last executing test programs:

21.233717367s ago: executing program 4 (id=320):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000040)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000001c0)=0x5)
getpid()
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r1, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r0, &(0x7f00000000c0), 0x3fffffffffffcb5, 0x2, 0x0)
syz_clone(0x0, 0x0, 0x9, 0x0, 0x0, 0x0)

8.672140251s ago: executing program 2 (id=365):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
ioctl$sock_SIOCGPGRP(0xffffffffffffffff, 0x8904, &(0x7f0000000040)=<r0=>0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000100)=0x5)
futex(0xfffffffffffffffc, 0x8, 0x0, 0x0, 0x0, 0xffffffff)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xf0667000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0x6, &(0x7f0000000cc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000080)='GPL\x00', 0x5, 0x29e, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x6}, 0x70)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
syz_open_procfs(0x0, &(0x7f0000000540)='net/netlink\x00')
openat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x20040, 0x1ff)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file0\x00', 0x27)
syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file2\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000000), 0x0, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './file0'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file2'}}], [], 0x2c})
chdir(&(0x7f00000001c0)='./file0\x00')
openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file1\x00', 0x42, 0x80)
read$FUSE(0xffffffffffffffff, 0x0, 0x0)

7.475802694s ago: executing program 2 (id=369):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0}, 0x28)

7.357229837s ago: executing program 2 (id=372):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000009"], 0x50)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r1=>0xffffffffffffffff})
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000180)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r2}, &(0x7f0000000580), &(0x7f00000005c0)=r3}, 0x20)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
sendmsg$unix(r4, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r5], 0x18}, 0x8810)
sendmsg$unix(r1, &(0x7f0000000440)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000400)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32=r5], 0x18}, 0x0)
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000380)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
close(r5)
close(r6)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r7}, 0x10)
pipe(&(0x7f0000000300)={0xffffffffffffffff, <r8=>0xffffffffffffffff})
r9 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r9, &(0x7f0000000000)={0xa, 0x8000002, 0x2000}, 0x1c)
sendto$inet6(r9, 0x0, 0x0, 0x22004001, &(0x7f0000b63fe4)={0xa, 0x2, 0x0, @loopback}, 0x1c)
splice(r9, 0x0, r8, 0x0, 0x406f413, 0x0)

7.213636969s ago: executing program 3 (id=374):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000e7057b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000001600000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x27, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="18020000000000000000"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r2, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)

6.937681595s ago: executing program 4 (id=375):
socket$netlink(0x10, 0x3, 0x0)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0xc)
mremap(&(0x7f0000000000/0x9000)=nil, 0x200003, 0x600000, 0x3, &(0x7f0000a00000/0x600000)=nil)

6.791787708s ago: executing program 4 (id=376):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8e}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000240)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r2, 0x0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
tkill(r3, 0x13)
ptrace(0x10, r3)

6.052534462s ago: executing program 0 (id=379):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed074479000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000010000007020000f8ffffffb713000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0xc, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x23, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
lgetxattr(&(0x7f00000002c0)='./file1\x00', &(0x7f0000000300)=@known='com.apple.system.Security\x00', &(0x7f0000000340)=""/115, 0x73)

5.976540494s ago: executing program 0 (id=380):
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000dc0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000003180), 0x200, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_create_resource$binfmt(&(0x7f0000000300)='./file0\x00')
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp6\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='sched_switch\x00', r5}, 0xe)
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa9}, 0x8800)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
ioctl$PTP_PIN_SETFUNC(r0, 0x40043d0d, 0x0)
socket(0x10, 0x803, 0x0)

4.990569873s ago: executing program 1 (id=381):
pipe2$9p(&(0x7f0000000080)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x800)
write$P9_RVERSION(r1, &(0x7f0000000180)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15)
r2 = dup(r1)
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x0)
write$FUSE_BMAP(r2, &(0x7f0000000100)={0x18}, 0x18)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x18)
write$FUSE_NOTIFY_RETRIEVE(r2, &(0x7f00000000c0)={0x14c}, 0x137)
mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000780)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}})
openat(0xffffffffffffff9c, &(0x7f0000000200)='./file0/file1\x00', 0xe42, 0x1ff)

4.990342493s ago: executing program 4 (id=382):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={0x0, 0x0}, 0x28)

4.936071114s ago: executing program 0 (id=383):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
geteuid()
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='virtio_transport_alloc_pkt\x00', r1}, 0x10)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040), 0x10)
listen(r3, 0x4)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)

4.881666385s ago: executing program 4 (id=384):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x20408e, &(0x7f0000000900)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@nobh}, {@errors_remount}, {@max_batch_time={'max_batch_time', 0x3d, 0x7}}], [{@smackfsdef={'smackfsdef', 0x3d, '*'}}, {@defcontext={'defcontext', 0x3d, 'staff_u'}}]}, 0x1, 0x43a, &(0x7f0000000340)="$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")
syz_mount_image$ext4(&(0x7f0000000bc0)='ext4\x00', &(0x7f0000000240)='./file1\x00', 0x4000, &(0x7f00000000c0), 0x2, 0xbb8, &(0x7f00000017c0)="$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")
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x0, 0x2000025c, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], 0x0, 0x0, 0x0, 0x0, 0xc0e00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value=0x2000000}, 0x94)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00', r0}, 0x10)
pipe2(&(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x80000)
fcntl$setpipe(r2, 0x407, 0x0)
write$FUSE_INIT(r2, &(0x7f0000000340)={0x50, 0xfffffffffffffffe, 0x0, {0x7, 0x28, 0xd19e, 0x0, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x10}}, 0x50)
vmsplice(r1, &(0x7f0000000140)=[{&(0x7f0000000100)="eb", 0x20000134}], 0x1, 0x0)
fcntl$setpipe(r2, 0x407, 0x2000000)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file3\x00', 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000780)={0x9, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f0000000000)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x9031, 0xffffffffffffffff, 0xe75f0000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYRESDEC=r2, @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x4, '\x00', 0x0, @fallback=0x33, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f00000003c0)='sched_switch\x00', r7}, 0x18)
syz_open_procfs(0xffffffffffffffff, 0x0)
syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f00000001c0)='./bus\x00', 0x1201060, &(0x7f0000000080), 0x67, 0x538, &(0x7f0000002380)="$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")
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r3, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00'})
ioctl$FS_IOC_ENABLE_VERITY(r3, 0x40806685, &(0x7f0000000200)={0x1, 0x1, 0x1000, 0x0, 0x0, 0x3f00, 0x0, &(0x7f0000000080)="c0"})
r8 = open(&(0x7f0000000340)='./file1\x00', 0x185102, 0x38)
linkat(0xffffffffffffff9c, &(0x7f00000006c0)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000100)='./file7\x00', 0x1000)
write$FUSE_GETXATTR(r8, 0x0, 0x0)

4.791742067s ago: executing program 0 (id=385):
openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, 0x0, 0x0)
r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101b01)
r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x206, 0x20182)
ioctl$USBDEVFS_ALLOW_SUSPEND(r1, 0x5522)
ioctl$USBDEVFS_BULK(r1, 0x5523, 0x0)
r2 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r2, 0x5522, 0x0)
ioctl$USBDEVFS_DISCONNECT_CLAIM(r0, 0x8108551b, &(0x7f0000002600)={0x0, 0x0, "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"})
ioctl$USBDEVFS_ALLOW_SUSPEND(r0, 0x5522)
ioctl$USBDEVFS_SETINTERFACE(r0, 0x80045510, &(0x7f0000000000))

4.737144988s ago: executing program 1 (id=386):
r0 = openat$kvm(0x0, &(0x7f0000000080), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000c00000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f00000000c0)={0x0, &(0x7f00000001c0)=[@wr_drn={0x6e, 0x0, {0x3, 0xf}}, @wr_crn={0x46, 0x0, {0x4, 0xffffffffffffff80}}, @code={0xa, 0x0, {"c4634920d001c744240095000000c7442402d1000000ff2c240f0726660f38805300420fc71a66b84b000f00d0b9f9090000b87ba40620ba000000000f300f322e67420fc79a0000000048b8e3865f1f037666690f23c80f21f8350400f0000f23f8"}}, @wrmsr={0x1e, 0x0, {0x0, 0x8}}, @wr_drn={0x6e, 0x0, {0x2, 0x4}}, @wr_crn={0x46, 0x0, {0x8}}, @out_dx={0xaa, 0x0, {0x3d6, 0x1, 0xff}}, @wrmsr={0x1e, 0x0, {0xa83, 0x1}}, @code={0xa, 0x0, {"c4217bf00b0f1c6108450f0f04f08ab963030000b8a6d40000ba000000000f3066ba4300b0a0ee65430f320f01f4c4a1785a90df150000f3420f0936450f01c5"}}, @cpuid={0x14, 0x0, {0x9f1}}, @uexit={0x0, 0x0, 0x4}, @out_dx={0xaa, 0x0, {0x1ab0, 0x3, 0x1}}], 0x20})
mremap(&(0x7f0000a96000/0x1000)=nil, 0x1000, 0x400000, 0x3, &(0x7f0000000000/0x400000)=nil)
ioctl$KVM_SET_GUEST_DEBUG_x86(r3, 0x4048ae9b, &(0x7f0000000140)={0x10001})
ioctl$KVM_RUN(r3, 0xae80, 0x0)

4.671730009s ago: executing program 1 (id=387):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000000001000001"], 0x50)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000540)='inet_sock_set_state\x00', r2}, 0x10)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0x8, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000bb00551a000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r3}, 0x18)
listen(0xffffffffffffffff, 0x0)
r4 = socket$inet(0x2, 0x4000000000000001, 0x0)
sendto$inet(r4, 0x0, 0x0, 0x200007fd, &(0x7f0000e68000)={0x2, 0x4e23, @local}, 0x10)

4.539085941s ago: executing program 3 (id=388):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000200), &(0x7f0000000240)}, 0x20)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x40, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
quotactl_fd$Q_SETINFO(0xffffffffffffffff, 0xffffffff80000602, 0xee01, 0x0)

4.537998271s ago: executing program 0 (id=389):
socket$key(0xf, 0x3, 0x2)
socket$packet(0x11, 0x2, 0x300)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
socket$inet6(0xa, 0x3, 0x8000000003c)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000100)=ANY=[@ANYBLOB="1802000000000000000000007a000000850000007d00000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x80)
socket$key(0xf, 0x3, 0x2)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0x14, &(0x7f0000000080)=0xfff, 0x4)
socketpair(0x1, 0x100000005, 0x0, &(0x7f0000000000)={<r2=>0xffffffffffffffff})
getpeername$packet(r2, &(0x7f0000000000)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @dev}, &(0x7f0000002dc0)=0x14)
sendmmsg(r1, &(0x7f0000000440)=[{{&(0x7f0000000700)=@xdp={0x2c, 0x0, r3}, 0x80, &(0x7f00000004c0)=[{&(0x7f0000000180)='O', 0x36}], 0x1}}], 0x1, 0x0)

4.473857762s ago: executing program 1 (id=390):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x9, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = openat$vga_arbiter(0xffffffffffffff9c, &(0x7f0000000080), 0x1c0002, 0x0)
write$vga_arbiter(r3, &(0x7f0000000100)=@other={'unlock', ' ', 'io'}, 0xa)
syz_open_procfs(0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x24, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_setup(0x8, &(0x7f0000004200))

4.421209204s ago: executing program 3 (id=391):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r1 = open(&(0x7f00009e1000)='./file0\x00', 0x48141, 0x0)
fcntl$setlease(r1, 0x400, 0x0)
fcntl$getflags(r1, 0x401)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
syz_mount_image$fuse(0x0, &(0x7f0000002080)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0)
r5 = socket$inet6(0xa, 0x2, 0x0)
r6 = socket(0x10, 0x803, 0x0)
sendmsg$SMC_PNETID_GET(r6, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={0x0, 0x14}}, 0x0)
getsockname$packet(r6, &(0x7f0000000180)={0x11, 0x0, <r7=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000000c0)=0x14)
r8 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d850000000700000085000000230000"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r8}, 0x10)
sendmsg$nl_route(r6, &(0x7f0000000380)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f00000003c0)=@newlink={0x34, 0x10, 0x437, 0x0, 0xffffffff, {0x0, 0x0, 0x0, r7, 0x5120b}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @ip6gre={{0xb}, {0x4}}}]}, 0x34}, 0x1, 0x0, 0x0, 0x48800}, 0x4000010)
sendmmsg$inet(r5, &(0x7f00000017c0), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0xe, 0x0, 0x7ffc1ffb}]})
syz_clone3(&(0x7f0000001880)={0x100000200, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, 0x0}, 0x58)

3.166162658s ago: executing program 0 (id=392):
bpf$MAP_CREATE(0x0, 0x0, 0x48)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x4c, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x3fffffffffffeda, 0x2, 0x0)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x8002, &(0x7f00000000c0), 0x1, 0x4b4, &(0x7f0000000c80)="$eJzs3E9sFNUfAPDvbHdpgR8/KiIKoi6isdHYQkHh4AWjiQdMjHjQY9MWghRqaE2EECmJwaMh8W48evXgVb0ZTyZe8WhiSIjhAnhaM7sz7e52t//Y7oL7+SRL35t9s+99982bfTNvlwD6Vjn9J4n4X0TcjIidtWxjgXLtz707Vybv37kyGQuVyqm/k2q5u2k+k++3PcuMFCIKXyRNL1gzd+nyuYmZmemLWX5s/vwnY3OXLr969vzEmekz0xfGjx8/euTwsdfHX1t/UC3qS+O6u+/z2f173/noxruTxXz7UPa3Po5OKUe5VVOqXux0ZT22oy6dFHvYENZlICLS7ipVx//OGAidB/2iUqlUBts/vVBpdm3ZFuCRlUSvWwD0Rv5Bn17/5o8uTT0eCrdP1C6A0rjvZY/aM8UoZGVKTde3nTQUER8u/PNN+ohNug8BAFDvpxP5TLB5/leIPXXl/p+toQxHxGMRsSsiHo+I3RHxRES17JMR8VTT65cjorJC/eWm/PL5T+HWAwW4inT+90a2ttU4/8tnfzE8kOV2ROQT5ulD2XsyEqXB02dnpg+vUMfPb/3+VbvnynXzv/SR1p/PBbN23Co23aCbmpif2HDATW5fi9hXbI4/KUYkiysBSUTsjYh963jd4br02Ze/27+YKTWWWz3+qkrLdbQOLFVUvo14qdb/C9HQ/0s1JiuvT44Nxcz0obH0KDjUso5ff7v+Xrv6V43/hz+bd3n72I+nHjTsRWn/b6s7/iNfv12KfziJSBbXa+fWX8f1P75se02ztuP/asM+6fG/Jfmgmt6SbftsYn7+4uGILcnJ5dvHl/bN83n5NP6Rg63H/65sn/SdeDoi0oP4mYh4NiKey9p+ICKej4iDK8T/y5svfLzx+DdXGv9Uy/NfQ/8vrdfPncwTl9aaGDh34Ob9NiePtfX/0WpqJNvS+vyXNJwi1trADryFAAAA8NArRPW7/4XRxXShMDpauwe0O7YVZmbn5l85PfvphanabwSGo1TI73TV7geXkvz+53BdfrwpfyS7b/z1wNZqfnRydmaq18FDn9teHfPJsvGf+mug160DNp2f/ED/Wm3877nRpYYAXefzH/pX3fhfaFNkwTdl4L+p9ed/qevtALqv1fi/uoF9gEdLxViGvmb8Q/8qxvuL6UJPWwJ0m89/6Etr/xX/RhKVwdZPDcXywjG0Oc3Y2qKuniTSmVVPat+6kb3y/02hbZkorPY6xYZjbDCWlxmInvTFmT0dP/gr2XflO93U71cep/l0fRPeqO6ehwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADbLvwEAAP//cdfX0w==")

