last executing test programs:

3m54.067678915s ago: executing program 4 (id=1282):
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r0}, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x28, 0x0, 0x0, 0xfff7f038}, {0x6}]}, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x294}}, 0x0)

3m28.367094301s ago: executing program 4 (id=1282):
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r0}, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x28, 0x0, 0x0, 0xfff7f038}, {0x6}]}, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x294}}, 0x0)

2m27.75514623s ago: executing program 4 (id=1282):
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r0}, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x28, 0x0, 0x0, 0xfff7f038}, {0x6}]}, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x294}}, 0x0)

1m53.804318774s ago: executing program 4 (id=1282):
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r0}, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x28, 0x0, 0x0, 0xfff7f038}, {0x6}]}, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x294}}, 0x0)

1m21.228099699s ago: executing program 4 (id=1282):
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r0}, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x28, 0x0, 0x0, 0xfff7f038}, {0x6}]}, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x294}}, 0x0)

23.33866304s ago: executing program 4 (id=1282):
socket$nl_netfilter(0x10, 0x3, 0xc)
pipe(&(0x7f00000000c0)={<r0=>0xffffffffffffffff})
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000180)={r0}, 0x4)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
setsockopt$SO_ATTACH_FILTER(r2, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000040)=[{0x20, 0x0, 0x0, 0xfffff00c}, {0x28, 0x0, 0x0, 0xfff7f038}, {0x6}]}, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=ANY=[], 0x294}}, 0x0)

7.792902483s ago: executing program 0 (id=2400):
ioperm(0x0, 0x2eae, 0xffffffffffffffff)
flistxattr(0xffffffffffffffff, 0x0, 0x0)

7.593643253s ago: executing program 0 (id=2402):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x18, 0x19, 0x1, 0x0, 0x0, {0x1d, 0xd601, 0x9}, [@nested={0x4, 0x12}]}, 0x18}}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000540), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f00000000c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000040)={<r2=>0xffffffffffffffff}, 0x2, 0x4}}, 0x20)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000200)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x0, 0x0, @local, 0x1}, r2}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000180)={0x3, 0x40, 0xfa02, {{0x6000000, 0x4e21, 0x0, @mcast1}, {0x2, 0x0, 0xac94143e, @loopback}, r2}}, 0x48)

4.321180015s ago: executing program 5 (id=2414):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r0, 0x107, 0xf, &(0x7f0000000100)=0x9, 0x4)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, &(0x7f0000001300)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], 0x0}, 0x90)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000200)='./cgroup\x00', 0x0, 0x0)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001c40)={0x8, 0x3, &(0x7f0000001300)=ANY=[], &(0x7f0000000240)='syzkaller\x00'}, 0x90)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000000180)={r2, r1, 0x1, 0x0, @val=@perf_event}, 0x40)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000300)={'geneve0\x00', <r4=>0x0})
sendto$packet(r0, &(0x7f0000000180)="0b041000e0ff020002004788aa96a13bb1000000000088641100", 0x10000, 0x0, &(0x7f0000000140)={0x11, 0x0, r4}, 0x14)

3.981431439s ago: executing program 5 (id=2416):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x38, 0x38, 0x3, [@array={0x0, 0x0, 0x0, 0x3, 0x0, {0x2, 0x3}}, @int={0x0, 0x0, 0x0, 0x1, 0x5}, @var={0x1, 0x0, 0x0, 0xe, 0x1}]}, {0x0, [0x61]}}, 0x0, 0x53}, 0x20)

3.807505885s ago: executing program 5 (id=2417):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000000)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x5, [@struct={0x2, 0x0, 0x0, 0xc, 0x1}]}, {0x0, [0x0, 0x5f, 0x2e]}}, &(0x7f0000001800)=""/224, 0x29, 0xe0, 0x1}, 0x20)

3.592078734s ago: executing program 5 (id=2419):
r0 = syz_init_net_socket$ax25(0x3, 0x2, 0x0)
ioctl$SIOCAX25CTLCON(r0, 0x890b, &(0x7f0000000080)={@remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x2}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, 0x0, 0x0, 0x0, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @bcast, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @bcast, @bcast, @default]})

3.36445448s ago: executing program 5 (id=2420):
syz_usb_connect(0x0, 0x2d, &(0x7f0000000800)={{0x12, 0x1, 0x0, 0x96, 0x5d, 0x6, 0x40, 0x133e, 0x815, 0x7e66, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1b, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0xff, 0x87, 0x28, 0x0, [], [{{0x9, 0x5, 0x5}}]}}]}}]}}, 0x0)

2.55254631s ago: executing program 0 (id=2422):
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x8200, &(0x7f0000000080)={[{@max_dir_size_kb}, {@stripe}, {@grpid}, {@errors_remount}, {@noblock_validity}, {@block_validity}, {@minixdf}, {@noauto_da_alloc}]}, 0x83, 0x5fe, &(0x7f0000001040)="$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")
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000002800), 0x2, 0x0)
ioctl$VHOST_SET_OWNER(r0, 0xaf01, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000300)={0x1, 0x0, 0x0, &(0x7f0000001600)=""/78, 0x0})
r1 = eventfd2(0x0, 0x0)
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f0000000100)={0x0, r1})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000140))
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x0, 0x0, 0x0, &(0x7f0000000340)=""/185, &(0x7f0000000140)=""/92})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000002780)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001500)=ANY=[], 0x1c}}, 0x0)
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f00000000c0)=0x1)
ioctl$VHOST_VSOCK_SET_GUEST_CID(r0, 0x4008af60, &(0x7f0000000040)={@my=0x1})
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000200)={0x28, 0x0, 0x0, @my=0x1}, 0x10)
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000080)=""/57, 0x0, &(0x7f0000000500)=""/4096})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)

2.550150539s ago: executing program 3 (id=2423):
mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./bus\x00', 0x0, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000d8d60b007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000940)={&(0x7f0000000900)='console\x00', r1}, 0x10)
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000001c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00'}, 0x10)
r3 = add_key$fscrypt_v1(&(0x7f0000000000), &(0x7f0000000040)={'fscrypt:', @desc1}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$search(0xa, r3, 0x0, &(0x7f0000000100)={'syz', 0x0}, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='ext4_ext_remove_space_done\x00', r4}, 0x10)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000400)='blkio.bfq.sectors_recursive\x00', 0x275a, 0x0)

2.183273138s ago: executing program 2 (id=2426):
syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000001480)=ANY=[@ANYRES16=0x0, @ANYRESDEC, @ANYRESHEX, @ANYRES16, @ANYBLOB="76c7e7f30c9c68a449119ac24c53d873ea11e569f57a4b1815758a6d", @ANYRES64, @ANYRESOCT, @ANYRESDEC=0x0, @ANYRES64], 0x1, 0x1ee, &(0x7f0000001200)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000001040)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)

1.91881201s ago: executing program 2 (id=2428):
unshare(0x8000000)
r0 = socket(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000caaffb)={0x0, 0x0, <r1=>0x0}, &(0x7f0000cab000)=0xc)
setregid(0x0, r1)
setgroups(0x1, &(0x7f0000000500)=[r1])
capset(&(0x7f0000000300)={0x19980330}, &(0x7f0000000340))
shmget$private(0x0, 0xfffffffffeffffff, 0x4800, &(0x7f0000ffc000/0x3000)=nil)

1.738858915s ago: executing program 2 (id=2429):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x0, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000085000000b70000000000000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f00000006c0)='sched_switch\x00', r3}, 0x10)
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
pipe2$9p(0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000202070250000000000"], &(0x7f0000000040)='GPL\x00', 0x100009, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r4}, 0x10)
dup(0xffffffffffffffff)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000280), 0x0, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r5, 0x10e, 0xc, &(0x7f0000000040)={0x80}, 0x10)
sendmsg$nl_route(r5, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="240000001a00010000000000000000000a000000000000000000000006"], 0x24}}, 0x0)

1.700731537s ago: executing program 1 (id=2430):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet6(0xa, 0x3, 0x8000000003c)
bind$inet6(r0, &(0x7f0000000000)={0x2, 0x0, 0x0, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, 0x1c)

1.603428525s ago: executing program 1 (id=2431):
socket$nl_generic(0x10, 0x3, 0x10)
socket$rds(0x15, 0x5, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
bpf$MAP_UPDATE_ELEM(0x2, &(0x7f0000000080)={r0, 0x0, 0x0}, 0x20)
sendmsg$IPCTNL_MSG_CT_GET(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="4400000001010101000000000000000002000000040001801800028014000180080001007f00000108000200ac1414aa140019800800010004000000080002"], 0x44}}, 0x0)

1.561218045s ago: executing program 3 (id=2432):
capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000})
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x2)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000400)=0x5)

1.482333093s ago: executing program 0 (id=2433):
mount_setattr(0xffffffffffffffff, 0x0, 0x0, &(0x7f0000001dc0)={0x0, 0x3000f2}, 0x20)

1.407138225s ago: executing program 5 (id=2434):
syz_open_dev$loop(0x0, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
socketpair$unix(0x1, 0x0, 0x0, 0x0)
socket$pptp(0x18, 0x1, 0x2)
openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
socket$inet6(0xa, 0x0, 0x0)
syz_usb_connect$hid(0x0, 0x0, 0x0, 0x0)
r1 = syz_open_dev$usbmon(&(0x7f0000000900), 0x7, 0x0)
ioctl$MON_IOCX_MFETCH(r1, 0xc0109207, &(0x7f0000000080)={0x0, 0x6})
ioctl$MON_IOCX_GETX(r1, 0x80089203, &(0x7f0000000a40)={0x0, 0x0})
syz_open_dev$usbfs(&(0x7f0000000100), 0x205, 0x8401)
close(0xffffffffffffffff)
openat$cgroup_netprio_ifpriomap(0xffffffffffffffff, 0x0, 0x2, 0x0)
write$binfmt_script(0xffffffffffffffff, &(0x7f00000001c0)={'#! ', './file0'}, 0xb)
write(0xffffffffffffffff, 0x0, 0x0)

1.125988373s ago: executing program 1 (id=2435):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @mcast1={0xff, 0x3}}, 0x1c)

1.060046947s ago: executing program 0 (id=2436):
mknod(&(0x7f0000000540)='./file1\x00', 0x0, 0x0)
r0 = signalfd(0xffffffffffffffff, &(0x7f0000003500), 0x8)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = fcntl$dupfd(r1, 0x0, r1)
sendmsg$NFT_MSG_GETCHAIN(r1, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)={0x14, 0x4, 0xa, 0x3}, 0x14}}, 0x0)
mount$9p_fd(0x0, &(0x7f00000000c0)='./file1\x00', &(0x7f0000000280), 0x0, &(0x7f0000000340)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r2, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])

963.091802ms ago: executing program 3 (id=2437):
mkdir(&(0x7f0000000040)='./file1\x00', 0x0)
mkdir(&(0x7f00000003c0)='./file0\x00', 0x0)
mkdir(&(0x7f0000000300)='./bus\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
r0 = landlock_create_ruleset(&(0x7f0000000140)={0x18a}, 0x10, 0x0)
landlock_restrict_self(r0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='blkio.bfq.dequeue\x00', 0x275a, 0x0)

918.834973ms ago: executing program 1 (id=2438):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000000c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cbc-twofish-3way\x00'}, 0x58)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000000280)="80050000916872c4d2728e39f30e9ce9bba5354e37498a5c", 0x18)
r1 = accept$alg(r0, 0x0, 0x0)
sendmsg$alg(r1, &(0x7f00000016c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001640)=[@op={0x18, 0x117, 0x3, 0x1}], 0x18}, 0x0)
recvmmsg(r1, &(0x7f0000009040)=[{{0x0, 0x0, &(0x7f0000001f00)=[{&(0x7f0000001d80)=""/198, 0xc6}], 0x1}}], 0x1, 0x0, 0x0)

775.305044ms ago: executing program 2 (id=2439):
syz_mount_image$minix(&(0x7f0000000200), &(0x7f0000000240)='./file0\x00', 0x808441, &(0x7f00000000c0)=ANY=[], 0xfe, 0x21a, &(0x7f0000001b00)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000000)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
syz_mount_image$fuse(&(0x7f0000000140), &(0x7f00000001c0)='./file0\x00', 0x40000, &(0x7f0000000380)=ANY=[], 0x1, 0x0, 0x0)
r0 = open(&(0x7f00000000c0)='.\x00', 0x0, 0x0)
getdents(r0, &(0x7f00000004c0)=""/137, 0x89)

675.939993ms ago: executing program 1 (id=2440):
r0 = syz_open_dev$ndb(&(0x7f0000000000), 0x0, 0x0)
openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r1 = syz_init_net_socket$bt_l2cap(0x1f, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000240)={0x18, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1837260000000000000000000000040000000000000000"], &(0x7f0000000000)='GPL\x00'}, 0x90)
r2 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$sock_int(r2, 0x1, 0x7, &(0x7f0000000280), 0x4)
listen(r2, 0x0)
ioctl$DRM_IOCTL_IRQ_BUSID(0xffffffffffffffff, 0xc0106403, &(0x7f0000000080)={0x0, 0x0, 0x1, 0x6})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f00000004c0)='contention_begin\x00'}, 0x10)
r3 = dup3(r1, 0xffffffffffffffff, 0x0)
ioctl$NBD_SET_SOCK(r0, 0xab00, r3)
ioctl$NBD_CLEAR_SOCK(r0, 0xab04)
socket(0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(&(0x7f0000000000)=@nbd={'/dev/nbd', 0x0}, &(0x7f0000000280)='./file0\x00', &(0x7f0000000080)='xfs\x00', 0x8410, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(0xffffffffffffffff, 0x84, 0x14, &(0x7f0000000100)=@assoc_value, &(0x7f0000000040)=0x8)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x100008c}, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x29, &(0x7f0000000300)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

675.477254ms ago: executing program 3 (id=2441):
r0 = socket$xdp(0x2c, 0x3, 0x0)
getsockopt$XDP_MMAP_OFFSETS(r0, 0x11b, 0x8, 0xffffffffffffffff, &(0x7f00000001c0)=0x4)

