last executing test programs:

7m10.667444697s ago: executing program 3 (id=4):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0)
mount$bpf(0x0, &(0x7f0000000380)='./file0\x00', 0x0, 0x1840020, &(0x7f0000000240)={[{@gid}]})
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3)
syz_emit_vhci(&(0x7f0000000280)=ANY=[@ANYBLOB="04ff06"], 0x4)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0}, 0x94)
r1 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r1, 0x40047438, &(0x7f0000000180)=""/246)
writev(r1, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

7m9.598886306s ago: executing program 3 (id=6):
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000080))
sendmsg$nl_generic(0xffffffffffffffff, 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ff0000/0x3000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x0)
r0 = io_uring_setup(0x35c5, &(0x7f0000000040)={0x0, 0x7b4e, 0xf080, 0xc, 0xa0002f5})
bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1b, 0x3, 0x0, &(0x7f0000000240)='syzkaller\x00', 0x80000000, 0xfd11, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
pwritev(0xffffffffffffffff, &(0x7f0000000240)=[{&(0x7f0000000000)='0', 0x1}], 0x1, 0x0, 0x3)
io_uring_enter(r0, 0x2219, 0x7721, 0x16, 0x0, 0x0)

7m9.571522718s ago: executing program 0 (id=1):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$inet6_opts(r0, 0x29, 0x36, 0x0, 0x0)

7m8.757977677s ago: executing program 0 (id=7):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=ANY=[], 0x50)
syz_mount_image$udf(&(0x7f0000000480), &(0x7f0000000080)='./file0\x00', 0xa00804, &(0x7f00000000c0)=ANY=[@ANYBLOB='adinicb,dmode=00000000000000000000006,utf8,uid=', @ANYRESDEC=r0, @ANYBLOB="2c7569643d69676e6f72652c696f636861727365743d6d6163696e7569742c6d6f64653d30303030303030303030303030303030303030303031302c696f636861727365743d69736f383835392d31332c6164696e6963622c6769643d69676e6f72652c6c617374626c6f636b3d30303030303030303030303030303030303030372c6769643d666f726765742c766f6c756d653d30303030303030303030303030303030303132342c6206c81400", @ANYRES8=r0, @ANYRES8=r0], 0x1, 0xc4d, &(0x7f0000000f40)="$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")
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="8c0000000906010200000000000000000200ffff08000940000000390900020073797a310000000005000100070000005c0008801c0007801800018014000240"], 0x8c}, 0x1, 0x0, 0x0, 0x10000182}, 0x4000080)

7m8.703655916s ago: executing program 3 (id=8):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000840)={0x18, 0x3, &(0x7f00000000c0)=ANY=[], &(0x7f0000000000)='GPL\x00', 0x2, 0xba, &(0x7f0000000140)=""/186, 0x41100, 0x2b, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x39}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r1, 0x8983, &(0x7f0000000100)={0x0, 'erspan0\x00', {0x1}, 0x26})
syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
r3 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r3, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a20000000000a03000000000000000000070000000900010073797a300000000060000000090a010400000000000000000700000208000a40000080000900020073797a31000000000900010073797a3000000000080005400000002124001180090001006d6574610000000014000280080001400000000b080002400000000d140000001000010000000000000000000084000a"], 0xa8}, 0x1, 0x0, 0x0, 0x4040054}, 0x0)
mount(&(0x7f0000000140)=@nullb, &(0x7f0000000040)='./cgroup\x00', &(0x7f0000000080)='xfs\x00', 0x2208004, 0x0)
socket$nl_netfilter(0x10, 0x3, 0xc)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000240)=ANY=[@ANYBLOB="140000001000010000000000000000000500000a28000000000a030000000000000000000a00000708000240000000020900010073797a31000000002c000000030a010100000000000000000a0000070900010073797a31000000000900030073797a320000000014000000110001"], 0x7c}, 0x1, 0x0, 0x0, 0x4000}, 0x0)
close(r4)

7m6.534804843s ago: executing program 0 (id=9):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x2)
ioctl$TIOCGSID(r0, 0x5429, 0x0)

7m4.745775401s ago: executing program 3 (id=10):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000003c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a3000000000090003007379"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000680)=ANY=[@ANYBLOB="14000000100001000000000000b890c1a000000a80000000160a01030000000000000000020000000900020073797a300000000009000100"], 0xa8}}, 0x0)
r1 = socket$netlink(0x10, 0x3, 0x0)
r2 = socket(0x10, 0x803, 0x0)
getsockname$packet(r2, &(0x7f0000000600)={0x11, 0x0, <r3=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000080)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000640)=ANY=[@ANYBLOB="3c0000001000850600000000ff6122314a000800", @ANYRES32=r3, @ANYBLOB="00001000252155b21c0012000c000100626f6e64000000000c0002000800010001"], 0x3c}}, 0x40000)

7m4.045020203s ago: executing program 0 (id=11):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='westwood', 0x8)
setsockopt$inet6_tcp_int(r0, 0x6, 0x2000000000000022, &(0x7f0000000200)=0x1, 0x4)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
r2 = syz_open_dev$tty1(0xc, 0x4, 0x4)
write(r2, &(0x7f00000000c0)="a7a96c5a465315c81f0d51131cf90d056c26f9fbb61532bc6dbee9e4688070d97f50f7d9a557f6680000008003000000510db0c6f5b5fce4847f46eb3ef68724a9aecc6959182a360060ac10cbd90f18f7992a2b19da94b50e638d7f7e1d5ffaeb182e3a51eb1a3a57cc3919180d7481e62200c660b637e2681086b7d880391e9bdd7f12ec157fdb825f5ff6ab936e5607499c2191d4e52345cf159b301ec58835f2aefcc14010c32302750616f99b31345d", 0xb2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e20}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000faff0000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
syz_open_dev$evdev(0x0, 0x40002, 0xa69c0)
io_uring_setup(0x2eff, &(0x7f0000000340)={0x0, 0xe8e5, 0x2, 0xfffffffd, 0x290})
io_uring_register$IORING_REGISTER_FILES(0xffffffffffffffff, 0x1e, 0x0, 0x0)
r5 = openat$cgroup_root(0xffffffffffffff9c, 0x0, 0x200002, 0x0)
openat$cgroup_ro(r5, &(0x7f0000000140)='cgroup.stat\x00', 0x275a, 0x0)
r6 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/wireless\x00')
read$FUSE(r6, 0x0, 0x0)
sendto$inet6(r0, &(0x7f0000000040), 0x0, 0x20040045, &(0x7f0000000140)={0xa, 0x4001, 0xfffb, @loopback, 0xfffffffd}, 0x1c)

7m4.03573162s ago: executing program 2 (id=3):
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000480)={0xffffffffffffffff, 0x0, 0x25, 0x1e, @val=@uprobe_multi={0x0, 0x0, 0x0, 0x6, 0x0, 0x1}}, 0x40)
r0 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000015c0), 0x2, 0x0)
ioctl$VHOST_SET_VRING_BASE(r0, 0xaf01, 0x0)
r1 = eventfd(0xfffffff9)
ioctl$VHOST_SET_LOG_FD(r0, 0x4004af07, &(0x7f0000000240)=r1)
ioctl$VHOST_SET_VRING_KICK(r0, 0x4008af20, &(0x7f0000000040)={0x1, r1})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000580)={0x0, 0x0, 0x0, &(0x7f0000000500)=""/59, 0x0})
ioctl$VHOST_SET_VRING_ADDR(r0, 0x4028af11, &(0x7f0000000280)={0x1, 0x1, &(0x7f0000000380)=""/231, &(0x7f00000000c0)=""/87, &(0x7f0000000480)=""/70, 0x100000})
ioctl$VHOST_SET_MEM_TABLE(r0, 0x4008af03, &(0x7f0000000680)={0x1, 0x0, [{0x0, 0x73, &(0x7f00000001c0)=""/115}]})
ioctl$VHOST_SET_VRING_ERR(r0, 0x4008af22, &(0x7f00000002c0)={0x1, r1})
ioctl$VHOST_VSOCK_SET_RUNNING(r0, 0x4004af61, &(0x7f0000000000)=0x1)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000300)={0x11, 0x0, 0x0, 0x0, 0x5, 0x0, 0x0, 0x0, 0x32, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffb2, 0x0, 0x0, 0x10, 0x5}, 0x94)

7m3.319634696s ago: executing program 3 (id=12):
r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000380)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_SET_CONTEXT_MGR_EXT(r0, 0x4018620d, &(0x7f00000000c0)={0x73622a85, 0x110b, 0x8000000000002})
r1 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000300)='./binderfs/binder0\x00', 0x0, 0x0)
ioctl$BINDER_WRITE_READ(r1, 0xc0306201, &(0x7f0000000080)={0x4c, 0x0, &(0x7f00000007c0)=[@transaction_sg={0x40486311, {0x0, 0x0, 0x0, 0x0, 0x21, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x400}], 0x0, 0x0, 0x0})
openat$binderfs(0xffffffffffffff9c, 0x0, 0x800, 0x0)

7m1.987030621s ago: executing program 2 (id=14):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r0, 0xda90)
accept4(r0, 0x0, 0x0, 0x0)

7m1.792299396s ago: executing program 3 (id=15):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x2000800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSFF(r4, 0x40304580, 0x0)

6m55.607413062s ago: executing program 0 (id=16):
prlimit64(0x0, 0xe, 0x0, 0x0)
keyctl$invalidate(0x15, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)

6m42.85473645s ago: executing program 32 (id=14):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendto$inet(r0, &(0x7f0000000140)='^', 0x34000, 0x0, &(0x7f0000004ff0)={0x2, 0x0, @rand_addr=0xfffffffffffffffe}, 0x10)
listen(r0, 0xda90)
accept4(r0, 0x0, 0x0, 0x0)

6m42.254100349s ago: executing program 33 (id=15):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x2000800001000088}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7)
r0 = getpgrp(0x0)
sched_setaffinity(r0, 0x8, &(0x7f0000000040)=0x5)
prctl$PR_SCHED_CORE(0x3e, 0x1, r0, 0x2, 0x0)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000000)=0x3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r2 = syz_clone(0x8000, 0x0, 0xfffffffffffffe7e, 0x0, 0x0, 0x0)
prctl$PR_SCHED_CORE(0x3e, 0x1, r2, 0x1, 0x0)
r3 = syz_open_dev$MSR(&(0x7f00000001c0), 0x0, 0x0)
read$msr(r3, &(0x7f0000019680)=""/102392, 0x18ff8)
r4 = syz_open_dev$evdev(&(0x7f00000000c0), 0x2, 0x862b01)
ioctl$EVIOCSFF(r4, 0x40304580, 0x0)

6m39.391554536s ago: executing program 34 (id=16):
prlimit64(0x0, 0xe, 0x0, 0x0)
keyctl$invalidate(0x15, 0x0)
prlimit64(0x0, 0xe, 0x0, 0x0)
ioctl$KVM_XEN_HVM_CONFIG(0xffffffffffffffff, 0x4038ae7a, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
connect$unix(r0, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r1, &(0x7f0000000000), 0x400000000000041, 0x0)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x80000, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x1)
ioctl$KVM_SET_USER_MEMORY_REGION(r3, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil})
r4 = ioctl$KVM_CREATE_VCPU(r3, 0xae41, 0x1)
ioctl$KVM_PRE_FAULT_MEMORY(r4, 0xc040aed5, &(0x7f00000000c0)={0xf000, 0x118000})
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3)

2m5.162300433s ago: executing program 4 (id=212):
syz_open_dev$radio(0x0, 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
mount$9p_virtio(&(0x7f00000000c0), 0x0, 0x0, 0x20000cc, 0x0)
socket(0x2, 0x2, 0x1)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xfffffffc, '\x00', 0x0, 0xffffffffffffffff, 0x3, 0x4}, 0x50)
r3 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r4 = dup(r3)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r4, 0x2000)
write$binfmt_aout(r4, 0x0, 0xffffffdb)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1m54.597366845s ago: executing program 4 (id=216):
r0 = socket$kcm(0x11, 0x200000000000002, 0x300)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x1, 0x8, &(0x7f0000002fc0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x48)
setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f0000000180)=r1, 0x4)
r2 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r2, &(0x7f0000000800)={0x0, 0x0, 0x0}, 0x4896)

1m53.938093388s ago: executing program 4 (id=217):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$TCSBRKP(r0, 0x5425, 0xfffffffffffffffd)

1m52.811692996s ago: executing program 4 (id=220):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x901800, 0x0)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000240)="a6e2977617bfa625dec2f7fd55a349b7a26b5c4383036d32dadd2e230e105614396838da83c754887e7bea2f35d4ea667817d90d532af06506e398dd", 0x3c, 0x8c4, 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x40a01, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0xc201})
r3 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000040)={0x3, 0x2, 0x3000, 0x1000, &(0x7f0000feb000/0x1000)=nil})
bpf$PROG_LOAD(0x5, &(0x7f0000000140)={0x17, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @cgroup_sysctl=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
syz_kvm_setup_cpu$x86(r1, r3, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000140)=[@text64={0x40, 0x0}], 0x1, 0x4, 0x0, 0x0)
ioctl$KVM_RUN(r3, 0xae80, 0x0)

1m51.910786814s ago: executing program 4 (id=221):
r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000180), 0x0, 0x0)
r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0)
ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60)
ioctl$KVM_IRQFD(0xffffffffffffffff, 0x4020ae76, &(0x7f0000000140)={0xffffffffffffffff, 0xc8})
recvfrom(0xffffffffffffffff, 0x0, 0x0, 0x40000100, &(0x7f00000012c0)=@ieee802154={0x24, @long={0x3, 0xffff, {0xaaaaaaaaaaaa0302}}}, 0x80)
r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
r3 = ioctl$KVM_CREATE_VM(r2, 0xae01, 0x0)
ioctl$KVM_CREATE_DEVICE(r3, 0xc00caee0, &(0x7f0000000140)={0x4, 0xffffffffffffffff, 0x1})
r4 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0)
ioctl$BTRFS_IOC_INO_LOOKUP_USER(0xffffffffffffffff, 0xd000943e, &(0x7f0000000040)={0x0, 0x0, "d607f8f9951e76c13f64323723e7eecdf40c363423eb3d259266ec9c37865c6c1a4640ce1b22bb3327ef4f001d34c09f39c3539e4f8d3ee0878ae95bc7f52363c468b257ff3e24852548deb01efd54f11ed2c41d078b9cf1fc8f72566153c97e4af37017ea6b16b694bb4a6e4606c3fb19d1d2bd3c8c4e97da2213f9d5c3b90400000000000000c279f03558083906666827d61dcc3a633bffff250b5a293e3877adc1660edbc9a0307a25720a170e7f5670e419dc44febf7ddc73fd4a5a0b6c28665f7f46c7084e17c809268103a2584ab40a68e528329d97afc3612e325c1eb4a3ab2e156a97444800", "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"})
pipe2(&(0x7f0000001140), 0x4080)
ioprio_set$pid(0x2, 0x0, 0x4000)
r5 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_GET(r5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={0x0, 0x10}, 0x1, 0x0, 0x0, 0x24000000}, 0x20040080)
ioctl$KVM_SET_TSC_KHZ_cpu(r4, 0xaea2, 0x4)
syz_kvm_setup_cpu$x86(r1, r4, &(0x7f0000fe8000/0x18000)=nil, &(0x7f0000000000)=[@text32={0x20, &(0x7f0000000100)="d8df0f23b3b9ce000000b807000000ba000000000f301b8154fea900c1210680320000c4e28ddc8dcd000000c182fd3f0000c8b950020000b801000400b9a60800002ef20f5e870078000026b87aeabbc900bbc9000f302f300fc79d53bf0000c4b9e16dc30101220f01c3", 0x6b}], 0x1, 0x14, 0x0, 0x0)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
ioctl$KVM_SET_LAPIC(r4, 0x4400ae8f, &(0x7f00000001c0)={"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"})
ioctl$KVM_RUN(r4, 0xae80, 0x0)

1m50.687036499s ago: executing program 4 (id=223):
syz_open_dev$radio(0x0, 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
mount$9p_virtio(&(0x7f00000000c0), 0x0, 0x0, 0x20000cc, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r3=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xfffffffc, '\x00', r3, 0xffffffffffffffff, 0x3, 0x4}, 0x50)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r5 = dup(r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r5, 0x2000)
write$binfmt_aout(r5, 0x0, 0xffffffdb)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

