last executing test programs:

40.63361162s ago: executing program 4 (id=2673):
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={<r0=>0x0, <r1=>0x0})
close(r0)
setsockopt$sock_attach_bpf(r1, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
socketpair(0x1e, 0x1, 0x0, &(0x7f0000000040)={0x0, <r2=>0x0})
setsockopt$sock_attach_bpf(r2, 0x10f, 0x87, &(0x7f0000000180), 0x4bd)
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xf, &(0x7f0000000240)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r3}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001000)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r7 = socket$kcm(0x2, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x3, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000731139000000000020000000000000009500200000000000"], &(0x7f0000003ff6)='GPL\x00', 0xa, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x1f2, 0x10, &(0x7f0000000000), 0xfffffffffffffedd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48)
sendmsg$inet(r7, &(0x7f0000000fc0)={&(0x7f0000000000)={0x2, 0x4001, @remote}, 0x10, 0x0}, 0x20000811)
r8 = socket$kcm(0x29, 0x2, 0x0)
ioctl$sock_kcm_SIOCKCMATTACH(r8, 0x89e0, &(0x7f00000008c0)={r7, r6})
r9 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r9, &(0x7f0000002240)=[{&(0x7f0000001000)=@in={0x2, 0x4e23, @local}, 0x10, &(0x7f0000001040)=[{&(0x7f00000010c0)="13", 0x1}], 0x1, &(0x7f0000002180)=ANY=[@ANYBLOB="3000000000000000840000000100000002000000000200000900000081000000050000000000000009000000", @ANYRES32=0x0, @ANYBLOB="200000000000000084000000020000000300020005000000d90f0000", @ANYBLOB="1800"], 0x68, 0x40010}], 0x1, 0x240000c0)
r10 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00')
preadv(r10, &(0x7f0000000140)=[{&(0x7f0000000000)=""/151, 0x97}], 0x1, 0xd, 0x0)
ioctl$TUNSETIFF(r5, 0x400454ca, &(0x7f0000001480)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, &(0x7f0000000080)={'syzkaller0\x00', 0xca58c30f81b6079f})
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r11=>0xffffffffffffffff})
ioctl$PERF_EVENT_IOC_SET_FILTER(r11, 0x8914, &(0x7f0000000080))
bpf$PROG_LOAD(0x5, 0x0, 0x0)
perf_event_open(0x0, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0)
close(r5)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={0x0, r4}, 0x18)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x3, 0x3, &(0x7f0000000000)=ANY=[@ANYBLOB="7a0a00ff0000020071105900000000009500000000000000"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)

40.510343379s ago: executing program 4 (id=2677):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000013c0)=ANY=[@ANYBLOB="1800000000000057b4b8dfa1d9f408000000c0a0000011000000000076e5679a3327839220ec1d11822e8b6dcf6faa27c4ceaa47d9a095d4ab7240c2bba2cc9c947a60867f728d7a4b81ef1b69c6f4104a9eeb39b7fde1d71b9c420d248652c63dbff3e86ccb141fc9ca342d9bbb6df43d7a17cca835353cfdfdb66d3631546f68327dacb2f4cb680b61530915c0ebba7b", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x20, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000780)={0x0}, 0x18)
writev(r1, &(0x7f0000000e80)=[{&(0x7f0000000040)="ec7bcbafa4a8e9720637270083cdb076073ae9fbaeab6658a6be97dad06711f91c006bbdd24c4769f5c0d1dbacc1612734b29ea257eacd43afeb078bfdf9356434fa32ca0aa76eb666cd8a275838d48d92451775aa", 0x55}, {&(0x7f0000000c80)="974b771adcb74164020e52b435c8cc3b55f332e71f03d275c3fe161df5ddba9ce74cfae809c97dbfaad63b4ce89e35026874fd1e4ffa591577fdbeeac4e6a599f6523e083c41a3f24431100153144a8c9f5db48c5230d9c7689aab83c13344fd96c0082b319a980c3e8f6514942bda6b8791ddb0b749a6b302831b613cc52f5c504f94dd236effcc81287143aed5570da1d324c739981f4e5e5d3938bf24bcf918f02f477b1d1c9ed9c3bee25b19535d445bf7aa53dfc7edfa1ddf6bbba08b85116be4204adef956f7ff2cdf5dc1bc97caad13", 0xd3}, {&(0x7f0000000d80)="dd5ddd975e46b9b37b7d7f20ff42b8fc4ea131141890c0e62a1c3d687ea7b9b7eb155fc705f2ba731864a0b049a43482f31c2b194b897037ba9efc99cf80fbdbb91c689e735ed3e3cd9c763a767c8f41a074609a39c9fc298836f1c1f3ad1f4778bfc951345a5804f8211b198e2667445f1fb041068cd820c867c35d3486d3d30dcc5fd9ddff8fba933aa5df53b489cb3d89172e63482f200d128e06a372923f0ec7c60ec9752faadafe3253450510b078986d0ebad38e61da35b870837f4cec7c2ba2bab7128b68519bc11d4fa2badcc7c8a2f287e123c283676b3ebb4f845ffe7508dfe9b589531759691e29", 0xed}], 0x3)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x13, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000005000000000400000900000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000ec0)=ANY=[], 0x0, 0x8, 0x0, 0x0, 0x0, 0x40, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f00000001c0)='./bus\x00', 0x338919675af156af, &(0x7f0000001580)={[{@bsdgroups}, {@dioread_lock}, {@noblock_validity}, {@grpjquota}, {@grpjquota}, {@orlov}, {@journal_checksum}, {@nombcache}, {@stripe={'stripe', 0x3d, 0x10}}]}, 0x64, 0x50a, &(0x7f0000000200)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r3 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8)
r4 = perf_event_open(&(0x7f00000004c0)={0x2, 0x80, 0xfe, 0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, 0x0, @perf_config_ext={0x18a}, 0x401a, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2000000000000000}, 0x0, 0x0, 0xffffffffffffffff, 0x2)
ioctl$PERF_EVENT_IOC_SET_FILTER(r4, 0x40082406, &(0x7f0000000000)='cpu<=0||!')
r5 = socket$inet6_udplite(0xa, 0x2, 0x88)
setsockopt$IP6T_SO_SET_REPLACE(r5, 0x29, 0x40, &(0x7f0000000f80)=@filter={'filter\x00', 0x2, 0x4, 0x3d0, 0xffffffff, 0x228, 0x108, 0x108, 0xfeffffff, 0xffffffff, 0x300, 0x300, 0x300, 0xffffffff, 0x4, 0x0, {[{{@ipv6={@private0, @private0={0xfc, 0x0, '\x00', 0x1}, [0xff000000, 0xffffff00], [], 'macsec0\x00', 'bond_slave_0\x00', {}, {0xff}, 0x0, 0x0, 0x6}, 0x2f2, 0xa8, 0x108}, @common=@inet=@HMARK={0x60, 'HMARK\x00', 0x0, {@ipv6=@private0={0xfc, 0x0, '\x00', 0x1}, [0x0, 0xffffff00, 0xffffffff, 0xffffffff], 0x4e23, 0x4e21, 0x4e22, 0x4e21, 0x5, 0x40, 0x0, 0x7, 0x1ff}}}, {{@uncond, 0x0, 0xd8, 0x120, 0x0, {}, [@common=@ah={{0x30}, {[0x4d2, 0x4000001], 0x7ffffffd}}]}, @common=@inet=@TEE={0x48, 'TEE\x00', 0x1, {@ipv6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 'bridge_slave_0\x00', {0x10001}}}}, {{@ipv6={@dev={0xfe, 0x80, '\x00', 0x43}, @private2={0xfc, 0x2, '\x00', 0x1}, [0xffffffff, 0xff000000, 0xffffffff], [0x0, 0xffffff00, 0xffffff00], 'geneve0\x00', 'xfrm0\x00', {}, {0xff}, 0x5c, 0xd, 0x3, 0x3c}, 0x0, 0xa8, 0xd8}, @common=@inet=@SET2={0x30, 'SET\x00', 0x2, {{0x2, 0x2, 0x3}, {0x0, 0x5, 0x4}, 0xfffffffd, 0x1ff}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0xffffffffffffff90)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000800)=ANY=[@ANYRES16=r2], 0x7c}, 0x1, 0x0, 0x0, 0x4c000}, 0x0)
munlockall()
mbind(&(0x7f0000001000/0x800000)=nil, 0x800000, 0x0, 0x0, 0x0, 0x2)
r6 = syz_open_dev$tty1(0xc, 0x4, 0x1)
r7 = socket$nl_route(0x10, 0x3, 0x0)
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000054850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
r9 = socket(0x10, 0x80003, 0x0)
write(r9, &(0x7f0000000000)="240000001a005f0214f9f407000904000a000000fe0000000000000008000f00fd000000", 0x85)
dup2(r7, r9)
write$selinux_access(r3, &(0x7f0000001680)=ANY=[], 0x47)
ioctl$KDFONTOP_SET(r6, 0x4b72, &(0x7f0000000000)={0x0, 0x0, 0x8, 0x1e, 0x200, &(0x7f0000000880)="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"})

40.270896878s ago: executing program 4 (id=2687):
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='status\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
syz_io_uring_setup(0x4003, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0x0, 0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r5, 0x1, 0x3c, &(0x7f00000001c0)={0x200000000000001}, 0x8)
sendto$inet6(r5, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local}, 0x1c)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0), 0x125003, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
memfd_create(0x0, 0x2)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r7 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r7, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r7, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@mask_fadd={0x58, 0x114, 0x8, {{0xf, 0x1}, &(0x7f0000000080)=0x6, 0x0, 0x2, 0xfffffffffffffffe, 0x7, 0x3, 0x48, 0x5}}], 0x58}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r8, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

39.995225117s ago: executing program 4 (id=2691):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="0b00000007000000010001000800000001000000", @ANYRES32, @ANYBLOB="0000000000000000000000100000000000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/14], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70800000000002c7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
socket$nl_xfrm(0x10, 0x3, 0x6)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x2, 0x500, &(0x7f0000000500)="$eJzs3U9sI1cZAPBvJn/sTdMmhR4AFbqUwoJWayfeNqp6oZwqhCoheuSwDYkTRbHjKHZKE/aQPXJHohInOHHmgMQBqSfuSBzgxqUckAqsQA0SByOP7V3njzfWbmzvxr+fNJo38+L53tvRvGd91s4LYGJdj4ijiJiNiPcjYqFzPuls8XZ7a/3dZ/fvrh3fv7uWRLP53j+TrL51Lno+0/Jc55r5iPjBOxE/Sk4F/VNE/eBwe7VSKe91ThUb1d1i/eDw1lZ1dbO8Wd4plVaWV5bevP1G6dL6+kr1N59ei4jf/+7Ln/zx6Fs/aTVrvlPX24/L1O76zIM4LdMR8b1hBBuDqU5/Zh/nw4/1IS5TGhGfi4hXs+d/Iaayu3nSydv07RG2DgAYhmZzIZoLvccAwFWXZjmwJC10cgHzkaaFQjuH91LMpZVavXFzo7a/s97OlS3GTLqxVSkvdXKFizGTbGxNl5ezcve4Ui6dOr4dES9GxM9y17Ljwlqtsj7OLz4AMMGeOzX//yfXnv8BgCsu/7CYG2c7AIDRyY+7AQDAyJn/AWDymP8BYPKY/wFg8pj/AWDymP8BYKJ8/913W1vzuPP+6/UPDva3ax/cWi/XtwvV/bXCWm1vt7BZq21m7+ypXnS9Sq22u/x67H9YbJTrjWL94PBOtba/07iTvdf7TnlmJL0CAB7lxVc+/ksSEUdvXcu26Hnf/4Vz9cvDbh0wTOm4GwCMzdS4GwCMzdnVvoBJIR8P9CzRe6/ndP5M4bSPBrp8at1QePrc+OIT5P+BZ5r8P0yux8v/+y4PV4H8P0yuZjOx5j8ATBg5fiC5oL739/+lZs/BYL//AwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwJU0n21JWuisBT4faVooRDwfEYsxk2xsVcpLEfFCRPw5N5NrHS9HhHWDAOBZlv496az/dWPhtfnTtbO5/+ayfUT8+Bfv/fzD1UZjbzliNvnXg/ONjzrnS+NoPwBwke483Z3Huz67f3etu42yPZ9+p724aCvucWdr10zHdLbPZ7mGuX8nneO21veVqUuIf3QvIr5wXv+TLDey2Fn59HT8VuznRxo/PRE/zera+9a/xecvoS0waT5ujT9vn/f8pXE925///OezEerJdce/4zPjX/pg/JvqM/5dHzTG63/47pmTzYV23b2IL01HHHcv3jP+dOMnfeK/NmD8v778lVf71TV/GXEjzut/ciJWsVHdLdYPDm9tVVc3y5vlnVJpZXll6c3bb5SKWY662M1Un/WPt26+0C9+q/9zfeLnL+j/1wfs/6/+9/4Pv/qI+N/82vn3/6VHxG/Nid8YMP7q3G/z/epa8df79P+i+39zwPif/O1wfcA/BQBGoH5wuL1aqZT3hl1Ihx8iKyQRRyPoTruQ+/VP3xlVrCEW4ulohsLTVBj3yAQM28OHftwtAQAAAAAAAAAAAAAA+hnFfycadx8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4uv4fAAD//5iA1Hs=")
syz_clone(0x0, 0x0, 0xfffffe11, 0x0, 0x0, 0x0)
mkdirat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x1c0)
stat(&(0x7f0000000040)='./file0\x00', &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, <r2=>0x0, <r3=>0x0})
epoll_create(0x5)
lchown(&(0x7f0000000180)='./file1\x00', r2, r3)
r4 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000080)={'bridge_slave_0\x00', <r5=>0x0})
socket$inet6_sctp(0xa, 0x1, 0x84)
socketpair(0x1, 0x20000000000001, 0x0, &(0x7f0000000100)={0xffffffffffffffff, <r6=>0xffffffffffffffff})
socket$inet6_sctp(0xa, 0x5, 0x84)
r7 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_MAX_BURST(r7, 0x84, 0x83, &(0x7f0000000000)=@assoc_value={<r8=>0x0}, &(0x7f0000000040)=0x54)
setsockopt$inet_sctp6_SCTP_AUTH_KEY(r6, 0x84, 0x17, &(0x7f0000000640)={r8, 0x80f7, 0x69, "cea258870ea76ded5a000879eb48e01aa314030bae2309eb8cfa36e691d49418119251494f0e1ab75682ff5fd809cdd55a3cfb98bd895e9d2f39d6d307c55cabf0eda6177449635a023f39358b859a73cdbccf44957806f69edceea668cb5846b329398c706f379b2b"}, 0x71)
r9 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
ioctl$sock_SIOCGIFINDEX(r9, 0x8933, &(0x7f0000000000)={'bridge0\x00', <r10=>0x0})
sendmsg$nl_route(r4, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000140)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x215, 0xffe}, [@IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @vlan={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_VLAN_ID={0x6}]}}}, @IFLA_LINK={0x8, 0x5, r5}, @IFLA_MASTER={0x8, 0xa, r10}, @IFLA_MTU={0x8, 0x4, 0x8}]}, 0x54}, 0x1, 0xba01, 0x0, 0x4010}, 0x4000000)

39.731034966s ago: executing program 4 (id=2699):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000008da4b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000100)='kfree\x00', r0}, 0x10)
r1 = socket$inet6(0xa, 0x3, 0x3a)
socket$inet6(0xa, 0x800000000000002, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000ff0f000007"], 0x48)
memfd_create(&(0x7f0000000a00)='+\x8b\x8a\xa9\x16\x11\x91J\xbc+  \x18\x17\xc2:}\xa3\x9bO\xdd\xdf\xdf\x92\xd5\xed\xb4\x17\xe5\xd6\x9a\xb2\xd8\x9ba\xde\xb2.F\xc0\x99}|\xaf\xd3\x1d\x84[*_\x9f\x9d\xb0rYP\x1b\x9f \xe0\x9cgq\x103\x89\x11\x87Rv\x169\xdf\xe3>B\x04\x00\x00\x00W\xd3\xec\xfb\xdf?\xa2\x90+\xa4!\xb2\xf2\xff\x90\a\xc3\x12\xc4;\xffh\xf1x=\xb9c\xce\x03h\xdap\x88U\x1788\x82\xfa\xfd\x83\x00Sx\x91%\x99_\xfe\xd4c\x83\x86\x0f\xa4a-\xaf\x9e\xd9\xef\xe0)]\x00F\xfa\xee\xbb4\xc4\x9a\v\x03\x8b\xa4\xf3\x8f\xf4\"\'\xd3\a9\x14H}j&~\xe9\x16\x83o\xbd\xab\xcd[\xbd\xcb\x04\xfc\xe7\xe3\x9e?\x12\xf0\xf4\x83M3\xd88\x92?@\v\xe6\xd1\xd2\xe4\xde\xdaUeJ\x9fR\xd1`\xfa\xc8\v\xed\xfd\x0e\xc8\x89W\x847\x88\x82\x94\x14\xe33\xb7H\xc8b\xd6@3F#\xb7\x04C\x8dm\t\x16a\x0fI\xf4\xfe\xf8\x06j\x19Pz&\xb8\x0f\x98`\xfc\xdb\xc6\"81A\xa4\x8bT\xf1\xcb\xab\xa3\t\xef\xdf&\x0e\xad\x03\x123.\xc2V\xaa\xd5\xf8\xde\x8aV\xa4p{\xcez\xa2\x92\xdb8*wLO\f\x97X\x05\x9a\xc2\xe8\x85\x9d\xcb\xc8\xf0\xc4\x01\x03\xe3?\x9f1\xf4\xfb\xa5y`KB\xdf\xae#\x94C\a\x04\xea\xccG\xf2\b\x8f\xf7\xb1\xe96\x90\xf5P\xa4\'\xce\xe3\xa24\x196\xc5Q\xa1K\x95\xd6\xfal\xe9\xd1\\\r&\xb2c\xb3\x8d\xa7\xb7\xa8\x03S\xbd\xdd\b{\xae\f\x10\xc2\xbb\xd0\xdd*\xa3\xb4\fJ\x00X\xab`N; LF\xa5D\xee\xdf\x7f\x80p\xf6o\x1c\xbdXR\xf2\xa0\x81a\xa1\xe1B\x93Xn\xaf\xfc\x05?\xab\xac\x91x\xa8#\xe1\xbeQ\xd1^\x9b\xb9)\xd3\n\xf7(3!\x18\b\xc0\xaampRl\xfdQ\x03\x8c\xd5\xe4\\\xed\x9a\xcc?\xd21\xc8\x90\x1dl|\xd1\x14\xbc3\xe0\x1e\x0e\xe6\x88Y\x99K\x93\x1c@_P\x8c\xc7\x9eZ\xb74KT:\x8a\xdbJ#w\x18\x14\x00\x93\x86\xa5wo\xf6M\xe7D\xf4*\xe3X\x1d\x19\x83\xa7w\xc7+7\x89s\xed\x8a\xd7O\xdd\rhh`\xc0\xa8$\x06pu\xa0\xd0L\x0ez@I\xb8\x83\xb2f\x93j\a0I\xc8l\xe5\x9b\x06\xb5\xac`d\xa3\xcf/\x14\x10\xab\xab\t\xec\xc1c\fA\xaf\x14\xef\xbap@*7\x86\xdf\',\x03Y\xb1$\xf0\xb5}\xf0\x82%)9`\x8f\x04\x85m\x80\xd2\xcf@\x06}\xea\xe7w`\xa5\x11\x9f\x9b\x9e\x8f\xb7cb\x1a\xe1\xcf\x87\x1c\\\xf5\xc21\xf7\x82C*\xd5;\x00\x00\x00\x00\x03\xba\xe3\xdc\x92\'\x8e\xd5\x7fG\xfd.\x91\x89T\x99t\xd4d,\xd5\x92O\xf1\xafT!Y\x8e\\\xac\xf7\x11R\x05p\x1a\"\r\xe9\xe5\x8b&\x0f\x8c\xfb\xef\xf8\xd5\x18\xde\xeb\xe5\x19\xdd\xebQ8\xc5iS+\x06D\x16\xfe\xf5.\xe5\v\x89\xb0\"\xa3M\xe9\x81\x11P\xdb\xc4\xc2y\x14\x04\x06\xf6\f\xb0\xecz\x8d`\xb5\x9b\xb43\xcc1\xa7MAe\x0f\xd1\xfcG\xc2/\xe8\xe9t\xcaQ\xf1\fI\x1chM\xc1\x92\xe3\xc3\x01M\xc8/\xefJ\xcb\xd0]\f\xff\xf5\x92\xce\x97Z\xea\xe8\x99\xfa\x96\xce\xa7\x02\xad\xa2\xce\x955\xeaNg\x02\xcd\xfd\x1a}.\xd3\"x\x89/8H\xc2\x93B\na)\x86\xa9U\xa0\xb7\x18\xfb\xe9\xd1\x97\x00\x00\x00\x00\x00', 0x5)
r2 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/mcfilter6\x00')
preadv(r2, &(0x7f00000000c0)=[{&(0x7f0000000580)=""/128, 0x80}], 0x1, 0x5b, 0x0)
setsockopt$bt_BT_CHANNEL_POLICY(r2, 0x112, 0xa, &(0x7f0000000080)=0xef, 0x4)
pipe2(&(0x7f0000000400), 0x800)
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
setsockopt$inet6_IPV6_RTHDR(r1, 0x29, 0x39, &(0x7f0000000f00)={0x0, 0x0, 0x2, 0x1}, 0x8)

