last executing test programs:

48.108516839s ago: executing program 2 (id=954):
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000002, &(0x7f0000000280)={[{@user_xattr}]}, 0x9, 0x537, &(0x7f0000000fc0)="$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")
r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0)
getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000)

47.031910054s ago: executing program 2 (id=964):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000fc0f00000a"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r2}, 0x10)
bind$inet6(r0, &(0x7f0000000000)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)
sendto$inet6(r0, &(0x7f0000000180)="1a", 0x1, 0x0, &(0x7f0000000200)={0xa, 0x4e23, 0x0, @loopback}, 0x1c)

46.763676903s ago: executing program 2 (id=968):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = socket(0x10, 0x3, 0x0)
sendto$inet6(r2, &(0x7f0000000100)="c10e000018001f06b9409b0dffff110d0207be040205060506100a044300040018000000fac8388827a685a168d9a44604094565360c648dcaaf6c26c291214549932fde4a460c89b6ec0cff3959547f509058ba86c902fc3a10004a320c0400160012000a00000000000000000000080756ede4ccbe5880", 0xec1, 0x0, 0x0, 0x9e5e111c47e3504f)

46.483676272s ago: executing program 2 (id=973):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffefb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc)

46.174998621s ago: executing program 2 (id=978):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r1, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r2}, 0x10)
setsockopt$inet_MCAST_MSFILTER(r1, 0x0, 0x30, &(0x7f0000000940)=ANY=[@ANYBLOB="020000000000000002000000e0000002000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000500000002000000e00000010000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000800000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000200000064010102000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000020000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002000000e000000200000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000002"], 0x310)
r3 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$inet_MCAST_JOIN_GROUP(r3, 0x0, 0x2a, &(0x7f0000000180)={0x2, {{0x2, 0x0, @multicast2}}}, 0x88)
close_range(r0, 0xffffffffffffffff, 0x0)

45.124092786s ago: executing program 2 (id=980):
unshare(0x0)
move_pages(0x0, 0x20000000000001ab, &(0x7f0000000000), 0x0, &(0x7f0000000000)=[0x0], 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x0, 0x0, 0xb, 0xbfff, 0x0, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xff2e)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x2, 0x10000000, 0x100000, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xd, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe}, [@call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sock_ops, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'caif0\x00', {0x2, 0x8000, @broadcast}})
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mlockall(0x7)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x7000)
r5 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_mreqsrc(r6, 0x0, 0x28, &(0x7f0000000000)={@local, @local, @local}, 0xc)

33.625502489s ago: executing program 4 (id=1071):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000380)=ANY=[@ANYBLOB="980000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="0000000000000000700012800b00010062726964676500006000028006002700040000000c002e0001000000010000000c001f00030000000000000008001a0001000000080004"], 0x98}}, 0x0)

33.262445067s ago: executing program 4 (id=1074):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='rxrpc_recvmsg\x00', r0}, 0x10)
r1 = socket(0x21, 0x2, 0x10000000000002)
connect$rxrpc(r1, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x3a)
sendmmsg(r1, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
clock_gettime(0x0, &(0x7f0000006500))
recvmmsg(r1, &(0x7f0000006340)=[{{0x0, 0x0, 0x0}, 0xb5d}, {{0x0, 0x0, 0x0}, 0x2}], 0x2, 0x2, 0x0)

33.138828777s ago: executing program 4 (id=1076):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0xffa8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = signalfd(0xffffffffffffffff, &(0x7f0000000500)={[0x5]}, 0x8)
name_to_handle_at(r2, &(0x7f0000004740)='\x00', 0x0, 0x0, 0x1000)

32.956515516s ago: executing program 4 (id=1078):
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fff, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='kfree\x00', r0, 0x0, 0x1}, 0x18)
mkdir(&(0x7f00000002c0)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0)
r1 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r1, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000300)='./file0\x00', 0x0)

32.696371905s ago: executing program 4 (id=1079):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000440), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000500)={0x2c, r2, 0xc4fc9e906872338b, 0x10000, 0x0, {{0x15}, {@val={0x8}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x10, 0x11d, 0x0, 0x1, [{0xc, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TX_RATE={0x8, 0xd, 0x0, 0x1, [@NL80211_BAND_5GHZ={0x4}]}]}]}]}, 0x2c}, 0x1, 0x0, 0x0, 0x40000}, 0x0)

30.792302997s ago: executing program 4 (id=1088):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0)

30.255436745s ago: executing program 32 (id=1088):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000700)={&(0x7f00000006c0)='kmem_cache_free\x00', r1}, 0x10)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
set_mempolicy_home_node(&(0x7f0000349000/0xa000)=nil, 0xa000, 0x0, 0x0)

30.006743954s ago: executing program 33 (id=980):
unshare(0x0)
move_pages(0x0, 0x20000000000001ab, &(0x7f0000000000), 0x0, &(0x7f0000000000)=[0x0], 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x41, 0x0)
ioctl$TCSETAF(r0, 0x5408, &(0x7f0000000080)={0x0, 0x0, 0xb, 0xbfff, 0x0, "ec28a144f13d7607"})
write$binfmt_aout(r0, &(0x7f0000000240)=ANY=[], 0xff2e)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00'}, 0x10)
ioctl$TCSETS(r0, 0x40045431, &(0x7f0000000dc0)={0x0, 0x2, 0x10000000, 0x100000, 0x0, "0062ba7d82000000000000000000f7ffffff00"})
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xd, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0xfffffffe}, [@call={0x85, 0x0, 0x0, 0x19}]}, &(0x7f00000004c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sock_ops, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = syz_open_pts(r0, 0x0)
r2 = dup3(r1, r0, 0x0)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
ioctl$sock_inet_SIOCSIFADDR(r3, 0x8916, &(0x7f0000000040)={'caif0\x00', {0x2, 0x8000, @broadcast}})
ioctl$TIOCSTI(r2, 0x5412, &(0x7f0000000000)=0x17)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000080)='kmem_cache_free\x00', r4}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
mlockall(0x7)
mlockall(0x2)
shmat(0x0, &(0x7f0000ffd000/0x1000)=nil, 0x7000)
r5 = socket$inet6(0xa, 0x40000080806, 0x0)
connect$inet6(r5, &(0x7f0000000180)={0xa, 0x4e22, 0x0, @ipv4={'\x00', '\xff\xff', @empty}, 0x4}, 0x1c)
r6 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_mreqsrc(r6, 0x0, 0x28, &(0x7f0000000000)={@local, @local, @local}, 0xc)

6.517369917s ago: executing program 5 (id=1233):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000002c0)={0x8400001e}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB, @ANYRES8=0x0, @ANYRES32=r0], 0x30}}, 0x0)

6.307634026s ago: executing program 5 (id=1236):
r0 = openat$autofs(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_CATATONIC(r0, 0xc018937e, &(0x7f0000000200)={{0x1, 0x1, 0x29}, './file0\x00'})

5.985935105s ago: executing program 5 (id=1239):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f0000000180)=ANY=[@ANYBLOB="18010000010000000000000000030000850000007b00000095"], &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0, 0x0, 0xffffffffffffffff}, 0x18)
readlink(&(0x7f0000000000)='./file0\x00', &(0x7f0000000380)=""/4096, 0x1000)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="4c000000020601080000000000000000000000400500010006000000050005000200000005000400000000000900020073797a310000000011000300686173683a69702c6d61726b"], 0x4c}}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)={0x48, 0x9, 0x6, 0x201, 0x0, 0x0, {0x2, 0x0, 0xffff}, [@IPSET_ATTR_DATA={0x20, 0x7, 0x0, 0x1, [@IPSET_ATTR_IP={0xc, 0x1, 0x0, 0x1, @IPSET_ATTR_IPADDR_IPV4={0x8, 0x1, 0x1, 0x0, @multicast2}}, @IPSET_ATTR_MARK={0x8, 0xa, 0x1, 0x0, 0x2}, @IPSET_ATTR_CIDR={0x5, 0x3, 0x2}]}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x48}, 0x1, 0x0, 0x0, 0x800}, 0x40c0080)

5.315869772s ago: executing program 0 (id=1242):
setsockopt$netlink_NETLINK_TX_RING(0xffffffffffffffff, 0x10e, 0xc, &(0x7f0000000140)={0x8e54}, 0x10)
recvmmsg(0xffffffffffffffff, &(0x7f0000000c40)=[{{0x0, 0x0, 0x0}, 0x9}], 0x1, 0x102, 0x0)
write(0xffffffffffffffff, &(0x7f00000000c0)="1800000016005f0214fffffffffffff8070000000e000000", 0x18)

5.155938881s ago: executing program 0 (id=1243):
socket(0x11, 0x800000003, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000008000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000058"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x41, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
syz_usb_connect$hid(0x0, 0x36, 0x0, 0x0)
ioctl$EVIOCRMFF(0xffffffffffffffff, 0x40085507, 0x0)
signalfd(0xffffffffffffffff, &(0x7f0000000180)={[0x2200]}, 0x8)

5.144623511s ago: executing program 3 (id=1244):
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_SET(0xffffffffffffffff, &(0x7f00000004c0)={&(0x7f0000000340)={0x10, 0x0, 0x0, 0x800}, 0xc, 0x0, 0x1, 0x0, 0x0, 0xc0}, 0x4040000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x1b0, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x2, 0x2}, {0x0, 0x9}, {0x0, 0xb}}, [@TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x4c, 0x2, [@TCA_FLOWER_KEY_ENC_IPV6_DST_MASK={0x14, 0x22, [0x0, 0xff, 0xff, 0xffffff00]}, @TCA_FLOWER_KEY_ICMPV6_CODE={0x5}, @TCA_FLOWER_KEY_PORT_SRC_MAX={0x6, 0x58, 0x4e21}, @TCA_FLOWER_KEY_ETH_SRC={0xa, 0x6, @multicast}, @TCA_FLOWER_KEY_ICMPV6_TYPE={0x5}, @TCA_FLOWER_KEY_ICMPV6_TYPE_MASK={0x5}, @TCA_FLOWER_KEY_SCTP_DST_MASK={0x6}]}}, @filter_kind_options=@f_route={{0xa}, {0x110, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_CLASSID={0x8, 0x1, {0xc, 0x7}}, @TCA_ROUTE4_ACT={0xf4, 0x6, [@m_nat={0xf0, 0x0, 0x0, 0x0, {{0x8}, {0x4}, {0xc6, 0x6, "3eaed48f5023f5c36bc9d8619f3e2af20800000000000000a40bc384135c74eb813bf1cf69dbeaddd76b564e92dc41f8de6392fb42903838dda4a8bcd9ea2a7ef200b02fb961cc3dddbb717e88bb314bbce94391f87d06a838a9957ccce7feaaf32e9d14398b60f4b34967f32f57c2d3d6939ab4bb4f2ac96daa3247403e773d7b7b15514a5fdc891227676c981222abfb6fffff71541e4446e5f84c25e6f1726ead4d745a9f2873238be9c01f079bd0570908230594952760f061e6a9b1d33407bf"}, {0xc}, {0xc}}}]}]}}]}, 0x1b0}, 0x1, 0x0, 0x0, 0x81}, 0x0)
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x21}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400})

5.067811161s ago: executing program 3 (id=1245):
bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYRES32, @ANYBLOB="000400"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00000000000000000000000000000000001f00000000d4ab3974264591bb3659410000000000"], 0x48)
socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ethtool(0x0, 0xffffffffffffffff)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r0}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
creat(&(0x7f0000000040)='./file0\x00', 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000280)=0x8)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000180)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
mount(0x0, &(0x7f0000000240)='./file0\x00', &(0x7f0000000280)='sysfs\x00', 0x0, 0x0)

3.981431796s ago: executing program 0 (id=1247):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c00000010001fff2bbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000440012800b000100697036746e6c000034000280050009000400000008000100", @ANYRES32, @ANYBLOB="060012004e240000080414000100000006000f00020000000500090089000000080004"], 0x6c}}, 0x0)

3.979852256s ago: executing program 3 (id=1248):
syz_open_dev$tty20(0xc, 0x4, 0x1)
r0 = socket$netlink(0x10, 0x3, 0x0)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x15, '\x00', 0x0, @fallback=0x33, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, @void, @value}, 0x94)
bpf$TOKEN_CREATE(0x24, &(0x7f00000002c0)={0x0, r0}, 0x8)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = socket$inet6_sctp(0xa, 0x5, 0x84)
r3 = socket$can_bcm(0x1d, 0x2, 0x2)
connect$can_bcm(r3, 0x0, 0x0)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000540)={'vxcan0\x00', <r4=>0x0})
sendmsg$can_bcm(r3, &(0x7f00000001c0)={&(0x7f0000000040)={0x1d, r4}, 0x10, &(0x7f0000000180)={&(0x7f0000000100)={0x5, 0x0, 0x0, {}, {0x0, 0x2710}, {}, 0x1, @can={{}, 0x3, 0x2, 0x0, 0x0, "b68c52d2be3c0d90"}}, 0x48}}, 0x0)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={0x0}, 0x1, 0xf0ffffffffffff}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sched_switch\x00', r1}, 0x10)
sendmsg$netlink(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001d40)=[{&(0x7f0000000100)=ANY=[@ANYBLOB="2c00000010008100000000000080000000000000", @ANYRES32=0x0, @ANYBLOB="0a043cbf", @ANYRES32, @ANYBLOB="0a001b"], 0x2c}], 0x1}, 0x0)
bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000006c0)=ANY=[], 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
r6 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
close_range(r6, 0xffffffffffffffff, 0x0)

3.669593745s ago: executing program 6 (id=1251):
mkdir(&(0x7f0000000140)='./file0\x00', 0x0)
mount(0x0, &(0x7f00000002c0)='./file0\x00', &(0x7f0000000400)='ramfs\x00', 0x2000000, 0x0)
chdir(0x0)
creat(&(0x7f0000000300)='./bus\x00', 0x15d)
r0 = open(&(0x7f00000000c0)='./bus\x00', 0x14103e, 0x0)
r1 = open(&(0x7f0000000080)='./bus\x00', 0x143042, 0x83)
ftruncate(r1, 0x2008002)
sendfile(r0, r1, 0x0, 0x80000001)

3.652124705s ago: executing program 0 (id=1252):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000000), 0x48241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f00000000c0)={'syzkaller1\x00', 0x6bf1c2d5adba8c32})
r1 = socket$kcm(0x2, 0xa, 0x2)
ioctl$SIOCSIFHWADDR(r1, 0x8914, 0x0)
r2 = socket$igmp6(0xa, 0x3, 0x2)
ioctl$sock_SIOCSIFVLAN_ADD_VLAN_CMD(r2, 0x8983, &(0x7f0000000300)={0x0, 'syzkaller1\x00'})
write$tun(r0, &(0x7f0000000600)=ANY=[@ANYBLOB="060000000180c2000000d26b98d19dd881"], 0x3a)

2.561436151s ago: executing program 6 (id=1257):
pread64(0xffffffffffffffff, 0x0, 0x0, 0x100008)

2.40002999s ago: executing program 1 (id=1258):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f66f63bb850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x1b)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kmem_cache_free\x00', r0}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
set_robust_list(&(0x7f00000002c0)={0x0, 0x9f}, 0x18)

