last executing test programs:

2m42.137795106s ago: executing program 2 (id=262):
unshare(0x2c020400)
r0 = msgget$private(0x0, 0x101)
msgsnd(r0, &(0x7f0000000000)={0x2}, 0x4, 0x0)
msgsnd(0x0, &(0x7f0000000300)=ANY=[@ANYRESOCT], 0x2000, 0x0)
msgrcv(r0, 0x0, 0x0, 0x3737373737373130, 0x800)

2m41.943987544s ago: executing program 2 (id=264):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000000)='syzkaller\x00'}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
writev(0xffffffffffffffff, &(0x7f0000000000)=[{0x0}, {&(0x7f0000000340)="8a226ff432407a7f5fd09590d734f795e12e57ce9fed3f0300eb6368ed559a85603b0080", 0x24}], 0x2)
r1 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8b36, &(0x7f0000000000)={'wlan0\x00'})

2m41.80756156s ago: executing program 2 (id=266):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000340), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000380)={0x2, 0x34000, 0x1})
ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000480)={0xeeee8000, 0x1000})
ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000080)={0x2000, 0x4000, 0x1})

2m41.245619624s ago: executing program 2 (id=270):
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000900)={&(0x7f0000000400)=ANY=[@ANYBLOB="5402000017000100000000000040523ee83c00000000000000000000000000010000000000000000ac141400000000000000000000000000fc020000000000000003000000000000e000000200001000000000000000000000000000000000080a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="1242ffff040000000000000000000037660b6aff0000000000000000000000000000000000000000020000", @ANYBLOB="00000000000000000000000000000000000000000000000000000000000000e027030000000000000000000000000000000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000065"], 0x254}}, 0x0)
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000180)={'wlan1\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f00000004c0)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010027bd7000fcdbdf254400000008000300", @ANYRES32=r2, @ANYBLOB="0a001800030303030303000004005a8020005a8018000080140005"], 0x4c}}, 0x4040810)

2m40.86448243s ago: executing program 2 (id=275):
sendmsg$can_bcm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000440)={0x1, 0x0, 0x1000, {}, {0x77359400}, {0x0, 0x0, 0x0, 0x1}, 0x1, @can={{}, 0x0, 0x0, 0x0, 0x0, "cbfc0b9af540340c"}}, 0x48}, 0x1, 0x0, 0x0, 0x8040}, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="12000000040100000800000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1, <r2=>0xffffffffffffffff}, &(0x7f0000001d80), &(0x7f0000001d40)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f00000002c0)={r2, &(0x7f0000000340), 0x0}, 0x20)

2m40.546557364s ago: executing program 2 (id=279):
syz_mount_image$erofs(&(0x7f0000000400), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000000840)=ANY=[], 0x2, 0x1ed, &(0x7f00000008c0)="$eJzsmb+LE0EUx78zu9k7D1FsLGwsPPBEb7O7UbnmihMsBeEUtQzeepzuJZKskASEBBsbSwvB1sbSwsLKwr/AVgsVBAtT2gkjMzu7O9lsQgxixHsfyOx358ebeQ/yXdgFQRAHli+ff3x6cmnj2jkAh7GKJd3/zUqu4ujo/I/PHpx9unn5+asPL941jjx8U4zH5Box+/4OgLdbFmIwW+84sno1D5tqXAfHGa1vgMFN5E+hkLKPEAy39Jy7hm4e0iIK3dvNaOfOXhR6svFlE8imZu4vDzUcMOwAWFanE4IZ4+1u7149isJWUVREus/Y0O+KafVT59vi2ERaPSE4gJuPHw3kva4NPPCsfj44fK1rYNjWegNLcF03L4mR/wk7j2/Nkv9ixUsljq3/rU3Bk3L8C7n/x6LyR+KwYo/8Q2c9x4epB5pzvi489/mFMi4AY0PvV6LoypyRZcWckkJlIvcn6eynDX+yYWf+UY3371fb3d763n59N9wNG0FQu+id97wLQVUZUdJO8b9l5U8rRvzKhLkOc9Cpx3HL7wBxy8/ug6Q1HHf7dfO7WsOV/3GsnUpiMP3Myh6UBZj+cXWVas0qn9mfmBNBEARBEARBEARBEARBEEQ5J8GQfAkTTL8QLSO4qt5Q/goAAP//sOBmkQ==")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x18)
fadvise64(r0, 0x113001, 0x117102, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fadvise64(r1, 0xf7000, 0x0, 0x3)

2m25.395562192s ago: executing program 32 (id=279):
syz_mount_image$erofs(&(0x7f0000000400), &(0x7f0000000140)='./file1\x00', 0x1000801, &(0x7f0000000840)=ANY=[], 0x2, 0x1ed, &(0x7f00000008c0)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x400, 0x18)
fadvise64(r0, 0x113001, 0x117102, 0x3)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
fadvise64(r1, 0xf7000, 0x0, 0x3)

2m2.930038462s ago: executing program 0 (id=608):
socketpair$unix(0x1, 0x1, 0x0, &(0x7f0000000280)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
setsockopt$sock_attach_bpf(r0, 0x1, 0x10, &(0x7f0000000040), 0x4)
sendmsg$inet(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000200)="9e", 0x1}], 0x1}, 0x0)
recvmsg$unix(r0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001340)=[@rights={{0x10}}], 0x10}, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)

2m2.589336387s ago: executing program 0 (id=611):
sendmsg$key(0xffffffffffffffff, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)=ANY=[@ANYBLOB="e30000080c000000000002000000000005000600330000000a00000000000000fc02000000000000000000000000000000000000000000000500050000000000000000000000ff"], 0x60}, 0x1, 0x7}, 0x0)
r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000080)=ANY=[@ANYBLOB='L\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000004400000008000300", @ANYRES32=r2, @ANYBLOB="08002600851600000a00180000000000000000001c005a8018000180140003"], 0x4c}}, 0x0)

2m2.170524025s ago: executing program 0 (id=616):
r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
write$uinput_user_dev(r0, &(0x7f0000000980)={'syz0\x00', {}, 0x0, [0x0, 0x519, 0x0, 0x10001, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffff9, 0x0, 0xffffffff, 0x0, 0xfffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x81, 0x0, 0xfffffff1, 0x800, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x0, 0x1, 0x100, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x5, 0x0, 0x40], [0x1, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffd, 0x0, 0x9, 0xfffffffd, 0x0, 0xfff, 0x4, 0x0, 0x0, 0x0, 0x100, 0x0, 0x0, 0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x0, 0x200, 0x0, 0x0, 0x2, 0x0, 0x0, 0x31c, 0x1, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7, 0x0, 0xc8a], [0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffe, 0x0, 0x0, 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x20000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x0, 0x3, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffff, 0x4, 0x0, 0x7fffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0x0, 0x7], [0x0, 0xfffffffe, 0xff, 0x0, 0x0, 0x0, 0x200, 0x4, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x7, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, 0x0, 0x0, 0x10, 0x200004, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x0, 0x400000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x1000]}, 0x45c)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0xa, 0x31, 0xffffffffffffffff, 0x0)
ioctl$UI_DEV_SETUP(r0, 0x5501, 0x0)
ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000006480))

2m1.790992771s ago: executing program 0 (id=620):
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000140), 0x1, 0x4fa, &(0x7f0000000ac0)="$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")
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000100)='./file1\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000140)='./file1\x00', 0x100, 0x110)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000540)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x15, 0x0, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c6780820d1cb19976d61fdcf335263bd9bffbcc2542ded71038259ca171ce1a311ef54ec32d71e14ef3dc177e9b48b00", "64885973ff030000000000000000d01cd3160000ffffff7f0000000000002000", [0x200]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0)

2m0.951454217s ago: executing program 0 (id=626):
syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f00000000c0)='./file1\x00', 0x8488, &(0x7f0000000780), 0xfe, 0x10fd, &(0x7f0000001140)="$eJzs2T9rFEEYBvBnds8/3cqmXwQtLCQknF8ghcK1ttqIpDJVrlL8OH4cTWUf0msRsF9Zb/dO5UTwTm1+PzjmvYd9Z2fKmQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMZsmnkhxUSTtlVZKSdN3F4ipJN+V33tdVSp6eLpaPz+dPlknqb4+XZ0kZuoa2tMf3brfzdt4et48OTu5/WL5+8+rF2dnp+ThNSZfL6/1vpYzrAQAAAH7U76z5z+8HAAAAfmdvFwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf6hvNnU7FVWSknTdxeIqSbel78Y/Wh8AAACwu5Iqz5tt+eoaYONhPjZlnQ/jlzLUR3m3pR8AAAD4pf7WWHz/fb3c3JzHH2S2PpcP2d3Mcni4+j8O+XyS1EmOfpr88vrty+lX+vpv7wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAAAAAPYKAAD///F61s8=")
open(&(0x7f00000005c0)='./bus\x00', 0x66842, 0x0)
openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x100)
truncate(&(0x7f0000000080)='./file0\x00', 0x3a6000)
unlink(&(0x7f0000000180)='./file0\x00')

2m0.453685489s ago: executing program 0 (id=631):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000200)={r2, 0x8}, 0xc)

1m59.93459804s ago: executing program 33 (id=631):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000280)={0x0, 0x1c, &(0x7f0000000000)=[@in6={0xa, 0x0, 0x0, @private0={0xfc, 0x0, '\x00', 0x1}, 0x9}]}, &(0x7f00000002c0)=0x10)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r1, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000000300)=0x8)
setsockopt$inet_sctp6_SCTP_DEFAULT_PRINFO(r0, 0x84, 0x72, &(0x7f0000000200)={r2, 0x8}, 0xc)

1m18.795147153s ago: executing program 5 (id=906):
r0 = syz_open_dev$media(&(0x7f0000001a80), 0x3, 0x0)
r1 = syz_open_dev$media(&(0x7f0000001a80), 0x3, 0x0)
ioctl$MEDIA_IOC_ENUM_LINKS(r1, 0xc0287c02, &(0x7f00000000c0)={0x80000000, 0x0, &(0x7f0000000040)=[{{}, {<r2=>0x80000000}}]})
ioctl$MEDIA_IOC_ENUM_LINKS(r1, 0xc0287c02, &(0x7f0000000140)={r2, 0x0, &(0x7f00000005c0)=[{{}, {<r3=>0x80000000}}]})
ioctl$MEDIA_IOC_SETUP_LINK(r0, 0xc0347c03, &(0x7f0000000000)={{r3, 0x0, 0x3, [0xfffffffc, 0x3]}, {0x80000000, 0x0, 0x4, [0x4, 0x3157]}, 0x1, [0x2, 0x8]})

1m18.501971946s ago: executing program 5 (id=908):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x18, 0x3, &(0x7f0000000080)=@framed, &(0x7f0000000180)='syzkaller\x00'}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10)
ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan1\x00'})
r1 = socket$nl_route(0x10, 0x3, 0x0)
ioctl(r1, 0x8b2a, &(0x7f0000000040))

1m18.178323519s ago: executing program 5 (id=913):
syz_mount_image$reiserfs(&(0x7f0000000140), &(0x7f0000001140)='./file6\x00', 0x98, &(0x7f0000000280), 0x1, 0x10ef, &(0x7f00000022c0)="$eJzs2DGLE0EYBuB3dg/kqshcvx5oYSHHHfEPXKGQxsLaLljZmUrJz/HnyFX2R3pTBOyVTQwJEhDJYuB4Hlh252Vmvp1yvgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEDvLPlekosmqdusSVKSrrubLJJ02/zx17ZJydv3k9mrj+PXs8209FmT0q9aj+vN01rHdVxv6suL22d19unzh3avZEmX+9V8ev5mOehR+trtoDsCAADAw/DzaKMT1wcAAAD+ZrBGAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAA6vajSVKSrrubLJJ0p/0tAAAA4EglTd6NDuWbNsDOi3wblZRHu+RH6edc58uB9QAAAMC/KXv38ec5z5O9/DJnubrajH+/srxN2iTXf+xzv5pP18/lfFr+5wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgF/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAGCqAAAA//9TGNII")
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000540)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0)
ftruncate(r0, 0x3af001)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000040), 0x208e24b)

1m16.630381436s ago: executing program 5 (id=924):
syz_mount_image$jfs(&(0x7f0000000140), &(0x7f0000000080)='./file1\x00', 0x3210842, &(0x7f000000ad80)={[{@discard_size={'discard', 0x3d, 0x738c}}, {@usrquota}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'iso8859-7'}}, {@quota}, {@noquota}, {@grpquota}, {@noquota}, {@nodiscard}]}, 0x24, 0x62cf, &(0x7f0000000200)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x183341, 0x0)
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000100), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x22480, 0x38)
getdents64(r0, 0x0, 0x0)

1m15.289772694s ago: executing program 1 (id=935):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000002c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
r1 = openat$vmci(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0)
ioctl$IOCTL_VMCI_VERSION2(r1, 0x7a7, &(0x7f0000000040)=0xb0000)
ioctl$IOCTL_VMCI_INIT_CONTEXT(r1, 0x7a0, &(0x7f0000000000)={@local, 0x1})
close_range(r0, 0xffffffffffffffff, 0x0)

1m15.14668301s ago: executing program 1 (id=936):
syz_emit_ethernet(0x0, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x1}, 0x94)
r0 = socket$netlink(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000000)={'geneve1\x00', <r1=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000180)=ANY=[@ANYBLOB="5800000010000300"/20, @ANYRES32=r1, @ANYBLOB="00000000000000001c0012800b00010067656e65766500000c00028005000400010000001c001a8018000a80140007"], 0x58}, 0x1, 0x2}, 0x80)

1m14.69924359s ago: executing program 1 (id=937):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r0, &(0x7f0000000080)={0x1f, 0xffff, 0x3}, 0x6)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x6}]}, 0x10)
bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)

1m14.44945236s ago: executing program 5 (id=938):
write$vhost_msg_v2(0xffffffffffffffff, &(0x7f0000000100)={0x2, 0x0, {0x0, 0x0, 0x0, 0x1, 0x2}}, 0x48)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000100)=ANY=[], 0x38}, 0x1, 0x0, 0x0, 0x240080d5}, 0x24044040)
io_setup(0x8, &(0x7f0000000540)=<r0=>0x0)
r1 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
io_submit(r0, 0x1, &(0x7f0000000340)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x8, 0x4, r1, &(0x7f0000000080)="01fd0000fe", 0x5, 0x2a25}])

1m14.378898073s ago: executing program 1 (id=939):
syz_mount_image$ext4(&(0x7f00000008c0)='ext4\x00', &(0x7f0000000300)='./file1\x00', 0x800080, &(0x7f0000000440)={[{@test_dummy_encryption}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x6}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40000}}]}, 0x3, 0x45f, &(0x7f0000000900)="$eJzs28tvG0UYAPBvN4++iSnl0QcQKIiIR9K0BXrgAAgkDkVCggMcoyStSt0GNUFqqwpahMoJISTuiCP/Aie4IMQJiSvcUaUK9dKWk9F6dxvHtd0kteOCfz9pk5nd2Z35vDv27I4dwMAaz/4kEdsj4o+IGMuzKwuM5/9uXLswe/PahdkkarV3/07q5a5fuzBbFi3321ZkJtKI9PMk9raod/Hc+ZMz1er8mSI/tXTqo6nFc+dfOHFq5vj88fnTB48cOXxo+uWXDr7YlTizNl3f88nCvt1vffD120e/zNaNlvE3xdEl4502Pl2rdbm6/trRkE6G+9gQ1mQoIrLTNVLv/2MxFMsnbyze/KyvjQN6qlar1ba133yxBvyPbW14J8jo8jAoyg/67P63XJoHAa/2ZuhxT7j6Wn4DlMV9o1jyLcORFmVGmu5vu2k8It6/+M+32RK9eQ4BALDCj9n45/lW4780Hmood18xN1SJiPsjYmdEPBARuyLiwYh62Ycj4pE11t88SXL7+Ce9sq7AVikb/71SzG2tHP+Vo7+oDBW5HfX4R5JjJ6rzB4rXZCJGNmX56Q51/PTG71+129Y4/suWrP5yLFi048rwppX7zM0szdxNzI2uXorYM9wq/uTWTEASEbsjYs866zjx7Pf72m27c/wddGGeqfZdxDP5+b8YTfGXks7zk1Obozp/YKq8Km7362+X32lX/13F3wXZ+d/a8vq/FX8laZyvXVx7HZf//KLtPc0qr/9K4z7Z9T+avFdPjxbrzs4sLZ2ZjhhNjuaNblx/cHnfMl+Wz+Kf2N+6/++M5Vdib0RkF/GjEfFYRDxetP2JiHgyIvZ3iP+X15/6cP3x91YW/9yazv9yYjSa17RODJ38+YcVlVZui/9m5/N/uJ6aKNas5v1vNe1a39UMAAAA/z1pRGyPJJ28lU7Tycn8+/K7ItLqwuLSc8cWPj49l/9GoBIjafmka6zheeh0cVuf5y9FRP7VgnL7oeK58TdDW+r5ydmF6ly/g4cBt61N/8/8NdTv1gE95/daMLj0fxhc+j8Mrtb9f8uGtwPYeC36v84PA6LV5/+nfWgHsPGa+r9pPxggnv/B4NL/YXDp/zCQFrfEnX8k3zFRHmmdu3dKDJ/ND939I29AIkbuiWbkic3dP3Kk90BcEj1L9PFNCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoIv+DQAA///U99eV")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})
chdir(&(0x7f0000000040)='./file0\x00')
r0 = open(&(0x7f0000000080)='.\x00', 0x0, 0x120)
getdents64(r0, 0xfffffffffffffffe, 0x41)

1m13.501131441s ago: executing program 1 (id=943):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000780), 0xffffffffffffffff)
mount$tmpfs(0x0, 0x0, 0x0, 0x10a40a2, &(0x7f0000000040)=ANY=[@ANYBLOB="f4697a653d"])
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', <r2=>0x0})
sendmsg$NL80211_CMD_FRAME(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000640)={&(0x7f0000000000)=ANY=[@ANYBLOB="88020000", @ANYRES16=r1, @ANYBLOB="010000000000000000003b00000008000300", @ANYRES32=r2, @ANYBLOB="6102330050300100080211000001080211000000505050505050"], 0x288}, 0x1, 0x0, 0x0, 0x800}, 0x0)