39.487507895s ago: executing program 4 (id=2705):
r0 = perf_event_open(&(0x7f0000000380)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r1 = gettid()
tkill(r1, 0x7)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r1, 0x12)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)

39.450704755s ago: executing program 32 (id=2705):
r0 = perf_event_open(&(0x7f0000000380)={0x6, 0x80, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0, 0x4}}, 0x0, 0x0, 0xffffffffffffffff, 0x8)
r1 = gettid()
tkill(r1, 0x7)
write$cgroup_pid(0xffffffffffffffff, &(0x7f0000000000)=r1, 0x12)
mmap$perf(&(0x7f0000ffd000/0x1000)=nil, 0x1000, 0x0, 0x11, r0, 0x0)
mmap$xdp(&(0x7f0000800000/0x800000)=nil, 0x800000, 0x2, 0x42032, 0xffffffffffffffff, 0x0)

2.052309069s ago: executing program 2 (id=3380):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$tipc(&(0x7f0000000000), 0xffffffffffffffff)
sendmsg$TIPC_CMD_GET_NODES(r2, &(0x7f0000000500)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000480)={0x1c, r3, 0x1, 0x70bd2c, 0x0, {{}, {0x0, 0x6}}}, 0x1c}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
r4 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0)
ioctl$FS_IOC_SETFLAGS(r4, 0x40086602, &(0x7f00000001c0)=0x20000008)
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
chdir(&(0x7f00000003c0)='./bus\x00')
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r5, &(0x7f00000003c0)='./bus\x00', 0x0)
renameat2(r5, &(0x7f0000000300)='./bus\x00', r5, &(0x7f00000001c0)='./file0\x00', 0x4)

1.933455178s ago: executing program 3 (id=3381):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$ethtool(&(0x7f00000004c0), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000780)={'veth1_to_bridge\x00', <r3=>0x0})
r4 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x2e, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r5}, 0x10)
sendmsg$ETHTOOL_MSG_CHANNELS_GET(r1, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000800)={&(0x7f00000007c0)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r2, @ANYBLOB="010026bd6000000000002d", @ANYRES32=r3], 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x20040814)

1.919367838s ago: executing program 2 (id=3382):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000780)=@newsa={0x178, 0x10, 0x1, 0x0, 0x0, {{@in=@local, @in6=@empty, 0x4000, 0x0, 0x3, 0x3, 0x0, 0x0, 0x0, 0x16}, {@in=@broadcast, 0x0, 0x33}, @in6=@empty, {0x0, 0x0, 0x0, 0x401, 0x0, 0x0, 0x4}, {0x3}, {}, 0x0, 0x3507, 0xa, 0x1}, [@algo_auth={0x87, 0x1, {{'sha256\x00'}, 0x1f8, "177e75fc7491e5672faea1505354bcc681cc40ee18b6504322e62a7a47aee4283180df1af2300635ecbabf7ca55b683f30612eb85bb20bc5508550bc2ce3a9"}}]}, 0x178}}, 0x0)

1.802373087s ago: executing program 2 (id=3384):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={0x0, r0}, 0x18)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000780)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000202300800000000000000000850000007b00000095"], &(0x7f00000001c0)='GPL\x00', 0x4, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
socket$nl_generic(0x10, 0x3, 0x10)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x200000, &(0x7f00000005c0)={[{@noblock_validity}, {}, {@sysvgroups}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@orlov}, {@nogrpid}, {@noauto_da_alloc}, {@nomblk_io_submit}]}, 0x3, 0x56a, &(0x7f00000015c0)="$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")
mkdir(&(0x7f00000004c0)='./bus\x00', 0x92)
chdir(&(0x7f00000003c0)='./bus\x00')
r2 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0)
mkdirat(r2, &(0x7f00000003c0)='./bus\x00', 0x0)

1.777485488s ago: executing program 3 (id=3385):
r0 = getpid()
syz_pidfd_open(r0, 0x0)
r1 = syz_io_uring_setup(0x239, &(0x7f0000000200)={0x0, 0x0, 0x10100}, &(0x7f0000000180)=<r2=>0x0, &(0x7f00000001c0)=<r3=>0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bf"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x34, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='kfree\x00', r4, 0x0, 0x8000}, 0x18)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f00000003c0)=ANY=[])
syz_io_uring_submit(r2, r3, &(0x7f0000000040)=@IORING_OP_POLL_ADD={0x6, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0x0, {0x1206}})
io_uring_enter(r1, 0x2def, 0x0, 0x0, 0x0, 0x0)
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], &(0x7f0000000700)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x2, 0x0, 0x7ffc17fb}]})
io_setup(0x2004, &(0x7f0000000680))

1.584938247s ago: executing program 2 (id=3387):
r0 = syz_open_procfs(0x0, &(0x7f0000000300)='status\x00')
mount$9p_fd(0x0, &(0x7f0000000100)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000880)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r0])
syz_io_uring_setup(0x4003, &(0x7f0000000240)={0x0, 0x0, 0x10100}, &(0x7f00000003c0)=<r1=>0x0, &(0x7f0000000340)=<r2=>0x0)
syz_io_uring_submit(r1, r2, &(0x7f0000000180)=@IORING_OP_READV=@pass_iovec={0x1, 0x0, 0x0, @fd=r0, 0x0, 0x0})
r3 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000400)=ANY=[@ANYBLOB="180000000000000000000000fcffffff18110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b702000000000000850000008600000095"], &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f0000000180)='kmem_cache_free\x00', r4}, 0x10)
r5 = socket$inet6(0xa, 0x800000000000002, 0x0)
setsockopt$sock_linger(r5, 0x1, 0x3c, &(0x7f00000001c0)={0x200000000000001}, 0x8)
sendto$inet6(r5, 0x0, 0x5c4, 0x404c844, &(0x7f0000000540)={0x2, 0x4e24, 0x0, @local}, 0x1c)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r6}, 0x10)
openat$rfkill(0xffffffffffffff9c, &(0x7f00000001c0), 0x125003, 0x0)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000001080)="$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")
memfd_create(0x0, 0x2)
perf_event_open(&(0x7f0000000200)={0x2, 0x80, 0x3d, 0x1, 0x0, 0x0, 0x0, 0x5, 0x62000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_bp={0x0}, 0x100000, 0x0, 0x0, 0x6, 0x3, 0x0, 0x4}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x8)
r7 = socket$rds(0x15, 0x5, 0x0)
bind$rds(r7, &(0x7f0000000840)={0x2, 0x0, @loopback}, 0x10)
sendmsg$rds(r7, &(0x7f0000000000)={&(0x7f0000000040)={0x2, 0x0, @loopback}, 0x10, 0x0, 0x0, &(0x7f0000000200)=[@mask_fadd={0x58, 0x114, 0x8, {{0xf, 0x1}, &(0x7f0000000080)=0x6, 0x0, 0x2, 0xfffffffffffffffe, 0x7, 0x3, 0x48, 0x5}}], 0x58}, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
r8 = openat$autofs(0xffffffffffffff9c, &(0x7f00000003c0), 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00'}, 0x10)
ioctl$AUTOFS_DEV_IOCTL_ISMOUNTPOINT(r8, 0xc0189374, &(0x7f0000000240)={{0x1, 0x1, 0x5f, 0xffffffffffffffff, {0x29}}, './file0\x00'})

1.500822266s ago: executing program 3 (id=3390):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
setsockopt$packet_int(0xffffffffffffffff, 0x107, 0x14, 0x0, 0x0)
openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0)
capset(&(0x7f0000000000)={0x20080522}, &(0x7f0000000280)={0x0, 0x0, 0x0, 0x81, 0xffffffff})
sendto$inet6(r0, 0x0, 0x0, 0x20004041, 0x0, 0x0)
connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0xcc15, @dev, 0x7}, 0x1c)
close(r0)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$mptcp(&(0x7f0000000b00), 0xffffffffffffffff)
sendmsg$MPTCP_PM_CMD_FLUSH_ADDRS(r1, &(0x7f0000000f00)={0x0, 0x0, &(0x7f0000000ec0)={&(0x7f0000000e40)={0x14, r2, 0x1, 0x70bd27, 0x25dfdbfe}, 0x14}, 0x1, 0x0, 0x0, 0x40}, 0x48010)

1.420007166s ago: executing program 1 (id=3393):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x0, @dev}, 0x2, 0x0, 0x4}}, 0x2e)
connect$inet6(r1, &(0x7f00000001c0)={0xa, 0x4e24, 0x1, @mcast2, 0x9}, 0x1c)
r2 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r2, &(0x7f00000000c0)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x0, @rand_addr=0x64014100}, 0x2, 0x3, 0xfffc, 0x2000}}, 0x26)
bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41100, 0x40, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x39, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x1a01, 0x0)
ioctl$EVIOCGPROP(r3, 0x40047438, &(0x7f0000000180)=""/246)
writev(r3, &(0x7f0000000440)=[{&(0x7f0000000280)="c021", 0x1700}], 0x1)

1.419539536s ago: executing program 1 (id=3394):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r3=>0x0})
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r4, &(0x7f0000000080)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r4, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
r5 = socket$inet6(0xa, 0x2, 0x0)
bind$inet6(r5, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(r5, &(0x7f00000002c0)={0xa, 0x4e24}, 0x1c)
sendmmsg(r5, 0x0, 0x0, 0x0)
r6 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001540), 0xffffffffffffffff)
r7 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000006fc0)={'wg0\x00', <r8=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r7, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008d80)={&(0x7f0000007000)={0x38, r6, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r8}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_GET(r7, &(0x7f0000000140)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4000004}, 0x804)
sendmsg$NFNL_MSG_ACCT_GET(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x801)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

1.123536644s ago: executing program 3 (id=3396):
r0 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_tx_ring(r0, 0x107, 0x5, &(0x7f0000000380)=@req3={0x8000, 0x8, 0x400, 0x100}, 0x1c)
r1 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$NL80211_CMD_NEW_KEY(0xffffffffffffffff, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000000)={0x1c, 0x0, 0x0, 0x0, 0x0, {{}, {@val={0x8}, @void}}}, 0x1c}, 0x1, 0x0, 0x0, 0x40000}, 0x4000004)
ioctl$sock_SIOCBRDELBR(r1, 0x89a2, &(0x7f0000000000)='bridge0\x00')
syz_emit_ethernet(0x3e, &(0x7f0000001040)={@link_local, @random="50a245d5cde0", @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x30, 0x0, 0x0, 0x0, 0x2, 0x0, @empty, @broadcast}, @redirect={0x5, 0x3, 0x0, @broadcast, {0x5, 0x4, 0x1, 0x2, 0xfffd, 0x66, 0x1, 0x6, 0x0, 0x8000, @empty, @dev={0xac, 0x14, 0x14, 0x14}}}}}}}, 0x0)

1.059841285s ago: executing program 2 (id=3399):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_vs\x00')
r1 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$IP_VS_SO_SET_ADD(r1, 0x0, 0x482, &(0x7f0000000040)={0x84, @remote, 0x15, 0x3, 'wrr\x00', 0x1, 0x4, 0x72}, 0x2c)
r2 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r2, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x4, 0x0}, 0x4e21, 0x3, 'sed\x00', 0xb, 0x323b, 0x3a}, {@rand_addr=0x64010102, 0x4e23, 0x1, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
r3 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_ADDDEST(r3, 0x0, 0x487, &(0x7f0000000000)={{0x84, @initdev={0xac, 0x1e, 0x4, 0x0}, 0x4e21, 0x3, 'lc\x00', 0x2, 0x81, 0x37}, {@multicast2=0x64010102, 0x4e20, 0x4, 0xc3, 0x12d5c, 0x12d5c}}, 0x44)
read(r0, &(0x7f0000001b00)=""/194, 0xc2)

1.000020674s ago: executing program 3 (id=3401):
r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
ioctl$sock_bt_hci(r0, 0x400448ca, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
r2 = openat$rfkill(0xffffffffffffff9c, &(0x7f0000000180), 0x20801, 0x0)
write$rfkill(r2, &(0x7f0000000100)={0x0, 0x2, 0x3, 0x1}, 0x8)
ioctl$sock_bt_hci(r1, 0x400448c9, 0x0)

999.588294ms ago: executing program 2 (id=3402):
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_j1939(0x1d, 0x2, 0x7)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, 0x0)
r3 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000280)={'vxcan1\x00', <r4=>0x0})
bind$can_j1939(r3, &(0x7f00000002c0)={0x1d, r4, 0x0, {0x2, 0x0, 0x4}}, 0x18)
sendmsg$can_j1939(r3, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
setsockopt$SO_J1939_ERRQUEUE(r3, 0x6b, 0x4, &(0x7f0000000100)=0x1, 0x4)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, &(0x7f0000000000)={'vcan0\x00', <r5=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000940)=@newtfilter={0x24, 0x11, 0x1, 0x74bd2b, 0x0, {0x0, 0x0, 0x74, r5, {0x6, 0x4}, {0x0, 0x1}, {0xa}}}, 0x24}, 0x1, 0xf0ffffffffffff}, 0x0)
r6 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000180), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r6, 0xc0145401, 0x0)
dup(0xffffffffffffffff)
connect$can_j1939(0xffffffffffffffff, &(0x7f0000000200)={0x1d, r5, 0x2, {0x0, 0xff, 0x2}}, 0x18)

931.727274ms ago: executing program 3 (id=3404):
r0 = socket$nl_route(0x10, 0x3, 0x0)
socket(0x200000000000011, 0x2, 0x0)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_vcan(r2, 0x8933, &(0x7f0000000380)={'vcan0\x00', <r3=>0x0})
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
bind$tipc(0xffffffffffffffff, 0x0, 0x0)
r4 = socket$can_j1939(0x1d, 0x2, 0x7)
bind$can_j1939(r4, &(0x7f0000000080)={0x1d, r3}, 0x18)
sendmsg$can_j1939(r4, &(0x7f00000001c0)={&(0x7f0000000040), 0x18, &(0x7f0000000180)={&(0x7f00000000c0)="92", 0x1a000}}, 0xee)
bind$inet6(0xffffffffffffffff, &(0x7f0000002c80)={0xa, 0x14e24}, 0x1c)
connect$inet6(0xffffffffffffffff, 0x0, 0x0)
sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0)
r5 = syz_genetlink_get_family_id$ethtool(&(0x7f0000001540), 0xffffffffffffffff)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
ioctl$ifreq_SIOCGIFINDEX_wireguard(r1, 0x8933, &(0x7f0000006fc0)={'wg0\x00', <r7=>0x0})
sendmsg$ETHTOOL_MSG_FEATURES_SET(r6, &(0x7f0000008dc0)={0x0, 0x0, &(0x7f0000008d80)={&(0x7f0000007000)={0x38, r5, 0x1, 0x70bd26, 0x25dfdbfb, {}, [@ETHTOOL_A_FEATURES_WANTED={0x4}, @ETHTOOL_A_FEATURES_HEADER={0x20, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'wg0\x00'}, @ETHTOOL_A_HEADER_DEV_INDEX={0x8, 0x1, r7}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)
syz_genetlink_get_family_id$devlink(&(0x7f0000000480), 0xffffffffffffffff)
sendmsg$DEVLINK_CMD_PORT_GET(r6, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={0x0}, 0x1, 0x0, 0x0, 0x4000004}, 0x804)
sendmsg$NFNL_MSG_ACCT_GET(r1, &(0x7f0000000400)={&(0x7f0000000180)={0x10, 0x0, 0x0, 0x40000000}, 0xc, &(0x7f00000003c0)={0x0}, 0x1, 0x0, 0x0, 0x800}, 0x801)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, 0x0}, 0x0)

501.244282ms ago: executing program 0 (id=3413):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x7, 0x4008031, 0xffffffffffffffff, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
getpgrp(0x0)