573.025116ms ago: executing program 2 (id=2442):
r0 = socket(0x2, 0x2, 0x0)
r1 = syz_init_net_socket$ax25(0x3, 0x3, 0x0)
bind$ax25(r1, &(0x7f0000000040)={{0x3, @default, 0x1}, [@null={0x40, 0x40, 0x40, 0x40, 0x40, 0x40, 0x2}, @bcast, @default, @null, @null, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @rose={0xbb, 0xbb, 0xbb, 0x1, 0x0}]}, 0x48)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000040)={0x1f, 0xffff}, 0x6)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000280)={0xffffffffffffffff, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4a, 0x0, 0x0, 0x4}, 0x50)
bind$bt_hci(r2, &(0x7f0000000080), 0x6)
r3 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r3, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x6}, 0x4)
setsockopt$packet_fanout_data(r3, 0x107, 0x16, &(0x7f0000000000)={0x2, &(0x7f0000000180)=[{0x28, 0x0, 0x0, 0xfffff034}, {0x6}]}, 0x10)
sendmsg$nl_route_sched(r0, &(0x7f0000000380)={&(0x7f0000000200)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f0000000340)={&(0x7f0000000300)=@gettaction={0x1c, 0x32, 0x800, 0x70bd27, 0x25dfdbfc, {}, [@action_dump_flags=@TCA_ROOT_TIME_DELTA={0x8, 0x4, 0x101}]}, 0x1c}, 0x1, 0x0, 0x0, 0x1040}, 0x40)
r4 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_netdev_private(r4, 0x894a, &(0x7f0000000440)="8d557fd094c38f748ec33512ef3a")
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000180)={0x6, 0x100000}, 0x10)
setsockopt$inet_int(0xffffffffffffffff, 0x0, 0xe, &(0x7f00000001c0)=0x2, 0x4)

387.669136ms ago: executing program 3 (id=2443):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000140)=0x1, 0x4)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="88000000000101040000000000000000020000002c00018014000180080001007f00000108000200e00000020c000280050001000000000006000340000300002400028014000180080001000000000008000200ac1414bb0c000280050001000000000008000740000000001c000f8008000140000000000800034000000000080002"], 0x88}}, 0x0)

194.727188ms ago: executing program 3 (id=2444):
socket$inet_mptcp(0x2, 0x1, 0x106)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10)
bind$packet(0xffffffffffffffff, &(0x7f00000002c0)={0x11, 0x0, 0x0, 0x1, 0x5}, 0x14)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
r2 = syz_open_dev$vim2m(&(0x7f0000000000), 0x0, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r2, 0xc0d05605, &(0x7f0000000040)={0x2, @pix_mp={0x0, 0x0, 0x50323234}})
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000b40), 0x2b842ac, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
r5 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fc00100}]})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, 0x0)
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000580)={<r6=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_SEND(r5, 0xc0182101, &(0x7f0000000100)={r6})
ioctl$SECCOMP_IOCTL_NOTIF_RECV(r5, 0xc0502100, &(0x7f0000000480)={<r7=>0x0})
ioctl$SECCOMP_IOCTL_NOTIF_ADDFD(r5, 0x40182103, &(0x7f0000000180)={r7, 0x3, r5, 0x6})
fchdir(0xffffffffffffffff)
openat$dir(0xffffffffffffff9c, 0x0, 0x0, 0x0)
fanotify_mark(0xffffffffffffffff, 0x0, 0x0, 0xffffffffffffffff, 0x0)

57.253127ms ago: executing program 0 (id=2445):
r0 = syz_open_dev$media(&(0x7f0000000480), 0x2, 0x0)
ioctl$MEDIA_IOC_G_TOPOLOGY(r0, 0xc0487c04, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, &(0x7f0000000200)=[{}, {}, {}], 0x0, 0x0, 0x0})

55.564797ms ago: executing program 1 (id=2446):
r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0)
ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x1, {0xa, @raw_data="cd1bbe24cb522ca048535633897d147ce7f33897ef4f01481515e876dca85ca2f3c88130ec01da484f3a405da0fd93a65c2d08b14c8754b61863062895dd48f7c3766b4f623c36cc95b915e98996a44a6814be7f16e3ff6872356d5a1bd50703a4367c5c0e5f700404e5dd36f1873c0c2de2de2f15ad991d333be811f16e54842204bab7387615c5c03bdcda8640615529d87cdfb667ecacc24553f785af8899f26178c125bd07d22779316052f4150cbbb31a6f01420153738d759d2eca7818c5908933b18401eb"}})

0s ago: executing program 2 (id=2447):
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='ns\x00')
fchdir(r0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
mount_setattr(r1, &(0x7f0000001d80)='.\x00', 0x0, &(0x7f0000001dc0)={0xb}, 0x20)
openat$cgroup_ro(r1, &(0x7f00000000c0)='devices.list\x00', 0x275a, 0x2)

kernel console output (not intermixed with test programs):

