last executing test programs:

11.023641129s ago: executing program 0 (id=677):
mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2000006, 0x31, 0xffffffffffffffff, 0xd0fb8000)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000026c0)=ANY=[@ANYBLOB="620af8ff0c"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f0000003880)=ANY=[@ANYBLOB="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"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x94)
syz_mount_image$ext4(&(0x7f0000001140)='ext4\x00', &(0x7f00000007c0)='./file1\x00', 0x410c84, &(0x7f0000000340), 0x1, 0x775, &(0x7f0000001180)="$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")
r0 = open(&(0x7f00000005c0)='./bus\x00', 0x64842, 0x0)
pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x76200}], 0x1, 0x7c00, 0x0, 0x3)

10.953242911s ago: executing program 5 (id=679):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180000008000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000c44185000000040000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000a000000b7030000000000008500000075000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10)
time(0x0)

10.507672387s ago: executing program 5 (id=680):
socket$inet_sctp(0x2, 0x5, 0x84)
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0)
r1 = openat$binfmt(0xffffffffffffff9c, 0x0, 0x42, 0x1ff)
write$binfmt_elf32(r1, &(0x7f0000001440)=ANY=[@ANYBLOB="7f454c460b397a2dd4000000000000000300060007000000ba03000038"], 0x58)
r2 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{0x18, 0x0, 0x0, 0x0, 0x200, 0x0, 0x0, 0x0, 0x80}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r2}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f00000007c0)='GPL\x00', 0x6, 0x0, 0x0, 0x41002, 0x8, '\x00', 0x0, @fallback=0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r3}, 0x18)
inotify_add_watch(0xffffffffffffffff, &(0x7f0000000080)='./file0\x00', 0x22000401)
close(r1)
execveat$binfmt(0xffffffffffffff9c, 0x0, 0x0, 0x0, 0x0)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000001afc180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b703000000090000850000000400000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback=0x29, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x10)
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@ipv6_newnexthop={0x24, 0x68, 0x309, 0x80000, 0x25dfdbfd, {}, [@NHA_BLACKHOLE={0x4}, @NHA_ID={0x8, 0x1, 0x1}]}, 0x24}}, 0x0)

9.812274014s ago: executing program 5 (id=683):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x3000046, &(0x7f0000000380)={[{@delalloc}, {@data_err_abort}, {@barrier_val={'barrier', 0x3d, 0x2}}, {@dioread_lock}, {@data_err_ignore}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x4007b1}}, {@data_err_ignore}, {@grpquota}, {@nobh}, {@user_xattr}, {@bh}, {@dioread_nolock}]}, 0x1, 0x553, &(0x7f0000000a40)="$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")
fallocate(0xffffffffffffffff, 0x0, 0x0, 0x8800000)
r0 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000040)=@base={0x1b, 0x0, 0x0, 0x2000}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10)
socket$kcm(0x10, 0x2, 0x0)
r2 = socket$igmp(0x2, 0x3, 0x2)
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a80)=ANY=[], 0x48)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00'}, 0x10)
setsockopt$MRT_INIT(r2, 0x0, 0xc8, &(0x7f0000000000), 0x4)
setsockopt$MRT_ADD_VIF(r2, 0x0, 0xca, &(0x7f00000002c0)={0x1, 0x4, 0x10, 0x0, @vifc_lcl_addr=@multicast2, @remote}, 0x10)
setsockopt$MRT_FLUSH(r2, 0x0, 0xd4, &(0x7f0000000040)=0x6, 0x4)

9.777868034s ago: executing program 4 (id=684):
r0 = openat$tun(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0xb2570000)
socketpair$unix(0x1, 0x2, 0x0, 0x0)
connect$unix(0xffffffffffffffff, 0x0, 0x0)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(0xffffffffffffffff, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x28, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f00000001c0)='sched_switch\x00', r2}, 0xe)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r3, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x1006)
r4 = socket$unix(0x1, 0x5, 0x0)
ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r5=>0x0})
openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000140), 0x488100)
syz_emit_ethernet(0x3e, &(0x7f00000002c0)=ANY=[@ANYBLOB="aaaaaaaaaaaaf368656e065b0800450000300000000000019078ac1e0001e00000010400907803000000450000000000000000000000ac141400ac1414005153bf9890ab2f"], 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='netlink_extack\x00'}, 0x10)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2d, 0x25dfdbfd, {0x0, 0x0, 0x0, r5, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x1, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8, 0x2, {0x28}}}]}, 0x38}}, 0x0)
openat$snapshot(0xffffffffffffff9c, &(0x7f0000000200), 0x80000, 0x0)
socket$nl_route(0x10, 0x3, 0x0)

9.26003202s ago: executing program 0 (id=686):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000080)='./file0\x00', 0x759, &(0x7f00000005c0)={[{@nojournal_checksum}, {@noblock_validity}, {@discard}, {@errors_remount}, {@grpid, 0x0}, {@nouid32}, {@noload}, {@nodiscard}, {@mblk_io_submit}, {@commit={'commit', 0x3d, 0x7}}, {@init_itable}, {@noinit_itable}, {@journal_dev={'journal_dev', 0x3d, 0x765}}, {@norecovery}, {@stripe={'stripe', 0x3d, 0x3}}, {@data_err_abort}, {@resgid}], [{@dont_measure}, {@subj_user={'subj_user', 0x3d, 'H\xa4u~c'}}], 0x2c}, 0xa, 0x530, &(0x7f0000001b40)="$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")
bpf$MAP_CREATE(0x0, 0x0, 0x50)
creat(&(0x7f00000000c0)='./bus\x00', 0x182)

8.297382913s ago: executing program 5 (id=689):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x6, 0x4, 0x8, 0x7ff, 0x0, 0xffffffffffffffff, 0x7}, 0x50)
syz_mount_image$ext4(&(0x7f00000003c0)='ext4\x00', &(0x7f00000002c0)='./bus\x00', 0x404, &(0x7f0000000580)={[{@orlov}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}]}, 0x1, 0x5e8, &(0x7f0000001200)="$eJzs3c9vFdUeAPDv3P6gpbzXQl7ee7iQJsZAorS0gCHGBWwNafBH3Lix0oJIgYbWaNGEkuDGxLgxxsSVC/G/UCJbVrpy4caVISFqWJp4zdzOlP6Y2x+X207T+XySS2fOmeGc4fLtOXPuOXMDqKzB9I9axMGImE4i+pP5xbzOyDIHF4579OdH59NXEvX6a78nkWRp+fFJ9rMvO7knIn78IYkDHavLnZm7cXl8amryerY/PHtlenhm7sbRS1fGL05enLw6+sLoqZMnTp4aOdbSdd0sSDt7+933+z8Ze/Obr/5KRr79ZSyJ0/FyduDS62iXwRhs/Jskq7P6TrW7sJJ0ZP9Plr7FSWeJFWJT8vevKyL+F/3REY/fvP74+JVSKwdsqXoSUQcqKhH/UFF5PyC/t195H1wrpVcCbIeHZxYGAFbHf+fC2GD0NMYG9j5KYumwThIRrY3MLbcvIu7fG7t94d7Y7diicTig2PytiPh/UfwnjfgfiJ4YaMR/bVn8p/2Cc9nPNP3VFstfOVQs/mH7LMR/z5rxH03i/60l8f92i+UPPt58p3dZ/Pe2ekkAAAAAAABQWXfPRMTzRZ//1xbn/0TB/J++iDjdhvIHV+yv/vy/9qANxQAFHp6JeKlw/m8tn/070JFt/asxH6AruXBpavJYRPw7Io5E1550f2SNMo5+euDLZnmD2fy//JWWfz+bC5jV40HnnuXnTIzPjj/pdQMRD29FPFU4/zdZbP+TgvY//X0wvcEyDjx751yzvPXjH9gq9a8jDhe2/4+fWpGs/XyO4UZ/YDjvFaz29Ieffdes/Fbj3yMm4Mml7f/eteN/IFn6vJ6ZzZdxfK6z3iyv1f5/d/J645Ez3VnaB+Ozs9dHIrqTsx1p6rL00c3XGXajPB7yeEnj/8gza4//FfX/eyNifsXfnfyxfE1x7r9/9/3arD76/1CeNP4nNtX+b35j9M7A983K31j7f6LR1h/JUoz/wYIv8jDtXp5eEI6dRVnbXV8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA2A1qEbEvktrQ4natNjQU0RcR/4m9talrM7PPXbj23tWJNK/x/f+1/Jt++xf2k/z7/weW7I+u2D8eEfsj4vOO3sb+0PlrUxNlXzwAAAAAAAAAAAAAAAAAAADsEH1N1v+nfusou3bAlussuwJAaQri/6cy6gFsP+0/VJf4h+oS/1Bd4h+qq8X472p3PYDtp/2H6hL/UF3iHwAAAAAAdpX9h+7+nETE/Iu9jVeqO8szvwd2t1rZFQBK4xE/UF2m/kB1uccHknXye5qetN6Za5k+/wQnAwAAAAAAAAAAAEDlHD5o/T9UlfX/UF3W/0N15ev/D5VcD2D7uccHYp2V/IXr/9c9CwAAAAAAAAAAAABop5m5G5fHp6Ymr9t4Y2dUox0b6Tu7kYPr9frNxrEtlbVnB1zpjtrIp8LvlPqs2MjX+m3srNJ+JQEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACv8EwAA//8IGSKz")
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000b2e900007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x37e2f4aba9289b81, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
r2 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$nl80211(&(0x7f00000002c0), r2)
sendmsg$nl_generic(r2, &(0x7f00000029c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)={0x20, 0x10, 0x701, 0x0, 0x0, {0xa}, [@typed={0xc, 0x2, 0x0, 0x0, @str='nl80211\x00'}]}, 0x20}}, 0x0)

7.982077337s ago: executing program 0 (id=692):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x13, &(0x7f0000000240)=ANY=[@ANYBLOB="180000008000000000000000000000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000c44185000000040000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb70200000a000000b703000000000000850000007500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000040)='sys_enter\x00', r0}, 0x10)
time(0x0)

7.527116647s ago: executing program 0 (id=694):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
r1 = socket$inet6_udp(0xa, 0x2, 0x0)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000057c0)=ANY=[@ANYBLOB="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"], &(0x7f00000014c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x8}, 0x30)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000001580)={&(0x7f00000015c0)='kmem_cache_free\x00', r2}, 0x10)
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
connect$inet6(r1, &(0x7f0000000b00)={0xa, 0xfdfe, 0x100007, @remote, 0xa}, 0x1c)
connect$pppl2tp(r0, &(0x7f0000000300)=@pppol2tpin6={0x18, 0x1, {0x0, r1, 0x8, 0x0, 0x2, 0x0, {0xa, 0x0, 0xf9d, @private2={0xfc, 0x2, '\x00', 0x1}}}}, 0x32)
writev(r0, &(0x7f0000000180)=[{&(0x7f0000000080)='v', 0x34000}], 0x1)

7.399698999s ago: executing program 5 (id=695):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r1)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000006c0)=@delchain={0x8c, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0xa, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x5c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x58, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x54, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x7}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0xd}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x85}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x2}]}]}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4008051}, 0x4000)

7.142060964s ago: executing program 0 (id=698):
sched_setscheduler(0x0, 0x2, 0x0)
socket(0x1d, 0x2, 0x6)
socket(0x1d, 0x2, 0x6)
r0 = socket$nl_route(0x10, 0x3, 0x0)
r1 = socket$can_raw(0x1d, 0x3, 0x1)
ioctl$ifreq_SIOCGIFINDEX_vcan(r1, 0x8933, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@getchain={0x24, 0x11, 0x839, 0x70bd25, 0x21dfdbfb, {0x0, 0x0, 0x0, 0x0, {0x1, 0x6}, {0xffff, 0xb}, {0xc}}}, 0x24}}, 0x40)

6.831222172s ago: executing program 4 (id=702):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = socket$nl_generic(0x10, 0x3, 0x10)
r6 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r5)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r5, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r6, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$eJzs3c9rI2UYwPEnaZpMumyTgygK0ge96GVoq2c1yC6IAZfuRtwVhNntREPGpMyESERsPXkVb/4DgsseFzwsqP9AL97WixdP9iIIuog4Mr/SJJ00aTZL0/b7gTZP8r7PzPvmF88byJuD9776uFn3zLrVkayhkhEReSRSlqwkMtFFXlLsycuX/nz4/PWbt96uVKtXtlSvVm68sqmqq2s/fPJZMe72oCD75Q8OxPht/+n9Zw/+u/FRw9OGp612Ry293f61Y912bN1ueE1T9ZpjW56tjZZnu1F7O2qvO+2dnZ5are3LKzuu7XlqtXratHvaaWvH7an1odVoqWmaenklbbjnmDFDTu3u1pZVmfGEd2bMw7z94/v+Mc2uW7GWRMzikZba3Sc6LgAAsJBG6v9vkhqhLNl+QZmJ1wL5MB5eBgT1fxKH9X+wWDis/++98FPn0rv3V+P6/0E+rf5/9Zcof6j+D84+9/r/u5HrRyuiM2/3JJ0fq/7HYlgbfkX+frhijwX1f/Bq6K/ov3j/3noYUP8DAAAAAAAAAAAAAAAAAAAAAHAWPPL9ku/7peQy+Tv8CkF8Pbl23BeNceaMe/wL8Y4C/ecDzqXrN2+JEX5xL7cq4nzZrXVr0WXcnnRcl5L8Gz4fYtGGE3thowbK8qOz260txwlL4f+KiIojtmxIScpD+WF89a3qlQ2NRPnh+Xe7tUxuJcivSyPM35SSPJWev5man5eXXhzIN6UkP9+RtjiyHb+PJfmfb6i++U51JL8Y9kvz+pN9SAAAAAAAmDtT1YiXz+Xh9W+0fjdN1bT2YC0vg+vzo58P9NfX66nr81zpudzpzh0AAAAAgIvCy3/atBzHdr3e2KAok/oU4qONNOVkwpGDIDdFn6HgYRgsH9dnaWCG0x45H/+CxrTDcL2eTD3mJPirIKl3ZrKF61CTkX6vThkk85+is3HSh8D1siefu+16a8F4dKbpDATJx0bj+si1WY88Lkh2zp3U+Zmvv/17tlNk4l17B5teu29MmGkYZEZu2ZvwpP3D9yeOZzn93eL7WX5kBgAAAMCCSIr+opfc8sbpDggAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgAtortukjQlOe44AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAovg/AAD//5h69bA=")
r7 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r7}, 0x18)
r8 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r8, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000080)="da", 0x1}], 0x1, &(0x7f0000000040)=ANY=[], 0xd0}}], 0x1, 0x8080)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0x20, &(0x7f0000000000)={&(0x7f0000000280)=""/82, 0x52, <r9=>0x0, &(0x7f0000000340)=""/222, 0xde}}, 0x10)
r10 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0x2000000000000106, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0, @ANYRES16=r0, @ANYRES16=r7], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0x6, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r9, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r10}, 0x18)
r11 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
renameat2(r11, &(0x7f0000000200)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x2)
r12 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x52)
fcntl$setlease(r12, 0x400, 0x1)

6.757852945s ago: executing program 1 (id=703):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r0, &(0x7f0000000940), 0x10)
listen(r0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f0000001480)=@base={0x6, 0x4, 0x8, 0x8}, 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000380)={0xffffffffffffffff, 0x0, 0x0}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, 0x0, 0x0)
r1 = openat$ttyS3(0xffffffffffffff9c, 0x0, 0x0, 0x0)
ioctl$TIOCSETD(r1, 0x5423, 0x0)
ioctl$TIOCSLCKTRMIOS(r1, 0x8924, 0x0)
socket$nl_generic(0x10, 0x3, 0x10)
r2 = shmget(0x0, 0x1000, 0xa04, &(0x7f0000ffd000/0x1000)=nil)
ioctl$PTP_PEROUT_REQUEST2(0xffffffffffffffff, 0x40383d0c, 0x0)
shmctl$IPC_RMID(r2, 0x0)
socket(0x11, 0x3, 0x2)
mount(0x0, 0x0, 0x0, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
newfstatat(0xffffffffffffff9c, 0x0, 0x0, 0x800)
timer_create(0x8, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004}, &(0x7f0000bbdffc))
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x10, &(0x7f0000000880)=ANY=[@ANYBLOB="18050000000000000000000000dcc7d977080000000000007b8af8ff00000000b7480000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018230000792cac7551e93c6ef5b9001c9d200bc1ed4c7d77c1e62977b2b325832ebbd070b88aba18c5258729c5689948bafc895e7a3657a9be882d9a7e6836cf0acd5e369a833e10fa8c898e7edef41aeba58576b6c98ca48b", @ANYRES32, @ANYBLOB="0000000000000000b7040000080000008500000095000000"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000006c0)={&(0x7f0000000700)='kmem_cache_free\x00'}, 0x10)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000780)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
statx(0xffffffffffffffff, 0x0, 0x6000, 0x400, 0x0)

6.754968438s ago: executing program 0 (id=704):
getpid()
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00"/13], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000740)={0x11, 0xc, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000400850000008200000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10)
unshare(0x42000000)

