last executing test programs:

1m8.690334249s ago: executing program 1 (id=501):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={0x0, 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1m7.490103187s ago: executing program 1 (id=504):
r0 = socket$kcm(0x10, 0x2, 0x10)
r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000019007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000080)="2e00000038000511d25a80698c63940d0124fc602f6e35400c000200001ec00037153e370a00018025581d00d1bd", 0x2e}], 0x1, 0x0, 0x0, 0x39c}, 0x0)

1m7.190494811s ago: executing program 1 (id=506):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_UMEM_REG(r0, 0x11b, 0x4, &(0x7f00000000c0)={&(0x7f0000000000)=""/5, 0x200000, 0x1000}, 0x20)
r1 = socket$netlink(0x10, 0x3, 0x400000000000004)
writev(r1, &(0x7f0000019440)=[{0x0}], 0x1)

1m6.397220345s ago: executing program 1 (id=510):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

1m5.865821088s ago: executing program 1 (id=511):
r0 = socket$nl_route(0x10, 0x3, 0x0)
ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r0, 0x8933, &(0x7f0000000000)={'batadv_slave_0\x00', <r1=>0x0})
r2 = socket$nl_generic(0x10, 0x3, 0x10)
r3 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000680), 0xffffffffffffffff)
sendmsg$ETHTOOL_MSG_PAUSE_GET(r2, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000001940)=ANY=[@ANYBLOB=' \x00\x00\x00', @ANYRES16=r3, @ANYBLOB="01dfffffff9a2600000021", @ANYRES32=r1], 0x20}, 0x1, 0x0, 0x0, 0x4000c00}, 0x0)

1m4.617075958s ago: executing program 1 (id=514):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

1m4.020101487s ago: executing program 32 (id=514):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000001000000b703000000000000850000002d00000095"], &(0x7f00000002c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x19, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000140)='kmem_cache_free\x00', r0}, 0x10)
r1 = socket$packet(0x11, 0x3, 0x300)
setsockopt$packet_int(r1, 0x107, 0xf, &(0x7f0000000000)=0x9, 0x4)
r2 = socket$packet(0x11, 0x2, 0x300)
setsockopt$packet_fanout(r2, 0x107, 0x12, &(0x7f0000000000)={0x0, 0x8000}, 0x4)
ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000300)={'ip6_vti0\x00', <r3=>0x0})
sendto$packet(r1, &(0x7f0000000180)="10030600e0ff020004004788aa96a13bb100001100007fca1a00", 0x10608, 0x0, &(0x7f0000000140)={0x11, 0x0, r3}, 0x14)

1m0.001168152s ago: executing program 3 (id=530):
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r0 = getpid()
sched_setscheduler(r0, 0x1, &(0x7f0000000100)=0x5)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000001480)={<r1=>0xffffffffffffffff, <r2=>0xffffffffffffffff})
connect$unix(r1, &(0x7f0000000940)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r2, &(0x7f00000bd000), 0x318, 0x0)
recvmmsg(r1, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x8, 0x1}, 0x48)
r4 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000740)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r3, @ANYBLOB="0000000000000000b703000000030000850000001b000000b70000000000000095"], &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000080)='sched_switch\x00', r4}, 0x18)
r5 = socket$tipc(0x1e, 0x5, 0x0)
bind$tipc(r5, &(0x7f0000000340)=@nameseq={0x1e, 0x1, 0x3, {0x43}}, 0x10)
r6 = socket$tipc(0x1e, 0x5, 0x0)
setsockopt$TIPC_GROUP_JOIN(r6, 0x10f, 0x87, &(0x7f0000000300)={0x43, 0x3, 0x3, 0x3}, 0x10)
setsockopt$TIPC_GROUP_JOIN(r5, 0x10f, 0x87, &(0x7f0000000100)={0x43, 0x0, 0x3, 0x3}, 0x10)
sendmsg$tipc(r5, &(0x7f0000000280)={&(0x7f0000000040), 0x10, 0x0}, 0x0)

56.55908376s ago: executing program 3 (id=532):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x80000)
socket$inet6(0xa, 0x3, 0xff)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32, @ANYBLOB="0000000a7203132e86cb659f47d9513c192945859d1c2c68970000000000000080000000000000504c4a6f3f2df0fcd940e10935ecbb5c38b68cb3bf2c723a8db0792126742d1a92032edffb"], 0x48)
semtimedop(0x0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(0x0, &(0x7f00000000c0)=[{0x2}], 0x1)
r3 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r3, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0)

56.116294965s ago: executing program 3 (id=534):
r0 = socket$xdp(0x2c, 0x3, 0x0)
setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f00000004c0)=0x1000000, 0x4)
getsockopt$XDP_STATISTICS(r0, 0x11b, 0x7, &(0x7f00000002c0), &(0x7f0000000480)=0x30)

54.385221215s ago: executing program 3 (id=539):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

54.141861295s ago: executing program 3 (id=542):
prctl$PR_SET_NAME(0xf, &(0x7f0000000480)='gtp\x00')
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x11, 0x8, &(0x7f00000009c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00'}, 0x41)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10)
r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x15, 0x10, &(0x7f0000000040)=@ringbuf={{0x18, 0x0, 0x0, 0x0, 0x8, 0x0, 0x0, 0x0, 0x8}, {{0x18, 0x1, 0x1, 0x0, r1}}, {}, [@func={0x85, 0x0, 0x1, 0x0, 0xfffffff5}], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000240)='syzkaller\x00', 0x9, 0x0, 0x0, 0x0, 0x2d, '\x00', 0x0, @sk_reuseport, 0x0, 0x8300, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)

52.890604166s ago: executing program 2 (id=545):
getpid()
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x281c2, 0x120)
fcntl$setlease(r0, 0x400, 0x1)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

52.71600548s ago: executing program 2 (id=547):
r0 = msgget$private(0x0, 0x790)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="180000000008002b000000000000000018040000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000002000000b704000000000000850000004300000095"], 0x0, 0x0, 0x11, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x90)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r1}, 0x10)
msgsnd(r0, &(0x7f0000000d00)=ANY=[@ANYRES8], 0x401, 0x0)
msgctl$IPC_RMID(r0, 0x0)

52.489245419s ago: executing program 2 (id=548):
bind$inet6(0xffffffffffffffff, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @empty}, 0x1c)
sendto$inet6(0xffffffffffffffff, 0x0, 0x0, 0x0, &(0x7f0000000180)={0xa, 0x4e20, 0x0, @mcast1}, 0x1c)
recvmmsg(0xffffffffffffffff, &(0x7f0000005040)=[{{0x0, 0x0, 0x0}, 0x7}], 0x1, 0x10012, 0x0)
r0 = syz_io_uring_setup(0x27f0, &(0x7f0000000340)={0x0, 0x400000, 0x10100, 0x400001, 0x28c}, &(0x7f0000000080), &(0x7f0000000000)=<r1=>0x0)
syz_io_uring_setup(0x1868, &(0x7f00000003c0)={0x0, 0xd762, 0x100, 0x0, 0x134, 0x0, r0}, &(0x7f00000002c0)=<r2=>0x0, &(0x7f0000000180))
syz_io_uring_submit(r2, r1, &(0x7f00000001c0)=@IORING_OP_READ=@pass_buffer={0x16, 0x0, 0x0, @fd_index=0x3, 0x0, 0x0, 0xfffffffffffffe54})
io_uring_enter(r0, 0x8184c, 0x0, 0x9, 0x0, 0x0)

52.359084889s ago: executing program 2 (id=549):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
mount$bind(0x0, &(0x7f0000000240)='./file0/file0\x00', 0x0, 0x80000, 0x0)
move_mount(0xffffffffffffffff, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

52.239580399s ago: executing program 2 (id=550):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x7, 0x4, 0x80, 0x4, 0x28}, 0x50)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0x8, &(0x7f0000000080)=@framed={{}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x1b}}]}, &(0x7f0000000780)='GPL\x00', 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x18)
r2 = openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0)
ioctl$TUNSETIFF(r2, 0x400454ca, &(0x7f0000000040)={'syzkaller0\x00', 0x7101})
r3 = socket(0x400000000010, 0x3, 0x0)
r4 = socket(0x400000000010, 0x3, 0x0)
r5 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r5, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r6=>0x0})
sendmsg$nl_route_sched(r4, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2a, 0xffffffff, {0x0, 0x0, 0x0, r6, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}}, 0x0)
r7 = socket$unix(0x1, 0x1, 0x0)
ioctl$sock_SIOCGIFINDEX(r7, 0x8933, &(0x7f0000000100)={'syzkaller0\x00', <r8=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f00000012c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000005c0)=@newqdisc={0x38, 0x24, 0x4ee4e6a52ff56541, 0x70bd2c, 0xffffffff, {0x0, 0x0, 0x0, r8, {0x0, 0xfff1}, {0xffff, 0xffff}, {0x0, 0xf}}, [@qdisc_kind_options=@q_multiq={{0xb}, {0x8}}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x0)

50.510187629s ago: executing program 0 (id=551):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x80000)
socket$inet6(0xa, 0x3, 0xff)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="0700000004000000080000000100000000000000", @ANYRES32, @ANYBLOB="0000000a7203132e86cb659f47d9513c192945859d1c2c68970000000000000080000000000000504c4a6f3f2df0fcd940e10935ecbb5c38b68cb3bf2c723a8db0792126742d1a92032edffb"], 0x48)
semtimedop(0x0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(0x0, &(0x7f00000000c0)=[{0x2}], 0x1)
r3 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r3, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0)

50.357200491s ago: executing program 0 (id=552):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000e80)=ANY=[@ANYBLOB="0a00000002000000ff0f000007"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f00000007c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000400)='virtio_transport_alloc_pkt\x00', r1}, 0x18)
r2 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r2, 0x28, 0x1, &(0x7f0000000380)=0xffffffff00000041, 0x8)
bind$vsock_stream(r2, 0x0, 0x0)
listen(r2, 0x0)
r3 = socket$vsock_stream(0x28, 0x1, 0x0)
connect$vsock_stream(r3, &(0x7f0000000000)={0x28, 0x0, 0x0, @local}, 0x10)
writev(r3, &(0x7f00000002c0)=[{&(0x7f0000000080)='?', 0x20000081}], 0x1)
bpf$ENABLE_STATS(0x20, 0x0, 0x0)

50.24262452s ago: executing program 0 (id=553):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1b}, 0xd}, 0x1c)
r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000900)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0)
write$binfmt_script(r1, &(0x7f0000000100), 0xfffffd9d)
sendfile(r0, r1, 0x0, 0x8000002b)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002120207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x7, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={0x0, r2}, 0x18)
r3 = openat$snapshot(0xffffffffffffff9c, &(0x7f0000000000), 0x20803, 0x0)
ioctl$SNAPSHOT_ATOMIC_RESTORE(r3, 0x3304)
gettid()
socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000180)={<r4=>0xffffffffffffffff, <r5=>0xffffffffffffffff})
ioctl$int_in(r4, 0x5452, &(0x7f0000b28000)=0x20003)
pause()
fcntl$setsig(r4, 0xa, 0x12)
poll(&(0x7f0000b2c000)=[{r5}], 0x2c, 0xffffffffffbffff8)
futex(&(0x7f00000006c0)=0x2, 0x0, 0x2, &(0x7f0000000140)={0x77359400}, 0x0, 0x80000002)
timer_create(0x0, &(0x7f00000000c0)={0x0, 0x12, 0x0, @thr={0x0, 0x0}}, &(0x7f0000000100))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x3938700}, {0x0, 0x3938700}}, 0x0)
r6 = gettid()
rt_sigaction(0x16, &(0x7f0000000080)={0x0, 0x90000003, 0x0}, 0x0, 0x8, &(0x7f0000000200))
tkill(r6, 0x16)
bpf$PROG_LOAD(0x5, &(0x7f0000000580)={0x11, 0xc, &(0x7f00000002c0)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x17, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

50.087559953s ago: executing program 3 (id=554):
getpid()
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x281c2, 0x120)
fcntl$setlease(r0, 0x400, 0x1)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

49.486028711s ago: executing program 33 (id=554):
getpid()
bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x281c2, 0x120)
fcntl$setlease(r0, 0x400, 0x1)
r1 = bpf$MAP_CREATE(0x1900000000000000, &(0x7f0000000640)=ANY=[@ANYBLOB="1b00000000000000000000000020"], 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000001000000000000000640000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000e0000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000008200000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r2 = seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x2, 0x0, 0x7fff0000}]})
close_range(r2, 0xffffffffffffffff, 0x0)

49.445138125s ago: executing program 2 (id=556):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x100000b3, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x2, 0x8, 0xffffffff}]}, 0x10)

49.12685322s ago: executing program 34 (id=556):
r0 = socket$inet_udp(0x2, 0x2, 0x0)
setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000000)=0x100000b3, 0x4)
setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f0000000040)={0x1, &(0x7f0000000380)=[{0x6, 0x2, 0x8, 0xffffffff}]}, 0x10)

48.685370646s ago: executing program 0 (id=557):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
mount$bind(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f00000000c0)='./file0/file0\x00', 0x0, 0x8b100a, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

48.427716567s ago: executing program 0 (id=558):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x8, 0xdd, 0xff}, 0x50)
close(0x3)
bpf$MAP_CREATE(0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="0b00000007000000010001000900000001"], 0x48)
bpf$MAP_CREATE(0x0, 0x0, 0x0)
r1 = socket$inet_udp(0x2, 0x2, 0x0)
sendmmsg$inet(r1, 0x0, 0x0, 0x4000800)
prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0)
sched_setscheduler(0x0, 0x2, &(0x7f0000000080)=0x8)
r2 = getpid()
sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2)
sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x7)
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x75b08000)
socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={<r3=>0xffffffffffffffff, <r4=>0xffffffffffffffff})
connect$unix(r3, &(0x7f000057eff8)=@abs={0x0, 0x0, 0x4e22}, 0x6e)
sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0)
recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0)
r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000080)='sched_switch\x00', r5}, 0x18)
pipe2$9p(0x0, 0x0)
socket$nl_route(0x10, 0x3, 0x0)
recvfrom(r1, 0x0, 0x2a, 0x2101, 0x0, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0xe, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18090000000000000000000000000000850000006d0000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b70300000000"], 0x0, 0x0, 0x0, 0x0, 0x41000, 0x0, '\x00', 0x0, @fallback=0x6, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000400)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000940)='percpu_alloc_percpu\x00', r6}, 0x10)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f0000000300)=@bpf_lsm={0xd, 0x5, &(0x7f0000000040)=@framed={{0x75, 0xa, 0x0, 0x0, 0x0, 0x61, 0x11, 0x9c}, [@initr0]}, &(0x7f0000000000)='GPL\x00'}, 0x94)
ioctl$sock_ipv6_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0)

47.258875101s ago: executing program 0 (id=559):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
write$qrtrtun(r0, 0x0, 0x0)

46.711435215s ago: executing program 35 (id=559):
r0 = openat$qrtrtun(0xffffffffffffff9c, &(0x7f0000000040), 0x2)
write$qrtrtun(r0, 0x0, 0x0)

38.972578391s ago: executing program 4 (id=515):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000740)=ANY=[@ANYBLOB="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"], 0x159c}}, 0x0)

38.750860019s ago: executing program 4 (id=561):
bpf$MAP_CREATE(0x0, &(0x7f00000008c0)=ANY=[@ANYBLOB="07000000040000002001000001"], 0x50)
r0 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000bc0)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x18)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, 0x0, &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10)
r2 = syz_io_uring_setup(0x7ebb, 0x0, &(0x7f0000000300)=<r3=>0x0, &(0x7f00000000c0)=<r4=>0x0)
syz_memcpy_off$IO_URING_METADATA_GENERIC(r3, 0x4, 0x0, 0x0, 0x4)
syz_io_uring_submit(r3, r4, &(0x7f0000000340)=@IORING_OP_SENDMSG={0x9, 0x10, 0x0, r2, 0x0, &(0x7f0000000a00)={0x0, 0x0, 0x0}, 0x0, 0x1000})
pivot_root(0x0, 0x0)
io_uring_enter(r2, 0x47f8, 0x0, 0x0, 0x0, 0x0)
r5 = openat$pidfd(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
pidfd_send_signal(r5, 0x0, 0x0, 0x0)
r6 = socket$nl_netfilter(0x10, 0x3, 0xc)
r7 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50)
r8 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f00000000c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r7, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000010000008500000085000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x48, '\x00', 0x0, @fallback=0x16, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffff}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r8}, 0x10)
sendmsg$IPCTNL_MSG_CT_GET(r6, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=ANY=[@ANYBLOB="d400000001010101000000000000000000000009240019"], 0xd4}}, 0x80)

38.378627079s ago: executing program 4 (id=563):
openat$ptmx(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0900000005000000080000000f"], 0x50)
bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[], 0x48)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000280)={&(0x7f0000000000)=ANY=[@ANYBLOB="9feb010018000000000000001800000018000000020000000000000000000003000000e403"], 0x0, 0x32}, 0x28)
r0 = io_uring_setup(0x2c4c, &(0x7f00000000c0)={0x0, 0x2, 0x2, 0x1000000, 0x1cf})
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
r1 = gettid()
timer_create(0x0, &(0x7f0000533fa0)={0x0, 0x21, 0x800000000004, @tid=r1}, &(0x7f0000bbdffc))
timer_settime(0x0, 0x0, &(0x7f0000000280)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = socket$unix(0x1, 0x1, 0x0)
r3 = socket$unix(0x1, 0x1, 0x0)
bind$unix(r3, &(0x7f0000003000)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
listen(r3, 0x0)
connect$unix(r2, &(0x7f0000000640)=@file={0x1, '\xe9\x1fq\x89Y\x1e\x923aK\x00'}, 0x6e)
sendmmsg$unix(0xffffffffffffffff, &(0x7f0000004080)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="14000000000000000100000001000000", @ANYRES32], 0x18}}], 0x1, 0x0)
io_uring_register$IORING_REGISTER_BUFFERS2(r0, 0xf, &(0x7f0000000240)={0x6, 0x0, 0x0, &(0x7f0000000540)=[{&(0x7f00000002c0)=""/199, 0xc7}, {&(0x7f0000000640)=""/236, 0xec}, {&(0x7f0000000040)=""/26, 0x1a}, {&(0x7f00000008c0)=""/190, 0xbe}, {&(0x7f0000000140)=""/135, 0x87}, {&(0x7f0000000080)=""/64, 0x40}], &(0x7f00000005c0)=[0xb7e8, 0x6, 0x2, 0x7, 0x3, 0x1, 0x1, 0xfffffffeffffffff, 0x2]}, 0x20)

