last executing test programs:

11m39.114857907s ago: executing program 4 (id=120):
r0 = syz_open_dev$dri(&(0x7f0000000000), 0x0, 0x0)
r1 = syz_open_dev$dri(&(0x7f00000008c0), 0xd21, 0x0)
ioctl$DRM_IOCTL_MODE_GETRESOURCES(r1, 0xc04064a0, &(0x7f00000001c0)={0x0, &(0x7f00000000c0)=[<r2=>0x0], 0x0, 0x0, 0x0, 0x1})
ioctl$DRM_IOCTL_MODE_GETCRTC(r1, 0xc06864a1, &(0x7f0000000980)={0x0, 0x0, r2, <r3=>0x0})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000440)={r3, 0x0, 0x0, 0x0, 0x0, [<r4=>0x0]})
ioctl$DRM_IOCTL_MODE_CREATE_DUMB(r0, 0xc02064b2, &(0x7f0000000140)={0x3ff, 0x2, 0xb5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r0, 0xc00c642d, &(0x7f0000000080)={r4, 0x0, <r5=>0xffffffffffffffff})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000280)={r3, 0x0, 0x0, 0x0, 0x0, [<r6=>0x0], [], [], [0x0, 0x3, 0x400000006]})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000100)={r6})
ioctl$DRM_IOCTL_MODE_GETFB2(r1, 0xc06864ce, &(0x7f0000000340)={r3, 0x0, 0x0, 0x0, 0x0, [<r7=>0x0], [0xffffffff], [], [0xfffffffffffffffc]})
ioctl$DRM_IOCTL_PRIME_FD_TO_HANDLE(r1, 0xc00c642e, &(0x7f0000000300)={0x0, 0x0, r5})
ioctl$DRM_IOCTL_PRIME_HANDLE_TO_FD(r1, 0xc00c642d, &(0x7f0000000040)={r7})

11m37.275197033s ago: executing program 4 (id=128):
bind$alg(0xffffffffffffffff, &(0x7f0000000000)={0x26, 'skcipher\x00', 0x0, 0x0, 'ecb-camellia-asm\x00'}, 0x58)
socket$kcm(0x11, 0x200000000000002, 0x300)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
gettid()
mremap(&(0x7f000020e000/0x2000)=nil, 0x2000, 0x4000, 0x4, &(0x7f0000b22000/0x4000)=nil)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000400)={0x130, 0x3e, 0x1, 0x7fffc, 0x4, {0x1}, [@typed={0x4}, @nested={0x10c, 0x1, 0x0, 0x1, [@nested={0x108, 0x10, 0x0, 0x1, [@nested={0x104, 0x8, 0x0, 0x1, [@typed={0xfd, 0x9d, 0x0, 0x0, @binary="2b3b2bb05aa129755fb68f68dc9d805165493b44c20ed9981eb5ba3ec361787828969f18fee014d59074cdc01da8e1b1e191094503c37ae1397d457b19f6f4fb4218ba4c6567486e1a7f57b3d45425bbd83347122f6a01aa1103369f3f9d60edfe347fd3c5f34a97721a7b6ae4e5a402dc9ab096e018321ce257321f166024df7f3689223d3c7d2122ba2506776c35651d60d56e710ffa361f1900b45c859d8119d3984953bd88e00f0426f83999b183fb9a1407d7b8e1ae9308867da593d7daec698c6021234d1af68874d11cb8b04d8d5d0b08b6b74eecf2bd36bbe666301456e4e4e7d9c86c6df0b7bf8892a24a6789140b1d2a2b60b256"}]}]}]}, @typed={0xc, 0x2, 0x0, 0x0, @u64}]}, 0x130}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

11m36.053078443s ago: executing program 4 (id=131):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000240)='./binderfs/binder0\x00', 0x2, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000200)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x8, 0x0, &(0x7f0000000400)=[@increfs], 0x0, 0x0, 0x0})
r2 = dup3(r1, r0, 0x0)
r3 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000000)='./binderfs/binder0\x00', 0x802, 0x0)
mmap$binder(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1, 0x11, r3, 0x10000000000)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r3, 0x4018620d, &(0x7f0000000040)={0x73622a85, 0x10a})
ioctl$BINDER_WRITE_READ(r2, 0xc0306201, &(0x7f00000003c0)={0x8, 0x0, &(0x7f0000000340)=[@acquire], 0xb, 0x0, 0x0})
ioctl$BINDER_WRITE_READ(r0, 0xc0306201, &(0x7f00000001c0)={0x4c, 0x0, &(0x7f0000000100)=[@transaction_sg={0x40486311, {0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x1000}], 0x0, 0x0, 0x0})
r4 = openat$binder_debug(0xffffffffffffff9c, &(0x7f0000000180)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0)
read$FUSE(r4, &(0x7f0000005180)={0x2020}, 0x2020)

11m33.282143395s ago: executing program 4 (id=135):
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000e40)=ANY=[@ANYRES32=r0, @ANYRES32=<r2=>r1, @ANYBLOB="0200000002"], 0x10)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x18, 0x3, &(0x7f0000000d00)=ANY=[@ANYBLOB="180000000000000000000000000000009500160000000000"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r4 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000001c0)='task_newtask\x00', r3}, 0x10)
r5 = bpf$ITER_CREATE(0xb, &(0x7f0000000100)={r4}, 0x8)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000240)={0x0, 0xffffffffffffffff, 0x0, 0x7, &(0x7f0000000000)='cgroup\x00'}, 0x30)
close(r5)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x9, 0x4, &(0x7f0000000280)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_sock, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x70)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000680)=ANY=[@ANYRES32=r6, @ANYRES32=r2, @ANYBLOB="0200000006"], 0x10)

11m32.92885895s ago: executing program 4 (id=140):
r0 = socket(0x1e, 0x4, 0x0)
socket(0x1e, 0x2, 0x0)
setsockopt$packet_tx_ring(r0, 0x10f, 0x87, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x6, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000180)='./file1\x00', 0x50, &(0x7f0000000280)={[{@usrquota}, {}, {@nobh}, {@mblk_io_submit}, {@dioread_nolock}]}, 0x1, 0x3f5, &(0x7f0000001380)="$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")
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000000), 0x208e24b)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x28011, r1, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x9)
ioctl$sock_inet6_tcp_SIOCINQ(0xffffffffffffffff, 0x541b, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
openat$tun(0xffffffffffffff9c, 0x0, 0x4a6bd1891505f551, 0x0)

11m30.232716958s ago: executing program 4 (id=146):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x50)
prlimit64(0x0, 0xe, &(0x7f0000000180)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x0, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x6, 0x12, r1, 0x0)
r2 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r2, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/74, 0x328000, 0x1000}, 0x1c)

10m8.803859963s ago: executing program 0 (id=343):
socket$kcm(0x2b, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x5)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r3 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000380), 0x109000, 0x0)
ioctl$FBIO_WAITFORVSYNC(r3, 0x40044620, 0x0)

10m6.928300036s ago: executing program 0 (id=345):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f00000001c0)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x6770c000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000100)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000008c80)=ANY=[@ANYBLOB="2c00000026000506"], 0x2c}}, 0x0)

10m3.467036418s ago: executing program 0 (id=351):
ioctl$FIDEDUPERANGE(0xffffffffffffffff, 0xc0189436, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000180)=0x4)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x0, 0x0})
sched_setaffinity(0x0, 0xffffffffffffff1a, &(0x7f0000000200)=0x400000bce)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r0, &(0x7f0000019680)=""/102392, 0x18ff8)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
setsockopt(r1, 0x84, 0x81, 0x0, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r1, 0x84, 0x64, &(0x7f0000000000)=[@in6={0xa, 0x4e23, 0x401, @loopback}], 0x1c)
sendto$inet6(r1, &(0x7f0000000100)="b8", 0xffe0, 0x2000c851, &(0x7f0000000140)={0xa, 0x4e23, 0x0, @loopback, 0xffffffff}, 0x1c)

9m58.813775939s ago: executing program 0 (id=361):
syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000500)='./bus\x00', 0x10418, &(0x7f0000000040)=ANY=[@ANYRES8=0x0, @ANYRESOCT=0x0], 0xfe, 0x4b1, &(0x7f0000001d00)="$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")
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000e00000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x31)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000680)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
r3 = getpid()
sendmsg$unix(r1, &(0x7f0000001380)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=[@cred={{0x1c, 0x1, 0x2, {r3, 0xee00, 0xee01}}}, @rights={{0x14, 0x1, 0x1, [r2]}}], 0x38, 0x1c18345e2b4f02ff}, 0x20020014)
recvmsg(r2, 0x0, 0x100)
r4 = fsopen(0x0, 0x0)
fsconfig$FSCONFIG_CMD_CREATE(r4, 0x6, 0x0, 0x0, 0x0)
fsmount(r4, 0x0, 0x1)
r5 = open(&(0x7f00000003c0)='.\x00', 0x100, 0x97)
getdents(r5, &(0x7f0000001fc0)=""/184, 0xb8)

9m57.361907161s ago: executing program 0 (id=365):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SG_IO(r0, 0x2285, 0x0)
r1 = fcntl$dupfd(r0, 0x0, r0)
write$sndseq(r1, &(0x7f0000000180)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @quote}], 0x38)
write$sndseq(r1, &(0x7f0000000200)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @time=@time}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw8={"448cc880fe353ca0f2c2e953"}}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @connect}], 0xc4)
write$sndseq(r1, &(0x7f0000000640)=[{0x0, 0x0, 0x0, 0x0, @tick, {}, {0x8}, @ext={0x0, 0x0}}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @addr}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @raw32}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control={0x6, 0x7fff, 0x8}}, {0x0, 0x0, 0x0, 0x0, @time={0xffffff81}, {}, {}, @time=@time}], 0xc4)
r2 = syz_io_uring_setup(0x8d2, &(0x7f00000000c0)={0x0, 0x0, 0x3010}, &(0x7f0000000040)=<r3=>0x0, &(0x7f0000000080)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000200)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r2, 0x47ba, 0x3e80, 0x0, 0x0, 0x0)

9m51.306279504s ago: executing program 0 (id=377):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x2}}]}, &(0x7f00000002c0)=0x10)
getsockopt$bt_hci(r3, 0x84, 0x0, &(0x7f0000000080)=""/4076, &(0x7f0000000040)=0xfec)

9m48.519618753s ago: executing program 32 (id=377):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r3 = socket$inet6(0xa, 0x805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r3, 0x84, 0x6f, &(0x7f0000000080)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private1={0xfc, 0x1, '\x00', 0x2}}]}, &(0x7f00000002c0)=0x10)
getsockopt$bt_hci(r3, 0x84, 0x0, &(0x7f0000000080)=""/4076, &(0x7f0000000040)=0xfec)

7m52.846790014s ago: executing program 1 (id=615):
socket$nl_netfilter(0x10, 0x3, 0xc)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r0, 0x6, 0x13, &(0x7f0000000040)=0x100000001, 0x4)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @empty}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r0, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TCP_REPAIR_QUEUE(r0, 0x6, 0x14, &(0x7f0000000400)=0x1, 0x4)
sendmsg$NFNL_MSG_CTHELPER_NEW(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000000)=ANY=[], 0x14}, 0x1, 0x0, 0x0, 0x10}, 0x20004000)
setsockopt$inet6_tcp_TLS_TX(r0, 0x11a, 0x2, &(0x7f0000000140)=@gcm_128={{0x304}, "8ecb9fd37029e0d3", "0f7c519aa5d0b5973bbc4d89f08cfb8d", '\x00', "9d39072ef1c79af5"}, 0x28)
socket$inet6_udplite(0xa, 0x2, 0x88)
socket(0x2, 0x80805, 0x0)
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
socket$packet(0x11, 0x2, 0x300)
socket$packet(0x11, 0x2, 0x300)
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

7m51.908101501s ago: executing program 1 (id=620):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000a80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001d40)={&(0x7f00000009c0)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, r1, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
ptrace(0x10, r5)
waitid(0x2, 0x0, 0x0, 0x4, 0x0)

7m50.535942382s ago: executing program 1 (id=622):
splice(0xffffffffffffffff, 0x0, 0xffffffffffffffff, 0x0, 0x2, 0xc)
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r0)
socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty}, 0x1c)
listen(r0, 0x9)
r1 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x65, &(0x7f0000000080), 0x4)
sendmmsg(r1, &(0x7f0000002840)=[{{0x0, 0x0, 0x0}}], 0x1, 0x20044000)
connect$inet(r1, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000740), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_ADD_ADDR(r2, &(0x7f0000000a80)={0x0, 0x0, &(0x7f0000000a40)={&(0x7f0000000980)=ANY=[@ANYBLOB="84000000", @ANYRES16=r3, @ANYBLOB="010000000000fbdbdf250100000008000200000000000500050000000000080003000100000048000180050002002000000006000100020000000800060003000000080003"], 0x84}}, 0x20000000)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r2, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000004c0)={0x14, r3, 0x1, 0x70bd2c, 0x25dfdbff}, 0x14}, 0x1, 0x0, 0x0, 0x20000800}, 0x800)

7m50.089262811s ago: executing program 1 (id=625):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f00000000c0)='./file0\x00', 0x845, &(0x7f0000000340)={[{@uni_xlateno}, {@shortname_winnt}, {@shortname_lower}, {@shortname_win95}, {@fat=@discard}, {@numtail}, {@fat=@check_strict}, {@shortname_mixed}, {@shortname_winnt}, {@rodir}, {@shortname_win95}, {@uni_xlate}, {@fat=@flush}]}, 0x0, 0x274, &(0x7f0000000780)="$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")
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000200)='mounts\x00')
mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x100000, 0x0)
lseek(r0, 0x2, 0xc)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r1, 0x0, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
mount$bind(&(0x7f0000000500)='./file0\x00', &(0x7f0000000180)='./file0\x00', 0x0, 0x1333404, 0x0)
mount$bind(&(0x7f0000000300)='./file0\x00', &(0x7f0000000100)='./file0\x00', 0x0, 0x11080, 0x0)
mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0)
read$FUSE(r0, &(0x7f0000002140)={0x2020}, 0x2100)
syz_read_part_table(0x5c3, &(0x7f00000005c0)="$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")

7m47.686292456s ago: executing program 1 (id=629):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
bind$inet(r0, &(0x7f0000000000)={0x2, 0x4e23, @private=0xa010100}, 0x10)
r1 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r1, &(0x7f0000000100)={0x26, 'hash\x00', 0x0, 0x0, 'poly1305\x00'}, 0x58)
r2 = accept4(r1, 0x0, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x2)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x0)
sendmsg$alg(r2, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008cc0)=[{&(0x7f0000008a40)="7c72bf03f7d9c0fd0826786ffcfb99e55c1272594d5be5c7f1de9562bbf652", 0x1f}, {&(0x7f0000008c80)="9d", 0x7fffefe1}], 0x2}, 0x0)

7m46.394281662s ago: executing program 1 (id=632):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)={[{@fmask={'fmask', 0x3d, 0x4}}, {@utf8}, {@umask={'umask', 0x3d, 0x75b}}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp864'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f00000000c0)={0x84, @empty, 0x1d, 0x3, 'sh\x00', 0x30, 0x4, 0x75}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f0000000000)={{0x84, @broadcast, 0x4e21, 0x3, 'fo\x00', 0x11, 0x3240, 0x3a}, {@loopback, 0x4e23, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)

7m45.84588919s ago: executing program 33 (id=632):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000200)={[{@fmask={'fmask', 0x3d, 0x4}}, {@utf8}, {@umask={'umask', 0x3d, 0x75b}}, {@iocharset={'iocharset', 0x3d, 'cp936'}}, {@iocharset={'iocharset', 0x3d, 'iso8859-14'}}, {@dmask}, {@gid}, {@dmask={'dmask', 0x3d, 0x1}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'cp864'}}]}, 0x1, 0x152f, &(0x7f00000037c0)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
r3 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r3, 0x0, 0x482, &(0x7f00000000c0)={0x84, @empty, 0x1d, 0x3, 'sh\x00', 0x30, 0x4, 0x75}, 0x2c)
setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f0000000000)={{0x84, @broadcast, 0x4e21, 0x3, 'fo\x00', 0x11, 0x3240, 0x3a}, {@loopback, 0x4e23, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)

13.086096763s ago: executing program 5 (id=1395):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
getsockopt$inet_opts(0xffffffffffffffff, 0x0, 0xd, 0x0, 0x0)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0/file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[], 0x48)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$sock_TIOCINQ(r3, 0x541b, 0x0)
open_tree(0xffffffffffffff9c, &(0x7f00000001c0)='./cgroup.cpu/cgroup.procs\x00', 0x900)
syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
removexattr(&(0x7f0000000040)='./cgroup.cpu/cgroup.procs\x00', &(0x7f0000000280)=@known='user.incfs.id\x00')
poll(0x0, 0x0, 0x5)