1m34.975392087s ago: executing program 35 (id=223):
syz_open_dev$radio(0x0, 0x1, 0x2)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, &(0x7f0000000300), 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f0000000040), 0x80002c1, 0x2, 0x0)
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x2000)=nil, 0x2000, &(0x7f0000000000))
prctl$PR_SET_VMA(0x53564d41, 0x0, &(0x7f0000ffa000/0x3000)=nil, 0x3000, 0x0)
mount$9p_virtio(&(0x7f00000000c0), 0x0, 0x0, 0x20000cc, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'batadv_slave_1\x00', <r3=>0x0})
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000200)={0x6, 0x3, &(0x7f00000001c0)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x1}}, &(0x7f0000000040)='GPL\x00', 0x5, 0x0, 0x0, 0x40f00, 0x40, '\x00', r3, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xff}, 0x94)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000380)={0x2, 0x4, 0x8, 0x1, 0x80, 0x1, 0xfffffffc, '\x00', r3, 0xffffffffffffffff, 0x3, 0x4}, 0x50)
r4 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x4000000004002, 0x0)
r5 = dup(r4)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xa, 0x13, r5, 0x2000)
write$binfmt_aout(r5, 0x0, 0xffffffdb)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15)

13.343386028s ago: executing program 1 (id=258):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000440)=[{&(0x7f0000000480)="5c00000012006bab9a3fe3d86e17aa0b046b876c1d0048380019001931a0e69ee517d34460bc06000000a701251e6182949a3651f60a84c9f4d4938037e70e4509c51c268811000000000000000000002571cd53b9851b30599980bc", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f00000001c0)=""/247, 0xf7}, {&(0x7f0000003880)=""/4023, 0xfb7}, {&(0x7f0000000bc0)=""/4104, 0x1008}, {&(0x7f0000000800)=""/187, 0xbb}, {&(0x7f0000000940)=""/154, 0x9a}, {&(0x7f00000000c0)=""/33, 0x21}, {0x0}], 0x7}, 0x0)
recvmsg$kcm(r0, &(0x7f0000000900)={0x0, 0x0, 0x0}, 0x0)

11.091304685s ago: executing program 1 (id=259):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000001f40)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0x70bd2d, 0x25dfdbfe, {{@in6=@loopback, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0xc, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x7ffffffffffffffd, 0x407ffffffffffe, 0x800000000000002}, 0x0, 0x0, 0x1}, [@tmpl={0x44, 0x5, [{{@in=@empty, 0x0, 0x2b}, 0x2, @in6=@private2, 0x6, 0x4, 0x3, 0x0, 0x0, 0x0, 0xd}]}]}, 0xfc}}, 0x0)
r1 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r1, &(0x7f0000000000)={0x40000000, 0x0, &(0x7f0000000040)={&(0x7f0000000240)=ANY=[@ANYBLOB="0207000902"], 0x10}}, 0x0)
r2 = socket$kcm(0xa, 0x3, 0x3a)
sendmsg$kcm(r2, &(0x7f0000000080)={&(0x7f0000000000)=@l2tp6={0xa, 0x0, 0x0, @loopback={0xfe80000000000000, 0xac14140c}}, 0x80, &(0x7f00000000c0), 0x0, 0x0, 0x0, 0x900}, 0x60)

9.189847742s ago: executing program 1 (id=260):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
socket$inet6_udp(0xa, 0x2, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@file={0x0, './file0\x00'}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r1, 0x8, &(0x7f0000000240)=0x2)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r4, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000340)=ANY=[@ANYBLOB="3c0000001900010000000000000000000a000000000000000000000014000500000000000000000000000000000000000c00090008"], 0x3c}}, 0x0)
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2000000, 0x0, 0x0, 0x0, &(0x7f0000000000))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, 0x0, &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback=0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000001340)=ANY=[@ANYBLOB="0b00000008000000020000000900000001"], 0x50)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000200100000b70200000300000085000086003aa689f372f75f43548501cdc36c6900001811000063c02382abed36bcd6d9364592e4ed7801d699fd00541d8dd0cf23fa0ab271195b0bf2ce9d8fef3bdf930f3754b1e9ff75e931615d63c1a69e907b5d81340a5c5e22129a706d023ac379a5252436e08704774ebdca482a61a972a5d4e5b9c2db4bf672723262fd295729de661ae71712b9e1cf53a8d50000c54fa9abcb4d33b8695fe252466115478717a9d5431698f80022", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x37, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_BIND_MAP(0xa, &(0x7f0000000cc0)={r5}, 0xc)
pipe2$9p(&(0x7f00000000c0)={<r6=>0xffffffffffffffff, <r7=>0xffffffffffffffff}, 0x0)
mount$9p_fd(0x0, &(0x7f0000000300)='./file0\x00', &(0x7f0000000280), 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB='tdno=', @ANYRESHEX=r6, @ANYBLOB=',wfdno=', @ANYRESHEX=r7, @ANYBLOB=',\x00'])
bind$inet(r0, &(0x7f0000000240)={0x2, 0x0, @local}, 0x6f)
connect$inet(r0, &(0x7f0000000480)={0x2, 0x0, @multicast2}, 0x10)
sendmmsg(r0, &(0x7f0000007fc0), 0x800001d, 0x300)
socket$nl_route(0x10, 0x3, 0x0)

4.571505138s ago: executing program 1 (id=261):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x20000040}, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000300)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$inet6_udp_int(r4, 0x11, 0x1, &(0x7f00000001c0)=0x6, 0x4)
sendmmsg$inet6(r4, &(0x7f0000000740)=[{{&(0x7f0000000100)={0x2, 0x4e21, 0x0, @empty}, 0x1c, 0x0}}], 0x300, 0x0)

651.638081ms ago: executing program 1 (id=262):
r0 = socket$alg(0x26, 0x5, 0x0)
bind$alg(r0, &(0x7f00000001c0)={0x26, 'skcipher\x00', 0x0, 0x0, 'cts(cbc(aes))\x00'}, 0x58)
r1 = accept$alg(r0, 0x0, 0x0)
setsockopt$ALG_SET_KEY(r0, 0x117, 0x1, &(0x7f0000002cc0)="099ccccf84f531d9ec214606c11430c1", 0x10)
sendmmsg$alg(r1, &(0x7f0000000b40)=[{0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000003cc0)="5985d20392a438a118753a61ccd1d0e83101f02653", 0x15}], 0x1, 0x0, 0x0, 0x20000010}], 0x1, 0x20049001)
sendmsg$alg(r1, &(0x7f0000001dc0)={0x0, 0x0, &(0x7f0000001d40), 0x0, &(0x7f0000001d80)=[@iv={0x28, 0x117, 0x2, 0x10, "03b627eb61227b3b2e04a485105e1be1"}], 0x28, 0x40}, 0x20000040)

0s ago: executing program 1 (id=263):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000400)=@ipv6_delroute={0x2c, 0x19, 0x1, 0x0, 0x0, {0xa, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6, 0x2e00}, [@RTA_PRIORITY={0x8, 0x1e, 0x200}, @RTA_OIF={0x8}]}, 0x2c}, 0x1, 0x0, 0x0, 0x90}, 0x4000050)
r2 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000400), 0xffffffffffffffff)
sendmsg$TIPC_NL_KEY_SET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000009c0)=ANY=[@ANYBLOB="c8000000", @ANYRES16=r2, @ANYBLOB="010000000000fedbdf2503000000b40001800d0001007564703a73797a310000000008000300e10d000044000400200001d03a40602200000006fe80000000000000000000000000003c04000000200002000a004e240000000420010000000000000000200000000000070000004c00028008000200070000000800020001000000080001"], 0xc8}}, 0x40000000)
syz_genetlink_get_family_id$tipc2(&(0x7f00000003c0), 0xffffffffffffffff)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f00000000c0)='ns/mnt\x00')
r3 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, &(0x7f000057eff8)=@file={0x0, './file2\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0xa, 0x4, &(0x7f0000000040)=@framed={{0xffffffb4, 0x0, 0x0, 0x0, 0x0, 0xffffffdd, 0xa}, [@ldst={0x3, 0x2, 0x3, 0x1c10a1, 0x0, 0x3b}]}, &(0x7f0000003ff6)='GPL\x00', 0x5, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x19, &(0x7f0000000000), 0xb5, 0x10, &(0x7f0000000000), 0x7}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r4, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
sendmsg$IPCTNL_MSG_CT_GET_CTRZERO(0xffffffffffffffff, &(0x7f0000000200)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x8000}, 0xc, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="a0000000030101030000000000000000030000042800028006000340000100e9d66be6633e000c00028005000100111000000600034000000000060003400001000008001a400000000008000840800000000c00108008000240600000000600124000010000400004803c000180050003000100000005000300800000000600040080070000050001000400000005000200060000000600050001ea00000500"], 0xa0}}, 0x880)
ioctl$SNDRV_TIMER_IOCTL_PARAMS(0xffffffffffffffff, 0x40505412, &(0x7f0000000240)={0x4, 0x4, 0x401, 0x0, 0x3})

kernel console output (not intermixed with test programs):