3.132252709s ago: executing program 2 (id=393):
bpf$PROG_LOAD(0x5, &(0x7f0000000a40)={0x11, 0xc, &(0x7f0000000dc0)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = openat$ptp0(0xffffffffffffff9c, &(0x7f0000003180), 0x200, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
syz_create_resource$binfmt(&(0x7f0000000300)='./file0\x00')
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
ioctl$FS_IOC_RESVSP(0xffffffffffffffff, 0x40305828, 0x0)
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x2000000}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
syz_open_procfs(0x0, &(0x7f0000000000)='net/igmp6\x00')
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='sched_switch\x00', r5}, 0xe)
sendmsg$sock(0xffffffffffffffff, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffa9}, 0x8800)
mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0)
mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0)
ioctl$PTP_PIN_SETFUNC(r0, 0x40043d0d, 0x0)
socket(0x10, 0x803, 0x0)

3.001818082s ago: executing program 3 (id=394):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f00000003c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x0, 0x0, 0x7}, {0x0, [0x0, 0x0, 0x61, 0x5f, 0x30]}}, 0x0, 0x1f}, 0x28)

2.930185843s ago: executing program 3 (id=395):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, 0x0, &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, 0x0})
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000180)=ANY=[], 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x40)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020207025000000002dba513d7b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000008fd8850000000400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000280)='virtio_transport_alloc_pkt\x00', r1}, 0x10)
r2 = socket(0x28, 0x5, 0x0)
r3 = socket(0x28, 0x5, 0x0)
bind$vsock_stream(r3, &(0x7f0000000040), 0x10)
listen(r3, 0x4)
connect$vsock_stream(r2, &(0x7f0000000080)={0x28, 0x0, 0x0, @local}, 0x10)

1.403191332s ago: executing program 1 (id=396):
mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffffffffc, 0x4031, 0xffffffffffffffff, 0x0)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000180)=@req3={0x10000, 0x100000001, 0x10000, 0x1, 0x0, 0x0, 0x3}, 0x1c)

1.354706294s ago: executing program 2 (id=397):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000240)=0x3)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
ioprio_get$uid(0x0, 0x0)
r1 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r1, &(0x7f0000032680)=""/102400, 0x19000)
setsockopt$inet6_buf(0xffffffffffffffff, 0x29, 0x6, &(0x7f0000000040), 0x0)
connect$inet(0xffffffffffffffff, 0x0, 0x0)
setsockopt$inet6_IPV6_RTHDR(0xffffffffffffffff, 0x29, 0x39, 0x0, 0x0)
r2 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0)
kcmp(r0, r0, 0x1, r1, r1)
ptrace(0x10, r2)
mknod$loop(&(0x7f0000000000)='./file0\x00', 0x6000, 0x0)
r3 = creat(&(0x7f0000000080)='./file0\x00', 0x11c)
fadvise64(r3, 0x4, 0x9, 0x2)
bind$bt_l2cap(0xffffffffffffffff, 0x0, 0x0)
connect$bt_l2cap(0xffffffffffffffff, &(0x7f0000001280)={0x1f, 0x0, @any, 0x7ff}, 0xe)
setsockopt$bt_BT_SECURITY(0xffffffffffffffff, 0x112, 0x4, &(0x7f0000000100)={0x2, 0x2}, 0x2)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, 0x0, 0x0)
sendmsg$ETHTOOL_MSG_LINKMODES_SET(r3, 0x0, 0x0)
ptrace$pokeuser(0x6, r2, 0x358, 0x0)
socket$inet6(0xa, 0x1, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, 0x0, 0x0)

1.311953414s ago: executing program 3 (id=398):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
openat$rtc(0xffffffffffffff9c, &(0x7f0000000100), 0x800, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$sock_SIOCSPGRP(r2, 0x8902, &(0x7f00000000c0)=r0)
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x85}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)
r5 = socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB], 0x48)
r6 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r6}, 0x18)
socketpair(0xb, 0x6, 0x0, &(0x7f00000002c0))
sendmsg$nl_xfrm(r5, &(0x7f0000000180)={0x0, 0x0, 0x0}, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x2d)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000003c0)=ANY=[@ANYBLOB="540000001000110f00"/20, @ANYRES32=0x0, @ANYBLOB="040100008007000028001280090001007665746800000000180002801400010000000000bfbc8c", @ANYRES32=0x0, @ANYBLOB="20000000a00000000a00"], 0x54}, 0x1, 0x0, 0x0, 0x40000}, 0x0)
request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x3}, &(0x7f0000001fee)='R\x10rust\xe3cusg\x91\xdeeH\xe5+\xf0', 0xffffffffffffffff)

204.705136ms ago: executing program 2 (id=399):
socket$nl_generic(0x10, 0x3, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xa, &(0x7f0000000680)={0x0, 0x0})
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f00000004c0)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
setxattr$incfs_size(&(0x7f0000000000)='./cgroup.cpu/cpuset.cpus\x00', &(0x7f0000000100), 0x0, 0xdf, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="020000000400000004000000450000008814"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x13, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000260018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000300000207b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000140)='sched_switch\x00', r4}, 0x10)
r5 = socket$inet6_tcp(0xa, 0x1, 0x0)
r6 = fcntl$dupfd(r5, 0x0, r5)
setsockopt$IPT_SO_SET_REPLACE(r6, 0x4000000000000, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0xc08, 0x3, 0x440, 0x310, 0x5002004a, 0xb, 0x0, 0xea02, 0x3d0, 0x3c8, 0x3c8, 0x3d0, 0x3c8, 0x3, 0x0, {[{{@ip={@rand_addr, @local, 0x0, 0x0, 'erspan0\x00', 'ip6tnl0\x00', {}, {}, 0x0, 0x0, 0x36}, 0x0, 0x2a0, 0x2e8, 0x0, {}, [@common=@unspec=@bpf1={{0x230}, @bytecode={0x0, 0x2, 0x0, [{0x61, 0x0, 0x0, 0x2900}, {0x16}, {}, {}, {}, {0x7, 0x10}, {}, {0x0, 0x0, 0x0, 0x10000000}, {}, {0x0, 0x0, 0x0, 0x10000}, {}, {}, {}, {0x0, 0x0, 0x2}, {0x6}, {}, {}, {}, {0x0, 0x0, 0x0, 0x2}, {0x0, 0x0, 0x4}, {}, {}, {}, {}, {}, {0xfffe}, {0x0, 0x0, 0xfd}, {0x0, 0x0, 0x0, 0x2da9}, {}, {}, {}, {0x1005}, {}, {0x0, 0x80}, {0x0, 0x0, 0x80}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {}, {0x3}, {}, {}, {}, {}, {0x0, 0x2}, {0x5}, {0x0, 0xd}, {0x0, 0x9}, {}, {0x0, 0x0, 0xc}, {}, {0x0, 0x0, 0x0, 0x8000}, {}, {0x0, 0x0, 0x80}]}}]}, @unspec=@CT0={0x48, 'CT\x00', 0x0, {0x0, 0x0, 0x0, 0x0, 'pptp\x00'}}}, {{@uncond, 0x0, 0x98, 0xc0, 0x0, {}, [@inet=@rpfilter={{0x28}}]}, @common=@unspec=@NFQUEUE2={0x28}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28, '\x00', 0x4}}}}, 0x4a0)

35.230079ms ago: executing program 4 (id=400):
socket$inet6(0xa, 0x1, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000400000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kfree\x00', r1}, 0x10)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f00000002c0)=ANY=[@ANYBLOB="480000001000030500"/20, @ANYRES32=r0, @ANYBLOB="0000000000000000280012800b0001006d61637365630000180002800c0004000100000100c28000050003"], 0x48}}, 0x40000)
ioctl$KVM_CREATE_VM(0xffffffffffffffff, 0xae01, 0x0)
r2 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000700000018110000", @ANYRES32=r2, @ANYRES16=0x0], &(0x7f0000000040)='syzkaller\x00', 0x800000, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f00000000c0)='kmem_cache_free\x00', r3}, 0x18)
syz_mount_image$exfat(&(0x7f0000000100), &(0x7f0000000240)='./file0\x00', 0x800000, &(0x7f0000000600)=ANY=[], 0x2, 0x14fe, &(0x7f0000002180)="$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")
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x400000000008d}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r4 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r4, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
connect$unix(r5, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r6, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r5, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r7 = bpf$PROG_LOAD(0x5, &(0x7f0000000300)={0x11, 0xb, &(0x7f0000000840)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xf, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='sched_switch\x00', r7}, 0x10)
truncate(&(0x7f0000000900)='./file1\x00', 0xb73d)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r8 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB, @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/21], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r8, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000004850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
setsockopt$packet_rx_ring(0xffffffffffffffff, 0x107, 0x5, 0x0, 0x0)

0s ago: executing program 1 (id=401):
syz_emit_ethernet(0x0, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000180)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x18)
setpriority(0x1, 0x0, 0x3)

kernel console output (not intermixed with test programs):

no interfaces have a carrier
[   30.436545][ T3854] 8021q: adding VLAN 0 to HW filter on device bond0
[   30.445813][ T3854] eql: remember to turn off Van-Jacobson compression on your slave devices
Starting crond: OK
Starting sshd: OK