9.655195168s ago: executing program 5 (id=1398):
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f00000000c0)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f07ebbeea, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$inet6(0xa, 0x3, 0x7)
r3 = socket$inet(0xa, 0x801, 0x84)
bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x40, 0x40, 0x2, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x3, 0x3}}, @int={0x0, 0x0, 0x0, 0x1, 0x5, 0x20}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x2}}]}}, 0x0, 0x5a, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x20)
preadv(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
ppoll(0x0, 0x0, 0x0, 0x0, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040ed50004"], 0x11)
accept4(r3, 0x0, 0x0, 0x0)

8.219210666s ago: executing program 2 (id=1399):
syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000340)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(0xffffffffffffffff, 0x0, 0x0)
r3 = syz_io_uring_setup(0x10d, &(0x7f00000001c0)={0x0, 0x5885, 0x80, 0x0, 0x3d}, &(0x7f0000000240)=<r4=>0x0, &(0x7f0000000280)=<r5=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r4, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r4, r5, &(0x7f00000002c0)=@IORING_OP_WRITE={0x17, 0x1, 0x4007, @fd=r1, 0x9, 0x0, 0x0, 0x4, 0x1})
io_uring_enter(r3, 0x3516, 0x0, 0x1000000000000, 0x0, 0x0)

8.153352403s ago: executing program 3 (id=1400):
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
prctl$PR_TASK_PERF_EVENTS_ENABLE(0x20)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
setrlimit(0x8, &(0x7f0000000000)={0x2, 0x3})
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r0 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r0, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
r1 = syz_usbip_server_init(0x1)
r2 = openat$apparmor_thread_current(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0)
write$apparmor_current(r2, &(0x7f0000000040)=@profile={'stack ', ':\x00'}, 0x8)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
r4 = syz_init_net_socket$llc(0x1a, 0x801, 0x0)
syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000000)='./bus\x00', 0x4490, &(0x7f0000000500)=ANY=[@ANYBLOB="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"], 0x1, 0x216, &(0x7f0000000e00)="$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")
connect$llc(r4, &(0x7f0000000340)={0x1a, 0x0, 0x0, 0x0, 0x0, 0x0, @random="48bd00"}, 0x10)
io_uring_enter(r1, 0x20f9, 0xc01c, 0x0, &(0x7f0000000040)={[0x1b]}, 0x8)
setsockopt$inet_int(r3, 0x0, 0x19, 0x0, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0xa00000, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

6.461116082s ago: executing program 5 (id=1401):
sendmsg$inet(0xffffffffffffffff, 0x0, 0x860)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000001800ff0f0000000000000000850000006d000000850000000800000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x7, 0x100}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = syz_io_uring_setup(0x10d, &(0x7f0000000140)={0x0, 0xc8c7}, &(0x7f0000000340)=<r5=>0x0, &(0x7f00000002c0)=<r6=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r5, 0x4, &(0x7f0000000080)=0xfffffffc, 0x0, 0x4)
syz_io_uring_submit(r5, r6, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x2, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000003c0)='./file0\x00', 0x400, 0x2000, 0x1})
io_uring_enter(r4, 0x47f9, 0x0, 0x0, 0x0, 0x0)

6.460347046s ago: executing program 2 (id=1412):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(0x0, r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, 0x0)
bind$alg(0xffffffffffffffff, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000640)=0x6)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
setsockopt$inet_sctp_SCTP_AUTH_KEY(0xffffffffffffffff, 0x84, 0x17, &(0x7f00000002c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="03003b00feabe1b138b1530a628dc7f3ada44348367ca9329103d6e7decbe91a79d8"], 0x43)
ioctl$VIDIOC_SUBDEV_ENUM_FRAME_SIZE(0xffffffffffffffff, 0xc040564a, &(0x7f0000000340)={0x0, 0x0, 0x3013})
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sched_setaffinity(0x0, 0x8, &(0x7f0000000280)=0x2)
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r4, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)

6.12975606s ago: executing program 3 (id=1402):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0x5, &(0x7f00000006c0)=ANY=[@ANYBLOB="18020000000000000000000000000000850000005300000085000000080000009500"], 0x0, 0x4, 0xc0, &(0x7f0000000140)=""/192, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{}, &(0x7f0000000240), &(0x7f0000000280)=r4}, 0x20)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{}, &(0x7f0000000200), &(0x7f0000000240)=r0}, 0x20)

4.980438123s ago: executing program 5 (id=1403):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
listen(r0, 0x0)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000000)={0x10, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18020000004000000000000000000000850000007a00000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000023c0)=ANY=[@ANYBLOB="1200000004000000080000000b"], 0x48)
bpf$BPF_PROG_DETACH(0x8, &(0x7f0000000740)=ANY=[@ANYRES32=r5, @ANYRES32=r4, @ANYBLOB='\a'], 0x10)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000500)={r5, &(0x7f0000000240), &(0x7f00000004c0)=@tcp6=r0}, 0x20)
sendmmsg$inet6(r0, &(0x7f0000000b00)=[{{0x0, 0x0, 0x0}}, {{0x0, 0x0, &(0x7f0000000300)=[{&(0x7f0000000ac0)="01", 0xfffffe9c}], 0x1}}], 0x2, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

4.183459136s ago: executing program 2 (id=1404):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000b80)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000140)={<r1=>0xffffffffffffffff})
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000400)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
sendmsg$inet(r3, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r2, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000080), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$inet(r5, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg$unix(r4, &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000900), 0x100}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000040)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff})
sendmsg$inet(r7, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[], 0x128}, 0x0)
recvmsg(r6, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001dc0)=""/4096, 0x1000}, 0x0)
bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000240)={r0, 0x58, &(0x7f00000001c0)={0x0, <r8=>0x0}}, 0x10)
bpf$BPF_MAP_GET_FD_BY_ID(0xe, &(0x7f0000000780)={r8, 0x7f, 0x10}, 0xc)

4.066082109s ago: executing program 3 (id=1405):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
shutdown(r0, 0x1)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000800000000bf91000000000000b702000043e7b5538500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10)
ppoll(&(0x7f0000000500)=[{r1}], 0x1, 0x0, 0x0, 0x0)
socket$inet_tcp(0x2, 0x1, 0x0)
r3 = epoll_create1(0x0)
r4 = socket$unix(0x1, 0x1, 0x0)
close(r4)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r5, 0x6, 0x13, &(0x7f0000000000)=0x100000001, 0x4)
connect$inet6(r5, &(0x7f0000000200)={0xa, 0x0, 0x0, @ipv4={'\x00', '\xff\xff', @dev}}, 0x1c)
setsockopt$inet6_tcp_TCP_ULP(r5, 0x6, 0x1f, &(0x7f00000000c0), 0x4)
setsockopt$inet6_tcp_TLS_TX(r5, 0x11a, 0x2, &(0x7f0000000180)=@gcm_256={{0x303}, "c4915c7f49541ce8", "9b84f987950ff3df25fa8f46983d34157e047d27ae4a66a6d15608a32cbaa5bc", '\x00', "be0ea450d5a50003"}, 0x38)
setsockopt$sock_int(r4, 0x1, 0x2e, &(0x7f0000000040)=0x7c, 0x4)
epoll_ctl$EPOLL_CTL_ADD(r3, 0x1, r4, &(0x7f0000000080)={0xa002a008})
pselect6(0x40, &(0x7f00000001c0)={0x0, 0x0, 0x3, 0xfffffffffffffffd}, 0x0, &(0x7f00000002c0)={0x3ff, 0x0, 0x0, 0x9, 0x0, 0x0, 0x7fffffff}, 0x0, 0x0)

2.982074988s ago: executing program 3 (id=1406):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
accept4$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r3 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000300)='rcu_utilization\x00', r3}, 0x10)
r4 = socket$inet_udp(0x2, 0x2, 0x0)
bind$inet(r4, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10)
r5 = add_key$keyring(&(0x7f00000001c0), &(0x7f0000000240)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe)
r6 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000040)={'syz', 0x1}, 0x0, 0x0, r5)
keyctl$KEYCTL_MOVE(0x1e, r5, r5, r6, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)

2.914354876s ago: executing program 2 (id=1408):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000040)={0xc, 0x0, <r1=>0x0})
ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f00000000c0)={0x48, 0x2, r1})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
syz_open_dev$tty1(0xc, 0x4, 0x1)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x1, &(0x7f0000000380)=[{0x6, 0x0, 0x0, 0x7fffffff}]})
r3 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DMA_HEAP_IOCTL_ALLOC(r3, 0xc0184800, &(0x7f0000000100)={0x4004, r2, 0x2})
prlimit64(0x0, 0xe, &(0x7f00000007c0)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
prctl$PR_SCHED_CORE(0x3e, 0x1, 0x0, 0x2, 0x0)
openat$sequencer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
r4 = syz_open_dev$sndmidi(&(0x7f00000004c0), 0x2, 0x141102)
writev(r4, &(0x7f0000000840)=[{&(0x7f00000002c0)="94", 0xf000}, {0x0}], 0x2)
openat$cuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
pselect6(0x40, &(0x7f0000000000)={0x0, 0x40000000002, 0xbc, 0x8000e, 0x2, 0x0, 0x100, 0x10001000}, 0x0, &(0x7f00000002c0)={0x3ff, 0x6, 0x0, 0x4, 0x2, 0x0, 0x2, 0x7}, 0x0, 0x0)
ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, 0x0)
close(r0)

2.614842841s ago: executing program 5 (id=1409):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, 0x0, 0x0, 0x2, 0x0, 0x0, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x37, @void, @value}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_READ(0xffffffffffffffff, 0xc2c45512, 0x0)
umount2(&(0x7f0000000340)='./file0\x00', 0x0)
setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x0, 0x40, &(0x7f0000000380)=@raw={'raw\x00', 0x8, 0x3, 0x268, 0x0, 0x11, 0x148, 0x0, 0x10, 0x20c, 0x2a8, 0x2a8, 0x20c, 0x2a8, 0xac, 0x0, {[{{@ip={@multicast2, @multicast2, 0x0, 0x0, 'veth1_vlan\x00', 'sit0\x00'}, 0x10, 0xb8, 0x100, 0x1c, {}, [@common=@unspec=@helper={{0x48}, {0x0, 'irc-20000\x00'}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@local, 'ip6gre0\x00', {0x2}}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@SET={0x60, 'SET\x00', 0x0, {{0xffffffffffffffff, [0x2, 0x0, 0x5, 0x7, 0x6, 0x1], 0x5, 0x3}, {0x3, [0x2, 0x2, 0x3, 0x6, 0x2, 0x3], 0x2, 0x3}}}}], {{'\x00', 0xc8, 0x70, 0x98}, {0x28}}}}, 0x2c8)
syz_emit_ethernet(0x2a, &(0x7f0000001800)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x86dd, @icmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @address_reply}}}}, 0x0)
sendmsg$netlink(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000001c0)={0x114, 0x2d, 0x101, 0x0, 0x0, "", [@nested={0x104, 0x0, 0x0, 0x1, [@typed={0xc, 0x11, 0x0, 0x0, @u64=0x8000000000000000}, @typed={0x14, 0x1, 0x0, 0x0, @ipv6=@loopback={0x100000000000}}, @generic="50bb2d6f67d29d6fabadb107d0def49c88ea04abde1d5e8d3fb22a1b5046778bdafefc46b0449ade68bf84b36ec72dd71265fc2e882348c26c2126237dd5b37f5ae655b1086cda40e00aec58754734be31d750351dc076eb43d9621dc08c029d1608a487f26fbe816b89f7cb81bff81a8b9482565856555ee923c65973deb0a99b962bc0fe94a3fcae3697bd7b85b3a682167c43dbf137115a40ebddcad74875ec58e9a3ddb9ad02a078cf0d972df9e99f079767734f69ce475f55ac64337803f5eb4e5842f4d98fe3fa370d47eb640dc5061dc35817c8a66c29be82fd3f8cd1"]}]}, 0x114}], 0x1}, 0x0)

1.9715769s ago: executing program 3 (id=1410):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000480)=@abs={0x0, 0x0, 0x8004e24}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffff05850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback=0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r3}, 0x10)
r4 = socket$inet_tcp(0x2, 0x1, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='cgroup.controllers\x00', 0x275a, 0x0)
connect$inet(r4, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10)
setsockopt$inet_tcp_TCP_REPAIR_OPTIONS(r4, 0x6, 0x16, &(0x7f0000000400)=[@sack_perm, @timestamp, @timestamp, @mss={0x2, 0x4}, @timestamp], 0x5)
sendto$inet(r4, 0x0, 0x0, 0x0, 0x0, 0x0)
recvfrom$inet(r4, &(0x7f0000000080)=""/8, 0xfffffffffffffd0b, 0x700, 0x0, 0xfffffffffffffd25)

1.964560115s ago: executing program 2 (id=1421):
setsockopt$inet_tcp_int(0xffffffffffffffff, 0x6, 0x80000000000002, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
r1 = openat$ocfs2_control(0xffffffffffffff9c, &(0x7f00000000c0), 0x24001, 0x0)
openat$incfs(r1, &(0x7f00000002c0)='.pending_reads\x00', 0x4000, 0x24)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
syz_init_net_socket$llc(0x1a, 0x2, 0x0)
sendmmsg$unix(r3, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000400)='rcu_utilization\x00', r4, 0x0, 0x1}, 0x18)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
r5 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r5, &(0x7f00000032c0)=[{&(0x7f0000002e40)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1}], 0x1, 0x0)

1.972277ms ago: executing program 5 (id=1411):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x102}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0xfffffffe}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
bpf$BPF_TASK_FD_QUERY(0x14, &(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff, 0x0, 0x2c, &(0x7f0000000000)='/proc/sys/\x00et/\x00\x00v4\x00\x00s/\x92ync_\x00le\xf44\x8cm\xa0\x8dN\xd4\xa2\x88\x00\xd1l*'}, 0x30)
r4 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
fchdir(r4)
r5 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x120)
getdents64(r5, &(0x7f0000000080)=""/203, 0xcb)

779.524µs ago: executing program 2 (id=1423):
socket$inet6_sctp(0xa, 0x1, 0x84)
sendmmsg$inet(0xffffffffffffffff, &(0x7f0000002ac0)=[{{0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000001080)="112ddc9ebf537d5f468b3aaf17a5c447e8d4a7ba74ba68adb592e118c8ac9219f2af416789855c9514", 0x29}], 0x1}}], 0x1, 0x4000001)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001180)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000000000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x2, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sched_switch\x00', r0}, 0x10)
fremovexattr(0xffffffffffffffff, &(0x7f0000000ec0)=@known='trusted.overlay.opaque\x00')
prlimit64(0x0, 0xe, &(0x7f0000001040)={0x8, 0x88}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000240)=0x7)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000000)=0x6)
write$UHID_INPUT(0xffffffffffffffff, &(0x7f0000000000)={0x12, {"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", 0x1000}}, 0x1006)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
connect$inet(0xffffffffffffffff, &(0x7f0000000280)={0x2, 0x0, @broadcast}, 0x10)

0s ago: executing program 3 (id=1413):
socket$netlink(0x10, 0x3, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xf, &(0x7f0000000200)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x25, 0xa, 0x0, 0x0, 0x1800, 0x61, 0x11, 0x70}, [@initr0]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x1b, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x26, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xa, 0x101, 0x7fff, 0xcc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)

kernel console output (not intermixed with test programs):