id problems!
[  815.781178][T13248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  815.797282][T13248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.807839][T13248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  815.819057][T13248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.830613][T13248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  815.842802][T13248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.854255][T13248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  815.864949][T13248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.874885][T13248] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  815.886417][T13248] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  815.928527][T13558] loop5: detected capacity change from 0 to 512
[  815.935095][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  815.960732][T13248] batman_adv: batadv0: Interface activated: batadv_slave_1
[  815.975498][T13248] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  815.986848][T13248] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  815.996443][T13248] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  816.077066][T13248] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  816.238448][T13560] loop1: detected capacity change from 0 to 1024
[  816.327306][T13560] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  816.339183][T13344] veth0_macvtap: entered promiscuous mode
[  816.480434][T13567] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2097'.
[  816.676887][T13565] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2098'.
[  816.988609][T13344] veth1_macvtap: entered promiscuous mode
[  817.206402][T12851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  817.297134][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.356256][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.369412][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.380330][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.391496][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.402498][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.440104][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.458097][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.513527][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.524249][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.535012][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.547366][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.557381][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.568104][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.587070][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  817.607965][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.626344][T13344] batman_adv: batadv0: Interface activated: batadv_slave_0
[  817.720295][T13578] veth3: entered allmulticast mode
[  817.768113][T10082] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  817.770098][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  817.786188][T10082] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  817.841948][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.882292][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  817.896517][T13588] block nbd0: Cannot use ioctl interface on a netlink controlled device.
[  817.946941][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  817.995669][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.006465][T13584] loop3: detected capacity change from 0 to 4096
[  818.014996][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.027444][T13584] ntfs3: Unknown parameter 'spjrse'
[  818.040655][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.087939][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.109717][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.152046][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.196240][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.269376][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.321361][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.341909][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.376913][T13344] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  818.422081][T13344] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  818.435740][T13344] batman_adv: batadv0: Interface activated: batadv_slave_1
[  818.551108][T13344] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  818.571478][T13598] Bluetooth: MGMT ver 1.23
[  818.597249][T13344] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  819.677753][T13344] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  819.871958][T13344] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  820.176915][T13609] netlink: 28 bytes leftover after parsing attributes in process `syz.1.2111'.
[  820.255552][ T2537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  820.275620][ T2537] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  820.405167][T13611] loop0: detected capacity change from 0 to 256
[  820.445137][T13611] vfat: Unknown parameter 'iocharsut'
[  820.678557][T13621] loop1: detected capacity change from 0 to 128
[  820.892705][T11410] usb 4-1: new high-speed USB device number 33 using dummy_hcd
[  820.934038][ T1101] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  820.954801][ T1101] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  821.007260][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  821.025764][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  821.049123][ T1844] kernel read not supported for file /amidi2 (pid: 1844 comm: kworker/1:2)
[  821.093772][T11410] usb 4-1: Using ep0 maxpacket: 32
[  821.145421][T11410] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  821.173085][T11410] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  821.189378][T11410] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  821.216467][T11410] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  821.244191][T11410] usb 4-1: config 0 descriptor??
[  821.253123][T11410] hub 4-1:0.0: USB hub found
[  821.460408][T11410] hub 4-1:0.0: 1 port detected
[  821.462054][T10076] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.575456][T10076] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.666554][T10076] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.771440][T10076] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  821.919198][T10076] bridge_slave_1: left allmulticast mode
[  821.925114][T10076] bridge_slave_1: left promiscuous mode
[  821.931025][T10076] bridge0: port 2(bridge_slave_1) entered disabled state
[  821.946383][T10076] bridge_slave_0: left allmulticast mode
[  821.952604][T10076] bridge_slave_0: left promiscuous mode
[  821.958388][T10076] bridge0: port 1(bridge_slave_0) entered disabled state
[  822.095087][    T8] hub 4-1:0.0: activate --> -90
[  822.289568][T13634] loop5: detected capacity change from 0 to 256
[  822.317584][T13636] loop0: detected capacity change from 0 to 1024
[  822.358400][T13634] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  822.360779][T13636] hfsplus: unable to parse mount options
[  822.517168][ T1844] usb 4-1: USB disconnect, device number 33
[  822.526638][    T8] usb 4-1-port1: config error
[  822.652352][T13634] loop5: detected capacity change from 256 to 0
[  822.664064][T13642] syz.5.2122: attempt to access beyond end of device
[  822.664064][T13642] loop5: rw=2049, sector=161, nr_sectors = 1 limit=0
[  822.762341][T13642] Buffer I/O error on dev loop5, logical block 161, lost sync page write
[  822.992267][T13640] loop0: detected capacity change from 0 to 2048
[  823.169304][   T29] audit: type=1326 audit(1723459923.775:475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13643 comm="syz.2.2124" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f531b5779f9 code=0x0
[  824.878104][T13640] UDF-fs: error (device loop0): udf_process_sequence: Primary Volume Descriptor not found!
[  824.983365][T13640] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  825.019434][ T7735] syz-executor: attempt to access beyond end of device
[  825.019434][ T7735] loop5: rw=0, sector=161, nr_sectors = 1 limit=0
[  825.096579][ T7735] syz-executor: attempt to access beyond end of device
[  825.096579][ T7735] loop5: rw=0, sector=161, nr_sectors = 1 limit=0
[  825.139739][ T7735] syz-executor: attempt to access beyond end of device
[  825.139739][ T7735] loop5: rw=2049, sector=160, nr_sectors = 1 limit=0
[  825.177540][ T7735] Buffer I/O error on dev loop5, logical block 160, lost sync page write
[  825.178358][T11002] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  825.218018][T11002] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  825.229303][T11002] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  825.241063][T11002] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  825.251194][T11002] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  825.260583][T11002] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  826.072582][T13663] x_tables: duplicate underflow at hook 4
[  826.472054][ T1178] usb 3-1: new high-speed USB device number 16 using dummy_hcd
[  826.534892][T13673] loop3: detected capacity change from 0 to 1024
[  826.577882][T10076] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  826.594790][T13674] loop1: detected capacity change from 0 to 512
[  826.600514][T13673] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  826.629813][T10076] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  826.660940][T13674] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  826.682517][T13673] ext4 filesystem being mounted at /32/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  826.700366][ T1178] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  826.723837][T10076] bond0 (unregistering): Released all slaves
[  826.732248][ T1178] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  826.732385][T13674] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  826.968309][ T1178] usb 3-1: New USB device found, idVendor=056a, idProduct=0317, bcdDevice= 0.00
[  826.977571][ T1178] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  826.994738][ T1178] usb 3-1: config 0 descriptor??
[  827.343708][ T5245] Bluetooth: hci1: command tx timeout
[  827.807391][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.854767][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.864403][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.872007][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.899957][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.910522][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.918269][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.926309][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.950002][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.971560][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  827.998812][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.016943][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017045][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017073][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017093][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017111][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017155][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017173][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017191][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017209][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017226][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017244][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017262][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017300][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017318][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017336][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017353][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017371][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017389][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017407][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017445][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017462][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017480][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017498][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017516][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017769][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017793][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017811][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017829][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017872][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017890][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017908][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017926][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.017966][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018004][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018023][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018041][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018059][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018077][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018095][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018113][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018154][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018172][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018190][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018208][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018225][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018243][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018261][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018300][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018318][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018336][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018354][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018374][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018392][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018429][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018447][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018465][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018483][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018501][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018519][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018537][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018575][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018593][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018611][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018629][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018647][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018665][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018683][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018721][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.018739][  T935] hid-generic 0008:0009:0002.0017: unknown main item tag 0x0
[  828.034097][  T935] hid-generic 0008:0009:0002.0017: hidraw0: <UNKNOWN> HID v80.00 Device [syz1] on syz1
[  828.045360][ T1178] wacom 0003:056A:0317.0018: unknown main item tag 0x0
[  828.046291][ T1178] wacom 0003:056A:0317.0018: Unknown device_type for 'HID 056a:0317'. Assuming pen.
[  828.061368][ T1178] wacom 0003:056A:0317.0018: hidraw0: USB HID v0.00 Device [HID 056a:0317] on usb-dummy_hcd.2-1/input0
[  828.124357][ T1178] input: Wacom Intuos Pro L Pen as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:056A:0317.0018/input/input25
[  828.132424][ T7735] syz-executor: attempt to access beyond end of device
[  828.132424][ T7735] loop5: rw=395265, sector=0, nr_sectors = 1 limit=0
[  828.132676][ T7735] Buffer I/O error on dev loop5, logical block 0, lost sync page write
[  828.334484][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  828.455533][ T1178] usb 3-1: USB disconnect, device number 16
[  829.154637][T12851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  829.268783][T13692] loop3: detected capacity change from 0 to 1024
[  829.415312][ T5245] Bluetooth: hci1: command tx timeout
[  829.530274][ T5364] kernel read not supported for file /rfkill (pid: 5364 comm: kworker/0:8)
[  829.543303][T10076] hsr_slave_0: left promiscuous mode
[  829.590703][T10076] hsr_slave_1: left promiscuous mode
[  829.606727][T11002] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  829.638842][T10076] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  829.650444][T11002] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  829.692047][T10076] batman_adv: batadv0: Removing interface: batadv_slave_0
[  829.696330][T11002] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  829.713649][T10076] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  829.722944][T11002] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  829.748652][T10076] batman_adv: batadv0: Removing interface: batadv_slave_1
[  829.757323][T11002] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[  829.782226][T11002] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  829.970432][T10076] veth1_macvtap: left promiscuous mode
[  830.028552][T10076] veth0_macvtap: left promiscuous mode
[  830.048297][T10076] veth1_vlan: left promiscuous mode
[  830.063160][T10076] veth0_vlan: left promiscuous mode
[  830.406818][T13728] loop3: detected capacity change from 0 to 1024
[  830.467556][T13728] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  830.630262][T13735] loop1: detected capacity change from 0 to 1024
[  831.488327][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  831.497510][T11002] Bluetooth: hci1: command tx timeout
[  831.622358][ T2506] hfsplus: b-tree write err: -5, ino 4
[  831.694699][T13739] loop3: detected capacity change from 0 to 1024
[  831.887907][T13743] VFS: could not find a valid V7 on nullb0.
[  831.939845][T11002] Bluetooth: hci4: command tx timeout
[  832.645276][T13745] loop3: detected capacity change from 0 to 8
[  832.666439][T13745] MTD: Attempt to mount non-MTD device "/dev/loop3"
[  832.704112][T13745] cramfs: unsupported filesystem features
[  833.175771][T13753] loop3: detected capacity change from 0 to 64
[  833.244035][T13753] hfs: invalid catalog max_key_len 7
[  833.252943][T13753] hfs: unable to open catalog tree
[  833.592311][T11002] Bluetooth: hci1: command tx timeout
[  833.795277][T13755] loop1: detected capacity change from 0 to 1024
[  833.835050][T13755] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended.  mounting read-only.
[  833.858662][T10076] team0 (unregistering): Port device team_slave_1 removed
[  833.975829][T11002] Bluetooth: hci4: command tx timeout
[  834.000157][T10076] team0 (unregistering): Port device team_slave_0 removed
[  834.007315][T13759] loop1: detected capacity change from 0 to 256
[  834.008120][T13759] exfat: Deprecated parameter 'namecase'
[  834.027582][T13759] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x1a97a7bd, utbl_chksum : 0xe619d30d)
[  835.048210][T13725] tap0: tun_chr_ioctl cmd 1074025673
[  835.071194][T13774] loop1: detected capacity change from 0 to 4096
[  835.380466][T13654] chnl_net:caif_netlink_parms(): no params data found
[  835.627739][T13790] loop0: detected capacity change from 0 to 256
[  835.720392][T13790] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[  835.788278][T13654] bridge0: port 1(bridge_slave_0) entered blocking state
[  835.795805][T13654] bridge0: port 1(bridge_slave_0) entered disabled state
[  835.803578][T13654] bridge_slave_0: entered allmulticast mode
[  835.811225][T13654] bridge_slave_0: entered promiscuous mode
[  835.877049][ T5364] usb 4-1: new high-speed USB device number 34 using dummy_hcd
[  835.889137][T13654] bridge0: port 2(bridge_slave_1) entered blocking state
[  835.896834][ T5292] usb 3-1: new high-speed USB device number 17 using dummy_hcd
[  835.922877][T13654] bridge0: port 2(bridge_slave_1) entered disabled state
[  835.930133][T13654] bridge_slave_1: entered allmulticast mode
[  835.948500][T13654] bridge_slave_1: entered promiscuous mode
[  836.052637][T11002] Bluetooth: hci4: command tx timeout
[  836.072233][ T5364] usb 4-1: Using ep0 maxpacket: 32
