last executing test programs:

178.78396ms ago: executing program 1 (id=2):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000400)={0x40, r1, 0x7, 0x0, 0x25dfdbfc, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_OURS={0x14, 0x3, 0x0, 0x1, [@ETHTOOL_A_BITSET_BITS={0x10, 0x3, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@ETHTOOL_A_BITSET_BIT_INDEX={0x8}]}]}]}]}, 0x40}}, 0x0)

38.764875ms ago: executing program 3 (id=4):
r0 = socket(0x1e, 0x805, 0x0)
connect$unix(r0, &(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e)

4.062953ms ago: executing program 1 (id=5):
mkdir(&(0x7f0000000400)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000240)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b000008003950323030302e4c"], 0x15)
r2 = dup(r1)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
write$FUSE_DIRENTPLUS(r2, &(0x7f00000012c0)=ANY=[@ANYBLOB="b0"], 0xb0)
write$FUSE_DIRENTPLUS(r2, &(0x7f0000000280)=ANY=[@ANYBLOB="10"], 0x10)
getresuid(&(0x7f0000000440), &(0x7f0000000400), &(0x7f00000004c0)=<r3=>0x0)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000580)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r2, @ANYBLOB=',privport,access=', @ANYRESDEC=r3])
removexattr(&(0x7f0000000200)='./file0\x00', &(0x7f00000002c0)=@known='trusted.overlay.redirect\x00')

0s ago: executing program 2 (id=3):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
unshare(0x22020400)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, 0x0, 0x0)

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.0.148' (ED25519) to the list of known hosts.
[   60.160575][ T5850] cgroup: Unknown subsys name 'net'
[   60.330596][ T5850] cgroup: Unknown subsys name 'cpuset'
[   60.338170][ T5850] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   61.479334][ T5850] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   64.447151][ T5872] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   64.454357][ T5872] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   64.458117][ T5875] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   64.468392][ T5872] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   64.475852][ T5877] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   64.479212][ T5874] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   64.483181][ T5872] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   64.490386][ T5874] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   64.497211][ T5872] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   64.510876][ T5876] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   64.511160][ T5874] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   64.518410][ T5872] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   64.526283][ T5874] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   64.532882][ T5872] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   64.539650][ T5874] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   64.545736][ T5876] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   64.553223][ T5874] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   64.560590][ T5876] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   64.573890][ T5876] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   64.581669][ T5876] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   64.883859][ T5859] chnl_net:caif_netlink_parms(): no params data found
[   64.893958][ T5862] chnl_net:caif_netlink_parms(): no params data found
[   64.904396][ T5861] chnl_net:caif_netlink_parms(): no params data found
[   64.941473][ T5860] chnl_net:caif_netlink_parms(): no params data found
[   65.029537][ T5859] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.036692][ T5859] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.043990][ T5859] bridge_slave_0: entered allmulticast mode
[   65.050853][ T5859] bridge_slave_0: entered promiscuous mode
[   65.080927][ T5859] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.088013][ T5859] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.095333][ T5859] bridge_slave_1: entered allmulticast mode
[   65.102762][ T5859] bridge_slave_1: entered promiscuous mode
[   65.118074][ T5862] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.125364][ T5862] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.132638][ T5862] bridge_slave_0: entered allmulticast mode
[   65.139376][ T5862] bridge_slave_0: entered promiscuous mode
[   65.146115][ T5861] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.153269][ T5861] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.160617][ T5861] bridge_slave_0: entered allmulticast mode
[   65.167147][ T5861] bridge_slave_0: entered promiscuous mode
[   65.186964][ T5862] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.194055][ T5862] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.201365][ T5862] bridge_slave_1: entered allmulticast mode
[   65.208102][ T5862] bridge_slave_1: entered promiscuous mode
[   65.214889][ T5861] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.222106][ T5861] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.229415][ T5861] bridge_slave_1: entered allmulticast mode
[   65.235990][ T5861] bridge_slave_1: entered promiscuous mode
[   65.249619][ T5859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.260941][ T5859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.294742][ T5860] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.302001][ T5860] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.309158][ T5860] bridge_slave_0: entered allmulticast mode
[   65.315674][ T5860] bridge_slave_0: entered promiscuous mode
[   65.329927][ T5861] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.340945][ T5861] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.356023][ T5860] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.363236][ T5860] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.370609][ T5860] bridge_slave_1: entered allmulticast mode
[   65.377160][ T5860] bridge_slave_1: entered promiscuous mode
[   65.385177][ T5862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.401717][ T5859] team0: Port device team_slave_0 added
[   65.422700][ T5862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.433200][ T5859] team0: Port device team_slave_1 added