 277.311806][ T6110] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  277.522956][ T6016] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  277.621337][ T6016] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  277.752855][ T6035] chnl_net:caif_netlink_parms(): no params data found
[  278.097119][ T6022] bridge0: port 1(bridge_slave_0) entered blocking state
[  278.127392][ T6022] bridge0: port 1(bridge_slave_0) entered disabled state
[  278.182478][ T6022] bridge_slave_0: entered allmulticast mode
[  279.131553][ T6022] bridge_slave_0: entered promiscuous mode
[  279.768395][ T6022] bridge0: port 2(bridge_slave_1) entered blocking state
[  279.776936][ T6022] bridge0: port 2(bridge_slave_1) entered disabled state
[  279.838806][ T6022] bridge_slave_1: entered allmulticast mode
[  279.862195][ T6022] bridge_slave_1: entered promiscuous mode
[  292.834724][ T6016] team0: Port device team_slave_0 added
[  292.988487][ T6016] team0: Port device team_slave_1 added
[  293.060768][ T6022] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  293.127055][ T6022] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  293.662724][ T6150] netlink: 48 bytes leftover after parsing attributes in process `syz.1.51'.
[  293.699071][ T6150] netlink: 48 bytes leftover after parsing attributes in process `syz.1.51'.
[  293.910087][ T5823] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[  294.032865][  T142] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  294.088826][ T5823] usb 5-1: Using ep0 maxpacket: 8
[  294.161921][ T5823] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  294.177440][ T6022] team0: Port device team_slave_0 added
[  294.208168][ T5823] usb 5-1: config 16 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3
[  294.256552][ T5823] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  294.280096][ T6022] team0: Port device team_slave_1 added
[  294.289743][ T5823] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  294.316909][ T6016] batman_adv: batadv0: Adding interface: batadv_slave_0
[  294.328345][ T6016] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  294.386193][ T6016] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  294.401841][ T5823] usbtmc 5-1:16.0: bulk endpoints not found
[  294.554389][  T142] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  294.779768][ T6016] batman_adv: batadv0: Adding interface: batadv_slave_1
[  294.787108][ T6016] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  294.909182][ T6016] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  295.032696][ T5823] usb 5-1: USB disconnect, device number 2
[  295.163868][ T6035] bridge0: port 1(bridge_slave_0) entered blocking state
[  295.174520][ T6035] bridge0: port 1(bridge_slave_0) entered disabled state
[  295.198168][ T6035] bridge_slave_0: entered allmulticast mode
[  295.213780][ T6035] bridge_slave_0: entered promiscuous mode
[  295.282956][  T142] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  295.457081][ T6035] bridge0: port 2(bridge_slave_1) entered blocking state
[  295.483226][ T6035] bridge0: port 2(bridge_slave_1) entered disabled state
[  295.504631][ T6035] bridge_slave_1: entered allmulticast mode
[  295.550349][ T6035] bridge_slave_1: entered promiscuous mode
[  295.830047][  T142] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  296.312158][ T6022] batman_adv: batadv0: Adding interface: batadv_slave_0
[  296.363544][ T6022] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  296.481792][ T6022] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  296.683328][ T6022] batman_adv: batadv0: Adding interface: batadv_slave_1
[  296.691455][ T6022] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  296.754113][ T6022] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  296.813449][ T6035] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  297.018001][ T6170] syzkaller0: entered promiscuous mode
[  297.030698][ T6170] syzkaller0: entered allmulticast mode
[  297.193635][ T6035] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  298.290288][ T6016] hsr_slave_0: entered promiscuous mode
[  298.340302][ T6016] hsr_slave_1: entered promiscuous mode
[  298.379121][ T6016] debugfs: 'hsr0' already exists in 'hsr'
[  298.385274][ T6016] Cannot create hsr debugfs directory
[  298.464632][ T6035] team0: Port device team_slave_0 added
[  298.525673][ T6035] team0: Port device team_slave_1 added
[  298.630897][ T6022] hsr_slave_0: entered promiscuous mode
[  298.648732][ T6022] hsr_slave_1: entered promiscuous mode
[  298.660095][ T6022] debugfs: 'hsr0' already exists in 'hsr'
[  298.666804][ T6022] Cannot create hsr debugfs directory
[  300.201152][ T6183] netlink: 48 bytes leftover after parsing attributes in process `syz.4.59'.
[  300.216685][ T6183] netlink: 48 bytes leftover after parsing attributes in process `syz.4.59'.
[  302.978332][ T5828] usb 2-1: new high-speed USB device number 3 using dummy_hcd
[  303.024522][ T6035] batman_adv: batadv0: Adding interface: batadv_slave_0
[  303.039833][ T6035] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.077502][ T6035] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  303.168139][ T5828] usb 2-1: Using ep0 maxpacket: 8
[  303.207474][ T5828] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  303.259668][ T5828] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  303.295512][ T5828] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  303.336594][ T5828] usb 2-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  303.389522][ T5828] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  303.466756][ T5828] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  303.605315][ T5828] usbtmc 2-1:16.0: bulk endpoints not found
[  303.648587][ T6035] batman_adv: batadv0: Adding interface: batadv_slave_1
[  303.655977][ T6035] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  303.852596][ T6035] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  304.568311][ T5828] usb 2-1: USB disconnect, device number 3
[  304.693561][  T142] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.033182][  T142] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.107276][ T6035] hsr_slave_0: entered promiscuous mode
[  305.150004][ T6035] hsr_slave_1: entered promiscuous mode
[  305.183445][ T6035] debugfs: 'hsr0' already exists in 'hsr'
[  305.199487][ T6035] Cannot create hsr debugfs directory
[  305.424023][  T142] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  305.843914][  T142] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  306.068377][ T6193] syzkaller0: entered promiscuous mode
[  306.075573][ T6193] syzkaller0: entered allmulticast mode
[  306.781977][ T6022] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  306.891085][ T6022] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  307.029819][ T6022] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  310.980963][ T6022] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  315.956200][ T6016] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  316.273336][ T6016] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  316.397079][  T142] bridge_slave_1: left allmulticast mode
[  316.458863][  T142] bridge_slave_1: left promiscuous mode
[  316.479155][  T142] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.572419][  T142] bridge_slave_0: left allmulticast mode
[  316.613260][  T142] bridge_slave_0: left promiscuous mode
[  316.650895][  T142] bridge0: port 1(bridge_slave_0) entered disabled state
[  316.745504][  T142] bridge_slave_1: left allmulticast mode
[  316.782607][  T142] bridge_slave_1: left promiscuous mode
[  316.806090][  T142] bridge0: port 2(bridge_slave_1) entered disabled state
[  316.879944][  T142] bridge_slave_0: left allmulticast mode
[  316.885977][  T142] bridge_slave_0: left promiscuous mode
[  316.962104][  T142] bridge0: port 1(bridge_slave_0) entered disabled state
[  319.988244][ T5823] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  320.270636][ T5823] usb 5-1: Using ep0 maxpacket: 8
[  320.348785][ T5823] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  320.408721][ T5823] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  320.512849][ T5823] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  320.593242][ T5823] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  320.738274][ T5823] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  320.797849][ T5823] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  320.912873][ T5823] usbtmc 5-1:16.0: bulk endpoints not found
[  321.316834][ T5770] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  321.378937][ T5770] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  321.402907][ T5770] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  321.424709][ T5770] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  321.473408][ T5770] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  321.567079][ T5780] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  321.600135][ T5780] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  321.640926][ T5780] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  321.695889][ T5780] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  321.762001][ T5780] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  322.041899][  T142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  322.063926][ T5770] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  322.074612][ T5770] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  322.088179][ T5770] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  322.112850][ T5770] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  322.125623][ T5770] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  322.285122][  T142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  322.561428][  T142] bond0 (unregistering): Released all slaves
[  322.661417][  T142] bond1 (unregistering): Released all slaves
[  322.722245][ T5823] usb 5-1: USB disconnect, device number 3
[  323.756081][ T5770] Bluetooth: hci0: command tx timeout
[  323.818099][ T5770] Bluetooth: hci1: command tx timeout
[  324.221235][ T5770] Bluetooth: hci2: command tx timeout
[  325.919409][  T142] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  326.025278][  T142] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  326.140159][  T142] bond0 (unregistering): Released all slaves
[  326.158174][ T5780] Bluetooth: hci0: command tx timeout
[  326.164408][ T5780] Bluetooth: hci1: command tx timeout
[  326.204780][ T6016] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  326.319647][ T5780] Bluetooth: hci2: command tx timeout
[  328.274590][   T49] Bluetooth: hci1: command tx timeout
[  328.283590][ T5773] Bluetooth: hci0: command tx timeout
[  328.380536][   T49] Bluetooth: hci2: command tx timeout
[  329.438484][   T49] Bluetooth: hci3: command 0x0406 tx timeout
[  329.445668][ T5773] Bluetooth: hci4: command 0x0406 tx timeout
[  330.628371][ T5770] Bluetooth: hci1: command tx timeout
[  330.684791][ T5770] Bluetooth: hci0: command tx timeout
[  330.690835][ T5770] Bluetooth: hci2: command tx timeout
[  332.722016][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  333.840736][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  336.898698][ T5093] usb 5-1: new high-speed USB device number 4 using dummy_hcd
[  337.128162][ T5093] usb 5-1: Using ep0 maxpacket: 8
[  337.154151][ T5093] usb 5-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config
[  337.194894][ T5093] usb 5-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[  337.228391][ T5093] usb 5-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[  337.253056][ T5093] usb 5-1: config 16 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[  337.339485][ T5093] usb 5-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23
[  337.361759][ T5093] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  337.465717][ T5093] usbtmc 5-1:16.0: bulk endpoints not found
[  337.588086][  T142] hsr_slave_0: left promiscuous mode
[  337.633181][  T142] hsr_slave_1: left promiscuous mode
[  337.645056][  T142] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  337.655561][  T142] batman_adv: batadv0: Removing interface: batadv_slave_0
[  337.675198][  T142] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  337.689356][  T142] batman_adv: batadv0: Removing interface: batadv_slave_1
[  337.735543][  T142] hsr_slave_0: left promiscuous mode
[  337.751940][  T142] hsr_slave_1: left promiscuous mode
[  337.765196][  T142] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  337.774710][  T142] batman_adv: batadv0: Removing interface: batadv_slave_0
[  337.812848][  T142] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  337.838109][  T142] batman_adv: batadv0: Removing interface: batadv_slave_1
[  337.946293][  T142] veth1_macvtap: left promiscuous mode
[  337.958518][  T142] veth0_macvtap: left promiscuous mode
[  337.964694][  T142] veth1_vlan: left promiscuous mode
[  337.971306][  T142] veth0_vlan: left promiscuous mode
[  337.982777][  T142] veth1_macvtap: left promiscuous mode
[  338.008150][  T142] veth0_macvtap: left promiscuous mode
[  338.014394][  T142] veth1_vlan: left promiscuous mode
[  338.038130][  T142] veth0_vlan: left promiscuous mode
[  338.049288][ T5093] usb 5-1: USB disconnect, device number 4
[  340.843300][  T142] team0 (unregistering): Port device team_slave_1 removed
[  340.944198][  T142] team0 (unregistering): Port device team_slave_0 removed
[  342.508149][  T142] team0 (unregistering): Port device team_slave_1 removed
[  342.585677][  T142] team0 (unregistering): Port device team_slave_0 removed
[  345.191666][ T6238] chnl_net:caif_netlink_parms(): no params data found
[  347.892993][ T6239] chnl_net:caif_netlink_parms(): no params data found
[  348.709616][ T6359] Zero length message leads to an empty skb
[  349.415290][ T6243] chnl_net:caif_netlink_parms(): no params data found
[  350.385310][ T6371] netlink: 28 bytes leftover after parsing attributes in process `syz.4.90'.
[  350.920178][ T6238] bridge0: port 1(bridge_slave_0) entered blocking state
[  350.973889][ T6238] bridge0: port 1(bridge_slave_0) entered disabled state
[  351.059279][ T6238] bridge_slave_0: entered allmulticast mode
[  351.111613][ T6238] bridge_slave_0: entered promiscuous mode
[  351.245265][ T6238] bridge0: port 2(bridge_slave_1) entered blocking state
[  351.326363][ T6238] bridge0: port 2(bridge_slave_1) entered disabled state
[  351.407042][ T6238] bridge_slave_1: entered allmulticast mode
[  351.493766][ T6238] bridge_slave_1: entered promiscuous mode
[  355.712606][ T6238] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  356.505724][ T6238] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  358.039058][ T6238] team0: Port device team_slave_0 added
[  358.133326][ T6238] team0: Port device team_slave_1 added
[  358.714475][ T6243] bridge0: port 1(bridge_slave_0) entered blocking state
[  358.746694][ T6243] bridge0: port 1(bridge_slave_0) entered disabled state
[  358.784131][ T6243] bridge_slave_0: entered allmulticast mode
[  358.884851][ T6243] bridge_slave_0: entered promiscuous mode
[  358.950794][ T6239] bridge0: port 1(bridge_slave_0) entered blocking state
[  358.976225][ T6239] bridge0: port 1(bridge_slave_0) entered disabled state
[  359.020593][ T6239] bridge_slave_0: entered allmulticast mode
[  359.066464][ T6239] bridge_slave_0: entered promiscuous mode
[  359.094759][ T6239] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.118199][ T6239] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.132864][ T6239] bridge_slave_1: entered allmulticast mode
[  359.163201][ T6239] bridge_slave_1: entered promiscuous mode
[  359.374829][ T6243] bridge0: port 2(bridge_slave_1) entered blocking state
[  359.389556][ T6243] bridge0: port 2(bridge_slave_1) entered disabled state
[  359.418924][ T6243] bridge_slave_1: entered allmulticast mode
[  359.441183][ T6243] bridge_slave_1: entered promiscuous mode
[  359.559047][ T6405] netlink: 55631 bytes leftover after parsing attributes in process `syz.1.97'.
[  359.560247][   T29] audit: type=1326 audit(1773224642.372:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  359.608855][ T6409] capability: warning: `syz.4.99' uses 32-bit capabilities (legacy support in use)
[  359.640619][   T29] audit: type=1326 audit(1773224642.382:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  359.667466][ T6238] batman_adv: batadv0: Adding interface: batadv_slave_0
[  359.680735][ T6238] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  359.710841][   T29] audit: type=1326 audit(1773224642.432:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  359.739302][ T6238] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  359.764425][ T6238] batman_adv: batadv0: Adding interface: batadv_slave_1
[  359.773013][   T29] audit: type=1326 audit(1773224642.482:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  359.810808][ T6238] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  359.843358][   T29] audit: type=1326 audit(1773224642.492:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=188 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  359.920476][ T6238] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  360.039753][   T29] audit: type=1326 audit(1773224642.492:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  360.151810][   T29] audit: type=1326 audit(1773224642.492:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=198 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  360.287615][   T29] audit: type=1326 audit(1773224642.492:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  360.368551][   T29] audit: type=1326 audit(1773224642.502:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe365b5cfce code=0x7ffc0000
[  360.488522][   T29] audit: type=1326 audit(1773224642.512:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6408 comm="syz.4.99" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7fe365b9da97 code=0x7ffc0000
[  361.047060][ T6239] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  362.332693][ T6239] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  367.406740][ T6243] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  367.985329][ T6243] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  369.065620][ T6238] hsr_slave_0: entered promiscuous mode
[  369.086123][ T6238] hsr_slave_1: entered promiscuous mode
[  369.226713][ T6243] team0: Port device team_slave_0 added
[  369.303773][ T6239] team0: Port device team_slave_0 added
[  369.354132][ T6239] team0: Port device team_slave_1 added
[  369.484436][ T6243] team0: Port device team_slave_1 added
[  370.049101][ T6239] batman_adv: batadv0: Adding interface: batadv_slave_0
[  370.057438][ T6239] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  370.100259][ T6239] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  370.190509][ T6243] batman_adv: batadv0: Adding interface: batadv_slave_0
[  370.208622][ T6243] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  370.287998][ T6243] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  370.497462][ T6239] batman_adv: batadv0: Adding interface: batadv_slave_1
[  370.536964][ T6239] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  370.595727][ T6239] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  370.656523][ T6243] batman_adv: batadv0: Adding interface: batadv_slave_1