2.259722359s ago: executing program 1 (id=1259):
setgid(0xee00)
r0 = syz_clone(0x5948000, 0x0, 0x0, 0x0, 0x0, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000013c0)={0x0, 0xc, &(0x7f0000000f40)=ANY=[@ANYRESOCT=r1, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70000000000000085000000030000009500000000000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfcdb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r2}, 0x10)
r3 = syz_open_dev$usbfs(&(0x7f0000000100), 0x74, 0x101301)
ioctl$USBDEVFS_CONTROL(r3, 0xc0105500, &(0x7f0000000000)={0x80, 0x6, 0xf00, 0x2, 0x0, 0x0, 0x0})
getpgid(r0)
r4 = getpid()
r5 = syz_pidfd_open(r4, 0x0)
setns(r5, 0x24020000)
r6 = fspick(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r6, 0x7, 0x0, 0x0, 0x0)

2.209999179s ago: executing program 6 (id=1260):
r0 = socket(0x10, 0x3, 0x0)
setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f00000002c0)={0x8400001e}, 0x10)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=ANY=[@ANYBLOB="300000001a00011100ffffffffffff", @ANYRES8=0x0, @ANYRES32=r0], 0x30}}, 0x0)

1.931924498s ago: executing program 1 (id=1261):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)

1.761942967s ago: executing program 1 (id=1262):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c00000010001fff2bbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000440012800b000100697036746e6c000034000280050009000400000008000100", @ANYRES32, @ANYBLOB="060012004e240000080414000100000006000f00020000000500090089000000080004"], 0x6c}}, 0x0)

897.880214ms ago: executing program 5 (id=1263):
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0}, 0x18)
mount(0x0, &(0x7f0000000100)='./file0/../file0/../file0\x00', 0x0, 0x0, 0x0)
open(&(0x7f0000000080)='./bus\x00', 0x143862, 0x0)
mount(&(0x7f0000000100), &(0x7f0000000280)='./bus\x00', &(0x7f00000002c0)='9p\x00', 0x0, &(0x7f0000000300)='trans=rdma,')
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000380)=ANY=[@ANYBLOB="0500000004000000080000000800000000000000", @ANYRES32, @ANYBLOB="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", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x18, 0xd, &(0x7f0000000180)=ANY=[@ANYRES8=r0, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000001b80)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0xd, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
syz_mount_image$ext4(&(0x7f0000000300)='ext4\x00', &(0x7f0000000140)='./file0\x00', 0x8010, &(0x7f0000000000), 0x1, 0x25d, &(0x7f0000000680)="$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")
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(0xffffffffffffffff, 0x89f3, &(0x7f0000000040)={'syztnl2\x00', &(0x7f00000000c0)={'syztnl0\x00', <r1=>0x0, 0x2f, 0x5, 0x0, 0x400, 0x29, @empty, @private0, 0x40, 0x80, 0x5, 0x10}})
r2 = bpf$PROG_LOAD(0x5, &(0x7f00002a0fb8)={0x14, 0x4, &(0x7f0000000e80)=ANY=[], &(0x7f0000000140)='GPL\x00', 0x0, 0x99, &(0x7f0000000180)=""/153, 0x0, 0x0, '\x00', r1, @fallback=0x2c, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r2, 0xfffff000, 0x12, 0x0, &(0x7f0000000880)="61df712bc884fed5722780b688a8", 0x0, 0x8000, 0x0, 0xfffffffffffffeca, 0x0, &(0x7f0000000000), &(0x7f0000000800)="ffe200004e379b19393a41afde6b0b1235c1278ebf59a5d4d697bc199e060b675b46d4ff37c7f91ceaa6790cd8570f080b0d2375918cd7dfcf26aa90dc6a5617be488475b892958512c8e814c24d7efc26f9f2512dec8c759773c42a2fca2735984613809a78eb", 0x0, 0x2}, 0x28)
r3 = getpid()
setreuid(0xee00, 0x0)
r4 = syz_pidfd_open(r3, 0x0)
setns(r4, 0x24020000)
syz_clone3(&(0x7f00000008c0)={0x15340180, 0x0, 0x0, 0x0, {}, 0x0, 0x0, 0x0, &(0x7f00000002c0)=[r3], 0x1}, 0x58)

539.878392ms ago: executing program 5 (id=1264):
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x4, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000d0"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0xfffffffffffffefb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r0}, 0xc)

405.338371ms ago: executing program 1 (id=1265):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x20000000000000f4, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
r2 = add_key$keyring(&(0x7f0000000040), &(0x7f0000000080)={'syz', 0x3}, 0x0, 0x0, 0xfffffffffffffffe)
keyctl$restrict_keyring(0x1d, r2, 0x0, 0x0)
r3 = add_key$keyring(&(0x7f0000000000), &(0x7f0000000080)={'syz', 0x0}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r2, &(0x7f0000000240)='asymmetric\x00', &(0x7f0000000180)=@keyring={'key_or_keyring:', r3})

395.052061ms ago: executing program 3 (id=1266):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000980)={&(0x7f0000000940)='rxrpc_recvmsg\x00'}, 0x10)
r0 = socket(0x21, 0x2, 0x10000000000002)
connect$rxrpc(r0, &(0x7f0000000140)=@in4={0x21, 0x0, 0x2, 0x10, {0x2, 0x0, @multicast2}}, 0x3a)
sendmmsg(r0, &(0x7f0000000180)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000001001000001"], 0x18, 0xe000}, 0x5}], 0x1, 0x0)
recvmmsg(r0, &(0x7f0000006340)=[{{0x0, 0x0, 0x0}, 0xb5d}, {{0x0, 0x0, 0x0}, 0x2}], 0x2, 0x2, 0x0)

390.912711ms ago: executing program 6 (id=1267):
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
lsetxattr$security_ima(&(0x7f0000000000)='./file0\x00', &(0x7f0000000040), &(0x7f00000000c0)=ANY=[@ANYBLOB="02e71d865b26c95306000000000000a007"], 0x11, 0x2)

331.611201ms ago: executing program 5 (id=1268):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2d, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x6, 0x0)
connect$inet6(r2, &(0x7f00000001c0)={0xa, 0x4e24, 0x8, @remote, 0x3}, 0x1c)
r3 = syz_io_uring_setup(0x239, &(0x7f0000000380)={0x0, 0x1ffffe, 0x10100, 0x2}, &(0x7f0000000180)=<r4=>0x0, &(0x7f00000001c0)=<r5=>0x0)
syz_io_uring_submit(r4, r5, &(0x7f0000000040)=@IORING_OP_SENDMSG={0x9, 0x0, 0x0, r2, 0x0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000c40)=ANY=[], 0x14a8}, 0x0, 0x20000000, 0x2})
io_uring_enter(r3, 0x2ded, 0x4000, 0x0, 0x0, 0x0)

286.364491ms ago: executing program 0 (id=1269):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001e80)=ANY=[@ANYBLOB="0b000000080000000c000000ffffffff01"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x11, 0xd, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000100000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000080)='kfree\x00', r1}, 0x18)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000600)={0x0, 0x8, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000d40000000000000000000000000a20000000000a03000000000000000000010000000900010073797a3000000000bc000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000009000038008000240000000007c00038014000100626f6e64300000000000000000000000140001006970766c616e31000000000000000000140001006970766c616e300000000000000000001400010073697430000000000000fbffffffffffffff0100776c616e300000000000000000000000140001006772653000000000000000000000040008000140000000005c000000180a01010000000000000000010000000900020073797a30000000000900010073797a3000000000300003802c00038014000100626f6e64300000000000000000000000140001006970766c616e31"], 0x4b0}}, 0x0)

213.363071ms ago: executing program 3 (id=1270):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f00000600000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="00faffffff00"/28], 0x48)

131.906241ms ago: executing program 1 (id=1271):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000c40), 0x5, 0x4a7, &(0x7f0000001140)="$eJzs3EtvG0UcAPD/bl59hZhSXm2hhoKIeCRNWqAHJB4CqRckJDiUY0jTqjRtUBMkWkU0IFSOqJ+gcETiE3CCCwIkJBBXuCOkCuXS0gNatLY3dRI7OGkc0+T3k1zPeGZ3ZnY969mZbgLYssr5P0nEroj4LSIGqtHFGcrVtxvzs+N/z8+OJ5Flb/6VVPJdn58dL7IW2+2sRQbTiPSTJPY1KHf6wsUzY5OTE+dr8eGZs+8NT1+4+Mzps2OnJk5NnBs9evTI4ZHnnxt9dl3a2Z/Xde+HU/sfPPb2ldfHj19554ev8vruqqVfn5/tXbxFqQjsjYhs6f5eaqHMcpQXH8s6j6+u+v97/XXhpLuDFWFVuiIiP109lf4/EF1x6+QNxGsfR6QdrR/QPlmWZX3LPs2vCtvzwFwGbGJJdLoGQGcUv/j5fXzx2uAhSEdde7l6A5S3+0btVU3prtz5lEvVe6P+NpVfjgMRcfPq8bmbV2PJfAoAQDt8k49/nm40/kvjvrp8d9XWhkoRcXdE7I6IeyJiT0TcG1HJe39EPNBqwUnjpZHl459ftq+xaS3Jx38v1Na2Fo//Fua9S121WH+l/T3JydOTE4dqx2Qwevry+MgKZXz76q+fNUsrR0Q+9iteefnFWLBWjz+7l0zQnRibGbudNte7diBib3ej9icLKwFJbFvz/vNjdvrJL/c3S//v9q9gHdaZsi8inqie/7lY0v5CsvL65PC2mJw4NFx8K5b78efLbzQr/7bavw6ufRSxo+H3f6H9paR+vXZ61UV0X/7906b3NGv9/vcmb1XCxaLtB2MzM+dHInqTueWfj97atogX+fP2Dx5s3P93R/zzeW27fRGRf4kfioiHIyp3bXndH4mIRyPi4AoH4PtXHns3f/9pTe1vr7z9J1Z1/usDPbH0k0aBrjPffd2s/NbO/5FKaLD2SSvXv2rhxXWreQXXetwAAADgTpJW/g98kkRU50121aXtiR3p5NT0zFMnp94/d6KaVoqetJjpGqibDx2pzQ0X8dEl8cOVeeMsy7LtlfjQ+NRku9bUgdbsrPb/dGjhWpCmQ0PVtD+6Fud9sSM1BNpqVetozZ5oA+5IrfV/HR82o4X+v/xJwILOD5tUtf93DXS6HsDG8/daYOtq1P8vRdzoQFWADeb3H7Yu/R+2rtX2/1Kb6gFsPL//sCUtfiS+N1p4nL+lwO5j67OfzR/o6nQ1+ta2eaQdP3TLA0mDpLRB5rTlPfeuS8VipTx9EdHqDi/FRh3MTl+ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1se/AQAA//++KOKq")
mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, 0x1)

131.630781ms ago: executing program 6 (id=1272):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
connect$phonet_pipe(r0, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)

81.61326ms ago: executing program 0 (id=1273):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x1000410, &(0x7f00000000c0)={[{@grpid}, {@dioread_lock}]}, 0x4, 0x4eb, &(0x7f0000000540)="$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")
r0 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
ftruncate(r0, 0x2007ffc)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000000)=0x7)
ioprio_set$pid(0x1, 0x0, 0x0)
sendfile(r0, r0, 0x0, 0x800000009)

49.9801ms ago: executing program 3 (id=1274):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x1, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$inet6(0xa, 0x3, 0x3c)
setsockopt$inet6_IPV6_RTHDR(r2, 0x29, 0x39, &(0x7f0000000f00)=ANY=[@ANYBLOB="0002020100000008ff"], 0x18)
connect$inet6(r2, &(0x7f0000000000)={0xa, 0x0, 0x0, @dev, 0x5}, 0x1c)
writev(r2, &(0x7f00000000c0)=[{&(0x7f0000000100)="88", 0xfdef}], 0x1)
timer_create(0x2, 0x0, &(0x7f0000bbdffc)=<r3=>0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000093850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r4, 0x0, 0x2000000000000000}, 0x18)
r5 = socket$netlink(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r5, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000000)=ANY=[@ANYBLOB="380000000314010000000000000000000900020073797a2f000000000800410072786500140033007465616d5f736c6176655f30"], 0x38}}, 0x0)
r6 = socket$nl_route(0x10, 0x3, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000040)={'wg0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000001200)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd28, 0x0, {0x0, 0x0, 0x0, r8, {}, {0xffff, 0xffff}, {0xffff}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x14, 0x2, [@TCA_CAKE_SPLIT_GSO={0x8, 0x11, 0x40000}, @TCA_CAKE_FWMARK={0x8}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x51}, 0x31c6d6e942e24b9a)
sendmsg$nl_route(r6, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=@newlink={0x28, 0x10, 0x403, 0x0, 0x25dfdbff, {0x0, 0x0, 0x4, r8, 0x1d8e0, 0x1a704}, [@IFLA_LINK={0x8, 0x5, r8}]}, 0x28}, 0x1, 0x0, 0x0, 0x11}, 0x4000044)
ioperm(0xd005, 0x100, 0x1)
ioctl$USBDEVFS_DROP_PRIVILEGES(0xffffffffffffffff, 0x4004551e, &(0x7f0000000000)=0x9)
timer_getoverrun(r3)

0s ago: executing program 6 (id=1275):
sendmsg$kcm(0xffffffffffffffff, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, &(0x7f0000005080)='./file0/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', 0x0, 0x6000)
r0 = bpf$PROG_LOAD_XDP(0x5, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x5, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="6c00000010001fff2bbd70000000000000000000", @ANYRES32=0x0, @ANYBLOB="0000000000000000440012800b000100697036746e6c000034000280050009000400000008000100", @ANYRES32, @ANYBLOB="060012004e240000080414000100000006000f00020000000500090089000000080004"], 0x6c}}, 0x0)

kernel console output (not intermixed with test programs):