[   65.439975][ T5861] team0: Port device team_slave_0 added
[   65.465222][ T5861] team0: Port device team_slave_1 added
[   65.480344][ T5860] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.491283][ T5860] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.513408][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.520459][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.546505][ T5859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.558228][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.565255][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.591760][ T5859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.609207][ T5862] team0: Port device team_slave_0 added
[   65.633337][ T5862] team0: Port device team_slave_1 added
[   65.647244][ T5860] team0: Port device team_slave_0 added
[   65.654802][ T5860] team0: Port device team_slave_1 added
[   65.661130][ T5861] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.668063][ T5861] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.693971][ T5861] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.705718][ T5861] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.712767][ T5861] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.739069][ T5861] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.773813][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.780875][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.807030][ T5862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.832331][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.839553][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.865634][ T5862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   65.879458][ T5859] hsr_slave_0: entered promiscuous mode
[   65.885621][ T5859] hsr_slave_1: entered promiscuous mode
[   65.897260][ T5860] batman_adv: batadv0: Adding interface: batadv_slave_0
[   65.904366][ T5860] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.930330][ T5860] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   65.953189][ T5860] batman_adv: batadv0: Adding interface: batadv_slave_1
[   65.961085][ T5860] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   65.987251][ T5860] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.025474][ T5861] hsr_slave_0: entered promiscuous mode
[   66.031590][ T5861] hsr_slave_1: entered promiscuous mode
[   66.037576][ T5861] debugfs: 'hsr0' already exists in 'hsr'
[   66.043437][ T5861] Cannot create hsr debugfs directory
[   66.062487][ T5862] hsr_slave_0: entered promiscuous mode
[   66.070127][ T5862] hsr_slave_1: entered promiscuous mode
[   66.076138][ T5862] debugfs: 'hsr0' already exists in 'hsr'
[   66.081903][ T5862] Cannot create hsr debugfs directory
[   66.142697][ T5860] hsr_slave_0: entered promiscuous mode
[   66.149588][ T5860] hsr_slave_1: entered promiscuous mode
[   66.155439][ T5860] debugfs: 'hsr0' already exists in 'hsr'
[   66.161525][ T5860] Cannot create hsr debugfs directory
[   66.347281][ T5862] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   66.361214][ T5862] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   66.370269][ T5862] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   66.383099][ T5862] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   66.413750][ T5859] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   66.428926][ T5859] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   66.442154][ T5859] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   66.454330][ T5859] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   66.481979][ T5861] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   66.492384][ T5861] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   66.501795][ T5861] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   66.516018][ T5861] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   66.567523][ T5860] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   66.576761][ T5860] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   66.587912][ T5860] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   66.596890][ T5860] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   66.618696][ T5876] Bluetooth: hci2: command tx timeout
[   66.624122][ T5876] Bluetooth: hci0: command tx timeout
[   66.628644][ T5188] Bluetooth: hci3: command tx timeout
[   66.629779][   T51] Bluetooth: hci1: command tx timeout
[   66.678676][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.710213][ T5862] 8021q: adding VLAN 0 to HW filter on device team0
[   66.730675][ T5859] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.739262][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.746318][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.757623][ T5861] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.769550][ T1104] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.776625][ T1104] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.792253][ T5859] 8021q: adding VLAN 0 to HW filter on device team0
[   66.803982][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.811064][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.829739][ T5861] 8021q: adding VLAN 0 to HW filter on device team0
[   66.842924][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.850013][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[   66.876096][ T2956] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.883195][ T2956] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.895655][ T5860] 8021q: adding VLAN 0 to HW filter on device bond0
[   66.914395][ T2956] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.921475][ T2956] bridge0: port 2(bridge_slave_1) entered forwarding state
[   66.975628][ T5860] 8021q: adding VLAN 0 to HW filter on device team0
[   66.992384][ T1104] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.999494][ T1104] bridge0: port 1(bridge_slave_0) entered forwarding state
[   67.032353][ T1104] bridge0: port 2(bridge_slave_1) entered blocking state
[   67.039459][ T1104] bridge0: port 2(bridge_slave_1) entered forwarding state
[   67.202728][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.284943][ T5859] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.297450][ T5862] veth0_vlan: entered promiscuous mode
