last executing test programs:

3m51.593428428s ago: executing program 2 (id=992):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
dup(0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(0xffffffffffffffff, 0xc0389423, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000300)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560aff820fffff5bab003a0000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x1)

3m48.035907435s ago: executing program 3 (id=1009):
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0x18, 0x200002b2, &(0x7f0000000040)=ANY=[@ANYBLOB="81ea24dff897d833917927ba669010b363a6557ebedaf70781327cc405bafee30645a62b802d61ea5d198432775d781d9b5e8d71f82e0b53fad53b948be9c5c838a83ddf86f29ad955cf8d4d494fa95fcf9e973e59ae7d2f2e8889d7f71f7925a5ee2b3af498c81171512e8007b2185be8efda9edee19af3cb888e5fe4b4ce2d099b22f9eeefbae8a010b87ef9f6ca622ca620eba266218c3e3ccac7f545cb4845ee4f8719919828628239019f"], &(0x7f0000000300)='syzkaller\x00', 0x87, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x80001}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
r0 = syz_init_net_socket$nfc_llcp(0x27, 0x2, 0x1)
r1 = dup(r0)
connect$inet(r1, &(0x7f0000000040)={0x27, 0x4e20, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x60)

3m47.651147056s ago: executing program 3 (id=1010):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b00000000", @ANYRES32=r2, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newlink={0x20, 0x10, 0x403, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, r2, 0xff7f}}, 0x20}}, 0x0)
getsockname$packet(0xffffffffffffffff, &(0x7f0000000100)={0x11, 0x0, <r4=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r4}]}, 0x3c}}, 0x0)

3m47.162658746s ago: executing program 3 (id=1012):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYRES16, @ANYRES32=r0, @ANYBLOB="00010000e180000408001b2de120b503a61defb16bfe2b28b40c22bb0646c3b55b181c6227ae42f76536baf8e7a0e3dee051979e5cc9583c937c1152e9ae3ed42b34dadbdbb69b85388e5e6d9e6edbf1269f437d64b6167b78b6c41210405f623b91118c1c0642fd9dc593ae3a2ac82ebe0d2fbae340167870f5e46668"], 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
socket$inet_sctp(0x2, 0x5, 0x84)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000080)=0x8)
timer_settime(0x0, 0x1, 0x0, 0x0)
r1 = open(0x0, 0x44000, 0x0)
dup3(r1, 0xffffffffffffffff, 0x0)
r2 = io_uring_setup(0x7538, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002700)=""/4096, 0x1a00}], 0x0, 0x11a}, 0x20)

3m46.423782065s ago: executing program 3 (id=1013):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000c0000004200000040"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r1}, 0x38)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x4, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="18000000000000000000000000000000181100", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500), 0x0, 0x2, r1}, 0x38)

3m44.550924957s ago: executing program 3 (id=1022):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000002c0)=ANY=[@ANYRES16, @ANYRES32=r0, @ANYBLOB="00010000e180000408001b2de120b503a61defb16bfe2b28b40c22bb0646c3b55b181c6227ae42f76536baf8e7a0e3dee051979e5cc9583c937c1152e9ae3ed42b34dadbdbb69b85388e5e6d9e6edbf1269f437d64b6167b78b6c41210405f623b91118c1c0642fd9dc593ae3a2ac82ebe0d2fbae340167870f5e46668"], 0x28}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, &(0x7f0000000000)={0x1, [0x0]}, &(0x7f0000000080)=0x8)
timer_settime(0x0, 0x1, 0x0, 0x0)
r1 = open(0x0, 0x44000, 0x0)
dup3(r1, 0xffffffffffffffff, 0x0)
r2 = io_uring_setup(0x7538, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r2, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r2, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002700)=""/4096, 0x1a00}], 0x0, 0x11a}, 0x20)

3m43.567565666s ago: executing program 3 (id=1025):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000180)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f0000000240)={'c', ' *:* ', 'wm\x00'}, 0x9)
openat$cgroup_devices(r0, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000800000000000000002c0000000000119078000000000000000000004e21001890780400"/58], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000845, 0x0, 0x0)
getpeername$inet6(r2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000400), 0x6001)

3m42.391297511s ago: executing program 2 (id=1027):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000020100008500000043"], 0x0, 0x200, 0x0, 0x0, 0x0, 0x2, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x200000}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000540)='inet_sock_set_state\x00', r1}, 0x10)
r2 = socket$inet6_sctp(0xa, 0x1, 0x84)
close(r2)

3m41.995630813s ago: executing program 2 (id=1030):
prlimit64(0x0, 0xe, 0x0, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r0 = getpid()
sched_setscheduler(r0, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="050000000c0000004200000040"], 0x50)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000080), &(0x7f0000000080), 0x1003, r1}, 0x38)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x248}, 0x0)
sched_setscheduler(0x0, 0x1, 0x0)
r2 = getpid()
sched_setaffinity(0x0, 0x4, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xffffe000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000840)=@abs={0x0, 0x0, 0x4e20}, 0x9)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
r5 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r5, @ANYBLOB="0000000000000000b702000003000000850000008600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_DELETE_BATCH(0x1b, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000500), 0x0, 0x2, r1}, 0x38)

3m40.533108951s ago: executing program 2 (id=1032):
r0 = socket$inet(0xa, 0x801, 0x84)
connect$inet(r0, &(0x7f0000004cc0)={0x2, 0x0, @remote={0xac, 0x14, 0xffffffffffffffff}}, 0x10)
listen(r0, 0x8)
r1 = accept4(r0, 0x0, 0x0, 0x0)
sendto$inet(r1, &(0x7f00000002c0)="cc", 0x1, 0x20040000, 0x0, 0x0)
setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(r1, 0x84, 0x7b, &(0x7f0000000140)={0x0, 0x1}, 0x8)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000540)={0x18, 0x5, &(0x7f00000000c0)=ANY=[@ANYBLOB="180000001400000000000000ff000000850000000e000000850000000700000095"], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x4, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x8000000}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000000)='kmem_cache_free\x00', r2}, 0x18)
close(r1)

3m40.211765317s ago: executing program 2 (id=1034):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
r1 = socket(0x2, 0x80805, 0x0)
getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r1, 0x84, 0x6f, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000380)}, 0x0)
getsockopt$inet_sctp_SCTP_MAX_BURST(r1, 0x84, 0x14, &(0x7f0000000000)=@assoc_value={<r2=>0x0}, &(0x7f0000001080)=0x4)
getsockopt$inet_sctp6_SCTP_STATUS(r0, 0x84, 0xe, &(0x7f0000000240)={r2, 0xa, 0x7, 0xb8a2, 0x5, 0x3, 0x40, 0x1, {0x0, @in6={{0xa, 0x4e22, 0x2aac, @mcast1, 0x3}}, 0x8, 0x8001, 0x80000001, 0x9, 0xffffff00}}, 0x0)

3m39.947927469s ago: executing program 2 (id=1036):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
dup(0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(0xffffffffffffffff, 0xc0389423, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000300)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560aff820fffff5bab003a0000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x1)

3m26.177233131s ago: executing program 32 (id=1025):
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff)
r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0)
r1 = openat$cgroup_devices(r0, &(0x7f0000000180)='devices.deny\x00', 0x2, 0x0)
write$cgroup_devices(r1, &(0x7f0000000240)={'c', ' *:* ', 'wm\x00'}, 0x9)
openat$cgroup_devices(r0, &(0x7f0000000100)='devices.allow\x00', 0x2, 0x0)
syz_emit_ethernet(0x3a, &(0x7f0000000180)=ANY=[@ANYBLOB="aaaaaaaaaaaa00000800000000000000002c0000000000119078000000000000000000004e21001890780400"/58], 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = socket$inet6_tcp(0xa, 0x1, 0x0)
sendto$inet6(r2, 0x0, 0x0, 0x20000845, 0x0, 0x0)
getpeername$inet6(r2, 0x0, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0a00000004000000fd0f000007"], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000180)='sched_switch\x00'}, 0x10)
openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000400), 0x6001)

3m24.866142847s ago: executing program 33 (id=1036):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000ff0f000007"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000400007b8af8ff00000000bfa200000000000007020000fcffffffb703000008000000b7040000000000008500000001000000"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000300)='sched_switch\x00', r1}, 0x10)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0xa, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
write$P9_RVERSION(0xffffffffffffffff, 0x0, 0x15)
dup(0xffffffffffffffff)
r2 = getpid()
sched_setscheduler(r2, 0x2, 0x0)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeea, 0x8031, 0xffffffffffffffff, 0x28f43000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000280)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
ioctl$BTRFS_IOC_INO_PATHS(0xffffffffffffffff, 0xc0389423, 0x0)
r5 = socket$netlink(0x10, 0x3, 0x4)
writev(r5, &(0x7f0000000300)=[{&(0x7f0000000080)="580000001400192340834b80040d8c560aff820fffff5bab003a0000002058000b4824ca945f6400940f6a0325010ebc000000000000008000f0fffeffe809005300fff5dd00000010000100030c100000000000224e0000", 0x58}], 0x1)

1m10.940708178s ago: executing program 4 (id=1654):
r0 = syz_open_dev$loop(&(0x7f0000000000), 0x8000000000000000, 0x40)
ioctl$BLKRAGET(r0, 0x1263, &(0x7f0000000040))

1m10.704006918s ago: executing program 4 (id=1655):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'dummy0\x00', <r2=>0x0})
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x25, 0x0, @void}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x5, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={r3, r4}, 0x5)

1m10.530036422s ago: executing program 4 (id=1656):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f00000000c0)='netlink_extack\x00', r0, 0x0, 0x3904}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0)
r1 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r1, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f00000002c0)="d80000001c0081064e81f782db44b9040a1d08040e00000000000aa1180002000600142603600e1208000f0000810401a8001605200001400200000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef52a985162756aa5e8d7ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43", 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x48090)

1m10.332043058s ago: executing program 4 (id=1658):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

1m10.161608421s ago: executing program 4 (id=1660):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0600000004000000990000000d"], 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000340)='kmem_cache_free\x00', r1, 0x0, 0xf7}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000200)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]})
fspick(0xffffffffffffffff, &(0x7f0000000480)='./mnt\x00', 0x1)

1m9.546508031s ago: executing program 4 (id=1663):
open(&(0x7f00009e1000)='./file0\x00', 0x149040, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

1m9.542782552s ago: executing program 0 (id=1664):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'dummy0\x00', <r2=>0x0})
r3 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x25, 0x0, @void}, 0x10)
r4 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x5, 0x0, &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, &(0x7f0000000140)={r3, r4}, 0x5)

1m9.298817581s ago: executing program 34 (id=1663):
open(&(0x7f00009e1000)='./file0\x00', 0x149040, 0x10)
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f0000000480)=ANY=[@ANYBLOB="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"], &(0x7f0000000380)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0xffffffffffffff22}, 0x2e)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1c, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x24, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
open_by_handle_at(0xffffffffffffff9c, &(0x7f00000000c0)=ANY=[], 0x200000000000000)

1m9.255694725s ago: executing program 0 (id=1666):
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b000000050000000004000001"], 0x50)
r0 = syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x0)
r1 = syz_open_dev$usbfs(&(0x7f0000000000), 0x20000007d, 0x0)
r2 = dup3(r0, r1, 0x0)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x1)
ioctl$MON_IOCG_STATS(r2, 0xc0109207, &(0x7f0000000180))

1m9.06497259s ago: executing program 0 (id=1668):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x100000b3, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x2, 0x8, 0xffffffff}]}, 0x10)

1m8.855324207s ago: executing program 0 (id=1669):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

1m8.643360234s ago: executing program 0 (id=1672):
syz_mount_image$vfat(&(0x7f0000000540), &(0x7f0000000280)='./bus\x00', 0x1200840, &(0x7f0000000100)=ANY=[@ANYBLOB="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"], 0x3, 0x37c, &(0x7f0000000ec0)="$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")
r0 = syz_open_dev$usbfs(&(0x7f0000000340), 0x76, 0x101341)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000000)='memory.events.local\x00', 0x275a, 0x0)
write$binfmt_misc(r1, 0x0, 0x0)
mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x1, 0x10012, r1, 0x0)
ioctl$USBDEVFS_IOCTL(r0, 0x80045515, &(0x7f0000000040)=@usbdevfs_connect)

1m6.676962433s ago: executing program 0 (id=1677):
r0 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x100, @loopback, 0xa3c}, {0xa, 0xfffe, 0xfffffffd, @dev, 0x4}, 0x1000, {[0x9, 0x0, 0xfffffffe, 0xfffffef9, 0x0, 0x1, 0x2, 0x4]}}, 0x5c)

1m6.305755523s ago: executing program 35 (id=1677):
r0 = socket$igmp6(0xa, 0x3, 0x3a)
setsockopt$MRT6_ADD_MFC(r0, 0x29, 0x22, &(0x7f0000000000)={{0xa, 0x0, 0x100, @loopback, 0xa3c}, {0xa, 0xfffe, 0xfffffffd, @dev, 0x4}, 0x1000, {[0x9, 0x0, 0xfffffffe, 0xfffffef9, 0x0, 0x1, 0x2, 0x4]}}, 0x5c)

41.33501755s ago: executing program 7 (id=1754):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000005c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000730000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = add_key$keyring(&(0x7f0000000540), &(0x7f0000000180)={'syz', 0x2}, 0x0, 0x0, 0xffffffffffffffff)
r2 = add_key$user(&(0x7f0000000080), &(0x7f0000000100)={'syz', 0x1}, &(0x7f00000003c0)="ae", 0x1, r1)
keyctl$KEYCTL_RESTRICT_KEYRING(0x1d, r1, &(0x7f0000000200)='asymmetric\x00', &(0x7f0000000000)=@keyring={'key_or_keyring:', r2})

40.571883692s ago: executing program 7 (id=1756):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$nl_netfilter(r0, &(0x7f00000011c0)={0x0, 0x0, &(0x7f0000001180)={&(0x7f0000001200)={0x14, 0xf, 0xa, 0x201, 0x70bd29, 0x25dfdbfc, {0x2, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x40000}, 0x10000000)

40.479381729s ago: executing program 7 (id=1757):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x404, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRES8, @ANYRES8], 0x1, 0x122e, &(0x7f0000002580)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={0x0, 0x54}, 0x1, 0xba01, 0x0, 0x4010}, 0x4000000)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791048"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f138d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade5b175c0a9b2ce9", 0x55}], 0x1}, 0x4000000)

39.021117978s ago: executing program 7 (id=1775):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

38.820456714s ago: executing program 7 (id=1781):
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x10, &(0x7f0000000040)={[{@usrjquota}]}, 0x1, 0x3e7, &(0x7f0000000480)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f00000001c0)="f1", 0x1)
sendfile(r2, r1, 0x0, 0x7ffff000)
truncate(&(0x7f0000000000)='./bus\x00', 0x6)

38.455164903s ago: executing program 7 (id=1786):
syz_usb_connect(0x2, 0x1cc, &(0x7f0000000700)={{0x12, 0x1, 0x141, 0xbd, 0x32, 0x7e, 0x20, 0xbed, 0x1100, 0x629a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1ba, 0x1, 0x0, 0x0, 0x90, 0x0, [{{0x9, 0x4, 0x4c, 0x7, 0x4, 0xfd, 0x22, 0xcd, 0x0, [], [{{0x9, 0x5, 0x6, 0x10, 0x20, 0xf9, 0x8, 0xff, [@generic={0x30, 0x21, "d5ea85214b6c8ab400b3afa42982f5a9e972db1a02e30d6ec3b4fabd7927552837c5013bb931b76d73f8e1b619b2"}, @generic={0x26, 0x23, "45ec529f0ab27eaee4b96c6fffe03a8a0c07ecf09ae78db1339e1ce1a403445bae26436e"}]}}, {{0x9, 0x5, 0x80, 0x4, 0x20, 0x7b, 0xe2, 0xb, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x9, 0xffff}]}}, {{0x9, 0x5, 0x0, 0x4, 0x20, 0x3, 0x5, 0x5, [@generic={0x50, 0x6, "7870d4e00888b84cc0ca43fe76ace54bba1fd21e7244f4e9b443ef7e4564ae661b26bfe10bb032e85feca51528cfc8aa6d7b0f2426512d76afc116f60f2f67e1e9a25d5bc4ee235bfc5d449ffea7"}]}}, {{0x9, 0x5, 0xf, 0x0, 0x400, 0x8, 0x8, 0xb6, [@generic={0x54, 0xe, "23cc78c691221f267e466ae2bd1df2f7a0dedf1111ee637fb540a83937f4cc422edfe9d4fd9d3f928ba0ef537c413aa4df6fa3f5b4455ea2e66b83e03744933f4654b7b853fb25afb91f6899a17515b3760f"}, @generic={0x83, 0x10, "8df66464c84b9e8872f51c1e63a57885c64740ee2cb8bc73aec4f93bf58b021b2a158706acabce5f6d12dddf2c12bce66f15609359d2549d992467d5449b0c8613df527a4cbeb681651802520235f832608a3b53ffc7cd62d19defb466c1f7a9cdc37633a081f2ab7e2045b20542530ce22d756fc96c0523daa164248e430f32ea"}]}}]}}]}}]}}, 0x0)

38.155182527s ago: executing program 36 (id=1786):
syz_usb_connect(0x2, 0x1cc, &(0x7f0000000700)={{0x12, 0x1, 0x141, 0xbd, 0x32, 0x7e, 0x20, 0xbed, 0x1100, 0x629a, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x1ba, 0x1, 0x0, 0x0, 0x90, 0x0, [{{0x9, 0x4, 0x4c, 0x7, 0x4, 0xfd, 0x22, 0xcd, 0x0, [], [{{0x9, 0x5, 0x6, 0x10, 0x20, 0xf9, 0x8, 0xff, [@generic={0x30, 0x21, "d5ea85214b6c8ab400b3afa42982f5a9e972db1a02e30d6ec3b4fabd7927552837c5013bb931b76d73f8e1b619b2"}, @generic={0x26, 0x23, "45ec529f0ab27eaee4b96c6fffe03a8a0c07ecf09ae78db1339e1ce1a403445bae26436e"}]}}, {{0x9, 0x5, 0x80, 0x4, 0x20, 0x7b, 0xe2, 0xb, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x9, 0xffff}]}}, {{0x9, 0x5, 0x0, 0x4, 0x20, 0x3, 0x5, 0x5, [@generic={0x50, 0x6, "7870d4e00888b84cc0ca43fe76ace54bba1fd21e7244f4e9b443ef7e4564ae661b26bfe10bb032e85feca51528cfc8aa6d7b0f2426512d76afc116f60f2f67e1e9a25d5bc4ee235bfc5d449ffea7"}]}}, {{0x9, 0x5, 0xf, 0x0, 0x400, 0x8, 0x8, 0xb6, [@generic={0x54, 0xe, "23cc78c691221f267e466ae2bd1df2f7a0dedf1111ee637fb540a83937f4cc422edfe9d4fd9d3f928ba0ef537c413aa4df6fa3f5b4455ea2e66b83e03744933f4654b7b853fb25afb91f6899a17515b3760f"}, @generic={0x83, 0x10, "8df66464c84b9e8872f51c1e63a57885c64740ee2cb8bc73aec4f93bf58b021b2a158706acabce5f6d12dddf2c12bce66f15609359d2549d992467d5449b0c8613df527a4cbeb681651802520235f832608a3b53ffc7cd62d19defb466c1f7a9cdc37633a081f2ab7e2045b20542530ce22d756fc96c0523daa164248e430f32ea"}]}}]}}]}}]}}, 0x0)

3.735620978s ago: executing program 5 (id=1993):
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x404, &(0x7f00000000c0)=ANY=[@ANYRES16=0x0, @ANYRES8, @ANYRES8], 0x1, 0x122e, &(0x7f0000002580)="$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")
openat(0xffffffffffffff9c, 0x0, 0x42, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000840)=ANY=[@ANYBLOB="540000001d00310a2dbd7000fbdbdf2502", @ANYBLOB="020000010800"], 0x54}, 0x1, 0xba01, 0x0, 0x4010}, 0x4000000)
r1 = getpid()
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000001c0)={<r2=>0xffffffffffffffff})
connect$unix(r2, &(0x7f00000006c0)=@abs={0x0, 0x0, 0x4e24}, 0x6e)
bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="180000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa2000000000000070200"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x10, 0x4, &(0x7f0000000040)=ANY=[@ANYBLOB="b400000000000000791048"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xc3, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @sk_msg}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r3 = socket$inet6(0x10, 0x3, 0x0)
sendmsg(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="5500000020007fafb72d13b2a4a2719302000000030b43026c26236925000400fe7f0000bd2dca8a9848a3c728f138d509000000000100005ae583de0dd7d8319f98af84fda542e718f94b929ade5b175c0a9b2ce9", 0x55}], 0x1}, 0x4000000)