_slave_1
[  407.005302][ T1136] veth1_macvtap: left promiscuous mode
[  407.031284][ T1136] veth0_macvtap: left promiscuous mode
[  407.037259][ T1136] veth1_vlan: left promiscuous mode
[  407.052837][ T1136] veth0_vlan: left promiscuous mode
[  407.716229][ T8566] loop5: detected capacity change from 0 to 256
[  407.769522][ T8566] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xc65ab44c, utbl_chksum : 0xe619d30d)
[  407.783320][ T8566] exFAT-fs (loop5): error, invalid access to FAT free cluster (entry 0x00000005)
[  407.792541][ T8566] exFAT-fs (loop5): failed to initialize root inode
[  408.820975][ T5838] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  408.830384][ T5838] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  408.838760][ T5838] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  408.846900][ T5838] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  408.854987][ T5838] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  410.780701][ T8587] loop3: detected capacity change from 0 to 1764
[  410.962778][ T5846] Bluetooth: hci5: command tx timeout
[  413.452480][ T5846] Bluetooth: hci5: command tx timeout
[  414.812234][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  415.029493][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  415.168674][ T8612] loop5: detected capacity change from 0 to 1024
[  415.331191][ T8612] syz.5.685: attempt to access beyond end of device
[  415.331191][ T8612] loop5: rw=34817, sector=5778, nr_sectors = 2 limit=1024
[  415.358740][ T8612] syz.5.685: attempt to access beyond end of device
[  415.358740][ T8612] loop5: rw=34817, sector=0, nr_sectors = 2053 limit=1024
[  415.378418][ T8612] syz.5.685: attempt to access beyond end of device
[  415.378418][ T8612] loop5: rw=34817, sector=2053, nr_sectors = 507 limit=1024
[  415.522587][ T5846] Bluetooth: hci5: command tx timeout
[  417.633990][ T5846] Bluetooth: hci5: command tx timeout
[  418.249457][ T8604] netlink: 32 bytes leftover after parsing attributes in process `syz.2.683'.
[  418.259406][ T8604] netlink: 32 bytes leftover after parsing attributes in process `syz.2.683'.
[  419.986129][ T8417] bridge0: port 1(bridge_slave_0) entered blocking state
[  420.032190][ T8417] bridge0: port 1(bridge_slave_0) entered disabled state
[  420.051567][ T8417] bridge_slave_0: entered allmulticast mode
[  420.062199][ T8417] bridge_slave_0: entered promiscuous mode
[  420.121656][ T8417] bridge0: port 2(bridge_slave_1) entered blocking state
[  420.149942][ T8417] bridge0: port 2(bridge_slave_1) entered disabled state
[  420.170202][ T8417] bridge_slave_1: entered allmulticast mode
[  420.212848][ T8417] bridge_slave_1: entered promiscuous mode
[  422.318960][ T8442] bridge0: port 1(bridge_slave_0) entered blocking state
[  422.326911][ T8442] bridge0: port 1(bridge_slave_0) entered disabled state
[  422.334749][ T8442] bridge_slave_0: entered allmulticast mode
[  422.345387][ T8442] bridge_slave_0: entered promiscuous mode
[  422.415917][ T8417] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  422.434342][ T8442] bridge0: port 2(bridge_slave_1) entered blocking state
[  422.450724][ T8442] bridge0: port 2(bridge_slave_1) entered disabled state
[  422.458577][ T8442] bridge_slave_1: entered allmulticast mode
[  422.471137][ T8442] bridge_slave_1: entered promiscuous mode
[  422.484512][ T8417] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  422.677665][ T8442] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  422.768021][ T8417] team0: Port device team_slave_0 added
[  422.780444][ T8417] team0: Port device team_slave_1 added
[  422.825490][ T8417] batman_adv: batadv0: Adding interface: batadv_slave_0
[  422.847556][ T8417] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  422.914770][ T8417] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  422.968671][ T8442] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  423.030876][ T8417] batman_adv: batadv0: Adding interface: batadv_slave_1
[  423.119651][ T8417] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  423.596347][ T8417] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  425.243988][ T8442] team0: Port device team_slave_0 added
[  426.622041][ T8417] hsr_slave_0: entered promiscuous mode
[  426.629381][ T8417] hsr_slave_1: entered promiscuous mode
[  426.646025][ T8417] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  426.660676][ T8417] Cannot create hsr debugfs directory
[  426.676126][ T8442] team0: Port device team_slave_1 added
[  428.360600][ T8442] batman_adv: batadv0: Adding interface: batadv_slave_0
[  428.368394][ T8442] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  428.402816][ T8442] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  428.438253][ T8570] chnl_net:caif_netlink_parms(): no params data found
[  429.410665][ T8442] batman_adv: batadv0: Adding interface: batadv_slave_1
[  429.442498][ T8442] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  429.502459][ T8442] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  430.869425][ T8442] hsr_slave_0: entered promiscuous mode
[  431.388957][ T8442] hsr_slave_1: entered promiscuous mode
[  431.418945][ T8442] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  431.443814][ T8442] Cannot create hsr debugfs directory
[  432.830230][ T8570] bridge0: port 1(bridge_slave_0) entered blocking state
[  432.837670][   T30] kauditd_printk_skb: 18 callbacks suppressed
[  432.837687][   T30] audit: type=1326 audit(1746731952.257:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  432.867959][ T8570] bridge0: port 1(bridge_slave_0) entered disabled state
[  432.875585][ T8570] bridge_slave_0: entered allmulticast mode
[  432.885797][ T8570] bridge_slave_0: entered promiscuous mode
[  432.892501][   T30] audit: type=1326 audit(1746731952.257:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  432.947652][   T30] audit: type=1326 audit(1746731952.257:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  432.997752][   T30] audit: type=1326 audit(1746731952.257:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  433.048939][   T30] audit: type=1326 audit(1746731952.257:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  433.082076][   T30] audit: type=1326 audit(1746731952.257:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  433.280081][ T8570] bridge0: port 2(bridge_slave_1) entered blocking state
[  433.288740][ T8570] bridge0: port 2(bridge_slave_1) entered disabled state
[  433.290026][   T30] audit: type=1326 audit(1746731952.257:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  433.297169][ T8570] bridge_slave_1: entered allmulticast mode
[  433.329505][ T8570] bridge_slave_1: entered promiscuous mode
[  433.336023][   T30] audit: type=1326 audit(1746731952.257:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  434.033944][   T30] audit: type=1326 audit(1746731952.257:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  434.062038][   T30] audit: type=1326 audit(1746731952.277:329): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8737 comm="syz.2.716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd7c338e969 code=0x7ffc0000
[  435.379653][ T8570] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  435.427740][ T8570] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  435.459911][ T8760] loop5: detected capacity change from 0 to 1024
[  435.699775][ T8570] team0: Port device team_slave_0 added
[  435.798279][ T8570] team0: Port device team_slave_1 added
[  438.038031][ T8570] batman_adv: batadv0: Adding interface: batadv_slave_0
[  438.045680][ T8570] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  438.072190][ T8570] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  438.206973][ T1136] bridge_slave_1: left allmulticast mode
[  438.483459][ T1136] bridge_slave_1: left promiscuous mode
[  438.513662][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.636834][ T1136] bridge_slave_0: left allmulticast mode
[  438.648382][ T1136] bridge_slave_0: left promiscuous mode
[  438.656162][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  438.674138][ T1136] bridge_slave_1: left allmulticast mode
[  438.680798][ T1136] bridge_slave_1: left promiscuous mode
[  438.694508][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  438.730367][ T1136] bridge_slave_0: left allmulticast mode
[  438.749008][ T1136] bridge_slave_0: left promiscuous mode
[  438.768454][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  439.416526][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  439.423067][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  440.614274][ T8805] loop3: detected capacity change from 0 to 1024
[  440.623173][ T8805] journal_path: Non-blockdev passed as './file0'
[  440.629647][ T8805] EXT4-fs: error: could not find journal device path
[  442.713126][ T5896] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[  442.892609][ T5896] usb 6-1: Using ep0 maxpacket: 32
[  443.017910][ T5896] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  443.032026][ T5896] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  443.059509][ T5896] usb 6-1: New USB device found, idVendor=17ef, idProduct=6062, bcdDevice= 0.00
[  443.073064][ T5896] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  443.079609][ T8821] loop3: detected capacity change from 0 to 1024
[  443.089090][ T5896] usb 6-1: config 0 descriptor??
[  443.103619][ T8821] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem
[  443.113205][ T8821] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  443.124524][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  443.134102][ T8821] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (59422!=20869)
[  443.144464][ T8821] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (16), stripe is disabled
[  443.159045][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  443.170792][ T1136] bond0 (unregistering): Released all slaves
[  443.193129][ T8821] EXT4-fs error (device loop3): __ext4_iget:5025: inode #17: block 1803188595: comm syz.3.739: invalid block
[  443.208910][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  443.218813][ T8821] EXT4-fs (loop3): no journal found
[  443.241829][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  443.255532][ T1136] bond0 (unregistering): Released all slaves
[  443.276957][ T8570] batman_adv: batadv0: Adding interface: batadv_slave_1
[  443.284753][ T8570] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  443.315151][ T8570] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  443.504265][ T1136] hsr_slave_0: left promiscuous mode
[  443.511113][ T1136] hsr_slave_1: left promiscuous mode
[  443.517986][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  443.526717][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  443.541986][ T1136] hsr_slave_0: left promiscuous mode
[  443.549896][ T1136] hsr_slave_1: left promiscuous mode
[  443.556530][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  443.566396][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  443.931100][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  443.987997][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  444.454447][ T8828] capability: warning: `syz.2.745' uses deprecated v2 capabilities in a way that may be insecure
[  444.757859][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  444.804949][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  445.363147][ T8570] hsr_slave_0: entered promiscuous mode
[  445.370020][ T8570] hsr_slave_1: entered promiscuous mode
[  445.400519][ T8570] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  445.420063][ T8570] Cannot create hsr debugfs directory
[  445.476215][ T5896] usbhid 6-1:0.0: can't add hid device: -71
[  445.482303][ T5896] usbhid 6-1:0.0: probe with driver usbhid failed with error -71
[  445.557394][ T5896] usb 6-1: USB disconnect, device number 10
[  446.718695][ T5838] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  446.737839][ T5838] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  446.746747][ T5838] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  446.755241][ T5838] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  446.763537][ T5838] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  447.257119][ T5838] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  447.267664][ T5838] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  447.287026][ T5838] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  447.299399][ T5838] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  447.307605][ T5838] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  448.664799][ T8852] loop3: detected capacity change from 0 to 32768
[  448.812578][ T5846] Bluetooth: hci6: command tx timeout
[  448.828345][ T8852] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  448.879595][ T8852] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  448.879595][ T8852]   allowing incompatible features above 0.0: (unknown version)
[  448.904462][ T8852] bcachefs (loop3): initializing new filesystem
[  448.913511][ T8852] bcachefs (loop3): going read-write
[  448.973643][ T8852] bcachefs (loop3): marking superblocks
[  448.997466][ T8852] bcachefs (loop3): initializing freespace
[  449.005316][ T8852] bcachefs (loop3): done initializing freespace
[  449.015217][ T8852] bcachefs (loop3): reading snapshots table
[  449.021246][ T8852] bcachefs (loop3): reading snapshots done
[  449.135073][ T8852] bcachefs (loop3): done starting filesystem
[  449.373117][ T5838] Bluetooth: hci7: command tx timeout
[  449.460333][ T8852] syz.3.750 (8852) used greatest stack depth: 14568 bytes left
[  449.478179][   T30] kauditd_printk_skb: 46 callbacks suppressed
[  449.478199][   T30] audit: type=1800 audit(1746731968.887:376): pid=8867 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.750" name="file1" dev="loop3" ino=4098 res=0 errno=0
[  449.730180][ T5836] bcachefs (loop3): shutting down
[  449.783497][ T5836] bcachefs (loop3): going read-only
[  449.857730][ T5836] bcachefs (loop3): finished waiting for writes to stop
[  449.903367][ T5836] bcachefs (loop3): flushing journal and stopping allocators, journal seq 5
[  450.040263][ T5836] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 5
[  450.108680][ T5836] bcachefs (loop3): clean shutdown complete, journal seq 6
[  450.176165][ T5836] bcachefs (loop3): marking filesystem clean
[  450.484790][ T5836] bcachefs (loop3): shutdown complete
[  450.800482][ T8570] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  450.849275][ T8838] chnl_net:caif_netlink_parms(): no params data found
[  450.927715][ T8570] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  450.944535][ T5846] Bluetooth: hci6: command tx timeout
[  451.005452][ T8570] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  451.019858][ T8570] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  451.442794][ T5846] Bluetooth: hci7: command tx timeout
[  451.913081][ T8845] chnl_net:caif_netlink_parms(): no params data found
[  452.551592][ T8838] bridge0: port 1(bridge_slave_0) entered blocking state
[  452.561376][ T8838] bridge0: port 1(bridge_slave_0) entered disabled state
[  452.576838][ T8838] bridge_slave_0: entered allmulticast mode
[  452.589183][ T8838] bridge_slave_0: entered promiscuous mode
[  452.607412][ T8838] bridge0: port 2(bridge_slave_1) entered blocking state
[  452.631084][ T8838] bridge0: port 2(bridge_slave_1) entered disabled state
[  452.638689][ T8838] bridge_slave_1: entered allmulticast mode
[  452.650508][ T8838] bridge_slave_1: entered promiscuous mode
[  452.756149][ T8838] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  452.780095][ T8838] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  452.893293][ T8838] team0: Port device team_slave_0 added
[  452.903903][ T8838] team0: Port device team_slave_1 added
[  452.961408][ T8845] bridge0: port 1(bridge_slave_0) entered blocking state
[  452.968658][ T5846] Bluetooth: hci6: command tx timeout
[  452.975818][ T8845] bridge0: port 1(bridge_slave_0) entered disabled state
[  452.983257][ T8845] bridge_slave_0: entered allmulticast mode
[  452.990760][ T8845] bridge_slave_0: entered promiscuous mode
[  453.034896][ T8845] bridge0: port 2(bridge_slave_1) entered blocking state
[  453.042038][ T8845] bridge0: port 2(bridge_slave_1) entered disabled state
[  453.051321][ T8845] bridge_slave_1: entered allmulticast mode
[  453.060059][ T8845] bridge_slave_1: entered promiscuous mode
[  453.071182][ T8838] batman_adv: batadv0: Adding interface: batadv_slave_0
[  453.078749][ T8838] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  453.106878][ T8838] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  453.119701][ T8838] batman_adv: batadv0: Adding interface: batadv_slave_1
[  453.126903][ T8838] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  453.153602][ T8838] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  453.290988][ T8845] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  453.334426][ T8845] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  453.427596][ T8838] hsr_slave_0: entered promiscuous mode
[  453.437130][ T8838] hsr_slave_1: entered promiscuous mode
[  453.444276][ T8838] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  453.451838][ T8838] Cannot create hsr debugfs directory
[  453.464281][ T8845] team0: Port device team_slave_0 added
[  453.535884][ T5846] Bluetooth: hci7: command tx timeout
[  453.566011][ T8845] team0: Port device team_slave_1 added
[  453.716528][ T8845] batman_adv: batadv0: Adding interface: batadv_slave_0
[  453.723925][ T8845] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  453.750443][ T8845] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  453.790024][ T8845] batman_adv: batadv0: Adding interface: batadv_slave_1
[  453.798679][ T8845] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  453.825941][ T8845] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  453.998789][ T8845] hsr_slave_0: entered promiscuous mode
[  454.006083][ T8845] hsr_slave_1: entered promiscuous mode
[  454.014087][ T8845] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  454.022074][ T8845] Cannot create hsr debugfs directory
[  454.291744][ T8570] 8021q: adding VLAN 0 to HW filter on device bond0
[  454.342922][ T1136] bridge_slave_1: left allmulticast mode
[  454.352669][ T1136] bridge_slave_1: left promiscuous mode
[  454.358550][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  454.375258][ T1136] bridge_slave_0: left allmulticast mode
[  454.381077][ T1136] bridge_slave_0: left promiscuous mode
[  454.389353][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  454.412183][ T1136] bridge_slave_1: left allmulticast mode
[  454.419997][ T1136] bridge_slave_1: left promiscuous mode
[  454.432007][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  454.448825][ T1136] bridge_slave_0: left allmulticast mode
[  454.456979][ T1136] bridge_slave_0: left promiscuous mode
[  454.468081][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  454.820277][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  454.843490][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  454.882150][ T1136] bond0 (unregistering): Released all slaves
[  454.923203][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  454.943440][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  454.972643][ T1136] bond0 (unregistering): Released all slaves
