last executing test programs:

5.952344915s ago: executing program 3 (id=224):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000840)=@base={0xb, 0x5, 0x2, 0x4, 0x5, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$OBJ_PIN_MAP(0x6, &(0x7f0000000300)=@o_path={&(0x7f0000000280)='./bus\x00', r1}, 0x18)

5.824461882s ago: executing program 3 (id=229):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
pipe2$9p(&(0x7f0000000140)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x0)
r2 = dup(r1)
pipe2$9p(&(0x7f00000001c0)={<r3=>0xffffffffffffffff}, 0x0)
syz_emit_ethernet(0x176, &(0x7f0000000200)=ANY=[@ANYBLOB="aaaaaaaaaaaaaaaaaaaaaaa48847000000000000000000000000603f599001340600fe8000000000000000000000000000aafe8000000000000000000000000000000000000000000000c204000000000000000c000000000000fc02000000000000000000000000000000000000000000000000ffff00000000fe800000000000000000000000000000fe80000000000000000000000000000000000000000000000000000000000000fc00"/190, @ANYRES32=0x41424344, @ANYRES32=0x41424344], 0x0)
mount$9p_fd(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f00000000c0), 0x0, &(0x7f0000000480)={'trans=fd,', {'rfdno', 0x3d, r3}, 0x2c, {'wfdno', 0x3d, r1}})
write$P9_RLERRORu(r2, &(0x7f0000000040)=ANY=[@ANYBLOB="8b"], 0x53)
write$RDMA_USER_CM_CMD_SET_OPTION(r2, &(0x7f00000008c0)={0xe, 0x18, 0xfa00, @ib_path={0x0}}, 0x20)
r4 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r5 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f0000000300), r4)
sendmsg$NLBL_CIPSOV4_C_ADD(r4, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)={0x40, r5, 0x1, 0x0, 0x0, {}, [@NLBL_CIPSOV4_A_MTYPE={0x8, 0x2, 0x3}, @NLBL_CIPSOV4_A_TAGLST={0x1c, 0x4, 0x0, 0x1, [{0x5, 0x3, 0x1}, {0x5, 0x3, 0x1}, {0x5, 0x3, 0x5}]}, @NLBL_CIPSOV4_A_DOI={0x8, 0x1, 0xfffffffffffffffc}]}, 0x40}}, 0x0)
r6 = syz_genetlink_get_family_id$netlbl_unlabel(&(0x7f0000000380), 0xffffffffffffffff)
sendmsg$NLBL_UNLABEL_C_STATICLIST(r4, &(0x7f0000000440)={&(0x7f0000000100)={0x10, 0x0, 0x0, 0x1}, 0xc, &(0x7f0000000400)={&(0x7f00000003c0)={0x28, r6, 0x100, 0x70bd2d, 0x25dfdbfb, {}, [@NLBL_UNLABEL_A_IFACE={0x14, 0x6, 'ip6erspan0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x140}, 0x4000)
write$binfmt_elf64(r2, &(0x7f0000000340)=ANY=[@ANYBLOB="7f454c4600073f034b0b00000800000003003c02ffffffef3501"], 0x7c8)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000680)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r2}, 0x2c, {[], [], 0x6b}})

5.56410467s ago: executing program 0 (id=235):
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000080)={r0}, 0x4)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x18, &(0x7f00000001c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b70500001000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r1}, 0x10)
syz_open_dev$sg(0x0, 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x21, 0x0, 0x0, 0x100000, 0x400, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x2000000, 0x0, 0x200000000000000, @void, @value, @void, @value}, 0x50)

4.803075892s ago: executing program 3 (id=239):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000000)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002078316e00000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b7030000000000008500000006000000850000000500000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r0}, 0x10)
setfsuid(0x0)

4.665293189s ago: executing program 3 (id=240):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2)
r0 = syz_usbip_server_init(0x4)
fsetxattr(r0, &(0x7f0000000400)=@random={'btrfs.', '\x00'}, &(0x7f0000000640)='\x00', 0x1, 0x1)

3.722292023s ago: executing program 3 (id=248):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [], {0x14}}, 0x28}}, 0x0)

3.257536366s ago: executing program 3 (id=254):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000f3ff0000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='kmem_cache_free\x00', r0, 0x0, 0xb7f2}, 0x18)
r2 = syz_io_uring_setup(0x110, 0x0, &(0x7f0000000240)=<r3=>0x0, &(0x7f0000000280)=<r4=>0x0)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x20000008b}, 0x0)
getpid()
quotactl$Q_QUOTAON(0xffffffff80000200, &(0x7f0000000080)=@loop={'/dev/loop', 0x0}, 0x0, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r5=>0xffffffffffffffff, <r6=>0xffffffffffffffff})
sendmmsg$unix(r6, &(0x7f00000bd000), 0x318, 0x0)
setsockopt$inet6_tcp_int(0xffffffffffffffff, 0x6, 0x0, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4)
r7 = fcntl$dupfd(r5, 0x406, r1)
syz_init_net_socket$x25(0x9, 0x5, 0x0)
ioctl$sock_x25_SIOCADDRT(0xffffffffffffffff, 0x5411, &(0x7f0000000280)={@remote={'\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc\xcc', 0x3}, 0xd, 'veth1_to_batadv\x00'})
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)
lseek(0xffffffffffffffff, 0xffffffffffffeffa, 0x0)
setsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r7, 0x84, 0x1f, &(0x7f0000000700)={0x0, @in={{0x2, 0x4e21, @empty}}, 0x800, 0xfeff}, 0x90)
mmap(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x2, 0x810, r0, 0x14a0000)
set_mempolicy(0x4005, &(0x7f0000000000)=0x80000084, 0x6)
syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018e58, &(0x7f0000000000), 0x1, 0x61d, &(0x7f0000001680)="$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")
socket$kcm(0xa, 0x5, 0x0)
sendmsg$kcm(r7, 0x0, 0x41)
r8 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r8, &(0x7f00000004c0)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="3800000003147df800000000fedbdf250900020073797b300000000008004100736977001400330076657468305f6d616376746170"], 0x38}}, 0x0)
syz_io_uring_submit(r3, r4, 0x0)
r9 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000010000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r9}, 0x10)
uname(0x0)
io_uring_enter(r2, 0x7d79, 0x0, 0x0, 0x0, 0x0)

2.787358247s ago: executing program 1 (id=260):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="16000000000000000400000001"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = socket(0xa, 0x40000000002, 0x0)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000280)=@nat={'nat\x00', 0x19, 0x2, 0x208, [0x20000600, 0x0, 0x0, 0x20000630, 0x20000660], 0x0, 0x0, &(0x7f0000000600)=ANY=[@ANYBLOB="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"]}, 0x280)
setsockopt$EBT_SO_SET_ENTRIES(r2, 0x0, 0x80, &(0x7f0000000880)=@nat={'nat\x00', 0x19, 0x2, 0x348, [0x20000280, 0x0, 0x0, 0x200002b0, 0x200002e0], 0x2, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="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"]}, 0x3c0)

2.186203063s ago: executing program 1 (id=264):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}}], {0x14}}, 0x3c}}, 0x0)

2.160608163s ago: executing program 1 (id=265):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r1, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400, @void, @value}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000002000000000000000000018190000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r2 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x7, 0xfff, 0x9, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x3f, &(0x7f0000000440)=ANY=[@ANYBLOB="1801000000000020000000000000000018190000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000200)='qdisc_reset\x00', r3}, 0x10)
close(r0)

1.938112869s ago: executing program 2 (id=267):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=@framed={{}, [@ringbuf_output={{0x18, 0x2, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x43}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000001640)='kfree\x00', r1}, 0x10)
r2 = socket$kcm(0x10, 0x2, 0x4)
sendmsg$kcm(r2, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030ec0007f03e3f70000000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08123d00030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0)

1.899432321s ago: executing program 1 (id=268):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f00000002c0)='kfree\x00', r1}, 0x10)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r2, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000600)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c0003801400010076657468305f746f5f687372"], 0xfc}}, 0x0)

1.887291444s ago: executing program 2 (id=269):
r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x161042, 0x0)
ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f0000000140))
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x42, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r1}, 0x0, &(0x7f0000000040)}, 0x20)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r2}, 0x10)
ioctl$PPPIOCSPASS(r0, 0x40107447, &(0x7f0000000400)={0x1, &(0x7f0000000000)=[{0x16, 0x0, 0x1, 0xff}]})

1.71810491s ago: executing program 0 (id=270):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000140)={'pim6reg1\x00', 0x1})
socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff, <r2=>0xffffffffffffffff})
ioctl$SIOCSIFHWADDR(r2, 0x8914, &(0x7f0000000100)={'pim6reg1\x00', @broadcast})
close(r1)

1.717606466s ago: executing program 1 (id=271):
r0 = socket$inet6(0xa, 0x2, 0x0)
sendmsg$SEG6_CMD_GET_TUNSRC(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="14000000", @ANYBLOB="2302000012"], 0x14}}, 0x0)
setsockopt$inet6_int(r0, 0x29, 0x4e, &(0x7f0000000040)=0x3, 0x4)
r1 = dup(r0)
bind$unix(r1, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e)
getsockname$packet(r1, 0x0, 0x0)

1.665933966s ago: executing program 2 (id=272):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="06000000040000000800000008"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x14, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @lirc_mode2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
r2 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bind$bt_hci(r2, &(0x7f0000000000)={0x1f, 0xffff, 0x3}, 0x6)
write$binfmt_misc(r2, &(0x7f0000000100), 0x6)

1.446204562s ago: executing program 2 (id=274):
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)=ANY=[@ANYBLOB="5c0000000206010100000000000000000000000005000100070000000900020073797a300000000014000780050015000000000008001240000000000d000300686173683a6e657400000000050005000a000000050004"], 0x5c}}, 0x0)
sendmsg$IPSET_CMD_DESTROY(r1, &(0x7f0000000240)={0x0, 0xffac, &(0x7f0000000380)={&(0x7f0000000280)=ANY=[@ANYBLOB="28000000030605000000000000000000000000000500010007"], 0x28}}, 0x0)

1.317576743s ago: executing program 4 (id=275):
r0 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000140)=@framed, &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r1 = socket$phonet_pipe(0x23, 0x5, 0x2)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'netdevsim0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f00000000c0)={r0, r2, 0x25, 0x0, @void}, 0x10)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000300)={0x6, 0x3, &(0x7f0000000240)=@framed, &(0x7f00000003c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', r2, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)

1.304025965s ago: executing program 0 (id=276):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)={{0x14}, [@NFT_MSG_NEWRULE={0x14, 0x6, 0xa, 0x409, 0x0, 0x0, {0x2}}], {0x14}}, 0x3c}}, 0x0)