3.647986635s ago: executing program 6 (id=1995):
syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x200000, &(0x7f0000000500)={[{@dioread_nolock}, {@stripe={'stripe', 0x3d, 0x3}}, {@min_batch_time={'min_batch_time', 0x3d, 0x1}}, {@nogrpid}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@nodelalloc}, {@errors_remount}, {@acl}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x343}}, {@jqfmt_vfsold}, {@barrier_val={'barrier', 0x3d, 0x7}}, {@nombcache}]}, 0xfd, 0x573, &(0x7f0000000cc0)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000580)='./file1\x00', 0x82040, 0x0)
unlink(0x0)

3.158706575s ago: executing program 5 (id=2001):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="620af8ffa1dc0021bfa100000000000007010000f8ffffffb702000007000000bd120000000000008500000010000000b70000000000000095000000000000003faf4f2aa3d9b18ed812a2e2c49e8020a6f4e0e4a9446c7670568982b4e020f698393aa0f3881f9c24561f1b2607995daa56f151905ea23c22624c9f87f9793f3bbb546040677b0c5077da80fb982c1e9400e693146cea484a415b76966118b64b751a0f241b072e90080008002d75593a286cecc93e64c227c95aa0b784625704f07372c29184ff7f4a7c0000070000006056feb4cc664c0af9360a1f7a5e6b607130c89f18c0c1089d8b8588d72ec29c48b45e0000000000000401d01aa27ae8b09e00e79ab20b0b8ed8fb7a68000000000000000000006fa03c6468978089b302d7ff6023cdcedb5e0125ebbcebdde510cb2364149215108337719acd97cfa107d40224edc5465a932b77a74e802a0dc6bf25d8a242bc6099ad2300000480006ef6c1ff0900ff0000000010c63a949e8b7955394ffaff03000000000000ab87b1bfeda7be586602d985430cea080000000000000026abfb0767192361448279b05d96a703a660581eecdbf5bcd3de227a167ca17a0faf60fd6ad9b97aa5fa68480366c9c6fd6fa5043aa3926b81e3b59c9b081d6a08000000ea2b1a52496dfcaf99431412fd134a996382a1a04d5bb924cfe5f3185418d605ffff9c4d2ec7c32f2095e63c80af740b5b7632d5933a1c1fa5605bd7603f2ba2a790d62d6faec2fed44da4928b30142ba1fde5c5d50b83bae616b5054d1e7c13b1355d6f4a8245ffa4997da9c77af4c0cb97fca585ec6bf58351d578be00d952aab9c71764b0a8a7583c90b3433b809bdb9fbd48bc877505ebf6c9d13330ca006bce1a84521f14518c9b476fccbd6c712016219848624b87cec2dbe98223d8d9e86c5ea06d108d8f80a0eb4fa39f6b5c02e6d6d90756ff578f57000000009700cf0b4b8bc229413300000000000000000003000000000000000000000000001000000000559711e6e8fcffffffffffffffb2d02edc3e01dd271c896249ed85b980680b09000000000f0000169cdcacc413b48dafb7a2c8cb482bac0ac502d9ba96ffffffd897ef3b7cda42f93d53046da21b40216e14ba2d6af8656b01e17addaedab25b30002abbba7fa725f38400be7c1f001b2cd3170400000085be9e48dccf1f9f3282830689da6b53b263339863297771d74732d400003341bf4a00fc9fec2271ff01589646efd1cf870cd7bb2366fde4a594290c405ff870ce5dfd3467decb05cfd9fcb32c8ed1dbd9d30a64c108285e71b5565b1768ee58969c41595229df17bcad70fb4021428ce970275d13b78249788f11f761038b75d4fe32b561d46ea3abe0fa4d30dc94ef241875f3b4b6ab7929a57affe760e717a04becff0f719197724f4fce1093b62d7e8c7123d890cec55bf404e4e1f74b7eed82571be54c72d978cf906df08f11f1c4042e36acd37d7f9e109f2c06f815312e0cfe222a06f56dd022c074eb8a322fb0bf47c0a8d154b405c37feaf3dd95f6ef2acd1fe582786105c70600000000000000b7561301bb997316dbf17866fb84d4173731efe895ff2e1c5560926e90109b598502d3e959efc71f665c542c9062ece84c99a061887a20639b41c8c12ee86c50804042b3eac1f871b136345cf67ca3fb5aac518a75f9e7d7101da841735e186c489b3a06fb99e0347f23a054de2f4d92d6bd72ee2c9f0390a6f01e3e483b4ad05573af403269b4a39ce40293947d9a631bcbf3583784acbda216550d7aec6b79e30cbd128f91e358c3b377327ac9ecc34f24c9ae153ec60ac0694da85bff9f5f4df90400000000000000d6b2c5eaff07000000000000b99c9cc0ad1857216f000000009191ae954febb3df464bfe0f7f3ee9afe7befb89d2777399f5874c553aeb3729cffe86e669261192899d4562db0e22d564ae09bb6d163118e401e024fd452277c3887d6116c6cc9d8046c216c1f895778cb26e22a2a798de44aeadea2a40da8daccf080842a486721737390cbf3a74cb2003016f1514216bdf57d2a40d40b51ab63e96ec8485b3b8a8c9ae3d14f93100c2e0893862eef552fcde2981f48c482bde8a168c3f5db2fea6f26e4a4304e50c349f4f9ecee27defc93871c5f99a3594191e104d417e60fc3541a2c905a1a95e9571bf38ae1981c4238ecaee6f75cd0a6881bd1517a8250df98674152f94e32409e2a3bce109b6000000000000a1fec9000000d694210d7560eb92d6a97a27602b81f76386f1535bef1497f92186086e29c6bc5a1fad6ec9a31137ab79a404abde7750898b59270b939b81367ac91bd627e87306703be8672d70d1ab57075228a9f46ed9bd1f00fb8191bbab2dc591dda61f0868afc4294859323e7a45319f18101288a0268893373750d1a8fe64680b0a3fc22dd704e4214de5946912d6c98cd1a9fbe1e7d58c08acaf30065b928a31d2eca55f74a23641f61f2d5b308cf01cfaed9ef0ce21d69993e9960ff5f76015e6009756237badf4e7965bbe2777e808fcba821a00e8c5c39609ff854356cb490000000000c1fee30a3f7a85d1b29e58c77685efc0ceb1c8e5729c66018d169fc03aa188546bb2e51935ab9067ec3ad2a182068e1e3a0e2505bc7f41019645466ac96e0d0b3bc19faa5449209b085f3c334b47f067bbab40743b2a428f1da1f626602111b40e761fd21081920382f14d12ca3c471c7868e7da7eaa69eb7f7f80572fdd11bb1d070080fbc22bf73468788df51710eb0b428ee751c47d8e894f745a868404a0bf35f0121008b722b1eaa6aedfa1bf2e7ccb2d61d5d76331ff5e20fa26b8471d9e1cc9eb3d541e407cc2dae5e690cd628ab84875f2c50ba830d3f474b079b407000000deff000040430a537a395dc73bda367bf12cb7d81691a5fe8c47be395656a297e9df902aeec50e71b967ce7daac4be290159f6bcd75f0dda9de5532e66ae9e48b0ed1254a81faae79b6af6fbb869604d51de44c4e0973171ad47d6c00ebc7603093f000000fdec743af930cd6db49a47613808bad959719c0000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000f15d6533f78a1f4e2df4ca23d867693fd42de9b49a1b36d48a44ba6a4530e59bec53e876dc660dd6d89f80a4377b1b1292a893a516dab183ee65744fb8fc4f9ce2242e0f000000000100000000d77480e0345effff6413258d1f6eb190aa28cbb4bafe3436b176c7ed4b132fb805d5edd9d188daf28d89c014c3ecca10ae55704544673e1fb03b84f63e022fe755f4007a4a899eaf52c4f491f1e97c862e29e4570600000091c691faee1e0c8fe056a07474e6e5490a7d3c3402000000b60600d837c6befc63ddf2f594ad7cbc56a1e44d218c956a5392a995f1fae8e9f206efbb33854dc70104d74dc07748f9745cb796da2dfb714a0500000000000000faed94fc39acfb3fd25dfa8116a154cd1226e1bb72b59fed817072a0da60160761fd3dffda0f7c592eabd8ab68334d2a1693cb187539049e331272bf5135044df8161400211b8012b6eb1ed5656e83f65509bb4b323c5bd61bff949d3bade2f6ffda1360c2786e16937ab61d6dcafed319c7167d0885f9c6d1f442954c167dd9b4acd9468ce3674c82bbb2e31389179b025dbe063b7f906217b2cf8410c7023aa3e5cc3ba1000000000000000000000000000000006ae6301a2da44394275c582a6516bb92ea1980a0a659f2f1811c8b281c209647c4241f292b20508b215dde27bb2487a6e2b5e4a8ccfab90c23827ef06cbe364073005f8a6d1456aaeb85ffb7858f24eced67a67ab825e863928ed64c83f62ffdaa997657335b63c6b4163aff094059e626766845fd779c9e6cdbbd64c2499ce3ffe2fef03f7cdd0d90f3a7579579a142c0f7b318264d5c13c31cf475829528267ead38523cab7e1664e8426cfce471fef821c8a02a7e7d954d05b68a9c28f79429b09e2bb3681ae2b831e27c735123361c193d66ed4d71f19b199d371ec6bfada7cd370e3fdd3cd980fa1e145fd3f3e96b1feb53c865e1ada08f5d16ed652ee0c7f45352222692fbd679212c225d097aa90f7e1fb1f983415f43e75a19ecf7fd21bfa150ef563aa72ba3c43c5f3d9be128ec26b691f31f9cab931631606a81622f120675c962be2d3b5e95f74f0b209e42e6bdd76e6e725295b1d78d928f6f63e4581d5cc41cbde2ba66adc1168070c8c6e18a6a234f5f9311ef0f78924b68dbb4712efdb6974667bdb54f16fd2061b9ba93638dd177227e94e4ebd0ec1d437db948062bf41742000000000000000000305f70dd02fa0c61d5fe6d8ff35389246037e18d34c1375ae04f44f0c2543c772c5ccb137be7dc1874c514b37c668554d77d4ea5ed144a648257f4a0301067bbcd9b91072659d872f26b796e2b81025edb5f45f785e2c2602b248ecdd80f019ca659be7e8ae953325a27564f33c9d458a60be3dab38baab7eb1a66ab1ffd6308f7fd51beb356fe75eb985b7581bb5584c53984ba9c3340f97e8d3825681c53de5f554e595b00000000000000006a8fa9f05d64c4be42f981f00051a39938613067dbd1427e01bfec016e51844cefa8a855bf23ac887b4a88eed6d9443857242f28e31a41d20105fbf3394ff910e734b4d9101265ff729c426e01c1ab13dda8c388b909006f19eecb87e39175e85e17000000000000000000009431807e43886903526074e6b40244c938a4c68a38c25ddd7c143b3f1400010000ec66815cf8d1f56aa1424bc9b5d58790298e5b310969e50c222563b54e60854e1b0100448aca8c5ccbf5546ce4c3cd5a733fec25fb94e1e0f966bcbd28a4d8fe4f556eaa1104a793006619700798354c6ae05025040965e3083562bfa20968c04007d21dc02c9fd1f75e1ff40f439bdde4e784012e52049b483d02f81b88f5f57816b3fecec79cfca8d37203e769759d6b6a56b7605ced8ee18475a77ff0963a565fb6021d216c01b1098e40550a1cfd80e918d685a7b099a4f8ed654cd76ca61fe5ad8a31ec558fdbfa706d5e738bceae81fe777c307d5bc72183a4c2d35732ab916a781b9912160a3fd2a2e74dd690c57bdfdc1f069f949170ef8cb9c13c12138116bca7a8c59363799be7005c51bc25a8bbe2cf5ddf6aa161693782b0e7feb8a768f391b49d4c978c96dbb52f21c122eba9f17c8bed10591958cf06321a248b5f76ceedfe0d080d6aeadc11b237b3326dd04b86ac37c0d131544888db9e128d059761ad9a393e96c3b41c13c5a381bff187a75de560ba6eb3faa5ff8d2bb3c88f8de5efc2fb2200cfda6d07ceae22577064334fbf76a23e62e6059211d995b879f6b7d3f7fcf03652b81e6b7cdeff947ad185d3c6269ca247b429c3b872a8f1ef60407d29a874f4ec31c9effed55543a65a6b4d778cebcd43b7905f3960140bd783540a7353014bda8e9c7a34a5f428fd1f8eb11e837dd9d586487fdebcb1ecd3a003ff0fda4be617fecf1ff0ef2c74664d60a4b9423f3297bc8eb91b4ee1d73272abbef3e7a828a7d7ab055a8eb58fe379de85338304e26e3620941b463e9049fd105c74c91cc4d71b0f76e2c2e4825106aa7ce2a3adbbc7a0443ece58e752b47e6f677eff7c5c568a89d6e36b165c39132a0f27080ece2a94c320b002c77f82662675a7713c7067081cac15994698c41ff4754268ae1676384ff799783f55d7e5a1a0920300000000000000d98440c355927629f2bcf9dc405a18ca0264400abf38e90000000000000000008faf2cddffbfa69bf32eb718e88ec75603ed7c7a8825ce0f27a114bd7a4ab74d0c7b8d90ccc1c3ca6620def782e24d75aed70eb676437f62677a69e0994cd82d72e95493c830fe9515329f40b7025326dec33a527c5d999298eaa3690fd0d38a02fc6e0bc16dbe19f353027edc014411e1138087221492f5d5e5cc9d0a1acd3f581eda9a807aa0e609f935f626d96351e0ff116686cbeb8939feecd5dac8cf45101942cc7cec21b7f337df5431bcf7e504b7c427f70a10e1cb8993a661306a0576b638a0171e6800b5b35589d676eb30ed1a72e8f7b057eb281c4504195635b6b285ebaba019913a2520e43ed790231f047f7d3789c10ae7d724929f77aec1d33d9587580268ee14396f71e7ef588cb2560d6bd0795a9b97281229eb16de086553469fad7214ffc3e416f8b8e442dce1d37f9b1c88a5d8a8d9f2fe45bd8df213ecb4194c8554aea13cadcd502e51f6fec80418e772b5bd8d0228949058038b185909ee542848680f9ad43f4057d676d5e21ae3d7e0e4a28c04f112a94707f032b35915e42993ff148291b8babe026646ee41905992db217561b90811c4702a14f312fe5d2ae7257db6be1034cc1c346b76a853ce274bf0435e18f7e86c660c18c80f30505dd4cf2ae2a1893b83c62d61bfeadc1f913e4cab2b897e096dd3fe3525090410cb23bab36cdf200a36014032cf6e5121803c5a0c4a273a19f340163fc6265425d513a1294b8439276394945d94a589708e32a1cb30f1fa4b2f08e01dc5e8c6732e6dc59b5c8cb400000000000000592c9b68f09c8f5ddb20b4ae08b4d9df548e5ed6cd47b91a4bea8b6aa52edf64576aef1e43f2958437fdc20fbbd0d4e13d8cce1193b2f9b4f107e25af178d056e1b1e40bd75b013f7484fae0bc447b1ffaf34819fe3ad1a634c94345e26e1e68dec08723a37b05d1594a66a4718a51d4d67fc880c9d640f4eacc509873f1a103c87f69"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000140)='+}[@\x00')
r1 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000140)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x4, [@typedef={0x2}]}, {0x0, [0x0, 0x61]}}, 0x0, 0x28}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000001c0)={0xd, 0x4, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000000001000800000095000000000000000fb9caabddc06367bef916b7f8aea9def3ab5c71784fafefb833450d5e438a1ba0f667525dc05d52653da04990dc55cc3f04ce0007b0d6776c30e057dc76e0749bce4f3e49a81f56ed3c86d491efb15f7a6b98edd16592ef0c6dae6de05855f8c418dacd2f93a5525f0732d46cb94b1f102d8bf3b7c890382ed5bd5c94140309f858e99c2d7453112e07b6ae37f494710ca64995f84a53c9604e12055caf231367250032c638254907eca457cce249f849b755ca4c3fc1a7fd9eff5a9a6d9978dd1f490912afe8"], &(0x7f0000000040)='syzkaller\x00', 0x8, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0xb, r1, 0x8, 0x0, 0x0, 0x14, 0x0, 0x14}, 0x94)

3.067884343s ago: executing program 1 (id=2003):
socket$inet6_udp(0xa, 0x2, 0x0)
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, 0x0, &(0x7f0000000200)='GPL\x00', 0x2, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x1d, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000300)={[{@grpquota}, {@noauto_da_alloc}, {@quota}, {@stripe}, {@jqfmt_vfsold}]}, 0xfd, 0x4ff, &(0x7f0000000ac0)="$eJzs3c9vG1kdAPCvnThx0uwmu+wBEOyW3YWCqjqJuxut9gDLCSG0EmKPILUhcaModhzFTmlCD+mZKxKVOMGRP4BzT9y5ILhxKQckfkSgBomDVzOepG5iN1GT2FH8+UijeW/e1N/3ks579TeNXwBD63pE7EbEWETcjYjp7HouO+KT9pHc92zv4dL+3sOlXLRan/0rl7Yn16LjzySuZa9ZjIgffS/ip7njcRvbO2uL1WplM6vPNmsbs43tnVurtcWVykplvVxemF+Y++j2h+VzG+s7tbGs9NWnf9z91s+Tbk1lVzrHcZ7aQy8cxkmMRsQPLiLYAIxk4xkbdEd4JfmIeDMi3k2f/+kYSb+bAMBV1mpNR2u6sw4AXHX5NAeWy5eyXMBU5POlUjuH91ZM5qv1RvPmvfrW+nI7VzYThfy91WplLssVzkQhl9Tn0/LzevlI/XZEvBERvxyfSOulpXp1eZD/8AGAIXbtyPr/3/H2+g8AXHHFQXcAAOg76z8ADB/rPwAMH+s/AAyf9vo/MehuAAB95P0/AAwf6z8ADJUffvppcrT2s8+/Xr6/vbVWv39rudJYK9W2lkpL9c2N0kq9vpJ+Zk/tpNer1usb8x/E1oOZb280mrON7Z07tfrWevNO+rnedyqF9K7dPowMAOjljXee/CWXrMgfT6RHdOzlUBhoz4CLlh90B4CBGRl0B4CBsdsXDK8zvMeXHoArossWvS8odvsFoVar1bq4LgEX7MaX5P9hWHXk//0vYBgy8v8wvOT/YXi1WrnT7vkfp70RALjc5PiBHj//fzM7/y774cBPlo/e8fgiewUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACX28H+v6VsL/CpyOdLpYjXImImCrl7q9XKXES8HhF/Hi+MJ/X5AfcZADir/N9z2f5fN6bfn3qh6e1rh8WxiPjZrz/71YPFZnPzTxFjuX+PH1xvPs6ul/vfewDgZAfrdHrueCP/bO/h0sHRz/7847sRUWzH398bi/3D+KMxmp6LUYiIyf/ksnpbriN3cRa7jyLii93Gn4upNAfS3vn0aPwk9mt9jZ9/IX4+bWufk6/FF86hLzBsniTzzyfdnr98XE/P3Z//YjpDnV02/yUvtbSfzoHP4x/MfyM95r/rp43xwR++3y5NHG97FPHl0YiD2Psd889B/FyP+O+fMv5fv/L2u73aWr+JuBHd43fGmm3WNmYb2zu3VmuLK5WVynq5vDC/MPfR7Q/Ls2mOerb3avDPj2++3qstGf9kj/jFE8b/9Xbx+Bf1iN/+/+6Pv/aS+N98r1v8fLz1kvjJmviNkwJnFid/X+zVlsRf7jH+k77/N08Z/+nfdo5tGw4ADE5je2dtsVqtbCooXP5C8lf2EnSja+E7/Yo1Ft2bfvFe+5k+0tRqvVKsXjPGeWTdgMvg8KGPiP8NujMAAAAAAAAAAAAAAEBX/fiNpUGPEQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgKvr8wAAAP//j5zPLA==")
lsetxattr$trusted_overlay_upper(&(0x7f0000000100)='./file1\x00', &(0x7f0000000300), &(0x7f0000000040)=ANY=[], 0xfe37, 0x0)
linkat(0xffffffffffffff9c, 0x0, 0xffffffffffffffff, 0x0, 0x0)
unlink(0x0)
socket$kcm(0x10, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000000340)=ANY=[], 0x50)
syz_emit_ethernet(0x4a, &(0x7f0000000380)=ANY=[@ANYBLOB="ffffffffffffbbbbbbbbbbbb08004500003c00000000000190780a010102ac1414aa03049078640100ff48bdbce6fe868254672700000000000000fc7300000000000000000000440c00b8c05bdb39599508cf223f85fe545b3a5b1973eae0850944d6e36d58ca63e1fba830e85a"], 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r1 = syz_open_dev$usbfs(&(0x7f0000000480), 0x77, 0x41341)
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000200))
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="040000000400000004000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1b, 0xc, &(0x7f0000000440)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
r2 = creat(&(0x7f00000002c0)='./file0\x00', 0x0)
ioctl$SIOCX25SFACILITIES(r2, 0x89e3, &(0x7f00000000c0)={0x18, 0x81, 0x4, 0xc, 0xd})
ioctl$USBDEVFS_IOCTL(r1, 0xc0105512, &(0x7f0000000000)=@usbdevfs_connect)
r3 = getpgid(0x0)
socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff, <r4=>0xffffffffffffffff})
cachestat(r4, &(0x7f00000001c0)={0xb0, 0xf5}, 0xffffffffffffffff, 0x0)
sched_rr_get_interval(r3, 0x0)
kexec_load(0x3e00, 0x1, &(0x7f00000002c0)=[{0x0, 0x0, 0xff600000, 0x1000000}], 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000180)=ANY=[@ANYRES64, @ANYRES32=r0, @ANYBLOB="0000000000000000b70200001400000100030000010000008500000083002200bf0900800000000055090100000045f7b127000000000000bf91000000000000b7020000000000008500000084000000b700ffff0000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x22, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x7fffd}, 0x94)
socket$netlink(0x10, 0x3, 0x10)
r5 = socket$netlink(0x10, 0x3, 0x10)
bind$netlink(r5, &(0x7f0000514ff4)={0x10, 0x0, 0x0, 0x2ffffffff}, 0xc)
getsockopt$EBT_SO_GET_INFO(r2, 0x0, 0x80, &(0x7f0000000240)={'broute\x00', 0x0, 0x0, 0x0, [0x1, 0xfffffffffffffe49, 0x8, 0x6, 0x1, 0x5]}, &(0x7f0000000040)=0x78)

