last executing test programs:

9m26.890326254s ago: executing program 2 (id=129):
r0 = socket$nl_route(0x10, 0x3, 0x0)
unshare(0x2040400)
fcntl$setpipe(r0, 0x407, 0x3)

9m26.02939052s ago: executing program 2 (id=134):
r0 = socket$nl_route(0x10, 0x3, 0x0)
getsockopt$sock_cred(r0, 0x1, 0x11, 0x0, &(0x7f0000000040))
setreuid(0x0, 0x0)
syz_mount_image$erofs(&(0x7f00000003c0), &(0x7f0000000880)='./file0\x00', 0x8000c6, &(0x7f0000000240)=ANY=[], 0x0, 0x17d, &(0x7f0000001ac0)="$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")
mkdirat(0xffffffffffffff9c, &(0x7f0000000840)='./bus\x00', 0x110)
mkdirat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0)
mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000340), 0x0, &(0x7f0000000240)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]})
chdir(&(0x7f0000000140)='./bus\x00')
lchown(&(0x7f0000000000)='./file1\x00', 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
sched_setaffinity(0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r1, 0x0, 0x40, &(0x7f00000014c0)=@nat={'nat\x00', 0x62, 0x5, 0x3e8, 0x398, 0x2a0, 0xffffffff, 0xe0, 0x188, 0x398, 0x398, 0xffffffff, 0x398, 0x398, 0x5, 0x0, {[{{@ip={@multicast2, @initdev={0xac, 0x1e, 0x0, 0x0}, 0x0, 0x0, 'veth0_to_bond\x00', 'wg1\x00'}, 0x0, 0xa8, 0xe0, 0x0, {0x22e}, [@common=@unspec=@statistic={{0x38}}]}, @MASQUERADE={0x38, 'MASQUERADE\x00', 0x0, {0x1, {0x0, @multicast1, @remote, @icmp_id, @icmp_id}}}}, {{@uncond, 0x0, 0x70, 0xa8}, @REDIRECT={0x38, 'REDIRECT\x00', 0x0, {0x1, {0x0, @multicast1, @empty, @gre_key, @icmp_id}}}}, {{@ip={@broadcast, @multicast1, 0x0, 0x0, 'veth1_to_hsr\x00', 'ipvlan0\x00'}, 0x0, 0xc0, 0xf8, 0x0, {}, [@common=@osf={{0x50}, {'syz0\x00'}}]}, @DNAT0={0x38, 'DNAT\x00', 0x0, {0x1, {0x0, @private, @multicast2, @gre_key}}}}, {{@ip={@remote, @empty, 0x0, 0x0, 'veth1_to_batadv\x00', 'pim6reg\x00', {0xff}}, 0x0, 0x98, 0xd0, 0x0, {}, [@common=@inet=@tcpmss={{0x28}, {0xf}}]}, @NETMAP={0x38, 'NETMAP\x00', 0x0, {0x1, {0x16, @remote, @broadcast, @icmp_id}}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x448)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
mount(0x0, &(0x7f00000000c0)='.\x00', 0x0, 0x0, 0x0)
syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0)

9m23.901365568s ago: executing program 2 (id=141):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @none, 0x701, 0x1}, 0xe)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)

9m19.458412997s ago: executing program 2 (id=152):
syz_mount_image$ext4(&(0x7f0000001d40)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x0, &(0x7f0000000a40)={[{@auto_da_alloc}, {@barrier}, {@noblock_validity}, {@journal_ioprio={'journal_ioprio', 0x3d, 0x4}}, {@delalloc}, {@auto_da_alloc}]}, 0x1, 0x490, &(0x7f0000000580)="$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")
open(&(0x7f0000000040)='./bus\x00', 0x400141042, 0x0)
mount(&(0x7f0000000280)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x5000, 0x0)
r0 = open(&(0x7f0000000000)='./bus\x00', 0x8000, 0xa0)
ioctl$LOOP_SET_STATUS64(r0, 0x4c04, &(0x7f0000000c00)={0x0, 0x0, 0x0, 0x0, 0x8005, 0x0, 0x0, 0x3, 0xd, "ef359f413bb93852f7d6a4ae6dddfbd1ce5d29c2ee5e5ca9000ff8ee09e737ff0edf110ff4117639c2eb4b78c660e677df701905b9aafab4afaaf755a3f6a004", "036c47c67808cf335263bd9bffbcc2542ded71038259ca171ce1a311ef07ec3ad71e14ef3dc177e9b48b00", "f28359738e229a4c66810000000000d300e6d602000000000000000000000001", [0x9]})
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='memory.events\x00', 0x275a, 0x0)

9m17.680841127s ago: executing program 2 (id=156):
r0 = memfd_create(&(0x7f0000000bc0)='[\v\xdbX\xae[\x1a\xa9\xfd\xfa\xad\xd1md\xc8\x85HX\xa9%\f\x1ae\xe0\x00\x00\x00\x00\xfb\xff\x00\x00\x81\x9eG\xd9,\xe2\xc6a\x9f\xe8\xf1\xb3\x86\xe2+Op\xd0\xa2\x82\x1eb;(\xb5\xe1jS\xd6\x91%||\xa0\x8ez\xadT\xc8\f\xe5\x89\xbf#2\x99\x1e\xa1`\xc3\xcf\xd3\xae\xd2\a\x11\xa9\xa5^\xff\xf5\x95\f{\xaav\xe1\x89r\xe1?\xbdu\x98\xc3\xf8\xd2Q#\xc6g\xa0\x85\xd6G\x85\x11X\x8d,\x02\xd45\xb8\xca\x97\x9d\xcb\x1e\x80\xd6\xd5>N&\xf8#\x80z8Z\xd2}\xf5\xe4\x9f5\x9b\x01\xf9t\xbb\x1er\x14\xdb\xd3\xcd\xfd\xbdnC\xec\x8aog\x87BR\x9d\xad\xd4FcB\xda\x95\xc3\xdd\x9d\x8f\x1a\xce\x18\x80\"j\xe1\xba\x1e\x97uX\xccv\xd6\vcz\x92A^\xbc\xceF\xf7\xe5:\xaf\xc5~\xbcJ e\r\x88c\x9d\xb92\xb6i4zq\xb3c\x0f\xb2t\x93\xf2E6b\xfa\xcdJ5\xe3W]`4\xd8D\x05\v\xfc)\xca\xedQ\xd0]Ot\'\xc2tDF\xf9\xa7\xb5(\x83\xa5\x0f\x1d\x1d\x06Dg\x13>\x19\xe85#\aaT\x89=\x104\xd5\x85Q\x96\x91\xea\x172P\xb3:\xadZ\xbc\xbe\x00\xf0\x14\x96\xd9M\xd7\x88QZs\xb2\xe1+$jfQodH\x05/y`~Mx\x02\x00(v\xe6`\x026\xfcgC\xb5\xf0\x13.zb\xc5bj+@\x00\x00\x00\x00\x00\x00\x00.\xd4`=z\xd1n\x8d\x8f\xa5hS\x8e[\xb3\xa3\x87\xb9\xe2_w\x11\xef\xc2]V\xf3\x03\x94\xb9\xe1\xa68\x8d\\\xe5\xef\xacpM\xf0\xa6\x04\x10\xb7\xc0t\x83\\\xf7\x12k\x9f\x10\xd5Z\x19\xc1\xc1\x80\\o\x97\xce=U\xdd\xaa\x1b\x05\x14\x13\xa6\xbd#\xde\x04\xe6$\xec$3\xf6\x97\xc6\xeaSL\xb7A72M\x88k@\xe5\xa3\n&\x1e\xc84\xa9\xe2\xccM\x906\x95xQ-2p\xd62\'\xec\x0f\x13;I\x95fE_\r\xe7\t!1\xd5\x80<\xf5\b\xa9\xec\x85\xaeW\xb3\xd8#)bn \xfb\xf2\x88\xfaR\xff\xdd\x80\x96_\xec5\xf0\x1c\a\x8a\x80\x00@=\r8u+%f:\x1e\x82\xfap\xf6\x89\xea\xba\xe3\xbbM%F\xdb\\\xd1eJJ*\xc67\xca\x03\xa3\xf7(\xbb\xecN\xd4\xe7\xf2:u\x8a\b\xd5\v\xca\xfd\\\xd6\xe3\x05\xb3\x03\xd5\xe0\xd2\xf2{\'\x8b\xdf\xa1\xbe}\xb2\xe4y\xbb\xe6\x1f\x10c\xf5WQ\x82\x04\x01C\x83,\x90\x1a\xfa\x8e\x17\x89\xe2\xedX\x8d\rmq\t\xb5$\xb4\x9b\x92z\xd6/-\x13,\xb5%\x8eM/\x04\xa7\x7f\x1b\x85\xf1\xa4X\x17\xbb\x1cR14\xfb!\b\x10\xe8\xb2\xd41gK\xe4\xea\xe39d\bL\xe5\x1b\xbd[\x9bWD:\r&\xe9\vn^\xcc\x86\xe3\xce1>3{\xaa{\xbd0P\x9f\xa68\xf5\x82\xb8\x9aD\x9c{\xe6\xf8\xcbD\xb5aJ\xb0\x92\x89\xbc\x80\x1ch\x89\xe7\xdd]q,\xec\xc4\xa5\x93\xe5,\x0e,>/\xaf|\xf0\x01V\x7f\xc9?\xba\x16\xe4$+}5dy\xb1\xef\xf1m\xa5\x94d9\xaf\xcfq\x8b=\x026\xef\r\x91\x18\xc5\xb6\xb9fM\x8ayZ\xbcd\xa5\x8a\x88\x98\xc3\xfc`\xa6\xba\x1f\x17\v$\x88g\xb4\xadz\xc1\xddW\xa6\xc1\xb7\xb0\xa3\x84Q\x13GoU\xe2\xb7\x03\x9c\xd5\x0f\xa8\x0ef\"\x15\x82\xe7\xbd\xf8\xca\x10f\xfe6h\xe9\xc3\xc2\xa0O:\xac~\x1a\xf7\xbeF\xbe\xe5\xf0\x81\xd6&\xc0<Q8\xbeX\xde\xd6 \xef\x0e\xc2.\x9c=1\x15d\xddIv\x0fh\xe6M(D\xad\xeb\xcfX8\xb9\x8d\xbe(\xd3\x16?x\xbd@\x0f\xf5\xdb\xeb\xd7i*\xea\x86JX\xff;\x96\xbb\xa7\xa8u5R\xa2,\xba\xbc\x01\x12\xb3q,\x9d\xf8\xbdb`\xb3\xc6\x0f\xb3\xac\xc7\xa4O@\x81\xfc\x1a4$\x885\x97\xa9|\x99\x86*.\xda\x96RQ\xe5\xb1\xef\xb7\x10\x99\xd4\xa7\b\xcd\xe9\xa5\xf6wR\xc1\xdfH).\a\x9a\xab\x9e&+\xc4#\x90\xc9%\xb9\xd7o\x86\x13\a\xc0\x01w9u6\xdd\x9fJ^o\x1d\xda\x11?\xc1\xf5\xf7\xff\xec\x916\xceQ\xcfU\x035\x96\x8f\xc7\x84\"2\xef\x02\xcf\a+\x8a\xd1\x11\xb5\xa8\x92\f\xb3R\",\xfc!_&pD\xeb5\xc6\xc8\xff2\xee\x14\x83\x14l\x04\x82\xa9\xa8\xbd\xf9\x01\x80\xaa7\x80\xf1\x18\xf5\xa5\xd23\xe5\b\x00\xe8\x9c\xd4\xd0\a\x93#\xb9Z\xc0y\x97<\xe5i\xe9\xe4\xb02Cu\xe1d\r\x0e\xc1\xf1\x81^\xa7\xffz)\x19U\xe5\xd4\xf5@O#W\x8a\xbb3c+\n\x97\xa6\xf7\x90$\xd6*\xd0\x1b\x10\xe4HM:XO\x1b\rx\xc7\x12|\x7fN\xc9\xf9i\xe4\xe5-\x9b\xe407\x9d\xe8\xc6\x90\x9f_Jf\x05\r\x1b\x9af\v\xbcv\x83\xf3j\xaf\xd0F91 ^x\x85\x80[\xa3B\n#!\xc2R\xdd\xf4)\xba\x1e\xfb6U\xabc\xda\x9a)\xc3\x9a\x06\xc5\xccP)\xdf.\xa7-\x84\xdf8\xbf\xfc1^}B\xee\xccR/z\x1e\xe8\x1e\x99\x99\n\xf4u\xd4\xbd^L\xb2j\xda\xff\x1d\x10\xc8\xad\xbd_OI\xb1\xe8y\x003\a\x06\x92\x8e\n\x8b\xf3\xd4G\x85\xbd\x1a\x81+3\x99jq\xd1\xacK^\xef\xb6!8\xcd?\x1e\\\x16W2\xbd4$zn\xa9\x7f\x9dE\xaf\x0f\xdb\xe0\xfa\x10\xc3\xb2\xf8\x80\x8c\xec$\xda\xc0\x94y1\t\xc5`\xda\xca\xd1\xab:\x18\x10\x9b\xd0w\x00\x00\x00\x00\x00\x00\x00\x00', 0x0)
execveat(r0, &(0x7f0000000000)='\x00', 0x0, 0x0, 0x1000)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r1 = syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000240)={[{@dioread_nolock}, {@data_err_abort}, {@inlinecrypt}, {@noauto_da_alloc}, {@data_err_ignore}, {@norecovery}, {@dioread_nolock}, {@grpquota}, {@discard}, {@user_xattr}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@errors_remount}, {@lazytime}]}, 0x11, 0x556, &(0x7f00000005c0)="$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")
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x5)
pwrite64(r2, &(0x7f0000000140)='2', 0xff10, 0x8000c61)
openat$sndseq(0xffffffffffffff9c, 0x0, 0x1)
fdatasync(r2)
fcntl$getownex(r1, 0x10, 0x0)

9m14.421613302s ago: executing program 2 (id=162):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @none, 0x701, 0x1}, 0xe)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)

9m11.431508282s ago: executing program 32 (id=162):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0)
connect$bt_l2cap(r0, &(0x7f0000000040)={0x1f, 0x0, @none, 0x701, 0x1}, 0xe)
socket$nl_netfilter(0x10, 0x3, 0xc)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
bind$netlink(r1, &(0x7f0000000080)={0x10, 0x0, 0x0, 0x1}, 0xc)
r2 = socket$inet6(0xa, 0x80003, 0x6)
connect$inet6(r2, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c)
setsockopt$inet6_IPV6_XFRM_POLICY(r2, 0x29, 0x23, &(0x7f0000000340)={{{@in=@broadcast, @in6=@dev, 0x0, 0x0, 0x0, 0x0, 0xa}, {0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0xa78a}, 0xfffffffe, 0x0, 0x1}, {{@in=@private, 0x0, 0x33}, 0x0, @in=@rand_addr=0x64010101, 0x0, 0x3, 0x1, 0x7}}, 0xe8)
sendmmsg(r2, &(0x7f0000000480), 0x2e9, 0x0)

2m57.486172486s ago: executing program 3 (id=1315):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d00)=ANY=[@ANYBLOB="1c0000000104010100000000000000000dfc21040500010001"], 0x1c}, 0x1, 0x0, 0x0, 0x4000}, 0x44084)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFULNL_MSG_CONFIG(r1, &(0x7f00000004c0)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4040844}, 0x8010)

2m56.789102369s ago: executing program 3 (id=1318):
r0 = socket$netlink(0x10, 0x3, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000400)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'lo\x00'}}, 0x1e)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, 0x0, 0x0)
ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000080))
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r3, 0x40047438, &(0x7f0000000040)=0x2)
ioctl$PPPIOCBRIDGECHAN(r3, 0x40047435, &(0x7f0000000200)=0x1)
sendmmsg(r2, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0}}], 0x34000, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xfb61cb0106df6c98}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x411, 0x0, 0x0, 0x0, 0x8, 0x2}}, {0x8, 0x1b, [0x0, 0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)

2m56.004534103s ago: executing program 3 (id=1320):
sendmsg$IPSET_CMD_FLUSH(0xffffffffffffffff, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000480)={0x30, 0x4, 0x6, 0x201, 0x0, 0x0, {0x1, 0x0, 0xa}, [@IPSET_ATTR_PROTOCOL={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x30}, 0x1, 0x0, 0x0, 0xc000}, 0x0)

2m55.408134926s ago: executing program 3 (id=1324):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$ETHTOOL_MSG_LINKMODES_GET(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)={0x18, 0x0, 0x301, 0x70bd29, 0x25dfdbfc, {0x24}, [@HEADER={0x4}]}, 0x18}}, 0x0)

2m54.878569741s ago: executing program 3 (id=1326):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, 0x0, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0xfffffffe, 0x4}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8801}, 0x20008850)
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x44, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0xfff1, 0xa}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x18, 0x2, [@TCA_BPF_OPS={{0x6, 0x4, 0x1}, {0xc, 0x5, [{0x6, 0xd, 0x5, 0x4}]}}]}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
r6 = socket(0x400000000010, 0x3, 0x0)
r7 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r6, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000c00)=@newtfilter={0x24, 0x2c, 0xd3f, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r8, {0xfff3, 0xffe0}, {}, {0x7, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

2m53.841249345s ago: executing program 3 (id=1331):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvmmsg(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x50}, 0x0)

2m38.365264528s ago: executing program 33 (id=1331):
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x4e20, @loopback}, 0x57)
recvmmsg(r0, &(0x7f0000001740)=[{{0x0, 0x0, &(0x7f0000001400)=[{&(0x7f0000000400)=""/4096, 0x10c4}], 0x1}}], 0x4000210, 0x2, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[], 0x48}, 0x1, 0x0, 0x0, 0x50}, 0x0)

2m34.218423238s ago: executing program 1 (id=1398):
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
write$P9_RLERRORu(r0, 0x0, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB="5000000002060108000034e4000000000000000805000400000000000900020073797a3100000000050005000200000016000300686173683a6e65742c706f72742c6e65740000000500010007"], 0x50}, 0x1, 0x0, 0x0, 0x20044000}, 0x8042)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="68000000090603000000000000000000050006400900020073797a3100000000050001000700000040000780060004404e24000005000700ff0000000c00018008000140e00040000c00148008000140ac1e0100060005404e2100000c00168008000140ac1e0101"], 0x68}, 0x1, 0x0, 0x0, 0x20004000}, 0x80)

2m32.989481168s ago: executing program 1 (id=1401):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
bind$phonet(r1, &(0x7f0000000040)={0x23, 0x14}, 0x10)
bind$phonet(r0, &(0x7f0000000000)={0x23, 0x4}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
bind$phonet(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x4, 0x2}, 0x10)

2m31.689253602s ago: executing program 1 (id=1403):
ioctl$TCSETSW2(0xffffffffffffffff, 0x402c542c, &(0x7f0000000040)={0xf, 0x401, 0xfffffffd, 0xc4cf, 0x7, "0441920887e87fcb367800000000080100", 0x0, 0x200})
ioctl$TIOCSTI(0xffffffffffffffff, 0x5412, &(0x7f0000000180)=0x4)

2m30.806064152s ago: executing program 1 (id=1406):
ioctl$TCXONC(0xffffffffffffffff, 0x540a, 0x2)
sendto$inet6(0xffffffffffffffff, &(0x7f0000000300)="2501d6b1d1", 0x5, 0x40, 0x0, 0x0)
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000280)=0x1)
write$UHID_CREATE2(0xffffffffffffffff, &(0x7f0000000200)=ANY=[], 0x118)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, 0xffffffffffffffff, 0x0)
ioctl$TCSETS(r0, 0x89f0, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x802, 0xd, "5dee0000005940090000000f00"})

2m29.659326537s ago: executing program 1 (id=1410):
timer_settime(0x0, 0x0, &(0x7f0000000340)={{0x77359400}, {0x0, 0x3938700}}, 0x0)
r0 = openat(0xffffffffffffff9c, &(0x7f000000c380)='./file0\x00', 0x20842, 0x0)
write$P9_RLERRORu(r0, 0x0, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x40e00, 0x5a, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f0, &(0x7f0000000000)={'syztnl1\x00', 0x0})
setsockopt$IP6T_SO_SET_REPLACE(0xffffffffffffffff, 0x29, 0x40, 0x0, 0x0)
socket$netlink(0x10, 0x3, 0x0)
sendmsg$BATADV_CMD_GET_MESH(0xffffffffffffffff, 0x0, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000480)=ANY=[@ANYBLOB="5000000002060108000034e4000000000000000805000400000000000900020073797a3100000000050005000200000016000300686173683a6e65742c706f72742c6e65740000000500010007"], 0x50}, 0x1, 0x0, 0x0, 0x20044000}, 0x8042)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_ADD(r2, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000000c0)=ANY=[@ANYBLOB="68000000090603000000000000000000050006400900020073797a3100000000050001000700000040000780060004404e24000005000700ff0000000c00018008000140e00040000c00148008000140ac1e0100060005404e2100000c00168008000140ac1e0101"], 0x68}, 0x1, 0x0, 0x0, 0x20004000}, 0x80)