1.253967401s ago: executing program 2 (id=277):
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x400c84, &(0x7f0000000340), 0x1, 0x786, &(0x7f0000001900)="$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")
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000900)=ANY=[@ANYBLOB="16000000000000000400000006"], 0x50)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000006c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0xfffffffc, 0x0, 0x0, 0x0, 0x12, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x43, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
creat(&(0x7f00000001c0)='./file0\x00', 0x2)

1.146797361s ago: executing program 0 (id=278):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
r1 = dup(r0)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001070000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000001900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x5, 0x400, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000800000000000000000000018110000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
setsockopt$inet_opts(r1, 0x0, 0x4, 0x0, 0x0)

1.07680526s ago: executing program 1 (id=279):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000580)={[{@stripe={'stripe', 0x3d, 0x3}}, {@noauto_da_alloc}, {@jqfmt_vfsold}, {@data_err_ignore}, {@noauto_da_alloc}, {@delalloc}, {@resuid}, {@oldalloc}, {@mb_optimize_scan}]}, 0xfc, 0x550, &(0x7f0000000b00)="$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")
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$fou(&(0x7f0000000080), 0xffffffffffffffff)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="1e0000000000000004000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffd, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r3}, 0x10)
sendmsg$FOU_CMD_ADD(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000180)=ANY=[@ANYBLOB="14000000", @ANYRES16=r1, @ANYBLOB="09020000f80050"], 0x14}}, 0x0)
rename(&(0x7f0000000180)='./file1\x00', &(0x7f00000001c0)='./bus\x00')
r4 = creat(&(0x7f0000000100)='./bus\x00', 0x0)
r5 = syz_genetlink_get_family_id$SEG6(&(0x7f00000004c0), r4)
sendmsg$SEG6_CMD_SETHMAC(r0, &(0x7f00000006c0)={&(0x7f0000000400)={0x10, 0x0, 0x0, 0x400000}, 0xc, &(0x7f0000000680)={&(0x7f0000000500)={0x54, r5, 0x200, 0x70bd27, 0x25dfdbff, {}, [@SEG6_ATTR_DST={0x14, 0x1, @private2={0xfc, 0x2, '\x00', 0x1}}, @SEG6_ATTR_ALGID={0x5, 0x6, 0xf3}, @SEG6_ATTR_DST={0x14, 0x1, @loopback}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0xfffffe01}, @SEG6_ATTR_DSTLEN={0x8, 0x2, 0xffff7763}]}, 0x54}, 0x1, 0x0, 0x0, 0x40001}, 0x0)
r6 = syz_genetlink_get_family_id$tipc2(&(0x7f0000000280), r4)
sendmsg$TIPC_NL_LINK_GET(r4, &(0x7f00000003c0)={&(0x7f0000000700)={0x10, 0x0, 0x0, 0x40}, 0xc, &(0x7f0000000380)={&(0x7f00000002c0)={0x30, r6, 0x400, 0x70bd25, 0x25dfdbfd, {}, [@TIPC_NLA_MON={0x1c, 0x9, 0x0, 0x1, [@TIPC_NLA_MON_ACTIVATION_THRESHOLD={0x8, 0x1, 0x8}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x7}, @TIPC_NLA_MON_REF={0x8, 0x2, 0x654}]}]}, 0x77}, 0x1, 0x0, 0x0, 0x4000814}, 0x14008090)
r7 = open(&(0x7f0000000780)='./bus\x00', 0x14507e, 0x0)
mmap(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x7ffffe, 0x4002011, r7, 0x0)
fallocate(r4, 0x0, 0x0, 0x1000f4)
io_setup(0x7, &(0x7f00000000c0)=<r8=>0x0)
io_submit(r8, 0x2, &(0x7f0000001d00)=[&(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, r7, &(0x7f0000000000)="96", 0xfe00}, &(0x7f0000000040)={0x0, 0x0, 0x41, 0x0, 0x0, 0xffffffffffffffff, 0x0}])
r9 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_cpus\x00', 0x275a, 0x0)
fcntl$lock(r9, 0x25, &(0x7f0000000340)={0x0, 0x0, 0x10080000f})
fcntl$lock(r9, 0x25, &(0x7f0000000180))
r10 = open(&(0x7f0000001780)='./bus\x00', 0x64842, 0x0)
pwritev2(r10, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x3000}], 0x1, 0x7800, 0x0, 0x3)

945.78438ms ago: executing program 0 (id=280):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r0}, 0x4)
r1 = socket$nl_generic(0x10, 0x3, 0x10)
r2 = syz_genetlink_get_family_id$tipc(&(0x7f0000000040), 0xffffffffffffffff)
sendmsg$TIPC_CMD_SHOW_NAME_TABLE(r1, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000080)={0x30, r2, 0x800, 0x0, 0x25dfdbfd, {{}, {}, {0x14, 0x19, {0xfffffffe, 0x0, 0x8, 0xc1}}}}, 0x30}, 0x1, 0x0, 0x0, 0x4001}, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000c40)={0x11, 0xc, &(0x7f0000000240)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x28, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2, @void, @value}, 0x94)
r3 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_tcp_int(r3, 0x6, 0x13, 0x0, 0x0)
syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000180)='./file0\x00', 0x2804049, &(0x7f0000000780)=ANY=[@ANYRES16=0x0, @ANYRES16, @ANYRESOCT, @ANYRES8, @ANYBLOB="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"], 0x41, 0x304, &(0x7f0000001880)="$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")
r4 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18050000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r4, @ANYBLOB="0000000000000000b704000008000000850000009500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000002c0)='sys_enter\x00', r5}, 0x10)
setsockopt$inet6_tcp_TCP_ULP(r3, 0x6, 0x1f, 0x0, 0x0)
setsockopt$inet6_tcp_TLS_TX(r3, 0x11a, 0x1, 0x0, 0x0)
r6 = syz_clone(0x0, 0x0, 0xffffffffffffff9d, 0x0, 0x0, 0x0)
socket$inet6_tcp(0xa, 0x1, 0x0)
r7 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$sock_int(r7, 0x1, 0xf, 0x0, 0x0)
setsockopt$sock_int(0xffffffffffffffff, 0x1, 0xf, 0x0, 0x0)
r8 = syz_pidfd_open(r6, 0x0)
setns(r8, 0x20000)

851.548132ms ago: executing program 4 (id=281):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000030000000000000000000400b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b705000008000000850000006900000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0)
pipe2$9p(&(0x7f0000000240)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff}, 0x0)
write$P9_RVERSION(r2, &(0x7f00000002c0)=ANY=[@ANYBLOB="1500000065ffff018000000800395032303030"], 0x15)
r3 = dup(r2)
write$P9_RLERRORu(r3, &(0x7f00000000c0)=ANY=[@ANYBLOB="5300000007000046009d40edce82cd28e1e1", @ANYRESDEC=r3], 0x53)
mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f0000000080)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r3}, 0x2c, {[], [], 0x6b}})

700.531893ms ago: executing program 0 (id=282):
sendmsg$RDMA_NLDEV_CMD_STAT_GET(0xffffffffffffffff, 0x0, 0x4)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = syz_socket_connect_nvme_tcp()
sendto$inet_nvme_pdu(r0, &(0x7f00000005c0)=@data_c2h={{0x7, 0x2, 0x18, 0x7, 0x7}, 0x7, 0x3, 0x7, 0x1000, "6cc946e1"}, 0x80, 0x0, 0x0, 0x0)
r1 = socket$inet6_dccp(0xa, 0x6, 0x0)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r2 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_RES_MR_GET(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000001200)=ANY=[@ANYBLOB="20000000185b0100000000915b000000080001"], 0x20}, 0x1, 0xf00}, 0x10)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r1, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x8, 0x3, 0x550, 0x1c0, 0xffffffff, 0xffffffff, 0x0, 0xffffffff, 0x480, 0xffffffff, 0xffffffff, 0x480, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x81, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@uncond, 0x0, 0x298, 0x2c0, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x0, 0x1, 0x0, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x1c8, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@SET1={0x28, 'SET\x00', 0x1, {{0xffffffffffffffff}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5b0)
socket$netlink(0x10, 0x3, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r3 = socket$netlink(0x10, 0x3, 0x8000000004)
writev(r3, &(0x7f0000000140), 0x0)
r4 = syz_genetlink_get_family_id$nl80211(0x0, 0xffffffffffffffff)
sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000001c0)={0x2c, r4, 0x0, 0x70bd2d, 0x25dfdbfc, {{}, {@val={0x8}, @val={0xc, 0x99, {0x0, 0xa}}}}, [@NL80211_ATTR_REKEY_DATA={0x4}]}, 0x2c}, 0x1, 0x0, 0x0, 0x4000}, 0x4040)
r5 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x11, 0xb, &(0x7f00000006c0)=ANY=[@ANYBLOB="18000000000000000000000095980000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f0ffffffb702000005000000b703000000000000850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000000)='kfree\x00', r5}, 0x10)
r6 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r6, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000b40)=ANY=[@ANYBLOB="2800000010005fba00"/20, @ANYRES32=0x0, @ANYBLOB="80000200e180000008001b"], 0x28}}, 0x0)
r7 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r7, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=@newlink={0x30, 0x10, 0x801, 0x0, 0x0, {}, [@IFLA_MASTER={0x8}, @IFLA_GROUP={0x8}]}, 0x30}}, 0x0)

557.378724ms ago: executing program 4 (id=283):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000ac0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe79, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
openat$rfkill(0xffffffffffffff9c, &(0x7f0000000080), 0x44402, 0x0)

283.619007ms ago: executing program 4 (id=284):
r0 = syz_init_net_socket$802154_raw(0x24, 0x3, 0x0)
sendmsg$802154_raw(r0, &(0x7f00000004c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000000)="488e1d50554195ed204b954f3a7d0b4d7b67ade449bafc32a9774793535ca8739683432108fb7f5aa697c3c359aa91167122fa8674648eb4dd4ac3df4305c5af6bffa9750d3ba0fc6bb21535df91c49872e8b46eb4ab06fe1a981aa25461dff077ef65ca64c878f7856f4e7c00cbfe662d2b7d1c61eb169b24d283", 0x7b}, 0x1, 0x0, 0x0, 0x440c0}, 0x40840)

215.310819ms ago: executing program 4 (id=285):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a84000000090a01ecffffff00000000000000000008000a400000000008000640ffffff000900010073797a3000000000080005400000001c0900020073797a32000000000800034000000088"], 0xac}}, 0x0)