3.007345968s ago: executing program 5 (id=2005):
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4050}, 0x0)

2.917674025s ago: executing program 5 (id=2006):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x10, &(0x7f0000000580)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000", @ANYRES32=r0, @ANYBLOB="0000000000000000b707000008000000850000006900000095"], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
getsockname$packet(0xffffffffffffffff, 0x0, 0x0)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = openat$tun(0xffffffffffffff9c, 0x0, 0xc0a41, 0x0)
ioctl$TUNSETIFF(r4, 0x400454ca, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r3, &(0x7f0000006040)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000840)=@newtfilter={0x70, 0x2c, 0xd27, 0x70bd28, 0x25dfdbfd, {0x0, 0x0, 0x0, r6, {0xfff3, 0x7}, {}, {0xa, 0xfff2}}, [@filter_kind_options=@f_cgroup={{0xb}, {0x40, 0x2, [@TCA_CGROUP_EMATCHES={0x3c, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x6}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_IPT={0x2c, 0x1, 0x0, 0x0, {{0xe37, 0x9, 0x4}, [@TCA_EM_IPT_MATCH_DATA={0x4}, @TCA_EM_IPT_HOOK={0x8, 0x1, 0x1}, @TCA_EM_IPT_MATCH_NAME={0x8}, @TCA_EM_IPT_NFPROTO={0x5, 0x4, 0x5}]}}]}]}]}}]}, 0x70}, 0x1, 0x0, 0x0, 0x4000080}, 0x40010)

2.917328044s ago: executing program 6 (id=2007):
mount$tmpfs(0x0, &(0x7f0000000540)='./cgroup\x00', &(0x7f0000000580), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='mpol=prefer'])

2.707933032s ago: executing program 5 (id=2009):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000001700)=0x4)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000180)=@abs, 0x6e)
sendmmsg$unix(r2, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="04000000040000000400000005"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0xc, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYBLOB], 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xe8c}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r4 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r4, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000840)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}]}, @NFT_MSG_NEWRULE={0x5c, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_EXPRESSIONS={0x3c, 0x4, 0x0, 0x1, [{0x38, 0x1, 0x0, 0x1, @dynset={{0xb}, @val={0x28, 0x2, 0x0, 0x1, [@NFTA_DYNSET_SET_NAME={0x9, 0x1, 'syz2\x00'}, @NFTA_DYNSET_FLAGS={0x8}, @NFTA_DYNSET_OP={0x8}, @NFTA_DYNSET_SREG_KEY={0x8}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xd0}}, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r3}, 0x10)
r5 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r5, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c00000021000f0000f901000000000002"], 0x1c}}, 0x8000)
mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup.net/syz1\x00', 0x1ff)
r6 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0)
r7 = openat$cgroup_procs(r6, &(0x7f00000000c0)='cgroup.threads\x00', 0x2, 0x0)
write$cgroup_pid(r7, 0x0, 0x0)
syz_open_dev$usbfs(&(0x7f0000000480), 0x76, 0x160341)

2.496956829s ago: executing program 1 (id=2011):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa104"], 0x0, 0xfff, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x100}, 0x94)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, &(0x7f0000000100)={'syzkaller0\x00'})
syz_mount_image$vfat(&(0x7f0000000040), &(0x7f0000000080)='./file0\x00', 0x101c0ca, &(0x7f0000000400)=ANY=[@ANYBLOB="73686f72746e616d653d6d697865642c666d61736b3d30303030303030303030303030303030303030303036362c696f636861727365743d69736f383835392d312c6572726f72733d636f6e74696e75652c756e695f786c6174653d302c696f636861727365743d61736369692c726f6469722c73686f72746e616d653d6d697865642c756e695f786c6174653d302c757466383d302c757466383d302c756e695f786c6174653d312c64656275672c756e695f786c6174653d312c666d61736b3d30303030303030303030303030303030303030303030332c6e6f63617365aec489af6ba9723d4b17106f6d47b9ade1c253d4e3b08066427cae9f41fd1e1dd25a22ec22ad6e8bf6f67e052de91b544f2f4541f87a0c0b36e8d444150b35c110bda57fe7a9c06ba087cc975447082aaf95213301f3e04b70ea67a8aa0d582ca1a9525dba7116d80f126f782a78428b878fc79c0be9ad98cb6950995e6edba78e5301e8c8e69cc85beceb8b54f84a84787815ef9a18f1fe1c81b4c1830102f7e3236e2533e486ecb46ee53991c5bfe6289a474582b2e57741fd8de78f42097851bee74d4201c7767e0e0f4b34523150639b1291441ad01f2f72ed3679d7bca0e8b4e0689f883196af0d0dfe7344f276c1b4bd333882cf7879248ad423e3f21cd0cae2309519f9d40df23cf05d9c8d8f9d07da771ea1e3bcd8478fb989f770da17f700000000000000"], 0x6, 0x2c0, &(0x7f0000000900)="$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")
sendmmsg$inet(0xffffffffffffffff, &(0x7f00000010c0)=[{{0x0, 0x0, &(0x7f0000000580)}}, {{0x0, 0x0, &(0x7f0000000840)=[{&(0x7f0000000180)="5be3b011e12323e4ab88c0472f0700000000000000e71ba62334303d2db97401439932cfd4855c4cc243dae723789d8a9a16be3135c5f82691837c90ab19545f7a1dcf1449fd59eecae5f52fba1e89d6d34b39297bbbc2580600000000000000d6e36e737491a1c6bd2a64b2a85cbaaf648c9100000000000000006a8f", 0x7d}, {&(0x7f0000000640)="2a03a0cba4b85fbbdf75673f3ded77ee28c50735968e37f3e3786478a31197705a76751c11d25805e6", 0x29}], 0x2}}], 0x2, 0x0)
r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000500)='status\x00')
setgroups(0x400000000000026f, &(0x7f0000000080)=[0x0, 0xee00])
read$msr(r0, &(0x7f0000000d40)=""/43, 0x2b)

2.408129166s ago: executing program 6 (id=2012):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000400)={0x0, &(0x7f0000000040)})
io_getevents(0x0, 0x4, 0x0, 0x0, 0x0)

2.407889046s ago: executing program 8 (id=2013):
r0 = socket(0x10, 0x3, 0x0)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000080)={0xffffffffffffffff, <r1=>0xffffffffffffffff})
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000140)={'lo\x00', <r2=>0x0})
sendmsg$nl_route_sched(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000000240)=@newqdisc={0x8c, 0x24, 0xd0f, 0x0, 0x0, {0x60, 0x0, 0x0, r2, {}, {0xffff, 0xffff}}, [@qdisc_kind_options=@q_netem={{0xa}, {0x5c, 0x2, {{0xfffffffb, 0x3, 0x8, 0x3, 0x0, 0x5}, [@TCA_NETEM_ECN={0x8}, @TCA_NETEM_CORRUPT={0xc, 0x4, {0xd9de, 0x5}}, @TCA_NETEM_REORDER={0x7, 0x3, {0x4800000, 0x8}}, @TCA_NETEM_RATE={0x14, 0x6, {0x2, 0x10000, 0x4, 0x1}}, @TCA_NETEM_REORDER={0xc, 0x3, {0x10000}}]}}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x800}, 0x0)
ioctl$sock_ipv6_tunnel_SIOCCHGTUNNEL(r0, 0x89f3, 0x0)

1.817466034s ago: executing program 1 (id=2014):
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x4, &(0x7f0000002180)=ANY=[@ANYBLOB="180200000000000000000000cfffffff850000001700000095"], &(0x7f0000000040)='syzkaller\x00'}, 0x90)
r1 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000100)={'dummy0\x00', <r2=>0x0})
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000080)={r0, r2, 0x25, 0x0, @void}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000023c0)={0x6, 0x5, &(0x7f00000001c0)=ANY=[@ANYBLOB="180200000000000000000000000000001800000008000000000000006e14000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41100}, 0x94)
bpf$BPF_LINK_UPDATE(0x1d, 0x0, 0x0)

1.752700389s ago: executing program 8 (id=2015):
syz_genetlink_get_family_id$nl80211(&(0x7f00000004c0), 0xffffffffffffffff)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$NL80211_CMD_VENDOR(r0, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4050}, 0x0)

1.61196228s ago: executing program 8 (id=2016):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000ed07449e000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x45, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000080)='kfree\x00', r0}, 0x10)
r1 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r1, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r2 = socket(0x400000000010, 0x3, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r2, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r4, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0x2}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x0, 0x3}}}]}, 0x38}}, 0x0)
sendmsg$nl_route_sched(r2, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000340)=@newtfilter={0x34, 0x2c, 0xd27, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r4, {0x0, 0x3}, {}, {0x3}}, [@filter_kind_options=@f_flower={{0xb}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x10}, 0x0)

1.501219119s ago: executing program 1 (id=2017):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x803, 0x0)
sendmsg$nl_route_sched(r1, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={0x0, 0x24}}, 0x0)
getsockname$packet(r1, &(0x7f0000000100)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000200)=0x2ba)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=ANY=[@ANYBLOB="3c0000001000850619fbb7c75150926b0000", @ANYRES32=r2, @ANYBLOB="fe000000000000001c0012000c000100626f6e64000000000c0002000800010004"], 0x3c}}, 0x0)
r3 = socket(0x10, 0x3, 0x0)
sendmsg$nl_route(r3, &(0x7f0000000840)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)=@newlink={0x20, 0x10, 0x403, 0x0, 0xfffffffc, {0x0, 0x0, 0x0, r2, 0xff7f}}, 0x20}}, 0x0)
r4 = socket(0x1, 0x803, 0x0)
getsockname$packet(r4, &(0x7f0000000100)={0x11, 0x0, <r5=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f00000002c0)=0x14)
sendmsg$nl_route(r1, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x12}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x4}}}, @IFLA_MASTER={0x8, 0xa, r5}]}, 0x3c}}, 0x0)

1.199522093s ago: executing program 8 (id=2018):
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff})
pipe(&(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x8000f28, 0x0)
splice(r2, 0x0, r1, 0x0, 0x7f, 0xe)
write(r0, 0x0, 0x0)
mmap(&(0x7f0000ffd000/0x3000)=nil, 0x3000, 0x1000002, 0x11, r3, 0x70e78000)

891.902378ms ago: executing program 8 (id=2019):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0)
mbind(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x2, &(0x7f0000000000)=0x9, 0x8, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000001840), 0x2982, 0x0)
close(r1)
openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000000), 0x8000, 0x0)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff7ffc}]})
sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000080)=[{&(0x7f0000000040)="2e00000011008108090f9becdb4cb92e264831371900000069bd6efb2502eaf60d002700020400bf050005001201", 0x2e}], 0x1}, 0x0)
r2 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r2, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)={0x50, 0x2, 0x6, 0x201, 0x0, 0x0, {}, [@IPSET_ATTR_TYPENAME={0x16, 0x3, 'hash:net,port,net\x00'}, @IPSET_ATTR_FAMILY={0x5}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_PROTOCOL={0x5}]}, 0x50}}, 0x0)
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000001240)='./file2\x00', 0x14552, &(0x7f0000000b40)=ANY=[], 0xfb, 0x1216, &(0x7f0000002480)="$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")
truncate(&(0x7f0000000100)='./file2\x00', 0x4)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], &(0x7f0000000040)='GPL\x00', 0xa, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
socket$inet_udp(0x2, 0x2, 0x0)
set_mempolicy_home_node(&(0x7f0000417000/0x2000)=nil, 0x2000, 0x0, 0x0)
io_uring_setup(0x400001cb, &(0x7f0000000140)={0x0, 0x9e7e, 0x20, 0x2, 0x400011cb})
io_uring_register$IORING_REGISTER_BUFFERS(0xffffffffffffffff, 0x0, &(0x7f00000002c0), 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000100)='kfree\x00', r0}, 0x18)
mmap$IORING_OFF_SQ_RING(&(0x7f0000400000/0xc00000)=nil, 0xc00000, 0x300000c, 0x50032, 0xffffffffffffffff, 0x0)

809.320625ms ago: executing program 1 (id=2020):
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x10, &(0x7f0000000040)={[{@usrjquota}]}, 0x1, 0x3e7, &(0x7f0000000480)="$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")
r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r1 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r2, &(0x7f00000001c0)="f1", 0x1)
sendfile(r2, r0, 0x0, 0x40001)
sendfile(r2, r1, 0x0, 0x7ffff000)
truncate(&(0x7f0000000000)='./bus\x00', 0x6)

670.871656ms ago: executing program 6 (id=2021):
r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$netlbl_cipso(&(0x7f00000000c0), r0)
sendmsg$NLBL_CIPSOV4_C_ADD(r0, &(0x7f0000000580)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000040)=ANY=[@ANYBLOB="d0000000", @ANYRES16=r1, @ANYBLOB="010000000000000000000100000008000100000000000400048008000c8004000b800800020001000000a00008801c"], 0xd0}}, 0x0)

543.631756ms ago: executing program 5 (id=2022):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r0, 0x0, 0x0, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0), 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x4}, 0x18)
r4 = syz_open_procfs(0x0, &(0x7f0000000140)='map_files\x00')
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000280)={0x4, &(0x7f0000000200)=[{0x6, 0x7, 0x0, 0xfffffff7}, {0xfff, 0x5, 0x1, 0x80000001}, {0x7ff, 0x0, 0x0, 0xa}, {0xfff, 0x7, 0x9, 0x19f8}]})
getdents(r4, &(0x7f0000000040)=""/215, 0xd7)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r6=>0x0})
bind$can_j1939(r5, &(0x7f0000000340)={0x1d, r6, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="81b641f1f3843704b6", 0x9}], 0x1}, 0x4048081)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r6, {0xfffd, 0xffeb}, {0x1, 0x1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x850)

372.1002ms ago: executing program 6 (id=2023):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x2000007d, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0xf}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x21, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='kmem_cache_free\x00', r1}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000080)={0x1, &(0x7f0000000040)=[{0x200000000006, 0x0, 0x0, 0x7ffc0002}]})
getrusage(0xffffffffffffffff, 0x0)

279.769968ms ago: executing program 1 (id=2024):
bpf$BPF_BTF_LOAD(0x12, 0x0, 0x0)
r0 = memfd_create(&(0x7f0000000cc0)='\x103q}2[\xe0\x9a\xee\xaf\x03\x97\x9et\v\"|Ma\x86\xe7\xc0\x14\x9f\xb9h\xb1\x96\xe7=I\x860S6\xb5\xa8\xc2\x95Je%\xfeG\'\b\x00\xd5\xfd\xa9\r\xac7V\xf2\x93A\x94k\xcd\t\x00\x90\xbe\xd6\x05\xb6&\xd0\x9daA\xc5\x9c_\xd4\x18,\f\xd4s\xb2\x99/\xc0\x9a\xf2Oc\xc0c\agB!\xb0\xb8n\x01\x9bT\x95\x10\x86\xe8$\x7f\r[\xf9\x0e1v\xb1\n\x88\v\x95uy\xb5:`\x8b\nC\x18A;\xaa%\xaf\xc7\xa3\xac\xa2D\xb5\xe2\xe1\xdc(\xfd\x05\x9fB\x84O\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x1a\xa0\x17\xe3\xac\xe9\xc9\xa7\x8a\x1b\x03\"&\xac\xcap>\xccZ\x01\xbc\x18\xc1\xb9\xe9\v\x8b\x9c\xb4Q\xd4\x96EV<>\x99\xca\xb3\xe0\xc4tL\xed\xf5W\x9f#\xcf\x8a\x84\xed\x9f/\xd4\xbb\xea;-Dp\xd8\xf8\xd0F\x90\xf8\x92Ip6\xf4\x16\xe8\x14\xe0\x96!\x92-F\xe2\x14D\x91\xa8b\x04\xdd\x1d\a\xdc\xe0\x18\x85{\x80Q\xf6k\x96\xfaQ\x9fW\vO\xf0\xe4O\\\xceS\xe2_\x16\x05\x049d\x06#\x88\xc3\xdf\x85O\x1c\xc3\xad?r\xd7\x0e\x00\xd7\x83\xb0\x88\x9c\xf6Y-F\x98\xdd\x9c~\xfd\x95\xc3\xb6lC\xaa\"Y\xa2K\xecz\x84:*\xf5Y\xd1\x9b1\xbd\x9b\x15\xd4\xec\x02o\x01&\xaa\x90w\xc4\xc7\x8en\xb5\x1ag\xab&?\xbe\xcb\xe8v\xa8\xe0\xa4\x81sW\xacf\x149\xd2}\xef\x03Ga\x9a$4\x8c\xa5!p\x83\x05\x96%\x02%\xabj\n\b\xc8NC\x91}&y\xd3\xe1\xeep\'\xc5\xab\x19GsX5\x8c\n\x9fh\xee;4\xb1%V\xe0\xa9\x8e\xf30:\xd8\x18N~G\x139\xcaf2\x02F1\xc6\x82\x00E\xae\x9d\x17\x871N:\xb4\xea \x8e\xdelP\x83\x1f\'\xe2\xd6\xc0\xc3\xfc\xc9677u\xf3RUP@o>\xee\xb8\xa3\t\x02\xb7\\,\xebK\xed\x1b\xc9e\xb3\x16\xce\x9bI\xdb\xfa\x82\x85\t\x9bg\xd0s\xe2\f{\x8cp~;\xf8\x96\xf2\x91\x06\xd7\x80t\xfc\xf8\xd2\x12N\x1cB7^\xfd4\xae\xb0V\\w\b!\xae\x1baTv\xc0z\x19\xc5\xc8w\xba\x97N\x9a`\x8f\xfc\x9ee\xf9\x00\x1cQA\x14]\r\xd4\"\xc2\x12GD\xdb{\x17fNo\xb3\x1d\xbb\xcaI\x05\xff\x8d\xf4_\x1a\vqA\xb7\x0ed<\x98\xee\xb8\x19\xec\x9f\xee\xe1_\xacG\x8b\xa3\xc3\x13\x80\x0f\xf4I\xdeAwG\xbdkno\xa2\b\x126\x97\x9b\xf9|P\xd94\v\x15\xcb\xc0\x9d\x11\xf3\x18\xae!2\x1b\x12\xa9\xc8~\xb7S\x94\xb5\xc7;\xa90D>s\xe9\xa4N\xf8\xdb\xab\xa0\x94~\xa1]b\xa4\xe5\xe2e\x1c\x8b\xd2\xc7Md\x93\x02\xd8\xb0,\xeb\x03\xaa\v\xed\x9bR\x8a\x80\xc2\x1f\x17ej\x973wv\x83a\xe06\x96\xde\xbc%UH\xf8S\xf1\xa1g\x02\xc4\xc3\xa4\xa8\x96\t\xfex\x02Y\x8e\xae\xf5m\xca\xa0i\x80O\x11\xac\xb7$\xdb\xbc\xb0\xcb\xacqU\xb5*\x00\x00\x00\x00\x00\x00\x00\f\xda\xf8oV\x89\xd3\x1f\x99+\xe5\x04\x00\x00\x00\x00\x00\x00\x00\xf2\xcc\xd3\x94\xca\xd4\x00\x00\x00\x00\x00\x00\x00\x00\x00~A9\xf6IBu2L\x9e\xa2\xbb\xa9s\xab\x90\x06\xc6!p\x9e?~\xf9\xe6\xae*\v\xa3\xd9\xcfJ\t}\xd4:\xe4\xbe\x1c\x10\n\xc6hPO\xeagxKN\'z]*\x93\xf7\b\x91\xd0\xff\xd9\xc6a\xb5q\x9c\xa1Go\xd58\x93\xe0,\x9f\xe4\xa9\xd9A\x9e\x95e\x98\xd0V\x9d\xed\x97\xf1\xc5\xce\xf5\x90!D\x9a\xd8\x10\xbbx\r8\xff\x8bNUK\xebA\xe5\x92f\xc4\xd1\xa8\x15\xbf\xb5iW\xdb.kbf*\x89\xf0\xecq m-~\xbbf?\xec=\xd2\xe2\x1e\xca\xc5kz\x8e9\xd6\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\xa3d5V\x80\x1a\x90\x10\xe3\xdf%\xfdz\xf7\x9aE\xe6\x9b\x00'/993, 0x3)
ioctl$FS_IOC_RESVSP(r0, 0x40305828, &(0x7f0000000000)={0x0, 0x2, 0x6, 0x1000000})
fcntl$addseals(r0, 0x409, 0xb)