[  455.072480][ T5846] Bluetooth: hci6: command tx timeout
[  455.180915][ T8570] 8021q: adding VLAN 0 to HW filter on device team0
[  455.297459][ T1136] hsr_slave_0: left promiscuous mode
[  455.321328][ T1136] hsr_slave_1: left promiscuous mode
[  455.342662][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  455.364836][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  455.388571][ T1136] hsr_slave_0: left promiscuous mode
[  455.404614][ T1136] hsr_slave_1: left promiscuous mode
[  455.410513][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  455.433295][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  455.607088][ T5846] Bluetooth: hci7: command tx timeout
[  455.724412][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  455.786843][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  456.568578][ T8914] loop3: detected capacity change from 0 to 1024
[  456.700923][ T8912] syz.3.759: attempt to access beyond end of device
[  456.700923][ T8912] loop3: rw=34817, sector=5778, nr_sectors = 2 limit=1024
[  456.720463][ T8912] syz.3.759: attempt to access beyond end of device
[  456.720463][ T8912] loop3: rw=34817, sector=0, nr_sectors = 2045 limit=1024
[  456.735283][ T8912] syz.3.759: attempt to access beyond end of device
[  456.735283][ T8912] loop3: rw=34817, sector=2045, nr_sectors = 515 limit=1024
[  459.028184][ T8929] xt_connbytes: Forcing CT accounting to be enabled
[  459.037037][ T8929] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[  460.603932][ T8934] loop3: detected capacity change from 0 to 8192
[  460.614866][ T8934] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  462.119571][ T8942] syz.5.770 (8942): drop_caches: 2
[  462.512941][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  462.624394][ T8952] loop3: detected capacity change from 0 to 16
[  462.659196][ T8952] erofs (device loop3): mounted with root inode @ nid 36.
[  462.712815][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  466.687528][ T1099] bridge0: port 1(bridge_slave_0) entered blocking state
[  466.694753][ T1099] bridge0: port 1(bridge_slave_0) entered forwarding state
[  467.934837][   T13] bridge0: port 2(bridge_slave_1) entered blocking state
[  467.942017][   T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[  472.167378][ T9013] loop3: detected capacity change from 0 to 64
[  472.181441][ T5850] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  472.189408][ T9013] hfs: bad allocation block size 272
[  472.203608][ T5850] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  472.207418][ T9013] hfs: can't find a HFS filesystem on dev loop3
[  472.217737][ T5850] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  472.234486][ T5850] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  472.250269][ T5850] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  473.032521][ T8838] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  473.060487][ T8838] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  473.220040][ T8838] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  474.327893][ T8838] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  474.328560][ T5850] Bluetooth: hci0: command tx timeout
[  474.519344][ T9034] loop3: detected capacity change from 0 to 2048
[  474.780719][ T9037] loop5: detected capacity change from 0 to 40427
[  474.798860][ T9037] F2FS-fs (loop5): invalid crc value
[  474.844656][ T9034] EXT4-fs (loop3): inodes count not valid: 1 vs 32
[  474.927720][ T9037] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  475.318701][ T9051] syz.5.793: attempt to access beyond end of device
[  475.318701][ T9051] loop5: rw=10241, sector=45096, nr_sectors = 8 limit=40427
[  475.523869][ T9052] loop3: detected capacity change from 0 to 128
[  475.599406][ T8838] 8021q: adding VLAN 0 to HW filter on device bond0
[  475.623430][ T8838] 8021q: adding VLAN 0 to HW filter on device team0
[  475.673904][ T8838] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  475.684623][ T8838] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  475.772980][   T36] bridge0: port 1(bridge_slave_0) entered blocking state
[  475.780272][   T36] bridge0: port 1(bridge_slave_0) entered forwarding state
[  475.888572][   T36] bridge0: port 2(bridge_slave_1) entered blocking state
[  475.895856][   T36] bridge0: port 2(bridge_slave_1) entered forwarding state
[  475.905324][ T5832] syz-executor: attempt to access beyond end of device
[  475.905324][ T5832] loop5: rw=2049, sector=45104, nr_sectors = 8 limit=40427
[  475.962665][ T5832] CPU: 0 UID: 0 PID: 5832 Comm: syz-executor Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  475.962707][ T5832] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  475.962723][ T5832] Call Trace:
[  475.962732][ T5832]  <TASK>
[  475.962743][ T5832]  dump_stack_lvl+0x189/0x250
[  475.962792][ T5832]  ? __pfx_dump_stack_lvl+0x10/0x10
[  475.962837][ T5832]  ? __pfx_queue_work_on+0x10/0x10
[  475.962859][ T5832]  ? _raw_spin_unlock_irqrestore+0xad/0x110
[  475.962888][ T5832]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  475.962916][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.962956][ T5832]  f2fs_handle_critical_error+0x37c/0x540
[  475.962993][ T5832]  f2fs_write_end_io+0x4e2/0x6d0
[  475.963040][ T5832]  __submit_merged_bio+0x27a/0x6a0
[  475.963073][ T5832]  __submit_merged_write_cond+0x255/0x530
[  475.963120][ T5832]  f2fs_write_data_pages+0x2854/0x31f0
[  475.963149][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963216][ T5832]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  475.963296][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963323][ T5832]  ? __mod_node_page_state+0xf4/0x170
[  475.963361][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963388][ T5832]  ? lru_gen_update_size+0x7bd/0xd20
[  475.963437][ T5832]  ? folios_put_refs+0x560/0x640
[  475.963476][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963503][ T5832]  ? lru_add+0xa2f/0xd80
[  475.963531][ T5832]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  475.963560][ T5832]  do_writepages+0x3b1/0x7b0
[  475.963611][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963639][ T5832]  ? do_raw_spin_lock+0x121/0x290
[  475.963667][ T5832]  ? __pfx_do_writepages+0x10/0x10
[  475.963702][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963734][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963761][ T5832]  ? do_raw_spin_unlock+0x122/0x240
[  475.963795][ T5832]  filemap_fdatawrite+0x191/0x230
[  475.963837][ T5832]  ? __pfx_filemap_fdatawrite+0x10/0x10
[  475.963917][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.963945][ T5832]  ? do_raw_spin_unlock+0x122/0x240
[  475.963970][ T5832]  f2fs_sync_dirty_inodes+0x31f/0x830
[  475.964008][ T5832]  f2fs_write_checkpoint+0x94a/0x1de0
[  475.964053][ T5832]  ? __pfx_f2fs_write_checkpoint+0x10/0x10
[  475.964118][ T5832]  ? kill_f2fs_super+0x298/0x6c0
[  475.964146][ T5832]  kill_f2fs_super+0x2c3/0x6c0
[  475.964175][ T5832]  ? __pfx_kill_f2fs_super+0x10/0x10
[  475.964195][ T5832]  ? radix_tree_delete_item+0x2b6/0x400
[  475.964222][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.964242][ T5832]  ? shrinker_free+0x2ce/0x3e0
[  475.964263][ T5832]  deactivate_locked_super+0xbc/0x130
[  475.964283][ T5832]  cleanup_mnt+0x425/0x4c0
[  475.964311][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.964331][ T5832]  ? lockdep_hardirqs_on+0x9c/0x150
[  475.964354][ T5832]  task_work_run+0x1d4/0x260
[  475.964382][ T5832]  ? __pfx_task_work_run+0x10/0x10
[  475.964406][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.964435][ T5832]  resume_user_mode_work+0x5e/0x80
[  475.964461][ T5832]  syscall_exit_to_user_mode+0x9a/0x120
[  475.964484][ T5832]  do_syscall_64+0x103/0x210
[  475.964507][ T5832]  ? srso_alias_return_thunk+0x5/0xfbef5
[  475.964527][ T5832]  ? exc_page_fault+0x91/0x110
[  475.964549][ T5832]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  475.964566][ T5832] RIP: 0033:0x7f4df3d8fc97
[  475.964585][ T5832] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8
[  475.964600][ T5832] RSP: 002b:00007fff6f975158 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  475.964618][ T5832] RAX: 0000000000000000 RBX: 00007f4df3e1089d RCX: 00007f4df3d8fc97
[  475.964631][ T5832] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007fff6f975210
[  475.964642][ T5832] RBP: 00007fff6f975210 R08: 0000000000000000 R09: 0000000000000000
[  475.964654][ T5832] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007fff6f9762a0
[  475.964666][ T5832] R13: 00007f4df3e1089d R14: 000000000007414b R15: 00007fff6f9762e0
[  475.964694][ T5832]  </TASK>
[  475.964702][ T5832] F2FS-fs (loop5): Stopped filesystem due to reason: 3
[  476.402620][ T5850] Bluetooth: hci0: command tx timeout
[  476.421666][ T9014] chnl_net:caif_netlink_parms(): no params data found
[  476.487297][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.487297][ T6620] loop3: rw=1, sector=145, nr_sectors = 8 limit=128
[  476.547826][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.547826][ T6620] loop3: rw=1, sector=161, nr_sectors = 8 limit=128
[  476.617055][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.617055][ T6620] loop3: rw=1, sector=177, nr_sectors = 8 limit=128
[  476.636846][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.636846][ T6620] loop3: rw=1, sector=193, nr_sectors = 8 limit=128
[  476.658745][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.658745][ T6620] loop3: rw=1, sector=209, nr_sectors = 8 limit=128
[  476.678922][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.678922][ T6620] loop3: rw=1, sector=225, nr_sectors = 8 limit=128
[  476.702243][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.702243][ T6620] loop3: rw=1, sector=241, nr_sectors = 8 limit=128
[  476.733034][ T6620] kworker/u8:16: attempt to access beyond end of device
[  476.733034][ T6620] loop3: rw=1, sector=257, nr_sectors = 8 limit=128
[  477.247002][ T8838] 8021q: adding VLAN 0 to HW filter on device batadv0
[  478.677377][ T5850] Bluetooth: hci0: command tx timeout
[  479.039050][ T9076] loop3: detected capacity change from 0 to 164
[  480.214478][ T9014] bridge0: port 1(bridge_slave_0) entered blocking state
[  480.221782][ T9014] bridge0: port 1(bridge_slave_0) entered disabled state
[  480.255123][ T9014] bridge_slave_0: entered allmulticast mode
[  480.496975][ T9014] bridge_slave_0: entered promiscuous mode
[  480.513390][ T9014] bridge0: port 2(bridge_slave_1) entered blocking state
[  480.520763][ T9014] bridge0: port 2(bridge_slave_1) entered disabled state
[  480.542693][ T9014] bridge_slave_1: entered allmulticast mode
[  481.239498][ T5850] Bluetooth: hci0: command tx timeout
[  482.304719][ T9014] bridge_slave_1: entered promiscuous mode
[  482.919344][ T8845] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  484.139009][ T8845] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  484.152844][ T5850] Bluetooth: hci4: Unknown advertising packet type: 0x18
[  484.152903][ T5850] Bluetooth: hci4: Unknown advertising packet type: 0x1e
[  484.160473][ T5850] Bluetooth: hci4: Unknown advertising packet type: 0x30
[  484.169096][ T5850] Bluetooth: hci4: Malformed LE Event: 0x0d
[  484.213278][ T8845] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  484.233348][ T8845] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  485.065836][ T9014] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  485.138734][ T9014] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  485.519949][ T9014] team0: Port device team_slave_0 added
[  485.531279][ T9014] team0: Port device team_slave_1 added
[  486.942680][ T9014] batman_adv: batadv0: Adding interface: batadv_slave_0
[  486.949702][ T9014] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  486.979873][ T9014] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  486.995137][ T9014] batman_adv: batadv0: Adding interface: batadv_slave_1
[  487.002234][ T9014] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  487.108365][ T9014] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  488.468524][ T9014] hsr_slave_0: entered promiscuous mode
[  488.482242][ T9014] hsr_slave_1: entered promiscuous mode
[  488.488681][ T5850] Bluetooth: hci3: unexpected event for opcode 0x0c7b
[  489.464050][ T9014] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  489.491156][ T9014] Cannot create hsr debugfs directory
[  490.504271][ T9164] netlink: 277 bytes leftover after parsing attributes in process `syz.5.824'.
[  490.945283][ T8838] veth0_vlan: entered promiscuous mode
[  490.981718][ T9166] bio_check_eod: 75 callbacks suppressed
[  490.981739][ T9166] syz.3.825: attempt to access beyond end of device
[  490.981739][ T9166] loop3: rw=2048, sector=0, nr_sectors = 8 limit=0
[  491.031407][ T9166] SQUASHFS error: Failed to read block 0x0: -5
[  491.067188][ T9166] unable to read squashfs_super_block
[  491.113185][ T8838] veth1_vlan: entered promiscuous mode
[  491.170978][ T1136] bridge_slave_1: left allmulticast mode
[  491.181281][ T1136] bridge_slave_1: left promiscuous mode
[  491.187959][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  491.244103][ T1136] bridge_slave_0: left allmulticast mode
[  491.249841][ T1136] bridge_slave_0: left promiscuous mode
[  491.271289][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  493.689125][ T9187] loop5: detected capacity change from 0 to 1024
[  494.533473][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  494.553134][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  494.780902][ T1136] bond0 (unregistering): Released all slaves
[  495.608762][ T9192] bridge_slave_0: vlans aren't supported yet for dev_uc|mc_add()
[  495.755561][ T8838] veth0_macvtap: entered promiscuous mode
[  495.986663][ T8838] veth1_macvtap: entered promiscuous mode
[  496.947765][   T30] audit: type=1326 audit(1746732016.137:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9204 comm="syz.5.837" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f4df3d8e969 code=0x0
[  496.965025][ T1136] hsr_slave_0: left promiscuous mode
[  496.986078][ T1136] hsr_slave_1: left promiscuous mode
[  496.993484][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  497.002155][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  498.574399][ T9228] openvswitch: netlink: IP tunnel dst address not specified
[  499.071904][ T9233] overlayfs: failed to resolve './file0': -2
[  499.235106][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  499.372113][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  501.277847][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  501.284571][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  502.750725][ T9257] loop3: detected capacity change from 0 to 128
[  502.851491][ T9259] xt_NFQUEUE: number of total queues is 0
[  503.710451][   T30] audit: type=1326 audit(1746732023.137:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9265 comm="syz.3.854" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f956118e969 code=0x0
[  503.863280][ T9273] random: crng reseeded on system resumption
[  505.511288][ T8845] 8021q: adding VLAN 0 to HW filter on device bond0
[  507.442720][ T9299] serio: Serial port ptm0
[  507.708206][ T5846] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  507.768106][ T5846] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  507.792629][ T5846] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  507.827364][ T5846] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  507.841085][ T5838] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  507.852980][ T5834] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  507.863802][ T5834] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  507.875508][ T5850] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  507.909563][ T5850] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  507.924492][ T5850] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  509.683548][ T9324] netlink: 12 bytes leftover after parsing attributes in process `syz.2.867'.
[  509.924259][ T5850] Bluetooth: hci1: command tx timeout
[  510.059318][ T5850] Bluetooth: hci5: command tx timeout
[  511.538575][ T9014] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  511.598809][ T9014] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  511.661685][ T9014] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  512.641344][ T5846] Bluetooth: hci5: command tx timeout
[  512.647020][ T5850] Bluetooth: hci1: command tx timeout
[  513.373792][ T9014] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  513.476060][ T9354] overlayfs: failed to clone upperpath
[  514.723187][ T5850] Bluetooth: hci1: command tx timeout
[  514.728813][ T5850] Bluetooth: hci5: command tx timeout
[  515.748975][ T9358] batadv1: entered promiscuous mode
[  515.913407][ T9358] 8021q: adding VLAN 0 to HW filter on device batadv1
[  516.873948][ T5846] Bluetooth: hci5: command tx timeout
[  516.879451][ T5846] Bluetooth: hci1: command tx timeout
[  518.361786][ T9305] chnl_net:caif_netlink_parms(): no params data found
[  518.644189][ T9383] loop3: detected capacity change from 0 to 8
[  519.321975][ T9383] unable to read id index table
[  519.539113][ T9014] 8021q: adding VLAN 0 to HW filter on device bond0
[  519.566734][ T1136] bridge_slave_1: left allmulticast mode
[  519.584188][ T1136] bridge_slave_1: left promiscuous mode
[  519.649251][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  519.925124][ T1136] bridge_slave_0: left allmulticast mode
[  519.930837][ T1136] bridge_slave_0: left promiscuous mode
[  520.772945][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  521.690153][ T9397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.886'.
[  521.762308][ T9397] netlink: 'syz.2.886': attribute type 4 has an invalid length.
[  521.784731][ T9397] netlink: 'syz.2.886': attribute type 1 has an invalid length.
[  521.799823][ T9397] netlink: 'syz.2.886': attribute type 2 has an invalid length.
[  521.827748][ T9397] netlink: 129988 bytes leftover after parsing attributes in process `syz.2.886'.
[  521.852967][ T9397] netlink: 4 bytes leftover after parsing attributes in process `syz.2.886'.
[  524.255874][ T9419] loop5: detected capacity change from 0 to 16
[  524.313416][ T9419] erofs (device loop5): mounted with root inode @ nid 36.
[  525.262072][ T9419] syz.5.891: attempt to access beyond end of device
[  525.262072][ T9419] loop5: rw=524288, sector=34359738360, nr_sectors = 1976 limit=16
[  526.072534][ T5894] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[  527.362072][ T5894] usb 6-1: device not accepting address 11, error -71
[  527.925191][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  527.939573][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  527.959770][ T1136] bond0 (unregistering): Released all slaves
[  529.277828][ T1136] hsr_slave_0: left promiscuous mode
[  529.285967][ T1136] hsr_slave_1: left promiscuous mode
[  529.305525][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  529.334444][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  529.380374][ T1136] veth1_macvtap: left promiscuous mode
[  529.390756][ T1136] veth0_macvtap: left promiscuous mode
[  529.398003][ T1136] veth1_vlan: left promiscuous mode
[  529.403903][ T1136] veth0_vlan: left promiscuous mode