syzkaller
syzkaller login: [   33.607897][ T3563] udevd (3563) used greatest stack depth: 21184 bytes left
Warning: Permanently added '10.128.0.250' (ED25519) to the list of known hosts.
[   51.990232][ T4172] cgroup: Unknown subsys name 'net'
[   52.128057][ T4172] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   53.533601][ T4172] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   54.870904][ T4195] chnl_net:caif_netlink_parms(): no params data found
[   54.885186][ T4189] chnl_net:caif_netlink_parms(): no params data found
[   54.926983][ T4185] chnl_net:caif_netlink_parms(): no params data found
[   54.968480][ T4182] chnl_net:caif_netlink_parms(): no params data found
[   55.056451][ T4195] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.063992][ T4195] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.071848][ T4195] device bridge_slave_0 entered promiscuous mode
[   55.085742][ T4183] chnl_net:caif_netlink_parms(): no params data found
[   55.102861][ T4195] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.109909][ T4195] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.117939][ T4195] device bridge_slave_1 entered promiscuous mode
[   55.132074][ T4189] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.139283][ T4189] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.150225][ T4189] device bridge_slave_0 entered promiscuous mode
[   55.186787][ T4189] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.194206][ T4189] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.201849][ T4189] device bridge_slave_1 entered promiscuous mode
[   55.228426][ T4182] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.235636][ T4182] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.243394][ T4182] device bridge_slave_0 entered promiscuous mode
[   55.257934][ T4185] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.265162][ T4185] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.273270][ T4185] device bridge_slave_0 entered promiscuous mode
[   55.282696][ T4195] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.295612][ T4182] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.303100][ T4182] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.310861][ T4182] device bridge_slave_1 entered promiscuous mode
[   55.324300][ T4185] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.331407][ T4185] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.339417][ T4185] device bridge_slave_1 entered promiscuous mode
[   55.348766][ T4195] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.374742][ T4189] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.401257][ T4182] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.411699][ T4189] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.440440][ T4182] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.458976][ T4185] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.470691][ T4195] team0: Port device team_slave_0 added
[   55.483795][ T4183] bridge0: port 1(bridge_slave_0) entered blocking state
[   55.490896][ T4183] bridge0: port 1(bridge_slave_0) entered disabled state
[   55.498770][ T4183] device bridge_slave_0 entered promiscuous mode
[   55.520574][ T4185] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.530847][ T4195] team0: Port device team_slave_1 added
[   55.536959][ T4183] bridge0: port 2(bridge_slave_1) entered blocking state
[   55.544291][ T4183] bridge0: port 2(bridge_slave_1) entered disabled state
[   55.551904][ T4183] device bridge_slave_1 entered promiscuous mode
[   55.567685][ T4189] team0: Port device team_slave_0 added
[   55.576244][ T4182] team0: Port device team_slave_0 added
[   55.609643][ T4189] team0: Port device team_slave_1 added
[   55.616636][ T4182] team0: Port device team_slave_1 added
[   55.624119][ T4185] team0: Port device team_slave_0 added
[   55.657987][ T4185] team0: Port device team_slave_1 added
[   55.669697][ T4195] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.676935][ T4195] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.703136][ T4195] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.716169][ T4183] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   55.737935][ T4182] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.745195][ T4182] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.771251][ T4182] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.782649][ T4195] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.789585][ T4195] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.815536][ T4195] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.828094][ T4183] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   55.837671][ T4189] batman_adv: batadv0: Adding interface: batadv_slave_0
[   55.844929][ T4189] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.871013][ T4189] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   55.888652][ T4182] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.896255][ T4182] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.922192][ T4182] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   55.953168][ T4189] batman_adv: batadv0: Adding interface: batadv_slave_1
[   55.960112][ T4189] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   55.986396][ T4189] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.002522][ T4185] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.009461][ T4185] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.035547][ T4185] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.050243][ T4185] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.057268][ T4185] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.083297][ T4185] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.099907][ T4183] team0: Port device team_slave_0 added
[   56.122656][ T4183] team0: Port device team_slave_1 added
[   56.161169][ T4189] device hsr_slave_0 entered promiscuous mode
[   56.168082][ T4189] device hsr_slave_1 entered promiscuous mode
[   56.183365][ T4195] device hsr_slave_0 entered promiscuous mode
[   56.189971][ T4195] device hsr_slave_1 entered promiscuous mode
[   56.197248][ T4195] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.205265][ T4195] Cannot create hsr debugfs directory
[   56.233419][ T4185] device hsr_slave_0 entered promiscuous mode
[   56.240072][ T4185] device hsr_slave_1 entered promiscuous mode
[   56.249399][ T4185] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.257136][ T4185] Cannot create hsr debugfs directory
[   56.271423][ T4183] batman_adv: batadv0: Adding interface: batadv_slave_0
[   56.278487][ T4183] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.304494][ T4183] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   56.317874][ T4182] device hsr_slave_0 entered promiscuous mode
[   56.325022][ T4182] device hsr_slave_1 entered promiscuous mode
[   56.331556][ T4182] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.339158][ T4182] Cannot create hsr debugfs directory
[   56.360951][ T4183] batman_adv: batadv0: Adding interface: batadv_slave_1
[   56.368010][ T4183] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   56.394150][ T4183] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   56.511689][ T4183] device hsr_slave_0 entered promiscuous mode
[   56.518351][ T4183] device hsr_slave_1 entered promiscuous mode
[   56.525868][ T4183] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   56.533545][ T4183] Cannot create hsr debugfs directory
[   56.602977][ T1108] Bluetooth: hci3: command 0x0409 tx timeout
[   56.610356][ T1108] Bluetooth: hci2: command 0x0409 tx timeout
[   56.612305][ T2366] Bluetooth: hci0: command 0x0409 tx timeout
[   56.616875][ T1108] Bluetooth: hci1: command 0x0409 tx timeout
[   56.687604][ T1108] Bluetooth: hci4: command 0x0409 tx timeout
[   56.740000][ T4189] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   56.756454][ T4189] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   56.770701][ T4189] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   56.779315][ T4189] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   56.807552][ T4185] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   56.819965][ T4185] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   56.830579][ T4185] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   56.847156][ T4185] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   56.891602][ T4195] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   56.916461][ T4195] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   56.927657][ T4195] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   56.941526][ T4195] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   56.995187][ T4189] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.038723][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   57.048370][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   57.059485][ T4189] 8021q: adding VLAN 0 to HW filter on device team0
[   57.069903][ T4182] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   57.079417][ T4182] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   57.091089][ T4182] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   57.108985][ T4182] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   57.118028][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.126660][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.135582][ T1280] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.142799][ T1280] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.151068][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   57.169899][ T4185] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.189280][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.198085][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.206649][ T1280] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.213721][ T1280] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.236283][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   57.245821][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   57.255332][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   57.264419][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.292383][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   57.300202][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   57.308220][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   57.319658][ T4185] 8021q: adding VLAN 0 to HW filter on device team0
[   57.334986][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   57.344137][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.359049][ T4183] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   57.380731][ T4183] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   57.390224][ T4183] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   57.403169][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   57.411414][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   57.420347][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.429627][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.438131][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.445221][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.454737][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   57.466376][ T4183] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   57.479249][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   57.488231][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   57.502871][ T4189] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   57.521342][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.530292][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.539393][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.546479][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.555043][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   57.570871][ T4195] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.603117][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   57.612115][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   57.623261][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   57.631728][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   57.641551][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   57.650142][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   57.658761][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   57.667090][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   57.675831][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   57.685622][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   57.702110][ T4195] 8021q: adding VLAN 0 to HW filter on device team0
[   57.713767][ T4185] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   57.726974][ T4182] 8021q: adding VLAN 0 to HW filter on device bond0
[   57.736380][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   57.749819][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   57.757922][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.771531][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.780205][  T155] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.787298][  T155] bridge0: port 1(bridge_slave_0) entered forwarding state
[   57.800176][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   57.821205][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   57.831211][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   57.839866][ T1280] bridge0: port 2(bridge_slave_1) entered blocking state
[   57.846947][ T1280] bridge0: port 2(bridge_slave_1) entered forwarding state
[   57.856756][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   57.864956][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   57.875122][ T4182] 8021q: adding VLAN 0 to HW filter on device team0
[   57.887553][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   57.895705][ T1280] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   57.931043][ T4189] 8021q: adding VLAN 0 to HW filter on device batadv0
[   57.940493][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   57.950905][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   57.966665][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   57.976168][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   57.985351][  T144] bridge0: port 1(bridge_slave_0) entered blocking state
[   57.992443][  T144] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.000086][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   58.009072][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.017464][  T144] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.024537][  T144] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.032099][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   58.041563][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   58.061814][ T4195] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   58.072283][ T4195] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   58.107545][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   58.116702][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   58.130291][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   58.143897][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   58.152971][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   58.161366][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   58.170681][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   58.179284][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.187717][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   58.199035][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   58.207813][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   58.216560][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   58.225409][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   58.234564][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   58.243214][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.251716][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   58.259856][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   58.267648][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   58.302841][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   58.316473][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   58.328928][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   58.341399][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.351277][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   58.361217][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.369967][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   58.377764][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   58.385721][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.393729][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.402024][ T4182] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   58.411629][ T4183] 8021q: adding VLAN 0 to HW filter on device bond0
[   58.421257][ T4185] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.439432][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[   58.448627][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   58.471862][ T4189] device veth0_vlan entered promiscuous mode
[   58.483628][ T4183] 8021q: adding VLAN 0 to HW filter on device team0
[   58.509289][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[   58.518552][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   58.528520][  T145] bridge0: port 1(bridge_slave_0) entered blocking state
[   58.535621][  T145] bridge0: port 1(bridge_slave_0) entered forwarding state
[   58.551419][ T4189] device veth1_vlan entered promiscuous mode
[   58.575317][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   58.584648][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[   58.593609][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[   58.603496][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   58.611980][  T145] bridge0: port 2(bridge_slave_1) entered blocking state
[   58.619078][  T145] bridge0: port 2(bridge_slave_1) entered forwarding state
[   58.628298][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[   58.637274][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[   58.646257][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[   58.655296][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   58.666010][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[   58.675153][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   58.683272][ T4237] Bluetooth: hci0: command 0x041b tx timeout
[   58.690132][ T4237] Bluetooth: hci1: command 0x041b tx timeout
[   58.696245][ T4237] Bluetooth: hci2: command 0x041b tx timeout
[   58.702591][ T4237] Bluetooth: hci3: command 0x041b tx timeout