[  370.668412][ T6243] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  370.737928][ T6243] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  371.585707][ T6243] hsr_slave_0: entered promiscuous mode
[  371.603729][ T6243] hsr_slave_1: entered promiscuous mode
[  371.631386][ T6243] debugfs: 'hsr0' already exists in 'hsr'
[  371.637537][ T6243] Cannot create hsr debugfs directory
[  371.680377][ T6239] hsr_slave_0: entered promiscuous mode
[  371.702399][ T6239] hsr_slave_1: entered promiscuous mode
[  371.731501][ T6239] debugfs: 'hsr0' already exists in 'hsr'
[  371.742169][ T6239] Cannot create hsr debugfs directory
[  372.676150][ T6453] loop1: detected capacity change from 0 to 256
[  372.731926][ T6453] exfat: Deprecated parameter 'namecase'
[  372.771101][ T6453] exfat: Invalid uid '0xffffffff'
[  373.165910][ T6456] loop4: detected capacity change from 0 to 512
[  373.210848][ T6212] bridge_slave_1: left allmulticast mode
[  373.217272][ T6212] bridge_slave_1: left promiscuous mode
[  373.244091][ T6212] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.305012][ T6212] bridge_slave_0: left allmulticast mode
[  373.311793][ T6212] bridge_slave_0: left promiscuous mode
[  373.322464][ T6212] bridge0: port 1(bridge_slave_0) entered disabled state
[  373.345376][ T6456] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  373.384458][ T6212] bridge_slave_1: left allmulticast mode
[  373.424514][ T6212] bridge_slave_1: left promiscuous mode
[  373.446048][ T6212] bridge0: port 2(bridge_slave_1) entered disabled state
[  373.488836][ T6212] bridge_slave_0: left allmulticast mode
[  374.387845][ T6212] bridge_slave_0: left promiscuous mode
[  374.394882][ T6212] bridge0: port 1(bridge_slave_0) entered disabled state
[  374.432245][ T6212] bridge_slave_1: left allmulticast mode
[  374.486050][ T6212] bridge_slave_1: left promiscuous mode
[  374.578865][ T6212] bridge0: port 2(bridge_slave_1) entered disabled state
[  374.682035][ T6212] bridge_slave_0: left allmulticast mode
[  374.703351][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.728149][ T6212] bridge_slave_0: left promiscuous mode
[  374.753653][ T6212] bridge0: port 1(bridge_slave_0) entered disabled state
[  375.900621][ T6212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  376.007608][ T6212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  376.069794][ T6212] bond0 (unregistering): Released all slaves
[  377.299735][ T6212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  377.385682][ T6212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  377.463154][ T6212] bond0 (unregistering): Released all slaves
[  378.039486][ T6212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  378.101263][ T6212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  378.132889][ T6212] bond0 (unregistering): Released all slaves
[  383.087285][ T6212] hsr_slave_0: left promiscuous mode
[  383.164094][ T6212] hsr_slave_1: left promiscuous mode
[  383.214764][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  383.320439][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  383.588515][ T6212] hsr_slave_0: left promiscuous mode
[  383.686621][ T6212] hsr_slave_1: left promiscuous mode
[  383.741019][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  383.878162][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  384.119855][ T6212] hsr_slave_0: left promiscuous mode
[  384.190603][ T6212] hsr_slave_1: left promiscuous mode
[  384.229750][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  384.318314][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  384.895806][ T5770] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  384.909219][ T5770] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  384.919782][ T5770] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  384.938346][ T5770] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  384.961334][ T5770] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  385.187272][ T5780] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  385.208834][ T5780] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  385.218721][ T5780] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  385.235624][ T5780] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  385.248160][ T5780] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  385.504178][ T6493] loop4: detected capacity change from 0 to 1024
[  385.658690][ T5780] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  385.682410][ T5780] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  385.717533][ T5780] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  385.732619][ T5780] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  385.747131][ T5780] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  385.797123][ T6493] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  387.520563][   T29] kauditd_printk_skb: 2 callbacks suppressed
[  387.521329][   T29] audit: type=1804 audit(1773224669.572:23): pid=6507 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.4.116" name="/newroot/53/file2/bus" dev="loop4" ino=18 res=1 errno=0
[  387.581275][ T5780] Bluetooth: hci5: command tx timeout
[  388.190141][ T5780] Bluetooth: hci6: command tx timeout
[  388.197035][ T5780] Bluetooth: hci7: command tx timeout
[  388.221373][ T6502] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1315: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  388.241426][ T6212] team0 (unregistering): Port device team_slave_1 removed
[  388.378900][ T6502] EXT4-fs (loop4): Remounting filesystem read-only
[  388.852658][ T6212] team0 (unregistering): Port device team_slave_0 removed
[  389.075890][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  390.218900][   T49] Bluetooth: hci5: command tx timeout
[  390.228503][ T5780] Bluetooth: hci6: command tx timeout
[  390.236792][ T5770] Bluetooth: hci7: command tx timeout
[  392.298627][ T5770] Bluetooth: hci7: command tx timeout
[  392.306776][ T5780] Bluetooth: hci6: command tx timeout
[  392.314170][   T49] Bluetooth: hci5: command tx timeout
[  393.295271][ T6212] team0 (unregistering): Port device team_slave_1 removed
[  393.389970][ T6212] team0 (unregistering): Port device team_slave_0 removed
[  393.768931][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  393.776639][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  394.428400][ T5770] Bluetooth: hci7: command tx timeout
[  394.434584][ T5770] Bluetooth: hci5: command tx timeout
[  394.442760][ T5770] Bluetooth: hci6: command tx timeout
[  394.796508][ T6212] team0 (unregistering): Port device team_slave_1 removed
[  394.864375][ T6212] team0 (unregistering): Port device team_slave_0 removed
[  399.311921][ T6212] bridge_slave_1: left allmulticast mode
[  399.348095][ T6212] bridge_slave_1: left promiscuous mode
[  399.355159][ T6212] bridge0: port 2(bridge_slave_1) entered disabled state
[  399.459991][ T6212] bridge_slave_0: left allmulticast mode
[  399.513897][ T6212] bridge_slave_0: left promiscuous mode
[  399.559433][ T6212] bridge0: port 1(bridge_slave_0) entered disabled state
[  400.372586][ T6212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  400.483146][ T6212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  400.566870][ T6212] bond0 (unregistering): Released all slaves
[  401.186739][ T6212] hsr_slave_0: left promiscuous mode
[  401.239243][ T6212] hsr_slave_1: left promiscuous mode
[  401.311899][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  401.374058][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  402.784761][ T6212] team0 (unregistering): Port device team_slave_1 removed
[  403.008300][ T6212] team0 (unregistering): Port device team_slave_0 removed
[  407.791819][ T6212] bridge_slave_1: left allmulticast mode
[  407.808692][ T6212] bridge_slave_1: left promiscuous mode
[  407.815700][ T6212] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.861020][ T6212] bridge_slave_0: left allmulticast mode
[  407.878454][ T6212] bridge_slave_0: left promiscuous mode
[  407.896834][ T6212] bridge0: port 1(bridge_slave_0) entered disabled state
[  407.926083][ T6212] bridge_slave_1: left allmulticast mode
[  407.932517][ T6212] bridge_slave_1: left promiscuous mode
[  407.940388][ T6212] bridge0: port 2(bridge_slave_1) entered disabled state
[  407.981333][ T6212] bridge_slave_0: left allmulticast mode
[  408.006125][ T6212] bridge_slave_0: left promiscuous mode
[  408.049590][ T6212] bridge0: port 1(bridge_slave_0) entered disabled state
[  408.806070][ T6212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  408.859835][ T6212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  408.903666][ T6212] bond0 (unregistering): Released all slaves
[  409.293466][ T6212] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  409.374203][ T6212] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  409.419714][ T6212] bond0 (unregistering): Released all slaves
[  410.098156][ T6212] hsr_slave_0: left promiscuous mode
[  410.134384][ T6212] hsr_slave_1: left promiscuous mode
[  410.166668][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  410.194833][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  410.244525][ T6212] hsr_slave_0: left promiscuous mode
[  410.254441][ T6212] hsr_slave_1: left promiscuous mode
[  410.986300][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_0
[  411.023362][ T6212] batman_adv: batadv0: Removing interface: batadv_slave_1
[  411.821619][ T6212] team0 (unregistering): Port device team_slave_1 removed
[  411.928279][ T6212] team0 (unregistering): Port device team_slave_0 removed
[  413.585998][ T6212] team0 (unregistering): Port device team_slave_1 removed
[  413.680664][ T6212] team0 (unregistering): Port device team_slave_0 removed
[  415.801997][ T6491] chnl_net:caif_netlink_parms(): no params data found
[  416.518301][ T6486] chnl_net:caif_netlink_parms(): no params data found
[  420.380777][ T6497] chnl_net:caif_netlink_parms(): no params data found
[  421.767312][ T6491] bridge0: port 1(bridge_slave_0) entered blocking state
[  421.796049][ T6491] bridge0: port 1(bridge_slave_0) entered disabled state
[  422.798826][ T6491] bridge_slave_0: entered allmulticast mode
[  424.330423][ T6491] bridge_slave_0: entered promiscuous mode
[  424.527401][ T6491] bridge0: port 2(bridge_slave_1) entered blocking state
[  424.679469][ T6491] bridge0: port 2(bridge_slave_1) entered disabled state
[  424.724405][ T6491] bridge_slave_1: entered allmulticast mode
[  424.818554][ T6491] bridge_slave_1: entered promiscuous mode
[  425.287202][ T6491] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  425.405681][ T6491] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  425.592439][ T5823] usb 5-1: new high-speed USB device number 5 using dummy_hcd
[  425.796735][ T5823] usb 5-1: Using ep0 maxpacket: 8
[  425.836804][ T5823] usb 5-1: unable to get BOS descriptor or descriptor too short
[  425.859345][ T5823] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 186, changing to 7
[  425.900726][ T5823] usb 5-1: New USB device found, idVendor=046d, idProduct=08f6, bcdDevice= 0.40
[  425.922004][ T5823] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  425.931473][ T6486] bridge0: port 1(bridge_slave_0) entered blocking state
[  425.940362][ T6486] bridge0: port 1(bridge_slave_0) entered disabled state
[  425.949738][ T5823] usb 5-1: Product: syz
[  425.954724][ T5823] usb 5-1: Manufacturer: syz
[  425.961283][ T6486] bridge_slave_0: entered allmulticast mode
[  425.968853][ T5823] usb 5-1: SerialNumber: syz
[  425.982856][ T6486] bridge_slave_0: entered promiscuous mode
[  426.074739][ T6491] team0: Port device team_slave_0 added
[  426.201488][ T6497] bridge0: port 1(bridge_slave_0) entered blocking state
[  426.209238][ T6497] bridge0: port 1(bridge_slave_0) entered disabled state
[  426.217572][ T6497] bridge_slave_0: entered allmulticast mode
[  426.250667][ T6497] bridge_slave_0: entered promiscuous mode
[  426.281670][ T5823] gspca_main: STV06xx-2.14.0 probing 046d:08f6
[  426.308972][ T5823] gspca_stv06xx: st6422 sensor detected
[  426.318145][ T6486] bridge0: port 2(bridge_slave_1) entered blocking state
[  426.337374][ T6486] bridge0: port 2(bridge_slave_1) entered disabled state
[  426.358310][ T6486] bridge_slave_1: entered allmulticast mode
[  426.373316][ T6486] bridge_slave_1: entered promiscuous mode
[  426.456257][ T6491] team0: Port device team_slave_1 added
[  426.575655][ T6497] bridge0: port 2(bridge_slave_1) entered blocking state
[  426.576529][ T5823] STV06xx 5-1:1.0: probe with driver STV06xx failed with error -71
[  426.596543][ T6497] bridge0: port 2(bridge_slave_1) entered disabled state
[  426.634469][ T6497] bridge_slave_1: entered allmulticast mode
[  426.635932][ T5823] usb 5-1: unit 255 not found!
[  426.655787][ T6497] bridge_slave_1: entered promiscuous mode
[  427.169309][ T5823] usb 5-1: USB disconnect, device number 5
[  427.317345][ T6491] batman_adv: batadv0: Adding interface: batadv_slave_0
[  427.331053][ T6491] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  427.457986][ T6491] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  427.722363][ T6652] udevd[6652]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  427.851414][ T6486] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  427.966378][ T6486] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  428.064687][ T6491] batman_adv: batadv0: Adding interface: batadv_slave_1
[  428.146247][ T6491] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  428.700520][ T6491] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  429.048398][ T6497] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  429.156600][ T6497] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  430.833413][ T6670] loop1: detected capacity change from 0 to 256
[  431.222487][ T6486] team0: Port device team_slave_0 added
[  431.535876][ T6486] team0: Port device team_slave_1 added
[  431.718439][ T5823] usb 2-1: new high-speed USB device number 4 using dummy_hcd
[  431.860055][ T6497] team0: Port device team_slave_0 added
[  431.937536][ T5823] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[  431.968351][ T5823] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[  431.996219][ T5823] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21
[  432.048057][ T5823] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00
[  432.073291][ T5823] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  432.110056][ T5823] usb 2-1: config 0 descriptor??
[  432.121679][ T6497] team0: Port device team_slave_1 added
[  432.348347][ T6486] batman_adv: batadv0: Adding interface: batadv_slave_0
[  432.360324][ T6486] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  432.422120][ T6486] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  432.503462][ T6491] hsr_slave_0: entered promiscuous mode
[  432.562237][ T6491] hsr_slave_1: entered promiscuous mode
[  432.698345][ T6486] batman_adv: batadv0: Adding interface: batadv_slave_1
[  432.729396][ T6486] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  432.805387][ T5823] plantronics 0003:047F:FFFF.0002: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.1-1/input0
[  432.881711][ T6486] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  432.938075][ T5823] usb 2-1: USB disconnect, device number 4
[  432.990501][ T6497] batman_adv: batadv0: Adding interface: batadv_slave_0
[  433.044120][ T6497] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  433.161057][ T6497] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  433.468632][ T6497] batman_adv: batadv0: Adding interface: batadv_slave_1
[  433.476511][ T6497] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  433.612697][ T6497] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  433.726178][ T6673] fido_id[6673]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory
[  434.616775][ T6486] hsr_slave_0: entered promiscuous mode
[  434.669731][ T6486] hsr_slave_1: entered promiscuous mode
[  434.719686][ T6486] debugfs: 'hsr0' already exists in 'hsr'
[  434.726016][ T6486] Cannot create hsr debugfs directory
[  435.303132][ T6497] hsr_slave_0: entered promiscuous mode
[  435.362753][ T6497] hsr_slave_1: entered promiscuous mode
[  435.448493][ T6497] debugfs: 'hsr0' already exists in 'hsr'
[  435.479718][ T6497] Cannot create hsr debugfs directory
[  437.475093][ T6691] netlink: 60 bytes leftover after parsing attributes in process `syz.4.155'.
[  437.765862][ T6697] loop1: detected capacity change from 0 to 512
[  437.789624][ T6697] msdos: Unknown parameter ''
[  438.733545][ T6693] netlink: 60 bytes leftover after parsing attributes in process `syz.4.155'.
[  440.559002][ T6710] loop4: detected capacity change from 0 to 512
[  440.577445][ T6711] loop1: detected capacity change from 0 to 128
[  440.602479][ T6710] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  440.659079][ T6710] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  440.781598][ T6710] EXT4-fs error (device loop4): ext4_iget_extra_inode:5025: inode #15: comm syz.4.159: corrupted in-inode xattr: invalid ea_ino
[  440.906302][   T29] audit: type=1804 audit(1773224723.722:24): pid=6711 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.158" name="/newroot/69/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/usrjquota=.." dev="loop1" ino=1048606 res=1 errno=0
[  440.914533][ T6710] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  441.077824][    C1] EXT4-fs (loop4): error count since last fsck: 1
[  441.095247][    C1] EXT4-fs (loop4): initial error at time 1773224723: ext4_iget_extra_inode:5025: inode 15
[  441.106005][    C1] EXT4-fs (loop4): last error at time 1773224723: ext4_iget_extra_inode:5025: inode 15
[  441.132360][ T6710] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.159: couldn't read orphan inode 15 (err -117)
[  441.244294][ T5770] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  441.257466][ T5770] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  441.268627][ T5770] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  441.289558][ T5770] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  441.302446][ T5770] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  441.333849][ T6710] loop4: lost filesystem error report for type 5 error -117
[  441.346369][ T6710] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.035917][ T6726] loop1: detected capacity change from 0 to 128
[  442.051490][ T5777] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.102798][ T6486] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  442.344786][ T6486] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  442.497235][ T6486] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  442.760386][ T6486] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  443.506898][ T5770] Bluetooth: hci0: command tx timeout
[  445.608788][ T5770] Bluetooth: hci0: command tx timeout
[  447.686945][   T49] Bluetooth: hci0: command tx timeout
[  448.670268][ T6069] bridge_slave_1: left allmulticast mode
[  448.733694][ T6069] bridge_slave_1: left promiscuous mode
[  448.786426][ T6069] bridge0: port 2(bridge_slave_1) entered disabled state
[  448.940549][ T6069] bridge_slave_0: left allmulticast mode
[  448.946853][ T6069] bridge_slave_0: left promiscuous mode