1m13.185525145s ago: executing program 5 (id=948):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000380)={r0, r0}, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x14, &(0x7f0000000000)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000340)="c1fc0a0869fd0e76753a00000400", 0x0, 0x400006, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m12.712153495s ago: executing program 34 (id=948):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000240)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000380)={r0, r0}, 0x4)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0xb, 0x14, &(0x7f0000000000)=@framed={{}, [@ringbuf_query={{0x18, 0x1, 0x1, 0x0, r1}}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r2, 0x0, 0xe, 0x0, &(0x7f0000000340)="c1fc0a0869fd0e76753a00000400", 0x0, 0x400006, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1m12.682784977s ago: executing program 1 (id=950):
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [], {0x14, 0x10}}, 0x28}}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000000000)=""/97)

1m12.37505267s ago: executing program 35 (id=950):
syz_usb_connect(0x2, 0x9a2, &(0x7f0000000280)=ANY=[@ANYBLOB="12010000d0241710d8050a81b892000000010902900902000000000904"], 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb, 0x4008032, 0xffffffffffffffff, 0x0)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000240)={{0x14}, [], {0x14, 0x10}}, 0x28}}, 0x0)
r0 = syz_open_dev$evdev(&(0x7f00000000c0), 0x40, 0x0)
ioctl$EVIOCGKEYCODE(r0, 0x80084504, &(0x7f0000000000)=""/97)

54.862189635s ago: executing program 4 (id=1034):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200000e0000000000000000000000850000002c00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r1, r2, 0x25, 0x0, @val=@iter={0x0}}, 0x20)
syz_emit_ethernet(0xd81, &(0x7f0000000480)=ANY=[@ANYRESHEX], 0x0)

53.105842641s ago: executing program 4 (id=1037):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000008c0)={'wlan0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_INTERFACE(r3, &(0x7f0000000a00)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000480)={0x60, r1, 0xd55319eec59dfa33, 0x70bd25, 0x25dfdbfc, {{}, {@void, @val={0x8, 0x3, r2}, @val={0xc, 0x99, {0x0, 0x67}}}}, [@NL80211_ATTR_IFNAME={0x14, 0x4, 'veth0_to_batadv\x00'}, @NL80211_ATTR_IFTYPE={0x8, 0x5, 0xb}, @mon_options=[@NL80211_ATTR_MU_MIMO_GROUP_DATA={0x1c, 0xe7, "cbf06172e5add91b205b48a353f2c6538fed837b1d332a8d"}]]}, 0x60}, 0x1, 0x0, 0x0, 0xbf56a1c5e516326}, 0x20082050)

52.843788052s ago: executing program 4 (id=1038):
syz_mount_image$udf(&(0x7f0000000040), &(0x7f0000000000)='./file0\x00', 0x4000, &(0x7f0000000f00)=ANY=[@ANYBLOB="646d6f64653d30303030303030303030303030303030303030303030322c6c6f6e6761642c73686f727461642c646d6f64653d30303030303030303030303030303030303030303230302c7569643d666f726765742c616e63686f723d300000000030303030303030303030303030ed7548b26bb0d78c7f30332c756d61736b3d30303030303030303030303030303030303030303030302c6d6f64653d30303030303030303030303030303030303033303430302c726f6f746469723d30303030303030303030303030"], 0x1, 0xc31, &(0x7f0000000240)="$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")
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000100)={0x0, 0x0, 0x0, &(0x7f0000000080)='k', 0x8, 0xffffffffffffffff, 0x4}, 0x38)
mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1)
symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00')
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0)

52.18787888s ago: executing program 4 (id=1040):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1c0)
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
chroot(&(0x7f0000000100)='./file0\x00')
mount$bind(&(0x7f0000000040)='.\x00', &(0x7f0000000080)='./file0\x00', 0x0, 0x2a05004, 0x0)
pivot_root(&(0x7f0000000240)='./file0\x00', &(0x7f0000000000)='./file0/../file0\x00')

51.847263475s ago: executing program 4 (id=1042):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
setsockopt$netlink_NETLINK_ADD_MEMBERSHIP(r0, 0x10e, 0x1, &(0x7f0000000400)=0x1, 0x4)
r1 = socket$inet6(0xa, 0x3, 0x84)
setsockopt$inet6_IPV6_XFRM_POLICY(r1, 0x29, 0x23, &(0x7f0000000280)={{{@in=@local, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x7, 0x0, 0xfffffffffffffffd, 0x9, 0x6, 0x0, 0x40000000000000}, {0x8d, 0x1000000000, 0x53e5, 0x20}, 0xfffffff7, 0x1, 0x1, 0x0, 0x3, 0x2}, {{@in=@multicast2, 0x1, 0x32}, 0xa, @in6=@local, 0x1502, 0x3, 0x3, 0x39, 0xc36, 0xfffffffd, 0x4}}, 0xe8)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c)

51.375229215s ago: executing program 4 (id=1044):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x6)
r1 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001080)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'syzkaller0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x100)

50.811145309s ago: executing program 36 (id=1044):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0xa8442, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETLINK(r0, 0x400454cd, 0x6)
r1 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000001080)={0x38, 0x1403, 0x1, 0x0, 0x0, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'siw\x00'}, {0x14, 0x33, 'syzkaller0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4040000}, 0x100)

3.95039288s ago: executing program 8 (id=1389):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a40000000160a03020000000000000000020000000900020073797a32000000000900010073797a3000000000140003800800024000000000080001400000000014000000110001"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000040000000000a40000000160a01080000000000000000020000000900020073797a30000000000900010073797a3000000000140003800800024000000000080001400000000014000000110001"], 0x68}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a30000000000900010073797a3000000000540003"], 0xa8}, 0x1, 0x0, 0x0, 0x8000}, 0x0)

3.652446313s ago: executing program 8 (id=1393):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x1a, &(0x7f0000000000)={0x3, &(0x7f0000000440)=[{0x20, 0x2, 0x81, 0xfffff034}, {0x20, 0x0, 0x0, 0xfffff010}, {0x6, 0x0, 0x0, 0x10}]}, 0x10)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r1, 0x6, 0x22, &(0x7f0000001680)=0x1, 0x4)
sendmmsg$inet6(r1, &(0x7f0000000140)=[{{&(0x7f0000000100)={0xa, 0x4e20, 0x2, @empty, 0x10002}, 0x1c, &(0x7f0000000280)=[{&(0x7f0000000a40)="fb", 0x1}], 0x1}}], 0x1, 0x20080058)

3.615506404s ago: executing program 6 (id=1394):
r0 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
syz_emit_ethernet(0x2a, &(0x7f0000000080)={@local, @empty, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x8}}}}}, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x3, &(0x7f0000004240)=0x40000006, 0x4)
recvmmsg(r0, &(0x7f0000001380)=[{{0x0, 0x0, 0x0}, 0x6}], 0x1, 0x2, 0x0)

3.361858835s ago: executing program 6 (id=1397):
unshare(0x2a020400)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x48)
mmap(&(0x7f0000ffc000/0x1000)=nil, 0x1000, 0x1e, 0x13, r0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000140)='contention_end\x00'}, 0x10)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000640)={r0}, 0x4)

3.294739738s ago: executing program 8 (id=1398):
r0 = socket$inet6(0xa, 0x80002, 0x88)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x10000000004e20, 0x0, @mcast2, 0x6}, 0x1c)
setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, 0x0, 0x0)
setsockopt$inet6_udp_encap(r0, 0x11, 0x64, &(0x7f00000000c0)=0x2, 0x4)
syz_emit_ethernet(0x83, &(0x7f0000000040)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaf9ff030486dd601b8b97004d88c19e9ace5ffb2e9fc603dd282100000002ff02000000000000000000000000000104004e200023b0"], 0x0)

3.047180919s ago: executing program 6 (id=1400):
r0 = syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000040)='./file1\x00', 0x8488, &(0x7f00000002c0), 0xfe, 0x10fd, &(0x7f0000001140)="$eJzs2T9rFEEYBvBnds8/3cqmXwQtLCQknF8ghcK1ttqIpDJVrlL8OH4cTWUf0msRsF9Zb/dO5UTwTm1+PzjmvYd9Z2fKmQ0AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMZsmnkhxUSTtlVZKSdN3F4ipJN+V33tdVSp6eLpaPz+dPlknqb4+XZ0kZuoa2tMf3brfzdt4et48OTu5/WL5+8+rF2dnp+ThNSZfL6/1vpYzrAQAAAH7U76z5z+8HAAAAfmdvFwkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAf6hvNnU7FVWSknTdxeIqSbel78Y/Wh8AAACwu5Iqz5tt+eoaYONhPjZlnQ/jlzLUR3m3pR8AAAD4pf7WWHz/fb3c3JzHH2S2PpcP2d3Mcni4+j8O+XyS1EmOfpr88vrty+lX+vpv7wUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgK/swLEAAAAAgDB/6zQ6NgAAAAAAAAAAAAAAAAAAAPYKAAD///F61s8=")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000440)='./file0\x00', 0x103a42, 0x100)
pwrite64(r1, &(0x7f00000005c0)="f1", 0x1, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
truncate(&(0x7f0000000080)='./file0\x00', 0x0)

2.914523435s ago: executing program 8 (id=1402):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = syz_kvm_setup_syzos_vm$x86(r1, &(0x7f0000bfe000/0x400000)=nil)
r3 = syz_kvm_add_vcpu$x86(r2, &(0x7f0000000100)={0x0, 0x0})
ioctl$KVM_SET_XCRS(r3, 0x4188aea7, &(0x7f0000000540)={0xb, 0x0, [{0x477fc114, 0x0, 0x3358}, {0x0, 0x0, 0x7}, {0x83, 0x0, 0x4}, {0x7, 0x0, 0x40}, {0x4, 0x0, 0x1000}, {0x2, 0x0, 0x9}, {0x4, 0x0, 0x3}, {0x8, 0x0, 0x2a2fa5b9}, {0x0, 0x0, 0x35}, {0x8000, 0x0, 0xffffffffffffff21}, {0x9, 0x0, 0x7}, {0x4, 0x0, 0x8}, {0xac}, {0x40, 0x0, 0x2}, {0x5, 0x0, 0x1}, {0x81, 0x0, 0xfffffffffffffff7}]})

2.628391757s ago: executing program 3 (id=1404):
fanotify_init(0x202, 0x0)
socket(0x28, 0x5, 0x0)
r0 = syz_io_uring_setup(0x498, &(0x7f0000000200)={0x0, 0x7279, 0x0, 0x4, 0x125}, &(0x7f0000000000)=<r1=>0x0, &(0x7f0000000280)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f00000002c0)=@IORING_OP_WRITEV={0x2, 0x0, 0x0, @fd_index=0x4, 0x0, 0x0})
io_uring_enter(r0, 0x3516, 0x0, 0x0, 0x0, 0x0)

2.282541222s ago: executing program 7 (id=1405):
socket$kcm(0x2c, 0x3, 0x0)
socket$kcm(0x2c, 0x3, 0x0)
r0 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000100)="5c00000014006b030231a6080c000af32c00009d31fc0000f800250f02000f00e5aa000017d34460bc24eab556bd05251e6182949a2756f475ce36c2d13b48df000000000000ecb8f6ec63c9f4d4938037e786a6d1bdd700e6657594", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000003580)={0x0, 0x0, 0x0}, 0x0)

2.205638115s ago: executing program 8 (id=1406):
socket$packet(0x11, 0x3, 0x300)
socket$packet(0x11, 0xa, 0x300)
r0 = socket$kcm(0xa, 0x3, 0x3a)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x3, 0x8031, 0xffffffffffffffff, 0x0)
sendmsg$kcm(r0, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0x0, 0xac14140c}}, 0x80, &(0x7f0000000400)=[{&(0x7f0000000140)='C', 0x1}, {&(0x7f0000000200)="c5b478", 0x3}], 0x2, 0x0, 0x0, 0x900}, 0x60)

2.184774136s ago: executing program 3 (id=1407):
r0 = socket$inet6(0xa, 0x2, 0x0)
recvfrom$inet6(r0, 0x0, 0x0, 0x18000, 0x0, 0x0)
bind$inet6(r0, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x25, &(0x7f0000000000)=0x2d74, 0x4)
sendto$inet6(r0, 0x0, 0x0, 0x0, &(0x7f0000000300)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)

1.85859595s ago: executing program 6 (id=1408):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000280)='kfree\x00', r0}, 0x18)
r1 = socket$inet_sctp(0x2, 0x800000000000001, 0x84)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r1, 0x0, 0x48b, &(0x7f0000000000)={0x1, 'hsr0\x00', 0x4}, 0x18)
setsockopt$IP_VS_SO_SET_STOPDAEMON(r1, 0x0, 0x48c, &(0x7f00000003c0)={0x1, 'batadv_slave_0\x00', 0x2}, 0x18)

1.817623002s ago: executing program 7 (id=1409):
r0 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r0, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmsg$inet(r2, &(0x7f0000001b00)={0x0, 0x0, 0x0, 0x0, &(0x7f0000001d80)=ANY=[@ANYBLOB="28010000000000000100000001"], 0x128}, 0x0)
recvmsg$unix(r1, &(0x7f0000000000)={0x0, 0x0, 0x0}, 0x0)

1.753632075s ago: executing program 9 (id=1410):
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000001c0)={0x1b, 0x0, 0x0, 0x6, 0x0, 0xffffffffffffffff, 0x21, '\x00', 0x0, 0xffffffffffffffff, 0x5, 0x1, 0x1}, 0x50)
r0 = socket(0x10, 0x3, 0x0)
r1 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000340)={'bridge_slave_0\x00', <r2=>0x0})
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="700200001300290a000000000000000007000000", @ANYRES32=r2, @ANYBLOB="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"], 0x270}, 0x1, 0x0, 0x0, 0x20008014}, 0x4)

1.738976945s ago: executing program 3 (id=1411):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000003c0)={<r0=>0xffffffffffffffff})
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000f80), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000300)={'wlan0\x00', <r2=>0x0})
r3 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_NEW_STATION(r3, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000400)={0x48, r1, 0xe096044a3fc9e6f1, 0xffffffff, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_STA_SUPPORTED_RATES={0x4}, @NL80211_ATTR_STA_LISTEN_INTERVAL={0x6, 0x12, 0x2}, @NL80211_ATTR_STA_AID={0x6, 0x10, 0xdf}, @NL80211_ATTR_MAC={0xa, 0x6, @broadcast}, @NL80211_ATTR_STA_WME={0xc, 0x81, [@NL80211_STA_WME_MAX_SP={0x5, 0x2, 0x51}]}]}, 0x48}, 0x1, 0x0, 0x0, 0x4814}, 0x8050)

1.544820264s ago: executing program 7 (id=1412):
openat$sequencer2(0xffffffffffffff9c, &(0x7f00000005c0), 0x2, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000280)='fd/3\x00')
r1 = epoll_create1(0x0)
epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000240)={0x80000011})
epoll_ctl$EPOLL_CTL_MOD(r1, 0x3, r0, &(0x7f0000000c40)={0x1})

1.498774615s ago: executing program 9 (id=1413):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_MD5SIG(r0, 0x6, 0xe, &(0x7f0000000280)={@in6={{0xa, 0x4e24, 0x401, @private0={0xfc, 0x0, '\x00', 0x1}, 0x80000000}}, 0x0, 0x0, 0x2a, 0x0, "b25dd300350731437df94f0a338977934d6951cdd6c61e31cc7172c856b141e3f4e87e6ab615ea379a12c5a6f5c6e8b30138f5f3570909f89f3e47f8090000c30a1c48cdff030000fad4624800"}, 0xd8)
bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c)
connect$inet6(r0, &(0x7f0000000080)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
syz_emit_ethernet(0x36, &(0x7f00000014c0)={@local, @random="e462e98700", @void, {@ipv4={0x800, @tcp={{0x5, 0x4, 0x2, 0x23, 0x28, 0x64, 0x0, 0x3, 0x6, 0x0, @remote, @remote}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x5, 0x10, 0x7, 0x0, 0xe7}}}}}}, 0x0)

1.38581627s ago: executing program 3 (id=1414):
r0 = gettid()
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x8, &(0x7f0000000000)={0x1, &(0x7f0000000040)=[{0x6, 0x0, 0x1, 0x7fff0000}]})
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
rt_sigtimedwait(&(0x7f0000000040)={[0xffffffffffff7ff8]}, 0x0, 0x0, 0x8)

1.274165555s ago: executing program 7 (id=1415):
mkdirat(0xffffffffffffff9c, &(0x7f0000002000)='./file0\x00', 0x51)
syz_mount_image$fuse(0x0, &(0x7f0000000300)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0)
mount$overlay(0x0, &(0x7f0000000100)='./file0\x00', &(0x7f0000000b80), 0x8, &(0x7f0000000140)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@volatile}]})
r0 = openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x101000, 0x0)
fsync(r0)

1.234396467s ago: executing program 9 (id=1416):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_EVENTS(r0, 0x84, 0xb, &(0x7f0000000280)={0x0, 0x4}, 0xe)
shutdown(r0, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f0000000000)={<r1=>0x0, 0x10, &(0x7f00000002c0)=[@in={0x2, 0x0, @local}]}, &(0x7f0000000240)=0x10)
getsockopt$inet_sctp6_SCTP_DEFAULT_SEND_PARAM(r0, 0x84, 0xa, &(0x7f0000000040)={0xb9, 0x3, 0x8, 0x7fffffff, 0xd, 0xb10, 0x3, 0x0, r1}, &(0x7f00000000c0)=0x20)

1.182176129s ago: executing program 6 (id=1417):
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0xe)
mlock(&(0x7f0000000000/0x800000)=nil, 0x800000)
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000000)='smaps\x00')
lseek(r0, 0x2000, 0x0)

