7787] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1110'.
[  342.436797][ T3994] gspca_stk1135: Sensor read failed
[  342.448282][ T3994] gspca_stk1135: Detected sensor type unknown (0x0)
[  342.455727][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.462086][ T3994] gspca_stk1135: Sensor read failed
[  342.467643][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.474753][ T3994] gspca_stk1135: Sensor read failed
[  342.475348][ T3680] usbhid 2-1:1.0: couldn't find an input interrupt endpoint
[  342.480046][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.495107][ T3994] gspca_stk1135: Sensor write failed
[  342.500471][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  342.526126][ T3994] gspca_stk1135: Sensor write failed
[  342.537615][ T3994] stk1135: probe of 5-1:0.0 failed with error -71
[  342.552084][ T3994] usb 5-1: USB disconnect, device number 12
[  342.605871][ T7190] EXT4-fs (loop2): unmounting filesystem.
[  342.692333][ T3652] Bluetooth: hci1: command tx timeout
[  342.700130][ T3680] usb 2-1: USB disconnect, device number 17
[  342.717982][ T7795] loop2: detected capacity change from 0 to 512
[  342.730571][ T7795] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  342.738635][ T7795] UDF-fs: Scanning with blocksize 512 failed
[  342.747603][ T7795] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  342.755252][ T7795] UDF-fs: Scanning with blocksize 1024 failed
[  342.763130][ T7795] UDF-fs: warning (device loop2): udf_load_vrs: No VRS found
[  342.770533][ T7795] UDF-fs: Scanning with blocksize 2048 failed
[  342.777714][ T7795] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[  342.811097][ T7795] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  343.333723][ T3652] Bluetooth: hci3: command 0x1407 tx timeout
[  343.399831][ T3636] Bluetooth: hci3: Opcode 0x1407 failed: -110
[  343.730949][ T7795] syz.2.1112: attempt to access beyond end of device
[  343.730949][ T7795] loop2: rw=2049, sector=536, nr_sectors = 64 limit=512
[  343.762277][ T3679] gspca_ov534_9: reg_r err -71
[  343.812455][ T3636] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  343.825418][ T3636] Bluetooth: hci3: unexpected event 0x30 length: 4 > 3
[  343.858522][ T7806] loop4: detected capacity change from 0 to 2048
[  343.945643][ T7806]  loop4: p1 < > p4
[  344.013945][ T7806] loop4: p4 size 8388608 extends beyond EOD, truncated
[  344.069561][ T7813] netlink: 'syz.2.1118': attribute type 10 has an invalid length.
[  344.091653][ T7813] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1118'.
[  344.149365][ T7813] bridge0: port 3(syz_tun) entered blocking state
[  344.171582][ T7813] bridge0: port 3(syz_tun) entered disabled state
[  344.195261][ T7813] device syz_tun entered promiscuous mode
[  344.201780][ T7813] bridge0: port 3(syz_tun) entered blocking state
[  344.208347][ T7813] bridge0: port 3(syz_tun) entered forwarding state
[  344.216600][ T3679] gspca_ov534_9: Unknown sensor 0000
[  344.216644][ T3679] ov534_9: probe of 4-1:0.0 failed with error -22
[  344.233875][ T3679] usb 4-1: USB disconnect, device number 10
[  344.462710][ T7825] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1121'.
[  346.808113][ T3644] Bluetooth: hci3: command 0x1407 tx timeout
[  346.815008][ T3636] Bluetooth: hci3: Opcode 0x1407 failed: -110
[  347.173183][   T26] audit: type=1326 audit(1722408687.592:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7841 comm="syz.1.1127" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f00d773b9 code=0x0
[  347.210660][ T7842] loop1: detected capacity change from 0 to 512
[  347.282335][ T7842] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  347.329330][ T7842] EXT4-fs (loop1): 1 truncate cleaned up
[  347.358671][ T7842] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  347.501551][ T7850] loop2: detected capacity change from 0 to 16
[  347.526135][ T7850] erofs: (device loop2): mounted with root inode @ nid 36.
[  347.590533][ T7662] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  347.735911][ T7857] binder: 7855:7857 ioctl c0306201 20000680 returned -14
[  347.997506][ T5163] EXT4-fs (loop1): unmounting filesystem.
[  347.998641][ T7861] loop0: detected capacity change from 0 to 4096
[  348.036706][ T7861] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512)
[  348.652311][ T3679] usb 2-1: new high-speed USB device number 18 using dummy_hcd
[  352.997652][ T3679] usb 2-1: Using ep0 maxpacket: 16
[  353.132337][ T3679] usb 2-1: device descriptor read/all, error -71
[  353.148167][ T7891] loop1: detected capacity change from 0 to 1024
[  353.383255][ T7895] mmap: syz.1.1142 (7895) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  353.408189][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  353.420775][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  353.428796][ T7895] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  353.495814][ T7895] /dev/loop1: Can't open blockdev
[  354.096284][ T3644] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  354.106109][ T3644] Bluetooth: hci0: unexpected event 0x30 length: 4 > 3
[  354.146718][ T7897] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1141'.
[  354.306479][ T7894] loop3: detected capacity change from 0 to 2048
[  354.456890][ T7905] netlink: 'syz.2.1145': attribute type 10 has an invalid length.
[  354.474331][ T7894]  loop3: p1 < > p4
[  354.489488][ T7894] loop3: p4 size 8388608 extends beyond EOD, truncated
[  354.508691][ T7905] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1145'.
[  355.927204][ T7902] loop1: detected capacity change from 0 to 32768
[  355.978498][ T7902] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop1 scanned by syz.1.1144 (7902)
[  356.068372][ T7902] BTRFS info (device loop1): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6
[  356.129485][ T7902] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm
[  356.178757][ T7902] BTRFS warning (device loop1): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  356.221328][ T7902] BTRFS info (device loop1): trying to use backup root at mount time
[  356.262925][ T3680] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[  356.285092][ T7902] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_LZO (0x8)
[  356.321306][ T7902] BTRFS info (device loop1): use lzo compression, level 0
[  356.345862][ T7902] BTRFS info (device loop1): turning off barriers
[  356.361999][ T7902] BTRFS warning (device loop1): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  356.412497][ T7902] BTRFS info (device loop1): trying to use backup root at mount time
[  356.420632][ T7902] BTRFS info (device loop1): enabling ssd optimizations
[  356.442935][ T7902] BTRFS info (device loop1): using spread ssd allocation scheme
[  356.454839][ T7902] BTRFS info (device loop1): enabling disk space caching
[  356.485223][ T7902] BTRFS error (device loop1): cannot disable free space tree
[  356.519269][ T7902] BTRFS error (device loop1): open_ctree failed
[  356.526002][ T3680] usb 5-1: Using ep0 maxpacket: 32
[  356.930381][ T3680] usb 5-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  357.596210][ T3680] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  357.621416][ T3680] usb 5-1: Product: syz
[  357.635066][ T7931] loop0: detected capacity change from 0 to 32768
[  357.655212][ T3680] usb 5-1: Manufacturer: syz
[  357.659854][ T3680] usb 5-1: SerialNumber: syz
[  357.698180][ T7931] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.1153 (7931)
[  357.764685][ T3680] usb 5-1: config 0 descriptor??