2m28.958309919s ago: executing program 1 (id=1414):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640)={{0x10b, 0x2, 0xf4, 0x60, 0x40, 0x4, 0x13a, 0x4}, "a54ab407ebc024261b58da0b49131515fabfa3fc737577c63311d1a7b6d7fb56603e7024eabc536d30d3e8e1521d9c0a3f8001b438a4b647d5413c897877a11e653fd4b6c2c98599c48c1a7f8b59a2df502ee6a82f946293708402ce9747b7c7e1ce7359e8bd0ba74117a427da7513", ['\x00', '\x00', '\x00', '\x00']}, 0x48f)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0xffffffffffffffff, &(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x111, 0xa}}, 0x20)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r2}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x4f20, 0x710, @mcast1, 0x206}, {0xa, 0x4e20, 0x8080001, @mcast2, 0x10005}, r2, 0x7fff}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000002c0)={0x4, 0x8, 0xfa00, {r2, 0x5}}, 0x10)
write$RDMA_USER_CM_CMD_CONNECT(r1, &(0x7f0000000380)={0x6, 0x118, 0xfa00, {{0x1, 0x1, "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", 0x0, 0x4, 0x5, 0xf, 0xd, 0x0, 0x6, 0x1}, r2}}, 0x120)
write$RDMA_USER_CM_CMD_ACCEPT(r1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000d80)="$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")
close(0x4)

2m13.54520676s ago: executing program 34 (id=1414):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000180)=ANY=[@ANYBLOB="380000000314230c2abd7000ff05df250900020073797a310000000008004100727865001400330073797a5f74756e"], 0x38}, 0x1, 0x0, 0x0, 0x48845}, 0x4000)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
write$binfmt_aout(0xffffffffffffffff, &(0x7f0000000640)={{0x10b, 0x2, 0xf4, 0x60, 0x40, 0x4, 0x13a, 0x4}, "a54ab407ebc024261b58da0b49131515fabfa3fc737577c63311d1a7b6d7fb56603e7024eabc536d30d3e8e1521d9c0a3f8001b438a4b647d5413c897877a11e653fd4b6c2c98599c48c1a7f8b59a2df502ee6a82f946293708402ce9747b7c7e1ce7359e8bd0ba74117a427da7513", ['\x00', '\x00', '\x00', '\x00']}, 0x48f)
r1 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$RDMA_USER_CM_CMD_CREATE_ID(r1, &(0x7f0000000040)={0x0, 0x18, 0xfa00, {0xffffffffffffffff, &(0x7f0000000080)={<r2=>0xffffffffffffffff}, 0x111, 0xa}}, 0x20)
syz_emit_ethernet(0x0, 0x0, 0x0)
syz_emit_ethernet(0x0, 0x0, 0x0)
write$RDMA_USER_CM_CMD_BIND_IP(r1, &(0x7f0000000180)={0x2, 0x28, 0xfa00, {0x0, {0xa, 0x4e25, 0x10001, @local, 0xb}, r2}}, 0x30)
write$RDMA_USER_CM_CMD_RESOLVE_IP(r1, &(0x7f0000000300)={0x3, 0x40, 0xfa00, {{0xa, 0x4f20, 0x710, @mcast1, 0x206}, {0xa, 0x4e20, 0x8080001, @mcast2, 0x10005}, r2, 0x7fff}}, 0x48)
write$RDMA_USER_CM_CMD_RESOLVE_ROUTE(r1, &(0x7f00000002c0)={0x4, 0x8, 0xfa00, {r2, 0x5}}, 0x10)
write$RDMA_USER_CM_CMD_CONNECT(r1, &(0x7f0000000380)={0x6, 0x118, 0xfa00, {{0x1, 0x1, "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", 0x0, 0x4, 0x5, 0xf, 0xd, 0x0, 0x6, 0x1}, r2}}, 0x120)
write$RDMA_USER_CM_CMD_ACCEPT(r1, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000540)='ext4\x00', &(0x7f00000001c0)='./file2\x00', 0x88, &(0x7f00000005c0)={[{@nogrpid}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x68}}, {@nobarrier}, {@nodiscard}, {@quota}]}, 0x3, 0x438, &(0x7f0000000d80)="$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")
close(0x4)

16.345268452s ago: executing program 0 (id=1759):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000c80)="e9812a97477f794eae8b518638ed0165574d5615e06ed97558b0d502e7b61b6ad0e14395115f8d8e2c12c1f0c0fe7456fb28a749373c390562957a0fde41338c3d1fc1db9d745c3d10fef15f0d90dc65eddf0053f54091d0911e056f24fd1b6bee61f2082822f49a5223cab7cc0ea69e481dd64f568e15ccd77683b10c28ede0e943b0c9921508cded", 0x89}], 0x1)

15.310552636s ago: executing program 0 (id=1762):
chdir(&(0x7f0000000400)='./file0\x00')
mkdir(&(0x7f0000000140)='./control\x00', 0x5)
openat(0xffffffffffffff9c, &(0x7f00000002c0)='./cgroup\x00', 0x42, 0x81)

14.640989278s ago: executing program 0 (id=1766):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
bind$can_raw(r0, 0x0, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f0000000040)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000000)={0x0, 0xffffffffffffff8c, &(0x7f0000000200)={&(0x7f0000000140)=@can={{0x2, 0x0, 0x1}, 0x5, 0x0, 0x0, 0x0, "00000300"}, 0x10}, 0x1, 0x0, 0x0, 0x20048010}, 0xd209f6d814823b83)
recvmmsg(r0, &(0x7f0000001180)=[{{0x0, 0x0, 0x0}, 0xf3}, {{0x0, 0x0, &(0x7f0000001080)=[{0x0}, {&(0x7f0000000ec0)=""/217, 0xd9}], 0x2}, 0x100}], 0x2, 0x10023, 0x0)

13.045506785s ago: executing program 0 (id=1769):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0xfffffffe, 0x4}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8801}, 0x20008850)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xfff1, 0xa}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x10, 0x2, [@TCA_BPF_OPS={{0x6}, {0x4}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000c00)=@newtfilter={0x24, 0x2c, 0xd3f, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r9, {0xfff3, 0xffe0}, {}, {0x7, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

8.922175071s ago: executing program 0 (id=1776):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0xf4}, 0x1, 0x0, 0x0, 0x10}, 0x8084)
recvmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{0x0}], 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c0002800800010001000000140007000000000000000005000000000000000108000f"], 0x74}}, 0x24005000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@newqdisc={0x24, 0x24, 0x8, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x5}, {0xffff, 0xffff}, {0xfff3, 0x6}}}, 0x24}}, 0x8040)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

7.800701375s ago: executing program 6 (id=1779):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r0, 0x8933, &(0x7f0000000100)={'vcan0\x00'})
bind$can_raw(r0, 0x0, 0x0)
setsockopt$CAN_RAW_RECV_OWN_MSGS(r0, 0x65, 0x4, &(0x7f0000000040)=0x1, 0x4)
sendmsg$can_raw(r0, &(0x7f0000000000)={0x0, 0xffffffffffffff8c, &(0x7f0000000200)={&(0x7f0000000140)=@can={{0x2, 0x0, 0x1}, 0x5, 0x0, 0x0, 0x0, "00000300"}, 0x10}, 0x1, 0x0, 0x0, 0x20048010}, 0xd209f6d814823b83)
recvmmsg(r0, &(0x7f0000001180)=[{{0x0, 0x0, 0x0}, 0xf3}, {{0x0, 0x0, &(0x7f0000001080)=[{0x0}, {&(0x7f0000000ec0)=""/217, 0xd9}], 0x2}, 0x100}], 0x2, 0x10023, 0x0)

7.710795203s ago: executing program 4 (id=1780):
r0 = socket$netlink(0x10, 0x3, 0x0)
timer_settime(0x0, 0x0, 0x0, 0x0)
r1 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r1, &(0x7f0000000400)={0x18, 0x0, {0x2, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, 'lo\x00'}}, 0x1e)
r2 = socket$pppoe(0x18, 0x1, 0x0)
connect$pppoe(r2, &(0x7f0000000100)={0x18, 0x0, {0x2, @dev={'\xaa\xaa\xaa\xaa\xaa', 0xa}, 'lo\x00'}}, 0x1e)
ioctl$PPPIOCGCHAN(r2, 0x80047437, &(0x7f0000000080))
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$PPPIOCATTCHAN(r3, 0x40047438, &(0x7f0000000040)=0x2)
ioctl$PPPIOCBRIDGECHAN(r3, 0x40047435, &(0x7f0000000200)=0x1)
sendmmsg(r2, &(0x7f00000008c0)=[{{0x0, 0x0, 0x0}}], 0x34000, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=@newqdisc={0x54, 0x10, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0xffe0, 0xfb61cb0106df6c98}, {0xf}, {0xe, 0xd}}, [@TCA_RATE={0x6, 0x5, {0x9, 0x1}}, @TCA_STAB={0x28, 0x8, 0x0, 0x1, [{{0x1c, 0x1a, {0x0, 0x0, 0x411, 0x0, 0x0, 0x0, 0x8, 0x1}}, {0x6, 0x1b, [0x0]}}]}]}, 0x54}, 0x1, 0x0, 0x0, 0x80}, 0x0)

7.453608486s ago: executing program 0 (id=1781):
set_mempolicy(0x3, &(0x7f0000000000)=0x4000000ffb, 0x8)
bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x1, 0x0, 0x0, &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x570662310409ec47}, 0x94)
socket$rds(0x15, 0x5, 0x0)
r0 = socket(0x40000000015, 0x5, 0x0)
connect$inet(r0, &(0x7f0000000080)={0x2, 0x0, @loopback}, 0x10)
bind$inet(r0, &(0x7f0000000340)={0x2, 0x0, @loopback}, 0x10)
sendmsg$inet(r0, &(0x7f00000002c0)={0x0, 0x0, 0x0}, 0x40)
getsockopt(r0, 0x200000000114, 0x2715, &(0x7f0000000580)=""/102393, &(0x7f0000000400)=0x18ff9)
r1 = syz_io_uring_setup(0x10d2, &(0x7f0000000480)={0x0, 0x7734, 0x80, 0xfffffffe, 0xd3}, &(0x7f00000000c0)=<r2=>0x0, &(0x7f0000000080)=<r3=>0x0)
r4 = socket$inet6_sctp(0xa, 0x5, 0x84)
sendmsg$kcm(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)=[{&(0x7f0000000000)="2e0000001100818804", 0x9}], 0x1}, 0x24000000)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(r4, 0x84, 0x1d, &(0x7f0000000000)={0x1, [<r5=>0x0]}, &(0x7f0000000080)=0x8)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r4, 0x84, 0x84, &(0x7f0000000280)={r5, @in={{0x2, 0x4e24, @empty}}, 0x0, 0x3}, 0x90)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r2, 0x4, &(0x7f0000000180)=0xfffffffc, 0x0, 0x4)
setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000400)={0x1, &(0x7f0000000200)=[{0x2b, 0x0, 0x0, 0x200}]}, 0x10)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5)
syz_io_uring_submit(r2, r3, &(0x7f0000000200)=@IORING_OP_POLL_REMOVE={0x7, 0x50, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1})
read$watch_queue(0xffffffffffffffff, &(0x7f0000001080)=""/4088, 0xff8)
io_uring_enter(r1, 0x47bc, 0x0, 0x0, 0x0, 0x0)

7.024646675s ago: executing program 4 (id=1783):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000c80)="e9812a97477f794eae8b518638ed0165574d5615e06ed97558b0d502e7b61b6ad0e14395115f8d8e2c12c1f0c0fe7456fb28a749373c390562957a0fde41338c3d1fc1db9d745c3d10fef15f0d90dc65eddf0053f54091d0911e056f24fd1b6bee61f2082822f49a5223cab7cc0ea69e481dd64f568e15ccd77683b10c28ede0e943b0c9921508cded", 0x89}], 0x1)

6.906250456s ago: executing program 7 (id=1784):
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={<r0=>0xffffffffffffffff})
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="120000000a0000000800000002"], 0x50)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000140)={{r1, <r2=>0xffffffffffffffff}, 0x0, &(0x7f0000000740)=r0}, 0x20)
bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000440)={r2, 0x0, 0x0, 0x200000000000000}, 0x20)

6.323136604s ago: executing program 5 (id=1785):
r0 = socket(0x1d, 0x2, 0x6)
bind$can_j1939(r0, 0x0, 0x0)

6.304238815s ago: executing program 4 (id=1786):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r1 = socket(0x400000000010, 0x3, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r2, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r3=>0x0})
sendmsg$nl_route_sched(r1, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000180)=@newqdisc={0x44, 0x24, 0x4ee4e6a52ff56541, 0x70bd29, 0xffffffff, {0x0, 0x0, 0x0, r3, {0x0, 0xfff1}, {0xffff, 0xffff}, {0xc, 0xf}}, [@qdisc_kind_options=@q_hfsc={{0x9}, {0x14, 0x2, @TCA_HFSC_RSC={0x10, 0x1, {0x0, 0xfffffffe, 0x4}}}}]}, 0x44}, 0x1, 0x0, 0x0, 0x8801}, 0x20008850)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000001300)=@newtfilter={0x3c, 0x2c, 0xd27, 0x70bd24, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xfff1, 0xa}, {}, {0x7, 0x2}}, [@filter_kind_options=@f_bpf={{0x8}, {0x10, 0x2, [@TCA_BPF_OPS={{0x6}, {0x4}}]}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)
r7 = socket(0x400000000010, 0x3, 0x0)
r8 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r8, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r9=>0x0})
sendmsg$nl_route_sched(r7, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000c00)=@newtfilter={0x24, 0x2c, 0xd3f, 0x70bd24, 0x25dfdbfc, {0x0, 0x0, 0x0, r9, {0xfff3, 0xffe0}, {}, {0x7, 0x2}}}, 0x24}, 0x1, 0x0, 0x0, 0x8848}, 0x20004804)

6.230066253s ago: executing program 6 (id=1787):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
sendmsg$key(0xffffffffffffffff, 0x0, 0x4020)
close_range(r3, 0xffffffffffffffff, 0x0)

6.057079705s ago: executing program 7 (id=1788):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000340)={0x2c, 0x0, 0x1, 0x0, 0x0, {0xa}, [@TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x2c}}, 0x0)

5.373257737s ago: executing program 5 (id=1789):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_BEACON(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000140)={0x54, r1, 0x1, 0x21, 0x25dfdbfe, {{}, {@val={0x8}, @val={0xc, 0x99, {0x3, 0x20019}}}}, [@NL80211_ATTR_IE_ASSOC_RESP={0x2a, 0xe, [@erp={0x2a, 0x1, {0x0, 0x1, 0x1}}, @supported_rates={0x1, 0x5, [{0x4, 0x1}, {0x60}, {0x1}, {0x12, 0x1}, {0x36}]}, @mesh_id={0x72, 0x6}, @link_id={0x65, 0x12, {@initial, @device_a, @device_b}}]}]}, 0x54}}, 0x4014080)

4.539563276s ago: executing program 4 (id=1790):
socket$nl_netfilter(0x10, 0x3, 0xc)
socket$igmp6(0xa, 0x3, 0x3a)
openat$sysfs(0xffffffffffffff9c, &(0x7f00000000c0)='/sys/power/hibernate_compression_threads', 0xa0042, 0x11)
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000300), 0x2, 0x0)
socket$inet6_sctp(0xa, 0x5, 0x84)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r1=>0x0)
r2 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r4 = syz_genetlink_get_family_id$nfc(&(0x7f00000001c0), r3)
sendmsg$NFC_CMD_DEV_UP(r2, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000000)={0x1c, r4, 0x1, 0x70bd29, 0x25dfdbfe, {}, [@NFC_ATTR_DEVICE_INDEX={0x8, 0x1, r1}]}, 0x1c}, 0x1, 0x0, 0x0, 0x40089}, 0x4008004)
write$nci(r0, &(0x7f0000000140)=ANY=[@ANYBLOB="414601", @ANYRES32=r2], 0x4)

4.487382736s ago: executing program 7 (id=1791):
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)=ANY=[@ANYBLOB], 0xf4}, 0x1, 0x0, 0x0, 0x10}, 0x8084)
recvmsg(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000140)=[{0x0}], 0x1}, 0x0)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000004c0)=ANY=[@ANYBLOB="740000001000010400"/20, @ANYRES32=0x0, @ANYBLOB="2b030040000000004c0012800b00010067656e65766500003c0002800800010001000000140007000000000000000005000000000000000108000f"], 0x74}}, 0x24005000)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000040)=@newqdisc={0x24, 0x24, 0x8, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x5}, {0xffff, 0xffff}, {0xfff3, 0x6}}}, 0x24}}, 0x8040)
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r0, &(0x7f00000002c0), 0x40000000000009f, 0x0)

3.626420348s ago: executing program 5 (id=1792):
setsockopt$inet_sctp_SCTP_ASSOCINFO(0xffffffffffffffff, 0x84, 0x1, &(0x7f0000000080)={0x0, 0x82, 0x6, 0x2, 0x10001, 0x3}, 0x14)
getsockopt$IP6T_SO_GET_REVISION_TARGET(0xffffffffffffffff, 0x29, 0x45, &(0x7f0000000040)={'NETMAP\x00'}, &(0x7f0000000080)=0x1e)
mprotect(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1)
r0 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_add_memb(r0, 0x107, 0x1, &(0x7f0000000080)={0x0, 0x1, 0x6, @local}, 0x10)
setsockopt$packet_buf(r0, 0x107, 0x2, &(0x7f0000000080)="5ec78db485c534bdf7a2172f", 0xc)

2.634034955s ago: executing program 6 (id=1793):
syz_mount_image$ext4(0x0, &(0x7f0000000140)='./file0\x00', 0x2169802, 0x0, 0x0, 0x0, &(0x7f00000003c0))
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000340), 0x10}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r0, 0x2000012, 0xe1e, 0x2, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x66)

2.531951845s ago: executing program 4 (id=1794):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000080)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, 0x11, 0x0, 0x0, 0x3}, [@FRA_GENERIC_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e20, 0x4e21}}]}, 0x24}}, 0x44004)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)=@newlink={0x3c, 0x10, 0x439, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x9801, 0x1303}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @ipip={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x8, 0x3, @multicast1}]}}}]}, 0x3c}, 0x1, 0x0, 0x0, 0x1}, 0x4000000)

2.306219894s ago: executing program 7 (id=1795):
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0xe, 0x4, &(0x7f0000000140)=ANY=[@ANYBLOB="1800"/13], &(0x7f0000000100)='syzkaller\x00', 0x1, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xbff}, 0x94)

2.258408612s ago: executing program 5 (id=1796):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x1)
writev(r0, &(0x7f0000000080)=[{&(0x7f0000000c80)="e9812a97477f794eae8b518638ed0165574d5615e06ed97558b0d502e7b61b6ad0e14395115f8d8e2c12c1f0c0fe7456fb28a749373c390562957a0fde41338c3d1fc1db9d745c3d10fef15f0d90dc65eddf0053f54091d0911e056f24fd1b6bee61f2082822f49a5223cab7cc0ea69e481dd64f568e15ccd77683b10c28ede0e943b0c9921508cdedd62f850fa1341b3771024914f5e0a3754c208a6aab67", 0x9f}], 0x1)