1.107527412s ago: executing program 3 (id=1418):
syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0)
io_setup(0x2, &(0x7f0000000000)=<r0=>0x0)
r1 = eventfd(0x0)
io_submit(r0, 0x2, &(0x7f0000000080)=[&(0x7f0000000240)={0x0, 0x0, 0x0, 0x0, 0xc2, r1, &(0x7f0000000180)="f50100ec64000000", 0x8, 0x36}, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x8, 0x4, r1, 0x0, 0x0, 0x0, 0x0, 0x1, r1}])
syz_clone3(&(0x7f0000001e80)={0x166002400, 0x0, 0x0, 0x0, {0xa}, 0x0, 0x0, 0x0, 0x0}, 0x58)

980.639868ms ago: executing program 9 (id=1419):
r0 = socket(0xa, 0x5, 0x0)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000200)=[@in={0x2, 0x4e24, @empty}], 0x10)
sendmmsg$inet_sctp(r0, &(0x7f0000003780)=[{&(0x7f0000000bc0)=@in={0x2, 0x4e24, @local}, 0x10, &(0x7f0000000ec0)=[{&(0x7f0000000c00)="9f", 0x1}], 0x1, 0x0, 0x0, 0x8000}], 0x1, 0xc044)
setsockopt$inet_sctp6_SCTP_RECVNXTINFO(r0, 0x84, 0x21, &(0x7f00000001c0)=0x7f, 0x4)
recvfrom$packet(r0, 0x0, 0x0, 0x40, 0x0, 0x0)

966.096478ms ago: executing program 7 (id=1420):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x19, 0x4, 0x4, 0x2, 0x0, 0x1}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000007300000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10)

681.138871ms ago: executing program 7 (id=1421):
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000140)={0x0, 0x1000}, 0x4)
socketpair$tipc(0x1e, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
sendmsg$tipc(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)=[{&(0x7f0000000140)="a2", 0x73220c8b}], 0x1}, 0x0)
recvmmsg(r0, &(0x7f0000000400)=[{{0x0, 0x0, 0x0}, 0x7}, {{0x0, 0x0, 0x0}, 0x8}], 0x2, 0x0, 0x0)

617.781663ms ago: executing program 6 (id=1422):
r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000000c0)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x20, 0x172f, 0x32, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x1, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x4, 0x0, 0x1, {0x22, 0x2}}}}]}}]}}, 0x0)
syz_mount_image$fuse(0x0, 0x0, 0x283016, 0x0, 0x11, 0x0, 0x0)
syz_usb_control_io(r0, 0x0, 0x0)
syz_usb_control_io$hid(r0, &(0x7f0000000080)={0x24, 0x0, 0x0, &(0x7f0000000000)={0x0, 0x22, 0x5, {[@global=@item_4={0x3, 0x1, 0x4, "ac110881"}]}}, 0x0}, 0x0)
accept4(0xffffffffffffffff, 0x0, 0x0, 0x0)

505.337728ms ago: executing program 9 (id=1423):
r0 = io_uring_setup(0x3cbb, &(0x7f0000000140)={0x0, 0xbfff, 0x0, 0x2, 0x100001d})
r1 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r1, &(0x7f00000001c0)=@nameseq={0x1e, 0x1, 0x0, {0x42, 0x0, 0xfffffffd}}, 0x10)
bind$tipc(r1, &(0x7f0000000100)=@nameseq={0x1e, 0x1, 0x3, {0x41, 0x0, 0x3}}, 0x10)
close_range(r0, 0xffffffffffffffff, 0x0)

292.252927ms ago: executing program 9 (id=1424):
r0 = socket$inet_sctp(0x2, 0x5, 0x84)
r1 = socket$inet6_sctp(0xa, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000300)={0x0, 0x10, &(0x7f0000000280)=[@in={0x2, 0x4e24, @private=0xa010100}]}, &(0x7f0000000080)=0x10)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r1, 0x84, 0x1d, &(0x7f0000000140)={0x1, [<r2=>0x0]}, &(0x7f0000000240)=0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=[@sndinfo={0x20, 0x84, 0x2, {0xa, 0x4, 0x28, 0x200000b, r2}}], 0x20, 0x2400e044}, 0x0)

290.737118ms ago: executing program 8 (id=1434):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000500), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f0000000580)=<r3=>0x0)
sendmsg$NFC_CMD_SE_IO(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000a00)={0x28, r2, 0x1, 0x70bd28, 0x25dfdbfc, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r3}, @NFC_ATTR_SE_INDEX={0x8, 0x15, 0x1}, @NFC_ATTR_SE_APDU={0x4}]}, 0x28}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

0s ago: executing program 3 (id=1425):
r0 = socket$inet_udplite(0x2, 0x2, 0x88)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000340)={'bridge0\x00', <r1=>0x0})
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)=ANY=[@ANYBLOB="440000001300290a000000000000000007000000", @ANYRES32=r1, @ANYBLOB="00000000000000001c001a800800028008000200080000003e12"], 0x44}}, 0x0)
r2 = socket(0x10, 0x3, 0x0)
sendmmsg(r2, &(0x7f0000000000), 0x4000000000001f2, 0x0)

kernel console output (not intermixed with test programs):