[  836.085208][ T5292] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  836.101735][ T5364] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  836.112617][ T5364] usb 4-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 22
[  836.134874][ T5364] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  836.158287][ T5364] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  836.158816][ T5292] usb 3-1: New USB device found, idVendor=0458, idProduct=500f, bcdDevice= 0.00
[  836.197418][ T5364] usb 4-1: SerialNumber: syz
[  836.211761][ T5292] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  836.234370][ T5292] usb 3-1: config 0 descriptor??
[  836.236246][ T5364] cdc_acm 4-1:1.0: skipping garbage
[  836.241039][T13654] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  836.258716][ T5292] usbhid 3-1:0.0: couldn't find an input interrupt endpoint
[  836.279581][T13654] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  836.349757][T13705] chnl_net:caif_netlink_parms(): no params data found
[  836.399957][T13654] team0: Port device team_slave_0 added
[  836.426764][T13654] team0: Port device team_slave_1 added
[  836.486333][ T5292] usb 4-1: USB disconnect, device number 34
[  836.563194][T13654] batman_adv: batadv0: Adding interface: batadv_slave_0
[  836.570509][T13654] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  836.603119][T13654] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  836.657454][T13654] batman_adv: batadv0: Adding interface: batadv_slave_1
[  836.665852][T13654] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  836.696879][T13654] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  836.735044][ T5364] usb 3-1: USB disconnect, device number 17
[  836.789913][T13705] bridge0: port 1(bridge_slave_0) entered blocking state
[  836.820229][T13705] bridge0: port 1(bridge_slave_0) entered disabled state
[  836.837886][T13705] bridge_slave_0: entered allmulticast mode
[  836.846259][T13705] bridge_slave_0: entered promiscuous mode
[  836.856726][T13705] bridge0: port 2(bridge_slave_1) entered blocking state
[  836.864443][T13705] bridge0: port 2(bridge_slave_1) entered disabled state
[  836.871812][T13705] bridge_slave_1: entered allmulticast mode
[  836.883231][T13705] bridge_slave_1: entered promiscuous mode
[  837.160092][T13705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  837.343938][T13813] loop3: detected capacity change from 0 to 512
[  837.413861][T13816] loop1: detected capacity change from 0 to 8
[  837.901261][T13654] hsr_slave_0: entered promiscuous mode
[  837.920534][T13654] hsr_slave_1: entered promiscuous mode
[  837.928766][T13813] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  837.941356][T13654] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  837.958775][T13654] Cannot create hsr debugfs directory
[  837.964693][   T29] audit: type=1800 audit(1723459938.645:476): pid=13813 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2180" name="file1" dev="loop3" ino=15 res=0 errno=0
[  838.040327][T13820] loop0: detected capacity change from 0 to 512
[  838.132253][T11002] Bluetooth: hci4: command tx timeout
[  838.153433][   T29] audit: type=1804 audit(1723459938.835:477): pid=13813 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.2180" name="/newroot/41/file0/file1" dev="loop3" ino=15 res=1 errno=0
[  838.188544][T13820] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  838.215036][T13820] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  838.247263][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  838.268081][T13705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  838.279931][T13825] loop1: detected capacity change from 0 to 47
[  838.534930][T13285] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  838.585963][T13705] team0: Port device team_slave_0 added
[  838.650764][T13833] loop1: detected capacity change from 0 to 164
[  838.661179][T13705] team0: Port device team_slave_1 added
[  838.756794][T13833] syz.1.2185: attempt to access beyond end of device
[  838.756794][T13833] loop1: rw=524288, sector=4907406892, nr_sectors = 32 limit=164
[  838.778268][T13833] syz.1.2185: attempt to access beyond end of device
[  838.778268][T13833] loop1: rw=0, sector=4907406892, nr_sectors = 8 limit=164
[  838.814475][   T29] audit: type=1800 audit(1723459939.495:478): pid=13833 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.2185" name="/" dev="loop1" ino=2048 res=0 errno=0
[  838.845544][T13705] batman_adv: batadv0: Adding interface: batadv_slave_0
[  838.894194][T13705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  838.970015][T13705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  839.061327][T13705] batman_adv: batadv0: Adding interface: batadv_slave_1
[  839.087212][T13705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  839.172432][T13705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  839.443618][T11410] usb 2-1: new high-speed USB device number 23 using dummy_hcd
[  839.830579][T13845] loop0: detected capacity change from 0 to 1764
[  840.426256][T13705] hsr_slave_0: entered promiscuous mode
[  840.457398][T13705] hsr_slave_1: entered promiscuous mode
[  840.500927][T13705] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  840.510576][T11410] usb 2-1: config index 0 descriptor too short (expected 106, got 36)
[  840.531948][T11410] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  840.539818][T13705] Cannot create hsr debugfs directory
[  840.542915][T11410] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  840.572047][T11410] usb 2-1: New USB device found, idVendor=1b1c, idProduct=1b3e, bcdDevice= 0.00
[  840.591878][T11410] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  840.634769][T11410] usb 2-1: config 0 descriptor??
[  841.068545][T11410] corsair 0003:1B1C:1B3E.0019: unknown main item tag 0x0
[  841.101527][T11410] corsair 0003:1B1C:1B3E.0019: unknown main item tag 0x0
[  841.121917][T11410] corsair 0003:1B1C:1B3E.0019: unknown main item tag 0x0
[  841.150084][T11410] corsair 0003:1B1C:1B3E.0019: unknown main item tag 0x0
[  841.167713][T11410] corsair 0003:1B1C:1B3E.0019: unknown main item tag 0x0
[  841.175796][ T5245] Bluetooth: hci6: command tx timeout
[  841.223384][T11410] corsair 0003:1B1C:1B3E.0019: failed to start in urb: -90
[  841.239598][T11410] corsair 0003:1B1C:1B3E.0019: hidraw0: USB HID v0.00 Device [HID 1b1c:1b3e] on usb-dummy_hcd.1-1/input0
[  841.384749][T11410] usb 2-1: USB disconnect, device number 23
[  841.459100][T13654] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  841.506510][T13654] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  841.639631][T13705] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  841.682744][T13654] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  841.724877][T13654] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  841.911344][T13705] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  842.074838][T13705] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  842.536421][T13705] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  842.682839][T13877] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2201'.
[  842.911378][T13654] 8021q: adding VLAN 0 to HW filter on device bond0
[  843.197760][ T1844] usb 1-1: new high-speed USB device number 20 using dummy_hcd
[  843.515723][T13654] 8021q: adding VLAN 0 to HW filter on device team0
[  843.682551][ T1844] usb 1-1: New USB device found, idVendor=a766, idProduct=7cb5, bcdDevice=55.3a
[  843.731949][ T1844] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  843.792281][ T1844] usb 1-1: config 0 descriptor??
[  843.817822][T10082] bridge0: port 1(bridge_slave_0) entered blocking state
[  843.825180][T10082] bridge0: port 1(bridge_slave_0) entered forwarding state
[  843.848840][ T1844] usb-storage 1-1:0.0: USB Mass Storage device detected
[  843.900186][T10082] bridge0: port 2(bridge_slave_1) entered blocking state
[  843.907447][T10082] bridge0: port 2(bridge_slave_1) entered forwarding state
[  844.068010][ T5236] usb 1-1: USB disconnect, device number 20
[  844.175708][T13654] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  844.270647][T13705] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  844.316202][T13705] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  844.424881][T13705] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  844.485228][T13705] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  844.910823][T13892] loop1: detected capacity change from 0 to 65536
[  845.000121][T13892] XFS (loop1): Mounting V5 Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  845.073701][  T935] usb 4-1: new high-speed USB device number 35 using dummy_hcd
[  845.115879][T13892] XFS (loop1): Ending clean mount
[  845.141504][T13892] XFS (loop1): Quotacheck needed: Please wait.
[  845.215986][T13654] 8021q: adding VLAN 0 to HW filter on device batadv0
[  845.240734][T13705] 8021q: adding VLAN 0 to HW filter on device bond0
[  845.278340][  T935] usb 4-1: Using ep0 maxpacket: 8
[  845.292083][   T29] audit: type=1800 audit(1723459945.965:479): pid=13912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.2209" name="bus" dev="overlay" ino=197 res=0 errno=0
[  845.336168][T13892] XFS (loop1): Quotacheck: Done.
[  845.342212][  T935] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[  845.393409][  T935] usb 4-1: config 179 has an invalid descriptor of length 0, skipping remainder of the config
[  845.397759][T13705] 8021q: adding VLAN 0 to HW filter on device team0
[  845.421996][  T935] usb 4-1: config 179 has no interface number 0
[  845.434909][  T935] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[  845.456689][  T935] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[  845.468344][  T935] usb 4-1: config 179 interface 65 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 23
[  845.481966][  T935] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[  845.494719][  T935] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  845.552765][T13898] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  845.585405][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  845.592738][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  845.700636][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  845.707983][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  846.466982][ T5317] usb 4-1: USB disconnect, device number 35
[  846.574771][T12851] XFS (loop1): Unmounting Filesystem d6f69dbd-8c5d-46be-b88e-92c0ae88ceb2
[  846.740655][T13654] veth0_vlan: entered promiscuous mode
[  846.785191][T13654] veth1_vlan: entered promiscuous mode
[  846.875784][T13705] 8021q: adding VLAN 0 to HW filter on device batadv0
[  846.915626][T13654] veth0_macvtap: entered promiscuous mode
[  846.947320][T13654] veth1_macvtap: entered promiscuous mode
[  847.004489][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.029294][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.050700][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.080773][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.105789][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.137164][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.158667][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.176600][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.196834][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.219664][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.266068][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.291932][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.305112][ T5245] Bluetooth: hci0: ISO packet for unknown connection handle 0
[  847.322081][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.338453][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.348547][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  847.359868][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.365834][T13933] dccp_invalid_packet: P.Data Offset(0) too small
[  847.372468][T13654] batman_adv: batadv0: Interface activated: batadv_slave_0
[  847.463240][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  847.485415][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.725284][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  847.736535][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.747918][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  847.881610][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.893840][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  847.927618][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  847.994888][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  848.070939][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  848.188704][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  848.558033][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  848.636023][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  848.687883][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  848.731988][T13654] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  848.785686][T13654] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  848.812616][T13654] batman_adv: batadv0: Interface activated: batadv_slave_1
[  848.936821][T13654] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  849.134613][T13654] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  849.338244][T13947] loop3: detected capacity change from 0 to 1024
[  849.457099][T13947] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  849.866116][T13654] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  849.902050][T13654] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  850.422964][T13950] loop0: detected capacity change from 0 to 4096
[  850.483876][T13950] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  850.494273][T10076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  850.542256][T10076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  850.592114][T13950] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  850.661805][T13705] veth0_vlan: entered promiscuous mode
[  850.720795][T13705] veth1_vlan: entered promiscuous mode
[  850.766314][T13958] loop1: detected capacity change from 0 to 128
[  850.772670][T10087] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  850.772695][T10087] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  851.965007][T13705] veth0_macvtap: entered promiscuous mode
[  852.074303][T13705] veth1_macvtap: entered promiscuous mode
[  852.234339][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.259972][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.291199][T13966] loop3: detected capacity change from 0 to 2048
[  852.302194][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.326672][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.365239][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.386637][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.412656][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.450114][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.463818][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.465336][T13966] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  852.476712][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.496554][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.507078][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.517075][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.532026][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.544880][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.559501][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.569441][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  852.580068][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.595147][T13705] batman_adv: batadv0: Interface activated: batadv_slave_0
[  852.609367][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  852.620235][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.631393][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  852.674329][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.690012][   T29] audit: type=1800 audit(1723459953.375:480): pid=13966 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2223" name="bus" dev="loop3" ino=18 res=0 errno=0
[  852.703198][T13966] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  852.732069][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  852.757263][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.822108][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  852.852428][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.892025][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  852.922999][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  852.955382][T11002] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  852.958614][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  852.975306][T11002] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  852.986604][T11002] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  852.994085][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  853.004378][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  853.018443][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  853.029810][T11002] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  853.041483][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  853.052532][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  853.062605][T11002] Bluetooth: hci7: unexpected cc 0x0c25 length: 249 > 3
[  853.079828][T13705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  853.082020][T11002] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  853.095280][T13705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  853.155008][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  853.204117][T13705] batman_adv: batadv0: Interface activated: batadv_slave_1
[  853.435753][   T29] audit: type=1326 audit(1723459954.125:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13980 comm="syz.3.2226" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x0
[  853.486226][T13705] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  853.531965][T13705] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  853.541295][T13705] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  853.581445][T13705] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  853.640867][T13986] syz_tun: entered promiscuous mode
[  853.971764][T10087] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.174644][T10087] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.220926][T13980] syz_tun: left promiscuous mode
[  854.366177][T10087] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.484074][T10087] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  854.562345][ T2529] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  854.570205][ T2529] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  854.788972][T13978] chnl_net:caif_netlink_parms(): no params data found
[  854.823653][ T2529] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  854.871944][ T2529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  855.172429][ T5245] Bluetooth: hci7: command tx timeout
[  855.633324][ T5364] usb 2-1: new high-speed USB device number 24 using dummy_hcd
[  855.675427][T14013] loop0: detected capacity change from 0 to 512
[  855.869919][ T5364] usb 2-1: config 0 has no interfaces?
[  856.188482][ T5364] usb 2-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[  856.220980][T14017] 9pnet: Could not find request transport: fd0x0000000000000005
[  856.280473][T14013] EXT4-fs (loop0): fragment/cluster size (4096) != block size (1024)
[  856.321275][ T5364] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  856.376936][ T5245] Bluetooth: hci2: command 0x0406 tx timeout
[  856.396016][ T5364] usb 2-1: config 0 descriptor??
[  856.422977][T13978] bridge0: port 1(bridge_slave_0) entered blocking state
[  856.543854][T13978] bridge0: port 1(bridge_slave_0) entered disabled state
[  856.604653][T13978] bridge_slave_0: entered allmulticast mode
[  856.639475][T13978] bridge_slave_0: entered promiscuous mode
[  856.666446][ T5236] usb 2-1: USB disconnect, device number 24
[  856.666833][ T5245] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  856.687447][ T5245] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  856.699792][T10087] bridge_slave_1: left allmulticast mode
[  856.706847][T10087] bridge_slave_1: left promiscuous mode
[  856.712801][T10087] bridge0: port 2(bridge_slave_1) entered disabled state