146.051206ms ago: executing program 2 (id=286):
syz_emit_ethernet(0x9a, &(0x7f0000000000)={@local, @empty, @void, {@ipv6={0x86dd, @udp={0x0, 0x6, "3000bb", 0x64, 0x2b, 0x0, @private2, @local, {[], {0x0, 0x0, 0x64, 0x0, @wg=@response={0x2, 0x0, 0x0, "82f63de64f6ce2ee11028289aefdb3449391a823213e6336516748a7949bb108", "402fa83b1d661c18462075368a186092", {"9ddeb8f71aa23d391b8fa99e9816af2d", "040876a663a86d97f46b9665cc18492b"}}}}}}}}, 0x0)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(0xffffffffffffffff, 0x29, 0x20, &(0x7f0000000000)={@mcast1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x400000000}, 0x20)
r0 = syz_io_uring_setup(0x7dca, &(0x7f0000000340), &(0x7f0000000140), &(0x7f0000000100))
r1 = io_uring_setup(0x2edd, &(0x7f0000000480)={0x0, 0x1, 0x2, 0x80003})
r2 = io_uring_register$IORING_REGISTER_PERSONALITY(r1, 0x9, 0x0, 0x0)
io_uring_register$IORING_UNREGISTER_PERSONALITY(r0, 0x17, 0x20000000, r2)

0s ago: executing program 4 (id=287):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000070000000000000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000880)={&(0x7f0000000a80)='kfree\x00', r0}, 0x10)
mknod$loop(&(0x7f0000000080)='./file0\x00', 0x100000000000600d, 0x1)
r1 = creat(&(0x7f00000000c0)='./file0\x00', 0xc9028ba210c11f88)
ioctl$BLKTRACESETUP(r1, 0xc0481273, &(0x7f0000000000)={'\x00', 0x8, 0x2, 0x80400, 0x2004, 0x9})

kernel console output (not intermixed with test programs):