[ T4797] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[   99.076810][   T26] audit: type=1326 audit(1734839456.212:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4815 comm="syz.3.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[   99.169158][   T26] audit: type=1326 audit(1734839456.212:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4815 comm="syz.3.180" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[   99.641697][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  101.276928][ T4895] syz.0.213[4895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.277034][ T4895] syz.0.213[4895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.317073][ T4895] syz.0.213[4895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.361753][ T4895] syz.0.213[4895] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  101.577909][ T4899] netlink: 'syz.1.215': attribute type 1 has an invalid length.
[  101.597274][ T4899] netlink: 83992 bytes leftover after parsing attributes in process `syz.1.215'.
[  101.693770][ T4905] device bond1 entered promiscuous mode
[  101.704823][ T4905] 8021q: adding VLAN 0 to HW filter on device bond1
[  101.860607][ T4905] bond1 (unregistering): Released all slaves
[  101.949560][ T4912] loop4: detected capacity change from 0 to 164
[  102.137421][ T4916] netlink: 4 bytes leftover after parsing attributes in process `syz.0.222'.
[  102.168032][ T4916] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  102.190392][ T4916] batman_adv: batadv0: Removing interface: batadv_slave_0
[  102.339643][ T4916] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  102.370980][ T4916] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.601827][ T4932] loop2: detected capacity change from 0 to 2048
[  102.653560][ T4932] EXT4-fs (loop2): Cannot use DAX on a filesystem that may contain inline data
[  102.803173][ T4932] loop2: detected capacity change from 0 to 512
[  102.845956][ T4932] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[  102.863993][ T4932] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[  102.922406][ T4932] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended
[  102.943734][ T4932] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002]
[  102.964018][ T4932] System zones: 0-2, 18-18, 34-34
[  103.005131][ T4932] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended
[  103.048952][ T4932] EXT4-fs (loop2): 1 truncate cleaned up
[  103.097705][ T4932] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  103.261033][   T26] kauditd_printk_skb: 155 callbacks suppressed
[  103.261050][   T26] audit: type=1326 audit(1734839460.392:319): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  103.289606][    C0] vkms_vblank_simulate: vblank timer overrun
[  103.371789][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  103.455634][   T26] audit: type=1326 audit(1734839460.402:320): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  103.559992][   T26] audit: type=1326 audit(1734839460.402:321): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  103.621760][   T26] audit: type=1326 audit(1734839460.402:322): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  103.709787][   T26] audit: type=1326 audit(1734839460.402:323): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  103.790568][   T26] audit: type=1326 audit(1734839460.402:324): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd19cb84690 code=0x7ffc0000
[  103.891642][   T26] audit: type=1326 audit(1734839460.402:325): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  103.979077][   T26] audit: type=1326 audit(1734839460.402:326): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  104.006267][ T4959] syz.3.238[4959] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.006375][ T4959] syz.3.238[4959] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  104.077302][ T4982] netlink: 20 bytes leftover after parsing attributes in process `syz.4.246'.
[  104.079280][   T26] audit: type=1326 audit(1734839460.412:327): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=72 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  104.188109][   T26] audit: type=1326 audit(1734839460.412:328): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4954 comm="syz.4.237" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  105.704835][ T5041] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  105.920821][ T5041] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.105942][ T5041] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.170485][ T5061] loop0: detected capacity change from 0 to 512
[  106.214173][ T5061] EXT4-fs (loop0): orphan cleanup on readonly fs
[  106.225379][ T5061] EXT4-fs warning (device loop0): ext4_enable_quotas:7029: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix.
[  106.240391][ T5061] EXT4-fs (loop0): Cannot turn on quotas: error -22
[  106.249443][ T5061] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #13: comm syz.0.265: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0)
[  106.269067][ T5061] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.265: couldn't read orphan inode 13 (err -117)
[  106.284162][ T5061] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  106.320930][ T5042] EXT4-fs error (device loop0): ext4_lookup:1862: inode #2: comm syz.0.265: deleted inode referenced: 12
[  106.420578][ T5041] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  106.461440][ T5038] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  106.519517][ T5038] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  106.553662][ T5041] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  106.602966][ T5041] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  106.678059][ T5041] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  106.702515][ T5038] siw: device registration error -19
[  106.770705][ T5041] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  106.884635][ T5074] netlink: 'syz.2.272': attribute type 10 has an invalid length.
[  106.961586][ T5074] team0: Device hsr_slave_0 failed to register rx_handler
[  107.163463][ T5057] netlink: 16 bytes leftover after parsing attributes in process `syz.1.271'.
[  107.282996][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  107.446463][ T5089] loop0: detected capacity change from 0 to 1024
[  107.491001][ T5089] EXT4-fs: Ignoring removed nobh option
[  107.501744][ T5089] EXT4-fs: Ignoring removed bh option
[  107.528055][ T5089] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  107.597377][ T5089] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  107.775094][ T5101] netlink: 96 bytes leftover after parsing attributes in process `syz.1.282'.
[  107.859233][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  108.053189][ T5109] netlink: 28 bytes leftover after parsing attributes in process `syz.1.286'.
[  108.069513][ T5109] netlink: 28 bytes leftover after parsing attributes in process `syz.1.286'.
[  108.272425][ T5115] netlink: 4 bytes leftover after parsing attributes in process `syz.2.288'.
[  108.375124][ T5119] netlink: 268 bytes leftover after parsing attributes in process `syz.4.290'.
[  108.501398][ T5123] netlink: 544 bytes leftover after parsing attributes in process `syz.0.292'.
[  108.544010][ T5123] netlink: 8 bytes leftover after parsing attributes in process `syz.0.292'.
[  108.556991][ T5126] netlink: 96 bytes leftover after parsing attributes in process `syz.4.290'.
[  108.686734][   T26] kauditd_printk_skb: 52 callbacks suppressed
[  108.686749][   T26] audit: type=1326 audit(1734839465.832:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  108.788543][   T26] audit: type=1326 audit(1734839465.872:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  108.905401][   T26] audit: type=1326 audit(1734839465.872:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  109.002051][   T26] audit: type=1326 audit(1734839465.872:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  109.060314][   T26] audit: type=1326 audit(1734839465.872:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  109.154455][   T26] audit: type=1326 audit(1734839465.882:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  109.224538][   T26] audit: type=1326 audit(1734839465.882:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  109.306851][ T5146] __nla_validate_parse: 1 callbacks suppressed
[  109.306868][ T5146] netlink: 168 bytes leftover after parsing attributes in process `syz.3.301'.
[  109.347968][   T26] audit: type=1326 audit(1734839465.882:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  109.403627][   T26] audit: type=1326 audit(1734839465.882:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  109.482247][   T26] audit: type=1326 audit(1734839465.882:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5129 comm="syz.1.294" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  110.313615][ T5176] loop4: detected capacity change from 0 to 2048
[  110.426579][ T5176] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  110.517025][ T5189] loop0: detected capacity change from 0 to 128
[  110.655577][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  111.151859][ T5210] loop4: detected capacity change from 0 to 2048
[  111.230379][ T5210] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  111.513117][ T5226] netlink: 4 bytes leftover after parsing attributes in process `syz.1.332'.
[  111.548784][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  111.630622][ T5223] loop2: detected capacity change from 0 to 1024
[  111.731109][ T5229] netlink: 32 bytes leftover after parsing attributes in process `syz.3.334'.
[  111.735727][ T5223] EXT4-fs: Ignoring removed oldalloc option
[  111.828701][ T5231] loop4: detected capacity change from 0 to 512
[  111.861904][ T5231] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  111.873238][ T5223] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  111.953929][ T5231] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.333: corrupted in-inode xattr
[  111.972688][ T5231] EXT4-fs (loop4): Remounting filesystem read-only
[  111.982752][ T5223] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #11: comm syz.2.326: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  112.011009][ T5231] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2809: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  112.054560][ T5223] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.326: couldn't read orphan inode 11 (err -117)
[  112.058522][ T5231] EXT4-fs (loop4): 1 truncate cleaned up
[  112.084452][ T5223] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  112.150141][ T5231] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  112.242976][ T5226] team0 (unregistering): Port device team_slave_0 removed
[  112.342901][ T5226] team0 (unregistering): Port device team_slave_1 removed
[  112.342993][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  112.510073][ T5239] usb usb2: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  113.821038][ T5268] loop1: detected capacity change from 0 to 1024
[  113.844997][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  113.879709][ T5268] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  113.962013][ T5268] netlink: 8 bytes leftover after parsing attributes in process `syz.1.348'.
[  114.191673][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  115.746483][ T5312] netlink: 17 bytes leftover after parsing attributes in process `syz.2.365'.
[  115.796776][ T5312] netlink: 'syz.2.365': attribute type 39 has an invalid length.
[  115.826402][ T5312] device veth0_macvtap left promiscuous mode
[  115.952508][ T5319] loop4: detected capacity change from 0 to 256
[  116.181593][ T5327] loop2: detected capacity change from 0 to 512
[  116.226869][ T5327] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  116.367793][ T5337] syz.4.374[5337] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.367918][ T5337] syz.4.374[5337] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  116.382056][ T5327] EXT4-fs (loop2): 1 truncate cleaned up
[  116.411323][ T5327] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none.
[  116.426831][   T26] kauditd_printk_skb: 52 callbacks suppressed
[  116.426846][   T26] audit: type=1326 audit(1734839473.572:443): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5326 comm="syz.2.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  116.532554][   T26] audit: type=1326 audit(1734839473.612:444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5326 comm="syz.2.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=92 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  116.592281][   T26] audit: type=1326 audit(1734839473.612:445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5326 comm="syz.2.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  116.621628][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  116.629726][   T26] audit: type=1326 audit(1734839473.642:446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5339 comm="syz.1.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  116.709289][   T26] audit: type=1326 audit(1734839473.642:447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5339 comm="syz.1.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  116.741743][ T5344] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  116.785449][   T26] audit: type=1326 audit(1734839473.642:448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5339 comm="syz.1.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  116.861298][   T26] audit: type=1326 audit(1734839473.642:449): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5339 comm="syz.1.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=326 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  116.943918][   T26] audit: type=1326 audit(1734839473.642:450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5339 comm="syz.1.376" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  117.050209][ T5347] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.108198][   T26] audit: type=1326 audit(1734839474.252:451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5355 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  117.169112][ T5358] Cannot find add_set index 0 as target
[  117.181702][   T26] audit: type=1326 audit(1734839474.252:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5355 comm="syz.2.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  117.210099][ T5360] netlink: 8 bytes leftover after parsing attributes in process `syz.1.386'.
[  117.268949][ T5360] netlink: 4 bytes leftover after parsing attributes in process `syz.1.386'.
[  117.376901][ T5347] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.571620][ T5347] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.765938][ T5347] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.988882][ T5347] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  118.022938][ T5347] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  118.050257][ T5347] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  118.117936][ T5347] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  118.129262][  T125] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  118.295080][  T125] usb 1-1: device descriptor read/64, error -71
[  118.582401][  T125] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  118.744423][  T125] usb 1-1: device descriptor read/64, error -71
[  118.885020][  T125] usb usb1-port1: attempt power cycle
[  119.260320][ T5427] netlink: 8 bytes leftover after parsing attributes in process `syz.1.416'.
[  119.282711][ T5427] IPVS: Error joining to the multicast group
[  119.314608][  T125] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[  119.370214][  T125] usb 1-1: device descriptor read/8, error -71
[  119.684507][  T125] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[  119.765146][  T125] usb 1-1: device descriptor read/8, error -71
[  119.819135][ T5450] program syz.4.427 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  119.837407][ T5450] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  119.885203][  T125] usb usb1-port1: unable to enumerate USB device
[  120.088296][ T5452] loop1: detected capacity change from 0 to 8192
[  120.765976][ T5473] loop4: detected capacity change from 0 to 512
[  120.842455][ T5473] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  120.858875][ T5473] ext4 filesystem being mounted at /82/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  121.167329][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  121.430463][ T5491] device syzkaller0 entered promiscuous mode
[  122.470229][   T26] kauditd_printk_skb: 85 callbacks suppressed
[  122.470247][   T26] audit: type=1326 audit(1734839479.612:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.560239][   T26] audit: type=1326 audit(1734839479.652:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.620762][   T26] audit: type=1326 audit(1734839479.652:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.645682][   T26] audit: type=1326 audit(1734839479.732:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.678577][   T26] audit: type=1326 audit(1734839479.732:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.711843][   T26] audit: type=1326 audit(1734839479.762:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=30 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.756954][   T26] audit: type=1326 audit(1734839479.762:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.804992][   T26] audit: type=1326 audit(1734839479.762:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.844100][   T26] audit: type=1326 audit(1734839479.762:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  122.883613][   T26] audit: type=1326 audit(1734839479.762:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5520 comm="syz.0.453" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  124.328565][ T5518] netlink: 4 bytes leftover after parsing attributes in process `syz.4.452'.
[  124.854404][ T5542] device veth0_to_team entered promiscuous mode
[  124.882462][ T5542] lo speed is unknown, defaulting to 1000
[  124.923673][ T5542] lo speed is unknown, defaulting to 1000
[  124.953472][ T5542] lo speed is unknown, defaulting to 1000
[  125.416915][ T4298] lo speed is unknown, defaulting to 1000
[  125.431041][ T5542] infiniband syz2: set active
[  125.442880][ T5542] infiniband syz2: added lo
[  125.631743][ T5542] RDS/IB: syz2: added
[  125.651676][ T5542] smc: adding ib device syz2 with port count 1
[  125.681615][ T5542] smc:    ib device syz2 port 1 has pnetid 
[  125.706785][ T4331] lo speed is unknown, defaulting to 1000
[  125.724655][ T5542] lo speed is unknown, defaulting to 1000
[  125.852683][ T5569] hub 9-0:1.0: USB hub found
[  125.870720][ T5569] hub 9-0:1.0: 1 port detected
[  125.931928][ T5542] lo speed is unknown, defaulting to 1000
[  126.172167][ T5542] lo speed is unknown, defaulting to 1000
[  126.372733][ T5542] lo speed is unknown, defaulting to 1000
[  126.602863][ T5581] random: crng reseeded on system resumption
[  126.669697][ T5583] loop2: detected capacity change from 0 to 512
[  126.707580][ T5542] lo speed is unknown, defaulting to 1000
[  126.765755][ T5583] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.475: casefold flag without casefold feature
[  126.809868][ T5583] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.475: couldn't read orphan inode 15 (err -117)
[  126.844715][ T5583] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  126.978748][ T5583] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  126.988279][ T5583] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  127.082039][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  127.755854][ T5611] loop4: detected capacity change from 0 to 512
[  127.780139][ T5611] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  127.851571][ T5611] EXT4-fs (loop4): 1 truncate cleaned up
[  127.863823][ T5614] 9pnet: Could not find request transport: fd0xffffffffffffffff
[  127.899972][ T5611] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  128.175889][   T26] kauditd_printk_skb: 40 callbacks suppressed
[  128.175903][   T26] audit: type=1326 audit(1734839485.322:588): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.278919][   T26] audit: type=1326 audit(1734839485.362:589): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.390792][   T26] audit: type=1326 audit(1734839485.362:590): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.463092][   T26] audit: type=1326 audit(1734839485.362:591): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.492534][   T26] audit: type=1326 audit(1734839485.362:592): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.520883][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  128.530134][ T5622] Cannot find add_set index 0 as target
[  128.594627][   T26] audit: type=1326 audit(1734839485.362:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.687637][   T26] audit: type=1326 audit(1734839485.362:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.764450][   T26] audit: type=1326 audit(1734839485.362:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.849534][   T26] audit: type=1326 audit(1734839485.362:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=233 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  128.949794][   T26] audit: type=1326 audit(1734839485.362:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5618 comm="syz.3.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  129.046760][ T5633] program syz.1.493 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  129.078103][ T5633] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  130.119657][ T5672] loop1: detected capacity change from 0 to 1024
[  130.175402][ T5672] EXT4-fs: Ignoring removed nobh option
[  130.181370][ T5672] EXT4-fs: Ignoring removed bh option
[  130.212261][ T5672] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  130.308587][ T5672] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  130.457964][ T5672] netlink: 8 bytes leftover after parsing attributes in process `syz.1.510'.
[  130.901946][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  131.109763][ T5704] loop0: detected capacity change from 0 to 512
[  131.176517][ T5704] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  131.445333][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  131.682671][ T5722] lo speed is unknown, defaulting to 1000
[  131.965182][ T5739] syz.4.538[5739] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  131.965286][ T5739] syz.4.538[5739] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  132.131844][ T5740] lo speed is unknown, defaulting to 1000
[  132.627721][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  132.634118][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  132.671668][ T5760] netlink: 12 bytes leftover after parsing attributes in process `syz.2.545'.
[  132.805522][ T5763] netlink: 8 bytes leftover after parsing attributes in process `syz.0.547'.
[  132.874402][ T5763] netlink: 24 bytes leftover after parsing attributes in process `syz.0.547'.
[  133.533707][ T5783] lo speed is unknown, defaulting to 1000
[  134.849862][ T5800] loop1: detected capacity change from 0 to 8192
[  134.888990][ T5800] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  134.919608][ T5805] 9pnet_fd: Insufficient options for proto=fd
[  134.936740][   T26] kauditd_printk_skb: 51 callbacks suppressed
[  134.936756][   T26] audit: type=1800 audit(1734839492.082:649): pid=5800 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.563" name="file1" dev="loop1" ino=1048599 res=0 errno=0
[  135.542642][ T5822] loop0: detected capacity change from 0 to 512
[  135.653917][ T5822] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.573: casefold flag without casefold feature
[  135.700819][ T5822] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.573: couldn't read orphan inode 15 (err -117)
[  135.737999][ T5822] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  135.820278][ T5822] ext4: Unknown parameter '€'
[  135.915168][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  135.923178][ T5833] loop2: detected capacity change from 0 to 512
[  135.966658][ T5833] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  136.040673][ T5833] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  136.081011][ T5833] ext4 filesystem being mounted at /123/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.378553][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  136.652613][ T5860] lo speed is unknown, defaulting to 1000
[  136.707416][ T5861] loop4: detected capacity change from 0 to 512
[  136.714428][ T5861] EXT4-fs: Ignoring removed nomblk_io_submit option
[  136.811873][ T5861] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  136.821191][ T5861] ext4 filesystem being mounted at /117/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  136.940548][ T5867] IPv6: NLM_F_CREATE should be specified when creating new route
[  136.982970][ T5869] loop0: detected capacity change from 0 to 1024
[  137.026683][ T5869] EXT4-fs: Ignoring removed nobh option
[  137.059765][ T5869] EXT4-fs: Ignoring removed bh option
[  137.091285][ T5869] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  137.153326][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  137.183623][ T5873] loop1: detected capacity change from 0 to 512
[  137.197409][ T5869] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  137.288952][ T5873] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.590: casefold flag without casefold feature
[  137.308259][   T26] audit: type=1326 audit(1734839494.452:650): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5878 comm="syz.4.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  137.375060][ T5873] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.590: couldn't read orphan inode 15 (err -117)
[  137.405429][   T26] audit: type=1326 audit(1734839494.482:651): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5878 comm="syz.4.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=136 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  137.428479][ T5873] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  137.440898][ T5869] netlink: 8 bytes leftover after parsing attributes in process `syz.0.587'.
[  137.475993][ T5873] ext4: Unknown parameter '€'
[  137.519924][   T26] audit: type=1326 audit(1734839494.482:652): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5878 comm="syz.4.592" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  137.583480][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  137.590242][ T5889] syz.4.596[5889] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.590342][ T5889] syz.4.596[5889] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  137.633008][ T5888] sd 0:0:1:0: device reset
[  137.927529][ T5896] netlink: 8 bytes leftover after parsing attributes in process `syz.1.597'.
[  138.040384][ T5896] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  138.050267][ T5896] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  138.085169][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  138.889029][ T5906] loop0: detected capacity change from 0 to 512
[  138.913832][ T5906] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  139.020687][ T5906] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  139.074754][ T5906] ext4 filesystem being mounted at /95/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  139.135028][ T5913] program syz.1.603 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  139.157254][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  139.198386][ T5913] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  139.420761][ T5923] loop2: detected capacity change from 0 to 512
[  139.471870][ T5923] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.607: casefold flag without casefold feature
[  139.494540][ T5923] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.607: couldn't read orphan inode 15 (err -117)
[  139.502461][ T5928] netlink: 268 bytes leftover after parsing attributes in process `syz.0.609'.
[  139.519568][ T5923] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  139.626762][ T5923] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  139.679738][ T5923] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  139.796110][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  139.890802][ T5934] device vlan2 entered promiscuous mode
[  139.925538][ T5934] device bond0 entered promiscuous mode
[  139.938887][ T5934] device bond_slave_0 entered promiscuous mode
[  139.974580][ T5934] device bond_slave_1 entered promiscuous mode
[  139.998153][   T26] audit: type=1326 audit(1734839497.142:653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5884 comm="syz.3.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  140.031174][ T5934] device bond0 left promiscuous mode
[  140.064711][ T5934] device bond_slave_0 left promiscuous mode
[  140.074838][   T26] audit: type=1326 audit(1734839497.142:654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5884 comm="syz.3.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  140.107597][ T5934] device bond_slave_1 left promiscuous mode
[  140.158279][   T26] audit: type=1326 audit(1734839497.142:655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5884 comm="syz.3.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  140.161084][ T5936] loop2: detected capacity change from 0 to 8192
[  140.239799][   T26] audit: type=1326 audit(1734839497.142:656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5884 comm="syz.3.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  140.284667][   T26] audit: type=1326 audit(1734839497.142:657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5884 comm="syz.3.594" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  140.733645][   T26] audit: type=1326 audit(1734839497.872:658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  140.779751][ T5955] netlink: 268 bytes leftover after parsing attributes in process `syz.4.621'.
[  140.790934][   T26] audit: type=1326 audit(1734839497.882:659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  140.815432][   T26] audit: type=1326 audit(1734839497.882:660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  140.840363][   T26] audit: type=1326 audit(1734839497.882:661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  140.882004][ T5959] loop2: detected capacity change from 0 to 512
[  140.913552][   T26] audit: type=1326 audit(1734839497.882:662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5952 comm="syz.0.620" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  140.990800][ T5959] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  141.003788][ T5959] EXT4-fs (loop2): orphan cleanup on readonly fs
[  141.024717][ T5959] EXT4-fs warning (device loop2): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  141.081420][ T5959] EXT4-fs (loop2): Cannot turn on quotas: error -117
[  141.081791][ T5959] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #16: comm syz.2.622: iget: immutable or append flags not allowed on symlinks
[  141.082274][ T5959] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.622: couldn't read orphan inode 16 (err -117)
[  141.084101][ T5959] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  141.087059][ T5959] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  141.118272][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  141.273427][  T125] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x4
[  141.273523][  T125] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x2
[  141.273567][  T125] hid-generic 0000:3000000:0000.0001: unknown main item tag 0x3
[  141.312304][  T125] hid-generic 0000:3000000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [sy