0C: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  142.626955][ T5773] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0
[  142.640061][ T5773] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  143.999917][ T5829] netlink: 'syz.3.543': attribute type 1 has an invalid length.
[  144.007821][ T5829] netlink: 'syz.3.543': attribute type 6 has an invalid length.
[  144.031335][ T5829] netlink: 52 bytes leftover after parsing attributes in process `syz.3.543'.
[  144.340137][ T4256] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  144.429986][ T5738] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[  144.539120][ T4256] usb 6-1: config 1 interface 0 altsetting 127 bulk endpoint 0x81 has invalid maxpacket 64
[  144.591674][ T4256] usb 6-1: config 1 interface 0 altsetting 127 bulk endpoint 0x2 has invalid maxpacket 32
[  144.619389][ T4256] usb 6-1: config 1 interface 0 has no altsetting 0
[  144.638699][ T4256] usb 6-1: New USB device found, idVendor=0bda, idProduct=8150, bcdDevice= 0.40
[  144.655335][ T5738] usb 2-1: Using ep0 maxpacket: 32
[  144.658504][ T4256] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.668311][ T5738] usb 2-1: config 0 interface 0 has no altsetting 0
[  144.679067][ T4256] usb 6-1: Product: syz
[  144.689199][ T4256] usb 6-1: Manufacturer: syz
[  144.692833][ T5738] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e
[  144.699380][ T4256] usb 6-1: SerialNumber: syz
[  144.717812][ T5738] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  144.729095][ T5833] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  144.738823][ T5738] usb 2-1: Product: syz
[  144.743640][ T5833] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[  144.753391][ T5738] usb 2-1: Manufacturer: syz
[  144.762571][ T5831] loop0: detected capacity change from 0 to 40427
[  144.769537][ T5738] usb 2-1: SerialNumber: syz
[  144.793952][ T5738] usb 2-1: config 0 descriptor??
[  144.797340][ T5831] F2FS-fs (loop0): invalid crc value
[  144.840323][ T5831] F2FS-fs (loop0): Found nat_bits in checkpoint
[  144.949067][ T5831] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[  145.020115][ T5858] loop4: detected capacity change from 0 to 128
[  145.050438][ T5858] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  145.101193][ T5858] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[  145.130818][ T5851] bio_check_eod: 23 callbacks suppressed
[  145.130838][ T5851] f2fs_ckpt-7:0: attempt to access beyond end of device
[  145.130838][ T5851] loop0: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  145.258859][ T5738] gs_usb 2-1:0.0: Configuring for 1 interfaces
[  145.784842][ T4256] (unnamed net_device) (uninitialized): Assigned a random MAC address: a2:91:c1:22:dd:80
[  145.852755][ T4256] rtl8150 6-1:1.0: eth1: rtl8150 is detected
[  145.878558][ T5738] usb 2-1: USB disconnect, device number 8
[  145.914115][ T4256] usb 6-1: USB disconnect, device number 2
[  146.230037][   T22] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[  146.421712][   T22] usb 1-1: config index 0 descriptor too short (expected 45, got 36)
[  146.450502][   T22] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11
[  146.500291][   T22] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024
[  146.552262][   T22] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  146.575733][   T22] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  146.606096][   T22] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  146.647649][ T5885] capability: warning: `syz.1.564' uses 32-bit capabilities (legacy support in use)
[  146.675751][   T22] usb 1-1: config 0 descriptor??
[  146.692823][ T5868] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[  147.144755][   T22] plantronics 0003:047F:FFFF.000D: unknown main item tag 0xd
[  147.182171][   T22] plantronics 0003:047F:FFFF.000D: No inputs registered, leaving
[  147.255667][   T22] plantronics 0003:047F:FFFF.000D: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0
[  147.330985][   T26] audit: type=1326 audit(2000000285.444:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  147.438038][   T26] audit: type=1326 audit(2000000285.474:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  147.467502][   T22] usb 1-1: USB disconnect, device number 6
[  147.552289][   T26] audit: type=1326 audit(2000000285.474:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  147.677331][   T26] audit: type=1326 audit(2000000285.474:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  147.686661][ T5909] fido_id[5909]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory
[  147.773988][   T26] audit: type=1326 audit(2000000285.494:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  147.878967][   T26] audit: type=1326 audit(2000000285.494:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  148.009938][   T26] audit: type=1326 audit(2000000285.494:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  148.049491][ T5920] overlayfs: failed to set xattr on upper
[  148.100220][   T26] audit: type=1326 audit(2000000285.494:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=190 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  148.101460][ T5920] overlayfs: ...falling back to index=off,metacopy=off.
[  148.181540][   T26] audit: type=1326 audit(2000000285.494:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  148.285928][   T26] audit: type=1326 audit(2000000285.494:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5905 comm="syz.1.571" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6c9f8f749 code=0x7ffc0000
[  149.234237][ T5956] netlink: 28 bytes leftover after parsing attributes in process `syz.1.589'.
[  149.277467][ T5956] netlink: 'syz.1.589': attribute type 7 has an invalid length.
[  149.307871][ T5956] netlink: 4 bytes leftover after parsing attributes in process `syz.1.589'.
[  149.398237][ T5956] device erspan0 entered promiscuous mode
[  149.450686][ T5956] device erspan0 left promiscuous mode
[  150.124090][ T5945] loop0: detected capacity change from 0 to 32768
[  150.263264][ T5945] XFS (loop0): Mounting V5 Filesystem
[  150.395888][ T5945] XFS (loop0): Ending clean mount
[  150.670668][ T4268] XFS (loop0): Unmounting Filesystem
[  150.701922][ T5970] loop1: detected capacity change from 0 to 32768
[  150.814531][ T5970] JBD2: Ignoring recovery information on journal
[  151.131147][ T6000] bridge0: port 3(vlan2) entered blocking state
[  151.170944][ T6000] bridge0: port 3(vlan2) entered disabled state
[  151.186610][ T5970] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  151.206112][ T6000] device vlan2 entered promiscuous mode
[  151.222764][ T6000] device vlan1 entered promiscuous mode
[  151.269289][ T6000] bridge0: port 3(vlan2) entered blocking state
[  151.277385][ T6000] bridge0: port 3(vlan2) entered forwarding state
[  151.372175][ T6007] Bluetooth: MGMT ver 1.22
[  151.467822][ T4269] ocfs2: Unmounting device (7,1) on (node local)
[  151.564282][ T6005] loop3: detected capacity change from 0 to 8192
[  151.626997][ T6005] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  151.668541][ T6005] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[  151.680839][ T6005] REISERFS (device loop3): using ordered data mode
[  151.687988][ T6005] reiserfs: using flush barriers
[  151.722699][ T6018] loop8: detected capacity change from 0 to 7
[  151.722969][ T6016] loop4: detected capacity change from 0 to 128
[  151.741193][ T6018] Dev loop8: unable to read RDB block 7
[  151.763071][ T6005] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  151.834319][ T6018]  loop8: unable to read partition table
[  151.850489][ T6005] REISERFS (device loop3): checking transaction log (loop3)
[  151.862996][ T6016] FAT-fs (loop4): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1)
[  151.898703][ T6018] loop8: partition table beyond EOD, truncated
[  151.947810][ T6005] REISERFS (device loop3): Using r5 hash to sort names
[  151.952634][ T6018] loop_reread_partitions: partition scan of loop8 (�被x�^>��� ) failed (rc=-5)
[  152.008922][ T6005] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  152.483580][ T6030] input: syz0 as /devices/virtual/input/input13
[  152.747953][ T6039] loop4: detected capacity change from 0 to 1024
[  152.860964][ T6046] loop0: detected capacity change from 0 to 512
[  152.992243][ T6046] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  153.020314][ T6046] ext4 filesystem being mounted at /122/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  153.165046][   T46] hfsplus: b-tree write err: -5, ino 4
[  153.231506][ T6046] loop0: detected capacity change from 512 to 64
[  153.280099][ T6046] __quota_error: 4 callbacks suppressed
[  153.280118][ T6046] Quota error (device loop0): find_tree_dqentry: Can't read quota tree block 1
[  153.299998][ T6046] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[  153.340529][ T6046] EXT4-fs error (device loop0): ext4_acquire_dquot:6809: comm syz.0.620: Failed to acquire dquot type 1
[  153.749992][   T22] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[  153.920811][ T4268] EXT4-fs (loop0): unmounting filesystem.
[  153.960770][   T22] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[  153.998789][   T22] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  154.071421][   T22] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  154.085518][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.099954][   T22] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  154.126804][   T22] usb 4-1: Manufacturer: syz
[  154.143390][   T22] usb 4-1: config 0 descriptor??
[  154.327912][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.410142][   T22] rc_core: IR keymap rc-hauppauge not found
[  154.423934][   T22] Registered IR keymap rc-empty
[  154.447104][   T22] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  154.491003][   T22] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input14
[  154.514097][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.540673][    C1] igorplugusb 4-1:0.0: Error: urb status = -32
[  154.620309][   T22] usb 4-1: USB disconnect, device number 6
[  154.774441][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  154.868765][ T6082] netlink: 28 bytes leftover after parsing attributes in process `syz.5.638'.
[  155.228421][ T6087] loop5: detected capacity change from 0 to 256
[  155.487979][ T4286] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  155.499393][ T4286] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  155.510240][ T4286] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  155.519665][ T4286] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  155.528865][ T4286] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  155.536450][ T4286] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  155.798425][   T26] audit: type=1326 audit(2000000293.904:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  155.870605][   T26] audit: type=1326 audit(2000000293.904:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=294 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  155.917390][   T26] audit: type=1326 audit(2000000293.904:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  156.080866][   T26] audit: type=1326 audit(2000000293.904:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  156.172766][   T26] audit: type=1326 audit(2000000293.904:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=254 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  156.239911][   T26] audit: type=1326 audit(2000000293.904:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  156.376741][ T6091] loop4: detected capacity change from 0 to 32768
[  156.383990][   T26] audit: type=1326 audit(2000000293.904:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  156.416426][   T26] audit: type=1326 audit(2000000293.904:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6099 comm="syz.5.644" exe="/root/syz-executor" sig=0 arch=c000003e syscall=32 compat=0 ip=0x7fe8ebb8f749 code=0x7ffc0000
[  156.443241][ T6091] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.642 (6091)
[  156.477455][ T6091] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  156.541427][ T6091] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm
[  156.588566][ T6091] BTRFS info (device loop4): use no compression
[  156.647203][ T6091] BTRFS info (device loop4): enabling ssd optimizations
[  156.682631][ T6091] BTRFS info (device loop4): allowing degraded mounts
[  156.720094][ T6091] BTRFS warning (device loop4): 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[  156.768341][ T6091] BTRFS info (device loop4): trying to use backup root at mount time
[  156.807012][ T6091] BTRFS info (device loop4): using free space tree
[  156.836303][ T6094] chnl_net:caif_netlink_parms(): no params data found
[  156.875976][ T6088] loop1: detected capacity change from 0 to 40427
[  156.940316][ T6088] F2FS-fs (loop1): invalid crc value
[  156.980776][ T6088] F2FS-fs (loop1): Found nat_bits in checkpoint
[  157.174589][ T6088] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  157.366135][ T6140] loop5: detected capacity change from 0 to 4096
[  157.437049][ T6140] ntfs3: loop5: Different NTFS' sector size (1024) and media sector size (512)
[  157.594247][ T4285] Bluetooth: hci2: command 0x0409 tx timeout
[  157.655961][ T4265] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[  157.719414][ T4269] syz-executor: attempt to access beyond end of device
[  157.719414][ T4269] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[  158.166114][ T4395] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 10 /dev/loop4 scanned by udevd (4395)
[  158.591271][ T6094] bridge0: port 1(bridge_slave_0) entered blocking state
[  158.600319][ T4256] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[  158.618792][ T6094] bridge0: port 1(bridge_slave_0) entered disabled state
[  158.660322][ T6094] device bridge_slave_0 entered promiscuous mode
[  158.705164][ T6094] bridge0: port 2(bridge_slave_1) entered blocking state
[  158.750167][ T6094] bridge0: port 2(bridge_slave_1) entered disabled state
[  158.780657][ T4256] usb 4-1: too many configurations: 9, using maximum allowed: 8
[  158.804821][ T6094] device bridge_slave_1 entered promiscuous mode
[  158.814076][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  158.834875][ T6169] device team_slave_0 entered promiscuous mode
[  158.841551][ T6169] device team_slave_1 entered promiscuous mode
[  158.844705][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  158.885518][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  158.908522][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  158.940568][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  158.977822][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  158.996501][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  159.017917][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  159.029539][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  159.052108][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  159.092045][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  159.122343][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  159.160643][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  159.180124][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  159.207934][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  159.238755][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  159.258660][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  159.283448][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  159.315980][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  159.346636][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  159.370964][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  159.390599][    T9] device hsr_slave_0 left promiscuous mode
[  159.399515][ T4256] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 9
[  159.408774][    T9] device hsr_slave_1 left promiscuous mode
[  159.420638][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  159.438544][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  159.448183][ T4256] usb 4-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7
[  159.466667][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  159.470102][ T4256] usb 4-1: config 0 interface 0 has no altsetting 0
[  159.481288][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  159.511380][    T9] device bridge_slave_1 left promiscuous mode
[  159.514558][ T4256] usb 4-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e
[  159.521094][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  159.546784][ T4256] usb 4-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168
[  159.565405][    T9] device bridge_slave_0 left promiscuous mode
[  159.576413][ T4256] usb 4-1: Product: syz
[  159.585337][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  159.585876][ T4256] usb 4-1: Manufacturer: syz
[  159.622046][ T4256] usb 4-1: SerialNumber: syz
[  159.657295][ T4256] usb 4-1: config 0 descriptor??
[  159.670076][ T4286] Bluetooth: hci2: command 0x041b tx timeout
[  159.692856][ T4256] yurex 4-1:0.0: USB YUREX device now attached to Yurex #0
[  159.742479][    T9] device veth1_macvtap left promiscuous mode
[  159.749654][    T9] device veth0_macvtap left promiscuous mode
[  159.756376][    T9] device veth1_vlan left promiscuous mode
[  159.762964][    T9] device veth0_vlan left promiscuous mode
[  159.925089][ T4256] usb 4-1: USB disconnect, device number 7
[  159.955139][ T6162] loop3: detected capacity change from 0 to 256
[  159.967447][ T4256] yurex 4-1:0.0: USB YUREX #0 now disconnected
[  160.050735][ T6162] FAT-fs (loop3): Directory bread(block 64) failed
[  160.069678][ T6162] FAT-fs (loop3): Directory bread(block 65) failed
[  160.097058][ T6162] FAT-fs (loop3): Directory bread(block 66) failed
[  160.114423][ T6162] FAT-fs (loop3): Directory bread(block 67) failed
[  160.149048][ T6162] FAT-fs (loop3): Directory bread(block 68) failed
[  160.176287][ T6162] FAT-fs (loop3): Directory bread(block 69) failed
[  160.229080][ T6162] FAT-fs (loop3): Directory bread(block 70) failed
[  160.245647][ T6162] FAT-fs (loop3): Directory bread(block 71) failed
[  160.262037][ T6162] FAT-fs (loop3): Directory bread(block 72) failed
[  160.284387][ T6162] FAT-fs (loop3): Directory bread(block 73) failed
[  161.257884][    T9] team0 (unregistering): Port device team_slave_1 removed
[  161.321436][    T9] team0 (unregistering): Port device team_slave_0 removed
[  161.382772][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  161.456348][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  161.750711][ T4286] Bluetooth: hci2: command 0x040f tx timeout
[  162.209961][    T9] bond0 (unregistering): Released all slaves
[  162.308847][ T6094] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  162.320285][ T6168] device team_slave_0 left promiscuous mode
[  162.327676][ T6168] device team_slave_1 left promiscuous mode
[  162.400867][ T6094] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  162.617212][ T6094] team0: Port device team_slave_0 added
[  162.696648][ T6094] team0: Port device team_slave_1 added
[  162.841016][ T6094] batman_adv: batadv0: Adding interface: batadv_slave_0
[  162.848129][ T6094] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  162.987417][ T6094] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  163.028053][ T6226] netlink: 'syz.1.670': attribute type 1 has an invalid length.
[  163.050381][ T6226] netlink: 4 bytes leftover after parsing attributes in process `syz.1.670'.
[  163.103469][ T6094] batman_adv: batadv0: Adding interface: batadv_slave_1
[  163.118457][ T6094] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  163.169548][ T6094] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  163.357920][ T6094] device hsr_slave_0 entered promiscuous mode
[  163.418068][ T6094] device hsr_slave_1 entered promiscuous mode
[  163.466807][ T6094] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  163.484077][ T6094] Cannot create hsr debugfs directory
[  163.840255][ T4286] Bluetooth: hci2: command 0x0419 tx timeout
[  163.985306][ T6247] loop4: detected capacity change from 0 to 40427
[  163.995787][ T6247] F2FS-fs (loop4): invalid crc value
[  164.010668][ T6247] F2FS-fs (loop4): Found nat_bits in checkpoint
[  164.013148][ T6217] loop5: detected capacity change from 0 to 32768
[  164.060510][ T6247] F2FS-fs (loop4): Start checkpoint disabled!
[  164.135673][ T6247] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e6
[  164.236120][ T6217] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[  164.260288][ T6094] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  164.279004][ T6094] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  164.384227][ T6094] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  164.451389][ T6094] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  164.576090][ T5503] ocfs2: Unmounting device (7,5) on (node local)
[  164.754236][ T6275] loop4: detected capacity change from 0 to 1024
[  164.767323][   T22] hid-generic 0000:0000:0000.000E: unknown main item tag 0x0
[  164.806074][   T22] hid-generic 0000:0000:0000.000E: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  164.807956][ T6275] EXT4-fs: Ignoring removed nobh option
[  164.873881][ T6094] 8021q: adding VLAN 0 to HW filter on device bond0
[  164.895950][ T6275] EXT4-fs: Ignoring removed bh option
[  164.936576][ T6275] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  164.951283][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  164.972885][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  165.036300][ T6094] 8021q: adding VLAN 0 to HW filter on device team0
[  165.075637][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  165.096797][ T6275] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  165.106359][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  165.169026][ T4352] bridge0: port 1(bridge_slave_0) entered blocking state
[  165.176329][ T4352] bridge0: port 1(bridge_slave_0) entered forwarding state
[  165.201293][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  165.269030][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  165.291323][ T6275] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3836: comm syz.4.682: Allocating blocks 385-513 which overlap fs metadata
[  165.307237][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  165.370191][ T4352] bridge0: port 2(bridge_slave_1) entered blocking state
[  165.377409][ T4352] bridge0: port 2(bridge_slave_1) entered forwarding state
[  165.409341][ T6275] EXT4-fs (loop4): pa ffff8880742ca000: logic 16, phys. 129, len 24
[  165.414727][ T6287] loop3: detected capacity change from 0 to 1024
[  165.418476][ T6275] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4876: group 0, free 0, pa_free 8
[  165.448434][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  165.479077][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  165.560784][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  165.618783][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  165.674097][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  165.707189][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  165.721884][   T11] hfsplus: b-tree write err: -5, ino 4
[  165.761096][ T4265] EXT4-fs (loop4): unmounting filesystem.
[  165.768099][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  165.849004][ T6094] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  165.899937][ T6094] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  165.947452][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  165.992034][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  166.021076][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  166.053988][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  166.110326][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  166.240724][ T6302] device syzkaller1 entered promiscuous mode
[  166.640839][ T6311] bridge0: port 4(batadv0) entered blocking state
[  166.668615][ T6311] bridge0: port 4(batadv0) entered disabled state
[  166.687572][ T6311] device batadv0 entered promiscuous mode
[  166.698623][ T6311] bridge0: port 4(batadv0) entered blocking state
[  166.706026][ T6311] bridge0: port 4(batadv0) entered forwarding state