38.101130111s ago: executing program 4 (id=564):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

37.950857243s ago: executing program 4 (id=565):
close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x0)
getsockopt$inet_sctp6_SCTP_GET_ASSOC_ID_LIST(0xffffffffffffffff, 0x84, 0x1d, 0x0, 0x0)
timer_settime(0x0, 0x1, 0x0, 0x0)
r0 = open(0x0, 0x44000, 0x0)
dup3(r0, 0xffffffffffffffff, 0x0)
r1 = io_uring_setup(0x7538, &(0x7f0000000080))
io_uring_register$IORING_REGISTER_BUFFERS(r1, 0x0, &(0x7f00000002c0)=[{&(0x7f0000001700)=""/4095, 0x440000}], 0x100000000000011a)
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0x0)
bpf$PROG_LOAD(0x5, &(0x7f0000000700)={0x12, 0xc, &(0x7f0000000180)=ANY=[@ANYRES32, @ANYBLOB="0000000000000008b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x35, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r1, 0x10, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000001c0)=[{&(0x7f0000002700)=""/4096, 0x1a00}], 0x0, 0x11a}, 0x20)

37.301200796s ago: executing program 4 (id=566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

36.922061006s ago: executing program 36 (id=566):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB="1e000000000000000500000006"], 0x48)
bpf$MAP_LOOKUP_ELEM(0x2, &(0x7f0000001740)={r0, 0x0, &(0x7f0000001700)=""/53}, 0x20)
bpf$PROG_LOAD_XDP(0x5, &(0x7f00000008c0)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x20}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000008c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000500)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x1, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000040)='sched_switch\x00', r1}, 0x10)
r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x4, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x2}, [@call={0x85, 0x0, 0x0, 0x41}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r2, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x1008, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50)

31.560569169s ago: executing program 6 (id=562):
prlimit64(0x0, 0xe, &(0x7f0000000380)={0x8, 0x100008b}, 0x0)
r0 = getpid()
sched_setscheduler(r0, 0x2, &(0x7f0000000200)=0x7)
syz_mount_image$ext4(&(0x7f0000000400)='ext4\x00', &(0x7f0000000440)='./file0\x00', 0x10, &(0x7f0000000040)={[{@usrjquota}]}, 0x1, 0x3e7, &(0x7f0000000480)="$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")
r1 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./bus\x00', 0x1c1840, 0x0)
r2 = openat(0xffffffffffffff9c, &(0x7f0000000180)='./bus\x00', 0x0, 0x0)
r3 = openat(0xffffffffffffff9c, &(0x7f0000000e80)='./bus\x00', 0x1c1002, 0x0)
write(r3, &(0x7f00000001c0)="f1", 0x1)
sendfile(r3, r1, 0x0, 0x40001)
sendfile(r3, r2, 0x0, 0x7ffff000)

30.500567015s ago: executing program 6 (id=570):
mkdirat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0)
mount$bind(&(0x7f0000000380)='./file0\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x2125099, 0x0)
mount$bind(0x0, &(0x7f00000005c0)='./file0\x00', 0x0, 0x100000, 0x0)
unshare(0x2a020600)
mount$bind(&(0x7f0000000000)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x101097, 0x0)
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901)
move_mount(r0, &(0x7f0000000140)='.\x00', 0xffffffffffffff9c, &(0x7f0000000180)='./file0\x00', 0x0)

30.301583631s ago: executing program 6 (id=571):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x80000)
socket$inet6(0xa, 0x3, 0xff)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYRES32, @ANYBLOB="0000000a7203132e86cb659f47d9513c192945859d1c2c68970000000000000080000000000000504c4a6f3f2df0fcd940e10935ecbb5c38b68cb3bf2c723a8db0792126742d1a92032edffb"], 0x48)
semtimedop(0x0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(0x0, &(0x7f00000000c0)=[{0x2}], 0x1)
r3 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r3, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0)

28.934324161s ago: executing program 6 (id=574):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./file1\x00', 0x3000046, &(0x7f0000000640), 0x1, 0x562, &(0x7f0000001a80)="$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")
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0b000000080000000c0000000000008001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000003939ae98d870fb2701141677000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="36400000260091"], 0xfe33)

28.190078362s ago: executing program 37 (id=574):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f00000003c0)='./file1\x00', 0x3000046, &(0x7f0000000640), 0x1, 0x562, &(0x7f0000001a80)="$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")
openat$loop_ctrl(0xffffffffffffff9c, &(0x7f0000000480), 0x1a1040, 0x0)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB="0b000000080000000c0000000000008001000000", @ANYRES32, @ANYBLOB='\x00'/20, @ANYRES32=0x0, @ANYRES32, @ANYBLOB="000000000000000000000000000000000000000000003939ae98d870fb2701141677000000000000"], 0x48)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000540)='kfree\x00', r1}, 0x10)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000340)={0x11, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00'}, 0x94)
recvmsg(0xffffffffffffffff, &(0x7f0000000500)={0x0, 0x0, 0x0}, 0x0)
write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000000)=ANY=[@ANYBLOB="36400000260091"], 0xfe33)

2.609107959s ago: executing program 5 (id=656):
bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000", @ANYRES32, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000002400000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000005c0)={0x18, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10)
uname(&(0x7f0000000040)=""/13)

2.524299246s ago: executing program 9 (id=657):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000280)=ANY=[@ANYBLOB="442300003b0007010100000000000000017c00000400fc802b2301"], 0x2344}, 0x1, 0x0, 0x0, 0x20000000}, 0x4c000)

2.394473496s ago: executing program 5 (id=658):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x10)
r1 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000a40)=ANY=[@ANYBLOB="140000001000010000000000000000000700000a14000000020aff01000000000000000002"], 0x3c}, 0x1, 0x0, 0x0, 0x4011}, 0x40440c4)

2.326189542s ago: executing program 9 (id=659):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
connect$inet6(r0, &(0x7f0000000100)={0xa, 0x0, 0x0, @mcast2, 0x7}, 0x1c)
sendto$inet6(r0, &(0x7f0000000300), 0x16, 0x3b00, 0x0, 0xfffffffffffffdfd)

2.323645102s ago: executing program 7 (id=660):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c61"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

2.10503444s ago: executing program 5 (id=661):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x80000)
socket$inet6(0xa, 0x3, 0xff)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="07000000040000000800000001", @ANYRES32, @ANYBLOB="0000000a7203132e86cb659f47d9513c192945859d1c2c68970000000000000080000000000000504c4a6f3f2df0fcd940e10935ecbb5c38b68cb3bf2c723a8db0792126742d1a92032edffb"], 0x48)
semtimedop(0x0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(0x0, &(0x7f00000000c0)=[{0x2}], 0x1)
r3 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r3, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0)

2.026829266s ago: executing program 7 (id=662):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r0, @ANYRES64=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x42359a97a60bac0e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='xen_mc_entry\x00', r1}, 0x18)
r2 = syz_open_dev$sg(&(0x7f0000000c40), 0x0, 0x0)
ioctl$SG_BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000440)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@gettfilter={0x34, 0x2e, 0x102, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0x7, 0x2}, {0x3, 0xd}, {0x0, 0xe}}, [{0x8, 0xb, 0xfb4}, {0x8, 0xb, 0x11}]}, 0x34}}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x2, 0x500, &(0x7f0000000500)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x8)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
r7 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r7, r7, 0x0, 0x800000009)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)

2.023270466s ago: executing program 9 (id=663):
r0 = syz_open_dev$tty20(0xc, 0x4, 0x0)
writev(r0, &(0x7f0000001640)=[{&(0x7f0000000480)}, {&(0x7f0000000500)="be", 0x1}], 0x2)

2.004271358s ago: executing program 8 (id=664):
r0 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
readv(r2, 0x0, 0x0)

1.924197794s ago: executing program 5 (id=665):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f0000000440)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, &(0x7f00000004c0)=[{&(0x7f0000000100)="03", 0x1}], 0x1, 0x0, 0x0, 0x8040}], 0x1, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0)=[{&(0x7f00000000c0)=@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}, 0x10, 0x0, 0x0, &(0x7f0000000180)=ANY=[@ANYBLOB="30000000000000008400000001000000000000000c00"], 0x30}], 0x1, 0x0)

1.580989242s ago: executing program 9 (id=666):
socketpair$unix(0x1, 0x5, 0x0, 0x0)
readlinkat(0xffffffffffffffff, 0x0, 0x0, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000002c0)={0x18, 0x5, &(0x7f0000000480)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000005000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000f00)='kfree\x00', r0}, 0x18)
prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]})
clock_getres(0x4, 0x0)

1.580804172s ago: executing program 5 (id=667):
mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0)
r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="1801000000000000000000000000ea04850000007b00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000004c0)='mm_page_free\x00', r0, 0x0, 0x1d6}, 0x18)
madvise(&(0x7f0000000000/0x3000)=nil, 0x7fffffffffffffff, 0x15)

1.551512484s ago: executing program 8 (id=668):
r0 = socket$kcm(0x29, 0x2, 0x0)
r1 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000600)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="18080000000000000000000000000002850000000f000000850000002a00000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000040)='kmem_cache_free\x00', r1}, 0x10)
sendmmsg$inet(r0, &(0x7f0000000780)=[{{0x0, 0x0, &(0x7f0000000b00)=[{&(0x7f0000000080)="da", 0x1}], 0x1, &(0x7f0000000040)=ANY=[], 0xd0}}, {{0x0, 0x0, &(0x7f0000000280)=[{&(0x7f00000001c0)='/', 0x1}], 0x1}}], 0x2, 0x0)
close(r0)

1.287872876s ago: executing program 7 (id=669):
r0 = bpf$MAP_CREATE(0x0, 0x0, 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000680)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x38, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, 0x94)
r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000040)='sched_switch\x00', r2}, 0x10)
socket$nl_route(0x10, 0x3, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={0x0, r1}, 0x18)
connect$phonet_pipe(0xffffffffffffffff, &(0x7f0000000040)={0x23, 0x0, 0x0, 0x1}, 0x10)
r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50)
r4 = bpf$PROG_LOAD(0x5, &(0x7f00000007c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000880)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$PROG_LOAD(0x5, &(0x7f0000000d00)={0x3, 0x9, &(0x7f0000000380)=@raw=[@tail_call={{0x18, 0x2, 0x1, 0x0, r0}}, @map_val={0x18, 0x4, 0x2, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x3}, @cb_func={0x18, 0xa}], &(0x7f0000000400)='syzkaller\x00', 0xfffffe01, 0xb1, &(0x7f00000004c0)=""/177, 0x40f00, 0x6, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f00000005c0)={0x7fff, 0x3}, 0x8, 0x10, 0x0, 0x0, 0x0, r2, 0x0, &(0x7f0000000c80)=[r0, r0, r3, r3, r3, r0], 0x0, 0x10, 0x40}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r4}, 0x18)
r5 = syz_open_procfs(0x0, &(0x7f0000000040)='fdinfo\x00')
getdents64(r5, &(0x7f0000000fc0)=""/224, 0xe0)
ioctl$int_in(r3, 0x5452, &(0x7f0000000000)=0x9)
getuid()
getsockopt$sock_cred(0xffffffffffffffff, 0x1, 0x11, &(0x7f0000000140), &(0x7f0000000180)=0xc)
io_uring_enter(r5, 0x57a3, 0x6e7a, 0x8, &(0x7f00000000c0)={[0x6]}, 0x8)
r6 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10)
r7 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000200), 0xffffffffffffffff)
r8 = gettid()
sendmsg$NL802154_CMD_SET_WPAN_PHY_NETNS(r6, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f00000002c0)=ANY=[@ANYBLOB='$\x00\x00\x00', @ANYRES16=r7, @ANYBLOB="010028bd7000ffdbdf2514000000080001000100000008001c00", @ANYRES32=r8, @ANYBLOB], 0x24}, 0x1, 0x0, 0x0, 0x20000040}, 0x4000000)

1.196342763s ago: executing program 8 (id=670):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
r1 = syz_genetlink_get_family_id$ipvs(&(0x7f00000018c0), r0)
sendmsg$IPVS_CMD_NEW_DAEMON(r0, &(0x7f0000001ac0)={0x0, 0x0, &(0x7f0000001a80)={&(0x7f00000004c0)=ANY=[@ANYBLOB='x\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="01002abd7000ffdbdf25090000006400038008000100010000000800030004000000140002007665744e315f6d616376746170000000060004000200000008000500e0000000140002006970766c61"], 0x78}, 0x1, 0x0, 0x0, 0x20000000}, 0x0)

1.132341438s ago: executing program 9 (id=671):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000002040)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x48)
bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00}, 0x94)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000f00)='kfree\x00', r1}, 0x10)
r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x11, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000004bc311ec8500000075000000a70000000800000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000000c0)='percpu_alloc_percpu\x00', r2}, 0x10)
syz_io_uring_setup(0x111, &(0x7f0000000340)={0x0, 0x11, 0x2, 0x4}, 0x0, 0x0)

972.640201ms ago: executing program 8 (id=672):
sendmmsg$unix(0xffffffffffffffff, 0x0, 0x0, 0x0)
recvmmsg(0xffffffffffffffff, 0x0, 0x0, 0x2, 0x0)
socket$key(0xf, 0x3, 0x2)
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0e000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
bpf$MAP_UPDATE_BATCH(0x1a, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10)
sync_file_range(0xffffffffffffffff, 0x0, 0x0, 0x0)

846.886321ms ago: executing program 8 (id=673):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2a, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={0x0, r1}, 0x18)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0)
epoll_create1(0x80000)
socket$inet6(0xa, 0x3, 0xff)
r2 = bpf$PROG_LOAD(0x5, 0x0, 0x0)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r2}, 0x10)
bpf$MAP_CREATE(0x0, &(0x7f0000000440)=ANY=[@ANYBLOB="07000000040000000800000001", @ANYRES32, @ANYBLOB="0000000a7203132e86cb659f47d9513c192945859d1c2c68970000000000000080000000000000504c4a6f3f2df0fcd940e10935ecbb5c38b68cb3bf2c723a8db0792126742d1a92032edffb"], 0x48)
semtimedop(0x0, &(0x7f00000003c0)=[{0x2, 0x4, 0x1800}], 0x1, 0x0)
semop(0x0, &(0x7f00000000c0)=[{0x2}], 0x1)
r3 = mq_open(&(0x7f0000000000)='!selinu\xff\x7f\x00\x00inux\x00T\x8b\xb5\xf3\xcb\xdd\xe3\xbf2\x86\x01\x84\xdd\x8a\x8f_l\xa1L\xb1\xef\xb2\xc9\xf7+C\xb2\x8e9\xb8\xec\x1a\xe5\xaeq\x8fZ\xff\xbcY+\xaf0<\xa3\xb8\"Zm\x1c\x18\x11\x93\xb5z \xc2\x8b\xa9\xc5\x9es\t\xfe\x002\xa0-\xaf\xcdP\x9f\xe5Iv\xce*\xa8\xa3\x14i\x05\x8f\x9b\x1eB\x9f\x9d#E\x19\xdc\xfe\xc7\xeb\xb5\xcd\xc8\xe2U\xce\x00\x00', 0x6e93ebbbcc0884f2, 0x2c, &(0x7f0000000300)={0x0, 0x1, 0x3})
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedsend(r3, 0x0, 0x0, 0x0, 0x0)
mq_timedreceive(r3, &(0x7f0000000340)=""/200, 0xc8, 0x0, 0x0)

677.515885ms ago: executing program 7 (id=674):
sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5, 0x0, 0x1, 0x0, 0x0, 0x0, 0xfffffffffffffffe, 0xfffffffc}, 0x0)
r0 = syz_open_procfs(0x0, &(0x7f0000000040)='net/route\x00')
pread64(r0, 0x0, 0x0, 0x200)

488.64928ms ago: executing program 8 (id=675):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x30000c6, &(0x7f0000000080), 0x1, 0x561, &(0x7f0000000f80)="$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")
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x3, 0x8, &(0x7f00000033c0)=ANY=[@ANYBLOB="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"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls}, 0x1b)
bpf$BPF_PROG_DETACH(0x1c, &(0x7f0000000380)=ANY=[@ANYRES32=r0, @ANYRES32=r0, @ANYBLOB="2f0000001220"], 0x20)
futex(0x0, 0x85, 0x0, 0x0, &(0x7f0000000780), 0x14fffffe)
setxattr$incfs_metadata(&(0x7f0000000300)='./file1\x00', &(0x7f0000000340), &(0x7f0000000800)="aa8176c9e59be67c81bf0186c0597a449520030633719df43d77098d28", 0x1d, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)
lsetxattr$trusted_overlay_upper(&(0x7f00000001c0)='./file1\x00', &(0x7f0000000180), &(0x7f00000001c0)=ANY=[], 0x361, 0x0)

281.337517ms ago: executing program 7 (id=676):
r0 = gettid()
timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x800000000004, @tid=r0}, &(0x7f0000bbdffc)=<r1=>0x0)
timer_settime(r1, 0x0, &(0x7f0000000340)={{0x0, 0x989680}, {0x0, 0x989680}}, 0x0)
r2 = timerfd_create(0x0, 0x0)
sendmsg$RDMA_NLDEV_CMD_NEWLINK(0xffffffffffffffff, &(0x7f0000000340)={0x0, 0x0, 0x0}, 0x0)
readv(r2, 0x0, 0x0)