[  357.804744][ T7945] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1157'.
[  357.814054][ T3680] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  357.824341][ T7931] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  357.867344][ T7931] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  357.897934][ T7931] BTRFS info (device loop0): using free space tree
[  358.162308][ T7931] BTRFS info (device loop0): enabling ssd optimizations
[  358.260305][ T3635] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  358.294508][ T3802] usb 2-1: new high-speed USB device number 20 using dummy_hcd
[  358.753000][ T3802] usb 2-1: Using ep0 maxpacket: 16
[  358.872757][ T3802] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  358.892200][ T3802] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  358.912511][ T3802] usb 2-1: New USB device found, idVendor=22d4, idProduct=1503, bcdDevice= 0.00
[  358.921594][ T3802] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  358.958466][ T3802] usb 2-1: config 0 descriptor??
[  359.038895][ T7970] loop3: detected capacity change from 0 to 32768
[  359.044926][ T7983] loop2: detected capacity change from 0 to 4096
[  359.352398][ T3680] gspca_stk1135: reg_w 0xf err -71
[  359.359284][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.366204][ T3680] gspca_stk1135: Sensor write failed
[  359.488026][ T3802] glorious 0003:22D4:1503.0003: hidraw0: USB HID v0.00 Device [Glorious Model I] on usb-dummy_hcd.1-1/input0
[  359.505706][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.512056][ T3680] gspca_stk1135: Sensor write failed
[  359.548091][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.559411][ T3680] gspca_stk1135: Sensor read failed
[  359.565837][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.594421][ T3680] gspca_stk1135: Sensor read failed
[  359.660243][ T3644] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  359.670088][ T3644] Bluetooth: hci1: unexpected event 0x30 length: 4 > 3
[  359.670146][ T3680] gspca_stk1135: Detected sensor type unknown (0x0)
[  359.692238][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.698609][ T3680] gspca_stk1135: Sensor read failed
[  359.706558][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.713021][ T3680] gspca_stk1135: Sensor read failed
[  359.718251][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.732226][ T3680] gspca_stk1135: Sensor write failed
[  359.737574][ T3680] gspca_stk1135: serial bus timeout: status=0x00
[  359.744084][ T3680] gspca_stk1135: Sensor write failed
[  359.749434][ T3680] stk1135: probe of 5-1:0.0 failed with error -71
[  359.757751][ T3680] usb 5-1: USB disconnect, device number 13
[  359.767644][ T7973] usb 2-1: USB disconnect, device number 20
[  359.801943][ T7989] loop2: detected capacity change from 0 to 2048
[  359.928065][ T7989]  loop2: p1 < > p4
[  359.996550][ T7989] loop2: p4 size 8388608 extends beyond EOD, truncated
[  360.075035][ T7998] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1169'.
[  361.347027][ T8003] loop1: detected capacity change from 0 to 2048
[  361.472084][ T8003] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  361.803595][ T3644] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  361.815379][ T3644] Bluetooth: hci3: unexpected event 0x30 length: 4 > 3
[  361.915271][ T8019] loop4: detected capacity change from 0 to 2048
[  361.977099][ T8019]  loop4: p1 < > p4
[  361.992623][ T8019] loop4: p4 size 8388608 extends beyond EOD, truncated
[  362.199051][ T8025] loop3: detected capacity change from 0 to 256
[  362.202420][ T7973] usb 1-1: new high-speed USB device number 18 using dummy_hcd
[  362.217466][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  362.305032][ T8025] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  362.428357][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  362.694186][ T7973] usb 1-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=70.8e
[  362.714169][ T7973] usb 1-1: New USB device strings: Mfr=242, Product=0, SerialNumber=0
[  362.748537][ T7973] usb 1-1: Manufacturer: syz
[  362.781665][ T7973] usb 1-1: config 0 descriptor??
[  362.835230][ T7973] usb-storage 1-1:0.0: USB Mass Storage device detected
[  362.853828][   T26] audit: type=1800 audit(1722408703.272:122): pid=8003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1171" name="bus" dev="loop1" ino=18 res=0 errno=0
[  362.982491][   T26] audit: type=1804 audit(1722408703.302:123): pid=8003 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1171" name="/newroot/152/file0/bus" dev="loop1" ino=18 res=1 errno=0
[  363.020339][ T5163] EXT4-fs (loop1): unmounting filesystem.
[  363.067453][ T8022] loop0: detected capacity change from 0 to 256
[  363.104487][ T8022] FAT-fs (loop0): Unrecognized mount option "uli_xlate=0" or missing value
[  363.213129][ T8022] Bluetooth: MGMT ver 1.22
[  363.219127][ T4863] usb 1-1: USB disconnect, device number 18
[  363.743969][ T8033] loop1: detected capacity change from 0 to 32768
[  364.233032][ T8052] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1183'.
[  364.406792][ T8056] loop2: detected capacity change from 0 to 1024
[  365.724586][ T8058] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  365.782580][ T8058] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  365.790095][ T8058] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  365.809732][ T8058] /dev/loop2: Can't open blockdev
[  366.413186][   T26] audit: type=1326 audit(1722408706.832:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8069 comm="syz.4.1189" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  366.480479][ T3636] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  366.490292][ T3636] Bluetooth: hci1: unexpected event 0x30 length: 4 > 3
[  366.517225][ T8072] loop2: detected capacity change from 0 to 2048
[  366.603355][ T8072]  loop2: p1 < > p4
[  366.609088][ T8072] loop2: p4 size 8388608 extends beyond EOD, truncated
[  366.710766][ T8078] vxcan0: tx drop: invalid da for name 0x0000000000000001
[  366.882370][ T3680] usb 2-1: new high-speed USB device number 21 using dummy_hcd
[  367.352967][ T3680] usb 2-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=70.8e
[  367.389984][ T3680] usb 2-1: New USB device strings: Mfr=242, Product=0, SerialNumber=0
[  367.443735][ T3680] usb 2-1: Manufacturer: syz
[  367.454079][ T3680] usb 2-1: config 0 descriptor??