378.324572ms ago: executing program 0 (id=3414):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFNL_MSG_ACCT_NEW(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)={0x20, 0x0, 0x7, 0x201, 0x0, 0x0, {0x2, 0x0, 0x3}, [@NFACCT_NAME={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x10}, 0x44acc14474f16fbe)
sendmsg$NFNL_MSG_ACCT_DEL(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000002800)=ANY=[@ANYBLOB="20000000030701"], 0x20}, 0x1, 0x0, 0x0, 0x4044840}, 0x24000040)

283.675112ms ago: executing program 1 (id=3416):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10)
lstat(&(0x7f0000000240)='.\x00', &(0x7f0000002580))

283.451782ms ago: executing program 0 (id=3417):
r0 = socket$nl_generic(0x11, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@local, @local, @void, {@ipv4={0x800, @icmp={{0x5, 0x4, 0x0, 0x0, 0x2b, 0x0, 0x0, 0x0, 0x2, 0x0, @rand_addr, @multicast1}, @address_request}}}}, 0x0)
sendmsg(r0, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x2c, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x3e}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)
r1 = socket$nl_generic(0x11, 0x3, 0x10)
syz_emit_ethernet(0x2a, &(0x7f0000000000)={@link_local, @random="a538ae464632", @void, {@ipv4={0x800, @igmp={{0x5, 0x4, 0x0, 0x0, 0x1c, 0x0, 0x0, 0x0, 0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}, @local}, {0x0, 0x0, 0x0, @multicast1}}}}}, 0x0)
syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x6, 0x644, &(0x7f00000006c0)="$eJzs3c9rHG0dAPDvzCZ5kzS+6SsiNigGPLQgTZNarHqxrQd7KFiwBxEPDU1SQ7c/SFKwtdAEPCgoiHgt0ov/gHfp3ZsI6s2zUEUqFrR0ZWZnm81mN7ttsrtJ5vOBzT7zzLN5nm9mn8wzM/vsBFBas9mPNOJUxNubScR007qpqK+cLcq9+teTW9kjiVrtu/9MIinyGuWT4vlEsTAeEX+8EvHpyu561x89vrNYrdU9jTi3cffBufVHj8+u3l28vXx7+d7C+a9duDj/9YULC00N/XAniuer177z+V/85IdfXflT9WwSl+LG6I+XoiWOgzIbs/G2CLE5fyQiLmaJNn+Xo+YYhFBqleL9OBoRn43pqORLddOx+vOhNg7oq1olora3pFsB4KjSvaGsGuOAxrF9b8fBN/o8Khmcl5frB0C74x8pTjmM58dGk6+SpiOj+rmNkwdQf1bHmyfjz948mXkWO85DvH63dUYOoJ5ONrci4nPt4k/ytp3MI83iT3cc6ycRMR8RY0X7vrWPNiRN6X6ch9lLj/FXsvibt0MaEZeK5yz/ygfW33paa9DxA1BOLy4XO/LNbGl7/5eNPRrjn9ge/zxtvG5q/5dkcsPe/3Ue/zX29+P5uCdtGYdlY5br7X/laGvG33529Ved6q+P/2aeNR5Z/Y2x4CC83IqYaYn/p1mwxfgniz9pM/7Nity81Fsd3/7zP652Wjfs+GvPI063Pf7ZHpVmqT2uT55bWa0uz9d/tq3j93/4wW871d8+/o/6EGl72faf7BB/0/ZPW1+X/U0etP+VW60Zv7v+/G6n+qe6bv/072NJ/XhzrMj50dbGxtpCxFhyrShS5C9ubKyd3zveepnXtfx5oR7/mS+17/873v8tUU00/mX24MH37rzqtO5D3v9NF5Pf1npsQydZ/Evdt/+u/p/l/bLHOv7z/Ydf6LSuffzJvmICAAAAAACAskrza7BJOvcunaZzc/X5sp+JybR6f33jyyv3H95bijiTfx5yNI00yT8yMl1fTlZWq8sLxedhG8vnW5a/EhGfRMSvKxP58tyt+9WlYQcPAAAAAAAAAAAAAAAAAAAAh8SJYv5/4z7V/67U5/8DJdH9BnO77v8AHBP9vMEkcLjl/X+vXfzHg2sLMFj2/1Be+j+Ul/4P5aX/Q3np/1Be+j+Ul/4P5aX/AwAAAMCx9MkXX/w1iYjNb0zkj8xYsc6kXzjeRt+rdKVv7QAGT4+G8np36d9gH0qnp/H/f4svB+x/c4AhSNpl5oOD2t6d/0XbV27b2n/bAAAAAAAAAAAAAIC606c6z/9/v7nBwFFj2h+U1z7m//vqADjifPU/lJdjfKDLLP4Y77Si2/x/AAAAAAAAAAAAAODATOWPJJ0r5gJPRZrOzUV8KiJOxmiyslpdno+IjyPiL5XRj7LlhWE3GgAAAAAAAAAAAAAAAAAAAI6Z9UeP7yxWq8trzYn/7co53onGXVC7F671UGbPxDfjPV8VyeD/LBMRMfSN0rfESFNOErGZbflD0bC19TgczcgTQ/7HBAAAAAAAAAAAAAAAAAAAJdQ097i9md8MuEUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMHjb9//vkliarL+gp8I7E8OOEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4mv4fAAD//6AzO/k=")
sendmsg(r1, &(0x7f0000000640)={&(0x7f00000000c0)=@caif=@dgm={0x25, 0xd}, 0x80, &(0x7f00000005c0)=[{&(0x7f0000000000)="4ba72c4cfd81685544f46c3f0800", 0x36}], 0x2, 0x0, 0x0, 0x11000000}, 0x0)

283.301612ms ago: executing program 1 (id=3418):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
creat(&(0x7f0000000000)='mnt\x00', 0xb2)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}})

283.253152ms ago: executing program 1 (id=3419):
r0 = syz_open_procfs(0x0, &(0x7f0000000100)='net/ip_vs\x00')
read(r0, &(0x7f0000001b00)=""/194, 0xc2)

278.616831ms ago: executing program 0 (id=3420):
r0 = socket$igmp(0x2, 0x3, 0x2)
ioctl$sock_inet_SIOCSIFBRDADDR(r0, 0x891a, &(0x7f0000000000)={'veth1_to_batadv\x00', {0x2, 0x4e20, @empty}})

267.570211ms ago: executing program 1 (id=3421):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, 0x0, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
ioctl$TUNSETOFFLOAD(r0, 0x400454c9, 0xba98575a95aeb710)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
close(r1)
socketpair$unix(0x1, 0x5, 0x0, 0x0)
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000002280)={'syzkaller0\x00', @multicast})
r2 = openat$tun(0xffffffffffffff9c, 0x0, 0x1c1842, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, 0x0)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
write$cgroup_devices(r2, 0x0, 0xffdd)
syz_usb_connect(0x0, 0x57, 0x0, 0x0)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_TCP_CONGESTION(r3, 0x6, 0xd, 0x0, 0x0)
r4 = socket$packet(0x11, 0x2, 0x300)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, 0x0)
r5 = socket$packet(0x11, 0x3, 0x300)
sendto$packet(r5, 0x0, 0x0, 0x0, 0x0, 0x0)
socket$nl_xfrm(0x10, 0x3, 0x6)
r6 = socket$inet6_mptcp(0xa, 0x1, 0x106)
r7 = creat(0x0, 0x0)
open_by_handle_at(r7, &(0x7f0000000200)=ANY=[], 0x10002)
connect$inet6(r6, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c)
sendmmsg$inet6(r6, &(0x7f0000001d40)=[{{0x0, 0x0, 0x0}}], 0x1, 0x4000800)

233.441021ms ago: executing program 0 (id=3422):
r0 = socket$inet_dccp(0x2, 0x6, 0x0)
connect$inet(r0, &(0x7f0000772000)={0x2, 0x4e23}, 0x10)
recvmmsg(r0, &(0x7f00000001c0)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000038c0)=""/200, 0xc8}, 0x6}], 0x1, 0x60, 0x0)

233.284221ms ago: executing program 0 (id=3423):
r0 = syz_usb_connect(0x0, 0x3f, &(0x7f0000000080)=ANY=[@ANYBLOB="11010000733336088dee1adb23610000000109022d0001100000000904000003fe03010009cd8d1f000200000009050502000000001009058b1e20"], 0x0)
syz_usb_control_io(r0, 0x0, &(0x7f0000000300)={0x84, &(0x7f0000001a80)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0})
r1 = syz_open_dev$char_usb(0xc, 0xb4, 0x0)
ioctl$FS_IOC_GETVERSION(r1, 0x80015b11, 0x0)

178.586251ms ago: executing program 5 (id=3427):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
r1 = socket(0x2a, 0x2, 0x0)
getsockname$packet(r1, &(0x7f0000000200)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000001480)=0x14)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@newqdisc={0x78, 0x24, 0xc0b, 0x70bd2a, 0x2001, {0x0, 0x0, 0x0, r2, {0x0, 0x1}, {0xffff, 0xffff}, {0x5, 0xfff1}}, [@qdisc_kind_options=@q_sfq={{0x8}, {0x4c, 0x2, {{0xff, 0xec2, 0x5, 0x0, 0x400}, 0x10000, 0x1, 0x7ff, 0x6, 0xe, 0x14, 0x1f, 0x1b, 0x6, 0x2, {0x6, 0x1, 0xa9, 0x8, 0x7743, 0xfd1}}}}]}, 0x78}}, 0x0)
sendmsg$IPCTNL_MSG_CT_NEW(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000000c0)={0x0}}, 0x0)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000500)=@newtfilter={0x94, 0x2c, 0xd27, 0x70bd25, 0x0, {0x0, 0x0, 0x0, r2, {}, {}, {0x8, 0xffff}}, [@filter_kind_options=@f_u32={{0x8}, {0x68, 0x2, [@TCA_U32_SEL={0x64, 0x5, {0x8, 0x7, 0x5, 0x3, 0x7, 0x0, 0x52, 0x3, [{0x2, 0x8001, 0x80000001, 0x1}, {0x3, 0x2, 0x4, 0x9}, {0x7, 0x8, 0x9b, 0x2}, {0xfffffff8, 0x1, 0x3a, 0x8}, {0x1, 0x1, 0xb, 0xad}]}}]}}]}, 0x94}}, 0x4000)
r3 = socket$netlink(0x10, 0x3, 0x0)
sendmmsg(r3, &(0x7f00000002c0), 0x40000000000009f, 0x0)
sendmmsg$inet(r0, &(0x7f0000004e80)=[{{&(0x7f0000000440)={0x2, 0x4e22, @loopback}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000480)="f9", 0x1}], 0x1}}], 0x1, 0x4000040)

156.174421ms ago: executing program 5 (id=3428):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000040), 0xffffffffffffffff)
ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000000000)={'wpan0\x00', <r2=>0x0})
sendmsg$NL802154_CMD_GET_SEC_LEVEL(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)={0x1c, r1, 0x701, 0x0, 0x0, {0x16}, [@NL802154_ATTR_IFINDEX={0x8, 0x3, r2}]}, 0x1c}}, 0x0)
syz_genetlink_get_family_id$net_dm(&(0x7f0000000100), r0)

141.776141ms ago: executing program 5 (id=3429):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000002440)=ANY=[@ANYBLOB="34000000090605000a00000000000000000000000900020073797a300000000005000100060000000c00078006000440"], 0x34}}, 0x0)

129.463781ms ago: executing program 5 (id=3430):
r0 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000540)='mnt\x00', 0x0, 0x0)
ioctl$FS_IOC_ADD_ENCRYPTION_KEY(r1, 0xc0506617, &(0x7f0000000580)={@id={0x2, 0x0, @a}, 0x40, 0x0, '\x00', @a})
creat(&(0x7f0000000000)='mnt\x00', 0xb2)
ioctl$FS_IOC_REMOVE_ENCRYPTION_KEY_ALL_USERS(r0, 0xc0406619, &(0x7f0000000080)={@id={0x2, 0x0, @a}})

71.682981ms ago: executing program 5 (id=3431):
mkdir(&(0x7f0000000000)='./cgroup/../file0\x00', 0x0)
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0xc004743e, 0x20001400)
syz_clone(0x4fb82000, 0x0, 0x78, 0x0, 0x0, 0x0)
ioctl$BTRFS_IOC_GET_SUBVOL_ROOTREF(r0, 0xd000943d, 0x0)
ioctl$TUNSETOFFLOAD(r0, 0x8004745a, 0x2000000c)
r1 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r2 = openat$cgroup_subtree(r1, &(0x7f0000000200), 0x2, 0x0)
write$cgroup_subtree(r2, &(0x7f0000000400)=ANY=[@ANYBLOB='-cpu'], 0x5)
write$cgroup_subtree(r2, &(0x7f0000000040)={[{0x2b, 'cpu'}]}, 0x5)

0s ago: executing program 5 (id=3432):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)={0x14, 0x15, 0x301, 0x0, 0x0, {0x1}}, 0x14}}, 0x0)
syz_genetlink_get_family_id$mptcp(&(0x7f00000000c0), r0)

kernel console output (not intermixed with test programs):