] on syz0
[  141.396458][ T5980] device veth0_virt_wifi entered promiscuous mode
[  141.412817][ T5980] device veth0_virt_wifi left promiscuous mode
[  142.131949][ T6006] device geneve2 entered promiscuous mode
[  142.342600][ T6014] program syz.0.646 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  142.400690][ T6014] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  142.474115][ T6018] lo speed is unknown, defaulting to 1000
[  142.509707][ T6020] loop2: detected capacity change from 0 to 512
[  142.516713][ T6020] EXT4-fs: Ignoring removed nomblk_io_submit option
[  142.703525][ T6020] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  142.712674][ T6020] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  143.054678][ T6040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.655'.
[  143.089029][ T6040] netlink: 4 bytes leftover after parsing attributes in process `syz.1.655'.
[  143.101623][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  143.250865][ T6044] loop2: detected capacity change from 0 to 512
[  143.272490][ T6044] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  143.357522][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  143.698799][ T6055] syz.4.661[6055] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.698907][ T6055] syz.4.661[6055] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  143.822769][ T6055] loop4: detected capacity change from 0 to 2048
[  143.957500][ T6055] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  144.080217][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  144.214655][ T6069] loop0: detected capacity change from 0 to 1024
[  144.282196][ T6069] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a802c119, mo2=0082]
[  144.304540][ T6069] System zones: 0-1, 3-12
[  144.310113][ T6069] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  144.440064][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  144.526799][ T6081] x_tables: eb_tables: nflog.0 target: invalid size 80 (kernel) != (user) 0
[  144.623031][ T4298] kernel write not supported for file bpf-prog (pid: 4298 comm: kworker/1:3)
[  145.185173][ T6111] loop1: detected capacity change from 0 to 512
[  145.216127][ T6113] device macvlan1 entered promiscuous mode
[  145.232934][ T6113] netlink: 4 bytes leftover after parsing attributes in process `syz.4.682'.
[  145.253780][ T6111] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.681: casefold flag without casefold feature
[  145.271516][ T6111] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.681: couldn't read orphan inode 15 (err -117)
[  145.318979][ T6111] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  145.361520][ T6113] device macvlan1 left promiscuous mode
[  145.443885][ T6111] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  145.482523][ T6111] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  145.567682][ T6122] lo speed is unknown, defaulting to 1000
[  145.651413][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  146.065687][ T6144] hub 9-0:1.0: USB hub found
[  146.091647][ T6144] hub 9-0:1.0: 1 port detected
[  146.451152][ T6160] loop2: detected capacity change from 0 to 512
[  146.502396][ T6160] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.700: casefold flag without casefold feature
[  146.555660][ T6160] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.700: couldn't read orphan inode 15 (err -117)
[  146.584873][ T6160] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  146.599427][   T26] kauditd_printk_skb: 43 callbacks suppressed
[  146.599442][   T26] audit: type=1326 audit(1734839503.742:705): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  146.629881][   T26] audit: type=1326 audit(1734839503.772:706): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  146.653389][   T26] audit: type=1326 audit(1734839503.772:707): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  146.679429][   T26] audit: type=1326 audit(1734839503.772:708): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  146.711357][ T6160] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  146.730646][ T6160] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  146.754412][   T26] audit: type=1326 audit(1734839503.772:709): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6164 comm="syz.1.703" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  146.850253][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  147.367412][ T6186] program syz.1.711 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  147.398423][ T6189] device vlan2 entered promiscuous mode
[  147.405043][ T6186] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  147.418421][ T6189] device bond0 entered promiscuous mode
[  147.427127][ T6189] device bond_slave_0 entered promiscuous mode
[  147.434174][ T6189] device bond_slave_1 entered promiscuous mode
[  147.483982][ T6189] device bond0 left promiscuous mode
[  147.506531][ T6195] loop1: detected capacity change from 0 to 256
[  147.515145][ T6189] device bond_slave_0 left promiscuous mode
[  147.521667][ T6189] device bond_slave_1 left promiscuous mode
[  147.553481][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.570079][ T6195] FAT-fs (loop1): Filesystem has been set read-only
[  147.577804][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.595818][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.607375][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.624002][   T26] audit: type=1326 audit(1734839504.762:710): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6194 comm="syz.1.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  147.624674][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.671823][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.687642][   T26] audit: type=1326 audit(1734839504.762:711): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6194 comm="syz.1.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  147.705459][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.750436][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.759425][   T26] audit: type=1326 audit(1734839504.762:712): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6194 comm="syz.1.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  147.764931][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.814365][   T26] audit: type=1326 audit(1734839504.762:713): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6194 comm="syz.1.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  147.836996][ T6195] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  147.905005][ T6195] syz.1.713 (6195) used greatest stack depth: 19136 bytes left
[  147.908121][ T6200] netlink: 4 bytes leftover after parsing attributes in process `syz.0.714'.
[  147.912675][   T26] audit: type=1326 audit(1734839504.762:714): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6194 comm="syz.1.713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  148.367937][ T6220] program syz.1.723 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  148.384690][ T6220] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  148.502063][ T6224] loop2: detected capacity change from 0 to 128
[  149.818864][ T6247] loop4: detected capacity change from 0 to 128
[  149.910676][ T6247] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  149.944871][ T6247] ext4 filesystem being mounted at /149/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  150.114157][ T6262] loop1: detected capacity change from 0 to 512
[  150.197040][ T6262] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.737: casefold flag without casefold feature
[  150.225442][ T6262] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.737: couldn't read orphan inode 15 (err -117)
[  150.253203][ T6262] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  150.378503][ T6262] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  150.395062][ T6262] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  150.491478][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  150.578547][ T6281] loop1: detected capacity change from 0 to 128
[  150.598085][ T6281] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  150.646214][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  150.664548][ T6281] ext4 filesystem being mounted at /173/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  150.951184][ T6291] device veth0_vlan left promiscuous mode
[  150.960305][ T6291] device veth0_vlan entered promiscuous mode
[  150.970676][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  150.978262][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  151.019083][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  151.062643][   T46] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  151.386194][ T6308] sg_write: data in/out 209152/1 bytes for SCSI command 0xf2-- guessing data in;
[  151.386194][ T6308]    program syz.4.758 not setting count and/or reply_len properly
[  151.410847][ T6309] loop2: detected capacity change from 0 to 512
[  151.470973][ T6309] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  151.617022][ T6309] __quota_error: 76 callbacks suppressed
[  151.617040][ T6309] Quota error (device loop2): v2_read_file_info: Free block number 58381 out of range (1, 6).
[  151.645692][ T6321] loop0: detected capacity change from 0 to 1024
[  151.653061][ T6309] EXT4-fs warning (device loop2): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  151.669889][ T6321] EXT4-fs: Ignoring removed nobh option
[  151.675849][ T6321] EXT4-fs: Ignoring removed oldalloc option
[  151.693715][ T6321] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  151.784183][ T6321] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  151.800930][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  151.870210][ T6327] loop1: detected capacity change from 0 to 1024
[  151.886545][ T6329] netlink: 4 bytes leftover after parsing attributes in process `syz.3.766'.
[  151.917079][ T6329] netlink: 16 bytes leftover after parsing attributes in process `syz.3.766'.
[  151.974397][   T26] audit: type=1326 audit(1734839509.112:791): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  151.999243][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  152.019954][ T6327] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  152.033401][   T26] audit: type=1326 audit(1734839509.142:792): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=186 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.193747][   T26] audit: type=1326 audit(1734839509.142:793): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.267283][   T26] audit: type=1326 audit(1734839509.142:794): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.307541][   T26] audit: type=1326 audit(1734839509.142:795): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.331380][   T26] audit: type=1326 audit(1734839509.142:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.355995][   T26] audit: type=1326 audit(1734839509.142:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.385055][   T26] audit: type=1326 audit(1734839509.142:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.448616][   T26] audit: type=1326 audit(1734839509.142:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6328 comm="syz.3.766" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  152.566409][ T6354] loop0: detected capacity change from 0 to 256
[  152.614513][ T6350] loop4: detected capacity change from 0 to 4096
[  152.635200][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.664610][ T6354] FAT-fs (loop0): Filesystem has been set read-only
[  152.671078][ T6350] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  152.688353][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.736892][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  152.744023][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.745560][ T6358] netlink: 8 bytes leftover after parsing attributes in process `syz.3.777'.
[  152.762504][ T6358] IPVS: Error joining to the multicast group
[  152.773856][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.782892][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.793126][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.801966][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.813501][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.822458][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  152.831356][ T6354] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 196)
[  153.447625][ T6369] lo speed is unknown, defaulting to 1000
[  154.174679][ T6370] loop0: detected capacity change from 0 to 512
[  154.271560][ T6370] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.781: casefold flag without casefold feature
[  154.326596][ T6370] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.781: couldn't read orphan inode 15 (err -117)
[  154.357793][ T6370] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  154.428486][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  154.429670][ T6370] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  154.483700][ T6370] EXT4-fs (loop0): re-mounted. Quota mode: writeback.
[  154.646002][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  154.729435][ T6386] netlink: 8 bytes leftover after parsing attributes in process `syz.1.788'.
[  154.892836][ T6388] loop0: detected capacity change from 0 to 512
[  154.939038][ T6388] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  154.952529][ T6388] EXT4-fs (loop0): orphan cleanup on readonly fs
[  154.964767][ T6388] EXT4-fs warning (device loop0): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  155.007701][ T6388] EXT4-fs (loop0): Cannot turn on quotas: error -117
[  155.012315][ T6398] netlink: 268 bytes leftover after parsing attributes in process `syz.3.793'.
[  155.037225][ T6388] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #16: comm syz.0.789: casefold flag without casefold feature
[  155.077047][ T6388] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.789: couldn't read orphan inode 16 (err -117)
[  155.142982][ T6388] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  155.292865][ T6401] loop4: detected capacity change from 0 to 128
[  155.329850][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  155.346799][ T6401] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  155.435626][ T6401] ext4 filesystem being mounted at /158/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.633386][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  155.889524][ T6412] capability: warning: `syz.0.799' uses deprecated v2 capabilities in a way that may be insecure
[  155.898327][ T6416] loop2: detected capacity change from 0 to 512
[  155.952219][ T6416] EXT4-fs error (device loop2): ext4_orphan_get:1400: inode #15: comm syz.2.800: casefold flag without casefold feature
[  156.047655][ T6416] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.800: couldn't read orphan inode 15 (err -117)
[  156.160349][ T6416] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  156.277403][ T6416] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  156.324816][ T6416] EXT4-fs (loop2): re-mounted. Quota mode: writeback.
[  156.490346][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  156.548536][ T6436] loop0: detected capacity change from 0 to 4096
[  156.593763][ T6436] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  156.755930][ T6443] netlink: 8 bytes leftover after parsing attributes in process `syz.2.807'.
[  157.259016][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  157.375043][ T6454] loop4: detected capacity change from 0 to 512
[  157.433507][ T6454] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  157.503736][ T6454] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters
[  157.548444][ T6454] EXT4-fs (loop4): 1 truncate cleaned up
[  157.554162][ T6454] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  157.910712][ T6465] loop2: detected capacity change from 0 to 128
[  158.134110][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  158.261508][   T26] kauditd_printk_skb: 192 callbacks suppressed
[  158.261524][   T26] audit: type=1326 audit(1734839515.402:991): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.301140][   T26] audit: type=1326 audit(1734839515.402:992): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.387814][ T6479] loop4: detected capacity change from 0 to 512
[  158.406739][   T26] audit: type=1326 audit(1734839515.432:993): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.442836][ T6479] EXT4-fs (loop4): revision level too high, forcing read-only mode
[  158.465434][   T26] audit: type=1326 audit(1734839515.432:994): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.488357][   T26] audit: type=1326 audit(1734839515.432:995): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.511711][   T26] audit: type=1326 audit(1734839515.442:996): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.534382][   T26] audit: type=1326 audit(1734839515.482:997): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.543400][ T6479] EXT4-fs (loop4): orphan cleanup on readonly fs