[  367.503312][ T3680] usb-storage 2-1:0.0: USB Mass Storage device detected
[  367.716695][ T8076] loop1: detected capacity change from 0 to 256
[  367.755227][ T8076] FAT-fs (loop1): Unrecognized mount option "uli_xlate=0" or missing value
[  367.821951][   T26] audit: type=1326 audit(1722408708.232:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8090 comm="syz.4.1194" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  367.823951][ T3680] usb 2-1: USB disconnect, device number 21
[  369.213781][ T8105] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1198'.
[  369.725027][ T8122] vxcan0: tx drop: invalid da for name 0x0000000000000001
[  370.516526][   T26] audit: type=1326 audit(1722408710.932:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8123 comm="syz.4.1204" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  370.552235][ T3680] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[  370.962541][ T3680] usb 4-1: not running at top speed; connect to a high speed hub
[  371.054122][ T3680] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  371.069704][ T8135] netlink: 6 bytes leftover after parsing attributes in process `syz.2.1209'.
[  371.224554][ T3680] usb 4-1: New USB device found, idVendor=0b05, idProduct=1822, bcdDevice= 0.40
[  371.241219][ T3680] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  371.261101][ T3680] usb 4-1: Product: syz
[  371.267042][ T3680] usb 4-1: SerialNumber: syz
[  371.302208][ T3679] usb 2-1: new high-speed USB device number 22 using dummy_hcd
[  371.311034][ T8139] loop2: detected capacity change from 0 to 64
[  371.334844][ T3680] usbhid 4-1:1.0: couldn't find an input interrupt endpoint
[  371.637066][ T4863] usb 4-1: USB disconnect, device number 11
[  372.404974][ T8146] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1212'.
[  372.422535][ T3679] usb 2-1: New USB device found, idVendor=59cc, idProduct=980d, bcdDevice=70.8e
[  372.431615][ T3679] usb 2-1: New USB device strings: Mfr=242, Product=0, SerialNumber=0
[  372.507551][ T3679] usb 2-1: Manufacturer: syz
[  372.550463][ T3679] usb 2-1: config 0 descriptor??
[  372.570360][   T26] audit: type=1326 audit(1722408712.982:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8153 comm="syz.3.1214" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa055b773b9 code=0x0
[  372.643261][ T3679] usb-storage 2-1:0.0: USB Mass Storage device detected
[  372.866495][ T8133] loop1: detected capacity change from 0 to 256
[  372.919539][ T8133] FAT-fs (loop1): Unrecognized mount option "uli_xlate=0" or missing value
[  372.977630][ T4863] usb 2-1: USB disconnect, device number 22
[  373.170960][ T8169] loop2: detected capacity change from 0 to 1024
[  373.240401][ T8169] hfsplus: unable to parse mount options
[  373.311875][ T8169] netlink: 'syz.2.1218': attribute type 4 has an invalid length.
[  373.476176][ T8175] loop2: detected capacity change from 0 to 1024
[  373.862166][ T8177] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[  373.875337][ T8177] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  373.883300][ T8177] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  374.806488][ T8177] /dev/loop2: Can't open blockdev
[  375.222454][   T26] audit: type=1326 audit(1722408715.642:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8180 comm="syz.4.1221" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  375.289819][ T8183] netlink: 'syz.1.1222': attribute type 10 has an invalid length.
[  375.306796][ T8185] loop2: detected capacity change from 0 to 512
[  375.322512][ T8183] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1222'.
[  375.350010][ T8185] EXT4-fs: Ignoring removed nomblk_io_submit option
[  375.435408][ T8185] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  375.516860][ T8191] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1225'.
[  375.568662][   T26] audit: type=1804 audit(1722408715.982:129): pid=8185 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1223" name="/newroot/50/file0/bus" dev="loop2" ino=19 res=1 errno=0
[  375.590048][    C1] vkms_vblank_simulate: vblank timer overrun
[  375.665006][ T8198] device team0 entered promiscuous mode
[  375.686198][ T8198] device team_slave_0 entered promiscuous mode
[  375.709913][ T8198] device team_slave_1 entered promiscuous mode
[  375.726152][ T7190] EXT4-fs (loop2): unmounting filesystem.
[  375.754651][ T8197] device team0 left promiscuous mode
[  375.800429][ T8197] device team_slave_0 left promiscuous mode
[  375.899301][ T8197] device team_slave_1 left promiscuous mode
[  376.334329][ T4863] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  376.471543][ T8221] netlink: 'syz.4.1236': attribute type 10 has an invalid length.
[  376.496918][ T8221] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1236'.
[  376.543462][ T8221] bridge0: port 3(syz_tun) entered blocking state
[  376.582831][ T8221] bridge0: port 3(syz_tun) entered disabled state
[  376.602260][ T4863] usb 2-1: Using ep0 maxpacket: 32
[  376.623182][ T8221] device syz_tun entered promiscuous mode
[  376.642604][ T8221] bridge0: port 3(syz_tun) entered blocking state
[  376.649158][ T8221] bridge0: port 3(syz_tun) entered forwarding state
[  376.912436][ T4863] usb 2-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  376.957651][ T4863] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  376.996243][ T4863] usb 2-1: Product: syz
[  377.000902][ T8226] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1237'.
[  377.056718][ T4863] usb 2-1: Manufacturer: syz
[  377.071590][ T4863] usb 2-1: SerialNumber: syz
[  377.112738][ T4863] usb 2-1: config 0 descriptor??
[  377.184323][ T4863] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  377.307346][ T8232] loop3: detected capacity change from 0 to 512
[  377.332989][ T8232] EXT4-fs: Ignoring removed nomblk_io_submit option
[  377.407294][ T8232] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  377.462781][   T26] audit: type=1804 audit(1722408717.882:130): pid=8232 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1240" name="/newroot/40/file0/bus" dev="loop3" ino=19 res=1 errno=0
[  377.553514][ T3644] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  377.589949][ T8242] loop2: detected capacity change from 0 to 2048
[  377.615134][ T3644] Bluetooth: hci1: unexpected event 0x30 length: 4 > 3
[  377.668099][ T8241] device team0 entered promiscuous mode
[  377.746325][ T8242]  loop2: p1 < > p4
[  377.768946][ T8242] loop2: p4 size 8388608 extends beyond EOD, truncated
[  377.888062][ T8241] device team_slave_0 entered promiscuous mode
[  378.111610][ T8241] device team_slave_1 entered promiscuous mode
[  378.218371][ T7276] EXT4-fs (loop3): unmounting filesystem.