[  449.077183][ T6069] bridge0: port 1(bridge_slave_0) entered disabled state
[  449.373796][ T5770] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  449.393512][ T5770] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  449.415949][ T5770] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  449.432726][ T5770] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  449.449601][ T5770] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  449.738059][ T5770] Bluetooth: hci0: command tx timeout
[  450.128940][   T49] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  450.140386][   T49] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  450.168376][   T49] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  450.183427][   T49] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  450.204579][   T49] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  450.593286][ T6069] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  450.681425][ T6069] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  450.765181][ T6069] bond0 (unregistering): Released all slaves
[  450.834473][ T6750] netlink: 60 bytes leftover after parsing attributes in process `syz.1.164'.
[  451.107214][ T6716] chnl_net:caif_netlink_parms(): no params data found
[  451.378099][ T6069] hsr_slave_0: left promiscuous mode
[  451.459531][ T6069] hsr_slave_1: left promiscuous mode
[  451.529941][ T6069] batman_adv: batadv0: Removing interface: batadv_slave_0
[  451.578425][   T49] Bluetooth: hci1: command tx timeout
[  451.649640][ T6069] batman_adv: batadv0: Removing interface: batadv_slave_1
[  452.438363][   T49] Bluetooth: hci2: command tx timeout
[  454.781589][ T5770] Bluetooth: hci2: command tx timeout
[  454.789102][   T49] Bluetooth: hci1: command tx timeout
[  455.312215][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  455.326024][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  457.480322][   T49] Bluetooth: hci1: command tx timeout
[  457.486182][   T49] Bluetooth: hci2: command tx timeout
[  457.743013][ T6069] team0 (unregistering): Port device team_slave_1 removed
[  457.755453][ T6768] loop4: detected capacity change from 0 to 256
[  457.864251][ T6768] =======================================================
[  457.864251][ T6768] WARNING: The mand mount option has been deprecated and
[  457.864251][ T6768]          and is ignored by this kernel. Remove the mand
[  457.864251][ T6768]          option from the mount to silence this warning.
[  457.864251][ T6768] =======================================================
[  458.080370][ T6069] team0 (unregistering): Port device team_slave_0 removed
[  458.420149][ T6768] exFAT-fs (loop4): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d)
[  458.509547][ T6768] exFAT-fs (loop4): bogus allocation bitmap size(need : 2, cur : 17179869186)
[  458.715681][ T6768] exFAT-fs (loop4): failed to load alloc-bitmap
[  458.749159][ T6768] exFAT-fs (loop4): failed to recognize exfat type
[  459.577984][ T5770] Bluetooth: hci1: command tx timeout
[  459.584346][   T49] Bluetooth: hci2: command tx timeout
[  464.216093][ T6795] netlink: 60 bytes leftover after parsing attributes in process `syz.4.172'.
[  464.249940][ T6796] netlink: 60 bytes leftover after parsing attributes in process `syz.4.172'.
[  464.284817][ T6716] bridge0: port 1(bridge_slave_0) entered blocking state
[  464.303476][ T6716] bridge0: port 1(bridge_slave_0) entered disabled state
[  464.319273][ T6716] bridge_slave_0: entered allmulticast mode
[  464.333429][ T6716] bridge_slave_0: entered promiscuous mode
[  464.432669][ T6797] netlink: 60 bytes leftover after parsing attributes in process `syz.4.172'.
[  464.694293][ T6716] bridge0: port 2(bridge_slave_1) entered blocking state
[  464.764303][ T6716] bridge0: port 2(bridge_slave_1) entered disabled state
[  464.809362][ T6716] bridge_slave_1: entered allmulticast mode
[  464.854914][ T6716] bridge_slave_1: entered promiscuous mode
[  466.862245][ T6806] loop4: detected capacity change from 0 to 16
[  466.874438][ T6806] erofs (device loop4): invalid ishare xattr prefix id 0
[  467.116323][ T6805] xt_TPROXY: Can be used only with -p tcp or -p udp
[  467.818597][ T6754] chnl_net:caif_netlink_parms(): no params data found
[  468.040531][ T6716] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  468.124517][ T6716] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  469.275038][ T6716] team0: Port device team_slave_0 added
[  469.626226][ T6716] team0: Port device team_slave_1 added
[  469.961204][ T6816] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  470.003543][ T6757] chnl_net:caif_netlink_parms(): no params data found
[  470.614204][ T6716] batman_adv: batadv0: Adding interface: batadv_slave_0
[  470.648146][ T6716] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  470.717859][ T6716] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  471.331030][ T6716] batman_adv: batadv0: Adding interface: batadv_slave_1
[  471.378252][ T6716] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  471.534720][ T6716] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  471.564236][ T6069] bridge_slave_1: left allmulticast mode
[  471.585043][ T6069] bridge_slave_1: left promiscuous mode
[  471.609164][ T6069] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.634511][ T6069] bridge_slave_0: left allmulticast mode
[  471.656564][ T6069] bridge_slave_0: left promiscuous mode
[  471.685810][ T6069] bridge0: port 1(bridge_slave_0) entered disabled state
[  471.734360][ T6069] bridge_slave_1: left allmulticast mode
[  471.752721][ T6069] bridge_slave_1: left promiscuous mode
[  471.788915][ T6069] bridge0: port 2(bridge_slave_1) entered disabled state
[  471.841441][ T6069] bridge_slave_0: left allmulticast mode
[  471.848654][ T6069] bridge_slave_0: left promiscuous mode
[  471.873465][ T6069] bridge0: port 1(bridge_slave_0) entered disabled state
[  472.406878][ T6069] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  472.505855][ T6069] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  472.556141][ T6069] bond0 (unregistering): Released all slaves
[  473.111827][ T6069] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  473.184935][ T6069] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  473.235520][ T6069] bond0 (unregistering): Released all slaves
[  473.461608][ T6754] bridge0: port 1(bridge_slave_0) entered blocking state
[  473.498905][ T6754] bridge0: port 1(bridge_slave_0) entered disabled state
[  473.569102][ T6754] bridge_slave_0: entered allmulticast mode
[  473.621885][ T6754] bridge_slave_0: entered promiscuous mode
[  473.901405][ T6069] hsr_slave_0: left promiscuous mode
[  473.950348][ T6069] hsr_slave_1: left promiscuous mode
[  473.979889][ T6069] batman_adv: batadv0: Removing interface: batadv_slave_0
[  474.028186][ T6069] batman_adv: batadv0: Removing interface: batadv_slave_1
[  474.126883][ T6069] hsr_slave_0: left promiscuous mode
[  474.155960][ T6069] hsr_slave_1: left promiscuous mode
[  474.180949][ T6069] batman_adv: batadv0: Removing interface: batadv_slave_0
[  474.335135][ T6069] batman_adv: batadv0: Removing interface: batadv_slave_1
[  475.720948][ T6069] team0 (unregistering): Port device team_slave_1 removed
[  475.794045][ T6069] team0 (unregistering): Port device team_slave_0 removed
[  476.067832][ T6830] capability: warning: `syz.1.178' uses deprecated v2 capabilities in a way that may be insecure
[  477.238709][ T6830] loop1: detected capacity change from 0 to 40427
[  477.332869][ T6830] F2FS-fs (loop1): build fault injection rate: 771
[  477.347390][ T6830] F2FS-fs (loop1): invalid crc value
[  477.678227][ T6830] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  477.721206][ T6830] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  481.442980][ T6069] team0 (unregistering): Port device team_slave_1 removed
[  484.580749][ T6069] team0 (unregistering): Port device team_slave_0 removed
[  484.605326][ T5782] syz-executor: attempt to access beyond end of device
[  484.605326][ T5782] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  484.716709][ T5782] CPU: 0 UID: 0 PID: 5782 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  484.716869][ T5782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  484.716972][ T5782] Call Trace:
[  484.717028][ T5782]  <TASK>
[  484.717082][ T5782]  __dump_stack+0x26/0x30
[  484.717348][ T5782]  dump_stack_lvl+0x14c/0x1c0
[  484.717535][ T5782]  dump_stack+0x1e/0x25
[  484.717685][ T5782]  f2fs_handle_critical_error+0xa6f/0xc20
[  484.717989][ T5782]  f2fs_stop_checkpoint+0x65/0x80
[  484.718222][ T5782]  f2fs_write_end_io+0x12e6/0x2560
[  484.718512][ T5782]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  484.718718][ T5782]  bio_endio+0x1006/0x1160
[  484.718998][ T5782]  submit_bio_noacct+0x533/0x2960
[  484.719238][ T5782]  submit_bio+0x57a/0x620
[  484.719393][ T5782]  f2fs_submit_write_bio+0x115/0x350
[  484.719593][ T5782]  __submit_merged_bio+0x16f/0x780
[  484.719799][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  484.720118][ T5782]  __submit_merged_write_cond+0x4ba/0xae0
[  484.720337][ T5782]  f2fs_write_data_pages+0x5073/0x5e10
[  484.720631][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  484.720904][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  484.721141][ T5782]  ? free_unref_folios+0x2a52/0x2ac0
[  484.721352][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  484.721613][ T5782]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  484.721819][ T5782]  ? kmsan_get_metadata+0xf1/0x160
[  484.722028][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  484.722250][ T5782]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  484.722470][ T5782]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  484.722670][ T5782]  do_writepages+0x3f2/0x860
[  484.722886][ T5782]  ? _raw_spin_unlock+0x30/0x50
[  484.723177][ T5782]  ? wbc_attach_and_unlock_inode+0x131/0x660
[  484.723440][ T5782]  filemap_fdatawrite+0x207/0x260
[  484.723727][ T5782]  f2fs_sync_dirty_inodes+0x2aa/0xaa0
[  484.723915][ T5782]  f2fs_write_checkpoint+0x10e1/0x3d20
[  484.724172][ T5782]  ? _raw_spin_unlock_irqrestore+0x3f/0x60
[  484.724449][ T5782]  kill_f2fs_super+0x320/0x990
[  484.724638][ T5782]  ? __pfx_kill_f2fs_super+0x10/0x10
[  484.724800][ T5782]  deactivate_locked_super+0xcb/0x3c0
[  484.725039][ T5782]  deactivate_super+0x12f/0x140
[  484.725221][ T5782]  cleanup_mnt+0x7eb/0x870
[  484.725424][ T5782]  ? __pfx___cleanup_mnt+0x10/0x10
[  484.725591][ T5782]  __cleanup_mnt+0x22/0x30
[  484.725750][ T5782]  task_work_run+0x208/0x2b0
[  484.726011][ T5782]  exit_to_user_mode_loop+0x306/0x1b60
[  484.726298][ T5782]  ? user_path_at+0x1fc/0x330
[  484.726534][ T5782]  ? __x64_sys_umount+0x1dc/0x250
[  484.726776][ T5782]  do_syscall_64+0x24d/0xf80
[  484.726949][ T5782]  ? clear_bhb_loop+0x50/0xa0
[  484.727120][ T5782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  484.727295][ T5782] RIP: 0033:0x7f0c0e39d9d7
[  484.727428][ T5782] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  484.727556][ T5782] RSP: 002b:00007ffdfbf5b9c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  484.727686][ T5782] RAX: 0000000000000000 RBX: 00007f0c0e432050 RCX: 00007f0c0e39d9d7
[  484.727779][ T5782] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdfbf5ba80
[  484.727864][ T5782] RBP: 00007ffdfbf5ba80 R08: 00007ffdfbf5ca80 R09: 00000000ffffffff
[  484.727968][ T5782] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdfbf5cb10
[  484.728063][ T5782] R13: 00007f0c0e432050 R14: 0000000000074c7b R15: 00007ffdfbf5cb50
[  484.728218][ T5782]  </TASK>
[  485.495243][ T6754] bridge0: port 2(bridge_slave_1) entered blocking state
[  485.506584][ T5782] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  485.517408][ T6754] bridge0: port 2(bridge_slave_1) entered disabled state
[  485.526093][ T6754] bridge_slave_1: entered allmulticast mode
[  486.512234][ T6754] bridge_slave_1: entered promiscuous mode
[  488.638810][ T6716] hsr_slave_0: entered promiscuous mode
[  488.693279][ T6716] hsr_slave_1: entered promiscuous mode
[  488.852767][ T6847] netlink: 60 bytes leftover after parsing attributes in process `syz.1.181'.
[  488.957298][ T6754] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  489.076653][ T6754] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  489.153543][ T6757] bridge0: port 1(bridge_slave_0) entered blocking state
[  489.196044][ T6757] bridge0: port 1(bridge_slave_0) entered disabled state
[  489.249728][ T6757] bridge_slave_0: entered allmulticast mode
[  489.308403][ T6757] bridge_slave_0: entered promiscuous mode
[  489.379462][ T6757] bridge0: port 2(bridge_slave_1) entered blocking state
[  489.387290][ T6757] bridge0: port 2(bridge_slave_1) entered disabled state
[  489.469953][ T6757] bridge_slave_1: entered allmulticast mode
[  489.532531][ T6757] bridge_slave_1: entered promiscuous mode
[  489.828284][ T5824] usb 2-1: new full-speed USB device number 5 using dummy_hcd
[  490.008855][ T5824] usb 2-1: unable to get BOS descriptor or descriptor too short
[  490.031555][ T5824] usb 2-1: not running at top speed; connect to a high speed hub
[  490.071878][ T5824] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4
[  490.129153][ T5824] usb 2-1: New USB device found, idVendor=1235, idProduct=8004, bcdDevice= 0.40
[  490.153244][ T5824] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  490.178076][ T5824] usb 2-1: Product: syz
[  490.182534][ T5824] usb 2-1: Manufacturer: syz
[  490.205769][ T6754] team0: Port device team_slave_0 added
[  490.212754][ T5824] usb 2-1: SerialNumber: syz
[  490.292921][ T6757] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  490.447281][ T6757] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  490.530371][ T6754] team0: Port device team_slave_1 added
[  491.776976][ T6757] team0: Port device team_slave_0 added
[  491.849237][ T6754] batman_adv: batadv0: Adding interface: batadv_slave_0
[  491.856659][ T6754] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  492.014193][ T5824] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -71
[  492.028997][ T6754] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  492.262488][ T5824] usb 2-1: USB disconnect, device number 5
[  492.299197][ T6757] team0: Port device team_slave_1 added
[  492.416689][ T6754] batman_adv: batadv0: Adding interface: batadv_slave_1
[  492.488857][ T6754] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  492.582616][ T6858] udevd[6858]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  492.640759][ T6754] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  493.742868][ T6757] batman_adv: batadv0: Adding interface: batadv_slave_0
[  493.783171][ T6757] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  493.813170][ T6757] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  494.758416][ T6757] batman_adv: batadv0: Adding interface: batadv_slave_1
[  494.807423][ T6757] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  494.916749][ T6757] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  495.069979][ T6754] hsr_slave_0: entered promiscuous mode
[  495.114112][ T6754] hsr_slave_1: entered promiscuous mode
[  495.153581][ T6754] debugfs: 'hsr0' already exists in 'hsr'
[  495.174386][ T6754] Cannot create hsr debugfs directory
[  496.257800][ T6757] hsr_slave_0: entered promiscuous mode
[  496.317037][ T6757] hsr_slave_1: entered promiscuous mode
[  496.354321][ T6757] debugfs: 'hsr0' already exists in 'hsr'
[  496.387284][ T6757] Cannot create hsr debugfs directory
[  496.506068][ T6880] kvm: user requested TSC rate below hardware speed
[  496.619079][ T6881] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3934270872 (125896667904 ns) > initial count (3789830144 ns). Using initial count to start timer.
[  499.837911][   T29] audit: type=1326 audit(1773224782.412:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  500.918747][ T6888] workqueue: Failed to create a rescuer kthread for wq "xfs-conv/nullb0": -EINTR
[  501.907901][   T29] audit: type=1326 audit(1773224782.412:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  502.229490][   T29] audit: type=1326 audit(1773224782.532:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  502.332150][   T29] audit: type=1326 audit(1773224782.532:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  502.404539][   T29] audit: type=1326 audit(1773224782.532:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  502.478137][   T29] audit: type=1326 audit(1773224782.742:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.1.188" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  503.212543][ T6896] netlink: 60 bytes leftover after parsing attributes in process `syz.4.189'.
[  503.230706][ T6897] netlink: 60 bytes leftover after parsing attributes in process `syz.4.189'.
[  503.482907][ T6899] netlink: 60 bytes leftover after parsing attributes in process `syz.4.189'.
[  504.122042][ T5770] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  504.133822][ T5770] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  504.153037][ T5770] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  504.196186][ T5770] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  504.228109][ T5770] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  505.034937][ T6914] evm: overlay not supported
[  506.539512][   T49] Bluetooth: hci5: command tx timeout
[  508.663948][   T49] Bluetooth: hci5: command tx timeout
[  509.351784][ T6931] kvm: user requested TSC rate below hardware speed
[  510.359589][ T5770] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  510.400052][ T5770] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  510.423006][ T5770] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  510.453033][ T5770] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  510.473100][ T5770] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  510.625058][   T49] Bluetooth: hci7: unexpected cc 0x0c03 length: 249 > 1
[  510.644610][   T49] Bluetooth: hci7: unexpected cc 0x1003 length: 249 > 9
[  510.668909][   T49] Bluetooth: hci7: unexpected cc 0x1001 length: 249 > 9
[  510.697995][   T49] Bluetooth: hci5: command tx timeout
[  510.704535][   T49] Bluetooth: hci7: unexpected cc 0x0c23 length: 249 > 4
[  510.728743][   T49] Bluetooth: hci7: unexpected cc 0x0c38 length: 249 > 2
[  512.839656][   T49] Bluetooth: hci6: command tx timeout
[  512.845323][   T49] Bluetooth: hci5: command tx timeout
[  512.858159][   T49] Bluetooth: hci7: command tx timeout
[  513.829595][   T29] audit: type=1326 audit(1773224796.372:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6950 comm="syz.4.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  514.868093][ T5770] Bluetooth: hci6: command tx timeout
[  515.827914][ T5770] Bluetooth: hci7: command tx timeout
[  515.959541][   T29] audit: type=1326 audit(1773224796.372:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6950 comm="syz.4.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  516.851861][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  516.864650][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  516.898319][ T6957] workqueue: Failed to create a rescuer kthread for wq "xfs-reclaim/nullb0": -EINTR