280.871467ms ago: executing program 5 (id=677):
r0 = socket(0x2, 0x80805, 0x0)
sendmmsg$inet_sctp(r0, 0x0, 0x0, 0x0)
sendmmsg$inet_sctp(r0, &(0x7f00000032c0), 0x0, 0x0)
r1 = socket$nl_route(0x10, 0x3, 0x0)
r2 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000a00)=ANY=[@ANYBLOB="0200000004000000080000000100000080"], 0x48)
bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000480)={r2}, 0x4)
r3 = bpf$PROG_LOAD(0x5, &(0x7f00000002c0)={0x11, 0x18, &(0x7f0000000080)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000000000018230000", @ANYRES32=r2, @ANYBLOB="0000000000000000b70500000000000085000000a5000000180100002020640500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000a50000000800000095"], &(0x7f0000000180)='GPL\x00', 0x1, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='kfree\x00', r3, 0x0, 0x4}, 0x18)
r4 = syz_open_procfs(0x0, &(0x7f0000000140)='map_files\x00')
ioctl$TUNATTACHFILTER(r4, 0x401054d5, &(0x7f0000000280)={0x4, &(0x7f0000000200)=[{0x6, 0x7, 0x0, 0xfffffff7}, {0xfff, 0x5, 0x1, 0x80000001}, {0x7ff, 0x0, 0x0, 0xa}, {0xfff, 0x7, 0x9, 0x19f8}]})
getdents(r4, &(0x7f0000000040)=""/215, 0xd7)
r5 = socket$can_j1939(0x1d, 0x2, 0x7)
ioctl$ifreq_SIOCGIFINDEX_vcan(r5, 0x8933, &(0x7f00000000c0)={'vcan0\x00', <r6=>0x0})
bind$can_j1939(r5, &(0x7f0000000340)={0x1d, r6, 0x0, {0x2, 0x0, 0x6}, 0xfe}, 0x18)
setsockopt$sock_int(r5, 0x1, 0x6, &(0x7f0000000040)=0x1, 0x4)
sendmsg$inet(r5, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f0000000540)="81b641f1f3843704b6", 0x9}], 0x1}, 0x4048081)
sendmsg$nl_route_sched(r1, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)=@newtfilter={0x24, 0x11, 0x1, 0x70bd28, 0x0, {0x0, 0x0, 0x74, r6, {0xfffd, 0xffeb}, {0x1, 0x1}, {0xfff2, 0xd}}}, 0x24}, 0x1, 0xf0ffffffffffff, 0x0, 0x4012}, 0x850)

170.098246ms ago: executing program 9 (id=678):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001fc0)=ANY=[@ANYBLOB="19000000040000000800000008"], 0x48)
r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000900)={0x11, 0xc, &(0x7f00000003c0)=ANY=[@ANYRESDEC=r0, @ANYRES64=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x42359a97a60bac0e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x8}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f0000000340)='xen_mc_entry\x00', r1}, 0x18)
r2 = syz_open_dev$sg(&(0x7f0000000c40), 0x0, 0x0)
ioctl$SG_BLKTRACETEARDOWN(r2, 0x1276, 0x0)
r3 = socket(0x10, 0x3, 0x0)
ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f0000000440)={'ip6tnl0\x00', <r4=>0x0})
sendmsg$nl_route_sched(r3, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000280)=@gettfilter={0x34, 0x2e, 0x102, 0x70bd29, 0x25dfdbfe, {0x0, 0x0, 0x0, r4, {0x7, 0x2}, {0x3, 0xd}, {0x0, 0xe}}, [{0x8, 0xb, 0xfb4}, {0x8, 0xb, 0x11}]}, 0x34}}, 0x0)
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000000100), 0x2, 0x500, &(0x7f0000000500)="$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")
r5 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x101042, 0x8)
r6 = openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x143042, 0x58)
pwritev2(r6, &(0x7f0000000100)=[{&(0x7f0000000080)="ff", 0xabfb}], 0x1, 0x5405, 0x0, 0x0)
r7 = open(&(0x7f0000000240)='./file1\x00', 0x145142, 0x0)
sendfile(r7, r7, 0x0, 0x800000009)
ioctl$EXT4_IOC_MIGRATE(r5, 0x6609)

0s ago: executing program 7 (id=679):
creat(&(0x7f0000000080)='./file0\x00', 0xa)
r0 = inotify_init()
inotify_add_watch(r0, &(0x7f0000000280)='./file0\x00', 0x200009c8)
unlink(&(0x7f0000000000)='./file0\x00')

kernel console output (not intermixed with test programs):