147.975198ms ago: executing program 8 (id=2025):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000033c0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x1b)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000380)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="2f0000001220"], 0x20)
futex(0x0, 0x85, 0x0, 0x0, &(0x7f0000000780), 0x14fffffe)
setxattr$incfs_metadata(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340), &(0x7f0000000800)="aa8176c9e59be67c81bf0186c0597a449520030633719df43d77098d28", 0x1d, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)

0s ago: executing program 6 (id=2026):
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x8, 0xdd, 0xff}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r0 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r0, 0x0, 0x0, 0x4000800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
connect$unix(r2, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
pipe2$9p(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
recvfrom(r0, 0x0, 0x2a, 0x2101, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r5}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x75, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x9c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)

kernel console output (not intermixed with test programs):

cted capacity change from 0 to 164
[  309.684760][ T9764] syz.0.1332: attempt to access beyond end of device
[  309.684760][ T9764] loop0: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  309.802142][ T9764] syz.0.1332: attempt to access beyond end of device
[  309.802142][ T9764] loop0: rw=0, sector=263328, nr_sectors = 4 limit=164
[  309.820749][ T9766] syz.1.1330[9766] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  309.821236][ T9766] syz.1.1330[9766] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  309.947328][ T9769] loop5: detected capacity change from 0 to 1024
[  310.044795][ T9769] EXT4-fs: Ignoring removed orlov option
[  310.247012][ T9769] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  310.373583][ T9769] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #15: comm syz.5.1333: corrupted in-inode xattr: ea_inode specified without ea_inode feature enabled
[  310.510183][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  311.340261][ T9786] loop0: detected capacity change from 0 to 8192
[  311.367845][ T9786] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  311.838583][ T9790] syz.1.1342[9790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  311.838843][ T9790] syz.1.1342[9790] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  312.581527][   T27] kauditd_printk_skb: 38 callbacks suppressed
[  312.581541][   T27] audit: type=1326 audit(1754786344.878:2062): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  312.683954][ T9786] netlink: 'syz.0.1341': attribute type 4 has an invalid length.
[  312.693502][   T27] audit: type=1326 audit(1754786344.878:2063): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  312.715992][ T9786] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1341'.
[  312.738475][   T27] audit: type=1326 audit(1754786344.878:2064): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  312.761080][ T9804] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1347'.
[  312.783078][   T27] audit: type=1326 audit(1754786344.878:2065): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  312.844801][ T9804] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1347'.
[  312.853885][   T27] audit: type=1326 audit(1754786344.878:2066): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  312.905088][   T27] audit: type=1326 audit(1754786344.888:2067): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  312.958061][   T27] audit: type=1326 audit(1754786344.888:2068): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  312.997238][   T27] audit: type=1326 audit(1754786344.888:2069): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  313.039437][   T27] audit: type=1326 audit(1754786344.888:2070): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  313.065969][   T27] audit: type=1326 audit(1754786344.888:2071): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9796 comm="syz.5.1345" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  313.206894][ T9809] Falling back ldisc for ttyS3.
[  313.891932][ T9834] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  313.976497][ T9834] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.036868][ T9834] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.125278][ T9834] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  314.395679][ T9834] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  314.497633][ T9834] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  314.541753][ T9834] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  314.603501][ T9834] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  314.796655][ T9853] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  314.833613][ T9858] loop5: detected capacity change from 0 to 8192
[  315.488105][ T9873] loop1: detected capacity change from 0 to 8192
[  315.718965][ T9873] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  315.738099][ T9877] loop4: detected capacity change from 0 to 8192
[  315.807693][ T9877] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  316.603339][ T9886] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1382'.
[  316.648826][ T9886] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1382'.
[  316.688113][ T9885] netlink: 60 bytes leftover after parsing attributes in process `syz.5.1382'.
[  317.237009][ T9890] loop5: detected capacity change from 0 to 2048
[  317.322693][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  317.356078][ T9890] EXT4-fs: Ignoring removed bh option
[  317.389660][ T9873] netlink: 'syz.1.1377': attribute type 4 has an invalid length.
[  317.447425][ T9890] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  317.464177][ T9873] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1377'.
[  317.502257][ T9892] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  317.553489][ T9890] EXT4-fs error (device loop5): ext4_xattr_ibody_find:2244: inode #12: comm syz.5.1384: corrupted in-inode xattr: e_name out of bounds
[  317.944472][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  319.638060][   T27] kauditd_printk_skb: 23 callbacks suppressed
[  319.638074][   T27] audit: type=1326 audit(1754786352.078:2095): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9907 comm="syz.5.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  319.863772][   T27] audit: type=1326 audit(1754786352.108:2096): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9907 comm="syz.5.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  319.957881][   T27] audit: type=1326 audit(1754786352.128:2097): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9907 comm="syz.5.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  319.980642][   T27] audit: type=1326 audit(1754786352.128:2098): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9907 comm="syz.5.1389" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  320.171359][   T27] audit: type=1326 audit(1754786352.608:2099): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  320.266164][   T27] audit: type=1326 audit(1754786352.638:2100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  320.347707][   T27] audit: type=1326 audit(1754786352.638:2101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  320.432970][   T27] audit: type=1326 audit(1754786352.638:2102): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  320.458639][ T9919] loop1: detected capacity change from 0 to 1024
[  320.477145][ T9919] EXT4-fs: Ignoring removed orlov option
[  320.491656][   T27] audit: type=1326 audit(1754786352.648:2103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  320.496873][ T9920] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1395'.
[  320.536090][   T27] audit: type=1326 audit(1754786352.648:2104): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9911 comm="syz.0.1392" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  320.554958][ T9920] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1395'.
[  320.573240][ T9920] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1395'.
[  320.583492][ T9920] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1395'.
[  320.594766][ T9919] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  320.646664][ T9920] netlink: 'syz.0.1395': attribute type 6 has an invalid length.
[  322.555875][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  323.280378][ T9958] wireguard0: entered promiscuous mode
[  323.318817][ T9958] wireguard0: entered allmulticast mode
[  323.699553][ T9953] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  323.719860][ T9953] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  323.739053][ T9953] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  323.755565][ T9953] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  323.860558][ T9953] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  324.119246][ T9953] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  324.130181][ T9953] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  324.177704][ T9953] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  324.513240][ T9968] loop0: detected capacity change from 0 to 1024
[  324.549318][ T9968] EXT4-fs: Ignoring removed orlov option
[  324.692103][ T5773] usb 6-1: new high-speed USB device number 2 using dummy_hcd
[  324.715246][ T9968] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  324.839178][   T27] kauditd_printk_skb: 24 callbacks suppressed
[  324.839190][   T27] audit: type=1800 audit(1754786357.278:2129): pid=9968 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1411" name="file1" dev="loop0" ino=15 res=0 errno=0
[  324.992405][   T27] audit: type=1804 audit(1754786357.388:2130): pid=9975 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1411" name="/newroot/360/file1/file1" dev="loop0" ino=15 res=1 errno=0
[  325.049003][ T5773] usb 6-1: unable to get BOS descriptor or descriptor too short
[  325.093963][ T5773] usb 6-1: unable to read config index 0 descriptor/start: -71
[  325.126833][   T27] audit: type=1800 audit(1754786357.388:2131): pid=9975 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1411" name="file1" dev="loop0" ino=15 res=0 errno=0
[  325.156785][ T5773] usb 6-1: can't read configurations, error -71
[  325.166434][   T50] Bluetooth: hci2: command 0x0c1a tx timeout
[  325.430610][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  325.723438][   T50] Bluetooth: hci0: command 0x0c1a tx timeout
[  325.854641][   T50] Bluetooth: hci4: command 0x0c1a tx timeout
[  326.132748][   T50] Bluetooth: hci5: command 0x0c1a tx timeout
[  326.475904][   T27] audit: type=1326 audit(1754786358.918:2132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9996 comm="syz.0.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  326.681850][   T27] audit: type=1326 audit(1754786358.948:2133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9996 comm="syz.0.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  326.815502][   T27] audit: type=1326 audit(1754786358.958:2134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9996 comm="syz.0.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  326.964346][   T27] audit: type=1326 audit(1754786358.958:2135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9996 comm="syz.0.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  327.077089][   T27] audit: type=1326 audit(1754786358.968:2136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9996 comm="syz.0.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  327.186327][   T27] audit: type=1326 audit(1754786358.978:2137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9996 comm="syz.0.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f30b4390b07 code=0x7ffc0000
[  327.308131][   T27] audit: type=1326 audit(1754786358.988:2138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9996 comm="syz.0.1422" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f30b4390a7c code=0x7ffc0000
[  328.552135][   T50] Bluetooth: hci4: command 0x0c1a tx timeout
[  328.558259][   T50] Bluetooth: hci5: command 0x0c1a tx timeout
[  331.586802][ T5789] Bluetooth: hci5: command 0x0c1a tx timeout
[  331.592981][ T5789] Bluetooth: hci4: command 0x0c1a tx timeout
[  331.943620][T10025] loop4: detected capacity change from 0 to 256
[  332.039234][T10025] FAT-fs (loop4): Directory bread(block 64) failed
[  332.060338][T10025] FAT-fs (loop4): Directory bread(block 65) failed
[  332.082168][T10025] FAT-fs (loop4): Directory bread(block 66) failed
[  332.102471][T10025] FAT-fs (loop4): Directory bread(block 67) failed
[  332.130016][T10025] FAT-fs (loop4): Directory bread(block 68) failed
[  332.152182][T10025] FAT-fs (loop4): Directory bread(block 69) failed
[  332.172071][T10025] FAT-fs (loop4): Directory bread(block 70) failed
[  332.178855][T10025] FAT-fs (loop4): Directory bread(block 71) failed
[  332.202281][T10025] FAT-fs (loop4): Directory bread(block 72) failed
[  332.218301][T10025] FAT-fs (loop4): Directory bread(block 73) failed
[  332.513333][T10037] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  332.566897][T10039] loop1: detected capacity change from 0 to 8192
[  332.656752][T10039] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  333.934223][T10039] netlink: 'syz.1.1439': attribute type 4 has an invalid length.
[  333.976300][T10039] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1439'.
[  333.985432][   T27] kauditd_printk_skb: 16 callbacks suppressed
[  333.985443][   T27] audit: type=1326 audit(1754786366.408:2155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1bcf85ba7 code=0x7ffc0000
[  334.220169][   T27] audit: type=1326 audit(1754786366.408:2156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa1bcf2add9 code=0x7ffc0000
[  334.343266][   T27] audit: type=1326 audit(1754786366.408:2157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1bcf85ba7 code=0x7ffc0000
[  334.444902][   T27] audit: type=1326 audit(1754786366.408:2158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa1bcf2add9 code=0x7ffc0000
[  334.521358][   T27] audit: type=1326 audit(1754786366.408:2159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1bcf85ba7 code=0x7ffc0000
[  334.602094][   T27] audit: type=1326 audit(1754786366.408:2160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa1bcf2add9 code=0x7ffc0000
[  334.710607][   T27] audit: type=1326 audit(1754786366.408:2161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1bcf85ba7 code=0x7ffc0000
[  334.807377][   T27] audit: type=1326 audit(1754786366.408:2162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa1bcf2add9 code=0x7ffc0000
[  334.880691][   T27] audit: type=1326 audit(1754786366.408:2163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7fa1bcf85ba7 code=0x7ffc0000
[  334.973280][   T27] audit: type=1326 audit(1754786366.408:2164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10063 comm="syz.4.1446" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fa1bcf2add9 code=0x7ffc0000
[  335.086850][T10075] loop5: detected capacity change from 0 to 764
[  335.912467][T10090] loop1: detected capacity change from 0 to 128
[  336.492125][T10101] loop1: detected capacity change from 0 to 2048
[  336.567432][T10101] Alternate GPT is invalid, using primary GPT.
[  336.576147][T10101]  loop1: p1 p2 p3
[  337.166895][T10107] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1463'.
[  337.272174][T10110] loop0: detected capacity change from 0 to 1764
[  337.681861][T10119] loop1: detected capacity change from 0 to 512
[  337.840593][T10119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  337.872170][T10119] ext4 filesystem being mounted at /402/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  337.904534][T10119] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  337.987445][T10119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1465'.
[  338.795560][T10146] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1474'.
[  339.211625][T10150] loop5: detected capacity change from 0 to 1024
[  339.230001][T10150] __quota_error: 98 callbacks suppressed
[  339.230014][T10150] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5
[  339.275750][T10152] bridge0: entered promiscuous mode
[  339.281581][T10150] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  339.293320][T10152] macsec1: entered promiscuous mode
[  339.300062][T10152] bridge0: port 1(macsec1) entered blocking state
[  339.311564][T10150] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1476: Failed to acquire dquot type 0
[  339.338674][T10152] bridge0: port 1(macsec1) entered disabled state
[  339.353618][T10150] EXT4-fs error (device loop5): mb_free_blocks:1943: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  339.377323][T10152] macsec1: entered allmulticast mode
[  339.386296][T10152] bridge0: entered allmulticast mode
[  339.391685][T10150] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1476: corrupted inode contents
[  339.419647][T10152] macsec1: left allmulticast mode
[  339.429672][T10152] bridge0: left allmulticast mode
[  339.449432][T10150] EXT4-fs error (device loop5): ext4_dirty_inode:6106: inode #13: comm syz.5.1476: mark_inode_dirty error
[  339.485253][T10150] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1476: corrupted inode contents
[  339.519006][T10150] EXT4-fs error (device loop5): __ext4_ext_dirty:202: inode #13: comm syz.5.1476: mark_inode_dirty error
[  339.533175][T10152] bridge0: left promiscuous mode
[  339.567741][T10150] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1476: corrupted inode contents
[  339.581174][T10150] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  339.592514][T10150] EXT4-fs error (device loop5): ext4_do_update_inode:5230: inode #13: comm syz.5.1476: corrupted inode contents
[  339.609027][T10150] EXT4-fs error (device loop5): ext4_truncate:4288: inode #13: comm syz.5.1476: mark_inode_dirty error
[  339.621633][T10150] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  339.635387][T10150] EXT4-fs (loop5): 1 truncate cleaned up
[  339.646129][T10150] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  339.794169][T10154] loop1: detected capacity change from 0 to 512
[  339.900317][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.037069][   T27] audit: type=1326 audit(1754786372.478:2263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  340.144819][   T27] audit: type=1326 audit(1754786372.498:2264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  340.272842][   T27] audit: type=1326 audit(1754786372.498:2265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  340.377823][   T27] audit: type=1326 audit(1754786372.508:2266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  340.477028][T10165] loop1: detected capacity change from 0 to 512
[  340.513158][   T27] audit: type=1326 audit(1754786372.508:2267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  340.548100][   T27] audit: type=1326 audit(1754786372.508:2268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  340.619914][T10165] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  340.646721][   T27] audit: type=1326 audit(1754786372.508:2269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  340.688435][T10165] ext4 filesystem being mounted at /407/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  340.723432][T10165] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  340.734851][   T27] audit: type=1326 audit(1754786372.508:2270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10156 comm="syz.0.1479" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  341.212654][T10165] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1480'.
[  342.421934][T10178] lo speed is unknown, defaulting to 1000
[  342.668787][T10177] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1484'.
[  342.723600][T10178] loop0: detected capacity change from 0 to 512
[  342.732732][T10178] EXT4-fs: Ignoring removed mblk_io_submit option
[  342.739258][T10178] EXT4-fs: Ignoring removed bh option
[  342.752191][T10178] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  342.763609][T10178] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  342.846716][T10178] EXT4-fs (loop0): 1 truncate cleaned up
[  342.854970][T10178] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  343.515064][T10194] loop4: detected capacity change from 0 to 256
[  343.538118][T10194] FAT-fs (loop4): Directory bread(block 64) failed
[  343.548685][T10194] FAT-fs (loop4): Directory bread(block 65) failed
[  343.558226][T10194] FAT-fs (loop4): Directory bread(block 66) failed
[  343.596013][T10194] FAT-fs (loop4): Directory bread(block 67) failed
[  343.615494][T10194] FAT-fs (loop4): Directory bread(block 68) failed
[  343.643180][T10194] FAT-fs (loop4): Directory bread(block 69) failed
[  343.687015][T10194] FAT-fs (loop4): Directory bread(block 70) failed
[  343.725539][T10194] FAT-fs (loop4): Directory bread(block 71) failed
[  343.752253][T10194] FAT-fs (loop4): Directory bread(block 72) failed
[  343.783360][T10194] FAT-fs (loop4): Directory bread(block 73) failed
[  344.033336][ T9313] kworker/u4:19: attempt to access beyond end of device
[  344.033336][ T9313] loop4: rw=1, sector=1224, nr_sectors = 4 limit=256
[  344.116592][T10200] netlink: 36 bytes leftover after parsing attributes in process `syz.5.1492'.
[  344.286680][T10204] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1494'.
[  344.342792][T10205] loop4: detected capacity change from 0 to 256
[  344.702284][T10216] loop4: detected capacity change from 0 to 2048
[  344.742228][T10216] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  344.865632][ T8851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.458796][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  346.597440][T10231] loop5: detected capacity change from 0 to 128
[  346.658826][T10231] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  346.690052][T10231] ext4 filesystem being mounted at /115/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  346.776996][T10235] loop0: detected capacity change from 0 to 256
[  346.899183][T10235] FAT-fs (loop0): Directory bread(block 64) failed
[  346.937865][T10235] FAT-fs (loop0): Directory bread(block 65) failed
[  346.947580][ T8865] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  346.978537][T10235] FAT-fs (loop0): Directory bread(block 66) failed
[  347.027748][T10235] FAT-fs (loop0): Directory bread(block 67) failed
[  347.050355][T10235] FAT-fs (loop0): Directory bread(block 68) failed
[  347.078229][T10235] FAT-fs (loop0): Directory bread(block 69) failed
[  347.087277][T10235] FAT-fs (loop0): Directory bread(block 70) failed
[  347.108791][T10235] FAT-fs (loop0): Directory bread(block 71) failed
[  347.130098][T10235] FAT-fs (loop0): Directory bread(block 72) failed
[  347.149525][T10235] FAT-fs (loop0): Directory bread(block 73) failed
[  347.378659][ T1100] kworker/u4:6: attempt to access beyond end of device
[  347.378659][ T1100] loop0: rw=1, sector=1224, nr_sectors = 4 limit=256
[  348.221416][   T27] kauditd_printk_skb: 35 callbacks suppressed
[  348.221428][   T27] audit: type=1326 audit(1754786380.658:2306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.304616][T10252] netlink: 'syz.0.1510': attribute type 29 has an invalid length.
[  348.324773][T10252] netlink: 'syz.0.1510': attribute type 29 has an invalid length.
