last executing test programs:

22.200093544s ago: executing program 4:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='mmap_lock_acquire_returned\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x0, 0x3, &(0x7f0000000140)=ANY=[@ANYBLOB="850000002a00000025000000000000009500000000000000aecd48d6494d614dcc6fab5335ec06000000000000002176dd2963038e1d69ba7ea94c500dc4ef2fad96ed406f3cc2b0da31fa21caf5adcf920569c00cc1199684fa7c9383"], 0x0}, 0x90)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfecc)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x12, r1, 0x0)
io_uring_setup(0x0, &(0x7f0000000080))

22.199106171s ago: executing program 4:
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE_OLD(r0, 0xc1004110, &(0x7f0000000040)={0x0, [0x2, 0x4, 0x5], [], 0x20})

22.198741052s ago: executing program 4:
openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x40, 0x0)
r0 = openat$fuse(0xffffffffffffff9c, &(0x7f00000000c0), 0x42, 0x0)
mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f0000002140)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r0, @ANYBLOB=',rootmode=00000000000000000100000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0])
read$FUSE(r0, &(0x7f00000021c0)={0x2020, 0x0, <r1=>0x0}, 0x2020)
write$FUSE_INIT(r0, &(0x7f0000000040)={0x50, 0x0, r1, {0x7, 0x1f, 0x0, 0x10400}}, 0x50)
syz_fuse_handle_req(r0, &(0x7f0000008380)="000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000080000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000dc4e00000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000ba045abcd5dfc67d000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000230000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000050000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000a000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000008000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000209bfd66eea210560000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000040000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000001354c4b600", 0x2000, &(0x7f00000062c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, &(0x7f0000006340)={0x20}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x101001, 0x0)
writev(r2, &(0x7f0000000000)=[{&(0x7f0000000cc0)="e1", 0x56000}], 0x1)
close(r0)

22.193827591s ago: executing program 4:
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x14, 0x0, 0x0)

22.111261172s ago: executing program 4:
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x700, &(0x7f0000000080)=[{&(0x7f0000000040)="140000002e000b0fd25a806c8c6f94f90324fc60", 0x33fe0}], 0x1}, 0x0)

21.971637913s ago: executing program 4:
openat$fuse(0xffffffffffffff9c, &(0x7f0000002080), 0x42, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f00000003c0)={'wg0\x00', <r4=>0x0})
sendmsg$ETHTOOL_MSG_PRIVFLAGS_SET(r1, &(0x7f0000000640)={0x0, 0x0, &(0x7f0000000600)={&(0x7f0000000500)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r3, @ANYBLOB="010000000000000000000e000000100002800400040008000200000000000c00018008000100", @ANYRES32=r4], 0x30}}, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000940)={0xa, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x44, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kfree\x00', r5}, 0x10)
r6 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000400)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x88, 0x88, 0x8, [@ptr={0x2}, @union={0x6, 0x3, 0x0, 0x5, 0x0, 0x8, [{0x9, 0x1, 0x8}, {0xa, 0x4, 0x1}, {0x5, 0x2, 0xfb}]}, @var={0x6, 0x0, 0x0, 0xe, 0x5, 0x1}, @int={0xe, 0x0, 0x0, 0x1, 0x0, 0x1c, 0x0, 0x65, 0x7}, @enum={0xa, 0x2, 0x0, 0x6, 0x4, [{0x1, 0x729d}, {0xa, 0x6}]}, @int={0x9, 0x0, 0x0, 0x1, 0x0, 0x7c, 0x0, 0x1b, 0x1}]}, {0x0, [0x5f, 0xe, 0x61, 0x30, 0x2e, 0x0]}}, &(0x7f0000000740)=""/235, 0xa8, 0xeb, 0x1, 0x2}, 0x20)
r7 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@bloom_filter={0x1e, 0x0, 0xffffffff, 0x219bb5ee, 0x78, r1, 0x0, '\x00', r4, r6, 0x1, 0x0, 0x4, 0xf}, 0x48)
bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000000)={r7, &(0x7f0000000180), &(0x7f0000000680)=""/141}, 0x20)
openat$tun(0xffffffffffffff9c, &(0x7f0000000540), 0x0, 0x0)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000180))
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz0\x00', 0x1ff)
ioctl$SIOCSIFHWADDR(0xffffffffffffffff, 0x8924, 0x0)
r8 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r9 = openat$cgroup_freezer_state(r8, &(0x7f0000000140), 0x2, 0x0)
write$cgroup_freezer_state(r9, &(0x7f0000000040)='FROZEN\x00', 0x7)
read(r9, &(0x7f00000000c0)=""/29, 0x1d)
r10 = socket$nl_netfilter(0x10, 0x3, 0xc)
recvmmsg(r10, &(0x7f0000000c80)=[{{0x0, 0x0, 0x0}}], 0x1, 0x0, 0x0)
r11 = openat$cgroup_procs(r8, &(0x7f0000000480)='cgroup.procs\x00', 0x2, 0x0)
write$cgroup_pid(r11, &(0x7f00000001c0), 0x12)
socket(0x1c, 0x800, 0x9)
bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000100)={r7, 0x0, &(0x7f0000000280)=""/239}, 0x20)
ftruncate(0xffffffffffffffff, 0x8800000)

2.497214138s ago: executing program 0:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$l2tp(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$L2TP_CMD_TUNNEL_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000300)={0x44, r1, 0x917, 0x0, 0x0, {}, [@L2TP_ATTR_PROTO_VERSION={0x5}, @L2TP_ATTR_CONN_ID={0x8, 0x9, 0x3}, @L2TP_ATTR_ENCAP_TYPE={0x6}, @L2TP_ATTR_PEER_CONN_ID={0x8}, @L2TP_ATTR_IP_SADDR={0x8, 0x18, @multicast2}, @L2TP_ATTR_IP_DADDR={0x8, 0x19, @remote}]}, 0x44}}, 0x0)

2.387325061s ago: executing program 0:
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000005c40)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000240)=@newtaction={0x64, 0x30, 0x1, 0x0, 0x0, {}, [{0x50, 0x1, [@m_bpf={0x4c, 0x1, 0x0, 0x0, {{0x8}, {0x24, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x64}}, 0x0)

2.310694247s ago: executing program 0:
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)=ANY=[@ANYBLOB="4400000010000000000000000400002e00000040", @ANYRES32=0x0, @ANYBLOB="00000000400000002400128009000100626f6e64000000001400028008000a000000000005001d"], 0x44}}, 0x0)
pipe(&(0x7f00000001c0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
r2 = socket$inet_udp(0x2, 0x2, 0x0)
close(r2)
socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000000)=ANY=[@ANYBLOB="4800000010005f3f770005000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000280012800a00010076786c616e"], 0x3}}, 0x0)
write$binfmt_misc(r1, &(0x7f0000000000)=ANY=[], 0xfffffecc)
splice(r0, 0x0, r2, 0x0, 0x4ffe2, 0x0)

1.662926617s ago: executing program 1:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'macsec0\x00', <r1=>0x0})
r2 = signalfd4(0xffffffffffffffff, &(0x7f00000000c0), 0x8, 0x0)
sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000700)=@newlink={0x28, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, r1}, [@IFLA_NET_NS_FD={0x8, 0x1c, r2}]}, 0x28}, 0x1, 0xf303000000000000}, 0x0)

1.59686766s ago: executing program 1:
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)={0x14, 0x17, 0x301, 0x0, 0x0, {0xb}}, 0x14}}, 0x0)
sendmsg$NLBL_UNLABEL_C_STATICADD(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={0x0}, 0x8, 0x3000000000002}, 0x0)

1.592649181s ago: executing program 2:
io_setup(0x8, &(0x7f0000001440)=<r0=>0x0)
r1 = syz_io_uring_setup(0x2405, &(0x7f0000000380)={0x0, 0x0, 0x13090}, &(0x7f0000000100), &(0x7f0000000080))
io_submit(r0, 0x1, &(0x7f00000008c0)=[&(0x7f00000000c0)={0x0, 0x0, 0x0, 0x5, 0x0, r1, 0x0}])
io_uring_enter(r1, 0x355d, 0x0, 0x0, 0x0, 0x0)

1.514722469s ago: executing program 1:
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfe37}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b907ef19edfff007049e0ff0888e", 0x0, 0x0, 0x18000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.458364942s ago: executing program 1:
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = socket$inet(0x2, 0x1, 0x0)
setsockopt$sock_int(r0, 0x1, 0x10, &(0x7f0000356ffc), 0x4)

1.409714004s ago: executing program 2:
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x4, &(0x7f00000017c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x8a}]}, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x90)

1.361517276s ago: executing program 0:
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r1 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r2 = ioctl$KVM_CREATE_VM(r1, 0xae01, 0x0)
syz_kvm_setup_cpu$x86(0xffffffffffffffff, 0xffffffffffffffff, &(0x7f0000fe5000/0x18000)=nil, &(0x7f0000000080)=[@text64={0x40, &(0x7f0000000000)="66b823000f00d8f3460f09660f38804104c4420d2b770dc461977db8eb4d000066b81c008ee0f0420fbb8fb200000047852bb9b50200000f32470fd46f00", 0x6a}], 0x1, 0x0, 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VCPU(r2, 0xae41, 0x0)
r4 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000000)={'wlan0\x00', <r5=>0x0})
socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000140)={'hsr0\x00', <r6=>0x0})
r7 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000380)=ANY=[@ANYBLOB="44000000100003052bbd7000249d020000000000", @ANYRES32=0x0, @ANYBLOB="1544010001800000140012800b0001006d616373656300000400028008000500", @ANYRES32=r5, @ANYBLOB="08000a00f8333649a09220890a9143e2c6905e34f336b3ee6f421ace0bda05268004abce4c6e77b84145b439de9b4c5845db899adf2a028703fb17ac7228e6c9d1915604c9d16c902b70fe9a84ef4d6f94e3", @ANYRES32=r6, @ANYBLOB], 0x44}}, 0x0)
sendmsg$ETHTOOL_MSG_FEATURES_SET(0xffffffffffffffff, &(0x7f00000002c0)={&(0x7f00000000c0), 0xc, 0x0}, 0x40005)
ioctl$KVM_SET_USER_MEMORY_REGION(r2, 0x4020ae46, &(0x7f0000000440)={0x0, 0x3, 0x100000, 0x1000, &(0x7f0000ff5000/0x1000)=nil})
r8 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
r9 = ioctl$KVM_CREATE_VM(r8, 0xae01, 0x0)
r10 = ioctl$KVM_CREATE_VCPU(r9, 0xae41, 0x0)
ioctl$KVM_SET_VCPU_EVENTS(r10, 0x4188aea7, &(0x7f0000000300))
syz_kvm_setup_cpu$x86(0xffffffffffffffff, r3, &(0x7f0000fe6000/0x18000)=nil, &(0x7f0000000040)=[@text64={0x40, 0x0}], 0x1, 0x0, 0x0, 0x0)
syz_kvm_setup_cpu$x86(r2, 0xffffffffffffffff, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000200)=[@text32={0x20, 0x0}], 0x1, 0x0, 0x0, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r2, 0x4010ae67, &(0x7f00000001c0)={0x0, 0x4000})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='ext4_request_blocks\x00'}, 0x10)
statfs(&(0x7f0000000000)='./file0/../file0\x00', 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
openat(0xffffffffffffff9c, 0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
write(r0, &(0x7f0000000340)="23000000010001", 0x7)

1.343868023s ago: executing program 1:
r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r1 = dup(r0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000007, 0x38011, r1, 0x0)
r2 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendto$inet6(r2, &(0x7f0000004b40)="c5", 0x1, 0x0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @local, 0x15}, 0x1c)
getsockopt$inet_sctp6_SCTP_RECVRCVINFO(r2, 0x84, 0x20, &(0x7f00000004c0), &(0x7f0000000500)=0x4)
fadvise64(r0, 0x0, 0x0, 0x4)

1.298483541s ago: executing program 2:
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.events.local\x00', 0x275a, 0x0)
ftruncate(r0, 0xde34)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x9, 0x13, r0, 0x0)
r1 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r3 = dup3(r1, r2, 0x0)
write$FUSE_INIT(0xffffffffffffffff, 0x0, 0x0)
connect$inet6(r3, &(0x7f0000000240)={0xa, 0x0, 0x0, @private1}, 0x1c)

1.187421164s ago: executing program 2:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)={0x50, 0x1, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x122}]}, @CTA_TUPLE_ORIG={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev}, {0x4, 0x4, @mcast1}}}]}]}, 0x50}}, 0x0)

1.063268647s ago: executing program 2:
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x7a05, 0x1700)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000001f40)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000000), 0xfe37}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="b907ef19edfff007049e0ff0888e", 0x0, 0x0, 0x18000000, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.043001087s ago: executing program 1:
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000"], 0x0}, 0x90)
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='memory.swap.events\x00', 0x26e1, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x8, 0x0, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x0, &(0x7f0000000080)=0x7)
getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r1}, 0x10)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x1b, &(0x7f0000000000)={@remote}, 0x20)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x7, 0x6, &(0x7f0000000a40)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={0x0}, 0x10)
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x0, 0x4, 0xfff}, 0x48)

917.213562ms ago: executing program 2:
syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file2\x00', 0x810, &(0x7f0000000140)=ANY=[], 0xfd, 0x1501, &(0x7f00000002c0)="$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")
creat(&(0x7f0000000300)='./bus\x00', 0x0)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='cpuset.effective_cpus\x00', 0x275a, 0x0)
mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0)
r1 = open(&(0x7f0000000000)='./bus\x00', 0x0, 0x0)
ioctl$LOOP_SET_STATUS64(r1, 0x4c04, &(0x7f0000001940)={0x0, 0x0, 0x0, 0x0, 0x20008001, 0x0, 0x0, 0x0, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110fdf701905b9aafab4afaaf555a3f6a00400", "036c47c6780820d1cbf7966d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef9cc093fce47d85272036dc78388e3dc177e9b496", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001"})
write$cgroup_int(r0, &(0x7f0000000380), 0xffffffd3)

557.167863ms ago: executing program 3:
r0 = syz_open_procfs(0x0, &(0x7f00000002c0)='cmdline\x00')
r1 = openat$ptmx(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSETS(r1, 0x40045431, &(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0x0, "7e12ddb3a89047bfffff00"})
r2 = syz_open_pts(r1, 0x0)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000200)=0x2)
ioctl$TIOCSETD(r2, 0x5423, &(0x7f0000000000)=0x1b)
close_range(r0, 0xffffffffffffffff, 0x0)

415.959312ms ago: executing program 0:
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xd, 0x4, 0x4, 0x5, 0x0, r0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000280)='ext4_drop_inode\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000240)={[{@quota}, {@mblk_io_submit}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@auto_da_alloc}, {@block_validity}, {@quota}]}, 0x3, 0x434, &(0x7f00000002c0)="$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")

403.04021ms ago: executing program 3:
madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0), 0x48)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x19)

252.063068ms ago: executing program 3:
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$devlink(&(0x7f0000000ec0), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_TRAP_POLICER_GET(r0, &(0x7f0000000680)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)={0x3c, r1, 0x54e4ee20622ba807, 0x0, 0x0, {0x46}, [{@nsim={{0xe}, {0xf, 0x2, {'netdevsim', 0x0}}}, {0x8, 0x8e, 0x1}}]}, 0x3c}}, 0x0)