6.679994411s ago: executing program 5 (id=705):
madvise(&(0x7f00000ec000/0x800000)=nil, 0x800000, 0x17)
madvise(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x15)
madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x18)
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000140)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x4000}, 0xc, &(0x7f0000000100)={&(0x7f00000000c0)={0x38, 0x1403, 0x800, 0x70bd25, 0x25dfdbfe, "", [{{0x9, 0x2, 'syz2\x00'}, {0x8, 0x41, 'rxe\x00'}, {0x14, 0x33, 'tunl0\x00'}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000800}, 0x8000)
pipe2$9p(&(0x7f00000005c0)={0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80800)
fcntl$setstatus(r1, 0x4, 0x82000)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000001040)={0x11, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="180100000100a7d90000000000"], &(0x7f0000000300)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94)
r3 = syz_open_dev$tty1(0xc, 0x4, 0x3)
ioctl$KDFONTOP_GET(r3, 0x4b72, &(0x7f00000000c0)={0x1, 0x2, 0x48000018, 0x1c, 0x10000079, &(0x7f00000004c0)})
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000040)='./file0\x00', 0x1800403, &(0x7f0000000940), 0x2, 0x5ad, &(0x7f0000000180)="$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")
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x18)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000a40)={[{@grpquota}, {@errors_continue}, {@nombcache}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x7f}}, {@lazytime}, {@nodelalloc}, {@noblock_validity}, {@noauto_da_alloc}]}, 0x1, 0x54c, &(0x7f0000000400)="$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")
bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
setxattr$incfs_id(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000000540), 0xff57, 0x0)
r4 = socket$inet6_tcp(0xa, 0x1, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x11, 0xc, &(0x7f00000005c0)=ANY=[@ANYRES8, @ANYRES32, @ANYBLOB="cfeaf637b66cbcf4af357e5713f209"], 0x0, 0x0, 0x0, 0x0, 0x41100, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r5 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="0700000004000000800000000400000028000000", @ANYRES32, @ANYBLOB="00000000001f00"/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB='\x00'/28], 0x50)
r6 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r5}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r6}, 0x18)
r7 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r7, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000500)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01020000000000000000010000000900010073797a300000000058000000160a01000000000000000000010000000900010073797a30000000000900020073797a30000000002c00038008000140000000000800024000000000180003801400010076657468305f746f5f687372000000005c000000160a0101000b000000000000010000000900020073797a30000000000900010073797a3000000000300003802c000380140001007665"], 0xfc}}, 0x0)
connect$inet6(r4, &(0x7f0000000180)={0xa, 0x4001, 0xd000000, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r8 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)
write$binfmt_script(r8, &(0x7f0000000100), 0xfffffd9d)
sendfile(r4, r8, 0x0, 0x8000002b)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000000)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073017a31000000000800410072786500140033006c6f"], 0x38}, 0x1, 0x0, 0x0, 0x44}, 0x810)

5.707901098s ago: executing program 1 (id=707):
syz_mount_image$vfat(&(0x7f0000000100), &(0x7f0000000640)='./bus\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x1, 0x1268, &(0x7f0000002500)="$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")
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0xb, 0x8, 0xc, 0xffffffff, 0x1, 0x1}, 0x33)
bpf$MAP_UPDATE_BATCH(0x1a, &(0x7f0000000340)={0x0, 0x0, &(0x7f00000000c0), &(0x7f0000000140), 0x5, r0}, 0x38)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f00000009c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095000000000000006f05248e68af0ab3b4136e7de75fb328e6d99700264f49dac67016e55bed991edc32150a06144bcd94e2e19fefa083140d5ced5d40d243c0a35f6741822c7d06461d1de5e022c0e821bf1692caddd8ac808178a9cca35af53dce59786182716dc4804b17e4640c4ff884d24fe22b29b90a4e8ab63a8089c77e5762f27da2607a9d36038da12435fe9ee3f878aaf1bdaed11102875fcf264c798cd4"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000004c0)={0x6, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000040000000000000003000000180100002020702500000000002020209c1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff7f850000001c00000095"], 0x0, 0x5, 0x0, 0x0, 0x41000, 0x22}, 0x94)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000740)={0x6, 0xb, &(0x7f0000000380)=ANY=[], &(0x7f0000000480)='syzkaller\x00', 0xc, 0xe4, &(0x7f00000000c0)=""/228, 0x40f00, 0x23}, 0x94)

5.53025242s ago: executing program 2 (id=708):
r0 = io_uring_setup(0x6ecd, &(0x7f0000000140)={0x0, 0x49fd, 0x10003, 0x20002, 0x185})
r1 = socket$inet6_tcp(0xa, 0x1, 0x0)
close(r1)
r2 = socket$inet6_mptcp(0xa, 0x1, 0x106)
bind$inet6(r1, 0x0, 0x0)
listen(r2, 0x0)
r3 = socket$inet_mptcp(0x2, 0x1, 0x106)
connect$inet(r3, &(0x7f0000000000)={0x2, 0x4e22, @empty}, 0x10)
r4 = accept(r1, 0x0, 0x0)
sendmsg$TEAM_CMD_OPTIONS_SET(r4, &(0x7f0000000340)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000300)=ANY=[], 0xfffffdef}, 0x1, 0x0, 0x0, 0x40001}, 0x1)
close_range(r0, 0xffffffffffffffff, 0x0)

5.280309578s ago: executing program 4 (id=709):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r2, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r2, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b2c25fe80000000000000dc8b71d5decf66cc00"/40, 0x28}], 0x1}, 0x0)

4.924851332s ago: executing program 4 (id=711):
open(&(0x7f0000000000)='./bus\x00', 0x1050c1, 0x170)
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f0000000680)={[{@nolazytime}, {@lazytime}, {@journal_path={'journal_path', 0x3d, './bus'}}, {@bsdgroups}, {@lazytime}, {@noload}]}, 0x3, 0x45c, &(0x7f0000002400)="$eJzs3MtvG8UfAPDv+pG+m/yq/oA+gCBAlAJJk5bSAxcQSBxAQoJDOYYkrUrdBjVBIlUFBaFyRJU4cUEckfgLOMEFASckLhzgjipVqJcWTkYb76a2a+dVP0j9+UjrzuyuO/P1ztizM7EDGFij6UMSsTMifo+I4Vq28YTR2j+3blya/vvGpekkqtU3/kpK6eGbNy5N56fmz9uRZ0oRhU+SONCi3PnFi2enKpXZC1l+fOHcu+PzixefOXNu6vTs6dnzkydOHDs68dzxyWc7Emca1839H8wd3PfKW1dfmz559e2fvkny+Jvi6JDRlQ4+Xq12uLj+2lWXrrUMNoNirZtGean/D0cxbl+84Xj5475WDuiqarVava/94ctV4B6WRL9rAPRH/kGf3v/mW4+GHv8J11+o3QClcd/KttqRUhSyc8pN97edNBoRJy//82W6RXfmIQAAGnyXjn+ebjX+K0T9vNDubA1lJCL+FxF7IuJ4ROyNiP9HLJ17f0Q8sM7ymxdJ7hz/FK5tKLA1Ssd/z2drW43jv3z0FyPFLLdrKf5ycupMZfZI9pocivKWND+xQhnfv/TrZ+2O1Y//0i0tPx8LZvW4VtrS+JyZqYWpu4m53vWPIvaXWsWfLK8EJBGxLyL2b7CMM4e/Ptju2Orxr6AD60zVryKeqF3/y9EUfy5ZeX1yfGtUZo+M563iTj//cuX1duXfVfwdkF7/7S3b/3L8I0n9eu38ev73L55MH6/88Wnbe5qNtv+h5M2Gfe9PLSxcmIgYSl6tVbp+/2TTeZO3z0/jP/Ro6/6/J26/EgciIm3ED0bEQxHxcFb3R37bveqr8OOLj72z8fi7K41/Zu3XvzockTeExaHIEst7WieKZ3/4tqHQkdbx7257/Y8tpQ5le9by/reWeq23NQMAAMBmVYiInZEUxpbThcLYWO1v+PfG9kJlbn7hqVNz752fqX1HYCTKhXyma7huPnQiu63P85NN+aPZvPHnxW1L+bHpucpMv4OHAbejTf9P/Vnsd+2ArvN9LRhc+j8MLv0fBted/X9rX+oB9F6Lz/9t/agH0Hutxv8fruWJOztfF6C3mvq/ZT8YIOb/YHBtpP97z4B7Q2mln2we6mlVgN6Z3xarf0leYjMl8l+u6UYR5bS1HI6IxYtR6HukEl1M9PudCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoDP+DQAA//+CSeFs")

4.863974788s ago: executing program 2 (id=712):
unshare(0x2c020400)
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f00000006c0), 0x48200, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x200000000000000)

3.843815387s ago: executing program 2 (id=713):
r0 = openat$tun(0xffffffffffffff9c, &(0x7f0000001800), 0xc0241, 0x0)
ioctl$TUNSETIFF(r0, 0x400454ca, &(0x7f0000000200)={'syzkaller1\x00', 0x4401})
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000240)="0bc3", 0x2}, {&(0x7f0000000680)="0000009b00000ebcbbd8d57b56", 0xd}], 0x2)

3.723005753s ago: executing program 4 (id=714):
syz_emit_ethernet(0x3a, &(0x7f0000000000)={@local, @link_local, @void, {@ipv4={0x800, @udp={{0x5, 0x4, 0x0, 0x0, 0x2c, 0x0, 0xfffd, 0x0, 0x11, 0x0, @empty, @empty}, {0x0, 0x4e20, 0x18, 0x0, @wg=@data={0x4, 0xe, 0x9}}}}}}, 0x0)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000140)={0x6, 0x3, &(0x7f0000000680)=ANY=[@ANYBLOB="1800000002000000000000000000000095"], 0x0}, 0x90)
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000200)={&(0x7f00000007c0)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x12a, 0x12a, 0xc, [@datasec={0x7, 0x6, 0x0, 0xf, 0x2, [{0x3, 0x8, 0x908}, {0x2, 0x4, 0x14b7}, {0x3, 0x3, 0x1}, {0x5, 0x3}, {0x4, 0x2}, {0x3, 0x24a3, 0x10}], "9814"}, @type_tag={0x2, 0x0, 0x0, 0x12, 0x4}, @union={0xd, 0x4, 0x0, 0x5, 0x0, 0x8, [{0x2, 0x0, 0x2}, {0xd, 0x1, 0x3344daa9}, {0x8, 0x4}, {0xe, 0x4, 0x2}]}, @enum={0x4, 0x7, 0x0, 0x6, 0x4, [{0x3, 0x8}, {0xd, 0x3}, {0xb}, {0xc, 0x8}, {0x3, 0x1ff}, {0x6, 0x10001}, {0x6, 0x3}]}, @array={0x0, 0x0, 0x0, 0x3, 0x0, {0x5, 0x4, 0xff}}, @union={0x1, 0x2, 0x0, 0x5, 0x1, 0xffffffff, [{0x0, 0x4, 0x2}, {0x2, 0x4, 0xa}]}, @ptr={0x8}]}, {0x0, [0x0, 0x5f, 0x2e, 0x61, 0x2e, 0x5f, 0x30, 0x2e, 0x61, 0x30]}}, &(0x7f0000000340)=""/196, 0x150, 0xc4, 0x1, 0xfffffffa, 0x10000}, 0x28)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f0000000000)=ANY=[@ANYBLOB="18010000000000100000000000000000850000007d00"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7)
r1 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r2 = socket$inet6(0xa, 0x80001, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r2, 0x29, 0x2a, 0x0, 0x0)
setsockopt$inet6_group_source_req(r2, 0x29, 0x2b, 0x0, 0x0)
sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x6)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x3000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@file={0x0, './file1\x00'}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00'}, 0xc)
unshare(0x64000600)
r5 = bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000480)={0x6, 0x3, &(0x7f0000000680)=ANY=[], &(0x7f00000002c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x6, '\x00', 0x0, 0x25, r0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r5, 0x5, 0xb68, 0x6, &(0x7f0000000000)='%', 0x0, 0xd01, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x48)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
add_key$keyring(&(0x7f00000000c0), &(0x7f0000000000)={'syz', 0x3}, 0x0, 0x0, 0xffffffffffffffff)
keyctl$join(0x1, &(0x7f0000000100)={'syz', 0x3})
keyctl$join(0x1, &(0x7f00000001c0)={'syz', 0x3})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000100)='kmem_cache_free\x00'}, 0x18)
sendmsg$FOU_CMD_DEL(0xffffffffffffffff, &(0x7f0000000980)={&(0x7f0000000040)={0x10, 0x0, 0x0, 0x10}, 0xc, &(0x7f0000000940)={&(0x7f00000005c0)={0x2c, 0x0, 0x200, 0x70bd2c, 0x25dfdbfb, {}, [@FOU_ATTR_IFINDEX={0x8}, @FOU_ATTR_TYPE={0x5, 0x4, 0x3}, @FOU_ATTR_IFINDEX={0x8}]}, 0x2c}}, 0x40080)

3.69181565s ago: executing program 3 (id=715):
r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0)
bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4, 0x1}, 0xe)
ioctl$sock_SIOCOUTQ(r0, 0x5411, 0x0)

3.580991554s ago: executing program 1 (id=716):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
setsockopt$inet_sctp_SCTP_RECONFIG_SUPPORTED(r0, 0x84, 0x75, &(0x7f0000000100)={0x0, 0x4}, 0x8)
setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000180)=[@in={0x2, 0x4e21, @empty}], 0x10)
setsockopt$inet_sctp_SCTP_ENABLE_STREAM_RESET(r0, 0x84, 0x76, &(0x7f0000000040)={0x0, 0x5}, 0x8)
sendmsg$inet_sctp(r0, &(0x7f0000000140)={&(0x7f0000000340)=@in={0x2, 0x4e21, @local}, 0x10, &(0x7f0000000380)=[{&(0x7f00000001c0)='N', 0x1}], 0x1, 0x0, 0x0, 0x804c040}, 0x4000891)
setsockopt$inet_sctp_SCTP_RESET_STREAMS(r0, 0x84, 0x77, &(0x7f00000000c0)=ANY=[@ANYRES32=0x0, @ANYBLOB="01ed"], 0xa)

3.10901408s ago: executing program 3 (id=717):
r0 = socket$netlink(0x10, 0x3, 0x0)
r1 = socket(0x10, 0x3, 0x0)
syz_genetlink_get_family_id$ethtool(&(0x7f0000000200), r1)
getsockname$packet(r1, &(0x7f00000002c0)={0x11, 0x0, <r2=>0x0, 0x1, 0x0, 0x6, @broadcast}, &(0x7f0000000100)=0x14)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000008c0)=ANY=[@ANYBLOB="480000001000050700000086d7c0d6c878f064eb", @ANYRES32=r2, @ANYBLOB="0000000000000000280012000c00010076657468"], 0x48}}, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f00000004c0)={&(0x7f0000000900)=@newqdisc={0x30, 0x24, 0xf1d, 0x0, 0x0, {0x0, 0x0, 0x0, r2, {}, {0xfff1, 0xffff}}, [@qdisc_kind_options=@q_clsact={0xb}]}, 0x30}}, 0x4000800)
sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000006c0)=@delchain={0x8c, 0x64, 0xf31, 0xfffffffb, 0x0, {0x0, 0x0, 0x0, r2, {0x0, 0xfff1}, {0xfff3, 0xffff}, {0xa, 0x1b}}, [@filter_kind_options=@f_flower={{0xb}, {0x5c, 0x2, [@TCA_FLOWER_KEY_ENC_OPTS={0x58, 0x54, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPTS_ERSPAN={0x54, 0x3, 0x0, 0x1, [@TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x4}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x7}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_VER={0x5, 0x1, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0xd}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x85}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_HWID={0x5, 0x4, 0x3}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_INDEX={0x8, 0x2, 0x1}, @TCA_FLOWER_KEY_ENC_OPT_ERSPAN_DIR={0x5, 0x3, 0x2}]}]}]}}]}, 0x8c}, 0x1, 0x0, 0x0, 0x4008051}, 0x4000)

2.11341427s ago: executing program 2 (id=718):
r0 = socket(0x10, 0x803, 0x0)
sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0)
recvmmsg(r0, &(0x7f0000000880)=[{{0x0, 0x0, 0x0}, 0x1ff}, {{0x0, 0x0, 0x0}, 0x20014d2}, {{0x0, 0x0, &(0x7f0000000fc0)=[{&(0x7f0000001b00)=""/4082, 0xff2}, {&(0x7f0000000680)=""/170, 0xaa}, {&(0x7f0000000000)=""/255, 0xff}, {&(0x7f0000000580)=""/213, 0xd5}, {&(0x7f00000015c0)=""/215, 0xd7}, {&(0x7f0000000440)=""/85, 0x55}, {&(0x7f0000000a80)=""/229, 0xe5}, {&(0x7f0000001a40)=""/152, 0x98}, {&(0x7f0000000200)=""/142, 0x8e}, {&(0x7f00000003c0)=""/75, 0x4b}], 0xa}, 0x81}], 0x3, 0x12000, 0x0)

1.979582814s ago: executing program 1 (id=719):
r0 = socket(0x23, 0x80805, 0x0)
listen(r0, 0x0)
setsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, 0x0, 0x0)
prlimit64(0x0, 0xe, &(0x7f0000000040)={0x8, 0x8b}, 0x0)
r1 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000180)={&(0x7f0000000340)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x7e, 0x7e, 0x3, [@struct={0x6, 0x1, 0x0, 0x4, 0x1, 0x1, [{0xc, 0x0, 0x4}]}, @datasec={0x1, 0x5, 0x0, 0xf, 0x2, [{0x2, 0x7ff, 0xfff}, {0x1, 0x1, 0x5}, {0x5, 0x8, 0x2}, {0x5, 0x0, 0x1}, {0x4, 0x0, 0x2}], "9bab"}, @const={0x6}, @int={0xc, 0x0, 0x0, 0x1, 0x0, 0x71, 0x0, 0x77}]}, {0x0, [0x30]}}, &(0x7f0000000580)=""/68, 0x9b, 0x44, 0x0, 0x1}, 0x28)
setsockopt$SO_ATTACH_FILTER(r1, 0x1, 0x1a, &(0x7f0000000080)={0x1, &(0x7f0000000b80)=[{0x6}]}, 0x10)
bind$bt_hci(r1, &(0x7f0000000140)={0x1f, 0xffff, 0x2}, 0x6)
r2 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r2}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r3 = openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0)
prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff7000/0x1000)=nil, &(0x7f0000ff1000/0xf000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x3000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ff5000/0x1000)=nil, &(0x7f0000ffa000/0x1000)=nil, &(0x7f0000ffa000/0x2000)=nil, 0x0, 0xffffffffffffff2c}, 0x68)
sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000080)={0x0, 0x0, 0x0}, 0x24004045)
read(r3, &(0x7f00000019c0)=""/4097, 0x1001)