.
[  140.924833][T12116] loop5: detected capacity change from 0 to 512
[  140.946881][T12118] loop2: detected capacity change from 0 to 1024
[  140.971785][T12118] EXT4-fs (loop2): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  140.983056][T12116] ext4 filesystem being mounted at /22/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  140.999952][T12124] loop1: detected capacity change from 0 to 1024
[  141.007357][T12124] EXT4-fs: Ignoring removed nobh option
[  141.012926][T12124] EXT4-fs: Ignoring removed bh option
[  141.027765][T12118] EXT4-fs error (device loop2): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.2.2920: corrupted in-inode xattr: bad magic number in in-inode xattr
[  141.053487][T12124] atomic_op ffff88811b705928 conn xmit_atomic 0000000000000000
[  141.064023][T12130] vlan2: entered allmulticast mode
[  141.069364][T12130] bridge0: port 3(vlan2) entered blocking state
[  141.075653][T12130] bridge0: port 3(vlan2) entered disabled state
[  141.095896][T12130] vlan2: entered promiscuous mode
[  141.101143][T12130] bridge0: mtu less than device minimum
[  141.119882][T12134] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2924'.
[  141.202353][T12142] loop3: detected capacity change from 0 to 1024
[  141.210711][T12142] EXT4-fs: Ignoring removed nobh option
[  141.216433][T12142] EXT4-fs: Ignoring removed bh option
[  141.231212][T12149] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2925'.
[  141.249154][T12142] atomic_op ffff888116404528 conn xmit_atomic 0000000000000000
[  141.300955][T12155] loop2: detected capacity change from 0 to 512
[  141.321512][T12155] EXT4-fs (loop2): too many log groups per flexible block group
[  141.329284][T12155] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  141.339996][T12163] SELinux: syz.3.2932 (12163) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  141.346184][T12131] chnl_net:caif_netlink_parms(): no params data found
[  141.354072][T12155] EXT4-fs (loop2): mount failed
[  141.393222][T12165] loop3: detected capacity change from 0 to 128
[  141.431523][T12131] bridge0: port 1(bridge_slave_0) entered blocking state
[  141.435307][T12172] loop1: detected capacity change from 0 to 1024
[  141.438671][T12131] bridge0: port 1(bridge_slave_0) entered disabled state
[  141.453351][T12131] bridge_slave_0: entered allmulticast mode
[  141.460344][T12131] bridge_slave_0: entered promiscuous mode
[  141.463141][T12172] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  141.467286][T12131] bridge0: port 2(bridge_slave_1) entered blocking state
[  141.483079][T12131] bridge0: port 2(bridge_slave_1) entered disabled state
[  141.490556][T12131] bridge_slave_1: entered allmulticast mode
[  141.510511][T12131] bridge_slave_1: entered promiscuous mode
[  141.548482][T12172] EXT4-fs error (device loop1): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.1.2935: corrupted in-inode xattr: bad magic number in in-inode xattr
[  141.587182][T12131] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  141.597751][T12131] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  141.616796][T12188] loop3: detected capacity change from 0 to 512
[  141.631455][T12190] SELinux: syz.2.2943 (12190) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  141.643960][T12188] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.2942: casefold flag without casefold feature
[  141.663645][T12188] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2942: couldn't read orphan inode 15 (err -117)
[  141.676796][T12131] team0: Port device team_slave_0 added
[  141.683317][T12131] team0: Port device team_slave_1 added
[  141.729708][T12131] batman_adv: batadv0: Adding interface: batadv_slave_0
[  141.737221][T12131] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.737287][T12131] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  141.787444][T12131] batman_adv: batadv0: Adding interface: batadv_slave_1
[  141.794441][T12131] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  141.820516][T12131] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  141.881643][T12131] hsr_slave_0: entered promiscuous mode
[  141.890530][T12131] hsr_slave_1: entered promiscuous mode
[  141.894815][T12210] loop5: detected capacity change from 0 to 1024
[  141.905409][T12131] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  141.911301][T12210] EXT4-fs (loop5): stripe (5) is not aligned with cluster size (16), stripe is disabled
[  141.920408][T12212] loop3: detected capacity change from 0 to 1024
[  141.929826][T12131] Cannot create hsr debugfs directory
[  141.940234][T12212] EXT4-fs: Ignoring removed orlov option
[  141.945982][T12212] EXT4-fs: Ignoring removed nomblk_io_submit option
[  141.966166][T12210] EXT4-fs error (device loop5): ext4_expand_extra_isize_ea:2793: inode #15: comm syz.5.2953: corrupted in-inode xattr: bad magic number in in-inode xattr
[  142.034721][T12225] loop1: detected capacity change from 0 to 512
[  142.050648][T12225] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.2957: casefold flag without casefold feature
[  142.050798][T12228] loop5: detected capacity change from 0 to 512
[  142.064349][T12225] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2957: couldn't read orphan inode 15 (err -117)
[  142.112498][T12228] ext4 filesystem being mounted at /26/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.158014][T12131] netdevsim netdevsim0 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.201754][T12131] netdevsim netdevsim0 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.245309][T12131] netdevsim netdevsim0 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.265825][T12241] loop1: detected capacity change from 0 to 164
[  142.282901][T12241] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  142.295258][T12131] netdevsim netdevsim0 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  142.299360][T12241] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  142.324533][T12241] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  142.333001][T12241] iso9660: Corrupted directory entry in block 4 of inode 1792
[  142.365369][T12249] vlan3: entered promiscuous mode
[  142.370522][T12249] vlan3: entered allmulticast mode
[  142.397644][T12131] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  142.406193][T12131] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  142.414869][T12131] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  142.455275][T12131] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  142.531426][T12256] loop3: detected capacity change from 0 to 512
[  142.548742][T12131] 8021q: adding VLAN 0 to HW filter on device bond0
[  142.556198][T12256] EXT4-fs (loop3): orphan cleanup on readonly fs
[  142.563039][T12131] 8021q: adding VLAN 0 to HW filter on device team0
[  142.563317][T12256] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.2968: bg 0: block 248: padding at end of block bitmap is not set
[  142.585356][ T7834] bridge0: port 1(bridge_slave_0) entered blocking state
[  142.592557][ T7834] bridge0: port 1(bridge_slave_0) entered forwarding state
[  142.594440][T12256] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.2968: Failed to acquire dquot type 1
[  142.601484][ T7834] bridge0: port 2(bridge_slave_1) entered blocking state
[  142.613333][T12256] EXT4-fs (loop3): 1 truncate cleaned up
[  142.617960][ T7834] bridge0: port 2(bridge_slave_1) entered forwarding state
[  142.671977][T12261] loop3: detected capacity change from 0 to 512
[  142.680094][T12261] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.2969: casefold flag without casefold feature
[  142.694483][T12261] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2969: couldn't read orphan inode 15 (err -117)
[  142.703427][T12131] 8021q: adding VLAN 0 to HW filter on device batadv0
[  142.773353][T12271] loop3: detected capacity change from 0 to 1024
[  142.792579][T12271] EXT4-fs: Ignoring removed nobh option
[  142.798231][T12271] EXT4-fs: Ignoring removed bh option
[  142.821341][T12271] atomic_op ffff8881176c3528 conn xmit_atomic 0000000000000000
[  142.826151][T12131] veth0_vlan: entered promiscuous mode
[  142.837988][T12131] veth1_vlan: entered promiscuous mode
[  142.849482][T12278] loop2: detected capacity change from 0 to 512
[  142.850129][T12131] veth0_macvtap: entered promiscuous mode
[  142.866024][T12131] veth1_macvtap: entered promiscuous mode
[  142.876886][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.887402][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.897287][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.907890][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.911782][T12278] ext4 filesystem being mounted at /587/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  142.917966][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.938714][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.948674][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.959104][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.968908][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.979345][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  142.989209][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  142.999621][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.009529][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  143.020077][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.032419][T12131] batman_adv: batadv0: Interface activated: batadv_slave_0
[  143.041868][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  143.052379][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.062224][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  143.072676][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.082510][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  143.093057][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.103081][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  143.103191][T12287] mmap: syz.5.2976 (12287) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[  143.113586][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.113598][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  143.145378][T12289] loop3: detected capacity change from 0 to 128
[  143.145858][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.162078][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  143.172632][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.182638][T12131] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  143.193057][T12131] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  143.204174][T12131] batman_adv: batadv0: Interface activated: batadv_slave_1
[  143.213529][T12292] FAULT_INJECTION: forcing a failure.
[  143.213529][T12292] name fail_usercopy, interval 1, probability 0, space 0, times 1
[  143.226602][T12292] CPU: 0 UID: 0 PID: 12292 Comm: syz.2.2977 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  143.237367][T12292] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  143.247420][T12292] Call Trace:
[  143.250699][T12292]  <TASK>
[  143.253219][T12131] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  143.253616][T12292]  dump_stack_lvl+0xf2/0x150
[  143.262333][T12131] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  143.266888][T12292]  dump_stack+0x15/0x1a
[  143.266917][T12292]  should_fail_ex+0x223/0x230
[  143.266941][T12292]  should_fail+0xb/0x10
[  143.275616][T12131] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  143.279706][T12292]  should_fail_usercopy+0x1a/0x20
[  143.279734][T12292]  _copy_to_user+0x20/0xa0
[  143.284503][T12131] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  143.288583][T12292]  simple_read_from_buffer+0xa0/0x110
[  143.288611][T12292]  proc_fail_nth_read+0xf9/0x140
[  143.311438][T12296] loop1: detected capacity change from 0 to 512
[  143.315367][T12292]  ? __pfx_proc_fail_nth_read+0x10/0x10
[  143.315400][T12292]  vfs_read+0x1a2/0x700
[  143.315424][T12292]  ? __rcu_read_unlock+0x4e/0x70
[  143.341309][T12296] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.2978: casefold flag without casefold feature
[  143.341543][T12292]  ? __fget_files+0x17c/0x1c0
[  143.346603][T12296] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.2978: couldn't read orphan inode 15 (err -117)
[  143.359114][T12292]  ksys_read+0xe8/0x1b0
[  143.359144][T12292]  __x64_sys_read+0x42/0x50
[  143.384420][T12292]  x64_sys_call+0x2874/0x2dc0
[  143.389104][T12292]  do_syscall_64+0xc9/0x1c0
[  143.393606][T12292]  ? clear_bhb_loop+0x55/0xb0
[  143.398337][T12292]  ? clear_bhb_loop+0x55/0xb0
[  143.403072][T12292]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  143.409041][T12292] RIP: 0033:0x7fa1bead473c
[  143.413447][T12292] Code: ec 28 48 89 54 24 18 48 89 74 24 10 89 7c 24 08 e8 99 93 02 00 48 8b 54 24 18 48 8b 74 24 10 41 89 c0 8b 7c 24 08 31 c0 0f 05 <48> 3d 00 f0 ff ff 77 34 44 89 c7 48 89 44 24 08 e8 ef 93 02 00 48
[  143.433093][T12292] RSP: 002b:00007fa1bd147030 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  143.441607][T12292] RAX: ffffffffffffffda RBX: 00007fa1becc5fa0 RCX: 00007fa1bead473c
[  143.449564][T12292] RDX: 000000000000000f RSI: 00007fa1bd1470a0 RDI: 0000000000000004
[  143.457525][T12292] RBP: 00007fa1bd147090 R08: 0000000000000000 R09: 0000000000000000
[  143.465554][T12292] R10: 0000000000000036 R11: 0000000000000246 R12: 0000000000000001
[  143.473540][T12292] R13: 0000000000000000 R14: 00007fa1becc5fa0 R15: 00007fffc5a4ddb8
[  143.481660][T12292]  </TASK>
[  143.554368][T12301] loop5: detected capacity change from 0 to 512
[  143.591523][T12309] loop3: detected capacity change from 0 to 1024
[  143.598554][T12309] EXT4-fs: Ignoring removed nobh option
[  143.604190][T12309] EXT4-fs: Ignoring removed bh option
[  143.617428][   T29] kauditd_printk_skb: 554 callbacks suppressed
[  143.617517][   T29] audit: type=1326 audit(1734740202.398:10256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.647256][   T29] audit: type=1326 audit(1734740202.398:10257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.671018][   T29] audit: type=1326 audit(1734740202.398:10258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.694682][   T29] audit: type=1326 audit(1734740202.398:10259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.718186][   T29] audit: type=1326 audit(1734740202.398:10260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.742017][   T29] audit: type=1326 audit(1734740202.398:10261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.765580][   T29] audit: type=1326 audit(1734740202.398:10262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.789307][   T29] audit: type=1326 audit(1734740202.398:10263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.812829][   T29] audit: type=1326 audit(1734740202.398:10264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.836425][   T29] audit: type=1326 audit(1734740202.398:10265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12300 comm="syz.5.2980" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  143.867352][T12309] atomic_op ffff88811b431128 conn xmit_atomic 0000000000000000
[  143.870595][T12323] loop0: detected capacity change from 0 to 128
[  143.926569][T12330] loop5: detected capacity change from 0 to 512
[  143.937232][T12330] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.2987: casefold flag without casefold feature
[  143.960914][T12330] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.2987: couldn't read orphan inode 15 (err -117)
[  143.998181][T12334] loop0: detected capacity change from 0 to 512
[  144.025508][T12334] EXT4-fs (loop0): orphan cleanup on readonly fs
[  144.059318][T12334] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2988: bg 0: block 248: padding at end of block bitmap is not set
[  144.094747][T12334] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2988: Failed to acquire dquot type 1
[  144.106694][T12342] loop3: detected capacity change from 0 to 512
[  144.114218][T12334] EXT4-fs (loop0): 1 truncate cleaned up
[  144.122107][T12314] chnl_net:caif_netlink_parms(): no params data found
[  144.152264][T12342] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.2992: casefold flag without casefold feature
[  144.173974][T12342] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.2992: couldn't read orphan inode 15 (err -117)
[  144.198391][T12354] loop5: detected capacity change from 0 to 512
[  144.198494][T12352] loop0: detected capacity change from 0 to 512
[  144.229085][T12352] EXT4-fs (loop0): orphan cleanup on readonly fs
[  144.236266][T12352] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.2995: bg 0: block 248: padding at end of block bitmap is not set
[  144.250937][T12352] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.2995: Failed to acquire dquot type 1
[  144.251337][T12352] EXT4-fs (loop0): 1 truncate cleaned up
[  144.277552][T12361] loop2: detected capacity change from 0 to 164
[  144.301023][T12314] bridge0: port 1(bridge_slave_0) entered blocking state
[  144.303835][T12363] loop5: detected capacity change from 0 to 512
[  144.308116][T12314] bridge0: port 1(bridge_slave_0) entered disabled state
[  144.314614][T12361] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  144.331773][T12314] bridge_slave_0: entered allmulticast mode
[  144.341216][T12314] bridge_slave_0: entered promiscuous mode
[  144.351670][T12314] bridge0: port 2(bridge_slave_1) entered blocking state
[  144.358838][T12314] bridge0: port 2(bridge_slave_1) entered disabled state
[  144.372197][T12314] bridge_slave_1: entered allmulticast mode
[  144.377990][T12363] EXT4-fs (loop5): too many log groups per flexible block group
[  144.378904][T12314] bridge_slave_1: entered promiscuous mode
[  144.385789][T12363] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  144.403976][T12363] EXT4-fs (loop5): mount failed
[  144.420910][T12361] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  144.462580][T12361] iso9660: Corrupted directory entry in block 4 of inode 1792
[  144.484098][T12314] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  144.495655][T12314] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  144.516519][T12314] team0: Port device team_slave_0 added
[  144.527577][T12314] team0: Port device team_slave_1 added
[  144.544508][T12314] batman_adv: batadv0: Adding interface: batadv_slave_0
[  144.551457][T12314] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.577440][T12314] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  144.589434][T12314] batman_adv: batadv0: Adding interface: batadv_slave_1
[  144.596466][T12314] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  144.622400][T12314] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  144.651531][T12314] hsr_slave_0: entered promiscuous mode
[  144.658914][T12314] hsr_slave_1: entered promiscuous mode
[  144.665006][T12314] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  144.672537][T12314] Cannot create hsr debugfs directory
[  144.724766][T12314] netdevsim netdevsim1 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.765013][T12314] netdevsim netdevsim1 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.815222][T12314] netdevsim netdevsim1 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  144.864750][T12314] netdevsim netdevsim1 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  145.072538][T12394] loop2: detected capacity change from 0 to 512
[  145.079796][T12394] EXT4-fs (loop2): orphan cleanup on readonly fs
[  145.088912][T12394] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3006: bg 0: block 248: padding at end of block bitmap is not set
[  145.103479][T12394] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3006: Failed to acquire dquot type 1
[  145.115415][T12394] EXT4-fs (loop2): 1 truncate cleaned up
[  145.139893][T12397] loop2: detected capacity change from 0 to 512
[  145.190661][T12401] loop2: detected capacity change from 0 to 512
[  145.199213][T12401] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.3009: casefold flag without casefold feature
[  145.212249][T12401] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.3009: couldn't read orphan inode 15 (err -117)
[  145.238309][T12314] netdevsim netdevsim1 netdevsim0: renamed from eth0
[  145.262756][T12314] netdevsim netdevsim1 netdevsim1: renamed from eth1
[  145.282712][T12314] netdevsim netdevsim1 netdevsim2: renamed from eth2
[  145.307061][T12314] netdevsim netdevsim1 netdevsim3: renamed from eth3
[  145.309139][T12408] __nla_validate_parse: 7 callbacks suppressed
[  145.309153][T12408] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3011'.
[  145.350346][T12414] netlink: 8 bytes leftover after parsing attributes in process `syz.2.3014'.
[  145.389510][T12314] 8021q: adding VLAN 0 to HW filter on device bond0
[  145.406775][T12416] loop0: detected capacity change from 0 to 1024
[  145.416015][T12314] 8021q: adding VLAN 0 to HW filter on device team0
[  145.428449][T12416] EXT4-fs: Ignoring removed nobh option
[  145.434098][T12416] EXT4-fs: Ignoring removed bh option
[  145.440106][T12314] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  145.450519][T12314] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  145.481147][ T7891] bridge0: port 1(bridge_slave_0) entered blocking state
[  145.488279][ T7891] bridge0: port 1(bridge_slave_0) entered forwarding state
[  145.497420][ T7891] bridge0: port 2(bridge_slave_1) entered blocking state
[  145.499785][T12427] loop2: detected capacity change from 0 to 512
[  145.504497][ T7891] bridge0: port 2(bridge_slave_1) entered forwarding state
[  145.544336][T12427] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.3019: casefold flag without casefold feature
[  145.568219][T12416] atomic_op ffff8881028a6d28 conn xmit_atomic 0000000000000000
[  145.579229][T12436] SELinux: syz.3.3022 (12436) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  145.583378][T12427] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.3019: couldn't read orphan inode 15 (err -117)
[  145.606861][T12314] 8021q: adding VLAN 0 to HW filter on device batadv0
[  145.638946][T12438] loop5: detected capacity change from 0 to 164
[  145.652351][T12438] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  145.665696][T12438] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  145.676531][T12438] iso9660: Corrupted directory entry in block 4 of inode 1792
[  145.693565][T12314] veth0_vlan: entered promiscuous mode
[  145.705645][T12314] veth1_vlan: entered promiscuous mode
[  145.714171][T12448] vlan2: entered promiscuous mode
[  145.719256][T12448] vlan2: entered allmulticast mode
[  145.725576][T12448] bond0: entered allmulticast mode