[  529.987627][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  530.117570][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  532.115293][ T5850] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  532.126404][ T5850] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  532.136556][ T5850] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  532.145292][ T5850] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  532.153130][ T5850] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  534.242709][ T5850] Bluetooth: hci6: command tx timeout
[  535.431419][ T9480] loop3: detected capacity change from 0 to 128
[  535.496256][ T9480] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[  535.527698][ T9480] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  536.334764][ T5846] Bluetooth: hci6: command tx timeout
[  537.870673][ T9504] loop3: detected capacity change from 0 to 512
[  538.442675][ T5846] Bluetooth: hci6: command tx timeout
[  538.900481][ T9504] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  539.104445][ T9504] ext4 filesystem being mounted at /211/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  541.061187][ T5846] Bluetooth: hci6: command tx timeout
[  541.574570][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  543.023315][ T9308] chnl_net:caif_netlink_parms(): no params data found
[  543.221468][ T9305] bridge0: port 1(bridge_slave_0) entered blocking state
[  543.235284][ T9305] bridge0: port 1(bridge_slave_0) entered disabled state
[  543.242836][ T9305] bridge_slave_0: entered allmulticast mode
[  543.261300][ T9305] bridge_slave_0: entered promiscuous mode
[  543.284275][ T9541] loop5: detected capacity change from 0 to 512
[  543.292234][ T9541] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  543.326735][ T9541] EXT4-fs error (device loop5): ext4_get_branch:178: inode #11: block 4294967295: comm syz.5.923: invalid block
[  543.375868][ T9541] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.923: invalid indirect mapped block 4294967295 (level 1)
[  543.394999][ T9541] EXT4-fs error (device loop5): ext4_free_branches:1023: inode #11: comm syz.5.923: invalid indirect mapped block 4294967295 (level 1)
[  543.413778][ T9541] EXT4-fs (loop5): 2 truncates cleaned up
[  543.423384][ T9541] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  543.439898][ T9305] bridge0: port 2(bridge_slave_1) entered blocking state
[  543.449726][ T9541] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  543.457802][ T9541] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  543.459492][ T9305] bridge0: port 2(bridge_slave_1) entered disabled state
[  543.482040][ T9305] bridge_slave_1: entered allmulticast mode
[  543.500861][ T9305] bridge_slave_1: entered promiscuous mode
[  543.528291][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  543.653805][ T9547] loop5: detected capacity change from 0 to 764
[  543.684252][ T9549] loop3: detected capacity change from 0 to 512
[  543.692150][ T9549] EXT4-fs: Ignoring removed oldalloc option
[  543.712597][ T9549] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  543.750607][ T9549] EXT4-fs (loop3): 1 truncate cleaned up
[  543.874424][ T9549] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  544.219927][ T9556] Symlink component flag not implemented
[  544.242702][ T9556] Symlink component flag not implemented (116)
[  544.568862][ T9305] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  544.775303][ T9305] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  544.835068][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  544.927110][ T9308] bridge0: port 1(bridge_slave_0) entered blocking state
[  544.937426][ T9308] bridge0: port 1(bridge_slave_0) entered disabled state
[  544.966202][ T9308] bridge_slave_0: entered allmulticast mode
[  545.028738][ T9308] bridge_slave_0: entered promiscuous mode
[  545.881749][ T9308] bridge0: port 2(bridge_slave_1) entered blocking state
[  545.909859][ T9308] bridge0: port 2(bridge_slave_1) entered disabled state
[  545.926014][ T9308] bridge_slave_1: entered allmulticast mode
[  545.955491][ T9308] bridge_slave_1: entered promiscuous mode
[  546.103844][ T9305] team0: Port device team_slave_0 added
[  546.305990][ T9305] team0: Port device team_slave_1 added
[  547.705256][ T9308] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  547.770213][ T9581] loop3: detected capacity change from 0 to 256
[  547.880379][ T9305] batman_adv: batadv0: Adding interface: batadv_slave_0
[  547.901410][ T9305] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  547.972639][ T9305] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  548.018683][ T9308] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  548.041299][ T9305] batman_adv: batadv0: Adding interface: batadv_slave_1
[  548.053295][ T9305] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  548.096204][ T9305] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  548.254220][ T9585] loop5: detected capacity change from 0 to 128
[  548.367195][ T9461] chnl_net:caif_netlink_parms(): no params data found
[  549.374317][ T9594] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw'
[  549.978076][ T9595] loop5: detected capacity change from 0 to 512
[  550.827292][ T9308] team0: Port device team_slave_0 added
[  550.836576][ T9308] team0: Port device team_slave_1 added
[  551.876493][ T9308] batman_adv: batadv0: Adding interface: batadv_slave_0
[  551.898657][ T9308] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  551.978700][ T9308] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  552.040547][ T9305] hsr_slave_0: entered promiscuous mode
[  552.088035][ T9305] hsr_slave_1: entered promiscuous mode
[  552.103007][ T9305] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  552.110632][ T9305] Cannot create hsr debugfs directory
[  553.873423][ T9308] batman_adv: batadv0: Adding interface: batadv_slave_1
[  553.880451][ T9308] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  553.960641][ T9308] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  554.067476][ T9461] bridge0: port 1(bridge_slave_0) entered blocking state
[  554.078928][ T9461] bridge0: port 1(bridge_slave_0) entered disabled state
[  554.098632][ T9461] bridge_slave_0: entered allmulticast mode
[  554.840654][ T9461] bridge_slave_0: entered promiscuous mode
[  555.246927][ T9651] loop3: detected capacity change from 0 to 2048
[  555.330334][ T9651] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[  555.369037][ T9461] bridge0: port 2(bridge_slave_1) entered blocking state
[  555.411380][ T9461] bridge0: port 2(bridge_slave_1) entered disabled state
[  556.044396][ T9461] bridge_slave_1: entered allmulticast mode
[  556.055370][ T9461] bridge_slave_1: entered promiscuous mode
[  556.203979][ T9656] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  556.647006][ T9663] xt_CT: You must specify a L4 protocol and not use inversions on it
[  557.540362][ T9461] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  557.805621][ T9461] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  557.858404][ T9671] loop3: detected capacity change from 0 to 1024
[  559.919521][ T9308] hsr_slave_0: entered promiscuous mode
[  560.094305][ T9308] hsr_slave_1: entered promiscuous mode
[  560.101361][ T9308] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  560.113372][ T9308] Cannot create hsr debugfs directory
[  561.960267][ T9689] loop5: detected capacity change from 0 to 40427
[  561.970796][ T9689] F2FS-fs (loop5): Mismatch start address, segment0(0) cp_blkaddr(512)
[  561.979089][ T9689] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock
[  561.987435][ T9689] F2FS-fs (loop5): Invalid gid value -1
[  562.155942][ T9461] team0: Port device team_slave_0 added
[  562.194632][ T9461] team0: Port device team_slave_1 added
[  562.330544][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  562.337062][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  562.883193][ T9697] x_tables: duplicate entry at hook 2
[  566.226014][ T9461] batman_adv: batadv0: Adding interface: batadv_slave_0
[  566.259153][ T9461] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  566.306707][ T9461] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  566.326734][ T9461] batman_adv: batadv0: Adding interface: batadv_slave_1
[  566.341137][ T9461] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  566.374790][ T9461] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  566.599642][ T9461] hsr_slave_0: entered promiscuous mode
[  566.614822][ T9461] hsr_slave_1: entered promiscuous mode
[  566.621575][ T9461] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  566.632268][ T9461] Cannot create hsr debugfs directory
[  566.865214][ T9721] loop3: detected capacity change from 0 to 64
[  567.987321][ T9729] netlink: 'syz.2.973': attribute type 12 has an invalid length.
[  569.856806][ T5850] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  569.870361][ T5850] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  569.880628][ T5850] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  569.901017][ T5850] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  569.914562][ T5850] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  572.063491][ T5846] Bluetooth: hci0: command tx timeout
[  572.188972][ T5850] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  572.201335][ T5850] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  572.211801][ T5850] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  572.254418][ T5850] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  572.258356][ T9764] netlink: 44 bytes leftover after parsing attributes in process `syz.2.978'.
[  572.323472][ T5850] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  572.370974][ T1136] bridge_slave_1: left allmulticast mode
[  572.411525][ T1136] bridge_slave_1: left promiscuous mode
[  572.421931][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  572.505469][ T1136] bridge_slave_0: left allmulticast mode
[  572.511191][ T1136] bridge_slave_0: left promiscuous mode
[  573.061318][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  573.106049][ T1136] bridge_slave_1: left allmulticast mode
[  573.121834][ T1136] bridge_slave_1: left promiscuous mode
[  573.150281][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  573.186866][ T1136] bridge_slave_0: left allmulticast mode
[  573.209718][ T1136] bridge_slave_0: left promiscuous mode
[  573.230927][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  574.092819][ T5846] Bluetooth: hci0: command tx timeout
[  574.117815][ T9779] netlink: 8 bytes leftover after parsing attributes in process `syz.2.983'.
[  574.405765][ T5846] Bluetooth: hci5: command tx timeout
[  575.882304][ T5900] IPVS: starting estimator thread 0...
[  576.024061][ T9793] IPVS: using max 22 ests per chain, 52800 per kthread
[  576.172731][ T5846] Bluetooth: hci0: command tx timeout
[  576.484149][ T5846] Bluetooth: hci5: command tx timeout
[  578.243019][ T5846] Bluetooth: hci0: command tx timeout
[  579.006802][ T5846] Bluetooth: hci5: command tx timeout
[  581.049750][ T5846] Bluetooth: hci5: command tx timeout
[  581.208805][ T9826] loop3: detected capacity change from 0 to 1024
[  581.240368][ T9826] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  583.161502][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.095983][ T9843] loop5: detected capacity change from 0 to 256
[  584.104160][ T9843] exfat: Deprecated parameter 'utf8'
[  584.109926][ T9843] exfat: Deprecated parameter 'utf8'
[  584.115935][ T9843] exfat: Deprecated parameter 'utf8'
[  584.181843][ T9844] overlayfs: failed to clone upperpath
[  584.280164][ T9846] overlayfs: failed to clone upperpath
[  584.449929][ T9843] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  587.615914][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  587.715463][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  587.757702][ T1136] bond0 (unregistering): Released all slaves
[  588.070361][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  588.089508][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  588.109160][ T1136] bond0 (unregistering): Released all slaves
[  588.186524][ T9871] orangefs_mount: mount request failed with -4
[  588.588718][ T1136] hsr_slave_0: left promiscuous mode
[  588.612956][ T1136] hsr_slave_1: left promiscuous mode
[  589.363877][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  589.393392][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  589.481946][ T1136] hsr_slave_0: left promiscuous mode
[  589.489244][ T1136] hsr_slave_1: left promiscuous mode
[  589.504159][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  589.560719][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  591.354672][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  591.416450][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  595.307688][ T5850] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  595.326181][ T5850] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  595.932622][ T5850] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  595.942897][ T5850] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  595.954039][ T5850] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  596.094803][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  596.169823][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  598.002614][ T5850] Bluetooth: hci7: command tx timeout
[  598.186549][ T9945] loop5: detected capacity change from 0 to 2048
[  600.092696][ T5850] Bluetooth: hci7: command tx timeout
[  602.672720][ T5850] Bluetooth: hci7: command tx timeout
[  604.730143][ T5846] Bluetooth: hci7: command tx timeout
[  606.494441][ T9979] loop3: detected capacity change from 0 to 32768
[  606.504025][ T9979] bcachefs (/dev/loop3): error validating superblock: Bad number of member devices 0 (max 64)
[  606.514534][ T9979] bcachefs: bch2_fs_get_tree() error: invalid_sb_too_many_members
[  612.128268][ T9739] chnl_net:caif_netlink_parms(): no params data found
[  614.836405][ T9760] chnl_net:caif_netlink_parms(): no params data found
[  618.215461][T10045] loop3: detected capacity change from 0 to 512
[  618.929106][T10045] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  619.131096][T10045] ext4 filesystem being mounted at /247/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  620.469549][ T9739] bridge0: port 1(bridge_slave_0) entered blocking state
[  620.477265][ T9739] bridge0: port 1(bridge_slave_0) entered disabled state
[  620.485016][ T9739] bridge_slave_0: entered allmulticast mode
[  620.501486][ T9739] bridge_slave_0: entered promiscuous mode
[  620.646890][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  620.661277][ T9739] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.682867][ T9739] bridge0: port 2(bridge_slave_1) entered disabled state
[  620.690244][ T9739] bridge_slave_1: entered allmulticast mode
[  620.740042][ T9739] bridge_slave_1: entered promiscuous mode
[  620.980288][T10078] input: syz0 as /devices/virtual/input/input6
[  623.675499][ T9739] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  623.687160][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  623.693842][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  623.971198][ T9739] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  624.115292][ T9760] bridge0: port 1(bridge_slave_0) entered blocking state
[  624.124645][T10094] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1059'.
[  624.147374][ T9760] bridge0: port 1(bridge_slave_0) entered disabled state
[  624.162982][ T9760] bridge_slave_0: entered allmulticast mode
[  624.189530][ T9760] bridge_slave_0: entered promiscuous mode
[  624.474283][ T9760] bridge0: port 2(bridge_slave_1) entered blocking state
[  624.512292][ T9760] bridge0: port 2(bridge_slave_1) entered disabled state
[  624.558424][ T9760] bridge_slave_1: entered allmulticast mode
[  624.609693][ T9760] bridge_slave_1: entered promiscuous mode
[  624.728017][ T9739] team0: Port device team_slave_0 added
[  624.800548][ T9739] team0: Port device team_slave_1 added
[  624.932135][ T9935] chnl_net:caif_netlink_parms(): no params data found
[  625.009183][ T9760] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  625.670403][ T1136] bridge_slave_1: left allmulticast mode
[  625.702806][ T1136] bridge_slave_1: left promiscuous mode
[  625.729150][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  625.764055][ T1136] bridge_slave_0: left allmulticast mode
[  625.799540][ T1136] bridge_slave_0: left promiscuous mode
[  625.833285][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  625.856505][ T1136] bridge_slave_1: left allmulticast mode
[  625.875977][ T1136] bridge_slave_1: left promiscuous mode
[  625.881829][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  625.900659][ T1136] bridge_slave_0: left allmulticast mode
[  625.909854][ T1136] bridge_slave_0: left promiscuous mode
[  625.922635][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  626.766188][T10108] overlayfs: failed to resolve './file1/file0': -2
[  626.865903][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  627.174745][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  627.209780][ T1136] bond0 (unregistering): Released all slaves
[  627.464234][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  628.243216][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  628.278762][ T1136] bond0 (unregistering): Released all slaves
[  628.380211][ T9760] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  628.468153][ T9739] batman_adv: batadv0: Adding interface: batadv_slave_0
[  628.478297][ T9739] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  628.538404][ T9739] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  628.693354][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  628.710399][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  628.720002][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  628.743709][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  628.754534][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  630.492590][ T1136] hsr_slave_0: left promiscuous mode
[  630.903660][ T5850] Bluetooth: hci1: command tx timeout
[  631.112892][ T1136] hsr_slave_1: left promiscuous mode
[  631.123681][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  631.195039][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  631.406515][ T1136] hsr_slave_0: left promiscuous mode
[  631.890850][ T5846] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  631.905826][ T5846] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  631.917659][ T5846] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  631.927782][ T5846] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  631.940054][ T5846] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  632.012900][ T1136] hsr_slave_1: left promiscuous mode
[  632.063337][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  632.093959][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  632.297322][T10146] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1072'.
[  632.334141][T10146] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1072'.
[  632.370914][T10146] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1072'.
[  632.391296][T10146] netlink: 36 bytes leftover after parsing attributes in process `syz.3.1072'.
[  632.964548][ T5846] Bluetooth: hci1: command tx timeout
[  633.427351][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  633.821632][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  634.043505][ T5846] Bluetooth: hci6: command tx timeout