[  348.351688][   T27] audit: type=1326 audit(1754786380.698:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.481082][   T27] audit: type=1326 audit(1754786380.708:2308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.520883][T10252] loop0: detected capacity change from 0 to 512
[  348.533964][   T27] audit: type=1326 audit(1754786380.708:2309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.556552][   T27] audit: type=1326 audit(1754786380.708:2310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.628837][T10256] netlink: 16 bytes leftover after parsing attributes in process `syz.5.1512'.
[  348.668633][   T27] audit: type=1326 audit(1754786380.708:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.728704][T10252] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  348.742696][T10252] EXT4-fs (loop0): orphan cleanup on readonly fs
[  348.782237][   T27] audit: type=1326 audit(1754786380.708:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.841287][T10252] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.1510: corrupted inode contents
[  348.887686][   T27] audit: type=1326 audit(1754786380.708:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  348.910395][T10252] EXT4-fs (loop0): Remounting filesystem read-only
[  348.932571][T10252] EXT4-fs (loop0): 1 truncate cleaned up
[  348.969582][   T27] audit: type=1326 audit(1754786380.718:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  349.028552][   T27] audit: type=1326 audit(1754786380.718:2315): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10251 comm="syz.0.1510" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  349.111138][T10264] lo speed is unknown, defaulting to 1000
[  349.473512][ T9311] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  349.524652][ T9311] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  349.543451][ T9311] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  349.573749][T10252] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  349.614497][T10252] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  349.696872][T10275] lo speed is unknown, defaulting to 1000
[  350.339164][T10296] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1525'.
[  355.036322][T10309] netlink: 'syz.0.1532': attribute type 1 has an invalid length.
[  355.252988][T10309] 8021q: adding VLAN 0 to HW filter on device bond2
[  355.336833][T10310] 8021q: adding VLAN 0 to HW filter on device batadv0
[  355.383185][T10310] bond2: (slave batadv0): making interface the new active one
[  355.405482][T10310] bond2: (slave batadv0): Enslaving as an active interface with an up link
[  355.794480][T10325] syz.1.1539[10325] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  355.794904][T10325] syz.1.1539[10325] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  356.020405][T10333] IPVS: Error connecting to the multicast addr
[  356.191396][T10344] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1546'.
[  356.213805][T10345] loop0: detected capacity change from 0 to 512
[  356.234077][T10345] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  356.276556][   T27] kauditd_printk_skb: 55 callbacks suppressed
[  356.276566][   T27] audit: type=1804 audit(1754786388.718:2365): pid=10345 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.0.1547" name="/newroot/387/file0/bus" dev="loop0" ino=18 res=1 errno=0
[  356.393263][T10354] syz.4.1549[10354] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  356.393870][T10354] syz.4.1549[10354] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  356.497267][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  356.664444][T10361] netlink: 4276 bytes leftover after parsing attributes in process `syz.0.1551'.
[  356.675218][T10361] netlink: 280 bytes leftover after parsing attributes in process `syz.0.1551'.
[  356.890277][T10371] loop0: detected capacity change from 0 to 256
[  357.488290][T10380] netlink: 36 bytes leftover after parsing attributes in process `syz.1.1560'.
[  357.523955][T10374] loop5: detected capacity change from 0 to 8192
[  358.529749][T10374] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  360.790200][   T27] audit: type=1326 audit(1754786393.218:2366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  360.818082][T10385] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1561'.
[  360.881527][T10384] loop0: detected capacity change from 0 to 512
[  360.905753][   T27] audit: type=1326 audit(1754786393.218:2367): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  360.940592][T10384] EXT4-fs: Ignoring removed nobh option
[  361.026781][   T27] audit: type=1326 audit(1754786393.268:2368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.112764][T10384] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #3: comm syz.0.1562: corrupted inode contents
[  361.134936][   T27] audit: type=1326 audit(1754786393.268:2369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.171556][T10384] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #3: comm syz.0.1562: mark_inode_dirty error
[  361.192236][T10384] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #3: comm syz.0.1562: corrupted inode contents
[  361.211008][T10392] netlink: 4276 bytes leftover after parsing attributes in process `syz.5.1563'.
[  361.221715][   T27] audit: type=1326 audit(1754786393.268:2370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.260957][T10392] netlink: 280 bytes leftover after parsing attributes in process `syz.5.1563'.
[  361.278618][T10384] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #3: comm syz.0.1562: mark_inode_dirty error
[  361.310774][T10384] Quota error (device loop0): write_blk: dquota write failed
[  361.335162][   T27] audit: type=1326 audit(1754786393.268:2371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.379408][T10384] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota
[  361.426181][T10384] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1562: Failed to acquire dquot type 0
[  361.459072][   T27] audit: type=1326 audit(1754786393.268:2372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.507979][T10384] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.1562: corrupted inode contents
[  361.530614][   T27] audit: type=1326 audit(1754786393.278:2373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.553494][   T27] audit: type=1326 audit(1754786393.278:2374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.555729][T10384] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #16: comm syz.0.1562: mark_inode_dirty error
[  361.647577][T10384] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.1562: corrupted inode contents
[  361.688920][T10384] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #16: comm syz.0.1562: mark_inode_dirty error
[  361.720663][   T27] audit: type=1326 audit(1754786393.278:2375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.762420][T10384] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.1562: corrupted inode contents
[  361.775509][   T27] audit: type=1326 audit(1754786393.278:2376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.802206][   T27] audit: type=1326 audit(1754786393.278:2377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.835189][T10384] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  361.854970][T10384] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.1562: corrupted inode contents
[  361.879545][   T27] audit: type=1326 audit(1754786393.278:2378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10382 comm="syz.0.1562" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30b438ebe9 code=0x7ffc0000
[  361.913176][T10384] EXT4-fs error (device loop0): ext4_truncate:4288: inode #16: comm syz.0.1562: mark_inode_dirty error
[  361.947027][T10384] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  361.982257][T10384] EXT4-fs (loop0): 1 truncate cleaned up
[  361.996413][T10384] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  362.024727][T10384] ext4 filesystem being mounted at /392/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  362.159200][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  362.717538][T10418] loop5: detected capacity change from 0 to 1024
[  362.726579][T10418] EXT4-fs (loop5): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  362.741821][T10418] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  362.765486][T10418] JBD2: no valid journal superblock found
[  362.772348][T10418] EXT4-fs (loop5): Could not load journal inode
[  362.890342][T10418] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1573'.
[  362.986055][T10415] netlink: 'syz.0.1571': attribute type 4 has an invalid length.
[  363.001795][T10415] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1571'.
[  363.734036][T10455] loop0: detected capacity change from 0 to 512
[  363.744689][T10455] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended
[  363.758081][T10455] EXT4-fs (loop0): warning: maximal mount count reached, running e2fsck is recommended
[  363.785902][T10455] EXT4-fs error (device loop0): ext4_orphan_get:1399: comm syz.0.1588: inode #15: comm syz.0.1588: iget: illegal inode #
[  363.821228][T10455] EXT4-fs (loop0): Remounting filesystem read-only
[  363.841714][T10455] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  363.903571][T10455] 9pnet: p9_errstr2errno: server reported unknown error 1844674
[  363.996108][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  364.016292][T10456] netlink: 'syz.4.1589': attribute type 4 has an invalid length.
[  364.026755][T10456] netlink: 17 bytes leftover after parsing attributes in process `syz.4.1589'.
[  364.039419][T10464] bond1: entered promiscuous mode
[  364.054622][T10464] bond1: entered allmulticast mode
[  364.071225][T10464] 8021q: adding VLAN 0 to HW filter on device bond1
[  364.157066][T10468] loop0: detected capacity change from 0 to 1024
[  364.171180][T10461] bridge2: entered promiscuous mode
[  364.176950][T10461] bridge2: entered allmulticast mode
[  364.183501][T10461] bond1: (slave bridge2): Enslaving as an active interface with an up link
[  364.214102][T10468] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  364.229180][T10468] ext4 filesystem being mounted at /401/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  364.283389][T10468] EXT4-fs error (device loop0): ext4_map_blocks:718: inode #15: comm syz.0.1593: lblock 0 mapped to illegal pblock 0 (length 1)
[  364.306694][T10468] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 117
[  364.341108][T10468] EXT4-fs (loop0): This should not happen!! Data will be lost
[  364.341108][T10468] 
[  364.404272][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  364.441450][T10474] netlink: 'syz.1.1595': attribute type 6 has an invalid length.
[  364.670636][T10487] loop4: detected capacity change from 0 to 764
[  364.698792][T10487] Symlink component flag not implemented
[  364.713550][T10487] Symlink component flag not implemented (7)
[  364.865672][T10493] bond1: entered promiscuous mode
[  364.871011][T10493] bond1: entered allmulticast mode
[  364.876726][T10493] 8021q: adding VLAN 0 to HW filter on device bond1
[  364.898978][T10493] bridge1: entered promiscuous mode
[  364.904980][T10493] bridge1: entered allmulticast mode
[  364.917237][T10493] bond1: (slave bridge1): Enslaving as an active interface with an up link
[  365.095903][T10498] netlink: 'syz.0.1606': attribute type 4 has an invalid length.
[  365.103661][T10498] netlink: 17 bytes leftover after parsing attributes in process `syz.0.1606'.
[  365.346847][T10509] loop0: detected capacity change from 0 to 512
[  365.362979][T10509] EXT4-fs (loop0): orphan cleanup on readonly fs
[  365.371405][T10509] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.1611: bg 0: block 248: padding at end of block bitmap is not set
[  365.391879][T10509] EXT4-fs error (device loop0): ext4_acquire_dquot:6938: comm syz.0.1611: Failed to acquire dquot type 1
[  365.415799][T10509] EXT4-fs (loop0): 1 truncate cleaned up
[  365.435452][T10509] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  365.494522][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  365.608721][T10514] lo speed is unknown, defaulting to 1000
[  366.189858][T10536] loop0: detected capacity change from 0 to 1024
[  366.203015][T10536] EXT4-fs: Ignoring removed orlov option
[  366.232992][T10536] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  367.188504][T10552] loop5: detected capacity change from 0 to 1024
[  367.212467][   T27] kauditd_printk_skb: 58 callbacks suppressed
[  367.212480][   T27] audit: type=1804 audit(1754786399.618:2435): pid=10550 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1621" name="/newroot/411/file1/file1" dev="loop0" ino=15 res=1 errno=0
[  367.291914][   T27] audit: type=1800 audit(1754786399.618:2436): pid=10550 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1621" name="file1" dev="loop0" ino=15 res=0 errno=0
[  367.378552][T10552] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  367.627655][T10558] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.1625'.
[  367.640379][T10557] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1626'.
[  367.684814][T10552] netlink: 16402 bytes leftover after parsing attributes in process `syz.5.1625'.
[  367.786331][T10557] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1626'.
[  367.836273][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  368.034127][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  370.951464][T10571] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  371.417383][T10576] loop4: detected capacity change from 0 to 256
[  371.530704][T10576] FAT-fs (loop4): Directory bread(block 64) failed
[  371.548815][T10576] FAT-fs (loop4): Directory bread(block 65) failed
[  371.567441][T10576] FAT-fs (loop4): Directory bread(block 66) failed
[  371.584142][T10576] FAT-fs (loop4): Directory bread(block 67) failed
[  371.616723][T10576] FAT-fs (loop4): Directory bread(block 68) failed
[  371.631962][T10576] FAT-fs (loop4): Directory bread(block 69) failed
[  371.651942][T10576] FAT-fs (loop4): Directory bread(block 70) failed
[  371.671860][T10576] FAT-fs (loop4): Directory bread(block 71) failed
[  371.687496][T10576] FAT-fs (loop4): Directory bread(block 72) failed
[  371.712667][T10580] tmpfs: Bad value for 'mpol'
[  371.717507][T10576] FAT-fs (loop4): Directory bread(block 73) failed
[  372.234842][T10588] loop4: detected capacity change from 0 to 512
[  372.334059][T10588] Quota error (device loop4): do_check_range: Getting dqdh_next_free 256 out of range 0-7
[  372.375633][T10588] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota
[  372.422153][T10588] EXT4-fs error (device loop4): ext4_acquire_dquot:6938: comm syz.4.1638: Failed to acquire dquot type 1
[  372.478783][T10588] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.1638: corrupted inode contents
[  372.531936][T10588] EXT4-fs error (device loop4): ext4_dirty_inode:6106: inode #16: comm syz.4.1638: mark_inode_dirty error
[  372.584044][T10588] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.1638: corrupted inode contents
[  372.821872][T10588] EXT4-fs error (device loop4): __ext4_ext_dirty:202: inode #16: comm syz.4.1638: mark_inode_dirty error
[  373.132163][T10588] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.1638: corrupted inode contents
[  373.222641][T10588] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  373.286242][T10588] EXT4-fs error (device loop4): ext4_do_update_inode:5230: inode #16: comm syz.4.1638: corrupted inode contents
[  373.346997][T10601] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  373.368774][T10588] EXT4-fs error (device loop4): ext4_truncate:4288: inode #16: comm syz.4.1638: mark_inode_dirty error
[  373.447854][T10588] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  373.476471][T10588] EXT4-fs (loop4): 1 truncate cleaned up
[  373.538681][T10588] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  373.576707][T10588] ext4 filesystem being mounted at /135/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  373.599256][T10605] syz.0.1642[10605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  373.599834][T10605] syz.0.1642[10605] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  373.678285][T10605] netlink: 'syz.0.1642': attribute type 13 has an invalid length.
[  374.227194][ T8851] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  374.427494][T10610] syz.4.1643[10610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  374.428067][T10610] syz.4.1643[10610] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  374.688410][T10616] loop1: detected capacity change from 0 to 256
[  374.756150][T10616] FAT-fs (loop1): Directory bread(block 64) failed
[  374.769327][T10616] FAT-fs (loop1): Directory bread(block 65) failed
[  374.779714][T10616] FAT-fs (loop1): Directory bread(block 66) failed
[  374.789846][T10616] FAT-fs (loop1): Directory bread(block 67) failed
[  374.816169][T10616] FAT-fs (loop1): Directory bread(block 68) failed
[  374.838897][T10616] FAT-fs (loop1): Directory bread(block 69) failed
[  374.865083][T10616] FAT-fs (loop1): Directory bread(block 70) failed
[  374.886585][T10616] FAT-fs (loop1): Directory bread(block 71) failed
[  374.905860][T10616] FAT-fs (loop1): Directory bread(block 72) failed
[  374.926037][T10616] FAT-fs (loop1): Directory bread(block 73) failed
[  375.204820][T10623] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1649'.
[  375.536340][T10630] netlink: 16402 bytes leftover after parsing attributes in process `syz.4.1651'.
[  375.590599][T10629] loop0: detected capacity change from 0 to 512
[  375.659325][T10629] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  375.705124][T10629] ext4 filesystem being mounted at /421/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  376.348468][T10644] netlink: 132 bytes leftover after parsing attributes in process `syz.4.1656'.
[  376.361303][ T5782] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  376.837537][T10650] loop1: detected capacity change from 0 to 512
[  376.853597][T10650] EXT4-fs: Ignoring removed nobh option
[  376.874524][T10650] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #3: comm syz.1.1661: corrupted inode contents
[  376.905132][T10650] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #3: comm syz.1.1661: mark_inode_dirty error
[  376.967288][T10655] loop0: detected capacity change from 0 to 256
[  376.988694][T10650] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #3: comm syz.1.1661: corrupted inode contents
[  376.999003][T10655] FAT-fs (loop0): Directory bread(block 64) failed
[  377.010012][T10655] FAT-fs (loop0): Directory bread(block 65) failed
[  377.016554][T10650] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #3: comm syz.1.1661: mark_inode_dirty error
[  377.020178][T10650] Quota error (device loop1): write_blk: dquota write failed
[  377.039292][T10656] loop5: detected capacity change from 0 to 1024
[  377.045816][T10650] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[  377.045925][T10650] EXT4-fs error (device loop1): ext4_acquire_dquot:6938: comm syz.1.1661: Failed to acquire dquot type 0
[  377.055895][T10655] FAT-fs (loop0): Directory bread(block 66) failed
[  377.055925][T10655] FAT-fs (loop0): Directory bread(block 67) failed
[  377.056013][T10655] FAT-fs (loop0): Directory bread(block 68) failed
[  377.076949][T10650] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.1661: corrupted inode contents
[  377.082805][T10655] FAT-fs (loop0): Directory bread(block 69) failed
[  377.109446][T10655] FAT-fs (loop0): Directory bread(block 70) failed
[  377.109702][T10650] EXT4-fs error (device loop1): ext4_dirty_inode:6106: inode #16: comm syz.1.1661: mark_inode_dirty error
[  377.116109][T10655] FAT-fs (loop0): Directory bread(block 71) failed
[  377.116202][T10655] FAT-fs (loop0): Directory bread(block 72) failed
[  377.143013][T10655] FAT-fs (loop0): Directory bread(block 73) failed
[  377.143206][T10650] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.1661: corrupted inode contents
[  377.164229][T10656] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  377.168246][T10650] EXT4-fs error (device loop1): __ext4_ext_dirty:202: inode #16: comm syz.1.1661: mark_inode_dirty error
[  377.200074][T10650] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.1661: corrupted inode contents
[  377.223789][T10650] EXT4-fs error (device loop1) in ext4_orphan_del:305: Corrupt filesystem
[  377.250315][T10650] EXT4-fs error (device loop1): ext4_do_update_inode:5230: inode #16: comm syz.1.1661: corrupted inode contents
[  377.274197][ T1100] netdevsim netdevsim4 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.306024][T10650] EXT4-fs error (device loop1): ext4_truncate:4288: inode #16: comm syz.1.1661: mark_inode_dirty error
[  377.357315][T10650] EXT4-fs error (device loop1) in ext4_process_orphan:347: Corrupt filesystem
[  377.380695][T10650] EXT4-fs (loop1): 1 truncate cleaned up
[  377.393975][T10650] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  377.399156][ T1100] netdevsim netdevsim4 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.422170][T10650] ext4 filesystem being mounted at /446/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  377.501263][ T1100] netdevsim netdevsim4 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.575118][ T1100] netdevsim netdevsim4 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  377.715205][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  377.888036][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  378.058485][ T5789] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  378.069389][ T5789] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  378.077985][ T5789] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  378.087848][ T5789] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  378.102524][ T5789] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  378.110072][ T5789] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  378.327617][T10672] lo speed is unknown, defaulting to 1000
[  378.690877][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  379.301967][T10684] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  379.750630][T10672] chnl_net:caif_netlink_parms(): no params data found
[  379.762639][T10690] loop1: detected capacity change from 0 to 2048
[  379.809139][T10690] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  379.851747][   T27] audit: type=1800 audit(1754786412.288:2437): pid=10689 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1675" name="bus" dev="loop1" ino=18 res=0 errno=0
[  379.962845][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  380.131210][T10672] bridge0: port 1(bridge_slave_0) entered blocking state
[  380.164019][T10672] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.171184][T10672] bridge_slave_0: entered allmulticast mode
[  380.212087][   T50] Bluetooth: hci1: command tx timeout
[  380.228536][T10672] bridge_slave_0: entered promiscuous mode
[  380.239911][T10672] bridge0: port 2(bridge_slave_1) entered blocking state
[  380.262597][T10672] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.269765][T10672] bridge_slave_1: entered allmulticast mode
[  380.296607][T10672] bridge_slave_1: entered promiscuous mode
[  380.479378][T10672] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  380.511968][T10672] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  380.569261][T10704] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  380.586704][T10704] bridge_slave_1: left allmulticast mode
[  380.597414][T10704] bridge_slave_1: left promiscuous mode
[  380.609425][T10704] bridge0: port 2(bridge_slave_1) entered disabled state
[  380.619764][T10704] bridge_slave_0: left promiscuous mode