[  166.809720][ T6317] loop1: detected capacity change from 0 to 1024
[  166.927997][ T6316] loop3: detected capacity change from 0 to 32768
[  166.938319][ T6316] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  166.950906][ T6318] device batadv0 left promiscuous mode
[  166.963054][ T6318] bridge0: port 4(batadv0) entered disabled state
[  167.001946][   T11] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled
[  167.012325][   T11] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled
[  167.034639][ T4623] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  167.285073][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  167.332531][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  167.394271][ T6094] 8021q: adding VLAN 0 to HW filter on device batadv0
[  167.690304][ T6338] block nbd1: server does not support multiple connections per device.
[  167.702269][ T6331] block nbd1: shutting down sockets
[  168.013614][ T6346] IPVS: lblc: UDP 224.0.0.2:0 - no destination available
[  168.730695][ T6374] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant.
[  168.730695][ T6374] The task syz.4.711 (6374) triggered the difference, watch for misbehavior.
[  168.847134][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  168.872817][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  168.935829][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  168.990873][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  169.007610][ T6094] device veth0_vlan entered promiscuous mode
[  169.017148][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  169.027548][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  169.086144][ T6094] device veth1_vlan entered promiscuous mode
[  169.199503][ T6153] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  169.209028][ T6153] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  169.225321][ T6153] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  169.256567][ T6153] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  169.277357][ T6094] device veth0_macvtap entered promiscuous mode
[  169.299293][ T6094] device veth1_macvtap entered promiscuous mode
[  169.361125][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.406852][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.430432][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.461338][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.500531][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.530379][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.566493][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.606990][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.651208][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  169.708000][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  169.761479][ T6094] batman_adv: batadv0: Interface activated: batadv_slave_0
[  169.782525][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  169.821387][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  169.822799][ T6398] usb usb6: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  169.859444][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  169.911392][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  169.972017][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  169.990017][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.039975][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.068795][ T6396] loop4: detected capacity change from 0 to 8192
[  170.086919][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.117747][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.138295][ T6396] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  170.205007][ T6396] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  170.232003][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.245505][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.257367][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.267710][ T6094] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  170.278840][ T6094] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  170.290866][ T6094] batman_adv: batadv0: Interface activated: batadv_slave_1
[  170.309692][ T6408] netlink: 56 bytes leftover after parsing attributes in process `syz.1.722'.
[  170.316461][ T6094] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  170.330603][ T6396] REISERFS (device loop4): using ordered data mode
[  170.337294][ T6396] reiserfs: using flush barriers
[  170.349959][ T6094] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  170.379203][ T6094] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  170.425860][ T6094] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  170.436943][ T6396] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  170.497678][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  170.506571][ T6396] REISERFS (device loop4): checking transaction log (loop4)
[  170.525835][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  170.808524][ T6153] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  170.838260][ T6153] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  170.901109][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  170.923755][ T6396] REISERFS (device loop4): Using tea hash to sort names
[  170.943070][ T6396] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  171.043209][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  171.102092][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  171.160974][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  171.531513][ T6434] netlink: 'syz.6.634': attribute type 10 has an invalid length.
[  171.633919][ T6434] 8021q: adding VLAN 0 to HW filter on device batadv0
[  171.671025][ T6434] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  172.190230][ T4349] usb 5-1: new high-speed USB device number 6 using dummy_hcd
[  172.400041][ T4349] usb 5-1: Using ep0 maxpacket: 16
[  172.407421][ T4349] usb 5-1: config 1 interface 0 altsetting 255 endpoint 0x1 has invalid wMaxPacketSize 0
[  172.438161][ T4349] usb 5-1: config 1 interface 0 altsetting 255 bulk endpoint 0x1 has invalid maxpacket 0
[  172.452211][ T6459] loop1: detected capacity change from 0 to 1024
[  172.480791][ T4349] usb 5-1: config 1 interface 0 altsetting 255 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  172.510168][ T6459] EXT4-fs (loop1): revision level too high, forcing read-only mode
[  172.534679][ T4349] usb 5-1: config 1 interface 0 has no altsetting 0
[  172.543357][ T6459] EXT4-fs (loop1): orphan cleanup on readonly fs
[  172.556888][ T4349] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40
[  172.568170][ T6459] EXT4-fs error (device loop1): ext4_free_blocks:6205: comm syz.1.742: Freeing blocks not in datazone - block = 0, count = 4096
[  172.583451][ T4349] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  172.591654][ T4349] usb 5-1: Product: syz
[  172.596029][ T4349] usb 5-1: Manufacturer: syz
[  172.605841][ T4349] usb 5-1: SerialNumber: syz
[  172.611516][ T6459] EXT4-fs (loop1): 1 orphan inode deleted
[  172.631198][ T6459] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  172.831049][ T4349] usblp 5-1:1.0: usblp0: USB Unidirectional printer dev 6 if 0 alt 255 proto 1 vid 0x0525 pid 0xA4A8
[  172.924424][ T4269] EXT4-fs (loop1): unmounting filesystem.
[  173.288594][ T6477] loop5: detected capacity change from 0 to 32768
[  173.298006][ T6477] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 10
[  173.496300][ T6160] usb 5-1: USB disconnect, device number 6
[  173.522777][ T6160] usblp0: removed
[  173.762862][ T4395] BTRFS error: device /dev/loop5 already registered with a higher generation, found 8 expect 10
[  173.829427][ T6498] loop6: detected capacity change from 0 to 512
[  173.954835][ T6498] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback.
[  173.964239][ T5731] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[  174.008912][ T6498] ext4 filesystem being mounted at /6/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  174.174524][ T5731] usb 4-1: New USB device found, idVendor=0ccd, idProduct=00b3, bcdDevice=2d.ea
[  174.200082][ T5731] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  174.243578][ T5731] usb 4-1: Product: syz
[  174.248425][ T5731] usb 4-1: Manufacturer: syz
[  174.276693][ T6513] loop4: detected capacity change from 0 to 22
[  174.278698][ T6094] EXT4-fs (loop6): unmounting filesystem.
[  174.283870][ T5731] usb 4-1: SerialNumber: syz
[  174.329526][ T6513] MTD: Attempt to mount non-MTD device "/dev/loop4"
[  174.347502][ T5731] usb 4-1: config 0 descriptor??
[  174.378760][ T6513] romfs: Mounting image 'rom 637cf1fa' through the block layer
[  174.577064][ T5731] usb 4-1: dvb_usb_v2: found a 'TerraTec NOXON DAB Stick' in warm state
[  174.917065][ T6160] kernel write not supported for file bpf-prog (pid: 6160 comm: kworker/0:18)
[  175.392519][ T5731] dvb_usb_rtl28xxu: probe of 4-1:0.0 failed with error -71
[  175.412204][ T5731] usb 4-1: USB disconnect, device number 8
[  175.574790][ T6511] loop5: detected capacity change from 0 to 32768
[  175.730671][ T6511] XFS (loop5): Mounting V5 Filesystem
[  175.790885][ T6555] block nbd6: shutting down sockets
[  175.841515][ T6559] netlink: 'syz.1.774': attribute type 34 has an invalid length.
[  175.850609][ T6511] XFS (loop5): Ending clean mount
[  175.937532][ T6511] XFS (loop5): Quotacheck needed: Please wait.
[  176.138493][ T6568] netlink: 4 bytes leftover after parsing attributes in process `syz.6.776'.
[  176.150932][ T6511] XFS (loop5): Quotacheck: Done.
[  176.229650][ T6568] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  176.445557][ T5503] XFS (loop5): Unmounting Filesystem
[  176.474939][ T6579] loop1: detected capacity change from 0 to 1024
[  176.498036][ T6579] EXT4-fs: Ignoring removed nomblk_io_submit option
[  176.573875][ T6568] batman_adv: batadv0: Removing interface: batadv_slave_1
[  176.583705][ T6579] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  176.665744][ T6579] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  176.699328][ T6579] System zones: 0-1, 3-36
[  176.706279][ T6579] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  176.896665][ T6579] capability: warning: `syz.1.779' uses deprecated v2 capabilities in a way that may be insecure
[  177.132426][ T4269] EXT4-fs (loop1): unmounting filesystem.
[  177.425806][ T6605] loop6: detected capacity change from 0 to 256
[  177.556289][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  177.556306][   T26] audit: type=1804 audit(2000000315.664:151): pid=6605 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.789" name="/newroot/14/file0/bus" dev="loop6" ino=1048612 res=1 errno=0
[  178.439568][ T6632] loop3: detected capacity change from 0 to 512
[  178.539643][ T6632] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.798: inode #1: comm syz.3.798: iget: illegal inode #
[  178.635762][ T6632] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.798: error while reading EA inode 1 err=-117
[  178.649383][ T6632] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: comm syz.3.798: inode #1: comm syz.3.798: iget: illegal inode #
[  178.694146][ T6632] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.798: error while reading EA inode 1 err=-117
[  178.723178][ T6632] EXT4-fs (loop3): 1 orphan inode deleted
[  178.732502][ T6632] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  179.074822][ T4266] EXT4-fs (loop3): unmounting filesystem.
[  179.615298][ T6667] loop1: detected capacity change from 0 to 4096
[  179.676142][ T6663] loop4: detected capacity change from 0 to 8192
[  179.754960][ T6663] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  179.820022][ T6663] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal
[  179.940138][ T6663] REISERFS (device loop4): using ordered data mode
[  179.954042][ T6663] reiserfs: using flush barriers
[  179.978363][ T6663] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  180.072749][ T6663] REISERFS (device loop4): checking transaction log (loop4)
[  180.440579][ T6663] REISERFS (device loop4): Using tea hash to sort names
[  180.466247][ T6663] REISERFS warning (device loop4): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[  180.533007][ T6667] EXT4-fs (loop1): Test dummy encryption mode enabled
[  180.553403][ T6663] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage.
[  180.580692][ T6667] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  180.647660][ T6667] System zones: 0-5
[  180.687201][ T6667] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  180.996019][ T4269] EXT4-fs (loop1): unmounting filesystem.
[  181.029209][ T6669] loop5: detected capacity change from 0 to 32768
[  181.097338][ T6682] loop6: detected capacity change from 0 to 32768
[  181.178551][ T6682] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop6 scanned by syz.6.810 (6682)
[  181.204511][ T6669] XFS (loop5): Mounting V5 Filesystem
[  181.342629][ T6682] BTRFS info (device loop6): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  181.348209][ T6712] loop3: detected capacity change from 0 to 64
[  181.429734][ T6669] XFS (loop5): Ending clean mount
[  181.438017][ T6669] XFS (loop5): Quotacheck needed: Please wait.
[  181.483317][ T6682] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm
[  181.533790][ T6669] XFS (loop5): Quotacheck: Done.
[  181.539901][ T6682] BTRFS info (device loop6): enabling disk space caching
[  181.560035][ T6682] BTRFS info (device loop6): force clearing of disk cache
[  181.567923][ T6682] BTRFS info (device loop6): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[  181.609112][ T6682] BTRFS info (device loop6): use zstd compression, level 3
[  181.661281][ T6682] BTRFS info (device loop6): disk space caching is enabled
[  181.821284][ T6715] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  181.829465][ T5503] XFS (loop5): Unmounting Filesystem
[  182.071163][ T5731] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[  182.135790][ T6715] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.191208][ T6682] BTRFS info (device loop6): enabling ssd optimizations
[  182.255126][ T6682] BTRFS info (device loop6): rebuilding free space tree
[  182.317296][ T6682] BTRFS info (device loop6): disabling free space tree
[  182.323189][ T5731] usb 2-1: Using ep0 maxpacket: 32
[  182.341961][ T5731] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  182.370917][ T6682] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[  182.382696][ T5731] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  182.438567][ T5731] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  182.444907][ T6682] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[  182.498260][ T5731] usb 2-1: Product: syz
[  182.508441][ T5731] usb 2-1: Manufacturer: syz
[  182.523706][ T6715] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.528744][ T5731] usb 2-1: SerialNumber: syz
[  182.611105][ T5731] usb 2-1: config 0 descriptor??
[  182.631459][ T6721] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  182.689022][ T5731] hub 2-1:0.0: bad descriptor, ignoring hub
[  182.710941][ T5731] hub: probe of 2-1:0.0 failed with error -5
[  182.815456][ T6715] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  182.832421][ T6094] BTRFS info (device loop6): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0
[  182.899678][ T5731] usb 2-1: USB disconnect, device number 9
[  183.063008][ T4395] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 11 /dev/loop6 scanned by udevd (4395)
[  183.399168][ T5731] usb 2-1: new high-speed USB device number 10 using dummy_hcd
[  183.567115][ T6715] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  183.589869][ T5731] usb 2-1: Using ep0 maxpacket: 32
[  183.597118][ T5731] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  183.657463][ T6715] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  183.659120][ T5731] usb 2-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  183.719741][ T5731] usb 2-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  183.733253][ T6715] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  183.755494][ T5731] usb 2-1: Product: syz
[  183.765021][ T5731] usb 2-1: Manufacturer: syz
[  183.769698][ T5731] usb 2-1: SerialNumber: syz
[  183.803233][ T5731] usb 2-1: config 0 descriptor??
[  183.810951][ T6721] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[  183.825856][ T5731] hub 2-1:0.0: bad descriptor, ignoring hub
[  183.841183][ T6715] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  183.847478][ T5731] hub: probe of 2-1:0.0 failed with error -5
[  184.082216][ T5739] usb 7-1: new high-speed USB device number 2 using dummy_hcd
[  184.210177][ T5736] usb 2-1: USB disconnect, device number 10
[  184.269910][ T5739] usb 7-1: Using ep0 maxpacket: 32
[  184.277306][ T5739] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  184.308865][ T5739] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 17853, setting to 1024
[  184.322037][ T5739] usb 7-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[  184.338709][ T6766] loop5: detected capacity change from 0 to 32768
[  184.339969][ T5739] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  184.359624][ T5739] usb 7-1: config 0 descriptor??
[  184.377163][ T6766] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop5 scanned by syz.5.826 (6766)
[  184.400669][ T6769] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22
[  184.415022][ T5739] hub 7-1:0.0: USB hub found
[  184.429325][ T6766] BTRFS info (device loop5): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  184.442092][ T6766] BTRFS info (device loop5): using blake2b (blake2b-256-generic) checksum algorithm
[  184.457692][ T6766] BTRFS info (device loop5): using free space tree
[  184.627705][ T5739] hub 7-1:0.0: 1 port detected
[  184.746390][ T6805] loop1: detected capacity change from 0 to 256
[  184.754491][ T6766] BTRFS info (device loop5): enabling ssd optimizations
[  184.792800][ T6801] netlink: 12 bytes leftover after parsing attributes in process `syz.4.835'.
[  185.262348][ T6815] netlink: 4 bytes leftover after parsing attributes in process `syz.4.838'.
[  185.283213][ T6815] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  185.398865][ T5503] BTRFS info (device loop5): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  185.512033][ T5739] hub 7-1:0.0: hub_ext_port_status failed (err = -71)
[  185.836930][ T6815] batman_adv: batadv0: Removing interface: batadv_slave_0
[  186.359046][ T5730] usb 7-1: USB disconnect, device number 2
[  186.553905][ T6830] loop1: detected capacity change from 0 to 32768
[  186.615280][ T6830] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[  186.649045][ T6830] XFS (loop1): Mounting V5 Filesystem
[  186.736430][ T6830] XFS (loop1): Ending clean mount
[  186.755390][ T6830] XFS (loop1): Quotacheck needed: Please wait.
[  186.842517][ T6830] XFS (loop1): Quotacheck: Done.
[  187.048607][ T4269] XFS (loop1): Unmounting Filesystem
[  187.658591][ T6866] loop3: detected capacity change from 0 to 32768
[  187.678309][ T6866] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 10
[  187.725761][ T4395] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  188.243559][ T6866] loop3: detected capacity change from 0 to 32768
[  188.281981][ T4395] I/O error, dev loop3, sector 32640 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  188.459282][ T6886] loop1: detected capacity change from 0 to 4096
[  188.497532][ T6886] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512)
[  189.090056][ T6819] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[  189.290329][ T6819] usb 4-1: Using ep0 maxpacket: 8
[  189.301982][ T6819] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  189.329946][ T6819] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  189.354753][ T6819] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[  189.361579][ T6904] loop1: detected capacity change from 0 to 4096
[  189.388606][ T6819] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[  189.407995][ T6819] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  189.420233][ T6819] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  189.466607][ T6907] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  189.674678][ T6819] usb 4-1: GET_CAPABILITIES returned 0
[  189.681039][ T6819] usbtmc 4-1:16.0: can't read capabilities
[  189.896416][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  189.920177][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  189.929709][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  189.961296][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  189.972897][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.054525][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.064338][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.074185][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.084028][    C0] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.135916][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.145480][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.192343][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.201628][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.211175][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.220883][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.230202][    C1] usbtmc 4-1:16.0: usbtmc_read_bulk_cb - nonzero read bulk status received: -71
[  190.257642][ T6920] loop1: detected capacity change from 0 to 2048
[  190.287797][ T4376] tipc: Subscription rejected, illegal request
[  190.341160][ T4274] usb 4-1: USB disconnect, device number 9
[  190.379960][ T6927] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[  190.632008][ T6935] loop6: detected capacity change from 0 to 256
[  190.671085][ T6935] FAT-fs (loop6): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  190.727195][ T6935] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  191.053066][ T6942] netlink: 4 bytes leftover after parsing attributes in process `syz.3.881'.
[  191.130481][ T6942] chnl_net:caif_netlink_parms(): no params data found
[  192.056441][ T6931] loop5: detected capacity change from 0 to 40427
[  192.093258][ T6941] loop4: detected capacity change from 0 to 131072
[  192.109122][ T6941] F2FS-fs (loop4): QUOTA feature is enabled, so ignore qf_name
[  192.118905][ T6941] F2FS-fs (loop4): invalid crc value
[  192.130964][ T6931] F2FS-fs (loop5): build fault injection attr: rate: 771, type: 0x3ffff
[  192.141912][ T6941] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387)
[  192.196322][ T6941] F2FS-fs (loop4): recover fsync data on readonly fs
[  192.203998][ T6941] F2FS-fs (loop4): Mounted with checkpoint version = 753bd00b
[  192.207081][ T6931] F2FS-fs (loop5): invalid crc value
[  192.286017][ T6931] F2FS-fs (loop5): Found nat_bits in checkpoint
[  192.388826][ T6939] loop1: detected capacity change from 0 to 32768
[  192.488294][ T6931] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5
[  192.499297][ T6939] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[  192.770392][ T6967] netlink: 8 bytes leftover after parsing attributes in process `syz.3.887'.
[  192.906959][ T4269] ocfs2: Unmounting device (7,1) on (node local)
[  192.960198][ T6974] loop4: detected capacity change from 0 to 8
[  193.030411][ T5503] syz-executor: attempt to access beyond end of device
[  193.030411][ T5503] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  193.060636][ T6974] SQUASHFS error: zlib decompression failed, data probably corrupt
[  193.079967][ T6974] SQUASHFS error: Failed to read block 0x9b: -5
[  193.086301][ T6974] SQUASHFS error: Unable to read metadata cache entry [99]
[  193.149835][ T6974] SQUASHFS error: Unable to read inode 0x127
[  193.742363][ T6957] loop6: detected capacity change from 0 to 32768
[  193.837174][ T6957] XFS (loop6): DAX unsupported by block device. Turning off DAX.
[  193.944451][ T6957] XFS (loop6): Mounting V5 Filesystem
[  194.166624][ T6957] XFS (loop6): Ending clean mount
[  194.215002][ T6957] XFS (loop6): Quotacheck needed: Please wait.
[  194.308311][ T6957] XFS (loop6): Quotacheck: Done.
[  194.340001][ T6957] XFS (loop6): User initiated shutdown received.
[  194.367941][ T6957] XFS (loop6): Log I/O Error (0x6) detected at xfs_fs_goingdown+0x6d/0x150 (fs/xfs/xfs_fsops.c:499).  Shutting down filesystem.