[  378.234192][ T8239] device team0 left promiscuous mode
[  378.246287][ T3092]  loop2: p1 < > p4
[  378.262411][ T8239] device team_slave_0 left promiscuous mode
[  378.268463][ T8239] device team_slave_1 left promiscuous mode
[  378.323985][ T3092] loop2: p4 size 8388608 extends beyond EOD, truncated
[  378.394770][   T26] audit: type=1326 audit(1722408718.812:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8247 comm="syz.4.1245" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  378.447421][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  378.458746][ T1271] ieee802154 phy0 wpan0: encryption failed: -22
[  378.458815][ T1271] ieee802154 phy1 wpan1: encryption failed: -22
[  378.475262][ T7686] udevd[7686]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  378.516638][ T8253] netlink: 'syz.2.1247': attribute type 10 has an invalid length.
[  378.567320][ T8253] netlink: 40 bytes leftover after parsing attributes in process `syz.2.1247'.
[  378.611272][ T7686] udevd[7686]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  378.624605][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  378.677560][ T3802] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[  378.724355][ T8260] loop2: detected capacity change from 0 to 128
[  378.752343][ T4863] gspca_stk1135: reg_w 0xf err -71
[  378.758761][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.788550][ T4863] gspca_stk1135: Sensor write failed
[  378.802228][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.808593][ T4863] gspca_stk1135: Sensor write failed
[  378.839292][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.845950][ T4863] gspca_stk1135: Sensor read failed
[  378.861571][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.881754][ T4863] gspca_stk1135: Sensor read failed
[  378.889703][ T4863] gspca_stk1135: Detected sensor type unknown (0x0)
[  378.906675][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.923230][ T4863] gspca_stk1135: Sensor read failed
[  378.928677][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.941588][ T4863] gspca_stk1135: Sensor read failed
[  378.948233][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.959447][ T4863] gspca_stk1135: Sensor write failed
[  378.966530][ T4863] gspca_stk1135: serial bus timeout: status=0x00
[  378.986710][ T4863] gspca_stk1135: Sensor write failed
[  378.992075][ T4863] stk1135: probe of 2-1:0.0 failed with error -71
[  379.016616][ T4863] usb 2-1: USB disconnect, device number 23
[  379.029166][ T8262] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1249'.
[  379.272545][ T3802] usb 4-1: config 0 interface 0 altsetting 44 has an invalid endpoint with address 0xFF, skipping
[  379.312271][ T3802] usb 4-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  379.442191][ T3802] usb 4-1: config 0 interface 0 has no altsetting 0
[  379.602411][ T3802] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  379.611579][ T3802] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  379.662303][ T3802] usb 4-1: Product: syz
[  379.666512][ T3802] usb 4-1: Manufacturer: syz
[  379.671126][ T3802] usb 4-1: SerialNumber: syz
[  379.701023][ T8276] loop0: detected capacity change from 0 to 512
[  379.712846][ T3802] usb 4-1: config 0 descriptor??
[  379.752518][ T8251] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[  379.801272][ T8276] EXT4-fs: Ignoring removed nomblk_io_submit option
[  379.935369][ T8276] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  380.130216][   T26] audit: type=1804 audit(1722408720.542:132): pid=8276 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1254" name="/newroot/289/file0/bus" dev="loop0" ino=19 res=1 errno=0
[  380.262148][ T8289] 9pnet_fd: Insufficient options for proto=fd
[  380.795904][ T8290] loop4: detected capacity change from 0 to 2048
[  380.804483][ T3636] Bluetooth: hci3: Ignoring HCI_Connection_Complete for existing connection
[  380.814489][ T3636] Bluetooth: hci3: unexpected event 0x30 length: 4 > 3
[  381.376821][ T3092]  loop4: p1 < > p4
[  381.440686][ T3092] loop4: p4 size 8388608 extends beyond EOD, truncated
[  381.511141][ T3635] EXT4-fs (loop0): unmounting filesystem.
[  381.523293][ T7662] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  381.548403][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  381.565868][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  381.746177][ T8296] netlink: 'syz.4.1259': attribute type 10 has an invalid length.
[  381.756326][ T8296] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1259'.
[  382.059930][   T26] audit: type=1326 audit(1722408722.472:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8305 comm="syz.4.1263" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  382.411996][ T3802] usb 4-1: USB disconnect, device number 12
[  382.652019][ T8317] loop3: detected capacity change from 0 to 2048
[  382.720517][ T3636] Bluetooth: hci0: Ignoring HCI_Connection_Complete for existing connection
[  382.906260][ T3636] Bluetooth: hci0: unexpected event 0x30 length: 4 > 3
[  382.976166][ T8317]  loop3: p1 < > p4
[  382.992334][ T8317] loop3: p4 size 8388608 extends beyond EOD, truncated
[  383.404610][ T8319] loop2: detected capacity change from 0 to 512
[  383.422931][ T8319] EXT4-fs: Ignoring removed nomblk_io_submit option
[  383.471042][ T7662] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  383.471109][ T7276] __loop_clr_fd: partition scan of loop3 failed (rc=-16)
[  383.481133][ T5478] I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  383.508956][ T7662] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.510620][ T8319] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  383.526393][ T7662] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  383.535729][ T8325] netlink: 'syz.4.1270': attribute type 10 has an invalid length.
[  383.562306][ T5478] I/O error, dev loop3, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.581856][ T8325] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1270'.
[  383.591751][ T7662] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.613275][ T5478] Buffer I/O error on dev loop3p4, logical block 1, async page read
[  383.644464][ T7662] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  383.661629][ T7662] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.676050][   T26] audit: type=1804 audit(1722408724.092:134): pid=8319 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1268" name="/newroot/58/file0/bus" dev="loop2" ino=19 res=1 errno=0
[  383.703017][ T7662] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  383.735704][ T7662] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.771624][ T7662] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  383.838829][ T7190] EXT4-fs (loop2): unmounting filesystem.
[  383.847852][ T7662] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  383.925194][ T7662] Buffer I/O error on dev loop3p1, logical block 0, async page read
[  384.044757][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  384.066246][ T8344] loop2: detected capacity change from 0 to 128
[  384.086018][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  384.274031][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  384.297831][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  384.412770][ T8348] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1275'.
[  385.049053][ T8357] loop1: detected capacity change from 0 to 1024
[  385.175630][ T3802] usb 5-1: new full-speed USB device number 14 using dummy_hcd
[  386.342465][ T3802] usb 5-1: config 0 interface 0 altsetting 44 has an invalid endpoint with address 0xFF, skipping
[  386.359390][ T8351] loop0: detected capacity change from 0 to 32768
[  386.376165][ T3802] usb 5-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  386.419695][ T3802] usb 5-1: config 0 interface 0 has no altsetting 0
[  386.511402][ T3636] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  386.547671][ T8371] loop1: detected capacity change from 0 to 2048
[  386.585355][ T3636] Bluetooth: hci4: unexpected event 0x30 length: 4 > 3
[  386.766394][ T8371]  loop1: p1 < > p4
[  386.834610][ T8351] XFS (loop0): Mounting V5 Filesystem
[  386.864999][ T8371] loop1: p4 size 8388608 extends beyond EOD, truncated
[  387.322311][ T3802] usb 5-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  387.331408][ T3802] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  387.333089][ T5163] __loop_clr_fd: partition scan of loop1 failed (rc=-16)
[  387.340346][ T8351] XFS (loop0): Ending clean mount
[  387.347434][ T7662] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  387.357316][ T5478] I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  387.384274][ T3802] usb 5-1: Product: syz
[  387.388488][ T3802] usb 5-1: Manufacturer: syz
[  387.389935][ T7662] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  387.393691][ T5478] I/O error, dev loop1, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  387.427783][ T7662] Buffer I/O error on dev loop1p1, logical block 0, async page read
[  387.450138][ T8351] XFS (loop0): Quotacheck needed: Please wait.