1.848441604s ago: executing program 6 (id=1797):
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f00000004c0)=ANY=[@ANYBLOB="9feb010018000000bfa90170791442785000000002000000090000000000000e03000000010000000a0000000000000203000000000000000500000d000000000600000001000000000000000000000000e3000000000000090000000000000005000000030010"], 0x0, 0x6a, 0x0, 0x0, 0x7fffffff}, 0x28)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000000)={0x0, 0x0, 0x0, &(0x7f0000010040), 0x0, 0xffffffffffffffff, 0x4}, 0x38)
sendmmsg$inet6(0xffffffffffffffff, &(0x7f0000003300)=[{{0x0, 0x0, &(0x7f0000000500)=[{0x0}], 0x1}}], 0x400000000000099, 0x4008405)
r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000940)='hugetlb.2MB.usage_in_bytes\x00', 0x26e1, 0x0)
close(r0)
socket$nl_route(0x10, 0x3, 0x0)
ioctl$SIOCSIFHWADDR(r0, 0x8b34, &(0x7f0000000000)={'wlan1\x00', @random="000500000020"})
sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000004c0)=@newsa={0x104, 0x10, 0x7, 0x0, 0x0, {{@in6=@mcast2, @in=@multicast2, 0x4e20, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0x0, 0x2, 0x0, 0x10000000}, {0x0, 0x200000, 0x7}, {0x40000, 0xfffffffd, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000a068000000800000001c0000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={0xffffffffffffffff, 0xfca804a0, 0xe, 0x0, &(0x7f00000002c0)="b8000005000000005baf2312bbc2", 0x0, 0x12000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)
r1 = socket$nl_xfrm(0x10, 0x3, 0x6)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r2, &(0x7f0000000640)={0x28, 0x0, 0x2710}, 0x10)
sendmsg$nl_xfrm(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f00000000c0)=@newsa={0x104, 0x1a, 0x7, 0x0, 0x0, {{@in6=@dev={0xfe, 0x80, '\x00', 0x1b}, @in=@multicast2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x0, 0x2b}, @in6=@private0, {0x0, 0xb400, 0x2, 0x100000000000000}, {0x0, 0x200000, 0x7, 0xfffffffffffffffd}, {0x40000, 0x0, 0xae8}, 0x0, 0x0, 0xa, 0x2, 0x0, 0x70}, [@coaddr={0x14, 0xe, @in6=@remote}]}, 0x104}}, 0x0)
socket(0x10, 0x3, 0x0)
r3 = syz_init_net_socket$bt_bnep(0x1f, 0x3, 0x4)
ioctl$sock_bt_bnep_BNEPGETCONNINFO(r3, 0x800442d3, &(0x7f0000001b40)={0x3, 0x4, 0x7, @empty, 'nr0\x00'})
socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000200)={'bridge0\x00'})
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xd, 0x3, &(0x7f0000000040)=@framed, &(0x7f0000000080)='GPL\x00', 0x5, 0x1f6, &(0x7f00000002c0)=""/168, 0x0, 0x0, '\x00', 0x0, @sock_ops, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, &(0x7f0000000200), 0x1}, 0x6d)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f00000006c0)={r4, 0xe0, &(0x7f00000005c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8, 0x8, &(0x7f0000001680)}}, 0x10)

1.574521723s ago: executing program 5 (id=1798):
r0 = openat$nci(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0)
r1 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$nfc(&(0x7f0000000100), r1)
ioctl$IOCTL_GET_NCIDEV_IDX(r0, 0x0, &(0x7f00000000c0)=<r3=>0x0)
sendmsg$NFC_CMD_DEV_UP(r1, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000d80)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r2, @ANYBLOB="010426bd7000f8dbdf250200000008000100", @ANYRES32=r3], 0x1c}}, 0x4008054)
write$nci(r0, &(0x7f0000000080)=ANY=[@ANYBLOB='P\x008O'], 0x3b)

1.470454997s ago: executing program 4 (id=1799):
r0 = socket$inet(0x2, 0x4000000000000001, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x80000000000002, &(0x7f00000000c0)=0x6a, 0x4)
bind$inet(r0, &(0x7f0000001c00)={0x2, 0x4e23, @multicast2}, 0x10)
setsockopt$SO_TIMESTAMPING(r0, 0x1, 0x41, &(0x7f0000000180)=0xb27, 0x4)
connect$inet(r0, &(0x7f0000001bc0)={0x2, 0x4e23, @loopback}, 0x10)
sendmmsg(r0, &(0x7f0000001840)=[{{0x0, 0x0, &(0x7f0000000a40)=[{&(0x7f0000001900)="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"/390, 0x186}, {&(0x7f0000000600)="ed7a6c4edc21c16140ab89926feaca560b043e81a5f818766562c4ec2011dae5d68c319c398cfaf46ad90ccb248149a8723c06b494142f11763dc65f43a3aac439686d1f19bab37c5405bf86f2859a5c822ef730097c2252304734a8812b6d9d5ceab80d83302b19af227b9ed4fcf0dcfd490f3053e1f016636873c0aaa16e3098708e260f8d03ec38d5dd575248459733cdec4fd1a9b6d8b45a77c2255ef52d8b3745373a9dd6487b759e7442a13fea6a453f592d0de28d3da1aa895ee6596d1d5f2337f6702988011b75c17b90", 0xce}, {&(0x7f0000000780)="161e7a8c402a271c32f88961860726234484e51063a6b8bfcc679a48785a0788e2bcb1df574c668b75d7db9b611fc6cfae4f662b8423e7827d007bf7565d6dd509cef4a14637e69f29b4bd2ea056e08435146c51a4c7e75bef1479610db61d5b2a95afe02273ff6c2857745b14893a07ffcfa6f0aca5e651e9891a3a28", 0x7d}, {&(0x7f0000000100)="101bcd0fbb8e001f4489a60e21985afe273be858feb22e4f47f1376e8accc1dfb8487dbc3bb02067c9040c199c16cf43", 0x30}, {&(0x7f0000000800)="0ced0546edf93d519b6862b147292d549535a29b7ddc65e7d999dd0598bbba65e41b6e440cafa4b672261ef7644241c1", 0x30}, {&(0x7f0000000840)="f719a6725e6d8dd5477abb56f2bd2341e5a360f33364f2d69208acdb72776a16f720b746ea8a4a82d0e88a0143ab9d8b730faa3ad37d80da9a787558a542efa57eb9c10cf338de73237853ccded4dfeb11b0b5c4161148a4c23ae9a882", 0x5d}, {&(0x7f00000008c0)="f973cb97d322b465b3afb6199b1617cc767566ffd341f29915e886c6ed7ec7a6cb4a233d1e440cd098979ad3c883b9d0638603f2aef94c9c8b8c385bb5708dfe6eeb1e6a8f9be2f6b5289d5ef8eed01dceaca8d6f891d977a45e3ca8e1e170741890133412484870a34e11548109b7301af97395288d6245890c49196f", 0x7d}], 0x7}}, {{0x0, 0x0, &(0x7f0000000d00)=[{&(0x7f0000000b40)="022b6fd427db814d6235d04ec6721c39beb4d711ab97aed74250e4525f9475e1d82de602aba4cda29e08b62a9558d35c12332515c5d45760984199d002f0f8c98b530a5a493cb4bce521ffdaa1fd0e362bc37b0961caf33b022428e9ebf4938637f44138a747e79ebc5ab0da7008ef1b08315c5b2410105c18dc06a12ece4a8f52b68ea7edc54f8731228873de393a87c33864926f", 0x95}, {&(0x7f0000000c00)="8f64cb807ff8e3fb91deb2c9e58099eb3acea65d3e1540795a896201d223130de62e97140a6a80", 0x27}], 0x2, &(0x7f0000000d40)=ANY=[@ANYBLOB="f00000000000000015010000010000804f9d10f45aab55e5fd580652cac13416e0907f6f84bb935925cd73f9a0f493db0c6d9452e32f18d2198330b8f76ccf6c3d75f68188ea29a4cf19c353e96ad20f2676c354bdf2b4348a167250d0f86784be940bb22135c2239d67663b0d20a66f07fd8c95d7616c1cad871bb6b6f995cbced6ad56c65e77255322e882f96af3ccd19d409f926b97d482b90c498f1382f9b00e882eaedf56a7c58ce94efbda1eabfd991af036c81ea59175b5b87ea33073e7808f20fc83bffc45ad82f1caf5f89a12689d594ac138592a69d05560e5e3ebb416fdcfce9bea6ed1c80000000000009000000000000000130100000001000059def25fe2f11c9d7ec1e959bb8bb1ebc5b1e12cc3651328e1db439c6a3d75d260991aba6a32a9eda3c5ff6463e54bba43977ecd5af74b944c88213adabc2440a0b459ff6e7007d71f565616ce5e4606323dfa026e244b7da3c3ad761c3d6926a78355aa89cb430472036c819ad464190b923a2c45409b5f4b1d136582d10200e8000000000000008400000081000000996c96e3b1f0d0e82e06139ab28b737d98bb2df0b19845cbb161fdc372c57d2ed37063b2a052c56c97c377c956a3527db6376de7b7133f1611a61d5cfde052ecb91514ce72e7fedf149a7f3f1bc28f240d0e67e65e3a7aa79eb6e84508b1066047ca7de056fd285cc7684279e762fac45d4c501cb0f4f1e4c7edf811e4a35587ad3573720ec9092b81be0b95c40db8e3e488642deb6cdd6b881be4cfb7c70693d2e0e193824f2dd55c8afbd7330b9c311c08a3ed2b50ac9109c3ac0e3ac40290d5130cb3cd62b1d0d800d23015e967664a19e2e20000000098000000000000000701000004000000461e4b00fa8b37582f7f1b5cd5dec2a17c76f57fbafe09e8417e1001cf762bae93d5068c95038cb21f0ae6950970f14c68ec36c6fb830a5319e6fe80691ec9e8741a44181955675e8e054a689581ebf4f2272d5566d5dcdcdee7947030db62e6896958a2aadbb1a67d4db43d026de84f784eec763a8f9585facb5179d4e79165d10000000000000050000000000000000101000000010000d483a3a0e65de8782a7fe26910f755fce013094d8cfb307257b97ecd15e9d22f90a1efa19e6b3b90b45a7fe03a3caec537f439720484e8ede80000000000"], 0x390}}], 0x2, 0x0)

1.373828645s ago: executing program 7 (id=1800):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
mmap(&(0x7f0000ffa000/0x2000)=nil, 0x2000, 0x2000008, 0x8013, r0, 0xf6690000)
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
bind$inet6(r1, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @dev={0xac, 0x14, 0x14, 0xb}}, 0x6}, 0x1c)
connect$inet6(r1, &(0x7f0000000000)={0xa, 0x4e22, 0x7, @ipv4={'\x00', '\xff\xff', @empty}, 0x106}, 0x1c)
writev(r1, &(0x7f00000003c0)=[{&(0x7f0000000100)}, {&(0x7f0000001540)="fc30dbe99679dd0987d9b79d2816807e5ae56a882530ffe1ae10045ba28c5dd5d248346be2a47ba7ee4ad5737e6f7ee5972f54c5c05986ceaefcd934112e67e808e7197431b1ccde1f3f6c5fc18a493805bc62c575cbdf0d821e4d78766945408115744f77f5fd65bbdc64876a8a4cc6c9ac20ba24e72a582ac25cf4c4abc66e220276c80ddfadfb0d2dbd81ac158689bb3ee37cd6030474f0b67ab077d71a4af43f2ad4865aebe10863d1fbc13d4b6fa0cf2ac1622bf3c908302f7e49debf566d5390f5cc4dca4aefa4823d39cb7dd4f4b9ccaa3deca2483f38c68a6dd882630c645b3731764f609c43fdf70d1426eb074aaf64f950877536287cbb548ae806ec459b787cbca0bbc12a0044111c8b688d9d2c1400cbd43c21fee0085f3a88a87d0acc4328488cf64db57a3ac6ca7ba0effedb266c9c8c2eb03d42aa488241af22018d2f94b6e657a54801b656a8806f1f6b009a6e9f37d02caa6795ca7bd3cac3507f37a462e1ac4439246310bfef901b7664009228e5db784966aa690a2a06414cb47c02440fb402a214f204030d28d13f1267dddfab49dc95ab673ec2a243ded076600e33fdca0495a0807d4a3057b703770316b6afd5dcd1ebe22e7922e67c8378c09623c068e49f788048bd2390e8d48301490e26b950018a18b196d038d9786f268a202b76acdeb0e879e291b0585aecc2b12b692e4ebde3703a7036408accf2a7ce0155b54bbd79aebb61e2f881ee21b5dc3b1971194f66e741442683da9d9015f3535458b69b1a231ddba9dedc1c3008bdf45b6b5d8d55f70d016836a1ffcf797c8e87451a3aea994e9a8bf28339910570d2c5fd5cf258e13649667da0fb5597144ba9beaae4488fab4bf92db02dd8a567a3448fbd4994c7ef6e94c1d94fe246a50dd0d4254dbde51ae8f0c135961175d68913beb0dbd725206beb1510ebb44319a9bdcb8949f46cf187faa8ff4095ec2ced4080e9510e16eac28ab16d2b52eef8131b6bb14059566c7b40ec939c3d9da8c07cea2a41943d2b0f2c46935e9d91e0f60933e70e83362e381f8c77bcf5462a8e951b2d268e27c0942c85ef832e731d9c0c72911fb8a5ad85e0d710b48d54d2c1ca5de57b3cc28c7ab7504c11e3ed03a68509159b8ca0b2be181a3ca748cd02969b94907c2687fca03fb6423854627f0c54f8af5b84630c34ec70815063c8ca0303bd6d97f53e2437a177381eb10ec1108d87285d3669fec1b2f31acc0f5663e888cabc8aeda7ca34f377377c7100edf49a914538835a916a0f84bfb5754fe3313c801168f806675b9813c3c3c5a52cbde1b907b2922ecda1db0a81108622e3517aea76f0debee7c452bef87f78394e0d9a85b90db51fd5d953a528d12ce517deef93b518ebc26197818238481940e1b8747f8d3e3398403837fe86a5c67a708c40e6c89275c1f9d07cfd5cee1d0379275899b1cda60b71f1ebe48867864529cd72e8437c01e71fd06c5c5b88752378932aaefc5dfb8580b00ba024cf132cfc2960d50aa0b33e3683f7f193accdd3ee2d0c47724165a0698d5098112ffa058ee93aa3b692ccbfd34274763c74f831c91fb84f7be645b0a00630226659d48e49da81a6d78f4478ad25458d91aae203a9b7413e65d7ae0b837312d09368852ef44960f71e9a2f915cfaa1b0848f2ef1dd6a7656bbfb0247a1f34e1b4d55c83578f2ba3eab5f94c878341e7c05d6a79a6e8c1024cebe808a09e1f202ecd024dfdd939d57ce4ed5a48d6a9b2df40b18d1f2e8b214e172fd05aa5159b71849bef0c9f576255a646453042c4d47e93ae8e0242e58c92fbdfe6748f4787c3ef1da49f0baa841ebbfe490cefca35910db567e59453824299cd26e625fbcfff898261de4f57e54ef909b2694adf79efec260f423055d48e38ed6e177550f6eae88f2f8618348396d006826349612401b40a318a29b5bcbc26e387944b31a852bc9c9cbf3947c9ecab7a9d22b57567c344947d734cfe39742632ff637c6454cd2bb8c5faaabc32a5508e8cb053b49420f53a2fd3bc5496a2300e758f8f5e128e3edb039267e426b863aff638a460579e29be2c9938a2a273949152d0a83f757cdafbc664abefd59297f5dd112d47724e28f52a9660f9def5be26a5afc022e69c37dda79656042651c7bddefeaadabae7dd8ed9232f5e037cf586f5dcc319e18ceb90e7ce62b9ab270fbb62b29578b40614fa0dfba6a22a1cc2a3cc06e5c48d9ed3c145f3306e4e2f44812d908d558740b932229db5fccab7d43853cd18063ec26da594fd0b2f4536b5dcb8b6c1fba1cf907140cda17207a9ba8a185cce514849f48c455574ab110750da0ec415e1e4279fbc63c298336f87b4b4776430195a4ee37f6a265792eb8d32e02ad6611a68cbe13202cc937fc5b3b8503ed59ee75ecf8a11f62d17e3ac0a797f9192217ae30a3ca3361d92cae64d1e00e8dad64c7ac5071df5a77b8cfb7b9e32b19d6c2c435bda45ec7e9bdd1cded92048bc65b346f427dbfe30561b14d73ea105c3866798524be7f211a58ae5db271441368dc68e95add6cb60b66135d3da6000acb5941c3e78c399886c71d9d9e401f9608bcf4e20fb024456d24054f96d7430eb3560e5dba6039190a855f9cfa3e0602a3fd4b7ecf70f7762e07ad1495b82ca660ffd82d1be4d9c098c42a70915d37157c27c7fc07b9eba5dad6bb798b76fe20df121d38ad3c1a33b8b707b1080e34bdd137dd73320a96ecd1d77ad5f73dac3b9a495fdd887c0ed81abb889d665b20fa0eea5ae0fabf7c4660604a3d767b281b8ff54a41af67da99a68598bfeb7060c40db6944cfb5a73058d31832b981b28e5c27c485feeb4a0d5913df851eb935c10b21c0e97f149040972ace826d5d55e09c70f9e43c3e57bfaa84ecbd44e5a4309511a8e5c73d4f7a5a05cc33598b1d5ce596d564b843ca60040358e4ca652d30b8dc3b00e73a3f284578321471cfc12316a80e1d77261598b540a14613100323f11e2bfd1db94d99e7a4cea7c18d82ef0b04eacc956bc032a6c0f3e7c6c0415f9d7ff18a7e72a60c0ec33779b6c4789616c0767294ca898a50ffc7887a4c7376c7d28eb0b74c29b4e399d99fcf91be83c922aabe8065533724c9d82f819bc7a7ebcfe3586b8e2ccde8a0e0ef4fa32e78d1ac90654e70fcb565e81dbe5e51801f501a379e98a74bd31e358950ecd8b5da2232bf90d48c1979d88c429ff77df926be757213796e457064fbff5cb7fee41c3210e8f384d49e95cb33241f459a9cdaa1176cd406f0823abd8c2b8f83dfb96e5e2474d79e30f726c47746520ff4b3227a636d1d24fc19515a63e8333211aa6bc63961eb810ec4830d16baacd52f96eb3d16adc4128500eda2188d88d9ef0235531455eed0657874b425d6ba68a67e3905ab6f4f729aa9ced5ceb96cd183806a6c3720e907f6c7b226c0fe15219c2ff3320c2e6880ad016dc8bdd911d60ea77d971ed05ca154b0e5ee7d6ebc28b86a66baedca6d39939943bff1d8b39dea87a59fecc6279f9b117b04562db7e952b516a91a364a3b57f9f51324764b4e2c50e0dd2b4a62d19fa665be338e0071edc2725a4a775e9eb0a9e1d01482ed9009e2b17deae69740399203d231b2cb54635aab4a5bc71c1d75d5c27a0e850ad7c39a38c2658d72e8bac7e9fd4f351ad427faafebf7beed212a2fae3cc0c811cb54c468d9aacc303567a5ab03d8c00007c80085b5d39285bb161d8db8de11ec6dce9eab7b7dadd892a4f25e3382a4fe72ce2b309d02ceeadb8daa6e28f4baf8535e7dbb888005651bb5f434ec32b45042363bc424dc3b3441fcc12cef6779ca4032835a225a4196aa952ed12eebd4712fe385dd933fc4110de767d0f9127e7cd815d613a454c56f3be15526c6af0cddae6a7ff375d283871b8761e1cc63f3ada963c127bcb528f971b50ebe6da93b36c1c0b11b7a677c3a2a5a09f2e9350b509f22a51e9c1f3e11383e703b9053ddb5884e9a5804b51fa06f7fbb2ddb8a2d72bebcced8d80834780cfcc578e0e2d0219b4d120b3587db65809709197a0c9f5f5262b091fbbf15f4767206f85406e2fad15c29407243834872d55f13a42a9745822b317edb26488e8517de1c61d5003776faa94fb2d851b4c914dfafea5f0228ce3c2c795511ea5d1bc2b47ee56f56cafd0670e81ee59d2a6125075e98d475f671eca2020d96b7cc33167fde43aa045ef9d71db070d02e642bab72d0e9ac64be602228d8e1e91e9486765c2bf6cfccd723564edbbf13a44809d5a03ae5800bde612ec4dc2a96cb9b8de34998b2ba891549d956f333eb2da9a67312d77c46cb1135694e582a4ac41d9eeb4ff87047e12418f9896ffc567c67a4d172203d79077b901ff42a34dadcbf4b80eacf84093206c563d377f30e427fcff6e1e8ad572e2e4dfc3def367feaacf526fcc75cf81d013d24d51adc630db4a51053e70ce6f482f4c41d973b68dac37214e9315556e5fba8dcd68bcaa24256045ada481af6dfd80b01336ba5405b3a6f810eccff2f79e640b8ec1871140f0b773b70f13fad81121fb16f4a92db25d29206c00b3768e47dbe827257e5901c62e2509438ac6596722d9882893e2ea8b1191e09a6638eaae77c8b52c5eba0c3fa2230e48510a1b810259101d75bc488bffdfe1a9c6da9e05e149ce2e9b865db0d884f1028f03c84d947cd33895d8581c83ec55431b340b7fb04cb36d187fe6bc204f6bc390aeec4c949ff0d3db4c1c5b85909f838cf3a56b5d610036a0cc851f836ad72b73377b6eb6a869b802d1c07c424dea55f91e88defff0f07a856a2ba15070f19d5fc5858ac33e233713a1a8445e3255bf43aea9c7cc18f1c225c4b194a333d42c4bb72c994a877b5ae840f1a4f52c9d3bb3afb187b251d1c68f380a5dbd1689a78d98e7edc49014ad7c79708758d8e23c5082298627e38f1e19e1623a8b7e12a6435deae6698f0015d8e2e1e918ab06d060dacad0d6cc6d835619fe361d5e8cde40565b76913a904b7e7c60ddfcce6afc9e4676ca526a68920bcf8fee9d5055ca360d390524ac6aee07060220e13f82d53d3048b7eb0657db4597bf9ad73b1963dee280f181d3d9428baa692e2486112a308c7c5e81f98dacc516909df9df934edc8db18b7d49afc2e00c863dfeb70362571bc9cf0c4c179df7b4ab5ae4737a611966cf9c3593d6731e31ac048f046f78a2ded8c71a5bd422fc7b68239175555896d42563c8cc5b950fd28fa54db2e0cc6cded799f087befa8acd68eea3644b2711259296667530c42e8ee3dab02ce2fe770e68fbbf12e1c274ad54bbd95d16530abfca59d268bd02d5a78d9a5bd91127fcb2bca57436f7bcbffc08422ec54f887fcdd84a81ea0228d75bcca42f2d4b5bd138f5c0821ffb185cbe6c1750b3de7ef6775898c6695e11bfbe2db80e0a500841c45514ee4bd2e84809cd3046eb820c9c96976a90732eebbd3023d02cb7d67f9cc891f8ba370037fd97ea0c5132ce63354c0e7fb7921602680da18f7dda895a287a", 0xf45}], 0x2)
getsockopt$inet6_tcp_TCP_ZEROCOPY_RECEIVE(r1, 0x6, 0x23, &(0x7f00000001c0)={&(0x7f0000ffa000/0x4000)=nil, 0x4000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000380)=0x40)