[  145.730747][T12448] bond_slave_0: entered allmulticast mode
[  145.736548][T12448] bond_slave_1: entered allmulticast mode
[  145.742283][T12448] bond0: entered promiscuous mode
[  145.747379][T12448] bond_slave_0: entered promiscuous mode
[  145.753174][T12448] bond_slave_1: entered promiscuous mode
[  145.767502][T12448] bond0: left allmulticast mode
[  145.772387][T12448] bond_slave_0: left allmulticast mode
[  145.772465][T12450] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3025'.
[  145.777965][T12448] bond_slave_1: left allmulticast mode
[  145.792356][T12448] bond0: left promiscuous mode
[  145.797236][T12448] bond_slave_0: left promiscuous mode
[  145.802740][T12448] bond_slave_1: left promiscuous mode
[  145.812404][T12450] loop2: detected capacity change from 0 to 512
[  145.817127][T12314] veth0_macvtap: entered promiscuous mode
[  145.829038][T12314] veth1_macvtap: entered promiscuous mode
[  145.838271][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.848760][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.852414][T12450] EXT4-fs (loop2): too many log groups per flexible block group
[  145.858558][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.866313][T12450] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  145.876657][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.876714][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.876752][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.876761][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.876774][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.883515][T12450] EXT4-fs (loop2): mount failed
[  145.893287][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.893302][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.893318][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.893330][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.893341][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.962196][T12454] loop0: detected capacity change from 0 to 512
[  145.969650][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.969667][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  145.969681][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  145.971564][T12314] batman_adv: batadv0: Interface activated: batadv_slave_0
[  146.038321][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.048871][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.058735][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.069193][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.079049][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.089586][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.099420][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.110019][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.119896][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.130353][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.140246][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.150674][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.150687][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.170921][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.180770][T12314] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  146.191179][T12314] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  146.207385][T12314] batman_adv: batadv0: Interface activated: batadv_slave_1
[  146.217478][T12314] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  146.226222][T12314] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  146.234946][T12314] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  146.243783][T12314] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  146.279350][T12460] vlan2: entered promiscuous mode
[  146.284556][T12460] vlan2: entered allmulticast mode
[  146.292792][T12460] bond0: entered allmulticast mode
[  146.294370][T12462] netlink: 16 bytes leftover after parsing attributes in process `syz.1.2984'.
[  146.297968][T12460] bond_slave_0: entered allmulticast mode
[  146.312575][T12460] bond_slave_1: entered allmulticast mode
[  146.318386][T12460] bond0: entered promiscuous mode
[  146.323456][T12460] bond_slave_0: entered promiscuous mode
[  146.329274][T12460] bond_slave_1: entered promiscuous mode
[  146.343184][T12464] loop1: detected capacity change from 0 to 512
[  146.356139][T12460] bond0: left allmulticast mode
[  146.361058][T12460] bond_slave_0: left allmulticast mode
[  146.366671][T12460] bond_slave_1: left allmulticast mode
[  146.372235][T12460] bond0: left promiscuous mode
[  146.377024][T12460] bond_slave_0: left promiscuous mode
[  146.382438][T12460] bond_slave_1: left promiscuous mode
[  146.389164][T12464] EXT4-fs (loop1): orphan cleanup on readonly fs
[  146.414464][T12464] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3029: bg 0: block 248: padding at end of block bitmap is not set
[  146.431369][T12464] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.3029: Failed to acquire dquot type 1
[  146.445978][T12464] EXT4-fs (loop1): 1 truncate cleaned up
[  146.493743][T12473] loop5: detected capacity change from 0 to 512
[  146.537010][T12473] EXT4-fs (loop5): orphan cleanup on readonly fs
[  146.560348][T12473] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3032: bg 0: block 248: padding at end of block bitmap is not set
[  146.580116][T12479] syzkaller0: entered promiscuous mode
[  146.581732][T12473] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.3032: Failed to acquire dquot type 1
[  146.585628][T12479] syzkaller0: entered allmulticast mode
[  146.616534][T12473] EXT4-fs (loop5): 1 truncate cleaned up
[  146.685894][T12492] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3038'.
[  146.790280][T12504] loop7: detected capacity change from 0 to 16384
[  146.792546][T12496] syzkaller0: entered promiscuous mode
[  146.802383][T12496] syzkaller0: entered allmulticast mode
[  146.820552][T12467] chnl_net:caif_netlink_parms(): no params data found
[  146.855629][T12504] blk_print_req_error: 10 callbacks suppressed
[  146.855642][T12504] I/O error, dev loop7, sector 12544 op 0x0:(READ) flags 0x80700 phys_seg 32 prio class 0
[  146.883454][T12504] I/O error, dev loop7, sector 12800 op 0x0:(READ) flags 0x80700 phys_seg 31 prio class 0
[  146.897984][T12506] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12506 comm=syz.1.3041
[  146.898710][T12504] I/O error, dev loop7, sector 12544 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  146.920019][T12504] buffer_io_error: 1688 callbacks suppressed
[  146.920033][T12504] Buffer I/O error on dev loop7, logical block 1568, async page read
[  146.961882][T12467] bridge0: port 1(bridge_slave_0) entered blocking state
[  146.969115][T12467] bridge0: port 1(bridge_slave_0) entered disabled state
[  146.982116][T12467] bridge_slave_0: entered allmulticast mode
[  146.982337][T12515] loop3: detected capacity change from 0 to 512
[  146.988717][T12467] bridge_slave_0: entered promiscuous mode
[  147.000971][T12467] bridge0: port 2(bridge_slave_1) entered blocking state
[  147.008276][T12467] bridge0: port 2(bridge_slave_1) entered disabled state
[  147.015420][T12467] bridge_slave_1: entered allmulticast mode
[  147.020535][T12515] EXT4-fs (loop3): orphan cleanup on readonly fs
[  147.021841][T12467] bridge_slave_1: entered promiscuous mode
[  147.030119][T12515] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3044: bg 0: block 248: padding at end of block bitmap is not set
[  147.048053][T12515] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3044: Failed to acquire dquot type 1
[  147.059950][T12515] EXT4-fs (loop3): 1 truncate cleaned up
[  147.068097][T12467] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  147.078773][T12467] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  147.101561][T12518] loop3: detected capacity change from 0 to 512
[  147.119093][T12467] team0: Port device team_slave_0 added
[  147.122223][T12518] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.3045: casefold flag without casefold feature
[  147.125774][T12467] team0: Port device team_slave_1 added
[  147.146320][T12518] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.3045: couldn't read orphan inode 15 (err -117)
[  147.165174][T12467] batman_adv: batadv0: Adding interface: batadv_slave_0
[  147.172141][T12467] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.198103][T12467] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  147.209506][T12467] batman_adv: batadv0: Adding interface: batadv_slave_1
[  147.216483][T12467] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  147.242490][T12467] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  147.272891][T12467] hsr_slave_0: entered promiscuous mode
[  147.280916][T12467] hsr_slave_1: entered promiscuous mode
[  147.287157][T12467] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  147.295576][T12467] Cannot create hsr debugfs directory
[  147.365105][T12527] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3048'.
[  147.375031][T12467] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.407522][T12531] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3050'.
[  147.434116][T12533] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3051'.
[  147.443982][T12467] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.454896][T12533] geneve0: entered allmulticast mode
[  147.487679][T12535] loop3: detected capacity change from 0 to 1024
[  147.494555][T12535] EXT4-fs: Ignoring removed nobh option
[  147.500231][T12535] EXT4-fs: Ignoring removed bh option
[  147.507080][T12467] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.518898][T12535] atomic_op ffff888104cdd128 conn xmit_atomic 0000000000000000
[  147.557621][T12467] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  147.576231][T12499] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  147.585943][T12499] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  147.594317][T12499] Buffer I/O error on dev loop7, logical block 1, lost async page write
[  147.602705][T12499] Buffer I/O error on dev loop7, logical block 2, lost async page write
[  147.611090][T12499] Buffer I/O error on dev loop7, logical block 3, lost async page write
[  147.619514][T12499] Buffer I/O error on dev loop7, logical block 4, lost async page write
[  147.627890][T12499] Buffer I/O error on dev loop7, logical block 5, lost async page write
[  147.636259][T12499] Buffer I/O error on dev loop7, logical block 6, lost async page write
[  147.644797][T12499] Buffer I/O error on dev loop7, logical block 7, lost async page write
[  147.653198][T12499] Buffer I/O error on dev loop7, logical block 8, lost async page write
[  147.687251][T12499] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  147.696677][T12543] loop5: detected capacity change from 0 to 512
[  147.701134][T12499] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  147.867863][T12499] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  148.465696][T12547] workqueue: Failed to create a rescuer kthread for wq "wg-crypt-wireguard%d": -EINTR
[  148.613094][T12499] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  148.635335][T12499] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  148.637449][T12543] EXT4-fs (loop5): orphan cleanup on readonly fs
[  148.648173][T12499] I/O error, dev loop7, sector 6144 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  148.698918][T12543] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3056: bg 0: block 248: padding at end of block bitmap is not set
[  148.716955][T12543] __quota_error: 217 callbacks suppressed
[  148.716971][T12543] Quota error (device loop5): write_blk: dquota write failed
[  148.730161][T12543] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  148.740087][T12543] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.3056: Failed to acquire dquot type 1
[  148.751961][T12543] EXT4-fs (loop5): 1 truncate cleaned up
[  148.793493][T12467] netdevsim netdevsim2 netdevsim0: renamed from eth0
[  148.817608][T12560] loop5: detected capacity change from 0 to 512
[  148.826487][   T29] audit: type=1326 audit(1734740207.618:10471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12559 comm="syz.5.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  148.856022][T12467] netdevsim netdevsim2 netdevsim1: renamed from eth1
[  148.867783][T12467] netdevsim netdevsim2 netdevsim2: renamed from eth2
[  148.876407][T12467] netdevsim netdevsim2 netdevsim3: renamed from eth3
[  148.897621][   T29] audit: type=1326 audit(1734740207.638:10472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12557 comm="syz.0.3058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  148.921492][   T29] audit: type=1326 audit(1734740207.638:10473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12557 comm="syz.0.3058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  148.925976][T12562] netlink: 12 bytes leftover after parsing attributes in process `syz.1.3060'.
[  148.945106][   T29] audit: type=1326 audit(1734740207.638:10474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12557 comm="syz.0.3058" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  148.977854][   T29] audit: type=1326 audit(1734740207.688:10475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12559 comm="syz.5.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=282 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  149.001560][   T29] audit: type=1326 audit(1734740207.688:10476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12559 comm="syz.5.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  149.025201][   T29] audit: type=1326 audit(1734740207.688:10477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12559 comm="syz.5.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=298 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  149.082008][T12467] 8021q: adding VLAN 0 to HW filter on device bond0
[  149.108110][T12467] 8021q: adding VLAN 0 to HW filter on device team0
[  149.135756][   T29] audit: type=1326 audit(1734740207.918:10478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=12559 comm="syz.5.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f91b0285d29 code=0x7ffc0000
[  149.174949][ T7836] bridge0: port 1(bridge_slave_0) entered blocking state
[  149.182045][ T7836] bridge0: port 1(bridge_slave_0) entered forwarding state
[  149.186677][T12570] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3063'.
[  149.194944][ T7836] bridge0: port 2(bridge_slave_1) entered blocking state
[  149.205302][ T7836] bridge0: port 2(bridge_slave_1) entered forwarding state
[  149.243644][T12570] wireguard0: entered promiscuous mode
[  149.249180][T12570] wireguard0: entered allmulticast mode
[  149.288963][T12467] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  149.299445][T12467] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  149.371984][T12467] 8021q: adding VLAN 0 to HW filter on device batadv0
[  149.407844][T12588] loop1: detected capacity change from 0 to 1024
[  149.415884][T12588] EXT4-fs: Ignoring removed orlov option
[  149.421654][T12588] EXT4-fs: Ignoring removed nomblk_io_submit option
[  149.618022][T12597] loop3: detected capacity change from 0 to 164
[  149.653664][T12597] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  149.792348][T12597] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  149.802785][T12597] iso9660: Corrupted directory entry in block 4 of inode 1792
[  149.825737][T12467] veth0_vlan: entered promiscuous mode
[  149.836759][T12467] veth1_vlan: entered promiscuous mode
[  149.854623][T12467] veth0_macvtap: entered promiscuous mode
[  149.866618][T12467] veth1_macvtap: entered promiscuous mode
[  149.878162][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.888712][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.898556][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.909077][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.918959][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.929383][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.939254][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.949707][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.959582][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.970074][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  149.971697][T12610] syz.0.3073[12610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.980017][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  149.980681][T12610] syz.0.3073[12610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  149.991438][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.003951][T12610] syz.0.3073[12610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  150.013388][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.045135][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.055181][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.065656][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.075549][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  150.086009][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.097341][T12467] batman_adv: batadv0: Interface activated: batadv_slave_0
[  150.105778][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.116321][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.126192][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.136693][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.146600][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.157050][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.166888][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.177302][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.187358][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.197785][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.207643][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.218146][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.227970][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.238465][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.248384][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.259021][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.268843][T12467] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  150.279307][T12467] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  150.297104][T12467] batman_adv: batadv0: Interface activated: batadv_slave_1
[  150.333426][T12467] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  150.342235][T12467] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  150.350964][T12467] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  150.359713][T12467] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  150.473851][T12619] __nla_validate_parse: 2 callbacks suppressed
[  150.473867][T12619] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3075'.
[  150.509485][T12620] loop3: detected capacity change from 0 to 512
[  150.697773][T12625] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3077'.
[  150.712660][T12623] vlan2: entered promiscuous mode
[  150.717877][T12623] vlan2: entered allmulticast mode
[  150.723484][T12623] bond0: entered allmulticast mode
[  150.728654][T12623] bond_slave_0: entered allmulticast mode
[  150.734424][T12623] bond_slave_1: entered allmulticast mode
[  150.740185][T12623] bond0: entered promiscuous mode
[  150.745238][T12623] bond_slave_0: entered promiscuous mode
[  150.750977][T12623] bond_slave_1: entered promiscuous mode
[  150.757821][T12623] bond0: left allmulticast mode
[  150.762759][T12623] bond_slave_0: left allmulticast mode
[  150.768315][T12623] bond_slave_1: left allmulticast mode
[  150.773824][T12623] bond0: left promiscuous mode
[  150.778797][T12623] bond_slave_0: left promiscuous mode
[  150.784440][T12623] bond_slave_1: left promiscuous mode
[  150.793152][T12625] geneve0: entered allmulticast mode
[  150.925637][T12643] netlink: 8 bytes leftover after parsing attributes in process `syz.3.3084'.
[  150.936857][T12643] sd 0:0:1:0: device reset
[  151.000519][T12644] loop2: detected capacity change from 0 to 164
[  151.019630][T12644] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  151.037341][T12644] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  151.044165][T12652] loop1: detected capacity change from 0 to 1024
[  151.049096][T12644] iso9660: Corrupted directory entry in block 4 of inode 1792
[  151.052286][T12652] EXT4-fs: Ignoring removed nomblk_io_submit option
[  151.066388][T12652] ext4: Unknown parameter 'appraise_type'
[  151.084866][T12653] loop3: detected capacity change from 0 to 164
[  151.096288][T12653] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  151.097571][T12653] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  151.097883][T12653] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  151.098244][T12653] iso9660: Corrupted directory entry in block 4 of inode 1792
[  151.107386][T12655] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3089'.
[  151.113275][T12655] loop1: detected capacity change from 0 to 512
[  151.156713][T12655] EXT4-fs (loop1): too many log groups per flexible block group
[  151.164547][T12655] EXT4-fs (loop1): failed to initialize mballoc (-12)
[  151.171431][T12655] EXT4-fs (loop1): mount failed
[  151.197286][T12659] sd 0:0:1:0: device reset
[  151.403073][T12675] xt_hashlimit: max too large, truncated to 1048576
[  151.436517][T12679] SELinux: syz.0.3098 (12679) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  151.710051][T12687] vlan2: entered allmulticast mode
[  151.774616][T12687] bridge0: port 3(vlan2) entered blocking state
[  151.780949][T12687] bridge0: port 3(vlan2) entered disabled state
[  151.782472][T12689] netlink: 16 bytes leftover after parsing attributes in process `syz.2.3101'.
[  151.787783][T12687] vlan2: entered promiscuous mode
[  151.801446][T12687] bridge0: mtu less than device minimum
[  151.820404][T12689] loop2: detected capacity change from 0 to 512
[  151.888100][T12693] loop3: detected capacity change from 0 to 512
[  151.904201][T12689] EXT4-fs (loop2): too many log groups per flexible block group
[  151.911936][T12689] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  151.920850][T12689] EXT4-fs (loop2): mount failed
[  151.996981][T12697] loop2: detected capacity change from 0 to 512
[  152.019290][T12697] EXT4-fs (loop2): orphan cleanup on readonly fs
[  152.033611][T12697] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3104: bg 0: block 248: padding at end of block bitmap is not set
[  152.056219][T12697] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3104: Failed to acquire dquot type 1
[  152.057316][T12702] loop3: detected capacity change from 0 to 512