1.9537018s ago: executing program 3 (id=720):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00', r1}, 0x10)
r2 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r2, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000001540)={&(0x7f0000000240)=ANY=[@ANYBLOB="240100001600010428bd700000000000fe8000000000000000000000000000bbfc01000000000000000000000000000100040000000000000000a00000000000", @ANYRES32=0x0, @ANYRES32, @ANYBLOB="ff02000000000000000000000000000100000000330000000a0101010000000000000000000000000000000000004e340100000000000000000000000000000004000000000000000400000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000100000000000000000000000000000000000000000000000a0000002bbd70000000000000000200000000000000000008000020ffffffdf2c0027cc"], 0x124}}, 0x0)

1.788048856s ago: executing program 3 (id=721):
r0 = creat(&(0x7f0000000300)='./file0\x00', 0x28)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x2, 0x4, &(0x7f0000000200)=ANY=[@ANYBLOB="180000000300000000000000feffff10850000000700000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x100, 0x70, '\x00', 0x0, @fallback=0x30, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
write$qrtrtun(r0, &(0x7f0000000900)="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", 0x45c)
r2 = bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000180)={r1, 0x0, 0x30, 0x0, @val=@uprobe_multi={&(0x7f0000000140)='./file0\x00', &(0x7f00000002c0)=[0x45c], 0x0, 0x0, 0x1, 0x1}}, 0x40)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f00000005c0)={r2, 0x0, 0x0}, 0x10)

1.711714786s ago: executing program 2 (id=722):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="07000000040000000800000001"], 0x48)
r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="19000000040000000400"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={0x0, r2}, 0x18)
prlimit64(0x0, 0xe, &(0x7f0000000240)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r3 = getpid()
sched_setscheduler(r3, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x5c399000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f00000000c0)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
connect$unix(r4, &(0x7f000057eff8)=@abs, 0x6e)
sendmmsg$unix(r5, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r4, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r6 = socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000380), r6)
mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0)
sendmsg$NL80211_CMD_REMAIN_ON_CHANNEL(r6, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000002c0)={0x14, r7, 0x9c3fa077fa966179, 0x0, 0x0, {{0x7e}, {@void, @void}}}, 0x14}}, 0x4000054)
syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000200)='./file0\x00', 0x800, &(0x7f0000000340)=ANY=[@ANYRES32=0x0, @ANYRESOCT, @ANYRES64, @ANYRES16], 0x1, 0x36e, &(0x7f0000000c00)="$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")
r8 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0x8, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r8}, 0x18)
r9 = socket$kcm(0x29, 0x2, 0x0)
sendmmsg$inet(r9, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000080)="da", 0x1}], 0x1, &(0x7f0000000040)=ANY=[], 0xd0}}], 0x1, 0x8080)
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000100)={0xffffffffffffffff, 0x20, &(0x7f0000000000)={&(0x7f0000000280)=""/82, 0x52, <r10=>0x0, &(0x7f0000000340)=""/222, 0xde}}, 0x10)
r11 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x14, 0x2000000000000106, &(0x7f0000000080)=ANY=[@ANYRESHEX=0x0, @ANYRES16=r0, @ANYRES16=r8], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x1f00, 0x6, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r10, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r11}, 0x18)
r12 = openat(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0x4842, 0x1cb)
renameat2(r12, &(0x7f0000000200)='./file1\x00', 0xffffffffffffff9c, &(0x7f0000000440)='./file1\x00', 0x2)
r13 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file1\x00', 0x8042, 0x52)
fcntl$setlease(r13, 0x400, 0x1)

963.956934ms ago: executing program 4 (id=723):
socket$xdp(0x2c, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(0xffffffffffffffff, 0x8933, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x33, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000004c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
r0 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={<r1=>0xffffffffffffffff})
pipe(&(0x7f00000001c0)={<r2=>0xffffffffffffffff, <r3=>0xffffffffffffffff})
splice(r1, 0x0, r3, 0x0, 0x7, 0x9)
write$P9_RWRITE(r3, &(0x7f0000000040)={0xb}, 0x11000)
read(r2, &(0x7f0000032440)=""/102364, 0x18fdc)
read(r2, &(0x7f0000000000)=""/52, 0x34)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000040)='kfree\x00', 0xffffffffffffffff, 0x0, 0x401}, 0x11)

570.134649ms ago: executing program 3 (id=724):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000540)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000f80)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000f6000000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(0xffffffffffffffff, 0xc058534f, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000300)='qdisc_dequeue\x00', r1}, 0x18)
bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
r2 = socket$kcm(0xa, 0x922000000003, 0x11)
setsockopt$sock_attach_bpf(r2, 0x29, 0x24, &(0x7f00000000c0), 0x4)
sendmsg$kcm(r2, &(0x7f0000000000)={&(0x7f00000007c0)=@l2tp6={0xa, 0x0, 0x0, @mcast1, 0x4}, 0x80, &(0x7f0000000080)=[{&(0x7f0000000780)="f4000900062b2c25fe80000000000000dc8b71d5decf66cc00"/40, 0x28}], 0x1}, 0x0)

388.56535ms ago: executing program 3 (id=725):
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB], 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000580)='kmem_cache_free\x00'}, 0x10)
setpriority(0x1, 0x0, 0xfff)
bpf$MAP_CREATE(0x0, 0x0, 0x50)
bpf$PROG_LOAD(0x5, 0x0, 0x0)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000002000000b7030000e8ffffff850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a00)={&(0x7f0000000d00)='sched_switch\x00', r0}, 0x10)
syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f00000001c0)='./file0\x00', 0x800700, &(0x7f0000000680)={[{@nodioread_nolock}, {@journal_dev={'journal_dev', 0x3d, 0xff}}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x5c}}, {@nouid32}, {@resgid}, {@acl}, {@init_itable_val={'init_itable', 0x3d, 0x8d55}}]}, 0x0, 0x473, &(0x7f0000000bc0)="$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")

356.063485ms ago: executing program 1 (id=726):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="05000000010000000a00000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000002000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000280)='ufshcd_upiu\x00', r1, 0x0, 0x2}, 0x18)

342.486926ms ago: executing program 2 (id=727):
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
pipe(&(0x7f00000045c0)={0xffffffffffffffff, <r0=>0xffffffffffffffff})
vmsplice(r0, 0x0, 0x0, 0xc)

0s ago: executing program 1 (id=728):
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x7, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$wireguard(&(0x7f00000005c0), r0)
sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000001000)={0x0, 0x0, &(0x7f0000000fc0)={&(0x7f0000000000)=ANY=[@ANYBLOB="ec000000", @ANYRES16=r1, @ANYBLOB="01000000000000000000010000000800050001000000140002007767310000000000000000000000000024000300a0cb879a47f5bc644c0e693fa6d031c74a1553b6e901b9ff2f518c78042fb5420800050000000000900008808c00008024000100975c9d81c983c8209ee781254b899f8ed925ae9f0923c23c62f53c57cdbf691c640009801c000080060001000200000008000200ffffffff05000300030000001c000080060001000200000008000200ac141427050003"], 0xec}, 0x1, 0x0, 0x0, 0x4084}, 0x80)

kernel console output (not intermixed with test programs):