[  380.626035][T10704] bridge0: port 1(bridge_slave_0) entered disabled state
[  380.813852][ T5789] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  380.816366][T10672] team0: Port device team_slave_0 added
[  380.822778][ T5789] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  380.835513][ T5789] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  380.846152][T10672] team0: Port device team_slave_1 added
[  380.865580][ T5789] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  380.873873][ T5789] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  380.882474][ T5789] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  380.941284][ T1100] hsr_slave_0: left promiscuous mode
[  380.948828][ T1100] hsr_slave_1: left promiscuous mode
[  380.961392][ T1100] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  380.971405][ T1100] batman_adv: batadv0: Removing interface: batadv_slave_0
[  380.984994][ T1100] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  380.998334][ T1100] batman_adv: batadv0: Removing interface: batadv_slave_1
[  381.051019][ T1100] veth1_macvtap: left promiscuous mode
[  381.060340][ T1100] veth0_macvtap: left promiscuous mode
[  381.069814][ T1100] veth1_vlan: left promiscuous mode
[  381.082185][ T1100] veth0_vlan: left promiscuous mode
[  381.324774][ T1100] bond1 (unregistering): (slave bridge1): Releasing backup interface
[  381.334766][ T1100] bridge1 (unregistering): left promiscuous mode
[  381.341197][ T1100] bridge1 (unregistering): left allmulticast mode
[  382.065419][ T1100] bond1 (unregistering): Released all slaves
[  382.282262][   T50] Bluetooth: hci1: command tx timeout
[  382.848054][T10718] loop1: detected capacity change from 0 to 256
[  382.876029][T10718] FAT-fs (loop1): Directory bread(block 64) failed
[  382.883452][T10718] FAT-fs (loop1): Directory bread(block 65) failed
[  382.890071][T10718] FAT-fs (loop1): Directory bread(block 66) failed
[  382.899303][T10718] FAT-fs (loop1): Directory bread(block 67) failed
[  382.906252][T10718] FAT-fs (loop1): Directory bread(block 68) failed
[  382.912841][T10718] FAT-fs (loop1): Directory bread(block 69) failed
[  382.919459][T10718] FAT-fs (loop1): Directory bread(block 70) failed
[  382.927676][   T50] Bluetooth: hci2: command tx timeout
[  382.931390][T10718] FAT-fs (loop1): Directory bread(block 71) failed
[  382.941129][T10718] FAT-fs (loop1): Directory bread(block 72) failed
[  382.947919][T10718] FAT-fs (loop1): Directory bread(block 73) failed
[  383.050541][ T1100] team0 (unregistering): Port device team_slave_1 removed
[  383.106365][ T1100] team0 (unregistering): Port device team_slave_0 removed
[  383.145847][ T1100] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  383.191629][ T1100] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  383.636470][ T1100] bond0 (unregistering): Released all slaves
[  383.668699][T10672] batman_adv: batadv0: Adding interface: batadv_slave_0
[  383.675848][T10672] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  383.702346][T10672] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  383.741010][T10720] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1686'.
[  383.808413][T10672] batman_adv: batadv0: Adding interface: batadv_slave_1
[  383.836956][T10672] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  383.942062][T10672] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  384.081490][T10672] hsr_slave_0: entered promiscuous mode
[  384.096186][T10672] hsr_slave_1: entered promiscuous mode
[  384.129441][T10705] lo speed is unknown, defaulting to 1000
[  384.362413][   T50] Bluetooth: hci1: command tx timeout
[  384.655688][T10705] chnl_net:caif_netlink_parms(): no params data found
[  384.720715][T10672] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  384.737583][T10672] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  384.750978][T10672] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  384.782397][T10672] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  384.823267][T10705] bridge0: port 1(bridge_slave_0) entered blocking state
[  384.830453][T10705] bridge0: port 1(bridge_slave_0) entered disabled state
[  384.838053][T10705] bridge_slave_0: entered allmulticast mode
[  384.846583][T10705] bridge_slave_0: entered promiscuous mode
[  384.872424][T10705] bridge0: port 2(bridge_slave_1) entered blocking state
[  384.879676][T10705] bridge0: port 2(bridge_slave_1) entered disabled state
[  384.887999][T10705] bridge_slave_1: entered allmulticast mode
[  384.895364][T10705] bridge_slave_1: entered promiscuous mode
[  384.931633][T10705] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  384.968002][T10705] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  385.005403][   T50] Bluetooth: hci2: command tx timeout
[  385.005567][T10705] team0: Port device team_slave_0 added
[  385.027973][T10705] team0: Port device team_slave_1 added
[  385.099474][T10705] batman_adv: batadv0: Adding interface: batadv_slave_0
[  385.107898][T10747] loop1: detected capacity change from 0 to 256
[  385.112361][T10705] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.146007][T10705] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  385.159411][T10705] batman_adv: batadv0: Adding interface: batadv_slave_1
[  385.164064][T10747] FAT-fs (loop1): Directory bread(block 64) failed
[  385.170886][T10705] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  385.175475][T10747] FAT-fs (loop1): Directory bread(block 65) failed
[  385.203375][T10705] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  385.224671][T10747] FAT-fs (loop1): Directory bread(block 66) failed
[  385.233282][T10747] FAT-fs (loop1): Directory bread(block 67) failed
[  385.243291][T10747] FAT-fs (loop1): Directory bread(block 68) failed
[  385.249904][T10747] FAT-fs (loop1): Directory bread(block 69) failed
[  385.256978][T10747] FAT-fs (loop1): Directory bread(block 70) failed
[  385.263869][T10747] FAT-fs (loop1): Directory bread(block 71) failed
[  385.271675][T10747] FAT-fs (loop1): Directory bread(block 72) failed
[  385.278371][T10747] FAT-fs (loop1): Directory bread(block 73) failed
[  385.359633][T10705] hsr_slave_0: entered promiscuous mode
[  385.379888][T10705] hsr_slave_1: entered promiscuous mode
[  385.386883][T10705] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  385.395311][T10705] Cannot create hsr debugfs directory
[  385.401060][ T9311] kworker/u4:17: attempt to access beyond end of device
[  385.401060][ T9311] loop1: rw=1, sector=1224, nr_sectors = 4 limit=256
[  385.498407][T10672] 8021q: adding VLAN 0 to HW filter on device bond0
[  385.643238][T10672] 8021q: adding VLAN 0 to HW filter on device team0
[  385.695113][ T8748] bridge0: port 1(bridge_slave_0) entered blocking state
[  385.702310][ T8748] bridge0: port 1(bridge_slave_0) entered forwarding state
[  385.723783][ T8748] bridge0: port 2(bridge_slave_1) entered blocking state
[  385.730957][ T8748] bridge0: port 2(bridge_slave_1) entered forwarding state
[  386.442204][   T50] Bluetooth: hci1: command tx timeout
[  386.833313][T10705] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  387.082340][   T50] Bluetooth: hci2: command tx timeout
[  387.108653][T10705] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  387.137876][T10705] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  387.246859][T10705] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  387.406799][T10672] 8021q: adding VLAN 0 to HW filter on device batadv0
[  387.740585][T10783] loop5: detected capacity change from 0 to 256
[  387.778214][T10705] 8021q: adding VLAN 0 to HW filter on device bond0
[  387.787839][T10783] FAT-fs (loop5): Directory bread(block 64) failed
[  387.799472][T10783] FAT-fs (loop5): Directory bread(block 65) failed
[  387.809346][T10783] FAT-fs (loop5): Directory bread(block 66) failed
[  387.820676][T10783] FAT-fs (loop5): Directory bread(block 67) failed
[  387.829066][T10783] FAT-fs (loop5): Directory bread(block 68) failed
[  387.839747][T10783] FAT-fs (loop5): Directory bread(block 69) failed
[  387.849135][T10783] FAT-fs (loop5): Directory bread(block 70) failed
[  387.855888][T10783] FAT-fs (loop5): Directory bread(block 71) failed
[  387.869384][T10705] 8021q: adding VLAN 0 to HW filter on device team0
[  387.870197][T10783] FAT-fs (loop5): Directory bread(block 72) failed
[  387.898741][T10783] FAT-fs (loop5): Directory bread(block 73) failed
[  387.941803][ T1141] bridge0: port 1(bridge_slave_0) entered blocking state
[  387.949060][ T1141] bridge0: port 1(bridge_slave_0) entered forwarding state
[  387.985955][ T9313] bridge0: port 2(bridge_slave_1) entered blocking state
[  387.993121][ T9313] bridge0: port 2(bridge_slave_1) entered forwarding state
[  388.035757][ T9313] kworker/u4:19: attempt to access beyond end of device
[  388.035757][ T9313] loop5: rw=1, sector=1224, nr_sectors = 4 limit=256
[  388.075582][ T1100] hsr_slave_0: left promiscuous mode
[  388.089843][ T1100] hsr_slave_1: left promiscuous mode
[  388.107788][   T27] audit: type=1326 audit(1754786420.548:2438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10787 comm="syz.5.1702" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6f4058ebe9 code=0x0
[  388.132971][ T1100] bond2 (unregistering): (slave batadv0): Releasing active interface
[  388.258026][ T1100] bond2 (unregistering): Released all slaves
[  388.326586][ T1100] bond1 (unregistering): (slave bridge3): Releasing backup interface
[  388.376729][ T1100] bond1 (unregistering): Released all slaves
[  389.151747][ T1100] team0 (unregistering): Port device team_slave_1 removed
[  389.165454][   T50] Bluetooth: hci2: command tx timeout
[  389.220205][ T1100] team0 (unregistering): Port device team_slave_0 removed
[  389.281662][ T1100] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  389.370424][ T1100] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  389.781250][T10796] loop1: detected capacity change from 0 to 8192
[  389.791348][T10796] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  389.987205][ T1100] bond0 (unregistering): Released all slaves
[  390.042991][T10789] ÿÿÿÿÿÿ: renamed from vlan1 (while UP)
[  390.248975][T10796] netlink: 'syz.1.1705': attribute type 4 has an invalid length.
[  390.278607][T10796] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1705'.
[  390.310995][T10672] veth0_vlan: entered promiscuous mode
[  390.387949][T10672] veth1_vlan: entered promiscuous mode
[  390.909625][T10672] veth0_macvtap: entered promiscuous mode
[  391.018901][T10672] veth1_macvtap: entered promiscuous mode
[  391.136402][T10672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  391.189165][T10672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  391.238017][T10672] batman_adv: batadv0: Interface activated: batadv_slave_0
[  391.314073][T10672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  391.333975][T10672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  391.346838][T10672] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  391.359753][T10672] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  391.376907][T10672] batman_adv: batadv0: Interface activated: batadv_slave_1
[  391.410136][T10705] 8021q: adding VLAN 0 to HW filter on device batadv0
[  391.431156][T10672] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  391.453442][T10672] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  391.477395][T10672] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  391.507128][T10672] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  392.170498][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  392.185838][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  392.244025][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  392.251951][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  392.530627][T10705] veth0_vlan: entered promiscuous mode
[  392.581519][T10705] veth1_vlan: entered promiscuous mode
[  392.653302][T10705] veth0_macvtap: entered promiscuous mode
[  392.666969][T10705] veth1_macvtap: entered promiscuous mode
[  392.810087][T10705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  392.869271][T10705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  392.958854][T10705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  393.068213][T10705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.216843][T10705] batman_adv: batadv0: Interface activated: batadv_slave_0
[  393.335315][T10705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.390458][T10705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.441573][T10705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.494358][T10705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.543175][T10705] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  393.592143][T10705] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  393.631531][T10705] batman_adv: batadv0: Interface activated: batadv_slave_1
[  393.710797][T10705] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  393.751028][T10705] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  393.796878][T10705] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  393.831479][T10705] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  394.198547][ T1141] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  394.237726][ T1141] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  394.396838][ T1141] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  394.468652][ T1141] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  394.771650][T10834] loop5: detected capacity change from 0 to 1024
[  394.795682][T10836] loop7: detected capacity change from 0 to 1024
[  394.803330][T10837] netlink: 16 bytes leftover after parsing attributes in process `syz.6.1715'.
[  394.829346][T10834] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  394.999131][T10836] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  395.033159][T10834] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.1714: bg 0: block 10: padding at end of block bitmap is not set
[  395.075174][T10834] Quota error (device loop5): write_blk: dquota write failed
[  395.082878][T10834] Quota error (device loop5): find_free_dqentry: Can't write quota data block 2
[  395.095084][T10834] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  395.105583][T10834] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1714: Failed to acquire dquot type 0
[  395.220126][T10834] Quota error (device loop5): write_blk: dquota write failed
[  395.274439][T10834] Quota error (device loop5): find_free_dqentry: Can't write quota data block 2
[  395.347362][T10834] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  395.437781][T10834] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1714: Failed to acquire dquot type 0
[  395.528855][T10834] EXT4-fs error (device loop5): ext4_free_blocks:6681: comm syz.5.1714: Freeing blocks not in datazone - block = 0, count = 4096
[  395.707407][T10834] Quota error (device loop5): write_blk: dquota write failed
[  395.972202][T10834] Quota error (device loop5): find_free_dqentry: Can't write quota data block 2
[  395.981529][T10834] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  396.002890][T10834] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1714: Failed to acquire dquot type 0
[  396.165456][T10834] EXT4-fs (loop5): 1 orphan inode deleted
[  396.951810][T10854] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1718'.
[  397.093600][T10855] loop6: detected capacity change from 0 to 512
[  397.103919][T10855] EXT4-fs: Ignoring removed mblk_io_submit option
[  397.110455][T10855] EXT4-fs: Ignoring removed bh option
[  397.174471][T10855] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  397.185891][T10855] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  397.212685][T10855] EXT4-fs (loop6): 1 truncate cleaned up
[  397.222247][T10855] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  397.314115][T10834] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  397.474931][T10834] Quota error (device loop5): write_blk: dquota write failed
[  397.493390][T10834] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1714: Failed to acquire dquot type 0
[  398.164030][T10705] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.198052][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.368590][T10672] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.397263][T10864] loop5: detected capacity change from 0 to 512
[  398.464524][T10864] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  398.501671][T10864] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  398.535945][T10864] EXT4-fs (loop5): shut down requested (0)
[  398.703705][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  398.804589][T10881] netlink: 4276 bytes leftover after parsing attributes in process `syz.5.1727'.
[  398.982789][T10885] loop6: detected capacity change from 0 to 512
[  398.997016][T10886] netlink: 'syz.5.1729': attribute type 1 has an invalid length.
[  399.026659][T10886] bond0: entered promiscuous mode
[  399.027067][T10885] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  399.031853][T10886] bond0: entered allmulticast mode
[  399.052607][T10886] 8021q: adding VLAN 0 to HW filter on device bond0
[  399.107749][T10885] ext4 filesystem being mounted at /8/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  399.180587][T10891] netlink: 16 bytes leftover after parsing attributes in process `syz.1.1728'.
[  399.406903][T10886] bridge0: entered promiscuous mode
[  399.415482][T10885] EXT4-fs (loop6): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  399.459840][T10886] bridge0: entered allmulticast mode
[  399.521004][T10886] bond0: (slave bridge0): Enslaving as an active interface with an up link
[  400.098447][T10899] loop5: detected capacity change from 0 to 512
[  400.170959][T10899] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  400.365829][T10899] ext4 filesystem being mounted at /169/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  400.583309][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  400.680019][T10672] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  400.927744][T10912] netlink: 4276 bytes leftover after parsing attributes in process `syz.7.1737'.
[  400.948516][T10908] bond2: entered promiscuous mode
[  400.972258][T10908] bond2: entered allmulticast mode
[  400.992364][T10908] 8021q: adding VLAN 0 to HW filter on device bond2
[  401.100630][T10919] loop5: detected capacity change from 0 to 512
[  401.110121][T10919] EXT4-fs: Ignoring removed bh option
[  401.121453][T10919] EXT4-fs: Ignoring removed mblk_io_submit option
[  401.130613][T10919] EXT4-fs (loop5): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock
[  401.151602][T10919] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  401.160182][T10919] EXT4-fs (loop5): orphan cleanup on readonly fs
[  401.189120][T10919] __quota_error: 7 callbacks suppressed
[  401.189134][T10919] Quota error (device loop5): do_insert_tree: Free block already used in tree: block 4
[  401.206245][T10919] Quota error (device loop5): qtree_write_dquot: Error -5 occurred while creating quota
[  401.216345][T10919] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1734: Failed to acquire dquot type 1
[  401.228471][T10919] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:478: comm syz.5.1734: Invalid block bitmap block 0 in block_group 0
[  401.251059][T10919] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:478: comm syz.5.1734: Invalid block bitmap block 0 in block_group 0
[  401.267204][T10919] EXT4-fs error (device loop5): ext4_read_block_bitmap_nowait:478: comm syz.5.1734: Invalid block bitmap block 0 in block_group 0
[  401.290765][T10919] Quota error (device loop5): write_blk: dquota write failed
[  401.298961][T10919] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  401.309051][T10919] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1734: Failed to acquire dquot type 1
[  401.328956][T10919] Quota error (device loop5): write_blk: dquota write failed
[  401.330721][T10908] bond2 (unregistering): Released all slaves
[  401.336558][T10919] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  401.353715][T10919] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.1734: Failed to acquire dquot type 1
[  401.367661][T10919] EXT4-fs (loop5): 1 orphan inode deleted
[  401.375947][T10919] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  401.454552][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  401.478079][T10927] netlink: 'syz.7.1741': attribute type 1 has an invalid length.
[  401.493592][T10927] dummy0: entered promiscuous mode
[  401.499361][T10927] dummy0: entered allmulticast mode
[  401.573704][T10929] loop1: detected capacity change from 0 to 512
[  401.727481][T10929] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  401.745168][T10929] ext4 filesystem being mounted at /476/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  402.551789][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  404.424936][T10958] loop5: detected capacity change from 0 to 1764
[  405.635149][T10958] loop5: detected capacity change from 0 to 512
[  405.642698][T10958] EXT4-fs: inline encryption not supported
[  405.648629][T10958] EXT4-fs: Ignoring removed mblk_io_submit option
[  405.672553][T10958] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  405.683975][T10958] EXT4-fs (loop5): Test dummy encryption mode enabled
[  405.703630][T10958] EXT4-fs (loop5): orphan cleanup on readonly fs
[  405.710308][T10958] EXT4-fs error (device loop5): ext4_orphan_get:1399: comm syz.5.1751: inode #13: comm syz.5.1751: iget: illegal inode #
[  405.724160][T10958] EXT4-fs error (device loop5): ext4_orphan_get:1404: comm syz.5.1751: couldn't read orphan inode 13 (err -117)
[  405.743304][T10958] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  406.062369][   T27] audit: type=1326 audit(1754786438.498:2444): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10960 comm="syz.6.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  406.134102][   T27] audit: type=1326 audit(1754786438.498:2445): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10960 comm="syz.6.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  406.160498][   T27] audit: type=1326 audit(1754786438.528:2446): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10960 comm="syz.6.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  406.160502][T10965] loop1: detected capacity change from 0 to 1024
[  406.262167][   T27] audit: type=1326 audit(1754786438.528:2447): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10960 comm="syz.6.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  406.338210][T10965] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  406.359898][   T27] audit: type=1326 audit(1754786438.528:2448): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10960 comm="syz.6.1753" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  406.403259][T10965] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  406.474031][T10965] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.494467][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.563443][T10965] EXT4-fs error (device loop1): ext4_xattr_inode_iget:440: inode #11: comm syz.1.1747: missing EA_INODE flag
[  406.628387][T10965] EXT4-fs (loop1): Remounting filesystem read-only
[  406.688270][T10982] loop5: detected capacity change from 0 to 512
[  406.720218][T10972] loop7: detected capacity change from 0 to 8192