[  152.068078][T12697] EXT4-fs (loop2): 1 truncate cleaned up
[  152.202574][T12706] loop3: detected capacity change from 0 to 512
[  152.213943][T12708] SELinux: syz.1.3109 (12708) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  152.230729][T12706] EXT4-fs (loop3): orphan cleanup on readonly fs
[  152.245233][T12706] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3108: bg 0: block 248: padding at end of block bitmap is not set
[  152.269962][T12706] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3108: Failed to acquire dquot type 1
[  152.287724][T12706] EXT4-fs (loop3): 1 truncate cleaned up
[  152.321165][T12711] netlink: 128 bytes leftover after parsing attributes in process `syz.1.3110'.
[  152.338196][T12713] loop2: detected capacity change from 0 to 512
[  152.351864][T12713] EXT4-fs: inline encryption not supported
[  152.370254][T12711] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3110'.
[  152.381239][T12717] loop5: detected capacity change from 0 to 512
[  152.397131][T12713] ext4 filesystem being mounted at /5/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  152.409742][T12721] loop7: detected capacity change from 0 to 16384
[  152.418073][T12713] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm syz.2.3111: corrupted inode contents
[  152.430362][T12713] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm syz.2.3111: mark_inode_dirty error
[  152.447695][T12717] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.3113: casefold flag without casefold feature
[  152.447802][T12713] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm syz.2.3111: corrupted inode contents
[  152.464068][T12717] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.3113: couldn't read orphan inode 15 (err -117)
[  152.494555][T12723] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm syz.2.3111: corrupted inode contents
[  152.519479][T12723] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm syz.2.3111: mark_inode_dirty error
[  152.581662][T12727] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3116'.
[  152.590826][T12723] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm syz.2.3111: corrupted inode contents
[  152.592496][T12725] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3115'.
[  152.617733][T12721] blk_print_req_error: 6 callbacks suppressed
[  152.617746][T12721] I/O error, dev loop7, sector 6144 op 0x0:(READ) flags 0x80700 phys_seg 3 prio class 0
[  152.636060][T12723] EXT4-fs error (device loop2): __ext4_ext_dirty:207: inode #2: comm syz.2.3111: mark_inode_dirty error
[  152.647976][T12721] I/O error, dev loop7, sector 6400 op 0x0:(READ) flags 0x80700 phys_seg 3 prio class 0
[  152.668877][T12723] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm syz.2.3111: corrupted inode contents
[  152.680755][T12721] I/O error, dev loop7, sector 6144 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  152.682807][T12731] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3117'.
[  152.690228][T12721] buffer_io_error: 1559 callbacks suppressed
[  152.690241][T12721] Buffer I/O error on dev loop7, logical block 768, async page read
[  152.720017][T12715] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12715 comm=syz.3.3112
[  152.732171][T12733] loop1: detected capacity change from 0 to 512
[  152.732588][T12723] EXT4-fs error (device loop2): ext4_dirty_inode:6041: inode #2: comm syz.2.3111: mark_inode_dirty error
[  152.815174][T12713] EXT4-fs error (device loop2): ext4_do_update_inode:5153: inode #2: comm syz.2.3111: corrupted inode contents
[  152.865887][T12743] SELinux: syz.0.3120 (12743) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  152.891638][T12745] loop5: detected capacity change from 0 to 512
[  152.901029][T12745] EXT4-fs (loop5): orphan cleanup on readonly fs
[  152.904967][T12747] loop1: detected capacity change from 0 to 164
[  152.917226][T12745] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3121: bg 0: block 248: padding at end of block bitmap is not set
[  152.932177][T12747] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  152.953108][T12745] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.3121: Failed to acquire dquot type 1
[  152.967373][T12745] EXT4-fs (loop5): 1 truncate cleaned up
[  153.051701][T12758] syzkaller0: entered promiscuous mode
[  153.057236][T12758] syzkaller0: entered allmulticast mode
[  153.103572][T12766] loop2: detected capacity change from 0 to 512
[  153.119474][T12768] geneve0: entered allmulticast mode
[  153.165382][T12770] loop5: detected capacity change from 0 to 512
[  153.182417][T12714] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  153.192219][T12714] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  153.192244][T12714] Buffer I/O error on dev loop7, logical block 1, lost async page write
[  153.192262][T12714] Buffer I/O error on dev loop7, logical block 2, lost async page write
[  153.192315][T12714] Buffer I/O error on dev loop7, logical block 3, lost async page write
[  153.192329][T12714] Buffer I/O error on dev loop7, logical block 4, lost async page write
[  153.192346][T12714] Buffer I/O error on dev loop7, logical block 5, lost async page write
[  153.192363][T12714] Buffer I/O error on dev loop7, logical block 6, lost async page write
[  153.192377][T12714] Buffer I/O error on dev loop7, logical block 7, lost async page write
[  153.192391][T12714] Buffer I/O error on dev loop7, logical block 8, lost async page write
[  153.207377][T12770] EXT4-fs (loop5): too many log groups per flexible block group
[  153.207412][T12770] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  153.207433][T12770] EXT4-fs (loop5): mount failed
[  153.207993][T12714] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  153.210890][T12714] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  153.213307][T12714] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  153.216369][T12714] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  153.217548][T12776] SELinux: syz.2.3133 (12776) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  153.219186][T12714] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x800 phys_seg 128 prio class 0
[  153.285493][T12781] loop5: detected capacity change from 0 to 512
[  153.318153][T12787] loop2: detected capacity change from 0 to 1764
[  153.320903][T12781] ext4 filesystem being mounted at /54/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  153.333677][T12788] loop3: detected capacity change from 0 to 164
[  153.340712][T12787] iso9660: Unknown parameter '01777777777777777777777ÿÿÿÿ01777777777777777777777ÿÿÿí3<×V0m1LÌE?EnªÎô¸†tSóÕX[º·�
©¸*Öhú©ñb×E—ç3•Í¸Û'
[  153.369978][T12788] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  153.387713][T12787] loop2: detected capacity change from 0 to 1024
[  153.487834][T12787] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  153.501465][T12787] EXT4-fs (loop2): revision level too high, forcing read-only mode
[  153.509752][T12787] EXT4-fs (loop2): orphan cleanup on readonly fs
[  153.517534][T12787] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:483: comm syz.2.3137: Invalid block bitmap block 0 in block_group 0
[  153.538988][T12787] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3137: Failed to acquire dquot type 0
[  153.557181][T12787] EXT4-fs error (device loop2): ext4_free_blocks:6589: comm syz.2.3137: Freeing blocks not in datazone - block = 0, count = 4096
[  153.571973][T12787] EXT4-fs error (device loop2): ext4_read_inode_bitmap:139: comm syz.2.3137: Invalid inode bitmap blk 0 in block_group 0
[  153.586209][ T7831] EXT4-fs error (device loop2): ext4_release_dquot:6961: comm kworker/u8:40: Failed to release dquot type 0
[  153.597936][T12787] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  153.606860][T12787] EXT4-fs (loop2): 1 orphan inode deleted
[  153.618756][T12787] EXT4-fs error (device loop2): ext4_search_dir:1505: inode #2: block 16: comm syz.2.3137: bad entry in directory: inode out of bounds - offset=44, inode=40, rec_len=16, size=1024 fake=0
[  153.724883][   T29] kauditd_printk_skb: 551 callbacks suppressed
[  153.724913][   T29] audit: type=1400 audit(1734740212.518:11021): avc:  denied  { map_create } for  pid=12798 comm="syz.1.3142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  153.796141][   T29] audit: type=1400 audit(1734740212.518:11022): avc:  denied  { prog_load } for  pid=12801 comm="syz.5.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  153.815551][   T29] audit: type=1400 audit(1734740212.518:11023): avc:  denied  { bpf } for  pid=12801 comm="syz.5.3143" capability=39  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  153.836300][   T29] audit: type=1400 audit(1734740212.518:11024): avc:  denied  { perfmon } for  pid=12801 comm="syz.5.3143" capability=38  scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1
[  153.857368][   T29] audit: type=1400 audit(1734740212.518:11025): avc:  denied  { prog_run } for  pid=12801 comm="syz.5.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  153.876510][   T29] audit: type=1400 audit(1734740212.538:11026): avc:  denied  { map_read map_write } for  pid=12798 comm="syz.1.3142" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1
[  153.890650][T12806] loop2: detected capacity change from 0 to 512
[  153.896739][   T29] audit: type=1400 audit(1734740212.548:11027): avc:  denied  { create } for  pid=12801 comm="syz.5.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  153.923631][   T29] audit: type=1400 audit(1734740212.548:11028): avc:  denied  { write } for  pid=12801 comm="syz.5.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  153.944158][   T29] audit: type=1400 audit(1734740212.548:11029): avc:  denied  { read } for  pid=12801 comm="syz.5.3143" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[  153.964724][   T29] audit: type=1400 audit(1734740212.548:11030): avc:  denied  { write } for  pid=12801 comm="syz.5.3143" name="event2" dev="devtmpfs" ino=249 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1
[  153.966372][T12799] syzkaller0: entered promiscuous mode
[  153.992038][T12811] loop7: detected capacity change from 0 to 16384
[  153.993594][T12799] syzkaller0: entered allmulticast mode
[  154.014270][T12806] EXT4-fs (loop2): too many log groups per flexible block group
[  154.022030][T12806] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  154.032419][T12806] EXT4-fs (loop2): mount failed
[  154.064012][T12811] I/O error, dev loop7, sector 7424 op 0x0:(READ) flags 0x80700 phys_seg 31 prio class 0
[  154.093096][T12796] Falling back ldisc for ttyS3.
[  154.157374][T12808] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12808 comm=syz.5.3146
[  154.197849][T12820] loop2: detected capacity change from 0 to 512
[  154.226111][T12828] loop3: detected capacity change from 0 to 512
[  154.264797][T12828] ext4 filesystem being mounted at /66/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.288944][T12820] EXT4-fs (loop2): too many log groups per flexible block group
[  154.296670][T12820] EXT4-fs (loop2): failed to initialize mballoc (-12)
[  154.303558][T12820] EXT4-fs (loop2): mount failed
[  154.359613][T12852] loop2: detected capacity change from 0 to 1024
[  154.371469][T12852] EXT4-fs: Ignoring removed orlov option
[  154.377269][T12852] EXT4-fs: Ignoring removed nomblk_io_submit option
[  154.399029][T12860] loop1: detected capacity change from 0 to 164
[  154.415190][T12854] loop3: detected capacity change from 0 to 1024
[  154.423637][T12860] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  154.430899][T12854] EXT4-fs: Ignoring removed nobh option
[  154.437508][T12854] EXT4-fs: Ignoring removed bh option
[  154.504087][T12854] atomic_op ffff888113c55128 conn xmit_atomic 0000000000000000
[  154.516561][T12875] geneve0: entered allmulticast mode
[  154.544833][T12880] loop2: detected capacity change from 0 to 512
[  154.557414][T12880] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.3160: corrupted in-inode xattr: e_value size too large
[  154.571892][T12880] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.3160: couldn't read orphan inode 15 (err -117)
[  154.596841][T12880] EXT4-fs error (device loop2): ext4_add_entry:2444: inode #2: comm syz.2.3160: Directory hole found for htree leaf block 0
[  154.619914][T12885] loop3: detected capacity change from 0 to 512
[  154.629245][T12878] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=12878 comm=syz.0.3159
[  154.770108][T12890] loop5: detected capacity change from 0 to 512
[  154.792224][T12893] loop2: detected capacity change from 0 to 512
[  154.802775][T12890] EXT4-fs (loop5): orphan cleanup on readonly fs
[  154.806219][T12895] loop3: detected capacity change from 0 to 512
[  154.816054][T12890] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3162: bg 0: block 248: padding at end of block bitmap is not set
[  154.832478][T12890] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.3162: Failed to acquire dquot type 1
[  154.844921][T12890] EXT4-fs (loop5): 1 truncate cleaned up
[  154.846739][T12893] ext4 filesystem being mounted at /19/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  154.873310][T12895] EXT4-fs (loop3): too many log groups per flexible block group
[  154.881050][T12895] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  154.888001][T12895] EXT4-fs (loop3): mount failed
[  154.910155][T12903] loop5: detected capacity change from 0 to 512
[  154.966012][T12907] loop3: detected capacity change from 0 to 512
[  154.980915][T12907] EXT4-fs (loop3): orphan cleanup on readonly fs
[  154.988529][T12907] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3168: bg 0: block 248: padding at end of block bitmap is not set
[  155.003208][T12907] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3168: Failed to acquire dquot type 1
[  155.018496][T12907] EXT4-fs (loop3): 1 truncate cleaned up
[  155.059440][T12915] loop5: detected capacity change from 0 to 1024
[  155.061007][T12916] loop2: detected capacity change from 0 to 512
[  155.071044][T12915] EXT4-fs: Ignoring removed nobh option
[  155.077756][T12915] EXT4-fs: Ignoring removed bh option
[  155.089866][T12916] EXT4-fs (loop2): orphan cleanup on readonly fs
[  155.097113][T12916] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3172: bg 0: block 248: padding at end of block bitmap is not set
[  155.112590][T12916] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3172: Failed to acquire dquot type 1
[  155.125729][T12916] EXT4-fs (loop2): 1 truncate cleaned up
[  155.133098][T12915] atomic_op ffff88810d6c2128 conn xmit_atomic 0000000000000000
[  155.226332][T12929] loop5: detected capacity change from 0 to 512
[  155.235677][T12933] loop3: detected capacity change from 0 to 512
[  155.289290][T12933] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.3179: casefold flag without casefold feature
[  155.302367][T12933] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.3179: couldn't read orphan inode 15 (err -117)
[  155.316104][T12929] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  155.588448][T12945] syzkaller0: entered promiscuous mode
[  155.593966][T12945] syzkaller0: entered allmulticast mode
[  155.613849][T12953] sd 0:0:1:0: device reset
[  156.204100][T12962] __nla_validate_parse: 19 callbacks suppressed
[  156.204117][T12962] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3189'.
[  156.250963][T12967] loop5: detected capacity change from 0 to 1024
[  156.257823][T12967] EXT4-fs: Ignoring removed nobh option
[  156.263853][T12967] EXT4-fs: Ignoring removed bh option
[  156.279719][T12969] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3191'.
[  156.285251][T12967] EXT4-fs mount: 210 callbacks suppressed
[  156.285264][T12967] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.326740][T12967] atomic_op ffff88810aee9528 conn xmit_atomic 0000000000000000
[  156.343603][T12974] loop1: detected capacity change from 0 to 512
[  156.364578][T12974] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.3192: casefold flag without casefold feature
[  156.387302][T12974] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.3192: couldn't read orphan inode 15 (err -117)
[  156.399925][T12974] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.423150][T11461] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.433108][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.451196][T12980] loop3: detected capacity change from 0 to 164
[  156.486998][T12982] loop1: detected capacity change from 0 to 512
[  156.510696][T12984] loop5: detected capacity change from 0 to 1024
[  156.521118][T12984] EXT4-fs: Ignoring removed nobh option
[  156.525419][T12980] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  156.526824][T12984] EXT4-fs: Ignoring removed bh option
[  156.546186][T12982] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.561293][T12984] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  156.572886][T12982] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  156.579101][T12980] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  156.623209][T12987] loop2: detected capacity change from 0 to 512
[  156.639748][T12984] atomic_op ffff88810aeead28 conn xmit_atomic 0000000000000000
[  156.654529][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.661640][T12980] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  156.674767][T12980] iso9660: Corrupted directory entry in block 4 of inode 1792
[  156.685914][T12987] EXT4-fs (loop2): orphan cleanup on readonly fs
[  156.692741][T12987] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3197: bg 0: block 248: padding at end of block bitmap is not set
[  156.717893][T12987] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3197: Failed to acquire dquot type 1
[  156.738918][T11461] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.749271][T12987] EXT4-fs (loop2): 1 truncate cleaned up
[  156.762861][T12987] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  156.784250][T13007] loop5: detected capacity change from 0 to 512
[  156.794160][T13009] loop1: detected capacity change from 0 to 512
[  156.819660][T13009] EXT4-fs (loop1): orphan cleanup on readonly fs
[  156.826913][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.838484][T13009] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3205: bg 0: block 248: padding at end of block bitmap is not set
[  156.877023][T13012] vlan2: entered promiscuous mode
[  156.882205][T13012] vlan2: entered allmulticast mode
[  156.888105][T13012] bond0: entered allmulticast mode
[  156.890531][T13009] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.3205: Failed to acquire dquot type 1
[  156.893226][T13012] bond_slave_0: entered allmulticast mode
[  156.907146][T13009] EXT4-fs (loop1): 1 truncate cleaned up
[  156.910222][T13012] bond_slave_1: entered allmulticast mode
[  156.910249][T13012] bond0: entered promiscuous mode
[  156.916937][T13009] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  156.921633][T13012] bond_slave_0: entered promiscuous mode
[  156.921833][T13012] bond_slave_1: entered promiscuous mode
[  156.956922][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  156.971815][T13012] bond0: left allmulticast mode
[  156.976764][T13012] bond_slave_0: left allmulticast mode
[  156.982240][T13012] bond_slave_1: left allmulticast mode
[  156.987744][T13012] bond0: left promiscuous mode
[  156.992508][T13012] bond_slave_0: left promiscuous mode
[  156.997946][T13012] bond_slave_1: left promiscuous mode
[  157.018894][T13019] loop1: detected capacity change from 0 to 512
[  157.035558][T13019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.048490][T13019] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.052492][T13021] syzkaller0: entered promiscuous mode
[  157.064405][T13021] syzkaller0: entered allmulticast mode
[  157.098241][T13027] SELinux: syz.2.3211 (13027) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  157.143053][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.146335][T13031] loop5: detected capacity change from 0 to 512
[  157.182384][T13038] loop2: detected capacity change from 0 to 164
[  157.189332][T13038] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  157.199990][T13031] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.215014][T13038] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  157.223319][T13031] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.231564][T13038] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  157.247397][T13038] iso9660: Corrupted directory entry in block 4 of inode 1792
[  157.260342][T13036] loop7: detected capacity change from 0 to 16384
[  157.271437][T13042] vlan2: entered promiscuous mode
[  157.276623][T13042] vlan2: entered allmulticast mode
[  157.282075][T13042] bond0: entered allmulticast mode
[  157.287225][T13042] bond_slave_0: entered allmulticast mode
[  157.292974][T13042] bond_slave_1: entered allmulticast mode
[  157.298774][T13042] bond0: entered promiscuous mode
[  157.303894][T13042] bond_slave_0: entered promiscuous mode
[  157.309579][T13042] bond_slave_1: entered promiscuous mode
[  157.329730][T13042] bond0: left allmulticast mode
[  157.334670][T13042] bond_slave_0: left allmulticast mode
[  157.340260][T13042] bond_slave_1: left allmulticast mode
[  157.345885][T13042] bond0: left promiscuous mode
[  157.350655][T13042] bond_slave_0: left promiscuous mode
[  157.356121][T13042] bond_slave_1: left promiscuous mode
[  157.364643][T11461] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.364858][T13036] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13036 comm=syz.1.3212
[  157.431714][T13051] SELinux: syz.3.3219 (13051) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  157.482580][T13057] SELinux: syz.5.3223 (13057) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  157.524396][T13058] loop3: detected capacity change from 0 to 512
[  157.538380][T13058] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.563994][T13058] ext4 filesystem being mounted at /80/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.604206][T11804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.615631][T13068] syzkaller0: entered promiscuous mode
[  157.621110][T13068] syzkaller0: entered allmulticast mode
[  157.632595][T13071] atomic_op ffff888113ee1528 conn xmit_atomic 0000000000000000
[  157.654181][T13073] loop3: detected capacity change from 0 to 512
[  157.673318][T13073] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.686227][T13073] ext4 filesystem being mounted at /81/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  157.709439][T13079] atomic_op ffff888113ee1528 conn xmit_atomic 0000000000000000