Warning: Permanently added '10.128.1.11' (ED25519) to the list of known hosts.
[   60.797246][ T5836] cgroup: Unknown subsys name 'net'
[   60.968110][ T5836] cgroup: Unknown subsys name 'cpuset'
[   60.976131][ T5836] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   62.297521][ T5836] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   64.589573][ T5851] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   64.602407][ T5861] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   64.610577][ T5861] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[   64.648676][ T5867] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[   64.652070][ T5859] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[   64.665746][ T5859] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[   64.665923][ T5865] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[   64.673790][ T5859] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[   64.683033][ T5865] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[   64.696303][ T5865] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   64.701015][ T5859] Bluetooth: hci4: unexpected cc 0x0c03 length: 249 > 1
[   64.703481][ T5867] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[   64.712119][ T5859] Bluetooth: hci4: unexpected cc 0x1003 length: 249 > 9
[   64.721092][ T5867] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[   64.728331][ T5859] Bluetooth: hci4: unexpected cc 0x1001 length: 249 > 9
[   64.734347][ T5867] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[   64.739715][ T5859] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   64.755331][ T5859] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[   64.757575][ T5867] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[   64.762895][ T5859] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   64.770509][ T5867] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[   64.777847][ T5859] Bluetooth: hci4: unexpected cc 0x0c23 length: 249 > 4
[   64.783395][ T5866] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[   64.825352][ T5163] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[   64.832795][ T5163] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[   64.840476][ T5859] Bluetooth: hci4: unexpected cc 0x0c25 length: 249 > 3
[   64.842059][ T5858] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[   64.855464][ T5163] Bluetooth: hci4: unexpected cc 0x0c38 length: 249 > 2
[   64.858641][ T5858] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[   64.876767][ T5163] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[   65.269482][ T5853] chnl_net:caif_netlink_parms(): no params data found
[   65.279061][ T5848] chnl_net:caif_netlink_parms(): no params data found
[   65.390403][ T5862] chnl_net:caif_netlink_parms(): no params data found
[   65.452044][ T5847] chnl_net:caif_netlink_parms(): no params data found
[   65.482827][ T5853] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.491059][ T5853] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.499005][ T5853] bridge_slave_0: entered allmulticast mode
[   65.506163][ T5853] bridge_slave_0: entered promiscuous mode
[   65.517551][ T5848] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.524819][ T5848] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.532033][ T5848] bridge_slave_0: entered allmulticast mode
[   65.539125][ T5848] bridge_slave_0: entered promiscuous mode
[   65.559644][ T5853] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.568534][ T5853] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.576764][ T5853] bridge_slave_1: entered allmulticast mode
[   65.584048][ T5853] bridge_slave_1: entered promiscuous mode
[   65.601762][ T5846] chnl_net:caif_netlink_parms(): no params data found
[   65.612163][ T5848] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.619667][ T5848] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.626916][ T5848] bridge_slave_1: entered allmulticast mode
[   65.633494][ T5848] bridge_slave_1: entered promiscuous mode
[   65.709740][ T5848] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.737296][ T5853] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   65.750138][ T5853] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.768568][ T5848] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   65.863801][ T5862] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.871956][ T5862] bridge0: port 1(bridge_slave_0) entered disabled state
[   65.879716][ T5862] bridge_slave_0: entered allmulticast mode
[   65.887458][ T5862] bridge_slave_0: entered promiscuous mode
[   65.895963][ T5862] bridge0: port 2(bridge_slave_1) entered blocking state
[   65.903129][ T5862] bridge0: port 2(bridge_slave_1) entered disabled state
[   65.910492][ T5862] bridge_slave_1: entered allmulticast mode
[   65.917560][ T5862] bridge_slave_1: entered promiscuous mode
[   65.927792][ T5853] team0: Port device team_slave_0 added
[   65.941222][ T5848] team0: Port device team_slave_0 added
[   65.961167][ T5853] team0: Port device team_slave_1 added
[   65.979433][ T5848] team0: Port device team_slave_1 added
[   65.988470][ T5847] bridge0: port 1(bridge_slave_0) entered blocking state
[   65.995929][ T5847] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.003120][ T5847] bridge_slave_0: entered allmulticast mode
[   66.010752][ T5847] bridge_slave_0: entered promiscuous mode
[   66.049369][ T5847] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.057016][ T5847] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.064206][ T5847] bridge_slave_1: entered allmulticast mode
[   66.072455][ T5847] bridge_slave_1: entered promiscuous mode
[   66.080955][ T5862] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.099705][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.106874][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.133225][ T5853] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.145858][ T5846] bridge0: port 1(bridge_slave_0) entered blocking state
[   66.152988][ T5846] bridge0: port 1(bridge_slave_0) entered disabled state
[   66.160535][ T5846] bridge_slave_0: entered allmulticast mode
[   66.167556][ T5846] bridge_slave_0: entered promiscuous mode
[   66.175326][ T5846] bridge0: port 2(bridge_slave_1) entered blocking state
[   66.182982][ T5846] bridge0: port 2(bridge_slave_1) entered disabled state
[   66.190248][ T5846] bridge_slave_1: entered allmulticast mode
[   66.197712][ T5846] bridge_slave_1: entered promiscuous mode
[   66.220408][ T5862] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.238323][ T5853] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.245407][ T5853] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.272489][ T5853] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.298992][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.306434][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.332904][ T5848] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.359970][ T5847] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.391481][ T5848] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.398927][ T5848] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.425934][ T5848] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.442745][ T5847] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.456277][ T5862] team0: Port device team_slave_0 added
[   66.473566][ T5846] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   66.490714][ T5862] team0: Port device team_slave_1 added
[   66.512780][ T5846] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   66.535728][ T5847] team0: Port device team_slave_0 added
[   66.559586][ T5853] hsr_slave_0: entered promiscuous mode
[   66.566518][ T5853] hsr_slave_1: entered promiscuous mode
[   66.599129][ T5847] team0: Port device team_slave_1 added
[   66.605833][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.613054][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.642049][ T5862] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.655880][ T5862] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.662870][ T5862] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.689092][ T5862] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.717567][ T5846] team0: Port device team_slave_0 added
[   66.728151][ T5848] hsr_slave_0: entered promiscuous mode
[   66.734554][ T5848] hsr_slave_1: entered promiscuous mode
[   66.740927][ T5848] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.748962][ T5848] Cannot create hsr debugfs directory
[   66.777118][ T5846] team0: Port device team_slave_1 added
[   66.795943][ T5862] hsr_slave_0: entered promiscuous mode
[   66.802988][ T5862] hsr_slave_1: entered promiscuous mode
[   66.812257][ T5862] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   66.820034][ T5862] Cannot create hsr debugfs directory
[   66.834161][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.841994][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.868676][ T5847] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   66.868694][   T54] Bluetooth: hci3: command tx timeout
[   66.906455][ T5847] batman_adv: batadv0: Adding interface: batadv_slave_1
[   66.913430][ T5847] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   66.915604][   T54] Bluetooth: hci4: command tx timeout
[   66.940020][ T5847] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   66.945436][ T5861] Bluetooth: hci2: command tx timeout
[   66.961533][ T5163] Bluetooth: hci1: command tx timeout
[   66.961673][ T5858] Bluetooth: hci0: command tx timeout
[   66.990042][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_0
[   66.997398][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.023792][ T5846] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   67.036620][ T5846] batman_adv: batadv0: Adding interface: batadv_slave_1
[   67.043598][ T5846] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   67.069784][ T5846] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   67.164431][ T5847] hsr_slave_0: entered promiscuous mode
[   67.171131][ T5847] hsr_slave_1: entered promiscuous mode
[   67.177694][ T5847] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.185385][ T5847] Cannot create hsr debugfs directory
[   67.252306][ T5846] hsr_slave_0: entered promiscuous mode
[   67.259187][ T5846] hsr_slave_1: entered promiscuous mode
[   67.266301][ T5846] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   67.273898][ T5846] Cannot create hsr debugfs directory
[   67.515783][ T5853] netdevsim netdevsim1 netdevsim0: renamed from eth0
[   67.535918][ T5853] netdevsim netdevsim1 netdevsim1: renamed from eth1
[   67.547007][ T5853] netdevsim netdevsim1 netdevsim2: renamed from eth2
[   67.563848][ T5853] netdevsim netdevsim1 netdevsim3: renamed from eth3
[   67.607041][ T5848] netdevsim netdevsim4 netdevsim0: renamed from eth0
[   67.633508][ T5848] netdevsim netdevsim4 netdevsim1: renamed from eth1
[   67.643540][ T5848] netdevsim netdevsim4 netdevsim2: renamed from eth2
[   67.667429][ T5848] netdevsim netdevsim4 netdevsim3: renamed from eth3
[   67.711034][ T5847] netdevsim netdevsim2 netdevsim0: renamed from eth0
[   67.731823][ T5847] netdevsim netdevsim2 netdevsim1: renamed from eth1
[   67.741410][ T5847] netdevsim netdevsim2 netdevsim2: renamed from eth2
[   67.762656][ T5847] netdevsim netdevsim2 netdevsim3: renamed from eth3
[   67.811442][ T5862] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   67.838002][ T5862] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   67.862448][ T5853] 8021q: adding VLAN 0 to HW filter on device bond0
[   67.870585][ T5862] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   67.883993][ T5862] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   67.928006][ T5846] netdevsim netdevsim3 netdevsim0: renamed from eth0
[   67.937759][ T5846] netdevsim netdevsim3 netdevsim1: renamed from eth1
[   67.955644][ T5846] netdevsim netdevsim3 netdevsim2: renamed from eth2
[   67.966774][ T5846] netdevsim netdevsim3 netdevsim3: renamed from eth3
[   67.990177][ T5853] 8021q: adding VLAN 0 to HW filter on device team0
[   68.038722][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.046170][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.057782][ T2965] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.064929][ T2965] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.124205][ T5847] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.188709][ T5848] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.209067][ T5847] 8021q: adding VLAN 0 to HW filter on device team0
[   68.245798][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.252948][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.287340][ T5848] 8021q: adding VLAN 0 to HW filter on device team0
[   68.300296][ T5862] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.318010][ T1329] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.325174][ T1329] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.347174][ T2965] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.354253][ T2965] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.392150][ T2965] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.399354][ T2965] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.480063][ T5862] 8021q: adding VLAN 0 to HW filter on device team0