[  635.043354][ T5846] Bluetooth: hci1: command tx timeout
[  636.036438][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  636.087726][ T5846] Bluetooth: hci6: command tx timeout
[  636.434634][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  637.125404][ T5846] Bluetooth: hci1: command tx timeout
[  637.481168][T10170] loop5: detected capacity change from 0 to 256
[  637.513834][T10170] exfat: Deprecated parameter 'utf8'
[  637.533183][T10170] exfat: Deprecated parameter 'utf8'
[  637.538614][T10170] exfat: Deprecated parameter 'utf8'
[  637.577874][T10170] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  638.163441][ T5846] Bluetooth: hci6: command tx timeout
[  640.256888][ T5846] Bluetooth: hci6: command tx timeout
[  640.651227][ T9935] bridge0: port 1(bridge_slave_0) entered blocking state
[  640.674970][ T9935] bridge0: port 1(bridge_slave_0) entered disabled state
[  640.699401][ T9935] bridge_slave_0: entered allmulticast mode
[  640.721401][ T9935] bridge_slave_0: entered promiscuous mode
[  640.753919][ T9935] bridge0: port 2(bridge_slave_1) entered blocking state
[  640.772586][ T9935] bridge0: port 2(bridge_slave_1) entered disabled state
[  640.779839][ T9935] bridge_slave_1: entered allmulticast mode
[  640.812922][ T9935] bridge_slave_1: entered promiscuous mode
[  641.249461][T10208] loop5: detected capacity change from 0 to 16
[  643.287219][ T9935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  643.301146][ T9935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  643.835622][T10218] kernel profiling enabled (shift: 7)
[  644.638539][ T9935] team0: Port device team_slave_0 added
[  644.703919][ T9935] team0: Port device team_slave_1 added
[  645.737956][T10231] overlayfs: failed to clone upperpath
[  646.214612][ T9935] batman_adv: batadv0: Adding interface: batadv_slave_0
[  646.221616][ T9935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  646.321420][T10233] loop5: detected capacity change from 0 to 256
[  646.352124][T10233] exfat: Deprecated parameter 'utf8'
[  646.366223][T10233] exfat: Deprecated parameter 'utf8'
[  646.372267][ T9935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  646.385358][ T9935] batman_adv: batadv0: Adding interface: batadv_slave_1
[  646.392337][ T9935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  646.402276][T10233] exfat: Deprecated parameter 'utf8'
[  646.452146][ T9935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  646.493359][T10233] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[  647.730805][T10248] loop5: detected capacity change from 0 to 512
[  647.757547][T10248] EXT4-fs: Ignoring removed nomblk_io_submit option
[  648.103725][ T9935] hsr_slave_0: entered promiscuous mode
[  648.115145][ T9935] hsr_slave_1: entered promiscuous mode
[  648.131871][ T9935] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  648.131966][T10248] EXT4-fs error (device loop5): ext4_map_blocks:675: inode #2: block 3: comm syz.5.1099: lblock 0 mapped to illegal pblock 3 (length 1)
[  648.162541][ T9935] Cannot create hsr debugfs directory
[  648.216396][T10248] EXT4-fs warning (device loop5): dx_probe:793: inode #2: lblock 0: comm syz.5.1099: error -117 reading directory block
[  648.236758][T10248] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117
[  648.243226][T10115] chnl_net:caif_netlink_parms(): no params data found
[  648.914075][T10248] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  649.374943][T10261] xt_CT: You must specify a L4 protocol and not use inversions on it
[  649.964950][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  650.142846][T10137] chnl_net:caif_netlink_parms(): no params data found
[  650.610514][T10115] bridge0: port 1(bridge_slave_0) entered blocking state
[  650.641270][T10115] bridge0: port 1(bridge_slave_0) entered disabled state
[  650.654602][T10115] bridge_slave_0: entered allmulticast mode
[  650.671109][T10115] bridge_slave_0: entered promiscuous mode
[  650.686105][T10115] bridge0: port 2(bridge_slave_1) entered blocking state
[  650.693988][T10115] bridge0: port 2(bridge_slave_1) entered disabled state
[  650.708748][T10115] bridge_slave_1: entered allmulticast mode
[  650.720668][T10115] bridge_slave_1: entered promiscuous mode
[  650.746709][ T1136] bridge_slave_1: left allmulticast mode
[  650.752663][ T1136] bridge_slave_1: left promiscuous mode
[  650.758509][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  650.922568][T10278] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  651.225058][ T1136] bridge_slave_0: left allmulticast mode
[  651.279548][ T1136] bridge_slave_0: left promiscuous mode
[  651.412643][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  651.670345][ T1136] bridge_slave_1: left allmulticast mode
[  651.699791][ T1136] bridge_slave_1: left promiscuous mode
[  651.715331][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  652.117383][ T1136] bridge_slave_0: left allmulticast mode
[  652.277553][ T1136] bridge_slave_0: left promiscuous mode
[  652.377318][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  652.767416][ T1136] bridge_slave_1: left allmulticast mode
[  652.785085][ T1136] bridge_slave_1: left promiscuous mode
[  652.798102][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  652.811447][ T1136] bridge_slave_0: left allmulticast mode
[  652.825954][ T1136] bridge_slave_0: left promiscuous mode
[  652.836413][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  653.201005][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  653.219143][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  653.229853][ T1136] bond0 (unregistering): Released all slaves
[  653.249830][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  653.261120][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  653.271303][ T1136] bond0 (unregistering): Released all slaves
[  653.289384][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  653.308386][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  653.319078][ T1136] bond0 (unregistering): Released all slaves
[  653.347389][T10273] 8021q: VLANs not supported on sit0
[  653.498948][T10115] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  653.566709][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  653.607934][ T1136] hsr_slave_0: left promiscuous mode
[  653.633911][ T1136] hsr_slave_1: left promiscuous mode
[  653.655026][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  653.675450][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  653.873691][T10293] loop5: detected capacity change from 0 to 512
[  654.179264][T10293] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  654.327527][T10293] ext4 filesystem being mounted at /286/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  654.839637][   T30] audit: type=1800 audit(1746732174.257:379): pid=10293 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1108" name="file1" dev="loop5" ino=15 res=0 errno=0
[  654.873205][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  655.145234][T10303] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  655.634110][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  655.726421][T10308] netlink: 'syz.3.1110': attribute type 4 has an invalid length.
[  655.747784][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  655.830484][ T5850] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  655.843511][ T5850] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  655.854815][ T5850] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  655.894475][ T5850] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  655.913693][ T5850] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  657.294843][T10321] loop5: detected capacity change from 0 to 40427
[  657.334901][T10321] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  657.342936][T10321] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  657.377221][T10321] F2FS-fs (loop5): invalid crc value
[  657.966456][T10321] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  657.973955][T10321] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  658.568678][ T5846] Bluetooth: hci0: command tx timeout
[  659.127230][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  659.269677][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  660.465106][T10115] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  660.642748][ T5846] Bluetooth: hci0: command tx timeout
[  660.799572][T10115] team0: Port device team_slave_0 added
[  661.401767][T10115] team0: Port device team_slave_1 added
[  661.467961][T10137] bridge0: port 1(bridge_slave_0) entered blocking state
[  661.485528][T10137] bridge0: port 1(bridge_slave_0) entered disabled state
[  661.502215][T10137] bridge_slave_0: entered allmulticast mode
[  661.523473][T10137] bridge_slave_0: entered promiscuous mode
[  661.809781][T10137] bridge0: port 2(bridge_slave_1) entered blocking state
[  661.838903][T10137] bridge0: port 2(bridge_slave_1) entered disabled state
[  661.847178][T10137] bridge_slave_1: entered allmulticast mode
[  662.588381][T10137] bridge_slave_1: entered promiscuous mode
[  662.656621][T10115] batman_adv: batadv0: Adding interface: batadv_slave_0
[  662.666083][T10115] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  662.692997][ T5900] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  662.701232][T10115] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  662.723314][ T5846] Bluetooth: hci0: command tx timeout
[  663.329995][T10115] batman_adv: batadv0: Adding interface: batadv_slave_1
[  663.339882][T10115] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  663.373183][T10115] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  663.796176][ T5900] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  663.893885][ T5900] usb 4-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df
[  664.860441][ T5900] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  664.915057][ T5846] Bluetooth: hci0: command tx timeout
[  664.921979][ T5900] usb 4-1: config 0 descriptor??
[  665.214481][T10115] hsr_slave_0: entered promiscuous mode
[  665.234069][T10115] hsr_slave_1: entered promiscuous mode
[  665.251266][ T5900] usb 4-1: can't set config #0, error -71
[  665.262237][ T5900] usb 4-1: USB disconnect, device number 4
[  665.268875][T10115] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  665.297499][T10115] Cannot create hsr debugfs directory
[  665.535845][T10137] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  665.551118][T10137] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  665.651819][T10381] Invalid ELF header magic: != ELF
[  666.838222][T10137] team0: Port device team_slave_0 added
[  666.863684][T10137] team0: Port device team_slave_1 added
[  669.979856][T10137] batman_adv: batadv0: Adding interface: batadv_slave_0
[  670.001059][T10137] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  670.273658][T10137] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  670.337561][T10137] batman_adv: batadv0: Adding interface: batadv_slave_1
[  670.345179][T10137] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  670.387180][T10137] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  672.688642][T10427] loop5: detected capacity change from 0 to 1024
[  672.849875][T10311] chnl_net:caif_netlink_parms(): no params data found
[  672.898891][T10427] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  673.504099][T10137] hsr_slave_0: entered promiscuous mode
[  673.520608][T10137] hsr_slave_1: entered promiscuous mode
[  673.553542][T10137] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  673.591100][T10137] Cannot create hsr debugfs directory
[  673.665666][ T5832] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.313724][T10447] loop5: detected capacity change from 0 to 128
[  675.044724][T10311] bridge0: port 1(bridge_slave_0) entered blocking state
[  675.096335][T10311] bridge0: port 1(bridge_slave_0) entered disabled state
[  675.260755][T10311] bridge_slave_0: entered allmulticast mode
[  675.282875][T10311] bridge_slave_0: entered promiscuous mode
[  675.356216][T10453] Cannot find add_set index 0 as target
[  675.494669][T10311] bridge0: port 2(bridge_slave_1) entered blocking state
[  675.509066][T10311] bridge0: port 2(bridge_slave_1) entered disabled state
[  675.521513][T10311] bridge_slave_1: entered allmulticast mode
[  675.566959][T10311] bridge_slave_1: entered promiscuous mode
[  675.701554][ T1136] bridge_slave_1: left allmulticast mode
[  675.725792][ T1136] bridge_slave_1: left promiscuous mode
[  675.731856][ T1136] bridge0: port 2(bridge_slave_1) entered disabled state
[  675.750668][ T1136] bridge_slave_0: left allmulticast mode
[  675.758160][ T1136] bridge_slave_0: left promiscuous mode
[  675.778797][ T1136] bridge0: port 1(bridge_slave_0) entered disabled state
[  676.293165][ T1136] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  676.309852][ T1136] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  676.323148][ T1136] bond0 (unregistering): Released all slaves
[  677.191034][T10311] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  677.241788][T10311] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  677.388534][ T1136] hsr_slave_0: left promiscuous mode
[  677.537807][ T1136] hsr_slave_1: left promiscuous mode
[  677.647326][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_0
[  677.747978][ T1136] batman_adv: batadv0: Removing interface: batadv_slave_1
[  679.506731][ T1136] team0 (unregistering): Port device team_slave_1 removed
[  679.747526][ T1136] team0 (unregistering): Port device team_slave_0 removed
[  679.927936][T10490] loop3: detected capacity change from 0 to 1024
[  680.108856][T10490] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  681.558830][T10498] loop3: detected capacity change from 0 to 64
[  681.672046][T10498] overlay: filesystem on ./file0 not supported
[  684.020171][   T30] audit: type=1800 audit(1746732203.367:380): pid=10506 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1158" name="bus" dev="tmpfs" ino=1513 res=0 errno=0
[  684.330168][T10311] team0: Port device team_slave_0 added
[  685.617812][T10311] team0: Port device team_slave_1 added
[  685.649830][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  685.656830][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  685.907285][T10311] batman_adv: batadv0: Adding interface: batadv_slave_0
[  685.915499][T10311] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  685.953648][T10311] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  686.026002][T10311] batman_adv: batadv0: Adding interface: batadv_slave_1
[  686.038361][T10311] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  686.071748][T10311] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  686.315359][T10527] loop3: detected capacity change from 0 to 32768
[  686.328212][T10311] hsr_slave_0: entered promiscuous mode
[  686.337461][T10311] hsr_slave_1: entered promiscuous mode
[  686.344234][T10311] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  686.355591][T10311] Cannot create hsr debugfs directory
[  686.361298][T10115] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  686.388080][T10115] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  686.424575][T10527] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  686.430961][T10115] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  686.541971][T10527] XFS (loop3): Ending clean mount
[  686.557977][T10115] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  686.565544][T10527] XFS (loop3): Quotacheck needed: Please wait.
[  686.691092][T10527] XFS (loop3): Quotacheck: Done.
[  688.422551][   T30] audit: type=1800 audit(1746732207.817:381): pid=10545 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1165" name="bus" dev="loop3" ino=9291 res=0 errno=0
[  689.186740][ T5836] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  689.417662][T10137] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  691.289783][T10311] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  691.916700][T10564] loop3: detected capacity change from 0 to 128
[  691.934436][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  691.949888][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  691.958284][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  691.979083][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  691.991051][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  693.383056][T10311] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  694.217195][T10311] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  694.964153][ T5834] Bluetooth: hci1: command tx timeout
[  694.971440][ T5850] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  694.985482][ T5850] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  695.001969][ T5850] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  695.301007][ T5850] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  695.309058][ T5850] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  695.457574][T10311] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  697.023293][T10608] loop3: detected capacity change from 0 to 512
[  697.035796][T10608] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  697.044744][ T5850] Bluetooth: hci1: command tx timeout
[  697.262052][T10608] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  697.277097][T10608] ext4 filesystem being mounted at /285/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  697.364122][ T5850] Bluetooth: hci5: command tx timeout
[  698.025701][T10617] overlayfs: failed to clone upperpath
[  698.848203][ T5836] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.067787][T10623] loop3: detected capacity change from 0 to 1024
[  699.124871][ T5850] Bluetooth: hci1: command tx timeout
[  699.442546][ T5850] Bluetooth: hci5: command tx timeout
[  700.440552][ T1136] hfsplus: b-tree write err: -5, ino 4
[  700.825395][T10311] 8021q: adding VLAN 0 to HW filter on device bond0
[  701.212680][ T5850] Bluetooth: hci1: command tx timeout
[  701.532887][ T5850] Bluetooth: hci5: command tx timeout
[  701.802747][T10642] loop3: detected capacity change from 0 to 256
[  702.942069][T10642] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  703.021811][T10641] exFAT-fs (loop3): valid_size(150994954) is greater than size(10)
[  703.036249][   T30] audit: type=1800 audit(1746732222.467:382): pid=10641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1188" name="file1" dev="loop3" ino=1048645 res=0 errno=0
[  703.334060][T10577] chnl_net:caif_netlink_parms(): no params data found
[  703.662597][ T5850] Bluetooth: hci5: command tx timeout
[  703.719282][T10311] 8021q: adding VLAN 0 to HW filter on device team0
[  704.562899][T10565] chnl_net:caif_netlink_parms(): no params data found
[  705.870698][ T1160] bridge0: port 1(bridge_slave_0) entered blocking state
[  705.878024][ T1160] bridge0: port 1(bridge_slave_0) entered forwarding state
[  705.943054][ T1160] bridge0: port 2(bridge_slave_1) entered blocking state
[  705.950825][ T1160] bridge0: port 2(bridge_slave_1) entered forwarding state
[  705.976976][ T1099] bridge_slave_1: left allmulticast mode
[  705.994919][ T5917] libceph: connect (1)[c::]:6789 error -101
[  706.003520][ T5917] libceph: mon0 (1)[c::]:6789 connect error
[  706.016313][ T5917] libceph: connect (1)[c::]:6789 error -101
[  706.018117][ T1099] bridge_slave_1: left promiscuous mode