132.362999ms ago: executing program 3:
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f00000004c0)={0x50, 0x1, 0x1, 0x101, 0x0, 0x0, {0xa}, [@CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_ORIG_FLAGS={0x8, 0x1, 0x122}]}, @CTA_TUPLE_ORIG={0x30, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @dev}, {0x4, 0x4, @mcast1}}}]}]}, 0x50}}, 0x0)

97.446931ms ago: executing program 3:
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002c80)={0x3, 0xc, &(0x7f0000000140)=@framed={{0x18, 0x2}, [@call={0x85, 0x0, 0x0, 0x97}, @printk={@p, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x17}}]}, &(0x7f0000000080)='GPL\x00'}, 0x90)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f00000000c0)="e0b9547ed387dbe9abc86a457991", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

52.338764ms ago: executing program 3:
r0 = timerfd_create(0x8, 0x0)
timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, 0x0)
clock_settime(0x0, &(0x7f0000000100)={0x77359400})
timerfd_settime(r0, 0x3, &(0x7f0000000300)={{}, {0x77359400}}, 0x0)

0s ago: executing program 0:
ioctl$VHOST_SET_VRING_BASE(0xffffffffffffffff, 0x4008af12, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f0000000140)=[{&(0x7f0000000080)="390000001300090468fe0700000000000000ff3f04000000484100100000000004e438d2fd00000000004a7b72000000000000000000f90000", 0x39}], 0x1)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="3900000013001118680907070000000f0000ff3f04000000170a001700000000040014001000030001302564aa58b9a64411f6bbf44dc48f57", 0xff4d}], 0x1)
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
bpf$BPF_PROG_TEST_RUN(0xa, 0x0, 0x0)
socket$igmp6(0xa, 0x3, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x0, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
socket(0x840000000002, 0x3, 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000480)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', <r3=>0x0})
sendmsg$nl_route(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000280)=ANY=[@ANYBLOB="4c0000001000010400"/20, @ANYRES32=r3, @ANYBLOB="000000000000000024001280110001006272696467655f736c617665000000000c000580050019000300000008000a"], 0x4c}}, 0x0)

kernel console output (not intermixed with test programs):