[  856.723785][ T5245] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  856.741371][ T5245] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  856.752225][ T5245] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  856.759870][T10087] bridge_slave_0: left allmulticast mode
[  856.759899][T10087] bridge_slave_0: left promiscuous mode
[  856.760122][T10087] bridge0: port 1(bridge_slave_0) entered disabled state
[  856.795519][ T5245] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  856.996567][T14029] loop5: detected capacity change from 0 to 4096
[  857.033548][T14029] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[  857.041620][T14031] loop0: detected capacity change from 0 to 4096
[  857.078438][T14031] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  857.140463][T14031] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  857.194448][T14029] ntfs3: loop5: Mark volume as dirty due to NTFS errors
[  857.252528][T11002] Bluetooth: hci7: command tx timeout
[  857.299403][   T29] audit: type=1804 audit(1723459957.985:482): pid=14032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.2239" name="/newroot/3/file0/file0" dev="loop5" ino=0 res=1 errno=0
[  857.430328][   T29] audit: type=1800 audit(1723459958.075:483): pid=14029 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2239" name="file0" dev="loop5" ino=0 res=0 errno=0
[  857.611935][   T29] audit: type=1326 audit(1723459958.295:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14033 comm="syz.1.2241" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f536a3779f9 code=0x0
[  857.830949][T14044] loop0: detected capacity change from 0 to 256
[  857.876074][T14044] vfat: Bad value for 'dmask'
[  858.612811][T11002] Bluetooth: hci3: command tx timeout
[  858.617240][T14050] loop1: detected capacity change from 0 to 256
[  858.727538][T14050] FAT-fs (loop1): Directory bread(block 64) failed
[  858.750884][T14050] FAT-fs (loop1): Directory bread(block 65) failed
[  858.759524][T14050] FAT-fs (loop1): Directory bread(block 66) failed
[  858.774906][T14050] FAT-fs (loop1): Directory bread(block 67) failed
[  858.781588][T14050] FAT-fs (loop1): Directory bread(block 68) failed
[  858.832288][T14050] FAT-fs (loop1): Directory bread(block 69) failed
[  858.838986][T14050] FAT-fs (loop1): Directory bread(block 70) failed
[  858.863642][T14050] FAT-fs (loop1): Directory bread(block 71) failed
[  858.870716][T11002] Bluetooth: hci1: command tx timeout
[  859.000589][T14050] FAT-fs (loop1): Directory bread(block 72) failed
[  859.041168][T14050] FAT-fs (loop1): Directory bread(block 73) failed
[  859.333635][T11002] Bluetooth: hci7: command tx timeout
[  859.506566][T10087] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  859.582779][T10087] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  859.677898][T10087] bond0 (unregistering): Released all slaves
[  859.812520][T13978] bridge0: port 2(bridge_slave_1) entered blocking state
[  859.827326][T13978] bridge0: port 2(bridge_slave_1) entered disabled state
[  859.842288][T13978] bridge_slave_1: entered allmulticast mode
[  859.875863][T13978] bridge_slave_1: entered promiscuous mode
[  860.079474][T14062] netlink: 'syz.1.2249': attribute type 4 has an invalid length.
[  860.110034][T14062] netlink: 'syz.1.2249': attribute type 1 has an invalid length.
[  860.140447][T14062] netlink: 88156 bytes leftover after parsing attributes in process `syz.1.2249'.
[  860.145700][T14060] loop3: detected capacity change from 0 to 512
[  860.151998][ T5364] usb 6-1: new high-speed USB device number 40 using dummy_hcd
[  860.244491][T14060] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  860.298573][T14060] ext4 filesystem being mounted at /60/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  860.354511][ T5364] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  860.395986][T14067] tmpfs: Bad value for 'size'
[  860.402517][ T5364] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  860.456075][ T5364] usb 6-1: New USB device found, idVendor=0543, idProduct=e621, bcdDevice= 0.00
[  860.485694][ T5364] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  860.524443][ T5364] usb 6-1: config 0 descriptor??
[  860.566990][T13978] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  860.618846][T13978] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  860.854726][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  860.932411][T11002] Bluetooth: hci1: command tx timeout
[  861.024955][ T5364] viewsonic 0003:0543:E621.001A: hidraw0: USB HID v0.00 Device [HID 0543:e621] on usb-dummy_hcd.5-1/input0
[  861.096399][T14078] loop1: detected capacity change from 0 to 2048
[  861.106451][T14078] EXT4-fs (loop1): invalid inodes per group: 8323104
[  861.106451][T14078] 
[  861.302139][ T5317] usb 6-1: USB disconnect, device number 40
[  861.338905][T13978] team0: Port device team_slave_0 added
[  861.380847][T13978] team0: Port device team_slave_1 added
[  861.413795][T11002] Bluetooth: hci7: command tx timeout
[  861.429735][T14077] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2253'.
[  861.534172][T14083] loop3: detected capacity change from 0 to 8
[  862.123833][T10087] hsr_slave_0: left promiscuous mode
[  862.154076][T10087] hsr_slave_1: left promiscuous mode
[  862.233503][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  862.272428][T10087] batman_adv: batadv0: Removing interface: batadv_slave_0
[  862.325716][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  862.343804][T10087] batman_adv: batadv0: Removing interface: batadv_slave_1
[  862.440861][T10087] veth1_macvtap: left promiscuous mode
[  862.464811][T10087] veth0_macvtap: left promiscuous mode
[  862.502231][T10087] veth1_vlan: left promiscuous mode
[  862.524383][T10087] veth0_vlan: left promiscuous mode
[  862.631430][T14099] netlink: 'syz.3.2257': attribute type 2 has an invalid length.
[  862.952183][ T5586] usb 4-1: new high-speed USB device number 36 using dummy_hcd
[  863.012558][T11002] Bluetooth: hci1: command tx timeout
[  863.152152][ T5586] usb 4-1: Using ep0 maxpacket: 32
[  863.164717][ T5586] usb 4-1: New USB device found, idVendor=057c, idProduct=8403, bcdDevice=72.02
[  863.202114][ T5586] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  863.243607][ T5586] usb 4-1: config 0 descriptor??
[  863.250978][ T5586] usb 4-1: ath9k_htc: Device endpoint numbers are not the expected ones
[  865.114621][   T54] Bluetooth: hci1: command tx timeout
[  866.620940][   T54] Bluetooth: hci6: command 0x0406 tx timeout
[  867.368710][T14117] dccp_invalid_packet: P.Data Offset(80) too large
[  868.392650][T10087] team0 (unregistering): Port device team_slave_1 removed
[  868.503475][T10087] team0 (unregistering): Port device team_slave_0 removed
[  869.828624][T13978] batman_adv: batadv0: Adding interface: batadv_slave_0
[  869.856930][T13978] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  869.905515][T13978] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  870.072766][T13978] batman_adv: batadv0: Adding interface: batadv_slave_1
[  870.083749][T13978] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  870.087060][T14121] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2265'.
[  870.120036][ T5292] usb 4-1: USB disconnect, device number 36
[  870.187723][T13978] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  870.909442][T14133] xt_CONNSECMARK: invalid mode: 0
[  870.977275][T14133] loop3: detected capacity change from 0 to 512
[  871.928563][T14133] EXT4-fs (loop3): blocks per group (71) and clusters per group (20800) inconsistent
[  872.255039][T13978] hsr_slave_0: entered promiscuous mode
[  872.360360][T13978] hsr_slave_1: entered promiscuous mode
[  872.370901][T13978] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  872.392020][T13978] Cannot create hsr debugfs directory
[  872.404854][T14023] chnl_net:caif_netlink_parms(): no params data found
[  872.441774][ T5364] usb 1-1: new high-speed USB device number 21 using dummy_hcd
[  872.662171][ T5364] usb 1-1: Using ep0 maxpacket: 16
[  872.695883][ T5364] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0
[  872.732083][ T5364] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 0
[  872.781251][ T5364] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[  872.796542][T14143] loop5: detected capacity change from 0 to 512
[  872.806501][ T5364] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[  872.856910][T14143] EXT4-fs: Mount option(s) incompatible with ext3
[  872.873838][ T5364] usb 1-1: New USB device found, idVendor=0586, idProduct=1500, bcdDevice=2e.97
[  872.911085][ T5364] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  872.931079][ T5364] usb 1-1: Product: syz
[  872.940601][ T5364] usb 1-1: Manufacturer: syz
[  872.946371][ T5364] usb 1-1: SerialNumber: syz
[  872.954170][ T5364] usb 1-1: config 0 descriptor??
[  872.954822][   T54] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  872.964714][ T5364] omninet 1-1:0.0: ZyXEL - omni.net usb converter detected
[  872.980520][   T54] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  872.989270][   T54] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  872.989339][ T5364] usb 1-1: ZyXEL - omni.net usb converter now attached to ttyUSB0
[  873.022052][   T54] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  873.105686][   T54] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  873.115154][   T54] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  873.366669][T14152] loop5: detected capacity change from 0 to 256
[  874.124878][  T935] usb 1-1: USB disconnect, device number 21
[  874.149812][T14152] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d)
[  874.176186][  T935] omninet ttyUSB0: ZyXEL - omni.net usb converter now disconnected from ttyUSB0
[  874.229677][  T935] omninet 1-1:0.0: device disconnected
[  874.249381][T14158] loop3: detected capacity change from 0 to 128
[  874.253231][T10087] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  874.297463][   T29] audit: type=1800 audit(1723459974.985:485): pid=14158 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.2275" name="bus" dev="loop3" ino=1048809 res=0 errno=0
[  875.292450][   T54] Bluetooth: hci5: command tx timeout
[  875.913204][T10087] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  875.973758][T14023] bridge0: port 1(bridge_slave_0) entered blocking state
[  875.980895][T14023] bridge0: port 1(bridge_slave_0) entered disabled state
[  876.060825][T14023] bridge_slave_0: entered allmulticast mode
[  876.098980][T14023] bridge_slave_0: entered promiscuous mode
[  876.126672][T14023] bridge0: port 2(bridge_slave_1) entered blocking state
[  876.147892][T14023] bridge0: port 2(bridge_slave_1) entered disabled state
[  876.169267][T14023] bridge_slave_1: entered allmulticast mode
[  876.251992][T14023] bridge_slave_1: entered promiscuous mode
[  876.289538][T14171] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  876.452262][T14175] loop0: detected capacity change from 0 to 512
[  876.515521][T10087] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  876.544798][T14175] EXT4-fs: Mount option(s) incompatible with ext2
[  877.075229][   T29] audit: type=1326 audit(1723459977.765:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.121459][T10087] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  877.141932][   T29] audit: type=1326 audit(1723459977.765:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.222443][   T29] audit: type=1326 audit(1723459977.795:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=195 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.286602][   T29] audit: type=1326 audit(1723459977.795:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.333162][   T29] audit: type=1326 audit(1723459977.795:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.366903][   T54] Bluetooth: hci5: command tx timeout
[  877.403944][T14023] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  877.484972][   T29] audit: type=1326 audit(1723459977.795:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.527882][T14023] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  877.596703][   T29] audit: type=1326 audit(1723459977.795:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.648288][   T29] audit: type=1326 audit(1723459977.795:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.749855][   T29] audit: type=1326 audit(1723459977.795:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14177 comm="syz.3.2281" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  877.799717][T14189] loop0: detected capacity change from 0 to 512
[  877.828645][T14023] team0: Port device team_slave_0 added
[  877.874045][T14023] team0: Port device team_slave_1 added
[  877.882580][T14189] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  877.895303][T14189] ext4 filesystem being mounted at /57/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  879.167649][T14023] batman_adv: batadv0: Adding interface: batadv_slave_0
[  879.192490][T14023] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  879.231937][T14023] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  879.453263][T14023] batman_adv: batadv0: Adding interface: batadv_slave_1
[  879.460559][   T54] Bluetooth: hci5: command tx timeout
[  879.478398][T14023] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  879.554203][T14209] loop3: detected capacity change from 0 to 4096
[  879.571616][T14023] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  879.574496][T14209] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[  879.999057][T14204] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  880.450749][T14023] hsr_slave_0: entered promiscuous mode
[  880.482334][T14023] hsr_slave_1: entered promiscuous mode
[  880.522172][T14023] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  880.572885][T14023] Cannot create hsr debugfs directory
[  880.757715][T10087] bridge_slave_1: left allmulticast mode
[  880.776119][T10087] bridge_slave_1: left promiscuous mode
[  880.799319][T10087] bridge0: port 2(bridge_slave_1) entered disabled state
[  880.833559][T10087] bridge_slave_0: left allmulticast mode
[  880.839231][T10087] bridge_slave_0: left promiscuous mode
[  880.872246][T10087] bridge0: port 1(bridge_slave_0) entered disabled state
[  881.444066][T14226] sctp: [Deprecated]: syz.5.2298 (pid 14226) Use of int in max_burst socket option deprecated.
[  881.444066][T14226] Use struct sctp_assoc_value instead
[  881.497113][   T54] Bluetooth: hci5: command tx timeout
[  881.805261][T14226] loop5: detected capacity change from 0 to 2048
[  882.112734][T14226] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  882.127918][T11002] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  882.159225][T14226] ext4 filesystem being mounted at /17/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  882.181452][T11002] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  882.200522][T11002] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  882.267985][T11002] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  882.310503][T11002] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  882.322044][T11002] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  882.803839][T10087] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  882.826888][T10087] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  882.858073][T10087] bond0 (unregistering): Released all slaves
[  882.962053][T14148] chnl_net:caif_netlink_parms(): no params data found
[  883.050586][T13705] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  883.842344][   T54] Bluetooth: Frame is too long (len 10, expected len 9)
[  884.275597][T14247] fuse: Bad value for 'fd'
[  884.403650][T14249] loop3: detected capacity change from 0 to 512
[  884.436811][T14249] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.2303: casefold flag without casefold feature
[  884.452163][   T54] Bluetooth: hci3: command tx timeout
[  884.494095][T14249] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.2303: couldn't read orphan inode 15 (err -117)
[  884.533713][T14249] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  884.609280][T14247] EXT4-fs error (device loop3): ext4_empty_dir:3085: inode #2: comm syz.3.2303: invalid size
[  884.663745][T14247] Cannot find add_set index 0 as target
[  884.734563][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  885.095269][T14148] bridge0: port 1(bridge_slave_0) entered blocking state
[  885.103063][T14148] bridge0: port 1(bridge_slave_0) entered disabled state
[  885.204888][T14148] bridge_slave_0: entered allmulticast mode
[  885.226234][T14148] bridge_slave_0: entered promiscuous mode
[  885.739822][T10087] hsr_slave_0: left promiscuous mode
[  885.750580][T10087] hsr_slave_1: left promiscuous mode
[  885.767644][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  885.784600][T10087] batman_adv: batadv0: Removing interface: batadv_slave_0
[  885.803411][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  885.810955][T10087] batman_adv: batadv0: Removing interface: batadv_slave_1
[  885.885268][T10087] veth1_macvtap: left promiscuous mode
[  885.903390][T10087] veth0_macvtap: left promiscuous mode
[  885.909089][T10087] veth1_vlan: left promiscuous mode
[  885.925310][T10087] veth0_vlan: left promiscuous mode
[  886.095623][ T5236] usb 4-1: new high-speed USB device number 37 using dummy_hcd
[  886.165630][T14261] loop5: detected capacity change from 0 to 164
[  886.250121][   T29] kauditd_printk_skb: 13 callbacks suppressed
[  886.250144][   T29] audit: type=1326 audit(1723459986.935:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14260 comm="syz.5.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fad779f9 code=0x7ffc0000
[  886.302107][   T29] audit: type=1326 audit(1723459986.935:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14260 comm="syz.5.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fad779f9 code=0x7ffc0000
[  886.325854][ T5236] usb 4-1: Using ep0 maxpacket: 32
[  886.331147][   T29] audit: type=1326 audit(1723459986.975:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14260 comm="syz.5.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=201 compat=0 ip=0x7f00fad779f9 code=0x7ffc0000
[  886.359934][   T29] audit: type=1326 audit(1723459986.975:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14260 comm="syz.5.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fad779f9 code=0x7ffc0000
[  886.384562][   T29] audit: type=1326 audit(1723459986.975:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14260 comm="syz.5.2306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f00fad779f9 code=0x7ffc0000
[  886.384739][ T5236] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  886.418527][ T5236] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  886.428365][ T5236] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  886.437459][ T5236] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  886.454710][ T5236] usb 4-1: config 0 descriptor??
[  886.462856][ T5236] hub 4-1:0.0: USB hub found
[  886.543777][   T54] Bluetooth: hci3: command tx timeout
[  886.710779][ T5236] hub 4-1:0.0: config failed, hub doesn't have any ports! (err -19)
[  886.917406][ T5236] usbhid 4-1:0.0: can't add hid device: -71
[  886.933735][ T5236] usbhid 4-1:0.0: probe with driver usbhid failed with error -71
[  886.975999][ T5236] usb 4-1: USB disconnect, device number 37
[  887.024388][T10087] team0 (unregistering): Port device team_slave_1 removed
[  887.104078][T10087] team0 (unregistering): Port device team_slave_0 removed
[  887.774350][T14265] loop3: detected capacity change from 0 to 1764
[  888.204050][T14148] bridge0: port 2(bridge_slave_1) entered blocking state
[  888.215530][T14148] bridge0: port 2(bridge_slave_1) entered disabled state
[  888.241887][T14148] bridge_slave_1: entered allmulticast mode
[  888.274280][T14148] bridge_slave_1: entered promiscuous mode
[  888.387783][T14261] A link change request failed with some changes committed already. Interface geneve0 may have been left with an inconsistent configuration, please check.
[  888.455008][T14148] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  888.478702][T14148] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  888.615586][   T54] Bluetooth: hci3: command tx timeout
[  888.720682][T14148] team0: Port device team_slave_0 added
[  888.766037][T14148] team0: Port device team_slave_1 added