[   58.720270][ T4183] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[   58.731240][ T4183] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[   58.754770][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   58.762673][ T4244] Bluetooth: hci4: command 0x041b tx timeout
[   58.768067][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   58.776528][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   58.787838][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   58.796463][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[   58.805105][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   58.814052][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   58.821432][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   58.829500][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[   58.838018][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   58.846851][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   58.854791][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   58.862404][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   58.871492][ T4195] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.886518][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   58.895633][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   58.924948][ T4182] 8021q: adding VLAN 0 to HW filter on device batadv0
[   58.932148][ T4185] device veth0_vlan entered promiscuous mode
[   58.939072][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   58.952741][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   58.960452][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   58.972400][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   59.015913][ T4189] device veth0_macvtap entered promiscuous mode
[   59.025322][ T4185] device veth1_vlan entered promiscuous mode
[   59.042562][ T4189] device veth1_macvtap entered promiscuous mode
[   59.065422][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   59.073810][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   59.081939][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   59.091279][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   59.100932][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   59.110260][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   59.134973][ T4189] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.151917][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   59.160912][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   59.177630][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   59.188624][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.200635][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   59.209036][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   59.217917][ T4182] device veth0_vlan entered promiscuous mode
[   59.228240][ T4189] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.251718][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   59.260950][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   59.275776][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   59.285775][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   59.303523][ T4189] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.312992][ T4189] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.321698][ T4189] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.330650][ T4189] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.347694][ T4182] device veth1_vlan entered promiscuous mode
[   59.354649][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   59.366007][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   59.374563][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   59.384878][ T4185] device veth0_macvtap entered promiscuous mode
[   59.396164][ T4183] 8021q: adding VLAN 0 to HW filter on device batadv0
[   59.423907][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   59.431924][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   59.439999][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   59.448779][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   59.459534][ T4185] device veth1_macvtap entered promiscuous mode
[   59.493529][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   59.502257][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   59.510832][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   59.519840][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   59.529077][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   59.558830][ T4195] device veth0_vlan entered promiscuous mode
[   59.573225][ T4182] device veth0_macvtap entered promiscuous mode
[   59.587195][ T4183] device veth0_vlan entered promiscuous mode
[   59.601521][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   59.609691][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   59.618355][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   59.627762][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   59.635949][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   59.644431][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   59.652161][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   59.659871][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   59.668272][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   59.676186][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.686884][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.698826][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.711374][ T4185] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   59.721991][ T4185] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.733340][ T4185] batman_adv: batadv0: Interface activated: batadv_slave_1
[   59.745005][ T4182] device veth1_macvtap entered promiscuous mode
[   59.753667][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   59.761732][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   59.770492][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   59.779854][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   59.788644][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   59.801572][ T4195] device veth1_vlan entered promiscuous mode
[   59.815518][ T4185] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   59.824612][ T4185] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   59.833620][ T4185] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   59.842915][ T4185] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   59.856687][ T4183] device veth1_vlan entered promiscuous mode
[   59.906419][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   59.918047][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.929222][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   59.936185][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.947411][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   59.958146][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   59.970339][ T4182] batman_adv: batadv0: Interface activated: batadv_slave_0
[   59.998830][ T4195] device veth0_macvtap entered promiscuous mode
[   60.001192][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   60.015720][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   60.021972][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   60.033730][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   60.041600][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   60.051052][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   60.059569][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   60.071714][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   60.080398][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   60.089431][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   60.098007][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   60.106688][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   60.114608][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   60.131649][ T4183] device veth0_macvtap entered promiscuous mode
[   60.146536][ T4195] device veth1_macvtap entered promiscuous mode
[   60.162423][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   60.171422][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   60.180787][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   60.204233][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.215209][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.227420][ T4182] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   60.239538][ T4182] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.250651][ T4182] batman_adv: batadv0: Interface activated: batadv_slave_1
[   60.263861][ T4183] device veth1_macvtap entered promiscuous mode
[   60.286169][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   60.313423][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   60.329665][  T144] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   60.353621][ T4182] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   60.365304][ T4182] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   60.376971][ T4182] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   60.391288][ T4182] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   60.420050][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.440307][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.451526][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.467516][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.478109][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.493658][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.510800][ T4183] batman_adv: batadv0: Interface activated: batadv_slave_0
[   60.538082][ T4195] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.549660][ T4195] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.560452][ T4195] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.571005][ T4195] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.581241][ T4195] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.592094][ T4195] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.602094][ T4195] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   60.613753][ T4195] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   60.812106][ T4294] ptrace attach of "./syz-executor exec"[4295] was attempted by "./syz-executor exec"[4294]
[   61.057288][ T4195] batman_adv: batadv0: Interface activated: batadv_slave_0
[   61.629655][ T4195] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.657196][ T4195] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.670343][ T4195] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.687404][ T4195] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.698460][ T4195] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   61.714794][ T4195] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   61.736328][ T4195] batman_adv: batadv0: Interface activated: batadv_slave_1
[   61.749114][ T4195] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   61.761304][ T4195] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   61.775929][ T4195] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   61.786058][ T4195] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   62.292194][    C0] sched: RT throttling activated
[   62.299162][ T4244] Bluetooth: hci3: command 0x040f tx timeout
[   62.305777][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   62.312326][ T4244] Bluetooth: hci2: command 0x040f tx timeout
[   62.318914][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   62.319960][ T4244] Bluetooth: hci1: command 0x040f tx timeout
[   62.330857][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   62.333905][ T4244] Bluetooth: hci0: command 0x040f tx timeout
[   62.349920][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   62.358866][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   62.373557][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   62.389744][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.401749][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.417908][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.429074][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.444934][ T4244] Bluetooth: hci4: command 0x040f tx timeout
[   62.472792][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.483422][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.493267][ T4183] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   62.503722][ T4183] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   62.516289][ T4183] batman_adv: batadv0: Interface activated: batadv_slave_1
[   62.549654][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   62.558532][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   63.210843][ T4183] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   63.219821][ T4183] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   63.229033][ T4183] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   63.237979][ T4183] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   63.264659][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.284945][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.297912][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.306117][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.324013][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   63.332004][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   63.452155][  T155] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.459685][  T145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.483450][  T155] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.513790][  T145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.607037][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   63.615421][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   63.644959][  T145] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.652333][    T9] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   63.658261][  T145] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   63.768034][  T145] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.159869][    T9] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.402087][ T4302] Bluetooth: hci1: command 0x0419 tx timeout
[   64.410039][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   64.421937][ T4302] Bluetooth: hci2: command 0x0419 tx timeout
[   64.429364][ T4302] Bluetooth: hci3: command 0x0419 tx timeout
[   64.451304][  T145] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.468815][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   64.481936][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.490547][  T145] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   64.525788][ T4302] Bluetooth: hci4: command 0x0419 tx timeout
[   64.532116][ T4302] Bluetooth: hci0: command 0x0419 tx timeout
[   64.644542][ T4318] loop4: detected capacity change from 0 to 2048
[   64.788124][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   64.877183][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   65.290673][ T4318] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[   66.932785][ T4330] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[   67.228859][   T26] audit: type=1107 audit(1758377197.959:2): pid=4336 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[   67.469035][ T4230] usb 4-1: new high-speed USB device number 2 using dummy_hcd
[   67.631339][ T4338] process 'syz.0.1' launched './file0' with NULL argv: empty string added
[   68.155936][ T4230] usb 4-1: Using ep0 maxpacket: 32
[   69.265579][ T4347] loop1: detected capacity change from 0 to 40427
[   69.274291][ T4350] loop0: detected capacity change from 0 to 512
[   69.336394][ T4350] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[   69.337710][ T4350] EXT4-fs (loop0): Test dummy encryption mode enabled
[   69.337741][ T4350] EXT4-fs (loop0): Ignoring removed mblk_io_submit option
[   69.337755][ T4350] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   69.337766][ T4350] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[   69.418552][ T4347] F2FS-fs (loop1): Found nat_bits in checkpoint
[   69.468386][ T4230] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[   69.468474][ T4230] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[   69.468496][ T4230] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[   69.501858][ T4230] usb 4-1: config 0 descriptor??
[   69.510049][ T4347] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[   69.513966][ T4350] EXT4-fs (loop0): 1 truncate cleaned up
[   69.513986][ T4350] EXT4-fs (loop0): mounted filesystem without journal. Opts: errors=remount-ro,mblk_io_submit,max_dir_size_kb=0x0000000000000006,test_dummy_encryption=v1,barrier,mblk_io_submit,nogrpid,. Quota mode: none.
[   69.545100][ T4230] hub 4-1:0.0: bad descriptor, ignoring hub
[   69.545667][ T4230] hub: probe of 4-1:0.0 failed with error -5
[   69.547521][ T4230] usbhid 4-1:0.0: couldn't find an input interrupt endpoint
[   69.696117][ T4361] loop4: detected capacity change from 0 to 512
[   71.011469][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[   71.011673][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[   71.462151][ T4361] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.14: bg 0: block 393: padding at end of block bitmap is not set
[   71.468410][ T4361] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6178: Corrupt filesystem
[   71.476872][ T4361] EXT4-fs (loop4): 2 truncates cleaned up
[   71.476897][ T4361] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   72.215198][    T7] usb 4-1: USB disconnect, device number 2
[   72.830545][ T4376] loop2: detected capacity change from 0 to 256
[   75.151247][ T4385] loop2: detected capacity change from 0 to 512
[   75.287547][ T4383] loop0: detected capacity change from 0 to 8192
[   75.309195][ T4385] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.20: casefold flag without casefold feature
[   75.525845][ T4385] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.20: couldn't read orphan inode 15 (err -117)
[   75.602843][ T4385] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   75.642080][ T4391] loop1: detected capacity change from 0 to 128
[   76.300233][ T1111] cfg80211: failed to load regulatory.db
[   76.553542][ T4391] =======================================================
[   76.553542][ T4391] WARNING: The mand mount option has been deprecated and
[   76.553542][ T4391]          and is ignored by this kernel. Remove the mand
[   76.553542][ T4391]          option from the mount to silence this warning.
[   76.553542][ T4391] =======================================================
[   77.426028][   T26] audit: type=1804 audit(1758377208.159:3): pid=4391 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.21" name="/newroot/2/file0/bus" dev="loop1" ino=1048590 res=1 errno=0
[   77.815597][ T4402] loop0: detected capacity change from 0 to 256
[   79.128479][ T4410] loop3: detected capacity change from 0 to 16