[  406.731540][T10982] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  406.744855][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  406.746783][T10972] FAT-fs (loop7): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  406.797043][   T27] audit: type=1804 audit(1754786439.228:2449): pid=10982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1761" name="/newroot/176/file0/bus" dev="loop5" ino=18 res=1 errno=0
[  406.971831][T10990] loop6: detected capacity change from 0 to 256
[  407.089021][   T27] audit: type=1326 audit(1754786439.528:2450): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10991 comm="syz.1.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2e78ebe9 code=0x7ffc0000
[  407.185980][   T27] audit: type=1326 audit(1754786439.528:2451): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10991 comm="syz.1.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2e78ebe9 code=0x7ffc0000
[  407.208785][   T27] audit: type=1326 audit(1754786439.528:2452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10991 comm="syz.1.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2e78ebe9 code=0x7ffc0000
[  407.235433][   T27] audit: type=1326 audit(1754786439.528:2453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10991 comm="syz.1.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2e78ebe9 code=0x7ffc0000
[  407.258033][   T27] audit: type=1326 audit(1754786439.528:2454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10991 comm="syz.1.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f7f2e78ebe9 code=0x7ffc0000
[  407.292243][   T27] audit: type=1326 audit(1754786439.558:2455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10991 comm="syz.1.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2e78ebe9 code=0x7ffc0000
[  407.331465][T10972] netlink: 'syz.7.1757': attribute type 4 has an invalid length.
[  407.351558][   T27] audit: type=1326 audit(1754786439.558:2456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10991 comm="syz.1.1765" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f7f2e78ebe9 code=0x7ffc0000
[  407.374253][T10972] netlink: 17 bytes leftover after parsing attributes in process `syz.7.1757'.
[  407.619909][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  407.999427][T11021] netlink: 'syz.6.1779': attribute type 8 has an invalid length.
[  408.441187][T11033] loop1: detected capacity change from 0 to 512
[  408.450634][T11032] loop5: detected capacity change from 0 to 8192
[  408.456218][T11033] EXT4-fs: Ignoring removed mblk_io_submit option
[  408.482328][T11032] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  408.515582][ T9310] netdevsim netdevsim7 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.534141][T11033] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  408.857643][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  408.862421][ T9310] netdevsim netdevsim7 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  408.971386][T11036] netlink: 'syz.5.1785': attribute type 4 has an invalid length.
[  408.980360][T11036] netlink: 17 bytes leftover after parsing attributes in process `syz.5.1785'.
[  409.035468][ T9310] netdevsim netdevsim7 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.131020][ T9310] netdevsim netdevsim7 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  409.181414][ T5789] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  409.191225][ T5789] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  409.200129][ T5789] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  409.208437][ T5789] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  409.227263][ T5789] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  409.234678][ T5789] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  409.493869][T11052] loop1: detected capacity change from 0 to 512
[  409.516241][T11052] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  409.627556][T11042] chnl_net:caif_netlink_parms(): no params data found
[  410.146272][T11042] bridge0: port 1(bridge_slave_0) entered blocking state
[  410.170627][T11042] bridge0: port 1(bridge_slave_0) entered disabled state
[  410.207221][T11042] bridge_slave_0: entered allmulticast mode
[  410.226181][T11042] bridge_slave_0: entered promiscuous mode
[  410.329394][T11042] bridge0: port 2(bridge_slave_1) entered blocking state
[  410.336981][T11042] bridge0: port 2(bridge_slave_1) entered disabled state
[  410.352440][T11042] bridge_slave_1: entered allmulticast mode
[  410.361491][T11042] bridge_slave_1: entered promiscuous mode
[  410.638246][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  410.896012][T11042] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  410.930701][T11042] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  411.243357][T11042] team0: Port device team_slave_0 added
[  411.309620][T11042] team0: Port device team_slave_1 added
[  411.338768][   T50] Bluetooth: hci2: command tx timeout
[  411.572636][T11084] loop1: detected capacity change from 0 to 512
[  411.593023][T11084] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  411.611781][T11042] batman_adv: batadv0: Adding interface: batadv_slave_0
[  411.619086][T11084] ext4 filesystem being mounted at /494/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  411.641250][T11042] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  411.681431][T11042] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  411.726742][T11042] batman_adv: batadv0: Adding interface: batadv_slave_1
[  411.743315][T11042] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  411.821500][T11042] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  411.900424][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  412.067304][T11042] hsr_slave_0: entered promiscuous mode
[  412.076312][T11042] hsr_slave_1: entered promiscuous mode
[  412.086121][T11042] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  412.096081][T11042] Cannot create hsr debugfs directory
[  412.227968][T11092] loop5: detected capacity change from 0 to 256
[  412.281114][T11094] loop1: detected capacity change from 0 to 512
[  412.289198][T11094] EXT4-fs: Ignoring removed mblk_io_submit option
[  412.309580][T11094] EXT4-fs: Ignoring removed bh option
[  412.315910][T11094] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  412.336690][T11094] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  412.371085][T11094] EXT4-fs (loop1): 1 truncate cleaned up
[  412.380642][T11094] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  412.410126][ T9310] hsr_slave_0: left promiscuous mode
[  412.418579][ T9310] hsr_slave_1: left promiscuous mode
[  412.440813][ T9310] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  412.465093][ T9310] batman_adv: batadv0: Removing interface: batadv_slave_0
[  412.488661][ T9310] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  412.500391][ T9310] batman_adv: batadv0: Removing interface: batadv_slave_1
[  412.515950][T11106] syz.6.1810[11106] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  412.516267][T11106] syz.6.1810[11106] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  412.516286][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  412.549707][ T9310] bridge_slave_1: left allmulticast mode
[  412.555601][ T9310] bridge_slave_1: left promiscuous mode
[  412.571527][ T9310] bridge0: port 2(bridge_slave_1) entered disabled state
[  412.584564][ T9310] bridge_slave_0: left allmulticast mode
[  412.590226][ T9310] bridge_slave_0: left promiscuous mode
[  412.603201][ T9310] bridge0: port 1(bridge_slave_0) entered disabled state
[  412.637634][ T9310] veth1_macvtap: left promiscuous mode
[  412.649205][ T9310] veth0_macvtap: left promiscuous mode
[  412.654894][ T9310] veth1_vlan: left promiscuous mode
[  412.660963][ T9310] veth0_vlan: left promiscuous mode
[  413.386637][ T9310] team0 (unregistering): Port device team_slave_1 removed
[  413.407687][   T50] Bluetooth: hci2: command tx timeout
[  413.450849][ T9310] team0 (unregistering): Port device team_slave_0 removed
[  413.511461][ T9310] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  413.578608][ T9310] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  413.984509][T11129] loop6: detected capacity change from 0 to 8192
[  414.233377][ T9310] bond0 (unregistering): Released all slaves
[  414.663327][T11042] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  414.708695][T11042] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  414.740829][T11042] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  414.789589][T11042] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  414.950441][T11152] loop1: detected capacity change from 0 to 512
[  414.994761][T11042] 8021q: adding VLAN 0 to HW filter on device bond0
[  415.019708][T11152] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  415.021447][T11042] 8021q: adding VLAN 0 to HW filter on device team0
[  415.035617][T11152] ext4 filesystem being mounted at /500/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  415.053171][ T9311] bridge0: port 1(bridge_slave_0) entered blocking state
[  415.060302][ T9311] bridge0: port 1(bridge_slave_0) entered forwarding state
[  415.070425][ T9311] bridge0: port 2(bridge_slave_1) entered blocking state
[  415.077654][ T9311] bridge0: port 2(bridge_slave_1) entered forwarding state
[  415.160975][T11161] loop6: detected capacity change from 0 to 512
[  415.188279][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  415.192897][T11161] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  415.259272][   T27] kauditd_printk_skb: 15 callbacks suppressed
[  415.259284][   T27] audit: type=1804 audit(1754786447.698:2472): pid=11161 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.1829" name="/newroot/44/file0/bus" dev="loop6" ino=18 res=1 errno=0
[  415.311478][T11166] netlink: 'syz.1.1830': attribute type 10 has an invalid length.
[  415.341245][T11166] 8021q: adding VLAN 0 to HW filter on device batadv0
[  415.355788][T11166] bond0: (slave batadv0): Enslaving as an active interface with an up link
[  415.426771][T10672] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  415.482987][   T50] Bluetooth: hci2: command tx timeout
[  415.503401][T11170] syz.1.1832[11170] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  415.503681][T11170] syz.1.1832[11170] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  415.528916][T11042] 8021q: adding VLAN 0 to HW filter on device batadv0
[  415.958651][T11189] loop5: detected capacity change from 0 to 512
[  415.978756][T11042] veth0_vlan: entered promiscuous mode
[  415.997859][T11189] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  416.013627][T11042] veth1_vlan: entered promiscuous mode
[  416.049971][   T27] audit: type=1804 audit(1754786448.488:2473): pid=11189 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.5.1838" name="/newroot/192/file0/bus" dev="loop5" ino=18 res=1 errno=0
[  416.071725][T11042] veth0_macvtap: entered promiscuous mode
[  416.127858][T11042] veth1_macvtap: entered promiscuous mode
[  416.187325][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  416.227399][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  416.265066][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.286396][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  416.296973][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.309218][T11042] batman_adv: batadv0: Interface activated: batadv_slave_0
[  416.320427][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.331107][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.340967][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.352850][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.375606][T11042] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  416.391430][T11042] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  416.425594][T11042] batman_adv: batadv0: Interface activated: batadv_slave_1
[  416.549215][T11198] netlink: 28 bytes leftover after parsing attributes in process `syz.6.1836'.
[  416.618171][T11200] loop6: detected capacity change from 0 to 512
[  416.627651][T11200] EXT4-fs: Ignoring removed mblk_io_submit option
[  416.634239][T11200] EXT4-fs: Ignoring removed bh option
[  416.643648][T11200] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  416.655397][T11200] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  416.676348][T11200] EXT4-fs (loop6): 1 truncate cleaned up
[  416.685111][T11200] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  417.103305][T11042] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  417.141352][T11042] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  417.173451][T11042] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  417.210064][T11042] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  417.350414][T11204] loop1: detected capacity change from 0 to 8192
[  417.398943][   T27] audit: type=1800 audit(1754786449.838:2474): pid=11204 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1842" name="file1" dev="loop1" ino=1048630 res=0 errno=0
[  417.562285][   T50] Bluetooth: hci2: command tx timeout
[  418.013134][ T9315] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.024734][ T9315] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  418.053326][ T9311] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  418.061856][ T9311] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  418.275991][T11221] loop8: detected capacity change from 0 to 512
[  418.297758][T11221] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.383474][T11042] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.458899][T11226] loop1: detected capacity change from 0 to 1024
[  418.480882][T11226] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  418.501217][T11228] netlink: 'syz.5.1852': attribute type 3 has an invalid length.
[  418.509378][T11226] EXT4-fs (loop1): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  418.519605][T11228] netlink: 'syz.5.1852': attribute type 3 has an invalid length.
[  418.536463][   T27] audit: type=1326 audit(1754786450.978:2475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.5.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  418.566493][   T27] audit: type=1326 audit(1754786450.998:2476): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.5.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  418.589063][   T27] audit: type=1326 audit(1754786450.998:2477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.5.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  418.613802][   T27] audit: type=1326 audit(1754786450.998:2478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.5.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  418.637582][   T27] audit: type=1326 audit(1754786450.998:2479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.5.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  418.640170][T11226] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  418.660201][   T27] audit: type=1326 audit(1754786451.008:2480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.5.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=2 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  418.660256][   T27] audit: type=1326 audit(1754786451.008:2481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11227 comm="syz.5.1852" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  418.748202][T10672] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.773652][T11226] EXT4-fs error (device loop1): ext4_xattr_inode_iget:440: inode #11: comm syz.1.1850: missing EA_INODE flag
[  418.793357][T11226] EXT4-fs (loop1): Remounting filesystem read-only
[  418.857506][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  418.960968][T11245] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  418.968459][T11245] batman_adv: batadv0: Removing interface: batadv_slave_0
[  418.973284][T11244] loop5: detected capacity change from 0 to 512
[  418.983481][T11245] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  418.990901][T11245] batman_adv: batadv0: Removing interface: batadv_slave_1
[  419.026968][T11244] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  419.086757][T11245] bond0: (slave batadv0): Releasing backup interface
[  419.098981][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  419.331316][T11254] loop5: detected capacity change from 0 to 1024
[  419.338683][T11254] EXT4-fs: Ignoring removed orlov option
[  419.359226][T11254] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  419.677123][T11257] loop6: detected capacity change from 0 to 512
[  419.758122][T11257] EXT4-fs (loop6): revision level too high, forcing read-only mode
[  419.768332][T11257] EXT4-fs (loop6): orphan cleanup on readonly fs
[  419.778597][T11257] EXT4-fs warning (device loop6): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  419.795510][T11257] EXT4-fs (loop6): Cannot turn on quotas: error -117
[  419.809402][T11257] EXT4-fs error (device loop6): ext4_validate_block_bitmap:439: comm syz.6.1853: bg 0: block 40: padding at end of block bitmap is not set
[  419.836949][T11257] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  419.849794][T11257] EXT4-fs (loop6): 1 truncate cleaned up
[  419.861486][T11257] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  420.409152][   T27] kauditd_printk_skb: 43 callbacks suppressed
[  420.409166][   T27] audit: type=1800 audit(1754786452.848:2524): pid=11254 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1861" name="file1" dev="loop5" ino=15 res=0 errno=0
[  421.386870][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.680903][T10672] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  421.715311][T11268] netlink: 20 bytes leftover after parsing attributes in process `syz.5.1863'.
[  421.738311][T11268] x_tables: ip_tables: udp match: only valid for protocol 17
[  422.121711][T11278] loop1: detected capacity change from 0 to 512
[  422.139021][T11279] loop5: detected capacity change from 0 to 164
[  422.449170][T11279] syz.5.1870: attempt to access beyond end of device
[  422.449170][T11279] loop5: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  422.473555][T11278] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  423.124481][T11290] loop6: detected capacity change from 0 to 512
[  423.131872][T11290] EXT4-fs: Ignoring removed mblk_io_submit option
[  423.138404][T11290] EXT4-fs: Ignoring removed bh option
[  423.145611][T11278] ext4 filesystem being mounted at /517/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  423.191291][T11290] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  423.202767][T11290] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode
[  423.306890][T11290] EXT4-fs (loop6): 1 truncate cleaned up
[  423.316747][T11290] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  423.369894][T11279] syz.5.1870: attempt to access beyond end of device
[  423.369894][T11279] loop5: rw=0, sector=263328, nr_sectors = 4 limit=164
[  423.727988][T11295] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1869'.
[  424.033261][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  424.789733][T10672] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  425.203236][T11327] netlink: 28 bytes leftover after parsing attributes in process `syz.8.1884'.
[  425.252508][T11327] loop8: detected capacity change from 0 to 512
[  425.261246][T11327] EXT4-fs: Ignoring removed mblk_io_submit option
[  425.267918][T11327] EXT4-fs: Ignoring removed bh option
[  425.303148][T11327] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  425.314541][T11327] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  425.341543][T11327] EXT4-fs (loop8): 1 truncate cleaned up
[  425.350125][T11327] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  425.409974][T11324] loop1: detected capacity change from 0 to 8192
[  425.479386][T11324] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  426.202666][T11324] netlink: 'syz.1.1885': attribute type 4 has an invalid length.
[  426.252861][T11324] netlink: 17 bytes leftover after parsing attributes in process `syz.1.1885'.
[  426.751286][T11312] netlink: 'syz.5.1880': attribute type 3 has an invalid length.
[  426.808444][T11042] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  427.589534][T11353] loop1: detected capacity change from 0 to 512
[  427.598138][T11353] EXT4-fs: Ignoring removed mblk_io_submit option
[  427.604754][T11353] EXT4-fs: Ignoring removed bh option
[  427.620399][T11353] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  427.632120][T11353] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  427.675082][T11353] EXT4-fs (loop1): 1 truncate cleaned up
[  427.683794][T11353] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  428.226938][T11362] loop8: detected capacity change from 0 to 512
[  428.250059][T11362] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  428.277176][   T27] audit: type=1804 audit(1754786460.718:2525): pid=11362 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.8.1894" name="/newroot/17/file0/bus" dev="loop8" ino=18 res=1 errno=0
[  428.395067][T11042] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  428.888128][   T27] audit: type=1326 audit(1754786461.318:2526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  428.964461][   T27] audit: type=1326 audit(1754786461.318:2527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.008770][   T27] audit: type=1326 audit(1754786461.328:2528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.062227][   T27] audit: type=1326 audit(1754786461.328:2529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.099015][T11370] random: crng reseeded on system resumption
[  429.151555][   T27] audit: type=1326 audit(1754786461.328:2530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.181542][   T27] audit: type=1326 audit(1754786461.358:2531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.210533][   T27] audit: type=1326 audit(1754786461.358:2532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.265298][   T27] audit: type=1326 audit(1754786461.358:2533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.288346][   T27] audit: type=1326 audit(1754786461.358:2534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11371 comm="syz.5.1897" exe="/root/syz-executor" sig=0 arch=c000003e syscall=228 compat=0 ip=0x7f6f4058ebe9 code=0x7ffc0000
[  429.361827][T11381] loop5: detected capacity change from 0 to 128
[  430.870680][T11402] tipc: Started in network mode
[  430.879301][T11402] tipc: Node identity da13f05fbc34, cluster identity 4711
[  430.889075][T11402] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  430.904214][T11402] syzkaller0: entered promiscuous mode
[  430.909852][T11402] syzkaller0: entered allmulticast mode
[  430.977752][T11402] tipc: Resetting bearer <eth:syzkaller0>
[  431.022420][T11401] tipc: Resetting bearer <eth:syzkaller0>
[  431.131294][T11401] tipc: Disabling bearer <eth:syzkaller0>
[  431.751486][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  431.859167][T11414] loop5: detected capacity change from 0 to 512
[  431.909839][T11414] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a803c02c, mo2=0102]
[  431.925950][T11414] System zones: 1-12
[  431.937749][T11414] EXT4-fs error (device loop5): ext4_xattr_inode_iget:445: comm syz.5.1916: error while reading EA inode 32 err=-116
[  431.958669][T11414] EXT4-fs (loop5): Remounting filesystem read-only
[  431.965562][T11414] EXT4-fs warning (device loop5): ext4_evict_inode:255: couldn't mark inode dirty (err -5)
[  431.990383][T11414] EXT4-fs (loop5): 1 orphan inode deleted
[  432.010363][T11414] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  432.067869][T11424] random: crng reseeded on system resumption