[  888.930424][T14148] batman_adv: batadv0: Adding interface: batadv_slave_0
[  888.942528][T14148] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  888.968677][T14148] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  889.001796][T14271] loop5: detected capacity change from 0 to 4096
[  889.013977][T14271] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512).
[  889.040509][T13978] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  889.047491][ T5317] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[  889.133017][T14148] batman_adv: batadv0: Adding interface: batadv_slave_1
[  889.140017][T14148] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  889.180084][T14148] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  889.233794][T13978] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  889.242442][ T5317] usb 4-1: Using ep0 maxpacket: 32
[  889.249787][ T5317] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  889.266199][T13978] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  889.273229][ T5317] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  889.284217][ T5317] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  889.299607][  T935] IPVS: starting estimator thread 0...
[  889.300946][ T5317] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  889.353617][T13978] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  889.361351][T14274] xt_connbytes: Forcing CT accounting to be enabled
[  889.365017][ T5317] usb 4-1: config 0 descriptor??
[  889.383465][T14274] Cannot find add_set index 0 as target
[  889.397311][ T5317] hub 4-1:0.0: USB hub found
[  889.422873][T14275] IPVS: using max 20 ests per chain, 48000 per kthread
[  889.479402][T14274] loop5: detected capacity change from 0 to 1764
[  889.519550][T14274] iso9660: Corrupted directory entry in block 2 of inode 1920
[  889.591810][T14148] hsr_slave_0: entered promiscuous mode
[  889.599408][T14148] hsr_slave_1: entered promiscuous mode
[  889.620749][T14148] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  889.624655][ T5317] hub 4-1:0.0: 1 port detected
[  889.641629][T14148] Cannot create hsr debugfs directory
[  889.671396][T14233] chnl_net:caif_netlink_parms(): no params data found
[  889.982761][T13226] usb 6-1: new high-speed USB device number 41 using dummy_hcd
[  890.039219][T10087] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  890.066580][T14233] bridge0: port 1(bridge_slave_0) entered blocking state
[  890.076626][T14233] bridge0: port 1(bridge_slave_0) entered disabled state
[  890.084120][T14233] bridge_slave_0: entered allmulticast mode
[  890.095041][T14233] bridge_slave_0: entered promiscuous mode
[  890.104557][T14233] bridge0: port 2(bridge_slave_1) entered blocking state
[  890.111716][T14233] bridge0: port 2(bridge_slave_1) entered disabled state
[  890.120707][T14233] bridge_slave_1: entered allmulticast mode
[  890.130572][T14233] bridge_slave_1: entered promiscuous mode
[  890.188308][T10087] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  890.211103][T13226] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  890.224336][T13226] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  890.261973][T13226] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  890.291649][T13226] usb 6-1: New USB device found, idVendor=056a, idProduct=00ba, bcdDevice= 0.00
[  890.308947][T13226] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  890.309113][ T5292] hub 4-1:0.0: activate --> -90
[  890.339329][T13226] usb 6-1: config 0 descriptor??
[  890.398610][T10087] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  890.427027][T14233] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  890.441150][T14233] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  890.607911][T10087] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  890.691853][    C1] hrtimer: interrupt took 313560 ns
[  890.697726][   T54] Bluetooth: hci3: command tx timeout
[  890.714289][T14233] team0: Port device team_slave_0 added
[  890.776980][T13226] wacom 0003:056A:00BA.001B: Unknown device_type for 'HID 056a:00ba'. Assuming pen.
[  890.800331][T13226] wacom 0003:056A:00BA.001B: hidraw0: USB HID v0.00 Device [HID 056a:00ba] on usb-dummy_hcd.5-1/input0
[  890.806769][T14233] team0: Port device team_slave_1 added
[  890.814994][T13226] input: Wacom Intuos4 8x13 Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:00BA.001B/input/input28
[  890.886759][T14148] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  890.921449][T14023] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  890.997027][T13226] usb 6-1: USB disconnect, device number 41
[  890.998226][T14148] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  891.029616][T13978] 8021q: adding VLAN 0 to HW filter on device bond0
[  891.046991][T14023] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  891.079101][T14023] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  891.119005][T14233] batman_adv: batadv0: Adding interface: batadv_slave_0
[  891.128640][T14233] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  891.163061][T14233] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  891.179629][T14233] batman_adv: batadv0: Adding interface: batadv_slave_1
[  891.186774][T14233] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  891.214277][T14233] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  891.288503][T14148] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  891.314139][T14023] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  891.361423][ T5317] hub 4-1:0.0: hub_ext_port_status failed (err = -71)
[  891.362210][ T1178] usb 4-1: USB disconnect, device number 38
[  891.436239][T14148] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  891.547607][T13978] 8021q: adding VLAN 0 to HW filter on device team0
[  891.618089][T14233] hsr_slave_0: entered promiscuous mode
[  891.629026][T14233] hsr_slave_1: entered promiscuous mode
[  891.639255][T14233] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  891.657024][T14233] Cannot create hsr debugfs directory
[  891.785622][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  891.792862][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  891.820943][   T52] bridge0: port 2(bridge_slave_1) entered blocking state
[  891.828306][   T52] bridge0: port 2(bridge_slave_1) entered forwarding state
[  891.855907][T10087] bridge_slave_1: left allmulticast mode
[  891.861652][T10087] bridge_slave_1: left promiscuous mode
[  891.868083][T10087] bridge0: port 2(bridge_slave_1) entered disabled state
[  891.890860][T10087] bridge_slave_0: left allmulticast mode
[  891.895747][T14286] loop5: detected capacity change from 0 to 256
[  891.901997][T10087] bridge_slave_0: left promiscuous mode
[  891.905046][T14286] exFAT-fs (loop5): bogus sector size bits : 0
[  891.911968][T10087] bridge0: port 1(bridge_slave_0) entered disabled state
[  891.915088][T14286] exFAT-fs (loop5): failed to read boot sector
[  891.928435][T14286] exFAT-fs (loop5): failed to recognize exfat type
[  891.938402][T10087] bridge_slave_1: left allmulticast mode
[  891.956221][T10087] bridge_slave_1: left promiscuous mode
[  891.972282][T10087] bridge0: port 2(bridge_slave_1) entered disabled state
[  892.004100][T10087] bridge_slave_0: left allmulticast mode
[  892.010100][T10087] bridge_slave_0: left promiscuous mode
[  892.016628][T10087] bridge0: port 1(bridge_slave_0) entered disabled state
[  892.296363][ T5236] usb 4-1: new low-speed USB device number 39 using dummy_hcd
[  892.556262][ T5236] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3
[  892.568646][ T5236] usb 4-1: config 1 has no interface number 1
[  892.596139][ T5236] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[  892.611224][ T5236] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  892.644747][ T5236] usb 4-1: config 1 interface 2 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[  892.660983][ T5236] usb 4-1: string descriptor 0 read error: -22
[  892.669149][ T5236] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  892.678301][ T5236] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  892.734521][ T5236] usb 4-1: low speed audio streaming not supported
[  892.963487][ T5236] usb 4-1: USB disconnect, device number 39
[  893.218119][T10087] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  893.230878][T10087] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  893.246989][T10087] bond0 (unregistering): Released all slaves
[  893.437839][T10087] bond0 (unregistering): left allmulticast mode
[  893.444360][T10087] bond_slave_0: left allmulticast mode
[  893.449836][T10087] bond_slave_1: left allmulticast mode
[  893.455553][T10087] bond0 (unregistering): left promiscuous mode
[  893.462071][T10087] bond_slave_0: left promiscuous mode
[  893.467714][T10087] bond_slave_1: left promiscuous mode
[  893.528499][T10087] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  893.566827][T10087] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  893.594353][T10087] bond0 (unregistering): Released all slaves
[  893.722760][T14285] mac80211_hwsim hwsim92 wlan1: entered allmulticast mode
[  893.958454][T14296] syz.5.2319[14296] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  893.958751][T14296] syz.5.2319[14296] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  893.985272][T10087] tipc: Left network mode
[  894.214999][T14300] iommufd_mock iommufd_mock0: Adding to iommu group 0
[  894.246417][T14300] iommufd_mock iommufd_mock1: Adding to iommu group 1
[  894.750029][T14023] 8021q: adding VLAN 0 to HW filter on device bond0
[  894.814095][T14148] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  894.950505][T14309] netlink: 277 bytes leftover after parsing attributes in process `syz.5.2324'.
[  894.982475][T14148] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  894.999593][T14148] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  895.299223][T14148] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  895.430454][T14023] 8021q: adding VLAN 0 to HW filter on device team0
[  895.656792][ T2529] bridge0: port 1(bridge_slave_0) entered blocking state
[  895.664038][ T2529] bridge0: port 1(bridge_slave_0) entered forwarding state
[  895.770459][ T2529] bridge0: port 2(bridge_slave_1) entered blocking state
[  895.777953][ T2529] bridge0: port 2(bridge_slave_1) entered forwarding state
[  896.067132][T14335] loop5: detected capacity change from 0 to 256
[  896.198010][T14335] syz.5.2331: attempt to access beyond end of device
[  896.198010][T14335] loop5: rw=2049, sector=256, nr_sectors = 12 limit=256
[  896.250788][T10087] hsr_slave_0: left promiscuous mode
[  896.271663][T10087] hsr_slave_1: left promiscuous mode
[  896.284961][T14339] loop3: detected capacity change from 0 to 512
[  896.302448][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  896.309886][T10087] batman_adv: batadv0: Removing interface: batadv_slave_0
[  896.316460][T14339] EXT4-fs (loop3): blocks per group (71) and clusters per group (20800) inconsistent
[  896.339448][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  896.359077][T10087] batman_adv: batadv0: Removing interface: batadv_slave_1
[  896.397413][T10087] hsr_slave_0: left promiscuous mode
[  896.413521][T10087] hsr_slave_1: left promiscuous mode
[  896.426823][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  896.444416][T10087] batman_adv: batadv0: Removing interface: batadv_slave_0
[  896.464293][T10087] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  896.479596][T10087] batman_adv: batadv0: Removing interface: batadv_slave_1
[  896.639727][T10087] veth1_macvtap: left promiscuous mode
[  896.645417][T10087] veth0_macvtap: left promiscuous mode
[  896.651110][T10087] veth1_vlan: left promiscuous mode
[  896.656530][T10087] veth0_vlan: left promiscuous mode
[  896.666661][T10087] veth1_macvtap: left promiscuous mode
[  896.679730][T10087] veth0_macvtap: left promiscuous mode
[  896.685512][T10087] veth1_vlan: left promiscuous mode
[  897.561607][T10087] veth0_vlan: left promiscuous mode
[  898.934908][T10087] team0 (unregistering): Port device team_slave_1 removed
[  899.068456][T10087] team0 (unregistering): Port device team_slave_0 removed
[  899.104560][   T29] audit: type=1107 audit(1723459999.795:513): pid=14354 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  900.781014][T10087] team0 (unregistering): Port device team_slave_1 removed
[  900.867659][T10087] team0 (unregistering): Port device team_slave_0 removed
[  901.762630][T14357] netlink: 'syz.3.2338': attribute type 4 has an invalid length.
[  901.790008][T14356] netlink: 'syz.3.2338': attribute type 4 has an invalid length.
[  902.079011][T14364] loop3: detected capacity change from 0 to 512
[  902.142370][T14364] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  902.188342][T14148] 8021q: adding VLAN 0 to HW filter on device bond0
[  902.232565][T14364] ext4 filesystem being mounted at /99/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  902.473843][T13978] 8021q: adding VLAN 0 to HW filter on device batadv0
[  902.546734][T14233] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  903.979532][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  904.112196][T14233] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  904.170302][T14233] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  904.293942][T14380] binder: BC_ACQUIRE_RESULT not supported
[  904.307365][T14148] 8021q: adding VLAN 0 to HW filter on device team0
[  904.325351][T14380] binder: 14379:14380 ioctl c0306201 20000480 returned -22
[  904.347691][T14233] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  904.455175][   T52] bridge0: port 1(bridge_slave_0) entered blocking state
[  904.462418][   T52] bridge0: port 1(bridge_slave_0) entered forwarding state
[  904.536792][T14023] 8021q: adding VLAN 0 to HW filter on device batadv0
[  904.668734][ T2537] bridge0: port 2(bridge_slave_1) entered blocking state
[  904.676140][ T2537] bridge0: port 2(bridge_slave_1) entered forwarding state
[  905.054179][T13978] veth0_vlan: entered promiscuous mode
[  905.099538][T14148] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  905.357334][T13978] veth1_vlan: entered promiscuous mode
[  905.415780][T14378] loop5: detected capacity change from 0 to 32768
[  905.459034][T14378] XFS: ikeep mount option is deprecated.
[  905.524154][T14233] 8021q: adding VLAN 0 to HW filter on device bond0
[  905.594594][T13978] veth0_macvtap: entered promiscuous mode
[  905.621007][T13978] veth1_macvtap: entered promiscuous mode
[  905.627455][T14378] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  905.766665][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  905.777510][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  905.788655][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  905.816205][T14378] XFS (loop5): Ending clean mount
[  905.819710][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  905.848349][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  905.848867][T14378] XFS (loop5): Quotacheck needed: Please wait.
[  905.864729][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  905.889316][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  905.921536][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  905.965097][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  905.987674][T14378] XFS (loop5): Quotacheck: Done.
[  905.994897][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.034978][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  906.053443][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.087422][T13978] batman_adv: batadv0: Interface activated: batadv_slave_0
[  906.127797][T14233] 8021q: adding VLAN 0 to HW filter on device team0
[  906.178239][ T2529] bridge0: port 1(bridge_slave_0) entered blocking state
[  906.185510][ T2529] bridge0: port 1(bridge_slave_0) entered forwarding state
[  906.206053][T13705] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[  906.227311][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.240115][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.252920][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.273279][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.290198][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.301664][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.331906][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.353009][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.372717][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.384873][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.401993][T13978] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  906.425211][T13978] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  906.444550][T13978] batman_adv: batadv0: Interface activated: batadv_slave_1
[  906.484117][T14023] veth0_vlan: entered promiscuous mode
[  906.507160][ T2506] bridge0: port 2(bridge_slave_1) entered blocking state
[  906.514521][ T2506] bridge0: port 2(bridge_slave_1) entered forwarding state
[  906.557822][T13978] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  906.568773][T13978] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  906.577636][T13978] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  906.587703][T13978] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  906.610845][T14023] veth1_vlan: entered promiscuous mode
[  906.755894][T14148] 8021q: adding VLAN 0 to HW filter on device batadv0
[  906.814525][T14023] veth0_macvtap: entered promiscuous mode
[  906.896929][T14023] veth1_macvtap: entered promiscuous mode
[  906.935661][T14415] loop3: detected capacity change from 0 to 32768
[  906.956860][T14415] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  907.052487][T10076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  907.060393][T10076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  907.078128][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  907.093440][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.094950][T14415] XFS (loop3): Ending clean mount
[  907.103833][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  907.120115][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.130289][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  907.157192][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.167284][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  907.188745][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.201128][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  907.212000][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.222531][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  907.234501][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.244767][   T29] audit: type=1326 audit(1723460007.935:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.267564][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  907.275604][   T29] audit: type=1326 audit(1723460007.935:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.300483][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.304431][T14023] batman_adv: batadv0: Interface activated: batadv_slave_0
[  907.324765][   T29] audit: type=1326 audit(1723460007.945:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.360976][   T29] audit: type=1326 audit(1723460007.945:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.445590][   T29] audit: type=1326 audit(1723460007.945:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.481686][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  907.501648][   T29] audit: type=1326 audit(1723460007.945:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.525517][   T29] audit: type=1326 audit(1723460007.945:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.541882][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.572019][   T29] audit: type=1326 audit(1723460007.945:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.576066][   T54] Bluetooth: hci0: command 0x0406 tx timeout
[  907.608489][   T29] audit: type=1326 audit(1723460007.945:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.621892][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  907.642009][   T29] audit: type=1326 audit(1723460007.945:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14414 comm="syz.3.2351" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f66553779f9 code=0x7ffc0000