[  158.556845][   T26] audit: type=1326 audit(1734839515.482:998): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.556891][   T26] audit: type=1326 audit(1734839515.492:999): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.556928][   T26] audit: type=1326 audit(1734839515.492:1000): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6478 comm="syz.4.822" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd19cb85d29 code=0x7ffc0000
[  158.648619][ T6479] EXT4-fs warning (device loop4): ext4_enable_quotas:7029: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  158.666912][ T6479] EXT4-fs (loop4): Cannot turn on quotas: error -117
[  158.684763][ T6479] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #16: comm syz.4.822: casefold flag without casefold feature
[  158.714826][ T6479] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.822: couldn't read orphan inode 16 (err -117)
[  158.761036][ T6479] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  159.126803][ T6499] netlink: 268 bytes leftover after parsing attributes in process `syz.3.831'.
[  159.337863][ T6496] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  159.888793][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  160.501334][ T6527] netlink: 4 bytes leftover after parsing attributes in process `syz.0.841'.
[  160.718639][ T6530] loop4: detected capacity change from 0 to 2048
[  160.823321][ T6530] Alternate GPT is invalid, using primary GPT.
[  160.835536][ T6530]  loop4: p2 p3 p7
[  160.879291][ T6536] lo speed is unknown, defaulting to 1000
[  161.617774][ T6552] xt_recent: hitcount (16385) is larger than allowed maximum (255)
[  162.319869][ T6576] syz.4.860[6576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.319976][ T6576] syz.4.860[6576] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  162.936048][ T6588] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.136116][ T6588] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.159721][ T6600] lo speed is unknown, defaulting to 1000
[  163.271897][ T6588] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.499176][ T6588] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  163.546763][ T6611] loop4: detected capacity change from 0 to 512
[  163.562966][ T6611] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.873: casefold flag without casefold feature
[  163.588369][ T6611] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.873: couldn't read orphan inode 15 (err -117)
[  163.604827][ T6611] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  163.631338][ T6611] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  163.640422][ T6611] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[  163.681814][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  163.882130][ T6588] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  163.968607][ T6588] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  164.009099][ T6588] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  164.069196][ T6588] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  164.628489][ T6643] lo speed is unknown, defaulting to 1000
[  164.646301][ T6643] lo speed is unknown, defaulting to 1000
[  164.686077][ T6643] lo speed is unknown, defaulting to 1000
[  164.705415][   T26] kauditd_printk_skb: 78 callbacks suppressed
[  164.705431][   T26] audit: type=1326 audit(1734839521.842:1078): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.0.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  164.728096][ T6643] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  164.765714][   T26] audit: type=1326 audit(1734839521.842:1079): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.0.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  164.821353][ T6643] lo speed is unknown, defaulting to 1000
[  164.839478][ T6643] lo speed is unknown, defaulting to 1000
[  164.848267][   T26] audit: type=1326 audit(1734839521.842:1080): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.0.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  164.864008][ T6643] lo speed is unknown, defaulting to 1000
[  164.904450][ T6643] lo speed is unknown, defaulting to 1000
[  164.924844][ T6643] lo speed is unknown, defaulting to 1000
[  164.929369][   T26] audit: type=1326 audit(1734839521.852:1081): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6642 comm="syz.0.885" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  165.281910][ T6655] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  165.367841][ T6660] loop4: detected capacity change from 0 to 2048
[  165.386194][ T6662] syz.0.890[6662] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.386304][ T6662] syz.0.890[6662] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  165.470026][ T6660] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none.
[  165.608398][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  165.839657][   T26] audit: type=1326 audit(1734839522.982:1082): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6676 comm="syz.1.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  165.935990][   T26] audit: type=1326 audit(1734839522.982:1083): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6676 comm="syz.1.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  166.011375][   T26] audit: type=1326 audit(1734839522.982:1084): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6676 comm="syz.1.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  166.115253][   T26] audit: type=1326 audit(1734839522.982:1085): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6676 comm="syz.1.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  166.179948][   T26] audit: type=1326 audit(1734839522.982:1086): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6676 comm="syz.1.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  166.287362][   T26] audit: type=1326 audit(1734839522.982:1087): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6676 comm="syz.1.896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=327 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  166.353091][ T6694] netlink: 'syz.1.903': attribute type 3 has an invalid length.
[  166.753557][ T6709] rdma_rxe: rxe_register_device failed with error -23
[  166.785431][ T6709] rdma_rxe: failed to add lo
[  167.181611][ T6715] lo speed is unknown, defaulting to 1000
[  167.699376][ T6715] lo speed is unknown, defaulting to 1000
[  167.925878][ T6714] loop0: detected capacity change from 0 to 1024
[  167.933060][ T6714] EXT4-fs: Ignoring removed oldalloc option
[  167.939832][ T6714] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  167.962994][ T6714] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.909: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512)
[  167.994569][ T6714] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.909: couldn't read orphan inode 11 (err -117)
[  168.006915][ T6714] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  168.076977][ T6724] loop4: detected capacity change from 0 to 512
[  168.085435][ T6723] loop1: detected capacity change from 0 to 512
[  168.120679][ T6726] netlink: 268 bytes leftover after parsing attributes in process `syz.2.913'.
[  168.255696][ T6723] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.911: casefold flag without casefold feature
[  168.293312][ T6724] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  168.308001][ T6723] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.911: couldn't read orphan inode 15 (err -117)
[  168.326084][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  168.326614][ T6724] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  168.370913][ T6723] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  168.528299][ T6723] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  168.558289][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  168.584901][ T6723] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  168.718792][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  169.542474][ T6763] syz.0.923 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  169.919404][ T6772] loop1: detected capacity change from 0 to 2048
[  169.944509][ T6777] loop4: detected capacity change from 0 to 512
[  170.039182][ T6772] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  170.039285][ T6777] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.927: casefold flag without casefold feature
[  170.106729][   T26] kauditd_printk_skb: 46 callbacks suppressed
[  170.106744][   T26] audit: type=1326 audit(1734839527.252:1134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6784 comm="syz.2.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  170.149857][ T6777] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.927: couldn't read orphan inode 15 (err -117)
[  170.172809][ T6777] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  170.238582][   T26] audit: type=1326 audit(1734839527.292:1135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6784 comm="syz.2.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=127 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  170.274193][ T6777] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  170.321066][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  170.335595][ T6777] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[  170.374770][   T26] audit: type=1326 audit(1734839527.292:1136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6784 comm="syz.2.929" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  170.468504][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  170.709656][   T26] audit: type=1326 audit(1734839527.852:1137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.0.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  170.784459][   T26] audit: type=1326 audit(1734839527.892:1138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.0.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  170.942171][   T26] audit: type=1326 audit(1734839527.892:1139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.0.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  171.032903][   T26] audit: type=1326 audit(1734839527.892:1140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.0.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  171.134741][   T26] audit: type=1326 audit(1734839527.892:1141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.0.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  171.221738][   T26] audit: type=1326 audit(1734839527.892:1142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.0.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  171.277302][   T26] audit: type=1326 audit(1734839527.892:1143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6801 comm="syz.0.934" exe="/root/syz-executor" sig=0 arch=c000003e syscall=116 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  172.043312][ T6830] usb usb1: usbfs: interface 0 claimed by hub while 'syz.2.943' sets config #0
[  173.409886][ T6853] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  173.418926][ T6853] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  173.427270][ T6853] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  173.435521][ T6853] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  173.460225][ T6856] loop2: detected capacity change from 0 to 512
[  173.494461][ T6853] device vxlan0 entered promiscuous mode
[  173.563503][ T6856] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback.
[  173.594463][ T6853] netdevsim netdevsim4 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  173.602923][ T6853] netdevsim netdevsim4 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  173.611532][ T6853] netdevsim netdevsim4 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  173.620016][ T6853] netdevsim netdevsim4 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  173.628643][ T6856] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  173.660245][ T6856] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 3: comm syz.2.954: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=60, inode=113, rec_len=0, size=2048 fake=0
[  173.759087][ T6856] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 12: comm syz.2.954: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5066064, rec_len=1, size=2048 fake=0
[  173.808774][ T6856] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 13: comm syz.2.954: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653246737, rec_len=1, size=2048 fake=0
[  173.902171][ T6856] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 14: comm syz.2.954: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=1, rec_len=0, size=2048 fake=0
[  173.987073][ T6856] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 15: comm syz.2.954: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=5, rec_len=0, size=2048 fake=0
[  174.085394][ T6856] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 16: comm syz.2.954: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3653245223, rec_len=1, size=2048 fake=0
[  174.172560][ T6856] EXT4-fs error (device loop2): ext4_readdir:260: inode #2: block 17: comm syz.2.954: path /205/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0
[  174.212594][ T6876] syz.1.960[6876] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.212708][ T6876] syz.1.960[6876] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  174.230133][ T6856] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #2: block 18: comm syz.2.954: lblock 23 mapped to illegal pblock 18 (length 1)
[  174.428984][ T4261] EXT4-fs (loop2): unmounting filesystem.
[  174.647653][ T6886] netlink: 24 bytes leftover after parsing attributes in process `syz.1.965'.
[  174.804133][ T6891] netlink: 'syz.2.968': attribute type 4 has an invalid length.
[  174.834569][ T6891] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.968'.
[  175.125913][ T6902] lo speed is unknown, defaulting to 1000
[  175.134199][ T6906] netlink: 'syz.3.976': attribute type 8 has an invalid length.
[  175.482039][ T6915] netlink: 8 bytes leftover after parsing attributes in process `syz.0.974'.
[  176.360017][ T6902] lo speed is unknown, defaulting to 1000
[  177.074252][    C1] sched: RT throttling activated
[  177.155832][ T6928] netlink: 76 bytes leftover after parsing attributes in process `syz.4.979'.
[  177.310953][ T6932] netlink: 4 bytes leftover after parsing attributes in process `syz.1.983'.
[  177.626029][ T6942] netdevsim netdevsim4 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  177.634539][ T6942] netdevsim netdevsim4 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  177.642783][ T6942] netdevsim netdevsim4 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  177.651889][ T6942] netdevsim netdevsim4 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  177.744534][ T6942] device vxlan0 entered promiscuous mode
[  177.754777][   T26] kauditd_printk_skb: 66 callbacks suppressed
[  177.754792][   T26] audit: type=1326 audit(1734839534.892:1210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.2.980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  177.806206][   T26] audit: type=1326 audit(1734839534.892:1211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.2.980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  177.829120][ T6942] netdevsim netdevsim4 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  177.830586][   T26] audit: type=1326 audit(1734839534.932:1212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.2.980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  177.837870][ T6942] netdevsim netdevsim4 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  177.868438][ T6942] netdevsim netdevsim4 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  177.876927][ T6942] netdevsim netdevsim4 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  177.939635][   T26] audit: type=1326 audit(1734839535.082:1213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.2.980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  178.003327][   T26] audit: type=1326 audit(1734839535.082:1214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6924 comm="syz.2.980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f633f585d29 code=0x7ffc0000
[  179.019471][ T6975] netlink: 'syz.0.998': attribute type 1 has an invalid length.
[  179.358321][ T6981] xt_CT: No such helper "snmp"
[  179.611271][ T6996] loop4: detected capacity change from 0 to 512
[  179.671416][ T6996] EXT4-fs error (device loop4): ext4_orphan_get:1400: inode #15: comm syz.4.1006: casefold flag without casefold feature
[  179.714634][ T6996] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1006: couldn't read orphan inode 15 (err -117)
[  179.747890][ T6996] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback.
[  179.869536][ T6996] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  179.919674][ T6996] EXT4-fs (loop4): re-mounted. Quota mode: writeback.
[  180.018648][ T4257] EXT4-fs (loop4): unmounting filesystem.
[  180.285225][ T7010] loop1: detected capacity change from 0 to 8192
[  180.521222][ T7024] device pim6reg1 entered promiscuous mode
[  180.653311][ T7029] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1021'.
[  181.079429][ T7033] lo speed is unknown, defaulting to 1000