781.019461ms ago: executing program 6 (id=1801):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$TIPC_NL_LINK_SET(r0, &(0x7f0000000780)={0x0, 0x0, &(0x7f0000000740)={&(0x7f0000000340)={0x2c, 0x0, 0x1, 0x0, 0x0, {0xa}, [@TIPC_NLA_LINK={0x18, 0x4, 0x0, 0x1, [@TIPC_NLA_LINK_NAME={0x13, 0x1, 'broadcast-link\x00'}]}]}, 0x2c}}, 0x0)

514.264922ms ago: executing program 7 (id=1802):
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x4, 0x5, 0x0, &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x12, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000100)={0x6, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="18020000f9ffffff0000000000000000850000002c00000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
pipe(&(0x7f0000000000)={<r2=>0xffffffffffffffff})
sendmsg$IPCTNL_MSG_CT_NEW(r2, 0x0, 0x81)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000180)={'syz_tun\x00', <r3=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000340)={r1, r3, 0x25, 0x0, @val=@iter={0x0}}, 0x20)
syz_emit_ethernet(0x10e80, &(0x7f00000000c0)=ANY=[], 0x0)

464.43058ms ago: executing program 5 (id=1803):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r0 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeef, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000380)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
sendmmsg$unix(r2, &(0x7f0000000000), 0x400000000000041, 0x0)
sched_setaffinity(r0, 0x0, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000140), 0x1, 0x0)
r3 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
sendmsg$key(0xffffffffffffffff, 0x0, 0x4020)
close_range(r3, 0xffffffffffffffff, 0x0)

0s ago: executing program 6 (id=1804):
r0 = socket$inet6(0xa, 0x80002, 0x0)
close(0x3)
unshare(0x400)
openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x200000, 0x0)
bind$inet6(r0, 0x0, 0x0)

kernel console output (not intermixed with test programs):