[   68.527706][ T1136] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.534892][ T1136] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.557828][ T1136] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.565010][ T1136] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.632430][ T5853] 8021q: adding VLAN 0 to HW filter on device batadv0
[   68.686273][ T5846] 8021q: adding VLAN 0 to HW filter on device bond0
[   68.775607][ T5848] 8021q: adding VLAN 0 to HW filter on device batadv0
[   68.790412][ T5846] 8021q: adding VLAN 0 to HW filter on device team0
[   68.848047][   T61] bridge0: port 1(bridge_slave_0) entered blocking state
[   68.855326][   T61] bridge0: port 1(bridge_slave_0) entered forwarding state
[   68.916229][ T5858] Bluetooth: hci3: command tx timeout
[   68.930908][   T61] bridge0: port 2(bridge_slave_1) entered blocking state
[   68.938128][   T61] bridge0: port 2(bridge_slave_1) entered forwarding state
[   68.959805][ T5853] veth0_vlan: entered promiscuous mode
[   68.995262][ T5858] Bluetooth: hci0: command tx timeout
[   69.000830][   T54] Bluetooth: hci4: command tx timeout
[   69.000859][ T5163] Bluetooth: hci1: command tx timeout
[   69.013718][ T5861] Bluetooth: hci2: command tx timeout
[   69.032159][ T5853] veth1_vlan: entered promiscuous mode
[   69.063371][ T5847] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.152510][ T5862] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.286691][ T5853] veth0_macvtap: entered promiscuous mode
[   69.307765][ T5847] veth0_vlan: entered promiscuous mode
[   69.320904][ T5848] veth0_vlan: entered promiscuous mode
[   69.340996][ T5853] veth1_macvtap: entered promiscuous mode
[   69.351562][ T5862] veth0_vlan: entered promiscuous mode
[   69.367954][ T5848] veth1_vlan: entered promiscuous mode
[   69.388008][ T5847] veth1_vlan: entered promiscuous mode
[   69.399638][ T5862] veth1_vlan: entered promiscuous mode
[   69.410123][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.432673][ T5853] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.460054][ T5853] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.469622][ T5853] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.480460][ T5853] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.490114][ T5853] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.520676][ T5848] veth0_macvtap: entered promiscuous mode
[   69.531142][ T5846] 8021q: adding VLAN 0 to HW filter on device batadv0
[   69.555457][ T5848] veth1_macvtap: entered promiscuous mode
[   69.579954][ T5847] veth0_macvtap: entered promiscuous mode
[   69.602174][ T5848] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.615819][ T5848] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.628893][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.647017][ T5847] veth1_macvtap: entered promiscuous mode
[   69.673329][ T5848] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   69.687485][ T5848] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.699589][ T5848] batman_adv: batadv0: Interface activated: batadv_slave_1
[   69.734090][ T5862] veth0_macvtap: entered promiscuous mode
[   69.756146][ T2965] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.757356][ T5848] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   69.764183][ T2965] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.779366][ T5848] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   69.790034][ T5848] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   69.801527][ T5848] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   69.841949][ T5862] veth1_macvtap: entered promiscuous mode
[   69.849073][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.860091][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.871909][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.883637][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.895322][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_0
[   69.921263][ T5846] veth0_vlan: entered promiscuous mode
[   69.938454][   T35] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   69.947665][   T35] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   69.953005][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.968150][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.978410][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   69.989113][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   69.999111][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.010031][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.021013][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.048681][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.064022][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.074338][ T5847] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.085174][ T5847] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.097779][ T5847] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.111998][ T5846] veth1_vlan: entered promiscuous mode
[   70.122946][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.139644][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.150634][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.161192][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.171093][ T5862] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.181583][ T5862] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.193448][ T5862] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.205437][ T5847] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.214190][ T5847] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.223565][ T5847] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.232823][ T5847] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.248537][ T5853] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   70.282891][ T5862] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.292030][ T5862] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.300897][ T5862] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.309821][ T5862] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.331709][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.340322][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.395598][ T5846] veth0_macvtap: entered promiscuous mode
[   70.424707][ T5846] veth1_macvtap: entered promiscuous mode
[   70.540970][ T2965] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.559974][ T2965] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.612290][ T2965] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.629432][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.643888][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.644336][ T2965] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.654744][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.673839][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.684583][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.695157][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.705228][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[   70.715839][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.727848][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_0
[   70.751719][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.753419][ T3549] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.762924][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.795748][ T3549] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   70.805272][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.823884][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.835154][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.846557][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.857000][ T5846] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[   70.867715][ T5846] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[   70.879249][ T5846] batman_adv: batadv0: Interface activated: batadv_slave_1
[   70.900456][ T5937] Zero length message leads to an empty skb
[   70.903648][ T5846] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   70.922075][ T5846] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   70.931226][ T5846] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   70.940356][ T5846] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   70.980725][ T1157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   70.990526][ T1157] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.009060][ T5861] Bluetooth: hci3: command tx timeout
[   71.056334][   T61] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.075744][ T5861] Bluetooth: hci4: command tx timeout
[   71.082055][ T5861] Bluetooth: hci0: command tx timeout
[   71.087660][ T5163] Bluetooth: hci2: command tx timeout
[   71.087689][   T54] Bluetooth: hci1: command tx timeout
[   71.093790][   T61] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.190726][   T61] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.220930][   T61] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.340794][ T1157] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   71.366280][ T5945] loop2: detected capacity change from 0 to 512
[   71.384924][ T1157] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   71.442316][ T5945] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[   71.534890][ T5945] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[   71.590811][ T5945] EXT4-fs (loop2): 1 truncate cleaned up
[   71.610470][   T29] audit: type=1326 audit(1730667146.558:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.632754][   T29] audit: type=1326 audit(1730667146.558:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.632862][ T5949] TCP: request_sock_subflow_v6: Possible SYN flooding on port [::]:20002. Sending cookies.
[   71.656683][   T29] audit: type=1326 audit(1730667146.558:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.688046][   T29] audit: type=1326 audit(1730667146.558:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.696915][ T5945] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   71.711188][   T29] audit: type=1326 audit(1730667146.558:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.789621][   T29] audit: type=1326 audit(1730667146.558:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.818629][   T29] audit: type=1326 audit(1730667146.558:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=49 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.843081][ T5952] tap0: tun_chr_ioctl cmd 2147767519
[   71.849537][ T1292] ieee802154 phy0 wpan0: encryption failed: -22
[   71.856384][ T1292] ieee802154 phy1 wpan1: encryption failed: -22
[   71.957671][   T29] audit: type=1326 audit(1730667146.558:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   71.980433][   T29] audit: type=1326 audit(1730667146.578:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=50 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   72.005000][   T29] audit: type=1326 audit(1730667146.578:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5948 comm="syz.1.10" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   72.211442][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   72.379050][ T5974] Driver unsupported XDP return value 0 on prog  (id 13) dev N/A, expect packet loss!
[   72.679120][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.686596][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.693681][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.700807][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.707931][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.715255][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.723547][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.735464][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.743904][    C0] IPv4: Oversized IP packet from 172.20.20.10
[   72.778819][ T5991] loop4: detected capacity change from 0 to 512
[   72.915936][ T5998] loop2: detected capacity change from 0 to 128
[   72.918261][ T5991] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.24: corrupted xattr block 255: invalid header
[   72.958759][ T5991] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117
[   72.985243][ T5998] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[   73.000164][ T5991] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.002259][ T6006] netlink: 152 bytes leftover after parsing attributes in process `syz.0.26'.
[   73.032253][ T5998] ext4 filesystem being mounted at /4/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[   73.039334][ T5991] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #2: comm syz.4.24: corrupted xattr block 255: invalid header
[   73.080645][   T54] Bluetooth: hci3: command tx timeout
[   73.155773][   T54] Bluetooth: hci0: command tx timeout
[   73.161664][   T54] Bluetooth: hci2: command tx timeout
[   73.168190][   T54] Bluetooth: hci4: command tx timeout
[   73.174594][ T5858] Bluetooth: hci1: command tx timeout
[   73.182207][ T5998] netlink: 8 bytes leftover after parsing attributes in process `syz.2.25'.
[   73.214409][ T5848] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.350888][ T6012] loop4: detected capacity change from 0 to 512
[   73.472855][ T6018] loop3: detected capacity change from 0 to 256
[   73.527385][ T6012] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   73.541905][ T6012] ext4 filesystem being mounted at /6/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   73.661380][ T5848] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   73.666504][ T5847] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[   73.767652][ T6022] loop4: detected capacity change from 0 to 512