[  387.466598][ T3802] usb 5-1: SerialNumber: syz
[  387.472597][ T7662] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  387.495992][ T3802] usb 5-1: config 0 descriptor??
[  387.509631][ T8383] loop1: detected capacity change from 0 to 512
[  387.517997][ T7662] Buffer I/O error on dev loop1p1, logical block 0, async page read
[  387.518341][ T5478] Buffer I/O error on dev loop1p4, logical block 1, async page read
[  387.534753][ T8351] XFS (loop0): Quotacheck: Done.
[  387.540211][ T7662] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  387.562903][ T8383] EXT4-fs: Ignoring removed nomblk_io_submit option
[  387.571135][ T7662] Buffer I/O error on dev loop1p1, logical block 0, async page read
[  387.583437][ T8353] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  387.649871][ T8383] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  387.680692][ T3635] XFS (loop0): Unmounting Filesystem
[  387.681691][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  387.720569][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  387.768948][   T26] audit: type=1804 audit(1722408728.182:135): pid=8383 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1285" name="/newroot/173/file0/bus" dev="loop1" ino=19 res=1 errno=0
[  387.981036][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  387.989365][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  388.017574][ T5163] EXT4-fs (loop1): unmounting filesystem.
[  388.111345][ T8391] 9pnet_fd: Insufficient options for proto=fd
[  388.674142][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  388.724045][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  389.090649][ T8401] netlink: 3 bytes leftover after parsing attributes in process `syz.0.1287'.
[  389.815855][ T3679] usb 5-1: USB disconnect, device number 14
[  389.822920][ T3636] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  389.834452][ T3636] Bluetooth: hci1: unexpected event 0x30 length: 4 > 3
[  389.837304][ T8411] loop2: detected capacity change from 0 to 2048
[  389.892371][ T3994] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[  389.914770][ T8411]  loop2: p1 < > p4
[  389.919810][ T8411] loop2: p4 size 8388608 extends beyond EOD, truncated
[  389.989171][ T3092]  loop2: p1 < > p4
[  390.005639][ T3092] loop2: p4 size 8388608 extends beyond EOD, truncated
[  390.123221][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  390.172255][ T3994] usb 4-1: Using ep0 maxpacket: 32
[  390.188146][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  390.243628][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  390.248981][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  390.310723][ T8417] loop4: detected capacity change from 0 to 32768
[  390.325059][ T8423] loop2: detected capacity change from 0 to 512
[  390.353153][ T8423] EXT4-fs: Ignoring removed nomblk_io_submit option
[  390.381700][ T8423] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  390.414040][ T8417] XFS (loop4): Mounting V5 Filesystem
[  390.448112][ T8413] loop0: detected capacity change from 0 to 32768
[  390.482479][ T3994] usb 4-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f
[  390.532703][ T8413] Dev loop0 SGI disklabel: csum bad, label corrupted
[  390.545918][ T3994] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  390.571950][ T3092] Dev loop0 SGI disklabel: csum bad, label corrupted
[  390.585513][ T3994] usb 4-1: Product: syz
[  390.594312][ T3994] usb 4-1: Manufacturer: syz
[  390.616113][ T3994] usb 4-1: SerialNumber: syz
[  390.630930][ T3994] usb 4-1: config 0 descriptor??
[  390.636035][   T26] audit: type=1804 audit(1722408731.042:136): pid=8433 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1299" name="/newroot/64/file0/bus" dev="loop2" ino=19 res=1 errno=0
[  390.696164][ T8417] XFS (loop4): Ending clean mount
[  390.729647][ T3994] gspca_main: stk1135-2.14.0 probing 174f:6a31
[  390.735761][ T7190] EXT4-fs (loop2): unmounting filesystem.
[  390.738362][ T8417] XFS (loop4): Quotacheck needed: Please wait.
[  390.870759][ T8417] XFS (loop4): Quotacheck: Done.
[  391.552324][ T3685] usb 1-1: new full-speed USB device number 19 using dummy_hcd
[  391.962291][ T3685] usb 1-1: not running at top speed; connect to a high speed hub
[  392.206611][ T3685] usb 1-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 0
[  392.224220][ T3636] Bluetooth: hci1: Ignoring HCI_Connection_Complete for existing connection
[  392.233246][ T3636] Bluetooth: hci1: unexpected event 0x30 length: 4 > 3
[  392.238906][ T8453] loop2: detected capacity change from 0 to 2048
[  392.272623][ T3994] gspca_stk1135: reg_w 0xf err -71
[  392.280986][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.287991][ T3994] gspca_stk1135: Sensor write failed
[  392.298099][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.303206][ T8453]  loop2: p1 < > p4
[  392.305042][ T3994] gspca_stk1135: Sensor write failed
[  392.314018][ T8453] loop2: p4 size 8388608 extends beyond EOD, truncated
[  392.318588][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.367586][ T3994] gspca_stk1135: Sensor read failed
[  392.382899][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.397869][ T3994] gspca_stk1135: Sensor read failed
[  392.414025][ T3994] gspca_stk1135: Detected sensor type unknown (0x0)
[  392.433851][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.443392][ T7686] I/O error, dev loop2, sector 8 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  392.448243][ T7190] __loop_clr_fd: partition scan of loop2 failed (rc=-16)
[  392.461410][ T7686] I/O error, dev loop2, sector 8 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  392.470527][ T3994] gspca_stk1135: Sensor read failed
[  392.479403][ T7686] Buffer I/O error on dev loop2p4, logical block 1, async page read
[  392.487729][ T7972] usb 2-1: new full-speed USB device number 24 using dummy_hcd
[  392.495695][ T3685] usb 1-1: New USB device found, idVendor=0b05, idProduct=1822, bcdDevice= 0.40
[  392.507404][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.517711][ T3685] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  392.525265][ T3994] gspca_stk1135: Sensor read failed
[  392.538598][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.543929][ T3685] usb 1-1: Product: syz
[  392.549729][ T3685] usb 1-1: SerialNumber: syz
[  392.600893][ T3994] gspca_stk1135: Sensor write failed
[  392.608477][ T3994] gspca_stk1135: serial bus timeout: status=0x00
[  392.614296][ T3685] usbhid 1-1:1.0: couldn't find an input interrupt endpoint
[  392.618765][ T3994] gspca_stk1135: Sensor write failed
[  392.675434][ T6437] udevd[6437]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory
[  392.677246][ T3994] stk1135: probe of 4-1:0.0 failed with error -71
[  392.710353][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory
[  392.762552][ T3994] usb 4-1: USB disconnect, device number 13
[  392.796195][ T7221] XFS (loop4): Unmounting Filesystem
[  392.818089][ T4863] usb 1-1: USB disconnect, device number 19
[  392.853408][ T8458] loop2: detected capacity change from 0 to 1024
[  392.872400][ T7972] usb 2-1: config 0 interface 0 altsetting 44 has an invalid endpoint with address 0xFF, skipping
[  392.991843][ T7972] usb 2-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  393.005679][ T7972] usb 2-1: config 0 interface 0 has no altsetting 0
[  393.233111][ T7972] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  393.252549][ T7972] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  393.289676][ T7972] usb 2-1: Product: syz
[  393.307423][ T7972] usb 2-1: Manufacturer: syz
[  393.326300][ T7972] usb 2-1: SerialNumber: syz
[  393.633208][ T7972] usb 2-1: config 0 descriptor??