g attributes in process `syz.3.432'.
[  398.082961][ T7508] netlink: 20 bytes leftover after parsing attributes in process `syz.3.432'.
[  398.310378][ T7056] veth0_vlan: entered promiscuous mode
[  398.517365][ T7056] veth1_vlan: entered promiscuous mode
[  398.705545][ T7516] loop4: detected capacity change from 0 to 1024
[  398.752295][ T7516] EXT4-fs: Ignoring removed orlov option
[  398.838846][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  399.035487][ T7516] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  399.335089][ T7056] veth0_macvtap: entered promiscuous mode
[  399.527003][ T7056] veth1_macvtap: entered promiscuous mode
[  399.671425][ T7531] netlink: 20 bytes leftover after parsing attributes in process `syz.0.436'.
[  400.052668][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.066284][ T7056] batman_adv: batadv0: Interface activated: batadv_slave_0
[  400.328255][ T7056] batman_adv: batadv0: Interface activated: batadv_slave_1
[  400.597577][  T751] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  400.646864][  T751] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  400.840267][  T751] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  400.900065][  T751] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  401.375341][ T7543] netlink: 24 bytes leftover after parsing attributes in process `syz.0.441'.
[  401.452790][ T7543] netlink: 12 bytes leftover after parsing attributes in process `syz.0.441'.
[  401.803487][ T7549] netlink: 8 bytes leftover after parsing attributes in process `syz.3.444'.
[  401.869315][ T7549] netlink: 20 bytes leftover after parsing attributes in process `syz.3.444'.
[  402.571117][ T7556] loop0: detected capacity change from 0 to 1024
[  402.647339][ T7556] EXT4-fs: Ignoring removed orlov option
[  402.856375][ T7562] loop3: detected capacity change from 0 to 1024
[  402.877572][ T7562] EXT4-fs: Ignoring removed orlov option
[  402.882623][ T7556] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.022402][ T7562] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  403.661663][ T7578] loop4: detected capacity change from 0 to 512
[  403.760771][ T7578] EXT4-fs: Ignoring removed i_version option
[  403.851504][ T7578] EXT4-fs: Ignoring removed bh option
[  403.896677][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  404.059134][ T7578] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  404.182116][ T7578] ext4 filesystem being mounted at /80/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  404.243338][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.199625][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  405.931489][ T7599] netlink: 24 bytes leftover after parsing attributes in process `syz.4.454'.
[  406.047839][ T7602] netlink: 8 bytes leftover after parsing attributes in process `syz.0.456'.
[  406.072739][ T7599] netlink: 12 bytes leftover after parsing attributes in process `syz.4.454'.
[  406.136471][ T7602] netlink: 20 bytes leftover after parsing attributes in process `syz.0.456'.
[  407.204033][ T7615] loop0: detected capacity change from 0 to 1024
[  407.285399][ T7615] EXT4-fs: Ignoring removed orlov option
[  407.606250][ T7615] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  407.765375][ T7621] loop3: detected capacity change from 0 to 1024
[  407.842777][ T7621] EXT4-fs: Ignoring removed orlov option
[  407.963724][ T7621] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  408.390035][ T7632] loop1: detected capacity change from 0 to 512
[  408.491333][ T7632] EXT4-fs: Ignoring removed i_version option
[  408.497820][ T7632] EXT4-fs: Ignoring removed bh option
[  408.618455][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.750225][ T7632] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  408.880587][ T7632] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  408.957485][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.752031][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  409.783352][ T7646] loop4: detected capacity change from 0 to 128
[  410.278577][ T7649] netlink: 8 bytes leftover after parsing attributes in process `syz.0.469'.
[  410.350134][ T7649] netlink: 20 bytes leftover after parsing attributes in process `syz.0.469'.
[  410.528308][   T34] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  410.575047][   T34] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  411.039383][   T58] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  411.057767][   T58] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  411.743547][ T7658] loop0: detected capacity change from 0 to 1024
[  411.797484][ T7658] EXT4-fs: Ignoring removed orlov option
[  412.031053][ T7658] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  412.252194][   T29] audit: type=1800 audit(1770854506.246:6): pid=7658 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.473" name="file1" dev="loop0" ino=15 res=0 errno=0
[  412.996787][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  413.104703][ T7677] netlink: 1752 bytes leftover after parsing attributes in process `syz.3.479'.
[  414.149784][ T7686] netlink: 8 bytes leftover after parsing attributes in process `syz.1.482'.
[  414.188775][ T7686] netlink: 20 bytes leftover after parsing attributes in process `syz.1.482'.
[  414.516769][ T7688] syz.0.484 (7688): /proc/7687/oom_adj is deprecated, please use /proc/7687/oom_score_adj instead.
[  414.916452][ T7694] loop1: detected capacity change from 0 to 128
[  415.076457][ T7694] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  415.187523][ T7694] ext4 filesystem being mounted at /121/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  415.639116][ T6853] af_packet: tpacket_rcv: packet too big, clamped from 52 to 4294967272. macoff=96
[  415.867628][ T7705] loop4: detected capacity change from 0 to 1024
[  415.906808][ T5777] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  415.966869][ T7705] EXT4-fs: Ignoring removed orlov option
[  416.117692][ T7705] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.242260][   T29] audit: type=1800 audit(1770854510.236:7): pid=7705 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.490" name="file1" dev="loop4" ino=15 res=0 errno=0
[  416.349307][ T7710] netlink: 1752 bytes leftover after parsing attributes in process `syz.5.491'.
[  416.404965][ T7713] loop1: detected capacity change from 0 to 512
[  416.683272][ T7713] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  416.741425][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.750980][ T7713] ext4 filesystem being mounted at /122/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  417.530819][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.189332][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  419.196323][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  419.493179][ T7748] netlink: 1752 bytes leftover after parsing attributes in process `syz.0.506'.
[  421.571137][ T7774] netlink: 4 bytes leftover after parsing attributes in process `syz.4.512'.
[  421.731755][ T7773] loop0: detected capacity change from 0 to 1024
[  421.850529][ T7773] EXT4-fs: inline encryption not supported
[  421.947713][ T7780] loop3: detected capacity change from 0 to 512
[  421.972645][ T7773] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  422.089533][ T7780] EXT4-fs: Ignoring removed i_version option
[  422.200074][ T7780] EXT4-fs: Ignoring removed bh option
[  422.281782][ T7773] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.513: lblock 2 mapped to illegal pblock 2 (length 1)
[  422.389613][ T7773] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  422.396819][ T7773] EXT4-fs (loop0): Remounting filesystem read-only
[  422.473859][ T7773] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  422.497793][ T7773] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  422.507286][ T7780] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  422.666662][ T7780] ext4 filesystem being mounted at /127/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  422.679168][ T7773] EXT4-fs (loop0): 1 orphan inode deleted
[  422.728410][ T7773] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  423.386989][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  423.954971][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.071744][ T7819] loop1: detected capacity change from 0 to 512
[  425.234773][ T7819] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  425.325626][ T7819] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  425.367226][ T7819] EXT4-fs (loop1): orphan cleanup on readonly fs
[  425.430785][ T7819] EXT4-fs error (device loop1): ext4_orphan_get:1417: comm syz.1.525: bad orphan inode 267
[  425.507534][ T7819] loop1: lost filesystem error report for type 5 error -117
[  425.518745][ T7819] EXT4-fs (loop1): Remounting filesystem read-only
[  425.629992][ T7819] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  425.974554][ T7829] loop0: detected capacity change from 0 to 1024
[  426.047332][ T7829] EXT4-fs: inline encryption not supported
[  426.141647][ T7829] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  426.149583][ T7837] netlink: 4 bytes leftover after parsing attributes in process `syz.4.529'.
[  426.445002][ T7829] EXT4-fs error (device loop0): ext4_map_blocks:783: inode #3: block 2: comm syz.0.530: lblock 2 mapped to illegal pblock 2 (length 1)
[  426.560352][ T7829] loop0: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[  426.561337][ T7829] EXT4-fs (loop0): Remounting filesystem read-only
[  426.688150][ T7829] Quota error (device loop0): qtree_write_dquot: dquota write failed
[  426.738465][ T7829] Quota error (device loop0): v2_write_file_info: Can't write info structure
[  426.818236][ T7829] EXT4-fs (loop0): 1 orphan inode deleted
[  426.888573][ T7829] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  427.521499][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  429.333996][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  432.781035][ T7893] loop3: detected capacity change from 0 to 1024
[  432.822676][ T7893] EXT4-fs: Ignoring removed orlov option
[  433.103793][ T7893] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  433.152118][ T7894] bridge0: port 1(bridge_slave_0) entered disabled state
[  433.191518][ T7894] bridge0: port 1(bridge_slave_0) entered blocking state
[  433.200132][ T7894] bridge0: port 1(bridge_slave_0) entered forwarding state
[  433.744340][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  433.805645][  T795] usb 5-1: new high-speed USB device number 3 using dummy_hcd
[  434.048442][  T795] usb 5-1: Using ep0 maxpacket: 16
[  434.091657][  T795] usb 5-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[  434.164587][  T795] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  434.218451][  T795] usb 5-1: Product: syz
[  434.223138][  T795] usb 5-1: Manufacturer: syz
[  434.256665][  T795] usb 5-1: SerialNumber: syz
[  434.321810][  T795] usb 5-1: config 0 descriptor??
[  434.432677][  T795] uvcvideo 5-1:0.0: Found UVC 0.00 device syz (046d:0721)
[  434.472934][  T795] uvcvideo 5-1:0.0: No valid video chain found.
[  434.716360][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  435.654550][ T7919] syzkaller0: entered promiscuous mode
[  435.707467][ T7919] syzkaller0: entered allmulticast mode
[  435.843959][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  435.945467][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  435.945973][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  437.174793][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  437.276713][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  438.879908][  T795] usb 5-1: USB disconnect, device number 3
[  441.852649][ T7944] loop1: detected capacity change from 0 to 1024
[  441.971888][ T7944] EXT4-fs: Ignoring removed i_version option
[  442.108639][ T7944] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  442.450984][ T7944] Quota error (device loop1): do_check_range: Getting block 64 out of range 1-5
[  442.527840][ T7944] Quota error (device loop1): qtree_read_dquot: Can't read quota structure for id 0
[  442.554058][ T7944] EXT4-fs error (device loop1): ext4_acquire_dquot:6991: comm syz.1.566: Failed to acquire dquot type 0
[  442.593249][ T7944] loop1: lost filesystem error report for type 5 error -117
[  442.618920][ T7944] EXT4-fs error (device loop1): mb_free_blocks:2037: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  442.718165][ T7944] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #13: comm syz.1.566: corrupted inode contents
[  442.779598][ T7947] bridge0: port 1(bridge_slave_0) entered disabled state
[  442.794354][ T7944] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  442.796399][ T7944] EXT4-fs error (device loop1): ext4_dirty_inode:6502: inode #13: comm syz.1.566: mark_inode_dirty error
[  442.841141][ T7947] bridge0: port 1(bridge_slave_0) entered blocking state
[  442.849097][ T7947] bridge0: port 1(bridge_slave_0) entered forwarding state
[  442.870759][ T7944] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  442.902291][ T7944] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #13: comm syz.1.566: corrupted inode contents
[  443.035296][ T7944] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  443.039048][ T7944] EXT4-fs error (device loop1): __ext4_ext_dirty:206: inode #13: comm syz.1.566: mark_inode_dirty error
[  443.137300][ T7944] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  443.141215][ T7944] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #13: comm syz.1.566: corrupted inode contents
[  443.226566][ T7944] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  443.229624][ T7944] EXT4-fs error (device loop1) in ext4_orphan_del:303: Corrupt filesystem
[  443.378954][ T7944] loop1: lost filesystem error report for type 5 error -117
[  443.422086][ T7944] EXT4-fs error (device loop1): ext4_do_update_inode:5617: inode #13: comm syz.1.566: corrupted inode contents
[  443.469059][ T7944] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  443.478884][ T7944] EXT4-fs error (device loop1): ext4_truncate:4635: inode #13: comm syz.1.566: mark_inode_dirty error
[  443.554904][ T7944] loop1: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  443.565708][ T7944] EXT4-fs error (device loop1) in ext4_process_orphan:345: Corrupt filesystem
[  443.597273][  T795] usb 1-1: new high-speed USB device number 2 using dummy_hcd
[  443.652672][ T7944] loop1: lost filesystem error report for type 5 error -117
[  443.685250][ T7944] EXT4-fs (loop1): 1 truncate cleaned up
[  443.744403][ T7944] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.760078][ T7961] IPVS: wrr: FWM 3 0x00000003 - no destination available
[  443.770613][  T796] IPVS: starting estimator thread 0...
[  443.813212][ T7944] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.818239][  T795] usb 1-1: Using ep0 maxpacket: 16
[  443.868591][ T7962] IPVS: using max 192 ests per chain, 9600 per kthread
[  443.902686][  T795] usb 1-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[  443.944969][  T795] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  443.965265][  T795] usb 1-1: Product: syz
[  443.975640][  T795] usb 1-1: Manufacturer: syz
[  443.986789][  T795] usb 1-1: SerialNumber: syz
[  444.036954][  T795] usb 1-1: config 0 descriptor??
[  444.249460][  T795] uvcvideo 1-1:0.0: Found UVC 0.00 device syz (046d:0721)
[  444.346396][  T795] uvcvideo 1-1:0.0: No valid video chain found.
[  448.617325][  T795] usb 1-1: USB disconnect, device number 2
[  448.979301][ T7977] syz.1.575 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  453.710709][ T8023] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0
[  454.157817][   T29] audit: type=1804 audit(1770854548.146:8): pid=8026 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.4.593" name="/newroot/110/file0" dev="tmpfs" ino=598 res=1 errno=0
[  454.191573][ T8026] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -17959, delta: 1
[  454.211153][ T8026] ref_ctr increment failed for inode: 0x256 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff8880464cf700
[  454.334752][ T8028] loop3: detected capacity change from 0 to 512
[  454.389263][ T8024] ref_ctr going negative. vaddr: 0x200000ffd002, curr val: -17959, delta: -1
[  454.405264][ T8028] EXT4-fs: Ignoring removed i_version option
[  454.416009][ T8024] ref_ctr decrement failed for inode: 0x256 offset: 0x5 ref_ctr_offset: 0x2 of mm: 0xffff8880464cf700
[  454.461553][ T8024] uprobe: syz.4.593:8024 failed to unregister, leaking uprobe
[  454.481700][ T8028] EXT4-fs: Ignoring removed bh option
[  454.619584][ T8028] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  454.728444][ T8028] ext4 filesystem being mounted at /143/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  455.553924][ T8032] syzkaller0: entered promiscuous mode
[  455.616856][ T8032] syzkaller0: entered allmulticast mode
[  455.621444][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  458.624154][ T8078] loop1: detected capacity change from 0 to 512
[  458.692008][ T8078] EXT4-fs: Ignoring removed i_version option
[  458.741482][ T8078] EXT4-fs: Ignoring removed bh option
[  458.867032][ T8078] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  458.968410][ T8078] ext4 filesystem being mounted at /144/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  459.079838][ T8085] loop4: detected capacity change from 0 to 512
[  459.164997][ T8085] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  459.254870][ T8085] EXT4-fs (loop4): 1 truncate cleaned up
[  459.325570][ T8085] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  459.529909][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.275872][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  460.320654][ T8093] 8021q: adding VLAN 0 to HW filter on device macvlan4
[  461.925405][ T8112] loop1: detected capacity change from 0 to 512
[  462.313480][ T8114] loop0: detected capacity change from 0 to 512
[  462.324399][ T8114] EXT4-fs: Ignoring removed i_version option
[  462.378973][ T8114] EXT4-fs: Ignoring removed bh option
[  463.971461][ T8114] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  464.079711][ T8114] ext4 filesystem being mounted at /145/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  465.327234][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  466.310643][ T8131] team_slave_0: entered promiscuous mode
[  466.317135][ T8131] team_slave_1: entered promiscuous mode
[  466.421652][ T8131] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  467.544294][  T795] IPVS: starting estimator thread 0...
[  467.693680][ T8149] IPVS: using max 144 ests per chain, 7200 per kthread
[  468.224024][ T8154] netlink: 'syz.4.639': attribute type 13 has an invalid length.
[  469.111212][  T795] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  469.258347][  T795] usb 2-1: Using ep0 maxpacket: 16
[  469.346473][  T795] usb 2-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[  469.346657][  T795] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  469.346797][  T795] usb 2-1: Product: syz
[  469.346911][  T795] usb 2-1: Manufacturer: syz
[  469.347025][  T795] usb 2-1: SerialNumber: syz
[  469.372536][  T795] usb 2-1: config 0 descriptor??
[  469.448765][  T795] uvcvideo 2-1:0.0: Found UVC 0.00 device syz (046d:0721)
[  469.448952][  T795] uvcvideo 2-1:0.0: No valid video chain found.
[  472.995932][ T8154] bridge0: port 2(bridge_slave_1) entered disabled state
[  472.998918][ T8154] bridge0: port 1(bridge_slave_0) entered disabled state
[  473.868308][ T5838] usb 2-1: USB disconnect, device number 2
[  475.070928][ T8154] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  475.169627][ T8178] loop0: detected capacity change from 0 to 1024
[  475.220577][ T8178] EXT4-fs: Ignoring removed orlov option
[  475.235629][ T8154] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  475.334478][ T8178] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  475.903615][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  477.333231][ T8201] netlink: 12 bytes leftover after parsing attributes in process `syz.3.658'.
[  477.493114][ T6846] netdevsim netdevsim4 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  477.505088][ T6846] netdevsim netdevsim4 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  477.514888][    C1] hrtimer: interrupt took 482199 ns
[  477.629258][  T795] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[  477.848313][  T795] usb 1-1: Using ep0 maxpacket: 16
[  477.955845][ T8204] veth3: entered promiscuous mode
[  477.999235][ T8204] veth3: entered allmulticast mode
[  478.010194][  T795] usb 1-1: New USB device found, idVendor=046d, idProduct=0721, bcdDevice=9c.25
[  478.024400][  T795] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  478.086209][ T8204] bridge1: port 1(veth3) entered blocking state
[  478.098183][  T795] usb 1-1: Product: syz
[  478.102717][  T795] usb 1-1: Manufacturer: syz
[  478.102840][  T795] usb 1-1: SerialNumber: syz
[  478.139681][  T795] usb 1-1: config 0 descriptor??
[  478.188506][ T8204] bridge1: port 1(veth3) entered disabled state
[  478.226494][  T795] uvcvideo 1-1:0.0: Found UVC 0.00 device syz (046d:0721)
[  478.226686][  T795] uvcvideo 1-1:0.0: No valid video chain found.
[  478.246501][ T8204] bridge1: port 1(veth3) entered blocking state
[  478.246966][ T8204] bridge1: port 1(veth3) entered forwarding state
[  478.350430][ T6850] bridge1: port 1(veth3) entered disabled state
[  478.361481][ T6846] netdevsim netdevsim4 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  478.361820][ T6846] netdevsim netdevsim4 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  480.742632][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  480.743136][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  482.619485][ T5836] usb 1-1: USB disconnect, device number 3
[  482.759454][ T5778] Bluetooth: hci5: command 0x0406 tx timeout
[  483.395298][ T8221] 8021q: VLANs not supported on vcan0
[  484.956297][ T8243] loop5: detected capacity change from 0 to 164
[  489.569540][ T8298] bridge0: port 2(bridge_slave_1) entered disabled state
[  489.579712][ T8298] bridge0: port 1(bridge_slave_0) entered disabled state
[  489.651044][ T8299] netlink: 1624 bytes leftover after parsing attributes in process `syz.0.690'.
[  489.664518][ T8298] bridge0: entered promiscuous mode
[  493.424119][ T8345] netlink: 52 bytes leftover after parsing attributes in process `syz.4.705'.
[  496.787087][ T8381] netlink: 52 bytes leftover after parsing attributes in process `syz.5.718'.
[  497.605287][ T8391] netlink: 48 bytes leftover after parsing attributes in process `syz.0.720'.
[  499.541289][ T8412] loop3: detected capacity change from 0 to 1024
[  499.582726][ T8412] EXT4-fs: Ignoring removed i_version option
[  499.676684][ T8412] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  499.830862][ T8412] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5
[  499.940363][ T8412] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  499.970447][ T8418] netlink: 64 bytes leftover after parsing attributes in process `syz.0.730'.
[  500.058816][ T8412] EXT4-fs error (device loop3): ext4_acquire_dquot:6991: comm syz.3.727: Failed to acquire dquot type 0
[  500.108444][ T8412] loop3: lost filesystem error report for type 5 error -117
[  500.162580][ T8412] EXT4-fs error (device loop3): mb_free_blocks:2037: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  500.318749][ T8412] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #13: comm syz.3.727: corrupted inode contents
[  500.398407][ T8412] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  500.402151][ T8412] EXT4-fs error (device loop3): ext4_dirty_inode:6502: inode #13: comm syz.3.727: mark_inode_dirty error
[  500.469971][ T8412] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  500.474558][ T8412] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #13: comm syz.3.727: corrupted inode contents
[  500.526153][ T8412] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  500.542192][ T8412] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #13: comm syz.3.727: mark_inode_dirty error
[  500.574645][ T8412] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  500.622824][ T8412] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #13: comm syz.3.727: corrupted inode contents
[  500.646983][ T8412] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  500.693668][ T8412] EXT4-fs error (device loop3) in ext4_orphan_del:303: Corrupt filesystem
[  500.732417][ T8412] loop3: lost filesystem error report for type 5 error -117
[  500.733927][ T8412] EXT4-fs error (device loop3): ext4_do_update_inode:5617: inode #13: comm syz.3.727: corrupted inode contents
[  500.828528][ T8412] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  500.837469][ T8412] EXT4-fs error (device loop3): ext4_truncate:4635: inode #13: comm syz.3.727: mark_inode_dirty error
[  500.908489][ T8412] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  500.923412][ T8412] EXT4-fs error (device loop3) in ext4_process_orphan:345: Corrupt filesystem
[  501.058341][ T8412] loop3: lost filesystem error report for type 5 error -117
[  501.115736][ T8412] EXT4-fs (loop3): 1 truncate cleaned up
[  501.217381][ T8412] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  501.860952][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  502.392014][ T8431] netlink: 48 bytes leftover after parsing attributes in process `syz.1.735'.
[  503.871894][ T8450] netlink: 64 bytes leftover after parsing attributes in process `syz.4.742'.
[  505.114795][ T8460] netlink: 8 bytes leftover after parsing attributes in process `syz.0.746'.
[  505.204496][ T8460] netlink: 71 bytes leftover after parsing attributes in process `syz.0.746'.
[  510.307565][ T8525] loop0: detected capacity change from 0 to 1024
[  510.342605][ T8525] EXT4-fs: Ignoring removed orlov option
[  510.531567][ T8525] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  510.655897][ T8528] loop5: detected capacity change from 0 to 1024
[  510.756172][ T8528] EXT4-fs: Ignoring removed orlov option
[  510.897410][ T8528] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  511.383382][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  511.493898][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  513.165754][ T8547] syzkaller0: entered promiscuous mode
[  513.209967][ T8547] syzkaller0: entered allmulticast mode
[  514.436744][ T8565] loop5: detected capacity change from 0 to 512
[  514.854052][ T8567] loop3: detected capacity change from 0 to 1024
[  514.901530][ T8567] EXT4-fs: Ignoring removed orlov option
[  514.983915][ T8569] netlink: 20 bytes leftover after parsing attributes in process `syz.1.789'.
[  515.020884][ T8567] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  516.231941][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  517.854543][ T8610] netlink: 20 bytes leftover after parsing attributes in process `syz.1.803'.
[  518.482651][ T8602] syzkaller0: entered promiscuous mode
[  518.508108][ T8602] syzkaller0: entered allmulticast mode
[  518.897232][ T8622] loop5: detected capacity change from 0 to 1024
[  518.967157][ T8622] EXT4-fs: Ignoring removed orlov option
[  519.086280][ T8622] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  519.715483][ T8638] netlink: 4 bytes leftover after parsing attributes in process `syz.4.807'.
[  519.986534][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  520.273291][ T8642] netlink: 'syz.0.809': attribute type 4 has an invalid length.
[  522.882147][ T8676] loop0: detected capacity change from 0 to 512
[  522.958345][ T8676] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  523.103274][ T8676] EXT4-fs (loop0): 1 truncate cleaned up
[  523.193239][ T8676] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  523.363829][ T8676] EXT4-fs error (device loop0): ext4_generic_delete_entry:2666: inode #2: block 13: comm syz.0.824: bad entry in directory: rec_len is smaller than minimal - offset=24, inode=11, rec_len=8, size=1024 fake=0
[  523.479247][ T8676] EXT4-fs (loop0): Remounting filesystem read-only
[  523.527219][ T8676] EXT4-fs warning (device loop0): ext4_rename_delete:3729: inode #2: comm syz.0.824: Deleting old file: nlink 5, error=-117
[  524.064805][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  527.381723][ T8729] netlink: 4 bytes leftover after parsing attributes in process `syz.0.840'.
[  529.164639][ T8744] loop5: detected capacity change from 0 to 512
[  529.281020][ T8744] EXT4-fs: Ignoring removed i_version option
[  529.315933][ T8744] EXT4-fs: Ignoring removed bh option
[  529.577436][ T8744] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  529.674177][ T8744] ext4 filesystem being mounted at /73/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  530.542848][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  531.503236][ T8777] loop5: detected capacity change from 0 to 1024