[  194.396048][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.402494][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.447365][ T6957] XFS (loop6): Please unmount the filesystem and rectify the problem(s)
[  194.527862][ T6957] XFS (loop6): xfs_imap_lookup: xfs_ialloc_read_agi() returned error -5, agno 0
[  194.747208][ T6094] XFS (loop6): Unmounting Filesystem
[  196.470204][ T4286] Bluetooth: hci1: command 0x0406 tx timeout
[  196.470223][ T4287] Bluetooth: hci0: command 0x0406 tx timeout
[  196.470258][ T4287] Bluetooth: hci4: command 0x0406 tx timeout
[  196.476420][ T4286] Bluetooth: hci3: command 0x0406 tx timeout
[  196.588013][ T7063] loop5: detected capacity change from 0 to 8192
[  196.623689][ T7063] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  196.643144][ T7063] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal
[  196.687057][ T7063] REISERFS (device loop5): using ordered data mode
[  196.714535][ T7063] reiserfs: using flush barriers
[  196.738596][ T7063] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  196.794548][ T7063] REISERFS (device loop5): checking transaction log (loop5)
[  196.982931][ T7071] netlink: 64 bytes leftover after parsing attributes in process `syz.6.915'.
[  197.062184][ T7063] REISERFS (device loop5): Using tea hash to sort names
[  197.087714][ T7063] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage.
[  197.095992][ T4285] block nbd4: Receive control failed (result -32)
[  197.100816][ T7055] block nbd4: shutting down sockets
[  197.652912][ T7089] loop3: detected capacity change from 0 to 128
[  197.719630][ T7089] FAT-fs (loop3): Directory bread(block 162) failed
[  197.739116][ T7089] FAT-fs (loop3): Directory bread(block 163) failed
[  197.762833][ T7089] FAT-fs (loop3): Directory bread(block 164) failed
[  197.770169][ T5730] usb 5-1: new high-speed USB device number 7 using dummy_hcd
[  197.792943][ T7089] FAT-fs (loop3): Directory bread(block 165) failed
[  197.802486][   T26] audit: type=1326 audit(2000000335.914:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  197.832535][ T7089] FAT-fs (loop3): Directory bread(block 166) failed
[  197.862738][ T7089] FAT-fs (loop3): Directory bread(block 167) failed
[  197.872910][ T7089] FAT-fs (loop3): Directory bread(block 168) failed
[  197.886942][   T26] audit: type=1326 audit(2000000335.934:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  197.903767][ T7089] FAT-fs (loop3): Directory bread(block 169) failed
[  197.969890][ T5730] usb 5-1: Using ep0 maxpacket: 32
[  197.977118][ T5730] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 1024
[  198.004945][   T26] audit: type=1326 audit(2000000335.944:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=53 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.033565][ T5730] usb 5-1: New USB device found, idVendor=12d8, idProduct=0001, bcdDevice=de.79
[  198.077295][ T5730] usb 5-1: New USB device strings: Mfr=1, Product=236, SerialNumber=2
[  198.116783][   T26] audit: type=1326 audit(2000000335.944:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.136242][ T5730] usb 5-1: Product: syz
[  198.154472][ T5730] usb 5-1: Manufacturer: syz
[  198.159247][ T5730] usb 5-1: SerialNumber: syz
[  198.217172][   T26] audit: type=1326 audit(2000000335.944:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.218534][ T5730] usb 5-1: config 0 descriptor??
[  198.311403][ T7085] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[  198.320048][   T26] audit: type=1326 audit(2000000335.944:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.359397][ T5730] hub 5-1:0.0: bad descriptor, ignoring hub
[  198.390253][ T5730] hub: probe of 5-1:0.0 failed with error -5
[  198.470601][   T26] audit: type=1326 audit(2000000335.944:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.504670][ T7108] loop3: detected capacity change from 0 to 128
[  198.599350][   T26] audit: type=1326 audit(2000000335.944:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.710755][   T26] audit: type=1326 audit(2000000335.944:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=125 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.839260][   T26] audit: type=1326 audit(2000000335.954:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.6.923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcf9958f749 code=0x7ffc0000
[  198.950166][ T4274] usb 5-1: reset high-speed USB device number 7 using dummy_hcd
[  198.980354][ T4274] usb 5-1: device reset changed ep0 maxpacket size!
[  199.036969][ T4274] usb 5-1: USB disconnect, device number 7
[  199.190093][ T5730] usb 7-1: new high-speed USB device number 3 using dummy_hcd
[  199.298758][ T7126] loop3: detected capacity change from 0 to 8192
[  199.344435][ T7126] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  199.389878][ T5730] usb 7-1: Using ep0 maxpacket: 16
[  199.401879][ T5730] usb 7-1: config 1 contains an unexpected descriptor of type 0x2, skipping
[  199.420675][ T5730] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[  199.430910][ T4274] usb 5-1: new high-speed USB device number 8 using dummy_hcd
[  199.432206][ T5730] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 3
[  199.438705][ T7126] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal
[  199.450419][ T5730] usb 7-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40
[  199.466175][ T5730] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.474725][ T5730] usb 7-1: Product: syz
[  199.479258][ T5730] usb 7-1: Manufacturer: syz
[  199.484091][ T5730] usb 7-1: SerialNumber: syz
[  199.509676][ T7126] REISERFS (device loop3): using ordered data mode
[  199.523193][ T7126] reiserfs: using flush barriers
[  199.536774][ T7126] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  199.543119][ T7106] loop5: detected capacity change from 0 to 32768
[  199.554083][ T7126] REISERFS (device loop3): checking transaction log (loop3)
[  199.582264][ T7126] REISERFS (device loop3): Using r5 hash to sort names
[  199.638569][ T7126] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 1) not found (pos 2)
[  199.663333][ T4274] usb 5-1: config 0 has no interfaces?
[  199.675636][ T4274] usb 5-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=de.7f
[  199.729934][ T4274] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  199.735274][ T7126] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[  199.748344][ T7106] read_mapping_page failed!
[  199.769823][ T4274] usb 5-1: Product: syz
[  199.780408][ T7106] ERROR: (device loop5): txCommit: 
[  199.780408][ T7106] 
[  199.809069][ T4274] usb 5-1: Manufacturer: syz
[  199.830010][ T4274] usb 5-1: SerialNumber: syz
[  199.858637][ T4274] usb 5-1: config 0 descriptor??
[  199.913392][ T5730] usb 7-1: 0:2 : does not exist
[  200.028835][ T5503] read_mapping_page failed!
[  200.042942][ T5503] ERROR: (device loop5): txCommit: 
[  200.042942][ T5503] 
[  200.143672][ T4274] usb 5-1: USB disconnect, device number 8
[  200.255411][ T7142] loop1: detected capacity change from 0 to 512
[  200.288028][ T7142] EXT4-fs (loop1): Test dummy encryption mode enabled
[  200.300050][ T7142] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  200.493661][ T7142] EXT4-fs (loop1): 1 truncate cleaned up
[  200.499434][ T7142] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  200.541647][ T5730] usb 7-1: 1:0: failed to get current value for ch 0 (-22)
[  200.635340][ T5730] usb 7-1: USB disconnect, device number 3
[  200.733081][ T7142] EXT4-fs warning (device loop1): __ext4fs_dirhash:270: inode #12: comm syz.1.939: Siphash requires key
[  200.931540][ T4395] udevd[4395]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  200.962960][ T4269] EXT4-fs warning (device loop1): __ext4fs_dirhash:270: inode #2: comm syz-executor: Siphash requires key
[  201.146555][    T9] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.468926][    T9] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.643149][ T7104] EXT4-fs (loop1): unmounting filesystem.
[  201.653171][    T9] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.928684][    T9] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.455775][ T7187] vivid-002: disconnect
[  202.488242][ T7183] vivid-002: reconnect
[  202.534153][ T4286] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  202.548280][ T4286] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  202.559326][ T4286] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  202.573365][ T4286] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  202.582412][ T4286] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  202.590129][ T4286] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  203.006047][ T4286] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  203.032541][ T4286] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  203.042667][ T4286] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  203.061547][ T4286] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  203.071405][ T4286] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  203.079026][ T4286] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  203.256048][ T7181] loop4: detected capacity change from 0 to 32768
[  203.327578][ T7181] 
[  203.327578][ T7181]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  203.327578][ T7181] 
[  203.441925][ T7181] ERROR: (device loop4): diWrite: ixpxd invalid
[  203.441925][ T7181] 
[  203.536769][ T7181] ERROR: (device loop4): txCommit: 
[  203.536769][ T7181] 
[  203.584393][ T7181] jfs_readdir: bad index table
[  203.629508][ T7188] chnl_net:caif_netlink_parms(): no params data found
[  203.711512][   T11] ERROR: (device loop4): diWrite: ixpxd invalid
[  203.711512][   T11] 
[  203.734132][   T11] ERROR: (device loop4): txCommit: 
[  203.734132][   T11] 
[  203.752922][   T11] jfs_write_inode: jfs_commit_inode failed!
[  203.787930][ T4265] 
[  203.787930][ T4265]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  203.787930][ T4265] 
[  203.848482][ T4265] 
[  203.848482][ T4265]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[  203.848482][ T4265] 
[  203.930304][ T4349] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[  204.163001][ T4349] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11
[  204.182965][ T4349] usb 4-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024
[  204.203125][ T4349] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00
[  204.213777][ T4349] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  204.225826][ T7207] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[  204.259688][ T7202] loop6: detected capacity change from 0 to 32768
[  204.403262][ T7202] XFS (loop6): Mounting V5 Filesystem
[  204.564958][ T7202] XFS (loop6): Ending clean mount
[  204.634290][ T4285] Bluetooth: hci3: command 0x0409 tx timeout
[  204.874076][ T7188] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.889973][ T7188] bridge0: port 1(bridge_slave_0) entered disabled state
[  204.926462][ T7188] device bridge_slave_0 entered promiscuous mode
[  204.943708][ T7188] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.963818][ T7188] bridge0: port 2(bridge_slave_1) entered disabled state
[  204.981297][ T7188] device bridge_slave_1 entered promiscuous mode
[  204.981966][ T6094] XFS (loop6): Unmounting Filesystem
[  205.120352][ T4285] Bluetooth: hci5: command 0x0409 tx timeout
[  205.138076][ T7188] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  205.321684][ T4349] aiptek 4-1:17.0: Aiptek using 400 ms programming speed
[  205.332550][ T4349] input: Aiptek as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:17.0/input/input16
[  205.444738][    C1] aiptek 4-1:17.0: aiptek_irq - usb_submit_urb failed with result -19
[  205.456505][ T4349] usb 4-1: USB disconnect, device number 10
[  205.600323][ T7188] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  205.609702][ T7193] chnl_net:caif_netlink_parms(): no params data found
[  205.776454][ T7188] team0: Port device team_slave_0 added
[  205.827825][    T9] device hsr_slave_0 left promiscuous mode
[  205.867039][    T9] device hsr_slave_1 left promiscuous mode
[  205.940603][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  205.958059][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  206.001054][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  206.008823][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  206.063138][    T9] device bridge_slave_1 left promiscuous mode
[  206.086054][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  206.179413][    T9] device bridge_slave_0 left promiscuous mode
[  206.208436][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  206.243864][ T7254] loop4: detected capacity change from 0 to 256
[  206.261288][ T7254] exFAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  206.309071][ T7254] exFAT-fs (loop4): Medium has reported failures. Some data may be lost.
[  206.361867][ T7254] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[  206.394516][    T9] device veth1_macvtap left promiscuous mode
[  206.418034][    T9] device veth0_macvtap left promiscuous mode
[  206.426413][    T9] device veth1_vlan left promiscuous mode
[  206.460282][    T9] device veth0_vlan left promiscuous mode
[  206.629879][ T5738] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[  206.710841][ T4285] Bluetooth: hci3: command 0x041b tx timeout
[  206.790968][ T7248] loop6: detected capacity change from 0 to 32768
[  206.809278][ T7248] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop6 scanned by syz.6.964 (7248)
[  206.830909][ T5738] usb 4-1: config index 0 descriptor too short (expected 23569, got 27)
[  206.850772][ T5738] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  206.907852][ T5738] usb 4-1: New USB device found, idVendor=03eb, idProduct=0002, bcdDevice=ba.c0
[  206.907962][ T7248] BTRFS info (device loop6): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  206.935793][ T5738] usb 4-1: New USB device strings: Mfr=5, Product=0, SerialNumber=0
[  206.967656][ T7248] BTRFS info (device loop6): using blake2b (blake2b-256-generic) checksum algorithm
[  206.978801][ T5738] usb 4-1: Manufacturer: syz
[  206.999373][ T7248] BTRFS info (device loop6): using free space tree
[  207.006104][ T5738] usb 4-1: config 0 descriptor??
[  207.190024][ T4285] Bluetooth: hci5: command 0x041b tx timeout
[  207.209250][ T7248] BTRFS info (device loop6): enabling ssd optimizations
[  207.281561][ T5738] rc_core: IR keymap rc-hauppauge not found
[  207.298461][ T5738] Registered IR keymap rc-empty
[  207.329079][ T5738] rc rc0: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0
[  207.401693][ T5738] input: IgorPlug-USB IR Receiver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/rc/rc0/input17
[  207.465239][    C0] igorplugusb 4-1:0.0: Error: urb status = -32
[  207.550471][ T5738] usb 4-1: USB disconnect, device number 11
[  207.717900][ T6094] BTRFS info (device loop6): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8
[  207.995798][ T4395] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 10 /dev/loop6 scanned by udevd (4395)
[  208.729830][ T6755] usb 7-1: new full-speed USB device number 4 using dummy_hcd
[  208.793073][ T4285] Bluetooth: hci3: command 0x040f tx timeout
[  208.953024][ T6755] usb 7-1: config 0 has an invalid interface number: 41 but max is 0
[  208.969849][ T6755] usb 7-1: config 0 has no interface number 0
[  208.976747][ T6755] usb 7-1: config 0 interface 41 has no altsetting 0
[  208.999976][ T6755] usb 7-1: New USB device found, idVendor=0fe6, idProduct=9800, bcdDevice=d1.9a
[  209.012203][ T6755] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  209.027858][ T6755] usb 7-1: Product: syz
[  209.049434][ T6755] usb 7-1: Manufacturer: syz
[  209.056082][ T6755] usb 7-1: SerialNumber: syz
[  209.077429][ T6755] usb 7-1: config 0 descriptor??
[  209.248329][ T7313] loop4: detected capacity change from 0 to 32768
[  209.270158][ T4285] Bluetooth: hci5: command 0x040f tx timeout
[  209.328607][ T6755] CoreChips: probe of 7-1:0.41 failed with error -71
[  209.367492][ T6755] usb 7-1: USB disconnect, device number 4
[  209.421515][ T7313] XFS (loop4): Mounting V5 Filesystem
[  209.482754][ T7313] XFS (loop4): Ending clean mount
[  209.554048][    T9] team0 (unregistering): Port device team_slave_1 removed
[  209.677669][    T9] team0 (unregistering): Port device team_slave_0 removed
[  209.755268][ T4265] XFS (loop4): Unmounting Filesystem
[  209.808339][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  210.040973][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  210.240795][ T7329] loop6: detected capacity change from 0 to 128
[  210.299277][ T7329] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  210.329370][ T7329] ext4 filesystem being mounted at /57/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  210.527227][ T6094] EXT4-fs (loop6): unmounting filesystem.
[  210.652957][ T7333] loop6: detected capacity change from 0 to 2048
[  210.742360][ T7333] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  210.804348][ T7333] EXT4-fs error (device loop6): ext4_free_inode:355: comm syz.6.983: bit already cleared for inode 15
[  210.876814][ T4285] Bluetooth: hci3: command 0x0419 tx timeout
[  210.968815][ T6094] EXT4-fs (loop6): unmounting filesystem.
[  211.382435][ T4285] Bluetooth: hci5: command 0x0419 tx timeout
[  211.619319][    T9] bond0 (unregistering): Released all slaves
[  211.720536][ T7188] team0: Port device team_slave_1 added
[  211.765083][ T7339] tun0: tun_chr_ioctl cmd 2147767506
[  211.771173][ T7340] tun0: tun_chr_ioctl cmd 1074066701
[  211.871641][ T7188] batman_adv: batadv0: Adding interface: batadv_slave_0
[  211.878750][ T7188] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  211.905486][ T7188] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  211.920263][ T7193] bridge0: port 1(bridge_slave_0) entered blocking state
[  211.927581][ T7193] bridge0: port 1(bridge_slave_0) entered disabled state
[  211.937356][ T7193] device bridge_slave_0 entered promiscuous mode
[  211.962234][ T7188] batman_adv: batadv0: Adding interface: batadv_slave_1
[  211.969271][ T7188] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  212.008873][ T7188] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  212.022376][ T7193] bridge0: port 2(bridge_slave_1) entered blocking state
[  212.029567][ T7193] bridge0: port 2(bridge_slave_1) entered disabled state
[  212.105848][ T7193] device bridge_slave_1 entered promiscuous mode
[  212.120189][ T7348] loop4: detected capacity change from 0 to 1024
[  212.128445][ T7348] EXT4-fs: Ignoring removed nomblk_io_submit option
[  212.148596][ T7348] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  212.176090][ T7348] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003]
[  212.190630][ T7348] System zones: 0-1, 3-36
[  212.202755][ T7348] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  212.333528][ T7188] device hsr_slave_0 entered promiscuous mode
[  212.371457][ T7188] device hsr_slave_1 entered promiscuous mode
[  212.435096][ T7188] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  212.443872][ T7188] Cannot create hsr debugfs directory
[  212.471510][ T4265] EXT4-fs (loop4): unmounting filesystem.
[  212.504642][ T7193] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  212.646994][ T7193] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  212.862232][ T7193] team0: Port device team_slave_0 added
[  212.914440][ T7193] team0: Port device team_slave_1 added
[  213.019652][ T7193] batman_adv: batadv0: Adding interface: batadv_slave_0
[  213.030503][ T7193] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.088916][ T7193] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  213.177237][ T7193] batman_adv: batadv0: Adding interface: batadv_slave_1
[  213.200148][ T7193] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  213.269867][ T7193] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  213.407475][ T7193] device hsr_slave_0 entered promiscuous mode
[  213.454630][ T7193] device hsr_slave_1 entered promiscuous mode
[  213.500241][ T7193] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  213.508168][ T7193] Cannot create hsr debugfs directory
[  213.706991][    T9] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  213.981732][    T9] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.202833][    T9] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.245053][ T7188] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  214.289953][ T7188] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  214.352115][    T9] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.457970][ T7188] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  214.471073][ T7188] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  214.755837][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  214.807224][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  214.885922][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  215.120732][ T7188] 8021q: adding VLAN 0 to HW filter on device bond0
[  215.307475][ T7428] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1009'.
[  215.350117][ T7428] netlink: 35 bytes leftover after parsing attributes in process `syz.4.1009'.
[  215.384416][ T7188] 8021q: adding VLAN 0 to HW filter on device team0
[  215.390063][ T7428] netlink: 'syz.4.1009': attribute type 5 has an invalid length.
[  215.410686][ T7428] netlink: 'syz.4.1009': attribute type 6 has an invalid length.
[  215.418673][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  215.465812][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  215.480688][ T7428] netlink: 35 bytes leftover after parsing attributes in process `syz.4.1009'.
[  215.496929][ T7193] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  215.511835][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  215.573864][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  215.577502][ T7193] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  215.609883][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  215.730099][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  215.747219][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  215.805058][   T46] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.812317][   T46] bridge0: port 1(bridge_slave_0) entered forwarding state
[  215.860535][ T7193] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  215.962072][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  216.001475][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  216.020840][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  216.037132][   T46] bridge0: port 2(bridge_slave_1) entered blocking state
[  216.044371][   T46] bridge0: port 2(bridge_slave_1) entered forwarding state
[  216.060496][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  216.080510][ T7193] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  216.158989][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  216.181564][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  216.212346][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  216.227855][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  216.251612][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  216.267904][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  216.455850][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  216.476522][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  216.596229][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  216.630731][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  216.682672][ T7188] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  216.847881][ T7460] netlink: 64 bytes leftover after parsing attributes in process `syz.6.1015'.
[  217.140735][ T7193] 8021q: adding VLAN 0 to HW filter on device bond0
[  217.300751][ T7193] 8021q: adding VLAN 0 to HW filter on device team0
[  217.308076][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  217.335684][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  217.357142][ T7476] loop3: detected capacity change from 0 to 2048
[  217.433504][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  217.445977][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  217.449645][ T7476]  loop3: p2 < > p4
[  217.455342][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[  217.465338][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[  217.475069][ T7476] loop3: p4 size 8192 extends beyond EOD, truncated