[  181.460205][ T7040] netdevsim netdevsim3 eth0: set [0, 0] type 1 family 0 port 8472 - 0
[  181.468673][ T7040] netdevsim netdevsim3 eth1: set [0, 0] type 1 family 0 port 8472 - 0
[  181.477558][ T7040] netdevsim netdevsim3 eth2: set [0, 0] type 1 family 0 port 8472 - 0
[  181.485825][ T7040] netdevsim netdevsim3 eth3: set [0, 0] type 1 family 0 port 8472 - 0
[  181.591975][ T7040] device vxlan0 entered promiscuous mode
[  181.622851][ T7040] netdevsim netdevsim3 eth0: unset [0, 0] type 1 family 0 port 8472 - 0
[  181.631503][ T7040] netdevsim netdevsim3 eth1: unset [0, 0] type 1 family 0 port 8472 - 0
[  181.640134][ T7040] netdevsim netdevsim3 eth2: unset [0, 0] type 1 family 0 port 8472 - 0
[  181.649487][ T7040] netdevsim netdevsim3 eth3: unset [0, 0] type 1 family 0 port 8472 - 0
[  181.862392][ T7033] lo speed is unknown, defaulting to 1000
[  182.684678][ T7058] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1032'.
[  183.010628][ T7062] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1035'.
[  183.121678][ T7068] syz.4.1034[7068] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.122209][ T7068] syz.4.1034[7068] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  183.941928][   T26] audit: type=1326 audit(1734839541.082:1215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7069 comm="syz.0.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  184.065279][   T26] audit: type=1326 audit(1734839541.082:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7069 comm="syz.0.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  184.154481][   T26] audit: type=1326 audit(1734839541.082:1217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7069 comm="syz.0.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  184.270301][   T26] audit: type=1326 audit(1734839541.192:1218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7069 comm="syz.0.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  184.294155][ T7082] netlink: 68 bytes leftover after parsing attributes in process `syz.3.1043'.
[  184.348385][   T26] audit: type=1326 audit(1734839541.192:1219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7069 comm="syz.0.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  184.442975][   T26] audit: type=1326 audit(1734839541.192:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7078 comm="syz.0.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f6fdb3b85e5 code=0x7ffc0000
[  184.473507][ T7089] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1046'.
[  184.529872][   T26] audit: type=1326 audit(1734839541.342:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7078 comm="syz.0.1039" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  184.588177][ T7092] sch_tbf: peakrate 8 is lower than or equals to rate 12 !
[  184.808099][ T7100] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1051'.
[  184.849668][ T7102] netlink: 'syz.0.1048': attribute type 2 has an invalid length.
[  185.062051][ T7107] No such timeout policy "syz0"
[  185.158035][ T7109] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1055'.
[  186.678466][   T26] audit: type=1326 audit(1734839543.802:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7128 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  186.795619][   T26] audit: type=1326 audit(1734839543.802:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7128 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  186.957088][   T26] audit: type=1326 audit(1734839543.862:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7128 comm="syz.1.1062" exe="/root/syz-executor" sig=0 arch=c000003e syscall=291 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  187.482083][ T7138] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1065'.
[  187.972295][ T7149] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1071'.
[  188.013228][ T7149] netlink: 44 bytes leftover after parsing attributes in process `syz.4.1071'.
[  188.056712][ T7149] bridge1: the hash_elasticity option has been deprecated and is always 16
[  188.477300][ T7167] futex_wake_op: syz.0.1075 tries to shift op by -1; fix this program
[  188.850135][ T7173] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1077'.
[  189.809122][ T7177] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1081'.
[  190.869872][ T4492] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  190.996605][ T4492] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.020447][ T7194] netlink: 'syz.3.1090': attribute type 3 has an invalid length.
[  191.089852][ T4492] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.183557][ T4492] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  191.721214][ T4492] tipc: Disabling bearer <udp:syz2>
[  191.768052][ T4492] tipc: Left network mode
[  192.782579][ T7215] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1100'.
[  192.853065][ T7215] netlink: 44 bytes leftover after parsing attributes in process `syz.0.1100'.
[  192.965082][ T7215] bridge1: the hash_elasticity option has been deprecated and is always 16
[  193.303897][ T4260] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  193.319625][ T4260] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  193.343795][ T4270] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  193.354828][ T4260] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  193.364681][ T4260] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  193.372019][ T4260] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  193.603194][ T7222] lo speed is unknown, defaulting to 1000
[  193.641355][ T7225] loop0: detected capacity change from 0 to 512
[  193.786040][ T7225] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1102: casefold flag without casefold feature
[  193.865181][ T7225] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1102: couldn't read orphan inode 15 (err -117)
[  193.914759][ T7225] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  193.988603][ T4270] Bluetooth: hci5: unexpected cc 0x0c03 length: 249 > 1
[  193.998799][ T4270] Bluetooth: hci5: unexpected cc 0x1003 length: 249 > 9
[  194.007145][ T4270] Bluetooth: hci5: unexpected cc 0x1001 length: 249 > 9
[  194.034338][ T4270] Bluetooth: hci5: unexpected cc 0x0c23 length: 249 > 4
[  194.042319][ T4270] Bluetooth: hci5: unexpected cc 0x0c25 length: 249 > 3
[  194.049914][ T4270] Bluetooth: hci5: unexpected cc 0x0c38 length: 249 > 2
[  194.076612][ T1277] ieee802154 phy0 wpan0: encryption failed: -22
[  194.082963][ T1277] ieee802154 phy1 wpan1: encryption failed: -22
[  194.098226][ T7225] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  194.109423][ T7225] EXT4-fs (loop0): re-mounted. Quota mode: writeback.
[  194.230418][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  194.363657][ T7222] lo speed is unknown, defaulting to 1000
[  194.519472][ T7232] lo speed is unknown, defaulting to 1000
[  194.935607][ T7260] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1113'.
[  195.142422][ T7232] lo speed is unknown, defaulting to 1000
[  195.285217][ T7268] loop1: detected capacity change from 0 to 512
[  195.424527][ T4260] Bluetooth: hci2: command 0x0409 tx timeout
[  195.433593][ T7268] EXT4-fs error (device loop1): ext4_orphan_get:1400: inode #15: comm syz.1.1115: casefold flag without casefold feature
[  195.520586][ T7222] chnl_net:caif_netlink_parms(): no params data found
[  195.580101][ T7268] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.1115: couldn't read orphan inode 15 (err -117)
[  195.617940][ T7268] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  195.691568][ T7268] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  195.727892][ T7268] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  195.865528][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  196.144460][ T4260] Bluetooth: hci4: command 0x0406 tx timeout
[  196.150625][ T4260] Bluetooth: hci0: command 0x0406 tx timeout
[  196.150681][ T4268] Bluetooth: hci1: command 0x0406 tx timeout
[  196.157242][ T4270] Bluetooth: hci5: command 0x0409 tx timeout
[  196.662481][ T7316] loop0: detected capacity change from 0 to 2048
[  196.723587][ T7316] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  196.767192][ T7316] EXT4-fs (loop0): shut down requested (0)
[  196.832519][ T7317] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1130'.
[  196.853858][ T7222] bridge0: port 1(bridge_slave_0) entered blocking state
[  196.876651][ T7222] bridge0: port 1(bridge_slave_0) entered disabled state
[  196.897350][ T7222] device bridge_slave_0 entered promiscuous mode
[  196.912156][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  196.950988][ T7232] chnl_net:caif_netlink_parms(): no params data found
[  197.009470][ T7222] bridge0: port 2(bridge_slave_1) entered blocking state
[  197.017136][ T7222] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.050397][ T7222] device bridge_slave_1 entered promiscuous mode
[  197.260299][ T7222] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  197.357747][ T7222] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  197.439854][ T4492] device hsr_slave_0 left promiscuous mode
[  197.455037][ T4492] device hsr_slave_1 left promiscuous mode
[  197.471352][ T4492] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  197.479477][ T4492] batman_adv: batadv0: Removing interface: batadv_slave_0
[  197.509670][ T4270] Bluetooth: hci2: command 0x041b tx timeout
[  197.519813][ T4492] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  197.527620][ T4492] batman_adv: batadv0: Removing interface: batadv_slave_1
[  197.545119][ T4492] device bridge_slave_1 left promiscuous mode
[  197.553236][ T4492] bridge0: port 2(bridge_slave_1) entered disabled state
[  197.595990][ T4492] device bridge_slave_0 left promiscuous mode
[  197.602575][ T4492] bridge0: port 1(bridge_slave_0) entered disabled state
[  197.717685][ T4492] device veth1_macvtap left promiscuous mode
[  197.727887][ T4492] device veth0_macvtap left promiscuous mode
[  197.767340][ T4492] device veth1_vlan left promiscuous mode
[  197.773535][ T4492] device veth0_vlan left promiscuous mode
[  198.232518][ T4270] Bluetooth: hci5: command 0x041b tx timeout
[  198.655987][ T4492] team0 (unregistering): Port device team_slave_1 removed
[  198.733391][ T4492] team0 (unregistering): Port device team_slave_0 removed
[  198.811172][ T4492] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  198.898406][ T4492] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  199.512182][   T26] kauditd_printk_skb: 5 callbacks suppressed
[  199.512199][   T26] audit: type=1326 audit(1734839556.652:1230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7395 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  199.541495][   T26] audit: type=1326 audit(1734839556.662:1231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7395 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  199.567496][ T4492] bond0 (unregistering): Released all slaves
[  199.570552][   T26] audit: type=1326 audit(1734839556.662:1232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7395 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=441 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  199.596324][ T4260] Bluetooth: hci2: command 0x040f tx timeout
[  199.617000][   T26] audit: type=1326 audit(1734839556.662:1233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7395 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  199.639999][   T26] audit: type=1326 audit(1734839556.682:1234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7395 comm="syz.3.1160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f03c5f85d29 code=0x7ffc0000
[  199.793106][ T7232] bridge0: port 1(bridge_slave_0) entered blocking state
[  199.814537][ T7232] bridge0: port 1(bridge_slave_0) entered disabled state
[  199.822828][ T7232] device bridge_slave_0 entered promiscuous mode
[  199.847816][ T7222] team0: Port device team_slave_0 added
[  199.883029][ T7232] bridge0: port 2(bridge_slave_1) entered blocking state
[  199.912981][ T7232] bridge0: port 2(bridge_slave_1) entered disabled state
[  199.933776][ T7232] device bridge_slave_1 entered promiscuous mode
[  199.974911][ T7222] team0: Port device team_slave_1 added
[  199.981022][ T7405] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1164'.
[  200.196238][ T7232] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  200.244751][ T7232] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  200.302228][ T7222] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.304447][ T4260] Bluetooth: hci5: command 0x040f tx timeout
[  200.312830][ T7222] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.362267][ T7222] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.417529][ T7232] team0: Port device team_slave_0 added
[  200.478360][ T7222] batman_adv: batadv0: Adding interface: batadv_slave_1
[  200.488244][ T7222] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.584393][ T7222] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  200.620778][ T7232] team0: Port device team_slave_1 added
[  200.669627][   T26] audit: type=1326 audit(1734839557.812:1235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7426 comm="syz.0.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  200.755997][ T7427] syz.0.1170[7427] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  200.756106][ T7427] syz.0.1170[7427] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  200.780428][   T26] audit: type=1326 audit(1734839557.852:1236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7426 comm="syz.0.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  200.785169][ T7232] batman_adv: batadv0: Adding interface: batadv_slave_0
[  200.801881][   T26] audit: type=1326 audit(1734839557.852:1237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7426 comm="syz.0.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  200.881040][ T7433] loop0: detected capacity change from 0 to 2048
[  200.895146][ T7232] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  200.940407][   T26] audit: type=1326 audit(1734839557.852:1238): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7426 comm="syz.0.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  200.981037][ T7232] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  200.990998][   T26] audit: type=1326 audit(1734839557.852:1239): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7426 comm="syz.0.1170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  201.023678][ T7433] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none.
[  201.064102][ T7232] batman_adv: batadv0: Adding interface: batadv_slave_1
[  201.103597][ T7232] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  201.160922][ T7427] EXT4-fs: journaled quota format not specified
[  201.215817][ T7232] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  201.263252][ T7222] device hsr_slave_0 entered promiscuous mode
[  201.299519][ T7222] device hsr_slave_1 entered promiscuous mode
[  201.317498][ T4251] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  201.336250][ T7222] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  201.347060][ T7222] Cannot create hsr debugfs directory
[  201.418989][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  201.581049][ T7450] loop0: detected capacity change from 0 to 512
[  201.586049][ T7232] device hsr_slave_0 entered promiscuous mode
[  201.597322][ T7232] device hsr_slave_1 entered promiscuous mode
[  201.613285][ T7232] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  201.652492][ T7450] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1175: casefold flag without casefold feature
[  201.674314][ T4260] Bluetooth: hci2: command 0x0419 tx timeout
[  201.690742][ T7232] Cannot create hsr debugfs directory
[  201.736242][ T7450] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1175: couldn't read orphan inode 15 (err -117)
[  201.831494][ T7450] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  201.899711][ T4492] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.978018][ T7450] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  202.037672][ T7450] EXT4-fs (loop0): re-mounted. Quota mode: writeback.
[  202.072394][ T4492] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.151739][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  202.192837][ T4492] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.341894][ T4492] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.384601][ T4260] Bluetooth: hci5: command 0x0419 tx timeout
[  202.536379][ T7474] platform regulatory.0: Direct firmware load for regulatory.db failed with error -2
[  202.564578][ T7474] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  202.690073][ T7477] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1180'.
[  203.406888][ T7222] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  203.580570][ T7222] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  203.608249][ T4492] tipc: Disabling bearer <udp:syz1>
[  203.620590][ T4492] tipc: Left network mode