[  108.946120][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.953289][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state
[  108.974550][ T1094] bridge0: port 1(bridge_slave_0) entered blocking state
[  108.981712][ T1094] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.056621][ T1094] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.063799][ T1094] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.097494][ T5864] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.171111][ T1094] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.178245][ T1094] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.208238][ T5866] 8021q: adding VLAN 0 to HW filter on device bond0
[  109.255831][ T5866] 8021q: adding VLAN 0 to HW filter on device team0
[  109.340714][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  109.347816][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  109.371815][ T5867] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.418074][ T1094] bridge0: port 2(bridge_slave_1) entered blocking state
[  109.425246][ T1094] bridge0: port 2(bridge_slave_1) entered forwarding state
[  109.457901][ T5863] 8021q: adding VLAN 0 to HW filter on device batadv0
[  109.607442][ T5864] veth0_vlan: entered promiscuous mode
[  109.726586][ T5866] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  109.805251][ T5864] veth1_vlan: entered promiscuous mode
[  109.816642][ T5867] veth0_vlan: entered promiscuous mode
[  109.888593][ T5867] veth1_vlan: entered promiscuous mode
[  109.948039][ T5863] veth0_vlan: entered promiscuous mode
[  110.014185][ T5869] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.031194][ T5864] veth0_macvtap: entered promiscuous mode
[  110.071459][ T5863] veth1_vlan: entered promiscuous mode
[  110.117864][ T5864] veth1_macvtap: entered promiscuous mode
[  110.149506][ T5867] veth0_macvtap: entered promiscuous mode
[  110.216369][ T5867] veth1_macvtap: entered promiscuous mode
[  110.251119][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.292654][ T5865] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.327743][ T5864] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.367954][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.386854][   T36] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.398198][   T36] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.422307][ T5863] veth0_macvtap: entered promiscuous mode
[  110.454871][ T5867] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.476631][   T36] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.517029][ T5863] veth1_macvtap: entered promiscuous mode
[  110.562255][   T36] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.572398][ T5180] Bluetooth: hci1: command tx timeout
[  110.622438][   T37] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  110.648323][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_0
[  110.656095][ T5879] Bluetooth: hci2: command tx timeout
[  110.656155][ T5879] Bluetooth: hci3: command tx timeout
[  110.656219][ T5180] Bluetooth: hci4: command tx timeout
[  110.660238][ T5180] Bluetooth: hci0: command tx timeout
[  110.714106][   T36] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  110.739810][ T5180] Bluetooth: hci5: command tx timeout
[  110.746586][ T5866] 8021q: adding VLAN 0 to HW filter on device batadv0
[  110.807081][   T36] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  110.833653][   T36] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  110.848367][ T5863] batman_adv: batadv0: Interface activated: batadv_slave_1
[  110.953487][   T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  111.010247][   T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  111.034330][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.056662][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.072362][   T37] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  111.081636][   T37] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  111.184903][ T1132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.195113][ T1132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.318008][ T5869] veth0_vlan: entered promiscuous mode
[  111.322900][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.338221][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.365505][ T5866] veth0_vlan: entered promiscuous mode
[  111.382000][ T2925] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.390290][ T2925] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.465984][ T5866] veth1_vlan: entered promiscuous mode
[  111.476722][ T5864] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[  111.510336][ T5865] veth0_vlan: entered promiscuous mode
[  111.518324][ T5869] veth1_vlan: entered promiscuous mode
[  111.527455][ T1132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.540264][ T1132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.737639][ T5866] veth0_macvtap: entered promiscuous mode
[  111.777028][ T5866] veth1_macvtap: entered promiscuous mode
[  111.819732][ T5865] veth1_vlan: entered promiscuous mode
[  111.848712][ T1094] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  111.917350][ T1094] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  111.952912][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_0
[  112.981411][ T5866] batman_adv: batadv0: Interface activated: batadv_slave_1
[  112.995982][ T6014] loop2: detected capacity change from 0 to 512
[  113.069062][ T5865] veth0_macvtap: entered promiscuous mode
[  113.085103][ T5869] veth0_macvtap: entered promiscuous mode
[  113.118942][ T5865] veth1_macvtap: entered promiscuous mode
[  113.169401][   T37] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  113.188400][   T37] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  113.226574][ T6014] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  113.247047][ T5869] veth1_macvtap: entered promiscuous mode
[  113.279489][ T6014] ext4 filesystem being mounted at /1/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  113.317806][   T37] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  113.341389][   T37] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  113.596674][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_0
[  113.665828][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_0
[  113.788834][ T5865] batman_adv: batadv0: Interface activated: batadv_slave_1
[  113.852797][ T5869] batman_adv: batadv0: Interface activated: batadv_slave_1
[  114.206003][   T12] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.239025][   T12] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.342556][ T1132] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.384550][   T12] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.407206][ T1132] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  114.417072][   T12] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.550314][ T6030] loop1: detected capacity change from 0 to 2048
[  114.558903][   T12] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  114.577860][   T12] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  114.622200][ T6030] EXT4-fs (loop1): mounted filesystem 00000800-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  114.709849][   T12] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  114.751086][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  114.848420][ T5867] EXT4-fs (loop1): unmounting filesystem 00000800-0000-0000-0000-000000000000.
[  114.872448][   T36] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  114.885610][   T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  114.916565][   T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.079786][ T6038] loop2: detected capacity change from 0 to 1024
[  115.167166][ T6038] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  115.211183][ T6038] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters
[  115.230121][ T1149] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.237962][ T1149] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.345632][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  115.421694][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.440648][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.538206][   T30] audit: type=1326 audit(1757559640.944:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  115.567220][   T30] audit: type=1326 audit(1757559640.944:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  115.638757][   T30] audit: type=1326 audit(1757559640.944:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  115.679038][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.700300][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  115.722154][   T30] audit: type=1326 audit(1757559640.944:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  115.826273][   T30] audit: type=1326 audit(1757559640.954:6): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  115.903789][   T30] audit: type=1326 audit(1757559640.954:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  115.949087][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  115.978333][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  116.005400][   T30] audit: type=1326 audit(1757559640.954:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  116.088418][   T30] audit: type=1326 audit(1757559640.954:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  116.206475][   T30] audit: type=1326 audit(1757559640.954:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  116.304114][   T30] audit: type=1326 audit(1757559640.954:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6048 comm="syz.0.16" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  117.562577][ T6067] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  117.918576][ T6079] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[  117.957207][ T6067] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  118.015422][ T6079] infiniband syz2: RDMA CMA: cma_listen_on_dev, error -98
[  118.401943][ T6067] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  119.028910][ T6088] Zero length message leads to an empty skb
[  119.234765][ T6091] loop3: detected capacity change from 0 to 1024
[  119.441513][ T6091] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.22: Failed to acquire dquot type 0
[  119.543477][ T6091] EXT4-fs error (device loop3): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  119.712265][ T6091] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.22: corrupted inode contents
[  119.821505][ T6091] EXT4-fs error (device loop3): ext4_dirty_inode:6538: inode #13: comm syz.3.22: mark_inode_dirty error
[  119.909221][ T6091] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.22: corrupted inode contents
[  119.988042][ T6091] EXT4-fs error (device loop3): __ext4_ext_dirty:206: inode #13: comm syz.3.22: mark_inode_dirty error
[  120.140898][ T6091] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.22: corrupted inode contents
[  120.175726][ T6067] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  120.245254][ T6091] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  120.352271][ T6091] EXT4-fs error (device loop3): ext4_do_update_inode:5653: inode #13: comm syz.3.22: corrupted inode contents
[  120.457632][ T6091] EXT4-fs error (device loop3): ext4_truncate:4666: inode #13: comm syz.3.22: mark_inode_dirty error
[  120.579678][ T1094] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  120.608686][   T37] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  120.655780][ T6091] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  120.682820][   T37] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  120.704405][ T6091] EXT4-fs (loop3): 1 truncate cleaned up
[  120.779508][   T37] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  120.799267][ T6091] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  120.943899][ T6091] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  121.285018][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.610243][ T6123] netlink: 288 bytes leftover after parsing attributes in process `syz.3.31'.
[  122.240874][ T6143] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  123.030088][    T0] NOHZ tick-stop error: local softirq work is pending, handler #2c2!!!
[  123.147450][ T6144] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.456699][ T6144] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  123.467606][ T6155] loop2: detected capacity change from 0 to 2048
[  123.977151][ T6144] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  125.568972][ T6155] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  125.625835][   T30] kauditd_printk_skb: 78 callbacks suppressed
[  125.625856][   T30] audit: type=1800 audit(1757559651.044:88): pid=6155 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.42" name="bus" dev="loop2" ino=18 res=0 errno=0
[  125.653881][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  125.719336][ T6144] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  126.103247][ T1149] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  126.152342][ T6183] random: crng reseeded on system resumption
[  126.196808][   T12] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  126.339408][   T12] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  126.374326][   T12] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  126.428938][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  126.545626][ T6196] loop3: detected capacity change from 0 to 128
[  126.632251][    T9] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  126.688924][    T9] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  126.697282][ T6196] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  126.769484][    T9] hid-generic 0000:0004:0000.0001: unknown main item tag 0x0
[  126.817207][ T6196] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  126.883130][    T9] hid-generic 0000:0004:0000.0001: hidraw0: <UNKNOWN> HID v0.00 Device [syz0] on syz0
[  126.973583][ T6196] netlink: 96 bytes leftover after parsing attributes in process `syz.3.56'.
[  127.181173][ T5866] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  127.393431][ T6207] fido_id[6207]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory
[  127.445969][ T6213] loop4: detected capacity change from 0 to 1024
[  127.584176][ T6213] Quota error (device loop4): do_check_range: Getting block 64 out of range 1-5
[  127.666454][ T6221] loop3: detected capacity change from 0 to 512
[  127.673883][ T6213] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[  127.693849][ T6213] EXT4-fs error (device loop4): ext4_acquire_dquot:6935: comm syz.4.61: Failed to acquire dquot type 0
[  127.716607][ T6221] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[  127.733870][ T6213] EXT4-fs error (device loop4): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  127.823215][ T6221] Quota error (device loop3): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  127.833832][ T6213] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.61: corrupted inode contents
[  127.940138][ T6221] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota
[  127.963236][ T6213] EXT4-fs error (device loop4): ext4_dirty_inode:6538: inode #13: comm syz.4.61: mark_inode_dirty error
[  128.000516][ T6221] EXT4-fs error (device loop3): ext4_acquire_dquot:6935: comm syz.3.62: Failed to acquire dquot type 1
[  128.040357][ T6213] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.61: corrupted inode contents
[  128.076347][ T6213] EXT4-fs error (device loop4): __ext4_ext_dirty:206: inode #13: comm syz.4.61: mark_inode_dirty error
[  128.117471][ T6221] EXT4-fs (loop3): 1 truncate cleaned up
[  128.144337][ T6213] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.61: corrupted inode contents
[  128.180810][ T6221] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  128.226684][ T6213] EXT4-fs error (device loop4) in ext4_orphan_del:305: Corrupt filesystem
[  128.300098][ T6221] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  128.341881][ T6213] EXT4-fs error (device loop4): ext4_do_update_inode:5653: inode #13: comm syz.4.61: corrupted inode contents
[  129.016584][ T6213] EXT4-fs error (device loop4): ext4_truncate:4666: inode #13: comm syz.4.61: mark_inode_dirty error
[  129.139089][ T6213] EXT4-fs error (device loop4) in ext4_process_orphan:347: Corrupt filesystem
[  129.141457][ T6213] EXT4-fs (loop4): 1 truncate cleaned up
[  129.143489][ T6213] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  129.295188][ T6212] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  129.951658][ T6233] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  129.954083][ T6233] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  130.354175][ T6242] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.368895][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  130.391419][ T6233] Bluetooth: hci0: Opcode 0x0406 failed: -4
[  130.422151][ T6233] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  130.431973][ T6233] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  130.480242][ T6233] Bluetooth: hci1: Opcode 0x0406 failed: -4
[  130.512224][ T6242] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.548345][ T6233] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  130.557076][ T6246] loop1: detected capacity change from 0 to 764
[  130.563637][ T6233] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  130.610349][ T6233] Bluetooth: hci2: Opcode 0x0406 failed: -4
[  130.680923][ T6242] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  130.805656][ T6233] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  130.849873][ T6250] loop2: detected capacity change from 0 to 512
[  130.859364][ T6233] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  130.947891][ T6250] EXT4-fs error (device loop2): ext4_xattr_inode_iget:440: comm syz.2.74: error while reading EA inode 32 err=-116
[  130.981204][ T6233] Bluetooth: hci3: Opcode 0x0406 failed: -4
[  131.029957][ T6233] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  131.036444][ T6250] EXT4-fs (loop2): Remounting filesystem read-only
[  131.058339][ T6250] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2847: Unable to expand inode 15. Delete some EAs or run e2fsck.
[  131.075138][ T6242] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  131.079803][ T6233] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  131.104193][ T6250] EXT4-fs warning (device loop2): ext4_evict_inode:256: couldn't mark inode dirty (err -30)
[  131.125799][ T6250] EXT4-fs (loop2): 1 orphan inode deleted
[  131.134832][ T6250] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  131.325139][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  131.390723][ T5180] Bluetooth: hci0: command 0x0c1a tx timeout
[  131.399569][ T6068] netdevsim netdevsim0 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  131.453737][ T6233] Bluetooth: hci4: Opcode 0x0406 failed: -4
[  131.465629][ T6068] netdevsim netdevsim0 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  131.474109][ T6068] netdevsim netdevsim0 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  131.482366][ T6068] netdevsim netdevsim0 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  131.509050][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  131.566834][ T6233] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  131.609677][ T6233] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  131.838663][ T6233] Bluetooth: hci5: Opcode 0x0406 failed: -4
[  132.490329][ T5180] Bluetooth: hci1: command 0x0c1a tx timeout
[  132.569280][ T5180] Bluetooth: hci2: command 0x0c1a tx timeout
[  132.682032][ T6273] loop2: detected capacity change from 0 to 128
[  132.721291][   T30] audit: type=1800 audit(1757559658.144:89): pid=6271 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.79" name="file1" dev="loop2" ino=1048604 res=0 errno=0
[  132.855847][ T6272] syz.2.79 (6272) used greatest stack depth: 19368 bytes left
[  132.889254][ T5180] Bluetooth: hci3: command 0x0c1a tx timeout
[  132.946502][ T6279] netlink: 12 bytes leftover after parsing attributes in process `syz.0.86'.
[  133.049585][ T5180] Bluetooth: hci4: command 0x0c1a tx timeout
[  133.449597][ T5180] Bluetooth: hci0: command 0x0c1a tx timeout
[  133.529543][ T6288] loop2: detected capacity change from 0 to 512
[  133.542131][ T6288] =======================================================
[  133.542131][ T6288] WARNING: The mand mount option has been deprecated and
[  133.542131][ T6288]          and is ignored by this kernel. Remove the mand
[  133.542131][ T6288]          option from the mount to silence this warning.
[  133.542131][ T6288] =======================================================
[  133.610484][ T5180] Bluetooth: hci5: command 0x0c1a tx timeout
[  133.803076][ T6288] EXT4-fs error (device loop2): ext4_quota_enable:7128: inode #4: comm syz.2.88: iget: bogus i_mode (4200)
[  133.902097][ T6288] EXT4-fs error (device loop2): ext4_quota_enable:7130: comm syz.2.88: Bad quota inode: 4, type: 1
[  134.569213][ T5180] Bluetooth: hci1: command 0x0c1a tx timeout
[  134.611338][ T6308] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.646527][ T6288] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  134.662621][ T5180] Bluetooth: hci2: command 0x0c1a tx timeout
[  134.727937][ T6288] EXT4-fs (loop2): mount failed
[  134.761650][ T6308] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  134.922346][ T6288] loop2: detected capacity change from 0 to 1024
[  134.950177][ T6288] EXT4-fs: Ignoring removed bh option
[  134.970778][ T5180] Bluetooth: hci3: command 0x0c1a tx timeout
[  134.980223][ T6308] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.019327][ T6288] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  135.097627][ T6308] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  135.123503][ T6288] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e84ce018, mo2=0000]
[  135.133140][ T5180] Bluetooth: hci4: command 0x0c1a tx timeout
[  135.159665][ T6288] System zones: 0-1, 3-12
[  135.210081][ T6288] EXT4-fs error (device loop2): ext4_map_blocks:814: inode #3: block 1: comm syz.2.88: lblock 1 mapped to illegal pblock 1 (length 1)
[  135.234430][ T6322] netlink: 'syz.5.99': attribute type 10 has an invalid length.
[  135.266016][ T6288] Quota error (device loop2): write_blk: dquota write failed
[  135.295285][ T6323] netlink: 'syz.5.99': attribute type 10 has an invalid length.
[  135.310930][ T6288] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota
[  135.330943][ T6322] team0: Port device dummy0 added
[  135.337059][ T6288] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.88: Failed to acquire dquot type 0
[  135.415341][ T6323] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  135.434207][ T6288] EXT4-fs error (device loop2): ext4_free_blocks:6695: comm syz.2.88: Freeing blocks not in datazone - block = 0, count = 4096
[  135.467846][ T6288] EXT4-fs error (device loop2): ext4_read_inode_bitmap:138: comm syz.2.88: Invalid inode bitmap blk 0 in block_group 0
[  135.483184][   T37] EXT4-fs error (device loop2): ext4_map_blocks:778: inode #3: block 1: comm kworker/u8:3: lblock 1 mapped to illegal pblock 1 (length 1)
[  135.500003][ T6323] team0: Failed to send options change via netlink (err -105)
[  135.505865][ T6288] EXT4-fs error (device loop2) in ext4_free_inode:361: Corrupt filesystem
[  135.508195][ T6323] team0: Failed to send port change of device dummy0 via netlink (err -105)