[  217.543818][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  217.575511][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  217.605307][   T75] bridge0: port 2(bridge_slave_1) entered blocking state
[  217.612924][   T75] bridge0: port 2(bridge_slave_1) entered forwarding state
[  217.693836][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  217.747835][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  218.055262][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  218.097917][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  218.129881][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  218.259488][    T9] device hsr_slave_0 left promiscuous mode
[  218.285744][    T9] device hsr_slave_1 left promiscuous mode
[  218.299337][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  218.316879][ T4623] udevd[4623]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory
[  218.327998][ T4395] udevd[4395]: inotify_add_watch(7, /dev/loop3p2, 10) failed: No such file or directory
[  218.339025][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  218.372690][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  218.407970][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  218.451475][    T9] device bridge_slave_1 left promiscuous mode
[  218.457962][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.504962][    T9] device bridge_slave_0 left promiscuous mode
[  218.515330][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.572733][ T7506] netlink: 104 bytes leftover after parsing attributes in process `syz.4.1027'.
[  218.630592][    T9] device veth1_macvtap left promiscuous mode
[  218.639117][    T9] device veth0_macvtap left promiscuous mode
[  218.658100][    T9] device veth1_vlan left promiscuous mode
[  218.678267][    T9] device veth0_vlan left promiscuous mode
[  219.853441][    T9] team0 (unregistering): Port device team_slave_1 removed
[  219.930609][    T9] team0 (unregistering): Port device team_slave_0 removed
[  220.003015][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  220.073492][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  220.885947][    T9] bond0 (unregistering): Released all slaves
[  220.985404][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  220.994648][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  221.004390][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  221.013890][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  221.023511][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  221.088016][ T7188] 8021q: adding VLAN 0 to HW filter on device batadv0
[  221.125462][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  221.170191][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  221.234624][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  221.282411][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  221.317091][ T7193] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  221.857314][ T7545] loop4: detected capacity change from 0 to 2048
[  221.932642][ T7545] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[  221.997020][ T7545] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  222.548646][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  222.570466][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  222.618452][ T7193] 8021q: adding VLAN 0 to HW filter on device batadv0
[  222.721366][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  222.732383][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  222.936819][ T7565] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1043'.
[  222.954788][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  222.981946][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  223.012180][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  223.058566][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  223.112018][ T7188] device veth0_vlan entered promiscuous mode
[  223.179230][ T7188] device veth1_vlan entered promiscuous mode
[  223.264121][ T4352] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.364709][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  223.418268][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  223.515418][ T4352] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.554969][ T7188] device veth0_macvtap entered promiscuous mode
[  223.578547][ T7560] loop3: detected capacity change from 0 to 32768
[  223.595191][ T7188] device veth1_macvtap entered promiscuous mode
[  223.692590][ T4352] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  223.739675][ T7560] XFS (loop3): Mounting V5 Filesystem
[  223.883977][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  223.913686][ T7560] XFS (loop3): Ending clean mount
[  223.929257][ T7560] XFS (loop3): Quotacheck needed: Please wait.
[  223.964714][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  224.009827][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  224.030216][ T7560] XFS (loop3): Quotacheck: Done.
[  224.050376][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  224.079584][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  224.117827][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  224.146005][ T7188] batman_adv: batadv0: Interface activated: batadv_slave_0
[  224.188298][ T4352] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.203294][ T4266] XFS (loop3): Unmounting Filesystem
[  224.243550][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  224.260695][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  224.279528][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  224.302139][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  224.331070][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  224.343712][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  224.354619][ T4274] usb 7-1: new high-speed USB device number 5 using dummy_hcd
[  224.362350][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  224.373314][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  224.384549][ T7188] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  224.399433][ T7188] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  224.401967][ T4286] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  224.421318][ T7188] batman_adv: batadv0: Interface activated: batadv_slave_1
[  224.423567][ T4286] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  224.448449][ T4286] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  224.454645][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  224.471775][ T4286] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  224.476463][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  224.479702][ T4286] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  224.497844][ T4286] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  224.509417][ T7188] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  224.518376][ T7188] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  224.528283][ T7188] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  224.546521][ T7188] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  224.572217][ T4274] usb 7-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[  224.582982][ T4274] usb 7-1: config 0 interface 0 has no altsetting 0
[  224.592747][ T4274] usb 7-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  224.598511][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  224.602217][ T4274] usb 7-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  224.602243][ T4274] usb 7-1: Product: syz
[  224.602259][ T4274] usb 7-1: Manufacturer: syz
[  224.602275][ T4274] usb 7-1: SerialNumber: syz
[  224.633874][ T4274] usb 7-1: config 0 descriptor??
[  224.637498][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  224.651807][ T4274] usb 7-1: selecting invalid altsetting 0
[  224.793881][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  224.812528][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  224.866830][ T7193] device veth0_vlan entered promiscuous mode
[  224.884981][ T4349] usb 7-1: USB disconnect, device number 5
[  224.886290][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  224.917527][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  225.033466][ T7193] device veth1_vlan entered promiscuous mode
[  225.188523][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  225.189971][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.207308][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  225.234774][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.254942][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  225.275918][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  225.289445][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  225.564646][ T7193] device veth0_macvtap entered promiscuous mode
[  225.696843][ T7193] device veth1_macvtap entered promiscuous mode
[  225.703811][    T9] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  225.735748][    T9] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  225.864444][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  225.915298][ T7595] chnl_net:caif_netlink_parms(): no params data found
[  225.945795][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  225.990154][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.014875][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.039948][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.059959][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.082351][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.102679][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  226.144591][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.175880][ T7193] batman_adv: batadv0: Interface activated: batadv_slave_0
[  226.259602][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  226.271094][ T6156] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  226.289114][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.329964][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.379862][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.435144][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  226.454949][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.463258][ T7625] 9pnet: p9_errstr2errno: server reported unknown error �@cD��B�|�
[  226.470540][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.499839][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.519639][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  226.547156][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.560094][ T4285] Bluetooth: hci0: command 0x0409 tx timeout
[  226.570089][ T7193] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  226.582043][ T7193] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  226.593942][ T7193] batman_adv: batadv0: Interface activated: batadv_slave_1
[  226.773752][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  226.775635][ T7193] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.807872][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  226.814245][ T7193] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.839131][ T7193] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.846328][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  226.870246][ T7193] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.931514][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  226.947058][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  227.494394][ T7595] bridge0: port 1(bridge_slave_0) entered blocking state
[  227.494881][   T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  227.523118][ T7595] bridge0: port 1(bridge_slave_0) entered disabled state
[  227.549893][   T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  227.554101][ T7627] loop6: detected capacity change from 0 to 40427
[  227.571459][ T7595] device bridge_slave_0 entered promiscuous mode
[  227.657171][ T7627] F2FS-fs (loop6): build fault injection attr: rate: 771, type: 0x3ffff
[  227.681636][ T7627] F2FS-fs (loop6): invalid crc value
[  227.718790][ T7627] F2FS-fs (loop6): Found nat_bits in checkpoint
[  227.758412][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  227.763296][ T4623] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  227.797698][ T7595] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.807504][ T7595] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.838599][ T7595] device bridge_slave_1 entered promiscuous mode
[  227.845215][ T4623] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  227.880660][ T4623] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  227.924674][ T7638] loop3: detected capacity change from 0 to 32768
[  227.939396][ T7627] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5
[  228.068274][ T7638] XFS (loop3): Mounting V5 Filesystem
[  228.105162][ T7644] f2fs_ckpt-7:6: attempt to access beyond end of device
[  228.105162][ T7644] loop6: rw=2049, sector=45096, nr_sectors = 16 limit=40427
[  228.163922][ T4380] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  228.268391][ T7662] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  228.270043][ T4380] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  228.281455][ T7638] XFS (loop3): Ending clean mount
[  228.323524][ T7662] overlayfs: "xino" feature enabled using 3 upper inode bits.
[  228.340158][ T4380] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  228.553587][ T7595] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  228.593280][   T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  228.595285][ T7595] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  228.630036][ T4285] Bluetooth: hci0: command 0x041b tx timeout
[  228.660239][ T4623] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  228.671278][ T4623] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  228.681871][ T4623] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  228.695332][   T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  228.785756][ T6756] XFS (loop3): Metadata CRC error detected at xfs_agfl_read_verify+0x184/0x240, xfs_agfl block 0x3 
[  228.871916][ T6756] XFS (loop3): Unmount and run xfs_repair
[  228.877831][ T6756] XFS (loop3): First 128 bytes of corrupted metadata buffer:
[  228.907688][ T6756] 00000000: 58 41 46 ff 07 00 00 00 bf dc 47 fc 10 d8 4e ed  XAF.......G...N.
[  228.929624][ T6756] 00000010: a5 62 11 a8 31 b3 f7 91 00 00 00 00 00 00 00 00  .b..1...........
[  228.955263][ T6756] 00000020: a5 3b c8 8a ff ff ff ff 00 00 00 07 00 00 00 08  .;..............
[  228.967720][ T6756] 00000030: 00 00 00 09 00 00 00 0a 00 00 00 0b 00 00 00 0c  ................
[  228.991320][ T6756] 00000040: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  229.010517][ T6756] 00000050: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  229.029640][ T6756] 00000060: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  229.049322][ T6756] 00000070: ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff ff  ................
[  229.069474][   T46] XFS (loop3): metadata I/O error in "xfs_alloc_read_agfl+0x1e7/0x3a0" at daddr 0x3 len 1 error 74
[  229.093233][   T46] XFS (loop3): page discard on page ffffea0001320200, inode 0x2449, pos 0.
[  229.107623][   T32] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  229.133046][ T4266] XFS (loop3): Unmounting Filesystem
[  229.267785][ T7595] team0: Port device team_slave_0 added
[  229.351187][ T7595] team0: Port device team_slave_1 added
[  229.517688][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  229.575787][ T4352] device hsr_slave_0 left promiscuous mode
[  229.592125][ T4352] device hsr_slave_1 left promiscuous mode
[  229.640148][ T4352] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  229.652065][ T4352] batman_adv: batadv0: Removing interface: batadv_slave_1
[  229.659635][ T4623] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  229.712865][ T4352] device vlan2 left promiscuous mode
[  229.719503][ T4352] device vlan1 left promiscuous mode
[  229.749373][ T4352] bridge0: port 3(vlan2) entered disabled state
[  229.772938][ T4352] device bridge_slave_1 left promiscuous mode
[  229.779389][ T4352] bridge0: port 2(bridge_slave_1) entered disabled state
[  229.847692][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  229.885192][ T4352] device bridge_slave_0 left promiscuous mode
[  229.892371][ T4352] bridge0: port 1(bridge_slave_0) entered disabled state
[  229.976866][ T4352] device veth1_macvtap left promiscuous mode
[  229.983296][ T4352] device veth0_macvtap left promiscuous mode
[  229.990683][ T4352] device veth1_vlan left promiscuous mode
[  229.997071][ T4352] device veth0_vlan left promiscuous mode
[  230.549340][ T7691] loop3: detected capacity change from 0 to 32768
[  230.701693][ T7691] XFS (loop3): Mounting V5 Filesystem
[  230.733810][ T4285] Bluetooth: hci0: command 0x040f tx timeout
[  230.905820][ T7691] XFS (loop3): Ending clean mount
[  230.926877][ T7691] XFS (loop3): Quotacheck needed: Please wait.
[  231.054588][ T7691] XFS (loop3): Quotacheck: Done.
[  231.197012][ T4266] XFS (loop3): Unmounting Filesystem
[  231.317157][ T4352] team0 (unregistering): Port device team_slave_1 removed
[  231.389599][ T4352] team0 (unregistering): Port device team_slave_0 removed
[  231.461177][ T4352] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  231.536180][ T4352] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  232.176394][ T4352] bond0 (unregistering): Released all slaves
[  232.296629][ T7595] batman_adv: batadv0: Adding interface: batadv_slave_0
[  232.304480][ T7595] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.331527][ T7595] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  232.410554][ T7595] batman_adv: batadv0: Adding interface: batadv_slave_1
[  232.417609][ T7595] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  232.458082][ T7595] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  232.743255][ T7595] device hsr_slave_0 entered promiscuous mode
[  232.752819][ T7595] device hsr_slave_1 entered promiscuous mode
[  232.794180][ T4285] Bluetooth: hci0: command 0x0419 tx timeout
[  233.025699][ T4395] blk_print_req_error: 6 callbacks suppressed
[  233.025717][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  233.104104][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  233.137624][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  233.648537][ T7595] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  233.702371][ T7595] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  233.745384][ T7595] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  233.793674][ T7595] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  234.049010][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  234.100330][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  234.141069][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  234.233930][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  234.275757][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  234.296259][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  234.421391][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  234.504595][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  234.574424][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  234.664417][ T7595] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.711865][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  234.751249][ T4395] I/O error, dev loop7, sector 5242752 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2
[  234.773534][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  234.816180][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  234.826067][ T4395] Buffer I/O error on dev loop7p8, logical block 655344, async page read
[  234.882717][ T7595] 8021q: adding VLAN 0 to HW filter on device team0
[  234.905494][ T7763] loop7: detected capacity change from 0 to 4096
[  234.931079][ T4395] udevd[4395]: inotify_add_watch(7, /dev/loop7p8, 10) failed: No such file or directory
[  234.972017][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  235.000937][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  235.033438][   T75] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.040697][   T75] bridge0: port 1(bridge_slave_0) entered forwarding state
[  235.071375][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  235.152604][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  235.183793][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  235.213371][   T11] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.221246][   T11] bridge0: port 2(bridge_slave_1) entered forwarding state
[  235.290209][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  235.355320][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  235.398743][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  235.456882][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  235.500806][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  235.547098][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  235.591338][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  235.632612][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  235.672977][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  235.705522][ T7595] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  235.760336][ T7595] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  235.771218][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  235.786676][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  236.636517][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  236.687329][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  236.725913][ T7595] 8021q: adding VLAN 0 to HW filter on device batadv0
[  238.138948][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  238.175556][   T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  238.339902][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  238.362477][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  238.376558][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  238.390981][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  238.427724][ T7595] device veth0_vlan entered promiscuous mode
[  238.482153][ T7595] device veth1_vlan entered promiscuous mode
[  238.607704][ T7595] device veth0_macvtap entered promiscuous mode
[  238.639159][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  238.652070][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  238.673074][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  238.692849][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  238.725126][ T7595] device veth1_macvtap entered promiscuous mode
[  238.764440][ T7873] netlink: 71 bytes leftover after parsing attributes in process `syz.6.1123'.
[  238.787237][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  238.802596][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  238.889635][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  238.928316][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.954820][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  238.975821][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  238.993488][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.039840][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.068371][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.089840][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.145777][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  239.178897][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.206626][ T7595] batman_adv: batadv0: Interface activated: batadv_slave_0
[  239.255467][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  239.288123][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  239.324061][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.364720][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.395331][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.436882][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.474493][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.497142][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.515174][ T7595] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  239.526322][ T7595] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  239.555038][ T7595] batman_adv: batadv0: Interface activated: batadv_slave_1