[   81.780985][ T4410] erofs: (device loop3): mounted with root inode @ nid 36.
[   83.453390][ T4428] loop2: detected capacity change from 0 to 512
[   83.708433][ T4428] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   83.861589][ T4428] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2825: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   83.876622][ T4428] EXT4-fs (loop2): 1 truncate cleaned up
[   83.882403][ T4428] EXT4-fs (loop2): mounted filesystem without journal. Opts: nogrpid,min_batch_time=0x0000000000000004,debug_want_extra_isize=0x0000000000000068,errors=remount-ro,nodiscard,quota,. Quota mode: writeback.
[   84.333302][ T4432] loop4: detected capacity change from 0 to 256
[   84.527695][ T4432] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[   86.472070][ T4442] loop1: detected capacity change from 0 to 1024
[   86.882240][   T26] audit: type=1800 audit(1758377217.589:4): pid=4442 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.35" name="file1" dev="loop1" ino=20 res=0 errno=0
[   86.919402][ T4442] attempt to access beyond end of device
[   86.919402][ T4442] loop1: rw=0, want=5780, limit=1024
[   88.853941][ T4467] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready
[   88.871359][ T4467] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   88.879645][ T4467] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   90.030734][ T4457] loop4: detected capacity change from 0 to 8192
[   90.134168][ T4473] loop1: detected capacity change from 0 to 256
[   90.285507][ T4457]  loop4: p1 p2[DM] p4
[   90.321773][ T4457] loop4: p1 size 196608 extends beyond EOD, truncated
[   90.345513][ T4473] exFAT-fs (loop1): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d)
[   90.385488][ T4475] L1TF CPU bug present and SMT on, data leak possible. See CVE-2018-3646 and https://www.kernel.org/doc/html/latest/admin-guide/hw-vuln/l1tf.html for details.
[   90.453454][ T4457] loop4: p2 start 4292936063 is beyond EOD, truncated
[   90.482668][ T4457] loop4: p4 size 50331648 extends beyond EOD, truncated
[   90.603263][   T26] audit: type=1326 audit(1758377221.339:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   90.628729][ T4482] attempt to access beyond end of device
[   90.628729][ T4482] loop1: rw=524288, want=408, limit=256
[   90.630640][ T4483] loop0: detected capacity change from 0 to 256
[   90.658713][ T4482] attempt to access beyond end of device
[   90.658713][ T4482] loop1: rw=524288, want=664, limit=256
[   90.698514][   T26] audit: type=1326 audit(1758377221.339:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   90.704684][ T4482] attempt to access beyond end of device
[   90.704684][ T4482] loop1: rw=0, want=288, limit=256
[   90.721001][ T4302] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[   90.754071][   T26] audit: type=1326 audit(1758377221.339:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   90.782837][ T4483] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[   90.857763][   T26] audit: type=1326 audit(1758377221.339:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   90.920738][   T26] audit: type=1326 audit(1758377221.339:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   91.005216][   T26] audit: type=1326 audit(1758377221.339:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   91.010802][ T4302] usb 3-1: Using ep0 maxpacket: 16
[   91.042843][   T26] audit: type=1326 audit(1758377221.339:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   91.072261][ T4339] usb 4-1: new high-speed USB device number 3 using dummy_hcd
[   91.079966][ T4490] loop4: detected capacity change from 0 to 1024
[   91.225764][   T26] audit: type=1326 audit(1758377221.339:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4472 comm="syz.1.43" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[   91.332434][ T4339] usb 4-1: Using ep0 maxpacket: 16
[   91.533406][ T4176] udevd[4176]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[   91.544815][ T4365] udevd[4365]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[   91.640690][ T4490] attempt to access beyond end of device
[   91.640690][ T4490] loop4: rw=0, want=5780, limit=1024
[   91.692389][ T4339] usb 4-1: config 0 has an invalid interface number: 41 but max is 0
[   91.718360][ T4339] usb 4-1: config 0 has no interface number 0
[   91.733039][ T4490] Buffer I/O error on dev loop4, logical block 2889, async page read
[   91.742667][   T26] audit: type=1800 audit(1758377221.549:13): pid=4482 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.43" name="file1" dev="loop1" ino=1048593 res=0 errno=0
[   91.788045][ T4339] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[   91.817623][ T4490] attempt to access beyond end of device
[   91.817623][ T4490] loop4: rw=0, want=393218, limit=1024
[   91.829508][ T4490] Buffer I/O error on dev loop4, logical block 196608, async page read
[   91.843126][ T4490] attempt to access beyond end of device
[   91.843126][ T4490] loop4: rw=0, want=393220, limit=1024
[   91.873264][ T4490] Buffer I/O error on dev loop4, logical block 196609, async page read
[   91.883919][ T4339] usb 4-1: config 0 interface 41 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 64
[   91.898050][ T4490] attempt to access beyond end of device
[   91.898050][ T4490] loop4: rw=0, want=393222, limit=1024
[   91.934418][ T4490] Buffer I/O error on dev loop4, logical block 196610, async page read
[   91.949434][ T4495] attempt to access beyond end of device
[   91.949434][ T4495] loop4: rw=0, want=5780, limit=1024
[   91.961139][ T4302] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[   91.981512][ T4302] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[   92.041116][ T4490] attempt to access beyond end of device
[   92.041116][ T4490] loop4: rw=0, want=393224, limit=1024
[   92.052474][ T4302] usb 3-1: config 0 has no interface number 0
[   92.072786][ T4339] usb 4-1: config 0 interface 41 has no altsetting 0
[   92.096026][ T4490] Buffer I/O error on dev loop4, logical block 196611, async page read
[   92.104658][ T4490] attempt to access beyond end of device
[   92.104658][ T4490] loop4: rw=0, want=393226, limit=1024
[   92.115936][ T4490] Buffer I/O error on dev loop4, logical block 196612, async page read
[   92.127972][ T4490] attempt to access beyond end of device
[   92.127972][ T4490] loop4: rw=0, want=393228, limit=1024
[   92.263425][ T4339] usb 4-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[   92.311224][ T4339] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   92.385613][ T4490] Buffer I/O error on dev loop4, logical block 196613, async page read
[   92.429371][ T4339] usb 4-1: Product: syz
[   92.490220][ T4339] usb 4-1: Manufacturer: syz
[   92.518852][ T4490] attempt to access beyond end of device
[   92.518852][ T4490] loop4: rw=0, want=393230, limit=1024
[   92.578586][ T4339] usb 4-1: SerialNumber: syz
[   92.862414][ T4490] Buffer I/O error on dev loop4, logical block 196614, async page read
[   92.894935][ T4339] usb 4-1: config 0 descriptor??
[   92.901549][ T4490] attempt to access beyond end of device
[   92.901549][ T4490] loop4: rw=0, want=393232, limit=1024
[   92.914001][ T4485] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   92.921357][ T4485] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   92.964389][ T4490] Buffer I/O error on dev loop4, logical block 196615, async page read
[   92.973352][ T4490] attempt to access beyond end of device
[   92.973352][ T4490] loop4: rw=0, want=393234, limit=1024
[   92.984775][ T4490] Buffer I/O error on dev loop4, logical block 196616, async page read
[   92.993250][ T4490] attempt to access beyond end of device
[   92.993250][ T4490] loop4: rw=0, want=393236, limit=1024
[   93.005361][ T4490] attempt to access beyond end of device
[   93.005361][ T4490] loop4: rw=0, want=393238, limit=1024
[   93.016718][ T4490] attempt to access beyond end of device
[   93.016718][ T4490] loop4: rw=0, want=393240, limit=1024
[   93.069616][ T4302] usb 3-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[   93.097208][ T4302] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[   93.118282][ T4302] usb 3-1: Product: syz
[   93.122801][ T4302] usb 3-1: Manufacturer: syz
[   93.127516][ T4302] usb 3-1: SerialNumber: syz
[   93.166386][ T4302] usb 3-1: config 0 descriptor??
[   93.257647][ T4485] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   93.268393][ T4302] usb 3-1: Found UVC 0.00 device syz (046d:08f3)
[   93.309032][ T4485] raw-gadget.1 gadget: fail, usb_ep_enable returned -22
[   93.322818][ T4302] usb 3-1: No valid video chain found.
[   93.369515][    T7] usb 3-1: USB disconnect, device number 2
[   94.642695][ T4339] CoreChips 4-1:0.41 (unnamed net_device) (uninitialized): set LINK LED failed : -71
[   94.657731][ T4523] loop2: detected capacity change from 0 to 512
[   94.702816][ T4339] CoreChips: probe of 4-1:0.41 failed with error -71
[   94.762577][ T4339] usb 4-1: USB disconnect, device number 3
[   95.016485][ T4525] loop3: detected capacity change from 0 to 8192
[   95.091687][ T4532] loop0: detected capacity change from 0 to 256
[   95.356578][ T4532] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[   95.367865][ T4525]  loop3: p1 p2[DM] p4
[   95.378794][ T4525] loop3: p1 size 196608 extends beyond EOD, truncated
[   95.450840][ T4525] loop3: p2 start 4292936063 is beyond EOD, truncated
[   95.662213][ T4525] loop3: p4 size 50331648 extends beyond EOD, truncated
[   96.082293][ T4523] EXT4-fs error (device loop2): ext4_orphan_get:1401: inode #15: comm syz.2.58: casefold flag without casefold feature
[   96.119542][ T4523] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.58: couldn't read orphan inode 15 (err -117)
[   96.313066][ T4523] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[   96.339209][ T4543] loop0: detected capacity change from 0 to 1024
[   96.804506][ T3561]  loop3: p1 p2[DM] p4
[   96.923143][ T3561] loop3: p1 size 196608 extends beyond EOD, truncated
[   97.056048][ T3561] loop3: p2 start 4292936063 is beyond EOD, truncated
[   97.072195][ T3561] loop3: p4 size 50331648 extends beyond EOD, truncated
[   97.100135][   T26] kauditd_printk_skb: 3 callbacks suppressed
[   97.100146][   T26] audit: type=1800 audit(1758377227.829:17): pid=4543 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.64" name="file1" dev="loop0" ino=20 res=0 errno=0
[   97.233046][ T4551] loop4: detected capacity change from 0 to 256
[   97.552932][ T4551] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d)
[   97.980214][ T4551] exFAT-fs (loop4): IO charset mʵÁ×WÂÄ¢«: not found
[   98.019729][ T4176] udevd[4176]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[   98.061301][ T4174] udevd[4174]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[   98.161183][   T26] audit: type=1326 audit(1758377228.889:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[   98.236927][ T4573] fuse: Bad value for 'fd'
[   98.437948][   T26] audit: type=1326 audit(1758377228.889:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[   99.918693][ T4567] udevd[4567]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory
[  100.016001][ T4360] udevd[4360]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  100.419078][   T26] audit: type=1326 audit(1758377228.889:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=83 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  100.728432][ T4580] loop4: detected capacity change from 0 to 256
[  100.874405][   T26] audit: type=1326 audit(1758377228.889:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  100.979115][   T26] audit: type=1326 audit(1758377228.889:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  101.110059][   T26] audit: type=1326 audit(1758377228.889:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=260 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  101.221743][   T26] audit: type=1326 audit(1758377228.889:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  101.331516][   T26] audit: type=1326 audit(1758377228.889:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  101.437015][ T4580] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  101.482053][ T4595] loop1: detected capacity change from 0 to 1024
[  101.499027][   T26] audit: type=1326 audit(1758377228.889:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4550 comm="syz.4.66" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f2565c696df code=0x7ffc0000
[  101.505973][ T4592] loop0: detected capacity change from 0 to 8192
[  101.746455][ T4595] EXT4-fs (loop1): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  101.764863][ T4592]  loop0: p1 p2[DM] p4
[  101.771259][ T4592] loop0: p1 size 196608 extends beyond EOD, truncated
[  101.817949][ T4595] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  101.836282][ T4592] loop0: p2 start 4292936063 is beyond EOD, truncated
[  101.889465][ T4592] loop0: p4 size 50331648 extends beyond EOD, truncated
[  102.272405][ T4606] EXT4-fs error (device loop1): ext4_map_blocks:739: inode #15: block 3: comm syz.1.78: lblock 3 mapped to illegal pblock 3 (length 3)
[  102.545010][ T4606] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  102.557467][ T4606] EXT4-fs (loop1): This should not happen!! Data will be lost
[  102.557467][ T4606] 
[  104.223586][  T144] EXT4-fs error (device loop1): ext4_map_blocks:739: inode #15: block 8: comm kworker/u4:1: lblock 8 mapped to illegal pblock 8 (length 8)
[  104.253873][ T4365] udevd[4365]: inotify_add_watch(7, /dev/loop0p1, 10) failed: No such file or directory
[  104.257065][ T4620] loop2: detected capacity change from 0 to 512
[  104.267438][ T4567] udevd[4567]: inotify_add_watch(7, /dev/loop0p4, 10) failed: No such file or directory
[  104.312889][  T144] EXT4-fs (loop1): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  104.360156][  T144] EXT4-fs (loop1): This should not happen!! Data will be lost
[  104.360156][  T144] 
[  104.517952][ T4620] EXT4-fs (loop2): Ignoring removed nobh option
[  104.717188][ T4629] overlayfs: unrecognized mount option "/" or missing value
[  105.819331][ T4620] EXT4-fs (loop2): mounted filesystem without journal. Opts: grpquota,nogrpid,quota,nobh,,errors=continue. Quota mode: writeback.
[  105.931848][ T4620] ext4 filesystem being mounted at /17/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  105.964314][ T4645] loop1: detected capacity change from 0 to 1024
[  105.976276][ T4644] mmap: syz.0.91 (4644): VmData 176009216 exceed data ulimit 33554432. Update limits or use boot option ignore_rlimit_data.
[  106.923764][   T26] kauditd_printk_skb: 21 callbacks suppressed
[  106.923777][   T26] audit: type=1800 audit(1758377237.639:48): pid=4645 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.92" name="file1" dev="loop1" ino=20 res=0 errno=0
[  107.173951][ T4655] EXT4-fs error (device loop2): ext4_find_dest_de:2115: inode #2: block 3: comm syz.2.85: bad entry in directory: inode out of bounds - offset=92, inode=117440528, rec_len=16, size=2048 fake=0
[  107.264182][ T4657] IPv4: Oversized IP packet from 127.202.26.0
[  109.445215][ T4666] loop4: detected capacity change from 0 to 512
[  109.685698][ T4673] loop3: detected capacity change from 0 to 256
[  109.794065][ T4666] EXT4-fs (loop4): Ignoring removed nobh option
[  109.820752][ T4666] EXT4-fs (loop4): Unrecognized mount option "smackfsdef=*" or missing value
[  109.876691][ T4680] loop2: detected capacity change from 0 to 512
[  110.163371][ T4673] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  110.814337][ T4680] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  111.030874][ T4680] EXT4-fs (loop2): 1 truncate cleaned up
[  111.057200][ T4680] EXT4-fs (loop2): mounted filesystem without journal. Opts: init_itable,resuid=0x0000000000000000,stripe=0x0000000000000040,,errors=continue. Quota mode: none.
[  111.290747][ T4666] loop4: detected capacity change from 0 to 4096
[  111.619960][   T26] audit: type=1326 audit(1758377242.349:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  111.935677][ T4680] mmap: syz.2.96 (4680) uses deprecated remap_file_pages() syscall. See Documentation/vm/remap_file_pages.rst.
[  111.947507][   T26] audit: type=1326 audit(1758377242.669:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=216 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  112.062890][   T26] audit: type=1326 audit(1758377242.789:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  112.205232][ T4699] loop1: detected capacity change from 0 to 1024
[  112.276913][   T26] audit: type=1326 audit(1758377242.789:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4678 comm="syz.2.96" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  112.357350][   T26] audit: type=1800 audit(1758377243.089:53): pid=4699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.106" name="file1" dev="loop1" ino=20 res=0 errno=0
[  112.489012][ T4699] handle_bad_sector: 119 callbacks suppressed
[  112.489669][ T4699] attempt to access beyond end of device
[  112.489669][ T4699] loop1: rw=0, want=5780, limit=1024
[  113.190370][ T4699] buffer_io_error: 122 callbacks suppressed
[  113.190384][ T4699] Buffer I/O error on dev loop1, logical block 2889, async page read
[  113.279043][ T4699] attempt to access beyond end of device
[  113.279043][ T4699] loop1: rw=0, want=393218, limit=1024
[  113.310549][ T4711] loop2: detected capacity change from 0 to 512
[  113.341012][ T4699] Buffer I/O error on dev loop1, logical block 196608, async page read
[  113.393334][ T4699] attempt to access beyond end of device
[  113.393334][ T4699] loop1: rw=0, want=393220, limit=1024
[  113.662254][ T4699] Buffer I/O error on dev loop1, logical block 196609, async page read
[  113.923472][ T4699] attempt to access beyond end of device
[  113.923472][ T4699] loop1: rw=0, want=393222, limit=1024
[  114.012326][ T4699] Buffer I/O error on dev loop1, logical block 196610, async page read
[  114.021604][ T4717] capability: warning: `syz.3.112' uses deprecated v2 capabilities in a way that may be insecure
[  114.086221][ T4699] attempt to access beyond end of device
[  114.086221][ T4699] loop1: rw=0, want=393224, limit=1024
[  114.087871][ T4711] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.110: bg 0: block 393: padding at end of block bitmap is not set
[  114.097337][ T4699] Buffer I/O error on dev loop1, logical block 196611, async page read
[  114.141850][ T4706] attempt to access beyond end of device
[  114.141850][ T4706] loop1: rw=0, want=5780, limit=1024
[  114.182756][ T4699] attempt to access beyond end of device
[  114.182756][ T4699] loop1: rw=0, want=393226, limit=1024
[  114.215155][ T4711] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  114.231618][ T4699] Buffer I/O error on dev loop1, logical block 196612, async page read