[  135.525295][ T6288] EXT4-fs (loop2): 1 orphan inode deleted
[  135.527415][ T6288] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.534857][ T6323] team0: Port device dummy0 removed
[  135.545012][ T5180] Bluetooth: hci0: command 0x0c1a tx timeout
[  135.556659][ T6323] bond0: (slave dummy0): Enslaving as an active interface with an up link
[  135.569716][   T37] Quota error (device loop2): remove_tree: Can't read quota data block 1
[  135.589622][ T1094] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  135.603516][   T37] EXT4-fs error (device loop2): ext4_release_dquot:6971: comm kworker/u8:3: Failed to release dquot type 0
[  135.634442][ T1094] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  135.709956][ T5180] Bluetooth: hci5: command 0x0c1a tx timeout
[  135.781405][ T1094] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  135.825251][ T1094] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  135.947264][ T6288] netlink: 'syz.2.88': attribute type 21 has an invalid length.
[  136.003564][ T6296] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  136.213271][ T6296] capability: warning: `syz.2.88' uses 32-bit capabilities (legacy support in use)
[  136.259646][ T6288] netlink: 156 bytes leftover after parsing attributes in process `syz.2.88'.
[  136.289577][ T6288] netlink: 4 bytes leftover after parsing attributes in process `syz.2.88'.
[  136.397759][ T6336] process 'syz.5.103' launched '/dev/fd/5' with NULL argv: empty string added
[  136.650227][ T5180] Bluetooth: hci1: command 0x0c1a tx timeout
[  136.729714][ T5180] Bluetooth: hci2: command 0x0c1a tx timeout
[  136.815184][ T6346] loop5: detected capacity change from 0 to 1024
[  136.935914][ T6346] Quota error (device loop5): do_check_range: Getting block 64 out of range 1-5
[  136.967993][ T6346] Quota error (device loop5): qtree_read_dquot: Can't read quota structure for id 0
[  137.057803][ T5180] Bluetooth: hci3: command 0x0c1a tx timeout
[  137.067249][ T6346] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.106: Failed to acquire dquot type 0
[  137.108224][ T5230] udevd[5230]: worker [5883] terminated by signal 33 (Unknown signal 33)
[  137.118059][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.150203][ T5230] udevd[5230]: worker [5883] failed while handling '/devices/virtual/block/loop5'
[  137.179851][ T6346] EXT4-fs error (device loop5): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  137.227690][ T5180] Bluetooth: hci4: command 0x0c1a tx timeout
[  137.309302][ T6346] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.106: corrupted inode contents
[  137.358923][ T6349] loop4: detected capacity change from 0 to 1764
[  137.399286][ T6346] EXT4-fs error (device loop5): ext4_dirty_inode:6538: inode #13: comm syz.5.106: mark_inode_dirty error
[  137.469994][ T6346] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.106: corrupted inode contents
[  137.535983][ T6346] EXT4-fs error (device loop5): __ext4_ext_dirty:206: inode #13: comm syz.5.106: mark_inode_dirty error
[  137.588579][ T6346] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.106: corrupted inode contents
[  137.657075][ T6346] EXT4-fs error (device loop5) in ext4_orphan_del:305: Corrupt filesystem
[  137.697667][ T6346] EXT4-fs error (device loop5): ext4_do_update_inode:5653: inode #13: comm syz.5.106: corrupted inode contents
[  137.780861][ T6346] EXT4-fs error (device loop5): ext4_truncate:4666: inode #13: comm syz.5.106: mark_inode_dirty error
[  137.802336][ T5180] Bluetooth: hci5: command 0x0c1a tx timeout
[  137.856265][ T6346] EXT4-fs error (device loop5) in ext4_process_orphan:347: Corrupt filesystem
[  137.938938][ T6346] EXT4-fs (loop5): 1 truncate cleaned up
[  137.957884][ T6346] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  138.027321][ T6346] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  138.335022][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  138.779654][ T6354] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  138.792006][ T6354] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  138.798144][ T6354] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  138.899486][ T6354] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  138.907974][ T6354] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  138.914549][ T6354] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  139.794104][ T6390] netlink: 128 bytes leftover after parsing attributes in process `syz.1.124'.
[  139.819464][ T6390] netlink: 8 bytes leftover after parsing attributes in process `syz.1.124'.
[  140.250802][ T5871] Bluetooth: hci0: command 0x0c1a tx timeout
[  140.432346][ T6404] siw: device registration error -23
[  141.109222][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  141.115295][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  141.121840][ T5871] Bluetooth: hci5: command 0x0c1a tx timeout
[  141.127856][ T5871] Bluetooth: hci4: command 0x0c1a tx timeout
[  141.134521][ T5871] Bluetooth: hci3: command 0x0c1a tx timeout
[  141.256134][ T6407] loop5: detected capacity change from 0 to 128
[  141.843870][   T30] audit: type=1800 audit(1757559667.244:90): pid=6407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.129" name="file1" dev="loop5" ino=1048605 res=0 errno=0
[  142.335192][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  142.364506][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  142.929528][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  142.938105][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  142.949515][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  142.958475][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  143.389697][    T9] usb 6-1: new full-speed USB device number 2 using dummy_hcd
[  143.606360][    T9] usb 6-1: config 0 has an invalid interface number: 29 but max is 0
[  143.623226][    T9] usb 6-1: config 0 has no interface number 0
[  143.632203][ T6432] loop3: detected capacity change from 0 to 8192
[  143.652917][    T9] usb 6-1: config 0 interface 29 has no altsetting 0
[  143.686603][    T9] usb 6-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  143.690304][ T6432] msdos: Unknown parameter 'showe›ec'
[  143.716518][    T9] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  143.753317][    T9] usb 6-1: Product: syz
[  143.773433][    T9] usb 6-1: Manufacturer: syz
[  143.793162][    T9] usb 6-1: SerialNumber: syz
[  143.819062][    T9] usb 6-1: config 0 descriptor??
[  143.959603][ T6438] netlink: 'syz.4.144': attribute type 4 has an invalid length.
[  143.989379][    T0] NOHZ tick-stop error: local softirq work is pending, handler #100!!!
[  144.068505][    T9] peak_usb 6-1:0.29 can0: unable to request usb[type=0 value=1] err=-71
[  144.107560][    T9] peak_usb 6-1:0.29: unable to read PCAN-USB X6 firmware info (err -71)
[  144.161005][ T6438] netlink: 'syz.4.144': attribute type 4 has an invalid length.
[  144.162134][ T6443] loop3: detected capacity change from 0 to 164
[  144.245518][ T6443] iso9660: Corrupted directory entry in block 4 of inode 1792
[  144.313387][    T9] peak_usb 6-1:0.29: probe with driver peak_usb failed with error -71
[  144.363528][    T9] usb 6-1: USB disconnect, device number 2
[  144.424698][    T0] NOHZ tick-stop error: local softirq work is pending, handler #40!!!
[  144.640746][ T6447] tmpfs: Unknown parameter '18446744073709551615'
[  144.682558][ T6420] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  144.692630][ T6420] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  144.712945][ T6420] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  144.741167][ T6420] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  144.791289][ T6420] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  144.992340][ T6420] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  145.893722][ T6453] loop3: detected capacity change from 0 to 128
[  146.422028][   T30] audit: type=1800 audit(1757559671.844:91): pid=6452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.147" name="file1" dev="loop3" ino=1048606 res=0 errno=0
[  146.510142][ T5871] Bluetooth: hci0: command 0x0c1a tx timeout
[  146.747273][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  146.747293][ T5879] Bluetooth: hci1: command 0x0c1a tx timeout
[  146.815650][ T5879] Bluetooth: hci4: command 0x0c1a tx timeout
[  146.820595][ T5871] Bluetooth: hci3: command 0x0c1a tx timeout
[  146.906833][   T30] audit: type=1326 audit(1757559672.324:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6456 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  147.029230][   T30] audit: type=1326 audit(1757559672.324:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6456 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  147.131820][ T5871] Bluetooth: hci5: command 0x0c1a tx timeout
[  147.141995][   T30] audit: type=1326 audit(1757559672.324:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6456 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  147.164090][    C1] vkms_vblank_simulate: vblank timer overrun
[  147.286115][   T30] audit: type=1326 audit(1757559672.324:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6456 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  147.436591][   T30] audit: type=1326 audit(1757559672.324:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6456 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  147.436679][   T30] audit: type=1326 audit(1757559672.324:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6456 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  147.436754][   T30] audit: type=1326 audit(1757559672.324:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6456 comm="syz.0.152" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  147.661291][    C1] vkms_vblank_simulate: vblank timer overrun
[  147.999481][   T30] audit: type=1326 audit(1757559673.414:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6477 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  148.104024][   T30] audit: type=1326 audit(1757559673.414:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6477 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  148.126300][    C1] vkms_vblank_simulate: vblank timer overrun
[  148.172506][ T6481] vlan2: entered allmulticast mode
[  148.216653][ T6481] dummy0: entered allmulticast mode
[  148.251282][   T30] audit: type=1326 audit(1757559673.414:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6477 comm="syz.1.160" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  148.333962][ T6487] netlink: 14 bytes leftover after parsing attributes in process `syz.0.165'.
[  148.346540][ T6487] hsr_slave_0: left promiscuous mode
[  148.355428][ T6492] tmpfs: Unknown parameter '18446744073709551615'
[  148.390135][ T6487] hsr_slave_1: left promiscuous mode
[  148.593342][ T6493] netlink: 17279 bytes leftover after parsing attributes in process `syz.0.165'.
[  149.921903][ T6508] netlink: 10 bytes leftover after parsing attributes in process `syz.0.172'.
[  149.998291][ T6510] loop2: detected capacity change from 0 to 7
[  150.061782][ T6510] Dev loop2: unable to read RDB block 7
[  150.079602][ T6510]  loop2: AHDI p1 p2 p3
[  150.083775][ T6510] loop2: partition table partially beyond EOD, truncated
[  150.390969][ T6510] loop2: p1 start 1601398130 is beyond EOD, truncated
[  150.699263][ T6510] loop2: p2 start 1702059890 is beyond EOD, truncated
[  150.788548][ T6519] IPv6: Can't replace route, no match found
[  150.911105][ T6521] loop3: detected capacity change from 0 to 512
[  151.017673][ T6521] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349)
[  151.205261][ T6521] EXT4-fs (loop3): orphan cleanup on readonly fs
[  151.206043][ T6521] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:516: comm syz.3.175: Block bitmap for bg 0 marked uninitialized
[  151.210112][ T6521] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6657: Corrupt filesystem
[  151.210636][ T6521] EXT4-fs (loop3): 1 orphan inode deleted
[  151.212754][ T6521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  151.973648][ T6535] loop2: detected capacity change from 0 to 512
[  152.018463][ T6535] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  152.364359][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.368620][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  152.540237][ T6543] 9pnet_fd: Insufficient options for proto=fd
[  152.584468][ T6539] loop5: detected capacity change from 0 to 512
[  152.622240][ T6539] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended
[  152.644979][ T6547] tmpfs: Unknown parameter '18446744073709551615'
[  152.822692][ T6539] __quota_error: 42 callbacks suppressed
[  152.822715][ T6539] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5
[  152.822894][ T6539] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota
[  152.822945][ T6539] EXT4-fs error (device loop5): ext4_acquire_dquot:6935: comm syz.5.182: Failed to acquire dquot type 1
[  152.829776][ T6539] EXT4-fs (loop5): 1 truncate cleaned up
[  152.831850][ T6539] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  152.964140][ T6551] binfmt_misc: register: failed to install interpreter file ./file2
[  153.524153][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  154.021574][ T6564] netlink: 64 bytes leftover after parsing attributes in process `syz.1.190'.
[  154.060125][ T6565] loop3: detected capacity change from 0 to 1024
[  154.181431][ T6565] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  154.521202][ T6565] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:4182: comm syz.3.188: Allocating blocks 385-513 which overlap fs metadata
[  154.618926][ T6565] EXT4-fs (loop3): pa ffff888051fc03a0: logic 16, phys. 129, len 24
[  154.627373][ T6565] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:5433: group 0, free 0, pa_free 8
[  154.891086][ T6579] netlink: 8 bytes leftover after parsing attributes in process `syz.1.195'.
[  154.906674][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  155.229949][ T6587] 9pnet_fd: Insufficient options for proto=fd
[  155.314224][ T6562] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  155.334934][ T6562] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  155.359413][ T6562] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  155.365564][ T6562] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  155.393525][ T6590] tmpfs: Unknown parameter '18446744073709551615'
[  155.413341][ T6562] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  155.589476][ T6562] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  156.520541][   T30] audit: type=1326 audit(1757559681.944:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  156.722324][   T30] audit: type=1326 audit(1757559681.974:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  156.802474][   T30] audit: type=1326 audit(1757559682.024:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=334 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  156.945441][   T30] audit: type=1326 audit(1757559682.024:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  156.977649][ T5871] Bluetooth: hci0: command 0x0c1a tx timeout
[  157.019020][   T30] audit: type=1326 audit(1757559682.034:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  157.162913][   T30] audit: type=1326 audit(1757559682.034:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  157.524566][ T5180] Bluetooth: hci1: command 0x0c1a tx timeout
[  157.531284][ T5879] Bluetooth: hci2: command 0x0c1a tx timeout
[  157.537453][ T5871] Bluetooth: hci3: command 0x0c1a tx timeout
[  157.544784][ T5180] Bluetooth: hci4: command 0x0c1a tx timeout
[  157.610093][ T5180] Bluetooth: hci5: command 0x0c1a tx timeout
[  157.937817][   T30] audit: type=1326 audit(1757559682.034:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  157.961780][   T30] audit: type=1326 audit(1757559682.034:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  158.088000][   T30] audit: type=1326 audit(1757559682.054:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  158.243396][   T30] audit: type=1326 audit(1757559682.074:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  158.414658][   T30] audit: type=1326 audit(1757559682.094:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  158.519057][   T30] audit: type=1326 audit(1757559682.104:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  158.555331][ T6617] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  158.658893][   T30] audit: type=1326 audit(1757559682.104:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  158.758306][ T6628] 9pnet_fd: Insufficient options for proto=fd
[  158.783635][   T30] audit: type=1326 audit(1757559682.104:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  158.801889][ T6633] loop0: detected capacity change from 0 to 512
[  158.868913][   T30] audit: type=1326 audit(1757559682.114:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=263 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  159.009563][   T30] audit: type=1326 audit(1757559682.114:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6598 comm="syz.4.203" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f97cc38eba9 code=0x7ffc0000
[  159.055176][ T6617] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  159.085251][ T6633] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  159.159782][ T6633] ext4 filesystem being mounted at /37/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  159.799991][ T6653] loop1: detected capacity change from 0 to 128
[  160.366289][ T6617] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.396927][ T6656] loop3: detected capacity change from 0 to 1024
[  160.622792][ T6656] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  160.835916][ T6617] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  160.957349][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.258994][ T6070] netdevsim netdevsim5 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  161.264134][ T5863] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.316855][   T37] netdevsim netdevsim5 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  161.496588][ T1094] netdevsim netdevsim5 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  161.522857][ T6679] 9pnet_fd: Insufficient options for proto=fd
[  161.607762][   T37] netdevsim netdevsim5 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  161.896158][ T6691] syz.4.235 uses obsolete (PF_INET,SOCK_PACKET)
[  161.921486][ T6691] netlink: 60 bytes leftover after parsing attributes in process `syz.4.235'.
[  161.945906][ T6691] netlink: 1 bytes leftover after parsing attributes in process `syz.4.235'.
[  162.930678][ T6699] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  162.940091][ T6699] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  162.950486][ T6699] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  163.063776][ T6699] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  163.119864][ T6699] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  163.156546][ T6699] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  164.231947][ T6737] loop2: detected capacity change from 0 to 512
[  164.287621][ T6737] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  164.340212][ T6737] ext4 filesystem being mounted at /45/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  164.410596][ T5180] Bluetooth: hci0: command 0x0c1a tx timeout
[  164.449707][    T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!!
[  164.626005][   T30] kauditd_printk_skb: 21 callbacks suppressed
[  164.626024][   T30] audit: type=1326 audit(1757559690.044:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  164.685691][   T30] audit: type=1326 audit(1757559690.054:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=179 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  164.759889][   T30] audit: type=1326 audit(1757559690.184:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  164.781473][    C1] vkms_vblank_simulate: vblank timer overrun
[  164.789474][   T30] audit: type=1326 audit(1757559690.184:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6736 comm=ACED exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  164.874817][ T6756] loop5: detected capacity change from 0 to 512
[  164.893946][ T6756] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support!
[  164.963771][ T6756] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  164.973944][ T5180] Bluetooth: hci3: command 0x0c1a tx timeout
[  164.973998][ T5180] Bluetooth: hci2: command 0x0c1a tx timeout
[  164.980245][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  165.099297][ T6756] EXT4-fs (loop5): 1 truncate cleaned up
[  165.137198][ T5871] Bluetooth: hci4: command 0x0c1a tx timeout
[  165.151131][ T6756] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  165.177261][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  165.220465][ T5871] Bluetooth: hci5: command 0x0c1a tx timeout
[  165.288680][ T6765] netlink: 4 bytes leftover after parsing attributes in process `syz.1.264'.
[  165.656338][ T5230] udevd[5230]: worker [6204] terminated by signal 33 (Unknown signal 33)
[  165.727095][ T5230] udevd[5230]: worker [6204] failed while handling '/devices/virtual/block/loop2'
[  167.049899][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.479374][ T6791] loop4: detected capacity change from 0 to 128
[  168.162973][   T30] audit: type=1800 audit(1757559693.554:185): pid=6789 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.271" name="file1" dev="loop4" ino=1048608 res=0 errno=0
[  170.016151][ T6807] loop5: detected capacity change from 0 to 512
[  170.312737][ T6807] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  170.389349][ T6807] ext4 filesystem being mounted at /41/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  172.137793][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.226137][   T30] audit: type=1326 audit(1757559697.644:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  172.310701][   T30] audit: type=1326 audit(1757559697.644:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  172.401343][   T30] audit: type=1326 audit(1757559697.644:188): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  172.529933][   T30] audit: type=1326 audit(1757559697.644:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  172.649244][   T30] audit: type=1326 audit(1757559697.644:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  172.752668][   T30] audit: type=1326 audit(1757559697.644:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  172.855116][   T30] audit: type=1326 audit(1757559697.644:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=54 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  172.949269][   T30] audit: type=1326 audit(1757559697.644:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  173.008484][ T6843] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.032406][   T30] audit: type=1326 audit(1757559697.674:194): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=240 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  173.109117][   T30] audit: type=1326 audit(1757559697.674:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6833 comm="syz.2.285" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  173.185235][ T6843] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.375846][ T6843] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.663184][ T6843] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  173.999685][ T1132] netdevsim netdevsim4 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  174.139432][ T1132] netdevsim netdevsim4 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  174.147697][ T1132] netdevsim netdevsim4 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  174.256491][ T6070] netdevsim netdevsim4 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  174.499000][ T6866] netlink: 4 bytes leftover after parsing attributes in process `syz.3.299'.