[  531.661842][ T8777] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  532.390644][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  533.627352][ T8805] loop4: detected capacity change from 0 to 512
[  533.827333][ T8805] EXT4-fs: Ignoring removed i_version option
[  533.913685][ T8805] EXT4-fs: Ignoring removed bh option
[  534.311804][ T8805] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  534.507518][ T8805] ext4 filesystem being mounted at /160/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  535.616822][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  538.644619][ T8837] netlink: 8 bytes leftover after parsing attributes in process `syz.1.871'.
[  540.756011][ T8851] loop1: detected capacity change from 0 to 512
[  540.851947][ T8851] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  540.960166][ T8851] EXT4-fs (loop1): 1 truncate cleaned up
[  541.031237][ T8851] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  541.669671][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  542.091459][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  542.109725][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  542.128096][ T8871] netlink: 168 bytes leftover after parsing attributes in process `syz.1.881'.
[  542.257473][ T8868] loop4: detected capacity change from 0 to 1024
[  542.495536][ T8868] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  542.582242][ T8868] ext4 filesystem being mounted at /163/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  543.127390][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  544.321327][ T8899] loop4: detected capacity change from 0 to 512
[  544.371162][ T8899] EXT4-fs: Ignoring removed i_version option
[  544.408431][ T8899] EXT4-fs: Ignoring removed bh option
[  544.541054][ T8899] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  544.629193][ T8899] ext4 filesystem being mounted at /165/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  545.401110][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  547.376675][ T8935] loop0: detected capacity change from 0 to 4096
[  547.573040][ T8935] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  548.244876][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  548.300690][ T8946] loop3: detected capacity change from 0 to 512
[  548.345648][ T8946] EXT4-fs: Ignoring removed i_version option
[  548.411768][ T8946] EXT4-fs: Ignoring removed bh option
[  548.751706][ T8946] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  548.882132][ T8946] ext4 filesystem being mounted at /208/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  549.509291][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  550.643487][ T8981] loop3: detected capacity change from 0 to 512
[  550.720899][ T8981] EXT4-fs: Ignoring removed orlov option
[  550.794628][ T8981] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  550.897314][ T8981] EXT4-fs (loop3): orphan cleanup on readonly fs
[  551.052022][ T8986] loop1: detected capacity change from 0 to 1024
[  551.072330][ T8981] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.919: bg 0: block 248: padding at end of block bitmap is not set
[  551.130628][ T8981] loop3: lost filesystem error report for type 5 error -117
[  551.133849][ T8986] EXT4-fs: Ignoring removed orlov option
[  551.164070][ T8981] Quota error (device loop3): write_blk: dquota write failed
[  551.184427][ T8981] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  551.238975][ T8981] EXT4-fs error (device loop3): ext4_acquire_dquot:6991: comm syz.3.919: Failed to acquire dquot type 1
[  551.356768][ T8981] loop3: lost filesystem error report for type 5 error -117
[  551.368759][ T8986] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  551.420396][ T8981] EXT4-fs (loop3): 1 truncate cleaned up
[  551.496466][ T8981] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  551.610080][ T8994] netlink: 8 bytes leftover after parsing attributes in process `syz.5.922'.
[  552.085214][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  552.195306][ T8997] loop0: detected capacity change from 0 to 512
[  552.239419][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  552.274599][ T8997] EXT4-fs: Ignoring removed i_version option
[  552.310728][ T8998] loop4: detected capacity change from 0 to 1024
[  552.327123][ T8997] EXT4-fs: Ignoring removed bh option
[  552.436475][ T8998] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  552.516378][ T8997] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  552.556648][ T8998] ext4 filesystem being mounted at /171/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  552.562883][ T8997] ext4 filesystem being mounted at /208/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  552.669251][ T8998] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 3: comm syz.4.924: lblock 3 mapped to illegal pblock 3 (length 3)
[  552.725875][ T9005] loop3: detected capacity change from 0 to 1024
[  552.770071][ T8998] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  552.866340][ T8998] EXT4-fs (loop4): This should not happen!! Data will be lost
[  552.866340][ T8998] 
[  552.941062][ T9005] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  553.023817][ T9005] ext4 filesystem being mounted at /211/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  553.259026][ T9005] EXT4-fs error (device loop3): ext4_map_blocks:825: inode #15: block 3: comm syz.3.926: lblock 3 mapped to illegal pblock 3 (length 3)
[  553.335451][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  553.346553][ T9005] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  553.392900][ T1098] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 8: comm kworker/u8:7: lblock 8 mapped to illegal pblock 8 (length 8)
[  553.478414][ T9005] EXT4-fs (loop3): This should not happen!! Data will be lost
[  553.478414][ T9005] 
[  553.526274][ T1098] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  553.618155][ T1098] EXT4-fs (loop4): This should not happen!! Data will be lost
[  553.618155][ T1098] 
[  553.756750][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  554.019879][   T34] EXT4-fs error (device loop3): ext4_map_blocks:825: inode #15: block 8: comm kworker/u8:2: lblock 8 mapped to illegal pblock 8 (length 8)
[  554.080985][   T34] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  554.158002][   T34] EXT4-fs (loop3): This should not happen!! Data will be lost
[  554.158002][   T34] 
[  554.389016][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  554.453629][ T9020] netlink: 'syz.4.931': attribute type 13 has an invalid length.
[  556.143783][ T9039] loop0: detected capacity change from 0 to 512
[  556.182429][ T9039] EXT4-fs: Ignoring removed i_version option
[  556.258567][ T9039] EXT4-fs: Ignoring removed bh option
[  556.498898][ T9039] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  556.605259][ T9039] ext4 filesystem being mounted at /211/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  557.116399][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  557.167400][ T9048] loop3: detected capacity change from 0 to 1024
[  557.365526][ T9048] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  557.469358][ T9048] ext4 filesystem being mounted at /215/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  557.653863][ T9048] EXT4-fs error (device loop3): ext4_map_blocks:825: inode #15: block 3: comm syz.3.943: lblock 3 mapped to illegal pblock 3 (length 3)
[  557.812788][ T9048] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  557.885818][ T9048] EXT4-fs (loop3): This should not happen!! Data will be lost
[  557.885818][ T9048] 
[  558.100494][ T9061] netlink: 'syz.4.946': attribute type 13 has an invalid length.
[  558.692144][ T6850] EXT4-fs error (device loop3): ext4_map_blocks:825: inode #15: block 8: comm kworker/u8:14: lblock 8 mapped to illegal pblock 8 (length 8)
[  558.843061][ T6850] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  558.958603][ T6850] EXT4-fs (loop3): This should not happen!! Data will be lost
[  558.958603][ T6850] 
[  559.104195][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  560.127193][ T9085] loop4: detected capacity change from 0 to 128
[  560.235308][ T9086] loop1: detected capacity change from 0 to 512
[  560.242330][ T9086] EXT4-fs: Ignoring removed i_version option
[  560.242473][ T9086] EXT4-fs: Ignoring removed bh option
[  560.476636][ T9086] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  560.497731][ T9086] ext4 filesystem being mounted at /216/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  561.373562][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  561.559360][ T9097] netlink: 'syz.5.958': attribute type 13 has an invalid length.
[  564.003407][ T9097] bridge0: port 2(bridge_slave_1) entered disabled state
[  564.014530][ T9097] bridge0: port 1(bridge_slave_0) entered disabled state
[  565.013136][ T9097] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  565.101955][ T9097] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  565.150018][ T9140] loop3: detected capacity change from 0 to 512
[  565.202858][ T9140] EXT4-fs: Ignoring removed i_version option
[  565.240543][ T9140] EXT4-fs: Ignoring removed bh option
[  565.454029][ T9140] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  565.552295][ T9140] ext4 filesystem being mounted at /221/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  566.047219][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  566.815421][ T1098] netdevsim netdevsim5 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  566.857697][ T1098] netdevsim netdevsim5 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  566.902093][ T1098] netdevsim netdevsim5 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  566.940054][ T1098] netdevsim netdevsim5 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  568.778298][ T9177] loop3: detected capacity change from 0 to 512
[  568.814709][ T9177] EXT4-fs: Ignoring removed i_version option
[  568.828410][ T9177] EXT4-fs: Ignoring removed bh option
[  568.980424][ T9177] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  569.027383][ T9179] usb usb9: usbfs: process 9179 (syz.0.982) did not claim interface 0 before use
[  569.103721][ T9177] ext4 filesystem being mounted at /224/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  569.374731][ T9186] netlink: 'syz.4.984': attribute type 13 has an invalid length.
[  569.790156][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  570.276405][ T9196] loop4: detected capacity change from 0 to 1024
[  570.428193][ T9201] netlink: 48 bytes leftover after parsing attributes in process `syz.3.987'.
[  570.477418][ T9196] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  570.527519][ T9196] ext4 filesystem being mounted at /183/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  570.578832][ T9201] netdevsim netdevsim3 netdevsim0: entered promiscuous mode
[  570.623764][ T9196] EXT4-fs error (device loop4): ext4_map_blocks:825: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 3)
[  570.765432][ T9196] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  570.845104][ T9196] EXT4-fs (loop4): This should not happen!! Data will be lost
[  570.845104][ T9196] 
[  570.934447][ T9194] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.033193][ T9206] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.082801][ T9206] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.225946][ T9194] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.282790][   T29] audit: type=1326 audit(1770854665.276:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9207 comm="syz.5.990" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f392e19bf79 code=0x0
[  571.365264][ T9206] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.514493][ T9194] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.585434][ T9206] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.646336][ T9206] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.727126][ T9206] EXT4-fs error (device loop4): ext4_map_blocks:783: inode #15: block 3: comm syz.4.988: lblock 3 mapped to illegal pblock 3 (length 1)
[  571.929025][ T9214] loop0: detected capacity change from 0 to 1024
[  572.028518][ T9214] EXT4-fs: Ignoring removed orlov option
[  572.226136][ T9214] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  572.314682][ T1108] EXT4-fs (loop4): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  572.343926][ T9222] loop3: detected capacity change from 0 to 4096
[  572.393447][ T1108] EXT4-fs (loop4): This should not happen!! Data will be lost
[  572.393447][ T1108] 
[  572.421863][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  572.489791][ T9222] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  572.925909][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  572.946527][ T9230] loop4: detected capacity change from 0 to 512
[  572.961026][ T9231] netlink: 'syz.1.998': attribute type 13 has an invalid length.
[  573.028344][ T9230] EXT4-fs: Ignoring removed i_version option
[  573.072678][ T9230] EXT4-fs: Ignoring removed bh option
[  573.142424][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  573.275874][ T9230] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  573.391280][ T9230] ext4 filesystem being mounted at /184/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  573.698059][ T9237] loop0: detected capacity change from 0 to 128
[  574.232602][ T9244] netlink: 48 bytes leftover after parsing attributes in process `syz.5.1002'.
[  574.319626][ T9241] loop3: detected capacity change from 0 to 1024
[  574.396189][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  574.559517][ T9241] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  574.597645][ T9241] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  574.886270][ T9241] EXT4-fs error (device loop3): ext4_map_blocks:825: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 3)
[  574.960925][ T9241] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  575.049067][ T9241] EXT4-fs (loop3): This should not happen!! Data will be lost
[  575.049067][ T9241] 
[  575.101806][ T9231] bridge0: port 2(bridge_slave_1) entered disabled state
[  575.110811][ T9231] bridge0: port 1(bridge_slave_0) entered disabled state
[  575.160120][ T9247] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.290854][ T9247] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.383356][ T9240] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.501084][ T9247] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.568247][ T9240] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.657587][ T9240] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.707530][ T9247] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.765516][ T9247] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  575.830680][ T9240] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1001: lblock 3 mapped to illegal pblock 3 (length 1)
[  576.350894][ T5885] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  576.388966][ T5885] EXT4-fs (loop3): This should not happen!! Data will be lost
[  576.388966][ T5885] 
[  576.441464][ T9231] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  576.460739][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  576.527044][ T9231] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  577.452606][ T9268] loop3: detected capacity change from 0 to 1024
[  577.542711][ T9268] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  577.572235][ T9268] ext4 filesystem being mounted at /230/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  577.744425][ T9268] EXT4-fs error (device loop3): ext4_map_blocks:825: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 3)
[  577.785780][ T9268] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 3 with max blocks 3 with error 117
[  577.828779][ T9268] EXT4-fs (loop3): This should not happen!! Data will be lost
[  577.828779][ T9268] 
[  577.859011][ T9271] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  577.920970][ T9267] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  577.947697][ T9267] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  578.000513][ T9271] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  578.020784][ T9267] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  578.053458][ T9244] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[  578.103912][ T9268] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  578.156741][ T9271] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  578.260435][   T57] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  578.268433][ T9271] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  578.305959][   T57] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  578.314230][ T9271] EXT4-fs error (device loop3): ext4_map_blocks:783: inode #15: block 3: comm syz.3.1008: lblock 3 mapped to illegal pblock 3 (length 1)
[  578.346086][   T57] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  578.380391][   T57] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  578.664269][ T9279] loop5: detected capacity change from 0 to 1024
[  578.734101][ T9279] EXT4-fs: Ignoring removed orlov option
[  578.744969][ T5885] EXT4-fs (loop3): Delayed block allocation failed for inode 15 at logical offset 8 with max blocks 8 with error 117
[  578.812070][ T5885] EXT4-fs (loop3): This should not happen!! Data will be lost
[  578.812070][ T5885] 
[  578.820597][ T9279] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  579.008890][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  579.023406][ T9286] loop4: detected capacity change from 0 to 512
[  579.057254][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  579.064565][ T9286] EXT4-fs: Ignoring removed i_version option
[  579.113225][ T9286] EXT4-fs: Ignoring removed bh option
[  579.306421][ T9286] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.383050][ T9281] loop1: detected capacity change from 0 to 4096
[  579.391723][ T9286] ext4 filesystem being mounted at /186/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  579.554388][ T9281] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  579.957693][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.301913][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  580.357392][ T9292] syzkaller0: entered promiscuous mode
[  580.408671][ T9292] syzkaller0: entered allmulticast mode
[  580.959432][ T9311] netlink: 'syz.5.1021': attribute type 13 has an invalid length.
[  580.990997][ T9314] netlink: 48 bytes leftover after parsing attributes in process `syz.4.1020'.
[  581.246182][ T9314] netdevsim netdevsim4 netdevsim0: entered promiscuous mode
[  582.178516][ T9326] loop5: detected capacity change from 0 to 1024
[  582.291772][ T9326] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  582.309158][ T9326] ext4 filesystem being mounted at /104/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  582.335454][ T9330] loop3: detected capacity change from 0 to 1024
[  582.349362][ T9335] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm ext4lazyinit: bg 0: block 112: padding at end of block bitmap is not set
[  582.440281][ T9330] EXT4-fs: Ignoring removed orlov option
[  582.512108][ T9326] EXT4-fs error (device loop5): ext4_map_blocks:825: inode #15: block 3: comm syz.5.1024: lblock 3 mapped to illegal pblock 3 (length 1)
[  582.562047][ T9326] EXT4-fs error (device loop5): ext4_ext_remove_space:2955: inode #15: comm syz.5.1024: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 2, max 4(4), depth 0(0)
[  582.655360][ T9330] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  582.961191][ T9344] loop0: detected capacity change from 0 to 512
[  582.996559][ T9344] EXT4-fs: Ignoring removed i_version option
[  583.048597][ T9344] EXT4-fs: Ignoring removed bh option
[  583.141355][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  583.179847][ T9344] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  583.277270][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  583.310956][ T9344] ext4 filesystem being mounted at /232/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  583.859381][ T9359] netlink: 'syz.3.1034': attribute type 13 has an invalid length.
[  583.861480][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  584.143395][ T9365] netlink: 48 bytes leftover after parsing attributes in process `syz.1.1036'.
[  585.115907][ T9373] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1039'.
[  585.491201][ T9359] team_slave_0: left promiscuous mode
[  585.516095][ T9359] team_slave_1: left promiscuous mode
[  586.106867][ T9359] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  586.159580][ T9359] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  587.403106][ T9358] syzkaller0: entered promiscuous mode
[  587.409425][ T9358] syzkaller0: entered allmulticast mode
[  587.424756][ T9365] netdevsim netdevsim1 netdevsim0: entered promiscuous mode
[  587.538718][ T9381] loop3: detected capacity change from 0 to 1024
[  587.622114][ T9381] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  587.858961][   T57] netdevsim netdevsim3 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  587.898171][   T57] netdevsim netdevsim3 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  587.921763][   T57] netdevsim netdevsim3 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  587.972739][   T57] netdevsim netdevsim3 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  588.060312][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  588.460461][ T9391] loop1: detected capacity change from 0 to 512
[  588.510630][ T9391] EXT4-fs: Ignoring removed i_version option
[  588.516913][ T9391] EXT4-fs: Ignoring removed bh option
[  588.677174][ T9391] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  588.713992][ T9391] ext4 filesystem being mounted at /237/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  588.983237][ T9404] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1050'.
[  589.203259][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  589.589698][ T9411] netlink: 'syz.0.1053': attribute type 13 has an invalid length.
[  589.995297][ T9424] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1054'.
[  590.167025][ T9423] loop5: detected capacity change from 0 to 1024
[  590.334403][ T9426] loop4: detected capacity change from 0 to 512
[  590.414745][ T9423] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  590.459070][ T9426] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  590.590255][ T9426] EXT4-fs (loop4): 1 truncate cleaned up
[  590.676444][ T9426] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  590.860337][   T29] audit: type=1800 audit(1770854684.856:10): pid=9426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1057" name="bus" dev="loop4" ino=18 res=0 errno=0
[  591.029944][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  591.040337][ T9411] bridge0: port 2(bridge_slave_1) entered disabled state
[  591.049098][ T9411] bridge0: port 1(bridge_slave_0) entered disabled state
[  591.304502][ T9411] team_slave_0: left promiscuous mode
[  591.353553][ T9411] team_slave_1: left promiscuous mode
[  591.369915][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  592.370495][ T9411] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  592.522898][ T9411] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  594.566791][  T751] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.625987][  T751] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.660968][  T751] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  594.719204][ T9480] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1065'.
[  595.397501][ T9492] loop4: detected capacity change from 0 to 512
[  595.468746][ T9492] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  595.549088][ T9492] EXT4-fs (loop4): 1 truncate cleaned up
[  595.564033][ T9492] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  595.699181][   T29] audit: type=1800 audit(1770854689.696:11): pid=9492 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1070" name="bus" dev="loop4" ino=18 res=0 errno=0
[  596.047222][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  596.462090][ T9503] loop5: detected capacity change from 0 to 512
[  596.494503][ T9503] EXT4-fs: Ignoring removed i_version option
[  596.518549][ T9503] EXT4-fs: Ignoring removed bh option
[  596.612025][ T9506] netlink: 'syz.3.1074': attribute type 13 has an invalid length.
[  596.650110][ T9503] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  596.763986][ T9503] ext4 filesystem being mounted at /112/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  597.211805][ T9514] netlink: 40 bytes leftover after parsing attributes in process `syz.4.1075'.
[  597.417718][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  598.073703][ T9525] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1079'.
[  598.322456][ T9518] syzkaller0: entered promiscuous mode
[  598.364540][ T9518] syzkaller0: entered allmulticast mode
[  599.301426][ T9552] loop1: detected capacity change from 0 to 1024
[  599.331675][ T9553] loop4: detected capacity change from 0 to 512
[  599.511621][ T9553] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  599.541249][ T9552] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.664738][ T9553] EXT4-fs (loop4): 1 truncate cleaned up
[  599.764405][ T9553] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  599.914596][   T29] audit: type=1800 audit(1770854693.896:12): pid=9553 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1082" name="bus" dev="loop4" ino=18 res=0 errno=0
[  599.997068][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.229586][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  600.958567][ T9572] netlink: 'syz.5.1087': attribute type 13 has an invalid length.
[  601.280421][ T9576] loop4: detected capacity change from 0 to 512
[  601.331671][ T9576] EXT4-fs: Ignoring removed i_version option
[  601.372433][ T9576] EXT4-fs: Ignoring removed bh option
[  601.530888][ T9576] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  601.545861][ T9586] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1089'.
[  601.662801][ T9576] ext4 filesystem being mounted at /205/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  602.495028][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  603.199273][ T9607] loop4: detected capacity change from 0 to 1024
[  603.292738][ T9607] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  603.506245][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  603.515468][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  603.609923][ T9612] syzkaller0: entered promiscuous mode
[  603.633687][ T9612] syzkaller0: entered allmulticast mode
[  603.721895][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  604.108470][ T9624] netlink: 'syz.4.1100': attribute type 13 has an invalid length.
[  604.757731][ T9635] netlink: 48 bytes leftover after parsing attributes in process `syz.3.1105'.
[  604.769444][ T9626] loop0: detected capacity change from 0 to 4096
[  604.992757][ T9626] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  605.318101][   T29] audit: type=1326 audit(1770854699.296:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9639 comm="syz.4.1106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673959bf79 code=0x7ffc0000
[  605.465028][   T29] audit: type=1326 audit(1770854699.306:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9639 comm="syz.4.1106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7f673959bf79 code=0x7ffc0000
[  605.509098][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  605.569085][   T29] audit: type=1326 audit(1770854699.306:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9639 comm="syz.4.1106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673959bf79 code=0x7ffc0000
[  605.655617][   T29] audit: type=1326 audit(1770854699.336:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9639 comm="syz.4.1106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f673959bf79 code=0x7ffc0000
[  605.797645][   T29] audit: type=1326 audit(1770854699.336:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9639 comm="syz.4.1106" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f673959bf79 code=0x7ffc0000
[  606.620121][ T9655] syzkaller0: entered promiscuous mode
[  606.625984][ T9655] syzkaller0: entered allmulticast mode
[  606.944850][ T9663] netlink: 'syz.4.1114': attribute type 13 has an invalid length.
[  608.225687][ T9674] loop1: detected capacity change from 0 to 4096
[  608.381043][ T9674] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  608.837451][ T9686] loop4: detected capacity change from 0 to 128