[  157.717701][T11804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.742436][T13083] loop5: detected capacity change from 0 to 512
[  157.767463][T13083] EXT4-fs (loop5): orphan cleanup on readonly fs
[  157.777244][T13088] SELinux: syz.3.3233 (13088) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  157.778338][T13083] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.3231: bg 0: block 248: padding at end of block bitmap is not set
[  157.809545][T13083] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.3231: Failed to acquire dquot type 1
[  157.821700][T13090] SELinux: syz.3.3234 (13090) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  157.827012][T13083] EXT4-fs (loop5): 1 truncate cleaned up
[  157.843087][T13083] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  157.860820][T13093] 9pnet_fd: Insufficient options for proto=fd
[  157.873618][T11461] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  157.877233][T13093] loop3: detected capacity change from 0 to 1024
[  157.889712][T13093] EXT4-fs: Ignoring removed nobh option
[  157.895345][T13093] EXT4-fs: Ignoring removed bh option
[  157.925205][T13093] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  157.941025][T13093] atomic_op ffff888113ee1928 conn xmit_atomic 0000000000000000
[  157.947775][T13095] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13095 comm=syz.5.3236
[  157.987260][T11804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.014757][T13035] blk_print_req_error: 13 callbacks suppressed
[  158.014815][T13035] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  158.016070][T13104] loop2: detected capacity change from 0 to 1024
[  158.021005][T13035] buffer_io_error: 1689 callbacks suppressed
[  158.021036][T13035] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  158.021057][T13035] Buffer I/O error on dev loop7, logical block 1, lost async page write
[  158.032896][T13104] EXT4-fs: Ignoring removed nobh option
[  158.037020][T13035] Buffer I/O error on dev loop7, logical block 2, lost async page write
[  158.037037][T13035] Buffer I/O error on dev loop7, logical block 3, lost async page write
[  158.037053][T13035] Buffer I/O error on dev loop7, logical block 4, lost async page write
[  158.043028][T13104] EXT4-fs: Ignoring removed bh option
[  158.051377][T13035] Buffer I/O error on dev loop7, logical block 5, lost async page write
[  158.051396][T13035] Buffer I/O error on dev loop7, logical block 6, lost async page write
[  158.051410][T13035] Buffer I/O error on dev loop7, logical block 7, lost async page write
[  158.051423][T13035] Buffer I/O error on dev loop7, logical block 8, lost async page write
[  158.112304][T13111] loop3: detected capacity change from 0 to 512
[  158.112449][T13035] Buffer I/O error on dev loop7, logical block 9, lost async page write
[  158.137613][T13104] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.151457][T13035] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  158.168561][T13104] atomic_op ffff888113ee1928 conn xmit_atomic 0000000000000000
[  158.170393][T13035] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x800 phys_seg 128 prio class 0
[  158.186950][T13111] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.199875][T13111] ext4 filesystem being mounted at /87/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  158.237673][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.250383][T11804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.291081][T13120] loop1: detected capacity change from 0 to 1024
[  158.301389][T13120] EXT4-fs: Ignoring removed orlov option
[  158.307146][T13120] EXT4-fs: Ignoring removed nomblk_io_submit option
[  158.325571][T13118] syzkaller0: entered promiscuous mode
[  158.331048][T13118] syzkaller0: entered allmulticast mode
[  158.339782][T13120] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  158.353256][T13127] SELinux: syz.3.3245 (13127) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  158.384818][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.499399][T13136] 9pnet_fd: Insufficient options for proto=fd
[  158.503808][T13137] loop2: detected capacity change from 0 to 164
[  158.517267][T13136] loop3: detected capacity change from 0 to 1024
[  158.525602][T13136] EXT4-fs: Ignoring removed nobh option
[  158.531238][T13136] EXT4-fs: Ignoring removed bh option
[  158.533313][T13137] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  158.545558][T13136] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  158.564073][T13136] atomic_op ffff8881154c6128 conn xmit_atomic 0000000000000000
[  158.581264][T13137] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  158.714815][T13144] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  158.726611][T13144] iso9660: Corrupted directory entry in block 4 of inode 1792
[  158.810192][T11804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  158.870574][T13149] loop5: detected capacity change from 0 to 1024
[  158.871773][   T29] kauditd_printk_skb: 421 callbacks suppressed
[  158.871784][   T29] audit: type=1400 audit(1734740217.658:11440): avc:  denied  { read write } for  pid=13150 comm="syz.0.3251" name="uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  158.877227][T13149] EXT4-fs: Ignoring removed nobh option
[  158.885366][ T3372] hid-generic 0004:0004:0009.0002: unknown main item tag 0x2
[  158.906767][T13149] EXT4-fs: Ignoring removed bh option
[  158.913387][ T3372] hid-generic 0004:0004:0009.0002: hidraw0: <UNKNOWN> HID v43.97 Device [syz1] on syz1
[  158.925161][   T29] audit: type=1400 audit(1734740217.668:11441): avc:  denied  { open } for  pid=13150 comm="syz.0.3251" path="/dev/uhid" dev="devtmpfs" ino=252 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1
[  158.971578][T13149] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.001097][T13149] atomic_op ffff888118040d28 conn xmit_atomic 0000000000000000
[  159.076092][T11461] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  159.095853][T13158] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3254'.
[  159.112397][T13158] loop5: detected capacity change from 0 to 512
[  159.152347][T13158] EXT4-fs (loop5): too many log groups per flexible block group
[  159.160109][T13158] EXT4-fs (loop5): failed to initialize mballoc (-12)
[  159.335276][T13158] EXT4-fs (loop5): mount failed
[  159.509955][T13167] FAULT_INJECTION: forcing a failure.
[  159.509955][T13167] name failslab, interval 1, probability 0, space 0, times 0
[  159.522599][T13167] CPU: 0 UID: 0 PID: 13167 Comm: syz.2.3256 Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  159.533356][T13167] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  159.543410][T13167] Call Trace:
[  159.545566][   T29] audit: type=1400 audit(1734740218.338:11442): avc:  denied  { execute } for  pid=13166 comm="syz.5.3257" path=2F616E6F6E5F6875676570616765202864656C6574656429 dev="hugetlbfs" ino=37574 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[  159.546678][T13167]  <TASK>
[  159.546687][T13167]  dump_stack_lvl+0xf2/0x150
[  159.580469][T13167]  dump_stack+0x15/0x1a
[  159.584648][T13167]  should_fail_ex+0x223/0x230
[  159.589335][T13167]  should_failslab+0x8f/0xb0
[  159.594031][T13167]  kmem_cache_alloc_node_noprof+0x59/0x320
[  159.599925][T13167]  ? __alloc_skb+0x10b/0x310
[  159.604509][T13167]  __alloc_skb+0x10b/0x310
[  159.608977][T13167]  alloc_skb_with_frags+0x80/0x450
[  159.614081][T13167]  ? __perf_event_task_sched_in+0x9ac/0xa10
[  159.620008][T13167]  sock_alloc_send_pskb+0x435/0x4f0
[  159.625224][T13167]  unix_dgram_sendmsg+0x472/0xff0
[  159.630293][T13167]  ? selinux_socket_sendmsg+0x185/0x1c0
[  159.635897][T13167]  unix_seqpacket_sendmsg+0xd0/0x110
[  159.641191][T13167]  ? __pfx_unix_seqpacket_sendmsg+0x10/0x10
[  159.647076][T13167]  __sock_sendmsg+0x140/0x180
[  159.651750][T13167]  ____sys_sendmsg+0x312/0x410
[  159.656556][T13167]  __sys_sendmmsg+0x227/0x4b0
[  159.661677][T13167]  __x64_sys_sendmmsg+0x57/0x70
[  159.666522][T13167]  x64_sys_call+0x29aa/0x2dc0
[  159.671298][T13167]  do_syscall_64+0xc9/0x1c0
[  159.675790][T13167]  ? clear_bhb_loop+0x55/0xb0
[  159.680480][T13167]  ? clear_bhb_loop+0x55/0xb0
[  159.685146][T13167]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  159.691038][T13167] RIP: 0033:0x7f163f915d29
[  159.695441][T13167] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  159.715080][T13167] RSP: 002b:00007f163df81038 EFLAGS: 00000246 ORIG_RAX: 0000000000000133
[  159.723483][T13167] RAX: ffffffffffffffda RBX: 00007f163fb05fa0 RCX: 00007f163f915d29
[  159.731456][T13167] RDX: 000000000000003f RSI: 00000000200000c0 RDI: 0000000000000003
[  159.739416][T13167] RBP: 00007f163df81090 R08: 0000000000000000 R09: 0000000000000000
[  159.747419][T13167] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001
[  159.755399][T13167] R13: 0000000000000000 R14: 00007f163fb05fa0 R15: 00007fff75563b18
[  159.763365][T13167]  </TASK>
[  159.768368][   T29] audit: type=1400 audit(1734740218.378:11443): avc:  denied  { create } for  pid=13166 comm="syz.5.3257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  159.787992][   T29] audit: type=1400 audit(1734740218.378:11444): avc:  denied  { bind } for  pid=13166 comm="syz.5.3257" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1
[  159.828569][T13170] loop1: detected capacity change from 0 to 512
[  159.877204][   T29] audit: type=1400 audit(1734740218.608:11445): avc:  denied  { bind } for  pid=13169 comm="syz.1.3258" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tipc_socket permissive=1
[  159.922002][   T29] audit: type=1400 audit(1734740218.708:11446): avc:  denied  { nlmsg_write } for  pid=13173 comm="syz.0.3261" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1
[  159.983308][   T29] audit: type=1326 audit(1734740218.768:11447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13177 comm="syz.2.3260" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f163f915d29 code=0x0
[  160.011491][T13183] 9pnet_fd: Insufficient options for proto=fd
[  160.017079][T13170] Quota error (device loop1): v2_read_file_info: Number of blocks too big for quota file size (2103296 > 6144).
[  160.029485][T13170] EXT4-fs warning (device loop1): ext4_enable_quotas:7156: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  160.044762][T13170] EXT4-fs (loop1): mount failed
[  160.242094][T13180] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13180 comm=syz.3.3263
[  160.255842][T13184] loop2: detected capacity change from 0 to 164
[  160.263121][T13184] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  160.275624][T13183] atomic_op ffff88811830d928 conn xmit_atomic 0000000000000000
[  160.348131][T13184] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  160.412117][T13193] loop1: detected capacity change from 0 to 1024
[  160.418868][T13193] EXT4-fs: Ignoring removed nobh option
[  160.424532][T13193] EXT4-fs: Ignoring removed bh option
[  160.438295][T13184] iso9660: Corrupted directory entry in block 4 of inode 1792
[  160.456255][T13193] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.470984][T13191] atomic_op ffff888118040d28 conn xmit_atomic 0000000000000000
[  160.517550][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.521733][   T29] audit: type=1326 audit(1734740219.308:11448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13204 comm="syz.0.3267" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f18e0e35d29 code=0x0
[  160.564332][T13207] netlink: 16 bytes leftover after parsing attributes in process `syz.1.3268'.
[  160.602916][T13210] loop1: detected capacity change from 0 to 1024
[  160.610965][T13210] EXT4-fs: Ignoring removed nobh option
[  160.616619][T13210] EXT4-fs: Ignoring removed bh option
[  160.635052][T13210] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.650737][T13210] atomic_op ffff8881154c5528 conn xmit_atomic 0000000000000000
[  160.701620][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.727261][T13215] loop1: detected capacity change from 0 to 512
[  160.745489][T13215] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.758082][T13215] ext4 filesystem being mounted at /44/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  160.788849][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  160.828433][T13222] loop5: detected capacity change from 0 to 512
[  160.855501][T13222] EXT4-fs error (device loop5): ext4_orphan_get:1389: inode #15: comm syz.5.3272: casefold flag without casefold feature
[  160.868412][T13222] EXT4-fs error (device loop5): ext4_orphan_get:1394: comm syz.5.3272: couldn't read orphan inode 15 (err -117)
[  160.881309][T13222] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.909969][T13229] loop3: detected capacity change from 0 to 512
[  160.910169][T13231] 9pnet_fd: Insufficient options for proto=fd
[  160.946891][T13231] loop2: detected capacity change from 0 to 1024
[  160.957158][T13231] EXT4-fs: Ignoring removed nobh option
[  160.962801][T13231] EXT4-fs: Ignoring removed bh option
[  160.969835][T13229] EXT4-fs (loop3): orphan cleanup on readonly fs
[  160.976833][T13229] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3275: bg 0: block 248: padding at end of block bitmap is not set
[  160.999317][T13229] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3275: Failed to acquire dquot type 1
[  161.003139][    T8] hid-generic 0004:0004:0009.0003: unknown main item tag 0x2
[  161.015166][T13231] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.020559][    T8] hid-generic 0004:0004:0009.0003: hidraw0: <UNKNOWN> HID v43.97 Device [syz1] on syz1
[  161.040623][T13229] EXT4-fs (loop3): 1 truncate cleaned up
[  161.048075][T13231] atomic_op ffff8881168a5d28 conn xmit_atomic 0000000000000000
[  161.057360][T13229] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  161.095582][T11804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.105962][T11461] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.106309][T13244] vlan2: entered promiscuous mode
[  161.120404][T13244] vlan2: entered allmulticast mode
[  161.141756][T13244] bond0: entered allmulticast mode
[  161.141985][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.146934][T13244] bond_slave_0: entered allmulticast mode
[  161.161686][T13244] bond_slave_1: entered allmulticast mode
[  161.167525][T13244] bond0: entered promiscuous mode
[  161.172604][T13244] bond_slave_0: entered promiscuous mode
[  161.178363][T13244] bond_slave_1: entered promiscuous mode
[  161.192493][    T8] hid-generic 0004:0004:0009.0004: unknown main item tag 0x2
[  161.202425][    T8] hid-generic 0004:0004:0009.0004: hidraw0: <UNKNOWN> HID v43.97 Device [syz1] on syz1
[  161.215996][T13244] bond0: left allmulticast mode
[  161.220865][T13244] bond_slave_0: left allmulticast mode
[  161.226369][T13244] bond_slave_1: left allmulticast mode
[  161.231917][T13244] bond0: left promiscuous mode
[  161.236773][T13244] bond_slave_0: left promiscuous mode
[  161.242184][T13244] bond_slave_1: left promiscuous mode
[  161.253776][T13250] loop2: detected capacity change from 0 to 512
[  161.284267][T13250] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.3283: casefold flag without casefold feature
[  161.315869][T13255] loop5: detected capacity change from 0 to 4096
[  161.321637][T13250] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.3283: couldn't read orphan inode 15 (err -117)
[  161.343035][T13250] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.346429][T13258] loop3: detected capacity change from 0 to 164
[  161.372776][T13258] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  161.404923][T13261] loop1: detected capacity change from 0 to 512
[  161.413476][T13258] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  161.440364][T13255] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.463102][T13261] EXT4-fs (loop1): orphan cleanup on readonly fs
[  161.473335][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.482897][T13258] iso9660: Corrupted directory entry in block 4 of inode 1792
[  161.512393][T13261] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3286: bg 0: block 248: padding at end of block bitmap is not set
[  161.571169][T13261] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.3286: Failed to acquire dquot type 1
[  161.609089][T13261] EXT4-fs (loop1): 1 truncate cleaned up
[  161.619086][T13261] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  161.642156][T13261] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.706843][T13281] loop1: detected capacity change from 0 to 512
[  161.714898][T13283] netlink: 28 bytes leftover after parsing attributes in process `syz.5.3281'.
[  161.733122][T13281] EXT4-fs error (device loop1): ext4_orphan_get:1389: inode #15: comm syz.1.3291: casefold flag without casefold feature
[  161.754788][T13281] EXT4-fs error (device loop1): ext4_orphan_get:1394: comm syz.1.3291: couldn't read orphan inode 15 (err -117)
[  161.772812][T13281] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  161.819516][T12314] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.151123][T13294] 9pnet_fd: Insufficient options for proto=fd
[  162.168320][T13294] loop3: detected capacity change from 0 to 1024
[  162.177235][T13294] EXT4-fs: Ignoring removed nobh option
[  162.182820][T13294] EXT4-fs: Ignoring removed bh option
[  162.197403][T13294] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  162.218425][T13294] atomic_op ffff8881168a6528 conn xmit_atomic 0000000000000000
[  162.287545][T11804] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.773029][T13309] loop1: detected capacity change from 0 to 164
[  162.806838][T13309] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  162.851684][T13309] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  162.872437][T13312] loop2: detected capacity change from 0 to 512
[  162.897881][T13312] EXT4-fs (loop2): orphan cleanup on readonly fs
[  162.907832][T13315] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3299'.
[  162.922220][T13312] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3297: bg 0: block 248: padding at end of block bitmap is not set
[  162.935794][T13309] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  162.952043][T13312] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3297: Failed to acquire dquot type 1
[  162.975502][T13309] iso9660: Corrupted directory entry in block 4 of inode 1792
[  162.997238][T13312] EXT4-fs (loop2): 1 truncate cleaned up
[  163.010828][T13312] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  163.041333][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.072184][T13320] loop2: detected capacity change from 0 to 512
[  163.088206][T13320] EXT4-fs error (device loop2): ext4_orphan_get:1389: inode #15: comm syz.2.3301: casefold flag without casefold feature
[  163.103259][T13320] EXT4-fs error (device loop2): ext4_orphan_get:1394: comm syz.2.3301: couldn't read orphan inode 15 (err -117)
[  163.117421][T13320] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.180881][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.297436][T13329] 9pnet_fd: Insufficient options for proto=fd
[  163.304896][T13328] netlink: 16 bytes leftover after parsing attributes in process `syz.3.3305'.
[  163.333297][T13329] loop2: detected capacity change from 0 to 1024
[  163.341246][T13328] loop3: detected capacity change from 0 to 512
[  163.351035][T13329] EXT4-fs: Ignoring removed nobh option
[  163.356751][T13329] EXT4-fs: Ignoring removed bh option
[  163.369301][T13328] EXT4-fs (loop3): too many log groups per flexible block group
[  163.377033][T13328] EXT4-fs (loop3): failed to initialize mballoc (-12)
[  163.386174][T13328] EXT4-fs (loop3): mount failed
[  163.415368][T13329] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  163.447804][T13329] atomic_op ffff8881168a5128 conn xmit_atomic 0000000000000000
[  163.452870][T13335] loop3: detected capacity change from 0 to 512
[  163.516638][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.551886][T13338] sd 0:0:1:0: device reset
[  163.599967][T13343] loop2: detected capacity change from 0 to 512
[  163.615199][T13344] loop1: detected capacity change from 0 to 512
[  163.621497][T13343] EXT4-fs (loop2): orphan cleanup on readonly fs
[  163.632100][T13344] EXT4-fs (loop1): orphan cleanup on readonly fs
[  163.638898][T13344] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3309: bg 0: block 248: padding at end of block bitmap is not set
[  163.644191][T13343] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3310: bg 0: block 248: padding at end of block bitmap is not set
[  163.670685][T13344] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.3309: Failed to acquire dquot type 1
[  163.683570][T13343] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3310: Failed to acquire dquot type 1
[  163.694727][T13344] EXT4-fs (loop1): 1 truncate cleaned up
[  163.713239][T13343] EXT4-fs (loop2): 1 truncate cleaned up
[  163.719921][T13343] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  163.739132][T13344] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  163.777111][T12467] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  163.842683][T13356] loop3: detected capacity change from 0 to 1024
[  163.863080][T13358] loop1: detected capacity change from 0 to 1024
[  163.864030][T13359] loop2: detected capacity change from 0 to 164
[  163.878324][T13356] EXT4-fs: Ignoring removed nobh option
[  163.883957][T13356] EXT4-fs: Ignoring removed bh option
[  163.893242][T13358] EXT4-fs: Ignoring removed orlov option
[  163.898974][T13358] EXT4-fs: Ignoring removed nomblk_io_submit option
[  163.906666][T13359] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  163.933298][T13356] atomic_op ffff88810c80a128 conn xmit_atomic 0000000000000000
[  163.941426][   T29] kauditd_printk_skb: 168 callbacks suppressed
[  163.941439][   T29] audit: type=1400 audit(1734740222.728:11607): avc:  denied  { write } for  pid=13357 comm="syz.1.3315" name="bus" dev="loop1" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  163.990065][   T29] audit: type=1400 audit(1734740222.728:11608): avc:  denied  { add_name } for  pid=13357 comm="syz.1.3315" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1