[  907.642735][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.675350][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  907.685887][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.695771][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  907.706363][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.718633][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  907.730284][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.740455][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  907.751195][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.762269][T14023] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  907.772969][T14023] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  907.796125][T14023] batman_adv: batadv0: Interface activated: batadv_slave_1
[  907.837575][T13049] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  907.853773][T14148] veth0_vlan: entered promiscuous mode
[  907.912699][T14148] veth1_vlan: entered promiscuous mode
[  907.926814][ T2529] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  907.937634][ T2529] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  907.981714][T14023] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  908.006167][T14023] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  908.016724][T14023] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  908.032395][T14023] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  908.075643][T14429] netlink: 40 bytes leftover after parsing attributes in process `syz.5.2350'.
[  908.307504][T14233] 8021q: adding VLAN 0 to HW filter on device batadv0
[  908.350708][ T2529] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  908.376786][ T2529] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  908.517701][T14148] veth0_macvtap: entered promiscuous mode
[  908.735956][T14148] veth1_macvtap: entered promiscuous mode
[  910.137570][   T52] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  910.137984][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.166277][   T52] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  910.222127][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.241963][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.268584][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.291943][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.322096][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.342018][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.366509][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.391930][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.411954][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.454027][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.471927][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.481808][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.521120][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.540909][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  910.561767][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.608337][T14148] batman_adv: batadv0: Interface activated: batadv_slave_0
[  910.731801][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.748374][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.768036][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.781191][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.791216][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.801730][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.814110][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.825607][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.835988][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.846889][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.857983][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.868579][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.878823][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.904793][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.930743][T14148] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  910.944532][T14148] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  910.973480][T14148] batman_adv: batadv0: Interface activated: batadv_slave_1
[  910.984855][T14459] loop3: detected capacity change from 0 to 64
[  911.036162][T14148] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  911.064554][T14148] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  911.082820][T14148] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  911.100308][T14148] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  911.110517][T14459] ALSA: mixer_oss: invalid OSS volume '
H8LAÆ¢ÎoÚÜQn'
[  911.191474][T14457] vhci_hcd vhci_hcd.0: pdev(2) rhport(0) sockfd(8)
[  911.198041][T14457] vhci_hcd vhci_hcd.0: devid(0) speed(2) speed_str(full-speed)
[  911.275237][T14457] vhci_hcd vhci_hcd.0: Device attached
[  911.427190][ T1178] vhci_hcd: vhci_device speed not set
[  911.431488][T14233] veth0_vlan: entered promiscuous mode
[  911.442180][T14465] vhci_hcd: connection closed
[  911.450194][T10087] vhci_hcd: stop threads
[  911.472379][T10087] vhci_hcd: release socket
[  911.476938][T10087] vhci_hcd: disconnect device
[  911.516185][ T1178] usb 13-1: new full-speed USB device number 2 using vhci_hcd
[  911.554800][ T1178] usb 13-1: enqueue for inactive port 0
[  911.663703][ T1178] vhci_hcd: vhci_device speed not set
[  911.757795][   T52] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  911.846753][T14233] veth1_vlan: entered promiscuous mode
[  911.912477][ T2529] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  911.920418][ T2529] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  911.994430][   T52] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  912.072705][ T2537] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  912.080571][ T2537] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  912.174430][   T52] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  912.205211][T14233] veth0_macvtap: entered promiscuous mode
[  912.227816][T14233] veth1_macvtap: entered promiscuous mode
[  912.268760][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.279655][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.290618][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.302067][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.312071][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.324578][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.336411][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.349404][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.360877][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.371944][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.384881][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.395420][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.405383][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.416173][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.426306][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.436819][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.447015][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  912.460747][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.474114][T14233] batman_adv: batadv0: Interface activated: batadv_slave_0
[  912.501509][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.512636][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.523655][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.535644][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.546086][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.556715][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.570258][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.581296][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.591369][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.603398][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.614179][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.625265][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.635874][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.646930][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.657323][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.672172][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.682270][T14233] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  912.695919][T14233] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  912.708331][T14233] batman_adv: batadv0: Interface activated: batadv_slave_1
[  912.746493][   T52] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  912.770001][T14233] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  912.779914][T14233] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  912.789353][T14233] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  912.798097][T14233] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  913.168132][T14485] Invalid ELF header magic: != ELF
[  913.214774][T10076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  913.244609][T10076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  913.519833][T14493] loop5: detected capacity change from 0 to 64
[  913.692361][T10076] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  913.700345][T10076] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  913.761410][   T52] bridge_slave_1: left allmulticast mode
[  913.803270][   T52] bridge_slave_1: left promiscuous mode
[  913.809211][   T52] bridge0: port 2(bridge_slave_1) entered disabled state
[  913.913191][   T52] bridge_slave_0: left allmulticast mode
[  913.921516][   T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  913.943260][   T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  913.960672][   T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  913.974038][   T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  913.982118][   T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  913.989211][   T52] bridge_slave_0: left promiscuous mode
[  914.004672][   T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  914.112489][   T52] bridge0: port 1(bridge_slave_0) entered disabled state
[  916.133681][T11002] Bluetooth: hci1: command tx timeout
[  916.232041][ T5292] usb 6-1: new high-speed USB device number 42 using dummy_hcd
[  917.698974][ T5292] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFD, changing to 0x8D
[  917.710603][ T5292] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  917.749737][ T5292] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8D has invalid maxpacket 59391, setting to 1024
[  917.801051][ T5292] usb 6-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[  917.818196][ T5292] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  917.840135][ T5292] usb 6-1: config 0 descriptor??
[  917.893983][T14529] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  917.911199][ T5292] gspca_main: spca561-2.14.0 probing abcd:cdee
[  918.122634][ T5292] spca561 6-1:0.0: probe with driver spca561 failed with error -22
[  918.170213][ T5292] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[  918.178929][ T5292] usb 6-1: MIDIStreaming interface descriptor not found
[  918.212253][T11002] Bluetooth: hci1: command tx timeout
[  918.331259][T14542] loop1: detected capacity change from 0 to 8
[  918.372525][ T5292] usb 6-1: USB disconnect, device number 42
[  918.384503][T14542] SQUASHFS error: lzo decompression failed, data probably corrupt
[  918.392766][T14542] SQUASHFS error: Failed to read block 0x91: -5
[  918.402899][T14542] SQUASHFS error: Unable to read metadata cache entry [8f]
[  918.410479][T14542] SQUASHFS error: Unable to read inode 0x11f
[  919.011362][   T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  919.065966][   T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  919.198959][   T52] bond0 (unregistering): Released all slaves
[  920.592614][T11002] Bluetooth: hci1: command tx timeout
[  922.044541][T14560] loop0: detected capacity change from 0 to 4096
[  922.054545][T14560] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  922.193353][T14558] ntfs3: loop0: failed to convert "c46c" to cp1251
[  922.411479][T14557] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2389'.
[  922.629685][T11002] Bluetooth: hci1: command tx timeout
[  923.798684][T13226] usb 2-1: new high-speed USB device number 25 using dummy_hcd
[  924.203370][T14580] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2392'.
[  924.328101][   T52] hsr_slave_0: left promiscuous mode
[  924.359877][   T52] hsr_slave_1: left promiscuous mode
[  924.466830][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  924.477706][T14589] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  924.485430][T14588] loop3: detected capacity change from 0 to 8
[  924.492632][   T52] batman_adv: batadv0: Removing interface: batadv_slave_0
[  924.522393][   T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  924.530550][   T52] batman_adv: batadv0: Removing interface: batadv_slave_1
[  924.587240][   T52] veth1_macvtap: left promiscuous mode
[  924.596652][   T52] veth0_macvtap: left promiscuous mode
[  924.602568][   T52] veth1_vlan: left promiscuous mode
[  924.608117][   T52] veth0_vlan: left promiscuous mode
[  924.632367][T13226] usb 2-1: Using ep0 maxpacket: 32
[  924.868370][T13226] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 8
[  924.965380][T14593] ubi0: attaching mtd0
[  924.973621][T14593] ubi0: scanning is finished
[  924.978242][T14593] ubi0: empty MTD device detected
[  926.645663][T14593] ubi0 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt0d", error -4
[  926.666700][T13226] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  926.694310][T13226] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  926.702705][T13226] usb 2-1: Product: syz
[  926.706970][T13226] usb 2-1: Manufacturer: syz
[  926.712232][T13226] usb 2-1: SerialNumber: syz
[  926.725952][T13226] usb 2-1: config 0 descriptor??
[  926.739581][T14576] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  926.916805][T14603] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  927.583956][ T5292] usb 2-1: USB disconnect, device number 25
[  928.406286][T14623] loop5: detected capacity change from 0 to 2048
[  928.512868][T14626] loop1: detected capacity change from 0 to 2048
[  928.563516][T14623] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  928.608627][T14626] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  928.641620][T14626] ext4 filesystem being mounted at /12/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  928.879115][T14634] fs-verity: sha512 using implementation "sha512-avx2"
[  929.011297][T14634] fs-verity (loop1, inode 13): Error -28 writing Merkle tree block 9
[  929.060070][T14634] fs-verity (loop1, inode 13): Error -28 building Merkle tree
[  929.284815][T14148] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  929.424460][   T52] team0 (unregistering): Port device team_slave_1 removed
[  929.565756][T14636] IPVS: sh: SCTP 172.20.20.187:0 - no destination available
[  929.574589][ T5364] IPVS: starting estimator thread 0...
[  929.613612][   T52] team0 (unregistering): Port device team_slave_0 removed
[  929.627845][ T5585] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 24 with max blocks 2 with error 28
[  929.653365][ T5585] EXT4-fs (loop5): This should not happen!! Data will be lost
[  929.653365][ T5585] 
[  929.679712][ T5585] EXT4-fs (loop5): Total free blocks count 0
[  929.691472][ T5585] EXT4-fs (loop5): Free/Dirty block details
[  929.697090][T14637] IPVS: using max 16 ests per chain, 38400 per kthread
[  929.702013][ T5585] EXT4-fs (loop5): free_blocks=0
[  929.714861][ T5585] EXT4-fs (loop5): dirty_blocks=0
[  929.726509][ T5585] EXT4-fs (loop5): Block reservation details
[  929.737084][ T5585] EXT4-fs (loop5): i_reserved_data_blocks=0
[  929.767786][T13705] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  929.923252][T14640] netlink: 24 bytes leftover after parsing attributes in process `syz.5.2409'.
[  930.324938][T14646] loop5: detected capacity change from 0 to 2048
[  930.373538][T14646] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  930.625212][T13705] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  931.247764][T14662] loop1: detected capacity change from 0 to 256
[  931.340757][T14662] FAT-fs (loop1): Directory bread(block 64) failed
[  931.384007][T14662] FAT-fs (loop1): Directory bread(block 65) failed
[  931.390704][T14662] FAT-fs (loop1): Directory bread(block 66) failed
[  931.432151][T14662] FAT-fs (loop1): Directory bread(block 67) failed
[  931.462297][T14662] FAT-fs (loop1): Directory bread(block 68) failed
[  931.471955][T14662] FAT-fs (loop1): Directory bread(block 69) failed
[  931.478719][T14662] FAT-fs (loop1): Directory bread(block 70) failed
[  931.498147][T14662] FAT-fs (loop1): Directory bread(block 71) failed
[  931.552488][T14662] FAT-fs (loop1): Directory bread(block 72) failed
[  931.624016][T14662] FAT-fs (loop1): Directory bread(block 73) failed
[  932.112086][ T5586] usb 6-1: new high-speed USB device number 43 using dummy_hcd
[  932.172195][T14662] netlink: 48 bytes leftover after parsing attributes in process `syz.1.2418'.
[  932.314464][ T5586] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  932.370445][ T5586] usb 6-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66
[  932.391329][ T5586] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  932.451160][ T5586] usb 6-1: Product: syz
[  932.460338][T14672] loop0: detected capacity change from 0 to 1024
[  932.474681][T14672] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  932.490596][T14674] loop3: detected capacity change from 0 to 512
[  932.507467][ T5586] usb 6-1: Manufacturer: syz
[  932.521686][T14672] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  932.531594][ T5586] usb 6-1: SerialNumber: syz
[  932.540473][ T5586] usb 6-1: config 0 descriptor??
[  932.565878][ T5586] snd-usb-audio 6-1:0.0: probe with driver snd-usb-audio failed with error -22
[  932.574185][T14672] EXT4-fs (loop0): orphan cleanup on readonly fs
[  932.615396][T14672] EXT4-fs error (device loop0): __ext4_get_inode_loc:4436: comm syz.0.2422: Invalid inode table block 0 in block_group 0
[  932.646156][T14674] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  932.680148][T14674] ext4 filesystem being mounted at /119/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  932.728443][T14672] EXT4-fs (loop0): Remounting filesystem read-only
[  932.748812][T14672] __quota_error: 21 callbacks suppressed
[  932.748836][T14672] Quota error (device loop0): write_blk: dquota write failed
[  932.802654][T14672] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  932.829243][ T5586] usb 6-1: USB disconnect, device number 43
[  932.865123][T14672] EXT4-fs (loop0): 1 truncate cleaned up
[  932.907690][T14672] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  932.970362][T14500] chnl_net:caif_netlink_parms(): no params data found
[  933.294584][T13049] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  933.532507][T14233] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  933.605905][T14500] bridge0: port 1(bridge_slave_0) entered blocking state
[  933.615264][T14500] bridge0: port 1(bridge_slave_0) entered disabled state
[  933.622644][T14500] bridge_slave_0: entered allmulticast mode
[  933.630587][T14500] bridge_slave_0: entered promiscuous mode
[  933.643544][T14500] bridge0: port 2(bridge_slave_1) entered blocking state
[  933.679382][T14500] bridge0: port 2(bridge_slave_1) entered disabled state
[  933.702234][T14500] bridge_slave_1: entered allmulticast mode
[  933.732165][T14500] bridge_slave_1: entered promiscuous mode
[  933.896923][T14500] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  933.943178][T14500] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  934.112551][T14500] team0: Port device team_slave_0 added
[  934.138326][T14500] team0: Port device team_slave_1 added
[  934.250013][T14731] block nbd1: Cannot use ioctl interface on a netlink controlled device.
[  934.262689][T14500] batman_adv: batadv0: Adding interface: batadv_slave_0
[  934.284406][T14731] block nbd1: shutting down sockets
[  934.289817][T14500] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  934.370218][T14500] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  934.435147][T14731] syz.1.2440: attempt to access beyond end of device
[  934.435147][T14731] nbd1: rw=4096, sector=0, nr_sectors = 2 limit=0
[  934.461052][T14500] batman_adv: batadv0: Adding interface: batadv_slave_1