[ T5976] EXT4-fs (loop0): 1 truncate cleaned up
[   90.508638][ T5976] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[   90.678814][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.685926][ T5982] syz.3.33[5982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.687961][ T5982] syz.3.33[5982] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[   90.707170][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   90.843698][ T5984] $Hÿ: renamed from bond0 (while UP)
[   90.896901][ T5984] $Hÿ: entered promiscuous mode
[   90.908183][ T5986] loop2: detected capacity change from 0 to 512
[   90.939769][ T5984] bond_slave_0: entered promiscuous mode
[   90.949726][ T5984] bond_slave_1: entered promiscuous mode
[   91.052377][ T5986] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[   91.422614][ T5986] ext4 filesystem being mounted at /5/bus supports timestamps until 2038-01-19 (0x7fffffff)
[   91.893246][ T5986] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.34: corrupted inode contents
[   91.945158][ T5986] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.34: mark_inode_dirty error
[   91.992050][ T5986] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.34: corrupted inode contents
[   92.061182][ T6004] vlan2: entered allmulticast mode
[   92.068737][ T6005] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.34: corrupted inode contents
[   92.078784][ T6004] bridge_slave_0: entered allmulticast mode
[   92.101330][ T6005] EXT4-fs error (device loop2): ext4_dirty_inode:6106: inode #2: comm syz.2.34: mark_inode_dirty error
[   92.136851][ T6005] EXT4-fs error (device loop2): ext4_do_update_inode:5230: inode #2: comm syz.2.34: corrupted inode contents
[   92.153344][   T55] cfg80211: failed to load regulatory.db
[   92.218989][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   92.485816][ T6017] loop2: detected capacity change from 0 to 1764
[   92.493276][ T6013] netlink: 8 bytes leftover after parsing attributes in process `syz.1.43'.
[   92.512013][ T6016] netlink: 'syz.0.42': attribute type 10 has an invalid length.
[   92.584688][ T6016] 8021q: adding VLAN 0 to HW filter on device batadv0
[   92.640711][ T6016] bond0: (slave batadv0): Enslaving as an active interface with an up link
[   92.862320][ T6028] random: crng reseeded on system resumption
[   93.313044][   T28] kauditd_printk_skb: 7 callbacks suppressed
[   93.313059][   T28] audit: type=1326 audit(1754786311.143:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[   93.388004][   T28] audit: type=1326 audit(1754786311.173:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=120 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[   93.456969][   T28] audit: type=1326 audit(1754786311.173:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6044 comm="syz.0.54" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[   94.656086][ T6073] netlink: 'syz.3.61': attribute type 1 has an invalid length.
[   94.917016][ T6077] loop0: detected capacity change from 0 to 128
[   95.017096][   T28] audit: type=1800 audit(1754786312.843:20): pid=6077 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.62" name="file2" dev="loop0" ino=1048592 res=0 errno=0
[   95.017539][ T6079] loop2: detected capacity change from 0 to 512
[   95.050413][ T6077] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   95.084454][ T6077] FAT-fs (loop0): Filesystem has been set read-only
[   95.113962][ T6077] syz.0.62: attempt to access beyond end of device
[   95.113962][ T6077] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   95.132475][ T6077] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   95.144892][ T6077] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   95.157774][ T6079] EXT4-fs (loop2): orphan cleanup on readonly fs
[   95.159217][ T6084] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   95.200810][ T6079] Quota error (device loop2): find_tree_dqentry: Cycle in quota tree detected: block 2 index 0
[   95.215539][ T6084] syz.0.62: attempt to access beyond end of device
[   95.215539][ T6084] loop0: rw=524288, sector=2065, nr_sectors = 8 limit=128
[   95.230097][ T6084] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   95.238083][ T6084] FAT-fs (loop0): error, invalid access to FAT (entry 0x00000100)
[   95.244454][ T6079] Quota error (device loop2): qtree_read_dquot: Can't read quota structure for id 0
[   95.261502][ T6077] syz.0.62: attempt to access beyond end of device
[   95.261502][ T6077] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.332018][ T6079] EXT4-fs error (device loop2): ext4_acquire_dquot:6938: comm syz.2.63: Failed to acquire dquot type 1
[   95.351257][ T6086] netlink: 56 bytes leftover after parsing attributes in process `syz.0.62'.
[   95.381840][ T6084] syz.0.62: attempt to access beyond end of device
[   95.381840][ T6084] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.395682][ T6079] EXT4-fs (loop2): 1 truncate cleaned up
[   95.418433][ T6079] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[   95.429186][ T6077] syz.0.62: attempt to access beyond end of device
[   95.429186][ T6077] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.465246][ T6079] EXT4-fs (loop2): warning: mounting fs with errors, running e2fsck is recommended
[   95.468660][ T6084] syz.0.62: attempt to access beyond end of device
[   95.468660][ T6084] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.493828][ T6077] syz.0.62: attempt to access beyond end of device
[   95.493828][ T6077] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.517758][ T6090] batadv_slave_0: entered promiscuous mode
[   95.521790][ T6079] EXT4-fs warning (device loop2): read_mmp_block:115: Error -117 while reading MMP block 8
[   95.529861][ T6077] syz.0.62: attempt to access beyond end of device
[   95.529861][ T6077] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.550983][ T6090] netlink: 4 bytes leftover after parsing attributes in process `syz.1.67'.
[   95.554569][ T6077] syz.0.62: attempt to access beyond end of device
[   95.554569][ T6077] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.569665][ T6090] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   95.592464][ T6077] syz.0.62: attempt to access beyond end of device
[   95.592464][ T6077] loop0: rw=0, sector=2065, nr_sectors = 8 limit=128
[   95.674125][ T6093] random: crng reseeded on system resumption
[   95.706564][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[   95.776895][ T6090] batadv_slave_0 (unregistering): left promiscuous mode
[   95.816332][ T6090] batman_adv: batadv0: Removing interface: batadv_slave_0
[   96.017824][   T28] audit: type=1326 audit(1754786313.843:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6098 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[   96.083641][ T6100] loop0: detected capacity change from 0 to 256
[   96.099904][   T28] audit: type=1326 audit(1754786313.843:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6098 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[   96.189518][   T28] audit: type=1326 audit(1754786313.843:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6098 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[   96.239056][   T28] audit: type=1326 audit(1754786313.843:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6098 comm="syz.2.70" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[   96.983126][ T6120] netlink: 32 bytes leftover after parsing attributes in process `syz.1.76'.
[   97.296131][ T6128] loop0: detected capacity change from 0 to 256
[   97.360074][ T6132] sch_tbf: burst 3298 is lower than device lo mtu (65550) !
[   98.781042][ T6152] random: crng reseeded on system resumption
[   98.824513][ T6153] netlink: 24 bytes leftover after parsing attributes in process `syz.0.88'.
[   99.156449][ T6158] netlink: 4 bytes leftover after parsing attributes in process `syz.0.88'.
[   99.157150][ T6157] loop2: detected capacity change from 0 to 8192
[   99.225358][ T6157] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[   99.571229][ T6157] netlink: 'syz.2.89': attribute type 4 has an invalid length.
[   99.579491][ T6157] netlink: 17 bytes leftover after parsing attributes in process `syz.2.89'.
[   99.619756][ T6167] netlink: 24 bytes leftover after parsing attributes in process `syz.1.90'.
[   99.792680][   T28] kauditd_printk_skb: 41 callbacks suppressed
[   99.792695][   T28] audit: type=1326 audit(1754786317.623:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6168 comm="syz.0.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[   99.833772][   T28] audit: type=1326 audit(1754786317.623:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6168 comm="syz.0.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[   99.863631][   T28] audit: type=1326 audit(1754786317.623:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6168 comm="syz.0.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[   99.917039][   T28] audit: type=1326 audit(1754786317.723:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6168 comm="syz.0.91" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  100.065279][ T6175] loop3: detected capacity change from 0 to 256
[  100.377752][   T28] audit: type=1326 audit(1754786318.203:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  100.429001][ T6185] loop3: detected capacity change from 0 to 512
[  100.456543][ T6185] ext4: Unknown parameter 'measure'
[  100.460370][   T28] audit: type=1326 audit(1754786318.203:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  100.516469][   T28] audit: type=1326 audit(1754786318.203:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  100.563737][   T28] audit: type=1326 audit(1754786318.203:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  100.640947][   T28] audit: type=1326 audit(1754786318.213:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  100.697347][   T28] audit: type=1326 audit(1754786318.213:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6184 comm="syz.3.98" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  101.085785][ T6198] random: crng reseeded on system resumption
[  101.247935][ T6205] loop2: detected capacity change from 0 to 256
[  101.528227][ T6213] netlink: 256 bytes leftover after parsing attributes in process `syz.2.109'.
[  101.917829][ T6226] netlink: 4 bytes leftover after parsing attributes in process `syz.0.113'.
[  101.937860][ T6226] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.950045][ T6226] batman_adv: batadv0: Removing interface: batadv_slave_0
[  101.958962][ T6226] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  101.970485][ T6226] batman_adv: batadv0: Removing interface: batadv_slave_1
[  102.072217][ T6230] netlink: 240 bytes leftover after parsing attributes in process `syz.1.114'.
[  102.099192][ T6226] bond0: (slave batadv0): Releasing backup interface
[  102.465153][ T6240] loop3: detected capacity change from 0 to 256
[  103.098408][ T6259] ALSA: seq fatal error: cannot create timer (-22)
[  103.147582][ T6260] random: crng reseeded on system resumption
[  103.433292][ T6268] syz.2.130[6268] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.433427][ T6268] syz.2.130[6268] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  103.476096][ T6269] loop0: detected capacity change from 0 to 256
[  103.820926][ T6275] netlink: 12 bytes leftover after parsing attributes in process `syz.2.133'.
[  104.252047][ T6289] netlink: 'syz.2.138': attribute type 1 has an invalid length.
[  105.293837][ T6295] loop3: detected capacity change from 0 to 256
[  105.583077][ T6304] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[  105.896664][ T6311] loop3: detected capacity change from 0 to 512
[  106.675331][ T6319] netlink: 'syz.1.150': attribute type 1 has an invalid length.
[  107.027586][ T6330] loop0: detected capacity change from 0 to 256
[  107.171493][ T6337] loop2: detected capacity change from 0 to 1024
[  107.181818][ T6337] EXT4-fs: Ignoring removed mblk_io_submit option
[  107.257470][ T6337] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  107.327267][ T6346] netlink: 'syz.0.158': attribute type 21 has an invalid length.
[  107.335291][ T6346] netlink: 132 bytes leftover after parsing attributes in process `syz.0.158'.
[  107.489228][   T28] kauditd_printk_skb: 66 callbacks suppressed
[  107.489241][   T28] audit: type=1326 audit(1754786325.313:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6349 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  107.531104][   T28] audit: type=1326 audit(1754786325.353:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6349 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  107.557032][   T28] audit: type=1326 audit(1754786325.363:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6349 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  107.579972][   T28] audit: type=1326 audit(1754786325.363:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6349 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  107.604595][   T28] audit: type=1326 audit(1754786325.363:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6349 comm="syz.0.159" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  107.826364][ T6359] bridge0: entered promiscuous mode
[  107.832558][ T6359] vlan2: entered promiscuous mode
[  108.013471][ T6363] netlink: 32 bytes leftover after parsing attributes in process `syz.1.165'.
[  108.025772][ T6363] netlink: 216 bytes leftover after parsing attributes in process `syz.1.165'.
[  108.039042][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  108.053358][ T6363] netlink: 216 bytes leftover after parsing attributes in process `syz.1.165'.
[  108.080596][ T6363] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check.
[  108.363814][   T28] audit: type=1326 audit(1754786326.193:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6373 comm="syz.3.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  108.406856][ T6374] loop3: detected capacity change from 0 to 1024
[  108.416013][   T28] audit: type=1326 audit(1754786326.223:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6373 comm="syz.3.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  108.454542][   T28] audit: type=1326 audit(1754786326.223:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6373 comm="syz.3.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  108.486319][   T28] audit: type=1326 audit(1754786326.223:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6373 comm="syz.3.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  108.510473][ T6374] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[  108.522913][ T6374] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  108.539955][   T28] audit: type=1326 audit(1754786326.223:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6373 comm="syz.3.170" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f48fbf8ec23 code=0x7ffc0000
[  108.715900][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[  109.132120][ T6394] netlink: 148 bytes leftover after parsing attributes in process `syz.1.178'.
[  109.141581][ T6397] netlink: 14 bytes leftover after parsing attributes in process `syz.3.179'.
[  109.465104][ T6406] smc: net device bond0 applied user defined pnetid SYZ2
[  109.473393][ T6406] smc: net device bond0 erased user defined pnetid SYZ2
[  109.878548][ T6420] loop2: detected capacity change from 0 to 512
[  109.896532][ T6420] EXT4-fs: Ignoring removed oldalloc option
[  109.915906][ T6420] ext4: Unknown parameter 'smackfsfloor'
[  110.350033][ T6431] random: crng reseeded on system resumption
[  110.624604][ T6436] netlink: 28 bytes leftover after parsing attributes in process `syz.0.193'.
[  110.927717][ T6446] loop2: detected capacity change from 0 to 136
[  111.016158][ T6446] Attempt to read inode for relocated directory
[  112.976649][ T6457] sched: RT throttling activated
[  114.454958][ T6459] tty tty3: ldisc open failed (-12), clearing slot 2
[  118.226200][ T6506] netlink: 24 bytes leftover after parsing attributes in process `syz.2.213'.
[  118.345842][ T6508] Driver unsupported XDP return value 0 on prog  (id 103) dev N/A, expect packet loss!
[  118.529344][ T6510] netlink: 28 bytes leftover after parsing attributes in process `syz.2.215'.
[  118.563095][ T6510] netlink: 28 bytes leftover after parsing attributes in process `syz.2.215'.
[  119.239085][ T6524] loop3: detected capacity change from 0 to 512
[  119.464319][ T6524] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  119.520092][ T6524] ext4 filesystem being mounted at /56/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  119.725003][ T6524] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.220: corrupted inode contents
[  119.887236][ T6524] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #2: comm syz.3.220: mark_inode_dirty error
[  120.014800][ T6524] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.220: corrupted inode contents
[  120.190552][ T6541] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.220: corrupted inode contents
[  120.263013][ T6541] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #2: comm syz.3.220: mark_inode_dirty error
[  120.325597][ T6541] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.220: corrupted inode contents
[  120.402440][ T6541] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.220: mark_inode_dirty error
[  120.448907][ T6541] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #2: comm syz.3.220: corrupted inode contents
[  120.529600][ T6541] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #2: comm syz.3.220: mark_inode_dirty error
[  120.708217][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  121.998380][ T6546] loop2: detected capacity change from 0 to 8192
[  122.775412][ T6546] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  123.883883][ T6546] netlink: 'syz.2.226': attribute type 4 has an invalid length.
[  123.908432][ T6546] netlink: 17 bytes leftover after parsing attributes in process `syz.2.226'.
[  124.170944][ T6563] syz.3.230[6563] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  124.171160][ T6563] syz.3.230[6563] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  126.578244][ T6590] netlink: 24 bytes leftover after parsing attributes in process `syz.0.240'.
[  132.970104][ T6590] IPVS: Error connecting to the multicast addr
[  133.120093][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  133.521991][   T28] kauditd_printk_skb: 18 callbacks suppressed
[  133.522018][   T28] audit: type=1326 audit(1754786351.353:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6620 comm="syz.1.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  133.569538][   T28] audit: type=1326 audit(1754786351.353:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6620 comm="syz.1.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  133.603723][   T28] audit: type=1326 audit(1754786351.363:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6620 comm="syz.1.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  133.662574][   T28] audit: type=1326 audit(1754786351.363:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6620 comm="syz.1.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  133.709974][   T28] audit: type=1326 audit(1754786351.373:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6620 comm="syz.1.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=199 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  133.773637][   T28] audit: type=1326 audit(1754786351.373:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6620 comm="syz.1.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  133.804003][   T28] audit: type=1326 audit(1754786351.383:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6620 comm="syz.1.249" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  133.987527][ T6630] netlink: 300 bytes leftover after parsing attributes in process `syz.2.252'.
[  134.007626][ T6629] x_tables: ip_tables: TPROXY target: used from hooks FORWARD, but only usable from PREROUTING
[  134.372539][   T28] audit: type=1326 audit(1754786352.203:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.2.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[  134.447724][   T28] audit: type=1326 audit(1754786352.233:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.2.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[  134.519503][   T28] audit: type=1326 audit(1754786352.233:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6635 comm="syz.2.256" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[  134.980682][  T788] usb 3-1: new high-speed USB device number 2 using dummy_hcd
[  135.209682][  T788] usb 3-1: unable to get BOS descriptor or descriptor too short
[  135.227524][  T788] usb 3-1: unable to read config index 0 descriptor/start: -71
[  135.235604][  T788] usb 3-1: can't read configurations, error -71
[  135.312812][ T6659] loop0: detected capacity change from 0 to 512
[  135.340294][ T6659] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  135.353193][ T6659] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.368026][ T6659] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.460032][ T6659] netlink: 8 bytes leftover after parsing attributes in process `syz.0.264'.
[  135.522569][ T6655] loop0: detected capacity change from 0 to 1024
[  135.565108][ T6655] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  135.578911][ T6655] ext4 filesystem being mounted at /67/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  135.595156][ T6655] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  135.726447][ T6667] netlink: 24 bytes leftover after parsing attributes in process `syz.3.266'.
[  135.753188][ T6667] IPVS: Error connecting to the multicast addr
[  135.800271][ T6655] usb usb1: check_ctrlrecip: process 6655 (+}[@) requesting ep 01 but needs 81
[  136.322802][ T6684] loop2: detected capacity change from 0 to 1024
[  136.332031][ T6684] journal_path: Lookup failure for './file1'
[  136.338639][ T6684] EXT4-fs: error: could not find journal device path
[  136.357940][ T6678] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  136.433494][ T6645] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  137.500308][ T6707] loop2: detected capacity change from 0 to 512
[  137.554832][ T6707] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  137.583425][ T6707] ext4 filesystem being mounted at /65/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  137.646202][ T6707] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  137.829578][ T6645] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  137.834611][ T6707] netlink: 8 bytes leftover after parsing attributes in process `syz.2.279'.
[  138.382524][ T6727] netlink: 4 bytes leftover after parsing attributes in process `+}[@'.
[  138.406437][ T6727] bridge_slave_1: left allmulticast mode
[  138.416297][ T6727] bridge_slave_1: left promiscuous mode
[  138.439779][ T6727] bridge0: port 2(bridge_slave_1) entered disabled state
[  139.247589][ T6727] bridge_slave_0: left allmulticast mode
[  139.253672][ T6727] bridge_slave_0: left promiscuous mode
[  139.262156][ T6727] bridge0: port 1(bridge_slave_0) entered disabled state
[  139.876618][ T6740] netlink: 16 bytes leftover after parsing attributes in process `syz.0.295'.
[  140.023596][ T6740] ip6gretap0: entered promiscuous mode
[  140.102458][ T6740] ip6gretap0: left promiscuous mode
[  140.435818][ T6745] netlink: 16 bytes leftover after parsing attributes in process `syz.2.294'.