[  432.886158][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  436.055721][T11450] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1921'.
[  436.126061][T11447] loop1: detected capacity change from 0 to 512
[  436.158901][T11447] EXT4-fs: Ignoring removed mblk_io_submit option
[  436.165651][T11447] EXT4-fs: Ignoring removed bh option
[  436.203637][T11447] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  436.215881][T11447] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  436.256789][T11447] EXT4-fs (loop1): 1 truncate cleaned up
[  436.265111][T11447] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  436.724539][T11461] netlink: 'syz.5.1927': attribute type 3 has an invalid length.
[  437.000015][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  437.131356][T11466] netlink: 4 bytes leftover after parsing attributes in process `syz.8.1929'.
[  437.224181][T11475] random: crng reseeded on system resumption
[  437.688112][ T9306] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  438.254273][ T9306] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  438.789857][ T8748] batman_adv: batadv1: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[  438.923977][T11493] loop6: detected capacity change from 0 to 8192
[  438.938666][T11493] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  439.340703][T11487] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1934'.
[  439.427601][T11493] netlink: 'syz.6.1936': attribute type 4 has an invalid length.
[  439.439369][T11493] netlink: 17 bytes leftover after parsing attributes in process `syz.6.1936'.
[  439.446085][T11500] loop5: detected capacity change from 0 to 512
[  439.459045][T11500] EXT4-fs: Ignoring removed nomblk_io_submit option
[  439.470493][T11500] EXT4-fs (loop5): mounting ext3 file system using the ext4 subsystem
[  439.494334][T11500] EXT4-fs (loop5): invalid journal inode
[  439.500050][T11500] EXT4-fs (loop5): can't get journal size
[  439.556174][T11500] EXT4-fs (loop5): 1 truncate cleaned up
[  439.599705][T11500] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  439.655159][   T27] kauditd_printk_skb: 8 callbacks suppressed
[  439.655171][   T27] audit: type=1326 audit(1754786472.088:2543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  439.709934][   T27] audit: type=1326 audit(1754786472.088:2544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  439.742146][   T27] audit: type=1800 audit(1754786472.098:2545): pid=11500 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1939" name="bus" dev="loop5" ino=18 res=0 errno=0
[  439.799313][   T27] audit: type=1326 audit(1754786472.128:2546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  439.840863][   T27] audit: type=1326 audit(1754786472.128:2547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  439.847774][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  439.864993][   T27] audit: type=1326 audit(1754786472.128:2548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  439.904714][   T27] audit: type=1326 audit(1754786472.138:2549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  439.940603][T11511] loop8: detected capacity change from 0 to 1024
[  439.960536][T11511] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  439.982200][   T27] audit: type=1326 audit(1754786472.138:2550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  440.009803][T11511] EXT4-fs (loop8): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  440.020496][   T27] audit: type=1326 audit(1754786472.138:2551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  440.063552][T11511] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  440.120027][T11511] EXT4-fs error (device loop8): ext4_xattr_inode_iget:440: inode #11: comm syz.8.1944: missing EA_INODE flag
[  440.128751][ T1282] ieee802154 phy0 wpan0: encryption failed: -22
[  440.142199][   T27] audit: type=1326 audit(1754786472.138:2552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11503 comm="syz.8.1941" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f6edd78ebe9 code=0x7ffc0000
[  440.190388][T11511] EXT4-fs (loop8): Remounting filesystem read-only
[  440.241656][T11526] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1949'.
[  440.272619][T11527] random: crng reseeded on system resumption
[  440.329504][T11042] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  440.868319][T11542] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1954'.
[  441.609603][T11570] netlink: 28 bytes leftover after parsing attributes in process `syz.5.1964'.
[  442.609360][T11617] loop6: detected capacity change from 0 to 512
[  442.618213][T11617] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[  442.638445][T11619] loop5: detected capacity change from 0 to 1024
[  442.639258][T11617] EXT4-fs error (device loop6): ext4_quota_enable:7125: comm syz.6.1984: Bad quota inum: 29696, type: 1
[  442.649603][T11619] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  442.659324][T11617] EXT4-fs warning (device loop6): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=29696). Please run e2fsck to fix.
[  442.671195][T11619] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  442.691434][T11617] EXT4-fs (loop6): mount failed
[  442.711807][T11619] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  442.732714][T11619] EXT4-fs error (device loop5): ext4_xattr_inode_iget:440: inode #11: comm syz.5.1985: missing EA_INODE flag
[  442.745590][T11619] EXT4-fs (loop5): Remounting filesystem read-only
[  442.773030][ T8865] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  442.910231][T11630] loop6: detected capacity change from 0 to 512
[  442.924678][T11630] journal_path: Lookup failure for './bus'
[  442.930669][T11630] EXT4-fs: error: could not find journal device path
[  443.154000][T11640] loop5: detected capacity change from 0 to 8192
[  443.168804][T11640] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  443.200356][T11644] loop6: detected capacity change from 0 to 1024
[  443.212224][T11644] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  443.227277][T11644] EXT4-fs (loop6): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  443.251478][T11644] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  443.404491][T11640] netlink: 'syz.5.1993': attribute type 4 has an invalid length.
[  443.430646][T11640] netlink: 17 bytes leftover after parsing attributes in process `syz.5.1993'.
[  443.442696][T11644] EXT4-fs error (device loop6): ext4_xattr_inode_iget:440: inode #11: comm syz.6.1995: missing EA_INODE flag
[  443.454470][T11651] tipc: Started in network mode
[  443.459387][T11651] tipc: Node identity 030000000000000004, cluster identity 4711
[  443.555169][T11656] loop1: detected capacity change from 0 to 512
[  443.567076][T11656] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.1999: casefold flag without casefold feature
[  443.580424][T11656] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.1999: couldn't read orphan inode 15 (err -117)
[  443.607183][T11644] EXT4-fs (loop6): Remounting filesystem read-only
[  443.611974][T11656] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.680548][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.811812][T11665] loop1: detected capacity change from 0 to 512
[  443.827061][T11665] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[  443.837104][T11668] netlink: 28 bytes leftover after parsing attributes in process `syz.8.2004'.
[  443.875318][T10672] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  443.876437][T11665] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  443.898798][T11665] ext4 filesystem being mounted at /545/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  443.934621][T11673] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2006'.
[  443.981588][T11665] EXT4-fs error (device loop1): ext4_lookup:1858: inode #12: comm syz.1.2003: iget: bad i_size value: 2533274857506816
[  444.009955][T11665] hub 9-0:1.0: USB hub found
[  444.015770][T11665] hub 9-0:1.0: 1 port detected
[  444.307017][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  444.641732][T11688] netem: change failed
[  444.754422][T11691] loop1: detected capacity change from 0 to 256
[  445.171421][T11698] syz.8.2016[11698] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  445.171629][T11698] syz.8.2016[11698] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  445.448219][T11702] netlink: 8 bytes leftover after parsing attributes in process `syz.1.2017'.
[  446.140853][T11712] loop1: detected capacity change from 0 to 512
[  446.248175][T11712] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.263871][T11715] netlink: 128 bytes leftover after parsing attributes in process `syz.6.2021'.
[  446.311128][   T27] kauditd_printk_skb: 99 callbacks suppressed
[  446.311139][   T27] audit: type=1804 audit(1754786478.748:2652): pid=11712 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.1.2020" name="/newroot/549/file0/bus" dev="loop1" ino=18 res=1 errno=0
[  446.357957][T11710] loop8: detected capacity change from 0 to 8192
[  446.391539][T11710] FAT-fs (loop8): error, invalid access to FAT (entry 0x0000e1b1)
[  446.400000][T11710] FAT-fs (loop8): Filesystem has been set read-only
[  446.439543][T11717] netlink: 4 bytes leftover after parsing attributes in process `syz.5.2022'.
[  446.510284][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  446.592122][   T27] audit: type=1326 audit(1754786479.028:2653): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.6.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  446.643191][   T27] audit: type=1326 audit(1754786479.028:2654): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.6.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  446.683115][   T27] audit: type=1326 audit(1754786479.028:2655): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.6.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=98 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  446.715741][   T27] audit: type=1326 audit(1754786479.028:2656): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.6.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  446.752648][T11728] loop8: detected capacity change from 0 to 1024
[  446.762314][   T27] audit: type=1326 audit(1754786479.028:2657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11718 comm="syz.6.2023" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f27ff58ebe9 code=0x7ffc0000
[  446.801000][T11728] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  446.847264][T11728] ==================================================================
[  446.855345][T11728] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[  446.863081][T11728] Read of size 18446744073709551588 at addr ffff888060282840 by task syz.8.2025/11728
[  446.872622][T11728] 
[  446.874945][T11728] CPU: 0 PID: 11728 Comm: syz.8.2025 Not tainted 6.6.101-syzkaller #0
[  446.883095][T11728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  446.893151][T11728] Call Trace:
[  446.896428][T11728]  <TASK>
[  446.899360][T11728]  dump_stack_lvl+0x16c/0x230
[  446.904043][T11728]  ? read_lock_is_recursive+0x20/0x20
[  446.909422][T11728]  ? show_regs_print_info+0x20/0x20
[  446.914626][T11728]  ? load_image+0x3b0/0x3b0
[  446.919143][T11728]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[  446.924533][T11728]  ? __virt_addr_valid+0x18c/0x540
[  446.929654][T11728]  ? __virt_addr_valid+0x469/0x540
[  446.934772][T11728]  print_report+0xac/0x220
[  446.939194][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  446.944669][T11728]  kasan_report+0x117/0x150
[  446.949187][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  446.954660][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  446.960131][T11728]  kasan_check_range+0x288/0x290
[  446.965084][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  446.970567][T11728]  __asan_memmove+0x29/0x70
[  446.975083][T11728]  ext4_xattr_set_entry+0x94b/0x1e90
[  446.980391][T11728]  ext4_xattr_block_set+0xae3/0x32a0
[  446.985683][T11728]  ? ext4_destroy_inode+0xe8/0x1b0
[  446.990800][T11728]  ? ext4_destroy_inode+0x1b0/0x1b0
[  446.996006][T11728]  ? proc_nr_inodes+0x230/0x230
[  447.000863][T11728]  ? do_raw_spin_unlock+0x121/0x230
[  447.006076][T11728]  ? _raw_spin_unlock+0x28/0x40
[  447.010951][T11728]  ? ext4_xattr_block_find+0x350/0x350
[  447.016429][T11728]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  447.021818][T11728]  ext4_xattr_set_handle+0x10a1/0x1290
[  447.027305][T11728]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  447.033312][T11728]  ? __ext4_journal_start_sb+0x259/0x570
[  447.038965][T11728]  ext4_xattr_set+0x22d/0x320
[  447.043653][T11728]  ? end_current_label_crit_section+0x170/0x170
[  447.049904][T11728]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  447.055462][T11728]  ? posix_xattr_acl+0x93/0xb0
[  447.060240][T11728]  ? evm_protect_xattr+0x36d/0x7a0
[  447.065368][T11728]  ? ext4_xattr_trusted_get+0x40/0x40
[  447.070756][T11728]  __vfs_setxattr+0x431/0x470
[  447.075453][T11728]  __vfs_setxattr_noperm+0x12d/0x5e0
[  447.080760][T11728]  vfs_setxattr+0x16c/0x2f0
[  447.085277][T11728]  ? xattr_permission+0x470/0x470
[  447.090320][T11728]  ? __mnt_want_write+0x223/0x2a0
[  447.095366][T11728]  ? path_setxattr+0x314/0x550
[  447.100146][T11728]  path_setxattr+0x362/0x550
[  447.104755][T11728]  ? simple_xattrs_free+0x150/0x150
[  447.109981][T11728]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  447.115976][T11728]  ? lock_chain_count+0x20/0x20
[  447.120828][T11728]  __x64_sys_lsetxattr+0xb8/0xd0
[  447.125753][T11728]  do_syscall_64+0x55/0xb0
[  447.130149][T11728]  ? clear_bhb_loop+0x40/0x90
[  447.134807][T11728]  ? clear_bhb_loop+0x40/0x90
[  447.139466][T11728]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  447.145344][T11728] RIP: 0033:0x7f6edd78ebe9
[  447.149743][T11728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  447.169340][T11728] RSP: 002b:00007f6ede654038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  447.177753][T11728] RAX: ffffffffffffffda RBX: 00007f6edd9b5fa0 RCX: 00007f6edd78ebe9
[  447.185707][T11728] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 00002000000001c0
[  447.193658][T11728] RBP: 00007f6edd811e19 R08: 0000000000000000 R09: 0000000000000000
[  447.201609][T11728] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  447.209560][T11728] R13: 00007f6edd9b6038 R14: 00007f6edd9b5fa0 R15: 00007ffd3afe2568
[  447.217517][T11728]  </TASK>
[  447.220517][T11728] 
[  447.222826][T11728] Allocated by task 11728:
[  447.227232][T11728]  kasan_set_track+0x4e/0x70
[  447.231801][T11728]  __kasan_kmalloc+0x8f/0xa0
[  447.236376][T11728]  __kmalloc_node_track_caller+0xb2/0x230
[  447.242098][T11728]  kmemdup+0x2b/0x70
[  447.245992][T11728]  ext4_xattr_block_set+0x9e5/0x32a0
[  447.251253][T11728]  ext4_xattr_set_handle+0x10a1/0x1290
[  447.256698][T11728]  ext4_xattr_set+0x22d/0x320
[  447.261357][T11728]  __vfs_setxattr+0x431/0x470
[  447.266015][T11728]  __vfs_setxattr_noperm+0x12d/0x5e0
[  447.271289][T11728]  vfs_setxattr+0x16c/0x2f0
[  447.275799][T11728]  path_setxattr+0x362/0x550
[  447.280372][T11728]  __x64_sys_lsetxattr+0xb8/0xd0
[  447.285294][T11728]  do_syscall_64+0x55/0xb0
[  447.289690][T11728]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  447.295567][T11728] 
[  447.297868][T11728] Last potentially related work creation:
[  447.303567][T11728]  kasan_save_stack+0x3e/0x60
[  447.308240][T11728]  __kasan_record_aux_stack+0xaf/0xc0
[  447.313594][T11728]  call_rcu+0x158/0x930
[  447.317730][T11728]  dev_shutdown+0x34f/0x440
[  447.322232][T11728]  unregister_netdevice_many_notify+0x8d2/0x1810
[  447.328564][T11728]  sit_exit_batch_net+0x49c/0x4e0
[  447.333588][T11728]  cleanup_net+0x77f/0xb90
[  447.337986][T11728]  process_scheduled_works+0xa45/0x15b0
[  447.343518][T11728]  worker_thread+0xa55/0xfc0
[  447.348113][T11728]  kthread+0x2fa/0x390
[  447.352167][T11728]  ret_from_fork+0x48/0x80
[  447.356582][T11728]  ret_from_fork_asm+0x11/0x20
[  447.361326][T11728] 
[  447.363636][T11728] The buggy address belongs to the object at ffff888060282800
[  447.363636][T11728]  which belongs to the cache kmalloc-1k of size 1024
[  447.377681][T11728] The buggy address is located 64 bytes inside of
[  447.377681][T11728]  1024-byte region [ffff888060282800, ffff888060282c00)
[  447.390933][T11728] 
[  447.393239][T11728] The buggy address belongs to the physical page:
[  447.399632][T11728] page:ffffea000180a000 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x60280
[  447.409764][T11728] head:ffffea000180a000 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  447.418673][T11728] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  447.426629][T11728] page_type: 0xffffffff()
[  447.430934][T11728] raw: 00fff00000000840 ffff888017841dc0 dead000000000100 dead000000000122
[  447.439494][T11728] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  447.448053][T11728] page dumped because: kasan: bad access detected
[  447.454444][T11728] page_owner tracks the page as allocated
[  447.460129][T11728] page last allocated via order 3, migratetype Unmovable, gfp_mask 0x1d20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC|__GFP_HARDWALL), pid 7988, tgid 7987 (syz.2.750), ts 178780337291, free_ts 178703520107
[  447.482770][T11728]  post_alloc_hook+0x1cd/0x210
[  447.487536][T11728]  get_page_from_freelist+0x195c/0x19f0
[  447.493071][T11728]  __alloc_pages+0x1e3/0x460
[  447.497646][T11728]  alloc_slab_page+0x5d/0x170
[  447.502314][T11728]  new_slab+0x87/0x2e0
[  447.506384][T11728]  ___slab_alloc+0xc6d/0x12f0
[  447.511038][T11728]  __kmem_cache_alloc_node+0x1a2/0x260
[  447.516475][T11728]  __kmalloc_node+0xa4/0x230
[  447.521044][T11728]  kvmalloc_node+0x70/0x180
[  447.525532][T11728]  rhashtable_init+0x57f/0xa80
[  447.530268][T11728]  br_mdb_hash_init+0x52/0x90
[  447.534925][T11728]  br_dev_init+0x17d/0x330
[  447.539318][T11728]  register_netdevice+0x66c/0x1ae0
[  447.544408][T11728]  br_dev_newlink+0x27/0x100
[  447.548974][T11728]  rtnl_newlink+0x14d0/0x2020
[  447.553628][T11728]  rtnetlink_rcv_msg+0x7c7/0xf10
[  447.558546][T11728] page last free stack trace:
[  447.563198][T11728]  free_unref_page_prepare+0x7ce/0x8e0
[  447.568656][T11728]  free_unref_page+0x32/0x2e0
[  447.573313][T11728]  __unfreeze_partials+0x1cf/0x210
[  447.578414][T11728]  put_cpu_partial+0x17c/0x250
[  447.583188][T11728]  __slab_free+0x31d/0x410
[  447.587606][T11728]  qlist_free_all+0x75/0xe0
[  447.592098][T11728]  kasan_quarantine_reduce+0x143/0x160
[  447.597554][T11728]  __kasan_slab_alloc+0x22/0x80
[  447.602390][T11728]  slab_post_alloc_hook+0x6e/0x4d0
[  447.607502][T11728]  kmem_cache_alloc+0x11e/0x2e0
[  447.612345][T11728]  getname_flags+0xbb/0x500
[  447.616849][T11728]  vfs_fstatat+0x111/0x1b0
[  447.621237][T11728]  __x64_sys_newfstatat+0x117/0x190
[  447.626412][T11728]  do_syscall_64+0x55/0xb0
[  447.630805][T11728]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  447.636677][T11728] 
[  447.638975][T11728] Memory state around the buggy address:
[  447.644581][T11728]  ffff888060282700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  447.652631][T11728]  ffff888060282780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  447.660680][T11728] >ffff888060282800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.668712][T11728]                                            ^
[  447.674839][T11728]  ffff888060282880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.682888][T11728]  ffff888060282900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  447.690935][T11728] ==================================================================
[  447.742060][T11728] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  447.749263][T11728] CPU: 0 PID: 11728 Comm: syz.8.2025 Not tainted 6.6.101-syzkaller #0
[  447.757418][T11728] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  447.767471][T11728] Call Trace:
[  447.770753][T11728]  <TASK>
[  447.773686][T11728]  dump_stack_lvl+0x16c/0x230
[  447.778370][T11728]  ? show_regs_print_info+0x20/0x20
[  447.783572][T11728]  ? load_image+0x3b0/0x3b0
[  447.788092][T11728]  panic+0x2c0/0x710
[  447.791999][T11728]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  447.798168][T11728]  ? bpf_jit_dump+0xd0/0xd0
[  447.802685][T11728]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  447.808594][T11728]  ? _raw_spin_unlock+0x40/0x40
[  447.813459][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  447.818936][T11728]  check_panic_on_warn+0x84/0xa0
[  447.823884][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  447.829347][T11728]  end_report+0x6f/0x140
[  447.833580][T11728]  kasan_report+0x128/0x150
[  447.838071][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  447.843525][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  447.848972][T11728]  kasan_check_range+0x288/0x290
[  447.853895][T11728]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  447.859341][T11728]  __asan_memmove+0x29/0x70
[  447.863833][T11728]  ext4_xattr_set_entry+0x94b/0x1e90
[  447.869115][T11728]  ext4_xattr_block_set+0xae3/0x32a0
[  447.874389][T11728]  ? ext4_destroy_inode+0xe8/0x1b0
[  447.879491][T11728]  ? ext4_destroy_inode+0x1b0/0x1b0
[  447.884688][T11728]  ? proc_nr_inodes+0x230/0x230
[  447.889526][T11728]  ? do_raw_spin_unlock+0x121/0x230
[  447.894719][T11728]  ? _raw_spin_unlock+0x28/0x40
[  447.899562][T11728]  ? ext4_xattr_block_find+0x350/0x350
[  447.905008][T11728]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  447.910372][T11728]  ext4_xattr_set_handle+0x10a1/0x1290
[  447.915826][T11728]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  447.921798][T11728]  ? __ext4_journal_start_sb+0x259/0x570
[  447.927421][T11728]  ext4_xattr_set+0x22d/0x320
[  447.932086][T11728]  ? end_current_label_crit_section+0x170/0x170
[  447.938315][T11728]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  447.943848][T11728]  ? posix_xattr_acl+0x93/0xb0
[  447.948602][T11728]  ? evm_protect_xattr+0x36d/0x7a0
[  447.953698][T11728]  ? ext4_xattr_trusted_get+0x40/0x40
[  447.959057][T11728]  __vfs_setxattr+0x431/0x470
[  447.963725][T11728]  __vfs_setxattr_noperm+0x12d/0x5e0
[  447.969009][T11728]  vfs_setxattr+0x16c/0x2f0
[  447.973510][T11728]  ? xattr_permission+0x470/0x470
[  447.978519][T11728]  ? __mnt_want_write+0x223/0x2a0
[  447.983535][T11728]  ? path_setxattr+0x314/0x550
[  447.988290][T11728]  path_setxattr+0x362/0x550
[  447.992878][T11728]  ? simple_xattrs_free+0x150/0x150
[  447.998073][T11728]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  448.004039][T11728]  ? lock_chain_count+0x20/0x20
[  448.008876][T11728]  __x64_sys_lsetxattr+0xb8/0xd0
[  448.013802][T11728]  do_syscall_64+0x55/0xb0
[  448.018207][T11728]  ? clear_bhb_loop+0x40/0x90
[  448.022874][T11728]  ? clear_bhb_loop+0x40/0x90
[  448.027534][T11728]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  448.033429][T11728] RIP: 0033:0x7f6edd78ebe9
[  448.037834][T11728] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  448.057425][T11728] RSP: 002b:00007f6ede654038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  448.065825][T11728] RAX: ffffffffffffffda RBX: 00007f6edd9b5fa0 RCX: 00007f6edd78ebe9
[  448.073782][T11728] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 00002000000001c0
[  448.081739][T11728] RBP: 00007f6edd811e19 R08: 0000000000000000 R09: 0000000000000000
[  448.089694][T11728] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  448.097649][T11728] R13: 00007f6edd9b6038 R14: 00007f6edd9b5fa0 R15: 00007ffd3afe2568
[  448.105614][T11728]  </TASK>
[  448.108823][T11728] Kernel Offset: disabled
[  448.113127][T11728] Rebooting in 86400 seconds..