[  393.660029][ T8451] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22
[  393.995610][ T8468] loop2: detected capacity change from 0 to 512
[  394.022261][ T8468] EXT4-fs: Ignoring removed nobh option
[  394.063047][ T8468] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  394.187083][ T8472] 9pnet_fd: Insufficient options for proto=fd
[  394.427144][ T8468] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  394.566303][ T8468] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038 (0x7fffffff)
[  394.815752][ T8468] Invalid ELF header magic: != ELF
[  394.917997][ T7190] EXT4-fs (loop2): unmounting filesystem.
[  395.260028][ T8493] loop2: detected capacity change from 0 to 64
[  395.885720][   T26] audit: type=1326 audit(1722408736.302:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8491 comm="syz.3.1322" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa055b773b9 code=0x0
[  395.886640][ T4863] usb 2-1: USB disconnect, device number 24
[  396.149569][ T8504] loop2: detected capacity change from 0 to 1024
[  396.547937][ T8487] loop4: detected capacity change from 0 to 32768
[  396.750302][ T8514] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1329'.
[  396.772683][ T8487] XFS (loop4): Mounting V5 Filesystem
[  396.801630][ T8514] bridge_slave_1: default FDB implementation only supports local addresses
[  396.950976][ T8487] XFS (loop4): Ending clean mount
[  397.005477][ T8487] XFS (loop4): Quotacheck needed: Please wait.
[  397.137833][ T8487] XFS (loop4): Quotacheck: Done.
[  397.241627][ T8525] loop0: detected capacity change from 0 to 2048
[  397.408137][ T8525]  loop0: p1 < > p4
[  397.436875][ T8525] loop0: p4 size 8388608 extends beyond EOD, truncated
[  397.642787][ T8525] loop0: detected capacity change from 0 to 256
[  397.652336][ T3681] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[  397.741597][ T8540] loop3: detected capacity change from 0 to 64
[  398.812283][ T3681] usb 3-1: config 0 interface 0 altsetting 44 has an invalid endpoint with address 0xFF, skipping
[  398.878717][ T3681] usb 3-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  398.902711][ T3681] usb 3-1: config 0 interface 0 has no altsetting 0
[  399.072295][ T3679] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[  399.092518][ T3681] usb 3-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  399.110240][ T3681] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  399.152271][ T3681] usb 3-1: Product: syz
[  399.179719][ T3681] usb 3-1: Manufacturer: syz
[  399.196493][ T3681] usb 3-1: SerialNumber: syz
[  399.223039][ T3681] usb 3-1: config 0 descriptor??
[  399.242404][ T8534] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[  399.332323][ T3679] usb 4-1: Using ep0 maxpacket: 16
[  399.472365][ T3679] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  399.498150][ T3679] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[  399.652294][ T3679] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[  399.722346][ T8551] 9pnet_fd: Insufficient options for proto=fd
[  400.356779][ T3679] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0
[  400.367028][ T3679] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  400.476577][ T3679] usb 4-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[  400.494290][ T7221] XFS (loop4): Unmounting Filesystem
[  400.511452][ T3679] usb 4-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[  400.565048][ T3679] usb 4-1: Manufacturer: syz
[  400.600212][ T3679] usb 4-1: config 0 descriptor??
[  400.849571][   T26] audit: type=1326 audit(1722408741.262:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8558 comm="syz.0.1345" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f23897773b9 code=0x0
[  400.865799][ T8561] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1344'.
[  400.897843][ T8561] bridge0: port 2(bridge_slave_1) entered disabled state
[  401.300656][ T8578] loop4: detected capacity change from 0 to 64
[  401.941911][ T4862] usb 3-1: USB disconnect, device number 17
[  402.132326][ T3679] rc_core: IR keymap rc-hauppauge not found
[  402.138304][ T3679] Registered IR keymap rc-empty
[  402.166591][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.234250][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.279265][ T3679] rc rc0: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  402.334847][ T3679] input: Conexant Hybrid TV (cx231xx) MCE IR no TX (2040:b138) as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input16
[  402.393905][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.401872][   T26] audit: type=1326 audit(1722408742.812:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8591 comm="syz.1.1353" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f7f00d773b9 code=0x0
[  402.425013][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.462264][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.493101][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.566463][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.602259][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.652463][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.702408][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.747530][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.784228][ T3679] mceusb 4-1:0.0: Error: mce write submit urb error = -90
[  402.830883][ T3679] mceusb 4-1:0.0: Registered  with mce emulator interface version 1
[  402.848801][ T8590] loop2: detected capacity change from 0 to 32768
[  402.855301][ T3679] mceusb 4-1:0.0: 2 tx ports (0x0 cabled) and 2 rx sensors (0x0 active)
[  402.924688][ T8590] XFS (loop2): Mounting V5 Filesystem
[  403.107712][ T8590] XFS (loop2): Ending clean mount
[  403.136862][ T8590] XFS (loop2): Quotacheck needed: Please wait.
[  403.219517][ T8607] device team_slave_0 entered promiscuous mode
[  403.226851][ T8607] device team_slave_1 entered promiscuous mode
[  403.238279][ T8607] device macvtap1 entered promiscuous mode
[  403.244372][ T8607] device team0 entered promiscuous mode
[  403.251467][ T8607] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  403.252827][ T8590] XFS (loop2): Quotacheck: Done.