[  142.301404][ T6774] loop0: detected capacity change from 0 to 256
[  144.258912][ T6803] loop3: detected capacity change from 0 to 1024
[  144.393636][ T6803] __quota_error: 38 callbacks suppressed
[  144.393654][ T6803] Quota error (device loop3): do_check_range: Getting block 64 out of range 1-5
[  144.419562][ T6803] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  144.486571][ T6803] EXT4-fs error (device loop3): ext4_acquire_dquot:6938: comm syz.3.316: Failed to acquire dquot type 0
[  144.526499][ T6803] EXT4-fs error (device loop3): mb_free_blocks:1943: group 0, inode 13: block 144:freeing already freed block (bit 9); block bitmap corrupt.
[  144.570627][ T6803] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.316: corrupted inode contents
[  144.598197][ T6803] EXT4-fs error (device loop3): ext4_dirty_inode:6106: inode #13: comm syz.3.316: mark_inode_dirty error
[  144.634127][ T6803] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.316: corrupted inode contents
[  144.675179][ T6803] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #13: comm syz.3.316: mark_inode_dirty error
[  144.719281][ T6803] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.316: corrupted inode contents
[  144.740026][   T28] audit: type=1326 audit(1754786362.563:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6808 comm="syz.2.318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[  144.791891][ T6803] EXT4-fs error (device loop3) in ext4_orphan_del:305: Corrupt filesystem
[  144.807998][ T6803] EXT4-fs error (device loop3): ext4_do_update_inode:5230: inode #13: comm syz.3.316: corrupted inode contents
[  144.829502][   T28] audit: type=1326 audit(1754786362.563:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6808 comm="syz.2.318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=208 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[  144.874552][ T6803] EXT4-fs error (device loop3): ext4_truncate:4288: inode #13: comm syz.3.316: mark_inode_dirty error
[  144.909756][   T28] audit: type=1326 audit(1754786362.593:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6808 comm="syz.2.318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[  144.932496][ T6803] EXT4-fs error (device loop3) in ext4_process_orphan:347: Corrupt filesystem
[  144.971314][ T6803] EXT4-fs (loop3): 1 truncate cleaned up
[  144.978835][ T6803] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  145.019579][   T28] audit: type=1326 audit(1754786362.593:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6808 comm="syz.2.318" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f81ce98ebe9 code=0x7ffc0000
[  145.383015][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  145.684839][ T6829] loop3: detected capacity change from 0 to 256
[  146.241701][ T6845] netlink: 8 bytes leftover after parsing attributes in process `syz.2.326'.
[  146.306403][ T6850] loop3: detected capacity change from 0 to 512
[  146.360922][ T6850] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  146.401838][ T6850] ext4 filesystem being mounted at /82/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  146.424941][ T6850] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  146.548346][ T6850] netlink: 8 bytes leftover after parsing attributes in process `syz.3.325'.
[  147.757897][   T28] audit: type=1326 audit(1754786365.583:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.0.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  147.786263][   T28] audit: type=1326 audit(1754786365.583:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.0.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  147.824265][ T6885] loop0: detected capacity change from 0 to 128
[  147.832037][   T28] audit: type=1326 audit(1754786365.613:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.0.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  147.859123][   T28] audit: type=1326 audit(1754786365.613:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6884 comm="syz.0.338" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  148.146482][ T6895] loop0: detected capacity change from 0 to 256
[  148.178186][ T6895] FAT-fs (loop0): Directory bread(block 64) failed
[  148.199091][ T6895] FAT-fs (loop0): Directory bread(block 65) failed
[  148.206801][ T6895] FAT-fs (loop0): Directory bread(block 66) failed
[  148.236888][ T6895] FAT-fs (loop0): Directory bread(block 67) failed
[  148.247273][ T6895] FAT-fs (loop0): Directory bread(block 68) failed
[  148.264745][ T6895] FAT-fs (loop0): Directory bread(block 69) failed
[  148.278290][ T6895] FAT-fs (loop0): Directory bread(block 70) failed
[  148.293641][ T6895] FAT-fs (loop0): Directory bread(block 71) failed
[  148.301400][ T6895] FAT-fs (loop0): Directory bread(block 72) failed
[  148.308063][ T6895] FAT-fs (loop0): Directory bread(block 73) failed
[  150.300597][ T6917] random: crng reseeded on system resumption
[  152.477332][ T6934] loop1: detected capacity change from 0 to 8192
[  152.567513][ T6934] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  153.253299][ T6934] netlink: 'syz.1.353': attribute type 4 has an invalid length.
[  153.270984][ T6934] netlink: 17 bytes leftover after parsing attributes in process `syz.1.353'.
[  153.632252][ T6957] random: crng reseeded on system resumption
[  153.647645][ T6956] loop3: detected capacity change from 0 to 512
[  153.667596][ T6956] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[  157.348523][ T6977] netlink: 28 bytes leftover after parsing attributes in process `syz.0.365'.
[  157.486303][ T6978] loop0: detected capacity change from 0 to 512
[  157.494598][ T6978] EXT4-fs: Ignoring removed mblk_io_submit option
[  157.501460][ T6978] EXT4-fs: Ignoring removed bh option
[  158.329465][ T6978] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  158.341073][ T6978] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode
[  158.610358][ T6978] EXT4-fs (loop0): 1 truncate cleaned up
[  158.619432][ T6978] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  160.263369][ T6999] loop2: detected capacity change from 0 to 8192
[  160.324946][ T6999] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  160.380581][ T7004] random: crng reseeded on system resumption
[  161.564579][ T6999] netlink: 'syz.2.371': attribute type 4 has an invalid length.
[  161.592312][ T6999] netlink: 17 bytes leftover after parsing attributes in process `syz.2.371'.
[  161.635358][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  161.858871][ T7015] loop3: detected capacity change from 0 to 512
[  161.887004][ T7015] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[  161.941131][ T7015] EXT4-fs (loop3): 1 orphan inode deleted
[  161.946927][ T7015] EXT4-fs (loop3): 1 truncate cleaned up
[  161.974116][ T7015] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  161.996614][ T7013] nci: __nci_request: wait_for_completion_interruptible_timeout failed -512
[  162.040581][ T7015] EXT4-fs error (device loop3): htree_dirblock_to_tree:1112: inode #2: block 13: comm syz.3.376: bad entry in directory: inode out of bounds - offset=76, inode=524304, rec_len=16, size=1024 fake=0
[  162.146310][ T7015] EXT4-fs (loop3): Remounting filesystem read-only
[  162.284537][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  162.534068][ T7030] loop3: detected capacity change from 0 to 256
[  162.812669][   T28] kauditd_printk_skb: 1 callbacks suppressed
[  162.812685][   T28] audit: type=1326 audit(1754786380.643:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  162.932436][   T28] audit: type=1326 audit(1754786380.643:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  162.975168][   T28] audit: type=1326 audit(1754786380.683:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.010832][   T28] audit: type=1326 audit(1754786380.683:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.077564][   T28] audit: type=1326 audit(1754786380.683:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.117419][   T28] audit: type=1326 audit(1754786380.683:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.223195][   T28] audit: type=1326 audit(1754786380.683:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.279544][   T28] audit: type=1326 audit(1754786380.693:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.368094][   T28] audit: type=1326 audit(1754786380.693:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.453100][   T28] audit: type=1326 audit(1754786380.703:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7034 comm="syz.1.383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  163.591028][ T7052] loop0: detected capacity change from 0 to 256
[  163.609164][ T7046] loop3: detected capacity change from 0 to 8192
[  163.646236][ T7046] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  163.705529][ T7056] loop1: detected capacity change from 0 to 1024
[  163.889986][ T7056] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  163.896710][ T7061] netlink: 4696 bytes leftover after parsing attributes in process `syz.2.394'.
[  164.015108][ T5786] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  164.360167][ T7046] netlink: 'syz.3.387': attribute type 4 has an invalid length.
[  164.403809][ T7046] netlink: 17 bytes leftover after parsing attributes in process `syz.3.387'.
[  164.911114][ T7081] loop3: detected capacity change from 0 to 256
[  165.768642][ T7102] netlink: 28 bytes leftover after parsing attributes in process `syz.0.411'.
[  165.848229][ T7100] loop1: detected capacity change from 0 to 8192
[  165.888156][ T7100] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  166.610538][ T7120] loop0: detected capacity change from 0 to 1024
[  166.618931][ T7100] netlink: 'syz.1.410': attribute type 4 has an invalid length.
[  166.624374][ T7120] EXT4-fs: Ignoring removed orlov option
[  166.651218][ T7100] netlink: 17 bytes leftover after parsing attributes in process `syz.1.410'.
[  166.678066][ T7120] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  167.284193][ T7132] netlink: 28 bytes leftover after parsing attributes in process `syz.3.423'.
[  167.400233][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  167.642112][ T7143] random: crng reseeded on system resumption
[  168.424264][   T28] kauditd_printk_skb: 39 callbacks suppressed
[  168.424281][   T28] audit: type=1326 audit(1754786386.253:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  168.498923][   T28] audit: type=1326 audit(1754786386.253:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  168.572156][   T28] audit: type=1326 audit(1754786377.267:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  168.632973][   T28] audit: type=1326 audit(1754786377.267:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7165 comm="syz.3.436" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f48fbf8ebe9 code=0x7ffc0000
[  169.156596][ T5924] usb 4-1: new full-speed USB device number 2 using dummy_hcd
[  169.339476][ T5924] usb 4-1: device descriptor read/64, error -71
[  169.629525][ T5924] usb 4-1: new full-speed USB device number 3 using dummy_hcd
[  169.781782][ T5924] usb 4-1: device descriptor read/64, error -71
[  169.900625][ T5924] usb usb4-port1: attempt power cycle
[  170.250831][ T7196] random: crng reseeded on system resumption
[  170.312502][ T5924] usb 4-1: new full-speed USB device number 4 using dummy_hcd
[  170.360744][ T5924] usb 4-1: device descriptor read/8, error -71
[  170.641500][ T5924] usb 4-1: new full-speed USB device number 5 using dummy_hcd
[  170.694017][ T5924] usb 4-1: device descriptor read/8, error -71
[  170.834723][ T5924] usb usb4-port1: unable to enumerate USB device
[  171.031640][ T7222] netlink: 'syz.2.450': attribute type 10 has an invalid length.
[  171.065084][ T7222] team0: Port device dummy0 added
[  171.154862][   T28] audit: type=1326 audit(1754786379.987:280): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.0.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  171.226942][   T28] audit: type=1326 audit(1754786379.987:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.0.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  171.284944][   T28] audit: type=1326 audit(1754786379.987:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.0.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  171.350611][   T28] audit: type=1326 audit(1754786379.987:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.0.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  171.412050][   T28] audit: type=1326 audit(1754786379.987:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.0.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  171.416613][ T7229] loop0: detected capacity change from 0 to 256
[  171.452697][   T28] audit: type=1326 audit(1754786379.987:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7223 comm="syz.0.451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  171.530020][ T7229] FAT-fs (loop0): Directory bread(block 64) failed
[  171.538389][ T7229] FAT-fs (loop0): Directory bread(block 65) failed
[  171.545262][ T7229] FAT-fs (loop0): Directory bread(block 66) failed
[  171.555471][ T7229] FAT-fs (loop0): Directory bread(block 67) failed
[  171.574858][ T7229] FAT-fs (loop0): Directory bread(block 68) failed
[  171.582589][ T7229] FAT-fs (loop0): Directory bread(block 69) failed
[  171.591573][ T7229] FAT-fs (loop0): Directory bread(block 70) failed
[  171.598198][ T7229] FAT-fs (loop0): Directory bread(block 71) failed
[  171.609554][ T7229] FAT-fs (loop0): Directory bread(block 72) failed
[  171.616197][ T7229] FAT-fs (loop0): Directory bread(block 73) failed
[  171.863227][   T42] bio_check_eod: 869 callbacks suppressed
[  171.863243][   T42] kworker/u4:2: attempt to access beyond end of device
[  171.863243][   T42] loop0: rw=1, sector=1224, nr_sectors = 4 limit=256
[  172.053862][ T7244] netlink: 'syz.0.457': attribute type 29 has an invalid length.
[  172.063999][ T7244] netlink: 'syz.0.457': attribute type 29 has an invalid length.
[  172.120910][ T7244] loop0: detected capacity change from 0 to 512
[  172.155668][ T7244] EXT4-fs (loop0): revision level too high, forcing read-only mode
[  172.210268][ T7244] EXT4-fs (loop0): orphan cleanup on readonly fs
[  172.282533][ T7244] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #16: comm syz.0.457: corrupted inode contents
[  172.323316][ T7244] EXT4-fs (loop0): Remounting filesystem read-only
[  172.345327][ T7244] EXT4-fs (loop0): 1 truncate cleaned up
[  172.364131][   T48] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  172.384976][   T48] EXT4-fs (loop0): Quota write (off=5120, len=1024) cancelled because transaction is not started
[  172.397250][   T48] EXT4-fs (loop0): Quota write (off=8, len=24) cancelled because transaction is not started
[  172.412341][ T7244] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  172.417562][ T7253] random: crng reseeded on system resumption
[  172.430653][ T7244] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  172.723425][ T7258] loop0: detected capacity change from 0 to 512
[  172.758681][ T7258] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  173.072149][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  173.143619][ T7266] loop3: detected capacity change from 0 to 256
[  173.263611][ T7269] loop1: detected capacity change from 0 to 256
[  173.417286][ T7269] FAT-fs (loop1): Directory bread(block 64) failed
[  173.449427][ T7269] FAT-fs (loop1): Directory bread(block 65) failed
[  173.469986][ T7269] FAT-fs (loop1): Directory bread(block 66) failed
[  173.476808][ T7269] FAT-fs (loop1): Directory bread(block 67) failed
[  173.529767][ T7269] FAT-fs (loop1): Directory bread(block 68) failed
[  173.536483][ T7269] FAT-fs (loop1): Directory bread(block 69) failed
[  173.558926][ T7269] FAT-fs (loop1): Directory bread(block 70) failed
[  173.583006][ T7269] FAT-fs (loop1): Directory bread(block 71) failed
[  173.601762][ T7269] FAT-fs (loop1): Directory bread(block 72) failed
[  173.632290][ T7269] FAT-fs (loop1): Directory bread(block 73) failed
[  173.799169][ T7280] loop3: detected capacity change from 0 to 1024
[  173.830406][ T7280] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors
[  173.869395][ T7280] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869)
[  173.897641][ T7280] JBD2: no valid journal superblock found
[  173.912333][ T1105] kworker/u4:8: attempt to access beyond end of device
[  173.912333][ T1105] loop1: rw=1, sector=1224, nr_sectors = 4 limit=256
[  173.937353][ T7280] EXT4-fs (loop3): Could not load journal inode
[  173.960353][ T7280] netlink: 8 bytes leftover after parsing attributes in process `syz.3.469'.
[  174.245794][ T7293] serio: Serial port ttyS3
[  174.384006][ T7297] loop3: detected capacity change from 0 to 256
[  174.719599][ T7304] random: crng reseeded on system resumption
[  175.733527][ T7317] loop2: detected capacity change from 0 to 256
[  175.954015][ T7317] FAT-fs (loop2): Directory bread(block 64) failed
[  175.989467][ T7317] FAT-fs (loop2): Directory bread(block 65) failed
[  176.026885][ T7317] FAT-fs (loop2): Directory bread(block 66) failed
[  176.046961][ T7317] FAT-fs (loop2): Directory bread(block 67) failed
[  176.099378][ T7317] FAT-fs (loop2): Directory bread(block 68) failed
[  176.136487][ T7317] FAT-fs (loop2): Directory bread(block 69) failed
[  176.188844][ T7317] FAT-fs (loop2): Directory bread(block 70) failed
[  176.246232][ T7317] FAT-fs (loop2): Directory bread(block 71) failed
[  176.283700][ T7317] FAT-fs (loop2): Directory bread(block 72) failed
[  176.324710][ T7317] FAT-fs (loop2): Directory bread(block 73) failed
[  176.426295][ T7321] loop1: detected capacity change from 0 to 512
[  176.682118][ T1105] kworker/u4:8: attempt to access beyond end of device
[  176.682118][ T1105] loop2: rw=1, sector=1224, nr_sectors = 4 limit=256
[  176.894413][ T6645] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[  176.984505][ T7321] netlink: 'syz.1.480': attribute type 1 has an invalid length.
[  177.033107][ T7321] 8021q: adding VLAN 0 to HW filter on device bond1
[  177.414426][ T7329] loop2: detected capacity change from 0 to 256
[  177.599290][ T7331] loop3: detected capacity change from 0 to 1024
[  177.766300][ T7331] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  178.055323][ T7337] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.484'.
[  178.097729][ T7331] netlink: 16402 bytes leftover after parsing attributes in process `syz.3.484'.
[  178.298929][ T5798] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  178.328776][   T28] kauditd_printk_skb: 76 callbacks suppressed
[  178.328790][   T28] audit: type=1326 audit(1754786387.157:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="syz.1.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.404160][   T28] audit: type=1326 audit(1754786387.157:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="syz.1.486" exe="/root/syz-executor" sig=0 arch=c000003e syscall=157 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.491388][   T28] audit: type=1326 audit(1754786387.157:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.589555][   T28] audit: type=1326 audit(1754786387.197:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.643351][   T28] audit: type=1326 audit(1754786387.197:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.703958][   T28] audit: type=1326 audit(1754786387.207:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.827102][   T28] audit: type=1326 audit(1754786387.207:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.892117][   T28] audit: type=1326 audit(1754786387.207:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  178.914289][   T28] audit: type=1326 audit(1754786387.207:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  179.085225][   T28] audit: type=1326 audit(1754786387.207:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7339 comm="+}[@" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f30c818ebe9 code=0x7ffc0000
[  179.227543][ T7347] random: crng reseeded on system resumption
[  180.015884][ T7367] loop3: detected capacity change from 0 to 256
[  181.118510][ T7387] netlink: 28 bytes leftover after parsing attributes in process `syz.2.499'.
[  181.181323][ T7388] loop2: detected capacity change from 0 to 512
[  181.191670][ T7388] EXT4-fs: Ignoring removed mblk_io_submit option
[  181.198257][ T7388] EXT4-fs: Ignoring removed bh option
[  181.221762][ T7388] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  181.233292][ T7388] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[  181.259581][ T7388] EXT4-fs (loop2): 1 truncate cleaned up
[  181.268785][ T7388] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  182.778663][ T7408] loop0: detected capacity change from 0 to 512
[  182.923023][ T7408] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  183.028348][ T7408] ext4 filesystem being mounted at /128/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  183.140186][ T7408] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.508: corrupted inode contents
[  183.227832][ T7408] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #2: comm syz.0.508: mark_inode_dirty error
[  183.326413][ T7408] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.508: corrupted inode contents
[  183.391509][ T7416] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.508: corrupted inode contents
[  183.438293][ T7419] random: crng reseeded on system resumption
[  183.454936][ T7416] EXT4-fs error (device loop0): ext4_dirty_inode:6106: inode #2: comm syz.0.508: mark_inode_dirty error
[  183.532234][ T7416] EXT4-fs error (device loop0): ext4_do_update_inode:5230: inode #2: comm syz.0.508: corrupted inode contents
[  183.864994][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  184.686549][ T5786] syz-executor (5786) used greatest stack depth: 19976 bytes left
[  185.067574][ T5794] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  185.745022][ T4455] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.203550][ T4455] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.482577][ T4455] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  186.741699][ T5789] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  186.751909][ T5789] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  186.760905][ T5789] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  186.770229][ T5789] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  186.778712][ T5789] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  186.787095][ T5789] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  186.828234][ T7446] loop0: detected capacity change from 0 to 512
[  186.855914][ T4455] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  187.121562][ T7446] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  187.214125][ T7446] ext4 filesystem being mounted at /133/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  187.384731][ T7454] random: crng reseeded on system resumption
[  187.928521][ T5790] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  188.493112][   T28] kauditd_printk_skb: 19 callbacks suppressed
[  188.493127][   T28] audit: type=1326 audit(1754786397.327:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.553030][   T28] audit: type=1326 audit(1754786397.387:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.636376][   T28] audit: type=1326 audit(1754786397.387:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.709460][   T28] audit: type=1326 audit(1754786397.387:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.764802][   T28] audit: type=1326 audit(1754786397.427:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.865064][ T5789] Bluetooth: hci0: command tx timeout