[  706.023858][ T5917] libceph: mon0 (1)[c::]:6789 connect error
[  706.037972][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  706.052170][ T1099] bridge_slave_0: left allmulticast mode
[  706.058262][ T1099] bridge_slave_0: left promiscuous mode
[  706.066064][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  706.359052][ T5917] libceph: connect (1)[c::]:6789 error -101
[  706.371625][ T5917] libceph: mon0 (1)[c::]:6789 connect error
[  707.899833][T10674] libceph: connect (1)[c::]:6789 error -101
[  707.907654][T10670] ceph: No mds server is up or the cluster is laggy
[  707.926763][T10674] libceph: mon0 (1)[c::]:6789 connect error
[  708.555637][T10686] loop5: detected capacity change from 0 to 40427
[  708.695397][T10686] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12
[  708.703431][T10686] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock
[  708.731665][T10686] F2FS-fs (loop5): invalid crc value
[  708.943851][T10686] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0
[  708.950965][T10686] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  709.264841][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  710.298501][T10698] syz.5.1199: attempt to access beyond end of device
[  710.298501][T10698] loop5: rw=2049, sector=77824, nr_sectors = 520 limit=40427
[  711.054996][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  711.226896][ T1099] bond0 (unregistering): Released all slaves
[  712.373391][T10577] bridge0: port 1(bridge_slave_0) entered blocking state
[  712.473655][T10577] bridge0: port 1(bridge_slave_0) entered disabled state
[  712.561577][T10577] bridge_slave_0: entered allmulticast mode
[  712.636486][T10577] bridge_slave_0: entered promiscuous mode
[  712.716563][T10577] bridge0: port 2(bridge_slave_1) entered blocking state
[  712.771330][T10577] bridge0: port 2(bridge_slave_1) entered disabled state
[  712.786991][T10713] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported
[  712.865099][T10577] bridge_slave_1: entered allmulticast mode
[  712.999024][T10577] bridge_slave_1: entered promiscuous mode
[  713.885288][T10720] input: syz0 as /devices/virtual/input/input7
[  713.906882][ T1099] hsr_slave_0: left promiscuous mode
[  713.913275][ T1099] hsr_slave_1: left promiscuous mode
[  713.919450][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  713.935548][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  714.275037][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  714.330442][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  714.902053][T10565] bridge0: port 1(bridge_slave_0) entered blocking state
[  715.146923][T10565] bridge0: port 1(bridge_slave_0) entered disabled state
[  715.155118][T10565] bridge_slave_0: entered allmulticast mode
[  715.163471][T10565] bridge_slave_0: entered promiscuous mode
[  715.174907][T10577] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  715.222741][T10565] bridge0: port 2(bridge_slave_1) entered blocking state
[  715.230071][T10565] bridge0: port 2(bridge_slave_1) entered disabled state
[  715.584639][T10565] bridge_slave_1: entered allmulticast mode
[  715.956619][T10565] bridge_slave_1: entered promiscuous mode
[  716.193109][T10577] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  716.435870][T10565] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  716.454780][T10734] loop3: detected capacity change from 0 to 4096
[  716.715107][ T5846] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  716.726360][ T5846] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  716.736009][ T5846] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  716.744969][ T5846] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  716.754765][ T5846] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  716.820516][T10734] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  717.597610][T10565] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  717.898606][T10745] netlink: 96 bytes leftover after parsing attributes in process `syz.2.1212'.
[  718.449833][T10577] team0: Port device team_slave_0 added
[  718.882562][ T5846] Bluetooth: hci6: command tx timeout
[  719.030137][T10754] loop3: detected capacity change from 0 to 1024
[  720.495127][T10565] team0: Port device team_slave_0 added
[  720.517179][T10577] team0: Port device team_slave_1 added
[  720.927083][T10758] loop3: detected capacity change from 0 to 32768
[  720.952163][T10565] team0: Port device team_slave_1 added
[  720.963778][ T5846] Bluetooth: hci6: command tx timeout
[  721.107729][T10758] bcachefs (da441363-bb6a-4ab9-999b-c1f40db4fee2): Using encoding defined by superblock: utf8-12.1.0
[  721.154139][T10758] bcachefs (loop3): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nojournal_transaction_names
[  721.154139][T10758]   allowing incompatible features above 0.0: (unknown version)
[  721.178655][T10758] bcachefs (loop3): initializing new filesystem
[  721.186089][T10758] bcachefs (loop3): going read-write
[  721.224419][T10577] batman_adv: batadv0: Adding interface: batadv_slave_0
[  721.239021][T10577] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  721.297673][T10758] bcachefs (loop3): marking superblocks
[  721.317773][T10758] bcachefs (loop3): initializing freespace
[  721.326418][T10758] bcachefs (loop3): done initializing freespace
[  721.337671][T10758] bcachefs (loop3): reading snapshots table
[  721.343756][T10758] bcachefs (loop3): reading snapshots done
[  721.346482][T10577] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  721.370984][T10577] batman_adv: batadv0: Adding interface: batadv_slave_1
[  721.392085][T10577] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  721.395113][T10758] bcachefs (loop3): done starting filesystem
[  722.697947][ T5836] bcachefs (loop3): shutting down
[  722.720990][ T5836] bcachefs (loop3): going read-only
[  722.737281][T10577] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  722.747978][ T5836] bcachefs (loop3): finished waiting for writes to stop
[  722.787026][ T5836] bcachefs (loop3): flushing journal and stopping allocators, journal seq 4
[  723.489386][ T5834] Bluetooth: hci6: command tx timeout
[  723.503892][ T5836] bcachefs (loop3): flushing journal and stopping allocators complete, journal seq 4
[  723.540984][ T5836] bcachefs (loop3): clean shutdown complete, journal seq 5
[  723.558597][T10565] batman_adv: batadv0: Adding interface: batadv_slave_0
[  723.567633][T10565] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  723.601824][T10565] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  723.603859][ T5836] bcachefs (loop3): marking filesystem clean
[  723.705928][T10577] hsr_slave_0: entered promiscuous mode
[  723.714675][ T5836] bcachefs (loop3): shutdown complete
[  723.714922][T10577] hsr_slave_1: entered promiscuous mode
[  723.726759][T10577] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  723.734924][T10577] Cannot create hsr debugfs directory
[  723.768326][T10565] batman_adv: batadv0: Adding interface: batadv_slave_1
[  723.784485][T10565] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  723.852770][T10565] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  724.234632][T10565] hsr_slave_0: entered promiscuous mode
[  724.263784][T10565] hsr_slave_1: entered promiscuous mode
[  724.270756][T10565] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  724.286527][T10565] Cannot create hsr debugfs directory
[  725.562716][ T5846] Bluetooth: hci6: command tx timeout
[  729.685196][T10737] chnl_net:caif_netlink_parms(): no params data found
[  734.082112][T10737] bridge0: port 1(bridge_slave_0) entered blocking state
[  734.105048][ T5834] Bluetooth: hci6: command 0x0405 tx timeout
[  734.132962][T10737] bridge0: port 1(bridge_slave_0) entered disabled state
[  734.611400][T10737] bridge_slave_0: entered allmulticast mode
[  734.624085][T10737] bridge_slave_0: entered promiscuous mode
[  734.639522][T10737] bridge0: port 2(bridge_slave_1) entered blocking state
[  734.736801][T10737] bridge0: port 2(bridge_slave_1) entered disabled state
[  734.755334][T10737] bridge_slave_1: entered allmulticast mode
[  734.774253][T10737] bridge_slave_1: entered promiscuous mode
[  735.202106][ T1099] bridge_slave_1: left allmulticast mode
[  735.219558][ T1099] bridge_slave_1: left promiscuous mode
[  735.231153][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  736.214869][ T1099] bridge_slave_0: left allmulticast mode
[  736.220767][ T1099] bridge_slave_0: left promiscuous mode
[  736.243927][T10875] loop3: detected capacity change from 0 to 128
[  736.440763][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  736.466741][ T1099] bridge_slave_1: left allmulticast mode
[  736.473274][ T1099] bridge_slave_1: left promiscuous mode
[  736.479091][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  736.486429][T10875] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  736.506175][T10875] ext4 filesystem being mounted at /301/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  736.507739][ T1099] bridge_slave_0: left allmulticast mode
[  736.902642][ T1099] bridge_slave_0: left promiscuous mode
[  736.908617][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  737.391367][T10892] loop5: detected capacity change from 0 to 1024
[  738.131438][ T5836] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  738.280557][ T9938] hfsplus: b-tree write err: -5, ino 4
[  740.881998][T10918] xt_policy: output policy not valid in PREROUTING and INPUT
[  744.429644][T10933] loop3: detected capacity change from 0 to 128
[  746.568399][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  746.575287][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  747.068544][T10951] loop5: detected capacity change from 0 to 64
[  747.088169][T10951] overlay: filesystem on ./file0 not supported
[  747.834587][T10954] loop3: detected capacity change from 0 to 128
[  747.894969][T10954] affs: No valid root block on device loop3
[  747.955319][T10954] tmpfs: Unknown parameter 'í^f'
[  751.359295][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  751.379049][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  751.405825][ T1099] bond0 (unregistering): Released all slaves
[  751.448565][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  751.469740][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  751.493436][ T1099] bond0 (unregistering): Released all slaves
[  751.578622][T10737] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  751.695015][T10737] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  753.692695][T10982] loop3: detected capacity change from 0 to 128
[  755.388781][ T5834] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  755.449663][ T5834] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  755.453252][T10997] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  755.466834][T10997] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  755.478000][T10997] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  755.487868][T10997] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  756.041838][T10997] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  756.055187][T10999] tty tty4: ldisc open failed (-12), clearing slot 3
[  756.132557][T10997] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  756.148747][T10997] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  756.160146][T10997] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  756.171039][ T1099] hsr_slave_0: left promiscuous mode
[  756.241603][ T1099] hsr_slave_1: left promiscuous mode
[  756.268221][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  756.279655][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  757.166673][ T1099] hsr_slave_0: left promiscuous mode
[  757.186680][ T1099] hsr_slave_1: left promiscuous mode
[  757.300770][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  757.390861][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  758.092733][ T5850] Bluetooth: hci0: command tx timeout
[  758.643368][ T5850] Bluetooth: hci7: command tx timeout
[  759.113198][T11025] loop3: detected capacity change from 0 to 16
[  759.126387][T11025] erofs (device loop3): mounted with root inode @ nid 36.
[  759.432717][   T30] audit: type=1107 audit(1746732278.837:383): pid=11022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg='¸'
[  760.162876][ T5850] Bluetooth: hci0: command tx timeout
[  760.723895][ T5850] Bluetooth: hci7: command tx timeout
[  762.478187][ T5850] Bluetooth: hci0: command tx timeout
[  762.802528][ T5850] Bluetooth: hci7: command tx timeout
[  762.926521][T11051] loop3: detected capacity change from 0 to 256
[  762.964358][T11051] FAT-fs (loop3): Directory bread(block 64) failed
[  762.971098][T11051] FAT-fs (loop3): Directory bread(block 65) failed
[  762.978329][T11051] FAT-fs (loop3): Directory bread(block 66) failed
[  762.984991][T11051] FAT-fs (loop3): Directory bread(block 67) failed
[  762.991669][T11051] FAT-fs (loop3): Directory bread(block 68) failed
[  762.998562][T11051] FAT-fs (loop3): Directory bread(block 69) failed
[  763.005445][T11051] FAT-fs (loop3): Directory bread(block 70) failed
[  763.012112][T11051] FAT-fs (loop3): Directory bread(block 71) failed
[  763.018910][T11051] FAT-fs (loop3): Directory bread(block 72) failed
[  763.025651][T11051] FAT-fs (loop3): Directory bread(block 73) failed
[  764.092060][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  764.317442][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  764.489446][T11058] loop3: detected capacity change from 0 to 2048
[  764.563526][ T5850] Bluetooth: hci0: command tx timeout
[  764.571969][T11058] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[  764.595119][T11058] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  765.584389][ T5850] Bluetooth: hci7: command tx timeout
[  766.415901][T11066] syz.5.1290: attempt to access beyond end of device
[  766.415901][T11066] nbd5: rw=6144, sector=128, nr_sectors = 8 limit=0
[  766.464126][T11066] gfs2: error -5 reading superblock
[  768.320893][T11080] loop3: detected capacity change from 0 to 8
[  769.098861][T11080] unable to read id index table
[  769.410337][T11084] loop5: detected capacity change from 0 to 64
[  771.387568][T11095] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  772.543321][T11097] Cannot find del_set index 4 as target
[  773.556749][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  774.211660][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  775.136726][T10737] team0: Port device team_slave_0 added
[  777.816813][T11127] loop3: detected capacity change from 0 to 8
[  778.060334][   T30] audit: type=1800 audit(1746732297.427:384): pid=11127 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1303" name="file1" dev="loop3" ino=5 res=0 errno=0
[  778.649552][T10997] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  778.672296][T10997] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  778.684995][T10997] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  778.703847][T10997] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  778.733501][T10997] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  779.498506][T10990] chnl_net:caif_netlink_parms(): no params data found
[  780.029999][T11152] loop3: detected capacity change from 0 to 4096
[  780.175905][T10995] chnl_net:caif_netlink_parms(): no params data found
[  781.049805][T10997] Bluetooth: hci5: command tx timeout
[  782.151703][T10990] bridge0: port 1(bridge_slave_0) entered blocking state
[  782.504985][T11166] openvswitch: netlink: VXLAN extension 311 out of range max 1
[  782.520897][T10990] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.540096][T10990] bridge_slave_0: entered allmulticast mode
[  782.623532][T10990] bridge_slave_0: entered promiscuous mode
[  782.644165][T10990] bridge0: port 2(bridge_slave_1) entered blocking state
[  782.651390][T10990] bridge0: port 2(bridge_slave_1) entered disabled state
[  782.673071][T10990] bridge_slave_1: entered allmulticast mode
[  782.695074][T10990] bridge_slave_1: entered promiscuous mode
[  783.123067][T10997] Bluetooth: hci5: command tx timeout
[  783.916419][T11181] program syz.3.1314 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  785.038848][T10990] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  785.064463][T10990] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  785.350087][T10997] Bluetooth: hci5: command tx timeout
[  787.343058][T10995] bridge0: port 1(bridge_slave_0) entered blocking state
[  787.352293][T10995] bridge0: port 1(bridge_slave_0) entered disabled state
[  787.411533][T10995] bridge_slave_0: entered allmulticast mode
[  787.425599][T10995] bridge_slave_0: entered promiscuous mode
[  788.082574][T10997] Bluetooth: hci5: command tx timeout
[  788.565246][T11217] loop3: detected capacity change from 0 to 256
[  789.063414][T11217] FAT-fs (loop3): Directory bread(block 64) failed
[  789.070186][T11217] FAT-fs (loop3): Directory bread(block 65) failed
[  789.077455][T11217] FAT-fs (loop3): Directory bread(block 66) failed
[  789.084124][T11217] FAT-fs (loop3): Directory bread(block 67) failed
[  789.090829][T11217] FAT-fs (loop3): Directory bread(block 68) failed
[  789.097423][T11217] FAT-fs (loop3): Directory bread(block 69) failed
[  789.104160][T11217] FAT-fs (loop3): Directory bread(block 70) failed
[  789.110846][T11217] FAT-fs (loop3): Directory bread(block 71) failed
[  789.117592][T11217] FAT-fs (loop3): Directory bread(block 72) failed
[  789.124298][T11217] FAT-fs (loop3): Directory bread(block 73) failed
[  789.188567][T10995] bridge0: port 2(bridge_slave_1) entered blocking state
[  789.197578][T10995] bridge0: port 2(bridge_slave_1) entered disabled state
[  789.206152][T10995] bridge_slave_1: entered allmulticast mode
[  789.215473][T10995] bridge_slave_1: entered promiscuous mode
[  789.395974][T10990] team0: Port device team_slave_0 added
[  789.407779][T10990] team0: Port device team_slave_1 added
[  790.677056][T10995] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  790.743332][T10995] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  790.883442][T10990] batman_adv: batadv0: Adding interface: batadv_slave_0
[  790.899258][T10990] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  790.931204][T10990] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  791.167851][T10990] batman_adv: batadv0: Adding interface: batadv_slave_1
[  791.878303][T10990] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  792.029022][T10990] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  792.390518][T11132] chnl_net:caif_netlink_parms(): no params data found
[  792.512256][T10995] team0: Port device team_slave_0 added
[  792.635772][T10995] team0: Port device team_slave_1 added
[  792.705586][ T1099] bridge_slave_1: left allmulticast mode
[  792.711409][ T1099] bridge_slave_1: left promiscuous mode
[  792.751157][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  793.677036][ T1099] bridge_slave_0: left allmulticast mode
[  793.693039][ T1099] bridge_slave_0: left promiscuous mode
[  793.704236][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  793.733627][ T1099] bridge_slave_1: left allmulticast mode
[  793.749135][ T1099] bridge_slave_1: left promiscuous mode
[  793.775085][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  793.853161][ T1099] bridge_slave_0: left allmulticast mode
[  794.039645][ T1099] bridge_slave_0: left promiscuous mode