[   67.327219][ T5862] veth1_vlan: entered promiscuous mode
[   67.354532][ T5861] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.373826][ T5860] 8021q: adding VLAN 0 to HW filter on device batadv0
[   67.386876][ T5859] veth0_vlan: entered promiscuous mode
[   67.414485][ T5859] veth1_vlan: entered promiscuous mode
[   67.436104][ T5862] veth0_macvtap: entered promiscuous mode
[   67.445654][ T5862] veth1_macvtap: entered promiscuous mode
[   67.473419][ T5861] veth0_vlan: entered promiscuous mode
[   67.483428][ T5860] veth0_vlan: entered promiscuous mode
[   67.494262][ T5859] veth0_macvtap: entered promiscuous mode
[   67.506900][ T5861] veth1_vlan: entered promiscuous mode
[   67.515691][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.525176][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.535638][ T5859] veth1_macvtap: entered promiscuous mode
[   67.547092][ T5860] veth1_vlan: entered promiscuous mode
[   67.561075][   T13] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.570748][   T13] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.587451][ T1104] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.597814][ T1104] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.616949][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.642382][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.651337][ T5860] veth0_macvtap: entered promiscuous mode
[   67.663102][ T5861] veth0_macvtap: entered promiscuous mode
[   67.675335][ T1104] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.685400][ T1104] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.694762][ T5861] veth1_macvtap: entered promiscuous mode
[   67.705931][ T5860] veth1_macvtap: entered promiscuous mode
[   67.720213][ T1104] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.729495][ T1104] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.745471][ T5860] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.755396][ T5860] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.769774][ T1104] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.785572][   T12] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   67.795127][   T12] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   67.805434][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.813552][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.826465][   T12] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   67.851156][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_0
[   67.888145][ T5861] batman_adv: batadv0: Interface activated: batadv_slave_1
[   67.898470][ T1104] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.904543][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   67.912832][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.921903][ T1104] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   67.952222][   T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   67.980717][ T5862] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   67.982365][   T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   68.005671][   T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   68.017795][   T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   68.033063][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.041755][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.092010][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.100322][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.103269][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.117643][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.166158][   T49] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.185966][   T49] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.273730][   T49] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   68.285101][ T5955] ------------[ cut here ]------------
[   68.292504][ T5955] UBSAN: shift-out-of-bounds in fs/9p/vfs_super.c:57:22
[   68.299748][   T49] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   68.320004][ T5955] shift exponent 32 is too large for 32-bit type 'int'
[   68.337830][ T5955] CPU: 0 UID: 0 PID: 5955 Comm: syz.1.5 Not tainted syzkaller #0 PREEMPT(full) 
[   68.337852][ T5955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   68.337863][ T5955] Call Trace:
[   68.337869][ T5955]  <TASK>
[   68.337876][ T5955]  dump_stack_lvl+0x189/0x250
[   68.337907][ T5955]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.337933][ T5955]  ? __pfx__printk+0x10/0x10
[   68.337961][ T5955]  ubsan_epilogue+0xa/0x40
[   68.337981][ T5955]  __ubsan_handle_shift_out_of_bounds+0x386/0x410
[   68.338006][ T5955]  ? __pfx_v9fs_set_super+0x10/0x10
[   68.338030][ T5955]  v9fs_get_tree+0x957/0xa90
[   68.338051][ T5955]  ? __pfx_v9fs_get_tree+0x10/0x10
[   68.338073][ T5955]  vfs_get_tree+0x8f/0x2b0
[   68.338092][ T5955]  do_new_mount+0x2a2/0xa30
[   68.338112][ T5955]  ? ns_capable+0x8a/0xf0
[   68.338130][ T5955]  ? __pfx_do_new_mount+0x10/0x10
[   68.338147][ T5955]  ? path_mount+0x61c/0xfe0
[   68.338163][ T5955]  ? user_path_at+0x44/0x60
[   68.338190][ T5955]  __se_sys_mount+0x317/0x410
[   68.338211][ T5955]  ? __pfx___se_sys_mount+0x10/0x10
[   68.338231][ T5955]  ? rcu_is_watching+0x15/0xb0
[   68.338249][ T5955]  ? __x64_sys_mount+0x20/0xc0
[   68.338268][ T5955]  do_syscall_64+0xfa/0xfa0
[   68.338291][ T5955]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.338306][ T5955]  ? clear_bhb_loop+0x60/0xb0
[   68.338324][ T5955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.338340][ T5955] RIP: 0033:0x7feef6b8ebe9
[   68.338362][ T5955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.338377][ T5955] RSP: 002b:00007feef7956038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   68.338395][ T5955] RAX: ffffffffffffffda RBX: 00007feef6dc5fa0 RCX: 00007feef6b8ebe9
[   68.338406][ T5955] RDX: 0000200000000b80 RSI: 0000200000000040 RDI: 0000000000000000
[   68.338417][ T5955] RBP: 00007feef6c11e19 R08: 0000200000000580 R09: 0000000000000000
[   68.338428][ T5955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   68.338443][ T5955] R13: 00007feef6dc6038 R14: 00007feef6dc5fa0 R15: 00007fff58c0f1f8
[   68.338461][ T5955]  </TASK>
[   68.547285][ T5955] ---[ end trace ]---
[   68.551758][ T5955] Kernel panic - not syncing: UBSAN: panic_on_warn set ...