[  188.868776][   T28] audit: type=1326 audit(1754786397.427:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.909796][   T28] audit: type=1326 audit(1754786397.427:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.934319][   T28] audit: type=1326 audit(1754786397.427:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  188.958323][   T28] audit: type=1326 audit(1754786397.427:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  189.020841][   T28] audit: type=1326 audit(1754786397.427:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7468 comm="syz.0.522" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffbb0b8ebe9 code=0x7ffc0000
[  191.889486][ T5789] Bluetooth: hci0: command tx timeout
[  192.988669][ T7443] chnl_net:caif_netlink_parms(): no params data found
[  193.304841][ T7511] random: crng reseeded on system resumption
[  193.899472][ T5789] Bluetooth: hci0: command tx timeout
[  194.282645][ T7443] bridge0: port 1(bridge_slave_0) entered blocking state
[  194.303550][ T7443] bridge0: port 1(bridge_slave_0) entered disabled state
[  194.329965][ T7443] bridge_slave_0: entered allmulticast mode
[  194.351018][ T7443] bridge_slave_0: entered promiscuous mode
[  194.549904][ T1280] ieee802154 phy0 wpan0: encryption failed: -22
[  194.727536][ T7529] syz.2.537[7529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  194.727850][ T7529] syz.2.537[7529] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  194.755548][ T7443] bridge0: port 2(bridge_slave_1) entered blocking state
[  194.836130][ T7443] bridge0: port 2(bridge_slave_1) entered disabled state
[  194.866887][ T7443] bridge_slave_1: entered allmulticast mode
[  194.881828][ T7443] bridge_slave_1: entered promiscuous mode
[  195.006288][ T7535] netlink: 'syz.2.537': attribute type 13 has an invalid length.
[  195.364088][ T7443] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  195.544975][ T4455] hsr_slave_0: left promiscuous mode
[  195.629285][ T4455] hsr_slave_1: left promiscuous mode
[  195.653733][ T4455] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  195.666329][ T4455] batman_adv: batadv0: Removing interface: batadv_slave_1
[  195.724305][ T4455] veth1_macvtap: left promiscuous mode
[  195.741837][ T4455] veth0_macvtap: left promiscuous mode
[  195.747997][ T4455] veth1_vlan: left promiscuous mode
[  195.755958][ T4455] veth0_vlan: left promiscuous mode
[  195.772272][ T7558] random: crng reseeded on system resumption
[  195.984058][ T5789] Bluetooth: hci0: command tx timeout
[  196.089969][ T4455] bond1 (unregistering): Released all slaves
[  196.165894][ T4455] bond0 (unregistering): Released all slaves
[  196.841026][ T4455] team0 (unregistering): Port device team_slave_1 removed
[  197.133390][ T4455] team0 (unregistering): Port device team_slave_0 removed
[  197.459169][ T4455] $Hÿ (unregistering): (slave bond_slave_1): Releasing backup interface
[  197.535701][ T4455] bond_slave_1 (unregistering): left promiscuous mode
[  197.849878][ T4455] $Hÿ (unregistering): (slave bond_slave_0): Releasing backup interface
[  197.870039][ T4455] bond_slave_0 (unregistering): left promiscuous mode
[  199.145198][ T4455] $Hÿ (unregistering): Released all slaves
[  199.211860][ T7443] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  199.226903][ T7582] random: crng reseeded on system resumption
[  199.505549][ T7443] team0: Port device team_slave_0 added
[  199.527608][ T7443] team0: Port device team_slave_1 added
[  199.642975][ T7443] batman_adv: batadv0: Adding interface: batadv_slave_0
[  199.654630][ T7443] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.745521][ T7443] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  199.794065][ T7443] batman_adv: batadv0: Adding interface: batadv_slave_1
[  199.839678][ T7443] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  199.908861][ T7443] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  200.197926][ T7443] hsr_slave_0: entered promiscuous mode
[  200.215404][ T7443] hsr_slave_1: entered promiscuous mode
[  200.754601][ T5793] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1
[  200.766090][ T5793] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9
[  200.780426][ T5793] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9
[  200.788835][ T5793] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4
[  200.802090][ T5793] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3
[  200.816539][ T5793] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2
[  201.178974][ T7443] netdevsim netdevsim4 netdevsim0: renamed from eth0
[  201.207582][ T5793] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  201.220187][ T5793] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  201.228621][ T5793] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  201.244748][ T5793] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  201.253726][ T5793] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  201.254290][ T7443] netdevsim netdevsim4 netdevsim1: renamed from eth1
[  201.270553][ T5793] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  201.299969][ T7443] netdevsim netdevsim4 netdevsim2: renamed from eth2
[  201.349052][ T7443] netdevsim netdevsim4 netdevsim3: renamed from eth3
[  201.632323][ T4455] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.703575][ T4455] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.742107][ T5795] Bluetooth: hci1: command 0x0406 tx timeout
[  201.869824][ T4455] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  201.973886][ T4455] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  202.126551][ T7601] chnl_net:caif_netlink_parms(): no params data found
[  202.228658][ T7443] 8021q: adding VLAN 0 to HW filter on device bond0
[  202.341719][ T7608] chnl_net:caif_netlink_parms(): no params data found
[  202.645002][ T7443] 8021q: adding VLAN 0 to HW filter on device team0
[  202.770984][   T12] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.778181][   T12] bridge0: port 1(bridge_slave_0) entered forwarding state
[  202.791611][ T7601] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.804624][ T7601] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.833675][ T7601] bridge_slave_0: entered allmulticast mode
[  202.848742][ T7601] bridge_slave_0: entered promiscuous mode
[  202.858185][ T7601] bridge0: port 2(bridge_slave_1) entered blocking state
[  202.865814][ T5789] Bluetooth: hci2: command tx timeout
[  202.879085][ T7601] bridge0: port 2(bridge_slave_1) entered disabled state
[  202.886667][ T7601] bridge_slave_1: entered allmulticast mode
[  202.904314][ T7601] bridge_slave_1: entered promiscuous mode
[  202.933431][ T7608] bridge0: port 1(bridge_slave_0) entered blocking state
[  202.940961][ T7608] bridge0: port 1(bridge_slave_0) entered disabled state
[  202.948213][ T7608] bridge_slave_0: entered allmulticast mode
[  202.956923][ T7608] bridge_slave_0: entered promiscuous mode
[  203.064927][ T5795] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[  203.081982][   T48] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.089128][   T48] bridge0: port 2(bridge_slave_1) entered forwarding state
[  203.094756][ T5795] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[  203.105092][ T5795] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[  203.114170][ T5795] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[  203.125776][ T5795] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3
[  203.137707][ T5795] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[  203.193602][ T7608] bridge0: port 2(bridge_slave_1) entered blocking state
[  203.201692][ T7608] bridge0: port 2(bridge_slave_1) entered disabled state
[  203.208899][ T7608] bridge_slave_1: entered allmulticast mode
[  203.216269][ T7608] bridge_slave_1: entered promiscuous mode
[  203.246334][ T7601] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  203.258889][ T7601] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  203.340063][ T5795] Bluetooth: hci3: command tx timeout
[  203.377814][ T7608] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  203.432005][ T7601] team0: Port device team_slave_0 added
[  203.447612][ T7608] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  203.484517][ T7601] team0: Port device team_slave_1 added
[  203.576293][ T7601] batman_adv: batadv0: Adding interface: batadv_slave_0
[  203.583366][ T7601] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  203.613198][ T7601] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  203.626426][ T7601] batman_adv: batadv0: Adding interface: batadv_slave_1
[  203.633791][ T7601] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  203.661110][ T7601] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  203.702507][ T7608] team0: Port device team_slave_0 added
[  203.715216][ T7608] team0: Port device team_slave_1 added
[  203.894282][ T7608] batman_adv: batadv0: Adding interface: batadv_slave_0
[  203.901747][ T7608] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  203.929041][ T7608] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  203.943724][ T7608] batman_adv: batadv0: Adding interface: batadv_slave_1
[  203.952102][ T7608] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  203.978392][ T7608] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  204.057440][ T7601] hsr_slave_0: entered promiscuous mode
[  204.067010][ T7601] hsr_slave_1: entered promiscuous mode
[  204.077140][ T7601] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  204.086642][ T7601] Cannot create hsr debugfs directory
[  204.373781][ T7608] hsr_slave_0: entered promiscuous mode
[  204.392719][ T7608] hsr_slave_1: entered promiscuous mode
[  204.401017][ T7608] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  204.408664][ T7608] Cannot create hsr debugfs directory
[  204.676210][ T7443] 8021q: adding VLAN 0 to HW filter on device batadv0
[  204.863831][ T7644] chnl_net:caif_netlink_parms(): no params data found
[  204.939552][ T5795] Bluetooth: hci2: command tx timeout
[  205.186489][ T5795] Bluetooth: hci1: command tx timeout
[  205.205316][ T4455] hsr_slave_0: left promiscuous mode
[  205.228785][ T4455] hsr_slave_1: left promiscuous mode
[  205.239746][ T4455] batman_adv: batadv0: Removing interface: batadv_slave_0
[  205.247689][ T4455] batman_adv: batadv0: Removing interface: batadv_slave_1
[  205.266638][ T4455] bridge_slave_1: left allmulticast mode
[  205.275149][ T4455] bridge_slave_1: left promiscuous mode
[  205.287443][ T4455] bridge0: port 2(bridge_slave_1) entered disabled state
[  205.305329][ T4455] bridge_slave_0: left allmulticast mode
[  205.314448][ T4455] bridge_slave_0: left promiscuous mode
[  205.325514][ T4455] bridge0: port 1(bridge_slave_0) entered disabled state
[  205.354545][ T4455] hsr_slave_0: left promiscuous mode
[  205.367447][ T4455] hsr_slave_1: left promiscuous mode
[  205.399590][ T4455] veth1_macvtap: left promiscuous mode
[  205.405318][ T4455] veth0_macvtap: left promiscuous mode
[  205.412365][ T4455] veth1_vlan: left promiscuous mode
[  205.417737][ T4455] veth0_vlan: left promiscuous mode
[  205.419510][ T5795] Bluetooth: hci3: command tx timeout
[  205.635516][ T4455] bond1 (unregistering): Released all slaves
[  206.085727][ T4455] team0 (unregistering): Port device team_slave_1 removed
[  206.128364][ T4455] team0 (unregistering): Port device team_slave_0 removed
[  206.178313][ T4455] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  206.224292][ T4455] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  206.430594][ T4455] team0 (unregistering): Port device dummy0 removed
[  206.660680][ T4455] bond0 (unregistering): Released all slaves
[  206.788911][ T4455] bond1 (unregistering): Released all slaves
[  207.019509][ T5795] Bluetooth: hci2: command tx timeout
[  207.259819][ T5795] Bluetooth: hci1: command tx timeout
[  207.499810][ T5795] Bluetooth: hci3: command tx timeout
[  207.707352][ T4455] bond0 (unregistering): Released all slaves
[  207.981714][ T7644] bridge0: port 1(bridge_slave_0) entered blocking state
[  207.988971][ T7644] bridge0: port 1(bridge_slave_0) entered disabled state
[  207.997763][ T7644] bridge_slave_0: entered allmulticast mode
[  208.006438][ T7644] bridge_slave_0: entered promiscuous mode
[  208.040685][ T7644] bridge0: port 2(bridge_slave_1) entered blocking state
[  208.048792][ T7644] bridge0: port 2(bridge_slave_1) entered disabled state
[  208.056365][ T7644] bridge_slave_1: entered allmulticast mode
[  208.064311][ T7644] bridge_slave_1: entered promiscuous mode
[  208.108652][ T7644] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  208.141192][ T7644] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  208.180802][ T7601] netdevsim netdevsim5 netdevsim0: renamed from eth0
[  208.243485][ T7644] team0: Port device team_slave_0 added
[  208.251761][ T7601] netdevsim netdevsim5 netdevsim1: renamed from eth1
[  208.266997][ T7601] netdevsim netdevsim5 netdevsim2: renamed from eth2
[  208.277613][ T7601] netdevsim netdevsim5 netdevsim3: renamed from eth3
[  208.307280][ T7644] team0: Port device team_slave_1 added
[  208.398386][ T7644] batman_adv: batadv0: Adding interface: batadv_slave_0
[  208.407134][ T7644] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.433985][ T7644] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  208.465582][ T7443] veth0_vlan: entered promiscuous mode
[  208.494290][ T7644] batman_adv: batadv0: Adding interface: batadv_slave_1
[  208.501544][ T7644] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  208.538135][ T7644] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  208.601609][ T7644] hsr_slave_0: entered promiscuous mode
[  208.608250][ T7644] hsr_slave_1: entered promiscuous mode
[  208.617187][ T7644] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  208.625086][ T7644] Cannot create hsr debugfs directory
[  208.687520][ T7443] veth1_vlan: entered promiscuous mode
[  208.712153][ T7608] netdevsim netdevsim6 netdevsim0: renamed from eth0
[  208.737009][ T7608] netdevsim netdevsim6 netdevsim1: renamed from eth1
[  208.796500][ T7608] netdevsim netdevsim6 netdevsim2: renamed from eth2
[  208.818457][ T7608] netdevsim netdevsim6 netdevsim3: renamed from eth3
[  209.030786][ T7443] veth0_macvtap: entered promiscuous mode
[  209.064861][ T7443] veth1_macvtap: entered promiscuous mode
[  209.105457][ T5795] Bluetooth: hci2: command tx timeout
[  209.168806][ T1004] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.275191][ T7443] batman_adv: batadv0: Interface activated: batadv_slave_0
[  209.308034][ T1004] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.340908][ T5795] Bluetooth: hci1: command tx timeout
[  209.371760][ T7443] batman_adv: batadv0: Interface activated: batadv_slave_1
[  209.391893][ T7601] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.403047][ T7443] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  209.418206][ T7443] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  209.428454][ T7443] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  209.442040][ T7443] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  209.467628][ T1004] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.517062][ T7644] netdevsim netdevsim7 netdevsim0: renamed from eth0
[  209.555770][ T1004] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  209.580488][ T5795] Bluetooth: hci3: command tx timeout
[  209.587523][ T7644] netdevsim netdevsim7 netdevsim1: renamed from eth1
[  209.629827][ T7644] netdevsim netdevsim7 netdevsim2: renamed from eth2
[  209.658686][ T7601] 8021q: adding VLAN 0 to HW filter on device team0
[  209.674455][ T7644] netdevsim netdevsim7 netdevsim3: renamed from eth3
[  209.697379][ T7608] 8021q: adding VLAN 0 to HW filter on device bond0
[  209.737376][   T48] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.744589][   T48] bridge0: port 1(bridge_slave_0) entered forwarding state
[  209.766689][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  209.776104][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  209.802573][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[  209.809888][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[  209.878655][ T7608] 8021q: adding VLAN 0 to HW filter on device team0
[  209.946529][ T1105] bridge0: port 1(bridge_slave_0) entered blocking state
[  209.953726][ T1105] bridge0: port 1(bridge_slave_0) entered forwarding state
[  210.044346][ T1105] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.051556][ T1105] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.064708][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  210.088950][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  210.217104][ T7601] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  210.297548][ T7644] 8021q: adding VLAN 0 to HW filter on device bond0
[  210.465037][ T7644] 8021q: adding VLAN 0 to HW filter on device team0
[  210.505439][ T7719] netlink: 4276 bytes leftover after parsing attributes in process `syz.4.515'.
[  210.561262][   T11] bridge0: port 1(bridge_slave_0) entered blocking state
[  210.568600][   T11] bridge0: port 1(bridge_slave_0) entered forwarding state
[  210.696265][ T1090] bridge0: port 2(bridge_slave_1) entered blocking state
[  210.703470][ T1090] bridge0: port 2(bridge_slave_1) entered forwarding state
[  210.729443][   T28] kauditd_printk_skb: 5 callbacks suppressed
[  210.729456][   T28] audit: type=1326 audit(1754786419.557:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  210.775380][ T7725] netlink: 156 bytes leftover after parsing attributes in process `syz.4.561'.
[  210.803808][   T28] audit: type=1326 audit(1754786419.557:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  210.862754][   T28] audit: type=1326 audit(1754786419.557:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  210.908186][   T28] audit: type=1326 audit(1754786419.557:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  210.945269][   T28] audit: type=1326 audit(1754786419.557:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  211.003204][   T28] audit: type=1326 audit(1754786419.557:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  211.031601][   T28] audit: type=1326 audit(1754786419.557:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  211.095961][   T28] audit: type=1326 audit(1754786419.557:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  211.102885][ T7601] 8021q: adding VLAN 0 to HW filter on device batadv0
[  211.167144][   T28] audit: type=1326 audit(1754786419.557:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  211.237497][ T7644] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network
[  211.279528][   T28] audit: type=1326 audit(1754786419.557:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7724 comm="syz.4.561" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f354538ebe9 code=0x7ffc0000
[  211.299413][ T7644] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  211.420117][ T5795] Bluetooth: hci1: command tx timeout
[  211.444336][ T7608] 8021q: adding VLAN 0 to HW filter on device batadv0
[  212.033071][ T1004] hsr_slave_0: left promiscuous mode
[  212.050871][ T1004] hsr_slave_1: left promiscuous mode
[  212.101705][ T1004] veth1_macvtap: left promiscuous mode
[  212.107293][ T1004] veth0_macvtap: left promiscuous mode
[  212.125869][ T1004] veth1_vlan: left promiscuous mode
[  212.140565][ T1004] veth0_vlan: left promiscuous mode
[  213.029487][ T5789] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[  213.045474][ T5789] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[  213.054159][ T5789] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[  213.064856][ T5789] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[  213.072896][ T5789] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3
[  213.089246][ T5789] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[  213.177395][ T1004] team0 (unregistering): Port device team_slave_1 removed
[  213.223757][ T1004] team0 (unregistering): Port device team_slave_0 removed
[  213.265434][ T1004] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  213.310305][ T1004] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  213.753934][ T1004] bond0 (unregistering): Released all slaves
[  213.867340][ T7644] 8021q: adding VLAN 0 to HW filter on device batadv0
[  214.074664][ T7601] veth0_vlan: entered promiscuous mode
[  214.132914][ T7601] veth1_vlan: entered promiscuous mode
[  214.461469][ T7601] veth0_macvtap: entered promiscuous mode
[  214.555889][ T7601] veth1_macvtap: entered promiscuous mode
[  214.598303][ T7608] veth0_vlan: entered promiscuous mode
[  214.624003][ T7772] chnl_net:caif_netlink_parms(): no params data found
[  214.675348][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  214.688599][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.702384][ T7601] batman_adv: batadv0: Interface activated: batadv_slave_0
[  214.723619][ T7608] veth1_vlan: entered promiscuous mode
[  214.762531][ T1004] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  214.842199][ T7601] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  214.864103][ T7601] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  214.876194][ T7601] batman_adv: batadv0: Interface activated: batadv_slave_1
[  214.907403][ T1004] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.041853][ T1004] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.065122][ T7601] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.075670][ T7601] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.085561][ T7601] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.094490][ T7601] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  215.107625][ T7772] bridge0: port 1(bridge_slave_0) entered blocking state
[  215.120218][ T7772] bridge0: port 1(bridge_slave_0) entered disabled state
[  215.127423][ T7772] bridge_slave_0: entered allmulticast mode
[  215.134604][ T7772] bridge_slave_0: entered promiscuous mode
[  215.143596][ T7772] bridge0: port 2(bridge_slave_1) entered blocking state
[  215.152307][ T7772] bridge0: port 2(bridge_slave_1) entered disabled state
[  215.159934][ T7772] bridge_slave_1: entered allmulticast mode
[  215.166865][ T7772] bridge_slave_1: entered promiscuous mode
[  215.180379][ T5789] Bluetooth: hci0: command tx timeout
[  215.223555][ T1004] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  215.246751][ T7772] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  215.261133][ T7608] veth0_macvtap: entered promiscuous mode
[  215.306622][ T7772] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  215.336409][ T7644] veth0_vlan: entered promiscuous mode
[  215.388043][ T7772] team0: Port device team_slave_0 added
[  215.412445][ T7644] veth1_vlan: entered promiscuous mode
[  215.422547][ T7608] veth1_macvtap: entered promiscuous mode
[  215.432917][ T7772] team0: Port device team_slave_1 added
[  215.533909][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  215.537044][ T7608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  215.568013][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  215.580564][ T7608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.599366][ T7608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  215.617863][ T7608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.630342][ T7608] batman_adv: batadv0: Interface activated: batadv_slave_0