.0 (unnamed net_device) (uninitialized): usbnet_get_endpoints failed: -22
[  117.943880][   T12] bridge_slave_1: left promiscuous mode
[  117.972478][ T5163] smsc95xx 4-1:0.0: probe with driver smsc95xx failed with error -22
[  117.977742][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  118.005658][   T12] bridge_slave_0: left allmulticast mode
[  118.012774][   T12] bridge_slave_0: left promiscuous mode
[  118.026316][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  118.188597][ T5164] usb 4-1: USB disconnect, device number 3
[  118.588266][ T6181] loop0: detected capacity change from 0 to 512
[  118.613348][ T6181] EXT4-fs error (device loop0): __ext4_fill_super:5447: inode #2: comm syz-executor.0: iget: special inode unallocated
[  118.640177][ T6181] EXT4-fs (loop0): get root inode failed
[  118.646406][ T6181] EXT4-fs (loop0): mount failed
[  118.783369][ T6165] loop1: detected capacity change from 0 to 32768
[  119.011469][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  119.049823][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  119.071996][   T12] bond0 (unregistering): Released all slaves
[  119.140328][ T6179] netlink: 'syz-executor.2': attribute type 11 has an invalid length.
[  119.642195][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  119.667338][    T0] NOHZ tick-stop error: local softirq work is pending, handler #202!!!
[  119.885128][ T5118] Bluetooth: hci4: command tx timeout
[  119.898509][   T12] hsr_slave_0: left promiscuous mode
[  119.920622][   T12] hsr_slave_1: left promiscuous mode
[  119.935762][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  119.987440][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  120.038269][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  120.091583][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  120.154056][    T0] NOHZ tick-stop error: local softirq work is pending, handler #342!!!
[  120.261361][   T12] veth1_macvtap: left promiscuous mode
[  120.300123][   T12] veth0_macvtap: left promiscuous mode
[  120.310189][   T12] veth1_vlan: left promiscuous mode
[  120.325950][   T12] veth0_vlan: left promiscuous mode
[  120.578288][ T6207] loop0: detected capacity change from 0 to 64
[  120.851660][ T6209] loop0: detected capacity change from 0 to 512
[  120.896939][ T6209] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem
[  120.933097][ T6200] loop2: detected capacity change from 0 to 40427
[  120.974166][ T6200] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0)
[  120.984608][ T6200] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[  121.017045][ T6200] F2FS-fs (loop2): invalid crc value
[  121.032526][ T6209] EXT4-fs error (device loop0): ext4_orphan_get:1394: inode #15: comm syz-executor.0: iget: bad i_size value: -67835469387268086
[  121.078079][ T6200] F2FS-fs (loop2): Found nat_bits in checkpoint
[  121.107306][ T6209] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz-executor.0: couldn't read orphan inode 15 (err -117)
[  121.206194][ T6209] EXT4-fs (loop0): mounted filesystem f7ff0000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  121.227822][ T6209] ext2 filesystem being mounted at /root/syzkaller-testdir702038654/syzkaller.kHV8N4/48/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.373856][ T6200] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[  121.427523][ T6200] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4
[  121.670410][   T29] audit: type=1800 audit(1717484912.606:220): pid=6200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="loop2" ino=10 res=0 errno=0
[  121.680872][   T29] audit: type=1804 audit(1717484912.616:221): pid=6200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.2" name="/root/syzkaller-testdir208663922/syzkaller.PSWJWr/19/bus/bus" dev="loop2" ino=10 res=1 errno=0
[  121.809040][   T29] audit: type=1804 audit(1717484912.746:222): pid=6200 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz-executor.2" name="/root/syzkaller-testdir208663922/syzkaller.PSWJWr/19/bus/bus" dev="loop2" ino=10 res=1 errno=0
[  121.895256][    C1] vkms_vblank_simulate: vblank timer overrun
[  121.912424][ T5317] EXT4-fs (loop0): unmounting filesystem f7ff0000-0000-0000-0000-000000000000.
[  121.982268][ T5118] Bluetooth: hci4: command tx timeout
[  122.009503][    C1] vkms_vblank_simulate: vblank timer overrun
[  122.054428][ T5723] syz-executor.2: attempt to access beyond end of device
[  122.054428][ T5723] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  122.054582][ T5723] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  123.315629][ T6225] loop3: detected capacity change from 0 to 32768
[  123.324930][   T12] team0 (unregistering): Port device team_slave_1 removed
[  123.622987][   T12] team0 (unregistering): Port device team_slave_0 removed
[  124.045099][ T5118] Bluetooth: hci4: command tx timeout
[  126.095236][ T6252] loop2: detected capacity change from 0 to 256
[  126.138354][ T5118] Bluetooth: hci4: command tx timeout
[  126.149388][ T6157] chnl_net:caif_netlink_parms(): no params data found
[  126.193552][ T6256] warning: checkpointing journal with EXT4_IOC_CHECKPOINT_FLAG_ZEROOUT can be slow
[  126.303463][ T6259] syz-executor.0(6259): Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored.
[  126.494164][ T6157] bridge0: port 1(bridge_slave_0) entered blocking state
[  126.511750][ T6157] bridge0: port 1(bridge_slave_0) entered disabled state
[  126.520752][ T6157] bridge_slave_0: entered allmulticast mode
[  126.561417][ T6157] bridge_slave_0: entered promiscuous mode
[  126.590201][ T6157] bridge0: port 2(bridge_slave_1) entered blocking state
[  126.618161][ T6157] bridge0: port 2(bridge_slave_1) entered disabled state
[  126.644090][ T6157] bridge_slave_1: entered allmulticast mode
[  126.652532][ T6157] bridge_slave_1: entered promiscuous mode
[  126.955401][   T12] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.004773][   T29] audit: type=1800 audit(1717484917.946:223): pid=6270 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="file1" dev="sda1" ino=1948 res=0 errno=0
[  127.132805][ T6157] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  127.255023][   T12] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.287868][   T53] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  127.305164][   T53] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  127.318935][   T53] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  127.329028][   T53] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  127.345823][   T53] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  127.357510][ T6157] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  127.367211][   T53] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  127.375575][ T6277] netlink: 'syz-executor.0': attribute type 4 has an invalid length.
[  127.590142][   T12] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.648599][ T6157] team0: Port device team_slave_0 added
[  127.713237][   T12] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  127.757169][ T6157] team0: Port device team_slave_1 added
[  127.899770][ T6157] batman_adv: batadv0: Adding interface: batadv_slave_0
[  127.913888][ T6157] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  127.943850][    C1] vkms_vblank_simulate: vblank timer overrun
[  127.960929][ T6157] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  128.031569][ T6157] batman_adv: batadv0: Adding interface: batadv_slave_1
[  128.088390][ T6291] loop0: detected capacity change from 0 to 16
[  128.122593][ T6291] erofs: (device loop0): check_layout_compatibility: unidentified incompatible feature ed80, please upgrade kernel
[  128.252114][ T6157] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  128.282975][    C1] vkms_vblank_simulate: vblank timer overrun
[  128.898974][ T6157] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  129.108764][ T6157] hsr_slave_0: entered promiscuous mode
[  129.154541][ T6299] loop0: detected capacity change from 0 to 2048
[  129.162361][ T6299] EXT4-fs: Ignoring removed mblk_io_submit option
[  129.171914][ T6157] hsr_slave_1: entered promiscuous mode
[  129.183482][ T6157] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  129.203798][ T6157] Cannot create hsr debugfs directory
[  129.305549][ T6299] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  129.391624][   T12] bridge_slave_1: left allmulticast mode
[  129.404744][   T12] bridge_slave_1: left promiscuous mode
[  129.410939][   T12] bridge0: port 2(bridge_slave_1) entered disabled state
[  129.452918][   T12] bridge_slave_0: left allmulticast mode
[  129.470269][   T12] bridge_slave_0: left promiscuous mode
[  129.484142][   T53] Bluetooth: hci3: command tx timeout
[  129.512193][   T12] bridge0: port 1(bridge_slave_0) entered disabled state
[  129.604625][ T6299] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 234: padding at end of block bitmap is not set
[  129.685097][ T6299] EXT4-fs (loop0): Remounting filesystem read-only
[  129.844340][ T5317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  129.855420][ T6294] loop1: detected capacity change from 0 to 32768
[  129.882123][ T6294] btrfs: Deprecated parameter 'usebackuproot'
[  129.909797][ T6294] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  129.932491][ T6294] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (6294)
[  129.987790][ T6294] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  130.032273][ T6294] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[  130.221993][ T6301] loop2: detected capacity change from 0 to 40427
[  130.275582][ T6301] F2FS-fs (loop2): Found nat_bits in checkpoint
[  130.314057][ T6294] BTRFS info (device loop1): rebuilding free space tree
[  130.346292][ T6301] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  130.379923][ T6294] BTRFS info (device loop1): disabling free space tree
[  130.388707][ T6294] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  130.404629][ T6294] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  130.455806][ T5723] syz-executor.2: attempt to access beyond end of device
[  130.455806][ T5723] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  130.477314][ T5723] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[  130.606946][   T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  130.627327][   T29] audit: type=1804 audit(1717484921.566:224): pid=6294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz-executor.1" name="/root/syzkaller-testdir2542690975/syzkaller.SdHxAk/60/file0/bus" dev="loop1" ino=263 res=1 errno=0
[  130.674606][   T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  130.704843][   T12] bond0 (unregistering): Released all slaves
[  130.957841][ T6332] block nbd0: NBD_DISCONNECT
[  130.976804][ T5337] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  131.242099][ T6273] chnl_net:caif_netlink_parms(): no params data found
[  131.564787][   T53] Bluetooth: hci3: command tx timeout
[  131.647751][   T12] hsr_slave_0: left promiscuous mode
[  131.673116][   T12] hsr_slave_1: left promiscuous mode
[  131.698059][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  131.733966][   T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[  131.749202][   T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  131.759726][ T6344] loop1: detected capacity change from 0 to 512
[  131.766593][   T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[  131.777902][ T6334] loop2: detected capacity change from 0 to 32768
[  131.791691][ T6334] (syz-executor.2,6334,1):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options
[  131.813875][ T6334] (syz-executor.2,6334,0):ocfs2_fill_super:1176 ERROR: status = -22
[  131.819005][   T12] veth1_macvtap: left promiscuous mode
[  131.831016][   T12] veth0_macvtap: left promiscuous mode
[  131.837328][   T12] veth1_vlan: left promiscuous mode
[  131.840671][ T6344] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  131.843190][   T12] veth0_vlan: left promiscuous mode
[  131.865178][ T6344] ext4 filesystem being mounted at /root/syzkaller-testdir2542690975/syzkaller.SdHxAk/63/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  132.193534][ T6351] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 96 vs 65376 free clusters
[  132.861626][   T12] team0 (unregistering): Port device team_slave_1 removed
[  132.924930][   T12] team0 (unregistering): Port device team_slave_0 removed
[  132.985810][ T6360] loop0: detected capacity change from 0 to 40427
[  133.080280][ T6360] F2FS-fs (loop0): Found nat_bits in checkpoint
[  133.177909][ T6360] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  133.248854][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[  133.255916][ T1248] ieee802154 phy1 wpan1: encryption failed: -22
[  133.289448][ T5317] syz-executor.0: attempt to access beyond end of device
[  133.289448][ T5317] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  133.304884][ T5317] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  133.644057][   T53] Bluetooth: hci3: command tx timeout
[  134.070510][ T5337] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  134.192436][ T6273] bridge0: port 1(bridge_slave_0) entered blocking state
[  134.215069][ T6273] bridge0: port 1(bridge_slave_0) entered disabled state
[  134.228857][ T6273] bridge_slave_0: entered allmulticast mode
[  134.240490][ T6273] bridge_slave_0: entered promiscuous mode
[  134.343389][ T6273] bridge0: port 2(bridge_slave_1) entered blocking state
[  134.357450][ T6273] bridge0: port 2(bridge_slave_1) entered disabled state
[  134.376561][ T6273] bridge_slave_1: entered allmulticast mode
[  134.394116][ T6273] bridge_slave_1: entered promiscuous mode
[  134.514887][ T6273] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  134.540165][ T6273] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  134.626427][ T6273] team0: Port device team_slave_0 added
[  134.646838][ T6273] team0: Port device team_slave_1 added
[  134.758646][ T6273] batman_adv: batadv0: Adding interface: batadv_slave_0
[  134.779900][ T6273] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.853533][ T6273] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  134.891664][ T6273] batman_adv: batadv0: Adding interface: batadv_slave_1
[  134.908931][ T6370] loop0: detected capacity change from 0 to 32768
[  134.923101][ T6273] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  134.981623][ T6273] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  135.030441][ T6370] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  135.088997][ T6157] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  135.136235][ T6157] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  135.144938][    T0] NOHZ tick-stop error: local softirq work is pending, handler #10!!!
[  135.221740][ T6157] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  135.236627][ T6370] XFS (loop0): Ending clean mount
[  135.261740][ T6370] XFS (loop0): Quotacheck needed: Please wait.
[  135.290379][ T6273] hsr_slave_0: entered promiscuous mode
[  135.321681][ T6273] hsr_slave_1: entered promiscuous mode
[  135.328339][ T6370] XFS (loop0): Quotacheck: Done.
[  135.387421][ T6273] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  135.401110][ T6273] Cannot create hsr debugfs directory
[  135.438075][ T6157] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  135.529300][ T5317] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  135.624219][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  135.724501][   T53] Bluetooth: hci3: command tx timeout
[  135.977453][ T6396] loop2: detected capacity change from 0 to 1024
[  136.066586][ T6396] hfsplus: bad catalog entry type
[  136.112201][ T6157] 8021q: adding VLAN 0 to HW filter on device bond0
[  136.126201][   T12] hfsplus: b-tree write err: -5, ino 4
[  136.180934][ T6157] 8021q: adding VLAN 0 to HW filter on device team0
[  136.250722][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.258237][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.305592][   T25] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.313428][   T25] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.402439][ T6157] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  136.426096][ T6157] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  136.671521][ T6273] netdevsim netdevsim3 netdevsim0: renamed from eth0
[  136.705532][ T6409] bridge0: port 2(bridge_slave_1) entered disabled state
[  136.716780][ T6409] bridge0: port 1(bridge_slave_0) entered disabled state
[  136.798256][ T6273] netdevsim netdevsim3 netdevsim1: renamed from eth1
[  136.820016][ T6273] netdevsim netdevsim3 netdevsim2: renamed from eth2
[  136.866534][ T6413] bridge0: port 2(bridge_slave_1) entered blocking state
[  136.876018][ T6413] bridge0: port 2(bridge_slave_1) entered forwarding state
[  136.887517][ T6413] bridge0: port 1(bridge_slave_0) entered blocking state
[  136.895465][ T6413] bridge0: port 1(bridge_slave_0) entered forwarding state
[  136.927630][ T6413] bridge0: entered promiscuous mode
[  136.956336][ T6413] bridge0: entered allmulticast mode
[  136.995344][ T6273] netdevsim netdevsim3 netdevsim3: renamed from eth3
[  137.010994][ T6398] loop0: detected capacity change from 0 to 32768
[  137.050692][ T6398] (syz-executor.0,6398,0):ocfs2_parse_options:1458 ERROR: Invalid heartbeat mount options
[  137.098692][ T6398] (syz-executor.0,6398,0):ocfs2_fill_super:1176 ERROR: status = -22
[  137.133183][ T6157] 8021q: adding VLAN 0 to HW filter on device batadv0
[  137.367000][ T6273] 8021q: adding VLAN 0 to HW filter on device bond0
[  137.452224][ T6273] 8021q: adding VLAN 0 to HW filter on device team0
[  137.517775][ T5164] bridge0: port 1(bridge_slave_0) entered blocking state
[  137.525025][ T5164] bridge0: port 1(bridge_slave_0) entered forwarding state
[  137.546830][ T5164] bridge0: port 2(bridge_slave_1) entered blocking state
[  137.554432][ T5164] bridge0: port 2(bridge_slave_1) entered forwarding state
[  137.983870][ T6157] veth0_vlan: entered promiscuous mode
[  138.024543][ T6157] veth1_vlan: entered promiscuous mode
[  138.122311][ T6157] veth0_macvtap: entered promiscuous mode
[  138.159517][ T6157] veth1_macvtap: entered promiscuous mode
[  138.182867][ T6424] loop1: detected capacity change from 0 to 32768
[  138.186146][ T6273] 8021q: adding VLAN 0 to HW filter on device batadv0
[  138.195821][ T6424] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz-executor.1 (6424)
[  138.238857][ T6424] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  138.254717][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.255050][ T6424] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[  138.268951][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.292705][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.304459][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.321835][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.335776][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.351579][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  138.363035][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.407547][ T6157] batman_adv: batadv0: Interface activated: batadv_slave_0
[  138.477747][ T6424] BTRFS info (device loop1): rebuilding free space tree
[  138.556092][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.579781][ T6424] BTRFS info (device loop1): disabling free space tree
[  138.588228][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.599013][ T6424] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  138.610377][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.621314][ T6424] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  138.639703][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.665406][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.676864][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.697131][ T6157] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  138.708193][ T6157] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  138.733249][ T6157] batman_adv: batadv0: Interface activated: batadv_slave_1
[  138.777251][ T6157] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  138.806497][ T6157] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  138.835925][ T6157] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  138.863182][ T6157] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  138.894296][ T6273] veth0_vlan: entered promiscuous mode