[  174.610826][ T6872] netlink: 52 bytes leftover after parsing attributes in process `syz.2.302'.
[  174.836782][ T6875] loop3: detected capacity change from 0 to 1024
[  174.928462][ T6872] netlink: 52 bytes leftover after parsing attributes in process `syz.2.302'.
[  174.984758][ T6875] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  175.381884][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  175.414811][ T6872] netlink: 52 bytes leftover after parsing attributes in process `syz.2.302'.
[  175.682116][ T6892] loop3: detected capacity change from 0 to 512
[  175.735027][ T6892] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  175.815421][ T6892] EXT4-fs (loop3): 1 truncate cleaned up
[  175.851630][ T6896] loop5: detected capacity change from 0 to 512
[  175.873091][ T6892] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  175.996439][ T6896] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  176.047983][ T6896] ext4 filesystem being mounted at /48/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  176.107812][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.384629][ T6909] loop2: detected capacity change from 0 to 128
[  176.673881][ T6909] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  176.698714][ T6909] FAT-fs (loop2): Filesystem has been set read-only
[  176.742567][ T6909] syz.2.313: attempt to access beyond end of device
[  176.742567][ T6909] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  176.822381][ T6909] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  176.869504][ T6909] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  176.926042][ T6909] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  176.972456][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  176.974834][ T6909] syz.2.313: attempt to access beyond end of device
[  176.974834][ T6909] loop2: rw=524288, sector=2065, nr_sectors = 8 limit=128
[  177.068316][ T6909] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  177.129869][ T6909] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000100)
[  177.218010][ T6909] syz.2.313: attempt to access beyond end of device
[  177.218010][ T6909] loop2: rw=0, sector=2065, nr_sectors = 1 limit=128
[  177.265407][ T6909] Buffer I/O error on dev loop2, logical block 2065, async page read
[  177.318267][ T6909] syz.2.313: attempt to access beyond end of device
[  177.318267][ T6909] loop2: rw=0, sector=2066, nr_sectors = 1 limit=128
[  177.382925][ T6909] Buffer I/O error on dev loop2, logical block 2066, async page read
[  177.424698][ T6909] syz.2.313: attempt to access beyond end of device
[  177.424698][ T6909] loop2: rw=0, sector=2067, nr_sectors = 1 limit=128
[  177.459845][ T6909] Buffer I/O error on dev loop2, logical block 2067, async page read
[  177.480133][ T6909] syz.2.313: attempt to access beyond end of device
[  177.480133][ T6909] loop2: rw=0, sector=2068, nr_sectors = 1 limit=128
[  177.505632][ T6926] netlink: 24 bytes leftover after parsing attributes in process `syz.0.319'.
[  177.559373][ T6909] Buffer I/O error on dev loop2, logical block 2068, async page read
[  177.596308][ T6909] syz.2.313: attempt to access beyond end of device
[  177.596308][ T6909] loop2: rw=0, sector=2069, nr_sectors = 1 limit=128
[  177.653793][ T6909] Buffer I/O error on dev loop2, logical block 2069, async page read
[  177.689628][ T6909] syz.2.313: attempt to access beyond end of device
[  177.689628][ T6909] loop2: rw=0, sector=2070, nr_sectors = 1 limit=128
[  177.731950][ T6909] Buffer I/O error on dev loop2, logical block 2070, async page read
[  177.769850][ T6909] syz.2.313: attempt to access beyond end of device
[  177.769850][ T6909] loop2: rw=0, sector=2071, nr_sectors = 1 limit=128
[  177.824835][ T6909] Buffer I/O error on dev loop2, logical block 2071, async page read
[  177.853401][ T6909] syz.2.313: attempt to access beyond end of device
[  177.853401][ T6909] loop2: rw=0, sector=2072, nr_sectors = 1 limit=128
[  177.907458][ T6909] Buffer I/O error on dev loop2, logical block 2072, async page read
[  178.289011][ T6942] lo speed is unknown, defaulting to 1000
[  178.310313][ T6942] lo speed is unknown, defaulting to 1000
[  178.370657][ T6942] lo speed is unknown, defaulting to 1000
[  178.526745][ T6942] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[  178.745685][ T6942] lo speed is unknown, defaulting to 1000
[  178.793990][ T6942] lo speed is unknown, defaulting to 1000
[  178.847877][ T6942] lo speed is unknown, defaulting to 1000
[  178.895171][ T6942] lo speed is unknown, defaulting to 1000
[  178.946829][ T6942] lo speed is unknown, defaulting to 1000
[  178.980357][ T6942] lo speed is unknown, defaulting to 1000
[  179.000889][ T6958] loop3: detected capacity change from 0 to 512
[  179.502699][ T6958] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  179.547060][ T6958] ext4 filesystem being mounted at /65/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  179.643016][   T30] kauditd_printk_skb: 21 callbacks suppressed
[  179.643039][   T30] audit: type=1326 audit(1757559705.064:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  179.688706][ T6963] loop1: detected capacity change from 0 to 512
[  179.757958][ T6963] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 overlaps block group descriptors
[  179.782660][   T30] audit: type=1326 audit(1757559705.064:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  179.833982][ T6963] EXT4-fs (loop1): ext4_check_descriptors: Block bitmap for group 0 not in group (block 2)!
[  179.889274][ T6963] EXT4-fs (loop1): group descriptors corrupted!
[  179.900056][   T30] audit: type=1326 audit(1757559705.064:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  179.987520][   T30] audit: type=1326 audit(1757559705.064:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  180.031033][ T6973] netlink: 68 bytes leftover after parsing attributes in process `syz.2.337'.
[  180.084842][   T30] audit: type=1326 audit(1757559705.064:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  180.089275][ T6973] netlink: 'syz.2.337': attribute type 1 has an invalid length.
[  180.233354][   T30] audit: type=1326 audit(1757559705.064:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  180.263118][ T6976] loop0: detected capacity change from 0 to 2048
[  180.309478][   T30] audit: type=1326 audit(1757559705.064:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fe6f598d510 code=0x7ffc0000
[  180.333367][   T30] audit: type=1326 audit(1757559705.064:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  180.355898][   T30] audit: type=1326 audit(1757559705.064:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=40 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  180.380093][   T30] audit: type=1326 audit(1757559705.064:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6965 comm="syz.2.333" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  180.458913][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  180.560787][ T6976] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  180.592476][ T6976] ext4 filesystem being mounted at /47/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  180.838122][ T6988] netlink: 4 bytes leftover after parsing attributes in process `syz.3.340'.
[  180.938552][ T5863] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  181.419554][ T6998] loop1: detected capacity change from 0 to 2048
[  181.518760][ T6998] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  181.586369][ T7008] bridge_slave_0: left allmulticast mode
[  181.592246][ T7008] bridge_slave_0: left promiscuous mode
[  181.598290][ T7008] bridge0: port 1(bridge_slave_0) entered disabled state
[  181.904193][ T7008] bridge_slave_1: left allmulticast mode
[  182.131859][ T7008] bridge_slave_1: left promiscuous mode
[  182.749514][ T7008] bridge0: port 2(bridge_slave_1) entered disabled state
[  182.868908][ T5867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  182.957474][ T7008] bond0: (slave bond_slave_0): Releasing backup interface
[  183.148235][ T7019] loop1: detected capacity change from 0 to 512
[  183.149780][ T7008] bond0: (slave bond_slave_1): Releasing backup interface
[  183.278241][ T7019] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.300958][ T7019] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.426227][ T7008] team0: Port device team_slave_0 removed
[  183.490389][ T7008] team0: Port device team_slave_1 removed
[  183.546244][ T7008] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  183.669239][ T7008] batman_adv: batadv0: Removing interface: batadv_slave_0
[  183.701821][ T7008] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  183.749257][ T7008] batman_adv: batadv0: Removing interface: batadv_slave_1
[  183.927176][ T7014] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.173126][ T7014] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.294746][ T7014] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.421869][ T7014] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  184.467262][ T5867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.724781][ T6090] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  184.762375][ T6090] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  184.791677][ T6090] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  184.835982][ T6090] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  185.516057][ T7057] loop0: detected capacity change from 0 to 2048
[  185.671888][ T7057] EXT4-fs (loop0): failed to initialize system zone (-117)
[  186.443856][ T7065] lo speed is unknown, defaulting to 1000
[  187.031342][ T7057] EXT4-fs (loop0): mount failed
[  187.622458][   T30] kauditd_printk_skb: 29 callbacks suppressed
[  187.622482][   T30] audit: type=1326 audit(1757559713.044:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  187.744489][   T30] audit: type=1326 audit(1757559713.044:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  187.792500][   T30] audit: type=1326 audit(1757559713.044:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  187.938939][   T30] audit: type=1326 audit(1757559713.044:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  187.966504][   T30] audit: type=1326 audit(1757559713.074:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.3.372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  189.553047][ T7104] lo speed is unknown, defaulting to 1000
[  189.861924][ T7112] netlink: 12 bytes leftover after parsing attributes in process `syz.2.388'.
[  190.245592][ T7114] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  190.252780][ T7114] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  190.259453][ T7114] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  190.265581][ T7114] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  190.308731][ T7114] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  190.340367][ T7114] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  191.344088][ T7130] netlink: 4 bytes leftover after parsing attributes in process `syz.0.394'.
[  191.435970][ T7130] macvtap1: entered promiscuous mode
[  191.471687][ T7130] bond0: entered promiscuous mode
[  191.527632][ T7130] macvtap1: entered allmulticast mode
[  191.552909][ T7130] bond0: entered allmulticast mode
[  191.599937][ T7130] 8021q: adding VLAN 0 to HW filter on device macvtap1
[  191.680270][ T7134] bond0: left allmulticast mode
[  191.685155][ T7134] bond0: left promiscuous mode
[  192.165352][   T30] audit: type=1326 audit(1757559717.574:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.1.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  192.249734][ T5871] Bluetooth: hci0: command 0x0c1a tx timeout
[  192.279260][   T30] audit: type=1326 audit(1757559717.614:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.1.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  192.321966][   T30] audit: type=1326 audit(1757559717.614:263): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.1.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  192.365622][ T5871] Bluetooth: hci4: command 0x0c1a tx timeout
[  192.371646][ T5879] Bluetooth: hci3: command 0x0c1a tx timeout
[  192.371699][ T5879] Bluetooth: hci2: command 0x0c1a tx timeout
[  192.371745][ T5879] Bluetooth: hci1: command 0x0c1a tx timeout
[  192.412044][ T5871] Bluetooth: hci5: command 0x0c1a tx timeout
[  192.439218][   T30] audit: type=1326 audit(1757559717.614:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7147 comm="syz.1.402" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  193.231024][ T7166] loop5: detected capacity change from 0 to 128
[  193.539358][   T30] audit: type=1800 audit(1757559718.874:265): pid=7166 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.407" name="file1" dev="loop5" ino=1048610 res=0 errno=0
[  193.929668][ T7162] loop4: detected capacity change from 0 to 2048
[  193.983746][ T7156] loop1: detected capacity change from 0 to 8192
[  194.062414][ T7162] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  194.140774][ T7162] ext4 filesystem being mounted at /58/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  194.154381][ T7179] netlink: 4 bytes leftover after parsing attributes in process `syz.5.414'.
[  194.180724][ T7176] netlink: 'syz.2.413': attribute type 1 has an invalid length.
[  194.328705][ T7176] 8021q: adding VLAN 0 to HW filter on device bond1
[  194.407751][   T30] audit: type=1326 audit(1757559719.824:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  194.485133][   T30] audit: type=1326 audit(1757559719.824:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  194.576363][   T30] audit: type=1326 audit(1757559719.854:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  194.671746][   T30] audit: type=1326 audit(1757559719.854:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  194.687259][ T7176] vlan2: entered allmulticast mode
[  194.731640][ T7133] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  194.738353][ T7133] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  194.749698][ T7133] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  194.756095][ T7133] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  194.756712][   T30] audit: type=1326 audit(1757559719.864:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  194.770495][ T7176] macvtap0: entered allmulticast mode
[  194.797746][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  194.821092][ T7133] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  194.828256][   T30] audit: type=1326 audit(1757559719.864:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  194.853567][ T7133] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  194.939192][   T30] audit: type=1326 audit(1757559719.864:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  195.026389][ T7176] veth0_macvtap: entered allmulticast mode
[  195.055273][   T30] audit: type=1326 audit(1757559719.864:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  195.104622][ T7176] bond1: (slave vlan2): making interface the new active one
[  195.163595][   T30] audit: type=1326 audit(1757559719.864:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7155 comm="syz.1.406" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  195.186563][ T7176] bond1: (slave vlan2): Enslaving as an active interface with an up link
[  195.530445][ T7197] loop4: detected capacity change from 0 to 512
[  195.537892][ T7197] EXT4-fs: Ignoring removed oldalloc option
[  195.619205][ T7197] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  195.691290][ T7197] EXT4-fs (loop4): 1 truncate cleaned up
[  195.771312][ T7197] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  196.169339][ T5180] Bluetooth: hci0: command 0x0c1a tx timeout
[  197.178005][ T5180] Bluetooth: hci3: command 0x0c1a tx timeout
[  197.184305][ T5180] Bluetooth: hci2: command 0x0c1a tx timeout
[  197.190709][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  197.196728][ T5871] Bluetooth: hci5: command 0x0c1a tx timeout
[  197.203101][ T5180] Bluetooth: hci4: command 0x0c1a tx timeout
[  197.481226][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  197.567333][ T7224] netlink: 12 bytes leftover after parsing attributes in process `syz.3.433'.
[  197.581890][ T7221] loop5: detected capacity change from 0 to 2048
[  197.811377][ T7221] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  198.011639][ T7237] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters
[  198.047173][ T7237] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  198.142289][ T7237] EXT4-fs (loop5): This should not happen!! Data will be lost
[  198.142289][ T7237] 
[  198.270548][ T7237] EXT4-fs (loop5): Total free blocks count 0
[  198.276760][ T7237] EXT4-fs (loop5): Free/Dirty block details
[  198.316647][ T7237] EXT4-fs (loop5): free_blocks=2415919104
[  198.339371][ T7237] EXT4-fs (loop5): dirty_blocks=16
[  198.339423][ T7237] EXT4-fs (loop5): Block reservation details
[  198.339450][ T7237] EXT4-fs (loop5): i_reserved_data_blocks=1
[  198.549564][   T30] kauditd_printk_skb: 254 callbacks suppressed
[  198.549586][   T30] audit: type=1326 audit(1757559723.964:529): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04b3d8eba9 code=0x7ffc0000
[  198.558526][   T30] audit: type=1326 audit(1757559723.974:530): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f04b3d85b67 code=0x7ffc0000
[  198.558735][   T30] audit: type=1326 audit(1757559723.974:531): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f04b3d2ada9 code=0x7ffc0000
[  198.558927][   T30] audit: type=1326 audit(1757559723.974:532): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04b3d8eba9 code=0x7ffc0000
[  198.561292][   T30] audit: type=1326 audit(1757559723.974:533): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=299 compat=0 ip=0x7f04b3d8eba9 code=0x7ffc0000
[  198.561543][   T30] audit: type=1326 audit(1757559723.984:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04b3d8eba9 code=0x7ffc0000
[  198.568343][   T30] audit: type=1326 audit(1757559723.984:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04b3d8eba9 code=0x7ffc0000
[  198.569241][   T30] audit: type=1326 audit(1757559723.984:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f04b3d85b67 code=0x7ffc0000
[  198.569314][   T30] audit: type=1326 audit(1757559723.984:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f04b3d2ada9 code=0x7ffc0000
[  198.569382][   T30] audit: type=1326 audit(1757559723.984:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7219 comm="syz.5.429" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f04b3d8eba9 code=0x7ffc0000
[  198.611772][    C1] vkms_vblank_simulate: vblank timer overrun
[  198.865093][   T12] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28
[  199.117440][ T7263] loop0: detected capacity change from 0 to 1024
[  199.279221][    C1] vkms_vblank_simulate: vblank timer overrun
[  200.179392][ T7247] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  200.180061][ T7247] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  200.181912][ T7247] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  200.182210][ T7247] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  200.183513][ T7247] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  200.184534][ T7247] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  200.193494][ T7263] EXT4-fs error (device loop0): ext4_acquire_dquot:6935: comm syz.0.441: Failed to acquire dquot type 0
[  200.799289][ T5871] Bluetooth: hci0: command 0x0c1a tx timeout
[  200.813919][ T7263] EXT4-fs error (device loop0): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  200.824991][ T7263] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.441: corrupted inode contents
[  200.825489][ T7263] EXT4-fs error (device loop0): ext4_dirty_inode:6538: inode #13: comm syz.0.441: mark_inode_dirty error
[  200.839347][ T7263] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.441: corrupted inode contents
[  200.844938][ T7263] EXT4-fs error (device loop0): __ext4_ext_dirty:206: inode #13: comm syz.0.441: mark_inode_dirty error
[  200.849072][ T7263] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.441: corrupted inode contents
[  200.867077][ T7263] EXT4-fs error (device loop0) in ext4_orphan_del:305: Corrupt filesystem
[  200.869379][ T7263] EXT4-fs error (device loop0): ext4_do_update_inode:5653: inode #13: comm syz.0.441: corrupted inode contents
[  200.877220][ T7263] EXT4-fs error (device loop0): ext4_truncate:4666: inode #13: comm syz.0.441: mark_inode_dirty error
[  200.877679][ T7263] EXT4-fs error (device loop0) in ext4_process_orphan:347: Corrupt filesystem
[  200.887563][ T7263] EXT4-fs (loop0): 1 truncate cleaned up
[  200.909873][ T7263] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  201.062750][ T7263] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  201.466761][ T5863] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  202.259304][ T5871] Bluetooth: hci5: command 0x0c1a tx timeout
[  202.259381][ T5871] Bluetooth: hci4: command 0x0c1a tx timeout
[  202.259431][ T5871] Bluetooth: hci3: command 0x0c1a tx timeout
[  202.259482][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  202.259531][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  202.354218][ T7292] netlink: 180 bytes leftover after parsing attributes in process `syz.0.448'.
[  202.366969][ T7292] netlink: 180 bytes leftover after parsing attributes in process `syz.0.448'.
[  202.775329][ T7302] netlink: 'syz.3.451': attribute type 4 has an invalid length.
[  203.370854][ T7289] lo speed is unknown, defaulting to 1000
[  203.774973][ T1300] ieee802154 phy0 wpan0: encryption failed: -22
[  203.782854][ T1300] ieee802154 phy1 wpan1: encryption failed: -22
[  204.086962][ T7317] loop0: detected capacity change from 0 to 128
[  204.720519][   T30] kauditd_printk_skb: 2 callbacks suppressed
[  204.720540][   T30] audit: type=1800 audit(1757559730.144:539): pid=7315 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.455" name="file1" dev="loop0" ino=1048611 res=0 errno=0
[  205.203216][ T7326] loop2: detected capacity change from 0 to 1024
[  205.335757][ T7326] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[  205.345124][ T7326] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  205.355623][ T7326] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.461: Failed to acquire dquot type 0
[  205.373361][ T7326] EXT4-fs error (device loop2): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  205.443288][ T7326] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.461: corrupted inode contents
[  205.531048][ T7326] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #13: comm syz.2.461: mark_inode_dirty error
[  205.597424][ T7326] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.461: corrupted inode contents
[  205.631076][ T7326] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.461: mark_inode_dirty error
[  205.701157][ T7326] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.461: corrupted inode contents
[  205.760231][ T7326] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  205.783237][ T7326] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.461: corrupted inode contents