[   73.973620][ T6022] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   74.055113][ T6022] EXT4-fs (loop4): 1 truncate cleaned up
[   74.061721][ T6022] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   74.080289][ T6022] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   74.486813][ T6042] loop2: detected capacity change from 0 to 256
[   74.487684][ T6045] netlink: 24 bytes leftover after parsing attributes in process `syz.3.41'.
[   74.547870][ T6042] FAT-fs (loop2): bogus number of FAT sectors
[   74.569689][ T6042] FAT-fs (loop2): Can't find a valid FAT filesystem
[   74.742663][ T6054] process 'syz.0.46' launched './file0' with NULL argv: empty string added
[   74.882393][ T6052] process '/newroot/9/file0' started with executable stack
[   74.958375][ T6055] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.010473][ T6058] loop1: detected capacity change from 0 to 736
[   75.152070][ T6069] loop2: detected capacity change from 0 to 512
[   75.177971][ T6055] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.222854][ T6070] pim6reg1: entered promiscuous mode
[   75.230170][ T6070] pim6reg1: entered allmulticast mode
[   75.233131][ T6069] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   75.287539][ T6069] ext4 filesystem being mounted at /10/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[   75.295666][ T6058] rock: directory entry would overflow storage
[   75.322780][ T6058] rock: sig=0x5850, size=36, remaining=14
[   75.360644][ T6055] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.502225][ T6055] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   75.602192][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   75.709945][ T6055] netdevsim netdevsim1 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[   75.763726][ T6055] netdevsim netdevsim1 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[   75.797918][ T6055] netdevsim netdevsim1 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[   75.833172][ T6055] netdevsim netdevsim1 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[   75.861150][ T6089] netlink: 'syz.2.57': attribute type 29 has an invalid length.
[   75.902057][ T6093] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   75.914416][ T6095] netlink: 'syz.2.57': attribute type 29 has an invalid length.
[   75.965053][ T6089] netlink: 500 bytes leftover after parsing attributes in process `syz.2.57'.
[   75.990494][ T6089] unsupported nla_type 40
[   76.183937][ T6101] program syz.4.64 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   76.368259][ T6112] loop0: detected capacity change from 0 to 2048
[   76.413669][ T6112] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   76.531320][ T6112] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   76.602260][ T6112] EXT4-fs (loop0): Remounting filesystem read-only
[   76.680206][ T6112] syz.0.69 (6112) used greatest stack depth: 18112 bytes left
[   76.707215][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   76.732006][ T6129] netlink: 28 bytes leftover after parsing attributes in process `syz.3.75'.
[   77.190826][   T29] kauditd_printk_skb: 71 callbacks suppressed
[   77.190844][   T29] audit: type=1326 audit(1730667152.138:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   77.374589][   T29] audit: type=1326 audit(1730667152.168:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   77.423938][   T29] audit: type=1326 audit(1730667152.208:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="syz.4.79" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   77.466424][   T29] audit: type=1326 audit(1730667152.208:86): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   77.641505][ T6109] syz.1.68: vmalloc error: size 2101248, failed to allocated page array size 4104, mode:0xdc2(GFP_KERNEL|__GFP_HIGHMEM|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[   77.659886][ T6109] CPU: 1 UID: 0 PID: 6109 Comm: syz.1.68 Not tainted 6.12.0-rc5-next-20241101-syzkaller #0
[   77.669902][ T6109] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   77.680061][ T6109] Call Trace:
[   77.683360][ T6109]  <TASK>
[   77.686310][ T6109]  dump_stack_lvl+0x241/0x360
[   77.691045][ T6109]  ? __pfx_dump_stack_lvl+0x10/0x10
[   77.696275][ T6109]  ? __pfx__printk+0x10/0x10
[   77.700896][ T6109]  ? cpuset_print_current_mems_allowed+0x1f/0x350
[   77.707356][ T6109]  ? cpuset_print_current_mems_allowed+0x31e/0x350
[   77.713924][ T6109]  warn_alloc+0x278/0x410
[   77.718297][ T6109]  ? __pfx_warn_alloc+0x10/0x10
[   77.723214][ T6109]  ? hash_netiface_create+0x356/0x1040
[   77.728736][ T6109]  ? __get_vm_area_node+0x1c8/0x2d0
[   77.733977][ T6109]  ? __get_vm_area_node+0x25c/0x2d0
[   77.739214][ T6109]  __vmalloc_node_range_noprof+0x62f/0x1380
[   77.745138][ T6109]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   77.751558][ T6109]  ? hash_netiface_create+0x356/0x1040
[   77.757025][ T6109]  ? __get_vm_area_node+0x1c8/0x2d0
[   77.762231][ T6109]  ? __get_vm_area_node+0x25c/0x2d0
[   77.767519][ T6109]  __vmalloc_node_range_noprof+0x53a/0x1380
[   77.773418][ T6109]  ? hash_netiface_create+0x356/0x1040
[   77.778904][ T6109]  ? __pfx___alloc_pages_noprof+0x10/0x10
[   77.784660][ T6109]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[   77.791001][ T6109]  ? rcu_is_watching+0x15/0xb0
[   77.795773][ T6109]  ? trace_kmalloc+0x1f/0xd0
[   77.800361][ T6109]  ? __kmalloc_node_noprof+0x2ad/0x4d0
[   77.805846][ T6109]  ? __kvmalloc_node_noprof+0x72/0x190
[   77.811320][ T6109]  __kvmalloc_node_noprof+0x142/0x190
[   77.816703][ T6109]  ? hash_netiface_create+0x356/0x1040
[   77.822163][ T6109]  hash_netiface_create+0x356/0x1040
[   77.827466][ T6109]  ? __pfx_hash_netiface_create+0x10/0x10
[   77.833183][ T6109]  ip_set_create+0xa5c/0x1900
[   77.837867][ T6109]  ? ip_set_create+0x45e/0x1900
[   77.842726][ T6109]  ? __pfx_ip_set_create+0x10/0x10
[   77.847879][ T6109]  ? nfnetlink_rcv_msg+0x225/0x1180
[   77.853082][ T6109]  nfnetlink_rcv_msg+0xbec/0x1180
[   77.858125][ T6109]  ? nfnetlink_rcv_msg+0x225/0x1180
[   77.863377][ T6109]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   77.868849][ T6109]  ? stack_trace_save+0x118/0x1d0
[   77.873896][ T6109]  ? dev_hard_start_xmit+0x27a/0x7e0
[   77.879185][ T6109]  ? __dev_queue_xmit+0x1b56/0x3f30
[   77.884383][ T6109]  ? __netlink_deliver_tap+0x54d/0x7c0
[   77.889848][ T6109]  ? netlink_deliver_tap+0x19d/0x1b0
[   77.895133][ T6109]  ? netlink_unicast+0x7c4/0x990
[   77.900087][ T6109]  ? netlink_sendmsg+0x8e4/0xcb0
[   77.905052][ T6109]  ? __sock_sendmsg+0x221/0x270
[   77.909914][ T6109]  ? ____sys_sendmsg+0x52a/0x7e0
[   77.914857][ T6109]  ? __sys_sendmsg+0x292/0x380
[   77.919637][ T6109]  netlink_rcv_skb+0x1e3/0x430
[   77.924404][ T6109]  ? __pfx_nfnetlink_rcv_msg+0x10/0x10
[   77.929911][ T6109]  ? __pfx_netlink_rcv_skb+0x10/0x10
[   77.935260][ T6109]  ? apparmor_capable+0x13b/0x1b0
[   77.940662][ T6109]  ? bpf_lsm_capable+0x9/0x10
[   77.945355][ T6109]  ? security_capable+0x7e/0x2d0
[   77.950391][ T6109]  nfnetlink_rcv+0x297/0x2ab0
[   77.955090][ T6109]  ? __pfx___local_bh_enable_ip+0x10/0x10
[   77.960822][ T6109]  ? __dev_queue_xmit+0x2da/0x3f30
[   77.965958][ T6109]  ? __dev_queue_xmit+0x1758/0x3f30
[   77.971203][ T6109]  ? kasan_save_track+0x51/0x80
[   77.976072][ T6109]  ? do_syscall_64+0xf3/0x230
[   77.980750][ T6109]  ? __pfx_nfnetlink_rcv+0x10/0x10
[   77.985891][ T6109]  ? __dev_queue_xmit+0x2da/0x3f30
[   77.991039][ T6109]  ? __pfx___dev_queue_xmit+0x10/0x10
[   77.996436][ T6109]  ? ref_tracker_free+0x643/0x7e0
[   78.001468][ T6109]  ? __asan_memcpy+0x40/0x70
[   78.006064][ T6109]  ? __pfx_ref_tracker_free+0x10/0x10
[   78.011461][ T6109]  ? netlink_deliver_tap+0x2e/0x1b0
[   78.016714][ T6109]  ? skb_clone+0x240/0x390
[   78.021266][ T6109]  ? __pfx_lock_release+0x10/0x10
[   78.026303][ T6109]  ? __netlink_deliver_tap+0x77e/0x7c0
[   78.031784][ T6109]  ? netlink_deliver_tap+0x2e/0x1b0
[   78.036989][ T6109]  netlink_unicast+0x7f6/0x990
[   78.041766][ T6109]  ? __pfx_netlink_unicast+0x10/0x10
[   78.047056][ T6109]  ? __virt_addr_valid+0x183/0x530
[   78.052177][ T6109]  ? __check_object_size+0x48e/0x900
[   78.057555][ T6109]  netlink_sendmsg+0x8e4/0xcb0
[   78.062343][ T6109]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.067642][ T6109]  ? aa_sock_msg_perm+0x91/0x160
[   78.072585][ T6109]  ? __pfx_netlink_sendmsg+0x10/0x10
[   78.077870][ T6109]  __sock_sendmsg+0x221/0x270
[   78.082551][ T6109]  ____sys_sendmsg+0x52a/0x7e0
[   78.087325][ T6109]  ? __pfx_____sys_sendmsg+0x10/0x10
[   78.092613][ T6109]  ? __fget_files+0x2a/0x410
[   78.097210][ T6109]  ? __fget_files+0x2a/0x410
[   78.101807][ T6109]  __sys_sendmsg+0x292/0x380
[   78.106402][ T6109]  ? __pfx___sys_sendmsg+0x10/0x10
[   78.111551][ T6109]  ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10
[   78.117888][ T6109]  ? do_syscall_64+0x100/0x230
[   78.122658][ T6109]  ? do_syscall_64+0xb6/0x230
[   78.127345][ T6109]  do_syscall_64+0xf3/0x230
[   78.131851][ T6109]  ? clear_bhb_loop+0x35/0x90
[   78.136530][ T6109]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   78.142436][ T6109] RIP: 0033:0x7fbf52d7e719
[   78.146891][ T6109] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   78.166504][ T6109] RSP: 002b:00007fbf511f6038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[   78.174928][ T6109] RAX: ffffffffffffffda RBX: 00007fbf52f35f80 RCX: 00007fbf52d7e719
[   78.182917][ T6109] RDX: 0000000000000000 RSI: 0000000020000040 RDI: 0000000000000004
[   78.191075][ T6109] RBP: 00007fbf52df132e R08: 0000000000000000 R09: 0000000000000000
[   78.199070][ T6109] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   78.207052][ T6109] R13: 0000000000000000 R14: 00007fbf52f35f80 R15: 00007ffc44c3c628
[   78.215036][ T6109]  </TASK>
[   78.218123][   T29] audit: type=1326 audit(1730667152.208:87): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   78.222757][ T6109] Mem-Info:
[   78.243107][ T6109] active_anon:4626 inactive_anon:0 isolated_anon:0
[   78.243107][ T6109]  active_file:786 inactive_file:37907 isolated_file:0
[   78.243107][ T6109]  unevictable:5896 dirty:1560 writeback:0
[   78.243107][ T6109]  slab_reclaimable:9878 slab_unreclaimable:97934
[   78.243107][ T6109]  mapped:20925 shmem:1429 pagetables:734
[   78.243107][ T6109]  sec_pagetables:0 bounce:0
[   78.243107][ T6109]  kernel_misc_reclaimable:0
[   78.243107][ T6109]  free:1316682 free_pcp:3865 free_cma:0
[   78.263357][   T29] audit: type=1326 audit(1730667152.208:88): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   78.288769][ T6109] Node 0 active_anon:18504kB inactive_anon:0kB active_file:3144kB inactive_file:151560kB unevictable:22048kB isolated(anon):0kB isolated(file):0kB mapped:83700kB dirty:6240kB writeback:0kB shmem:4180kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11056kB pagetables:2936kB sec_pagetables:0kB all_unreclaimable? no
[   78.310068][   T29] audit: type=1326 audit(1730667152.208:89): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   78.310105][   T29] audit: type=1326 audit(1730667152.208:90): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   78.310133][   T29] audit: type=1326 audit(1730667152.218:91): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   78.310162][   T29] audit: type=1326 audit(1730667152.228:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6140 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f21f7d7e719 code=0x7ffc0000
[   78.432230][ T6109] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[   78.462917][ T6109] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[   78.490470][ T6109] lowmem_reserve[]: 0 2463 2464 0 0
[   78.496172][ T6109] Node 0 DMA32 free:1351128kB boost:0kB min:34184kB low:42728kB high:51272kB reserved_highatomic:0KB active_anon:18464kB inactive_anon:0kB active_file:2636kB inactive_file:150988kB unevictable:25860kB writepending:6240kB present:3129332kB managed:2550468kB mlocked:24428kB bounce:0kB free_pcp:7640kB local_pcp:6952kB free_cma:0kB
[   78.527143][ T6109] lowmem_reserve[]: 0 0 0 0 0
[   78.531909][ T6109] Node 0 Normal free:0kB boost:0kB min:8kB low:8kB high:8kB reserved_highatomic:0KB active_anon:40kB inactive_anon:0kB active_file:0kB inactive_file:572kB unevictable:0kB writepending:0kB present:1048580kB managed:620kB mlocked:0kB bounce:0kB free_pcp:8kB local_pcp:8kB free_cma:0kB
[   78.559320][ T6109] lowmem_reserve[]: 0 0 0 0 0
[   78.564095][ T6109] Node 1 Normal free:3904936kB boost:0kB min:55708kB low:69632kB high:83556kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:68kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:128kB local_pcp:128kB free_cma:0kB
[   78.593791][ T6109] lowmem_reserve[]: 0 0 0 0 0
[   78.598912][ T6109] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[   78.612379][ T6109] Node 0 DMA32: 2*4kB (ME) 3*8kB (ME) 3*16kB (ME) 26*32kB (UME) 11*64kB (UME) 0*128kB 2*256kB (UM) 2*512kB (UM) 2*1024kB (ME) 0*2048kB 328*4096kB (UM) = 1348688kB
[   78.629221][ T6109] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB
[   78.641144][ T6109] Node 1 Normal: 220*4kB (UME) 53*8kB (UME) 35*16kB (UME) 215*32kB (UME) 122*64kB (UME) 28*128kB (UME) 9*256kB (UM) 7*512kB (UM) 4*1024kB (UM) 2*2048kB (UE) 945*4096kB (UM) = 3904936kB
[   78.660538][ T6109] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   78.671087][ T6109] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   78.680822][ T6109] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[   78.690590][ T6109] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[   78.699952][ T6109] 41417 total pagecache pages