[  164.035141][   T29] audit: type=1326 audit(1734740222.818:11609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13364 comm="syz.0.3316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.058798][   T29] audit: type=1326 audit(1734740222.818:11610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13364 comm="syz.0.3316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.082402][   T29] audit: type=1326 audit(1734740222.818:11611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13364 comm="syz.0.3316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.105983][   T29] audit: type=1326 audit(1734740222.818:11612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13364 comm="syz.0.3316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.176043][T13367] loop1: detected capacity change from 0 to 512
[  164.182438][T13370] sd 0:0:1:0: device reset
[  164.187008][   T29] audit: type=1326 audit(1734740222.968:11613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13369 comm="syz.0.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.210600][   T29] audit: type=1326 audit(1734740222.968:11614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13369 comm="syz.0.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.234247][   T29] audit: type=1326 audit(1734740222.968:11615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13369 comm="syz.0.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=447 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.257847][   T29] audit: type=1326 audit(1734740222.968:11616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13369 comm="syz.0.3319" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f18e0e35d29 code=0x7ffc0000
[  164.306356][T13377] loop3: detected capacity change from 0 to 512
[  164.316010][T13367] ext4 filesystem being mounted at /59/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  164.347136][T13377] EXT4-fs (loop3): orphan cleanup on readonly fs
[  164.364816][T13377] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3318: bg 0: block 248: padding at end of block bitmap is not set
[  164.390573][T13377] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3318: Failed to acquire dquot type 1
[  164.420189][T13377] EXT4-fs (loop3): 1 truncate cleaned up
[  164.452692][T13382] loop1: detected capacity change from 0 to 1024
[  164.459534][T13382] EXT4-fs: Ignoring removed orlov option
[  164.465271][T13382] EXT4-fs: Ignoring removed nomblk_io_submit option
[  164.487786][T13384] loop3: detected capacity change from 0 to 512
[  164.528329][T13384] EXT4-fs (loop3): orphan cleanup on readonly fs
[  164.552125][T13384] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3322: bg 0: block 248: padding at end of block bitmap is not set
[  164.568012][T13384] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3322: Failed to acquire dquot type 1
[  164.582185][T13384] EXT4-fs (loop3): 1 truncate cleaned up
[  164.594394][T13389] loop1: detected capacity change from 0 to 512
[  164.619698][T13389] EXT4-fs (loop1): orphan cleanup on readonly fs
[  164.636403][T13389] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3323: bg 0: block 248: padding at end of block bitmap is not set
[  164.654938][T13392] loop3: detected capacity change from 0 to 512
[  164.692312][T13392] EXT4-fs (loop3): orphan cleanup on readonly fs
[  164.704436][T13389] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.3323: Failed to acquire dquot type 1
[  164.718407][T13392] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3324: bg 0: block 248: padding at end of block bitmap is not set
[  164.733357][T13389] EXT4-fs (loop1): 1 truncate cleaned up
[  164.741285][T13392] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3324: Failed to acquire dquot type 1
[  164.770532][T13392] EXT4-fs (loop3): 1 truncate cleaned up
[  164.831487][T13401] loop7: detected capacity change from 0 to 16384
[  164.932655][T13401] I/O error, dev loop7, sector 12032 op 0x0:(READ) flags 0x80700 phys_seg 3 prio class 0
[  164.950975][T13401] I/O error, dev loop7, sector 12288 op 0x0:(READ) flags 0x80700 phys_seg 3 prio class 0
[  164.967542][T13401] I/O error, dev loop7, sector 12032 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0
[  164.977071][T13401] buffer_io_error: 374 callbacks suppressed
[  164.977083][T13401] Buffer I/O error on dev loop7, logical block 1504, async page read
[  165.036881][T13398] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=13398 comm=syz.1.3326
[  165.147195][T13414] vlan2: entered allmulticast mode
[  165.163206][T13414] bridge0: port 3(vlan2) entered blocking state
[  165.169577][T13414] bridge0: port 3(vlan2) entered disabled state
[  165.194802][T13414] vlan2: entered promiscuous mode
[  165.203640][T13414] bridge0: mtu less than device minimum
[  165.553027][T13428] loop2: detected capacity change from 0 to 512
[  165.582643][T13428] EXT4-fs (loop2): orphan cleanup on readonly fs
[  165.596821][T13428] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3332: bg 0: block 248: padding at end of block bitmap is not set
[  165.614005][T13397] I/O error, dev loop7, sector 0 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  165.620529][T13428] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3332: Failed to acquire dquot type 1
[  165.623638][T13397] Buffer I/O error on dev loop7, logical block 0, lost async page write
[  165.623771][T13397] Buffer I/O error on dev loop7, logical block 1, lost async page write
[  165.648569][T13428] EXT4-fs (loop2): 1 truncate cleaned up
[  165.651481][T13397] Buffer I/O error on dev loop7, logical block 2, lost async page write
[  165.665530][T13397] Buffer I/O error on dev loop7, logical block 3, lost async page write
[  165.673885][T13397] Buffer I/O error on dev loop7, logical block 4, lost async page write
[  165.682241][T13397] Buffer I/O error on dev loop7, logical block 5, lost async page write
[  165.690645][T13397] Buffer I/O error on dev loop7, logical block 6, lost async page write
[  165.699003][T13397] Buffer I/O error on dev loop7, logical block 7, lost async page write
[  165.707350][T13397] Buffer I/O error on dev loop7, logical block 8, lost async page write
[  165.718470][T13397] I/O error, dev loop7, sector 1024 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  165.731555][T13397] I/O error, dev loop7, sector 2048 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  165.746040][T13397] I/O error, dev loop7, sector 3072 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  165.758718][T13397] I/O error, dev loop7, sector 4096 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  165.773610][T13397] I/O error, dev loop7, sector 5120 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  165.790759][T13397] I/O error, dev loop7, sector 6144 op 0x1:(WRITE) flags 0x4800 phys_seg 128 prio class 0
[  165.888788][T13435] SELinux: syz.1.3335 (13435) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  165.890756][T13433] loop2: detected capacity change from 0 to 512
[  165.917941][T13433] EXT4-fs (loop2): orphan cleanup on readonly fs
[  165.932415][T13433] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3334: bg 0: block 248: padding at end of block bitmap is not set
[  166.144038][T13433] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3334: Failed to acquire dquot type 1
[  166.158371][T13433] EXT4-fs (loop2): 1 truncate cleaned up
[  166.185265][T13438] loop1: detected capacity change from 0 to 512
[  166.224714][T13440] netlink: 20 bytes leftover after parsing attributes in process `syz.3.3336'.
[  166.264550][T13438] ext4 filesystem being mounted at /64/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  166.389927][T13456] loop3: detected capacity change from 0 to 164
[  166.400168][T13456] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  166.409301][T13456] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  166.429628][T13456] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  166.440191][T13456] iso9660: Corrupted directory entry in block 4 of inode 1792
[  166.457235][T13460] 9pnet_fd: Insufficient options for proto=fd
[  166.480448][T13460] atomic_op ffff888117a75128 conn xmit_atomic 0000000000000000
[  166.566249][T13463] loop1: detected capacity change from 0 to 512
[  166.589096][T13463] EXT4-fs (loop1): orphan cleanup on readonly fs
[  166.600925][T13463] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3342: bg 0: block 248: padding at end of block bitmap is not set
[  166.625827][T13466] SELinux: syz.0.3347 (13466) wrote to /sys/fs/selinux/user! This will not be supported in the future; please update your userspace.
[  166.647465][T13468] loop2: detected capacity change from 0 to 512
[  166.651274][T13463] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.3342: Failed to acquire dquot type 1
[  166.667547][T13463] EXT4-fs (loop1): 1 truncate cleaned up
[  166.717287][T13468] EXT4-fs (loop2): orphan cleanup on readonly fs
[  166.731571][T13468] EXT4-fs error (device loop2): ext4_validate_block_bitmap:441: comm syz.2.3346: bg 0: block 248: padding at end of block bitmap is not set
[  166.751678][T13471] netlink: 128 bytes leftover after parsing attributes in process `syz.0.3348'.
[  166.763212][T13468] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.3346: Failed to acquire dquot type 1
[  166.776813][T13468] EXT4-fs (loop2): 1 truncate cleaned up
[  166.793849][T13471] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3348'.
[  166.843694][T13475] loop2: detected capacity change from 0 to 1024
[  166.861762][T13475] EXT4-fs: Ignoring removed nobh option
[  166.867401][T13475] EXT4-fs: Ignoring removed bh option
[  166.931607][T13482] loop1: detected capacity change from 0 to 512
[  166.973023][T13475] atomic_op ffff888105734928 conn xmit_atomic 0000000000000000
[  166.974809][T13485] sd 0:0:1:0: device reset
[  166.991766][T13482] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  167.070898][T13491] netlink: 128 bytes leftover after parsing attributes in process `syz.0.3356'.
[  167.082248][T13491] netlink: 16 bytes leftover after parsing attributes in process `syz.0.3356'.
[  167.111065][T13495] 9pnet_fd: Insufficient options for proto=fd
[  167.145659][T13495] loop2: detected capacity change from 0 to 1024
[  167.157695][T13495] EXT4-fs: Ignoring removed nobh option
[  167.163342][T13495] EXT4-fs: Ignoring removed bh option
[  167.230866][T13495] atomic_op ffff888116f07928 conn xmit_atomic 0000000000000000
[  167.834351][T13518] loop2: detected capacity change from 0 to 512
[  167.962014][T13522] loop1: detected capacity change from 0 to 512
[  167.972630][T13523] loop2: detected capacity change from 0 to 164
[  167.988747][T13523] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  168.007463][T13522] EXT4-fs (loop1): orphan cleanup on readonly fs
[  168.027777][T13522] EXT4-fs error (device loop1): ext4_validate_block_bitmap:441: comm syz.1.3366: bg 0: block 248: padding at end of block bitmap is not set
[  168.062455][T13522] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.3366: Failed to acquire dquot type 1
[  168.127183][T13522] EXT4-fs (loop1): 1 truncate cleaned up
[  168.174840][T13526] loop3: detected capacity change from 0 to 1024
[  168.181693][T13526] EXT4-fs: Ignoring removed nobh option
[  168.187304][T13526] EXT4-fs: Ignoring removed bh option
[  168.198577][T13526] atomic_op ffff888104dc1928 conn xmit_atomic 0000000000000000
[  168.302488][T13532] loop1: detected capacity change from 0 to 164
[  168.318603][T13532] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  168.331215][T13534] loop3: detected capacity change from 0 to 1024
[  168.338158][T13534] EXT4-fs: Ignoring removed orlov option
[  168.343863][T13534] EXT4-fs: Ignoring removed nomblk_io_submit option
[  168.372476][T13532] rock: corrupted directory entry. extent=28, offset=0, size=16777216
[  168.393163][T13532] iso9660: Corrupted directory entry in block 4 of inode 1792
[  168.488035][T13540] loop3: detected capacity change from 0 to 512
[  168.508745][T13540] EXT4-fs (loop3): orphan cleanup on readonly fs
[  168.521306][T13540] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3372: bg 0: block 248: padding at end of block bitmap is not set
[  168.550707][T13540] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3372: Failed to acquire dquot type 1
[  168.563449][T13540] EXT4-fs (loop3): 1 truncate cleaned up
[  168.639905][T13549] loop3: detected capacity change from 0 to 512
[  168.728140][T13554] loop3: detected capacity change from 0 to 512
[  168.740057][T13554] EXT4-fs error (device loop3): ext4_orphan_get:1389: inode #15: comm syz.3.3377: casefold flag without casefold feature
[  168.753345][T13554] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.3377: couldn't read orphan inode 15 (err -117)
[  168.810240][T13557] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3378'.
[  168.846283][T13559] loop3: detected capacity change from 0 to 512
[  168.874797][T13559] EXT4-fs (loop3): orphan cleanup on readonly fs
[  168.887629][T13559] EXT4-fs error (device loop3): ext4_validate_block_bitmap:441: comm syz.3.3379: bg 0: block 248: padding at end of block bitmap is not set
[  168.904557][T13562] loop2: detected capacity change from 0 to 1024
[  168.913282][T13562] EXT4-fs: Ignoring removed orlov option
[  168.919040][T13562] EXT4-fs: Ignoring removed nomblk_io_submit option
[  168.939464][T13559] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.3379: Failed to acquire dquot type 1
[  168.953507][T13559] EXT4-fs (loop3): 1 truncate cleaned up
[  169.105254][T13568] netlink: 12 bytes leftover after parsing attributes in process `syz.3.3381'.
[  169.140755][T13572] loop2: detected capacity change from 0 to 1024
[  169.146707][T13576] vlan2: entered promiscuous mode
[  169.152189][T13576] vlan2: entered allmulticast mode
[  169.159716][T13576] bond0: entered allmulticast mode
[  169.164913][T13576] bond_slave_0: entered allmulticast mode
[  169.170654][T13576] bond_slave_1: entered allmulticast mode
[  169.176459][T13576] bond0: entered promiscuous mode
[  169.181475][T13576] bond_slave_0: entered promiscuous mode
[  169.187255][T13576] bond_slave_1: entered promiscuous mode
[  169.187822][T13572] EXT4-fs: Ignoring removed orlov option
[  169.198638][T13572] EXT4-fs: Ignoring removed nomblk_io_submit option
[  169.206104][T13576] bond0: left allmulticast mode
[  169.210634][   T29] kauditd_printk_skb: 181 callbacks suppressed
[  169.210646][   T29] audit: type=1326 audit(1734740227.998:11776): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13573 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ac8525d29 code=0x7ffc0000
[  169.210969][T13576] bond_slave_0: left allmulticast mode
[  169.217162][   T29] audit: type=1326 audit(1734740227.998:11777): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13573 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7f8ac8525d29 code=0x7ffc0000
[  169.240763][T13576] bond_slave_1: left allmulticast mode
[  169.246287][   T29] audit: type=1326 audit(1734740227.998:11778): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=13573 comm="syz.3.3385" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ac8525d29 code=0x7ffc0000
[  169.299371][T13576] bond0: left promiscuous mode
[  169.304158][T13576] bond_slave_0: left promiscuous mode
[  169.309597][T13576] bond_slave_1: left promiscuous mode
[  169.340498][T13580] loop2: detected capacity change from 0 to 1024
[  169.354952][T13580] EXT4-fs: Ignoring removed nobh option
[  169.360598][T13580] EXT4-fs: Ignoring removed bh option
[  169.377997][T13582] netlink: 16 bytes leftover after parsing attributes in process `syz.5.3388'.
[  169.450452][T13580] atomic_op ffff888118a80528 conn xmit_atomic 0000000000000000
[  169.465000][   T29] audit: type=1400 audit(1734740228.258:11779): avc:  denied  { create } for  pid=13593 comm="syz.1.3393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  169.513101][   T29] audit: type=1400 audit(1734740228.258:11780): avc:  denied  { connect } for  pid=13593 comm="syz.1.3393" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1
[  169.533036][   T29] audit: type=1400 audit(1734740228.258:11781): avc:  denied  { write } for  pid=13593 comm="syz.1.3393" name="ppp" dev="devtmpfs" ino=140 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  169.556053][   T29] audit: type=1400 audit(1734740228.258:11782): avc:  denied  { ioctl } for  pid=13593 comm="syz.1.3393" path="/dev/ppp" dev="devtmpfs" ino=140 ioctlcmd=0x7438 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1
[  169.580924][   T29] audit: type=1400 audit(1734740228.278:11783): avc:  denied  { create } for  pid=13596 comm="syz.1.3394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  169.600723][   T29] audit: type=1400 audit(1734740228.278:11784): avc:  denied  { bind } for  pid=13596 comm="syz.1.3394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  169.620141][   T29] audit: type=1400 audit(1734740228.278:11785): avc:  denied  { write } for  pid=13596 comm="syz.1.3394" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=can_socket permissive=1
[  169.642862][T13599] batman_adv: batadv0: Adding interface: dummy0
[  169.649156][T13599] batman_adv: batadv0: The MTU of interface dummy0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  169.675696][T13599] batman_adv: batadv0: Interface activated: dummy0
[  169.684742][T13599] batadv0: mtu less than device minimum
[  169.690955][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.701866][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.712617][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.723457][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.734149][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.744972][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.755779][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.766392][T13599] batman_adv: batadv0: Forced to purge local tt entries to fit new maximum fragment MTU (-320)
[  169.794671][T13602] netlink: 'syz.0.3395': attribute type 1 has an invalid length.
[  169.803406][T13601] bridge0: port 4(syz_tun) entered blocking state
[  169.809901][T13601] bridge0: port 4(syz_tun) entered disabled state
[  169.821408][T13601] syz_tun: entered allmulticast mode
[  169.827301][T13601] syz_tun: entered promiscuous mode
[  169.832870][T13601] bridge0: port 4(syz_tun) entered blocking state
[  169.839422][T13601] bridge0: port 4(syz_tun) entered forwarding state
[  169.847037][T13604] sch_tbf: burst 4398 is lower than device lo mtu (65550) !
[  169.883013][   T35] IPVS: starting estimator thread 0...
[  169.919379][T13616] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3402'.
[  169.973898][T13610] IPVS: using max 2832 ests per chain, 141600 per kthread
[  170.269713][T13623] loop5: detected capacity change from 0 to 128
[  170.299447][T13623] ext4 filesystem being mounted at /88/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  170.336970][T13629] ALSA: seq fatal error: cannot create timer (-22)
[  170.413541][T13638] syzkaller0: entered promiscuous mode
[  170.419082][T13638] syzkaller0: entered allmulticast mode
[  170.513327][    C1] vcan0: j1939_tp_rxtimer: 0xffff88812c87f400: rx timeout, send abort
[  170.521573][    C1] vcan0: j1939_tp_rxtimer: 0xffff88812c87fa00: rx timeout, send abort
[  170.530066][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88812c87f400: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  170.544388][    C1] vcan0: j1939_xtp_rx_abort_one: 0xffff88812c87fa00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  170.544673][T13645] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3414'.
[  170.648407][T13658] netlink: 36 bytes leftover after parsing attributes in process `syz.5.3415'.
[  170.680439][T13665] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy
[  170.688956][T13665] misc raw-gadget: fail, usb_gadget_register_driver returned -16
[  170.716948][ T3472] IPVS: starting estimator thread 0...
[  170.823804][T13671] IPVS: using max 2784 ests per chain, 139200 per kthread
[  170.905270][T11461] ==================================================================
[  170.913372][T11461] BUG: KCSAN: data-race in shmem_getattr / shmem_recalc_inode
[  170.920840][T11461] 
[  170.923157][T11461] read-write to 0xffff888117a97748 of 8 bytes by task 13682 on cpu 1:
[  170.931307][T11461]  shmem_recalc_inode+0x36/0x1b0
[  170.936248][T11461]  shmem_get_folio_gfp+0x7ce/0xd90
[  170.941360][T11461]  shmem_write_begin+0xa2/0x180
[  170.946219][T11461]  generic_perform_write+0x1a8/0x4a0
[  170.951510][T11461]  shmem_file_write_iter+0xc2/0xe0
[  170.956630][T11461]  __kernel_write_iter+0x24b/0x4e0
[  170.961760][T11461]  dump_user_range+0x3ac/0x550
[  170.966532][T11461]  elf_core_dump+0x1bdc/0x1ce0
[  170.971313][T11461]  do_coredump+0x1898/0x1f40
[  170.975909][T11461]  get_signal+0xd4f/0x1000
[  170.980333][T11461]  arch_do_signal_or_restart+0x95/0x4b0
[  170.985894][T11461]  irqentry_exit_to_user_mode+0xa7/0x120
[  170.991544][T11461]  irqentry_exit+0x12/0x50
[  170.995973][T11461]  asm_exc_page_fault+0x26/0x30
[  171.000841][T11461] 
[  171.003161][T11461] read to 0xffff888117a97748 of 8 bytes by task 11461 on cpu 0:
[  171.010786][T11461]  shmem_getattr+0x42/0x200
[  171.014603][    C1] vxcan1: j1939_tp_rxtimer: 0xffff8881155f1000: rx timeout, send abort
[  171.015285][T11461]  vfs_statx_path+0x171/0x2d0
[  171.023531][    C1] vxcan1: j1939_tp_rxtimer: 0xffff888129e8be00: rx timeout, send abort
[  171.028148][T11461]  vfs_statx+0xe1/0x170
[  171.028164][T11461]  __se_sys_newfstatat+0xdc/0x300
[  171.028184][T11461]  __x64_sys_newfstatat+0x55/0x70
[  171.036468][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff8881155f1000: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  171.040508][T11461]  x64_sys_call+0x236d/0x2dc0
[  171.040528][T11461]  do_syscall_64+0xc9/0x1c0
[  171.045553][    C1] vxcan1: j1939_xtp_rx_abort_one: 0xffff888129e8be00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  171.050513][T11461]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  171.094173][T11461] 
[  171.096490][T11461] value changed: 0x0000000000000eb0 -> 0x0000000000000eb3
[  171.103596][T11461] 
[  171.105911][T11461] Reported by Kernel Concurrency Sanitizer on:
[  171.112047][T11461] CPU: 0 UID: 0 PID: 11461 Comm: syz-executor Not tainted 6.13.0-rc3-syzkaller-00193-ge9b8ffafd20a #0
[  171.122985][T11461] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/25/2024
[  171.133040][T11461] ==================================================================
[  171.141309][    C0] vcan0: j1939_tp_rxtimer: 0xffff888114051a00: rx timeout, send abort
[  171.149501][    C0] vcan0: j1939_tp_rxtimer: 0xffff88811b4c9800: rx timeout, send abort
[  171.157939][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff888114051a00: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.
[  171.172225][    C0] vcan0: j1939_xtp_rx_abort_one: 0xffff88811b4c9800: 0x00000: (3) A timeout occurred and this is the connection abort to close the session.