[  516.936448][   T29] audit: type=1326 audit(1773224796.582:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6950 comm="syz.4.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  516.984388][ T5770] Bluetooth: hci6: command tx timeout
[  517.648755][ T6907] chnl_net:caif_netlink_parms(): no params data found
[  517.958220][ T5770] Bluetooth: hci7: command tx timeout
[  517.990541][   T29] audit: type=1326 audit(1773224796.582:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6950 comm="syz.4.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  518.979453][   T29] audit: type=1326 audit(1773224796.582:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6950 comm="syz.4.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  519.003015][   T29] audit: type=1326 audit(1773224796.842:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6950 comm="syz.4.197" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  519.518432][ T5770] Bluetooth: hci6: command tx timeout
[  519.980604][ T5770] Bluetooth: hci7: command tx timeout
[  520.153092][ T6966] netlink: 60 bytes leftover after parsing attributes in process `syz.4.199'.
[  520.666257][ T6967] netlink: 60 bytes leftover after parsing attributes in process `syz.4.199'.
[  525.384349][ T6996] kvm: user requested TSC rate below hardware speed
[  525.466283][ T6997] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3934270872 (125896667904 ns) > initial count (3789830144 ns). Using initial count to start timer.
[  527.019478][   T29] audit: type=1326 audit(1773224809.792:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.4.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  527.356390][ T7005] workqueue: Failed to create a rescuer kthread for wq "xfs-buf/nullb0": -EINTR
[  527.477526][   T29] audit: type=1326 audit(1773224809.792:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.4.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  527.640692][   T29] audit: type=1326 audit(1773224809.802:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.4.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  527.753399][   T29] audit: type=1326 audit(1773224809.802:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.4.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  527.953472][   T29] audit: type=1326 audit(1773224809.812:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.4.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  528.113833][   T29] audit: type=1326 audit(1773224809.812:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7000 comm="syz.4.205" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7fe365b9c799 code=0x7ffc0000
[  528.247020][ T6907] bridge0: port 1(bridge_slave_0) entered blocking state
[  528.309363][ T6907] bridge0: port 1(bridge_slave_0) entered disabled state
[  528.341984][ T6907] bridge_slave_0: entered allmulticast mode
[  528.415183][ T6907] bridge_slave_0: entered promiscuous mode
[  528.425687][ T7010] loop1: detected capacity change from 0 to 4096
[  528.514939][ T7010] ntfs3(loop1): ino=3, Correct links count -> 2.
[  528.607518][   T56] bridge_slave_1: left allmulticast mode
[  528.635515][   T56] bridge_slave_1: left promiscuous mode
[  528.655223][   T56] bridge0: port 2(bridge_slave_1) entered disabled state
[  528.737329][   T56] bridge_slave_0: left allmulticast mode
[  528.800079][   T56] bridge_slave_0: left promiscuous mode
[  528.829415][   T56] bridge0: port 1(bridge_slave_0) entered disabled state
[  529.497799][   T56] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  529.578535][   T56] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  529.596356][ T7010] ntfs3(loop1): ino=1a, mi_enum_attr
[  529.603233][ T7010] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[  529.639502][   T56] bond0 (unregistering): Released all slaves
[  529.679686][ T6907] bridge0: port 2(bridge_slave_1) entered blocking state
[  529.691157][ T6907] bridge0: port 2(bridge_slave_1) entered disabled state
[  529.732028][ T6907] bridge_slave_1: entered allmulticast mode
[  529.761879][ T6907] bridge_slave_1: entered promiscuous mode
[  529.783903][ T6941] chnl_net:caif_netlink_parms(): no params data found
[  530.147949][   T56] hsr_slave_0: left promiscuous mode
[  530.182011][   T56] hsr_slave_1: left promiscuous mode
[  530.211238][   T56] batman_adv: batadv0: Removing interface: batadv_slave_0
[  530.261837][   T56] batman_adv: batadv0: Removing interface: batadv_slave_1
[  531.105530][   T56] team0 (unregistering): Port device team_slave_1 removed
[  531.181138][   T56] team0 (unregistering): Port device team_slave_0 removed
[  531.595919][ T6944] chnl_net:caif_netlink_parms(): no params data found
[  531.751357][ T6907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  531.876927][ T7019] netlink: 60 bytes leftover after parsing attributes in process `syz.4.209'.
[  532.244606][ T6907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  532.610385][ T7027] syzkaller0: entered promiscuous mode
[  532.666348][ T7027] syzkaller0: entered allmulticast mode
[  532.985000][ T6907] team0: Port device team_slave_0 added
[  533.123850][ T6907] team0: Port device team_slave_1 added
[  534.556416][ T6907] batman_adv: batadv0: Adding interface: batadv_slave_0
[  534.625246][ T6907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  534.763799][ T6907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  534.825488][ T6907] batman_adv: batadv0: Adding interface: batadv_slave_1
[  534.899298][ T6907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  534.978864][ T6907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  535.522372][ T6941] bridge0: port 1(bridge_slave_0) entered blocking state
[  535.531453][ T6941] bridge0: port 1(bridge_slave_0) entered disabled state
[  535.539602][ T6941] bridge_slave_0: entered allmulticast mode
[  535.671301][ T6941] bridge_slave_0: entered promiscuous mode
[  537.932564][   T29] audit: type=1326 audit(1773224820.472:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  538.010273][ T7053] /dev/nullb0: Can't open blockdev
[  538.963785][   T29] audit: type=1326 audit(1773224820.472:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  539.975331][   T29] audit: type=1326 audit(1773224820.622:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  540.438217][   T29] audit: type=1326 audit(1773224820.622:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  540.468115][   T29] audit: type=1326 audit(1773224820.622:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  540.657326][   T29] audit: type=1326 audit(1773224820.832:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  540.714986][ T6941] bridge0: port 2(bridge_slave_1) entered blocking state
[  540.758876][ T6941] bridge0: port 2(bridge_slave_1) entered disabled state
[  540.834144][ T6941] bridge_slave_1: entered allmulticast mode
[  540.856558][   T29] audit: type=1326 audit(1773224820.842:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  540.906400][ T6941] bridge_slave_1: entered promiscuous mode
[  541.449310][   T29] audit: type=1326 audit(1773224820.842:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  541.493850][   T29] audit: type=1326 audit(1773224820.972:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  541.669347][   T29] audit: type=1326 audit(1773224820.972:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7049 comm="syz.1.214" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  542.138465][ T6944] bridge0: port 1(bridge_slave_0) entered blocking state
[  542.190195][ T6944] bridge0: port 1(bridge_slave_0) entered disabled state
[  542.208060][   T24] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[  542.229091][ T6944] bridge_slave_0: entered allmulticast mode
[  542.262222][ T6944] bridge_slave_0: entered promiscuous mode
[  542.420293][   T24] usb 2-1: Using ep0 maxpacket: 16
[  542.441009][   T24] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 64, changing to 7
[  542.468241][   T24] usb 2-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 250, changing to 7
[  542.511469][   T24] usb 2-1: New USB device found, idVendor=08e4, idProduct=017f, bcdDevice= 0.40
[  542.534745][   T24] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  542.545465][ T6941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  542.556363][   T24] usb 2-1: Product: syz
[  542.567281][ T6944] bridge0: port 2(bridge_slave_1) entered blocking state
[  542.578198][   T24] usb 2-1: Manufacturer: syz
[  542.583455][   T24] usb 2-1: SerialNumber: syz
[  542.602028][ T6944] bridge0: port 2(bridge_slave_1) entered disabled state
[  542.628724][ T6944] bridge_slave_1: entered allmulticast mode
[  542.650954][ T6944] bridge_slave_1: entered promiscuous mode
[  542.690126][ T6907] hsr_slave_0: entered promiscuous mode
[  542.703232][ T6907] hsr_slave_1: entered promiscuous mode
[  542.786537][ T6941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  543.009573][   T24] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[  543.504490][   T24] snd-usb-audio 2-1:1.0: probe with driver snd-usb-audio failed with error -71
[  543.595759][ T6941] team0: Port device team_slave_0 added
[  543.624347][   T24] usb 2-1: USB disconnect, device number 6
[  543.681194][ T6941] team0: Port device team_slave_1 added
[  543.711812][ T6944] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  543.897524][ T7062] udevd[7062]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[  544.168146][ T6944] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  544.431007][ T6941] batman_adv: batadv0: Adding interface: batadv_slave_0
[  544.439520][ T6941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  544.494623][ T6941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  544.665806][ T7069] netlink: 60 bytes leftover after parsing attributes in process `syz.1.219'.
[  544.743768][ T6941] batman_adv: batadv0: Adding interface: batadv_slave_1
[  544.752606][ T6941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  544.782563][ T6941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  544.809887][ T6944] team0: Port device team_slave_0 added
[  544.816467][ T7070] netlink: 60 bytes leftover after parsing attributes in process `syz.1.219'.
[  544.973322][   T57] bridge_slave_1: left allmulticast mode
[  544.986373][   T57] bridge_slave_1: left promiscuous mode
[  544.996016][   T57] bridge0: port 2(bridge_slave_1) entered disabled state
[  545.023214][   T57] bridge_slave_0: left allmulticast mode
[  545.029997][   T57] bridge_slave_0: left promiscuous mode
[  545.037163][   T57] bridge0: port 1(bridge_slave_0) entered disabled state
[  545.061151][   T57] bridge_slave_1: left allmulticast mode
[  545.082564][   T57] bridge_slave_1: left promiscuous mode
[  545.099055][   T57] bridge0: port 2(bridge_slave_1) entered disabled state
[  545.118324][   T57] bridge_slave_0: left allmulticast mode
[  545.125538][   T57] bridge_slave_0: left promiscuous mode
[  545.134334][   T57] bridge0: port 1(bridge_slave_0) entered disabled state
[  545.397037][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  545.426798][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  545.472109][   T57] bond0 (unregistering): Released all slaves
[  545.750915][ T7077] kvm: user requested TSC rate below hardware speed
[  545.785416][   T57] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  545.816697][   T57] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  545.830216][ T7078] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3934270872 (125896667904 ns) > initial count (3789830144 ns). Using initial count to start timer.
[  545.856110][   T57] bond0 (unregistering): Released all slaves
[  545.895289][ T6944] team0: Port device team_slave_1 added
[  545.957734][ T7071] netlink: 60 bytes leftover after parsing attributes in process `syz.1.219'.
[  546.303515][ T6944] batman_adv: batadv0: Adding interface: batadv_slave_0
[  546.345396][ T6944] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  546.382366][ T6944] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  547.065701][   T57] hsr_slave_0: left promiscuous mode
[  547.097335][   T57] hsr_slave_1: left promiscuous mode
[  547.139531][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[  547.178833][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[  547.262503][   T57] hsr_slave_0: left promiscuous mode
[  547.274464][   T57] hsr_slave_1: left promiscuous mode
[  547.299451][   T57] batman_adv: batadv0: Removing interface: batadv_slave_0
[  547.620296][   T29] kauditd_printk_skb: 8 callbacks suppressed
[  547.620520][   T29] audit: type=1326 audit(1773224830.392:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  547.999869][ T7087] workqueue: Failed to create a rescuer kthread for wq "xfs-blockgc/nullb0": -EINTR
[  548.088659][   T29] audit: type=1326 audit(1773224830.392:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  548.208423][   T29] audit: type=1326 audit(1773224830.402:63): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  548.265481][   T57] batman_adv: batadv0: Removing interface: batadv_slave_1
[  548.304536][   T29] audit: type=1326 audit(1773224830.402:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  548.427972][   T29] audit: type=1326 audit(1773224830.412:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  548.530609][   T29] audit: type=1326 audit(1773224830.412:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7080 comm="syz.1.222" exe="/root/syz-executor" sig=0 arch=c000003e syscall=165 compat=0 ip=0x7f0c0e39c799 code=0x7ffc0000
[  550.016801][   T57] team0 (unregistering): Port device team_slave_1 removed
[  550.178233][   T57] team0 (unregistering): Port device team_slave_0 removed
[  551.040557][   T57] team0 (unregistering): Port device team_slave_1 removed
[  551.096482][   T57] team0 (unregistering): Port device team_slave_0 removed
[  551.436669][ T6944] batman_adv: batadv0: Adding interface: batadv_slave_1
[  551.458549][ T6944] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  551.547835][ T6944] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  551.712781][ T6941] hsr_slave_0: entered promiscuous mode
[  551.733840][ T6941] hsr_slave_1: entered promiscuous mode
[  551.772556][ T6941] debugfs: 'hsr0' already exists in 'hsr'
[  551.808666][ T6941] Cannot create hsr debugfs directory
[  552.413530][ T7096] netlink: 60 bytes leftover after parsing attributes in process `syz.1.224'.
[  552.597749][ T7098] netlink: 60 bytes leftover after parsing attributes in process `syz.1.224'.
[  552.632309][ T6944] hsr_slave_0: entered promiscuous mode
[  552.661022][ T6944] hsr_slave_1: entered promiscuous mode
[  552.678361][ T6944] debugfs: 'hsr0' already exists in 'hsr'
[  552.684691][ T6944] Cannot create hsr debugfs directory
[  552.779894][ T7099] netlink: 60 bytes leftover after parsing attributes in process `syz.1.224'.
[  554.486282][ T7106] tipc: Started in network mode
[  554.496189][ T7106] tipc: Node identity 5f000000000000000000000000000001, cluster identity 4711
[  554.511466][ T7106] tipc: Enabling of bearer <udp:syz1> rejected, failed to enable media
[  555.008738][ T6907] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  555.118835][ T6907] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  555.203348][ T6907] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  555.372276][ T6907] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  557.662997][ T6941] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  558.276786][ T7177] netlink: 60 bytes leftover after parsing attributes in process `syz.1.229'.
[  558.323208][ T6941] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  558.399123][ T7178] netlink: 60 bytes leftover after parsing attributes in process `syz.1.229'.
[  558.464522][ T6941] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  558.512864][ T6941] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  558.545103][ T7179] netlink: 60 bytes leftover after parsing attributes in process `syz.1.229'.
[  558.817934][ T6944] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  558.968781][ T6944] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  559.105927][ T6944] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  559.223440][ T6944] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  559.418601][ T7183] kvm: vcpu 0: requested lapic timer restore with starting count register 0x390=3934270872 (125896667904 ns) > initial count (3789830144 ns). Using initial count to start timer.
[  559.751786][ T6907] 8021q: adding VLAN 0 to HW filter on device bond0
[  560.086971][ T6907] 8021q: adding VLAN 0 to HW filter on device team0
[  560.310520][  T137] bridge0: port 1(bridge_slave_0) entered blocking state
[  560.319327][  T137] bridge0: port 1(bridge_slave_0) entered forwarding state
[  560.562185][  T137] bridge0: port 2(bridge_slave_1) entered blocking state
[  560.572449][  T137] bridge0: port 2(bridge_slave_1) entered forwarding state
[  561.742445][ T7190] /dev/nullb0: Can't open blockdev
[  564.345476][ T6941] 8021q: adding VLAN 0 to HW filter on device bond0
[  564.479537][ T6944] 8021q: adding VLAN 0 to HW filter on device bond0
[  564.836732][ T6944] 8021q: adding VLAN 0 to HW filter on device team0
[  565.023820][ T6941] 8021q: adding VLAN 0 to HW filter on device team0
[  565.251184][ T6069] bridge0: port 1(bridge_slave_0) entered blocking state
[  565.260319][ T6069] bridge0: port 1(bridge_slave_0) entered forwarding state
[  565.386978][ T6069] bridge0: port 1(bridge_slave_0) entered blocking state
[  565.394939][ T6069] bridge0: port 1(bridge_slave_0) entered forwarding state
[  565.494110][   T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  565.510335][   T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  565.526966][   T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  565.578695][   T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  565.603781][   T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  565.783164][ T6212] bridge0: port 2(bridge_slave_1) entered blocking state
[  565.790962][ T6212] bridge0: port 2(bridge_slave_1) entered forwarding state
[  566.024358][ T6212] bridge0: port 2(bridge_slave_1) entered blocking state
[  566.035557][ T6212] bridge0: port 2(bridge_slave_1) entered forwarding state
[  566.666262][   T49] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  566.708758][   T49] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  566.740255][   T49] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  566.787250][   T49] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  566.821502][   T49] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  567.742892][   T49] Bluetooth: hci0: command tx timeout
[  567.883898][ T6944] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  567.938111][ T6944] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  568.859884][   T49] Bluetooth: hci1: command tx timeout
[  569.817971][   T49] Bluetooth: hci0: command tx timeout
[  570.731757][ T5770] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  570.751850][ T5770] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  570.769364][ T5770] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  570.839880][ T5770] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  570.912094][ T5770] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  570.941546][   T49] Bluetooth: hci1: command tx timeout
[  571.904937][ T5770] Bluetooth: hci0: command tx timeout