[  203.628833][ T7222] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  203.714057][ T7222] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  204.007668][ T7232] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  204.115515][ T7232] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  204.170671][ T7232] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  204.217553][ T7232] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  204.396747][ T7222] 8021q: adding VLAN 0 to HW filter on device bond0
[  204.523927][ T7222] 8021q: adding VLAN 0 to HW filter on device team0
[  204.773864][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  204.792537][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  204.802326][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  204.816793][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  204.839593][ T4376] bridge0: port 1(bridge_slave_0) entered blocking state
[  204.846820][ T4376] bridge0: port 1(bridge_slave_0) entered forwarding state
[  204.879409][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  204.900093][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  204.915853][ T4376] bridge0: port 2(bridge_slave_1) entered blocking state
[  204.923036][ T4376] bridge0: port 2(bridge_slave_1) entered forwarding state
[  204.951307][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  204.965367][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  204.999323][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  205.023389][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  205.050569][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  205.255339][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  205.265159][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  205.305756][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  205.315169][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  205.343705][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  205.421560][ T7494] loop0: detected capacity change from 0 to 512
[  205.460297][ T7222] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  205.472736][ T7222] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  205.482434][ T7494] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #15: comm syz.0.1186: casefold flag without casefold feature
[  205.487088][ T7462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  205.510781][ T7462] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  205.520007][ T7494] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1186: couldn't read orphan inode 15 (err -117)
[  205.545275][ T7494] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  205.635747][ T7494] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  205.651604][ T7494] EXT4-fs (loop0): re-mounted. Quota mode: writeback.
[  205.745216][ T7232] 8021q: adding VLAN 0 to HW filter on device bond0
[  205.803668][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  205.834438][ T7232] 8021q: adding VLAN 0 to HW filter on device team0
[  205.841955][ T4361] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  205.850340][ T4361] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  205.975153][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  205.994004][    C1] vxcan1: j1939_tp_rxtimer: 0xffff88802a1b5400: rx timeout, send abort
[  205.994661][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  206.006190][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff88802a1b5400: 0x3f000: (3) A timeout occurred and this is the connection abort to close the session.
[  206.024945][    T9] bridge0: port 1(bridge_slave_0) entered blocking state
[  206.032800][    T9] bridge0: port 1(bridge_slave_0) entered forwarding state
[  206.082175][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  206.129072][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  206.174943][    T9] bridge0: port 2(bridge_slave_1) entered blocking state
[  206.182109][    T9] bridge0: port 2(bridge_slave_1) entered forwarding state
[  206.221983][ T7504] loop1: detected capacity change from 0 to 512
[  206.257940][ T7504] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  206.326574][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  206.353700][ T7504] EXT4-fs (loop1): 1 truncate cleaned up
[  206.359847][ T7504] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  206.360079][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  206.461014][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  206.467587][    T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  206.731417][ T4322] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  206.747531][ T4322] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  206.769332][ T4322] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  206.811210][ T4322] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  206.831030][ T4322] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  206.878807][ T7222] 8021q: adding VLAN 0 to HW filter on device batadv0
[  206.888175][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  206.928526][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  206.962324][ T7232] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  207.002127][ T7232] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  207.118356][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  207.160650][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  207.240669][ T7522] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1193'.
[  207.441100][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  207.654702][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  207.825313][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  208.639453][ T7232] 8021q: adding VLAN 0 to HW filter on device batadv0
[  208.874551][ T7462] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  208.882110][ T7462] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  209.333491][ T7542] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1198'.
[  209.450681][ T7470] Set syz1 is full, maxelem 65536 reached
[  209.517089][ T7462] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  209.628479][ T7462] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  209.638915][   T26] kauditd_printk_skb: 37 callbacks suppressed
[  209.638983][   T26] audit: type=1326 audit(1734839566.782:1277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7543 comm="syz.1.1199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  209.838463][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  209.877167][   T38] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  209.887905][   T26] audit: type=1326 audit(1734839566.782:1278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7543 comm="syz.1.1199" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc2a7585d29 code=0x7ffc0000
[  209.930523][ T7222] device veth0_vlan entered promiscuous mode
[  209.956099][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  209.974886][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  210.035722][ T7222] device veth1_vlan entered promiscuous mode
[  210.077627][ T7551] lo speed is unknown, defaulting to 1000
[  210.116905][ T7556] netlink: 'syz.0.1200': attribute type 21 has an invalid length.
[  210.139609][ T7556] netlink: 'syz.0.1200': attribute type 1 has an invalid length.
[  210.209014][ T7556] netlink: 144 bytes leftover after parsing attributes in process `syz.0.1200'.
[  210.243202][ T4492] device hsr_slave_0 left promiscuous mode
[  210.263735][ T4492] device hsr_slave_1 left promiscuous mode
[  210.295607][ T4492] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  210.313601][ T4492] batman_adv: batadv0: Removing interface: batadv_slave_0
[  210.323409][ T4492] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  210.338536][ T4492] batman_adv: batadv0: Removing interface: batadv_slave_1
[  210.349218][ T4492] device bridge_slave_1 left promiscuous mode
[  210.361503][ T4492] bridge0: port 2(bridge_slave_1) entered disabled state
[  210.370912][ T4492] device bridge_slave_0 left promiscuous mode
[  210.379871][ T4492] bridge0: port 1(bridge_slave_0) entered disabled state
[  210.412936][ T4492] device veth1_macvtap left promiscuous mode
[  210.419828][ T4492] device veth1_vlan left promiscuous mode
[  210.426484][ T4492] device veth0_vlan left promiscuous mode
[  210.551739][ T7566] loop1: detected capacity change from 0 to 512
[  210.600365][ T7566] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  210.617981][ T7566] ext4 filesystem being mounted at /281/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  210.706848][ T7566] EXT4-fs (loop1): re-mounted. Quota mode: writeback.
[  210.729379][ T7566] Process accounting resumed
[  210.795462][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  211.122477][ T4492] team0 (unregistering): Port device team_slave_1 removed
[  211.169662][ T4492] team0 (unregistering): Port device team_slave_0 removed
[  211.212338][ T4492] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  211.261881][ T4492] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  211.717827][ T4492] bond0 (unregistering): Released all slaves
[  211.806331][ T7222] device veth0_macvtap entered promiscuous mode
[  211.829826][ T7551] lo speed is unknown, defaulting to 1000
[  211.842343][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  211.865336][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  211.887356][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  211.914014][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  211.946777][ T7222] device veth1_macvtap entered promiscuous mode
[  211.972249][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  212.052033][ T7222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  212.084367][ T7222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.102770][ T7222] batman_adv: batadv0: Interface activated: batadv_slave_0
[  212.147899][ T7232] device veth0_vlan entered promiscuous mode
[  212.171262][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  212.181670][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  212.191674][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  212.200631][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  212.210701][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  212.220361][ T4376] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  212.291804][ T7222] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.319845][ T7222] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.344127][ T7222] batman_adv: batadv0: Interface activated: batadv_slave_1
[  212.374026][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  212.389615][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  212.412859][ T7222] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  212.433435][ T7222] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  212.445064][ T7222] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  212.453998][ T7222] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  212.492041][ T7232] device veth1_vlan entered promiscuous mode
[  212.609367][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  212.626924][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  212.641844][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  212.653286][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  212.681159][ T7232] device veth0_macvtap entered promiscuous mode
[  212.713830][ T7232] device veth1_macvtap entered promiscuous mode
[  212.770388][ T7232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  212.783115][ T7232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.798288][ T7232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  212.811082][ T7232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.827175][ T7232] batman_adv: batadv0: Interface activated: batadv_slave_0
[  212.851388][ T7232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.862640][ T7455] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  212.883714][ T7232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.884295][ T7455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  212.894756][ T7232] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  212.915638][ T7232] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  212.931874][ T7232] batman_adv: batadv0: Interface activated: batadv_slave_1
[  212.941847][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  212.955487][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  212.964018][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  212.993501][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  213.013164][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  213.047141][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  213.065427][ T7461] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  213.155676][ T7232] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  213.174619][ T7232] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  213.193359][ T7232] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  213.203124][ T7232] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  213.230724][ T7463] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.270597][ T7463] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.325005][ T7455] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  213.534101][ T7455] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.558104][ T7455] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.588935][ T7463] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[  213.636146][ T7455] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  213.652870][ T7594] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1092'.
[  213.656114][ T7455] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  213.719462][ T4492] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  214.082965][ T7606] netlink: 'syz.0.1220': attribute type 1 has an invalid length.
[  214.329712][   T26] audit: type=1326 audit(1734839571.472:1279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.393090][ T7617] netlink: 76 bytes leftover after parsing attributes in process `syz.0.1226'.
[  214.424711][   T26] audit: type=1326 audit(1734839571.472:1280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.481409][ T7614] loop6: detected capacity change from 0 to 8192
[  214.494292][   T26] audit: type=1326 audit(1734839571.472:1281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.623928][   T26] audit: type=1326 audit(1734839571.472:1282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.653885][ T7621] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1228'.
[  214.665772][ T7622] syz.6.1225: attempt to access beyond end of device
[  214.665772][ T7622] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  214.673467][   T26] audit: type=1326 audit(1734839571.472:1283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.703456][   T26] audit: type=1326 audit(1734839571.472:1284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.752601][   T26] audit: type=1326 audit(1734839571.472:1285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.776180][ T7622] Buffer I/O error on dev loop6, logical block 57847, async page read
[  214.810319][   T26] audit: type=1326 audit(1734839571.482:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.835494][ T7622] syz.6.1225: attempt to access beyond end of device
[  214.835494][ T7622] loop6: rw=0, sector=57847, nr_sectors = 1 limit=8192
[  214.879900][   T26] audit: type=1326 audit(1734839571.482:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  214.914482][ T7622] Buffer I/O error on dev loop6, logical block 57847, async page read
[  214.984631][   T26] audit: type=1326 audit(1734839571.482:1288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  215.064454][   T26] audit: type=1326 audit(1734839571.502:1289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  215.133358][   T26] audit: type=1326 audit(1734839571.512:1290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  215.248208][   T26] audit: type=1326 audit(1734839571.512:1291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  215.333494][   T26] audit: type=1326 audit(1734839571.512:1292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7615 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6fdb385d29 code=0x7ffc0000
[  215.471318][ T7642] loop0: detected capacity change from 0 to 512
[  215.584588][ T7642] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  215.585595][ T7646] syz.6.1238[7646] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.593662][ T7642] ext4 filesystem being mounted at /250/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  215.620678][ T7646] syz.6.1238[7646] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  215.700013][ T7646] loop6: detected capacity change from 0 to 2048
[  215.863395][ T7646] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none.
[  215.868879][ T7642] Process accounting resumed
[  215.892039][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  215.950688][ T7646] EXT4-fs: Ignoring removed bh option
[  215.996497][ T7646] EXT4-fs (loop6): re-mounted. Quota mode: writeback.
[  216.047076][ T7655] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1240'.
[  216.194153][ T7657] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1241'.