[  114.237290][ T4711] EXT4-fs (loop2): 2 truncates cleaned up
[  114.258346][ T4699] attempt to access beyond end of device
[  114.258346][ T4699] loop1: rw=0, want=393228, limit=1024
[  114.261710][ T4711] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  114.290822][ T4699] Buffer I/O error on dev loop1, logical block 196613, async page read
[  114.327823][ T4699] attempt to access beyond end of device
[  114.327823][ T4699] loop1: rw=0, want=393230, limit=1024
[  114.357761][ T4699] Buffer I/O error on dev loop1, logical block 196614, async page read
[  114.389556][ T4699] attempt to access beyond end of device
[  114.389556][ T4699] loop1: rw=0, want=393232, limit=1024
[  114.422248][ T4699] Buffer I/O error on dev loop1, logical block 196615, async page read
[  114.440757][ T4699] Buffer I/O error on dev loop1, logical block 196616, async page read
[  114.500413][ T4703] loop0: detected capacity change from 0 to 40427
[  114.570473][ T4703] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12
[  114.583946][ T4726] futex_wake_op: syz.2.115 tries to shift op by -1; fix this program
[  114.597785][ T4703] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock
[  114.615474][ T4703] F2FS-fs (loop0): invalid crc value
[  114.649331][ T4703] F2FS-fs (loop0): Found nat_bits in checkpoint
[  114.706882][ T4731] tipc: Started in network mode
[  114.724660][ T4731] tipc: Node identity bacd20aa194c, cluster identity 4711
[  114.739936][ T4731] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  114.751803][ T4703] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  114.752369][ T4731] sch_tbf: burst 127 is lower than device syzkaller0 mtu (1514) !
[  114.761342][ T4703] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  114.842788][ T4731] tipc: Resetting bearer <eth:syzkaller0>
[  114.876585][ T4727] tipc: Disabling bearer <eth:syzkaller0>
[  115.569199][ T4745] loop1: detected capacity change from 0 to 16
[  115.695760][ T4745] erofs: (device loop1): mounted with root inode @ nid 36.
[  116.002306][ T4339] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[  116.302464][ T4339] usb 3-1: Using ep0 maxpacket: 16
[  116.422360][ T4339] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  116.640007][ T4339] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[  116.729218][   T26] audit: type=1326 audit(1758377247.459:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4759 comm="syz.1.125" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f41ce0c1c29 code=0x0
[  116.784446][ T4762] loop4: detected capacity change from 0 to 1024
[  116.792115][ T4755] ipt_CLUSTERIP: Please specify destination IP
[  116.862472][ T4339] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  116.881423][   T26] audit: type=1800 audit(1758377247.609:55): pid=4762 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.126" name="file1" dev="loop4" ino=20 res=0 errno=0
[  116.907658][ T4339] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  116.949032][ T4339] usb 3-1: Product: syz
[  116.966535][ T4339] usb 3-1: Manufacturer: syz
[  116.986775][ T4339] usb 3-1: SerialNumber: syz
[  117.342526][ T4339] usb 3-1: 0:2 : does not exist
[  117.422878][ T4339] usb 3-1: USB disconnect, device number 3
[  117.495095][ T4762] handle_bad_sector: 3309 callbacks suppressed
[  117.495113][ T4762] attempt to access beyond end of device
[  117.495113][ T4762] loop4: rw=0, want=5780, limit=1024
[  117.636077][ T4762] attempt to access beyond end of device
[  117.636077][ T4762] loop4: rw=0, want=393218, limit=1024
[  117.678018][ T4762] attempt to access beyond end of device
[  117.678018][ T4762] loop4: rw=0, want=393220, limit=1024
[  117.704123][ T4762] attempt to access beyond end of device
[  117.704123][ T4762] loop4: rw=0, want=393222, limit=1024
[  120.170209][ T4785] loop4: detected capacity change from 0 to 512
[  120.298273][ T4785] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: none.
[  120.748148][ T4801] overlayfs: failed to clone upperpath
[  121.021190][ T4802] binfmt_misc: register: failed to install interpreter file ./file2
[  121.900499][ T4820] netlink: 8 bytes leftover after parsing attributes in process `syz.3.141'.
[  123.265739][ T4828] loop0: detected capacity change from 0 to 512
[  124.310780][ T4834] loop3: detected capacity change from 0 to 128
[  124.551850][ T4828] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.148: bg 0: block 393: padding at end of block bitmap is not set
[  124.567822][ T4828] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  124.589445][ T4828] EXT4-fs (loop0): 2 truncates cleaned up
[  124.595410][ T4828] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  124.595931][ T4834] EXT4-fs (loop3): Unrecognized mount option "seclabel" or missing value
[  125.310381][ T4849] loop2: detected capacity change from 0 to 256
[  125.483979][ T4849] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  126.039284][ T4863] loop4: detected capacity change from 0 to 512
[  126.106211][ T4863] EXT4-fs (loop4): Ignoring removed nobh option
[  126.345136][ T4863] EXT4-fs (loop4): mounted filesystem without journal. Opts: grpquota,nogrpid,quota,nobh,,errors=continue. Quota mode: writeback.
[  126.419521][ T4863] ext4 filesystem being mounted at /27/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  126.525307][ T4874] Zero length message leads to an empty skb
[  126.712368][ T4874] loop2: detected capacity change from 0 to 8192
[  127.392511][ T4874]  loop2: p1 p2[DM] p4
[  127.676918][ T4874] loop2: p1 size 196608 extends beyond EOD, truncated
[  127.825736][ T4874] loop2: p2 start 4292936063 is beyond EOD, truncated
[  128.127551][ T4874] loop2: p4 size 50331648 extends beyond EOD, truncated
[  129.805141][   T26] audit: type=1326 audit(1758377260.529:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  130.439360][   T26] audit: type=1326 audit(1758377260.629:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  130.802653][ T4886] loop3: detected capacity change from 0 to 512
[  131.359827][   T26] audit: type=1326 audit(1758377260.649:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  131.411191][ T4886] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.165: bg 0: block 393: padding at end of block bitmap is not set
[  131.972444][ T4886] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  131.986888][ T4914] loop0: detected capacity change from 0 to 512
[  132.022281][   T26] audit: type=1326 audit(1758377260.649:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  132.053354][ T4886] EXT4-fs (loop3): 2 truncates cleaned up
[  132.112267][ T4886] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  132.189154][   T26] audit: type=1326 audit(1758377260.659:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  132.242394][ T4917] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  132.304060][   T26] audit: type=1326 audit(1758377260.719:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  132.326169][   T26] audit: type=1326 audit(1758377260.729:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  132.378587][ T4914] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option
[  132.413528][ T4914] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  132.441544][   T26] audit: type=1326 audit(1758377260.739:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  132.467662][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  132.474792][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  132.490291][ T4914] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01d, mo2=0102]
[  132.577575][ T4914] EXT4-fs (loop0): couldn't mount RDWR because of unsupported optional features (80)
[  132.675792][ T4914] EXT4-fs (loop0): Skipping orphan cleanup due to unknown ROCOMPAT features
[  132.711217][   T26] audit: type=1326 audit(1758377260.789:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f41ce0c3b47 code=0x7ffc0000
[  132.734033][ T4914] EXT4-fs (loop0): mounted filesystem without journal. Opts: nombcache,abort,nomblk_io_submit,noblock_validity,nolazytime,jqfmt=vfsold,jqfmt=vfsv0,barrier=0x000000000000d95a,debug,,errors=continue. Quota mode: none.
[  132.761954][   T26] audit: type=1326 audit(1758377260.899:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4898 comm="syz.1.169" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f41ce0c3abc code=0x7ffc0000
[  132.788776][ T4914] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.171: dx entry: limit 65535 != root limit 120
[  132.830340][ T4914] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.171: Corrupt directory, running e2fsck is recommended
[  132.912383][ T4339] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[  133.285901][ T4925] futex_wake_op: syz.3.176 tries to shift op by -1; fix this program
[  133.433292][ T4339] usb 3-1: Using ep0 maxpacket: 16
[  133.592552][ T4339] usb 3-1: config 0 has an invalid interface number: 224 but max is 0
[  133.650743][ T4339] usb 3-1: config 0 has no interface number 0
[  133.790512][ T4339] usb 3-1: config 0 interface 224 altsetting 255 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  134.119463][ T4339] usb 3-1: config 0 interface 224 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 4
[  134.383147][ T4339] usb 3-1: config 0 interface 224 has no altsetting 0
[  134.529016][ T4339] usb 3-1: New USB device found, idVendor=046d, idProduct=c24f, bcdDevice= 0.00
[  134.745739][ T4339] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  135.079838][ T4339] usb 3-1: config 0 descriptor??
[  136.038084][   T26] kauditd_printk_skb: 3 callbacks suppressed
[  136.038097][   T26] audit: type=1800 audit(1758377266.769:69): pid=4935 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.178" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  136.038339][ T4935] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -4
[  136.074207][ T4935] platform regulatory.0: Direct firmware load for regulatory.db failed with error -4
[  136.083745][ T4935] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  136.192339][ T4935] syz.3.178 (4935) used greatest stack depth: 19744 bytes left
[  136.307419][ T4943] binder: 4942:4943 ioctl 4018620d 0 returned -22
[  137.378954][ T4339] usbhid 3-1:0.224: can't add hid device: -71
[  137.583407][ T4946] loop3: detected capacity change from 0 to 8192
[  137.591014][ T4339] usbhid: probe of 3-1:0.224 failed with error -71
[  137.602491][ T4339] usb 3-1: USB disconnect, device number 4
[  139.241679][ T4960] loop4: detected capacity change from 0 to 512
[  139.507808][ T4960] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.186: bg 0: block 393: padding at end of block bitmap is not set
[  139.524377][ T4960] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  139.543200][ T4960] EXT4-fs (loop4): 2 truncates cleaned up
[  139.548973][ T4960] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  140.256462][ T4951] xt_NFQUEUE: number of total queues is 0
[  140.558377][ T4302] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  140.575110][ T4969] nf_conntrack: default automatic helper assignment has been turned off for security reasons and CT-based firewall rule not found. Use the iptables CT target to attach helpers instead.
[  141.158178][ T4974] overlayfs: failed to clone upperpath
[  141.735050][ T4302] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  141.784932][ T4302] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  141.828734][ T4302] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00
[  141.866468][ T4302] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  141.900320][ T4302] usb 1-1: config 0 descriptor??
[  142.947071][ T4302] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  143.008063][ T4302] cp2112 0003:10C4:EA90.0001: unknown main item tag 0x0
[  143.056568][ T4302] cp2112 0003:10C4:EA90.0001: item fetching failed at offset 2/7
[  143.085725][ T4302] cp2112 0003:10C4:EA90.0001: parse failed
[  143.104338][ T4302] cp2112: probe of 0003:10C4:EA90.0001 failed with error -22
[  143.129845][ T4302] usb 1-1: USB disconnect, device number 2
[  144.947066][ T5010] loop0: detected capacity change from 0 to 1024
[  145.015806][ T5010] EXT4-fs (loop0): Ignoring removed nobh option
[  145.022093][ T5010] EXT4-fs (loop0): Ignoring removed bh option
[  145.096682][ T5010] EXT4-fs (loop0): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  145.227697][ T5010] EXT4-fs (loop0): mounted filesystem without journal. Opts: delalloc,nombcache,barrier,dioread_lock,stripe=0x0000000000000008,resgid=0x0000000000000000,data_err=ignore,jqfmt=vfsv0,nobh,user_xattr,bh,dioread_nolock,,errors=continue. Quota mode: none.
[  146.611911][ T5030] loop0: detected capacity change from 0 to 512
[  146.718764][ T5030] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  146.834400][ T5030] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  147.441578][ T5023] loop4: detected capacity change from 0 to 40427
[  147.522796][ T5023] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[  147.522918][ T4222] usb 1-1: new full-speed USB device number 3 using dummy_hcd
[  147.544220][ T5023] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  147.590638][ T5023] F2FS-fs (loop4): invalid crc value
[  147.635588][ T5042] loop2: detected capacity change from 0 to 512
[  147.707534][ T5023] F2FS-fs (loop4): Found nat_bits in checkpoint
[  150.312804][ T5042] EXT4-fs (loop2): Ignoring removed nomblk_io_submit option
[  150.337229][ T5042] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  150.607094][ T5042] EXT4-fs: failed to create workqueue
[  150.766265][ T4222] usb 1-1: device descriptor read/all, error -71
[  150.775592][ T5042] EXT4-fs (loop2): mount failed
[  151.608003][ T5064] overlayfs: failed to clone upperpath
[  151.913680][ T5068] loop4: detected capacity change from 0 to 256
[  152.058814][ T5068] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  152.069577][ T5068] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  152.109084][ T5068] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x44ede5da, utbl_chksum : 0xe619d30d)
[  152.593451][ T5070] loop2: detected capacity change from 0 to 256
[  152.635575][ T5070] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  154.561525][ T5089] loop3: detected capacity change from 0 to 1024
[  154.570169][ T5091] syz.0.224[5091] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.570260][ T5091] syz.0.224[5091] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  154.602902][ T5089] EXT4-fs (loop3): Ignoring removed nomblk_io_submit option
[  154.664687][ T5089] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c018, mo2=0002]
[  154.683833][ T5089] System zones: 0-1, 3-12
[  154.728873][ T5089] EXT4-fs (loop3): mounted filesystem without journal. Opts: nomblk_io_submit,debug,errors=continue,sysvgroups,debug_want_extra_isize=0x0000000000000080,resuid=0x0000000000000000,jqfmt=vfsv1,acl,jqfmt=vfsv1,,errors=continue. Quota mode: none.
[  154.807580][ T5089] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.223: bg 0: block 88: padding at end of block bitmap is not set
[  154.879064][ T5082] loop4: detected capacity change from 0 to 40427
[  154.928193][ T5089] syz.3.223 (5089) used greatest stack depth: 19496 bytes left
[  154.978274][ T5082] F2FS-fs (loop4): Small segment_count (9 < 1 * 24)
[  155.005373][ T5082] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[  155.052006][ T5082] F2FS-fs (loop4): Found nat_bits in checkpoint
[  155.218455][ T5082] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[  155.239243][ T5082] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[  155.612516][ T2366] usb 4-1: new high-speed USB device number 4 using dummy_hcd
[  156.054897][ T4195] attempt to access beyond end of device
[  156.054897][ T4195] loop4: rw=2049, want=45104, limit=40427
[  156.082503][ T2366] usb 4-1: config 0 has an invalid interface number: 182 but max is 1
[  156.090856][ T2366] usb 4-1: config 0 has no interface number 1
[  156.137187][ T5115] loop0: detected capacity change from 0 to 256
[  156.263666][ T5115] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  156.272861][ T2366] usb 4-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice=9c.af
[  156.282562][ T2366] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  156.292603][ T2366] usb 4-1: config 0 descriptor??
[  157.661713][   T26] audit: type=1326 audit(1758377288.389:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.388596][   T26] audit: type=1326 audit(1758377288.419:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.474010][   T26] audit: type=1326 audit(1758377288.449:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.521737][   T26] audit: type=1326 audit(1758377288.449:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.646933][   T26] audit: type=1326 audit(1758377288.489:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5128 comm="syz.2.235" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.686086][   T26] audit: type=1326 audit(1758377289.199:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5133 comm="syz.2.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.709033][   T26] audit: type=1326 audit(1758377289.199:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5133 comm="syz.2.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.735723][ T5142] loop4: detected capacity change from 0 to 512
[  158.743380][   T26] audit: type=1326 audit(1758377289.199:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5133 comm="syz.2.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  158.774420][   T26] audit: type=1326 audit(1758377289.199:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5133 comm="syz.2.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  159.359334][   T26] audit: type=1326 audit(1758377289.199:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5133 comm="syz.2.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff5ccad1c29 code=0x7ffc0000
[  159.428237][ T2366] usb 4-1: USB disconnect, device number 4
[  159.656899][ T5150] loop2: detected capacity change from 0 to 512
[  160.252222][ T4237] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  160.505282][ T4237] usb 1-1: Using ep0 maxpacket: 16
[  160.642285][ T4237] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  160.661264][ T5142] EXT4-fs (loop4): Ignoring removed nomblk_io_submit option
[  160.682578][ T4237] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0
[  160.707716][ T4237] usb 1-1: config 0 interface 0 has no altsetting 0
[  160.714793][ T4237] usb 1-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00
[  160.727736][ T4237] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  160.739842][ T4237] usb 1-1: config 0 descriptor??
[  160.742418][ T5142] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2228: inode #15: comm syz.4.230: corrupted in-inode xattr