[  138.938863][ T6273] veth1_vlan: entered promiscuous mode
[  138.975867][ T5337] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  139.215527][ T6273] veth0_macvtap: entered promiscuous mode
[  139.246780][ T6273] veth1_macvtap: entered promiscuous mode
[  139.380305][ T6475] tipc: Started in network mode
[  139.394565][ T6475] tipc: Node identity fec0ffff00000000000000000000001, cluster identity 4711
[  139.431488][ T6475] tipc: Enabling of bearer <udp:s> rejected, failed to enable media
[  139.509522][   T51] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  139.525917][   T51] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  139.581436][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.620371][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.639810][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.657430][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.667573][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.678225][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.697599][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.702225][ T6485] loop2: detected capacity change from 0 to 256
[  139.715248][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.734376][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  139.769535][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.825453][ T6273] batman_adv: batadv0: Interface activated: batadv_slave_0
[  139.908659][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.932379][ T6485] FAT-fs (loop2): Directory bread(block 64) failed
[  139.935018][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  139.953322][ T6485] FAT-fs (loop2): Directory bread(block 65) failed
[  139.963417][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  139.974055][ T6485] FAT-fs (loop2): Directory bread(block 66) failed
[  139.974136][ T6485] FAT-fs (loop2): Directory bread(block 67) failed
[  139.974224][ T6485] FAT-fs (loop2): Directory bread(block 68) failed
[  139.974252][ T6485] FAT-fs (loop2): Directory bread(block 69) failed
[  139.974332][ T6485] FAT-fs (loop2): Directory bread(block 70) failed
[  139.992783][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.019687][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.032867][ T6485] FAT-fs (loop2): Directory bread(block 71) failed
[  140.048650][ T6485] FAT-fs (loop2): Directory bread(block 72) failed
[  140.057947][ T6485] FAT-fs (loop2): Directory bread(block 73) failed
[  140.064024][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.074826][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.091543][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.106653][ T6273] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  140.118035][ T6273] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  140.137645][ T6273] batman_adv: batadv0: Interface activated: batadv_slave_1
[  140.150463][ T6493] loop1: detected capacity change from 0 to 1024
[  140.180414][ T6273] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  140.187437][  T951] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.195831][ T6273] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  140.217780][  T951] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.236069][ T6273] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  140.265221][ T6273] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  140.274746][ T6493] hfsplus: xattr searching failed
[  140.347707][ T6493] hfsplus: b-tree write err: -5, ino 3
[  140.603446][  T951] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.639445][  T951] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.723034][ T2801] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  140.740286][ T6511] loop1: detected capacity change from 0 to 128
[  140.775643][ T2801] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  140.786269][ T6513] input: syz1 as /devices/virtual/input/input7
[  142.189524][ T6507] loop0: detected capacity change from 0 to 32768
[  142.211801][ T6507] XFS: noikeep mount option is deprecated.
[  142.227197][ T6542] input: syz1 as /devices/virtual/input/input8
[  142.254856][ T6507] XFS (loop0): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  142.354173][ T6540] loop2: detected capacity change from 0 to 4096
[  142.384305][ T6540] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[  142.399768][ T6507] XFS (loop0): Ending clean mount
[  142.410413][ T6540] ntfs3: loop2: Failed to load $MFT (-2).
[  142.412432][ T6507] XFS (loop0): Quotacheck needed: Please wait.
[  142.499922][ T6507] XFS (loop0): Quotacheck: Done.
[  142.593005][ T6556] affs: No valid root block on device nbd2
[  142.666310][ T6523] loop4: detected capacity change from 0 to 32768
[  142.700266][ T5317] XFS (loop0): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  142.712526][ T6523] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (6523)
[  142.748121][ T6523] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  142.796107][ T6523] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  142.815908][ T6523] BTRFS info (device loop4): using free-space-tree
[  142.877847][    C0] vxcan1: j1939_tp_rxtimer: 0xffff88801c365c00: rx timeout, send abort
[  143.125638][ T6590] loop3: detected capacity change from 0 to 128
[  143.147947][ T6157] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  143.271569][ T6593] loop1: detected capacity change from 0 to 128
[  143.384590][ T6593] hpfs: Bad magic ... probably not HPFS
[  143.392059][    C0] vxcan1: j1939_tp_rxtimer: 0xffff88801c365c00: abort rx timeout. Force session deactivation
[  143.698323][ T6607] affs: No valid root block on device nbd4
[  143.727620][ T6603] loop1: detected capacity change from 0 to 2048
[  143.845637][ T6603] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  143.877222][ T6611] netlink: 111 bytes leftover after parsing attributes in process `syz-executor.4'.
[  144.376459][ T6597] loop3: detected capacity change from 0 to 32768
[  144.400230][ T6597] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (6597)
[  144.442063][ T6597] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  144.453488][ T6597] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  144.469807][ T6597] BTRFS info (device loop3): using free-space-tree
[  144.503177][ T6623] netlink: 16 bytes leftover after parsing attributes in process `syz-executor.4'.
[  144.555872][ T6599] loop2: detected capacity change from 0 to 40427
[  144.574978][ T6599] F2FS-fs (loop2): Ignore s_resuid=7, s_resgid=0 w/o reserve_root
[  144.589583][ T6599] F2FS-fs (loop2): Found nat_bits in checkpoint
[  144.686379][ T6599] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[  144.724919][ T6599] F2FS-fs (loop2): Ignore s_resuid=7, s_resgid=0 w/o reserve_root
[  144.901319][ T6273] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[  145.039636][ T6651] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.0'.
[  145.054459][ T6651] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes.
[  145.387601][ T6655] loop4: detected capacity change from 0 to 1024
[  145.417810][ T6655] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.460201][ T6655] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  145.515819][ T6655] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=6840c02c, mo2=0003]
[  145.527028][ T6662] process 'syz-executor.3' launched '/dev/fd/4/./file0' with NULL argv: empty string added
[  145.537351][ T6655] System zones: 0-1, 3-36
[  145.551259][ T6655] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.658892][ T6669] loop2: detected capacity change from 0 to 512
[  145.676647][ T6669] EXT4-fs: Ignoring removed orlov option
[  145.682778][ T6669] EXT4-fs: Ignoring removed nomblk_io_submit option
[  145.691640][ T6669] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  145.701120][ T6671] Cannot find del_set index 0 as target
[  145.724181][ T6669] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  145.736758][ T6669] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[  145.780729][ T6669] EXT4-fs (loop2): orphan cleanup on readonly fs
[  145.823373][ T6669] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[  145.874110][ T6669] EXT4-fs warning (device loop2): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  145.938137][ T6669] EXT4-fs (loop2): Cannot turn on quotas: error -22
[  146.014021][ T6669] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz-executor.2: bg 0: block 40: padding at end of block bitmap is not set
[  146.050205][ T6669] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  146.068963][ T6669] EXT4-fs (loop2): 1 truncate cleaned up
[  146.076621][ T6669] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  146.190672][ T6669] EXT4-fs error (device loop2): ext4_encrypted_get_link:46: inode #16: comm syz-executor.2: bad symlink.
[  146.894373][ T6157] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  147.989877][ T5723] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  148.047532][ T6691] loop3: detected capacity change from 0 to 40427
[  148.101759][ T6691] F2FS-fs (loop3): Found nat_bits in checkpoint
[  148.207936][  T951] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.258954][ T6691] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[  148.324788][  T951] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.484481][ T6273] syz-executor.3: attempt to access beyond end of device
[  148.484481][ T6273] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  148.561858][ T6712] loop0: detected capacity change from 0 to 512
[  148.568675][ T6273] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[  148.580505][  T951] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.637348][ T6712] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz-executor.0: invalid indirect mapped block 256 (level 2)
[  148.696656][ T6712] EXT4-fs (loop0): Remounting filesystem read-only
[  148.725427][ T5118] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  148.732297][ T6712] EXT4-fs (loop0): 2 truncates cleaned up
[  148.753078][ T5118] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  148.762470][ T5118] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  148.765399][ T6712] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  148.785164][ T5118] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  148.793017][ T5118] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  148.800832][ T5118] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  148.808304][ T6712] EXT4-fs warning (device loop0): empty_inline_dir:1836: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60
[  148.832601][  T951] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  148.898004][ T5317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  149.093471][ T6722] loop0: detected capacity change from 0 to 512
[  149.117445][ T6722] EXT4-fs: Ignoring removed orlov option
[  149.125866][  T951] bridge_slave_1: left allmulticast mode
[  149.128097][ T6722] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.131639][  T951] bridge_slave_1: left promiscuous mode
[  149.131982][  T951] bridge0: port 2(bridge_slave_1) entered disabled state
[  149.170393][ T6722] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  149.183016][  T951] bridge_slave_0: left allmulticast mode
[  149.189306][  T951] bridge_slave_0: left promiscuous mode
[  149.195498][  T951] bridge0: port 1(bridge_slave_0) entered disabled state
[  149.204788][ T6722] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  149.212918][ T6722] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=c040e118, mo2=0002]
[  149.221755][ T6722] EXT4-fs (loop0): orphan cleanup on readonly fs
[  149.228544][ T6722] Quota error (device loop0): v2_read_header: Failed header read: expected=8 got=0
[  149.240609][ T6722] EXT4-fs warning (device loop0): ext4_enable_quotas:7078: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[  149.265718][ T6722] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  149.276710][ T6722] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 40: padding at end of block bitmap is not set
[  149.292668][ T6722] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  149.302220][ T6722] EXT4-fs (loop0): 1 truncate cleaned up
[  149.309707][ T6722] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  149.358183][ T6722] EXT4-fs error (device loop0): ext4_encrypted_get_link:46: inode #16: comm syz-executor.0: bad symlink.
[  149.593624][ T6728] Driver unsupported XDP return value 0 on prog  (id 71) dev N/A, expect packet loss!
[  149.990622][ T6738] loop3: detected capacity change from 0 to 1024
[  150.089016][  T951] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  150.105069][  T951] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  150.126314][  T951] bond0 (unregistering): Released all slaves
[  150.241601][  T951] tipc: Left network mode
[  150.358343][ T5317] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.433456][ T6746] loop3: detected capacity change from 0 to 512
[  150.475909][ T6746] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz-executor.3: invalid indirect mapped block 256 (level 2)
[  150.497910][ T6746] EXT4-fs (loop3): Remounting filesystem read-only
[  150.505591][ T6746] EXT4-fs (loop3): 2 truncates cleaned up
[  150.513092][ T6746] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  150.533011][ T6714] chnl_net:caif_netlink_parms(): no params data found
[  150.615833][ T6746] EXT4-fs warning (device loop3): empty_inline_dir:1836: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60
[  150.676732][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  150.885054][  T951] hsr_slave_0: left promiscuous mode
[  150.935628][ T5118] Bluetooth: hci1: command tx timeout
[  150.958385][  T951] hsr_slave_1: left promiscuous mode
[  150.978040][  T951] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  150.993815][  T951] batman_adv: batadv0: Removing interface: batadv_slave_0
[  151.024734][  T951] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  151.027118][ T6760] loop3: detected capacity change from 0 to 2048
[  151.032186][  T951] batman_adv: batadv0: Removing interface: batadv_slave_1
[  151.097342][  T951] veth1_macvtap: left promiscuous mode
[  151.102969][  T951] veth0_macvtap: left promiscuous mode
[  151.111372][ T6760] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  151.123979][  T951] veth1_vlan: left promiscuous mode
[  151.129401][  T951] veth0_vlan: left promiscuous mode
[  151.144561][ T6760] ext4 filesystem being mounted at /root/syzkaller-testdir2505612875/syzkaller.Jm0p5L/19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  151.198057][   T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  151.211343][   T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  151.222073][   T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  151.234997][   T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  151.242861][   T53] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  151.259763][   T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  151.280321][ T6760] fs-verity: sha512 using implementation "sha512-avx2"
[  151.436656][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  151.609460][ T6761] loop4: detected capacity change from 0 to 32768
[  151.617584][ T6761] XFS: attr2 mount option is deprecated.
[  151.657886][ T6761] XFS (loop4): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  151.687149][ T6761] XFS (loop4): Quotacheck needed: Please wait.
[  151.794014][ T6761] XFS (loop4): Quotacheck: Done.
[  151.850317][ T6761] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  152.235833][  T951] team0 (unregistering): Port device team_slave_1 removed
[  152.315175][  T951] team0 (unregistering): Port device team_slave_0 removed
[  152.969491][ T6788] loop4: detected capacity change from 0 to 1024
[  153.003861][ T5118] Bluetooth: hci1: command tx timeout
[  153.005047][ T6714] bridge0: port 1(bridge_slave_0) entered blocking state
[  153.010550][ T6714] bridge0: port 1(bridge_slave_0) entered disabled state
[  153.034202][ T6714] bridge_slave_0: entered allmulticast mode
[  153.041743][ T6714] bridge_slave_0: entered promiscuous mode
[  153.082024][ T6714] bridge0: port 2(bridge_slave_1) entered blocking state
[  153.127647][ T6714] bridge0: port 2(bridge_slave_1) entered disabled state
[  153.148938][ T6714] bridge_slave_1: entered allmulticast mode
[  153.165788][ T6714] bridge_slave_1: entered promiscuous mode
[  153.269526][ T6798] loop3: detected capacity change from 0 to 2048
[  153.313481][ T6798] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  153.315576][ T6714] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  153.339602][ T5118] Bluetooth: hci0: command tx timeout
[  153.342762][ T6714] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  153.381781][ T6798] ext4 filesystem being mounted at /root/syzkaller-testdir2505612875/syzkaller.Jm0p5L/24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.438812][ T6714] team0: Port device team_slave_0 added
[  153.462489][ T6714] team0: Port device team_slave_1 added
[  153.491756][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  153.534345][ T6714] batman_adv: batadv0: Adding interface: batadv_slave_0
[  153.546404][ T6714] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.573104][ T5164] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  153.588510][ T6714] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  153.606222][ T6714] batman_adv: batadv0: Adding interface: batadv_slave_1
[  153.613906][ T6714] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  153.649344][ T6714] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  153.767171][ T5164] usb 5-1: Using ep0 maxpacket: 16
[  153.788025][ T5164] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  153.814775][ T5164] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  153.831341][ T5164] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  153.851860][ T6714] hsr_slave_0: entered promiscuous mode
[  153.858508][ T5164] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  153.870991][ T6714] hsr_slave_1: entered promiscuous mode
[  153.875883][ T5164] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  153.906292][ T5164] usb 5-1: SerialNumber: syz
[  153.920741][ T6796] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  153.932214][ T5164] cdc_acm 5-1:1.0: Control and data interfaces are not separated!
[  153.991932][  T951] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.131112][ T6805] loop3: detected capacity change from 0 to 32768
[  154.147885][  T951] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.155370][ T6805] XFS: noikeep mount option is deprecated.
[  154.178816][ T6805] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  154.223083][ T6764] chnl_net:caif_netlink_parms(): no params data found
[  154.229860][ T6805] XFS (loop3): Ending clean mount
[  154.242661][ T6805] XFS (loop3): Quotacheck needed: Please wait.
[  154.265820][ T5164] cdc_acm 5-1:1.0: ttyACM0: USB ACM device
[  154.275455][ T5164] usb 5-1: USB disconnect, device number 4
[  154.296583][  T951] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.301082][ T6805] XFS (loop3): Quotacheck: Done.
[  154.408301][ T6273] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  154.415244][  T951] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.707463][ T6764] bridge0: port 1(bridge_slave_0) entered blocking state
[  154.715087][ T6764] bridge0: port 1(bridge_slave_0) entered disabled state
[  154.722526][ T6764] bridge_slave_0: entered allmulticast mode
[  154.730173][ T6764] bridge_slave_0: entered promiscuous mode
[  154.740350][ T6764] bridge0: port 2(bridge_slave_1) entered blocking state
[  154.752770][ T6764] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.760235][ T6764] bridge_slave_1: entered allmulticast mode
[  154.778546][ T6764] bridge_slave_1: entered promiscuous mode
[  154.914761][ T6828] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  154.935591][ T6764] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  154.949546][ T6764] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  154.968437][  T951] bridge_slave_1: left allmulticast mode
[  154.975957][  T951] bridge_slave_1: left promiscuous mode
[  154.981824][  T951] bridge0: port 2(bridge_slave_1) entered disabled state
[  154.993520][  T951] bridge_slave_0: left allmulticast mode
[  154.999674][  T951] bridge_slave_0: left promiscuous mode