[  205.810460][ T7343] netlink: 180 bytes leftover after parsing attributes in process `syz.0.468'.
[  205.916700][ T7344] netlink: 180 bytes leftover after parsing attributes in process `syz.0.468'.
[  205.939293][ T7326] EXT4-fs error (device loop2): ext4_truncate:4666: inode #13: comm syz.2.461: mark_inode_dirty error
[  206.001841][ T7326] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  206.057482][ T7326] EXT4-fs (loop2): 1 truncate cleaned up
[  206.106036][ T7326] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  206.619238][ T7326] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  206.901127][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  207.837939][ T7371] loop5: detected capacity change from 0 to 128
[  208.979624][ T7372] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.055358][   T30] audit: type=1800 audit(1757559734.474:540): pid=7368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.478" name="file1" dev="loop5" ino=1048612 res=0 errno=0
[  209.269757][ T7372] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.491675][ T7372] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.521765][ T7378] netlink: 12 bytes leftover after parsing attributes in process `syz.1.480'.
[  209.678544][ T7372] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  210.062029][ T7394] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  210.075857][ T7388] IPVS: stopping master sync thread 7394 ...
[  210.240029][   T37] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  210.339234][   T37] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  210.417871][   T37] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  210.438144][ T6068] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  211.136175][ T7398] lo speed is unknown, defaulting to 1000
[  211.482602][ T7401] loop2: detected capacity change from 0 to 1024
[  211.624723][ T7401] Quota error (device loop2): do_check_range: Getting block 64 out of range 1-5
[  211.721156][ T7401] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[  211.774678][ T7401] EXT4-fs error (device loop2): ext4_acquire_dquot:6935: comm syz.2.488: Failed to acquire dquot type 0
[  211.787785][ T7401] EXT4-fs error (device loop2): mb_free_blocks:2014: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  211.803076][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.488: corrupted inode contents
[  211.822448][ T7401] EXT4-fs error (device loop2): ext4_dirty_inode:6538: inode #13: comm syz.2.488: mark_inode_dirty error
[  212.075306][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.488: corrupted inode contents
[  212.539641][ T7401] EXT4-fs error (device loop2): __ext4_ext_dirty:206: inode #13: comm syz.2.488: mark_inode_dirty error
[  212.642538][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.488: corrupted inode contents
[  212.691971][ T7401] EXT4-fs error (device loop2) in ext4_orphan_del:305: Corrupt filesystem
[  212.708926][ T7401] EXT4-fs error (device loop2): ext4_do_update_inode:5653: inode #13: comm syz.2.488: corrupted inode contents
[  212.726367][ T7401] EXT4-fs error (device loop2): ext4_truncate:4666: inode #13: comm syz.2.488: mark_inode_dirty error
[  212.798147][ T7401] EXT4-fs error (device loop2) in ext4_process_orphan:347: Corrupt filesystem
[  212.818595][ T7401] EXT4-fs (loop2): 1 truncate cleaned up
[  212.826809][ T7401] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  213.006356][ T7401] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  213.475928][ T5864] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  213.805547][ T7426] loop0: detected capacity change from 0 to 128
[  214.035676][   T30] audit: type=1800 audit(1757559739.434:541): pid=7426 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.495" name="file1" dev="loop0" ino=1048613 res=0 errno=0
[  214.282051][ T7425] netlink: 12 bytes leftover after parsing attributes in process `syz.1.498'.
[  215.373667][ T7443] program syz.2.505 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  215.451582][ T7443] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[  215.669706][ T7447] lo speed is unknown, defaulting to 1000
[  216.838507][ T7462] loop4: detected capacity change from 0 to 164
[  216.915038][ T7462] ISOFS: unable to read i-node block
[  216.970042][ T7462] ISOFS: root inode is unusable. Disabling Rock Ridge and switching to Joliet.
[  217.381481][    T9] usb 2-1: new high-speed USB device number 2 using dummy_hcd
[  217.672682][    T9] usb 2-1: config index 0 descriptor too short (expected 39, got 27)
[  217.672847][    T9] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  217.672972][    T9] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1
[  217.746204][    T9] usb 2-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[  217.746318][    T9] usb 2-1: New USB device strings: Mfr=1, Product=228, SerialNumber=2
[  217.746456][    T9] usb 2-1: Product: syz
[  217.746574][    T9] usb 2-1: Manufacturer: syz
[  217.746689][    T9] usb 2-1: SerialNumber: syz
[  218.103932][ T7476] loop3: detected capacity change from 0 to 128
[  218.125554][   T30] audit: type=1800 audit(1757559743.544:542): pid=7473 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.513" name="file1" dev="loop3" ino=1048614 res=0 errno=0
[  218.267683][    T9] usb 2-1: config 0 descriptor??
[  218.600941][ T7483] netlink: 12 bytes leftover after parsing attributes in process `syz.2.516'.
[  218.633440][    T9] usb 2-1: USB disconnect, device number 2
[  218.959463][ T7477] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  218.965604][ T7477] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  218.980078][ T7477] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  218.996455][ T7477] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  219.006505][ T7477] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  219.029691][ T7477] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  219.300323][ T7489] netlink: 'syz.2.516': attribute type 4 has an invalid length.
[  219.308063][ T7489] netlink: 17 bytes leftover after parsing attributes in process `syz.2.516'.
[  220.284699][   T30] audit: type=1326 audit(1757559745.704:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7493 comm="syz.3.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  220.409288][   T30] audit: type=1326 audit(1757559745.704:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7493 comm="syz.3.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  220.539289][   T30] audit: type=1326 audit(1757559745.714:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7493 comm="syz.3.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  220.665775][   T30] audit: type=1326 audit(1757559745.714:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7493 comm="syz.3.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  220.751402][ T7496] loop2: detected capacity change from 0 to 8192
[  220.789342][   T30] audit: type=1326 audit(1757559745.714:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7493 comm="syz.3.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=138 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  220.915285][   T30] audit: type=1326 audit(1757559745.714:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7493 comm="syz.3.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  221.051548][ T5871] Bluetooth: hci5: command 0x0c1a tx timeout
[  221.051557][ T5180] Bluetooth: hci4: command 0x0c1a tx timeout
[  221.051612][ T5180] Bluetooth: hci3: command 0x0c1a tx timeout
[  221.057599][ T5871] Bluetooth: hci2: command 0x0c1a tx timeout
[  221.057649][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  221.077639][ T5879] Bluetooth: hci0: command 0x0c1a tx timeout
[  221.139235][   T30] audit: type=1326 audit(1757559745.714:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7493 comm="syz.3.520" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  221.170156][   T30] audit: type=1326 audit(1757559746.334:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7492 comm="syz.2.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  221.198567][   T30] audit: type=1326 audit(1757559746.334:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7492 comm="syz.2.521" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  221.382620][ T7508] loop5: detected capacity change from 0 to 4096
[  221.426015][ T7508] EXT4-fs: Ignoring removed nomblk_io_submit option
[  221.506711][ T7508] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.587171][ T7525] loop0: detected capacity change from 0 to 128
[  223.219385][ T7528] netlink: 4 bytes leftover after parsing attributes in process `syz.4.531'.
[  223.340453][ T7532] IPv6: NLM_F_CREATE should be specified when creating new route
[  223.369017][ T7532] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  223.376383][ T7532] IPv6: NLM_F_CREATE should be set when creating new route
[  224.631743][ T7541] netdevsim netdevsim2 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.784777][ T7541] netdevsim netdevsim2 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.907765][ T7541] netdevsim netdevsim2 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  224.972879][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.041666][ T7541] netdevsim netdevsim2 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  225.110652][ T7553] netlink: 4 bytes leftover after parsing attributes in process `syz.0.544'.
[  225.154175][ T7553] erspan0: entered promiscuous mode
[  225.175176][ T7554] netlink: 'syz.1.543': attribute type 13 has an invalid length.
[  225.200116][ T7553] macvtap2: entered promiscuous mode
[  225.217324][ T7553] macvtap2: entered allmulticast mode
[  225.246280][ T7553] erspan0: entered allmulticast mode
[  225.623249][ T7554] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.631122][ T7554] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.875608][ T7573] netlink: 4 bytes leftover after parsing attributes in process `syz.0.550'.
[  225.924191][ T7554] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  225.945388][ T7554] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  226.128396][ T7544] netlink: 65039 bytes leftover after parsing attributes in process `syz.4.538'.
[  226.273787][ T7427] netdevsim netdevsim1 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.298488][ T7427] netdevsim netdevsim1 netdevsim1: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.349114][ T7427] netdevsim netdevsim1 netdevsim2: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.388836][ T7427] netdevsim netdevsim1 netdevsim3: unset [1, 0] type 2 family 0 port 6081 - 0
[  226.471295][ T6090] netdevsim netdevsim2 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  226.522236][ T6090] netdevsim netdevsim2 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  226.591837][ T6090] netdevsim netdevsim2 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  226.660582][ T6090] netdevsim netdevsim2 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  226.771385][ T7579] loop5: detected capacity change from 0 to 2048
[  226.825626][   T30] kauditd_printk_skb: 41 callbacks suppressed
[  226.825650][   T30] audit: type=1326 audit(1757559752.234:593): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  226.917086][   T30] audit: type=1326 audit(1757559752.234:594): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  226.945235][   T30] audit: type=1326 audit(1757559752.254:595): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  226.970092][   T30] audit: type=1326 audit(1757559752.254:596): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  226.992980][   T30] audit: type=1326 audit(1757559752.254:597): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  227.025817][   T30] audit: type=1326 audit(1757559752.254:598): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  227.060944][ T7585] netlink: 8 bytes leftover after parsing attributes in process `syz.1.557'.
[  227.134898][   T30] audit: type=1326 audit(1757559752.254:599): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  227.218309][   T30] audit: type=1326 audit(1757559752.254:600): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7580 comm="syz.0.554" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a4738eba9 code=0x7ffc0000
[  227.251083][ T7579] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  227.525544][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  227.926301][ T7609] lo speed is unknown, defaulting to 1000
[  228.078063][ T7613] ip6gre1: entered allmulticast mode
[  228.113139][ T7617] netlink: 4 bytes leftover after parsing attributes in process `syz.2.567'.
[  228.601417][   T30] audit: type=1326 audit(1757559754.024:601): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7630 comm="syz.1.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  228.657095][   T30] audit: type=1326 audit(1757559754.044:602): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7630 comm="syz.1.572" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  228.821862][ T7634] pimreg: entered allmulticast mode
[  229.105723][ T7633] pimreg: left allmulticast mode
[  230.297150][ T7666] netdevsim netdevsim3 eth3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.326556][ T7643] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  230.335772][ T7668] loop5: detected capacity change from 0 to 1024
[  230.353114][ T7643] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  230.364121][ T7668] EXT4-fs: Ignoring removed bh option
[  230.388349][ T7643] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  230.417264][ T7643] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  230.433882][ T7643] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  230.455490][ T7643] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  230.466461][ T7668] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  230.542477][ T7666] netdevsim netdevsim3 eth2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.585418][ T7674] loop4: detected capacity change from 0 to 512
[  230.645002][ T7674] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  230.697762][ T7674] EXT4-fs (loop4): 1 truncate cleaned up
[  230.745962][ T7674] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  230.810907][ T7666] netdevsim netdevsim3 eth1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  230.913957][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  230.948818][ T7666] netdevsim netdevsim3 eth0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  231.317042][ T7685] loop5: detected capacity change from 0 to 512
[  231.360652][ T1149] netdevsim netdevsim3 eth0: set [1, 0] type 2 family 0 port 6081 - 0
[  231.394463][ T7685] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[  231.458181][ T7685] EXT4-fs (loop5): 1 orphan inode deleted
[  231.508459][ T7685] EXT4-fs (loop5): 1 truncate cleaned up
[  231.516704][ T7685] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  231.534324][ T7685] EXT4-fs error (device loop5): ext4_inlinedir_to_tree:1312: inode #12: block 7: comm syz.5.590: path /92/file0/file0: bad entry in directory: directory entry overrun - offset=788, inode=13, rec_len=784, size=60 fake=0
[  231.549559][ T1149] netdevsim netdevsim3 eth1: set [1, 0] type 2 family 0 port 6081 - 0
[  231.584874][ T7685] EXT4-fs (loop5): Remounting filesystem read-only
[  231.613501][ T7692] usb usb1: usbfs: process 7692 (syz.0.594) did not claim interface 4 before use
[  231.675150][ T1149] netdevsim netdevsim3 eth2: set [1, 0] type 2 family 0 port 6081 - 0
[  231.740765][ T1132] netdevsim netdevsim3 eth3: set [1, 0] type 2 family 0 port 6081 - 0
[  232.029201][   T30] kauditd_printk_skb: 5 callbacks suppressed
[  232.029233][   T30] audit: type=1326 audit(1757559757.434:608): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7702 comm="syz.3.601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.068003][   T30] audit: type=1326 audit(1757559757.434:609): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7702 comm="syz.3.601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.102986][   T30] audit: type=1326 audit(1757559757.434:610): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7702 comm="syz.3.601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.136916][   T30] audit: type=1326 audit(1757559757.434:611): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7702 comm="syz.3.601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.165251][   T30] audit: type=1326 audit(1757559757.434:612): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7702 comm="syz.3.601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.217443][   T30] audit: type=1326 audit(1757559757.434:613): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7702 comm="syz.3.601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.246293][   T30] audit: type=1326 audit(1757559757.434:614): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7702 comm="syz.3.601" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.272610][ T5180] Bluetooth: hci0: command 0x0c1a tx timeout
[  232.363073][ T7707] loop3: detected capacity change from 0 to 8192
[  232.409865][ T5180] Bluetooth: hci2: command 0x0c1a tx timeout
[  232.409881][ T5880] Bluetooth: hci1: command 0x0c1a tx timeout
[  232.438324][   T30] audit: type=1326 audit(1757559757.854:615): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7706 comm="syz.3.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.489784][ T5180] Bluetooth: hci5: command 0x0c1a tx timeout
[  232.491826][ T5880] Bluetooth: hci4: command 0x0c1a tx timeout
[  232.497579][ T5879] Bluetooth: hci3: command 0x0c1a tx timeout
[  232.584206][   T30] audit: type=1326 audit(1757559757.854:616): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7706 comm="syz.3.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  232.620503][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.639006][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.668252][   T30] audit: type=1326 audit(1757559757.884:617): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7706 comm="syz.3.602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  233.112211][ T7713] netlink: 88 bytes leftover after parsing attributes in process `syz.2.603'.
[  233.263534][ T7717] netlink: 4 bytes leftover after parsing attributes in process `syz.0.605'.
[  233.581781][ T7721] loop4: detected capacity change from 0 to 2048
[  233.964426][ T7721]  loop4: p1 < > p4
[  233.986357][ T7721] loop4: p4 size 8388608 extends beyond EOD, truncated
[  234.028413][ T7732] sch_tbf: burst 0 is lower than device ip6gre0 mtu (1448) !
[  234.056122][ T7734] loop3: detected capacity change from 0 to 512
[  234.111489][ T7734] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c02c, mo2=0002]
[  234.166201][ T7734] System zones: 0-7
[  234.267548][ T7734] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.428253][ T7740] loop0: detected capacity change from 0 to 512
[  234.582130][ T7740] EXT4-fs error (device loop0): ext4_orphan_get:1392: inode #15: comm syz.0.615: iget: bad extended attribute block 1
[  234.641308][ T7743] loop4: detected capacity change from 0 to 512
[  234.679603][ T7740] EXT4-fs error (device loop0): ext4_orphan_get:1395: comm syz.0.615: couldn't read orphan inode 15 (err -117)
[  234.698785][ T7743] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  234.765097][ T7743] EXT4-fs (loop4): 1 truncate cleaned up
[  234.770319][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  234.776149][ T7740] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.795607][ T7743] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  234.842389][ T7740] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1286: group 0, block bitmap and bg descriptor inconsistent: 7934 vs 220 free clusters
[  234.964109][ T7743] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.053646][ T7751] loop2: detected capacity change from 0 to 128
[  235.054595][ T7614] udevd[7614]: inotify_add_watch(7, /dev/loop4p4, 10) failed: No such file or directory
[  235.083231][ T5881] udevd[5881]: inotify_add_watch(7, /dev/loop4p1, 10) failed: No such file or directory
[  235.114281][ T7751] EXT4-fs: Ignoring removed nobh option
[  235.160987][ T7751] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[  235.174477][ T7751] ext4 filesystem being mounted at /118/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[  235.219918][ T7749] loop1: detected capacity change from 0 to 8192
[  235.228568][ T5863] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.526086][ T5864] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[  235.836802][ T7760] netlink: 4 bytes leftover after parsing attributes in process `syz.2.622'.
[  236.545895][ T7762] loop3: detected capacity change from 0 to 512
[  236.572480][ T7762] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  236.634167][ T7762] EXT4-fs (loop3): 1 truncate cleaned up
[  236.654967][ T7762] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.740121][ T7762] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  237.034883][ T7773] tipc: Started in network mode
[  237.066090][ T7773] tipc: Node identity 861f1e0883a9, cluster identity 4711
[  237.079990][ T7776] loop5: detected capacity change from 0 to 1024
[  237.094781][ T7773] tipc: Enabled bearer <eth:syzkaller0>, priority 0
[  237.121039][ T7776] EXT4-fs: Ignoring removed orlov option
[  237.183520][ T7778] tipc: Disabling bearer <eth:syzkaller0>
[  237.287085][ T7776] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  239.636310][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  240.186245][ T7799] IPVS: stopping master sync thread 7800 ...
[  240.195881][ T7800] IPVS: sync thread started: state = MASTER, mcast_ifn = veth0_virt_wifi, syncid = 33554432, id = 0
[  240.237204][ T7799] I/O error, dev loop3, sector 64 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 1
[  240.297040][ T7799] isofs_fill_super: bread failed, dev=loop3, iso_blknum=16, block=32
[  240.319055][   T30] kauditd_printk_skb: 128 callbacks suppressed
[  240.319079][   T30] audit: type=1326 audit(1757559765.734:746): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  240.443642][   T30] audit: type=1326 audit(1757559765.774:747): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=135 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  240.503320][   T30] audit: type=1326 audit(1757559765.774:748): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  240.603484][   T30] audit: type=1326 audit(1757559765.774:749): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=288 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  240.710750][   T30] audit: type=1326 audit(1757559765.774:750): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  240.747913][ T7810] loop3: detected capacity change from 0 to 512
[  240.880726][   T30] audit: type=1326 audit(1757559765.774:751): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  240.924215][   T30] audit: type=1326 audit(1757559765.774:752): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  241.057483][   T30] audit: type=1326 audit(1757559765.774:753): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  241.128536][   T30] audit: type=1326 audit(1757559765.774:754): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  241.153715][ T7810] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  241.167686][ T7810] ext4 filesystem being mounted at /118/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  241.180861][   T30] audit: type=1326 audit(1757559765.774:755): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7797 comm="syz.3.635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fd97f18eba9 code=0x7ffc0000