[  239.626896][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  239.640822][   T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  239.668449][ T7595] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  239.699531][ T7595] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  239.721884][ T7595] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  239.742461][ T7595] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  240.029372][   T46] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.095087][   T46] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  240.184330][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  240.232769][ T4376] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  240.285811][ T4376] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  240.376677][ T4352] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  240.919243][ T7906] loop9: detected capacity change from 0 to 2048
[  241.046852][ T7906] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  242.005657][ T7899] loop8: detected capacity change from 0 to 262144
[  242.019645][ T7899] F2FS-fs (loop8): invalid crc value
[  242.069545][ T7899] F2FS-fs (loop8): Found nat_bits in checkpoint
[  242.144272][ T7899] F2FS-fs (loop8): Mounted with checkpoint version = 48b305e5
[  243.271330][ T7942] device pim6reg1 entered promiscuous mode
[  244.556822][ T7935] loop7: detected capacity change from 0 to 262144
[  244.711293][ T7935] F2FS-fs (loop7): Found nat_bits in checkpoint
[  244.751539][ T7935] F2FS-fs (loop7): Mounted with checkpoint version = 48b305e5
[  244.849702][ T7968] loop9: detected capacity change from 0 to 512
[  245.029491][ T7968] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback.
[  245.053007][ T7968] ext4 filesystem being mounted at /5/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  245.437297][ T7595] EXT4-fs (loop9): unmounting filesystem.
[  248.689880][ T5739] usb 7-1: new high-speed USB device number 6 using dummy_hcd
[  248.901729][ T5739] usb 7-1: config 0 has an invalid interface number: 204 but max is 0
[  248.922742][ T5739] usb 7-1: config 0 has no interface number 0
[  248.951755][ T5739] usb 7-1: New USB device found, idVendor=12d6, idProduct=0444, bcdDevice=29.3d
[  248.989862][ T5739] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  248.998021][ T5739] usb 7-1: Product: syz
[  249.029880][ T5739] usb 7-1: Manufacturer: syz
[  249.034563][ T5739] usb 7-1: SerialNumber: syz
[  249.097148][ T5739] usb 7-1: config 0 descriptor??
[  249.111116][ T5739] ems_usb 7-1:0.204 (unnamed net_device) (uninitialized): couldn't initialize controller: -22
[  249.159952][ T5739] ems_usb: probe of 7-1:0.204 failed with error -22
[  249.179916][ T4349] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[  249.379844][ T4349] usb 9-1: Using ep0 maxpacket: 32
[  249.387985][ T4349] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  249.451470][ T4349] usb 9-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  249.467151][ T5739] usb 7-1: USB disconnect, device number 6
[  249.491360][ T4349] usb 9-1: New USB device found, idVendor=0403, idProduct=6030, bcdDevice= 0.00
[  249.520685][ T4349] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  249.564074][ T4349] usb 9-1: config 0 descriptor??
[  249.602549][ T8089] input: syz1 as /devices/virtual/input/input18
[  250.002214][ T4349] ft260 0003:0403:6030.000F: unknown main item tag 0x0
[  250.024874][ T4349] ft260 0003:0403:6030.000F: hidraw0: USB HID v0.00 Device [HID 0403:6030] on usb-dummy_hcd.8-1/input0
[  250.204949][ T4349] ft260 0003:0403:6030.000F: chip code: 0000 0000
[  250.220168][ T6756] usb 8-1: new high-speed USB device number 2 using dummy_hcd
[  250.409910][ T6756] usb 8-1: Using ep0 maxpacket: 16
[  250.429694][ T6756] usb 8-1: New USB device found, idVendor=0403, idProduct=b8d8, bcdDevice=30.bb
[  250.452353][ T6756] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  250.472651][ T6756] usb 8-1: Product: syz
[  250.477034][ T6756] usb 8-1: Manufacturer: syz
[  250.494370][ T6756] usb 8-1: SerialNumber: syz
[  250.619074][ T4349] ft260 0003:0403:6030.000F: failed to retrieve status: -71
[  250.649825][ T4349] ft260 0003:0403:6030.000F: failed to reset I2C controller: -71
[  250.690164][ T4349] usb 9-1: USB disconnect, device number 2
[  251.037572][ T8118] fido_id[8118]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.8/usb9/report_descriptor': No such file or directory
[  251.385205][ T6756] snd-usb-audio: probe of 8-1:222.0 failed with error -2
[  251.447271][ T4395] udevd[4395]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:222.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  251.586015][ T4349] usb 8-1: USB disconnect, device number 2
[  251.846145][ T8141] loop9: detected capacity change from 0 to 128
[  251.888802][ T8141] UDF-fs: error (device loop9): udf_read_tagged: read failed, block=256, location=256
[  251.924742][ T8141] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  252.499941][ T5739] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[  252.705592][ T5739] usb 4-1: Using ep0 maxpacket: 16
[  252.714634][ T5739] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  252.766970][ T5739] usb 4-1: New USB device found, idVendor=0c70, idProduct=f010, bcdDevice= 0.00
[  252.819688][ T5739] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  252.840668][ T5739] usb 4-1: config 0 descriptor??
[  252.988146][ T8180] netlink: 'syz.9.1213': attribute type 1 has an invalid length.
[  253.274439][ T5739] aquacomputer_d5next 0003:0C70:F010.0010: unknown main item tag 0x0
[  253.294662][ T5739] aquacomputer_d5next 0003:0C70:F010.0010: unknown main item tag 0x0
[  253.323967][ T5739] aquacomputer_d5next 0003:0C70:F010.0010: unknown main item tag 0x0
[  253.350822][ T5739] aquacomputer_d5next 0003:0C70:F010.0010: unknown main item tag 0x0
[  253.376908][ T5739] aquacomputer_d5next 0003:0C70:F010.0010: unknown main item tag 0x0
[  253.408472][ T5739] aquacomputer_d5next 0003:0C70:F010.0010: hidraw0: USB HID v0.05 Device [HID 0c70:f010] on usb-dummy_hcd.3-1/input0
[  253.525884][ T5739] usb 4-1: USB disconnect, device number 12
[  253.953575][ T8198] fido_id[8198]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory
[  254.141001][ T8209] device macsec0 entered promiscuous mode
[  254.179602][ T8209] netlink: 4 bytes leftover after parsing attributes in process `syz.7.1224'.
[  254.250407][ T8209] device veth1_macvtap left promiscuous mode
[  254.393197][ T8209] device macsec0 left promiscuous mode
[  254.409662][ T8220] mac80211_hwsim hwsim8 wlan1: (WE) : Wireless Event (cmd=0x8B1A) too big (33)
[  255.290834][ T8244] netlink: 104 bytes leftover after parsing attributes in process `syz.3.1233'.
[  255.648042][ T8255] loop3: detected capacity change from 0 to 1024
[  255.693007][ T8255] EXT4-fs: Ignoring removed orlov option
[  255.781080][ T8255] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none.
[  255.833555][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  255.840307][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  256.047759][ T8270] netlink: 8 bytes leftover after parsing attributes in process `syz.8.1242'.
[  256.307269][ T4266] EXT4-fs (loop3): unmounting filesystem.
[  257.021927][ T8295] Bluetooth: MGMT ver 1.22
[  257.912969][ T8326] device hsr0 entered promiscuous mode
[  257.937220][ T8326] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1263'.
[  259.250383][ T8372] block nbd6: shutting down sockets
[  260.049893][ T5737] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[  260.241830][ T5737] usb 8-1: New USB device found, idVendor=056e, idProduct=4010, bcdDevice=20.1c
[  260.271599][ T5737] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  260.291705][ T5737] usb 8-1: config 0 descriptor??
[  261.308629][ T5737] pegasus: probe of 8-1:0.0 failed with error -71
[  261.320293][ T8431] netlink: 4 bytes leftover after parsing attributes in process `syz.9.1301'.
[  261.324869][ T5737] usb 8-1: USB disconnect, device number 3
[  264.638720][ T8568] loop3: detected capacity change from 0 to 256
[  264.678144][ T8568] exfat: Deprecated parameter 'utf8'
[  264.717900][ T8568] exfat: Deprecated parameter 'utf8'
[  264.754590][ T8568] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x23a77120, utbl_chksum : 0xe619d30d)
[  265.883256][ T8597] loop6: detected capacity change from 0 to 256
[  266.289236][ T8610] binder: 8609:8610 ioctl c018620c 200000000100 returned -22
[  266.350217][ T8608] device syzkaller1 entered promiscuous mode
[  267.082994][ T8637] netlink: 'syz.8.1354': attribute type 9 has an invalid length.
[  267.106128][ T8637] netlink: 'syz.8.1354': attribute type 6 has an invalid length.
[  267.147266][ T8637] netlink: 'syz.8.1354': attribute type 7 has an invalid length.
[  267.175780][ T8637] netlink: 'syz.8.1354': attribute type 8 has an invalid length.
[  267.754192][ T4285] Bluetooth: hci3: Controller not accepting commands anymore: ncmd = 0
[  267.763547][ T4285] Bluetooth: hci3: Injecting HCI hardware error event
[  267.776988][ T4283] Bluetooth: hci3: hardware error 0x00
[  268.239848][ T8657] can0: slcan on ttyS3.
[  268.531197][ T8656] can0 (unregistered): slcan off ttyS3.
[  269.829902][ T4283] Bluetooth: hci3: Opcode 0x0c03 failed: -110
[  271.516663][ T8761] loop7: detected capacity change from 0 to 4096
[  271.585279][ T8761] EXT4-fs (loop7): Test dummy encryption mode enabled
[  271.647397][ T8761] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[  271.729915][ T8761] System zones: 0-5
[  271.794971][ T8761] EXT4-fs (loop7): mounted filesystem without journal. Quota mode: writeback.
[  271.866392][ T8766] loop6: detected capacity change from 0 to 8192
[  271.911545][ T8766] REISERFS warning:  read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[  271.940075][ T8766] REISERFS (device loop6): found reiserfs format "3.5" with non-standard journal
[  271.980089][ T8766] REISERFS (device loop6): using ordered data mode
[  272.071756][ T8766] reiserfs: using flush barriers
[  272.108936][ T8766] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[  272.197079][ T7188] EXT4-fs (loop7): unmounting filesystem.
[  272.204990][ T8766] REISERFS (device loop6): checking transaction log (loop6)
[  272.292047][ T8766] REISERFS (device loop6): Using r5 hash to sort names
[  272.299309][ T8766] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage.
[  273.084535][ T8799] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0
[  273.100441][ T8797] IPVS: stopping master sync thread 8799 ...
[  274.320699][ T5737] usb 7-1: new high-speed USB device number 7 using dummy_hcd
[  274.403553][   T27] INFO: task syz.2.279:5120 blocked for more than 143 seconds.
[  274.416175][   T27]       Not tainted syzkaller #0
[  274.453124][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  274.504775][   T27] task:syz.2.279       state:D stack:24752 pid:5120  ppid:4282   flags:0x00004004
[  274.519858][ T5737] usb 7-1: Using ep0 maxpacket: 32
[  274.533009][ T5737] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  274.551970][   T27] Call Trace:
[  274.563607][   T27]  <TASK>
[  274.572350][   T27]  __schedule+0x10ec/0x40b0
[  274.579180][ T5737] usb 7-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  274.598157][   T27]  ? __sched_text_start+0x8/0x8
[  274.613801][   T27]  ? blk_check_plugged+0x250/0x250
[  274.619108][ T5737] usb 7-1: New USB device found, idVendor=172f, idProduct=0032, bcdDevice= 0.00
[  274.631031][   T27]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  274.637512][ T5737] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  274.650299][   T27]  ? blk_check_plugged+0x250/0x250
[  274.660241][   T27]  ? lock_chain_count+0x20/0x20
[  274.685915][ T5737] usb 7-1: config 0 descriptor??
[  274.697994][   T27]  ? _raw_spin_lock_irq+0xab/0xe0
[  274.723275][   T27]  ? _raw_spin_lock_irqsave+0xf0/0xf0
[  274.753313][   T27]  schedule+0xb9/0x180
[  274.757596][   T27]  io_schedule+0x7c/0xd0
[  274.762972][   T27]  folio_wait_bit_common+0x6e1/0xf60
[  274.781555][   T27]  ? folio_wait_bit+0x30/0x30
[  274.786478][   T27]  ? migration_entry_wait_on_locked+0xe50/0xe50
[  274.803200][   T27]  ? bio_associate_blkg+0x1c/0x1c0
[  274.808729][   T27]  ? erofs_map_blocks+0x18d0/0x18d0
[  274.818655][   T27]  ? bio_add_page+0x3b4/0x730
[  274.827920][   T27]  z_erofs_runqueue+0x855/0x1af0
[  274.839022][   T27]  ? z_erofs_do_read_page+0x3a20/0x3a20
[  274.854497][   T27]  ? z_erofs_readahead+0x91a/0xda0
[  274.863220][   T27]  ? __lock_acquire+0x7c50/0x7c50
[  274.869292][   T27]  ? z_erofs_pcluster_readmore+0x426/0x4f0
[  274.884551][   T27]  z_erofs_readahead+0xa3b/0xda0
[  274.893695][   T27]  ? z_erofs_read_folio+0x5b0/0x5b0
[  274.899418][   T27]  ? __mod_lruvec_page_state+0xa1/0x410
[  274.909591][   T27]  ? blk_start_plug+0x94/0x110
[  274.916060][   T27]  read_pages+0x173/0x840
[  274.921320][   T27]  ? __lock_acquire+0x7c50/0x7c50
[  274.926746][   T27]  ? page_cache_ra_unbounded+0x770/0x770
[  274.932988][   T27]  ? folio_batch_add_and_move+0x14a/0x250
[  274.949410][   T27]  ? folio_add_lru+0x545/0xd50
[  274.956735][   T27]  ? filemap_add_folio+0x188/0x3c0
[  274.968495][   T27]  page_cache_ra_unbounded+0x690/0x770
[  274.974554][   T27]  force_page_cache_ra+0x2bd/0x320
[  274.980432][   T27]  generic_fadvise+0x44e/0x6c0
[  274.985578][   T27]  ? dump_task+0x630/0x630
[  274.990796][   T27]  ? __fget_files+0x28/0x4d0
[  274.995732][   T27]  ? __fdget+0x17c/0x200
[  275.000837][   T27]  __x64_sys_fadvise64+0x139/0x180
[  275.006166][   T27]  do_syscall_64+0x4c/0xa0
[  275.011437][   T27]  ? clear_bhb_loop+0x60/0xb0
[  275.016320][   T27]  ? clear_bhb_loop+0x60/0xb0
[  275.022749][   T27]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  275.028862][   T27] RIP: 0033:0x7f7dd6f8f749
[  275.034679][   T27] RSP: 002b:00007f7dd7da8038 EFLAGS: 00000246 ORIG_RAX: 00000000000000dd
[  275.053610][   T27] RAX: ffffffffffffffda RBX: 00007f7dd71e6090 RCX: 00007f7dd6f8f749
[  275.076978][   T27] RDX: 0000000000000000 RSI: 00000000000f7000 RDI: 0000000000000005
[  275.116189][   T27] RBP: 00007f7dd7013f91 R08: 0000000000000000 R09: 0000000000000000
[  275.128602][ T5737] waltop 0003:172F:0032.0011: item fetching failed at offset 0/2
[  275.147908][ T5737] waltop: probe of 0003:172F:0032.0011 failed with error -22
[  275.155744][   T27] R10: 0000000000000003 R11: 0000000000000246 R12: 0000000000000000
[  275.184328][   T27] R13: 00007f7dd71e6128 R14: 00007f7dd71e6090 R15: 00007ffd3f1832a8
[  275.226845][   T27]  </TASK>
[  275.236752][   T27] 
[  275.236752][   T27] Showing all locks held in the system:
[  275.272617][   T27] 1 lock held by rcu_tasks_kthre/12:
[  275.278168][   T27]  #0: ffffffff8cb2b630 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[  275.300888][   T27] 1 lock held by rcu_tasks_trace/13:
[  275.306267][   T27]  #0: ffffffff8cb2be50 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x33/0xf00
[  275.352569][   T27] 1 lock held by khungtaskd/27:
[  275.357518][   T27]  #0: ffffffff8cb2aca0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290
[  275.378682][  T126] usb 7-1: USB disconnect, device number 7
[  275.399829][   T27] 6 locks held by kworker/0:2/126:
[  275.405091][   T27]  #0: ffff888143abc538 ((wq_completion)usb_hub_wq){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.449829][   T27]  #1: ffffc90002657d00 ((work_completion)(&hub->events)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.469996][   T27]  #2: ffff88814571f190 (&dev->mutex){....}-{3:3}, at: hub_event+0x1a7/0x54e0
[  275.489818][   T27]  #3: ffff8880b8e3aad8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140
[  275.509876][   T27]  #4: ffff8880b8e27848 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x398/0x6d0
[  275.526234][   T27]  #5: ffffffff96ef3088 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_deactivate+0x63/0x340
[  275.538538][   T27] 2 locks held by getty/4026:
[  275.549377][   T27]  #0: ffff88802f9d3098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70
[  275.569075][   T27]  #1: ffffc9000327b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x41b/0x1380
[  275.588449][   T27] 1 lock held by syz.2.279/5120:
[  275.593757][   T27]  #0: ffff888054f30338 (mapping.invalidate_lock#5){.+.+}-{3:3}, at: page_cache_ra_unbounded+0xd8/0x770
[  275.620703][   T27] 2 locks held by kworker/0:17/5739:
[  275.626517][   T27]  #0: ffff888017472138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.644191][   T27]  #1: ffffc9000601fd00 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.658268][   T27] 5 locks held by kworker/u4:8/6153:
[  275.668368][   T27]  #0: ffff888017616938 ((wq_completion)netns){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.691776][   T27]  #1: ffffc900031e7d00 (net_cleanup_work){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.707199][   T27]  #2: ffffffff8dd34a10 (pernet_ops_rwsem){++++}-{3:3}, at: cleanup_net+0x132/0xb80
[  275.725176][   T27]  #3: ffffffff8dd416e8 (rtnl_mutex){+.+.}-{3:3}, at: ip6gre_exit_batch_net+0xbf/0x490
[  275.745739][   T27]  #4: ffffffff8cb30978 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x346/0x830
[  275.774655][   T27] 3 locks held by kworker/0:19/6819:
[  275.792762][   T27]  #0: ffff888017470938 ((wq_completion)events){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.814849][   T27]  #1: ffffc9000c58fd00 ((work_completion)(&pwq->unbound_release_work)){+.+.}-{0:0}, at: process_one_work+0x7a1/0x1160
[  275.842204][   T27]  #2: ffffffff8cb30978 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x455/0x830
[  275.865638][   T27] 2 locks held by kworker/u4:19/8499:
[  275.876946][   T27]  #0: ffff8880b8f3aad8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x26/0x140
[  275.898328][   T27]  #1: ffff8880b8f27848 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x398/0x6d0
[  275.923906][   T27] 2 locks held by syz.6.1417/8817:
[  275.934980][   T27] 1 lock held by sed/8862:
[  275.945365][   T27] 
[  275.954570][   T27] =============================================
[  275.954570][   T27] 
[  275.973470][   T27] NMI backtrace for cpu 0
[  275.977903][   T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted syzkaller #0
[  275.985146][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  275.995309][   T27] Call Trace:
[  275.998833][   T27]  <TASK>
[  276.001797][   T27]  dump_stack_lvl+0x168/0x22e
[  276.006539][   T27]  ? irq_work_queue+0xb8/0x140
[  276.011363][   T27]  ? show_regs_print_info+0x12/0x12
[  276.016608][   T27]  ? load_image+0x3b0/0x3b0
[  276.021242][   T27]  ? vprintk_emit+0x571/0x680
[  276.025953][   T27]  ? printk_sprint+0x460/0x460
[  276.030746][   T27]  nmi_cpu_backtrace+0x3f4/0x470
[  276.035734][   T27]  ? nmi_trigger_cpumask_backtrace+0x450/0x450
[  276.041923][   T27]  ? _printk+0xcc/0x110
[  276.046109][   T27]  ? load_image+0x3b0/0x3b0
[  276.050688][   T27]  ? load_image+0x3b0/0x3b0
[  276.055267][   T27]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  276.061377][   T27]  nmi_trigger_cpumask_backtrace+0x1d4/0x450
[  276.067431][   T27]  watchdog+0xeee/0xf30
[  276.071646][   T27]  ? watchdog+0x1ed/0xf30
[  276.076008][   T27]  kthread+0x29d/0x330
[  276.080173][   T27]  ? hungtask_pm_notify+0x40/0x40
[  276.085219][   T27]  ? kthread_blkcg+0xd0/0xd0
[  276.089855][   T27]  ret_from_fork+0x1f/0x30
[  276.094475][   T27]  </TASK>
[  276.098363][   T27] Sending NMI from CPU 0 to CPUs 1:
[  276.103742][    C1] NMI backtrace for cpu 1
[  276.103754][    C1] CPU: 1 PID: 8862 Comm: sed Not tainted syzkaller #0
[  276.103771][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  276.103781][    C1] RIP: 0010:__rcu_read_lock+0x2d/0x50
[  276.103813][    C1] Code: 8b 1d 77 92 96 7e 48 81 c3 3c 04 00 00 48 89 d8 48 c1 e8 03 48 b9 00 00 00 00 00 fc ff df 0f b6 04 08 84 c0 75 11 ff 03 8b 03 <3d> 00 00 00 40 7d 02 5b c3 0f 0b eb fa 89 d9 80 e1 07 80 c1 03 38
[  276.103827][    C1] RSP: 0018:ffffc90004957890 EFLAGS: 00000202
[  276.103842][    C1] RAX: 0000000000000001 RBX: ffff88802a755d7c RCX: dffffc0000000000
[  276.103854][    C1] RDX: 0000000000000010 RSI: 0000000000000000 RDI: ffffc90004957a00
[  276.103865][    C1] RBP: ffffc90004957a70 R08: dffffc0000000000 R09: ffffc900049579f0
[  276.103878][    C1] R10: fffff5200092af40 R11: 1ffff9200092af3e R12: dffffc0000000000
[  276.103890][    C1] R13: ffff8880578a2438 R14: dffffc0000000000 R15: ffffc90004957ae0
[  276.103902][    C1] FS:  00007f20f62f4c80(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[  276.103917][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  276.103928][    C1] CR2: 00007f20f64c8a90 CR3: 00000000238a9000 CR4: 00000000003506e0
[  276.103942][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  276.103952][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  276.103962][    C1] Call Trace:
[  276.103967][    C1]  <TASK>
[  276.103973][    C1]  mt_validate+0xeb/0x4c90
[  276.103993][    C1]  ? mt_find+0x145/0x810
[  276.104010][    C1]  ? __lock_acquire+0x7c50/0x7c50
[  276.104034][    C1]  ? mt_cache_shrink+0x20/0x20
[  276.104053][    C1]  ? mt_find+0x6b6/0x810
[  276.104071][    C1]  ? mtree_destroy+0x30/0x30
[  276.104090][    C1]  validate_mm_mt+0xcd/0x420
[  276.104110][    C1]  ? can_vma_merge_after+0x70/0x2c0
[  276.104132][    C1]  ? __split_vma+0x500/0x500
[  276.104150][    C1]  ? vma_merge+0x755/0x9c0
[  276.104172][    C1]  ? vma_mas_szero+0xb0/0xb0
[  276.104198][    C1]  ? aa_file_perm+0x3ef/0xec0
[  276.104217][    C1]  __split_vma+0x30/0x500
[  276.104236][    C1]  ? split_vma+0x70/0xf0
[  276.104257][    C1]  mprotect_fixup+0x597/0x7f0
[  276.104285][    C1]  ? change_protection+0x3890/0x3890
[  276.104308][    C1]  ? common_file_perm+0x171/0x1c0
[  276.104333][    C1]  ? bpf_lsm_file_mprotect+0x5/0x10
[  276.104356][    C1]  ? security_file_mprotect+0x7e/0xb0
[  276.104378][    C1]  do_mprotect_pkey+0x754/0xa40
[  276.104405][    C1]  ? prot_none_test+0x10/0x10
[  276.104435][    C1]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  276.104465][    C1]  __x64_sys_mprotect+0x7c/0x90
[  276.104489][    C1]  do_syscall_64+0x4c/0xa0
[  276.104507][    C1]  ? clear_bhb_loop+0x60/0xb0
[  276.104525][    C1]  ? clear_bhb_loop+0x60/0xb0
[  276.104544][    C1]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  276.104561][    C1] RIP: 0033:0x7f20f66832c7
[  276.104574][    C1] Code: 89 3d fd 3f 01 00 eb 90 0f 1f 00 f7 d8 89 05 f0 3f 01 00 48 c7 c0 ff ff ff ff eb 91 0f 1f 80 00 00 00 00 b8 0a 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8d 0d c9 3f 01 00 f7 d8 89 01 48 83
[  276.104588][    C1] RSP: 002b:00007ffc09d9f2a8 EFLAGS: 00000206 ORIG_RAX: 000000000000000a
[  276.104603][    C1] RAX: ffffffffffffffda RBX: 00007f20f63620c0 RCX: 00007f20f66832c7
[  276.104615][    C1] RDX: 0000000000000001 RSI: 0000000000001000 RDI: 00007f20f635f000
[  276.104625][    C1] RBP: 00007ffc09d9f570 R08: 0000000000000000 R09: 00007f20f63fdc90
[  276.104636][    C1] R10: 00007f20f63620c0 R11: 0000000000000206 R12: 0000000000000030
[  276.104647][    C1] R13: 0000008f5c5d9a0e R14: 0000000000000000 R15: 00007f20f6697310
[  276.104665][    C1]  </TASK>
[  276.561711][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[  276.568651][   T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted syzkaller #0
[  276.575895][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[  276.586021][   T27] Call Trace:
[  276.589373][   T27]  <TASK>
[  276.592361][   T27]  dump_stack_lvl+0x168/0x22e
[  276.597100][   T27]  ? memcpy+0x3c/0x60
[  276.601185][   T27]  ? show_regs_print_info+0x12/0x12
[  276.606440][   T27]  ? load_image+0x3b0/0x3b0
[  276.611099][   T27]  panic+0x2c9/0x710
[  276.615150][   T27]  ? schedule_preempt_disabled+0x20/0x20
[  276.620848][   T27]  ? bpf_jit_dump+0xd0/0xd0
[  276.625396][   T27]  ? __irq_work_queue_local+0x12c/0x190
[  276.631003][   T27]  ? nmi_trigger_cpumask_backtrace+0x35b/0x450
[  276.637300][   T27]  ? nmi_trigger_cpumask_backtrace+0x360/0x450
[  276.643544][   T27]  watchdog+0xf2d/0xf30
[  276.647932][   T27]  ? watchdog+0x1ed/0xf30
[  276.652321][   T27]  kthread+0x29d/0x330
[  276.656451][   T27]  ? hungtask_pm_notify+0x40/0x40
[  276.661524][   T27]  ? kthread_blkcg+0xd0/0xd0
[  276.666161][   T27]  ret_from_fork+0x1f/0x30
[  276.670646][   T27]  </TASK>
[  276.674002][   T27] Kernel Offset: disabled
[  276.678351][   T27] Rebooting in 86400 seconds..