[  215.649123][ T7772] batman_adv: batadv0: Adding interface: batadv_slave_0
[  215.657538][ T7772] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.690156][ T7772] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  215.771692][ T7608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  215.795908][ T7608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.815054][ T7608] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  215.827627][ T7608] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  215.851991][ T7608] batman_adv: batadv0: Interface activated: batadv_slave_1
[  215.871372][ T7772] batman_adv: batadv0: Adding interface: batadv_slave_1
[  215.878350][ T7772] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  215.905930][ T7772] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  215.942408][ T7608] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  215.966729][ T7608] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  215.976061][ T7608] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  215.992960][ T7608] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  216.081525][ T7644] veth0_macvtap: entered promiscuous mode
[  216.091927][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  216.108113][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  216.199560][ T7772] hsr_slave_0: entered promiscuous mode
[  216.207294][ T7772] hsr_slave_1: entered promiscuous mode
[  216.217631][ T7772] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[  216.233952][ T7772] Cannot create hsr debugfs directory
[  216.353930][ T7644] veth1_macvtap: entered promiscuous mode
[  216.703437][ T7644] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  216.715804][ T7644] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  216.726607][ T7644] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  216.738248][ T7644] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  216.748575][ T7644] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  216.759617][ T7644] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  216.772046][ T7644] batman_adv: batadv0: Interface activated: batadv_slave_0
[  216.838796][ T7644] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  216.858034][ T7644] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  216.876145][ T7644] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  216.887070][ T7644] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  216.904953][ T7644] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  216.917308][ T7644] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  216.939255][ T7644] batman_adv: batadv0: Interface activated: batadv_slave_1
[  216.963300][   T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  216.976727][ T7644] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  216.988659][   T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  216.996363][ T7644] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  217.006262][ T7644] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  217.016311][ T7644] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  217.259920][ T5789] Bluetooth: hci0: command tx timeout
[  217.434625][   T11] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  217.474701][   T11] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  217.753198][ T7772] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  217.788836][ T7772] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  217.908169][ T1004] hsr_slave_0: left promiscuous mode
[  217.952591][ T1004] hsr_slave_1: left promiscuous mode
[  217.963765][ T1004] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  217.979555][ T1004] batman_adv: batadv0: Removing interface: batadv_slave_0
[  217.992475][ T1004] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  218.008670][ T7845] loop6: detected capacity change from 0 to 512
[  218.009822][ T1004] batman_adv: batadv0: Removing interface: batadv_slave_1
[  218.036085][ T1004] bridge_slave_1: left allmulticast mode
[  218.052554][ T1004] bridge_slave_1: left promiscuous mode
[  218.081750][ T1004] bridge0: port 2(bridge_slave_1) entered disabled state
[  218.103818][ T7845] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  218.125246][ T1004] bridge_slave_0: left allmulticast mode
[  218.141180][ T1004] bridge_slave_0: left promiscuous mode
[  218.162140][   T28] kauditd_printk_skb: 23 callbacks suppressed
[  218.162156][   T28] audit: type=1804 audit(1754786426.987:433): pid=7845 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=ToMToU comm="syz.6.562" name="/newroot/0/file0/bus" dev="loop6" ino=18 res=1 errno=0
[  218.208526][ T1004] bridge0: port 1(bridge_slave_0) entered disabled state
[  218.376708][ T1004] veth1_macvtap: left promiscuous mode
[  218.400127][ T1004] veth0_macvtap: left promiscuous mode
[  218.405908][ T1004] veth1_vlan: left promiscuous mode
[  218.417030][ T1004] veth0_vlan: left promiscuous mode
[  218.856677][ T7608] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  219.341480][ T5789] Bluetooth: hci0: command tx timeout
[  219.384719][ T1004] team0 (unregistering): Port device team_slave_1 removed
[  219.438805][ T1004] team0 (unregistering): Port device team_slave_0 removed
[  219.481196][ T1004] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  219.528887][ T1004] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  219.988686][ T1004] bond0 (unregistering): Released all slaves
[  220.071960][ T7772] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  220.082216][ T7772] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  220.089104][   T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  220.089158][   T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  220.173215][ T7863] netlink: 4 bytes leftover after parsing attributes in process `syz.5.572'.
[  220.186569][ T7866] netlink: 4 bytes leftover after parsing attributes in process `syz.5.572'.
[  220.288688][   T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  220.309717][   T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  220.449008][ T7875] loop5: detected capacity change from 0 to 512
[  220.626094][ T7875] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  220.656754][ T7875] ext4 filesystem being mounted at /4/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  220.738390][ T7772] 8021q: adding VLAN 0 to HW filter on device bond0
[  220.823956][ T7772] 8021q: adding VLAN 0 to HW filter on device team0
[  220.914853][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  220.931151][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  220.938357][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  220.991549][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  220.998743][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  221.245169][ T1004] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.406284][ T1004] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.422447][ T5789] Bluetooth: hci0: command tx timeout
[  221.473249][ T7896] syz.7.577 calls setitimer() with new_value NULL pointer. Misfeature support will be removed
[  221.597075][ T1004] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  221.708720][ T1004] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  222.074909][ T7772] 8021q: adding VLAN 0 to HW filter on device batadv0
[  222.076442][ T5795] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1
[  222.092207][ T5795] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9
[  222.107869][ T5795] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9
[  222.124773][ T5795] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4
[  222.133630][ T5795] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3
[  222.150034][ T5795] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2
[  222.333372][ T7915] loop5: detected capacity change from 0 to 1024
[  222.357673][ T7915] EXT4-fs (loop5): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[  222.413561][ T7915] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.579: bg 0: block 10: padding at end of block bitmap is not set
[  222.440623][ T7915] Quota error (device loop5): write_blk: dquota write failed
[  222.467472][ T7915] Quota error (device loop5): find_free_dqentry: Can't write quota data block 2
[  222.483508][ T7915] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  222.495100][ T7915] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.579: Failed to acquire dquot type 0
[  222.557831][ T7915] Quota error (device loop5): write_blk: dquota write failed
[  222.613830][ T7915] Quota error (device loop5): find_free_dqentry: Can't write quota data block 2
[  222.639705][ T7915] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  222.669406][ T7915] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.579: Failed to acquire dquot type 0
[  222.714351][ T7915] EXT4-fs error (device loop5): ext4_free_blocks:6681: comm syz.5.579: Freeing blocks not in datazone - block = 0, count = 4096
[  222.738402][ T7923] loop7: detected capacity change from 0 to 512
[  222.754427][ T7915] Quota error (device loop5): write_blk: dquota write failed
[  222.799113][ T7915] Quota error (device loop5): find_free_dqentry: Can't write quota data block 2
[  222.834158][ T7923] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  222.866064][ T7915] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  222.889560][ T7915] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.579: Failed to acquire dquot type 0
[  222.909926][ T7923] ext4 filesystem being mounted at /3/bus supports timestamps until 2038-01-19 (0x7fffffff)
[  222.960462][ T7915] EXT4-fs (loop5): 1 orphan inode deleted
[  222.978647][ T7923] EXT4-fs (loop7): shut down requested (0)
[  223.018649][ T7915] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  223.186448][ T7915] Quota error (device loop5): write_blk: dquota write failed
[  223.215553][ T7915] Quota error (device loop5): find_free_dqentry: Can't write quota data block 2
[  223.232979][ T7915] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota
[  223.233505][ T7644] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.245280][ T7915] EXT4-fs error (device loop5): ext4_acquire_dquot:6938: comm syz.5.579: Failed to acquire dquot type 0
[  223.425019][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  223.548883][ T7940] loop5: detected capacity change from 0 to 512
[  223.653223][ T7940] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  223.674484][ T7940] ext4 filesystem being mounted at /7/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  223.973821][ T7946] loop7: detected capacity change from 0 to 1764
[  224.359428][ T7946] loop7: detected capacity change from 0 to 512
[  224.370527][ T7946] EXT4-fs: inline encryption not supported
[  224.376485][ T7946] EXT4-fs: Ignoring removed mblk_io_submit option
[  224.387092][ T5795] Bluetooth: hci3: command tx timeout
[  224.656988][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  224.669887][ T7907] chnl_net:caif_netlink_parms(): no params data found
[  224.761562][ T7946] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  224.773036][ T7946] EXT4-fs (loop7): Test dummy encryption mode enabled
[  224.785884][ T7946] EXT4-fs (loop7): orphan cleanup on readonly fs
[  224.792381][ T7946] EXT4-fs error (device loop7): ext4_orphan_get:1399: comm syz.7.581: inode #13: comm syz.7.581: iget: illegal inode #
[  224.805983][ T7946] EXT4-fs error (device loop7): ext4_orphan_get:1404: comm syz.7.581: couldn't read orphan inode 13 (err -117)
[  224.822370][ T7946] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[  224.953374][ T7772] veth0_vlan: entered promiscuous mode
[  224.997442][ T7772] veth1_vlan: entered promiscuous mode
[  225.039857][ T7644] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  225.359227][ T7907] bridge0: port 1(bridge_slave_0) entered blocking state
[  225.367900][ T7907] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.375314][ T7907] bridge_slave_0: entered allmulticast mode
[  225.383224][ T7907] bridge_slave_0: entered promiscuous mode
[  225.411447][ T1004] hsr_slave_0: left promiscuous mode
[  225.417607][ T1004] hsr_slave_1: left promiscuous mode
[  225.431304][ T1004] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  225.438843][ T1004] batman_adv: batadv0: Removing interface: batadv_slave_0
[  225.457667][ T1004] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  225.468026][ T1004] batman_adv: batadv0: Removing interface: batadv_slave_1
[  225.483603][ T1004] bridge_slave_1: left allmulticast mode
[  225.494523][ T1004] bridge_slave_1: left promiscuous mode
[  225.515481][ T1004] bridge0: port 2(bridge_slave_1) entered disabled state
[  225.532825][ T1004] bridge_slave_0: left allmulticast mode
[  225.539946][ T1004] bridge_slave_0: left promiscuous mode
[  225.545810][ T1004] bridge0: port 1(bridge_slave_0) entered disabled state
[  225.623549][ T1004] veth1_macvtap: left promiscuous mode
[  225.629188][ T1004] veth0_macvtap: left promiscuous mode
[  225.639601][ T1004] veth1_vlan: left promiscuous mode
[  225.645487][ T1004] veth0_vlan: left promiscuous mode
[  226.338377][ T1004] team0 (unregistering): Port device team_slave_1 removed
[  226.383580][ T1004] team0 (unregistering): Port device team_slave_0 removed
[  226.429472][ T1004] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  226.460242][ T5795] Bluetooth: hci3: command tx timeout
[  226.494514][ T1004] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  227.047465][ T1004] bond0 (unregistering): Released all slaves
[  227.177990][ T7968] syzkaller0: entered promiscuous mode
[  227.186637][ T7968] syzkaller0: entered allmulticast mode
[  227.202552][ T7772] veth0_macvtap: entered promiscuous mode
[  227.209995][ T7907] bridge0: port 2(bridge_slave_1) entered blocking state
[  227.222942][ T7907] bridge0: port 2(bridge_slave_1) entered disabled state
[  227.230773][ T7907] bridge_slave_1: entered allmulticast mode
[  227.237717][ T7907] bridge_slave_1: entered promiscuous mode
[  227.697663][ T7985] loop5: detected capacity change from 0 to 128
[  227.816298][ T7986] syz.5.587: attempt to access beyond end of device
[  227.816298][ T7986] loop5: rw=2049, sector=145, nr_sectors = 760 limit=128
[  227.886011][ T7985] syz.5.587: attempt to access beyond end of device
[  227.886011][ T7985] loop5: rw=524288, sector=145, nr_sectors = 224 limit=128
[  227.909192][ T7985] syz.5.587: attempt to access beyond end of device
[  227.909192][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  227.928664][ T7985] syz.5.587: attempt to access beyond end of device
[  227.928664][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  227.947727][ T7985] syz.5.587: attempt to access beyond end of device
[  227.947727][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  227.961148][ T7985] syz.5.587: attempt to access beyond end of device
[  227.961148][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  227.979141][ T7985] syz.5.587: attempt to access beyond end of device
[  227.979141][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  227.992766][ T7985] syz.5.587: attempt to access beyond end of device
[  227.992766][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.006320][ T7985] syz.5.587: attempt to access beyond end of device
[  228.006320][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.023056][ T7985] syz.5.587: attempt to access beyond end of device
[  228.023056][ T7985] loop5: rw=0, sector=145, nr_sectors = 8 limit=128
[  228.539589][ T5795] Bluetooth: hci3: command tx timeout
[  230.163781][ T7772] veth1_macvtap: entered promiscuous mode
[  230.211330][ T7907] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  230.248051][ T7907] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  230.327360][ T7907] team0: Port device team_slave_0 added
[  230.337481][ T7907] team0: Port device team_slave_1 added
[  230.538358][ T7907] batman_adv: batadv0: Adding interface: batadv_slave_0
[  230.559699][ T7907] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  230.630744][ T5795] Bluetooth: hci3: command tx timeout
[  230.639633][ T7907] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  230.758223][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  230.793684][ T7988] serio: Serial port ptm0
[  230.803926][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.813853][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  230.841024][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  230.861462][ T7772] batman_adv: batadv0: Interface activated: batadv_slave_0
[  230.930582][ T7907] batman_adv: batadv0: Adding interface: batadv_slave_1
[  230.937594][ T7907] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[  231.014174][ T7907] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  231.561488][ T8007] loop5: detected capacity change from 0 to 512
[  231.916857][ T8007] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  231.927255][ T8007] EXT4-fs (loop5): orphan cleanup on readonly fs
[  231.943380][ T8007] Quota error (device loop5): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[  231.954960][ T8007] EXT4-fs warning (device loop5): ext4_enable_quotas:7173: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  231.980941][ T8007] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  232.024540][ T8007] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.590: bg 0: block 40: padding at end of block bitmap is not set
[  232.041168][ T8007] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6642: Corrupt filesystem
[  232.050817][ T8007] EXT4-fs (loop5): 1 truncate cleaned up
[  232.057929][ T8007] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  232.116120][ T7907] hsr_slave_0: entered promiscuous mode
[  232.126220][ T7907] hsr_slave_1: entered promiscuous mode
[  232.145535][ T8012] netlink: 'syz.7.589': attribute type 3 has an invalid length.
[  232.161684][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  232.181432][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.199135][ T7772] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  232.223730][ T7772] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  232.251530][ T7772] batman_adv: batadv0: Interface activated: batadv_slave_1
[  232.291494][ T8005] platform regulatory.0: loading /lib/firmware/regulatory.db failed with error -12
[  232.301242][ T8005] platform regulatory.0: Direct firmware load for regulatory.db failed with error -12
[  232.310935][ T8005] platform regulatory.0: Falling back to sysfs fallback for: regulatory.db
[  232.347784][   T28] audit: type=1800 audit(1754786441.117:434): pid=8005 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.590" name="regulatory.db" dev="sda1" ino=448 res=0 errno=0
[  232.451090][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  232.537137][ T7772] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  232.587019][ T7772] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  232.616347][ T7772] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  232.639412][ T7772] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  233.178340][ T1004] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  233.204522][ T1004] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  233.296454][ T8033] loop5: detected capacity change from 0 to 512
[  233.365888][ T8033] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  233.398091][ T8033] ext4 filesystem being mounted at /17/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  233.447785][ T8033] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  233.459194][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  233.489646][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  233.833373][ T7907] netdevsim netdevsim9 netdevsim0: renamed from eth0
[  233.901712][ T7907] netdevsim netdevsim9 netdevsim1: renamed from eth1
[  233.912055][   T28] audit: type=1326 audit(1754786442.737:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  233.959633][   T28] audit: type=1326 audit(1754786442.737:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  233.988168][ T7907] netdevsim netdevsim9 netdevsim2: renamed from eth2
[  234.050118][   T28] audit: type=1326 audit(1754786442.747:437): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=114 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  234.050180][   T28] audit: type=1326 audit(1754786442.747:438): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  234.050227][   T28] audit: type=1326 audit(1754786442.747:439): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  234.050273][   T28] audit: type=1326 audit(1754786442.747:440): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  234.050320][   T28] audit: type=1326 audit(1754786442.747:441): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  234.050377][   T28] audit: type=1326 audit(1754786442.747:442): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8046 comm="syz.8.567" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  234.102516][ T7907] netdevsim netdevsim9 netdevsim3: renamed from eth3
[  234.375825][ T8065] veth1_to_bond: entered promiscuous mode
[  234.383351][ T8065] veth1_to_bond: entered allmulticast mode
[  234.926918][ T7907] 8021q: adding VLAN 0 to HW filter on device bond0
[  234.987074][ T7907] 8021q: adding VLAN 0 to HW filter on device team0
[  235.077421][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  235.160222][   T59] bridge0: port 1(bridge_slave_0) entered blocking state
[  235.167449][   T59] bridge0: port 1(bridge_slave_0) entered forwarding state
[  235.232837][   T59] bridge0: port 2(bridge_slave_1) entered blocking state
[  235.240095][   T59] bridge0: port 2(bridge_slave_1) entered forwarding state
[  235.593198][ T8084] netlink: 28 bytes leftover after parsing attributes in process `syz.7.600'.
[  235.677711][ T8085] loop7: detected capacity change from 0 to 512
[  235.689675][ T8085] EXT4-fs: Ignoring removed mblk_io_submit option
[  235.696213][ T8085] EXT4-fs: Ignoring removed bh option
[  235.856129][ T8085] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  235.867742][ T8085] EXT4-fs (loop7): encrypted files will use data=ordered instead of data journaling mode
[  235.928288][ T8085] EXT4-fs (loop7): 1 truncate cleaned up
[  235.940346][ T8085] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  236.385673][ T8093] loop5: detected capacity change from 0 to 512
[  236.426388][ T8093] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  236.515284][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  236.532411][ T7907] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  237.225765][ T8113] netlink: 28 bytes leftover after parsing attributes in process `syz.8.605'.
[  237.317877][ T8114] loop8: detected capacity change from 0 to 512
[  237.329231][ T8114] EXT4-fs: Ignoring removed mblk_io_submit option
[  237.335810][ T8114] EXT4-fs: Ignoring removed bh option
[  237.436355][ T8114] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[  237.447833][ T8114] EXT4-fs (loop8): encrypted files will use data=ordered instead of data journaling mode
[  237.487173][ T8114] EXT4-fs (loop8): 1 truncate cleaned up
[  237.504066][ T8114] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  238.184442][ T7907] 8021q: adding VLAN 0 to HW filter on device batadv0
[  238.469190][ T7644] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.125042][ T7772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  239.250421][ T7907] veth0_vlan: entered promiscuous mode