[  608.912177][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  608.932587][ T9686] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  608.992014][ T9686] ext4 filesystem being mounted at /213/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  609.821909][ T5775] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  610.183858][ T9698] netlink: 'syz.4.1127': attribute type 13 has an invalid length.
[  610.506382][ T9702] syzkaller0: entered promiscuous mode
[  610.549164][ T9702] syzkaller0: entered allmulticast mode
[  611.261380][ T9714] netlink: 'syz.4.1134': attribute type 13 has an invalid length.
[  611.972610][ T9729] netlink: 'syz.5.1141': attribute type 13 has an invalid length.
[  612.929379][ T9737] syzkaller0: entered promiscuous mode
[  612.935790][ T9737] syzkaller0: entered allmulticast mode
[  614.335892][ T9745] syzkaller0: entered promiscuous mode
[  614.368250][ T9745] syzkaller0: entered allmulticast mode
[  614.480662][ T9767] netlink: 168 bytes leftover after parsing attributes in process `syz.4.1150'.
[  616.050666][ T9779] netlink: 'syz.1.1154': attribute type 13 has an invalid length.
[  616.745345][   T29] audit: type=1326 audit(1770854710.736:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9792 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe738f9bf79 code=0x7ffc0000
[  616.898950][   T29] audit: type=1326 audit(1770854710.776:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9792 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=194 compat=0 ip=0x7fe738f9bf79 code=0x7ffc0000
[  616.991958][   T29] audit: type=1326 audit(1770854710.776:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9792 comm="syz.1.1159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe738f9bf79 code=0x7ffc0000
[  618.015660][ T9813] syzkaller0: entered promiscuous mode
[  618.032373][ T9813] syzkaller0: entered allmulticast mode
[  618.510663][ T9819] netlink: 'syz.4.1169': attribute type 13 has an invalid length.
[  619.270919][ T9825] loop4: detected capacity change from 0 to 1024
[  619.350190][ T9825] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  619.402197][ T9825] ext4 filesystem being mounted at /224/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  620.120318][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  622.933905][ T9863] netlink: 'syz.4.1182': attribute type 13 has an invalid length.
[  622.952640][ T9861] syzkaller0: entered promiscuous mode
[  622.968255][ T9861] syzkaller0: entered allmulticast mode
[  623.018510][ T9864] loop0: detected capacity change from 0 to 1024
[  623.134103][ T9864] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  623.258455][ T9864] ext4 filesystem being mounted at /259/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  623.851872][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  625.454224][ T9886] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0
[  627.286131][ T9900] syzkaller0: entered promiscuous mode
[  627.308550][ T9900] syzkaller0: entered allmulticast mode
[  627.728456][ T9913] loop5: detected capacity change from 0 to 1024
[  627.896423][ T9913] EXT4-fs (loop5): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  628.001342][ T9913] ext4 filesystem being mounted at /137/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  628.432531][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  629.821279][ T9945] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1206'.
[  631.675371][ T9963] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1208'.
[  632.172826][ T9971] syzkaller0: entered promiscuous mode
[  632.199105][ T9971] syzkaller0: entered allmulticast mode
[  632.265750][ T9963] batman_adv: batadv0: Removing interface: batadv_slave_1
[  633.620048][ T9994] IPVS: sync thread started: state = BACKUP, mcast_ifn = veth0_to_bond, syncid = 0, id = 0
[  636.466333][T10032] loop3: detected capacity change from 0 to 512
[  636.638715][T10032] fscrypt (loop3, inode 2): Error -61 getting encryption context
[  636.754494][T10032] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -61
[  636.777230][T10032] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #13: comm syz.3.1224: iget: bad i_size value: 12154757448730
[  636.793189][T10032] loop3: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117
[  636.794775][T10032] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.1224: couldn't read orphan inode 13 (err -117)
[  636.830358][T10043] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1227'.
[  636.845151][T10032] loop3: lost filesystem error report for type 5 error -117
[  636.850193][T10032] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  636.886686][T10032] fscrypt (loop3, inode 2): Error -61 getting encryption context
[  637.234984][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  637.431658][T10049] loop0: detected capacity change from 0 to 512
[  637.498791][T10049] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  637.550618][T10049] EXT4-fs (loop0): can't mount with data_err=abort, fs mounted w/o journal
[  637.794973][T10048] syzkaller0: entered promiscuous mode
[  637.899443][T10048] syzkaller0: entered allmulticast mode
[  639.726323][T10087] loop0: detected capacity change from 0 to 1024
[  639.919524][T10087] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  640.196079][T10087] EXT4-fs error (device loop0): ext4_mb_mark_diskspace_used:4215: comm syz.0.1239: Allocating blocks 497-513 which overlap fs metadata
[  640.340801][T10085] EXT4-fs (loop0): pa ffff888122271770: logic 16, phys. 129, len 24
[  640.349808][T10085] EXT4-fs error (device loop0): ext4_mb_release_inode_pa:5465: group 0, free 0, pa_free 1
[  640.366712][   T29] audit: type=1800 audit(1770854734.336:21): pid=10087 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1239" name="file1" dev="loop0" ino=15 res=0 errno=0
[  640.873810][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  648.594656][T10146] syzkaller0: default qdisc (pfifo_fast) fail, fallback to noqueue
[  648.746372][T10146] syzkaller0: entered promiscuous mode
[  648.801067][T10146] syzkaller0: entered allmulticast mode
[  650.508840][T10154] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  652.102291][T10187] netlink: 'syz.1.1265': attribute type 13 has an invalid length.
[  653.063596][T10179] loop5: detected capacity change from 0 to 8192
[  653.635971][T10179] FAT-fs (loop5): error, fat_get_cluster: invalid cluster chain (i_pos 0)
[  653.734014][T10179] FAT-fs (loop5): Filesystem has been set read-only
[  654.490016][T10204] loop0: detected capacity change from 0 to 512
[  654.616502][T10204] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  654.700163][T10204] ext4 filesystem being mounted at /276/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  655.039577][T10202] syzkaller0: entered promiscuous mode
[  655.206918][T10202] syzkaller0: entered allmulticast mode
[  655.308618][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  657.141304][T10219] loop0: detected capacity change from 0 to 1024
[  657.298657][T10219] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e040c01c, mo2=0002]
[  657.390478][T10219] System zones: 0-1, 3-36
[  657.444873][T10219] EXT4-fs error (device loop0): ext4_orphan_get:1417: comm syz.0.1272: bad orphan inode 134217728
[  657.548312][T10219] loop0: lost filesystem error report for type 5 error -117
[  657.581148][T10219] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  657.791350][   T29] audit: type=1326 audit(1770854751.776:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10223 comm="syz.1.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe738f9bf79 code=0x7ffc0000
[  658.095265][   T29] audit: type=1326 audit(1770854751.846:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10223 comm="syz.1.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe738f9bf79 code=0x7ffc0000
[  658.286927][   T29] audit: type=1326 audit(1770854751.846:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10223 comm="syz.1.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe738f9bf79 code=0x7ffc0000
[  658.450401][   T29] audit: type=1326 audit(1770854751.856:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10223 comm="syz.1.1275" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe738f9bf79 code=0x7ffc0000
[  658.479815][   T29] audit: type=1800 audit(1770854752.056:26): pid=10231 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1272" name="bus" dev="loop0" ino=18 res=0 errno=0
[  658.527591][   T29] audit: type=1804 audit(1770854752.126:27): pid=10219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1272" name="/newroot/277/bus/bus" dev="loop0" ino=18 res=1 errno=0
[  658.573760][   T29] audit: type=1800 audit(1770854752.126:28): pid=10219 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1272" name="bus" dev="loop0" ino=18 res=0 errno=0
[  658.710887][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  658.903812][T10236] netlink: 'syz.1.1277': attribute type 13 has an invalid length.
[  660.380936][T10264] loop1: detected capacity change from 0 to 512
[  660.451012][T10264] EXT4-fs: Ignoring removed i_version option
[  660.461649][T10264] EXT4-fs: Ignoring removed bh option
[  660.696150][T10264] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  660.803849][T10264] ext4 filesystem being mounted at /282/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  661.429136][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  661.653588][T10279] syzkaller0: entered promiscuous mode
[  661.688478][T10279] syzkaller0: entered allmulticast mode
[  661.695616][T10284] netlink: 'syz.3.1291': attribute type 13 has an invalid length.
[  662.174083][T10289] xt_hashlimit: size too large, truncated to 1048576
[  664.290762][T10313] loop0: detected capacity change from 0 to 256
[  664.959377][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  664.966259][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  665.106960][T10318] loop3: detected capacity change from 0 to 128
[  666.040517][T10322] loop3: detected capacity change from 0 to 512
[  666.083312][T10322] EXT4-fs: Ignoring removed i_version option
[  666.157584][T10322] EXT4-fs: Ignoring removed bh option
[  666.350742][T10322] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  666.442491][T10322] ext4 filesystem being mounted at /285/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  667.253171][T10333] netlink: 'syz.5.1305': attribute type 13 has an invalid length.
[  667.480564][ T5784] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  668.248283][T10337] loop0: detected capacity change from 0 to 512
[  668.322540][T10337] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.1307: inode has both inline data and extents flags
[  668.373844][T10337] loop0: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  668.374855][T10337] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.1307: couldn't read orphan inode 15 (err -117)
[  668.399870][T10337] loop0: lost filesystem error report for type 5 error -117
[  668.403021][T10337] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  668.509404][T10336] syzkaller0: entered promiscuous mode
[  668.515216][T10336] syzkaller0: entered allmulticast mode
[  669.049931][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  670.232889][T10368] loop4: detected capacity change from 0 to 512
[  670.274083][T10368] EXT4-fs: Ignoring removed orlov option
[  670.316745][T10368] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  670.372981][T10368] EXT4-fs (loop4): orphan cleanup on readonly fs
[  670.411472][T10368] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1316: bg 0: block 248: padding at end of block bitmap is not set
[  670.543016][T10373] netlink: 'syz.3.1318': attribute type 13 has an invalid length.
[  670.563720][T10368] loop4: lost filesystem error report for type 5 error -117
[  670.568286][T10368] Quota error (device loop4): write_blk: dquota write failed
[  670.668718][T10368] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  670.710761][T10368] EXT4-fs error (device loop4): ext4_acquire_dquot:6991: comm syz.4.1316: Failed to acquire dquot type 1
[  670.768177][T10368] loop4: lost filesystem error report for type 5 error -117
[  670.782370][T10368] EXT4-fs (loop4): 1 truncate cleaned up
[  670.843344][T10368] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  671.310904][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  671.515572][T10381] loop0: detected capacity change from 0 to 128
[  671.620639][T10381] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  671.745887][T10381] ext4 filesystem being mounted at /289/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[  672.196377][T10389] syzkaller0: entered promiscuous mode
[  672.221010][ T5772] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  672.238457][T10389] syzkaller0: entered allmulticast mode
[  673.186321][T10397] loop0: detected capacity change from 0 to 4096
[  673.344209][T10397] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  673.505567][   T29] audit: type=1800 audit(1770854767.496:29): pid=10397 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1327" name="file0" dev="loop0" ino=13 res=0 errno=0
[  674.004877][T10410] loop4: detected capacity change from 0 to 512
[  674.063538][T10410] EXT4-fs: Ignoring removed orlov option
[  674.138349][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  674.195430][T10410] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  674.271679][T10410] EXT4-fs (loop4): orphan cleanup on readonly fs
[  674.348969][T10410] EXT4-fs error (device loop4): ext4_validate_block_bitmap:441: comm syz.4.1333: bg 0: block 248: padding at end of block bitmap is not set
[  674.489555][T10410] loop4: lost filesystem error report for type 5 error -117
[  674.514845][T10410] Quota error (device loop4): write_blk: dquota write failed
[  674.618697][T10410] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  674.695736][T10410] EXT4-fs error (device loop4): ext4_acquire_dquot:6991: comm syz.4.1333: Failed to acquire dquot type 1
[  674.810836][T10410] loop4: lost filesystem error report for type 5 error -117
[  674.868268][T10410] EXT4-fs (loop4): 1 truncate cleaned up
[  674.893174][T10410] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  675.360744][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  676.949342][T10440] netlink: 'syz.1.1347': attribute type 13 has an invalid length.
[  677.572668][T10448] loop1: detected capacity change from 0 to 512
[  677.642199][T10448] EXT4-fs: Ignoring removed orlov option
[  677.740537][T10448] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  677.862978][T10448] EXT4-fs (loop1): orphan cleanup on readonly fs
[  677.929258][T10458] netlink: 'syz.5.1352': attribute type 4 has an invalid length.
[  677.943356][T10448] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.1350: bg 0: block 248: padding at end of block bitmap is not set
[  678.012696][T10448] loop1: lost filesystem error report for type 5 error -117
[  678.024490][T10448] Quota error (device loop1): write_blk: dquota write failed
[  678.108550][T10448] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  678.178139][T10448] EXT4-fs error (device loop1): ext4_acquire_dquot:6991: comm syz.1.1350: Failed to acquire dquot type 1
[  678.251284][T10448] loop1: lost filesystem error report for type 5 error -117
[  678.289039][T10448] EXT4-fs (loop1): 1 truncate cleaned up
[  678.362098][T10448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  678.705487][ T5777] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  679.701133][T10476] loop1: detected capacity change from 0 to 128
[  680.008882][T10480] netlink: 'syz.5.1360': attribute type 13 has an invalid length.
[  681.427609][T10494] loop0: detected capacity change from 0 to 512
[  681.488378][T10494] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  681.637259][T10494] EXT4-fs (loop0): 1 truncate cleaned up
[  681.712580][T10494] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  682.514287][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  682.999844][T10515] netlink: 'syz.4.1375': attribute type 13 has an invalid length.
[  689.078862][T10543] sg_read: process 714 (syz.4.1388) changed security contexts after opening file descriptor, this is not allowed.
[  689.769054][T10547] netlink: 'syz.0.1390': attribute type 13 has an invalid length.
[  691.695459][T10557] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  691.749060][T10557] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  691.765285][T10557] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  691.784215][T10557] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  691.797541][T10557] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  693.878467][T10557] Bluetooth: hci3: command tx timeout
[  693.967168][T10569] loop0: detected capacity change from 0 to 512
[  694.013624][T10569] EXT4-fs: Ignoring removed orlov option
[  694.182659][T10569] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  694.244192][T10569] System zones: 0-2, 18-18, 34-35
[  694.336689][T10569] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  694.468613][T10569] ext4 filesystem being mounted at /307/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  695.460325][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  695.481787][T10580] loop4: detected capacity change from 0 to 1024
[  695.551676][T10580] EXT4-fs: Ignoring removed oldalloc option
[  695.733346][T10580] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  695.958414][T10557] Bluetooth: hci3: command tx timeout
[  696.144602][T10556] chnl_net:caif_netlink_parms(): no params data found
[  696.439178][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  698.048490][T10557] Bluetooth: hci3: command tx timeout
[  698.210823][T10614] loop5: detected capacity change from 0 to 512
[  698.244915][T10614] EXT4-fs: Ignoring removed orlov option
[  698.379860][T10614] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  698.441323][T10614] System zones: 0-2, 18-18, 34-35
[  698.571269][T10614] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  698.621330][T10614] ext4 filesystem being mounted at /181/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  698.757202][T10556] bridge0: port 1(bridge_slave_0) entered blocking state
[  698.790570][T10556] bridge0: port 1(bridge_slave_0) entered disabled state
[  698.809236][T10624] loop0: detected capacity change from 0 to 1024
[  698.829876][T10556] bridge_slave_0: entered allmulticast mode
[  698.833218][T10624] EXT4-fs: Ignoring removed oldalloc option
[  698.896856][T10556] bridge_slave_0: entered promiscuous mode
[  698.919670][T10624] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  698.986694][T10556] bridge0: port 2(bridge_slave_1) entered blocking state
[  699.028408][T10556] bridge0: port 2(bridge_slave_1) entered disabled state
[  699.090448][T10556] bridge_slave_1: entered allmulticast mode
[  699.138410][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.202215][T10556] bridge_slave_1: entered promiscuous mode
[  699.446548][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  699.780691][T10556] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  699.974525][T10556] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  700.119908][T10557] Bluetooth: hci3: command tx timeout
[  700.322338][T10556] team0: Port device team_slave_0 added
[  700.459637][T10556] team0: Port device team_slave_1 added
[  700.960638][T10556] batman_adv: batadv0: Adding interface: batadv_slave_0
[  700.976194][T10556] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  701.041763][T10556] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  701.172818][T10556] batman_adv: batadv0: Adding interface: batadv_slave_1
[  701.198194][T10556] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  701.305719][T10556] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  701.977329][T10556] hsr_slave_0: entered promiscuous mode
[  702.045017][T10556] hsr_slave_1: entered promiscuous mode
[  702.086797][T10556] debugfs: 'hsr0' already exists in 'hsr'
[  702.115071][T10556] Cannot create hsr debugfs directory
[  702.247070][T10654] loop5: detected capacity change from 0 to 512
[  702.302325][T10654] EXT4-fs: Ignoring removed orlov option
[  702.391782][T10654] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  702.410868][T10654] System zones: 0-2, 18-18, 34-35
[  702.503398][T10654] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  702.534711][T10655] syzkaller1: entered promiscuous mode
[  702.547067][T10655] syzkaller1: entered allmulticast mode
[  702.599589][T10654] ext4 filesystem being mounted at /185/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  702.696697][T10616] infiniband syz1: set down
[  702.719595][T10616] infiniband syz1: added syz_tun
[  702.745283][T10616] workqueue: Failed to create a rescuer kthread for wq "ib_mad1": -EINTR
[  702.771219][T10616] infiniband syz1: Couldn't open port 1
[  702.972634][T10616] RDS/IB: syz1: added
[  702.977179][T10616] smc: adding ib device syz1 with port count 1
[  703.044847][T10616] smc:    ib device syz1 port 1 has no pnetid
[  703.101125][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  705.002091][T10556] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  705.145393][T10556] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  705.251790][T10685] netlink: 32 bytes leftover after parsing attributes in process `syz.5.1436'.
[  705.289613][T10556] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  705.473593][T10556] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  705.974045][T10690] loop4: detected capacity change from 0 to 512
[  706.282625][T10690] EXT4-fs: Ignoring removed orlov option
[  706.498242][T10690] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  706.570302][T10690] System zones: 0-2, 18-18, 34-35
[  706.606239][T10690] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  706.760944][T10690] ext4 filesystem being mounted at /289/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  707.176343][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  707.808266][T10556] 8021q: adding VLAN 0 to HW filter on device bond0
[  708.040193][T10556] 8021q: adding VLAN 0 to HW filter on device team0
[  708.136362][ T5885] bridge0: port 1(bridge_slave_0) entered blocking state
[  708.144637][ T5885] bridge0: port 1(bridge_slave_0) entered forwarding state
[  708.319650][   T34] bridge0: port 2(bridge_slave_1) entered blocking state
[  708.327413][   T34] bridge0: port 2(bridge_slave_1) entered forwarding state
[  708.763883][T10703] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  708.775499][T10703] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  708.861049][T10703] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  708.895103][T10703] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  708.958516][T10703] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  708.991102][T10703] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  709.046090][T10703] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  709.087556][T10703] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  709.152056][T10703] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  709.168539][T10703] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  709.221222][T10703] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  709.278880][T10703] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  709.354322][T10703] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  710.039163][T10557] Bluetooth: hci0: command 0x0406 tx timeout
[  710.579251][T10719] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1447'.
[  710.920087][T10557] Bluetooth: hci1: command 0x0406 tx timeout
[  710.998866][T10557] Bluetooth: hci2: command 0x0406 tx timeout
[  711.072465][T10556] 8021q: adding VLAN 0 to HW filter on device batadv0
[  711.162145][T10557] Bluetooth: hci5: command 0x0406 tx timeout
[  711.238185][T10557] Bluetooth: hci3: command 0x0c1a tx timeout
[  711.303920][T10721] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1448'.
[  712.118391][T10557] Bluetooth: hci0: command 0x0406 tx timeout
[  712.395688][   T58] bridge_slave_1: left allmulticast mode
[  712.418151][   T58] bridge_slave_1: left promiscuous mode
[  712.469891][   T58] bridge0: port 2(bridge_slave_1) entered disabled state
[  712.598260][   T58] bridge_slave_0: left allmulticast mode
[  712.608615][   T58] bridge_slave_0: left promiscuous mode
[  712.615867][   T58] bridge0: port 1(bridge_slave_0) entered disabled state
[  712.689945][   T58] bridge1: port 1(veth3) entered disabled state
[  712.896203][T10736] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1452'.
[  712.998419][T10557] Bluetooth: hci1: command 0x0406 tx timeout
[  713.080183][T10557] Bluetooth: hci2: command 0x0406 tx timeout
[  713.244397][T10557] Bluetooth: hci5: command 0x0406 tx timeout
[  713.319762][T10557] Bluetooth: hci3: command 0x0c1a tx timeout
[  713.769772][   T58] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  713.811564][   T58] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  713.843934][   T58] bond0 (unregistering): Released all slaves
[  714.114105][ T5778] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[  714.133231][ T5778] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[  714.144761][ T5778] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[  714.162037][ T5778] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[  714.174952][ T5778] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[  715.398645][T10557] Bluetooth: hci3: command 0x0c1a tx timeout
[  715.496353][T10758] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1457'.
[  715.603255][T10556] veth0_vlan: entered promiscuous mode
[  715.765962][T10556] veth1_vlan: entered promiscuous mode
[  716.230660][T10556] veth0_macvtap: entered promiscuous mode
[  716.280077][T10557] Bluetooth: hci4: command tx timeout
[  716.332983][T10556] veth1_macvtap: entered promiscuous mode
[  716.401821][T10767] netlink: 32 bytes leftover after parsing attributes in process `syz.4.1459'.
[  716.614398][T10556] batman_adv: batadv0: Interface activated: batadv_slave_0
[  716.883657][T10556] batman_adv: batadv0: Interface activated: batadv_slave_1
[  717.105903][ T6853] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  717.189588][ T6853] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  717.226664][ T6853] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  717.288207][ T6853] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  717.641613][T10779] netlink: 'syz.0.1463': attribute type 13 has an invalid length.
[  718.358422][T10557] Bluetooth: hci4: command tx timeout
[  718.914165][T10791] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1466'.
[  719.995569][T10806] netlink: 'syz.4.1470': attribute type 10 has an invalid length.
[  720.112177][T10806] syz_tun: entered promiscuous mode
[  720.203551][T10806] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[  720.438213][T10557] Bluetooth: hci4: command tx timeout
[  720.896555][T10820] netlink: 'syz.0.1473': attribute type 13 has an invalid length.
[  721.031575][T10745] chnl_net:caif_netlink_parms(): no params data found
[  722.508815][   T58] hsr_slave_0: left promiscuous mode
[  722.518816][T10557] Bluetooth: hci4: command tx timeout
[  722.568708][   T58] hsr_slave_1: left promiscuous mode
[  722.595569][   T58] batman_adv: batadv0: Removing interface: batadv_slave_0
[  723.956841][   T58] team0 (unregistering): Port device team_slave_1 removed
[  724.076904][   T58] team0 (unregistering): Port device team_slave_0 removed
[  724.526565][T10852] loop4: detected capacity change from 0 to 512
[  724.575864][T10852] EXT4-fs: Ignoring removed orlov option
[  724.680237][T10852] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  724.736947][T10852] System zones: 0-2, 18-18, 34-35
[  724.819111][T10852] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  724.943127][T10852] ext4 filesystem being mounted at /308/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  725.510638][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  725.792859][  T751] smc: removing ib device syz1
[  725.851250][T10864] sch_tbf: burst 19872 is lower than device lo mtu (11337746) !
[  726.388280][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  726.396385][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  726.527096][T10745] bridge0: port 1(bridge_slave_0) entered blocking state
[  726.559973][T10745] bridge0: port 1(bridge_slave_0) entered disabled state
[  726.589607][T10745] bridge_slave_0: entered allmulticast mode
[  726.660081][T10745] bridge_slave_0: entered promiscuous mode
[  726.730425][T10745] bridge0: port 2(bridge_slave_1) entered blocking state
[  726.760286][T10745] bridge0: port 2(bridge_slave_1) entered disabled state
[  726.845411][T10745] bridge_slave_1: entered allmulticast mode
[  727.830242][T10745] bridge_slave_1: entered promiscuous mode
[  728.145655][T10867] team0: entered promiscuous mode