[  155.006786][  T951] bridge0: port 1(bridge_slave_0) entered disabled state
[  155.083854][ T5118] Bluetooth: hci1: command tx timeout
[  155.404242][ T5118] Bluetooth: hci0: command tx timeout
[  155.503211][ T6830] loop4: detected capacity change from 0 to 32768
[  155.517999][ T6830] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (6830)
[  155.538173][ T6830] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  155.550437][ T6830] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  155.559580][ T6830] BTRFS info (device loop4): using free-space-tree
[  155.789366][  T951] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  155.818380][  T951] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  155.829487][ T6157] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  155.841970][  T951] bond0 (unregistering): Released all slaves
[  156.008241][ T6764] team0: Port device team_slave_0 added
[  156.035836][ T6764] team0: Port device team_slave_1 added
[  156.128959][ T6834] loop3: detected capacity change from 0 to 32768
[  156.142317][ T6834] XFS: attr2 mount option is deprecated.
[  156.228990][ T6834] XFS (loop3): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent.
[  156.277612][ T6834] XFS (loop3): Quotacheck needed: Please wait.
[  156.281178][ T6764] batman_adv: batadv0: Adding interface: batadv_slave_0
[  156.297142][ T6764] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  156.326643][ T6764] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  156.339985][ T6764] batman_adv: batadv0: Adding interface: batadv_slave_1
[  156.347089][ T6764] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  156.373175][ T6764] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  156.395610][ T6834] XFS (loop3): Quotacheck: Done.
[  156.493260][ T6834] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  156.688285][ T6764] hsr_slave_0: entered promiscuous mode
[  156.699416][ T6764] hsr_slave_1: entered promiscuous mode
[  156.724133][ T6764] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  156.732011][ T6764] Cannot create hsr debugfs directory
[  156.792260][  T951] hsr_slave_0: left promiscuous mode
[  156.815161][  T951] hsr_slave_1: left promiscuous mode
[  156.831607][  T951] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  156.839409][  T951] batman_adv: batadv0: Removing interface: batadv_slave_0
[  156.850537][  T951] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  156.858610][  T951] batman_adv: batadv0: Removing interface: batadv_slave_1
[  156.887554][  T951] veth1_macvtap: left promiscuous mode
[  156.893261][  T951] veth0_macvtap: left promiscuous mode
[  156.900200][  T951] veth1_vlan: left promiscuous mode
[  156.905932][  T951] veth0_vlan: left promiscuous mode
[  157.082086][ T6863] loop4: detected capacity change from 0 to 32768
[  157.090175][ T6863] XFS: noikeep mount option is deprecated.
[  157.140327][ T6863] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  157.168751][ T5118] Bluetooth: hci1: command tx timeout
[  157.199508][ T6863] XFS (loop4): Ending clean mount
[  157.214666][ T6863] XFS (loop4): Quotacheck needed: Please wait.
[  157.357155][ T6863] XFS (loop4): Quotacheck: Done.
[  157.420445][ T6157] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  157.484176][ T5118] Bluetooth: hci0: command tx timeout
[  157.682172][  T951] team0 (unregistering): Port device team_slave_1 removed
[  157.742603][  T951] team0 (unregistering): Port device team_slave_0 removed
[  158.269898][ T6714] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  158.291528][ T6714] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  158.353901][ T6714] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  158.444071][ T6714] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  158.463939][ T5164] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  158.472554][ T6886] netlink: 32 bytes leftover after parsing attributes in process `syz-executor.3'.
[  158.674956][ T5164] usb 5-1: Using ep0 maxpacket: 16
[  158.690161][ T5164] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  158.714032][ T5164] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[  158.727823][ T5164] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22
[  158.743259][ T5164] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[  158.766747][ T5164] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[  158.774923][ T5164] usb 5-1: SerialNumber: syz
[  158.808447][ T6882] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  158.828998][ T5164] cdc_acm 5-1:1.0: Control and data interfaces are not separated!
[  158.888128][ T6714] 8021q: adding VLAN 0 to HW filter on device bond0
[  158.936693][ T6714] 8021q: adding VLAN 0 to HW filter on device team0
[  158.975174][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.982327][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.010248][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.017557][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.120854][ T5164] cdc_acm 5-1:1.0: ttyACM0: USB ACM device
[  159.137467][ T5164] usb 5-1: USB disconnect, device number 5
[  159.252652][ T6764] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  159.277436][ T6764] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  159.300960][ T6764] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  159.334927][ T6764] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  159.466106][ T6714] 8021q: adding VLAN 0 to HW filter on device batadv0
[  159.550370][ T6892] loop3: detected capacity change from 0 to 32768
[  159.565064][ T5118] Bluetooth: hci0: command tx timeout
[  159.571739][ T6892] XFS: attr2 mount option is deprecated.
[  159.579024][ T6892] XFS: ikeep mount option is deprecated.
[  159.587015][ T6892] XFS: noikeep mount option is deprecated.
[  159.609171][ T6892] XFS (loop3): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  159.612239][ T6764] 8021q: adding VLAN 0 to HW filter on device bond0
[  159.664357][ T6892] XFS (loop3): Ending clean mount
[  159.669528][ T6714] veth0_vlan: entered promiscuous mode
[  159.673398][ T6892] XFS (loop3): Quotacheck needed: Please wait.
[  159.703572][ T6764] 8021q: adding VLAN 0 to HW filter on device team0
[  159.765623][ T6892] XFS (loop3): Quotacheck: Done.
[  159.775205][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[  159.782572][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  159.815776][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state
[  159.823080][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  159.846732][ T6714] veth1_vlan: entered promiscuous mode
[  159.931584][ T6273] XFS (loop3): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab
[  159.942540][ T6764] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  159.993010][ T6714] veth0_macvtap: entered promiscuous mode
[  160.032705][ T6714] veth1_macvtap: entered promiscuous mode
[  160.080119][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.109885][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.120083][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.133297][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.143611][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.157699][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.171078][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.185324][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.209164][ T6714] batman_adv: batadv0: Interface activated: batadv_slave_0
[  160.256994][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.283092][ T6914] loop3: detected capacity change from 0 to 64
[  160.283723][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.307335][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.320978][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.334216][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.346872][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.360488][ T6714] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  160.374916][ T6714] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.387268][ T6714] batman_adv: batadv0: Interface activated: batadv_slave_1
[  160.414820][ T6714] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  160.424198][ T6714] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  160.432892][ T6714] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  160.445434][ T6714] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  160.564865][ T6764] 8021q: adding VLAN 0 to HW filter on device batadv0
[  160.630539][ T2801] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.654508][ T2801] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.714788][ T2781] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  160.726793][ T2781] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  160.747039][ T6764] veth0_vlan: entered promiscuous mode
[  160.795500][ T6764] veth1_vlan: entered promiscuous mode
[  160.860922][ T6764] veth0_macvtap: entered promiscuous mode
[  160.872883][ T6764] veth1_macvtap: entered promiscuous mode
[  160.900374][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.923270][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.939196][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.944622][ T6922] loop2: detected capacity change from 0 to 256
[  160.958625][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  160.978742][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  160.989726][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.000964][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  161.020251][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.031757][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  161.049041][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.062283][ T6764] batman_adv: batadv0: Interface activated: batadv_slave_0
[  161.078766][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.103016][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.130311][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.141909][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.164443][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.184287][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.200213][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.212059][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.226690][ T6764] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  161.237771][ T6764] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  161.251923][ T6764] batman_adv: batadv0: Interface activated: batadv_slave_1
[  161.273211][ T6917] loop3: detected capacity change from 0 to 32768
[  161.281729][ T6764] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  161.292676][ T6764] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  161.303105][ T6764] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  161.312071][ T6764] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.362608][ T6917] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  161.586926][ T6917] XFS (loop3): Ending clean mount
[  161.600323][   T35] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  161.605343][ T6917] XFS (loop3): Quotacheck needed: Please wait.
[  161.629109][   T35] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  161.697879][  T951] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  161.699679][ T6917] XFS (loop3): Quotacheck: Done.
[  161.734820][  T951] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  161.793759][ T6273] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  162.165670][ T6925] loop4: detected capacity change from 0 to 32768
[  162.173639][ T6925] XFS (loop4): sunit and swidth options incompatible with the noalign option
[  162.309254][ T6949] loop3: detected capacity change from 0 to 64
[  162.553417][ T6937] loop2: detected capacity change from 0 to 32768
[  163.040440][ T6947] loop0: detected capacity change from 0 to 32768
[  163.051464][ T6947] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (6947)
[  163.852173][ T6947] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  163.901559][ T6947] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[  163.916493][ T6947] BTRFS info (device loop0): using free-space-tree
[  164.202938][ T6764] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  164.249012][ T6990] loop3: detected capacity change from 0 to 64
[  164.251361][ T6976] loop4: detected capacity change from 0 to 4096
[  164.279487][ T6976] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512).
[  164.328406][ T6976] ntfs3: loop4: Failed to load $MFT (-2).
[  164.675664][ T6996] xt_CT: You must specify a L4 protocol and not use inversions on it
[  164.781451][ T6972] loop2: detected capacity change from 0 to 32768
[  164.825775][ T6972] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  164.959120][ T7010] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.4'.
[  164.980722][ T6972] XFS (loop2): Ending clean mount
[  164.996750][ T6972] XFS (loop2): Quotacheck needed: Please wait.
[  165.062888][ T6972] XFS (loop2): Quotacheck: Done.
[  165.185131][ T6714] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  165.361566][ T6992] loop3: detected capacity change from 0 to 32768
[  165.369797][ T6992] XFS (loop3): sunit and swidth options incompatible with the noalign option
[  165.650285][ T7024] TCP: request_sock_subflow_v6: Possible SYN flooding on port [fe80::aa]:20002. Sending cookies.
[  166.884402][ T7037] loop3: detected capacity change from 0 to 32768
[  166.899757][ T7034] loop0: detected capacity change from 0 to 40427
[  166.917080][ T7034] F2FS-fs (loop0): Corrupted extension count (134217765 + 1 > 64)
[  166.945020][ T7034] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  166.993354][ T7034] F2FS-fs (loop0): invalid crc value
[  167.033883][ T7034] F2FS-fs (loop0): Found nat_bits in checkpoint
[  167.148600][ T7034] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  167.175889][ T7034] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e4
[  167.409815][ T7068] loop2: detected capacity change from 0 to 1024
[  168.053918][ T5161] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  168.256768][ T5161] usb 3-1: unable to get BOS descriptor or descriptor too short
[  168.274225][ T5161] usb 3-1: config 3 has an invalid interface number: 254 but max is 0
[  168.298677][ T5161] usb 3-1: config 3 has no interface number 0
[  168.318780][ T5161] usb 3-1: config 3 interface 254 altsetting 7 has an invalid descriptor for endpoint zero, skipping
[  168.353488][ T5161] usb 3-1: config 3 interface 254 altsetting 7 endpoint 0xB has invalid maxpacket 1023, setting to 64
[  168.392884][ T5161] usb 3-1: config 3 interface 254 altsetting 7 has a duplicate endpoint with address 0xB, skipping
[  168.422591][ T5161] usb 3-1: config 3 interface 254 has no altsetting 0
[  168.478582][ T5161] usb 3-1: Dual-Role OTG device on HNP port
[  168.487729][ T5161] usb 3-1: New USB device found, idVendor=0bda, idProduct=8754, bcdDevice=bc.df
[  168.513857][ T5161] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  168.522165][ T5161] usb 3-1: Product: syz
[  168.531440][ T7073] loop4: detected capacity change from 0 to 32768
[  168.538845][ T5161] usb 3-1: Manufacturer: syz
[  168.543579][ T5161] usb 3-1: SerialNumber: syz
[  168.851351][ T5161] usb 3-1: USB disconnect, device number 4
[  169.043569][ T7101] loop3: detected capacity change from 0 to 2048
[  169.294694][ T7111] loop0: detected capacity change from 0 to 4096
[  169.312787][ T7111] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  169.420146][ T7111] ntfs3: loop0: Failed to initialize $Extend/$ObjId.
[  169.787012][ T7126] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.2'.
[  169.821514][ T7126] netlink: 56 bytes leftover after parsing attributes in process `syz-executor.2'.
[  169.968414][ T7132] loop2: detected capacity change from 0 to 256
[  169.987660][ T7132] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  170.163997][ T5161] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  170.365332][ T5161] usb 1-1: Using ep0 maxpacket: 32
[  170.379162][ T5161] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  170.395750][ T5161] usb 1-1: New USB device found, idVendor=06cd, idProduct=011a, bcdDevice=32.f8
[  170.408897][ T5161] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  170.411074][ T7143] loop4: detected capacity change from 0 to 2048
[  170.424988][ T5161] usb 1-1: Product: syz
[  170.433935][ T5161] usb 1-1: Manufacturer: syz
[  170.456960][ T5161] usb 1-1: SerialNumber: syz
[  170.470957][ T5161] usb 1-1: config 0 descriptor??
[  170.491089][ T5161] keyspan 1-1:0.0: Keyspan - (without firmware) converter detected
[  170.602497][ T7152] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.2'.
[  170.612829][ T7152] netlink: 64 bytes leftover after parsing attributes in process `syz-executor.2'.
[  170.707269][ T5161] usb 1-1: USB disconnect, device number 3
[  170.725832][ T5161] keyspan 1-1:0.0: device disconnected
[  170.801404][ T7163] loop4: detected capacity change from 0 to 256
[  170.852416][ T7163] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[  170.871264][ T7166] openvswitch: netlink: Unexpected mask (mask=440, allowed=10048)
[  170.924260][   T29] audit: type=1800 audit(1717484961.856:225): pid=7164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1953 res=0 errno=0
[  170.957328][   T29] audit: type=1800 audit(1717484961.866:226): pid=7164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1953 res=0 errno=0
[  170.988476][   T29] audit: type=1800 audit(1717484961.866:227): pid=7164 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.2" name="bus" dev="sda1" ino=1953 res=0 errno=0
[  171.252659][ T7177] loop4: detected capacity change from 0 to 2048
[  171.391815][ T7184] loop0: detected capacity change from 0 to 2048
[  171.419975][ T7184] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  171.654741][ T7200] loop4: detected capacity change from 0 to 256
[  171.670654][ T7200] exfat: Deprecated parameter 'namecase'
[  171.707143][ T7200] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  171.750159][ T7200] fuse: Bad value for 'fd'
[  172.428502][ T7226] fuse: Unknown parameter 'g'
[  172.435521][ T7228] loop4: detected capacity change from 0 to 8
[  172.603757][ T7232] dccp_invalid_packet: P.Data Offset(0) too small
[  172.947295][ T7249] loop0: detected capacity change from 0 to 256
[  172.955145][ T7249] exfat: Deprecated parameter 'utf8'
[  172.965598][ T7249] exfat: Deprecated parameter 'utf8'
[  172.974827][ T7250] loop3: detected capacity change from 0 to 512
[  173.000351][ T7249] exfat: Unknown parameter 'allow_uti0000 ÿÿÿÿÿÿÿ001777'
[  173.049547][ T7250] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  173.083470][ T7250] ext4 filesystem being mounted at /root/syzkaller-testdir2505612875/syzkaller.Jm0p5L/75/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.217683][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.347672][ T7266] xt_TCPMSS: Only works on TCP SYN packets
[  173.451917][ T7268] vlan2: entered allmulticast mode
[  173.942478][ T7276] loop4: detected capacity change from 0 to 4096
[  173.956511][ T7276] ntfs3: loop4: Different NTFS sector size (1024) and media sector size (512).
[  173.978069][ T7249] loop0: detected capacity change from 0 to 32768
[  174.012843][ T7276] ntfs3: loop4: Failed to load root (-22).
[  174.147458][   T53] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  174.159525][   T53] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  174.173484][   T53] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  174.291045][   T53] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  174.302147][   T53] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  174.311559][   T53] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  174.393316][ T7286] loop3: detected capacity change from 0 to 512
[  174.400631][ T7285] netlink: 'syz-executor.4': attribute type 24 has an invalid length.
[  174.440459][ T7286] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  174.473995][ T7286] ext4 filesystem being mounted at /root/syzkaller-testdir2505612875/syzkaller.Jm0p5L/77/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  174.692243][ T7294] loop2: detected capacity change from 0 to 2048
[  174.725205][ T7294] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  174.779888][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.770017][ T7308] loop4: detected capacity change from 0 to 256