[   78.704804][ T6109] 0 pages in swap cache
[   78.708985][ T6109] Free swap  = 124996kB
[   78.713156][ T6109] Total swap = 124996kB
[   78.717619][ T6109] 2097051 pages RAM
[   78.721450][ T6109] 0 pages HighMem/MovableOnly
[   78.726220][ T6109] 427648 pages reserved
[   78.730467][ T6109] 0 pages cma reserved
[   80.105458][ T6178] net_ratelimit: 23 callbacks suppressed
[   80.105477][ T6178] TCP: request_sock_TCP: Possible SYN flooding on port 0.0.0.0:20002. Sending cookies.
[   80.131134][ T6177] sg_write: process 55 (syz.4.91) changed security contexts after opening file descriptor, this is not allowed.
[   80.226726][ T6177] program syz.4.91 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   80.282264][ T6182] netlink: 16 bytes leftover after parsing attributes in process `syz.1.94'.
[   80.291559][ T6182] netlink: 228 bytes leftover after parsing attributes in process `syz.1.94'.
[   80.357668][ T6182] netlink: 8 bytes leftover after parsing attributes in process `syz.1.94'.
[   81.151187][ T6213] netlink: 20 bytes leftover after parsing attributes in process `syz.0.105'.
[   81.240868][ T6216] program syz.1.107 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   81.369253][ T6223] loop0: detected capacity change from 0 to 512
[   81.441908][ T6223] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[   81.492690][ T6223] EXT4-fs (loop0): warning: checktime reached, running e2fsck is recommended
[   81.567563][ T6223] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a842c11c, mo2=0002]
[   81.575821][ T6223] System zones: 0-2, 18-18, 34-34
[   81.582265][ T6223] EXT4-fs error (device loop0): ext4_orphan_get:1414: comm syz.0.109: bad orphan inode 15
[   81.604898][ T6223] ext4_test_bit(bit=14, block=18) = 1
[   81.610207][ T6233] netlink: 16 bytes leftover after parsing attributes in process `syz.3.115'.
[   81.624124][ T6223] is_bad_inode(inode)=0
[   81.648989][ T6223] NEXT_ORPHAN(inode)=2264924160
[   81.653975][ T6223] max_ino=32
[   81.672770][ T6223] i_nlink=0
[   81.676678][ T6223] EXT4-fs warning (device loop0): ext4_update_dynamic_rev:1138: updating to rev 1 because of new feature flag, running e2fsck is recommended
[   81.706887][ T6223] EXT4-fs error (device loop0): ext4_validate_block_bitmap:441: comm syz.0.109: bg 0: block 80: padding at end of block bitmap is not set
[   81.723683][ T6223] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6550: Corrupt filesystem
[   81.759834][ T6242] loop4: detected capacity change from 0 to 512
[   81.761429][ T6223] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   81.827270][ T6242] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[   81.875380][ T6238] netlink: 12 bytes leftover after parsing attributes in process `syz.1.116'.
[   81.882743][ T6245] program syz.2.120 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   81.923632][ T6242] EXT4-fs warning (device loop4): ext4_expand_extra_isize_ea:2863: Unable to expand inode 15. Delete some EAs or run e2fsck.
[   81.939653][ T6242] EXT4-fs (loop4): 1 truncate cleaned up
[   81.955568][ T6242] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   82.070235][ T1203] cfg80211: failed to load regulatory.db
[   82.169897][ T5862] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.240508][ T5848] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   82.373051][   T29] kauditd_printk_skb: 19 callbacks suppressed
[   82.373067][   T29] audit: type=1326 audit(1730667157.318:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   82.473458][   T29] audit: type=1326 audit(1730667157.368:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   82.535083][ T6269] syz.0.131[6269] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.535194][ T6269] syz.0.131[6269] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.561163][   T29] audit: type=1326 audit(1730667157.378:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   82.595241][ T6269] syz.0.131[6269] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   82.615449][ T6272] program syz.1.132 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   82.625783][ T6269] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[   82.681733][   T29] audit: type=1326 audit(1730667157.378:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   82.771917][   T29] audit: type=1326 audit(1730667157.378:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   82.871610][ T6284] loop4: detected capacity change from 0 to 256
[   82.889369][   T29] audit: type=1326 audit(1730667157.378:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   82.934960][   T29] audit: type=1326 audit(1730667157.378:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   82.973032][ T6286] loop2: detected capacity change from 0 to 128
[   82.974801][   T29] audit: type=1326 audit(1730667157.378:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   83.020269][ T6287] netem: unknown loss type 0
[   83.025560][ T6287] netem: change failed
[   83.114001][   T29] audit: type=1326 audit(1730667157.378:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   83.187940][   T29] audit: type=1326 audit(1730667157.378:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6260 comm="syz.1.128" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbf52d7e719 code=0x7ffc0000
[   83.339097][ T6302] program syz.3.145 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   83.567355][ T6310] loop3: detected capacity change from 0 to 164
[   83.629700][ T6310] =======================================================
[   83.629700][ T6310] WARNING: The mand mount option has been deprecated and
[   83.629700][ T6310]          and is ignored by this kernel. Remove the mand
[   83.629700][ T6310]          option from the mount to silence this warning.
[   83.629700][ T6310] =======================================================
[   83.722194][ T6314] netlink: 20 bytes leftover after parsing attributes in process `syz.1.151'.
[   83.757352][ T6310] Unable to read rock-ridge attributes
[   83.789612][ T6310] Unable to read rock-ridge attributes
[   83.810172][ T6318] netlink: 100 bytes leftover after parsing attributes in process `syz.1.151'.
[   83.843674][ T6310] iso9660: Corrupted directory entry in block 4 of inode 1792
[   83.895330][ T6321] futex_wake_op: syz.4.153 tries to shift op by -1; fix this program
[   84.007158][ T6325] loop2: detected capacity change from 0 to 1024
[   84.105719][ T6325] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   84.157861][ T6333] program syz.1.159 is using a deprecated SCSI ioctl, please convert it to SG_IO
[   84.234238][ T6325] EXT4-fs (loop2): Online defrag not supported with bigalloc
[   84.269029][ T6335] loop0: detected capacity change from 0 to 164
[   84.325604][ T6335] rock: corrupted directory entry. extent=41, offset=65536, size=8
[   84.359789][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   84.376384][ T6335] rock: corrupted directory entry. extent=41, offset=65536, size=8
[   84.400582][ T6342] loop4: detected capacity change from 0 to 128
[   84.804326][ T6359] netlink: 24 bytes leftover after parsing attributes in process `syz.3.171'.
[   85.634013][ T6400] loop0: detected capacity change from 0 to 2048
[   85.671784][ T6400] EXT4-fs: mb_optimize_scan should be set to 0 or 1.
[   85.676598][ T6404] serio: Serial port ptm0
[   86.397429][ T6409] dccp_close: ABORT with 32 bytes unread
[   86.822831][ T6425] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[   86.892893][ T6425] infiniband syz1: RDMA CMA: cma_listen_on_dev, error -98
[   87.317629][ T6435] loop3: detected capacity change from 0 to 2048
[   87.381522][ T6435] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.404550][   T29] kauditd_printk_skb: 96 callbacks suppressed
[   87.404569][   T29] audit: type=1326 audit(1730667162.348:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.433017][   T29] audit: type=1326 audit(1730667162.348:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.455357][   T29] audit: type=1326 audit(1730667162.348:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.478226][   T29] audit: type=1326 audit(1730667162.348:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.501536][   T29] audit: type=1326 audit(1730667162.348:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.524062][   T29] audit: type=1326 audit(1730667162.348:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.546649][   T29] audit: type=1326 audit(1730667162.348:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.570758][   T29] audit: type=1326 audit(1730667162.348:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.593228][   T29] audit: type=1326 audit(1730667162.348:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.604278][ T6442] loop1: detected capacity change from 0 to 1024
[   87.616702][   T29] audit: type=1326 audit(1730667162.348:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6398 comm="syz.0.189" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c0637e719 code=0x7ffc0000
[   87.651590][   T35] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[   87.671740][ T6442] EXT4-fs (loop1): stripe (5) is not aligned with cluster size (16), stripe is disabled
[   87.695665][   T35] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 32 with error 28
[   87.716103][   T35] EXT4-fs (loop3): This should not happen!! Data will be lost
[   87.716103][   T35] 
[   87.727706][ T6442] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   87.746756][   T35] EXT4-fs (loop3): Total free blocks count 0
[   87.768423][   T35] EXT4-fs (loop3): Free/Dirty block details
[   87.791354][   T35] EXT4-fs (loop3): free_blocks=2415919104
[   87.823703][   T35] EXT4-fs (loop3): dirty_blocks=32
[   87.835974][   T35] EXT4-fs (loop3): Block reservation details
[   87.842002][   T35] EXT4-fs (loop3): i_reserved_data_blocks=2
[   87.865948][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   87.899039][ T5846] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.091543][ T6457] loop1: detected capacity change from 0 to 512
[   88.149657][ T6457] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   88.203281][ T6457] ext4 filesystem being mounted at /35/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   88.355709][ T6467] netlink: 44 bytes leftover after parsing attributes in process `syz.2.212'.
[   88.399158][ T6467] netlink: 44 bytes leftover after parsing attributes in process `syz.2.212'.
[   88.534963][ T6478] debugfs: Directory 'ttyS3' with parent 'caif_serial' already present!
[   88.599236][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   88.939078][ T6500] IPv6: NLM_F_CREATE should be specified when creating new route
[   90.197847][ T6529] vhci_hcd vhci_hcd.0: pdev(3) rhport(0) sockfd(3)
[   90.204777][ T6529] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[   90.343324][ T6529] vhci_hcd vhci_hcd.0: Device attached
[   90.426389][ T6543] IPVS: sync thread started: state = MASTER, mcast_ifn = ip6gre0, syncid = 0, id = 0
[   90.517464][ T5941] vhci_hcd: vhci_device speed not set
[   90.597452][ T5941] usb 39-1: new full-speed USB device number 2 using vhci_hcd
[   90.872535][ T6530] vhci_hcd: connection reset by peer
[   90.942873][ T3549] vhci_hcd: stop threads
[   90.967625][ T3549] vhci_hcd: release socket
[   90.997870][ T3549] vhci_hcd: disconnect device
[   91.230679][ T6554] loop4: detected capacity change from 0 to 164
[   91.268572][ T6554] iso9660: Corrupted directory entry in block 4 of inode 1792
[   91.325505][ T6562] netlink: 32 bytes leftover after parsing attributes in process `syz.2.252'.
[   91.788069][ T6576] loop3: detected capacity change from 0 to 1024
[   91.796779][ T6576] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[   91.819562][ T6576] EXT4-fs (loop3): revision level too high, forcing read-only mode
[   91.828200][ T6576] EXT4-fs (loop3): orphan cleanup on readonly fs
[   91.861844][ T6576] EXT4-fs error (device loop3): ext4_map_blocks:705: inode #3: block 3: comm syz.3.254: lblock 3 mapped to illegal pblock 3 (length 1)
[   91.965411][ T6583] loop4: detected capacity change from 0 to 512
[   91.991082][ T6583] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem
[   92.022318][ T6583] EXT4-fs (loop4): orphan cleanup on readonly fs
[   92.043481][ T6583] EXT4-fs error (device loop4): ext4_orphan_get:1414: comm syz.4.261: bad orphan inode 15
[   92.056120][ T6583] ext4_test_bit(bit=14, block=18) = 1
[   92.061722][ T6583] is_bad_inode(inode)=0
[   92.066802][ T6583] NEXT_ORPHAN(inode)=1023
[   92.072768][ T6583] max_ino=32
[   92.077701][ T6583] i_nlink=0
[   92.084308][ T6583] EXT4-fs error (device loop4): ext4_xattr_delete_inode:2977: inode #15: comm syz.4.261: corrupted xattr block 19: e_value size too large
[   92.103468][ T6583] EXT4-fs warning (device loop4): ext4_evict_inode:276: xattr delete (err -117)
[   92.115425][ T6583] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[   92.135272][ T6576] EXT4-fs error (device loop3): ext4_acquire_dquot:6887: comm syz.3.254: Failed to acquire dquot type 0
[   92.155397][ T6576] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 3: comm syz.3.254: lblock 3 mapped to illegal pblock 3 (length 1)
[   92.170138][ T6576] EXT4-fs error (device loop3): ext4_acquire_dquot:6887: comm syz.3.254: Failed to acquire dquot type 0
[   92.184293][ T6576] EXT4-fs error (device loop3): ext4_free_blocks:6589: comm syz.3.254: Freeing blocks not in datazone - block = 0, count = 4096