[  728.181545][T10867] team_slave_0: entered promiscuous mode
[  728.202388][T10867] team_slave_1: entered promiscuous mode
[  728.255266][T10867] 8021q: adding VLAN 0 to HW filter on device team0
[  728.295999][T10867] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[  728.396433][   T58] IPVS: stop unused estimator thread 0...
[  729.956761][T10885] loop5: detected capacity change from 0 to 4096
[  730.150844][T10745] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  730.342408][T10885] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  730.815255][T10745] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  730.969496][T10899] loop4: detected capacity change from 0 to 512
[  731.134860][T10899] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  731.171267][T10899] ext4 filesystem being mounted at /311/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[  731.230374][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  731.687418][T10905] loop0: detected capacity change from 0 to 512
[  731.775637][T10905] EXT4-fs: Ignoring removed orlov option
[  732.151240][T10905] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  732.228485][T10905] System zones: 0-2, 18-18, 34-35
[  732.251786][T10905] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  733.119145][T10905] ext4 filesystem being mounted at /337/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  734.054646][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  734.408502][ T6853] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  734.474129][ T6853] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  734.637321][T10745] team0: Port device team_slave_0 added
[  734.871796][T10745] team0: Port device team_slave_1 added
[  735.031065][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  735.768237][ T6847] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  735.816629][ T6847] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  736.465775][T10745] batman_adv: batadv0: Adding interface: batadv_slave_0
[  736.466185][T10745] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  736.466364][T10745] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  736.561761][T10745] batman_adv: batadv0: Adding interface: batadv_slave_1
[  736.561860][T10745] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  736.562040][T10745] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  738.055377][T10745] hsr_slave_0: entered promiscuous mode
[  738.243710][T10745] hsr_slave_1: entered promiscuous mode
[  738.446744][T10745] debugfs: 'hsr0' already exists in 'hsr'
[  738.531144][T10745] Cannot create hsr debugfs directory
[  738.953556][T10945] syzkaller0: entered promiscuous mode
[  738.979603][T10945] syzkaller0: entered allmulticast mode
[  739.154576][T10948] netlink: 64 bytes leftover after parsing attributes in process `syz.0.1500'.
[  739.997695][T10957] loop0: detected capacity change from 0 to 512
[  740.085211][T10957] EXT4-fs: Ignoring removed oldalloc option
[  740.238683][T10957] EXT4-fs (loop0): 1 truncate cleaned up
[  740.302257][T10957] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  740.737550][   T29] audit: type=1800 audit(1770854834.726:30): pid=10957 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1502" name="file1" dev="loop0" ino=15 res=0 errno=0
[  741.107301][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  742.164812][  T751] bridge_slave_1: left allmulticast mode
[  742.206168][  T751] bridge_slave_1: left promiscuous mode
[  742.241469][  T751] bridge0: port 2(bridge_slave_1) entered disabled state
[  742.292527][  T751] bridge_slave_0: left allmulticast mode
[  742.301172][T10976] loop6: detected capacity change from 0 to 512
[  742.318544][  T751] bridge_slave_0: left promiscuous mode
[  742.327067][  T751] bridge0: port 1(bridge_slave_0) entered disabled state
[  742.342705][T10976] EXT4-fs: Ignoring removed i_version option
[  742.365829][T10976] EXT4-fs: Ignoring removed bh option
[  742.535032][T10976] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  742.650159][T10976] ext4 filesystem being mounted at /4/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  743.396844][T10556] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  743.875382][  T751] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  743.969210][  T751] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  744.018905][  T751] bond0 (unregistering): Released all slaves
[  744.216178][T10992] netlink: 64 bytes leftover after parsing attributes in process `syz.6.1511'.
[  744.468812][  T751] IPVS: stopping backup sync thread 9994 ...
[  744.572905][T10745] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  744.785131][T10745] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  745.071984][T10745] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  745.329224][T10745] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  745.668054][  T751] hsr_slave_0: left promiscuous mode
[  745.724750][  T751] hsr_slave_1: left promiscuous mode
[  745.771232][  T751] batman_adv: batadv0: Removing interface: batadv_slave_0
[  745.825538][  T751] batman_adv: batadv0: Removing interface: batadv_slave_1
[  746.907501][  T751] team0 (unregistering): Port device team_slave_1 removed
[  747.342258][  T751] team0 (unregistering): Port device team_slave_0 removed
[  749.597361][T11039] loop6: detected capacity change from 0 to 512
[  749.758153][   T10] hid-generic 0000:0000:0000.0001: unknown main item tag 0x0
[  749.847139][   T29] audit: type=1800 audit(1770854843.816:31): pid=11039 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.6.1519" name="file1" dev="loop6" ino=1048630 res=0 errno=0
[  749.859664][   T10] hid-generic 0000:0000:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz1] on syz0
[  750.356225][T10745] 8021q: adding VLAN 0 to HW filter on device bond0
[  750.682543][T10745] 8021q: adding VLAN 0 to HW filter on device team0
[  750.825620][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state
[  750.833804][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state
[  751.086725][ T6386] bridge0: port 2(bridge_slave_1) entered blocking state
[  751.094756][ T6386] bridge0: port 2(bridge_slave_1) entered forwarding state
[  754.106777][T10745] 8021q: adding VLAN 0 to HW filter on device batadv0
[  757.373111][T10745] veth0_vlan: entered promiscuous mode
[  757.605144][T10745] veth1_vlan: entered promiscuous mode
[  757.873380][T11125] syzkaller0: entered promiscuous mode
[  757.900338][T11125] syzkaller0: entered allmulticast mode
[  758.485862][T10745] veth0_macvtap: entered promiscuous mode
[  758.880029][T10745] veth1_macvtap: entered promiscuous mode
[  760.824670][T10745] batman_adv: batadv0: Interface activated: batadv_slave_0
[  761.121233][T10745] batman_adv: batadv0: Interface activated: batadv_slave_1
[  761.606822][ T5885] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  761.729347][ T5885] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  761.898033][ T5885] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  762.764317][ T5885] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  762.791446][T11164] loop6: detected capacity change from 0 to 512
[  763.077042][T11164] EXT4-fs error (device loop6): ext4_iget_extra_inode:5073: inode #15: comm syz.6.1552: corrupted in-inode xattr: invalid ea_ino
[  763.258363][T11164] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  763.288589][T11164] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.1552: couldn't read orphan inode 15 (err -117)
[  763.575187][T11164] loop6: lost filesystem error report for type 5 error -117
[  763.579553][T11164] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  764.528712][T11178] xt_socket: unknown flags 0x4c
[  764.945795][T10556] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  766.147298][T11184] syzkaller0: entered promiscuous mode
[  766.218802][T11184] syzkaller0: entered allmulticast mode
[  774.609048][T11276] Invalid ELF header magic: != ELF
[  775.861551][ T5778] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  775.872466][ T5778] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  775.887045][ T5778] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  775.903175][ T5778] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  775.925217][ T5778] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  778.038528][ T5778] Bluetooth: hci2: command tx timeout
[  779.197667][T11293] chnl_net:caif_netlink_parms(): no params data found
[  779.444403][ T1098] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  779.820724][ T1098] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.092102][ T1098] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.120494][ T5778] Bluetooth: hci2: command tx timeout
[  780.375423][ T1098] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  780.849839][T11344] loop4: detected capacity change from 0 to 512
[  780.967128][T11344] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.1596: inode has both inline data and extents flags
[  780.967310][T11344] loop4: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  780.976324][T11344] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.1596: couldn't read orphan inode 15 (err -117)
[  780.976509][T11344] loop4: lost filesystem error report for type 5 error -117
[  781.075340][T11344] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  781.164394][T11356] netlink: 'syz.0.1599': attribute type 11 has an invalid length.
[  781.164508][T11356] netlink: 224 bytes leftover after parsing attributes in process `syz.0.1599'.
[  781.445436][ T1098] bridge_slave_1: left allmulticast mode
[  781.445568][ T1098] bridge_slave_1: left promiscuous mode
[  781.446802][ T1098] bridge0: port 2(bridge_slave_1) entered disabled state
[  781.567663][ T1098] bridge_slave_0: left allmulticast mode
[  781.722240][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  781.768003][ T1098] bridge_slave_0: left promiscuous mode
[  781.775101][ T1098] bridge0: port 1(bridge_slave_0) entered disabled state
[  782.203970][ T5778] Bluetooth: hci2: command tx timeout
[  782.347660][T11364] loop4: detected capacity change from 0 to 512
[  782.494579][T11364] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2
[  782.509114][T11364] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2
[  782.594242][T11364] EXT4-fs (loop4): 1 truncate cleaned up
[  782.649115][T11364] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  782.783697][T11364] EXT4-fs error (device loop4): ext4_append:79: inode #2: comm syz.4.1602: Logical block already allocated
[  782.887028][T11364] EXT4-fs (loop4): Remounting filesystem read-only
[  783.533617][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  784.259339][T11385] netlink: 'syz.4.1608': attribute type 1 has an invalid length.
[  784.278102][ T5778] Bluetooth: hci2: command tx timeout
[  784.537317][ T1098] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  784.617439][ T1098] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  784.687003][ T1098] bond0 (unregistering): Released all slaves
[  784.997277][T11385] 8021q: adding VLAN 0 to HW filter on device bond1
[  785.291598][T11387] bond1: (slave geneve2): making interface the new active one
[  785.316405][T11387] bond1: (slave geneve2): Enslaving as an active interface with an up link
[  785.794278][ T1098] hsr_slave_0: left promiscuous mode
[  785.832752][ T1098] hsr_slave_1: left promiscuous mode
[  785.877325][ T1098] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  785.910703][ T1098] batman_adv: batadv0: Removing interface: batadv_slave_0
[  785.987516][ T1098] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  786.028130][ T1098] batman_adv: batadv0: Removing interface: batadv_slave_1
[  786.158854][ T1098] veth1_macvtap: left promiscuous mode
[  786.165087][ T1098] veth0_macvtap: left promiscuous mode
[  786.209478][T11404] loop4: detected capacity change from 0 to 2048
[  786.216183][ T1098] veth1_vlan: left promiscuous mode
[  786.216451][ T1098] veth0_vlan: left promiscuous mode
[  786.555499][T11404] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  786.678600][T11404] ext4 filesystem being mounted at /343/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  786.949955][T11404] EXT4-fs (loop4): shut down requested (2)
[  787.426698][ T5775] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  787.827236][ T1298] ieee802154 phy0 wpan0: encryption failed: -22
[  787.837664][ T1298] ieee802154 phy1 wpan1: encryption failed: -22
[  788.952695][ T1098] team0 (unregistering): Port device team_slave_1 removed
[  789.044632][ T1098] team0 (unregistering): Port device team_slave_0 removed
[  789.821930][ T5885] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  789.862399][ T5885] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  789.951663][T11293] bridge0: port 1(bridge_slave_0) entered blocking state
[  789.966688][T11293] bridge0: port 1(bridge_slave_0) entered disabled state
[  789.995915][T11293] bridge_slave_0: entered allmulticast mode
[  790.027611][T11293] bridge_slave_0: entered promiscuous mode
[  790.100417][ T5885] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  790.124970][T11293] bridge0: port 2(bridge_slave_1) entered blocking state
[  790.141120][T11293] bridge0: port 2(bridge_slave_1) entered disabled state
[  790.173305][T11293] bridge_slave_1: entered allmulticast mode
[  790.203972][T11293] bridge_slave_1: entered promiscuous mode
[  790.355347][ T5885] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  790.610092][T11293] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  790.736518][T11446] loop6: detected capacity change from 0 to 512
[  790.764342][T11293] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  790.820757][T11446] EXT4-fs: Ignoring removed orlov option
[  790.913534][T11446] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  790.969654][T11446] System zones: 0-2, 18-18, 34-35
[  791.032248][T11446] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  791.120733][T11446] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  791.327250][T11293] team0: Port device team_slave_0 added
[  791.422164][T11293] team0: Port device team_slave_1 added
[  791.704359][T10556] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  791.872048][T11293] batman_adv: batadv0: Adding interface: batadv_slave_0
[  791.947897][T11293] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  792.065962][T11293] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  792.216613][T11293] batman_adv: batadv0: Adding interface: batadv_slave_1
[  792.257936][T11293] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  792.397449][T11293] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  793.262457][T11293] hsr_slave_0: entered promiscuous mode
[  793.327157][T11293] hsr_slave_1: entered promiscuous mode
[  793.364487][T11293] debugfs: 'hsr0' already exists in 'hsr'
[  793.379629][T11293] Cannot create hsr debugfs directory
[  794.201585][T11491] tipc: Started in network mode
[  794.207090][T11491] tipc: Node identity 3e728a03535c, cluster identity 4711
[  794.221992][T11495] loop5: detected capacity change from 0 to 512
[  794.260061][T11491] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  794.267573][T11495] EXT4-fs: Ignoring removed orlov option
[  794.381442][T11495] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  794.408622][T11495] System zones: 0-2, 18-18, 34-35
[  794.541393][T11494] syzkaller0: entered promiscuous mode
[  794.564008][T11494] syzkaller0: entered allmulticast mode
[  794.590089][T11495] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  794.669195][T11495] ext4 filesystem being mounted at /240/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  795.095202][T11509] tipc: Resetting bearer <eth:syzkaller0>
[  795.186804][ T7056] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  795.265860][T11490] tipc: Resetting bearer <eth:syzkaller0>
[  795.375364][T11490] tipc: Disabling bearer <eth:syzkaller0>
[  795.529986][   T10] tipc: Node number set to 1831766531
[  796.669775][T11528] netlink: 8 bytes leftover after parsing attributes in process `syz.6.1650'.
[  797.667645][T11536] loop6: detected capacity change from 0 to 512
[  797.737258][T11536] EXT4-fs error (device loop6): ext4_orphan_get:1391: inode #15: comm syz.6.1652: inode has both inline data and extents flags
[  797.838696][T11536] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117
[  797.839762][T11536] EXT4-fs error (device loop6): ext4_orphan_get:1396: comm syz.6.1652: couldn't read orphan inode 15 (err -117)
[  797.909590][T11536] loop6: lost filesystem error report for type 5 error -117
[  797.931662][T11536] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  797.971200][T11544] loop0: detected capacity change from 0 to 512
[  798.064720][T11544] EXT4-fs: Ignoring removed orlov option
[  798.327446][T10556] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  798.424346][T11544] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=204dc018, mo2=0002]
[  798.528873][T11293] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  798.545296][T11544] System zones: 0-2, 18-18, 34-35
[  798.556348][T11544] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  798.600097][T11544] ext4 filesystem being mounted at /382/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  798.697639][T11293] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  798.886457][T11293] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  799.103097][T11293] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  799.301599][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  800.083375][T11557] syzkaller0: entered promiscuous mode
[  800.100134][T11557] syzkaller0: entered allmulticast mode
[  800.743643][T11567] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1663'.
[  800.853390][T11568] netlink: 24 bytes leftover after parsing attributes in process `syz.6.1662'.
[  800.984919][T11573] netlink: 'syz.5.1664': attribute type 13 has an invalid length.
[  802.562852][T11293] 8021q: adding VLAN 0 to HW filter on device bond0
[  802.572799][T11591] netlink: 32 bytes leftover after parsing attributes in process `syz.6.1668'.
[  802.931771][T11293] 8021q: adding VLAN 0 to HW filter on device team0
[  803.061157][ T1098] bridge0: port 1(bridge_slave_0) entered blocking state
[  803.069275][ T1098] bridge0: port 1(bridge_slave_0) entered forwarding state
[  803.253875][ T6847] bridge0: port 2(bridge_slave_1) entered blocking state
[  803.262370][ T6847] bridge0: port 2(bridge_slave_1) entered forwarding state
[  805.324285][T11622] netlink: 'syz.5.1675': attribute type 13 has an invalid length.
[  806.054369][T11619] syzkaller0: entered promiscuous mode
[  806.100472][T11619] syzkaller0: entered allmulticast mode
[  807.328689][T11293] 8021q: adding VLAN 0 to HW filter on device batadv0
[  807.600623][T11648] syzkaller0: entered promiscuous mode
[  807.606975][T11648] syzkaller0: entered allmulticast mode
[  809.148204][T11671] netlink: 'syz.5.1686': attribute type 13 has an invalid length.
[  811.086519][T11689] syzkaller0: entered promiscuous mode
[  811.123871][T11689] syzkaller0: entered allmulticast mode
[  812.178291][T11698] syzkaller0: entered promiscuous mode
[  812.184697][T11698] syzkaller0: entered allmulticast mode
[  813.128978][T11718] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1699'.
[  813.155050][T11293] veth0_vlan: entered promiscuous mode
[  813.432538][T11293] veth1_vlan: entered promiscuous mode
[  814.276182][T11293] veth0_macvtap: entered promiscuous mode
[  814.446311][T11293] veth1_macvtap: entered promiscuous mode
[  814.450881][T11732] netlink: 4 bytes leftover after parsing attributes in process `syz.6.1702'.
[  814.944646][T11293] batman_adv: batadv0: Interface activated: batadv_slave_0
[  815.198302][T11293] batman_adv: batadv0: Interface activated: batadv_slave_1
[  815.486968][ T6847] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  815.586989][ T6386] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  815.651571][ T6386] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  815.758183][ T6386] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  816.181709][T11749] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  816.258996][T11758] syzkaller0: entered promiscuous mode
[  816.318549][T11758] syzkaller0: entered allmulticast mode
[  816.459459][T11749] tipc: Resetting bearer <eth:syzkaller0>
[  816.613115][T11747] tipc: Resetting bearer <eth:syzkaller0>
[  816.695236][T11747] tipc: Disabling bearer <eth:syzkaller0>
[  819.973300][T11809] IPVS: set_ctl: invalid protocol: 4 172.20.20.187:20004
[  825.049711][T11875] netlink: 'syz.6.1739': attribute type 13 has an invalid length.
[  825.114415][ T1098] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  825.145815][T11875] netlink: 'syz.6.1739': attribute type 27 has an invalid length.
[  825.158091][ T1098] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  825.673369][ T6846] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  825.703881][ T6846] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  830.343850][T11936] netlink: 'syz.6.1758': attribute type 1 has an invalid length.
[  830.886257][T11936] 8021q: adding VLAN 0 to HW filter on device bond1
[  831.211258][T11938] macvlan2: entered promiscuous mode
[  831.227343][T11938] macvlan2: entered allmulticast mode
[  831.232639][T11938] bond1: entered allmulticast mode
[  831.232760][T11938] bond1: entered promiscuous mode
[  831.236092][T11953] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1761'.
[  831.236253][T11953] netlink: 20 bytes leftover after parsing attributes in process `syz.4.1761'.
[  831.243166][T11938] 8021q: adding VLAN 0 to HW filter on device macvlan2
[  831.378486][T11938] team0: Port device macvlan2 added
[  831.709508][T11953] geneve3: entered promiscuous mode
[  831.758861][T11953] geneve3: entered allmulticast mode
[  832.149870][T11961] netlink: 'syz.7.1763': attribute type 13 has an invalid length.
[  832.228829][T11961] netlink: 'syz.7.1763': attribute type 27 has an invalid length.
[  836.242544][T11996] random: crng reseeded on system resumption
[  838.798654][T12011] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1776'.
[  838.851510][T12011] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1776'.
[  839.486186][T12022] netlink: 'syz.4.1780': attribute type 13 has an invalid length.
[  839.516287][T12022] netlink: 'syz.4.1780': attribute type 27 has an invalid length.
[  841.821167][T12046] random: crng reseeded on system resumption
[  843.179818][T12056] netlink: 8 bytes leftover after parsing attributes in process `syz.7.1791'.
[  843.332646][T12056] netlink: 20 bytes leftover after parsing attributes in process `syz.7.1791'.
[  843.832525][T12056] geneve2: entered promiscuous mode
[  844.008795][T12056] geneve2: entered allmulticast mode
[  845.447184][T12074] warning: `syz.6.1797' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211
[  846.950700][T12093] =====================================================
[  846.958381][T12093] BUG: KMSAN: uninit-value in bpf_prog_run_generic_xdp+0x186e/0x1f60
[  846.967495][T12093]  bpf_prog_run_generic_xdp+0x186e/0x1f60
[  846.974137][T12093]  do_xdp_generic+0xd51/0x1690
[  846.979530][T12093]  tun_get_user+0x525a/0x7830
[  846.984730][T12093]  tun_chr_write_iter+0x3e9/0x5c0
[  846.990443][T12093]  vfs_write+0xbe1/0x15c0
[  846.995521][T12093]  ksys_write+0x1d9/0x470
[  847.000515][T12093]  __x64_sys_write+0x97/0xf0
[  847.005680][T12093]  x64_sys_call+0x2ff0/0x3ea0
[  847.010973][T12093]  do_syscall_64+0x134/0xf80
[  847.016184][T12093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.022530][T12093] 
[  847.025140][T12093] Uninit was stored to memory at:
[  847.031534][T12093]  pskb_expand_head+0x317/0x1900
[  847.037131][T12093]  do_xdp_generic+0xa78/0x1690
[  847.042706][T12093]  tun_get_user+0x525a/0x7830
[  847.048059][T12093]  tun_chr_write_iter+0x3e9/0x5c0
[  847.053867][T12093]  vfs_write+0xbe1/0x15c0
[  847.058812][T12093]  ksys_write+0x1d9/0x470
[  847.063509][T12093]  __x64_sys_write+0x97/0xf0
[  847.068467][T12093]  x64_sys_call+0x2ff0/0x3ea0
[  847.073517][T12093]  do_syscall_64+0x134/0xf80
[  847.078816][T12093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.085271][T12093] 
[  847.087967][T12093] Uninit was created at:
[  847.093049][T12093]  __kmalloc_node_track_caller_noprof+0xb6e/0x1c70
[  847.101006][T12093]  kmalloc_reserve+0x22f/0x4b0
[  847.106070][T12093]  __alloc_skb+0x805/0x1030
[  847.111101][T12093]  alloc_skb_with_frags+0xc5/0xa60
[  847.116971][T12093]  sock_alloc_send_pskb+0xacb/0xc60
[  847.123227][T12093]  tun_get_user+0xcfc/0x7830
[  847.128389][T12093]  tun_chr_write_iter+0x3e9/0x5c0
[  847.134226][T12093]  vfs_write+0xbe1/0x15c0
[  847.139501][T12093]  ksys_write+0x1d9/0x470
[  847.144467][T12093]  __x64_sys_write+0x97/0xf0
[  847.150103][T12093]  x64_sys_call+0x2ff0/0x3ea0
[  847.155740][T12093]  do_syscall_64+0x134/0xf80
[  847.161149][T12093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.167838][T12093] 
[  847.170477][T12093] CPU: 0 UID: 0 PID: 12093 Comm: syz.7.1802 Not tainted syzkaller #0 PREEMPT(full) 
[  847.181328][T12093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  847.192678][T12093] =====================================================
[  847.200568][T12093] Disabling lock debugging due to kernel taint
[  847.207206][T12093] Kernel panic - not syncing: kmsan.panic set ...
[  847.213898][T12093] CPU: 0 UID: 0 PID: 12093 Comm: syz.7.1802 Tainted: G    B               syzkaller #0 PREEMPT(full) 
[  847.225968][T12093] Tainted: [B]=BAD_PAGE
[  847.230505][T12093] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/24/2026
[  847.241169][T12093] Call Trace:
[  847.244761][T12093]  <TASK>
[  847.248296][T12093]  __dump_stack+0x26/0x30
[  847.253155][T12093]  dump_stack_lvl+0x50/0x1c0
[  847.258712][T12093]  ? dump_stack+0x12/0x25
[  847.264198][T12093]  dump_stack+0x1e/0x25
[  847.269108][T12093]  vpanic+0x435/0xd40
[  847.273744][T12093]  panic+0x15d/0x160
[  847.278031][T12093]  kmsan_report+0x31a/0x320
[  847.283473][T12093]  ? __msan_warning+0x1b/0x30
[  847.288665][T12093]  ? bpf_prog_run_generic_xdp+0x186e/0x1f60
[  847.295871][T12093]  ? do_xdp_generic+0xd51/0x1690
[  847.301257][T12093]  ? tun_get_user+0x525a/0x7830
[  847.306751][T12093]  ? tun_chr_write_iter+0x3e9/0x5c0
[  847.312941][T12093]  ? vfs_write+0xbe1/0x15c0
[  847.317740][T12093]  ? ksys_write+0x1d9/0x470
[  847.322554][T12093]  ? __x64_sys_write+0x97/0xf0
[  847.328001][T12093]  ? x64_sys_call+0x2ff0/0x3ea0
[  847.333588][T12093]  ? do_syscall_64+0x134/0xf80
[  847.339085][T12093]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.346131][T12093]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  847.352663][T12093]  ? ___bpf_prog_run+0xea23/0xeb60
[  847.358916][T12093]  ? __bpf_prog_run32+0xc2/0xf0
[  847.364400][T12093]  ? kmsan_get_metadata+0xf1/0x160
[  847.370461][T12093]  __msan_warning+0x1b/0x30
[  847.375470][T12093]  bpf_prog_run_generic_xdp+0x186e/0x1f60
[  847.381988][T12093]  ? kmsan_get_shadow_origin_ptr+0x4a/0xb0
[  847.388786][T12093]  do_xdp_generic+0xd51/0x1690
[  847.394174][T12093]  ? tun_get_user+0x4d11/0x7830
[  847.399842][T12093]  ? tun_get_user+0x51dc/0x7830
[  847.406160][T12093]  tun_get_user+0x525a/0x7830
[  847.412825][T12093]  ? stack_depot_save_flags+0x35/0x790
[  847.419509][T12093]  ? kmsan_get_metadata+0xf1/0x160
[  847.425851][T12093]  ? kmsan_get_metadata+0xf1/0x160
[  847.431848][T12093]  ? kmsan_internal_set_shadow_origin+0x7a/0x110
[  847.438798][T12093]  ? kmsan_get_metadata+0xb0/0x160
[  847.444753][T12093]  tun_chr_write_iter+0x3e9/0x5c0
[  847.451088][T12093]  vfs_write+0xbe1/0x15c0
[  847.456076][T12093]  ? __pfx_tun_chr_write_iter+0x10/0x10
[  847.462550][T12093]  ksys_write+0x1d9/0x470
[  847.467633][T12093]  __x64_sys_write+0x97/0xf0
[  847.472681][T12093]  x64_sys_call+0x2ff0/0x3ea0
[  847.477910][T12093]  do_syscall_64+0x134/0xf80
[  847.483136][T12093]  ? clear_bhb_loop+0x50/0xa0
[  847.488300][T12093]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  847.494787][T12093] RIP: 0033:0x7f8aa055c84e
[  847.499541][T12093] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 <c3> 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08
[  847.520791][T12093] RSP: 002b:00007f8aa1396fb8 EFLAGS: 00000246 ORIG_RAX: 0000000000000001
[  847.529968][T12093] RAX: ffffffffffffffda RBX: 00007f8aa13976c0 RCX: 00007f8aa055c84e
[  847.539607][T12093] RDX: 0000000000010e80 RSI: 00002000000000c0 RDI: 00000000000000c8
[  847.547917][T12093] RBP: 00007f8aa06327e0 R08: 0000000000000000 R09: 0000000000000000
[  847.556641][T12093] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  847.565452][T12093] R13: 00007f8aa0816038 R14: 00007f8aa0815fa0 R15: 00007ffe98101ea8
[  847.574114][T12093]  </TASK>
[  847.577607][T12093] Kernel Offset: disabled
[  847.582503][T12093] Rebooting in 86400 seconds..