[  175.788562][ T7277] chnl_net:caif_netlink_parms(): no params data found
[  175.837407][ T7308] exfat: Deprecated parameter 'namecase'
[  175.895900][ T7308] exFAT-fs (loop4): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  175.981572][ T7308] fuse: Bad value for 'fd'
[  176.055740][ T7277] bridge0: port 1(bridge_slave_0) entered blocking state
[  176.073913][ T7277] bridge0: port 1(bridge_slave_0) entered disabled state
[  176.081784][ T7277] bridge_slave_0: entered allmulticast mode
[  176.110600][ T7277] bridge_slave_0: entered promiscuous mode
[  176.138271][ T7277] bridge0: port 2(bridge_slave_1) entered blocking state
[  176.153904][ T7277] bridge0: port 2(bridge_slave_1) entered disabled state
[  176.162073][ T7277] bridge_slave_1: entered allmulticast mode
[  176.185907][ T7277] bridge_slave_1: entered promiscuous mode
[  176.327906][ T7277] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  176.395845][ T7277] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  176.448785][   T53] Bluetooth: hci5: command tx timeout
[  176.610424][ T7277] team0: Port device team_slave_0 added
[  176.635270][ T7277] team0: Port device team_slave_1 added
[  176.853612][ T7277] batman_adv: batadv0: Adding interface: batadv_slave_0
[  176.889563][ T7277] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  176.987336][ T7277] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  177.726556][ T7277] batman_adv: batadv0: Adding interface: batadv_slave_1
[  177.758497][ T7277] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  177.840762][    T8] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  177.874851][ T7277] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  177.950126][ T7277] hsr_slave_0: entered promiscuous mode
[  177.996582][ T7277] hsr_slave_1: entered promiscuous mode
[  178.012914][ T7277] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  178.032082][ T7329] loop3: detected capacity change from 0 to 32768
[  178.033781][ T7277] Cannot create hsr debugfs directory
[  178.040173][ T7329] btrfs: Deprecated parameter 'usebackuproot'
[  178.044169][    T8] usb 5-1: Using ep0 maxpacket: 32
[  178.067156][    T8] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  178.086144][ T7329] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  178.103602][    T8] usb 5-1: New USB device found, idVendor=06cd, idProduct=011a, bcdDevice=32.f8
[  178.104115][ T7329] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7329)
[  178.115981][    T8] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  178.139889][    T8] usb 5-1: Product: syz
[  178.144435][    T8] usb 5-1: Manufacturer: syz
[  178.149751][    T8] usb 5-1: SerialNumber: syz
[  178.164933][    T8] usb 5-1: config 0 descriptor??
[  178.168297][ T7329] BTRFS info (device loop3): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  178.187842][    T8] keyspan 5-1:0.0: Keyspan - (without firmware) converter detected
[  178.200209][ T7329] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  178.217923][ T7345] loop0: detected capacity change from 0 to 256
[  178.220674][ T7329] BTRFS info (device loop3): using free-space-tree
[  178.245418][ T7345] exfat: Deprecated parameter 'namecase'
[  178.265132][ T7345] exFAT-fs (loop0): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d)
[  178.307004][ T7345] fuse: Bad value for 'fd'
[  178.364808][ T7329] BTRFS info (device loop3): rebuilding free space tree
[  178.391523][ T7277] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.440644][ T5125] usb 5-1: USB disconnect, device number 6
[  178.452151][ T5125] keyspan 5-1:0.0: device disconnected
[  178.525000][   T53] Bluetooth: hci5: command tx timeout
[  178.571877][ T7277] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.604444][ T6273] BTRFS info (device loop3): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  178.771492][ T7277] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  178.941069][ T7277] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  179.358138][ T7277] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  179.393163][ T7277] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  179.446801][ T7277] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  179.470726][ T7277] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  180.001302][ T7277] 8021q: adding VLAN 0 to HW filter on device bond0
[  180.015759][ T7367] loop0: detected capacity change from 0 to 32768
[  180.043601][ T7367] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7367)
[  180.077596][ T7277] 8021q: adding VLAN 0 to HW filter on device team0
[  180.117203][ T7367] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  180.122833][    T8] bridge0: port 1(bridge_slave_0) entered blocking state
[  180.134625][    T8] bridge0: port 1(bridge_slave_0) entered forwarding state
[  180.149423][ T7367] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  180.179082][ T7367] BTRFS info (device loop0): using free-space-tree
[  180.228311][    T8] bridge0: port 2(bridge_slave_1) entered blocking state
[  180.235591][    T8] bridge0: port 2(bridge_slave_1) entered forwarding state
[  180.604170][   T53] Bluetooth: hci5: command tx timeout
[  180.868127][ T6764] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  180.912325][ T7277] 8021q: adding VLAN 0 to HW filter on device batadv0
[  181.073480][ T7277] veth0_vlan: entered promiscuous mode
[  181.112218][ T7277] veth1_vlan: entered promiscuous mode
[  181.248060][ T7277] veth0_macvtap: entered promiscuous mode
[  181.275671][ T7277] veth1_macvtap: entered promiscuous mode
[  181.356183][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.390507][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.408328][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.441642][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.462575][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.488620][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.511806][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.535160][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.549060][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.580877][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.612226][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  181.644749][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  181.697531][ T7277] batman_adv: batadv0: Interface activated: batadv_slave_0
[  181.710406][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.075273][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.275336][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.506067][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.546642][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.596469][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.628422][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.653863][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.678986][ T7417] loop0: detected capacity change from 0 to 4096
[  182.679512][ T7415] loop4: detected capacity change from 0 to 4096
[  182.685559][   T53] Bluetooth: hci5: command tx timeout
[  182.691769][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.709160][ T7417] ntfs3: loop0: Different NTFS sector size (2048) and media sector size (512).
[  182.713724][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.731296][ T7415] ntfs3: loop4: Primary boot: invalid bytes per MFT record 126976 (31).
[  182.740115][ T7415] ntfs3: loop4: try to read out of volume at offset 0x1ffe00
[  182.741159][ T7407] loop3: detected capacity change from 0 to 32768
[  182.748367][ T7277] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  182.765226][ T7277] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  182.771619][ T7417] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[  182.779552][ T7277] batman_adv: batadv0: Interface activated: batadv_slave_1
[  182.797338][ T7407] btrfs: Deprecated parameter 'usebackuproot'
[  182.806185][ T7277] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  182.829815][ T7407] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  182.843840][ T7277] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  182.853058][ T7407] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7407)
[  182.877592][ T7277] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  182.893415][ T7277] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  182.904339][ T7407] BTRFS info (device loop3): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  182.937693][ T7407] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  182.946648][ T7407] BTRFS info (device loop3): using free-space-tree
[  183.085074][ T7407] BTRFS info (device loop3): rebuilding free space tree
[  183.118025][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  183.126198][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  183.151555][ T2801] ntfs3: loop0: ino=5, ntfs3_write_inode failed, -22.
[  183.235985][ T2801] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  183.260136][ T2801] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  183.349796][ T6273] BTRFS info (device loop3): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  183.614764][ T7447] loop0: detected capacity change from 0 to 4096
[  183.646108][ T7447] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[  183.661521][ T7455] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  183.794392][   T29] audit: type=1800 audit(1717484974.736:228): pid=7447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=33 res=0 errno=0
[  183.862251][   T29] audit: type=1800 audit(1717484974.756:229): pid=7447 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.0" name="bus" dev="loop0" ino=33 res=0 errno=0
[  184.157957][ T7473] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  184.623455][ T7487] loop0: detected capacity change from 0 to 2048
[  184.663081][ T7487] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  184.805958][ T7468] loop3: detected capacity change from 0 to 32768
[  184.821894][ T7468] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz-executor.3 (7468)
[  184.848009][ T7468] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  184.880727][ T7468] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[  184.903914][ T7468] BTRFS info (device loop3): using free-space-tree
[  184.971009][ T7491] loop0: detected capacity change from 0 to 4096
[  185.220792][ T7483] loop4: detected capacity change from 0 to 32768
[  185.240877][ T7483] btrfs: Deprecated parameter 'usebackuproot'
[  185.262901][ T7483] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  185.272552][    T8] kernel write not supported for file bpf-prog (pid: 8 comm: kworker/0:0)
[  185.291763][ T6273] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  185.314345][ T7483] BTRFS: device fsid d552757d-9c39-40e3-95f0-16d819589928 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7483)
[  185.342712][ T7483] BTRFS info (device loop4): first mount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  185.363620][ T7516] loop0: detected capacity change from 0 to 256
[  185.374740][ T7483] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  185.411395][ T7483] BTRFS info (device loop4): using free-space-tree
[  185.446766][ T7516] FAT-fs (loop0): Directory bread(block 64) failed
[  185.460886][ T7516] FAT-fs (loop0): Directory bread(block 65) failed
[  185.485347][ T7516] FAT-fs (loop0): Directory bread(block 66) failed
[  185.508169][ T7516] FAT-fs (loop0): Directory bread(block 67) failed
[  185.531374][ T7516] FAT-fs (loop0): Directory bread(block 68) failed
[  185.550370][ T7516] FAT-fs (loop0): Directory bread(block 69) failed
[  185.577222][ T7516] FAT-fs (loop0): Directory bread(block 70) failed
[  185.584480][ T7516] FAT-fs (loop0): Directory bread(block 71) failed
[  185.595485][ T7516] FAT-fs (loop0): Directory bread(block 72) failed
[  185.602225][ T7516] FAT-fs (loop0): Directory bread(block 73) failed
[  185.674287][ T7483] BTRFS info (device loop4): rebuilding free space tree
[  185.814633][   T35] kworker/u8:2: attempt to access beyond end of device
[  185.814633][   T35] loop0: rw=1, sector=1224, nr_sectors = 4 limit=256
[  185.864252][ T7544] loop3: detected capacity change from 0 to 512
[  185.905405][ T6157] BTRFS info (device loop4): last unmount of filesystem d552757d-9c39-40e3-95f0-16d819589928
[  185.922090][ T7544] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz-executor.3: invalid indirect mapped block 256 (level 2)
[  185.954508][ T7544] EXT4-fs (loop3): 2 truncates cleaned up
[  185.962790][ T7544] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  186.063197][ T7544] EXT4-fs error (device loop3): ext4_validate_block_bitmap:432: comm syz-executor.3: bg 0: block 5: invalid block bitmap
[  186.178121][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  187.253505][ T7554] netlink: 209852 bytes leftover after parsing attributes in process `syz-executor.0'.
[  187.268312][ T7554] openvswitch: netlink: IP tunnel attribute has 3060 unknown bytes.
[  187.462738][   T29] audit: type=1326 audit(1717484978.396:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7566 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad61a7cf69 code=0x7ffc0000
[  187.506914][ T7565] loop3: detected capacity change from 0 to 2048
[  187.536993][   T29] audit: type=1326 audit(1717484978.396:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7566 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad61a7cf69 code=0x7ffc0000
[  187.576091][ T7565] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  187.594163][   T29] audit: type=1326 audit(1717484978.426:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7566 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=241 compat=0 ip=0x7fad61a7cf69 code=0x7ffc0000
[  187.619510][   T29] audit: type=1326 audit(1717484978.426:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7566 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad61a7cf69 code=0x7ffc0000
[  187.720457][   T29] audit: type=1326 audit(1717484978.426:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7566 comm="syz-executor.1" exe="/root/syz-executor.1" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fad61a7cf69 code=0x7ffc0000
[  188.392339][ T7570] loop0: detected capacity change from 0 to 32768
[  188.403136][ T7570] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz-executor.0 (7570)
[  188.421507][ T7570] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  188.432000][ T7570] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm
[  188.441252][ T7570] BTRFS info (device loop0): using free-space-tree
[  188.523427][   T29] audit: type=1326 audit(1717484979.456:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7600 comm="syz-executor.1" exe="/root/syz-executor.1" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fad61a7cf69 code=0x0
[  188.552728][ T7570] BTRFS info (device loop0): device stats zeroed by syz-executor.0 (7570)
[  188.589680][ T6764] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  188.730186][ T7580] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  188.811972][ T7606] loop4: detected capacity change from 0 to 8
[  188.851729][ T7606] SQUASHFS error: Failed to read block 0x4e8: -5
[  188.874417][   T29] audit: type=1800 audit(1717484979.806:236): pid=7606 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz-executor.4" name="file1" dev="loop4" ino=5 res=0 errno=0
[  188.992521][ T7609] loop0: detected capacity change from 0 to 2048
[  189.041500][ T7609] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities
[  189.621495][   T11] bridge_slave_1: left allmulticast mode
[  189.631814][   T11] bridge_slave_1: left promiscuous mode
[  189.641408][   T11] bridge0: port 2(bridge_slave_1) entered disabled state
[  189.661904][   T11] bridge_slave_0: left allmulticast mode
[  189.673727][   T11] bridge_slave_0: left promiscuous mode
[  189.682200][   T11] bridge0: port 1(bridge_slave_0) entered disabled state
[  190.030510][ T7626] loop4: detected capacity change from 0 to 32768
[  190.046835][ T7626] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7626)
[  190.070812][ T7626] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  190.088901][ T7626] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  190.103081][ T7626] BTRFS info (device loop4): using free-space-tree
[  190.175964][ T7628] Bluetooth: hci0: Opcode 0x0c03 failed: -4
[  190.265343][ T7626] BTRFS info (device loop4): device stats zeroed by syz-executor.4 (7626)
[  190.391907][ T6157] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  190.406461][ T7660] loop3: detected capacity change from 0 to 2048
[  190.437599][ T7660] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities
[  190.524630][   T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  190.574425][   T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  190.647972][   T11] bond0 (unregistering): Released all slaves
[  190.764417][ T7664] kvm: emulating exchange as write
[  190.996955][   T29] audit: type=1326 audit(1717484981.926:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7670 comm="syz-executor.3" exe="/root/syz-executor.3" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f427307cf69 code=0x0
[  191.182254][ T7680] fuse: Unknown parameter '017777777777777777777770177777777777777777777718446744073709551615ÿÿÿÿ00000000000000000006'
[  191.231669][ T7680] x_tables: unsorted underflow at hook 3
[  191.296521][   T11] hsr_slave_0: left promiscuous mode
[  191.313601][   T11] hsr_slave_1: left promiscuous mode
[  191.325144][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  191.350569][   T11] batman_adv: batadv0: Removing interface: batadv_slave_0
[  191.367901][   T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  191.382396][   T11] batman_adv: batadv0: Removing interface: batadv_slave_1
[  191.457879][   T11] veth1_macvtap: left promiscuous mode
[  191.464145][   T11] veth0_macvtap: left promiscuous mode
[  191.470241][   T11] veth1_vlan: left promiscuous mode
[  191.476236][   T11] veth0_vlan: left promiscuous mode
[  191.523871][ T5155] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  191.735506][ T5155] usb 1-1: Using ep0 maxpacket: 16
[  191.757867][ T5155] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 11
[  191.777929][ T5155] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0
[  191.815742][ T5155] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0
[  191.854390][ T5155] usb 1-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0
[  191.878598][ T5155] usb 1-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0
[  191.937589][ T5155] usb 1-1: config 1 interface 0 has no altsetting 0
[  191.949928][ T5155] usb 1-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77
[  191.966106][ T5155] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  192.019920][ T5155] ums-sddr09 1-1:1.0: USB Mass Storage device detected
[  192.398415][ T5155] scsi host1: usb-storage 1-1:1.0
[  192.408800][ T7687] loop4: detected capacity change from 0 to 32768
[  192.418555][ T7687] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz-executor.4 (7687)
[  193.178408][   T53] Bluetooth: hci5: command tx timeout
[  193.207687][ T5163] usb 1-1: USB disconnect, device number 4
[  193.289162][ T7687] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  193.303106][ T7687] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm
[  193.312460][ T7687] BTRFS info (device loop4): using free-space-tree
[  193.540998][ T7687] BTRFS info (device loop4): device stats zeroed by syz-executor.4 (7687)
[  193.597639][ T6157] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  193.844808][ T7726] loop0: detected capacity change from 0 to 2
[  193.882278][ T7726] jffs2: Unknown parameter 'pcr'
[  193.933476][   T11] team0 (unregistering): Port device team_slave_1 removed
[  194.191185][   T11] team0 (unregistering): Port device team_slave_0 removed
[  194.240652][ T7734] loop4: detected capacity change from 0 to 2048
[  194.265252][ T7734] EXT4-fs (loop4): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  194.285067][ T7734] EXT4-fs (loop4): group descriptors corrupted!
[  194.652881][ T7749] loop0: detected capacity change from 0 to 2048
[  194.682911][ T7749] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=18576, location=18576
[  194.714201][ T1248] ieee802154 phy0 wpan0: encryption failed: -22
[  194.720565][ T1248] ieee802154 phy1 wpan1: encryption failed: -22