[   92.200065][ T6576] EXT4-fs error (device loop3): ext4_map_blocks:671: inode #3: block 3: comm syz.3.254: lblock 3 mapped to illegal pblock 3 (length 1)
[   92.220323][ T6576] EXT4-fs error (device loop3): ext4_acquire_dquot:6887: comm syz.3.254: Failed to acquire dquot type 0
[   92.232091][ T6576] EXT4-fs (loop3): 1 orphan inode deleted
[   92.309783][ T5848] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.359806][ T6584] ebtables: ebtables: counters copy to user failed while replacing table
[   92.609294][ T6596] pim6reg1: entered promiscuous mode
[   92.624138][ T6596] pim6reg1: entered allmulticast mode
[   93.171463][ T6611] pim6reg1: entered promiscuous mode
[   93.187378][ T6611] pim6reg1: entered allmulticast mode
[   93.263091][ T6615] netlink: 12 bytes leftover after parsing attributes in process `syz.2.274'.
[   93.524451][ T6622] loop2: detected capacity change from 0 to 2048
[   93.698619][ T6628] loop1: detected capacity change from 0 to 1024
[   93.739931][ T6628] EXT4-fs: Ignoring removed oldalloc option
[   93.778472][ T6628] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[   93.904150][ T6635] 9pnet: p9_errstr2errno: server reported unknown error ‌@يخ‚ح(لل00000000000000000007
[   94.098629][ T6622] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.170447][ T6628] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   94.242568][   T29] kauditd_printk_skb: 19 callbacks suppressed
[   94.242585][   T29] audit: type=1800 audit(1730667169.188:242): pid=6628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.279" name="bus" dev="loop1" ino=15 res=0 errno=0
[   94.318227][   T29] audit: type=1800 audit(1730667169.228:243): pid=6628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.279" name="bus" dev="loop1" ino=15 res=0 errno=0
[   94.319530][ T6576] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   94.367971][ T6576] infiniband sy{0: RDMA CMA: cma_listen_on_dev, error -98
[   94.417026][ T6641] Cannot find del_set index 0 as target
[   94.431282][ T6646] ieee802154 phy0 wpan0: encryption failed: -90
[   94.488563][ T6649] netlink: 56 bytes leftover after parsing attributes in process `syz.4.285'.
[   94.515714][   T29] audit: type=1800 audit(1730667169.448:244): pid=6628 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.279" name="bus" dev="loop1" ino=15 res=0 errno=0
[   94.597092][ T5847] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   94.735944][ T6651] 
[   94.738322][ T6651] ======================================================
[   94.745353][ T6651] WARNING: possible circular locking dependency detected
[   94.752442][ T6651] 6.12.0-rc5-next-20241101-syzkaller #0 Not tainted
[   94.759120][ T6651] ------------------------------------------------------
[   94.766150][ T6651] syz.4.287/6651 is trying to acquire lock:
[   94.772036][ T6651] ffff8880659aa9e0 (&mm->mmap_lock){++++}-{4:4}, at: __might_fault+0xaa/0x120
[   94.780921][ T6651] 
[   94.780921][ T6651] but task is already holding lock:
[   94.788388][ T6651] ffff8881433f4320 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_ioctl+0xdd/0x9a0
[   94.797721][ T6651] 
[   94.797721][ T6651] which lock already depends on the new lock.
[   94.797721][ T6651] 
[   94.808127][ T6651] 
[   94.808127][ T6651] the existing dependency chain (in reverse order) is:
[   94.817140][ T6651] 
[   94.817140][ T6651] -> #3 (&q->debugfs_mutex){+.+.}-{4:4}:
[   94.824976][ T6651]        lock_acquire+0x1ed/0x550
[   94.830022][ T6651]        __mutex_lock+0x1ac/0xee0
[   94.835054][ T6651]        blk_mq_init_sched+0x3fa/0x830
[   94.840516][ T6651]        elevator_init_mq+0x1d8/0x2d0
[   94.845990][ T6651]        add_disk_fwnode+0x10d/0xf80
[   94.851291][ T6651]        sd_probe+0xba6/0x1100
[   94.856053][ T6651]        really_probe+0x2b8/0xad0
[   94.861077][ T6651]        __driver_probe_device+0x1a2/0x390
[   94.866879][ T6651]        driver_probe_device+0x50/0x430
[   94.872421][ T6651]        __device_attach_driver+0x2d6/0x530
[   94.878312][ T6651]        bus_for_each_drv+0x24e/0x2e0
[   94.883679][ T6651]        __device_attach_async_helper+0x22d/0x300
[   94.890091][ T6651]        async_run_entry_fn+0xa8/0x420
[   94.895561][ T6651]        process_scheduled_works+0xa63/0x1850
[   94.901631][ T6651]        worker_thread+0x870/0xd30
[   94.906740][ T6651]        kthread+0x2f0/0x390
[   94.911414][ T6651]        ret_from_fork+0x4b/0x80
[   94.916341][ T6651]        ret_from_fork_asm+0x1a/0x30
[   94.921626][ T6651] 
[   94.921626][ T6651] -> #2 (&q->q_usage_counter(io)#66){++++}-{0:0}:
[   94.930233][ T6651]        lock_acquire+0x1ed/0x550
[   94.935247][ T6651]        blk_mq_submit_bio+0x1510/0x2490
[   94.940968][ T6651]        __submit_bio+0x2c2/0x560
[   94.946004][ T6651]        submit_bio_noacct_nocheck+0x4d3/0xe30
[   94.952159][ T6651]        ext4_bio_write_folio+0x123a/0x1d70
[   94.958047][ T6651]        mpage_submit_folio+0x1af/0x230
[   94.963588][ T6651]        ext4_do_writepages+0x1d1d/0x3d20
[   94.969304][ T6651]        ext4_writepages+0x213/0x3c0
[   94.974586][ T6651]        do_writepages+0x35d/0x870
[   94.979688][ T6651]        __writeback_single_inode+0x14f/0x10d0
[   94.985840][ T6651]        writeback_sb_inodes+0x80c/0x1370
[   94.991557][ T6651]        __writeback_inodes_wb+0x11b/0x260
[   94.997360][ T6651]        wb_writeback+0x42f/0xbd0
[   95.002386][ T6651]        wb_workfn+0xba1/0x1090
[   95.007226][ T6651]        process_scheduled_works+0xa63/0x1850
[   95.013288][ T6651]        worker_thread+0x870/0xd30
[   95.018394][ T6651]        kthread+0x2f0/0x390
[   95.023003][ T6651]        ret_from_fork+0x4b/0x80
[   95.027953][ T6651]        ret_from_fork_asm+0x1a/0x30
[   95.033250][ T6651] 
[   95.033250][ T6651] -> #1 (jbd2_handle){++++}-{0:0}:
[   95.040552][ T6651]        lock_acquire+0x1ed/0x550
[   95.045575][ T6651]        start_this_handle+0x1eb4/0x2110
[   95.051215][ T6651]        jbd2__journal_start+0x2da/0x5d0
[   95.056846][ T6651]        __ext4_journal_start_sb+0x239/0x600
[   95.062819][ T6651]        ext4_dirty_inode+0x92/0x110
[   95.068096][ T6651]        __mark_inode_dirty+0x2ee/0xe90
[   95.073638][ T6651]        touch_atime+0x413/0x690
[   95.078571][ T6651]        ext4_file_mmap+0x18c/0x540
[   95.083758][ T6651]        __mmap_region+0x2204/0x2cd0
[   95.089035][ T6651]        mmap_region+0x226/0x2c0
[   95.093963][ T6651]        do_mmap+0x8f0/0x1000
[   95.098634][ T6651]        vm_mmap_pgoff+0x214/0x430
[   95.103747][ T6651]        ksys_mmap_pgoff+0x4eb/0x720
[   95.109034][ T6651]        do_syscall_64+0xf3/0x230
[   95.114048][ T6651]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.120468][ T6651] 
[   95.120468][ T6651] -> #0 (&mm->mmap_lock){++++}-{4:4}:
[   95.128045][ T6651]        validate_chain+0x18ef/0x5920
[   95.133437][ T6651]        __lock_acquire+0x1397/0x2100
[   95.139001][ T6651]        lock_acquire+0x1ed/0x550
[   95.144031][ T6651]        __might_fault+0xc6/0x120
[   95.149066][ T6651]        _copy_from_user+0x2a/0xc0
[   95.154186][ T6651]        blk_trace_ioctl+0x1ad/0x9a0
[   95.159468][ T6651]        blkdev_ioctl+0x40c/0x6a0
[   95.164507][ T6651]        __se_sys_ioctl+0xf9/0x170
[   95.169612][ T6651]        do_syscall_64+0xf3/0x230
[   95.174630][ T6651]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.181129][ T6651] 
[   95.181129][ T6651] other info that might help us debug this:
[   95.181129][ T6651] 
[   95.191351][ T6651] Chain exists of:
[   95.191351][ T6651]   &mm->mmap_lock --> &q->q_usage_counter(io)#66 --> &q->debugfs_mutex
[   95.191351][ T6651] 
[   95.205442][ T6651]  Possible unsafe locking scenario:
[   95.205442][ T6651] 
[   95.212926][ T6651]        CPU0                    CPU1
[   95.218299][ T6651]        ----                    ----
[   95.223778][ T6651]   lock(&q->debugfs_mutex);
[   95.228383][ T6651]                                lock(&q->q_usage_counter(io)#66);
[   95.236281][ T6651]                                lock(&q->debugfs_mutex);
[   95.243388][ T6651]   rlock(&mm->mmap_lock);
[   95.247810][ T6651] 
[   95.247810][ T6651]  *** DEADLOCK ***
[   95.247810][ T6651] 
[   95.255946][ T6651] 1 lock held by syz.4.287/6651:
[   95.260894][ T6651]  #0: ffff8881433f4320 (&q->debugfs_mutex){+.+.}-{4:4}, at: blk_trace_ioctl+0xdd/0x9a0
[   95.270680][ T6651] 
[   95.270680][ T6651] stack backtrace:
[   95.276569][ T6651] CPU: 0 UID: 0 PID: 6651 Comm: syz.4.287 Not tainted 6.12.0-rc5-next-20241101-syzkaller #0
[   95.286625][ T6651] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[   95.296684][ T6651] Call Trace:
[   95.299958][ T6651]  <TASK>
[   95.302917][ T6651]  dump_stack_lvl+0x241/0x360
[   95.307601][ T6651]  ? __pfx_dump_stack_lvl+0x10/0x10
[   95.312792][ T6651]  ? __pfx__printk+0x10/0x10
[   95.317390][ T6651]  print_circular_bug+0x13a/0x1b0
[   95.322410][ T6651]  check_noncircular+0x36a/0x4a0
[   95.327344][ T6651]  ? __pfx_check_noncircular+0x10/0x10
[   95.332796][ T6651]  ? lockdep_lock+0x123/0x2b0
[   95.337658][ T6651]  validate_chain+0x18ef/0x5920
[   95.342504][ T6651]  ? is_bpf_text_address+0x26/0x2a0
[   95.347718][ T6651]  ? 0xffffffffa0001b58
[   95.351876][ T6651]  ? 0xffffffffa0001b58
[   95.356028][ T6651]  ? __pfx_validate_chain+0x10/0x10
[   95.361227][ T6651]  ? __pfx_stack_trace_consume_entry+0x10/0x10
[   95.367384][ T6651]  ? kernel_text_address+0xa7/0xe0
[   95.372489][ T6651]  ? mark_lock+0x9a/0x360
[   95.376815][ T6651]  ? __lock_acquire+0x1397/0x2100
[   95.381838][ T6651]  ? string+0x26a/0x2b0
[   95.385997][ T6651]  ? widen_string+0x3a/0x310
[   95.390583][ T6651]  ? string+0x26a/0x2b0
[   95.394738][ T6651]  ? bdev_name+0x2b1/0x3c0
[   95.399415][ T6651]  ? mark_lock+0x9a/0x360
[   95.403749][ T6651]  __lock_acquire+0x1397/0x2100
[   95.408603][ T6651]  lock_acquire+0x1ed/0x550
[   95.413095][ T6651]  ? __might_fault+0xaa/0x120
[   95.417771][ T6651]  ? __pfx_lock_acquire+0x10/0x10
[   95.422788][ T6651]  ? __pfx___might_resched+0x10/0x10
[   95.428072][ T6651]  ? snprintf+0xda/0x120
[   95.432309][ T6651]  ? __pfx___mutex_lock+0x10/0x10
[   95.437327][ T6651]  ? blk_trace_ioctl+0xec/0x9a0
[   95.442179][ T6651]  ? __pfx_snprintf+0x10/0x10
[   95.446855][ T6651]  ? __might_fault+0xaa/0x120
[   95.451539][ T6651]  __might_fault+0xc6/0x120
[   95.456046][ T6651]  ? __might_fault+0xaa/0x120
[   95.460826][ T6651]  _copy_from_user+0x2a/0xc0
[   95.465461][ T6651]  blk_trace_ioctl+0x1ad/0x9a0
[   95.470239][ T6651]  ? tomoyo_path_number_perm+0x6f9/0x860
[   95.475983][ T6651]  ? tomoyo_path_number_perm+0x206/0x860
[   95.481633][ T6651]  ? __pfx_blk_trace_ioctl+0x10/0x10
[   95.486930][ T6651]  ? __pfx_tomoyo_path_number_perm+0x10/0x10
[   95.492919][ T6651]  ? file_to_blk_mode+0xcc/0x140
[   95.497883][ T6651]  blkdev_ioctl+0x40c/0x6a0
[   95.502390][ T6651]  ? __pfx_blkdev_ioctl+0x10/0x10
[   95.507455][ T6651]  ? __pfx_blkdev_ioctl+0x10/0x10
[   95.512477][ T6651]  __se_sys_ioctl+0xf9/0x170
[   95.517068][ T6651]  do_syscall_64+0xf3/0x230
[   95.521570][ T6651]  ? clear_bhb_loop+0x35/0x90
[   95.526242][ T6651]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   95.532141][ T6651] RIP: 0033:0x7f21f7d7e719
[   95.536552][ T6651] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   95.556256][ T6651] RSP: 002b:00007f21f8b65038 EFLAGS: 00000246 ORIG_RAX: 0000000000000010
[   95.564683][ T6651] RAX: ffffffffffffffda RBX: 00007f21f7f35f80 RCX: 00007f21f7d7e719
[   95.572685][ T6651] RDX: 0000000020000000 RSI: 00000000c0481273 RDI: 0000000000000005
[   95.581170][ T6651] RBP: 00007f21f7df132e R08: 0000000000000000 R09: 0000000000000000
[   95.589314][ T6651] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   95.597283][ T6651] R13: 0000000000000000 R14: 00007f21f7f35f80 R15: 00007ffc2dbb0248
[   95.605254][ T6651]  </TASK>
[   95.656901][ T5846] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.674443][ T6644] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.682016][ T6644] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.716205][ T5941] vhci_hcd: vhci_device speed not set
[   95.756685][ T5853] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.779199][ T6644] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   95.798813][ T6644] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   95.876989][ T6644] netdevsim netdevsim0 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.888662][ T6644] netdevsim netdevsim0 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.898034][ T6644] netdevsim netdevsim0 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.910779][ T6644] netdevsim netdevsim0 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[   95.943401][ T6641] bridge_slave_0: left allmulticast mode
[   95.949312][ T6641] bridge_slave_0: left promiscuous mode
[   95.955134][ T6641] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.964328][ T6641] bridge_slave_1: left allmulticast mode
[   95.973065][ T6641] bridge_slave_1: left promiscuous mode
[   95.982981][ T6641] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.995400][ T6641] bond0: (slave bond_slave_0): Releasing backup interface
[   96.004109][ T6641] bond0: (slave bond_slave_1): Releasing backup interface
[   96.016143][ T6641] team0: Port device team_slave_0 removed
[   96.023306][ T6641] team0: Port device team_slave_1 removed
[   96.031783][ T6641] batman_adv: batadv0: Removing interface: batadv_slave_0
[   96.040268][ T6641] batman_adv: batadv0: Removing interface: batadv_slave_1