[   68.558984][ T5955] CPU: 0 UID: 0 PID: 5955 Comm: syz.1.5 Not tainted syzkaller #0 PREEMPT(full) 
[   68.568017][ T5955] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[   68.578071][ T5955] Call Trace:
[   68.581349][ T5955]  <TASK>
[   68.584277][ T5955]  dump_stack_lvl+0x99/0x250
[   68.588878][ T5955]  ? __asan_memcpy+0x40/0x70
[   68.593461][ T5955]  ? __pfx_dump_stack_lvl+0x10/0x10
[   68.598665][ T5955]  ? __pfx__printk+0x10/0x10
[   68.603254][ T5955]  vpanic+0x281/0x750
[   68.607232][ T5955]  ? __pfx_vpanic+0x10/0x10
[   68.611763][ T5955]  panic+0xb9/0xc0
[   68.615572][ T5955]  ? __pfx_panic+0x10/0x10
[   68.619984][ T5955]  ? __pfx__printk+0x10/0x10
[   68.624575][ T5955]  check_panic_on_warn+0x89/0xb0
[   68.629512][ T5955]  __ubsan_handle_shift_out_of_bounds+0x386/0x410
[   68.635921][ T5955]  ? __pfx_v9fs_set_super+0x10/0x10
[   68.641114][ T5955]  v9fs_get_tree+0x957/0xa90
[   68.645701][ T5955]  ? __pfx_v9fs_get_tree+0x10/0x10
[   68.650805][ T5955]  vfs_get_tree+0x8f/0x2b0
[   68.655224][ T5955]  do_new_mount+0x2a2/0xa30
[   68.659724][ T5955]  ? ns_capable+0x8a/0xf0
[   68.664048][ T5955]  ? __pfx_do_new_mount+0x10/0x10
[   68.669061][ T5955]  ? path_mount+0x61c/0xfe0
[   68.673559][ T5955]  ? user_path_at+0x44/0x60
[   68.678068][ T5955]  __se_sys_mount+0x317/0x410
[   68.682743][ T5955]  ? __pfx___se_sys_mount+0x10/0x10
[   68.687968][ T5955]  ? rcu_is_watching+0x15/0xb0
[   68.692730][ T5955]  ? __x64_sys_mount+0x20/0xc0
[   68.697498][ T5955]  do_syscall_64+0xfa/0xfa0
[   68.702002][ T5955]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.708067][ T5955]  ? clear_bhb_loop+0x60/0xb0
[   68.712755][ T5955]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   68.718642][ T5955] RIP: 0033:0x7feef6b8ebe9
[   68.723052][ T5955] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   68.742650][ T5955] RSP: 002b:00007feef7956038 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[   68.751064][ T5955] RAX: ffffffffffffffda RBX: 00007feef6dc5fa0 RCX: 00007feef6b8ebe9
[   68.759029][ T5955] RDX: 0000200000000b80 RSI: 0000200000000040 RDI: 0000000000000000
[   68.766992][ T5955] RBP: 00007feef6c11e19 R08: 0000200000000580 R09: 0000000000000000
[   68.774950][ T5955] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   68.782911][ T5955] R13: 00007feef6dc6038 R14: 00007feef6dc5fa0 R15: 00007fff58c0f1f8
[   68.790879][ T5955]  </TASK>
[   68.794250][ T5955] Kernel Offset: disabled
[   68.798570][ T5955] Rebooting in 86400 seconds..