[  573.057910][ T5770] Bluetooth: hci2: command tx timeout
[  573.065410][ T5770] Bluetooth: hci1: command tx timeout
[  573.988010][   T49] Bluetooth: hci0: command tx timeout
[  574.346331][ T7279] netlink: 60 bytes leftover after parsing attributes in process `syz.1.237'.
[  574.544677][ T5770] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  574.569254][ T5770] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  574.601338][ T5770] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  574.668810][ T5770] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  574.695386][ T5770] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  575.107144][   T49] Bluetooth: hci1: command tx timeout
[  575.107201][ T5770] Bluetooth: hci2: command tx timeout
[  576.858704][   T49] Bluetooth: hci5: command tx timeout
[  577.268195][   T49] Bluetooth: hci2: command tx timeout
[  578.101887][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  578.136504][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  578.212853][ T7198] chnl_net:caif_netlink_parms(): no params data found
[  579.350331][ T5770] Bluetooth: hci2: command tx timeout
[  579.356645][ T5770] Bluetooth: hci5: command tx timeout
[  580.742305][ T7294] overlayfs: failed to resolve './file0': -2
[  581.418326][ T5770] Bluetooth: hci5: command tx timeout
[  583.508167][ T5770] Bluetooth: hci5: command tx timeout
[  584.428574][  T158] bridge_slave_1: left allmulticast mode
[  584.434904][  T158] bridge_slave_1: left promiscuous mode
[  584.539945][  T158] bridge0: port 2(bridge_slave_1) entered disabled state
[  584.621762][  T158] bridge_slave_0: left allmulticast mode
[  584.667109][  T158] bridge_slave_0: left promiscuous mode
[  584.675163][  T158] bridge0: port 1(bridge_slave_0) entered disabled state
[  585.845267][  T158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  585.905886][  T158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  585.976520][  T158] bond0 (unregistering): Released all slaves
[  586.266593][ T7204] chnl_net:caif_netlink_parms(): no params data found
[  586.831519][  T158] hsr_slave_0: left promiscuous mode
[  586.898401][  T158] hsr_slave_1: left promiscuous mode
[  586.927517][  T158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  586.995317][  T158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  588.897247][  T158] team0 (unregistering): Port device team_slave_1 removed
[  588.965836][  T158] team0 (unregistering): Port device team_slave_0 removed
[  589.606282][ T7218] chnl_net:caif_netlink_parms(): no params data found
[  589.879140][ T7198] bridge0: port 1(bridge_slave_0) entered blocking state
[  589.886992][ T7198] bridge0: port 1(bridge_slave_0) entered disabled state
[  589.916341][ T7198] bridge_slave_0: entered allmulticast mode
[  589.957024][   T57] Bluetooth: hci3: Frame reassembly failed (-84)
[  589.970055][ T7198] bridge_slave_0: entered promiscuous mode
[  590.280716][ T7198] bridge0: port 2(bridge_slave_1) entered blocking state
[  590.290251][ T7198] bridge0: port 2(bridge_slave_1) entered disabled state
[  590.313046][ T7198] bridge_slave_1: entered allmulticast mode
[  590.323891][ T7198] bridge_slave_1: entered promiscuous mode
[  590.849898][ T7198] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  590.921998][ T7198] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  591.172224][  T158] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  591.212089][ T7198] team0: Port device team_slave_0 added
[  591.243415][ T7283] chnl_net:caif_netlink_parms(): no params data found
[  591.275275][ T7204] bridge0: port 1(bridge_slave_0) entered blocking state
[  591.283684][ T7204] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.293431][ T7204] bridge_slave_0: entered allmulticast mode
[  591.306533][ T7204] bridge_slave_0: entered promiscuous mode
[  591.360850][ T7198] team0: Port device team_slave_1 added
[  591.419832][ T7204] bridge0: port 2(bridge_slave_1) entered blocking state
[  591.428422][ T7204] bridge0: port 2(bridge_slave_1) entered disabled state
[  591.436316][ T7204] bridge_slave_1: entered allmulticast mode
[  591.446765][ T7204] bridge_slave_1: entered promiscuous mode
[  591.552428][  T158] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  591.666930][ T7218] bridge0: port 1(bridge_slave_0) entered blocking state
[  591.683239][ T7218] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.702997][ T7218] bridge_slave_0: entered allmulticast mode
[  591.714395][ T7218] bridge_slave_0: entered promiscuous mode
[  591.836005][ T7218] bridge0: port 2(bridge_slave_1) entered blocking state
[  591.844351][ T7218] bridge0: port 2(bridge_slave_1) entered disabled state
[  591.852930][ T7218] bridge_slave_1: entered allmulticast mode
[  591.863699][ T7218] bridge_slave_1: entered promiscuous mode
[  591.892165][ T7204] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  591.904969][ T7198] batman_adv: batadv0: Adding interface: batadv_slave_0
[  591.914799][ T7198] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  591.946482][ T7198] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  591.980705][   T49] Bluetooth: hci3: command 0x1003 tx timeout
[  591.987913][ T5770] Bluetooth: hci3: Opcode 0x1003 failed: -110
[  592.025441][  T158] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  592.136264][ T7204] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  592.187287][ T7198] batman_adv: batadv0: Adding interface: batadv_slave_1
[  592.195979][ T7198] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  592.224754][ T7198] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  592.282774][  T158] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  592.466479][ T7218] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  592.526309][ T7204] team0: Port device team_slave_0 added
[  592.548907][ T7204] team0: Port device team_slave_1 added
[  592.632487][ T7218] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  592.778346][ T7313] Bluetooth: hci4: Opcode 0x0c1a failed: -110
[  592.785166][ T5770] Bluetooth: hci4: command 0x0406 tx timeout
[  592.793250][ T7313] Bluetooth: hci4: Error when powering off device on rfkill (-110)
[  592.816226][ T7283] bridge0: port 1(bridge_slave_0) entered blocking state
[  592.826128][ T7283] bridge0: port 1(bridge_slave_0) entered disabled state
[  592.835120][ T7283] bridge_slave_0: entered allmulticast mode
[  592.849447][ T7283] bridge_slave_0: entered promiscuous mode
[  592.941310][ T7198] hsr_slave_0: entered promiscuous mode
[  592.952448][ T7198] hsr_slave_1: entered promiscuous mode
[  593.051221][ T7283] bridge0: port 2(bridge_slave_1) entered blocking state
[  593.062528][ T7283] bridge0: port 2(bridge_slave_1) entered disabled state
[  593.076434][ T7283] bridge_slave_1: entered allmulticast mode
[  593.098669][ T7283] bridge_slave_1: entered promiscuous mode
[  593.121396][ T7204] batman_adv: batadv0: Adding interface: batadv_slave_0
[  593.129557][ T7204] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  593.162278][ T7204] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  593.228366][ T7218] team0: Port device team_slave_0 added
[  593.358988][ T7204] batman_adv: batadv0: Adding interface: batadv_slave_1
[  593.366553][ T7204] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  593.394784][ T7204] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  593.476797][ T7218] team0: Port device team_slave_1 added
[  593.509457][ T7313] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  593.516051][ T7313] Bluetooth: hci0: Error when powering off device on rfkill (-4)
[  593.544004][ T7283] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  593.573523][ T7313] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  593.597930][ T7313] Bluetooth: hci1: Error when powering off device on rfkill (-4)
[  593.631985][ T7313] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  593.651994][ T7313] Bluetooth: hci2: Error when powering off device on rfkill (-4)
[  593.734194][ T7313] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  593.746775][ T7313] Bluetooth: hci5: Error when powering off device on rfkill (-4)
[  593.862937][ T7283] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  594.101187][ T7218] batman_adv: batadv0: Adding interface: batadv_slave_0
[  594.120473][ T7327] loop1: detected capacity change from 0 to 256
[  594.137849][ T7218] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  594.169325][ T7218] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  594.320882][ T7283] team0: Port device team_slave_0 added
[  594.543509][ T7218] batman_adv: batadv0: Adding interface: batadv_slave_1
[  594.554513][ T7218] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  594.609074][ T7218] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  594.647477][ T7283] team0: Port device team_slave_1 added
[  594.683265][ T7204] hsr_slave_0: entered promiscuous mode
[  594.695243][ T7204] hsr_slave_1: entered promiscuous mode
[  594.706496][ T7204] debugfs: 'hsr0' already exists in 'hsr'
[  594.719521][ T7204] Cannot create hsr debugfs directory
[  594.755270][ T7329] netlink: 60 bytes leftover after parsing attributes in process `syz.1.244'.
[  594.893743][ T7330] netlink: 60 bytes leftover after parsing attributes in process `syz.1.244'.
[  594.932991][ T7283] batman_adv: batadv0: Adding interface: batadv_slave_0
[  594.941080][ T7283] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  594.973594][ T7283] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  595.025613][ T7331] netlink: 60 bytes leftover after parsing attributes in process `syz.1.244'.
[  595.127227][ T7283] batman_adv: batadv0: Adding interface: batadv_slave_1
[  595.149752][ T7283] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  595.194447][ T7283] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  595.879746][ T7218] hsr_slave_0: entered promiscuous mode
[  595.901755][ T7218] hsr_slave_1: entered promiscuous mode
[  595.929809][ T7218] debugfs: 'hsr0' already exists in 'hsr'
[  595.936393][ T7218] Cannot create hsr debugfs directory
[  596.202412][ T7283] hsr_slave_0: entered promiscuous mode
[  596.214510][ T7283] hsr_slave_1: entered promiscuous mode
[  596.227482][ T7283] debugfs: 'hsr0' already exists in 'hsr'
[  596.267387][ T7283] Cannot create hsr debugfs directory
[  600.236179][ T7198] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  600.422223][ T7198] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  600.475469][ T7198] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  600.611229][ T7198] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  601.872171][  T158] bridge_slave_1: left allmulticast mode
[  601.892769][  T158] bridge_slave_1: left promiscuous mode
[  601.905548][  T158] bridge0: port 2(bridge_slave_1) entered disabled state
[  601.933711][  T158] bridge_slave_0: left allmulticast mode
[  601.948081][  T158] bridge_slave_0: left promiscuous mode
[  601.955583][  T158] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.019260][  T158] bridge_slave_1: left allmulticast mode
[  602.025562][  T158] bridge_slave_1: left promiscuous mode
[  602.053599][  T158] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.079508][  T158] bridge_slave_0: left allmulticast mode
[  602.093929][  T158] bridge_slave_0: left promiscuous mode
[  602.104016][  T158] bridge0: port 1(bridge_slave_0) entered disabled state
[  602.125035][  T158] bridge_slave_1: left allmulticast mode
[  602.134942][  T158] bridge_slave_1: left promiscuous mode
[  602.164701][  T158] bridge0: port 2(bridge_slave_1) entered disabled state
[  602.188861][  T158] bridge_slave_0: left allmulticast mode
[  602.195493][  T158] bridge_slave_0: left promiscuous mode
[  602.209196][  T158] bridge0: port 1(bridge_slave_0) entered disabled state
[  603.192543][  T158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  603.226610][  T158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  603.251287][  T158] bond0 (unregistering): Released all slaves
[  603.536605][  T158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  603.562512][  T158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  603.596884][  T158] bond0 (unregistering): Released all slaves
[  603.733609][ T7349] loop1: detected capacity change from 0 to 40427
[  603.750747][ T7349] F2FS-fs (loop1): Invalid SB checksum offset: 0
[  603.758783][ T7349] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock
[  603.771713][ T7349] F2FS-fs (loop1): invalid crc value
[  604.002195][  T158] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  604.044769][  T158] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  604.079125][  T158] bond0 (unregistering): Released all slaves
[  604.827359][ T7349] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[  604.867336][ T7349] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0
[  604.875874][ T7349] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5
[  605.119504][ T7204] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  605.184694][  T158] hsr_slave_0: left promiscuous mode
[  605.199208][  T158] hsr_slave_1: left promiscuous mode
[  605.210814][  T158] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  605.220452][  T158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  605.252809][  T158] hsr_slave_0: left promiscuous mode
[  605.262514][  T158] hsr_slave_1: left promiscuous mode
[  605.275573][  T158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  605.302645][  T158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  605.343989][  T158] hsr_slave_0: left promiscuous mode
[  605.362055][  T158] hsr_slave_1: left promiscuous mode
[  605.374176][  T158] batman_adv: batadv0: Removing interface: batadv_slave_0
[  605.387449][  T158] batman_adv: batadv0: Removing interface: batadv_slave_1
[  605.437142][  T158] veth1_macvtap: left promiscuous mode
[  605.444015][  T158] veth0_macvtap: left promiscuous mode
[  605.454875][  T158] veth1_vlan: left promiscuous mode
[  605.461116][  T158] veth0_vlan: left promiscuous mode
[  606.471188][ T5782] syz-executor: attempt to access beyond end of device
[  606.471188][ T5782] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427
[  606.492910][ T5782] CPU: 0 UID: 0 PID: 5782 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) 
[  606.493073][ T5782] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  606.493165][ T5782] Call Trace:
[  606.493218][ T5782]  <TASK>
[  606.493272][ T5782]  __dump_stack+0x26/0x30
[  606.493506][ T5782]  dump_stack_lvl+0x14c/0x1c0
[  606.493689][ T5782]  dump_stack+0x1e/0x25
[  606.493854][ T5782]  f2fs_handle_critical_error+0xa6f/0xc20
[  606.494115][ T5782]  f2fs_stop_checkpoint+0x65/0x80
[  606.494319][ T5782]  f2fs_write_end_io+0x12e6/0x2560
[  606.494601][ T5782]  ? __pfx_f2fs_write_end_io+0x10/0x10
[  606.494806][ T5782]  bio_endio+0x1006/0x1160
[  606.495043][ T5782]  submit_bio_noacct+0x533/0x2960
[  606.495253][ T5782]  submit_bio+0x57a/0x620
[  606.495410][ T5782]  f2fs_submit_write_bio+0x115/0x350
[  606.495619][ T5782]  __submit_merged_bio+0x16f/0x780
[  606.495810][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  606.496061][ T5782]  __submit_merged_write_cond+0x4ba/0xae0
[  606.496314][ T5782]  f2fs_write_data_pages+0x5073/0x5e10
[  606.496677][ T5782]  ? update_load_avg+0x14eb/0x25d0
[  606.497024][ T5782]  ? kmsan_get_metadata+0xf1/0x160
[  606.497236][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  606.497498][ T5782]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  606.497697][ T5782]  ? kmsan_get_metadata+0xf1/0x160
[  606.497908][ T5782]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  606.498119][ T5782]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  606.498318][ T5782]  ? __pfx_f2fs_write_data_pages+0x10/0x10
[  606.498529][ T5782]  do_writepages+0x3f2/0x860
[  606.498708][ T5782]  ? _raw_spin_unlock+0x30/0x50
[  606.498925][ T5782]  ? wbc_attach_and_unlock_inode+0x131/0x660
[  606.499185][ T5782]  filemap_fdatawrite+0x207/0x260
[  606.499450][ T5782]  f2fs_sync_dirty_inodes+0x2aa/0xaa0
[  606.499644][ T5782]  f2fs_write_checkpoint+0x10e1/0x3d20
[  606.499952][ T5782]  kill_f2fs_super+0x320/0x990
[  606.500157][ T5782]  ? __pfx_kill_f2fs_super+0x10/0x10
[  606.500300][ T5782]  deactivate_locked_super+0xcb/0x3c0
[  606.500510][ T5782]  deactivate_super+0x12f/0x140
[  606.500686][ T5782]  cleanup_mnt+0x7eb/0x870
[  606.500861][ T5782]  ? __pfx___cleanup_mnt+0x10/0x10
[  606.501030][ T5782]  __cleanup_mnt+0x22/0x30
[  606.501186][ T5782]  task_work_run+0x208/0x2b0
[  606.501416][ T5782]  exit_to_user_mode_loop+0x306/0x1b60
[  606.501648][ T5782]  ? user_path_at+0x1fc/0x330
[  606.501840][ T5782]  ? __x64_sys_umount+0x1dc/0x250
[  606.502063][ T5782]  do_syscall_64+0x24d/0xf80
[  606.502206][ T5782]  ? clear_bhb_loop+0x50/0xa0
[  606.502377][ T5782]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  606.502546][ T5782] RIP: 0033:0x7f0c0e39d9d7
[  606.502659][ T5782] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8
[  606.502786][ T5782] RSP: 002b:00007ffdfbf5b9c8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6
[  606.502934][ T5782] RAX: 0000000000000000 RBX: 00007f0c0e432050 RCX: 00007f0c0e39d9d7
[  606.503029][ T5782] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdfbf5ba80
[  606.503126][ T5782] RBP: 00007ffdfbf5ba80 R08: 00007ffdfbf5ca80 R09: 00000000ffffffff
[  606.503231][ T5782] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffdfbf5cb10
[  606.503326][ T5782] R13: 00007f0c0e432050 R14: 0000000000093ac3 R15: 00007ffdfbf5cb50
[  606.503471][ T5782]  </TASK>
[  606.884060][  T158] team0 (unregistering): Port device team_slave_1 removed
[  606.911372][ T5782] F2FS-fs (loop1): Stopped filesystem due to reason: 3
[  606.921657][  T158] team0 (unregistering): Port device team_slave_0 removed
[  607.818295][  T158] team0 (unregistering): Port device team_slave_1 removed
[  607.884531][  T158] team0 (unregistering): Port device team_slave_0 removed
[  608.699749][  T158] team0 (unregistering): Port device team_slave_1 removed
[  608.800664][  T158] team0 (unregistering): Port device team_slave_0 removed
[  610.232219][ T7204] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  610.403956][ T7204] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  610.648219][ T7204] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  610.839456][ T7198] 8021q: adding VLAN 0 to HW filter on device bond0
[  611.522672][ T7198] 8021q: adding VLAN 0 to HW filter on device team0
[  611.855453][ T7148] bridge0: port 1(bridge_slave_0) entered blocking state
[  611.863686][ T7148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  612.085825][ T7148] bridge0: port 2(bridge_slave_1) entered blocking state
[  612.093869][ T7148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  612.167090][ T7283] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  612.210455][ T7283] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  612.393755][ T7283] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  612.812192][ T7283] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  613.895568][ T7218] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  614.178707][ T7218] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  614.380125][ T7218] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  614.536396][ T7218] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  615.713093][ T7204] 8021q: adding VLAN 0 to HW filter on device bond0