[  216.537307][ T7232] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters
[  216.619315][ T7232] EXT4-fs (loop6): unmounting filesystem.
[  217.340973][ T7578] Set syz1 is full, maxelem 65536 reached
[  217.621149][ T7673] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1247'.
[  217.693169][ T7671] netlink: 'syz.3.1248': attribute type 27 has an invalid length.
[  217.747149][ T7671] infiniband syz2: set down
[  217.774775][ T7675] loop1: detected capacity change from 0 to 1024
[  217.805172][ T7675] EXT4-fs: Ignoring removed nobh option
[  217.810799][ T7675] EXT4-fs: Ignoring removed nomblk_io_submit option
[  217.875546][ T7675] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  217.903447][ T7675] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  217.962219][ T7675] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback.
[  218.043384][ T7675] ext4: Unknown parameter 'ÿÿÿÿÿÿÿÿÿÿ0xffffffffffffffff'
[  218.271427][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  218.678967][ T7671] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.689575][ T7671] bridge0: port 1(bridge_slave_0) entered disabled state
[  219.686349][ T7671] device veth0_to_team left promiscuous mode
[  219.838395][ T7671] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  219.955266][ T7671] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  220.499248][ T7650] Set syz1 is full, maxelem 65536 reached
[  220.641600][ T7710] loop5: detected capacity change from 0 to 128
[  220.712327][ T7671] netdevsim netdevsim3 eth0: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.721205][ T7671] netdevsim netdevsim3 eth1: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.729740][ T7671] netdevsim netdevsim3 eth2: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.731312][ T7710] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none.
[  220.741717][ T7671] netdevsim netdevsim3 eth3: unset [1, 0] type 2 family 0 port 6081 - 0
[  220.747810][ T7710] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.869080][ T7222] EXT4-fs (loop5): unmounting filesystem.
[  220.923819][ T4331] lo speed is unknown, defaulting to 1000
[  220.940045][ T7702] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1260'.
[  220.941166][ T4331] lo speed is unknown, defaulting to 1000
[  220.974398][ T7708] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1262'.
[  221.028927][ T7671] syz.3.1248 (7671) used greatest stack depth: 18744 bytes left
[  221.423601][ T7731] loop1: detected capacity change from 0 to 512
[  221.428803][ T7734] loop0: detected capacity change from 0 to 512
[  221.480045][ T7731] EXT4-fs error (device loop1): ext4_orphan_get:1426: comm syz.1.1271: bad orphan inode 13
[  221.509235][ T7731] ext4_test_bit(bit=12, block=4) = 1
[  221.519543][ T7731] is_bad_inode(inode)=0
[  221.542240][ T7734] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback.
[  221.551967][ T7731] NEXT_ORPHAN(inode)=0
[  221.559966][ T7731] max_ino=32
[  221.570137][ T7734] ext4 filesystem being mounted at /257/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  221.604841][ T7731] i_nlink=1
[  221.611483][ T7731] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none.
[  221.642067][ T7731] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.1271: Unrecognised inode hash code 20
[  221.660205][ T7734] 
[  221.662673][ T7734] ======================================================
[  221.666471][ T7736] infiniband syz!: set down
[  221.669693][ T7734] WARNING: possible circular locking dependency detected
[  221.669705][ T7734] 6.1.121-syzkaller #0 Tainted: G        W         
[  221.687880][ T7734] ------------------------------------------------------
[  221.691639][ T7736] infiniband syz!: added team_slave_0
[  221.694904][ T7734] syz.0.1273/7734 is trying to acquire lock:
[  221.694924][ T7734] ffff888055dbaaa8 (&ei->i_data_sem/2){++++}-{3:3}, at: ext4_map_blocks+0x955/0x1cb0
[  221.695007][ T7734] 
[  221.695007][ T7734] but task is already holding lock:
[  221.695014][ T7734] ffff888078fe8208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x9b/0x190
[  221.695072][ T7734] 
[  221.695072][ T7734] which lock already depends on the new lock.
[  221.695072][ T7734] 
[  221.711297][ T7731] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.1271: Corrupt directory, running e2fsck is recommended
[  221.715862][ T7734] 
[  221.715862][ T7734] the existing dependency chain (in reverse order) is:
[  221.715874][ T7734] 
[  221.715874][ T7734] -> #2 (&s->s_dquot.dqio_sem){++++}-{3:3}:
[  221.715909][ T7734]        lock_acquire+0x1f8/0x5a0
[  221.715944][ T7734]        down_read+0xad/0xa30
[  221.715966][ T7734]        v2_read_dquot+0x4a/0x100
[  221.715994][ T7734]        dquot_acquire+0x188/0x680
[  221.730460][ T7731] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.1271: Unrecognised inode hash code 20
[  221.732820][ T7734]        ext4_acquire_dquot+0x2eb/0x4a0
[  221.732857][ T7734]        dqget+0x762/0xe90
[  221.771778][ T7736] RDS/IB: syz!: added
[  221.773271][ T7734]        __dquot_initialize+0x45e/0xea0
[  221.778625][ T7736] smc: adding ib device syz! with port count 1
[  221.782976][ T7734]        ext4_process_orphan+0x57/0x2d0
[  221.783006][ T7734]        ext4_orphan_cleanup+0xb70/0x1400
[  221.783028][ T7734]        ext4_fill_super+0x83f6/0x8b50
[  221.783055][ T7734]        get_tree_bdev+0x3fe/0x620
[  221.783087][ T7734]        vfs_get_tree+0x88/0x270
[  221.783113][ T7734]        do_new_mount+0x2ba/0xb40
[  221.783139][ T7734]        __se_sys_mount+0x2d5/0x3c0
[  221.783166][ T7734]        do_syscall_64+0x3b/0xb0
[  221.783196][ T7734]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  221.783229][ T7734] 
[  221.783229][ T7734] -> #1 (&dquot->dq_lock){+.+.}-{3:3}:
[  221.783264][ T7734]        lock_acquire+0x1f8/0x5a0
[  221.783295][ T7734]        __mutex_lock+0x132/0xd80
[  221.783314][ T7734]        dquot_commit+0x57/0x510
[  221.783341][ T7734]        ext4_write_dquot+0x1fd/0x360
[  221.783371][ T7734]        mark_all_dquot_dirty+0xf7/0x400
[  221.790404][ T7731] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.1271: Corrupt directory, running e2fsck is recommended
[  221.793502][ T7734]        __dquot_alloc_space+0xb68/0x10e0
[  221.805507][ T7736] smc:    ib device syz! port 1 has pnetid 
[  221.810404][ T7734]        ext4_mb_new_blocks+0x1302/0x4b80
[  221.810430][ T7734]        ext4_ext_map_blocks+0x1c1c/0x7ab0
[  221.815574][ T7731] EXT4-fs error (device loop1): ext4_find_dest_de:2115: inode #2: block 13: comm syz.1.1271: bad entry in directory: rec_len % 4 != 0 - offset=108, inode=4294901777, rec_len=65535, size=1024 fake=0
[  221.818838][ T7734]        ext4_map_blocks+0xa2b/0x1cb0
[  221.973357][ T7734]        _ext4_get_block+0x23b/0x660
[  221.978654][ T7734]        ext4_get_block_unwritten+0x2b/0x100
[  221.984641][ T7734]        ext4_block_write_begin+0x631/0x1400
[  221.990661][ T7734]        ext4_write_begin+0x638/0xf80
[  221.996074][ T7734]        ext4_da_write_begin+0x30a/0x9c0
[  222.001720][ T7734]        generic_perform_write+0x2fc/0x5e0
[  222.007556][ T7734]        ext4_buffered_write_iter+0x122/0x3a0
[  222.013622][ T7734]        ext4_file_write_iter+0x1d7/0x1930
[  222.019450][ T7734]        vfs_write+0x857/0xbc0
[  222.024258][ T7734]        __x64_sys_pwrite64+0x1a6/0x230
[  222.029833][ T7734]        do_syscall_64+0x3b/0xb0
[  222.034781][ T7734]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  222.041213][ T7734] 
[  222.041213][ T7734] -> #0 (&ei->i_data_sem/2){++++}-{3:3}:
[  222.049045][ T7734]        validate_chain+0x1661/0x5950
[  222.054427][ T7734]        __lock_acquire+0x125b/0x1f80
[  222.059832][ T7734]        lock_acquire+0x1f8/0x5a0
[  222.064961][ T7734]        down_write+0x36/0x60
[  222.069637][ T7734]        ext4_map_blocks+0x955/0x1cb0
[  222.075011][ T7734]        ext4_getblk+0x1eb/0x7c0
[  222.079976][ T7734]        ext4_bread+0x2a/0x170
[  222.084756][ T7734]        ext4_quota_write+0x21e/0x570
[  222.090163][ T7734]        find_free_dqentry+0x6b2/0xc80
[  222.095645][ T7734]        do_insert_tree+0x88b/0x1440
[  222.100949][ T7734]        do_insert_tree+0xb51/0x1440
[  222.106255][ T7734]        do_insert_tree+0xb51/0x1440
[  222.111547][ T7734]        do_insert_tree+0xb51/0x1440
[  222.116838][ T7734]        qtree_write_dquot+0x483/0x5a0
[  222.122316][ T7734]        v2_write_dquot+0x11c/0x190
[  222.127529][ T7734]        dquot_acquire+0x34d/0x680
[  222.132661][ T7734]        ext4_acquire_dquot+0x2eb/0x4a0
[  222.138214][ T7734]        dqget+0x762/0xe90
[  222.142648][ T7734]        __dquot_initialize+0x45e/0xea0
[  222.148205][ T7734]        ext4_file_open+0x2cf/0x710
[  222.153414][ T7734]        do_dentry_open+0x7f9/0x10f0
[  222.158725][ T7734]        path_openat+0x2644/0x2e60
[  222.163852][ T7734]        do_filp_open+0x230/0x480
[  222.168895][ T7734]        do_sys_openat2+0x13b/0x4f0
[  222.174100][ T7734]        __x64_sys_open+0x221/0x270
[  222.179304][ T7734]        do_syscall_64+0x3b/0xb0
[  222.184298][ T7734]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  222.190786][ T7734] 
[  222.190786][ T7734] other info that might help us debug this:
[  222.190786][ T7734] 
[  222.201020][ T7734] Chain exists of:
[  222.201020][ T7734]   &ei->i_data_sem/2 --> &dquot->dq_lock --> &s->s_dquot.dqio_sem
[  222.201020][ T7734] 
[  222.214681][ T7734]  Possible unsafe locking scenario:
[  222.214681][ T7734] 
[  222.222158][ T7734]        CPU0                    CPU1
[  222.227520][ T7734]        ----                    ----
[  222.232881][ T7734]   lock(&s->s_dquot.dqio_sem);
[  222.237776][ T7734]                                lock(&dquot->dq_lock);
[  222.244717][ T7734]                                lock(&s->s_dquot.dqio_sem);
[  222.252100][ T7734]   lock(&ei->i_data_sem/2);
[  222.256723][ T7734] 
[  222.256723][ T7734]  *** DEADLOCK ***
[  222.256723][ T7734] 
[  222.264864][ T7734] 2 locks held by syz.0.1273/7734:
[  222.269978][ T7734]  #0: ffff888055c25228 (&dquot->dq_lock){+.+.}-{3:3}, at: dquot_acquire+0x64/0x680
[  222.279443][ T7734]  #1: ffff888078fe8208 (&s->s_dquot.dqio_sem){++++}-{3:3}, at: v2_write_dquot+0x9b/0x190
[  222.289392][ T7734] 
[  222.289392][ T7734] stack backtrace:
[  222.295318][ T7734] CPU: 0 PID: 7734 Comm: syz.0.1273 Tainted: G        W          6.1.121-syzkaller #0
[  222.304895][ T7734] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[  222.314979][ T7734] Call Trace:
[  222.318295][ T7734]  <TASK>
[  222.321245][ T7734]  dump_stack_lvl+0x1e3/0x2cb
[  222.325971][ T7734]  ? nf_tcp_handle_invalid+0x642/0x642
[  222.331593][ T7734]  ? print_circular_bug+0x12b/0x1a0
[  222.336812][ T7734]  check_noncircular+0x2fa/0x3b0
[  222.341766][ T7734]  ? add_chain_block+0x850/0x850
[  222.346796][ T7734]  ? lockdep_lock+0x11f/0x2a0
[  222.351488][ T7734]  ? validate_chain+0x112/0x5950
[  222.356430][ T7734]  ? _find_first_zero_bit+0xd0/0x100
[  222.361734][ T7734]  validate_chain+0x1661/0x5950
[  222.366597][ T7734]  ? validate_chain+0x112/0x5950
[  222.371541][ T7734]  ? reacquire_held_locks+0x660/0x660
[  222.376916][ T7734]  ? reacquire_held_locks+0x660/0x660
[  222.382291][ T7734]  ? mark_lock+0x9a/0x340
[  222.386639][ T7734]  ? __lock_acquire+0x125b/0x1f80
[  222.391680][ T7734]  ? mark_lock+0x9a/0x340
[  222.396026][ T7734]  ? mark_lock+0x9a/0x340
[  222.400370][ T7734]  __lock_acquire+0x125b/0x1f80
[  222.405243][ T7734]  lock_acquire+0x1f8/0x5a0
[  222.409762][ T7734]  ? ext4_map_blocks+0x955/0x1cb0
[  222.414806][ T7734]  ? read_lock_is_recursive+0x10/0x10
[  222.420192][ T7734]  ? __might_sleep+0xb0/0xb0
[  222.424786][ T7734]  ? percpu_counter_add_batch+0x142/0x160
[  222.430514][ T7734]  ? rcu_is_watching+0x11/0xb0
[  222.435283][ T7734]  ? ext4_es_lookup_extent+0x44a/0xb70
[  222.440759][ T7734]  down_write+0x36/0x60
[  222.444923][ T7734]  ? ext4_map_blocks+0x955/0x1cb0
[  222.449961][ T7734]  ext4_map_blocks+0x955/0x1cb0
[  222.454830][ T7734]  ? ext4_issue_zeroout+0x250/0x250
[  222.460043][ T7734]  ? kasan_set_track+0x4b/0x70
[  222.464822][ T7734]  ? find_free_dqentry+0x52/0xc80
[  222.469860][ T7734]  ? do_insert_tree+0x88b/0x1440
[  222.474810][ T7734]  ? do_insert_tree+0xb51/0x1440
[  222.479762][ T7734]  ? ext4_issue_zeroout+0x250/0x250
[  222.484972][ T7734]  ext4_getblk+0x1eb/0x7c0
[  222.489407][ T7734]  ? do_sys_openat2+0x13b/0x4f0
[  222.494271][ T7734]  ? ext4_get_block_unwritten+0x100/0x100
[  222.500027][ T7734]  ? ext4_getblk+0x304/0x7c0
[  222.504654][ T7734]  ? ext4_get_block_unwritten+0x100/0x100
[  222.510385][ T7734]  ext4_bread+0x2a/0x170
[  222.514637][ T7734]  ext4_quota_write+0x21e/0x570
[  222.519630][ T7734]  ? ext4_quota_read+0x2c0/0x2c0
[  222.524582][ T7734]  ? memset+0x1f/0x40
[  222.528581][ T7734]  ? ext4_quota_read+0x256/0x2c0
[  222.533536][ T7734]  ? check_dquot_block_header+0x208/0x300
[  222.539283][ T7734]  ? ext4_quota_read+0x2c0/0x2c0
[  222.544243][ T7734]  find_free_dqentry+0x6b2/0xc80
[  222.549204][ T7734]  do_insert_tree+0x88b/0x1440
[  222.553998][ T7734]  ? ext4_quota_read+0x1ed/0x2c0
[  222.558951][ T7734]  ? find_next_id+0x850/0x850
[  222.563646][ T7734]  ? ext4_quota_read+0x256/0x2c0
[  222.568622][ T7734]  do_insert_tree+0xb51/0x1440
[  222.573407][ T7734]  ? find_next_id+0x850/0x850
[  222.578097][ T7734]  ? ext4_quota_read+0x256/0x2c0
[  222.583055][ T7734]  do_insert_tree+0xb51/0x1440
[  222.587843][ T7734]  ? find_next_id+0x850/0x850
[  222.592538][ T7734]  ? ext4_quota_read+0x256/0x2c0
[  222.597488][ T7734]  do_insert_tree+0xb51/0x1440
[  222.602272][ T7734]  ? find_next_id+0x850/0x850
[  222.606994][ T7734]  ? rcu_is_watching+0x11/0xb0
[  222.611762][ T7734]  ? qtree_write_dquot+0x2c3/0x5a0
[  222.616892][ T7734]  qtree_write_dquot+0x483/0x5a0
[  222.621843][ T7734]  ? qtree_entry_unused+0xe0/0xe0
[  222.626887][ T7734]  v2_write_dquot+0x11c/0x190
[  222.631576][ T7734]  dquot_acquire+0x34d/0x680
[  222.636182][ T7734]  ext4_acquire_dquot+0x2eb/0x4a0
[  222.641281][ T7734]  dqget+0x762/0xe90
[  222.645190][ T7734]  __dquot_initialize+0x45e/0xea0
[  222.650236][ T7734]  ? dquot_initialize+0x20/0x20
[  222.655118][ T7734]  ? fsverity_file_open+0xad/0x350
[  222.660238][ T7734]  ? fsverity_get_descriptor+0x430/0x430
[  222.665875][ T7734]  ? dput+0x37/0x1d0
[  222.669777][ T7734]  ? generic_file_open+0x94/0xd0
[  222.674723][ T7734]  ext4_file_open+0x2cf/0x710
[  222.679416][ T7734]  ? ext4_file_mmap+0x360/0x360
[  222.684275][ T7734]  ? __mnt_want_write+0x64/0x2a0
[  222.689229][ T7734]  ? fsnotify_perm+0x439/0x590
[  222.694000][ T7734]  ? ext4_file_mmap+0x360/0x360
[  222.698853][ T7734]  do_dentry_open+0x7f9/0x10f0
[  222.703637][ T7734]  path_openat+0x2644/0x2e60
[  222.708248][ T7734]  ? do_filp_open+0x480/0x480
[  222.712942][ T7734]  do_filp_open+0x230/0x480
[  222.717475][ T7734]  ? vfs_tmpfile+0x4a0/0x4a0
[  222.722105][ T7734]  ? _raw_spin_unlock+0x24/0x40
[  222.727010][ T7734]  ? alloc_fd+0x5a0/0x640
[  222.731353][ T7734]  do_sys_openat2+0x13b/0x4f0
[  222.736043][ T7734]  ? do_sys_open+0x220/0x220
[  222.740730][ T7734]  ? blkcg_maybe_throttle_current+0x1ac/0xa30
[  222.746806][ T7734]  __x64_sys_open+0x221/0x270
[  222.751493][ T7734]  ? do_sys_openat2+0x4f0/0x4f0
[  222.756371][ T7734]  ? syscall_enter_from_user_mode+0x2e/0x230
[  222.762526][ T7734]  ? lockdep_hardirqs_on+0x94/0x130
[  222.767747][ T7734]  ? syscall_enter_from_user_mode+0x2e/0x230
[  222.773736][ T7734]  do_syscall_64+0x3b/0xb0
[  222.778162][ T7734]  ? clear_bhb_loop+0x45/0xa0
[  222.782843][ T7734]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  222.788764][ T7734] RIP: 0033:0x7f6fdb385d29
[  222.793199][ T7734] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  222.812818][ T7734] RSP: 002b:00007f6fdc16c038 EFLAGS: 00000246 ORIG_RAX: 0000000000000002
[  222.821239][ T7734] RAX: ffffffffffffffda RBX: 00007f6fdb575fa0 RCX: 00007f6fdb385d29
[  222.829213][ T7734] RDX: 0000000000000000 RSI: 0000000000145142 RDI: 0000000020000240
[  222.837192][ T7734] RBP: 00007f6fdb401aa8 R08: 0000000000000000 R09: 0000000000000000
[  222.845177][ T7734] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  222.853147][ T7734] R13: 0000000000000000 R14: 00007f6fdb575fa0 R15: 00007fffbd90e148
[  222.861216][ T7734]  </TASK>
[  222.869096][ T7750] netlink: 20 bytes leftover after parsing attributes in process `syz.6.1277'.
[  222.893345][ T4249] EXT4-fs (loop1): unmounting filesystem.
[  222.961622][   T26] kauditd_printk_skb: 133 callbacks suppressed
[  222.961642][   T26] audit: type=1800 audit(1734839580.102:1426): pid=7734 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1273" name="file1" dev="loop0" ino=15 res=0 errno=0
[  223.003334][ T7752] netlink: 'syz.1.1278': attribute type 27 has an invalid length.
[  223.014033][ T4251] EXT4-fs (loop0): unmounting filesystem.
[  223.181488][ T7752] bridge0: port 2(bridge_slave_1) entered disabled state
[  223.189077][ T7752] bridge0: port 1(bridge_slave_0) entered disabled state
[  224.033261][ T7752] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  224.042770][ T7752] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  224.052109][ T7752] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  224.061234][ T7752] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0