[  194.746674][ T7749] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  195.610319][ T7758] loop3: detected capacity change from 0 to 512
[  195.702552][ T7758] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  195.734099][ T7758] ext4 filesystem being mounted at /root/syzkaller-testdir2505612875/syzkaller.Jm0p5L/106/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  195.872014][   T11] IPVS: stop unused estimator thread 0...
[  195.997373][ T7775] netlink: 'syz-executor.0': attribute type 9 has an invalid length.
[  196.014458][ T7775] netlink: 61967 bytes leftover after parsing attributes in process `syz-executor.0'.
[  196.306536][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  196.764059][ T5118] Bluetooth: hci2: command 0x0406 tx timeout
[  200.162540][ T7803] loop3: detected capacity change from 0 to 64
[  200.218692][ T7806] netlink: 'syz-executor.0': attribute type 9 has an invalid length.
[  200.238528][ T7806] netlink: 61967 bytes leftover after parsing attributes in process `syz-executor.0'.
[  200.358915][ T7803] hfs: request for non-existent node 1286 in B*Tree
[  200.383849][ T7803] hfs: request for non-existent node 1286 in B*Tree
[  200.400513][ T7803] hfs: request for non-existent node 1286 in B*Tree
[  200.416787][ T7803] hfs: request for non-existent node 1286 in B*Tree
[  200.483169][ T7817] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.0'.
[  200.873828][ T5125] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  201.075763][ T5125] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  201.088846][ T5125] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  201.098756][ T5125] usb 4-1: New USB device found, idVendor=054c, idProduct=0268, bcdDevice= 0.00
[  201.108287][ T5125] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  201.124712][ T5125] usb 4-1: config 0 descriptor??
[  201.492715][ T7834] netlink: 4079 bytes leftover after parsing attributes in process `syz-executor.0'.
[  201.540771][ T5125] sony 0003:054C:0268.0005: unknown main item tag 0x0
[  201.563292][ T5125] sony 0003:054C:0268.0005: unknown main item tag 0x0
[  201.592596][ T5125] sony 0003:054C:0268.0005: hiddev0,hidraw0: USB HID v80.00 Device [HID 054c:0268] on usb-dummy_hcd.3-1/input0
[  201.608210][ T5125] sony 0003:054C:0268.0005: failed to claim input
[  201.751152][ T7846] netlink: 28 bytes leftover after parsing attributes in process `syz-executor.1'.
[  201.775685][ T1147] usb 4-1: USB disconnect, device number 4
[  201.867203][ T7852] loop0: detected capacity change from 0 to 512
[  201.877652][ T7852] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  201.894105][ T7852] EXT4-fs (loop0): 1 truncate cleaned up
[  201.900629][ T7852] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  201.937622][ T6764] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.070323][ T7861] netlink: 4079 bytes leftover after parsing attributes in process `syz-executor.0'.
[  202.389778][ T7871] loop3: detected capacity change from 0 to 128
[  202.398029][ T7871] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  202.411499][ T7871] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  202.565115][   T12] FAT-fs (loop3): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  202.639794][ T7877] netlink: 228 bytes leftover after parsing attributes in process `syz-executor.3'.
[  202.656324][ T7877] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  203.246284][ T7883] loop3: detected capacity change from 0 to 40427
[  203.258173][ T7883] F2FS-fs (loop3): invalid crc value
[  203.271387][ T7883] F2FS-fs (loop3): Found nat_bits in checkpoint
[  203.348860][ T7883] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4
[  203.858048][ T7903] loop0: detected capacity change from 0 to 40427
[  203.907114][ T7903] F2FS-fs (loop0): Found nat_bits in checkpoint
[  204.004685][ T7903] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  204.100138][ T6764] syz-executor.0: attempt to access beyond end of device
[  204.100138][ T6764] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  204.114747][ T6764] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  204.527768][ T7923] Process accounting resumed
[  204.868190][ T7932] netlink: 'syz-executor.0': attribute type 12 has an invalid length.
[  204.878957][ T7932] netlink: 'syz-executor.0': attribute type 29 has an invalid length.
[  204.893872][ T7932] netlink: 'syz-executor.0': attribute type 2 has an invalid length.
[  204.908197][ T7932] netlink: 128 bytes leftover after parsing attributes in process `syz-executor.0'.
[  205.054173][ T7934] loop0: detected capacity change from 0 to 16
[  205.063988][ T5125] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[  205.090583][ T7934] erofs: (device loop0): mounted with root inode @ nid 36.
[  205.116810][ T5118] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  205.126864][ T5118] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  205.141303][ T5118] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  205.175928][ T5118] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  205.183855][ T5118] Bluetooth: hci6: unexpected cc 0x0c25 length: 249 > 3
[  205.193370][ T5118] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  205.251653][ T5125] usb 2-1: unable to get BOS descriptor set
[  205.271533][ T5125] usb 2-1: not running at top speed; connect to a high speed hub
[  205.287421][ T5125] usb 2-1: config 0 has no interfaces?
[  205.307462][ T5125] usb 2-1: New USB device found, idVendor=0b05, idProduct=1866, bcdDevice= 0.40
[  205.340476][ T5125] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  205.374011][ T5125] usb 2-1: Product: syz
[  205.378326][ T5125] usb 2-1: Manufacturer: syz
[  205.382991][ T5125] usb 2-1: SerialNumber: syz
[  205.406642][ T5125] usb 2-1: config 0 descriptor??
[  205.649867][ T5163] usb 2-1: USB disconnect, device number 4
[  205.655918][ T1147] usb 4-1: new high-speed USB device number 5 using dummy_hcd
[  205.670242][ T7935] chnl_net:caif_netlink_parms(): no params data found
[  205.783100][ T7935] bridge0: port 1(bridge_slave_0) entered blocking state
[  205.790909][ T7935] bridge0: port 1(bridge_slave_0) entered disabled state
[  205.800539][ T7935] bridge_slave_0: entered allmulticast mode
[  205.809555][ T7935] bridge_slave_0: entered promiscuous mode
[  205.819914][ T7935] bridge0: port 2(bridge_slave_1) entered blocking state
[  205.827403][ T7935] bridge0: port 2(bridge_slave_1) entered disabled state
[  205.836356][ T7935] bridge_slave_1: entered allmulticast mode
[  205.844201][ T7935] bridge_slave_1: entered promiscuous mode
[  205.846095][ T7940] loop0: detected capacity change from 0 to 40427
[  205.865618][ T1147] usb 4-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  205.874955][ T1147] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  205.893389][ T1147] usb 4-1: config 0 descriptor??
[  205.907936][ T7940] F2FS-fs (loop0): Found nat_bits in checkpoint
[  205.941102][ T7935] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  205.962517][ T7935] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  206.014411][ T7940] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  206.034731][ T7935] team0: Port device team_slave_0 added
[  206.049302][ T7935] team0: Port device team_slave_1 added
[  206.104696][ T7935] batman_adv: batadv0: Adding interface: batadv_slave_0
[  206.113554][ T7935] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  206.154281][ T7935] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  206.172101][ T6764] syz-executor.0: attempt to access beyond end of device
[  206.172101][ T6764] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  206.174063][ T7935] batman_adv: batadv0: Adding interface: batadv_slave_1
[  206.193258][ T7935] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  206.219611][ T6764] F2FS-fs (loop0): Stopped filesystem due to reason: 3
[  206.245827][ T7935] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  206.362444][ T7935] hsr_slave_0: entered promiscuous mode
[  206.379749][ T7935] hsr_slave_1: entered promiscuous mode
[  206.387703][ T7935] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  206.396034][ T7935] Cannot create hsr debugfs directory
[  206.717793][ T7935] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.890483][ T7935] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  206.930137][ T1147] pegasus 4-1:0.0: probe with driver pegasus failed with error -71
[  206.976255][ T1147] usb 4-1: USB disconnect, device number 5
[  207.063588][ T7935] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.199477][ T7935] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  207.226699][ T7968] netlink: 'syz-executor.0': attribute type 12 has an invalid length.
[  207.244191][   T53] Bluetooth: hci6: command tx timeout
[  207.253916][ T7968] netlink: 'syz-executor.0': attribute type 29 has an invalid length.
[  207.262123][ T7968] netlink: 'syz-executor.0': attribute type 2 has an invalid length.
[  207.303731][ T7968] netlink: 128 bytes leftover after parsing attributes in process `syz-executor.0'.
[  207.375962][ T7970] netlink: 144 bytes leftover after parsing attributes in process `syz-executor.0'.
[  207.499154][ T7935] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  207.538798][ T7935] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  207.556565][ T7935] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  207.577927][ T7935] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  207.656038][   T29] audit: type=1800 audit(1717484998.596:238): pid=7978 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz-executor.3" name="file0" dev="sda1" ino=1943 res=0 errno=0
[  207.727213][ T7978] Bluetooth: MGMT ver 1.23
[  207.743917][ T7978] Bluetooth: hci3: invalid length 0, exp 2 for type 25
[  207.864938][ T7982] loop0: detected capacity change from 0 to 256
[  207.925125][ T7982] exFAT-fs (loop0): failed to load upcase table (idx : 0x0000fd4f, chksum : 0xff6f124c, utbl_chksum : 0xe619d30d)
[  207.929319][ T7935] 8021q: adding VLAN 0 to HW filter on device bond0
[  208.004227][ T7983] netlink: 24 bytes leftover after parsing attributes in process `syz-executor.3'.
[  208.219098][ T5118] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  208.233890][ T5118] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  208.248032][ T5118] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  208.257053][ T7990] loop3: detected capacity change from 0 to 512
[  208.264543][ T5118] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  208.272376][ T5118] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  208.290995][ T7935] 8021q: adding VLAN 0 to HW filter on device team0
[  208.301161][ T5118] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  208.321760][ T1147] bridge0: port 1(bridge_slave_0) entered blocking state
[  208.328967][ T1147] bridge0: port 1(bridge_slave_0) entered forwarding state
[  208.340441][ T7990] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  208.353163][ T7990] ext4 filesystem being mounted at /root/syzkaller-testdir2505612875/syzkaller.Jm0p5L/119/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  208.355338][ T5155] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.375168][ T5155] bridge0: port 2(bridge_slave_1) entered forwarding state
[  208.522841][   T35] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.547822][ T6273] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  208.645137][   T35] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  208.918917][   T35] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.424882][ T5118] Bluetooth: hci6: command tx timeout
[  209.446345][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  209.592765][ T7935] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  209.655707][ T7935] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  209.933427][   T35] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.983850][ T5198] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  210.109546][ T7935] 8021q: adding VLAN 0 to HW filter on device batadv0
[  210.132194][ T7987] chnl_net:caif_netlink_parms(): no params data found
[  210.184745][ T5198] usb 1-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  210.194412][ T5198] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  210.219730][ T5198] usb 1-1: config 0 descriptor??
[  210.363952][ T5118] Bluetooth: hci5: command tx timeout
[  210.420058][   T35] bridge_slave_1: left allmulticast mode
[  210.437559][   T35] bridge_slave_1: left promiscuous mode
[  210.443444][   T35] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.466883][   T35] bridge_slave_0: left allmulticast mode
[  210.490696][   T35] bridge_slave_0: left promiscuous mode
[  210.497734][   T35] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.180274][   T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  211.193554][   T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  211.211063][   T35] bond0 (unregistering): Released all slaves
[  211.232586][ T7935] veth0_vlan: entered promiscuous mode
[  211.243153][ T7987] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.243509][ T5198] pegasus 1-1:0.0: probe with driver pegasus failed with error -71
[  211.251283][ T7987] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.270963][ T5198] usb 1-1: USB disconnect, device number 5
[  211.274848][ T7987] bridge_slave_0: entered allmulticast mode
[  211.299406][ T7987] bridge_slave_0: entered promiscuous mode
[  211.320263][ T7987] bridge0: port 2(bridge_slave_1) entered blocking state
[  211.334193][ T7987] bridge0: port 2(bridge_slave_1) entered disabled state
[  211.342726][ T7987] bridge_slave_1: entered allmulticast mode
[  211.359514][ T7987] bridge_slave_1: entered promiscuous mode
[  211.486898][ T7935] veth1_vlan: entered promiscuous mode
[  211.533826][ T5118] Bluetooth: hci6: command tx timeout
[  211.552669][ T7987] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  211.592058][ T7987] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  211.737627][ T7987] team0: Port device team_slave_0 added
[  211.751584][ T7935] veth0_macvtap: entered promiscuous mode
[  211.782697][ T7987] team0: Port device team_slave_1 added
[  211.845036][ T7935] veth1_macvtap: entered promiscuous mode
[  211.895668][ T7987] batman_adv: batadv0: Adding interface: batadv_slave_0
[  211.922116][ T7987] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.012381][ T7987] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  212.037673][ T8036] netlink: 76 bytes leftover after parsing attributes in process `syz-executor.0'.
[  212.066176][   T35] hsr_slave_0: left promiscuous mode
[  212.088086][   T35] hsr_slave_1: left promiscuous mode
[  212.110856][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  212.133302][   T35] batman_adv: batadv0: Removing interface: batadv_slave_0
[  212.171881][   T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  212.183446][   T35] batman_adv: batadv0: Removing interface: batadv_slave_1
[  212.225013][   T35] veth1_macvtap: left promiscuous mode
[  212.230688][   T35] veth0_macvtap: left promiscuous mode
[  212.236691][   T35] veth1_vlan: left promiscuous mode
[  212.242157][   T35] veth0_vlan: left promiscuous mode
[  212.425653][ T8045] loop3: detected capacity change from 0 to 1764
[  212.443814][ T5118] Bluetooth: hci5: command tx timeout
[  212.586012][ T8051] SET target dimension over the limit!
[  213.319562][   T35] team0 (unregistering): Port device team_slave_1 removed
[  213.429171][   T35] team0 (unregistering): Port device team_slave_0 removed
[  213.477471][ T8065] loop0: detected capacity change from 0 to 512
[  213.509786][ T8065] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz-executor.0: bg 0: block 393: padding at end of block bitmap is not set
[  213.536009][ T8065] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6551: Corrupt filesystem
[  213.547624][ T8065] EXT4-fs (loop0): 2 truncates cleaned up
[  213.555543][ T8065] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.568304][ T5118] Bluetooth: hci6: command tx timeout
[  213.677478][ T6764] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.892648][ T8071] loop0: detected capacity change from 0 to 1764
[  214.129710][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.143251][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.153295][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.164807][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.174682][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.185170][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.195092][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.208228][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.218210][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.228835][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.241663][ T7935] batman_adv: batadv0: Interface activated: batadv_slave_0
[  214.251762][ T7987] batman_adv: batadv0: Adding interface: batadv_slave_1
[  214.259785][ T7987] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  214.286392][ T7987] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  214.311776][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.324356][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.342809][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.357094][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.368405][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.386802][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.402111][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.413025][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.436297][ T7935] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.469272][ T7935] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.491575][ T7935] batman_adv: batadv0: Interface activated: batadv_slave_1
[  214.524800][ T5118] Bluetooth: hci5: command tx timeout
[  214.558605][ T7935] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  214.582196][ T7935] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  214.614143][ T7935] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  214.622894][ T7935] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  214.728237][ T7987] hsr_slave_0: entered promiscuous mode
[  214.756477][ T7987] hsr_slave_1: entered promiscuous mode
[  214.762868][ T7987] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  214.785541][ T7987] Cannot create hsr debugfs directory
[  214.895990][ T8092] loop0: detected capacity change from 0 to 512
[  214.951583][ T8092] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  215.033805][ T8092] EXT4-fs (loop0): 1 orphan inode deleted
[  215.039652][ T8092] EXT4-fs (loop0): 1 truncate cleaned up
[  215.075131][ T8092] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  215.170991][  T965] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  215.177767][ T6764] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  215.184393][  T965] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  215.350658][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  215.360556][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  215.623052][ T8114] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  215.955810][ T7987] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  215.978386][ T8132] netdevsim netdevsim3 ÿÿÿÿ: renamed from netdevsim0 (while UP)
[  215.992889][ T8132] A link change request failed with some changes committed already. Interface ÿÿÿÿ may have been left with an inconsistent configuration, please check.
[  216.021654][ T7987] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  216.047751][ T7987] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  216.086847][ T7987] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  216.180630][ T8141] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  216.190574][ T8141] batman_adv: batadv0: Removing interface: batadv_slave_0
[  216.207864][ T8141] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  216.223265][ T8141] batman_adv: batadv0: Removing interface: batadv_slave_1
[  216.507460][ T7987] 8021q: adding VLAN 0 to HW filter on device bond0
[  216.550214][ T7987] 8021q: adding VLAN 0 to HW filter on device team0
[  216.578553][ T5163] bridge0: port 1(bridge_slave_0) entered blocking state
[  216.585834][ T5163] bridge0: port 1(bridge_slave_0) entered forwarding state
[  216.605112][ T5118] Bluetooth: hci5: command tx timeout