[  160.813117][ T5150] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[  160.831965][ T5142] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.230: couldn't read orphan inode 15 (err -117)
[  160.839116][ T5150] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c118, mo2=0002]
[  160.850956][ T5142] EXT4-fs (loop4): mounted filesystem without journal. Opts: jqfmt=vfsold,inode_readahead_blks=0x0000000000000008,noblock_validity,noload,delalloc,max_batch_time=0x0000000000000001,discard,inode_readahead_blks=0x0000000000080000,nomblk_io_submit,init_itable=0x0000000000000fff,,errors=continue. Quota mode: none.
[  160.858445][ T5150] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2228: inode #15: comm syz.2.240: corrupted in-inode xattr
[  160.900844][ T5150] EXT4-fs error (device loop2): ext4_orphan_get:1406: comm syz.2.240: couldn't read orphan inode 15 (err -117)
[  160.918839][ T5150] EXT4-fs (loop2): mounted filesystem without journal. Opts: jqfmt=vfsold,max_batch_time=0x0000000000000001,debug,noload,jqfmt=vfsv1,noblock_validity,init_itable=0x0000000000000601,max_dir_size_kb=0x0000000000000002,usrjquota=,,errors=continue. Quota mode: none.
[  161.150930][ T5165] syz.1.243[5165] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  161.151465][ T5165] syz.1.243[5165] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.067449][ T4237] hid (null): report_id 3323596431 is invalid
[  162.084843][ T4237] hid (null): unknown global tag 0xe
[  162.090397][ T4237] hid (null): unknown global tag 0xe
[  162.095744][ T4237] hid (null): unknown global tag 0xe
[  162.101848][ T4237] hid (null): unknown global tag 0x63
[  162.108742][ T4237] hid (null): unknown global tag 0xe4
[  162.114197][ T4237] hid (null): usage index exceeded
[  162.160634][ T4237] usb 1-1: USB disconnect, device number 5
[  162.289674][ T5171] loop2: detected capacity change from 0 to 256
[  162.834377][ T5171] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  162.895915][ T5178] loop3: detected capacity change from 0 to 512
[  165.020811][ T5178] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.247: bg 0: block 393: padding at end of block bitmap is not set
[  165.041740][ T5178] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  165.055779][ T5178] EXT4-fs (loop3): 2 truncates cleaned up
[  165.061590][ T5178] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  165.938525][ T5197] futex_wake_op: syz.2.253 tries to shift op by 35; fix this program
[  168.187011][ T5216] loop4: detected capacity change from 0 to 256
[  168.528448][ T5194] loop2: detected capacity change from 0 to 512
[  169.209655][ T5216] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  169.334699][ T5194] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  170.008103][ T5194] EXT4-fs: failed to create workqueue
[  170.152037][ T5194] EXT4-fs (loop2): mount failed
[  170.430008][ T5237] loop3: detected capacity change from 0 to 512
[  170.477250][ T5237] EXT4-fs (loop3): Ignoring removed nobh option
[  170.492427][ T5237] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  170.571612][ T5237] EXT4-fs (loop3): 1 truncate cleaned up
[  170.582407][ T5237] EXT4-fs (loop3): mounted filesystem without journal. Opts: i_version,nobh,data_err=ignore,nolazytime,init_itable=0x0000000000000004,acl,,errors=continue. Quota mode: none.
[  171.825164][ T5253] loop4: detected capacity change from 0 to 8192
[  171.889757][ T5253] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  173.006490][ T5272] overlayfs: failed to clone upperpath
[  173.026569][ T5270] loop0: detected capacity change from 0 to 512
[  173.633033][ T5270] EXT4-fs (loop0): Test dummy encryption mode enabled
[  173.639909][ T5270] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  173.855329][ T5284] loop4: detected capacity change from 0 to 512
[  174.072210][ T5284] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.280: bg 0: block 393: padding at end of block bitmap is not set
[  174.089277][ T5284] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  174.104225][ T5284] EXT4-fs (loop4): 2 truncates cleaned up
[  174.110053][ T5284] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  174.174065][ T5270] EXT4-fs (loop0): 1 truncate cleaned up
[  174.240851][ T5270] EXT4-fs (loop0): mounted filesystem without journal. Opts: test_dummy_encryption,jqfmt=vfsv0,inode_readahead_blks=0x0000000000040000,,errors=continue. Quota mode: none.
[  175.713678][ T5270] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni"
[  176.844567][   T26] kauditd_printk_skb: 14 callbacks suppressed
[  176.844581][   T26] audit: type=1326 audit(1758377307.579:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  176.881256][   T26] audit: type=1326 audit(1758377307.579:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  176.969643][   T26] audit: type=1326 audit(1758377307.579:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=88 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  177.031228][   T26] audit: type=1326 audit(1758377307.579:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  177.058763][   T26] audit: type=1326 audit(1758377307.579:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  177.116987][   T26] audit: type=1326 audit(1758377307.579:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=89 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  177.177706][   T26] audit: type=1326 audit(1758377307.579:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  177.207667][   T26] audit: type=1326 audit(1758377307.579:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  177.814625][   T26] audit: type=1326 audit(1758377307.609:102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  177.971327][   T26] audit: type=1326 audit(1758377307.609:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5313 comm="syz.4.288" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2565c6ac29 code=0x7ffc0000
[  178.246139][ T5328] 9pnet: p9_errstr2errno: server reported unknown error 
[  178.895845][ T5314] bridge0: port 2(bridge_slave_1) entered disabled state
[  178.904132][ T5314] bridge0: port 1(bridge_slave_0) entered disabled state
[  180.429327][ T5355] loop0: detected capacity change from 0 to 512
[  180.670741][ T5355] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.298: bg 0: block 393: padding at end of block bitmap is not set
[  180.687103][ T5355] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  180.703445][ T5355] EXT4-fs (loop0): 2 truncates cleaned up
[  180.709407][ T5355] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  180.973797][ T4263] Bluetooth: hci0: command 0x0406 tx timeout
[  181.011618][ T4263] Bluetooth: hci1: command 0x0406 tx timeout
[  181.042037][ T4263] Bluetooth: hci2: command 0x0406 tx timeout
[  181.052225][ T4263] Bluetooth: hci3: command 0x0406 tx timeout
[  181.059166][ T4263] Bluetooth: hci4: command 0x0406 tx timeout
[  181.450467][ T5376] loop2: detected capacity change from 0 to 1024
[  181.495108][ T5376] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  181.581803][ T5314] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  181.631967][ T5314] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  182.060680][ T5314] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.070223][ T5314] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.080178][ T5314] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.090209][ T5314] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  182.193582][ T5384] loop0: detected capacity change from 0 to 256
[  182.231329][ T5386] loop2: detected capacity change from 0 to 512
[  182.238317][ T5384] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  182.285441][ T5386] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  182.385514][ T5386] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.310: bg 0: block 384: padding at end of block bitmap is not set
[  182.448942][ T5390] loop4: detected capacity change from 0 to 512
[  182.476256][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  182.499535][ T5386] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  182.537260][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  182.560908][ T5386] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #11: comm syz.2.310: attempt to clear invalid blocks 983260 len 1
[  182.579781][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  182.586710][ T5386] EXT4-fs error (device loop2): __ext4_get_inode_loc:4321: comm syz.2.310: Invalid inode table block 0 in block_group 0
[  182.620027][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  182.637079][ T5386] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5836: Corrupt filesystem
[  182.661456][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  182.681295][ T5386] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  182.705706][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  182.729158][ T5386] EXT4-fs error (device loop2): __ext4_get_inode_loc:4321: comm syz.2.310: Invalid inode table block 0 in block_group 0
[  183.477306][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  183.512712][ T5386] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5836: Corrupt filesystem
[  183.535670][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  183.541120][ T5390] EXT4-fs error (device loop4): ext4_orphan_get:1401: inode #15: comm syz.4.311: casefold flag without casefold feature
[  183.560407][ T5386] EXT4-fs error (device loop2): ext4_truncate:4273: inode #11: comm syz.2.310: mark_inode_dirty error
[  183.573292][ T5390] EXT4-fs error (device loop4): ext4_orphan_get:1406: comm syz.4.311: couldn't read orphan inode 15 (err -117)
[  183.588654][ T5390] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  183.725518][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  183.732327][ T5386] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  183.757486][ T5386] EXT4-fs (loop2): Remounting filesystem read-only
[  183.770348][ T5390] netlink: 40 bytes leftover after parsing attributes in process `syz.4.311'.
[  183.774585][ T5386] EXT4-fs (loop2): 1 truncate cleaned up
[  183.795516][ T5386] EXT4-fs (loop2): mounted filesystem without journal. Opts: errors=remount-ro,resuid=0x0000000000000000,max_dir_size_kb=0x00000000000001ff,noblock_validity,. Quota mode: none.
[  183.933881][ T5407] loop3: detected capacity change from 0 to 512
[  184.673357][ T5415] overlayfs: failed to clone upperpath
[  184.718143][ T5407] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.312: bg 0: block 393: padding at end of block bitmap is not set
[  184.871500][ T5407] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6178: Corrupt filesystem
[  184.880993][ T5407] EXT4-fs (loop3): 2 truncates cleaned up
[  184.886819][ T5407] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  185.501276][ T5433] x_tables: duplicate underflow at hook 1
[  186.406910][ T5438] loop3: detected capacity change from 0 to 256
[  186.560633][ T5438] exfat: Unknown parameter '�–üÖ#¸™~1eGbwutf8'
[  187.135655][ T5452] netlink: 'syz.0.329': attribute type 3 has an invalid length.
[  187.144973][ T5452] netlink: 'syz.0.329': attribute type 3 has an invalid length.
[  187.796432][ T5464] loop3: detected capacity change from 0 to 16
[  188.309310][ T5464] erofs: (device loop3): mounted with root inode @ nid 36.
[  188.366185][ T5464] attempt to access beyond end of device
[  188.366185][ T5464] loop3: rw=0, want=24, limit=16
[  190.686073][   T26] kauditd_printk_skb: 44 callbacks suppressed
[  190.686103][   T26] audit: type=1326 audit(1758377321.409:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  191.143742][   T26] audit: type=1326 audit(1758377321.509:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  191.166478][   T26] audit: type=1326 audit(1758377321.559:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  191.192366][   T26] audit: type=1326 audit(1758377321.579:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  191.215152][   T26] audit: type=1326 audit(1758377321.629:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  191.241773][   T26] audit: type=1326 audit(1758377321.779:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=448 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  191.266969][   T26] audit: type=1326 audit(1758377321.779:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  191.289261][   T26] audit: type=1326 audit(1758377321.779:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5476 comm="syz.3.337" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  192.291726][ T5496] futex_wake_op: syz.0.342 tries to shift op by -1; fix this program
[  193.441530][ T5508] loop2: detected capacity change from 0 to 1024
[  193.485820][ T5508] EXT4-fs (loop2): Ignoring removed orlov option
[  193.608649][ T5508] EXT4-fs (loop2): mounted filesystem without journal. Opts: barrier,nodioread_nolock,noquota,barrier,noload,orlov,,errors=continue. Quota mode: none.
[  193.632354][ T5508] ext4 filesystem being mounted at /66/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  193.647101][ T5516] overlayfs: failed to clone upperpath
[  193.741656][ T5519] loop0: detected capacity change from 0 to 1024
[  193.762725][ T5508] EXT4-fs error (device loop2): ext4_map_blocks:739: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  193.848141][ T5508] EXT4-fs (loop2): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  193.881967][ T5508] EXT4-fs (loop2): This should not happen!! Data will be lost
[  193.881967][ T5508] 
[  193.912474][ T1422] ieee802154 phy0 wpan0: encryption failed: -22
[  193.913603][ T5520] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  193.918777][ T1422] ieee802154 phy1 wpan1: encryption failed: -22
[  194.001385][ T5507] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  194.031161][ T5519] EXT4-fs (loop0): mounted filesystem without journal. Opts: user_xattr,nodioread_nolock,,errors=continue. Quota mode: none.
[  194.078922][ T5519] ext4 filesystem being mounted at /83/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.234875][ T5520] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  194.249602][ T5519] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1147: group 0, block bitmap and bg descriptor inconsistent: 21 vs 268369941 free clusters
[  194.250164][ T5520] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  194.469002][ T5507] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  194.701834][ T5520] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  194.896118][ T5519] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 319 with max blocks 1 with error 28
[  195.004182][ T5519] EXT4-fs (loop0): This should not happen!! Data will be lost
[  195.004182][ T5519] 
[  195.034668][ T5519] EXT4-fs (loop0): Total free blocks count 0
[  195.068103][ T5520] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  195.083743][ T5519] EXT4-fs (loop0): Free/Dirty block details
[  195.089661][ T5519] EXT4-fs (loop0): free_blocks=4293918720
[  195.095598][ T5519] EXT4-fs (loop0): dirty_blocks=16
[  195.100780][ T5519] EXT4-fs (loop0): Block reservation details
[  195.106819][ T5519] EXT4-fs (loop0): i_reserved_data_blocks=1
[  195.121996][ T5520] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  195.150654][ T5520] EXT4-fs error (device loop2): ext4_map_blocks:629: inode #15: comm syz.2.348: lblock 0 mapped to illegal pblock 0 (length 1)
[  196.529271][ T5551] loop0: detected capacity change from 0 to 128
[  197.644668][ T5547] loop3: detected capacity change from 0 to 40427
[  197.786188][ T5547] F2FS-fs (loop3): invalid crc value
[  197.836567][ T5547] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109)
[  198.053756][ T5547] F2FS-fs (loop3): Cannot turn on quotas: -2 on 0
[  198.070387][ T5547] F2FS-fs (loop3): Start checkpoint disabled!
[  198.182773][   T26] audit: type=1326 audit(1758377328.839:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  198.693839][ T5547] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[  198.757825][   T26] audit: type=1326 audit(1758377328.839:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  198.849473][   T26] audit: type=1326 audit(1758377328.849:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=277 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  198.952251][   T26] audit: type=1326 audit(1758377328.849:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  198.989466][   T26] audit: type=1326 audit(1758377328.849:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5568 comm="syz.1.368" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  198.992251][ T4404] attempt to access beyond end of device
[  198.992251][ T4404] loop3: rw=2049, want=45104, limit=40427
[  200.111339][ T5598] binfmt_misc: register: failed to install interpreter file ./file2
[  201.364830][ T5612] loop4: detected capacity change from 0 to 512
[  201.422273][ T5612] EXT4-fs (loop4): Ignoring removed nobh option
[  201.428695][ T5612] EXT4-fs (loop4): Unrecognized mount option "smackfsdef=*" or missing value
[  201.673783][ T5612] loop4: detected capacity change from 0 to 4096
[  201.698311][   T26] audit: type=1326 audit(1758377332.429:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5624 comm="syz.3.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  201.734118][   T26] audit: type=1326 audit(1758377332.459:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5624 comm="syz.3.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  201.869449][ T5612] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue. Quota mode: writeback.
[  202.924348][   T26] audit: type=1326 audit(1758377332.459:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5624 comm="syz.3.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  202.996570][   T26] audit: type=1326 audit(1758377332.459:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5624 comm="syz.3.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  203.110261][   T26] audit: type=1326 audit(1758377332.459:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5624 comm="syz.3.388" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9b9785cc29 code=0x7ffc0000
[  204.619338][ T5649] fs-verity: sha256 using implementation "sha256-avx2"
[  204.819328][ T5649] fs-verity (loop4, inode 16): Error -4 building Merkle tree
[  206.324315][ T5663] netlink: 12 bytes leftover after parsing attributes in process `syz.3.398'.
[  206.602221][ T5663] device veth3 entered promiscuous mode
[  206.608199][   T26] kauditd_printk_skb: 7 callbacks suppressed
[  206.608210][   T26] audit: type=1326 audit(1758377337.319:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  206.727199][   T26] audit: type=1326 audit(1758377337.319:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  206.750068][   T26] audit: type=1326 audit(1758377337.319:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  206.782235][    C0] ------------[ cut here ]------------