[  794.046742][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  796.139280][T11255] netlink: 'syz.2.1330': attribute type 2 has an invalid length.
[  796.148080][T11255] netlink: 'syz.2.1330': attribute type 1 has an invalid length.
[  796.633221][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  796.662588][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  797.425589][ T1099] bond0 (unregistering): Released all slaves
[  797.738617][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  798.392816][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  798.415966][ T1099] bond0 (unregistering): Released all slaves
[  800.665065][T10990] hsr_slave_0: entered promiscuous mode
[  800.672054][T10990] hsr_slave_1: entered promiscuous mode
[  800.763036][T10990] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  800.770670][T10990] Cannot create hsr debugfs directory
[  802.133369][T10995] batman_adv: batadv0: Adding interface: batadv_slave_0
[  802.216123][T10995] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  802.444391][T10995] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  803.812964][T11304] loop5: detected capacity change from 0 to 1024
[  805.497958][T11310] loop3: detected capacity change from 0 to 22
[  805.512835][ T1099] hsr_slave_0: left promiscuous mode
[  805.513986][T11310] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  805.553577][ T1099] hsr_slave_1: left promiscuous mode
[  805.556079][T11310] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  805.559898][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  806.100404][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  808.143075][ T1297] ieee802154 phy0 wpan0: encryption failed: -22
[  808.150293][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[  810.275657][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  810.336372][T11333] loop3: detected capacity change from 0 to 256
[  810.371393][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  810.415120][T11333] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d)
[  812.380199][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  812.597347][T10995] batman_adv: batadv0: Adding interface: batadv_slave_1
[  812.604430][T10995] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  812.631656][T10995] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  812.874971][T11132] bridge0: port 1(bridge_slave_0) entered blocking state
[  812.884266][T11132] bridge0: port 1(bridge_slave_0) entered disabled state
[  812.891615][T11132] bridge_slave_0: entered allmulticast mode
[  812.907179][T11132] bridge_slave_0: entered promiscuous mode
[  812.942745][T11132] bridge0: port 2(bridge_slave_1) entered blocking state
[  812.949986][T11132] bridge0: port 2(bridge_slave_1) entered disabled state
[  812.974506][T11132] bridge_slave_1: entered allmulticast mode
[  812.992999][T11132] bridge_slave_1: entered promiscuous mode
[  813.163849][T11132] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  813.206796][T11132] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  813.499672][T11132] team0: Port device team_slave_0 added
[  813.701122][ T5850] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  813.717952][ T5850] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  813.729238][ T5850] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  814.003445][T11132] team0: Port device team_slave_1 added
[  814.009974][ T5850] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  814.017855][ T5850] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  816.769772][T10997] Bluetooth: hci0: command tx timeout
[  816.872542][ T5850] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  816.887772][ T5850] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  816.900772][ T5850] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  816.909581][ T5850] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  816.917693][ T5850] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  817.116875][T11132] batman_adv: batadv0: Adding interface: batadv_slave_0
[  817.116899][T11132] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  817.116928][T11132] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  817.136510][T11132] batman_adv: batadv0: Adding interface: batadv_slave_1
[  817.136616][T11132] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  817.136693][T11132] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  817.815364][T11379] xt_TPROXY: Can be used only with -p tcp or -p udp
[  818.687583][    C0] vkms_vblank_simulate: vblank timer overrun
[  818.808766][ T5850] Bluetooth: hci0: command tx timeout
[  818.966517][ T5850] Bluetooth: hci1: command tx timeout
[  819.023504][T11132] hsr_slave_0: entered promiscuous mode
[  819.024774][T11132] hsr_slave_1: entered promiscuous mode
[  819.025543][T11132] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  819.025624][T11132] Cannot create hsr debugfs directory
[  819.550837][T11383] tty tty1: ldisc open failed (-12), clearing slot 0
[  820.696311][ T1099] bridge_slave_1: left allmulticast mode
[  820.702120][ T1099] bridge_slave_1: left promiscuous mode
[  820.738939][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  820.786918][ T1099] bridge_slave_0: left allmulticast mode
[  820.796049][ T1099] bridge_slave_0: left promiscuous mode
[  820.801933][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  820.877795][T11398] netlink: 32 bytes leftover after parsing attributes in process `syz.3.1363'.
[  820.882960][ T5850] Bluetooth: hci0: command tx timeout
[  820.899299][ T1099] bridge_slave_1: left allmulticast mode
[  820.905599][ T1099] bridge_slave_1: left promiscuous mode
[  820.912932][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  821.015399][ T1099] bridge_slave_0: left allmulticast mode
[  821.044875][ T5850] Bluetooth: hci1: command tx timeout
[  821.061583][ T1099] bridge_slave_0: left promiscuous mode
[  821.106940][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  822.313512][ T1099] bridge_slave_1: left allmulticast mode
[  822.342915][ T1099] bridge_slave_1: left promiscuous mode
[  822.348912][ T1099] bridge0: port 2(bridge_slave_1) entered disabled state
[  822.374980][ T1099] bridge_slave_0: left allmulticast mode
[  822.380735][ T1099] bridge_slave_0: left promiscuous mode
[  822.397923][ T1099] bridge0: port 1(bridge_slave_0) entered disabled state
[  823.122705][T10997] Bluetooth: hci1: command tx timeout
[  823.130466][ T5850] Bluetooth: hci0: command tx timeout
[  825.212858][ T5850] Bluetooth: hci1: command tx timeout
[  826.150149][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  827.473570][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  828.333997][ T1099] bond0 (unregistering): Released all slaves
[  828.394359][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  829.397732][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  829.459379][ T1099] bond0 (unregistering): Released all slaves
[  829.503202][ T1099] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  829.543756][ T1099] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  829.609923][ T1099] bond0 (unregistering): Released all slaves
[  831.789676][ T1099] hsr_slave_0: left promiscuous mode
[  831.852004][ T1099] hsr_slave_1: left promiscuous mode
[  832.050382][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  832.811473][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  832.893423][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  832.908785][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  833.501069][ T1099] hsr_slave_0: left promiscuous mode
[  833.508133][ T1099] hsr_slave_1: left promiscuous mode
[  833.528733][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_0
[  833.722043][ T1099] batman_adv: batadv0: Removing interface: batadv_slave_1
[  835.864771][T11513] ptrace attach of "./syz-executor exec"[5832] was attempted by "./syz-executor exec"[11513]
[  836.877809][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  836.989828][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  837.351503][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  837.398820][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  837.877293][ T1099] team0 (unregistering): Port device team_slave_1 removed
[  837.939547][ T1099] team0 (unregistering): Port device team_slave_0 removed
[  839.467141][T11366] chnl_net:caif_netlink_parms(): no params data found
[  840.361301][ T5846] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  840.375136][ T5846] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  840.384937][ T5846] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  840.406347][ T5846] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  840.414328][ T5846] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  842.513169][ T5850] Bluetooth: hci6: command tx timeout
[  842.784961][ T5850] Bluetooth: hci4: unexpected event for opcode 0x0004
[  842.964388][T11342] chnl_net:caif_netlink_parms(): no params data found
[  843.390800][T11559] loop3: detected capacity change from 0 to 256
[  843.402053][T11559] vfat: Unknown parameter 'flush<iocharset'
[  843.424201][T11557] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(5)
[  843.431241][T11557] vhci_hcd vhci_hcd.0: devid(0) speed(1) speed_str(low-speed)
[  843.441044][T11557] vhci_hcd vhci_hcd.0: Device attached
[  844.046932][T11558] vhci_hcd: connection closed
[  844.055267][ T6620] vhci_hcd: stop threads
[  844.070198][ T6620] vhci_hcd: release socket
[  844.087944][ T6620] vhci_hcd: disconnect device
[  844.404709][T11366] bridge0: port 1(bridge_slave_0) entered blocking state
[  844.427148][T11366] bridge0: port 1(bridge_slave_0) entered disabled state
[  844.437579][T11366] bridge_slave_0: entered allmulticast mode
[  844.451279][T11366] bridge_slave_0: entered promiscuous mode
[  844.473322][T11342] bridge0: port 1(bridge_slave_0) entered blocking state
[  844.488828][T11342] bridge0: port 1(bridge_slave_0) entered disabled state
[  844.499809][T11342] bridge_slave_0: entered allmulticast mode
[  844.521409][T11342] bridge_slave_0: entered promiscuous mode
[  844.530499][T11366] bridge0: port 2(bridge_slave_1) entered blocking state
[  844.582955][T11366] bridge0: port 2(bridge_slave_1) entered disabled state
[  844.590351][T11366] bridge_slave_1: entered allmulticast mode
[  844.722940][ T5846] Bluetooth: hci6: command tx timeout
[  844.782747][T11366] bridge_slave_1: entered promiscuous mode
[  844.877980][T11366] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  844.899049][T11366] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  846.293081][T11342] bridge0: port 2(bridge_slave_1) entered blocking state
[  846.300337][T11342] bridge0: port 2(bridge_slave_1) entered disabled state
[  846.988541][ T5846] Bluetooth: hci6: command tx timeout
[  846.994273][ T5850] Bluetooth: hci4: Controller not accepting commands anymore: ncmd = 0
[  847.003972][ T5850] Bluetooth: hci4: Injecting HCI hardware error event
[  847.016028][ T5846] Bluetooth: hci4: hardware error 0x00
[  847.068198][T11342] bridge_slave_1: entered allmulticast mode
[  847.079922][T11342] bridge_slave_1: entered promiscuous mode
[  847.369577][T11342] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  847.699889][T11366] team0: Port device team_slave_0 added
[  847.952019][T11342] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  848.006386][T11366] team0: Port device team_slave_1 added
[  848.124242][T11342] team0: Port device team_slave_0 added
[  848.145345][T11366] batman_adv: batadv0: Adding interface: batadv_slave_0
[  848.152729][T11366] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  848.178985][T11366] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  848.193244][T11366] batman_adv: batadv0: Adding interface: batadv_slave_1
[  848.200258][T11366] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  848.227107][T11366] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  848.251661][T11342] team0: Port device team_slave_1 added
[  849.042543][ T5850] Bluetooth: hci6: command tx timeout
[  849.199823][ T5846] Bluetooth: hci4: Opcode 0x0c03 failed: -110
[  850.418493][T11614] netlink: 'syz.5.1409': attribute type 11 has an invalid length.
[  850.428873][T11614] netlink: 224 bytes leftover after parsing attributes in process `syz.5.1409'.
[  850.815384][T11342] batman_adv: batadv0: Adding interface: batadv_slave_0
[  850.828385][T11342] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  850.861024][T11342] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  850.881129][T11342] batman_adv: batadv0: Adding interface: batadv_slave_1
[  850.890337][T11342] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  850.923248][T11342] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  851.099683][T11342] hsr_slave_0: entered promiscuous mode
[  851.127227][T11342] hsr_slave_1: entered promiscuous mode
[  851.146738][T11342] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  851.161328][T11342] Cannot create hsr debugfs directory
[  851.484541][ T1077] ------------[ cut here ]------------
[  851.490611][ T1077] WARNING: CPU: 0 PID: 1077 at io_uring/io_uring.c:2924 io_ring_exit_work+0x43c/0x880
[  851.500488][ T1077] Modules linked in:
[  851.505052][ T1077] CPU: 0 UID: 0 PID: 1077 Comm: kworker/u8:5 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  851.517706][ T1077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  851.527980][ T1077] Workqueue: iou_exit io_ring_exit_work
[  851.533840][ T1077] RIP: 0010:io_ring_exit_work+0x43c/0x880
[  851.539629][ T1077] Code: 00 48 8b 7c 24 30 48 8b 74 24 38 e8 1e 1a 2c 0a 48 85 c0 48 8b 5c 24 08 75 3c e8 8f a4 94 00 e9 2b fd ff ff e8 85 a4 94 00 90 <0f> 0b 90 b8 70 17 00 00 48 89 44 24 38 eb c8 89 d9 80 e1 07 80 c1
[  851.559729][ T1077] RSP: 0018:ffffc900039bf980 EFLAGS: 00010293
[  851.565973][ T1077] RAX: ffffffff812b2bcb RBX: 000000010000d6fc RCX: ffff888026379e00
[  851.574079][ T1077] RDX: 0000000000000000 RSI: fffffffffffffff1 RDI: 0000000000000000
[  851.582093][ T1077] RBP: ffffc900039bfb10 R08: ffffc900039bf907 R09: 1ffff92000737f20
[  851.590540][ T1077] R10: dffffc0000000000 R11: fffff52000737f21 R12: 000000010000d6ed
[  851.598659][ T1077] R13: ffff8880688ae310 R14: ffff8880688ae480 R15: dffffc0000000000
[  851.606981][ T1077] FS:  0000000000000000(0000) GS:ffff8881260cc000(0000) knlGS:0000000000000000
[  851.616399][ T1077] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  851.623186][ T1077] CR2: 000000110c2a3589 CR3: 00000000236ff000 CR4: 0000000000350ef0
[  851.631218][ T1077] Call Trace:
[  851.634637][ T1077]  <TASK>
[  851.637623][ T1077]  ? __pfx_io_ring_exit_work+0x10/0x10
[  851.643563][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  851.649261][ T1077]  ? _raw_spin_unlock_irq+0x23/0x50
[  851.654600][ T1077]  ? process_scheduled_works+0x9ec/0x17a0
[  851.660390][ T1077]  ? process_scheduled_works+0x9ec/0x17a0
[  851.666247][ T1077]  process_scheduled_works+0xade/0x17a0
[  851.671907][ T1077]  ? __pfx_process_scheduled_works+0x10/0x10
[  851.678428][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  851.684229][ T1077]  worker_thread+0x8a0/0xda0
[  851.688902][ T1077]  kthread+0x711/0x8a0
[  851.693091][ T1077]  ? __pfx_worker_thread+0x10/0x10
[  851.698245][ T1077]  ? __pfx_kthread+0x10/0x10
[  851.703313][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  851.709008][ T1077]  ? __pfx_kthread+0x10/0x10
[  851.713732][ T1077]  ? _raw_spin_unlock_irq+0x23/0x50
[  851.718986][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  851.724743][ T1077]  ? lockdep_hardirqs_on+0x9c/0x150
[  851.729988][ T1077]  ? __pfx_kthread+0x10/0x10
[  851.735083][ T1077]  ret_from_fork+0x4e/0x80
[  851.739828][ T1077]  ? __pfx_kthread+0x10/0x10
[  851.744726][ T1077]  ret_from_fork_asm+0x1a/0x30
[  851.749545][ T1077]  </TASK>
[  851.752685][ T1077] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  851.759992][ T1077] CPU: 0 UID: 0 PID: 1077 Comm: kworker/u8:5 Not tainted 6.15.0-rc5-syzkaller-00123-g2c89c1b655c0 #0 PREEMPT(full) 
[  851.772177][ T1077] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/29/2025
[  851.782293][ T1077] Workqueue: iou_exit io_ring_exit_work
[  851.787912][ T1077] Call Trace:
[  851.791210][ T1077]  <TASK>
[  851.794159][ T1077]  dump_stack_lvl+0x99/0x250
[  851.798785][ T1077]  ? __asan_memcpy+0x40/0x70
[  851.803400][ T1077]  ? __pfx_dump_stack_lvl+0x10/0x10
[  851.808644][ T1077]  ? __pfx__printk+0x10/0x10
[  851.813290][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  851.818980][ T1077]  panic+0x2db/0x790
[  851.822919][ T1077]  ? __pfx_panic+0x10/0x10
[  851.827357][ T1077]  ? show_trace_log_lvl+0x4fb/0x550
[  851.832590][ T1077]  ? ret_from_fork_asm+0x1a/0x30
[  851.837559][ T1077]  __warn+0x31b/0x4b0
[  851.841563][ T1077]  ? io_ring_exit_work+0x43c/0x880
[  851.846702][ T1077]  ? io_ring_exit_work+0x43c/0x880
[  851.851847][ T1077]  report_bug+0x2be/0x4f0
[  851.856208][ T1077]  ? io_ring_exit_work+0x43c/0x880
[  851.861360][ T1077]  ? io_ring_exit_work+0x43c/0x880
[  851.866524][ T1077]  ? io_ring_exit_work+0x43e/0x880
[  851.871666][ T1077]  handle_bug+0x84/0x160
[  851.875936][ T1077]  exc_invalid_op+0x1a/0x50
[  851.880455][ T1077]  asm_exc_invalid_op+0x1a/0x20
[  851.885305][ T1077] RIP: 0010:io_ring_exit_work+0x43c/0x880
[  851.891039][ T1077] Code: 00 48 8b 7c 24 30 48 8b 74 24 38 e8 1e 1a 2c 0a 48 85 c0 48 8b 5c 24 08 75 3c e8 8f a4 94 00 e9 2b fd ff ff e8 85 a4 94 00 90 <0f> 0b 90 b8 70 17 00 00 48 89 44 24 38 eb c8 89 d9 80 e1 07 80 c1
[  851.910666][ T1077] RSP: 0018:ffffc900039bf980 EFLAGS: 00010293
[  851.916760][ T1077] RAX: ffffffff812b2bcb RBX: 000000010000d6fc RCX: ffff888026379e00
[  851.924734][ T1077] RDX: 0000000000000000 RSI: fffffffffffffff1 RDI: 0000000000000000
[  851.932711][ T1077] RBP: ffffc900039bfb10 R08: ffffc900039bf907 R09: 1ffff92000737f20
[  851.940685][ T1077] R10: dffffc0000000000 R11: fffff52000737f21 R12: 000000010000d6ed
[  851.948657][ T1077] R13: ffff8880688ae310 R14: ffff8880688ae480 R15: dffffc0000000000
[  851.956646][ T1077]  ? io_ring_exit_work+0x43b/0x880
[  851.961895][ T1077]  ? __pfx_io_ring_exit_work+0x10/0x10
[  851.967390][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  851.973038][ T1077]  ? _raw_spin_unlock_irq+0x23/0x50
[  851.978244][ T1077]  ? process_scheduled_works+0x9ec/0x17a0
[  851.983974][ T1077]  ? process_scheduled_works+0x9ec/0x17a0
[  851.989712][ T1077]  process_scheduled_works+0xade/0x17a0
[  851.995315][ T1077]  ? __pfx_process_scheduled_works+0x10/0x10
[  852.001320][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  852.006970][ T1077]  worker_thread+0x8a0/0xda0
[  852.011596][ T1077]  kthread+0x711/0x8a0
[  852.015681][ T1077]  ? __pfx_worker_thread+0x10/0x10
[  852.020794][ T1077]  ? __pfx_kthread+0x10/0x10
[  852.025394][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  852.031033][ T1077]  ? __pfx_kthread+0x10/0x10
[  852.035631][ T1077]  ? _raw_spin_unlock_irq+0x23/0x50
[  852.040834][ T1077]  ? srso_alias_return_thunk+0x5/0xfbef5
[  852.046471][ T1077]  ? lockdep_hardirqs_on+0x9c/0x150
[  852.051688][ T1077]  ? __pfx_kthread+0x10/0x10
[  852.056293][ T1077]  ret_from_fork+0x4e/0x80
[  852.060716][ T1077]  ? __pfx_kthread+0x10/0x10
[  852.065319][ T1077]  ret_from_fork_asm+0x1a/0x30
[  852.070110][ T1077]  </TASK>
[  852.073413][ T1077] Kernel Offset: disabled
[  852.077744][ T1077] Rebooting in 86400 seconds..