[  403.259983][ T8607] team0: Device macvtap1 is already an upper device of the team interface
[  403.303114][ T8611] netlink: 'syz.0.1355': attribute type 1 has an invalid length.
[  403.323278][ T8607] device team0 left promiscuous mode
[  403.329239][ T8607] device team_slave_0 left promiscuous mode
[  403.335289][ T8607] device team_slave_1 left promiscuous mode
[  403.702415][ T4862] usb 2-1: new full-speed USB device number 25 using dummy_hcd
[  403.871028][ T3994] usb 4-1: USB disconnect, device number 14
[  404.713707][   T26] audit: type=1326 audit(1722408745.132:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8624 comm="syz.3.1362" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa055b773b9 code=0x0
[  404.745083][ T8628] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1363'.
[  404.816544][ T7190] XFS (loop2): Unmounting Filesystem
[  404.832809][ T4862] usb 2-1: config 0 interface 0 altsetting 44 has an invalid endpoint with address 0xFF, skipping
[  404.869976][ T4862] usb 2-1: config 0 interface 0 altsetting 44 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[  404.924418][ T4862] usb 2-1: config 0 interface 0 has no altsetting 0
[  404.938990][ T8631] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1364'.
[  405.098350][ T8637] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  405.112398][ T4862] usb 2-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ec.7e
[  405.128334][ T8635] netdevsim netdevsim0 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0
[  405.131776][ T4862] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  405.138011][ T8635] netdevsim netdevsim0 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0
[  405.154435][ T8635] netdevsim netdevsim0 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0
[  405.155969][ T4862] usb 2-1: Product: syz
[  405.163166][ T8635] netdevsim netdevsim0 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0
[  405.197145][ T4862] usb 2-1: Manufacturer: syz
[  405.207437][ T4862] usb 2-1: SerialNumber: syz
[  405.220546][ T4862] usb 2-1: config 0 descriptor??
[  405.233676][ T8635] device vxlan0 entered promiscuous mode
[  405.252464][ T8616] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  405.262418][ T8635] netdevsim netdevsim0 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0
[  405.271365][ T8635] netdevsim netdevsim0 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0
[  405.280297][ T8635] netdevsim netdevsim0 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0
[  405.289205][ T8635] netdevsim netdevsim0 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0
[  405.406549][ T8641] loop2: detected capacity change from 0 to 256
[  405.413338][ T8631] bridge0: port 4(bond1) entered blocking state
[  405.419670][ T8631] bridge0: port 4(bond1) entered disabled state
[  405.427351][ T8631] device bond1 entered promiscuous mode
[  405.444191][ T8631] device bridge1 entered promiscuous mode
[  405.448386][ T8641] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  405.709272][ T8643] 9pnet_fd: Insufficient options for proto=fd
[  406.528823][   T26] audit: type=1326 audit(1722408746.942:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8645 comm="syz.4.1368" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f67899773b9 code=0x0
[  406.577497][ T8653] device team_slave_0 entered promiscuous mode
[  406.583851][ T8653] device team_slave_1 entered promiscuous mode
[  406.612415][ T8653] device macvtap1 entered promiscuous mode
[  406.618361][ T8653] device team0 entered promiscuous mode
[  406.642473][ T8653] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  406.659970][ T8654] netlink: 'syz.2.1372': attribute type 1 has an invalid length.
[  406.682898][ T8653] team0: Device macvtap1 is already an upper device of the team interface
[  406.708344][ T8653] device team0 left promiscuous mode
[  406.720487][ T8653] device team_slave_0 left promiscuous mode
[  406.726553][ T8653] device team_slave_1 left promiscuous mode
[  406.816626][ T8646] loop0: detected capacity change from 0 to 8192
[  407.642677][ T7972] usb 2-1: USB disconnect, device number 25
[  407.866466][ T8666] loop4: detected capacity change from 0 to 256
[  407.903412][ T8666] FAT-fs (loop4): Unrecognized mount option "sVortname=mixed" or missing value
[  408.070195][ T7662] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  408.221392][ T3636] Bluetooth: hci4: Ignoring HCI_Connection_Complete for existing connection
[  408.240938][ T8674] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1377'.
[  408.242089][ T3636] Bluetooth: hci4: unexpected event 0x30 length: 4 > 3
[  408.418479][ T8680] loop3: detected capacity change from 0 to 256
[  408.444998][ T8682] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1382'.
[  408.477606][ T8675] loop1: detected capacity change from 0 to 2048
[  408.585276][ T8675]  loop1: p1 < > p4
[  408.593605][ T8680] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  408.608838][ T8675] loop1: p4 size 8388608 extends beyond EOD, truncated
[  408.697222][ T8682] bridge0: port 4(bond1) entered blocking state
[  408.709463][ T8682] bridge0: port 4(bond1) entered disabled state
[  408.766657][ T8682] device bond1 entered promiscuous mode
[  408.820532][ T7662] udevd[7662]: inotify_add_watch(7, /dev/loop1p1, 10) failed: No such file or directory
[  408.867285][ T5478] udevd[5478]: inotify_add_watch(7, /dev/loop1p4, 10) failed: No such file or directory
[  408.944492][ T8695] loop2: detected capacity change from 0 to 128
[  409.032295][   T26] audit: type=1326 audit(1722408749.442:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8699 comm="syz.3.1386" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa055b773b9 code=0x0
[  409.288641][ T8692] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1385'.
[  410.140824][ T8718] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1393'.
[  410.505464][ T8724] netlink: 12 bytes leftover after parsing attributes in process `syz.3.1396'.