[  239.383967][ T7907] veth1_vlan: entered promiscuous mode
[  239.421788][ T8153] netlink: 24 bytes leftover after parsing attributes in process `syz.8.611'.
[  239.443026][ T8155] netlink: 60 bytes leftover after parsing attributes in process `syz.7.613'.
[  239.569190][ T8153] IPVS: Unknown mcast interface: ip
[  239.585249][ T8156] netlink: 4 bytes leftover after parsing attributes in process `syz.7.613'.
[  239.586534][ T8160] program syz.7.613 is using a deprecated SCSI ioctl, please convert it to SG_IO
[  239.947657][ T8169] loop8: detected capacity change from 0 to 164
[  240.014364][ T8169] bio_check_eod: 4849 callbacks suppressed
[  240.014382][ T8169] syz.8.616: attempt to access beyond end of device
[  240.014382][ T8169] loop8: rw=524288, sector=263328, nr_sectors = 4 limit=164
[  240.040466][ T8169] syz.8.616: attempt to access beyond end of device
[  240.040466][ T8169] loop8: rw=0, sector=263328, nr_sectors = 4 limit=164
[  240.362836][ T7907] veth0_macvtap: entered promiscuous mode
[  240.433045][ T7907] veth1_macvtap: entered promiscuous mode
[  240.542540][   T28] kauditd_printk_skb: 9 callbacks suppressed
[  240.542556][   T28] audit: type=1326 audit(1754786449.377:452): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  240.611480][ T7907] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  240.636479][   T28] audit: type=1326 audit(1754786449.377:453): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  240.647735][ T7907] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.664367][   T28] audit: type=1326 audit(1754786449.377:454): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=29 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  240.703264][   T28] audit: type=1326 audit(1754786449.377:455): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  240.725780][ T7907] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  240.725802][ T7907] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.725819][ T7907] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0
[  240.725832][ T7907] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.727986][ T7907] batman_adv: batadv0: Interface activated: batadv_slave_0
[  240.768515][   T28] audit: type=1326 audit(1754786449.407:456): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  240.835475][ T8183] loop8: detected capacity change from 0 to 512
[  240.863149][ T7907] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  240.875068][   T28] audit: type=1326 audit(1754786449.407:457): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  240.918672][   T28] audit: type=1326 audit(1754786449.407:458): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=46 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  240.923311][ T7907] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  240.942652][ T8183] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  241.014316][   T28] audit: type=1326 audit(1754786449.407:459): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  241.048994][ T7907] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.063826][ T7907] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.074187][   T28] audit: type=1326 audit(1754786449.407:460): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=85 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  241.091856][ T7907] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1
[  241.097793][   T28] audit: type=1326 audit(1754786449.407:461): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8176 comm="syz.8.618" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f39c938ebe9 code=0x7ffc0000
[  241.166830][ T7907] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems!
[  241.191201][ T7772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  241.198328][ T8188] netlink: 24 bytes leftover after parsing attributes in process `syz.7.622'.
[  241.205215][ T7907] batman_adv: batadv0: Interface activated: batadv_slave_1
[  241.234496][ T7907] netdevsim netdevsim9 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  241.249354][ T7907] netdevsim netdevsim9 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  241.258329][ T7907] netdevsim netdevsim9 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  241.274198][ T7907] netdevsim netdevsim9 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  241.312156][ T8188] IPVS: Unknown mcast interface: ip
[  241.409692][ T8190] loop8: detected capacity change from 0 to 512
[  241.472871][ T8190] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  241.577978][ T8190] ext4 filesystem being mounted at /10/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  241.704224][   T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  241.737719][   T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  241.815278][ T7772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  241.862200][ T1105] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  241.889543][ T1105] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  242.181997][ T8203] loop5: detected capacity change from 0 to 8192
[  242.239499][ T8203] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  243.894444][ T8203] netlink: 'syz.5.630': attribute type 4 has an invalid length.
[  243.910018][ T8203] netlink: 17 bytes leftover after parsing attributes in process `syz.5.630'.
[  244.510231][ T8232] loop5: detected capacity change from 0 to 512
[  244.575583][ T8232] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  244.671050][ T8232] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  244.904549][ T8242] loop8: detected capacity change from 0 to 512
[  244.938370][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  244.956355][ T8242] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  245.015703][ T8242] ext4 filesystem being mounted at /12/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  245.096815][ T8242] EXT4-fs error (device loop8): ext4_xattr_block_get:596: inode #15: comm syz.8.639: corrupted xattr block 33: e_value out of bounds
[  245.234502][ T7772] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  245.419239][ T8256] loop5: detected capacity change from 0 to 512
[  245.502748][ T8256] EXT4-fs warning (device loop5): ext4_init_metadata_csum:4634: metadata_csum and uninit_bg are redundant flags; please run fsck.
[  245.544739][ T8256] EXT4-fs (loop5): VFS: Found ext4 filesystem with unknown checksum algorithm.
[  245.627902][ T6645] udevd[6645]: incorrect ext4 checksum on /dev/loop5
[  245.895720][ T8260] loop8: detected capacity change from 0 to 8192
[  246.012057][ T8260] FAT-fs (loop8): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[  246.088842][ T8271] loop5: detected capacity change from 0 to 512
[  246.128730][ T8273] netlink: 24 bytes leftover after parsing attributes in process `syz.7.650'.
[  246.165234][ T8273] IPVS: Unknown mcast interface: ipvla
[  246.211344][ T8271] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  246.276665][ T8271] ext4 filesystem being mounted at /34/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  246.532895][ T7601] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  246.796443][ T8292] syz.5.656[8292] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  246.796582][ T8292] syz.5.656[8292] is installing a program with bpf_probe_write_user helper that may corrupt user memory!
[  246.898603][ T8293] netlink: 'syz.8.643': attribute type 4 has an invalid length.
[  246.906606][ T8295] openvswitch: netlink: Flow actions attr not present in new flow.
[  246.929473][ T8293] netlink: 17 bytes leftover after parsing attributes in process `syz.8.643'.
[  247.166718][ T8303] netlink: 24 bytes leftover after parsing attributes in process `syz.7.660'.
[  247.199764][ T8303] IPVS: Unknown mcast interface: ipvla
[  247.537410][ T8309] loop7: detected capacity change from 0 to 512
[  247.623698][ T8309] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  247.689618][ T8309] ext4 filesystem being mounted at /31/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  247.912717][   T28] kauditd_printk_skb: 29 callbacks suppressed
[  247.912734][   T28] audit: type=1326 audit(1754786456.737:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1f39d85ba7 code=0x7ffc0000
[  248.014993][   T28] audit: type=1326 audit(1754786456.747:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1f39d2add9 code=0x7ffc0000
[  248.073416][   T28] audit: type=1326 audit(1754786456.747:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1f39d8ebe9 code=0x7ffc0000
[  248.119785][   T28] audit: type=1326 audit(1754786456.747:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1f39d85ba7 code=0x7ffc0000
[  248.165604][ T7644] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  248.189441][   T28] audit: type=1326 audit(1754786456.747:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1f39d2add9 code=0x7ffc0000
[  248.279586][   T28] audit: type=1326 audit(1754786456.747:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1f39d85ba7 code=0x7ffc0000
[  248.385979][   T28] audit: type=1326 audit(1754786456.747:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1f39d2add9 code=0x7ffc0000
[  248.482580][   T28] audit: type=1326 audit(1754786456.747:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1f39d85ba7 code=0x7ffc0000
[  248.526138][   T28] audit: type=1326 audit(1754786456.747:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f1f39d2add9 code=0x7ffc0000
[  248.549059][   T28] audit: type=1326 audit(1754786456.747:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8322 comm="syz.9.666" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f1f39d85ba7 code=0x7ffc0000
[  249.143912][ T8387] loop8: detected capacity change from 0 to 1024
[  249.244270][ T8387] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  249.285356][ T8391] netlink: 4 bytes leftover after parsing attributes in process `syz.5.677'.
[  249.355715][ T8395] loop9: detected capacity change from 0 to 512
[  249.408033][ T8387] ==================================================================
[  249.416173][ T8387] BUG: KASAN: out-of-bounds in ext4_xattr_set_entry+0x94b/0x1e90
[  249.423956][ T8387] Read of size 18446744073709551588 at addr ffff88803124c840 by task syz.8.675/8387
[  249.433365][ T8387] 
[  249.435744][ T8387] CPU: 1 PID: 8387 Comm: syz.8.675 Not tainted 6.6.101-syzkaller #0
[  249.443777][ T8387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  249.453908][ T8387] Call Trace:
[  249.457216][ T8387]  <TASK>
[  249.460169][ T8387]  dump_stack_lvl+0x16c/0x230
[  249.464899][ T8387]  ? read_lock_is_recursive+0x20/0x20
[  249.470299][ T8387]  ? show_regs_print_info+0x20/0x20
[  249.475521][ T8387]  ? load_image+0x3b0/0x3b0
[  249.480051][ T8387]  ? _raw_spin_lock_irqsave+0xb4/0xf0
[  249.485446][ T8387]  ? __virt_addr_valid+0x18c/0x540
[  249.490571][ T8387]  ? __virt_addr_valid+0x469/0x540
[  249.495696][ T8387]  print_report+0xac/0x220
[  249.500132][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  249.505610][ T8387]  kasan_report+0x117/0x150
[  249.510147][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  249.515629][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  249.521107][ T8387]  kasan_check_range+0x288/0x290
[  249.526065][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  249.531539][ T8387]  __asan_memmove+0x29/0x70
[  249.536055][ T8387]  ext4_xattr_set_entry+0x94b/0x1e90
[  249.541365][ T8387]  ext4_xattr_block_set+0xae3/0x32a0
[  249.546665][ T8387]  ? ext4_destroy_inode+0xe8/0x1b0
[  249.551792][ T8387]  ? ext4_destroy_inode+0x1b0/0x1b0
[  249.557010][ T8387]  ? proc_nr_inodes+0x230/0x230
[  249.561927][ T8387]  ? do_raw_spin_unlock+0x121/0x230
[  249.567175][ T8387]  ? _raw_spin_unlock+0x28/0x40
[  249.572069][ T8387]  ? ext4_xattr_block_find+0x350/0x350
[  249.577560][ T8387]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  249.582973][ T8387]  ext4_xattr_set_handle+0x10a1/0x1290
[  249.588469][ T8387]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  249.594518][ T8387]  ? __ext4_journal_start_sb+0x259/0x570
[  249.600180][ T8387]  ext4_xattr_set+0x22d/0x320
[  249.604892][ T8387]  ? end_current_label_crit_section+0x170/0x170
[  249.611171][ T8387]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  249.616736][ T8387]  ? posix_xattr_acl+0x93/0xb0
[  249.621520][ T8387]  ? evm_protect_xattr+0x36d/0x7a0
[  249.626648][ T8387]  ? ext4_xattr_trusted_get+0x40/0x40
[  249.632124][ T8387]  __vfs_setxattr+0x431/0x470
[  249.636903][ T8387]  __vfs_setxattr_noperm+0x12d/0x5e0
[  249.642214][ T8387]  vfs_setxattr+0x16c/0x2f0
[  249.646733][ T8387]  ? xattr_permission+0x470/0x470
[  249.651786][ T8387]  ? __mnt_want_write+0x223/0x2a0
[  249.656903][ T8387]  ? path_setxattr+0x314/0x550
[  249.661698][ T8387]  path_setxattr+0x362/0x550
[  249.666330][ T8387]  ? simple_xattrs_free+0x150/0x150
[  249.671653][ T8387]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  249.677655][ T8387]  ? lock_chain_count+0x20/0x20
[  249.682532][ T8387]  __x64_sys_lsetxattr+0xb8/0xd0
[  249.687497][ T8387]  do_syscall_64+0x55/0xb0
[  249.691955][ T8387]  ? clear_bhb_loop+0x40/0x90
[  249.696654][ T8387]  ? clear_bhb_loop+0x40/0x90
[  249.701355][ T8387]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  249.707276][ T8387] RIP: 0033:0x7f39c938ebe9
[  249.711726][ T8387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  249.731363][ T8387] RSP: 002b:00007f39ca132038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  249.739971][ T8387] RAX: ffffffffffffffda RBX: 00007f39c95b5fa0 RCX: 00007f39c938ebe9
[  249.747967][ T8387] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 00002000000001c0
[  249.756045][ T8387] RBP: 00007f39c9411e19 R08: 0000000000000000 R09: 0000000000000000
[  249.764029][ T8387] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  249.772019][ T8387] R13: 00007f39c95b6038 R14: 00007f39c95b5fa0 R15: 00007ffd2a37f2c8
[  249.780020][ T8387]  </TASK>
[  249.783054][ T8387] 
[  249.785391][ T8387] Allocated by task 8387:
[  249.789730][ T8387]  kasan_set_track+0x4e/0x70
[  249.794339][ T8387]  __kasan_kmalloc+0x8f/0xa0
[  249.798939][ T8387]  __kmalloc_node_track_caller+0xb2/0x230
[  249.804674][ T8387]  kmemdup+0x2b/0x70
[  249.808596][ T8387]  ext4_xattr_block_set+0x9e5/0x32a0
[  249.813900][ T8387]  ext4_xattr_set_handle+0x10a1/0x1290
[  249.819381][ T8387]  ext4_xattr_set+0x22d/0x320
[  249.824084][ T8387]  __vfs_setxattr+0x431/0x470
[  249.828772][ T8387]  __vfs_setxattr_noperm+0x12d/0x5e0
[  249.834081][ T8387]  vfs_setxattr+0x16c/0x2f0
[  249.838598][ T8387]  path_setxattr+0x362/0x550
[  249.843201][ T8387]  __x64_sys_lsetxattr+0xb8/0xd0
[  249.848156][ T8387]  do_syscall_64+0x55/0xb0
[  249.852584][ T8387]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  249.858502][ T8387] 
[  249.860871][ T8387] Last potentially related work creation:
[  249.866585][ T8387]  kasan_save_stack+0x3e/0x60
[  249.871279][ T8387]  __kasan_record_aux_stack+0xaf/0xc0
[  249.876662][ T8387]  kvfree_call_rcu+0xee/0x780
[  249.881350][ T8387]  batadv_hard_if_event+0x7e1/0x15b0
[  249.886651][ T8387]  notifier_call_chain+0x197/0x390
[  249.891783][ T8387]  unregister_netdevice_many_notify+0xf36/0x1810
[  249.898128][ T8387]  default_device_exit_batch+0x9cb/0xa60
[  249.903788][ T8387]  cleanup_net+0x77f/0xb90
[  249.908220][ T8387]  process_scheduled_works+0xa45/0x15b0
[  249.913786][ T8387]  worker_thread+0xa55/0xfc0
[  249.918385][ T8387]  kthread+0x2fa/0x390
[  249.922458][ T8387]  ret_from_fork+0x48/0x80
[  249.926883][ T8387]  ret_from_fork_asm+0x11/0x20
[  249.931700][ T8387] 
[  249.934033][ T8387] The buggy address belongs to the object at ffff88803124c800
[  249.934033][ T8387]  which belongs to the cache kmalloc-1k of size 1024
[  249.948091][ T8387] The buggy address is located 64 bytes inside of
[  249.948091][ T8387]  1024-byte region [ffff88803124c800, ffff88803124cc00)
[  249.961367][ T8387] 
[  249.963698][ T8387] The buggy address belongs to the physical page:
[  249.970131][ T8387] page:ffffea0000c49200 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x31248
[  249.980342][ T8387] head:ffffea0000c49200 order:3 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[  249.989288][ T8387] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[  249.997381][ T8387] page_type: 0xffffffff()
[  250.001719][ T8387] raw: 00fff00000000840 ffff888017841dc0 ffffea0001691400 dead000000000002
[  250.010330][ T8387] raw: 0000000000000000 0000000080100010 00000001ffffffff 0000000000000000
[  250.018929][ T8387] page dumped because: kasan: bad access detected
[  250.025363][ T8387] page_owner tracks the page as allocated
[  250.031187][ T8387] page last allocated via order 3, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5786, tgid 5786 (syz-executor), ts 79804127096, free_ts 79714639338
[  250.052556][ T8387]  post_alloc_hook+0x1cd/0x210
[  250.057342][ T8387]  get_page_from_freelist+0x195c/0x19f0
[  250.062904][ T8387]  __alloc_pages+0x1e3/0x460
[  250.067511][ T8387]  alloc_slab_page+0x5d/0x170
[  250.072203][ T8387]  new_slab+0x87/0x2e0
[  250.076286][ T8387]  ___slab_alloc+0xc6d/0x12f0
[  250.080974][ T8387]  __kmem_cache_alloc_node+0x1a2/0x260
[  250.086445][ T8387]  __kmalloc_node+0xa4/0x230
[  250.091048][ T8387]  qdisc_alloc+0x94/0xa50
[  250.095390][ T8387]  qdisc_create_dflt+0x63/0x430
[  250.100255][ T8387]  dev_activate+0x397/0x11a0
[  250.104861][ T8387]  __dev_open+0x338/0x430
[  250.109205][ T8387]  dev_open+0xab/0x170
[  250.113287][ T8387]  bond_enslave+0x1144/0x3b20
[  250.117977][ T8387]  do_setlink+0xe14/0x3fb0
[  250.122406][ T8387]  rtnl_newlink+0x175b/0x2020
[  250.127092][ T8387] page last free stack trace:
[  250.131784][ T8387]  free_unref_page_prepare+0x7ce/0x8e0
[  250.137262][ T8387]  free_unref_page+0x32/0x2e0
[  250.141963][ T8387]  __slab_free+0x35e/0x410
[  250.146395][ T8387]  qlist_free_all+0x75/0xe0
[  250.150914][ T8387]  kasan_quarantine_reduce+0x143/0x160
[  250.156383][ T8387]  __kasan_slab_alloc+0x22/0x80
[  250.161238][ T8387]  slab_post_alloc_hook+0x6e/0x4d0
[  250.166358][ T8387]  __kmem_cache_alloc_node+0x13e/0x260
[  250.171828][ T8387]  kmalloc_trace+0x2a/0xe0
[  250.176251][ T8387]  ref_tracker_alloc+0x134/0x460
[  250.181194][ T8387]  net_rx_queue_update_kobjects+0x16e/0x580
[  250.187098][ T8387]  netdev_register_kobject+0x227/0x310
[  250.192606][ T8387]  register_netdevice+0x128f/0x1ae0
[  250.197823][ T8387]  team_newlink+0xf8/0x140
[  250.202247][ T8387]  rtnl_newlink+0x14d0/0x2020
[  250.206933][ T8387]  rtnetlink_rcv_msg+0x7c7/0xf10
[  250.211889][ T8387] 
[  250.214216][ T8387] Memory state around the buggy address:
[  250.219872][ T8387]  ffff88803124c700: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  250.227949][ T8387]  ffff88803124c780: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[  250.236014][ T8387] >ffff88803124c800: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  250.244079][ T8387]                                            ^
[  250.250246][ T8387]  ffff88803124c880: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
SYZFAIL: failed to recv rpc
fd=3 want=4 recv=0 n=0 (errno 9: Bad file descriptor)
[  250.258324][ T8387]  ffff88803124c900: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00
[  250.266385][ T8387] ==================================================================
[  250.350509][ T8387] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[  250.357782][ T8387] CPU: 0 PID: 8387 Comm: syz.8.675 Not tainted 6.6.101-syzkaller #0
[  250.365792][ T8387] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[  250.375878][ T8387] Call Trace:
[  250.376823][ T8395] EXT4-fs (loop9): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  250.376951][ T8395] ext4 filesystem being mounted at /13/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  250.401924][ T8387]  <TASK>
[  250.404881][ T8387]  dump_stack_lvl+0x16c/0x230
[  250.409598][ T8387]  ? show_regs_print_info+0x20/0x20
[  250.414841][ T8387]  ? load_image+0x3b0/0x3b0
[  250.419388][ T8387]  panic+0x2c0/0x710
[  250.423333][ T8387]  ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[  250.429527][ T8387]  ? bpf_jit_dump+0xd0/0xd0
[  250.434071][ T8387]  ? _raw_spin_unlock_irqrestore+0xfa/0x110
[  250.440014][ T8387]  ? _raw_spin_unlock+0x40/0x40
[  250.444907][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  250.450421][ T8387]  check_panic_on_warn+0x84/0xa0
[  250.455382][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  250.460866][ T8387]  end_report+0x6f/0x140
[  250.465122][ T8387]  kasan_report+0x128/0x150
[  250.469637][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  250.475112][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  250.480584][ T8387]  kasan_check_range+0x288/0x290
[  250.485633][ T8387]  ? ext4_xattr_set_entry+0x94b/0x1e90
[  250.491110][ T8387]  __asan_memmove+0x29/0x70
[  250.495647][ T8387]  ext4_xattr_set_entry+0x94b/0x1e90
[  250.500969][ T8387]  ext4_xattr_block_set+0xae3/0x32a0
[  250.506271][ T8387]  ? ext4_destroy_inode+0xe8/0x1b0
[  250.511394][ T8387]  ? ext4_destroy_inode+0x1b0/0x1b0
[  250.516606][ T8387]  ? proc_nr_inodes+0x230/0x230
[  250.521472][ T8387]  ? do_raw_spin_unlock+0x121/0x230
[  250.526689][ T8387]  ? _raw_spin_unlock+0x28/0x40
[  250.531560][ T8387]  ? ext4_xattr_block_find+0x350/0x350
[  250.537032][ T8387]  ? ext4_xattr_ibody_set+0x50d/0x6a0
[  250.542420][ T8387]  ext4_xattr_set_handle+0x10a1/0x1290
[  250.547904][ T8387]  ? ext4_xattr_inode_free_quota+0x1b0/0x1b0
[  250.553924][ T8387]  ? __ext4_journal_start_sb+0x259/0x570
[  250.559582][ T8387]  ext4_xattr_set+0x22d/0x320
[  250.564272][ T8387]  ? end_current_label_crit_section+0x170/0x170
[  250.570556][ T8387]  ? ext4_xattr_set_credits+0x2f0/0x2f0
[  250.576118][ T8387]  ? posix_xattr_acl+0x93/0xb0
[  250.580896][ T8387]  ? evm_protect_xattr+0x36d/0x7a0
[  250.586025][ T8387]  ? ext4_xattr_trusted_get+0x40/0x40
[  250.591422][ T8387]  __vfs_setxattr+0x431/0x470
[  250.596114][ T8387]  __vfs_setxattr_noperm+0x12d/0x5e0
[  250.601434][ T8387]  vfs_setxattr+0x16c/0x2f0
[  250.605959][ T8387]  ? xattr_permission+0x470/0x470
[  250.611085][ T8387]  ? __mnt_want_write+0x223/0x2a0
[  250.616130][ T8387]  ? path_setxattr+0x314/0x550
[  250.620907][ T8387]  path_setxattr+0x362/0x550
[  250.625516][ T8387]  ? simple_xattrs_free+0x150/0x150
[  250.630747][ T8387]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[  250.636753][ T8387]  ? lock_chain_count+0x20/0x20
[  250.641617][ T8387]  __x64_sys_lsetxattr+0xb8/0xd0
[  250.646573][ T8387]  do_syscall_64+0x55/0xb0
[  250.651001][ T8387]  ? clear_bhb_loop+0x40/0x90
[  250.655772][ T8387]  ? clear_bhb_loop+0x40/0x90
[  250.660454][ T8387]  entry_SYSCALL_64_after_hwframe+0x68/0xd2
[  250.666365][ T8387] RIP: 0033:0x7f39c938ebe9
[  250.670792][ T8387] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[  250.690424][ T8387] RSP: 002b:00007f39ca132038 EFLAGS: 00000246 ORIG_RAX: 00000000000000bd
[  250.698848][ T8387] RAX: ffffffffffffffda RBX: 00007f39c95b5fa0 RCX: 00007f39c938ebe9
[  250.706849][ T8387] RDX: 00002000000001c0 RSI: 0000200000000180 RDI: 00002000000001c0
[  250.714916][ T8387] RBP: 00007f39c9411e19 R08: 0000000000000000 R09: 0000000000000000
[  250.722898][ T8387] R10: 0000000000000361 R11: 0000000000000246 R12: 0000000000000000
[  250.730876][ T8387] R13: 00007f39c95b6038 R14: 00007f39c95b5fa0 R15: 00007ffd2a37f2c8
[  250.738886][ T8387]  </TASK>
[  250.742373][ T8387] Kernel Offset: disabled
[  250.746703][ T8387] Rebooting in 86400 seconds..