[  934.501141][T14500] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  934.530274][T14500] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  934.600518][   T10] blk_print_req_error: 5 callbacks suppressed
[  934.600543][   T10] I/O error, dev nbd1, sector 0 op 0x1:(WRITE) flags 0x800 phys_seg 0 prio class 0
[  934.750836][T14500] hsr_slave_0: entered promiscuous mode
[  934.786334][T14500] hsr_slave_1: entered promiscuous mode
[  934.821537][T14500] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  934.920856][T14500] Cannot create hsr debugfs directory
[  934.933526][   T30] INFO: task syz.2.2000:13253 blocked for more than 143 seconds.
[  934.962047][   T30]       Not tainted 6.11.0-rc3-syzkaller #0
[  934.978795][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  935.039994][   T30] task:syz.2.2000      state:D stack:22840 pid:13253 tgid:13252 ppid:12779  flags:0x00004006
[  935.104561][   T30] Call Trace:
[  935.107909][   T30]  <TASK>
[  935.110866][   T30]  __schedule+0x1800/0x4a60
[  935.119517][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.125317][   T30]  ? __pfx___schedule+0x10/0x10
[  935.130263][   T30]  ? __pfx_lock_release+0x10/0x10
[  935.135466][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  935.141428][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.147201][   T30]  ? __wait_on_freeing_inode+0x267/0x420
[  935.152933][   T30]  ? schedule+0x90/0x320
[  935.157227][   T30]  schedule+0x14b/0x320
[  935.161433][   T30]  ? __wait_on_freeing_inode+0x267/0x420
[  935.167497][   T30]  __wait_on_freeing_inode+0x2bb/0x420
[  935.173213][   T30]  ? __pfx___wait_on_freeing_inode+0x10/0x10
[  935.179386][   T30]  ? __pfx_wake_bit_function+0x10/0x10
[  935.185081][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.190899][   T30]  find_inode_fast+0x2a0/0x460
[  935.199259][   T30]  ? find_inode_fast+0xcd/0x460
[  935.204684][   T30]  iget_locked+0xab/0x820
[  935.210009][   T30]  __ext4_iget+0x267/0x4090
[  935.251151][   T30]  ? __pfx___ext4_iget+0x10/0x10
[  935.297652][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.411071][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.478632][   T30]  ? __kmalloc_node_noprof+0x247/0x440
[  935.571663][   T30]  ? __kvmalloc_node_noprof+0x72/0x190
[  935.822264][   T30]  ext4_xattr_inode_lookup_create+0x4f8/0x1f90
[  935.835670][   T30]  ? __pfx_ext4_xattr_inode_lookup_create+0x10/0x10
[  935.852219][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.862262][   T30]  ? errseq_check+0x3d/0x70
[  935.871945][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.884533][   T30]  ? __ext4_journal_get_write_access+0x27e/0x680
[  935.899259][   T30]  ? __pfx___ext4_journal_get_write_access+0x10/0x10
[  935.919209][   T30]  ? check_xattrs+0xa6b/0xbc0
[  935.932350][   T30]  ext4_xattr_ibody_set+0x214/0x730
[  935.944488][   T30]  ext4_xattr_set_handle+0xba6/0x1580
[  935.956313][   T30]  ? __pfx_ext4_xattr_set_handle+0x10/0x10
[  935.969478][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  935.977936][   T30]  ? __pfx___dquot_initialize+0x10/0x10
[  936.000335][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.015110][   T30]  ? ext4_journal_check_start+0x175/0x250
[  936.021077][   T30]  ? __ext4_journal_start_sb+0x290/0x600
[  936.031396][   T30]  ext4_xattr_set+0x241/0x3d0
[  936.038737][   T30]  ? __pfx_ext4_xattr_set+0x10/0x10
[  936.044256][   T30]  ? evm_protect_xattr+0x4be/0xb30
[  936.049416][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.055376][   T30]  ? __pfx_ext4_xattr_trusted_set+0x10/0x10
[  936.061301][   T30]  __vfs_setxattr+0x46a/0x4a0
[  936.067398][   T30]  __vfs_setxattr_noperm+0x12e/0x660
[  936.072792][   T30]  vfs_setxattr+0x221/0x430
[  936.077342][   T30]  ? __pfx_vfs_setxattr+0x10/0x10
[  936.082630][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.088300][   T30]  path_setxattr+0x37e/0x4d0
[  936.093048][   T30]  ? __pfx_path_setxattr+0x10/0x10
[  936.098370][   T30]  ? do_futex+0x33b/0x560
[  936.102802][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.108474][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  936.117827][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  936.125539][   T30]  ? do_syscall_64+0x100/0x230
[  936.130391][   T30]  __x64_sys_setxattr+0xbb/0xd0
[  936.135397][   T30]  do_syscall_64+0xf3/0x230
[  936.139957][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  936.148470][   T30] RIP: 0033:0x7f74e89779f9
[  936.153053][   T30] RSP: 002b:00007f74e97aa038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  936.161715][   T30] RAX: ffffffffffffffda RBX: 00007f74e8b05f80 RCX: 00007f74e89779f9
[  936.169856][   T30] RDX: 0000000020001400 RSI: 00000000200001c0 RDI: 0000000020000200
[  936.177957][   T30] RBP: 00007f74e89e58ee R08: 0000000000000000 R09: 0000000000000000
[  936.186067][   T30] R10: 0000000000000835 R11: 0000000000000246 R12: 0000000000000000
[  936.194147][   T30] R13: 0000000000000000 R14: 00007f74e8b05f80 R15: 00007ffc60e7a6b8
[  936.202302][   T30]  </TASK>
[  936.205365][   T30] INFO: task syz.2.2000:13260 blocked for more than 144 seconds.
[  936.222301][   T30]       Not tainted 6.11.0-rc3-syzkaller #0
[  936.228234][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  936.245975][   T30] task:syz.2.2000      state:D stack:25312 pid:13260 tgid:13252 ppid:12779  flags:0x00004004
[  936.258717][   T30] Call Trace:
[  936.262188][   T30]  <TASK>
[  936.265166][   T30]  __schedule+0x1800/0x4a60
[  936.269767][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.275556][   T30]  ? __pfx___schedule+0x10/0x10
[  936.280436][   T30]  ? __pfx_lock_release+0x10/0x10
[  936.285598][   T30]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  936.291552][   T30]  ? schedule+0x90/0x320
[  936.296226][   T30]  schedule+0x14b/0x320
[  936.300436][   T30]  mb_cache_entry_wait_unused+0x166/0x250
[  936.306258][   T30]  ? __pfx_mb_cache_entry_wait_unused+0x10/0x10
[  936.312591][   T30]  ? __pfx_var_wake_function+0x10/0x10
[  936.321334][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.327122][   T30]  ? mb_cache_entry_delete_or_get+0x16a/0x1f0
[  936.333327][   T30]  ext4_evict_ea_inode+0x14a/0x2f0
[  936.338515][   T30]  ext4_evict_inode+0x194/0xf50
[  936.343504][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.349271][   T30]  ? _raw_spin_unlock+0x28/0x50
[  936.363816][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.369504][   T30]  ? inode_wait_for_writeback+0x224/0x290
[  936.384539][   T30]  ? __pfx_inode_wait_for_writeback+0x10/0x10
[  936.390669][   T30]  ? __pfx_ext4_evict_inode+0x10/0x10
[  936.396476][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.402323][   T30]  ? do_raw_spin_unlock+0x13c/0x8b0
[  936.407555][   T30]  ? list_lru_del_obj+0x3b5/0x400
[  936.412684][   T30]  ? __pfx_ext4_evict_inode+0x10/0x10
[  936.418073][   T30]  evict+0x2aa/0x630
[  936.425417][   T30]  ext4_xattr_set_entry+0x17f2/0x1f60
[  936.430869][   T30]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  936.436726][   T30]  ? ext4_xattr_ibody_find+0x46b/0x670
[  936.442290][   T30]  ext4_xattr_ibody_set+0x268/0x730
[  936.447530][   T30]  ext4_xattr_set_handle+0xba6/0x1580
[  936.453447][   T30]  ? __pfx_ext4_xattr_set_handle+0x10/0x10
[  936.459299][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.466232][   T30]  ? __pfx___dquot_initialize+0x10/0x10
[  936.472018][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.477779][   T30]  ? ext4_journal_check_start+0x175/0x250
[  936.485911][   T30]  ? __ext4_journal_start_sb+0x290/0x600
[  936.491595][   T30]  ext4_xattr_set+0x241/0x3d0
[  936.496400][   T30]  ? __pfx_ext4_xattr_set+0x10/0x10
[  936.501635][   T30]  ? evm_protect_xattr+0x4be/0xb30
[  936.506890][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.512603][   T30]  ? __pfx_ext4_xattr_trusted_set+0x10/0x10
[  936.518553][   T30]  __vfs_setxattr+0x46a/0x4a0
[  936.526543][   T30]  __vfs_setxattr_noperm+0x12e/0x660
[  936.533428][   T30]  vfs_setxattr+0x221/0x430
[  936.538036][   T30]  ? __pfx_vfs_setxattr+0x10/0x10
[  936.543198][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.548878][   T30]  path_setxattr+0x37e/0x4d0
[  936.553598][   T30]  ? __pfx_path_setxattr+0x10/0x10
[  936.558783][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.564533][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  936.570561][   T30]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  936.578216][   T30]  ? exc_page_fault+0x590/0x8c0
[  936.583161][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  936.588833][   T30]  __x64_sys_setxattr+0xbb/0xd0
[  936.595950][   T30]  do_syscall_64+0xf3/0x230
[  936.600497][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  936.606501][   T30] RIP: 0033:0x7f74e89779f9
[  936.610934][   T30] RSP: 002b:00007f74e9768038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc
[  936.619685][   T30] RAX: ffffffffffffffda RBX: 00007f74e8b06130 RCX: 00007f74e89779f9
[  936.631487][   T30] RDX: 0000000020000100 RSI: 00000000200000c0 RDI: 0000000020000180
[  936.639592][   T30] RBP: 00007f74e89e58ee R08: 0000000000000000 R09: 0000000000000000
[  936.647682][   T30] R10: 000000000000090f R11: 0000000000000246 R12: 0000000000000000
[  936.655907][   T30] R13: 0000000000000001 R14: 00007f74e8b06130 R15: 00007ffc60e7a6b8
[  936.664155][   T30]  </TASK>
[  936.667346][   T30] 
[  936.667346][   T30] Showing all locks held in the system:
[  936.675288][   T30] 1 lock held by khungtaskd/30:
[  936.680252][   T30]  #0: ffffffff8e9382e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[  936.692106][   T30] 5 locks held by kworker/u8:2/35:
[  936.697601][   T30] 3 locks held by kworker/u8:4/62:
[  936.705568][   T30]  #0: ffff88802a78a148 ((wq_completion)ipv6_addrconf){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  936.717669][   T30]  #1: ffffc900015d7d00 ((work_completion)(&(&net->ipv6.addr_chk_work)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  936.734860][   T30]  #2: ffffffff8fc82308 (rtnl_mutex){+.+.}-{3:3}, at: addrconf_verify_work+0x19/0x30
[  936.744765][   T30] 3 locks held by kworker/u8:7/2506:
[  936.750165][   T30]  #0: ffff888015881148 ((wq_completion)events_unbound){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  936.762016][   T30]  #1: ffffc90009267d00 ((linkwatch_work).work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  936.773488][   T30]  #2: ffffffff8fc82308 (rtnl_mutex){+.+.}-{3:3}, at: linkwatch_event+0xe/0x60
[  936.783060][   T30] 2 locks held by getty/4981:
[  936.787784][   T30]  #0: ffff88802f7d00a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  936.797828][   T30]  #1: ffffc900031332f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ac/0x1e00
[  936.809283][   T30] 6 locks held by kworker/u8:13/10076:
[  936.816633][   T30]  #0: ffff8880166e5948 ((wq_completion)netns){+.+.}-{0:0}, at: process_scheduled_works+0x90a/0x1830
[  936.827731][   T30]  #1: ffffc90009107d00 (net_cleanup_work){+.+.}-{0:0}, at: process_scheduled_works+0x945/0x1830
[  936.841584][   T30]  #2: ffffffff8fc75790 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x16a/0xcc0
[  936.851154][   T30]  #3: ffffffff8fc82308 (rtnl_mutex){+.+.}-{3:3}, at: wg_netns_pre_exit+0x1f/0x1e0
[  936.864932][   T30]  #4: ffff88805ca49428 (&wg->device_update_lock){+.+.}-{3:3}, at: wg_netns_pre_exit+0xba/0x1e0
[  936.875796][   T30]  #5: ffffffff8e93d6b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  936.886791][   T30] 3 locks held by syz.2.2000/13253:
[  936.892320][   T30]  #0: ffff888079104420 (sb_writers#4){++++}-{0:0}, at: mnt_want_write+0x3f/0x90
[  936.901554][   T30]  #1: ffff888024ee03f8 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_setxattr+0x1e1/0x430
[  936.913060][   T30]  #2: ffff888024ee00c8 (&ei->xattr_sem){++++}-{3:3}, at: ext4_xattr_set_handle+0x277/0x1580
[  936.925716][   T30] 3 locks held by syz.2.2000/13260:
[  936.930934][   T30]  #0: ffff888079104420 (sb_writers#4){++++}-{0:0}, at: mnt_want_write+0x3f/0x90
[  936.943777][   T30]  #1: ffff8880519771a0 (&sb->s_type->i_mutex_key#8){++++}-{3:3}, at: vfs_setxattr+0x1e1/0x430
[  936.954324][   T30]  #2: ffff888051976e70 (&ei->xattr_sem){++++}-{3:3}, at: ext4_xattr_set_handle+0x277/0x1580
[  936.964675][   T30] 1 lock held by syz-executor/14500:
[  936.969967][   T30]  #0: ffffffff8fc82308 (rtnl_mutex){+.+.}-{3:3}, at: rtnetlink_rcv_msg+0x6e6/0xcf0
[  936.979517][   T30] 3 locks held by syz.5.2434/14710:
[  936.984802][   T30]  #0: ffff888051a54a08 (&sb->s_type->i_mutex_key#10){+.+.}-{3:3}, at: sock_close+0x90/0x240
[  936.995118][   T30]  #1: ffff8880599b1258 (sk_lock-AF_PPPOX){+.+.}-{0:0}, at: pptp_release+0x52/0x300
[  937.004616][   T30]  #2: ffffffff8e93d6b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x451/0x830
[  937.016259][   T30] 
[  937.018598][   T30] =============================================
[  937.018598][   T30] 
[  937.051786][T10076] bridge_slave_1: left allmulticast mode
[  937.057555][T10076] bridge_slave_1: left promiscuous mode
[  937.064629][   T30] NMI backtrace for cpu 0
[  937.068997][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc3-syzkaller #0
[  937.073455][T10076] bridge0: port 2(bridge_slave_1) entered disabled state
[  937.077753][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  937.077773][   T30] Call Trace:
[  937.077786][   T30]  <TASK>
[  937.101026][   T30]  dump_stack_lvl+0x241/0x360
[  937.105758][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  937.110978][   T30]  ? __pfx__printk+0x10/0x10
[  937.115591][   T30]  ? vprintk_emit+0x631/0x770
[  937.120558][   T30]  ? __pfx_vprintk_emit+0x10/0x10
[  937.125602][   T30]  nmi_cpu_backtrace+0x49c/0x4d0
[  937.131114][   T30]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  937.136619][   T30]  ? _printk+0xd5/0x120
[  937.140819][   T30]  ? __pfx__printk+0x10/0x10
[  937.145449][   T30]  ? __wake_up_klogd+0xcc/0x110
[  937.150326][   T30]  ? __pfx__printk+0x10/0x10
[  937.154927][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  937.160562][   T30]  ? __rcu_read_unlock+0xa1/0x110
[  937.165593][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  937.171584][   T30]  nmi_trigger_cpumask_backtrace+0x198/0x320
[  937.177582][   T30]  watchdog+0xfee/0x1030
[  937.181857][   T30]  ? watchdog+0x1ea/0x1030
[  937.186309][   T30]  ? __pfx_watchdog+0x10/0x10
[  937.191003][   T30]  kthread+0x2f2/0x390
[  937.195093][   T30]  ? __pfx_watchdog+0x10/0x10
[  937.199783][   T30]  ? __pfx_kthread+0x10/0x10
[  937.204399][   T30]  ret_from_fork+0x4d/0x80
[  937.208838][   T30]  ? __pfx_kthread+0x10/0x10
[  937.213449][   T30]  ret_from_fork_asm+0x1a/0x30
[  937.218251][   T30]  </TASK>
[  937.223972][   T30] Sending NMI from CPU 0 to CPUs 1:
[  937.229210][    C1] NMI backtrace for cpu 1
[  937.229226][    C1] CPU: 1 UID: 0 PID: 35 Comm: kworker/u8:2 Not tainted 6.11.0-rc3-syzkaller #0
[  937.229251][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  937.229266][    C1] Workqueue: bat_events batadv_nc_worker
[  937.229299][    C1] RIP: 0010:lock_release+0x658/0xa30
[  937.229334][    C1] Code: 3c 3b 00 74 08 4c 89 f7 e8 95 d5 8a 00 f6 84 24 91 00 00 00 02 75 77 41 f7 c5 00 02 00 00 74 01 fb 48 c7 44 24 60 0e 36 e0 45 <4b> c7 04 27 00 00 00 00 4b c7 44 27 08 00 00 00 00 65 48 8b 04 25
[  937.229353][    C1] RSP: 0018:ffffc90000ab79a0 EFLAGS: 00000206
[  937.229372][    C1] RAX: 0000000000000001 RBX: 1ffff92000156f46 RCX: ffffc90000ab7a03
[  937.229390][    C1] RDX: 0000000000000002 RSI: ffffffff8c0ae6c0 RDI: ffffffff8c606400
[  937.229407][    C1] RBP: ffffc90000ab7ad8 R08: ffffffff9017ce2f R09: 1ffffffff202f9c5
[  937.229424][    C1] R10: dffffc0000000000 R11: fffffbfff202f9c6 R12: 1ffff92000156f40
[  937.229442][    C1] R13: 0000000000000246 R14: ffffc90000ab7a30 R15: dffffc0000000000
[  937.229462][    C1] FS:  0000000000000000(0000) GS:ffff8880b9300000(0000) knlGS:0000000000000000
[  937.229482][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  937.229499][    C1] CR2: 00007f00faed2ab8 CR3: 0000000022cc6000 CR4: 0000000000350ef0
[  937.229517][    C1] Call Trace:
[  937.229527][    C1]  <NMI>
[  937.229537][    C1]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  937.229565][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  937.229600][    C1]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  937.229627][    C1]  ? nmi_handle+0x2a/0x5a0
[  937.229663][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  937.229693][    C1]  ? nmi_handle+0x151/0x5a0
[  937.229715][    C1]  ? nmi_handle+0x2a/0x5a0
[  937.229740][    C1]  ? lock_release+0x658/0xa30
[  937.229771][    C1]  ? default_do_nmi+0x63/0x160
[  937.229799][    C1]  ? exc_nmi+0x123/0x1f0
[  937.229825][    C1]  ? end_repeat_nmi+0xf/0x53
[  937.229862][    C1]  ? lock_release+0x658/0xa30
[  937.229895][    C1]  ? lock_release+0x658/0xa30
[  937.229929][    C1]  ? lock_release+0x658/0xa30
[  937.229961][    C1]  </NMI>
[  937.229969][    C1]  <TASK>
[  937.229982][    C1]  ? __pfx_lock_acquire+0x10/0x10
[  937.230014][    C1]  ? batadv_nc_process_nc_paths+0xb5/0x3a0
[  937.230046][    C1]  ? __local_bh_enable_ip+0x168/0x200
[  937.230076][    C1]  ? __pfx_lock_release+0x10/0x10
[  937.230107][    C1]  ? batadv_nc_purge_paths+0x30f/0x3b0
[  937.230139][    C1]  ? srso_alias_return_thunk+0x5/0xfbef5
[  937.230171][    C1]  ? batadv_nc_purge_paths+0xe8/0x3b0
[  937.230210][    C1]  ? __pfx_batadv_nc_to_purge_nc_path_decoding+0x10/0x10
[  937.230249][    C1]  ? __pfx_batadv_nc_fwd_flush+0x10/0x10
[  937.230281][    C1]  batadv_nc_process_nc_paths+0x2f0/0x3a0
[  937.230317][    C1]  ? batadv_nc_process_nc_paths+0xb5/0x3a0
[  937.230353][    C1]  batadv_nc_worker+0x42a/0x610
[  937.230388][    C1]  ? process_scheduled_works+0x945/0x1830
[  937.230418][    C1]  process_scheduled_works+0xa2e/0x1830
[  937.230473][    C1]  ? __pfx_process_scheduled_works+0x10/0x10
[  937.230512][    C1]  ? assign_work+0x364/0x3d0
[  937.230547][    C1]  worker_thread+0x86d/0xd40
[  937.230591][    C1]  ? __kthread_parkme+0x169/0x1d0
[  937.230628][    C1]  ? __pfx_worker_thread+0x10/0x10
[  937.230660][    C1]  kthread+0x2f2/0x390
[  937.230695][    C1]  ? __pfx_worker_thread+0x10/0x10
[  937.230726][    C1]  ? __pfx_kthread+0x10/0x10
[  937.230762][    C1]  ret_from_fork+0x4d/0x80
[  937.230795][    C1]  ? __pfx_kthread+0x10/0x10
[  937.230830][    C1]  ret_from_fork_asm+0x1a/0x30
[  937.230877][    C1]  </TASK>
[  937.244817][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  937.244840][   T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.11.0-rc3-syzkaller #0
[  937.244869][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/27/2024
[  937.244886][   T30] Call Trace:
[  937.244898][   T30]  <TASK>
[  937.244911][   T30]  dump_stack_lvl+0x241/0x360
[  937.244963][   T30]  ? __pfx_dump_stack_lvl+0x10/0x10
[  937.245004][   T30]  ? __pfx__printk+0x10/0x10
[  937.245039][   T30]  ? lockdep_hardirqs_on_prepare+0x43d/0x780
[  937.245087][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  937.245120][   T30]  ? vscnprintf+0x5d/0x90
[  937.245177][   T30]  panic+0x349/0x860
[  937.633538][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  937.639192][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  937.645364][   T30]  ? __pfx_panic+0x10/0x10
[  937.649794][   T30]  ? tick_nohz_tick_stopped+0x82/0xb0
[  937.655183][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  937.660918][   T30]  ? __irq_work_queue_local+0x137/0x410
[  937.666486][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  937.672129][   T30]  ? preempt_schedule_thunk+0x1a/0x30
[  937.677514][   T30]  ? nmi_trigger_cpumask_backtrace+0x244/0x320
[  937.683676][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d4/0x320
[  937.689962][   T30]  ? srso_alias_return_thunk+0x5/0xfbef5
[  937.695607][   T30]  ? nmi_trigger_cpumask_backtrace+0x2d9/0x320
[  937.701773][   T30]  watchdog+0x102d/0x1030
[  937.706130][   T30]  ? watchdog+0x1ea/0x1030
[  937.710568][   T30]  ? __pfx_watchdog+0x10/0x10
[  937.715267][   T30]  kthread+0x2f2/0x390
[  937.719354][   T30]  ? __pfx_watchdog+0x10/0x10
[  937.724047][   T30]  ? __pfx_kthread+0x10/0x10
[  937.728657][   T30]  ret_from_fork+0x4d/0x80
[  937.733091][   T30]  ? __pfx_kthread+0x10/0x10
[  937.737710][   T30]  ret_from_fork_asm+0x1a/0x30
[  937.742508][   T30]  </TASK>
[  937.745799][   T30] Kernel Offset: disabled
[  937.750142][   T30] Rebooting in 86400 seconds..