[  410.666991][ T8728] loop2: detected capacity change from 0 to 256
[  410.728886][ T8724] bridge0: port 3(bond1) entered blocking state
[  410.741647][ T8724] bridge0: port 3(bond1) entered disabled state
[  410.774472][ T8724] device bond1 entered promiscuous mode
[  410.790153][ T8728] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  410.841732][ T8722] loop1: detected capacity change from 0 to 32768
[  410.876467][   T26] audit: type=1800 audit(1722408751.292:143): pid=8722 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1395" name="bus" dev="loop1" ino=7 res=0 errno=0
[  410.944305][ T8722] loop1: detected capacity change from 32768 to 32745
[  411.093874][ T5163] ERROR: (device loop1): diRead: i_ino != di_number
[  411.093874][ T5163] 
[  411.128226][ T5163] ERROR: (device loop1): remounting filesystem as read-only
[  411.139813][   T26] audit: type=1326 audit(1722408751.552:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8743 comm="syz.3.1403" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa055b773b9 code=0x0
[  411.146201][ T5163] jfs_lookup: iget failed on inum 32
[  411.469025][ T8754] loop2: detected capacity change from 0 to 128
[  411.741994][  T133] ================================================================================
[  411.864831][  T133] UBSAN: array-index-out-of-bounds in fs/jfs/jfs_dmap.c:2778:24
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  411.917078][  T133] index 4294967295 is out of range for type 's8[1365]' (aka 'signed char[1365]')
[  411.927103][  T133] CPU: 1 PID: 133 Comm: jfsCommit Not tainted 6.1.102-syzkaller #0
[  411.935023][  T133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  411.945092][  T133] Call Trace:
[  411.948375][  T133]  <TASK>
[  411.951298][  T133]  dump_stack_lvl+0x1e3/0x2cb
[  411.956024][  T133]  ? nf_tcp_handle_invalid+0x642/0x642
[  411.961511][  T133]  ? panic+0x764/0x764
[  411.965583][  T133]  ? lock_metapage+0x2f5/0x370
[  411.970351][  T133]  __ubsan_handle_out_of_bounds+0x118/0x140
[  411.976243][  T133]  dbJoin+0x2e9/0x310
[  411.980223][  T133]  dbFreeBits+0x4ef/0xdb0
[  411.984566][  T133]  dbFree+0x357/0x670
[  411.988574][  T133]  txFreeMap+0x966/0xd50
[  411.992812][  T133]  ? __mark_inode_dirty+0x430/0xf80
[  411.998039][  T133]  xtTruncate+0xe58/0x3260
[  412.002472][  T133]  ? xtInitRoot+0x160/0x160
[  412.006998][  T133]  ? mapping_evict_folio+0x5b0/0x5b0
[  412.012390][  T133]  jfs_free_zero_link+0x46a/0x6e0
[  412.017412][  T133]  ? jfs_write_failed+0x190/0x190
[  412.022438][  T133]  ? bit_waitqueue+0x30/0x30
[  412.027025][  T133]  jfs_evict_inode+0x35b/0x440
[  412.031773][  T133]  ? jfs_write_inode+0x210/0x210
[  412.036700][  T133]  evict+0x2a4/0x620
[  412.040598][  T133]  txUpdateMap+0x825/0x9e0
[  412.045008][  T133]  ? txCommit+0x6ba0/0x6ba0
[  412.049503][  T133]  jfs_lazycommit+0x476/0xb60
[  412.054163][  T133]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  412.060043][  T133]  ? lockdep_hardirqs_on+0x94/0x130
[  412.065242][  T133]  ? txFreelock+0x580/0x580
[  412.069728][  T133]  ? do_task_dead+0xd0/0xd0
[  412.074233][  T133]  ? _raw_spin_unlock+0x40/0x40
[  412.079070][  T133]  ? __kthread_parkme+0x168/0x1c0
[  412.084091][  T133]  kthread+0x28d/0x320
[  412.088149][  T133]  ? txFreelock+0x580/0x580
[  412.092636][  T133]  ? kthread_blkcg+0xd0/0xd0
[  412.097212][  T133]  ret_from_fork+0x1f/0x30
[  412.101627][  T133]  </TASK>
[  412.105427][ T3644] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  412.108230][ T8762] netlink: 48 bytes leftover after parsing attributes in process `syz.2.1407'.
[  412.145656][  T133] ================================================================================
[  412.157630][ T4397] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  412.193773][ T3644] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  412.202779][ T3644] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  412.210720][ T3644] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  412.220486][ T3644] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  412.336337][ T3644] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  412.676253][  T133] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[  412.683487][  T133] CPU: 0 PID: 133 Comm: jfsCommit Not tainted 6.1.102-syzkaller #0
[  412.691380][  T133] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  412.701431][  T133] Call Trace:
[  412.704708][  T133]  <TASK>
[  412.707640][  T133]  dump_stack_lvl+0x1e3/0x2cb
[  412.712330][  T133]  ? nf_tcp_handle_invalid+0x642/0x642
[  412.717791][  T133]  ? panic+0x764/0x764
[  412.721872][  T133]  ? vscnprintf+0x59/0x80
[  412.726204][  T133]  panic+0x318/0x764
[  412.730100][  T133]  ? check_panic_on_warn+0x1d/0xa0
[  412.735215][  T133]  ? memcpy_page_flushcache+0xfc/0xfc
[  412.740583][  T133]  ? dump_stack_lvl+0x24f/0x2cb
[  412.745452][  T133]  check_panic_on_warn+0x7e/0xa0
[  412.750392][  T133]  __ubsan_handle_out_of_bounds+0x138/0x140
[  412.756305][  T133]  dbJoin+0x2e9/0x310
[  412.760299][  T133]  dbFreeBits+0x4ef/0xdb0
[  412.764643][  T133]  dbFree+0x357/0x670
[  412.768640][  T133]  txFreeMap+0x966/0xd50
[  412.772899][  T133]  ? __mark_inode_dirty+0x430/0xf80
[  412.778108][  T133]  xtTruncate+0xe58/0x3260
[  412.782556][  T133]  ? xtInitRoot+0x160/0x160
[  412.787077][  T133]  ? mapping_evict_folio+0x5b0/0x5b0
[  412.792377][  T133]  jfs_free_zero_link+0x46a/0x6e0
[  412.797404][  T133]  ? jfs_write_failed+0x190/0x190
[  412.802430][  T133]  ? bit_waitqueue+0x30/0x30
[  412.807029][  T133]  jfs_evict_inode+0x35b/0x440
[  412.811792][  T133]  ? jfs_write_inode+0x210/0x210
[  412.816817][  T133]  evict+0x2a4/0x620
[  412.820734][  T133]  txUpdateMap+0x825/0x9e0
[  412.825170][  T133]  ? txCommit+0x6ba0/0x6ba0
[  412.829678][  T133]  jfs_lazycommit+0x476/0xb60
[  412.834355][  T133]  ? _raw_spin_unlock_irqrestore+0x8b/0x130
[  412.840257][  T133]  ? lockdep_hardirqs_on+0x94/0x130
[  412.845472][  T133]  ? txFreelock+0x580/0x580
[  412.849981][  T133]  ? do_task_dead+0xd0/0xd0
[  412.854495][  T133]  ? _raw_spin_unlock+0x40/0x40
[  412.859362][  T133]  ? __kthread_parkme+0x168/0x1c0
[  412.864405][  T133]  kthread+0x28d/0x320
[  412.868485][  T133]  ? txFreelock+0x580/0x580
[  412.873259][  T133]  ? kthread_blkcg+0xd0/0xd0
[  412.877857][  T133]  ret_from_fork+0x1f/0x30
[  412.882304][  T133]  </TASK>
[  412.885555][  T133] Kernel Offset: disabled
[  412.889942][  T133] Rebooting in 86400 seconds..