[  241.664914][ T7821] loop1: detected capacity change from 0 to 2048
[  241.800849][ T7821] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none.
[  241.872095][ T7829] loop4: detected capacity change from 0 to 512
[  241.947938][ T7829] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode
[  242.059451][ T7829] EXT4-fs (loop4): 1 truncate cleaned up
[  242.201280][ T7829] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  242.265926][ T5867] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000900.
[  243.047335][ T7853] loop2: detected capacity change from 0 to 256
[  243.750382][ T7854] loop5: detected capacity change from 0 to 128
[  243.763779][ T5866] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  243.801430][ T5865] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  244.499596][ T7866] loop5: detected capacity change from 0 to 1024
[  244.539026][ T7866] EXT4-fs: Ignoring removed orlov option
[  244.584847][ T7866] journal_path: Non-blockdev passed as './file1'
[  244.619854][ T7866] EXT4-fs: error: could not find journal device path
[  246.459684][ T7889] loop1: detected capacity change from 0 to 512
[  246.500527][ T7889] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode
[  246.564273][ T7889] EXT4-fs (loop1): 1 truncate cleaned up
[  246.591733][ T7889] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  246.689643][ T7889] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  247.439903][ T7912] loop0: detected capacity change from 0 to 2048
[  247.526680][ T7879] lo speed is unknown, defaulting to 1000
[  247.556708][ T7912] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  247.611052][   T30] kauditd_printk_skb: 10 callbacks suppressed
[  247.611081][   T30] audit: type=1800 audit(1757559773.034:766): pid=7912 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.677" name="bus" dev="loop0" ino=18 res=0 errno=0
[  248.900748][ T7969] loop5: detected capacity change from 0 to 1024
[  248.908512][ T7969] EXT4-fs: Ignoring removed nobh option
[  248.989912][ T7969] EXT4-fs: Ignoring removed bh option
[  249.007864][ T5863] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  249.081242][ T7969] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  249.307888][ T7969] pimreg: entered allmulticast mode
[  249.354236][ T7969] pimreg: left allmulticast mode
[  249.381166][ T7977] loop0: detected capacity change from 0 to 512
[  249.426012][ T7977] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[  249.501148][ T7977] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c842e02c, mo2=0002]
[  249.561970][ T7977] EXT4-fs (loop0): orphan cleanup on readonly fs
[  249.562003][ T7977] EXT4-fs error (device loop0): ext4_orphan_get:1418: comm syz.0.686: bad orphan inode 267
[  249.562576][ T7977] EXT4-fs (loop0): Remounting filesystem read-only
[  249.564769][ T7977] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[  249.597324][   T30] audit: type=1326 audit(1757559774.984:767): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597409][   T30] audit: type=1326 audit(1757559774.984:768): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597490][   T30] audit: type=1326 audit(1757559774.994:769): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597560][   T30] audit: type=1326 audit(1757559774.994:770): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597631][   T30] audit: type=1326 audit(1757559774.994:771): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597700][   T30] audit: type=1326 audit(1757559774.994:772): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597770][   T30] audit: type=1326 audit(1757559774.994:773): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597839][   T30] audit: type=1326 audit(1757559774.994:774): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.597907][   T30] audit: type=1326 audit(1757559774.994:775): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7980 comm="syz.1.687" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  249.680106][ T7977] EXT4-fs warning (device loop0): dx_probe:859: inode #2: comm syz.0.686: dx entry: limit 0 != root limit 125
[  249.761812][    C1] vkms_vblank_simulate: vblank timer overrun
[  249.829500][    C1] vkms_vblank_simulate: vblank timer overrun
[  249.940183][ T7977] EXT4-fs warning (device loop0): dx_probe:933: inode #2: comm syz.0.686: Corrupt directory, running e2fsck is recommended
[  249.981599][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  250.137308][ T7990] team_slave_0: entered promiscuous mode
[  250.137391][ T7990] team_slave_1: entered promiscuous mode
[  250.137545][ T7990] vlan3: entered promiscuous mode
[  250.137571][ T7990] team0: entered promiscuous mode
[  250.217705][ T7983] Bluetooth: hci0: Opcode 0x0c1a failed: -4
[  250.218253][ T7983] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[  250.218548][ T7983] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[  250.218775][ T7983] Bluetooth: hci3: Opcode 0x0c1a failed: -4
[  250.218984][ T7983] Bluetooth: hci4: Opcode 0x0c1a failed: -4
[  250.220042][ T7983] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[  250.274075][ T5863] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[  250.345271][ T7993] loop5: detected capacity change from 0 to 1024
[  250.346342][ T7993] EXT4-fs: Ignoring removed orlov option
[  250.433616][ T7993] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  250.842977][ T5869] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  251.133790][ T8010] netlink: 24 bytes leftover after parsing attributes in process `syz.5.695'.
[  251.273165][ T8014] netlink: 4 bytes leftover after parsing attributes in process `syz.0.698'.
[  252.163622][ T8033] loop4: detected capacity change from 0 to 128
[  252.212547][ T5879] Bluetooth: hci0: command 0x0c1a tx timeout
[  252.249276][ T5879] Bluetooth: hci5: command 0x0c1a tx timeout
[  252.255378][ T5879] Bluetooth: hci4: command 0x0c1a tx timeout
[  252.265793][ T5871] Bluetooth: hci1: command 0x0c1a tx timeout
[  252.272000][ T5880] Bluetooth: hci2: command 0x0c1a tx timeout
[  252.278324][ T5180] Bluetooth: hci3: command 0x0c1a tx timeout
[  252.672632][   T30] kauditd_printk_skb: 19 callbacks suppressed
[  252.672656][   T30] audit: type=1800 audit(1757559778.094:795): pid=8032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.702" name="file1" dev="loop4" ino=1048618 res=0 errno=0
[  253.213190][ T8036] loop1: detected capacity change from 0 to 8192
[  253.523198][ T8029] loop5: detected capacity change from 0 to 1024
[  253.546893][ T8029] EXT4-fs (loop5): bad geometry: block count 3585 exceeds size of device (512 blocks)
[  253.934820][ T8046] loop4: detected capacity change from 0 to 512
[  254.080250][ T8046] journal_path: Non-blockdev passed as './bus'
[  254.086453][ T8046] EXT4-fs: error: could not find journal device path
[  254.220887][   T30] audit: type=1326 audit(1757559779.644:796): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  254.243085][    C1] vkms_vblank_simulate: vblank timer overrun
[  254.329523][   T30] audit: type=1326 audit(1757559779.644:797): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  254.507586][   T30] audit: type=1326 audit(1757559779.684:798): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  254.704852][   T30] audit: type=1326 audit(1757559779.684:799): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  254.731261][ T8027] lo speed is unknown, defaulting to 1000
[  254.839458][   T30] audit: type=1326 audit(1757559779.684:800): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  254.870684][ T8053] lo speed is unknown, defaulting to 1000
[  255.017319][   T30] audit: type=1326 audit(1757559779.684:801): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  255.144398][   T30] audit: type=1326 audit(1757559779.684:802): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  255.931498][   T30] audit: type=1326 audit(1757559779.684:803): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  255.975850][   T30] audit: type=1326 audit(1757559779.684:804): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8035 comm="syz.1.707" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f60aa58eba9 code=0x7ffc0000
[  255.983886][ T8068] netlink: 24 bytes leftover after parsing attributes in process `syz.3.717'.
[  256.000792][ T8053] lo speed is unknown, defaulting to 1000
[  256.014654][ T8053] lo speed is unknown, defaulting to 1000
[  256.040458][ T8063] lo speed is unknown, defaulting to 1000
[  256.332829][ T8075] unsupported nla_type 52263
[  257.108627][ T8081] loop2: detected capacity change from 0 to 128
[  257.810622][   T24] lo speed is unknown, defaulting to 1000
[  257.817019][ T8053] infiniband s
z1: set active
[  257.821998][ T8053] infiniband s
z1: added lo
[  257.828247][ T8053] s
z1: rxe_create_cq: returned err = -12
[  257.889256][ T8053] infiniband s
z1: Couldn't create ib_mad CQ
[  257.969642][ T8053] infiniband s
z1: Couldn't open port 1
[  258.094133][ T8053] RDS/IB: s
z1: added
[  258.103717][ T8089] loop3: detected capacity change from 0 to 512
[  258.113594][ T8053] smc: adding ib device s
z1 with port count 1
[  258.149194][   T30] kauditd_printk_skb: 12 callbacks suppressed
[  258.149219][   T30] audit: type=1326 audit(1757559783.564:817): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.194515][ T8053] smc:    ib device s
z1 port 1 has pnetid 
[  258.226843][ T8053] lo speed is unknown, defaulting to 1000
[  258.239691][ T8089] ------------[ cut here ]------------
[  258.245333][ T8089] EA inode 11 i_nlink=2
[  258.245785][ T8089] WARNING: CPU: 0 PID: 8089 at fs/ext4/xattr.c:1051 ext4_xattr_inode_update_ref+0x4a6/0x570
[  258.250529][   T30] audit: type=1326 audit(1757559783.564:818): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.260226][ T8089] Modules linked in:
[  258.260327][ T8089] CPU: 0 UID: 0 PID: 8089 Comm: syz.3.725 Not tainted syzkaller #0 PREEMPT(full) 
[  258.260387][ T8089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  258.260417][ T8089] RIP: 0010:ext4_xattr_inode_update_ref+0x4a6/0x570
[  258.260500][ T8089] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 73 40 44 89 e2 48 c7 c7 a0 00 c8 8b e8 2b 7d f0 fe 90 <0f> 0b 90 90 e9 40 fe ff ff e8 4c d9 31 ff 44 0f b6 3d 2a 44 0a 0e
[  258.260550][ T8089] RSP: 0018:ffffc90003377198 EFLAGS: 00010286
[  258.260591][ T8089] RAX: 0000000000000000 RBX: ffff88805496f558 RCX: ffffc9000be5b000
[  258.260624][ T8089] RDX: 0000000000080000 RSI: ffffffff817a3395 RDI: 0000000000000001
[  258.260656][ T8089] RBP: ffffc90003377258 R08: 0000000000000001 R09: 0000000000000000
[  258.260688][ T8089] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002
[  258.316342][   T30] audit: type=1326 audit(1757559783.574:819): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.336058][ T8089] R13: 1ffff9200066ee36 R14: ffff88805496f630 R15: 0000000000000000
[  258.336097][ T8089] FS:  00007fd97ffcc6c0(0000) GS:ffff8881246b6000(0000) knlGS:0000000000000000
[  258.336141][ T8089] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  258.336174][ T8089] CR2: ffffffffffffffe8 CR3: 00000000748d0000 CR4: 0000000000350ef0
[  258.336205][ T8089] Call Trace:
[  258.336221][ T8089]  <TASK>
[  258.336248][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.342740][   T30] audit: type=1326 audit(1757559783.574:820): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.350363][ T8089]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  258.451827][   T30] audit: type=1326 audit(1757559783.574:821): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.464574][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.464647][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.464706][ T8089]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  258.464797][ T8089]  ext4_xattr_set_entry+0x158f/0x1f00
[  258.464902][ T8089]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  258.464980][ T8089]  ? xattr_find_entry+0x289/0x330
[  258.465064][ T8089]  ext4_xattr_ibody_set+0x3d6/0x5d0
[  258.534132][ T8089]  ext4_expand_extra_isize_ea+0x1487/0x1ab0
[  258.540141][ T8089]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  258.546429][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.552148][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.553241][   T30] audit: type=1326 audit(1757559783.574:822): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=278 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.557805][ T8089]  ? dquot_initialize_needed+0x183/0x2a0
[  258.557859][ T8089]  __ext4_expand_extra_isize+0x346/0x480
[  258.591459][ T8089]  __ext4_mark_inode_dirty+0x544/0x870
[  258.596967][ T8089]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  258.603045][ T8089]  ? __pfx___might_resched+0x10/0x10
[  258.609742][ T8089]  ? ext4_journal_check_start+0x22b/0x340
[  258.615494][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.622301][ T8089]  ? __ext4_journal_start_sb+0x19e/0x690
[  258.627969][ T8089]  ? ext4_evict_inode+0x5cf/0x18e0
[  258.633187][ T8089]  ext4_evict_inode+0x74e/0x18e0
[  258.638177][ T8089]  ? __pfx_ext4_evict_inode+0x10/0x10
[  258.643646][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.649378][ T8089]  ? __pfx_ext4_evict_inode+0x10/0x10
[  258.654788][ T8089]  evict+0x3e6/0x920
[  258.658707][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.664432][ T8089]  ? __pfx_evict+0x10/0x10
[  258.668888][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.674615][ T8089]  iput+0x521/0x880
[  258.676065][   T30] audit: type=1326 audit(1757559783.574:823): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.678444][ T8089]  ? __pfx_ext4_drop_inode+0x10/0x10
[  258.678492][ T8089]  ext4_orphan_cleanup+0x731/0x11e0
[  258.712643][ T8089]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  258.718322][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.725246][ T8089]  ? ext4_register_li_request+0xec/0x9b0
[  258.730982][ T8089]  ext4_fill_super+0x8a38/0xafa0
[  258.735990][ T8089]  ? __pfx_ext4_fill_super+0x10/0x10
[  258.741363][ T8089]  ? do_raw_spin_lock+0x12c/0x2b0
[  258.746410][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.752120][ T8089]  ? find_held_lock+0x2b/0x80
[  258.756824][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.762552][ T8089]  ? set_blocksize+0x406/0x500
[  258.767355][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.773062][ T8089]  ? sb_set_blocksize+0x176/0x1d0
[  258.776574][   T30] audit: type=1326 audit(1757559783.574:824): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8092 comm="syz.2.727" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe6f598eba9 code=0x7ffc0000
[  258.778133][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.805933][ T8089]  ? setup_bdev_super+0x369/0x730
[  258.811365][ T8089]  get_tree_bdev_flags+0x38c/0x620
[  258.818013][ T8089]  ? __pfx_ext4_fill_super+0x10/0x10
[  258.824488][ T8089]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  258.830210][ T8089]  ? apparmor_capable+0x114/0x1d0
[  258.835272][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.840990][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.846657][ T8089]  ? security_capable+0x7e/0x260
[  258.851704][ T8089]  vfs_get_tree+0x8e/0x340
[  258.856170][ T8089]  path_mount+0x1513/0x2000
[  258.860782][ T8089]  ? __pfx_path_mount+0x10/0x10
[  258.865661][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.871383][ T8089]  ? kmem_cache_free+0x2d1/0x4d0
[  258.876369][ T8089]  ? putname+0x154/0x1a0
[  258.880721][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.886390][ T8089]  ? putname+0x154/0x1a0
[  258.890768][ T8089]  ? __x64_sys_mount+0x28d/0x310
[  258.895736][ T8089]  __x64_sys_mount+0x28d/0x310
[  258.900586][ T8089]  ? __pfx___x64_sys_mount+0x10/0x10
[  258.905897][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  258.911647][ T8089]  do_syscall_64+0xcd/0x4c0
[  258.917519][ T8089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  258.924652][ T8089] RIP: 0033:0x7fd97f19034a
[  258.929087][ T8089] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  258.948858][ T8089] RSP: 002b:00007fd97ffcbe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  258.957366][ T8089] RAX: ffffffffffffffda RBX: 00007fd97ffcbef0 RCX: 00007fd97f19034a
[  258.965413][ T8089] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fd97ffcbeb0
[  258.973452][ T8089] RBP: 0000200000000180 R08: 00007fd97ffcbef0 R09: 0000000000800700
[  258.981484][ T8089] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  258.989555][ T8089] R13: 00007fd97ffcbeb0 R14: 0000000000000473 R15: 0000200000000680
[  258.997565][ T8089]  </TASK>
[  259.000687][ T8089] Kernel panic - not syncing: kernel: panic_on_warn set ...
[  259.007978][ T8089] CPU: 0 UID: 0 PID: 8089 Comm: syz.3.725 Not tainted syzkaller #0 PREEMPT(full) 
[  259.017196][ T8089] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[  259.027266][ T8089] Call Trace:
[  259.030550][ T8089]  <TASK>
[  259.033487][ T8089]  dump_stack_lvl+0x3d/0x1f0
[  259.038126][ T8089]  vpanic+0x6e8/0x7a0
[  259.042150][ T8089]  ? __pfx_vpanic+0x10/0x10
[  259.046705][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.052372][ T8089]  ? ext4_xattr_inode_update_ref+0x4a6/0x570
[  259.058395][ T8089]  panic+0xca/0xd0
[  259.062156][ T8089]  ? __pfx_panic+0x10/0x10
[  259.066639][ T8089]  check_panic_on_warn+0xab/0xb0
[  259.071596][ T8089]  __warn+0xf6/0x3c0
[  259.075498][ T8089]  ? ext4_xattr_inode_update_ref+0x4a6/0x570
[  259.081507][ T8089]  report_bug+0x3c3/0x580
[  259.085858][ T8089]  ? ext4_xattr_inode_update_ref+0x4a6/0x570
[  259.091870][ T8089]  handle_bug+0x184/0x210
[  259.096211][ T8089]  exc_invalid_op+0x17/0x50
[  259.100729][ T8089]  asm_exc_invalid_op+0x1a/0x20
[  259.105583][ T8089] RIP: 0010:ext4_xattr_inode_update_ref+0x4a6/0x570
[  259.112200][ T8089] Code: df 48 8d 7b 40 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 bf 00 00 00 48 8b 73 40 44 89 e2 48 c7 c7 a0 00 c8 8b e8 2b 7d f0 fe 90 <0f> 0b 90 90 e9 40 fe ff ff e8 4c d9 31 ff 44 0f b6 3d 2a 44 0a 0e
[  259.131820][ T8089] RSP: 0018:ffffc90003377198 EFLAGS: 00010286
[  259.137893][ T8089] RAX: 0000000000000000 RBX: ffff88805496f558 RCX: ffffc9000be5b000
[  259.145864][ T8089] RDX: 0000000000080000 RSI: ffffffff817a3395 RDI: 0000000000000001
[  259.153833][ T8089] RBP: ffffc90003377258 R08: 0000000000000001 R09: 0000000000000000
[  259.161804][ T8089] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000002
[  259.169774][ T8089] R13: 1ffff9200066ee36 R14: ffff88805496f630 R15: 0000000000000000
[  259.177763][ T8089]  ? __warn_printk+0x1a5/0x350
[  259.182563][ T8089]  ? ext4_xattr_inode_update_ref+0x4a5/0x570
[  259.188570][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.194218][ T8089]  ? __pfx_ext4_xattr_inode_update_ref+0x10/0x10
[  259.200574][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.206227][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.211883][ T8089]  ? ext4_xattr_inode_iget+0x1ee/0x400
[  259.217384][ T8089]  ext4_xattr_set_entry+0x158f/0x1f00
[  259.222806][ T8089]  ? __pfx_ext4_xattr_set_entry+0x10/0x10
[  259.228554][ T8089]  ? xattr_find_entry+0x289/0x330
[  259.233612][ T8089]  ext4_xattr_ibody_set+0x3d6/0x5d0
[  259.238822][ T8089]  ext4_expand_extra_isize_ea+0x1487/0x1ab0
[  259.244752][ T8089]  ? __pfx_ext4_expand_extra_isize_ea+0x10/0x10
[  259.251018][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.256666][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.262311][ T8089]  ? dquot_initialize_needed+0x183/0x2a0
[  259.267965][ T8089]  __ext4_expand_extra_isize+0x346/0x480
[  259.273639][ T8089]  __ext4_mark_inode_dirty+0x544/0x870
[  259.279125][ T8089]  ? __pfx___ext4_mark_inode_dirty+0x10/0x10
[  259.285133][ T8089]  ? __pfx___might_resched+0x10/0x10
[  259.290446][ T8089]  ? ext4_journal_check_start+0x22b/0x340
[  259.296180][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.301837][ T8089]  ? __ext4_journal_start_sb+0x19e/0x690
[  259.307482][ T8089]  ? ext4_evict_inode+0x5cf/0x18e0
[  259.312622][ T8089]  ext4_evict_inode+0x74e/0x18e0
[  259.317584][ T8089]  ? __pfx_ext4_evict_inode+0x10/0x10
[  259.322974][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.328630][ T8089]  ? __pfx_ext4_evict_inode+0x10/0x10
[  259.334023][ T8089]  evict+0x3e6/0x920
[  259.337932][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.343581][ T8089]  ? __pfx_evict+0x10/0x10
[  259.348018][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.353676][ T8089]  iput+0x521/0x880
[  259.357498][ T8089]  ? __pfx_ext4_drop_inode+0x10/0x10
[  259.362794][ T8089]  ext4_orphan_cleanup+0x731/0x11e0
[  259.368023][ T8089]  ? __pfx_ext4_orphan_cleanup+0x10/0x10
[  259.373680][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.379324][ T8089]  ? ext4_register_li_request+0xec/0x9b0
[  259.384984][ T8089]  ext4_fill_super+0x8a38/0xafa0
[  259.389973][ T8089]  ? __pfx_ext4_fill_super+0x10/0x10
[  259.395275][ T8089]  ? do_raw_spin_lock+0x12c/0x2b0
[  259.400309][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.405951][ T8089]  ? find_held_lock+0x2b/0x80
[  259.410643][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.416289][ T8089]  ? set_blocksize+0x406/0x500
[  259.421071][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.426726][ T8089]  ? sb_set_blocksize+0x176/0x1d0
[  259.431776][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.437423][ T8089]  ? setup_bdev_super+0x369/0x730
[  259.442478][ T8089]  get_tree_bdev_flags+0x38c/0x620
[  259.447613][ T8089]  ? __pfx_ext4_fill_super+0x10/0x10
[  259.452919][ T8089]  ? __pfx_get_tree_bdev_flags+0x10/0x10
[  259.458579][ T8089]  ? apparmor_capable+0x114/0x1d0
[  259.463618][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.469264][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.474910][ T8089]  ? security_capable+0x7e/0x260
[  259.479862][ T8089]  vfs_get_tree+0x8e/0x340
[  259.484295][ T8089]  path_mount+0x1513/0x2000
[  259.488816][ T8089]  ? __pfx_path_mount+0x10/0x10
[  259.493678][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.499323][ T8089]  ? kmem_cache_free+0x2d1/0x4d0
[  259.504283][ T8089]  ? putname+0x154/0x1a0
[  259.508542][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.514186][ T8089]  ? putname+0x154/0x1a0
[  259.518450][ T8089]  ? __x64_sys_mount+0x28d/0x310
[  259.523394][ T8089]  __x64_sys_mount+0x28d/0x310
[  259.528171][ T8089]  ? __pfx___x64_sys_mount+0x10/0x10
[  259.533470][ T8089]  ? srso_alias_return_thunk+0x5/0xfbef5
[  259.539134][ T8089]  do_syscall_64+0xcd/0x4c0
[  259.543658][ T8089]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  259.549558][ T8089] RIP: 0033:0x7fd97f19034a
[  259.553976][ T8089] Code: d8 64 89 02 48 c7 c0 ff ff ff ff eb a6 e8 de 1a 00 00 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  259.573590][ T8089] RSP: 002b:00007fd97ffcbe68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5
[  259.582011][ T8089] RAX: ffffffffffffffda RBX: 00007fd97ffcbef0 RCX: 00007fd97f19034a
[  259.589983][ T8089] RDX: 0000200000000180 RSI: 00002000000001c0 RDI: 00007fd97ffcbeb0
[  259.597951][ T8089] RBP: 0000200000000180 R08: 00007fd97ffcbef0 R09: 0000000000800700
[  259.605921][ T8089] R10: 0000000000800700 R11: 0000000000000246 R12: 00002000000001c0
[  259.613893][ T8089] R13: 00007fd97ffcbeb0 R14: 0000000000000473 R15: 0000200000000680
[  259.621889][ T8089]  </TASK>
[  259.625121][ T8089] Kernel Offset: disabled
[  259.629523][ T8089] Rebooting in 86400 seconds..