[  206.787962][    C0] WARNING: CPU: 0 PID: 5660 at mm/maccess.c:226 copy_from_user_nofault+0x160/0x1c0
[  206.797362][    C0] Modules linked in:
[  206.801274][    C0] CPU: 0 PID: 5660 Comm: syz.3.398 Not tainted syzkaller #0
[  206.808679][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  206.818779][    C0] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[  206.824993][    C0] Code: 24 45 31 f6 31 ff 89 de e8 3d f7 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 c0 f3 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[  206.844671][    C0] RSP: 0018:ffffc900000079d8 EFLAGS: 00010246
[  206.850756][    C0] RAX: ffffffff819ed760 RBX: 0000000000000008 RCX: ffff888022043b80
[  206.858767][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  206.866778][    C0] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffed1004408771
[  206.874790][    C0] R10: ffffed1004408771 R11: 1ffff11004408770 R12: ffff888022045308
[  206.882891][    C0] R13: 00007ffffffff000 R14: ffffc90000007a48 R15: 0000000000000000
[  206.890868][    C0] FS:  0000000000000000(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  206.899850][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  206.906472][    C0] CR2: 0000000000000000 CR3: 000000000be8e000 CR4: 00000000003506f0
[  206.914502][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  206.922514][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  206.930491][    C0] Call Trace:
[  206.933799][    C0]  <IRQ>
[  206.936653][    C0]  bpf_probe_read_compat+0xdd/0x170
[  206.937831][   T26] audit: type=1326 audit(1758377337.389:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  206.941866][    C0]  bpf_prog_ee60aafa828f4cb7+0x35/0xe48
[  206.969635][    C0]  bpf_trace_run2+0x15b/0x2d0
[  206.974478][    C0]  ? bpf_trace_run1+0x2d0/0x2d0
[  206.979370][    C0]  ? deferred_put_nlk_sk+0x3f/0xe0
[  206.984542][    C0]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[  206.989938][    C0]  ? deferred_put_nlk_sk+0x3f/0xe0
[  206.995096][    C0]  __bpf_trace_kfree+0x6e/0x90
[  206.999882][    C0]  ? deferred_put_nlk_sk+0x3f/0xe0
[  207.005038][    C0]  kfree+0x25f/0x2a0
[  207.009060][    C0]  ? _raw_spin_unlock+0x40/0x40
[  207.013951][    C0]  deferred_put_nlk_sk+0x3f/0xe0
[  207.018905][    C0]  rcu_core+0x962/0x15d0
[  207.023198][    C0]  ? local_bh_disable+0x20/0x20
[  207.028063][    C0]  ? lockdep_softirqs_on+0x570/0x570
[  207.032244][   T26] audit: type=1326 audit(1758377337.389:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  207.033393][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  207.061504][    C0]  ? lock_chain_count+0x20/0x20
[  207.066395][    C0]  ? sched_clock_cpu+0x15/0x3c0
[  207.071271][    C0]  ? ktime_get_real_ts64+0x420/0x420
[  207.076604][    C0]  handle_softirqs+0x328/0x820
[  207.081383][    C0]  ? __irq_exit_rcu+0x12f/0x220
[  207.086265][    C0]  ? do_softirq+0x200/0x200
[  207.090779][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  207.096015][    C0]  __irq_exit_rcu+0x12f/0x220
[  207.100698][    C0]  ? irq_exit_rcu+0x20/0x20
[  207.105273][    C0]  irq_exit_rcu+0x5/0x20
[  207.109547][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  207.115230][    C0]  </IRQ>
[  207.115533][   T26] audit: type=1326 audit(1758377337.389:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  207.118184][    C0]  <TASK>
[  207.118194][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  207.149295][    C0] RIP: 0010:unwind_next_frame+0x1179/0x1d90
[  207.155260][    C0] Code: 48 01 c6 48 89 df 4c 89 fa e8 33 0c 00 00 84 c0 0f 84 b4 03 00 00 49 bd 00 00 00 00 00 fc ff df 48 8b 44 24 48 42 0f b6 04 28 <84> c0 0f 85 30 08 00 00 8b 44 24 7c 39 03 0f 85 ff 00 00 00 48 8b
[  207.174945][    C0] RSP: 0018:ffffc9000399eda8 EFLAGS: 00000202
[  207.181031][    C0] RAX: 0000000000000000 RBX: ffffc9000399ee68 RCX: 0000000000000001
[  207.189044][    C0] RDX: ffffc9000399eea8 RSI: ffffc9000399f970 RDI: ffffc9000399f970
[  207.197053][    C0] RBP: ffffc9000399eeb0 R08: dffffc0000000000 R09: ffffc9000399eeb8
[  207.201485][   T26] audit: type=1326 audit(1758377337.389:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  207.205068][    C0] R10: fffff52000733dd9 R11: 1ffff92000733dd7 R12: 1ffffffff1bdf134
[  207.205087][    C0] R13: dffffc0000000000 R14: ffffc9000399eeb8 R15: ffffffff8def89a0
[  207.205121][    C0]  ? unwind_next_frame+0x115d/0x1d90
[  207.205154][    C0]  ? dput+0xd8/0x1a0
[  207.205179][    C0]  ? stack_trace_save+0xe0/0xe0
[  207.205199][    C0]  arch_stack_walk+0x10c/0x140
[  207.262157][    C0]  ? __fput+0x5ee/0x930
[  207.266339][    C0]  stack_trace_save+0x98/0xe0
[  207.271025][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  207.276188][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  207.282208][    C0]  ? lock_chain_count+0x20/0x20
[  207.287071][    C0]  save_stack+0xf3/0x1e0
[  207.288882][   T26] audit: type=1326 audit(1758377337.399:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  207.291324][    C0]  ? __reset_page_owner+0x180/0x180
[  207.318654][    C0]  ? free_unref_page_prepare+0x637/0x6c0
[  207.324353][    C0]  ? free_unref_page_list+0x122/0x7e0
[  207.329753][    C0]  ? release_pages+0x184b/0x1bb0
[  207.331408][ T5673] loop4: detected capacity change from 0 to 256
[  207.334738][    C0]  ? __pagevec_release+0x6d/0xe0
[  207.334761][    C0]  ? shmem_undo_range+0x5cb/0x1880
[  207.334783][    C0]  ? shmem_evict_inode+0x20d/0xa00
[  207.334805][    C0]  ? evict+0x485/0x870
[  207.334825][    C0]  ? __dentry_kill+0x431/0x650
[  207.334845][    C0]  ? dentry_kill+0xb8/0x290
[  207.334864][    C0]  ? dput+0xd8/0x1a0
[  207.373503][    C0]  ? sched_clock_cpu+0x15/0x3c0
[  207.378501][    C0]  ? debug_check_no_obj_freed+0x515/0x530
[  207.384292][    C0]  __reset_page_owner+0x51/0x180
[  207.389266][    C0]  free_unref_page_prepare+0x637/0x6c0
[  207.394804][    C0]  free_unref_page_list+0x122/0x7e0
[  207.400032][    C0]  ? free_unref_page_commit+0x4c0/0x4c0
[  207.405644][    C0]  release_pages+0x184b/0x1bb0
[  207.410542][    C0]  ? lru_cache_disable+0x30/0x30
[  207.415551][    C0]  ? page_cache_free_page+0x20d/0x4e0
[  207.420940][    C0]  __pagevec_release+0x6d/0xe0
[  207.425755][    C0]  shmem_undo_range+0x5cb/0x1880
[  207.430717][    C0]  ? __lock_acquire+0x13ad/0x7c60
[  207.435776][    C0]  ? shmem_truncate_range+0xa0/0xa0
[  207.435943][   T26] audit: type=1326 audit(1758377337.409:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5661 comm="syz.1.401" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f41ce0c1c29 code=0x7ffc0000
[  207.440998][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  207.464579][ T5673] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  207.468224][    C0]  ? percpu_counter_add_batch+0x13b/0x160
[  207.484558][    C0]  shmem_evict_inode+0x20d/0xa00
[  207.489519][    C0]  ? _raw_spin_unlock+0x24/0x40
[  207.494505][    C0]  ? inode_wait_for_writeback+0x1b0/0x200
[  207.500255][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  207.505844][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  207.510879][    C0]  ? bit_waitqueue+0x30/0x30
[  207.515512][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  207.520722][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  207.526326][    C0]  evict+0x485/0x870
[  207.530230][    C0]  ? __lock_acquire+0x7c60/0x7c60
[  207.535322][    C0]  ? proc_nr_inodes+0x320/0x320
[  207.540206][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  207.545441][    C0]  ? _raw_spin_unlock+0x24/0x40
[  207.549875][ T5673] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  207.550302][    C0]  ? iput+0x706/0x8a0
[  207.562740][    C0]  __dentry_kill+0x431/0x650
[  207.567341][    C0]  dentry_kill+0xb8/0x290
[  207.571686][    C0]  dput+0xd8/0x1a0
[  207.575444][    C0]  __fput+0x5ee/0x930
[  207.579449][    C0]  task_work_run+0x125/0x1a0
[  207.584084][    C0]  do_exit+0x61e/0x20a0
[  207.588283][    C0]  ? put_task_struct+0x80/0x80
[  207.593080][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  207.599074][    C0]  ? lock_chain_count+0x20/0x20
[  207.603968][    C0]  ? _raw_spin_lock_irq+0xab/0xe0
[  207.609009][    C0]  do_group_exit+0x12e/0x300
[  207.613636][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  207.618848][    C0]  get_signal+0x6ca/0x12c0
[  207.623331][    C0]  arch_do_signal_or_restart+0xc1/0x1300
[  207.628980][    C0]  ? __sys_recvmmsg+0x280/0x280
[  207.633885][    C0]  ? get_sigframe_size+0x10/0x10
[  207.638850][    C0]  ? __x64_sys_recvmmsg+0x18d/0x240
[  207.643247][ T5673] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  207.644109][    C0]  ? exit_to_user_mode_loop+0x3b/0x130
[  207.661537][    C0]  exit_to_user_mode_loop+0x9e/0x130
[  207.666860][    C0]  exit_to_user_mode_prepare+0xee/0x180
[  207.672456][    C0]  syscall_exit_to_user_mode+0x16/0x40
[  207.677928][    C0]  do_syscall_64+0x58/0xa0
[  207.682395][    C0]  ? clear_bhb_loop+0x30/0x80
[  207.687082][    C0]  ? clear_bhb_loop+0x30/0x80
[  207.691764][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  207.697708][    C0] RIP: 0033:0x7f9b9785cc29
[  207.702158][    C0] Code: Unable to access opcode bytes at RIP 0x7f9b9785cbff.
[  207.709610][    C0] RSP: 002b:00007f9b95aa3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  207.718075][    C0] RAX: 0000000000010106 RBX: 00007f9b97aa4090 RCX: 00007f9b9785cc29
[  207.726081][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000004
[  207.734113][    C0] RBP: 00007f9b978dfe41 R08: 0000000000000000 R09: 0000000000000000
[  207.742101][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  207.750105][    C0] R13: 00007f9b97aa4128 R14: 00007f9b97aa4090 R15: 00007ffef9c6f048
[  207.758127][    C0]  </TASK>
[  207.761159][    C0] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  207.768608][    C0] CPU: 0 PID: 5660 Comm: syz.3.398 Not tainted syzkaller #0
[  207.775895][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  207.785948][    C0] Call Trace:
[  207.789230][    C0]  <IRQ>
[  207.792079][    C0]  dump_stack_lvl+0x168/0x230
[  207.796769][    C0]  ? show_regs_print_info+0x20/0x20
[  207.801974][    C0]  ? load_image+0x3b0/0x3b0
[  207.806501][    C0]  panic+0x2c9/0x7f0
[  207.810407][    C0]  ? bpf_jit_dump+0xd0/0xd0
[  207.814932][    C0]  ? copy_from_user_nofault+0x160/0x1c0
[  207.820602][    C0]  __warn+0x248/0x2b0
[  207.824592][    C0]  ? copy_from_user_nofault+0x160/0x1c0
[  207.830155][    C0]  report_bug+0x1b7/0x2e0
[  207.834500][    C0]  handle_bug+0x3a/0x70
[  207.838673][    C0]  exc_invalid_op+0x16/0x40
[  207.843188][    C0]  asm_exc_invalid_op+0x16/0x20
[  207.848126][    C0] RIP: 0010:copy_from_user_nofault+0x160/0x1c0
[  207.854297][    C0] Code: 24 45 31 f6 31 ff 89 de e8 3d f7 d8 ff 85 db 48 c7 c0 f2 ff ff ff 49 0f 44 c6 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 c0 f3 d8 ff <0f> 0b e9 1c ff ff ff 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c ea fe
[  207.873912][    C0] RSP: 0018:ffffc900000079d8 EFLAGS: 00010246
[  207.879986][    C0] RAX: ffffffff819ed760 RBX: 0000000000000008 RCX: ffff888022043b80
[  207.887971][    C0] RDX: 0000000000000100 RSI: 0000000000000000 RDI: 0000000000000000
[  207.895948][    C0] RBP: 0000000000000000 R08: dffffc0000000000 R09: ffffed1004408771
[  207.903925][    C0] R10: ffffed1004408771 R11: 1ffff11004408770 R12: ffff888022045308
[  207.911905][    C0] R13: 00007ffffffff000 R14: ffffc90000007a48 R15: 0000000000000000
[  207.919897][    C0]  ? copy_from_user_nofault+0x160/0x1c0
[  207.925456][    C0]  ? copy_from_user_nofault+0x160/0x1c0
[  207.931012][    C0]  bpf_probe_read_compat+0xdd/0x170
[  207.936220][    C0]  bpf_prog_ee60aafa828f4cb7+0x35/0xe48
[  207.941784][    C0]  bpf_trace_run2+0x15b/0x2d0
[  207.946468][    C0]  ? bpf_trace_run1+0x2d0/0x2d0
[  207.951325][    C0]  ? deferred_put_nlk_sk+0x3f/0xe0
[  207.956459][    C0]  ? _raw_spin_lock_irqsave+0xb0/0xf0
[  207.961837][    C0]  ? deferred_put_nlk_sk+0x3f/0xe0
[  207.966962][    C0]  __bpf_trace_kfree+0x6e/0x90
[  207.971745][    C0]  ? deferred_put_nlk_sk+0x3f/0xe0
[  207.976865][    C0]  kfree+0x25f/0x2a0
[  207.980762][    C0]  ? _raw_spin_unlock+0x40/0x40
[  207.985622][    C0]  deferred_put_nlk_sk+0x3f/0xe0
[  207.990569][    C0]  rcu_core+0x962/0x15d0
[  207.994838][    C0]  ? local_bh_disable+0x20/0x20
[  207.999708][    C0]  ? lockdep_softirqs_on+0x570/0x570
[  208.005018][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  208.011015][    C0]  ? lock_chain_count+0x20/0x20
[  208.015874][    C0]  ? sched_clock_cpu+0x15/0x3c0
[  208.020735][    C0]  ? ktime_get_real_ts64+0x420/0x420
[  208.026042][    C0]  handle_softirqs+0x328/0x820
[  208.030812][    C0]  ? __irq_exit_rcu+0x12f/0x220
[  208.035669][    C0]  ? do_softirq+0x200/0x200
[  208.040179][    C0]  ? irqtime_account_irq+0xb2/0x1b0
[  208.045385][    C0]  __irq_exit_rcu+0x12f/0x220
[  208.050066][    C0]  ? irq_exit_rcu+0x20/0x20
[  208.054586][    C0]  irq_exit_rcu+0x5/0x20
[  208.058864][    C0]  sysvec_apic_timer_interrupt+0xa0/0xc0
[  208.064510][    C0]  </IRQ>
[  208.067454][    C0]  <TASK>
[  208.070383][    C0]  asm_sysvec_apic_timer_interrupt+0x16/0x20
[  208.076370][    C0] RIP: 0010:unwind_next_frame+0x1179/0x1d90
[  208.082275][    C0] Code: 48 01 c6 48 89 df 4c 89 fa e8 33 0c 00 00 84 c0 0f 84 b4 03 00 00 49 bd 00 00 00 00 00 fc ff df 48 8b 44 24 48 42 0f b6 04 28 <84> c0 0f 85 30 08 00 00 8b 44 24 7c 39 03 0f 85 ff 00 00 00 48 8b
[  208.101888][    C0] RSP: 0018:ffffc9000399eda8 EFLAGS: 00000202
[  208.107968][    C0] RAX: 0000000000000000 RBX: ffffc9000399ee68 RCX: 0000000000000001
[  208.115941][    C0] RDX: ffffc9000399eea8 RSI: ffffc9000399f970 RDI: ffffc9000399f970
[  208.123941][    C0] RBP: ffffc9000399eeb0 R08: dffffc0000000000 R09: ffffc9000399eeb8
[  208.131917][    C0] R10: fffff52000733dd9 R11: 1ffff92000733dd7 R12: 1ffffffff1bdf134
[  208.139893][    C0] R13: dffffc0000000000 R14: ffffc9000399eeb8 R15: ffffffff8def89a0
[  208.148056][    C0]  ? unwind_next_frame+0x115d/0x1d90
[  208.153359][    C0]  ? dput+0xd8/0x1a0
[  208.157276][    C0]  ? stack_trace_save+0xe0/0xe0
[  208.162136][    C0]  arch_stack_walk+0x10c/0x140
[  208.166919][    C0]  ? __fput+0x5ee/0x930
[  208.171089][    C0]  stack_trace_save+0x98/0xe0
[  208.175875][    C0]  ? stack_trace_snprint+0xf0/0xf0
[  208.180988][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  208.186976][    C0]  ? lock_chain_count+0x20/0x20
[  208.191840][    C0]  save_stack+0xf3/0x1e0
[  208.196096][    C0]  ? __reset_page_owner+0x180/0x180
[  208.201391][    C0]  ? free_unref_page_prepare+0x637/0x6c0
[  208.207029][    C0]  ? free_unref_page_list+0x122/0x7e0
[  208.212404][    C0]  ? release_pages+0x184b/0x1bb0
[  208.217357][    C0]  ? __pagevec_release+0x6d/0xe0
[  208.222319][    C0]  ? shmem_undo_range+0x5cb/0x1880
[  208.227442][    C0]  ? shmem_evict_inode+0x20d/0xa00
[  208.232559][    C0]  ? evict+0x485/0x870
[  208.236635][    C0]  ? __dentry_kill+0x431/0x650
[  208.241403][    C0]  ? dentry_kill+0xb8/0x290
[  208.245906][    C0]  ? dput+0xd8/0x1a0
[  208.249811][    C0]  ? sched_clock_cpu+0x15/0x3c0
[  208.254679][    C0]  ? debug_check_no_obj_freed+0x515/0x530
[  208.260428][    C0]  __reset_page_owner+0x51/0x180
[  208.265399][    C0]  free_unref_page_prepare+0x637/0x6c0
[  208.270875][    C0]  free_unref_page_list+0x122/0x7e0
[  208.276086][    C0]  ? free_unref_page_commit+0x4c0/0x4c0
[  208.281657][    C0]  release_pages+0x184b/0x1bb0
[  208.286435][    C0]  ? lru_cache_disable+0x30/0x30
[  208.291472][    C0]  ? page_cache_free_page+0x20d/0x4e0
[  208.296855][    C0]  __pagevec_release+0x6d/0xe0
[  208.301623][    C0]  shmem_undo_range+0x5cb/0x1880
[  208.306582][    C0]  ? __lock_acquire+0x13ad/0x7c60
[  208.311619][    C0]  ? shmem_truncate_range+0xa0/0xa0
[  208.316878][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  208.321914][    C0]  ? percpu_counter_add_batch+0x13b/0x160
[  208.327666][    C0]  shmem_evict_inode+0x20d/0xa00
[  208.332616][    C0]  ? _raw_spin_unlock+0x24/0x40
[  208.337477][    C0]  ? inode_wait_for_writeback+0x1b0/0x200
[  208.343210][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  208.348770][    C0]  ? do_raw_spin_lock+0x11d/0x280
[  208.353804][    C0]  ? bit_waitqueue+0x30/0x30
[  208.358409][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  208.363620][    C0]  ? shmem_free_in_core_inode+0xb0/0xb0
[  208.369175][    C0]  evict+0x485/0x870
[  208.373078][    C0]  ? __lock_acquire+0x7c60/0x7c60
[  208.378118][    C0]  ? proc_nr_inodes+0x320/0x320
[  208.382973][    C0]  ? do_raw_spin_unlock+0x11d/0x230
[  208.388175][    C0]  ? _raw_spin_unlock+0x24/0x40
[  208.393042][    C0]  ? iput+0x706/0x8a0
[  208.397039][    C0]  __dentry_kill+0x431/0x650
[  208.401727][    C0]  dentry_kill+0xb8/0x290
[  208.406062][    C0]  dput+0xd8/0x1a0
[  208.409791][    C0]  __fput+0x5ee/0x930
[  208.413790][    C0]  task_work_run+0x125/0x1a0
[  208.418389][    C0]  do_exit+0x61e/0x20a0
[  208.422554][    C0]  ? put_task_struct+0x80/0x80
[  208.427328][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  208.433317][    C0]  ? lock_chain_count+0x20/0x20
[  208.438179][    C0]  ? _raw_spin_lock_irq+0xab/0xe0
[  208.443211][    C0]  do_group_exit+0x12e/0x300
[  208.447815][    C0]  ? lockdep_hardirqs_on+0x94/0x140
[  208.453040][    C0]  get_signal+0x6ca/0x12c0
[  208.457486][    C0]  arch_do_signal_or_restart+0xc1/0x1300
[  208.463135][    C0]  ? __sys_recvmmsg+0x280/0x280
[  208.467999][    C0]  ? get_sigframe_size+0x10/0x10
[  208.472955][    C0]  ? __x64_sys_recvmmsg+0x18d/0x240
[  208.478164][    C0]  ? exit_to_user_mode_loop+0x3b/0x130
[  208.483648][    C0]  exit_to_user_mode_loop+0x9e/0x130
[  208.488999][    C0]  exit_to_user_mode_prepare+0xee/0x180
[  208.494556][    C0]  syscall_exit_to_user_mode+0x16/0x40
[  208.500028][    C0]  do_syscall_64+0x58/0xa0
[  208.504451][    C0]  ? clear_bhb_loop+0x30/0x80
[  208.509148][    C0]  ? clear_bhb_loop+0x30/0x80
[  208.513829][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  208.519739][    C0] RIP: 0033:0x7f9b9785cc29
[  208.524161][    C0] Code: Unable to access opcode bytes at RIP 0x7f9b9785cbff.
[  208.531530][    C0] RSP: 002b:00007f9b95aa3038 EFLAGS: 00000246 ORIG_RAX: 000000000000012b
[  208.539946][    C0] RAX: 0000000000010106 RBX: 00007f9b97aa4090 RCX: 00007f9b9785cc29
[  208.547919][    C0] RDX: 0000000000010106 RSI: 00002000000000c0 RDI: 0000000000000004
[  208.555898][    C0] RBP: 00007f9b978dfe41 R08: 0000000000000000 R09: 0000000000000000
[  208.563876][    C0] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000
[  208.571855][    C0] R13: 00007f9b97aa4128 R14: 00007f9b97aa4090 R15: 00007ffef9c6f048
[  208.579851][    C0]  </TASK>
[  208.583229][    C0] Kernel Offset: disabled
[  208.587723][    C0] Rebooting in 86400 seconds..