[  616.393570][ T7204] 8021q: adding VLAN 0 to HW filter on device team0
[  616.603514][ T7148] bridge0: port 1(bridge_slave_0) entered blocking state
[  616.611522][ T7148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  616.916180][ T7148] bridge0: port 2(bridge_slave_1) entered blocking state
[  616.924437][ T7148] bridge0: port 2(bridge_slave_1) entered forwarding state
[  617.464430][ T7283] 8021q: adding VLAN 0 to HW filter on device bond0
[  617.926094][ T7283] 8021q: adding VLAN 0 to HW filter on device team0
[  617.949857][ T7381] netlink: 60 bytes leftover after parsing attributes in process `syz.1.251'.
[  618.065591][ T7382] netlink: 60 bytes leftover after parsing attributes in process `syz.1.251'.
[  618.126505][ T7381] netlink: 60 bytes leftover after parsing attributes in process `syz.1.251'.
[  618.184863][ T7148] bridge0: port 1(bridge_slave_0) entered blocking state
[  618.193298][ T7148] bridge0: port 1(bridge_slave_0) entered forwarding state
[  618.279755][ T7198] 8021q: adding VLAN 0 to HW filter on device batadv0
[  618.415203][ T7154] bridge0: port 2(bridge_slave_1) entered blocking state
[  618.423467][ T7154] bridge0: port 2(bridge_slave_1) entered forwarding state
[  618.518517][ T7218] 8021q: adding VLAN 0 to HW filter on device bond0
[  618.983062][ T7218] 8021q: adding VLAN 0 to HW filter on device team0
[  619.256138][   T57] bridge0: port 1(bridge_slave_0) entered blocking state
[  619.264112][   T57] bridge0: port 1(bridge_slave_0) entered forwarding state
[  620.054812][ T7263] bridge0: port 2(bridge_slave_1) entered blocking state
[  620.063320][ T7263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  621.831566][ T7448] loop1: detected capacity change from 0 to 512
[  622.199293][ T7448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  622.271428][ T7218] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  622.308869][ T7448] ext4 filesystem being mounted at /130/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  622.524661][   T29] audit: type=1800 audit(1773224905.342:67): pid=7448 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.253" name="ext4" dev="loop1" ino=18 res=0 errno=0
[  623.004657][ T5782] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  626.432474][ T7204] 8021q: adding VLAN 0 to HW filter on device batadv0
[  627.677235][ T7283] 8021q: adding VLAN 0 to HW filter on device batadv0
[  627.985381][ T7218] 8021q: adding VLAN 0 to HW filter on device batadv0
[  628.469339][   T49] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  628.494632][   T49] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  628.505729][   T49] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  628.520680][   T49] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  628.533434][   T49] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  628.721367][ T5770] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  628.759881][ T5770] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  628.774493][ T5770] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  628.839494][ T5770] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  628.889211][ T5770] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  630.251526][   T49] Bluetooth: hci6: unexpected cc 0x0c03 length: 249 > 1
[  630.270235][   T49] Bluetooth: hci6: unexpected cc 0x1003 length: 249 > 9
[  630.288884][   T49] Bluetooth: hci6: unexpected cc 0x1001 length: 249 > 9
[  630.303362][   T49] Bluetooth: hci6: unexpected cc 0x0c23 length: 249 > 4
[  630.315709][   T49] Bluetooth: hci6: unexpected cc 0x0c38 length: 249 > 2
[  631.078465][   T49] Bluetooth: hci3: command tx timeout
[  633.100246][ T5770] Bluetooth: hci3: command tx timeout
[  633.344904][ T5770] Bluetooth: hci6: command tx timeout
[  634.095164][   T49] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  634.110473][   T49] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  634.125286][   T49] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  634.142170][   T49] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  634.201044][   T49] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  635.196644][ T5770] Bluetooth: hci3: command tx timeout
[  635.758413][ T5770] Bluetooth: hci6: command tx timeout
[  636.301820][   T49] Bluetooth: hci0: command tx timeout
[  636.644638][ T5770] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  636.654777][ T5770] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  636.666389][ T5770] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  636.691457][ T5770] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  636.703681][ T5770] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  637.259448][ T5770] Bluetooth: hci3: command tx timeout
[  637.824005][ T5770] Bluetooth: hci6: command tx timeout
[  638.377887][ T5770] Bluetooth: hci0: command tx timeout
[  638.778002][ T5770] Bluetooth: hci1: command tx timeout
[  639.520247][ T1295] ieee802154 phy0 wpan0: encryption failed: -22
[  639.527130][ T1295] ieee802154 phy1 wpan1: encryption failed: -22
[  639.863524][ T7482] chnl_net:caif_netlink_parms(): no params data found
[  639.918829][ T5770] Bluetooth: hci6: command tx timeout
[  640.458473][ T5770] Bluetooth: hci0: command tx timeout
[  640.858000][ T5770] Bluetooth: hci1: command tx timeout
[  642.538207][ T5770] Bluetooth: hci0: command tx timeout
[  642.948013][ T5770] Bluetooth: hci1: command tx timeout
[  643.018477][ T7271] bridge_slave_1: left allmulticast mode
[  643.024679][ T7271] bridge_slave_1: left promiscuous mode
[  643.128301][ T7271] bridge0: port 2(bridge_slave_1) entered disabled state
[  643.196890][ T7271] bridge_slave_0: left allmulticast mode
[  643.248206][ T7271] bridge_slave_0: left promiscuous mode
[  643.255871][ T7271] bridge0: port 1(bridge_slave_0) entered disabled state
[  644.424456][ T7271] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  644.443605][ T7271] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  644.475511][ T7271] bond0 (unregistering): Released all slaves
[  644.565040][ T7552] netlink: 60 bytes leftover after parsing attributes in process `syz.1.258'.
[  644.770205][ T7553] netlink: 60 bytes leftover after parsing attributes in process `syz.1.258'.
[  644.867204][ T7271] hsr_slave_0: left promiscuous mode
[  644.890848][ T7271] hsr_slave_1: left promiscuous mode
[  644.910756][ T7271] batman_adv: batadv0: Removing interface: batadv_slave_0
[  644.943524][ T7271] batman_adv: batadv0: Removing interface: batadv_slave_1
[  645.028008][ T5770] Bluetooth: hci1: command tx timeout
[  645.745912][ T7271] team0 (unregistering): Port device team_slave_1 removed
[  645.786165][ T7271] team0 (unregistering): Port device team_slave_0 removed
[  646.111966][ T7554] netlink: 60 bytes leftover after parsing attributes in process `syz.1.258'.
[  646.240926][ T7482] bridge0: port 1(bridge_slave_0) entered blocking state
[  646.262401][ T7482] bridge0: port 1(bridge_slave_0) entered disabled state
[  646.282362][ T7482] bridge_slave_0: entered allmulticast mode
[  646.294011][ T7482] bridge_slave_0: entered promiscuous mode
[  646.323749][ T7499] chnl_net:caif_netlink_parms(): no params data found
[  646.499926][ T7482] bridge0: port 2(bridge_slave_1) entered blocking state
[  646.525411][ T7482] bridge0: port 2(bridge_slave_1) entered disabled state
[  646.534280][ T7482] bridge_slave_1: entered allmulticast mode
[  646.555199][ T7482] bridge_slave_1: entered promiscuous mode
[  647.069918][ T7482] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  647.180802][ T7482] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  648.915512][ T7482] team0: Port device team_slave_0 added
[  649.250226][ T7482] team0: Port device team_slave_1 added
[  649.886973][ T7512] chnl_net:caif_netlink_parms(): no params data found
[  651.741545][ T7525] chnl_net:caif_netlink_parms(): no params data found
[  651.829472][ T7482] batman_adv: batadv0: Adding interface: batadv_slave_0
[  651.839070][ T7482] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  651.875097][ T7482] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  652.229874][ T7482] batman_adv: batadv0: Adding interface: batadv_slave_1
[  652.306748][ T7482] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  652.495027][ T7482] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  652.818662][ T7499] bridge0: port 1(bridge_slave_0) entered blocking state
[  652.826950][ T7499] bridge0: port 1(bridge_slave_0) entered disabled state
[  652.854778][ T7499] bridge_slave_0: entered allmulticast mode
[  652.884332][ T7499] bridge_slave_0: entered promiscuous mode
[  653.140739][ T7499] bridge0: port 2(bridge_slave_1) entered blocking state
[  653.158263][ T7499] bridge0: port 2(bridge_slave_1) entered disabled state
[  653.178819][ T7499] bridge_slave_1: entered allmulticast mode
[  653.216167][ T7499] bridge_slave_1: entered promiscuous mode
[  653.570571][ T7499] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  653.847005][ T7499] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  655.105257][ T7499] team0: Port device team_slave_0 added
[  655.361700][ T7482] hsr_slave_0: entered promiscuous mode
[  655.400706][ T7482] hsr_slave_1: entered promiscuous mode
[  655.453963][ T7499] team0: Port device team_slave_1 added
[  655.516277][ T7512] bridge0: port 1(bridge_slave_0) entered blocking state
[  655.536447][ T7512] bridge0: port 1(bridge_slave_0) entered disabled state
[  655.574909][ T7512] bridge_slave_0: entered allmulticast mode
[  655.613994][ T7512] bridge_slave_0: entered promiscuous mode
[  655.883303][ T7512] bridge0: port 2(bridge_slave_1) entered blocking state
[  655.908690][ T7512] bridge0: port 2(bridge_slave_1) entered disabled state
[  655.920462][ T7512] bridge_slave_1: entered allmulticast mode
[  655.939664][ T7512] bridge_slave_1: entered promiscuous mode
[  656.312104][ T7525] bridge0: port 1(bridge_slave_0) entered blocking state
[  656.321133][ T7525] bridge0: port 1(bridge_slave_0) entered disabled state
[  656.331132][ T7525] bridge_slave_0: entered allmulticast mode
[  656.342994][ T7525] bridge_slave_0: entered promiscuous mode
[  656.381270][ T7525] bridge0: port 2(bridge_slave_1) entered blocking state
[  656.403578][ T7525] bridge0: port 2(bridge_slave_1) entered disabled state
[  656.416849][ T7525] bridge_slave_1: entered allmulticast mode
[  656.429769][ T7525] bridge_slave_1: entered promiscuous mode
[  656.541218][ T7499] batman_adv: batadv0: Adding interface: batadv_slave_0
[  656.552428][ T7499] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  656.598447][ T7499] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  656.694949][ T7512] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  656.918420][ T7499] batman_adv: batadv0: Adding interface: batadv_slave_1
[  656.925772][ T7499] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  656.982518][ T7499] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  657.009479][ T7512] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  657.265737][ T7525] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  657.382367][ T7512] team0: Port device team_slave_0 added
[  657.412302][ T7525] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  657.646504][ T7512] team0: Port device team_slave_1 added
[  657.728808][ T7651] netlink: 8 bytes leftover after parsing attributes in process `syz.1.263'.
[  657.741853][ T7651] netlink: 48 bytes leftover after parsing attributes in process `syz.1.263'.
[  657.801745][ T7651] =====================================================
[  657.809666][ T7651] BUG: KMSAN: uninit-value in eth_type_trans+0x6a2/0x9b0
[  657.818909][ T7651]  eth_type_trans+0x6a2/0x9b0
[  657.825280][ T7651]  __dev_forward_skb2+0x4b1/0x940
[  657.831374][ T7651]  dev_forward_skb_nomtu+0x3b/0xe0
[  657.837052][ T7651]  __bpf_redirect+0x14d7/0x1760
[  657.842776][ T7651]  bpf_clone_redirect+0x4a6/0x6c0
[  657.848537][ T7651]  ___bpf_prog_run+0x12af/0xeb60
[  657.854166][ T7651]  __bpf_prog_run512+0xc5/0x100
[  657.859694][ T7651]  bpf_test_run+0x493/0xdf0
[  657.864470][ T7651]  bpf_prog_test_run_skb+0x22a5/0x3050
[  657.870911][ T7651]  bpf_prog_test_run+0x5bb/0x9f0
[  657.876415][ T7651]  __sys_bpf+0x925/0xee0
[  657.881701][ T7651]  __x64_sys_bpf+0xa4/0xf0
[  657.886576][ T7651]  x64_sys_call+0x13d0/0x3ea0
[  657.892015][ T7651]  do_syscall_64+0x134/0xf80
[  657.896985][ T7651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.903211][ T7651] 
[  657.905668][ T7651] Uninit was created at:
[  657.910519][ T7651]  kmem_cache_alloc_node_noprof+0x3cd/0x12d0
[  657.917123][ T7651]  pskb_expand_head+0x2ef/0x1fb0
[  657.922672][ T7651]  skb_ensure_writable+0x44e/0x510
[  657.928155][ T7651]  bpf_clone_redirect+0x301/0x6c0
[  657.934584][ T7651]  ___bpf_prog_run+0x12af/0xeb60
[  657.940482][ T7651]  __bpf_prog_run512+0xc5/0x100
[  657.945837][ T7651]  bpf_test_run+0x493/0xdf0
[  657.951227][ T7651]  bpf_prog_test_run_skb+0x22a5/0x3050
[  657.957238][ T7651]  bpf_prog_test_run+0x5bb/0x9f0
[  657.963164][ T7651]  __sys_bpf+0x925/0xee0
[  657.968447][ T7651]  __x64_sys_bpf+0xa4/0xf0
[  657.973392][ T7651]  x64_sys_call+0x13d0/0x3ea0
[  657.978715][ T7651]  do_syscall_64+0x134/0xf80
[  657.983681][ T7651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  657.990324][ T7651] 
[  657.992821][ T7651] CPU: 0 UID: 0 PID: 7651 Comm: syz.1.263 Not tainted syzkaller #0 PREEMPT(full) 
[  658.002938][ T7651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  658.014303][ T7651] =====================================================
[  658.021669][ T7651] Disabling lock debugging due to kernel taint
[  658.028540][ T7651] Kernel panic - not syncing: kmsan.panic set ...
[  658.035249][ T7651] CPU: 0 UID: 0 PID: 7651 Comm: syz.1.263 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  658.047358][ T7651] Tainted: [B]=BAD_PAGE
[  658.052084][ T7651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/27/2026
[  658.063013][ T7651] Call Trace:
[  658.066785][ T7651]  <TASK>
[  658.069849][ T7651]  __dump_stack+0x26/0x30
[  658.074588][ T7651]  dump_stack_lvl+0x50/0x1c0
[  658.079419][ T7651]  ? dump_stack+0x12/0x25
[  658.084259][ T7651]  dump_stack+0x1e/0x25
[  658.089229][ T7651]  vpanic+0x7b4/0x1430
[  658.094320][ T7651]  panic+0x15d/0x160
[  658.098750][ T7651]  kmsan_report+0x31a/0x320
[  658.103731][ T7651]  ? __bpf_prog_run512+0xc5/0x100
[  658.109586][ T7651]  ? __msan_warning+0x1b/0x30
[  658.115072][ T7651]  ? eth_type_trans+0x6a2/0x9b0
[  658.120407][ T7651]  ? __dev_forward_skb2+0x4b1/0x940
[  658.126201][ T7651]  ? dev_forward_skb_nomtu+0x3b/0xe0
[  658.131906][ T7651]  ? __bpf_redirect+0x14d7/0x1760
[  658.137412][ T7651]  ? bpf_clone_redirect+0x4a6/0x6c0
[  658.143232][ T7651]  ? ___bpf_prog_run+0x12af/0xeb60
[  658.148579][ T7651]  ? __bpf_prog_run512+0xc5/0x100
[  658.154730][ T7651]  ? bpf_test_run+0x493/0xdf0
[  658.159635][ T7651]  ? bpf_prog_test_run_skb+0x22a5/0x3050
[  658.165630][ T7651]  ? bpf_prog_test_run+0x5bb/0x9f0
[  658.170965][ T7651]  ? __sys_bpf+0x925/0xee0
[  658.175694][ T7651]  ? __x64_sys_bpf+0xa4/0xf0
[  658.180501][ T7651]  ? x64_sys_call+0x13d0/0x3ea0
[  658.185816][ T7651]  ? do_syscall_64+0x134/0xf80
[  658.190872][ T7651]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.197354][ T7651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  658.203727][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.209731][ T7651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  658.216345][ T7651]  ? should_fail_ex+0x45/0x8c0
[  658.221589][ T7651]  ? stack_depot_save_flags+0x35/0x790
[  658.227576][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.233220][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.239048][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.244645][ T7651]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  658.251525][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.257533][ T7651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  658.263805][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.269571][ T7651]  __msan_warning+0x1b/0x30
[  658.274685][ T7651]  eth_type_trans+0x6a2/0x9b0
[  658.279888][ T7651]  __dev_forward_skb2+0x4b1/0x940
[  658.285277][ T7651]  dev_forward_skb_nomtu+0x3b/0xe0
[  658.291079][ T7651]  __bpf_redirect+0x14d7/0x1760
[  658.296370][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.301981][ T7651]  bpf_clone_redirect+0x4a6/0x6c0
[  658.307517][ T7651]  ___bpf_prog_run+0x12af/0xeb60
[  658.313452][ T7651]  __bpf_prog_run512+0xc5/0x100
[  658.320092][ T7651]  ? kmsan_internal_poison_memory+0x78/0x90
[  658.326556][ T7651]  ? kmsan_internal_poison_memory+0x4a/0x90
[  658.332932][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.338730][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.345025][ T7651]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  658.352266][ T7651]  ? kmsan_internal_unpoison_memory+0x14/0x20
[  658.359062][ T7651]  ? _raw_spin_unlock_irqrestore+0x3f/0x60
[  658.365612][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.371360][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.377168][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.382685][ T7651]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  658.389369][ T7651]  ? kmsan_get_metadata+0x146/0x160
[  658.394950][ T7651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  658.401275][ T7651]  ? __pfx___bpf_prog_run512+0x10/0x10
[  658.407333][ T7651]  ? __pfx___bpf_prog_run512+0x10/0x10
[  658.413510][ T7651]  bpf_test_run+0x493/0xdf0
[  658.418661][ T7651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  658.425148][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.431004][ T7651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  658.437308][ T7651]  ? bpf_test_run+0x2f4/0xdf0
[  658.443207][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.449051][ T7651]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  658.455439][ T7651]  bpf_prog_test_run_skb+0x22a5/0x3050
[  658.461576][ T7651]  ? kmsan_get_metadata+0xf1/0x160
[  658.467495][ T7651]  ? __pfx_bpf_prog_test_run_skb+0x10/0x10
[  658.474153][ T7651]  bpf_prog_test_run+0x5bb/0x9f0
[  658.479658][ T7651]  __sys_bpf+0x925/0xee0
[  658.484739][ T7651]  __x64_sys_bpf+0xa4/0xf0
[  658.489478][ T7651]  x64_sys_call+0x13d0/0x3ea0
[  658.494593][ T7651]  do_syscall_64+0x134/0xf80
[  658.499539][ T7651]  ? clear_bhb_loop+0x50/0xa0
[  658.504931][ T7651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  658.511404][ T7651] RIP: 0033:0x7f0c0e39c799
[  658.516206][ T7651] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48
[  658.537545][ T7651] RSP: 002b:00007f0c0f280028 EFLAGS: 00000246 ORIG_RAX: 0000000000000141
[  658.546454][ T7651] RAX: ffffffffffffffda RBX: 00007f0c0e615fa0 RCX: 00007f0c0e39c799
[  658.554981][ T7651] RDX: 0000000000000023 RSI: 0000200000000240 RDI: 000000000000000a
[  658.563910][ T7651] RBP: 00007f0c0e432c99 R08: 0000000000000000 R09: 0000000000000000
[  658.572438][ T7651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  658.580798][ T7651] R13: 00007f0c0e616038 R14: 00007f0c0e615fa0 R15: 00007ffdfbf5c758
[  658.590136][ T7651]  </TASK>
[  658.593952][ T7651] Kernel Offset: disabled
[  658.598401][ T7651] Rebooting in 86400 seconds..