[  216.646448][ T1147] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.653605][ T1147] bridge0: port 2(bridge_slave_1) entered forwarding state
[  216.732917][ T7987] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  216.749515][ T7987] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  216.871482][ T8164] loop0: detected capacity change from 0 to 1024
[  216.893654][ T8164] EXT4-fs: Ignoring removed nomblk_io_submit option
[  216.894272][ T5125] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[  216.911186][ T8164] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  216.950826][ T8164] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  216.966390][ T8164] System zones: 0-1, 3-36
[  216.981635][ T8164] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  217.046585][ T8157] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2234: inode #15: comm syz-executor.0: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  217.069504][ T7987] 8021q: adding VLAN 0 to HW filter on device batadv0
[  217.092560][ T8164] xt_CT: You must specify a L4 protocol and not use inversions on it
[  217.115541][ T5125] usb 3-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  217.134746][ T5125] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  217.156284][ T5125] usb 3-1: config 0 descriptor??
[  217.163205][ T6764] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  217.178932][ T7987] veth0_vlan: entered promiscuous mode
[  217.195847][ T7987] veth1_vlan: entered promiscuous mode
[  217.249115][ T7987] veth0_macvtap: entered promiscuous mode
[  217.261160][ T7987] veth1_macvtap: entered promiscuous mode
[  217.287365][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.299161][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.309905][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.320547][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.346794][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.373962][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.388583][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.401121][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.414984][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  217.438905][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.457240][ T7987] batman_adv: batadv0: Interface activated: batadv_slave_0
[  217.479805][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.492556][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.502804][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.513650][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.523993][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.534699][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.547687][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.558780][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.570272][ T7987] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  217.581089][ T7987] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  217.597564][ T7987] batman_adv: batadv0: Interface activated: batadv_slave_1
[  217.609849][ T7987] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  217.623193][ T7987] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  217.632411][ T7987] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  217.646256][ T7987] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  217.831311][ T2781] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  217.848287][ T2781] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  217.901734][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  217.930007][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  217.982576][ T8181] loop0: detected capacity change from 0 to 512
[  218.035169][ T8181] EXT4-fs: Ignoring removed mblk_io_submit option
[  218.058258][ T8181] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  218.102929][ T8181] EXT4-fs (loop0): 1 truncate cleaned up
[  218.120799][ T8181] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  218.209140][ T5125] pegasus 3-1:0.0: probe with driver pegasus failed with error -71
[  218.225945][ T5125] usb 3-1: USB disconnect, device number 5
[  218.263440][ T6764] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  218.647338][ T8178] loop3: detected capacity change from 0 to 32768
[  218.709906][ T8178] ERROR: (device loop3): dbAlloc: the hint is outside the map
[  218.709906][ T8178] 
[  218.852062][ T2781] read_mapping_page failed!
[  218.870181][ T2781] ERROR: (device loop3): txCommit: 
[  218.870181][ T2781] 
[  218.890815][ T2781] jfs_write_inode: jfs_commit_inode failed!
[  219.440133][ T8213] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  219.867715][ T8226] netlink: 8 bytes leftover after parsing attributes in process `syz-executor.1'.
[  220.019957][ T8235] netlink: 4 bytes leftover after parsing attributes in process `syz-executor.0'.
[  220.093079][ T8237] netlink: 12 bytes leftover after parsing attributes in process `syz-executor.1'.
[  221.004735][ T8276] mac80211_hwsim hwsim28 wlan0: entered promiscuous mode
[  221.058783][ T8276] mac80211_hwsim hwsim28 wlan0: left promiscuous mode
[  221.293341][ T8290] Bluetooth: MGMT ver 1.23
[  221.827148][ T8307] loop0: detected capacity change from 0 to 512
[  221.856077][ T8307] EXT4-fs: Ignoring removed mblk_io_submit option
[  221.873403][ T8307] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  221.937539][ T8307] EXT4-fs (loop0): 1 truncate cleaned up
[  221.980131][ T8307] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  327.163701][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  327.163724][    C1] rcu: 	0-...!: (1 ticks this GP) idle=bde4/1/0x4000000000000000 softirq=25481/25484 fqs=3
[  327.182541][    C1] rcu: 	(detected by 1, t=10502 jiffies, g=33917, q=386 ncpus=2)
[  327.182579][    C1] Sending NMI from CPU 1 to CPUs 0:
[  327.182616][    C0] NMI backtrace for cpu 0
[  327.182649][    C0] CPU: 0 PID: 8318 Comm: syz-executor.3 Tainted: G        W          6.10.0-rc2-next-20240604-syzkaller #0
[  327.182671][    C0] Tainted: [W]=WARN
[  327.182676][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  327.182690][    C0] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x70
[  327.182723][    C0] Code: 8b 3d 0c f8 45 0c 48 89 de 5b e9 03 76 5a 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 <65> 48 8b 0c 25 00 d5 03 00 65 8b 15 f0 49 6d 7e f7 c2 00 01 ff 00
[  327.182737][    C0] RSP: 0018:ffffc90000007b98 EFLAGS: 00000046
[  327.182755][    C0] RAX: ffffffff895da124 RBX: 0000000000000001 RCX: ffffffff895da0f1
[  327.182766][    C0] RDX: ffff88805da0bc00 RSI: 0000000000000001 RDI: 0000000000000000
[  327.182777][    C0] RBP: ffffc90000007c80 R08: ffffffff895da11a R09: 1ffff1100ba5522b
[  327.182789][    C0] R10: dffffc0000000000 R11: ffffed100ba5522c R12: ffff88805d2a9000
[  327.182801][    C0] R13: dffffc0000000000 R14: 1ffff92000000f78 R15: ffff88805d2a9300
[  327.182814][    C0] FS:  0000555562497480(0000) GS:ffff8880b9400000(0000) knlGS:0000000000000000
[  327.182828][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  327.182839][    C0] CR2: 0000001b33521000 CR3: 00000000542da000 CR4: 00000000003506f0
[  327.182854][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  327.182863][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  327.182874][    C0] Call Trace:
[  327.182881][    C0]  <NMI>
[  327.182889][    C0]  ? nmi_cpu_backtrace+0x3c2/0x4d0
[  327.182914][    C0]  ? __pfx_lock_acquire+0x10/0x10
[  327.182934][    C0]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  327.182948][    C0]  ? nmi_handle+0x2a/0x5a0
[  327.182977][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  327.182996][    C0]  ? nmi_handle+0x14f/0x5a0
[  327.183010][    C0]  ? nmi_handle+0x2a/0x5a0
[  327.183025][    C0]  ? __sanitizer_cov_trace_pc+0x8/0x70
[  327.183044][    C0]  ? default_do_nmi+0x63/0x160
[  327.183060][    C0]  ? exc_nmi+0x123/0x1f0
[  327.183075][    C0]  ? end_repeat_nmi+0xf/0x53
[  327.183101][    C0]  ? __netif_schedule+0xba/0x310
[  327.183123][    C0]  ? __netif_schedule+0xc4/0x310
[  327.183144][    C0]  ? __netif_schedule+0x91/0x310
[  327.183167][    C0]  ? __sanitizer_cov_trace_pc+0x8/0x70
[  327.183186][    C0]  ? __sanitizer_cov_trace_pc+0x8/0x70
[  327.183206][    C0]  ? __sanitizer_cov_trace_pc+0x8/0x70
[  327.183226][    C0]  </NMI>
[  327.183231][    C0]  <IRQ>
[  327.183236][    C0]  __netif_schedule+0xc4/0x310
[  327.183259][    C0]  ? __pfx_lock_release+0x10/0x10
[  327.183277][    C0]  ? __pfx___netif_schedule+0x10/0x10
[  327.183302][    C0]  ? do_raw_spin_unlock+0x13c/0x8b0
[  327.183316][    C0]  ? taprio_set_budgets+0x333/0x370
[  327.183336][    C0]  ? advance_sched+0xa02/0xca0
[  327.183354][    C0]  ? advance_sched+0xa02/0xca0
[  327.183373][    C0]  advance_sched+0xaa9/0xca0
[  327.183392][    C0]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  327.183416][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  327.183444][    C0]  ? __pfx_advance_sched+0x10/0x10
[  327.183463][    C0]  __hrtimer_run_queues+0x59b/0xd50
[  327.183479][    C0]  ? ktime_get_update_offsets_now+0x3c/0x250
[  327.183509][    C0]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  327.183525][    C0]  ? ktime_get_update_offsets_now+0x22d/0x250
[  327.183549][    C0]  hrtimer_interrupt+0x396/0x990
[  327.183576][    C0]  __sysvec_apic_timer_interrupt+0x110/0x3f0
[  327.183601][    C0]  sysvec_apic_timer_interrupt+0xa1/0xc0
[  327.183621][    C0]  </IRQ>
[  327.183626][    C0]  <TASK>
[  327.183632][    C0]  asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  327.183655][    C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd8/0x140
[  327.183679][    C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 ce a1 64 f6 f6 44 24 21 02 75 52 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 <e8> 33 e5 cd f5 65 8b 05 d4 fc 6b 74 85 c0 74 43 48 c7 04 24 0e 36
[  327.183692][    C0] RSP: 0018:ffffc900099c7d20 EFLAGS: 00000206
[  327.183706][    C0] RAX: 396353d5b7bf6200 RBX: 1ffff92001338fa8 RCX: ffffffff947ba803
[  327.183718][    C0] RDX: dffffc0000000000 RSI: ffffffff8bcabee0 RDI: 0000000000000001
[  327.183729][    C0] RBP: ffffc900099c7da8 R08: ffffffff8fadd32f R09: 1ffffffff1f5ba65
[  327.183741][    C0] R10: dffffc0000000000 R11: fffffbfff1f5ba66 R12: dffffc0000000000
[  327.183753][    C0] R13: 1ffff92001338fa4 R14: ffffc900099c7d40 R15: 0000000000000246
[  327.183774][    C0]  ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[  327.183801][    C0]  ? timerqueue_del+0xac/0x100
[  327.183824][    C0]  alarm_try_to_cancel+0x131/0x3c0
[  327.183844][    C0]  alarm_cancel+0x16/0x60
[  327.183859][    C0]  timerfd_release+0x1b4/0x250
[  327.183882][    C0]  ? __pfx_timerfd_release+0x10/0x10
[  327.183905][    C0]  __fput+0x406/0x8b0
[  327.183931][    C0]  __x64_sys_close+0x7f/0x110
[  327.183951][    C0]  do_syscall_64+0xf3/0x230
[  327.183977][    C0]  ? clear_bhb_loop+0x35/0x90
[  327.183992][    C0]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.184014][    C0] RIP: 0033:0x7f427307be5a
[  327.184031][    C0] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[  327.184044][    C0] RSP: 002b:00007ffc8e0191e0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  327.184059][    C0] RAX: ffffffffffffffda RBX: 0000000000000004 RCX: 00007f427307be5a
[  327.184070][    C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000003
[  327.184079][    C0] RBP: ffffffffffffffff R08: 00007f4273000000 R09: 0000000000000001
[  327.184090][    C0] R10: 0000000000000001 R11: 0000000000000293 R12: 00007f42731b3fa0
[  327.184101][    C0] R13: 00007f42731b3fac R14: 0000000000000032 R15: 00007f42731b59a0
[  327.184120][    C0]  </TASK>
[  327.184609][    C1] rcu: rcu_preempt kthread starved for 10496 jiffies! g33917 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1
[  327.184631][    C1] rcu: 	Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior.
[  327.184640][    C1] rcu: RCU grace-period kthread stack dump:
[  327.184647][    C1] task:rcu_preempt     state:R  running task     stack:26448 pid:17    tgid:17    ppid:2      flags:0x00004000
[  327.184686][    C1] Call Trace:
[  327.184692][    C1]  <TASK>
[  327.184703][    C1]  __schedule+0x17e8/0x4a20
[  327.184744][    C1]  ? __pfx___schedule+0x10/0x10
[  327.184766][    C1]  ? __pfx_lock_release+0x10/0x10
[  327.184785][    C1]  ? __asan_memset+0x23/0x50
[  327.184815][    C1]  ? __pfx_lockdep_init_map_type+0x10/0x10
[  327.184837][    C1]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[  327.184861][    C1]  ? schedule+0x90/0x320
[  327.184878][    C1]  schedule+0x14b/0x320
[  327.184899][    C1]  schedule_timeout+0x1be/0x310
[  327.184924][    C1]  ? __pfx_schedule_timeout+0x10/0x10
[  327.184951][    C1]  ? __pfx_process_timeout+0x10/0x10
[  327.185065][    C1]  ? prepare_to_swait_event+0x32e/0x350
[  327.185093][    C1]  rcu_gp_fqs_loop+0x2df/0x1330
[  327.185116][    C1]  ? lockdep_hardirqs_on+0x99/0x150
[  327.185152][    C1]  ? __pfx_rcu_implicit_dynticks_qs+0x10/0x10
[  327.185177][    C1]  ? __pfx_rcu_gp_fqs_loop+0x10/0x10
[  327.185205][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  327.185240][    C1]  ? finish_swait+0xd4/0x1e0
[  327.185263][    C1]  rcu_gp_kthread+0xa7/0x3b0
[  327.185288][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  327.185308][    C1]  ? _raw_spin_unlock_irqrestore+0xdd/0x140
[  327.185340][    C1]  ? __kthread_parkme+0x169/0x1d0
[  327.185366][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  327.185387][    C1]  kthread+0x2f0/0x390
[  327.185410][    C1]  ? __pfx_rcu_gp_kthread+0x10/0x10
[  327.185431][    C1]  ? __pfx_kthread+0x10/0x10
[  327.185454][    C1]  ret_from_fork+0x4b/0x80
[  327.185479][    C1]  ? __pfx_kthread+0x10/0x10
[  327.185502][    C1]  ret_from_fork_asm+0x1a/0x30
[  327.185544][    C1]  </TASK>
[  327.185560][    C1] rcu: Stack dump where RCU GP kthread last ran:
[  327.185571][    C1] CPU: 1 PID: 8291 Comm: syz-executor.1 Tainted: G        W          6.10.0-rc2-next-20240604-syzkaller #0
[  327.185596][    C1] Tainted: [W]=WARN
[  327.185602][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/02/2024
[  327.185613][    C1] RIP: 0010:smp_call_function_many_cond+0x1865/0x29d0
[  327.185645][    C1] Code: 89 e6 83 e6 01 31 ff e8 f9 0c 0c 00 41 83 e4 01 49 bc 00 00 00 00 00 fc ff df 75 07 e8 a4 08 0c 00 eb 38 f3 90 42 0f b6 04 23 <84> c0 75 11 41 f7 45 00 01 00 00 00 74 1e e8 88 08 0c 00 eb e4 44
[  327.185660][    C1] RSP: 0018:ffffc9000edd7720 EFLAGS: 00000293
[  327.185676][    C1] RAX: 0000000000000000 RBX: 1ffff11017288c11 RCX: ffff888027dcda00
[  327.185690][    C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000
[  327.185701][    C1] RBP: ffffc9000edd7900 R08: ffffffff818a8247 R09: 1ffffffff25f84d8
[  327.185715][    C1] R10: dffffc0000000000 R11: fffffbfff25f84d9 R12: dffffc0000000000
[  327.185730][    C1] R13: ffff8880b9446088 R14: ffff8880b953f900 R15: 0000000000000000
[  327.185743][    C1] FS:  0000555587095480(0000) GS:ffff8880b9500000(0000) knlGS:0000000000000000
[  327.185759][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  327.185772][    C1] CR2: 000000002090d000 CR3: 000000002d91c000 CR4: 00000000003506f0
[  327.185788][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  327.185799][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  327.185811][    C1] Call Trace:
[  327.185817][    C1]  <IRQ>
[  327.185824][    C1]  ? rcu_check_gp_kthread_starvation+0x278/0x310
[  327.185854][    C1]  ? print_other_cpu_stall+0x147a/0x15b0
[  327.185891][    C1]  ? __pfx_print_other_cpu_stall+0x10/0x10
[  327.185913][    C1]  ? seqcount_lockdep_reader_access+0x1c6/0x220
[  327.185943][    C1]  ? kvm_check_and_clear_guest_paused+0x6a/0xd0
[  327.185965][    C1]  ? rcu_sched_clock_irq+0xa2c/0x10d0
[  327.185998][    C1]  ? __pfx_rcu_sched_clock_irq+0x10/0x10
[  327.186025][    C1]  ? hrtimer_run_queues+0x16c/0x460
[  327.186044][    C1]  ? acct_account_cputime+0xd3/0x210
[  327.186072][    C1]  ? update_process_times+0x1ce/0x230
[  327.186098][    C1]  ? tick_nohz_handler+0x37c/0x500
[  327.186122][    C1]  ? __pfx_tick_nohz_handler+0x10/0x10
[  327.186144][    C1]  ? __hrtimer_run_queues+0x551/0xd50
[  327.186162][    C1]  ? ktime_get_update_offsets_now+0x3c/0x250
[  327.186214][    C1]  ? __pfx___hrtimer_run_queues+0x10/0x10
[  327.186234][    C1]  ? ktime_get_update_offsets_now+0x22d/0x250
[  327.186263][    C1]  ? hrtimer_interrupt+0x396/0x990
[  327.186304][    C1]  ? __sysvec_apic_timer_interrupt+0x110/0x3f0
[  327.186334][    C1]  ? sysvec_apic_timer_interrupt+0xa1/0xc0
[  327.186355][    C1]  </IRQ>
[  327.186361][    C1]  <TASK>
[  327.186369][    C1]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  327.186402][    C1]  ? smp_call_function_many_cond+0x1847/0x29d0
[  327.186434][    C1]  ? smp_call_function_many_cond+0x1865/0x29d0
[  327.186466][    C1]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  327.186498][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  327.186519][    C1]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  327.186558][    C1]  ? __get_immv32+0x19c/0x350
[  327.186581][    C1]  ? __pfx_smp_call_function_many_cond+0x10/0x10
[  327.186610][    C1]  ? __pfx___might_resched+0x10/0x10
[  327.186637][    C1]  ? __pfx_do_sync_core+0x10/0x10
[  327.186660][    C1]  on_each_cpu_cond_mask+0x3f/0x80
[  327.186690][    C1]  text_poke_bp_batch+0x352/0xb30
[  327.186725][    C1]  ? __pfx_text_poke_bp_batch+0x10/0x10
[  327.186753][    C1]  ? __pfx___mutex_trylock_common+0x10/0x10
[  327.186783][    C1]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  327.186813][    C1]  text_poke_bp+0xb0/0x100
[  327.186834][    C1]  ? __pfx_text_poke_bp+0x10/0x10
[  327.186850][    C1]  ? trace_contention_end+0x3c/0x120
[  327.186875][    C1]  ? __mutex_lock+0x2ef/0xd70
[  327.186896][    C1]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  327.186927][    C1]  __static_call_transform+0x51a/0x810
[  327.186944][    C1]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  327.186969][    C1]  ? __pfx_probe_sched_switch+0x10/0x10
[  327.186991][    C1]  ? __pfx___static_call_transform+0x10/0x10
[  327.187014][    C1]  ? __pfx_rcu_read_lock_any_held+0x10/0x10
[  327.187043][    C1]  ? __pfx_probe_sched_switch+0x10/0x10
[  327.187062][    C1]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  327.187088][    C1]  arch_static_call_transform+0x141/0x380
[  327.187113][    C1]  ? __pfx_probe_sched_switch+0x10/0x10
[  327.187134][    C1]  ? __SCT__tp_func_sched_wakeup_new+0x8/0x8
[  327.187162][    C1]  __static_call_update+0xd8/0x5e0
[  327.187191][    C1]  ? __pfx_probe_sched_switch+0x10/0x10
[  327.187218][    C1]  ? __pfx___static_call_update+0x10/0x10
[  327.187238][    C1]  ? tracepoint_probe_unregister+0x25f/0x990
[  327.187261][    C1]  ? rcu_is_watching+0x15/0xb0
[  327.187284][    C1]  ? tracepoint_probe_unregister+0x25f/0x990
[  327.187308][    C1]  ? tracepoint_probe_unregister+0x33f/0x990
[  327.187333][    C1]  ? __pfx_probe_sched_switch+0x10/0x10
[  327.187355][    C1]  tracepoint_probe_unregister+0x8eb/0x990
[  327.187381][    C1]  ? __pfx___bpf_trace_sched_switch+0x10/0x10
[  327.187413][    C1]  bpf_raw_tp_link_release+0x45/0x70
[  327.187440][    C1]  bpf_link_free+0x10e/0x2d0
[  327.187465][    C1]  bpf_link_release+0x7b/0x90
[  327.187484][    C1]  ? __pfx_bpf_link_release+0x10/0x10
[  327.187505][    C1]  __fput+0x406/0x8b0
[  327.187540][    C1]  __x64_sys_close+0x7f/0x110
[  327.187565][    C1]  do_syscall_64+0xf3/0x230
[  327.187589][    C1]  ? clear_bhb_loop+0x35/0x90
[  327.187609][    C1]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  327.187634][    C1] RIP: 0033:0x7f6fd4a7be5a
[  327.187650][    C1] Code: 48 3d 00 f0 ff ff 77 48 c3 0f 1f 80 00 00 00 00 48 83 ec 18 89 7c 24 0c e8 03 7f 02 00 8b 7c 24 0c 89 c2 b8 03 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 36 89 d7 89 44 24 0c e8 63 7f 02 00 8b 44 24
[  327.187666][    C1] RSP: 002b:00007ffe9079bb70 EFLAGS: 00000293 ORIG_RAX: 0000000000000003
[  327.187684][    C1] RAX: ffffffffffffffda RBX: 0000000000000007 RCX: 00007f6fd4a7be5a
[  327.187697][    C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000006
[  327.187707][    C1] RBP: 00007f6fd4bb59a0 R08: 0000001b2ed20000 R09: 7fffffffffffffff
[  327.187721][    C1] R10: 000000000000006a R11: 0000000000000293 R12: 000000000003630b
[  327.187733][    C1] R13: 00007f6fd4bb414c R14: 0000000000000032 R15: 00007f6fd4bb59a0
[  327.187762][    C1]  </TASK>